| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Kann Backdoor Virus nicht entfernenWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
04.11.2011, 15:29
| #16 |
| /// Winkelfunktion /// TB-Süch-Tiger™   |  Kann Backdoor Virus nicht entfernen Bitte nun dieses Tool von Kaspersky ausführen und das Log posten => http://www.trojaner-board.de/82358-t...entfernen.html Das Tool so einstellen wie unten im Bild angegeben - klick auf change parameters und setze die Haken wie im folgenden Screenshot abgebildet, Dann auf Start Scan klicken und wenn es durch ist auf den Button Report klicken um das Log anzuzeigen. Dieses bitte komplett posten. Wenn du das Log nicht findest oder den Inhalt kopieren und in dein Posting übertragen kannst, dann schau bitte direkt auf deiner Windows-Systempartition nach, da speichert der TDSS-Killer seine Logs. Hinweis: Bitte nichts voreilig mit dem TDSS-Killer löschen! Falls Objekte vom TDSS-Killer bemängelt werden, alle mit der Aktion "skip" behandeln und hier nur das Log posten!  Falls du durch die Infektion auf deine Dokumente/Eigenen Dateien nicht zugreifen kannst, Verknüpfungen auf dem Desktop oder im Startmenü unter "alle Programme" fehlen, bitte unhide ausführen: Downloade dir bitte unhide.exe und speichere diese Datei auf deinem Desktop. Starte das Tool und es sollten alle Dateien und Ordner wieder sichtbar sein. ( Könnte eine Weile dauern )  Windows-Vista und Windows-7-User müssen das Tool per Rechtsklick als Administrator ausführen!
__________________ Logfiles bitte immer in CODE-Tags posten  |
|
04.11.2011, 15:42
| #17 |
 | Kann Backdoor Virus nicht entfernen Log vom Tool von Kaspersky:
__________________Code:
ATTFilter 15:37:37.0289 3544 TDSS rootkit removing tool 2.6.15.0 Nov 3 2011 17:15:49
15:37:37.0433 3544 ============================================================
15:37:37.0433 3544 Current date / time: 2011/11/04 15:37:37.0433
15:37:37.0433 3544 SystemInfo:
15:37:37.0433 3544
15:37:37.0434 3544 OS Version: 6.1.7601 ServicePack: 1.0
15:37:37.0434 3544 Product type: Workstation
15:37:37.0434 3544 ComputerName: OLAV1309
15:37:37.0435 3544 UserName: Olav
15:37:37.0435 3544 Windows directory: C:\windows
15:37:37.0435 3544 System windows directory: C:\windows
15:37:37.0435 3544 Running under WOW64
15:37:37.0435 3544 Processor architecture: Intel x64
15:37:37.0435 3544 Number of processors: 1
15:37:37.0435 3544 Page size: 0x1000
15:37:37.0435 3544 Boot type: Normal boot
15:37:37.0435 3544 ============================================================
15:37:38.0745 3544 Initialize success
15:38:33.0922 5088 ============================================================
15:38:33.0922 5088 Scan started
15:38:33.0922 5088 Mode: Manual; SigCheck; TDLFS;
15:38:33.0922 5088 ============================================================
15:38:35.0065 5088 1394ohci (a87d604aea360176311474c87a63bb88) C:\windows\system32\drivers\1394ohci.sys
15:38:35.0266 5088 1394ohci - ok
15:38:35.0362 5088 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\windows\system32\drivers\ACPI.sys
15:38:35.0415 5088 ACPI - ok
15:38:35.0462 5088 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\windows\system32\drivers\acpipmi.sys
15:38:35.0544 5088 AcpiPmi - ok
15:38:35.0621 5088 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\windows\system32\DRIVERS\adp94xx.sys
15:38:35.0664 5088 adp94xx - ok
15:38:35.0688 5088 adpahci (597f78224ee9224ea1a13d6350ced962) C:\windows\system32\DRIVERS\adpahci.sys
15:38:35.0713 5088 adpahci - ok
15:38:35.0740 5088 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\windows\system32\DRIVERS\adpu320.sys
15:38:35.0761 5088 adpu320 - ok
15:38:35.0846 5088 AFD (d5b031c308a409a0a576bff4cf083d30) C:\windows\system32\drivers\afd.sys
15:38:35.0947 5088 AFD - ok
15:38:36.0006 5088 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\windows\system32\drivers\agp440.sys
15:38:36.0031 5088 agp440 - ok
15:38:36.0075 5088 aliide (5812713a477a3ad7363c7438ca2ee038) C:\windows\system32\drivers\aliide.sys
15:38:36.0091 5088 aliide - ok
15:38:36.0126 5088 amdide (1ff8b4431c353ce385c875f194924c0c) C:\windows\system32\drivers\amdide.sys
15:38:36.0148 5088 amdide - ok
15:38:36.0203 5088 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\windows\system32\DRIVERS\amdk8.sys
15:38:36.0283 5088 AmdK8 - ok
15:38:36.0461 5088 amdkmdag (650ddccd6657e20737433cb774521b81) C:\windows\system32\DRIVERS\atikmdag.sys
15:38:36.0709 5088 amdkmdag - ok
15:38:36.0843 5088 amdkmdap (f51b013c55b30dbe3ad59a7fe197c5ba) C:\windows\system32\DRIVERS\atikmpag.sys
15:38:36.0920 5088 amdkmdap - ok
15:38:36.0967 5088 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\windows\system32\DRIVERS\amdppm.sys
15:38:37.0021 5088 AmdPPM - ok
15:38:37.0186 5088 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\windows\system32\drivers\amdsata.sys
15:38:37.0220 5088 amdsata - ok
15:38:37.0260 5088 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\windows\system32\DRIVERS\amdsbs.sys
15:38:37.0283 5088 amdsbs - ok
15:38:37.0314 5088 amdxata (540daf1cea6094886d72126fd7c33048) C:\windows\system32\drivers\amdxata.sys
15:38:37.0341 5088 amdxata - ok
15:38:37.0381 5088 AppID (89a69c3f2f319b43379399547526d952) C:\windows\system32\drivers\appid.sys
15:38:37.0574 5088 AppID - ok
15:38:37.0695 5088 arc (c484f8ceb1717c540242531db7845c4e) C:\windows\system32\DRIVERS\arc.sys
15:38:37.0743 5088 arc - ok
15:38:37.0767 5088 arcsas (019af6924aefe7839f61c830227fe79c) C:\windows\system32\DRIVERS\arcsas.sys
15:38:37.0784 5088 arcsas - ok
15:38:37.0833 5088 AsyncMac (769765ce2cc62867468cea93969b2242) C:\windows\system32\DRIVERS\asyncmac.sys
15:38:38.0015 5088 AsyncMac - ok
15:38:38.0192 5088 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\windows\system32\drivers\atapi.sys
15:38:38.0230 5088 atapi - ok
15:38:38.0298 5088 AtiHdmiService (2d648572ba9a610952fcafba1e119c2d) C:\windows\system32\drivers\AtiHdmi.sys
15:38:38.0389 5088 AtiHdmiService - ok
15:38:38.0410 5088 AtiPcie (e82e61f46d1336447f4deff8c074f13e) C:\windows\system32\DRIVERS\AtiPcie64.sys
15:38:38.0423 5088 AtiPcie - ok
15:38:38.0501 5088 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\windows\system32\DRIVERS\bxvbda.sys
15:38:38.0594 5088 b06bdrv - ok
15:38:38.0634 5088 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\windows\system32\DRIVERS\b57nd60a.sys
15:38:38.0678 5088 b57nd60a - ok
15:38:38.0811 5088 BCM43XX (810be94a9e42309b3f74217ac28bc6ac) C:\windows\system32\DRIVERS\bcmwl664.sys
15:38:38.0887 5088 BCM43XX - ok
15:38:39.0002 5088 Beep (16a47ce2decc9b099349a5f840654746) C:\windows\system32\drivers\Beep.sys
15:38:39.0094 5088 Beep - ok
15:38:39.0165 5088 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\windows\system32\DRIVERS\blbdrive.sys
15:38:39.0204 5088 blbdrive - ok
15:38:39.0250 5088 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\windows\system32\DRIVERS\bowser.sys
15:38:39.0320 5088 bowser - ok
15:38:39.0360 5088 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\windows\system32\DRIVERS\BrFiltLo.sys
15:38:39.0465 5088 BrFiltLo - ok
15:38:39.0487 5088 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\windows\system32\DRIVERS\BrFiltUp.sys
15:38:39.0515 5088 BrFiltUp - ok
15:38:39.0559 5088 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\windows\System32\Drivers\Brserid.sys
15:38:39.0609 5088 Brserid - ok
15:38:39.0638 5088 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\windows\System32\Drivers\BrSerWdm.sys
15:38:39.0665 5088 BrSerWdm - ok
15:38:39.0704 5088 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\windows\System32\Drivers\BrUsbMdm.sys
15:38:39.0763 5088 BrUsbMdm - ok
15:38:39.0799 5088 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\windows\System32\Drivers\BrUsbSer.sys
15:38:39.0843 5088 BrUsbSer - ok
15:38:39.0915 5088 BthEnum (cf98190a94f62e405c8cb255018b2315) C:\windows\system32\drivers\BthEnum.sys
15:38:39.0990 5088 BthEnum - ok
15:38:40.0020 5088 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\windows\system32\DRIVERS\bthmodem.sys
15:38:40.0042 5088 BTHMODEM - ok
15:38:40.0073 5088 BthPan (02dd601b708dd0667e1331fa8518e9ff) C:\windows\system32\DRIVERS\bthpan.sys
15:38:40.0120 5088 BthPan - ok
15:38:40.0172 5088 BTHPORT (64c198198501f7560ee41d8d1efa7952) C:\windows\System32\Drivers\BTHport.sys
15:38:40.0224 5088 BTHPORT - ok
15:38:40.0283 5088 BTHUSB (f188b7394d81010767b6df3178519a37) C:\windows\System32\Drivers\BTHUSB.sys
15:38:40.0338 5088 BTHUSB - ok
15:38:40.0405 5088 btwampfl (7a2ce8c1bf4daa1f2766e21e9ca11078) C:\windows\system32\drivers\btwampfl.sys
15:38:40.0433 5088 btwampfl - ok
15:38:40.0472 5088 btwaudio (a75bf6802a967f5aacecc3c67febdf55) C:\windows\system32\drivers\btwaudio.sys
15:38:40.0489 5088 btwaudio - ok
15:38:40.0525 5088 btwavdt (d895dc213edbda5fcc53aad1f1e0e63b) C:\windows\system32\DRIVERS\btwavdt.sys
15:38:40.0548 5088 btwavdt - ok
15:38:40.0586 5088 btwl2cap (07096d2bc22ccb6cea5a532df0be8a75) C:\windows\system32\DRIVERS\btwl2cap.sys
15:38:40.0601 5088 btwl2cap - ok
15:38:40.0629 5088 btwrchid (6d7aa2bde0135599c5f230d69db3b420) C:\windows\system32\DRIVERS\btwrchid.sys
15:38:40.0644 5088 btwrchid - ok
15:38:40.0675 5088 cdfs (b8bd2bb284668c84865658c77574381a) C:\windows\system32\DRIVERS\cdfs.sys
15:38:40.0752 5088 cdfs - ok
15:38:40.0803 5088 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\windows\system32\drivers\cdrom.sys
15:38:40.0841 5088 cdrom - ok
15:38:40.0908 5088 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\windows\system32\DRIVERS\circlass.sys
15:38:40.0967 5088 circlass - ok
15:38:41.0003 5088 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\windows\system32\CLFS.sys
15:38:41.0028 5088 CLFS - ok
15:38:41.0119 5088 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\windows\system32\DRIVERS\CmBatt.sys
15:38:41.0170 5088 CmBatt - ok
15:38:41.0219 5088 cmdide (e19d3f095812725d88f9001985b94edd) C:\windows\system32\drivers\cmdide.sys
15:38:41.0254 5088 cmdide - ok
15:38:41.0302 5088 CNG (d5fea92400f12412b3922087c09da6a5) C:\windows\system32\Drivers\cng.sys
15:38:41.0333 5088 CNG - ok
15:38:41.0360 5088 Compbatt (102de219c3f61415f964c88e9085ad14) C:\windows\system32\DRIVERS\compbatt.sys
15:38:41.0379 5088 Compbatt - ok
15:38:41.0420 5088 CompositeBus (03edb043586cceba243d689bdda370a8) C:\windows\system32\drivers\CompositeBus.sys
15:38:41.0459 5088 CompositeBus - ok
15:38:41.0495 5088 crcdisk (1c827878a998c18847245fe1f34ee597) C:\windows\system32\DRIVERS\crcdisk.sys
15:38:41.0512 5088 crcdisk - ok
15:38:41.0591 5088 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\windows\system32\Drivers\dfsc.sys
15:38:41.0661 5088 DfsC - ok
15:38:41.0707 5088 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\windows\system32\drivers\discache.sys
15:38:41.0756 5088 discache - ok
15:38:41.0796 5088 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\windows\system32\DRIVERS\disk.sys
15:38:41.0825 5088 Disk - ok
15:38:41.0870 5088 drmkaud (9b19f34400d24df84c858a421c205754) C:\windows\system32\drivers\drmkaud.sys
15:38:41.0921 5088 drmkaud - ok
15:38:41.0974 5088 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\windows\System32\drivers\dxgkrnl.sys
15:38:42.0011 5088 DXGKrnl - ok
15:38:42.0036 5088 EagleX64 - ok
15:38:42.0165 5088 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\windows\system32\DRIVERS\evbda.sys
15:38:42.0279 5088 ebdrv - ok
15:38:42.0398 5088 elxstor (0e5da5369a0fcaea12456dd852545184) C:\windows\system32\DRIVERS\elxstor.sys
15:38:42.0459 5088 elxstor - ok
15:38:42.0503 5088 ErrDev (34a3c54752046e79a126e15c51db409b) C:\windows\system32\drivers\errdev.sys
15:38:42.0531 5088 ErrDev - ok
15:38:42.0598 5088 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\windows\system32\drivers\exfat.sys
15:38:42.0660 5088 exfat - ok
15:38:42.0691 5088 fastfat (0adc83218b66a6db380c330836f3e36d) C:\windows\system32\drivers\fastfat.sys
15:38:42.0754 5088 fastfat - ok
15:38:42.0808 5088 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\windows\system32\DRIVERS\fdc.sys
15:38:42.0854 5088 fdc - ok
15:38:42.0890 5088 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\windows\system32\drivers\fileinfo.sys
15:38:42.0908 5088 FileInfo - ok
15:38:42.0933 5088 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\windows\system32\drivers\filetrace.sys
15:38:42.0980 5088 Filetrace - ok
15:38:43.0012 5088 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\windows\system32\DRIVERS\flpydisk.sys
15:38:43.0038 5088 flpydisk - ok
15:38:43.0084 5088 FltMgr (da6b67270fd9db3697b20fce94950741) C:\windows\system32\drivers\fltmgr.sys
15:38:43.0109 5088 FltMgr - ok
15:38:43.0154 5088 FsDepends (d43703496149971890703b4b1b723eac) C:\windows\system32\drivers\FsDepends.sys
15:38:43.0172 5088 FsDepends - ok
15:38:43.0198 5088 Fs_Rec (e95ef8547de20cf0603557c0cf7a9462) C:\windows\system32\drivers\Fs_Rec.sys
15:38:43.0214 5088 Fs_Rec - ok
15:38:43.0247 5088 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\windows\system32\DRIVERS\fvevol.sys
15:38:43.0272 5088 fvevol - ok
15:38:43.0318 5088 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\windows\system32\DRIVERS\gagp30kx.sys
15:38:43.0334 5088 gagp30kx - ok
15:38:43.0368 5088 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\windows\system32\drivers\hcw85cir.sys
15:38:43.0424 5088 hcw85cir - ok
15:38:43.0477 5088 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\windows\system32\drivers\HdAudio.sys
15:38:43.0514 5088 HdAudAddService - ok
15:38:43.0573 5088 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\windows\system32\drivers\HDAudBus.sys
15:38:43.0636 5088 HDAudBus - ok
15:38:43.0683 5088 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\windows\system32\DRIVERS\HidBatt.sys
15:38:43.0731 5088 HidBatt - ok
15:38:43.0770 5088 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\windows\system32\DRIVERS\hidbth.sys
15:38:43.0810 5088 HidBth - ok
15:38:43.0834 5088 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\windows\system32\DRIVERS\hidir.sys
15:38:43.0883 5088 HidIr - ok
15:38:43.0958 5088 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\windows\system32\DRIVERS\hidusb.sys
15:38:43.0982 5088 HidUsb - ok
15:38:44.0103 5088 HpqKbFiltr (b98ee5d4535a685634b90f7e04de0df7) C:\windows\system32\DRIVERS\HpqKbFiltr.sys
15:38:44.0117 5088 HpqKbFiltr - ok
15:38:44.0181 5088 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\windows\system32\drivers\HpSAMD.sys
15:38:44.0196 5088 HpSAMD - ok
15:38:44.0251 5088 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\windows\system32\drivers\HTTP.sys
15:38:44.0316 5088 HTTP - ok
15:38:44.0352 5088 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\windows\system32\drivers\hwpolicy.sys
15:38:44.0366 5088 hwpolicy - ok
15:38:44.0414 5088 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\windows\system32\drivers\i8042prt.sys
15:38:44.0434 5088 i8042prt - ok
15:38:44.0469 5088 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\windows\system32\drivers\iaStorV.sys
15:38:44.0510 5088 iaStorV - ok
15:38:44.0555 5088 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\windows\system32\DRIVERS\iirsp.sys
15:38:44.0570 5088 iirsp - ok
15:38:44.0607 5088 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\windows\system32\drivers\intelide.sys
15:38:44.0636 5088 intelide - ok
15:38:44.0678 5088 intelppm (ada036632c664caa754079041cf1f8c1) C:\windows\system32\DRIVERS\intelppm.sys
15:38:44.0707 5088 intelppm - ok
15:38:44.0754 5088 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\windows\system32\DRIVERS\ipfltdrv.sys
15:38:44.0807 5088 IpFilterDriver - ok
15:38:44.0848 5088 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\windows\system32\drivers\IPMIDrv.sys
15:38:44.0876 5088 IPMIDRV - ok
15:38:44.0914 5088 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\windows\system32\drivers\ipnat.sys
15:38:44.0976 5088 IPNAT - ok
15:38:45.0010 5088 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\windows\system32\drivers\irenum.sys
15:38:45.0085 5088 IRENUM - ok
15:38:45.0114 5088 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\windows\system32\drivers\isapnp.sys
15:38:45.0130 5088 isapnp - ok
15:38:45.0170 5088 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\windows\system32\drivers\msiscsi.sys
15:38:45.0193 5088 iScsiPrt - ok
15:38:45.0237 5088 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\windows\system32\drivers\kbdclass.sys
15:38:45.0254 5088 kbdclass - ok
15:38:45.0304 5088 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\windows\system32\drivers\kbdhid.sys
15:38:45.0334 5088 kbdhid - ok
15:38:45.0380 5088 KSecDD (ccd53b5bd33ce0c889e830d839c8b66e) C:\windows\system32\Drivers\ksecdd.sys
15:38:45.0399 5088 KSecDD - ok
15:38:45.0431 5088 KSecPkg (9ff918a261752c12639e8ad4208d2c2f) C:\windows\system32\Drivers\ksecpkg.sys
15:38:45.0452 5088 KSecPkg - ok
15:38:45.0512 5088 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\windows\system32\drivers\ksthunk.sys
15:38:45.0581 5088 ksthunk - ok
15:38:45.0658 5088 lltdio (1538831cf8ad2979a04c423779465827) C:\windows\system32\DRIVERS\lltdio.sys
15:38:45.0716 5088 lltdio - ok
15:38:45.0781 5088 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\windows\system32\DRIVERS\lsi_fc.sys
15:38:45.0799 5088 LSI_FC - ok
15:38:45.0840 5088 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\windows\system32\DRIVERS\lsi_sas.sys
15:38:45.0858 5088 LSI_SAS - ok
15:38:45.0882 5088 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\windows\system32\DRIVERS\lsi_sas2.sys
15:38:45.0899 5088 LSI_SAS2 - ok
15:38:45.0922 5088 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\windows\system32\DRIVERS\lsi_scsi.sys
15:38:45.0941 5088 LSI_SCSI - ok
15:38:45.0989 5088 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\windows\system32\drivers\luafv.sys
15:38:46.0044 5088 luafv - ok
15:38:46.0143 5088 MBAMProtector (23a854450dab5c9b7a42ab9be6f2e4bd) C:\windows\system32\drivers\mbam.sys
15:38:46.0166 5088 MBAMProtector - ok
15:38:46.0234 5088 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\windows\system32\DRIVERS\megasas.sys
15:38:46.0269 5088 megasas - ok
15:38:46.0294 5088 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\windows\system32\DRIVERS\MegaSR.sys
15:38:46.0318 5088 MegaSR - ok
15:38:46.0364 5088 Modem (800ba92f7010378b09f9ed9270f07137) C:\windows\system32\drivers\modem.sys
15:38:46.0415 5088 Modem - ok
15:38:46.0457 5088 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\windows\system32\DRIVERS\monitor.sys
15:38:46.0492 5088 monitor - ok
15:38:46.0540 5088 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\windows\system32\DRIVERS\mouclass.sys
15:38:46.0556 5088 mouclass - ok
15:38:46.0607 5088 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\windows\system32\DRIVERS\mouhid.sys
15:38:46.0638 5088 mouhid - ok
15:38:46.0677 5088 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\windows\system32\drivers\mountmgr.sys
15:38:46.0696 5088 mountmgr - ok
15:38:46.0737 5088 MpFilter (c177a7ebf5e8a0b596f618870516cab8) C:\windows\system32\DRIVERS\MpFilter.sys
15:38:46.0763 5088 MpFilter - ok
15:38:46.0792 5088 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\windows\system32\drivers\mpio.sys
15:38:46.0812 5088 mpio - ok
15:38:46.0843 5088 MpNWMon (8fbf6b31fe8af1833d93c5913d5b4d55) C:\windows\system32\DRIVERS\MpNWMon.sys
15:38:46.0860 5088 MpNWMon - ok
15:38:46.0897 5088 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\windows\system32\drivers\mpsdrv.sys
15:38:46.0938 5088 mpsdrv - ok
15:38:46.0983 5088 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\windows\system32\drivers\mrxdav.sys
15:38:47.0088 5088 MRxDAV - ok
15:38:47.0127 5088 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\windows\system32\DRIVERS\mrxsmb.sys
15:38:47.0178 5088 mrxsmb - ok
15:38:47.0216 5088 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\windows\system32\DRIVERS\mrxsmb10.sys
15:38:47.0247 5088 mrxsmb10 - ok
15:38:47.0264 5088 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\windows\system32\DRIVERS\mrxsmb20.sys
15:38:47.0298 5088 mrxsmb20 - ok
15:38:47.0317 5088 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\windows\system32\drivers\msahci.sys
15:38:47.0333 5088 msahci - ok
15:38:47.0368 5088 msdsm (db801a638d011b9633829eb6f663c900) C:\windows\system32\drivers\msdsm.sys
15:38:47.0387 5088 msdsm - ok
15:38:47.0431 5088 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\windows\system32\drivers\Msfs.sys
15:38:47.0487 5088 Msfs - ok
15:38:47.0527 5088 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\windows\System32\drivers\mshidkmdf.sys
15:38:47.0590 5088 mshidkmdf - ok
15:38:47.0630 5088 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\windows\system32\drivers\msisadrv.sys
15:38:47.0652 5088 msisadrv - ok
15:38:47.0708 5088 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\windows\system32\drivers\MSKSSRV.sys
15:38:47.0758 5088 MSKSSRV - ok
15:38:47.0794 5088 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\windows\system32\drivers\MSPCLOCK.sys
15:38:47.0843 5088 MSPCLOCK - ok
15:38:47.0857 5088 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\windows\system32\drivers\MSPQM.sys
15:38:47.0910 5088 MSPQM - ok
15:38:47.0951 5088 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\windows\system32\drivers\MsRPC.sys
15:38:47.0975 5088 MsRPC - ok
15:38:48.0019 5088 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\windows\system32\drivers\mssmbios.sys
15:38:48.0047 5088 mssmbios - ok
15:38:48.0072 5088 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\windows\system32\drivers\MSTEE.sys
15:38:48.0128 5088 MSTEE - ok
15:38:48.0157 5088 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\windows\system32\DRIVERS\MTConfig.sys
15:38:48.0193 5088 MTConfig - ok
15:38:48.0234 5088 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\windows\system32\Drivers\mup.sys
15:38:48.0251 5088 Mup - ok
15:38:48.0300 5088 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\windows\system32\DRIVERS\nwifi.sys
15:38:48.0345 5088 NativeWifiP - ok
15:38:48.0405 5088 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\windows\system32\drivers\ndis.sys
15:38:48.0448 5088 NDIS - ok
15:38:48.0486 5088 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\windows\system32\DRIVERS\ndiscap.sys
15:38:48.0528 5088 NdisCap - ok
15:38:48.0565 5088 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\windows\system32\DRIVERS\ndistapi.sys
15:38:48.0614 5088 NdisTapi - ok
15:38:48.0639 5088 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\windows\system32\DRIVERS\ndisuio.sys
15:38:48.0697 5088 Ndisuio - ok
15:38:48.0721 5088 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\windows\system32\DRIVERS\ndiswan.sys
15:38:48.0785 5088 NdisWan - ok
15:38:48.0816 5088 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\windows\system32\drivers\NDProxy.sys
15:38:48.0869 5088 NDProxy - ok
15:38:48.0909 5088 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\windows\system32\DRIVERS\netbios.sys
15:38:48.0948 5088 NetBIOS - ok
15:38:48.0991 5088 NetBT (09594d1089c523423b32a4229263f068) C:\windows\system32\DRIVERS\netbt.sys
15:38:49.0065 5088 NetBT - ok
15:38:49.0156 5088 nfrd960 (77889813be4d166cdab78ddba990da92) C:\windows\system32\DRIVERS\nfrd960.sys
15:38:49.0173 5088 nfrd960 - ok
15:38:49.0207 5088 NisDrv (5f7d72cbcdd025af1f38fdeee5646968) C:\windows\system32\DRIVERS\NisDrvWFP.sys
15:38:49.0223 5088 NisDrv - ok
15:38:49.0265 5088 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\windows\system32\drivers\Npfs.sys
15:38:49.0317 5088 Npfs - ok
15:38:49.0349 5088 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\windows\system32\drivers\nsiproxy.sys
15:38:49.0396 5088 nsiproxy - ok
15:38:49.0469 5088 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\windows\system32\drivers\Ntfs.sys
15:38:49.0529 5088 Ntfs - ok
15:38:49.0555 5088 Null (9899284589f75fa8724ff3d16aed75c1) C:\windows\system32\drivers\Null.sys
15:38:49.0606 5088 Null - ok
15:38:49.0640 5088 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\windows\system32\drivers\nvraid.sys
15:38:49.0660 5088 nvraid - ok
15:38:49.0683 5088 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\windows\system32\drivers\nvstor.sys
15:38:49.0702 5088 nvstor - ok
15:38:49.0726 5088 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\windows\system32\drivers\nv_agp.sys
15:38:49.0748 5088 nv_agp - ok
15:38:49.0783 5088 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\windows\system32\drivers\ohci1394.sys
15:38:49.0811 5088 ohci1394 - ok
15:38:49.0874 5088 Parport (0086431c29c35be1dbc43f52cc273887) C:\windows\system32\DRIVERS\parport.sys
15:38:49.0922 5088 Parport - ok
15:38:49.0950 5088 partmgr (871eadac56b0a4c6512bbe32753ccf79) C:\windows\system32\drivers\partmgr.sys
15:38:49.0972 5088 partmgr - ok
15:38:50.0007 5088 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\windows\system32\drivers\pci.sys
15:38:50.0027 5088 pci - ok
15:38:50.0049 5088 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\windows\system32\drivers\pciide.sys
15:38:50.0065 5088 pciide - ok
15:38:50.0092 5088 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\windows\system32\DRIVERS\pcmcia.sys
15:38:50.0117 5088 pcmcia - ok
15:38:50.0142 5088 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\windows\system32\drivers\pcw.sys
15:38:50.0158 5088 pcw - ok
15:38:50.0201 5088 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\windows\system32\drivers\peauth.sys
15:38:50.0304 5088 PEAUTH - ok
15:38:50.0428 5088 pfyivdan (a412d2fd7c0e1b50a7845fa083894223) C:\windows\system32\drivers\pfyivdan.sys
15:38:50.0454 5088 pfyivdan - ok
15:38:50.0548 5088 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\windows\system32\DRIVERS\raspptp.sys
15:38:50.0602 5088 PptpMiniport - ok
15:38:50.0638 5088 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\windows\system32\DRIVERS\processr.sys
15:38:50.0667 5088 Processor - ok
15:38:50.0736 5088 Psched (0557cf5a2556bd58e26384169d72438d) C:\windows\system32\DRIVERS\pacer.sys
15:38:50.0786 5088 Psched - ok
15:38:50.0821 5088 PxHlpa64 (87b04878a6d59d6c79251dc960c674c1) C:\windows\system32\Drivers\PxHlpa64.sys
15:38:50.0854 5088 PxHlpa64 - ok
15:38:50.0924 5088 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\windows\system32\DRIVERS\ql2300.sys
15:38:50.0973 5088 ql2300 - ok
15:38:50.0998 5088 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\windows\system32\DRIVERS\ql40xx.sys
15:38:51.0018 5088 ql40xx - ok
15:38:51.0062 5088 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\windows\system32\drivers\qwavedrv.sys
15:38:51.0096 5088 QWAVEdrv - ok
15:38:51.0131 5088 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\windows\system32\DRIVERS\rasacd.sys
15:38:51.0190 5088 RasAcd - ok
15:38:51.0240 5088 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\windows\system32\DRIVERS\AgileVpn.sys
15:38:51.0283 5088 RasAgileVpn - ok
15:38:51.0312 5088 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\windows\system32\DRIVERS\rasl2tp.sys
15:38:51.0371 5088 Rasl2tp - ok
15:38:51.0391 5088 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\windows\system32\DRIVERS\raspppoe.sys
15:38:51.0437 5088 RasPppoe - ok
15:38:51.0459 5088 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\windows\system32\DRIVERS\rassstp.sys
15:38:51.0512 5088 RasSstp - ok
15:38:51.0541 5088 rdbss (77f665941019a1594d887a74f301fa2f) C:\windows\system32\DRIVERS\rdbss.sys
15:38:51.0604 5088 rdbss - ok
15:38:51.0648 5088 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\windows\system32\DRIVERS\rdpbus.sys
15:38:51.0681 5088 rdpbus - ok
15:38:51.0701 5088 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\windows\system32\DRIVERS\RDPCDD.sys
15:38:51.0740 5088 RDPCDD - ok
15:38:51.0768 5088 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\windows\system32\drivers\rdpencdd.sys
15:38:51.0823 5088 RDPENCDD - ok
15:38:51.0854 5088 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\windows\system32\drivers\rdprefmp.sys
15:38:51.0905 5088 RDPREFMP - ok
15:38:51.0945 5088 RDPWD (15b66c206b5cb095bab980553f38ed23) C:\windows\system32\drivers\RDPWD.sys
15:38:51.0988 5088 RDPWD - ok
15:38:52.0035 5088 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\windows\system32\drivers\rdyboost.sys
15:38:52.0058 5088 rdyboost - ok
15:38:52.0119 5088 RFCOMM (3dd798846e2c28102b922c56e71b7932) C:\windows\system32\DRIVERS\rfcomm.sys
15:38:52.0155 5088 RFCOMM - ok
15:38:52.0226 5088 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\windows\system32\DRIVERS\rspndr.sys
15:38:52.0269 5088 rspndr - ok
15:38:52.0319 5088 RTL8167 (ba3e57c89e6f63808d3f2b11e1a2ad3c) C:\windows\system32\DRIVERS\Rt64win7.sys
15:38:52.0341 5088 RTL8167 - ok
15:38:52.0390 5088 rtsuvc (73157d4a4f6da18c5148e47cb958af58) C:\windows\system32\DRIVERS\rtsuvc.sys
15:38:52.0439 5088 rtsuvc - ok
15:38:52.0501 5088 s117bus (6c90231046fb9fc4123c42179832817f) C:\windows\system32\DRIVERS\s117bus.sys
15:38:52.0522 5088 s117bus - ok
15:38:52.0546 5088 s117mdfl (3279341c90ef8f226af77623039f4495) C:\windows\system32\DRIVERS\s117mdfl.sys
15:38:52.0561 5088 s117mdfl - ok
15:38:52.0587 5088 s117mdm (73e331f555279e753b312675ddaf4516) C:\windows\system32\DRIVERS\s117mdm.sys
15:38:52.0606 5088 s117mdm - ok
15:38:52.0648 5088 s117mgmt (d420731fd2880f0f40f20771efaad671) C:\windows\system32\DRIVERS\s117mgmt.sys
15:38:52.0669 5088 s117mgmt - ok
15:38:52.0701 5088 s117nd5 (98236ca5a9a77d0983ac3f6d6527c796) C:\windows\system32\DRIVERS\s117nd5.sys
15:38:52.0741 5088 s117nd5 - ok
15:38:52.0778 5088 s117obex (1dd613909477ae298c98e86617ec356b) C:\windows\system32\DRIVERS\s117obex.sys
15:38:52.0796 5088 s117obex - ok
15:38:52.0831 5088 s117unic (9a22df5fe9b6be279d820776a6adb56f) C:\windows\system32\DRIVERS\s117unic.sys
15:38:52.0849 5088 s117unic - ok
15:38:52.0992 5088 SASDIFSV (3289766038db2cb14d07dc84392138d5) C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
15:38:53.0023 5088 SASDIFSV - ok
15:38:53.0081 5088 SASKUTIL (58a38e75f3316a83c23df6173d41f2b5) C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
15:38:53.0096 5088 SASKUTIL - ok
15:38:53.0141 5088 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\windows\system32\drivers\sbp2port.sys
15:38:53.0160 5088 sbp2port - ok
15:38:53.0211 5088 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\windows\system32\DRIVERS\scfilter.sys
15:38:53.0261 5088 scfilter - ok
15:38:53.0326 5088 sdbus (111e0ebc0ad79cb0fa014b907b231cf0) C:\windows\system32\drivers\sdbus.sys
15:38:53.0356 5088 sdbus - ok
15:38:53.0406 5088 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\windows\system32\drivers\secdrv.sys
15:38:53.0460 5088 secdrv - ok
15:38:53.0522 5088 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\windows\system32\DRIVERS\serenum.sys
15:38:53.0557 5088 Serenum - ok
15:38:53.0592 5088 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\windows\system32\DRIVERS\serial.sys
15:38:53.0611 5088 Serial - ok
15:38:53.0649 5088 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\windows\system32\DRIVERS\sermouse.sys
15:38:53.0667 5088 sermouse - ok
15:38:53.0724 5088 sffdisk (a554811bcd09279536440c964ae35bbf) C:\windows\system32\drivers\sffdisk.sys
15:38:53.0755 5088 sffdisk - ok
15:38:53.0781 5088 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\windows\system32\drivers\sffp_mmc.sys
15:38:53.0798 5088 sffp_mmc - ok
15:38:53.0811 5088 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\windows\system32\drivers\sffp_sd.sys
15:38:53.0842 5088 sffp_sd - ok
15:38:53.0879 5088 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\windows\system32\DRIVERS\sfloppy.sys
15:38:53.0904 5088 sfloppy - ok
15:38:53.0963 5088 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\windows\system32\DRIVERS\SiSRaid2.sys
15:38:53.0979 5088 SiSRaid2 - ok
15:38:54.0000 5088 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\windows\system32\DRIVERS\sisraid4.sys
15:38:54.0018 5088 SiSRaid4 - ok
15:38:54.0070 5088 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\windows\system32\DRIVERS\smb.sys
15:38:54.0128 5088 Smb - ok
15:38:54.0179 5088 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\windows\system32\drivers\spldr.sys
15:38:54.0200 5088 spldr - ok
15:38:54.0287 5088 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\windows\system32\DRIVERS\srv.sys
15:38:54.0349 5088 srv - ok
15:38:54.0367 5088 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\windows\system32\DRIVERS\srv2.sys
15:38:54.0418 5088 srv2 - ok
15:38:54.0434 5088 srvnet (27e461f0be5bff5fc737328f749538c3) C:\windows\system32\DRIVERS\srvnet.sys
15:38:54.0471 5088 srvnet - ok
15:38:54.0564 5088 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\windows\system32\DRIVERS\stexstor.sys
15:38:54.0580 5088 stexstor - ok
15:38:54.0641 5088 STHDA (4a9d087c9a97071b9d06db38567da906) C:\windows\system32\DRIVERS\stwrt64.sys
15:38:54.0701 5088 STHDA - ok
15:38:54.0760 5088 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\windows\system32\drivers\swenum.sys
15:38:54.0778 5088 swenum - ok
15:38:54.0828 5088 SynTP (3c80203c725c28cea5713d1ab242880a) C:\windows\system32\DRIVERS\SynTP.sys
15:38:54.0852 5088 SynTP - ok
15:38:54.0947 5088 Tcpip (f0e98c00a09fdf791525829a1d14240f) C:\windows\system32\drivers\tcpip.sys
15:38:55.0017 5088 Tcpip - ok
15:38:55.0421 5088 TCPIP6 (f0e98c00a09fdf791525829a1d14240f) C:\windows\system32\DRIVERS\tcpip.sys
15:38:55.0477 5088 TCPIP6 - ok
15:38:55.0647 5088 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\windows\system32\drivers\tcpipreg.sys
15:38:55.0858 5088 tcpipreg - ok
15:38:55.0901 5088 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\windows\system32\drivers\tdpipe.sys
15:38:56.0053 5088 TDPIPE - ok
15:38:56.0067 5088 TDTCP (e4245bda3190a582d55ed09e137401a9) C:\windows\system32\drivers\tdtcp.sys
15:38:56.0238 5088 TDTCP - ok
15:38:56.0291 5088 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\windows\system32\DRIVERS\tdx.sys
15:38:56.0493 5088 tdx - ok
15:38:56.0526 5088 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\windows\system32\drivers\termdd.sys
15:38:56.0590 5088 TermDD - ok
15:38:56.0650 5088 TPM (dbcc20c02e8a3e43b03c304a4e40a84f) C:\windows\system32\drivers\tpm.sys
15:38:56.0798 5088 TPM - ok
15:38:56.0854 5088 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\windows\system32\DRIVERS\tssecsrv.sys
15:38:57.0045 5088 tssecsrv - ok
15:38:57.0230 5088 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\windows\system32\drivers\tsusbflt.sys
15:38:57.0405 5088 TsUsbFlt - ok
15:38:57.0528 5088 TuneUpUtilitiesDrv (dcc94c51d27c7ec0dadeca8f64c94fcf) C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesDriver64.sys
15:38:57.0605 5088 TuneUpUtilitiesDrv - ok
15:38:57.0718 5088 tunnel (3566a8daafa27af944f5d705eaa64894) C:\windows\system32\DRIVERS\tunnel.sys
15:38:57.0895 5088 tunnel - ok
15:38:57.0930 5088 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\windows\system32\DRIVERS\uagp35.sys
15:38:58.0003 5088 uagp35 - ok
15:38:58.0103 5088 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\windows\system32\DRIVERS\udfs.sys
15:38:58.0290 5088 udfs - ok
15:38:58.0337 5088 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\windows\system32\drivers\uliagpkx.sys
15:38:58.0401 5088 uliagpkx - ok
15:38:58.0440 5088 umbus (dc54a574663a895c8763af0fa1ff7561) C:\windows\system32\drivers\umbus.sys
15:38:58.0577 5088 umbus - ok
15:38:58.0619 5088 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\windows\system32\DRIVERS\umpass.sys
15:38:58.0747 5088 UmPass - ok
15:38:58.0777 5088 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\windows\system32\DRIVERS\usbccgp.sys
15:38:59.0083 5088 usbccgp - ok
15:38:59.0112 5088 usbcir (af0892a803fdda7492f595368e3b68e7) C:\windows\system32\drivers\usbcir.sys
15:38:59.0249 5088 usbcir - ok
15:38:59.0278 5088 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\windows\system32\DRIVERS\usbehci.sys
15:38:59.0430 5088 usbehci - ok
15:38:59.0473 5088 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\windows\system32\DRIVERS\usbhub.sys
15:38:59.0618 5088 usbhub - ok
15:38:59.0638 5088 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\windows\system32\DRIVERS\usbohci.sys
15:38:59.0780 5088 usbohci - ok
15:38:59.0812 5088 usbprint (73188f58fb384e75c4063d29413cee3d) C:\windows\system32\DRIVERS\usbprint.sys
15:38:59.0951 5088 usbprint - ok
15:39:00.0008 5088 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\windows\system32\DRIVERS\usbscan.sys
15:39:00.0221 5088 usbscan - ok
15:39:00.0655 5088 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\windows\system32\DRIVERS\USBSTOR.SYS
15:39:00.0825 5088 USBSTOR - ok
15:39:00.0857 5088 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\windows\system32\drivers\usbuhci.sys
15:39:00.0993 5088 usbuhci - ok
15:39:01.0053 5088 usbvideo (454800c2bc7f3927ce030141ee4f4c50) C:\windows\System32\Drivers\usbvideo.sys
15:39:01.0254 5088 usbvideo - ok
15:39:01.0338 5088 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\windows\system32\drivers\vdrvroot.sys
15:39:01.0372 5088 vdrvroot - ok
15:39:01.0418 5088 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\windows\system32\DRIVERS\vgapnp.sys
15:39:01.0516 5088 vga - ok
15:39:01.0553 5088 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\windows\System32\drivers\vga.sys
15:39:01.0739 5088 VgaSave - ok
15:39:01.0774 5088 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\windows\system32\drivers\vhdmp.sys
15:39:01.0833 5088 vhdmp - ok
15:39:01.0849 5088 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\windows\system32\drivers\viaide.sys
15:39:01.0923 5088 viaide - ok
15:39:01.0937 5088 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\windows\system32\drivers\volmgr.sys
15:39:01.0983 5088 volmgr - ok
15:39:02.0017 5088 volmgrx (a255814907c89be58b79ef2f189b843b) C:\windows\system32\drivers\volmgrx.sys
15:39:02.0050 5088 volmgrx - ok
15:39:02.0085 5088 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\windows\system32\drivers\volsnap.sys
15:39:02.0123 5088 volsnap - ok
15:39:02.0175 5088 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\windows\system32\DRIVERS\vsmraid.sys
15:39:02.0261 5088 vsmraid - ok
15:39:02.0297 5088 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\windows\system32\DRIVERS\vwifibus.sys
15:39:02.0431 5088 vwifibus - ok
15:39:02.0479 5088 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\windows\system32\DRIVERS\vwififlt.sys
15:39:02.0634 5088 vwififlt - ok
15:39:02.0665 5088 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\windows\system32\DRIVERS\wacompen.sys
15:39:02.0802 5088 WacomPen - ok
15:39:02.0848 5088 WANARP (356afd78a6ed4457169241ac3965230c) C:\windows\system32\DRIVERS\wanarp.sys
15:39:02.0986 5088 WANARP - ok
15:39:02.0996 5088 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\windows\system32\DRIVERS\wanarp.sys
15:39:03.0103 5088 Wanarpv6 - ok
15:39:03.0158 5088 Wd (72889e16ff12ba0f235467d6091b17dc) C:\windows\system32\DRIVERS\wd.sys
15:39:03.0213 5088 Wd - ok
15:39:03.0257 5088 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\windows\system32\drivers\Wdf01000.sys
15:39:03.0288 5088 Wdf01000 - ok
15:39:03.0354 5088 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\windows\system32\DRIVERS\wfplwf.sys
15:39:03.0468 5088 WfpLwf - ok
15:39:03.0495 5088 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\windows\system32\drivers\wimmount.sys
15:39:03.0579 5088 WIMMount - ok
15:39:03.0684 5088 WinUsb (fe88b288356e7b47b74b13372add906d) C:\windows\system32\DRIVERS\WinUsb.sys
15:39:03.0808 5088 WinUsb - ok
15:39:03.0861 5088 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\windows\system32\drivers\wmiacpi.sys
15:39:03.0947 5088 WmiAcpi - ok
15:39:04.0011 5088 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\windows\system32\drivers\ws2ifsl.sys
15:39:04.0155 5088 ws2ifsl - ok
15:39:04.0224 5088 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\windows\system32\drivers\WudfPf.sys
15:39:04.0396 5088 WudfPf - ok
15:39:04.0440 5088 WUDFRd (cf8d590be3373029d57af80914190682) C:\windows\system32\DRIVERS\WUDFRd.sys
15:39:04.0646 5088 WUDFRd - ok
15:39:04.0705 5088 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
15:39:04.0764 5088 \Device\Harddisk0\DR0 - ok
15:39:04.0771 5088 Boot (0x1200) (594e26258254d17e844ba490bc76ca76) \Device\Harddisk0\DR0\Partition0
15:39:04.0772 5088 \Device\Harddisk0\DR0\Partition0 - ok
15:39:04.0808 5088 Boot (0x1200) (eb0ab80f11d30187bb82490b988b230a) \Device\Harddisk0\DR0\Partition1
15:39:04.0809 5088 \Device\Harddisk0\DR0\Partition1 - ok
15:39:04.0837 5088 Boot (0x1200) (3caf28d5f3cacd731376cdf3f51a4e74) \Device\Harddisk0\DR0\Partition2
15:39:04.0838 5088 \Device\Harddisk0\DR0\Partition2 - ok
15:39:04.0855 5088 Boot (0x1200) (7dbacad873b9409c3fad82a85192ccbe) \Device\Harddisk0\DR0\Partition3
15:39:04.0856 5088 \Device\Harddisk0\DR0\Partition3 - ok
15:39:04.0859 5088 ============================================================
15:39:04.0859 5088 Scan finished
15:39:04.0859 5088 ============================================================
15:39:04.0876 0752 Detected object count: 0
15:39:04.0876 0752 Actual detected object count: 0
15:39:11.0589 3080 ============================================================
15:39:11.0589 3080 Scan started
15:39:11.0589 3080 Mode: Manual; SigCheck; TDLFS;
15:39:11.0589 3080 ============================================================
15:39:11.0845 3080 1394ohci (a87d604aea360176311474c87a63bb88) C:\windows\system32\drivers\1394ohci.sys
15:39:11.0914 3080 1394ohci - ok
15:39:11.0942 3080 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\windows\system32\drivers\ACPI.sys
15:39:11.0982 3080 ACPI - ok
15:39:12.0011 3080 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\windows\system32\drivers\acpipmi.sys
15:39:12.0091 3080 AcpiPmi - ok
15:39:12.0144 3080 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\windows\system32\DRIVERS\adp94xx.sys
15:39:12.0197 3080 adp94xx - ok
15:39:12.0226 3080 adpahci (597f78224ee9224ea1a13d6350ced962) C:\windows\system32\DRIVERS\adpahci.sys
15:39:12.0263 3080 adpahci - ok
15:39:12.0289 3080 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\windows\system32\DRIVERS\adpu320.sys
15:39:12.0360 3080 adpu320 - ok
15:39:12.0418 3080 AFD (d5b031c308a409a0a576bff4cf083d30) C:\windows\system32\drivers\afd.sys
15:39:12.0481 3080 AFD - ok
15:39:12.0510 3080 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\windows\system32\drivers\agp440.sys
15:39:12.0542 3080 agp440 - ok
15:39:12.0569 3080 aliide (5812713a477a3ad7363c7438ca2ee038) C:\windows\system32\drivers\aliide.sys
15:39:12.0607 3080 aliide - ok
15:39:12.0626 3080 amdide (1ff8b4431c353ce385c875f194924c0c) C:\windows\system32\drivers\amdide.sys
15:39:12.0674 3080 amdide - ok
15:39:12.0719 3080 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\windows\system32\DRIVERS\amdk8.sys
15:39:12.0775 3080 AmdK8 - ok
15:39:12.0948 3080 amdkmdag (650ddccd6657e20737433cb774521b81) C:\windows\system32\DRIVERS\atikmdag.sys
15:39:13.0119 3080 amdkmdag - ok
15:39:13.0212 3080 amdkmdap (f51b013c55b30dbe3ad59a7fe197c5ba) C:\windows\system32\DRIVERS\atikmpag.sys
15:39:13.0298 3080 amdkmdap - ok
15:39:13.0338 3080 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\windows\system32\DRIVERS\amdppm.sys
15:39:13.0399 3080 AmdPPM - ok
15:39:13.0435 3080 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\windows\system32\drivers\amdsata.sys
15:39:13.0459 3080 amdsata - ok
15:39:13.0497 3080 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\windows\system32\DRIVERS\amdsbs.sys
15:39:13.0525 3080 amdsbs - ok
15:39:13.0552 3080 amdxata (540daf1cea6094886d72126fd7c33048) C:\windows\system32\drivers\amdxata.sys
15:39:13.0586 3080 amdxata - ok
15:39:13.0619 3080 AppID (89a69c3f2f319b43379399547526d952) C:\windows\system32\drivers\appid.sys
15:39:13.0743 3080 AppID - ok
15:39:13.0776 3080 arc (c484f8ceb1717c540242531db7845c4e) C:\windows\system32\DRIVERS\arc.sys
15:39:13.0812 3080 arc - ok
15:39:13.0850 3080 arcsas (019af6924aefe7839f61c830227fe79c) C:\windows\system32\DRIVERS\arcsas.sys
15:39:13.0878 3080 arcsas - ok
15:39:13.0915 3080 AsyncMac (769765ce2cc62867468cea93969b2242) C:\windows\system32\DRIVERS\asyncmac.sys
15:39:13.0999 3080 AsyncMac - ok
15:39:14.0023 3080 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\windows\system32\drivers\atapi.sys
15:39:14.0058 3080 atapi - ok
15:39:14.0091 3080 AtiHdmiService (2d648572ba9a610952fcafba1e119c2d) C:\windows\system32\drivers\AtiHdmi.sys
15:39:14.0160 3080 AtiHdmiService - ok
15:39:14.0187 3080 AtiPcie (e82e61f46d1336447f4deff8c074f13e) C:\windows\system32\DRIVERS\AtiPcie64.sys
15:39:14.0248 3080 AtiPcie - ok
15:39:14.0295 3080 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\windows\system32\DRIVERS\bxvbda.sys
15:39:14.0395 3080 b06bdrv - ok
15:39:14.0427 3080 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\windows\system32\DRIVERS\b57nd60a.sys
15:39:14.0495 3080 b57nd60a - ok
15:39:14.0598 3080 BCM43XX (810be94a9e42309b3f74217ac28bc6ac) C:\windows\system32\DRIVERS\bcmwl664.sys
15:39:14.0773 3080 BCM43XX - ok
15:39:14.0862 3080 Beep (16a47ce2decc9b099349a5f840654746) C:\windows\system32\drivers\Beep.sys
15:39:14.0958 3080 Beep - ok
15:39:15.0002 3080 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\windows\system32\DRIVERS\blbdrive.sys
15:39:15.0062 3080 blbdrive - ok
15:39:15.0099 3080 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\windows\system32\DRIVERS\bowser.sys
15:39:15.0157 3080 bowser - ok
15:39:15.0186 3080 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\windows\system32\DRIVERS\BrFiltLo.sys
15:39:15.0244 3080 BrFiltLo - ok
15:39:15.0258 3080 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\windows\system32\DRIVERS\BrFiltUp.sys
15:39:15.0341 3080 BrFiltUp - ok
15:39:15.0374 3080 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\windows\System32\Drivers\Brserid.sys
15:39:15.0530 3080 Brserid - ok
15:39:16.0081 3080 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\windows\System32\Drivers\BrSerWdm.sys
15:39:16.0280 3080 BrSerWdm - ok
15:39:17.0034 3080 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\windows\System32\Drivers\BrUsbMdm.sys
15:39:17.0186 3080 BrUsbMdm - ok
15:39:17.0733 3080 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\windows\System32\Drivers\BrUsbSer.sys
15:39:17.0859 3080 BrUsbSer - ok
15:39:18.0507 3080 BthEnum (cf98190a94f62e405c8cb255018b2315) C:\windows\system32\drivers\BthEnum.sys
15:39:18.0635 3080 BthEnum - ok
15:39:18.0746 3080 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\windows\system32\DRIVERS\bthmodem.sys
15:39:18.0805 3080 BTHMODEM - ok
15:39:18.0833 3080 BthPan (02dd601b708dd0667e1331fa8518e9ff) C:\windows\system32\DRIVERS\bthpan.sys
15:39:18.0904 3080 BthPan - ok
15:39:18.0965 3080 BTHPORT (64c198198501f7560ee41d8d1efa7952) C:\windows\System32\Drivers\BTHport.sys
15:39:19.0044 3080 BTHPORT - ok
15:39:19.0063 3080 BTHUSB (f188b7394d81010767b6df3178519a37) C:\windows\System32\Drivers\BTHUSB.sys
15:39:19.0166 3080 BTHUSB - ok
15:39:19.0216 3080 btwampfl (7a2ce8c1bf4daa1f2766e21e9ca11078) C:\windows\system32\drivers\btwampfl.sys
15:39:19.0375 3080 btwampfl - ok
15:39:19.0411 3080 btwaudio (a75bf6802a967f5aacecc3c67febdf55) C:\windows\system32\drivers\btwaudio.sys
15:39:19.0532 3080 btwaudio - ok
15:39:19.0574 3080 btwavdt (d895dc213edbda5fcc53aad1f1e0e63b) C:\windows\system32\DRIVERS\btwavdt.sys
15:39:19.0723 3080 btwavdt - ok
15:39:19.0765 3080 btwl2cap (07096d2bc22ccb6cea5a532df0be8a75) C:\windows\system32\DRIVERS\btwl2cap.sys
15:39:19.0852 3080 btwl2cap - ok
15:39:19.0877 3080 btwrchid (6d7aa2bde0135599c5f230d69db3b420) C:\windows\system32\DRIVERS\btwrchid.sys
15:39:19.0958 3080 btwrchid - ok
15:39:20.0001 3080 cdfs (b8bd2bb284668c84865658c77574381a) C:\windows\system32\DRIVERS\cdfs.sys
15:39:20.0159 3080 cdfs - ok
15:39:20.0690 3080 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\windows\system32\drivers\cdrom.sys
15:39:20.0815 3080 cdrom - ok
15:39:21.0325 3080 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\windows\system32\DRIVERS\circlass.sys
15:39:21.0446 3080 circlass - ok
15:39:22.0106 3080 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\windows\system32\CLFS.sys
15:39:22.0189 3080 CLFS - ok
15:39:22.0256 3080 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\windows\system32\DRIVERS\CmBatt.sys
15:39:22.0313 3080 CmBatt - ok
15:39:22.0389 3080 cmdide (e19d3f095812725d88f9001985b94edd) C:\windows\system32\drivers\cmdide.sys
15:39:22.0417 3080 cmdide - ok
15:39:22.0472 3080 CNG (d5fea92400f12412b3922087c09da6a5) C:\windows\system32\Drivers\cng.sys
15:39:22.0531 3080 CNG - ok
15:39:22.0552 3080 Compbatt (102de219c3f61415f964c88e9085ad14) C:\windows\system32\DRIVERS\compbatt.sys
15:39:22.0592 3080 Compbatt - ok
15:39:22.0620 3080 CompositeBus (03edb043586cceba243d689bdda370a8) C:\windows\system32\drivers\CompositeBus.sys
15:39:22.0689 3080 CompositeBus - ok
15:39:22.0720 3080 crcdisk (1c827878a998c18847245fe1f34ee597) C:\windows\system32\DRIVERS\crcdisk.sys
15:39:22.0751 3080 crcdisk - ok
15:39:22.0801 3080 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\windows\system32\Drivers\dfsc.sys
15:39:22.0933 3080 DfsC - ok
15:39:22.0966 3080 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\windows\system32\drivers\discache.sys
15:39:23.0053 3080 discache - ok
15:39:23.0078 3080 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\windows\system32\DRIVERS\disk.sys
15:39:23.0118 3080 Disk - ok
15:39:23.0163 3080 drmkaud (9b19f34400d24df84c858a421c205754) C:\windows\system32\drivers\drmkaud.sys
15:39:23.0220 3080 drmkaud - ok
15:39:23.0276 3080 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\windows\System32\drivers\dxgkrnl.sys
15:39:23.0335 3080 DXGKrnl - ok
15:39:23.0381 3080 EagleX64 - ok
15:39:23.0486 3080 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\windows\system32\DRIVERS\evbda.sys
15:39:23.0615 3080 ebdrv - ok
15:39:23.0731 3080 elxstor (0e5da5369a0fcaea12456dd852545184) C:\windows\system32\DRIVERS\elxstor.sys
15:39:23.0768 3080 elxstor - ok
15:39:23.0839 3080 ErrDev (34a3c54752046e79a126e15c51db409b) C:\windows\system32\drivers\errdev.sys
15:39:23.0896 3080 ErrDev - ok
15:39:23.0957 3080 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\windows\system32\drivers\exfat.sys
15:39:24.0064 3080 exfat - ok
15:39:24.0095 3080 fastfat (0adc83218b66a6db380c330836f3e36d) C:\windows\system32\drivers\fastfat.sys
15:39:24.0191 3080 fastfat - ok
15:39:24.0223 3080 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\windows\system32\DRIVERS\fdc.sys
15:39:24.0324 3080 fdc - ok
15:39:24.0348 3080 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\windows\system32\drivers\fileinfo.sys
15:39:24.0401 3080 FileInfo - ok
15:39:24.0425 3080 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\windows\system32\drivers\filetrace.sys
15:39:24.0518 3080 Filetrace - ok
15:39:24.0549 3080 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\windows\system32\DRIVERS\flpydisk.sys
15:39:24.0671 3080 flpydisk - ok
15:39:24.0699 3080 FltMgr (da6b67270fd9db3697b20fce94950741) C:\windows\system32\drivers\fltmgr.sys
15:39:24.0742 3080 FltMgr - ok
15:39:24.0902 3080 FsDepends (d43703496149971890703b4b1b723eac) C:\windows\system32\drivers\FsDepends.sys
15:39:24.0946 3080 FsDepends - ok
15:39:24.0968 3080 Fs_Rec (e95ef8547de20cf0603557c0cf7a9462) C:\windows\system32\drivers\Fs_Rec.sys
15:39:25.0037 3080 Fs_Rec - ok
15:39:25.0078 3080 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\windows\system32\DRIVERS\fvevol.sys
15:39:25.0103 3080 fvevol - ok
15:39:25.0132 3080 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\windows\system32\DRIVERS\gagp30kx.sys
15:39:25.0167 3080 gagp30kx - ok
15:39:25.0204 3080 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\windows\system32\drivers\hcw85cir.sys
15:39:25.0274 3080 hcw85cir - ok
15:39:25.0325 3080 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\windows\system32\drivers\HdAudio.sys
15:39:25.0420 3080 HdAudAddService - ok
15:39:25.0453 3080 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\windows\system32\drivers\HDAudBus.sys
15:39:25.0532 3080 HDAudBus - ok
15:39:25.0564 3080 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\windows\system32\DRIVERS\HidBatt.sys
15:39:25.0626 3080 HidBatt - ok
15:39:25.0673 3080 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\windows\system32\DRIVERS\hidbth.sys
15:39:25.0798 3080 HidBth - ok
15:39:25.0826 3080 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\windows\system32\DRIVERS\hidir.sys
15:39:25.0896 3080 HidIr - ok
15:39:25.0933 3080 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\windows\system32\DRIVERS\hidusb.sys
15:39:25.0995 3080 HidUsb - ok
15:39:26.0062 3080 HpqKbFiltr (b98ee5d4535a685634b90f7e04de0df7) C:\windows\system32\DRIVERS\HpqKbFiltr.sys
15:39:26.0117 3080 HpqKbFiltr - ok
15:39:26.0151 3080 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\windows\system32\drivers\HpSAMD.sys
15:39:26.0186 3080 HpSAMD - ok
15:39:26.0232 3080 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\windows\system32\drivers\HTTP.sys
15:39:26.0380 3080 HTTP - ok
15:39:26.0422 3080 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\windows\system32\drivers\hwpolicy.sys
15:39:26.0442 3080 hwpolicy - ok
15:39:26.0466 3080 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\windows\system32\drivers\i8042prt.sys
15:39:26.0539 3080 i8042prt - ok
15:39:26.0572 3080 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\windows\system32\drivers\iaStorV.sys
15:39:26.0608 3080 iaStorV - ok
15:39:26.0658 3080 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\windows\system32\DRIVERS\iirsp.sys
15:39:26.0675 3080 iirsp - ok
15:39:26.0710 3080 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\windows\system32\drivers\intelide.sys
15:39:26.0744 3080 intelide - ok
15:39:26.0770 3080 intelppm (ada036632c664caa754079041cf1f8c1) C:\windows\system32\DRIVERS\intelppm.sys
15:39:26.0839 3080 intelppm - ok
15:39:26.0890 3080 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\windows\system32\DRIVERS\ipfltdrv.sys
15:39:27.0029 3080 IpFilterDriver - ok
15:39:27.0074 3080 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\windows\system32\drivers\IPMIDrv.sys
15:39:27.0143 3080 IPMIDRV - ok
15:39:27.0195 3080 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\windows\system32\drivers\ipnat.sys
15:39:27.0297 3080 IPNAT - ok
15:39:27.0324 3080 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\windows\system32\drivers\irenum.sys
15:39:27.0394 3080 IRENUM - ok
15:39:27.0429 3080 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\windows\system32\drivers\isapnp.sys
15:39:27.0457 3080 isapnp - ok
15:39:27.0485 3080 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\windows\system32\drivers\msiscsi.sys
15:39:27.0531 3080 iScsiPrt - ok
15:39:27.0563 3080 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\windows\system32\drivers\kbdclass.sys
15:39:27.0624 3080 kbdclass - ok
15:39:27.0642 3080 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\windows\system32\drivers\kbdhid.sys
15:39:27.0722 3080 kbdhid - ok
15:39:27.0762 3080 KSecDD (ccd53b5bd33ce0c889e830d839c8b66e) C:\windows\system32\Drivers\ksecdd.sys
15:39:27.0788 3080 KSecDD - ok
15:39:27.0824 3080 KSecPkg (9ff918a261752c12639e8ad4208d2c2f) C:\windows\system32\Drivers\ksecpkg.sys
15:39:27.0850 3080 KSecPkg - ok
15:39:27.0894 3080 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\windows\system32\drivers\ksthunk.sys
15:39:28.0003 3080 ksthunk - ok
15:39:28.0051 3080 lltdio (1538831cf8ad2979a04c423779465827) C:\windows\system32\DRIVERS\lltdio.sys
15:39:28.0173 3080 lltdio - ok
15:39:28.0230 3080 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\windows\system32\DRIVERS\lsi_fc.sys
15:39:28.0279 3080 LSI_FC - ok
15:39:28.0322 3080 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\windows\system32\DRIVERS\lsi_sas.sys
15:39:28.0372 3080 LSI_SAS - ok
15:39:28.0397 3080 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\windows\system32\DRIVERS\lsi_sas2.sys
15:39:28.0434 3080 LSI_SAS2 - ok
15:39:28.0459 3080 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\windows\system32\DRIVERS\lsi_scsi.sys
15:39:28.0494 3080 LSI_SCSI - ok
15:39:28.0525 3080 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\windows\system32\drivers\luafv.sys
15:39:28.0613 3080 luafv - ok
15:39:28.0658 3080 MBAMProtector (23a854450dab5c9b7a42ab9be6f2e4bd) C:\windows\system32\drivers\mbam.sys
15:39:28.0719 3080 MBAMProtector - ok
15:39:28.0761 3080 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\windows\system32\DRIVERS\megasas.sys
15:39:28.0790 3080 megasas - ok
15:39:28.0831 3080 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\windows\system32\DRIVERS\MegaSR.sys
15:39:28.0857 3080 MegaSR - ok
15:39:28.0901 3080 Modem (800ba92f7010378b09f9ed9270f07137) C:\windows\system32\drivers\modem.sys
15:39:28.0982 3080 Modem - ok
15:39:29.0007 3080 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\windows\system32\DRIVERS\monitor.sys
15:39:29.0079 3080 monitor - ok
15:39:29.0111 3080 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\windows\system32\DRIVERS\mouclass.sys
15:39:29.0137 3080 mouclass - ok
15:39:29.0178 3080 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\windows\system32\DRIVERS\mouhid.sys
15:39:29.0269 3080 mouhid - ok
15:39:29.0304 3080 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\windows\system32\drivers\mountmgr.sys
15:39:29.0332 3080 mountmgr - ok
15:39:29.0364 3080 MpFilter (c177a7ebf5e8a0b596f618870516cab8) C:\windows\system32\DRIVERS\MpFilter.sys
15:39:29.0399 3080 MpFilter - ok
15:39:29.0430 3080 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\windows\system32\drivers\mpio.sys
15:39:29.0468 3080 mpio - ok
15:39:29.0491 3080 MpNWMon (8fbf6b31fe8af1833d93c5913d5b4d55) C:\windows\system32\DRIVERS\MpNWMon.sys
15:39:29.0531 3080 MpNWMon - ok
15:39:29.0567 3080 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\windows\system32\drivers\mpsdrv.sys
15:39:29.0654 3080 mpsdrv - ok
15:39:29.0702 3080 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\windows\system32\drivers\mrxdav.sys
15:39:29.0805 3080 MRxDAV - ok
15:39:29.0843 3080 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\windows\system32\DRIVERS\mrxsmb.sys
15:39:29.0906 3080 mrxsmb - ok
15:39:29.0931 3080 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\windows\system32\DRIVERS\mrxsmb10.sys
15:39:30.0012 3080 mrxsmb10 - ok
15:39:30.0027 3080 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\windows\system32\DRIVERS\mrxsmb20.sys
15:39:30.0111 3080 mrxsmb20 - ok
15:39:30.0132 3080 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\windows\system32\drivers\msahci.sys
15:39:30.0172 3080 msahci - ok
15:39:30.0216 3080 msdsm (db801a638d011b9633829eb6f663c900) C:\windows\system32\drivers\msdsm.sys
15:39:30.0239 3080 msdsm - ok
15:39:30.0280 3080 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\windows\system32\drivers\Msfs.sys
15:39:30.0402 3080 Msfs - ok
15:39:30.0420 3080 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\windows\System32\drivers\mshidkmdf.sys
15:39:30.0512 3080 mshidkmdf - ok
15:39:30.0526 3080 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\windows\system32\drivers\msisadrv.sys
15:39:30.0569 3080 msisadrv - ok
15:39:30.0600 3080 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\windows\system32\drivers\MSKSSRV.sys
15:39:30.0691 3080 MSKSSRV - ok
15:39:30.0726 3080 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\windows\system32\drivers\MSPCLOCK.sys
15:39:30.0856 3080 MSPCLOCK - ok
15:39:30.0870 3080 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\windows\system32\drivers\MSPQM.sys
15:39:30.0970 3080 MSPQM - ok
15:39:31.0011 3080 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\windows\system32\drivers\MsRPC.sys
15:39:31.0042 3080 MsRPC - ok
15:39:31.0065 3080 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\windows\system32\drivers\mssmbios.sys
15:39:31.0105 3080 mssmbios - ok
15:39:31.0131 3080 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\windows\system32\drivers\MSTEE.sys
15:39:31.0212 3080 MSTEE - ok
15:39:31.0249 3080 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\windows\system32\DRIVERS\MTConfig.sys
15:39:31.0307 3080 MTConfig - ok
15:39:31.0338 3080 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\windows\system32\Drivers\mup.sys
15:39:31.0367 3080 Mup - ok
15:39:31.0414 3080 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\windows\system32\DRIVERS\nwifi.sys
15:39:31.0476 3080 NativeWifiP - ok
15:39:31.0533 3080 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\windows\system32\drivers\ndis.sys
15:39:31.0604 3080 NDIS - ok
15:39:31.0634 3080 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\windows\system32\DRIVERS\ndiscap.sys
15:39:31.0754 3080 NdisCap - ok
15:39:31.0780 3080 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\windows\system32\DRIVERS\ndistapi.sys
15:39:31.0870 3080 NdisTapi - ok
15:39:31.0898 3080 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\windows\system32\DRIVERS\ndisuio.sys
15:39:31.0984 3080 Ndisuio - ok
15:39:32.0016 3080 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\windows\system32\DRIVERS\ndiswan.sys
15:39:32.0146 3080 NdisWan - ok
15:39:32.0175 3080 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\windows\system32\drivers\NDProxy.sys
15:39:32.0265 3080 NDProxy - ok
15:39:32.0279 3080 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\windows\system32\DRIVERS\netbios.sys
15:39:32.0391 3080 NetBIOS - ok
15:39:32.0428 3080 NetBT (09594d1089c523423b32a4229263f068) C:\windows\system32\DRIVERS\netbt.sys
15:39:32.0549 3080 NetBT - ok
15:39:32.0615 3080 nfrd960 (77889813be4d166cdab78ddba990da92) C:\windows\system32\DRIVERS\nfrd960.sys
15:39:32.0664 3080 nfrd960 - ok
15:39:32.0700 3080 NisDrv (5f7d72cbcdd025af1f38fdeee5646968) C:\windows\system32\DRIVERS\NisDrvWFP.sys
15:39:32.0723 3080 NisDrv - ok
15:39:32.0768 3080 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\windows\system32\drivers\Npfs.sys
15:39:32.0850 3080 Npfs - ok
15:39:32.0868 3080 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\windows\system32\drivers\nsiproxy.sys
15:39:32.0968 3080 nsiproxy - ok
15:39:33.0039 3080 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\windows\system32\drivers\Ntfs.sys
15:39:33.0110 3080 Ntfs - ok
15:39:33.0136 3080 Null (9899284589f75fa8724ff3d16aed75c1) C:\windows\system32\drivers\Null.sys
15:39:33.0217 3080 Null - ok
15:39:33.0255 3080 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\windows\system32\drivers\nvraid.sys
15:39:33.0288 3080 nvraid - ok
15:39:33.0309 3080 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\windows\system32\drivers\nvstor.sys
15:39:33.0350 3080 nvstor - ok
15:39:33.0374 3080 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\windows\system32\drivers\nv_agp.sys
15:39:33.0413 3080 nv_agp - ok
15:39:33.0453 3080 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\windows\system32\drivers\ohci1394.sys
15:39:33.0508 3080 ohci1394 - ok
15:39:33.0555 3080 Parport (0086431c29c35be1dbc43f52cc273887) C:\windows\system32\DRIVERS\parport.sys
15:39:33.0616 3080 Parport - ok
15:39:33.0654 3080 partmgr (871eadac56b0a4c6512bbe32753ccf79) C:\windows\system32\drivers\partmgr.sys
15:39:33.0677 3080 partmgr - ok
15:39:33.0697 3080 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\windows\system32\drivers\pci.sys
15:39:33.0746 3080 pci - ok
15:39:33.0776 3080 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\windows\system32\drivers\pciide.sys
15:39:33.0807 3080 pciide - ok
15:39:33.0830 3080 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\windows\system32\DRIVERS\pcmcia.sys
15:39:33.0904 3080 pcmcia - ok
15:39:33.0935 3080 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\windows\system32\drivers\pcw.sys
15:39:33.0964 3080 pcw - ok
15:39:34.0004 3080 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\windows\system32\drivers\peauth.sys
15:39:34.0101 3080 PEAUTH - ok
15:39:34.0165 3080 pfyivdan (a412d2fd7c0e1b50a7845fa083894223) C:\windows\system32\drivers\pfyivdan.sys
15:39:34.0183 3080 pfyivdan - ok
15:39:34.0252 3080 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\windows\system32\DRIVERS\raspptp.sys
15:39:34.0369 3080 PptpMiniport - ok
15:39:34.0408 3080 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\windows\system32\DRIVERS\processr.sys
15:39:34.0463 3080 Processor - ok
15:39:34.0518 3080 Psched (0557cf5a2556bd58e26384169d72438d) C:\windows\system32\DRIVERS\pacer.sys
15:39:34.0625 3080 Psched - ok
15:39:34.0658 3080 PxHlpa64 (87b04878a6d59d6c79251dc960c674c1) C:\windows\system32\Drivers\PxHlpa64.sys
15:39:34.0722 3080 PxHlpa64 - ok
15:39:34.0797 3080 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\windows\system32\DRIVERS\ql2300.sys
15:39:34.0886 3080 ql2300 - ok
15:39:34.0913 3080 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\windows\system32\DRIVERS\ql40xx.sys
15:39:34.0947 3080 ql40xx - ok
15:39:34.0988 3080 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\windows\system32\drivers\qwavedrv.sys
15:39:35.0055 3080 QWAVEdrv - ok
15:39:35.0079 3080 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\windows\system32\DRIVERS\rasacd.sys
15:39:35.0172 3080 RasAcd - ok
15:39:35.0211 3080 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\windows\system32\DRIVERS\AgileVpn.sys
15:39:35.0328 3080 RasAgileVpn - ok
15:39:35.0460 3080 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\windows\system32\DRIVERS\rasl2tp.sys
15:39:35.0557 3080 Rasl2tp - ok
15:39:35.0586 3080 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\windows\system32\DRIVERS\raspppoe.sys
15:39:35.0681 3080 RasPppoe - ok
15:39:35.0708 3080 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\windows\system32\DRIVERS\rassstp.sys
15:39:35.0856 3080 RasSstp - ok
15:39:35.0878 3080 rdbss (77f665941019a1594d887a74f301fa2f) C:\windows\system32\DRIVERS\rdbss.sys
15:39:35.0977 3080 rdbss - ok
15:39:36.0007 3080 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\windows\system32\DRIVERS\rdpbus.sys
15:39:36.0076 3080 rdpbus - ok
15:39:36.0104 3080 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\windows\system32\DRIVERS\RDPCDD.sys
15:39:36.0184 3080 RDPCDD - ok
15:39:36.0202 3080 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\windows\system32\drivers\rdpencdd.sys
15:39:36.0332 3080 RDPENCDD - ok
15:39:36.0368 3080 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\windows\system32\drivers\rdprefmp.sys
15:39:36.0448 3080 RDPREFMP - ok
15:39:36.0482 3080 RDPWD (15b66c206b5cb095bab980553f38ed23) C:\windows\system32\drivers\RDPWD.sys
15:39:36.0574 3080 RDPWD - ok
15:39:36.0616 3080 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\windows\system32\drivers\rdyboost.sys
15:39:36.0640 3080 rdyboost - ok
15:39:36.0678 3080 RFCOMM (3dd798846e2c28102b922c56e71b7932) C:\windows\system32\DRIVERS\rfcomm.sys
15:39:36.0779 3080 RFCOMM - ok
15:39:36.0818 3080 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\windows\system32\DRIVERS\rspndr.sys
15:39:36.0914 3080 rspndr - ok
15:39:36.0956 3080 RTL8167 (ba3e57c89e6f63808d3f2b11e1a2ad3c) C:\windows\system32\DRIVERS\Rt64win7.sys
15:39:37.0010 3080 RTL8167 - ok
15:39:37.0049 3080 rtsuvc (73157d4a4f6da18c5148e47cb958af58) C:\windows\system32\DRIVERS\rtsuvc.sys
15:39:37.0110 3080 rtsuvc - ok
15:39:37.0147 3080 s117bus (6c90231046fb9fc4123c42179832817f) C:\windows\system32\DRIVERS\s117bus.sys
15:39:37.0202 3080 s117bus - ok
15:39:37.0260 3080 s117mdfl (3279341c90ef8f226af77623039f4495) C:\windows\system32\DRIVERS\s117mdfl.sys
15:39:37.0358 3080 s117mdfl - ok
15:39:37.0390 3080 s117mdm (73e331f555279e753b312675ddaf4516) C:\windows\system32\DRIVERS\s117mdm.sys
15:39:37.0451 3080 s117mdm - ok
15:39:37.0484 3080 s117mgmt (d420731fd2880f0f40f20771efaad671) C:\windows\system32\DRIVERS\s117mgmt.sys
15:39:37.0545 3080 s117mgmt - ok
15:39:37.0582 3080 s117nd5 (98236ca5a9a77d0983ac3f6d6527c796) C:\windows\system32\DRIVERS\s117nd5.sys
15:39:37.0639 3080 s117nd5 - ok
15:39:37.0680 3080 s117obex (1dd613909477ae298c98e86617ec356b) C:\windows\system32\DRIVERS\s117obex.sys
15:39:37.0732 3080 s117obex - ok
15:39:37.0766 3080 s117unic (9a22df5fe9b6be279d820776a6adb56f) C:\windows\system32\DRIVERS\s117unic.sys
15:39:37.0827 3080 s117unic - ok
15:39:37.0939 3080 SASDIFSV (3289766038db2cb14d07dc84392138d5) C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
15:39:38.0016 3080 SASDIFSV - ok
15:39:38.0035 3080 SASKUTIL (58a38e75f3316a83c23df6173d41f2b5) C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
15:39:38.0108 3080 SASKUTIL - ok
15:39:38.0155 3080 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\windows\system32\drivers\sbp2port.sys
15:39:38.0201 3080 sbp2port - ok
15:39:38.0246 3080 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\windows\system32\DRIVERS\scfilter.sys
15:39:38.0357 3080 scfilter - ok
15:39:38.0395 3080 sdbus (111e0ebc0ad79cb0fa014b907b231cf0) C:\windows\system32\drivers\sdbus.sys
15:39:38.0464 3080 sdbus - ok
15:39:38.0508 3080 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\windows\system32\drivers\secdrv.sys
15:39:38.0589 3080 secdrv - ok
15:39:38.0643 3080 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\windows\system32\DRIVERS\serenum.sys
15:39:38.0696 3080 Serenum - ok
15:39:38.0728 3080 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\windows\system32\DRIVERS\serial.sys
15:39:38.0790 3080 Serial - ok
15:39:38.0829 3080 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\windows\system32\DRIVERS\sermouse.sys
15:39:38.0886 3080 sermouse - ok
15:39:38.0938 3080 sffdisk (a554811bcd09279536440c964ae35bbf) C:\windows\system32\drivers\sffdisk.sys
15:39:38.0998 3080 sffdisk - ok
15:39:39.0027 3080 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\windows\system32\drivers\sffp_mmc.sys
15:39:39.0093 3080 sffp_mmc - ok
15:39:39.0108 3080 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\windows\system32\drivers\sffp_sd.sys
15:39:39.0189 3080 sffp_sd - ok
15:39:39.0214 3080 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\windows\system32\DRIVERS\sfloppy.sys
15:39:39.0281 3080 sfloppy - ok
15:39:39.0332 3080 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\windows\system32\DRIVERS\SiSRaid2.sys
15:39:39.0386 3080 SiSRaid2 - ok
15:39:39.0414 3080 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\windows\system32\DRIVERS\sisraid4.sys
15:39:39.0445 3080 SiSRaid4 - ok
15:39:39.0484 3080 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\windows\system32\DRIVERS\smb.sys
15:39:39.0598 3080 Smb - ok
15:39:39.0637 3080 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\windows\system32\drivers\spldr.sys
15:39:39.0673 3080 spldr - ok
15:39:39.0733 3080 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\windows\system32\DRIVERS\srv.sys
15:39:39.0808 3080 srv - ok
15:39:39.0828 3080 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\windows\system32\DRIVERS\srv2.sys
15:39:39.0914 3080 srv2 - ok
15:39:39.0929 3080 srvnet (27e461f0be5bff5fc737328f749538c3) C:\windows\system32\DRIVERS\srvnet.sys
15:39:40.0011 3080 srvnet - ok
15:39:40.0066 3080 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\windows\system32\DRIVERS\stexstor.sys
15:39:40.0083 3080 stexstor - ok
15:39:40.0131 3080 STHDA (4a9d087c9a97071b9d06db38567da906) C:\windows\system32\DRIVERS\stwrt64.sys
15:39:40.0223 3080 STHDA - ok
15:39:40.0262 3080 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\windows\system32\drivers\swenum.sys
15:39:40.0291 3080 swenum - ok
15:39:40.0331 3080 SynTP (3c80203c725c28cea5713d1ab242880a) C:\windows\system32\DRIVERS\SynTP.sys
15:39:40.0398 3080 SynTP - ok
15:39:40.0512 3080 Tcpip (f0e98c00a09fdf791525829a1d14240f) C:\windows\system32\drivers\tcpip.sys
15:39:40.0586 3080 Tcpip - ok
15:39:40.0656 3080 TCPIP6 (f0e98c00a09fdf791525829a1d14240f) C:\windows\system32\DRIVERS\tcpip.sys
15:39:40.0727 3080 TCPIP6 - ok
15:39:40.0771 3080 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\windows\system32\drivers\tcpipreg.sys
15:39:40.0846 3080 tcpipreg - ok
15:39:40.0892 3080 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\windows\system32\drivers\tdpipe.sys
15:39:41.0002 3080 TDPIPE - ok
15:39:41.0016 3080 TDTCP (e4245bda3190a582d55ed09e137401a9) C:\windows\system32\drivers\tdtcp.sys
15:39:41.0120 3080 TDTCP - ok
15:39:41.0160 3080 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\windows\system32\DRIVERS\tdx.sys
15:39:41.0240 3080 tdx - ok
15:39:41.0273 3080 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\windows\system32\drivers\termdd.sys
15:39:41.0301 3080 TermDD - ok
15:39:41.0342 3080 TPM (dbcc20c02e8a3e43b03c304a4e40a84f) C:\windows\system32\drivers\tpm.sys
15:39:41.0445 3080 TPM - ok
15:39:41.0501 3080 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\windows\system32\DRIVERS\tssecsrv.sys
15:39:41.0605 3080 tssecsrv - ok
15:39:41.0644 3080 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\windows\system32\drivers\tsusbflt.sys
15:39:41.0722 3080 TsUsbFlt - ok
15:39:41.0809 3080 TuneUpUtilitiesDrv (dcc94c51d27c7ec0dadeca8f64c94fcf) C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesDriver64.sys
15:39:41.0881 3080 TuneUpUtilitiesDrv - ok
15:39:41.0920 3080 tunnel (3566a8daafa27af944f5d705eaa64894) C:\windows\system32\DRIVERS\tunnel.sys
15:39:41.0998 3080 tunnel - ok
15:39:42.0033 3080 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\windows\system32\DRIVERS\uagp35.sys
15:39:42.0090 3080 uagp35 - ok
15:39:42.0139 3080 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\windows\system32\DRIVERS\udfs.sys
15:39:42.0264 3080 udfs - ok
15:39:42.0317 3080 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\windows\system32\drivers\uliagpkx.sys
15:39:42.0338 3080 uliagpkx - ok
15:39:42.0364 3080 umbus (dc54a574663a895c8763af0fa1ff7561) C:\windows\system32\drivers\umbus.sys
15:39:42.0437 3080 umbus - ok
15:39:42.0466 3080 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\windows\system32\DRIVERS\umpass.sys
15:39:42.0530 3080 UmPass - ok
15:39:42.0568 3080 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\windows\system32\DRIVERS\usbccgp.sys
15:39:42.0629 3080 usbccgp - ok
15:39:42.0670 3080 usbcir (af0892a803fdda7492f595368e3b68e7) C:\windows\system32\drivers\usbcir.sys
15:39:42.0719 3080 usbcir - ok
15:39:42.0746 3080 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\windows\system32\DRIVERS\usbehci.sys
15:39:42.0826 3080 usbehci - ok
15:39:42.0865 3080 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\windows\system32\DRIVERS\usbhub.sys
15:39:42.0930 3080 usbhub - ok
15:39:42.0952 3080 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\windows\system32\DRIVERS\usbohci.sys
15:39:43.0022 3080 usbohci - ok
15:39:43.0059 3080 usbprint (73188f58fb384e75c4063d29413cee3d) C:\windows\system32\DRIVERS\usbprint.sys
15:39:43.0118 3080 usbprint - ok
15:39:43.0156 3080 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\windows\system32\DRIVERS\usbscan.sys
15:39:43.0217 3080 usbscan - ok
15:39:43.0247 3080 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\windows\system32\DRIVERS\USBSTOR.SYS
15:39:43.0345 3080 USBSTOR - ok
15:39:43.0371 3080 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\windows\system32\drivers\usbuhci.sys
15:39:43.0440 3080 usbuhci - ok
15:39:43.0479 3080 usbvideo (454800c2bc7f3927ce030141ee4f4c50) C:\windows\System32\Drivers\usbvideo.sys
15:39:43.0540 3080 usbvideo - ok
15:39:43.0597 3080 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\windows\system32\drivers\vdrvroot.sys
15:39:43.0615 3080 vdrvroot - ok
15:39:43.0665 3080 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\windows\system32\DRIVERS\vgapnp.sys
15:39:43.0720 3080 vga - ok
15:39:43.0745 3080 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\windows\System32\drivers\vga.sys
15:39:43.0835 3080 VgaSave - ok
15:39:43.0899 3080 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\windows\system32\drivers\vhdmp.sys
15:39:43.0937 3080 vhdmp - ok
15:39:43.0963 3080 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\windows\system32\drivers\viaide.sys
15:39:44.0001 3080 viaide - ok
15:39:44.0015 3080 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\windows\system32\drivers\volmgr.sys
15:39:44.0062 3080 volmgr - ok
15:39:44.0086 3080 volmgrx (a255814907c89be58b79ef2f189b843b) C:\windows\system32\drivers\volmgrx.sys
15:39:44.0128 3080 volmgrx - ok
15:39:44.0161 3080 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\windows\system32\drivers\volsnap.sys
15:39:44.0200 3080 volsnap - ok
15:39:44.0246 3080 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\windows\system32\DRIVERS\vsmraid.sys
15:39:44.0295 3080 vsmraid - ok
15:39:44.0334 3080 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\windows\system32\DRIVERS\vwifibus.sys
15:39:44.0431 3080 vwifibus - ok
15:39:44.0449 3080 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\windows\system32\DRIVERS\vwififlt.sys
15:39:44.0528 3080 vwififlt - ok
15:39:44.0568 3080 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\windows\system32\DRIVERS\wacompen.sys
15:39:44.0631 3080 WacomPen - ok
15:39:44.0660 3080 WANARP (356afd78a6ed4457169241ac3965230c) C:\windows\system32\DRIVERS\wanarp.sys
15:39:44.0754 3080 WANARP - ok
15:39:44.0765 3080 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\windows\system32\DRIVERS\wanarp.sys
15:39:44.0901 3080 Wanarpv6 - ok
15:39:44.0940 3080 Wd (72889e16ff12ba0f235467d6091b17dc) C:\windows\system32\DRIVERS\wd.sys
15:39:44.0982 3080 Wd - ok
15:39:45.0018 3080 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\windows\system32\drivers\Wdf01000.sys
15:39:45.0058 3080 Wdf01000 - ok
15:39:45.0103 3080 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\windows\system32\DRIVERS\wfplwf.sys
15:39:45.0199 3080 WfpLwf - ok
15:39:45.0233 3080 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\windows\system32\drivers\wimmount.sys
15:39:45.0264 3080 WIMMount - ok
15:39:45.0378 3080 WinUsb (fe88b288356e7b47b74b13372add906d) C:\windows\system32\DRIVERS\WinUsb.sys
15:39:45.0462 3080 WinUsb - ok
15:39:45.0508 3080 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\windows\system32\drivers\wmiacpi.sys
15:39:45.0568 3080 WmiAcpi - ok
15:39:45.0627 3080 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\windows\system32\drivers\ws2ifsl.sys
15:39:45.0706 3080 ws2ifsl - ok
15:39:45.0762 3080 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\windows\system32\drivers\WudfPf.sys
15:39:45.0878 3080 WudfPf - ok
15:39:45.0911 3080 WUDFRd (cf8d590be3373029d57af80914190682) C:\windows\system32\DRIVERS\WUDFRd.sys
15:39:45.0999 3080 WUDFRd - ok
15:39:46.0053 3080 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
15:39:46.0113 3080 \Device\Harddisk0\DR0 - ok
15:39:46.0120 3080 Boot (0x1200) (594e26258254d17e844ba490bc76ca76) \Device\Harddisk0\DR0\Partition0
15:39:46.0121 3080 \Device\Harddisk0\DR0\Partition0 - ok
15:39:46.0156 3080 Boot (0x1200) (eb0ab80f11d30187bb82490b988b230a) \Device\Harddisk0\DR0\Partition1
15:39:46.0157 3080 \Device\Harddisk0\DR0\Partition1 - ok
15:39:46.0185 3080 Boot (0x1200) (3caf28d5f3cacd731376cdf3f51a4e74) \Device\Harddisk0\DR0\Partition2
15:39:46.0186 3080 \Device\Harddisk0\DR0\Partition2 - ok
15:39:46.0204 3080 Boot (0x1200) (7dbacad873b9409c3fad82a85192ccbe) \Device\Harddisk0\DR0\Partition3
15:39:46.0205 3080 \Device\Harddisk0\DR0\Partition3 - ok
15:39:46.0208 3080 ============================================================
15:39:46.0208 3080 Scan finished
15:39:46.0208 3080 ============================================================
15:39:46.0222 5116 Detected object count: 0
15:39:46.0222 5116 Actual detected object count: 0
|
|
04.11.2011, 15:43
| #18 | |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Kann Backdoor Virus nicht entfernen Dann bitte jetzt CF ausführen:
__________________ComboFix Ein Leitfaden und Tutorium zur Nutzung von ComboFix
Combofix darf ausschließlich ausgeführt werden, wenn ein Kompetenzler dies ausdrücklich empfohlen hat! Solltest du nach der Ausführung von Combofix Probleme beim Starten von Anwendungen haben und Meldungen erhalten wie Zitat:
__________________ |
|
04.11.2011, 16:36
| #19 |
| | Kann Backdoor Virus nicht entfernen Log Datei nach ausführen von ComboFix: Code:
ATTFilter ComboFix 11-11-04.02 - Olav 04.11.2011 16:01:16.1.1 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.49.1031.18.1789.985 [GMT 1:00]
ausgeführt von:: c:\users\Olav\Desktop\ComboFix.exe
AV: Microsoft Security Essentials *Enabled/Updated* {108DAC43-C256-20B7-BB05-914135DA5160}
SP: Microsoft Security Essentials *Enabled/Updated* {ABEC4DA7-E46C-2F39-81B5-AA334E5D1BDD}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((((((((((((( Weitere Löschungen ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
C:\install.exe
C:\Thumbs.db
c:\windows\0D49EB5446837560.log
c:\windows\assembly\tmp\U
c:\windows\assembly\tmp\U\000000c0.@
c:\windows\assembly\tmp\U\000000cb.@
c:\windows\assembly\tmp\U\000000cf.@
c:\windows\assembly\tmp\U\800000c0.@
c:\windows\assembly\tmp\U\800000cf.@
.
.
((((((((((((((((((((((( Dateien erstellt von 2011-10-04 bis 2011-11-04 ))))))))))))))))))))))))))))))
.
.
2011-11-04 15:09 . 2011-11-04 15:09 69000 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{16879DC2-1A66-40F2-BBB7-D911E6FE7E90}\offreg.dll
2011-11-04 15:07 . 2011-11-04 15:07 -------- d-----w- c:\users\Default\AppData\Local\temp
2011-11-04 13:22 . 2011-11-04 13:22 -------- d-----w- C:\_OTL
2011-11-04 11:19 . 2011-10-07 04:16 8570192 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{16879DC2-1A66-40F2-BBB7-D911E6FE7E90}\mpengine.dll
2011-11-03 14:09 . 2011-11-03 14:09 -------- d-----w- c:\program files (x86)\ESET
2011-11-03 10:59 . 2011-11-03 10:59 -------- d-----w- c:\users\Olav\AppData\Roaming\SUPERAntiSpyware.com
2011-11-03 10:58 . 2011-11-03 10:59 -------- d-----w- c:\program files\SUPERAntiSpyware
2011-11-03 10:58 . 2011-11-03 10:58 -------- d-----w- c:\programdata\SUPERAntiSpyware.com
2011-11-03 10:46 . 2011-11-03 10:46 -------- d-----w- c:\users\Olav\AppData\Roaming\Malwarebytes
2011-11-03 10:46 . 2011-11-03 10:46 -------- d-----w- c:\programdata\Malwarebytes
2011-11-03 10:46 . 2011-11-03 10:46 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware
2011-11-03 10:46 . 2011-08-31 16:00 25416 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-11-01 12:14 . 2011-11-01 12:14 -------- d-----w- C:\HP_RECOVERY_mountHPSF
2011-11-01 11:58 . 2011-11-01 11:58 -------- d-sh--w- c:\windows\system32\%APPDATA%
2011-11-01 11:57 . 2011-11-01 11:57 -------- d-----w- c:\windows\system32\Macromed
2011-11-01 11:49 . 2011-11-01 11:49 -------- d-----w- c:\programdata\SlySoft
2011-11-01 11:46 . 2011-11-01 11:46 -------- d-----w- c:\program files (x86)\SlySoft
2011-11-01 11:20 . 2011-11-01 11:27 -------- d-----w- c:\users\Olav\AppData\Roaming\MyPhoneExplorer
2011-11-01 11:17 . 2011-11-01 11:17 -------- d-----w- c:\programdata\Uniblue
2011-11-01 11:15 . 2011-11-01 11:15 -------- d-----w- c:\users\Olav\AppData\Roaming\Uniblue
2011-11-01 11:15 . 2011-11-01 11:15 -------- d-----w- c:\program files (x86)\Uniblue
2011-11-01 11:15 . 2011-11-01 11:48 -------- d-----w- c:\users\Olav\AppData\Local\OpenCandy
2011-11-01 11:15 . 2011-11-01 11:15 -------- d-----w- c:\program files (x86)\MyPhoneExplorer
2011-11-01 11:15 . 2011-11-01 11:15 -------- d-----w- c:\users\Olav\AppData\Roaming\OpenCandy
2011-10-26 07:01 . 2011-08-13 05:27 6144 ----a-w- c:\program files\Internet Explorer\iecompat.dll
2011-10-26 07:01 . 2011-08-13 04:18 6144 ----a-w- c:\program files (x86)\Internet Explorer\iecompat.dll
2011-10-26 06:53 . 2011-10-26 06:53 -------- d-----w- c:\program files (x86)\Microsoft.NET
2011-10-16 15:25 . 2011-10-16 15:25 -------- d-----w- c:\programdata\{D3B41B92-9BC2-43EB-916A-4FA9E8191837}
2011-10-13 10:03 . 2011-09-06 03:03 3138048 ----a-w- c:\windows\system32\win32k.sys
2011-10-11 17:22 . 2011-10-11 17:22 -------- d-----w- c:\users\Olav\AppData\Roaming\teamspeak2
2011-10-11 17:22 . 2011-10-11 17:22 34064 ----a-w- c:\windows\SysWow64\lhacm.acm
2011-10-11 17:21 . 2011-10-11 17:22 -------- d-----w- c:\program files (x86)\Teamspeak2_RC2
2011-10-11 17:15 . 2011-10-11 17:19 -------- d-----w- c:\users\Olav\AppData\Roaming\TS3Client
2011-10-11 17:14 . 2011-10-11 17:13 917840 ------w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{5B93FBA9-EF2D-4302-BC3C-E9EFD2C1E8D8}\gapaengine.dll
2011-10-11 14:40 . 2011-10-11 14:40 -------- d-----w- c:\users\Olav\AppData\Local\4GameZapuskatr
2011-10-11 14:39 . 2011-10-11 14:50 -------- d-----w- c:\program files (x86)\4game
2011-10-10 13:28 . 2011-10-10 13:28 -------- d-----w- c:\users\Olav\AppData\Roaming\WinAVI
2011-10-10 13:28 . 2011-10-10 13:28 -------- d-----w- c:\users\Olav\AppData\Local\WinAVI
2011-10-10 13:28 . 2011-10-10 13:33 -------- d-----w- c:\program files (x86)\WinAVI
2011-10-10 12:37 . 2011-11-04 13:22 -------- d-----w- c:\users\Olav\AppData\Roaming\xplugin
2011-10-09 16:34 . 2011-10-09 16:34 -------- d-----w- c:\program files (x86)\Common Files\LightScribe
.
.
.
(((((((((((((((((((((((((((((((((((( Find3M Bericht ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-11-01 15:49 . 2011-08-28 19:33 414368 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2011-10-07 04:16 . 2011-08-28 19:37 8570192 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2011-09-16 14:52 . 2011-08-27 14:38 34624 ----a-w- c:\windows\system32\TURegOpt.exe
2011-09-16 14:44 . 2011-08-27 14:38 25920 ----a-w- c:\windows\system32\authuitu.dll
2011-09-16 14:44 . 2011-08-27 14:38 21312 ----a-w- c:\windows\SysWow64\authuitu.dll
2011-09-16 14:44 . 2011-08-27 14:38 36160 ----a-w- c:\windows\system32\uxtuneup.dll
2011-09-16 14:44 . 2011-08-27 14:38 29504 ----a-w- c:\windows\SysWow64\uxtuneup.dll
2011-09-04 14:41 . 2009-07-14 02:36 152576 ----a-w- c:\windows\SysWow64\msclmd.dll
2011-09-04 14:41 . 2009-07-14 02:36 175616 ----a-w- c:\windows\system32\msclmd.dll
2011-08-27 14:26 . 2011-08-27 14:26 952 --sha-w- c:\programdata\KGyGaAvL.sys
2011-08-16 06:48 . 2011-08-27 14:33 8862544 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{9592DA0C-3CFA-4FE4-A688-4EFB4FBCFB0A}\mpengine.dll
.
.
(((((((((((((((((((((((((((( Autostartpunkte der Registrierung ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"LightScribe Control Panel"="c:\program files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe" [2011-03-04 2736128]
"SUPERAntiSpyware"="c:\program files\SUPERAntiSpyware\SUPERAntiSpyware.exe" [2011-10-17 5500800]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"PDF Complete"="c:\program files (x86)\PDF Complete\pdfsty.exe" [2010-03-06 563736]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2010-08-05 98304]
"QLBController"="c:\program files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe" [2010-10-01 256056]
"Malwarebytes' Anti-Malware"="c:\program files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" [2011-08-31 449608]
"Malwarebytes' Anti-Malware (reboot)"="c:\program files (x86)\Malwarebytes' Anti-Malware\mbam.exe" [2011-08-31 1047208]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2010-7-30 1132320]
McAfee Security Scan Plus.lnk - c:\program files (x86)\McAfee Security Scan\2.0.181\SSScheduler.exe [2010-1-15 255536]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"mixer"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-]
"QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" -atboottime
.
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 HP Support Assistant Service;HP Support Assistant Service;c:\program files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2011-06-21 85560]
R2 HP Wireless Assistant Service;HP Wireless Assistant Service;c:\program files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe [2010-04-05 103992]
R2 lxeaCATSCustConnectService;lxeaCATSCustConnectService;c:\windows\system32\spool\DRIVERS\x64\3\\lxeaserv.exe [2009-04-24 33960]
R3 EagleX64;EagleX64;c:\windows\system32\drivers\EagleX64.sys [x]
R3 McComponentHostService;McAfee Security Scan Component Host Service;c:\program files (x86)\McAfee Security Scan\2.0.181\McCHSvc.exe [2010-01-15 227232]
R3 MpNWMon;Microsoft Malware Protection Network Driver;c:\windows\system32\DRIVERS\MpNWMon.sys [x]
S2 !SASCORE;SAS Core Service;c:\program files\SUPERAntiSpyware\SASCORE64.EXE [2011-08-11 140672]
S2 AESTFilters;Andrea ST Filters Service;c:\windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_b20011ea53a6b83e\AESTSr64.exe [2009-03-03 89600]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [x]
S2 HPDrvMntSvc.exe;HP Quick Synchronization Service;c:\program files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe [2011-03-28 94264]
S2 hpHotkeyMonitor;HP Hotkey Monitor;c:\program files (x86)\Hewlett-Packard\HP HotKey Support\hpHotkeyMonitor.exe [2010-10-01 280120]
S2 lxea_device;lxea_device;c:\windows\system32\lxeacoms.exe [2009-04-24 1032360]
S2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2011-08-31 366152]
S2 pdfcDispatcher;PDF Document Manager;c:\program files (x86)\PDF Complete\pdfsvc.exe [2010-03-06 635416]
S3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atikmdag.sys [x]
S3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [x]
S3 btwampfl;Bluetooth AMP USB Filter;c:\windows\system32\drivers\btwampfl.sys [x]
S3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys [x]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [x]
S3 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys [x]
S3 NisSrv;Microsoft-Netzwerkinspektion;c:\program files\Microsoft Security Client\Antimalware\NisSrv.exe [2011-04-27 288272]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
2011-03-04 10:29 451872 ----a-w- c:\program files (x86)\Common Files\LightScribe\LSRunOnce.exe
.
Inhalt des "geplante Tasks" Ordners
.
2011-11-04 c:\windows\Tasks\DriverScanner.job
- c:\program files (x86)\Uniblue\DriverScanner\dsmonitor.exe [2011-11-01 15:20]
.
2011-10-31 c:\windows\Tasks\HPCeeScheduleForOlav.job
- c:\program files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2010-09-14 06:15]
.
.
--------- x86-64 -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"HPWirelessAssistant"="c:\program files\Hewlett-Packard\HP Wireless Assistant\DelayedAppStarter.exe" [2010-04-05 8192]
"SysTrayApp"="c:\program files\IDT\WDM\sttray64.exe" [2010-03-17 487424]
"MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2011-06-15 1436736]
"lxeamon.exe"="c:\program files (x86)\Lexmark S300-S400 Series\lxeamon.exe" [2009-04-29 766632]
"EzPrint"="c:\program files (x86)\Lexmark S300-S400 Series\ezprint.exe" [2009-04-29 139944]
"combofix"="c:\combofix\CF21554.3XE" [2010-11-20 345088]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"LoadAppInit_DLLs"=0x0
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp
.
------- Zusätzlicher Suchlauf -------
.
uStart Page =
uLocal Page = c:\windows\system32\blank.htm
mStart Page =
mLocal Page =
IE: Bild an &Bluetooth-Gerät senden... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
IE: Free YouTube to MP3 Converter - c:\users\Olav\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm
IE: Nach Microsoft &Excel exportieren - c:\progra~2\MICROS~1\Office10\EXCEL.EXE/3000
IE: Seite an &Bluetooth-Gerät senden... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
TCP: DhcpNameServer = 192.168.2.1
FF - ProfilePath - c:\users\Olav\AppData\Roaming\Mozilla\Firefox\Profiles\napzn4bg.default\
FF - prefs.js: browser.search.selectedEngine -
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
HKLM-Run-SynTPEnh - c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe
AddRemove-{CA43FE4F-9FF2-4AD7-88F0-CC3BAC17B226} - c:\program files (x86)\InstallShield Installation Information\{CA43FE4F-9FF2-4AD7-88F0-CC3BAC17B226}\setup.exe
.
.
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\pdfcDispatcher]
"ImagePath"="c:\program files (x86)\PDF Complete\pdfsvc.exe /startedbyscm:66B66708-40E2BE4D-pdfcService"
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\windows\\SysWOW64\\Macromed\\Flash\\FlashUtil11c_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\FlashUtil11c_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\Flash11c.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.10"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\Flash11c.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\Flash11c.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\Flash11c.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Weitere laufende Prozesse ------------------------
.
c:\program files (x86)\Common Files\LightScribe\LSSrvc.exe
c:\program files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
.
**************************************************************************
.
Zeit der Fertigstellung: 2011-11-04 16:15:42 - PC wurde neu gestartet
ComboFix-quarantined-files.txt 2011-11-04 15:15
.
Vor Suchlauf: 12 Verzeichnis(se), 192.644.861.952 Bytes frei
Nach Suchlauf: 18 Verzeichnis(se), 192.122.793.984 Bytes frei
.
- - End Of File - - A9B00609C2D6704B979253A635468565
|
|
04.11.2011, 18:57
| #20 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Kann Backdoor Virus nicht entfernen Ich brauch den Quarantäneordner von Combofix. Bitte folgendes machen: 1.) GANZ WICHTIG!! Virenscanner deaktivieren, der darf das Packen nicht beeinflussen! 2.) Ordner Quarantine in C:\Qoobox in eine Datei zippen 3.) die erstellte ZIP-Datei hier hochladen => http://www.trojaner-board.de/54791-a...ner-board.html Hinweis: Die Datei bitte wie in der Anleitung zum UpChannel angegeben auch da hochladen. Bitte NICHT die ZIP-Datei hier als Anhang in den Thread posten! 4.) Wenns erfolgreich war Bescheid sagen 5.) Erst dann wieder den Virenscanner einschalten
__________________ Logfiles bitte immer in CODE-Tags posten |
|
05.11.2011, 13:05
| #21 |
| | Kann Backdoor Virus nicht entfernen Habe den Qoobox Ordner gezippt und erfolgreich nach der Anleitung hochgeladen. MFG |
|
07.11.2011, 08:55
| #22 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Kann Backdoor Virus nicht entfernen Downloade dir bitte aswMBR.exe und speichere die Datei auf deinem Desktop.
__________________ Logfiles bitte immer in CODE-Tags posten |
|
07.11.2011, 10:55
| #23 |
| | Kann Backdoor Virus nicht entfernen Hier die aswMBR.txt Datei: Code:
ATTFilter aswMBR version 0.9.8.986 Copyright(c) 2011 AVAST Software
Run date: 2011-11-07 10:45:32
-----------------------------
10:45:32.853 OS Version: Windows x64 6.1.7601 Service Pack 1
10:45:32.853 Number of processors: 1 586 0x603
10:45:32.854 ComputerName: OLAV1309 UserName: Olav
10:45:34.380 Initialize success
10:46:46.880 AVAST engine defs: 11110602
10:47:23.023 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0
10:47:23.028 Disk 0 Vendor: SAMSUNG_HM250HI 2AC101C4 Size: 238475MB BusType: 11
10:47:25.045 Disk 0 MBR read successfully
10:47:25.051 Disk 0 MBR scan
10:47:25.062 Disk 0 Windows 7 default MBR code
10:47:25.067 Service scanning
10:47:25.722 Service MpNWMon C:\windows\system32\DRIVERS\MpNWMon.sys **LOCKED** 32
10:47:26.388 Modules scanning
10:47:26.396 Disk 0 trace - called modules:
10:47:26.455 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys ataport.SYS PCIIDEX.SYS hal.dll msahci.sys
10:47:26.463 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa80024803d0]
10:47:26.474 3 CLASSPNP.SYS[fffff8800197143f] -> nt!IofCallDriver -> [0xfffffa80020639b0]
10:47:26.484 5 ACPI.sys[fffff88000e0b7a1] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-0[0xfffffa8002060060]
10:47:27.770 AVAST engine scan C:\windows
10:47:34.314 AVAST engine scan C:\windows\system32
10:47:54.244 File: C:\windows\system32\consrv.dll **INFECTED** Win32:Malware-gen
10:50:22.089 AVAST engine scan C:\windows\system32\drivers
10:50:37.876 AVAST engine scan C:\Users\Olav
10:51:50.931 AVAST engine scan C:\ProgramData
10:52:30.727 Scan finished successfully
10:52:54.641 Disk 0 MBR has been saved successfully to "C:\Users\Olav\Desktop\MBR.dat"
10:52:54.673 The log file has been saved successfully to "C:\Users\Olav\Desktop\aswMBR.txt"
|
|
07.11.2011, 10:57
| #24 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Kann Backdoor Virus nicht entfernen Sieht ok aus. Mach bitte zur Kontrolle Vollscans mit Malwarebytes und SUPERAntiSpyware und poste die Logs. Denk dran beide Tools zu updaten vor dem Scan!! Anschließend über den OnlineScanner von ESET eine zusätzliche Meinung zu holen ist auch nicht verkehrt: ESET Online Scanner
__________________ Logfiles bitte immer in CODE-Tags posten |
|
07.11.2011, 13:58
| #25 |
| | Kann Backdoor Virus nicht entfernen Vollscan Malwarebytes: Code:
ATTFilter Malwarebytes' Anti-Malware 1.51.2.1300
www.malwarebytes.org
Datenbank Version: 8105
Windows 6.1.7601 Service Pack 1
Internet Explorer 8.0.7601.17514
07.11.2011 11:45:52
mbam-log-2011-11-07 (11-45-52).txt
Art des Suchlaufs: Vollständiger Suchlauf (C:\|F:\|)
Durchsuchte Objekte: 280690
Laufzeit: 36 Minute(n), 37 Sekunde(n)
Infizierte Speicherprozesse: 0
Infizierte Speichermodule: 0
Infizierte Registrierungsschlüssel: 0
Infizierte Registrierungswerte: 0
Infizierte Dateiobjekte der Registrierung: 0
Infizierte Verzeichnisse: 0
Infizierte Dateien: 0
Infizierte Speicherprozesse:
(Keine bösartigen Objekte gefunden)
Infizierte Speichermodule:
(Keine bösartigen Objekte gefunden)
Infizierte Registrierungsschlüssel:
(Keine bösartigen Objekte gefunden)
Infizierte Registrierungswerte:
(Keine bösartigen Objekte gefunden)
Infizierte Dateiobjekte der Registrierung:
(Keine bösartigen Objekte gefunden)
Infizierte Verzeichnisse:
(Keine bösartigen Objekte gefunden)
Infizierte Dateien:
(Keine bösartigen Objekte gefunden)
Code:
ATTFilter SUPERAntiSpyware Scan Log
hxxp://www.superantispyware.com
Generated 11/07/2011 at 12:33 PM
Application Version : 5.0.1134
Core Rules Database Version : 7904
Trace Rules Database Version: 5716
Scan type : Complete Scan
Total Scan Time : 00:39:20
Operating System Information
Windows 7 Home Premium 64-bit, Service Pack 1 (Build 6.01.7601)
UAC On - Limited User
Memory items scanned : 771
Memory threats detected : 0
Registry items scanned : 70175
Registry threats detected : 0
File items scanned : 46476
File threats detected : 6
Adware.Tracking Cookie
.xiti.com [ C:\USERS\OLAV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\NAPZN4BG.DEFAULT\COOKIES.SQLITE ]
.comstats.de [ C:\USERS\OLAV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\NAPZN4BG.DEFAULT\COOKIES.SQLITE ]
.comstats.de [ C:\USERS\OLAV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\NAPZN4BG.DEFAULT\COOKIES.SQLITE ]
.comstats.de [ C:\USERS\OLAV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\NAPZN4BG.DEFAULT\COOKIES.SQLITE ]
www.comstats.de [ C:\USERS\OLAV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\NAPZN4BG.DEFAULT\COOKIES.SQLITE ]
www.comstats.de [ C:\USERS\OLAV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\NAPZN4BG.DEFAULT\COOKIES.SQLITE ]
Code:
ATTFilter ESETSmartInstaller@High as downloader log:
all ok
# version=7
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6583
# api_version=3.0.2
# EOSSerial=b88520cbb6e1f34aac57fa3fced5da85
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2011-11-03 04:31:47
# local_time=2011-11-03 05:31:47 (+0100, Mitteleuropäische Zeit)
# country="Germany"
# lang=1033
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode=5893 16776574 100 94 5180135 71959315 0 0
# compatibility_mode=8192 67108863 100 0 3708 3708 0 0
# scanned=228644
# found=2
# cleaned=0
# scan_time=8441
C:\Users\Olav\AppData\Local\Mozilla\Firefox\Profiles\napzn4bg.default\Cache\6\1B\E0548d01 JS/TrojanDownloader.Iframe.NKE trojan (unable to clean) 00000000000000000000000000000000 I
${Memory} a variant of Win32/Sirefef.CH trojan 00000000000000000000000000000000 I
ESETSmartInstaller@High as downloader log:
all ok
# version=7
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6583
# api_version=3.0.2
# EOSSerial=b88520cbb6e1f34aac57fa3fced5da85
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2011-11-07 12:47:48
# local_time=2011-11-07 01:47:48 (+0100, Mitteleuropäische Zeit)
# country="Germany"
# lang=1033
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode=5893 16776574 100 94 5517020 72296200 0 0
# compatibility_mode=8192 67108863 100 0 340593 340593 0 0
# scanned=118976
# found=0
# cleaned=0
# scan_time=3738
|
|
07.11.2011, 14:34
| #26 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Kann Backdoor Virus nicht entfernen Sieht ok aus, da wurden nur Cookies gefunden. Noch Probleme oder weitere Funde in der Zwischenzeit?
__________________ Logfiles bitte immer in CODE-Tags posten |
|
07.11.2011, 14:48
| #27 |
| | Kann Backdoor Virus nicht entfernen Nein, keine mehr. Vielen dank für die Mühe. |
|
07.11.2011, 14:49
| #28 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Kann Backdoor Virus nicht entfernen Dann wären wir durch!  Die Programme, die hier zum Einsatz kamen, können alle wieder runter. CF kann über Start, Ausführen mit combofix /uninstall entfernt werden. Melde dich falls es da Fehlermeldungen zu gibt. Malwarebytes zu behalten ist kein Fehler. Kannst ja 1x im Monat damit scannen, aber immer vorher ans Update denken. Bitte abschließend die Updates prüfen, unten mein Leitfaden dazu. Um in Zukunft die Aktualität der installierten Programme besser im Überblick zu halten, kannst du zB Secunia PSI verwenden. Für noch mehr Sicherheit solltest Du nach der beseitigten Infektion auch möglichst alle Passwörter ändern. Microsoftupdate Windows XP: Besuch mit dem IE die MS-Updateseite und lass Dir alle wichtigen Updates installieren. Windows Vista/7: Anleitung Windows-Update PDF-Reader aktualisieren Ein veralteter AdobeReader stellt ein großes Sicherheitsrisiko dar. Du solltest daher besser alte Versionen vom AdobeReader über Systemsteuerung => Software bzw. Programme und Funktionen deinstallieren, indem Du dort auf "Adobe Reader x.0" klickst und das Programm entfernst. (falls du AdobeReader installiert hast) Ich empfehle einen alternativen PDF-Reader wie PDF Xchange Viewer, SumatraPDF oder Foxit PDF Reader, die sind sehr viel schlanker und flotter als der AdobeReader. Bitte überprüf bei der Gelegenheit auch die Aktualität des Flashplayers, hier der direkte Downloadlink: Mozilla und andere Browser => http://filepony.de/?q=Flash+Player Internet Explorer => http://fpdownload.adobe.com/get/flas..._player_ax.exe Natürlich auch darauf achten, dass andere installierte Browser wie zB Firefox, Opera oder Chrome aktuell sind. Java-Update Veraltete Java-Installationen sind ein Sicherheitsrisiko, daher solltest Du die alten Versionen löschen (falls vorhanden, am besten mit JavaRa) und auf die neuste aktualisieren. Beende dazu alle Programme (v.a. die Browser), klick danach auf Start, Systemsteuerung, Software und deinstalliere darüber alle aufgelisteten Java-Versionen. Lad Dir danach von hier das aktuelle Java SE Runtime Environment (JRE) herunter und installiere es.
__________________ Logfiles bitte immer in CODE-Tags posten |
|
| Themen zu Kann Backdoor Virus nicht entfernen |
| adobe, adobe flash player, aktuelle, aktuellen, backdoor, dieselbe, entferne, entfernen, entfernt, erfolgreich, flash, flash player, gefunde, gefährlicher, herunterladen, hoffe, installier, installiert, kommt wieder, lösen, meldung, neustart, player, problem, virus, virus auf dem pc, virus gefunden, virusprogramm |
Linear-Darstellung
