w7 64 bit/rootkit whistler, durch ein kaspersky tool entfernt. combofix durchlaufen lassen

rockenderbik · 18.11.2011, 13:32

Nein wird nicht mehr angezeigt. Habs noch mit Bootkit Remover gegengecheckt. Der IP Block war von Malwarebytes...
Hier noch ein Post vom TDSS-Killer, heut früh hat die Zeit nicht gereicht, musste in die Arbeit:

14:03:15.0918 4412 TDSS rootkit removing tool 2.6.18.0 Nov 11 2011 15:47:15
14:03:15.0980 4412 ============================================================
14:03:15.0980 4412 Current date / time: 2011/11/13 14:03:15.0980
14:03:15.0980 4412 SystemInfo:
14:03:15.0980 4412
14:03:15.0980 4412 OS Version: 6.1.7600 ServicePack: 0.0
14:03:15.0980 4412 Product type: Workstation
14:03:15.0980 4412 ComputerName: ANDY-PC
14:03:15.0980 4412 UserName: Andy
14:03:15.0980 4412 Windows directory: C:\Windows
14:03:15.0980 4412 System windows directory: C:\Windows
14:03:15.0980 4412 Running under WOW64
14:03:15.0980 4412 Processor architecture: Intel x64
14:03:15.0980 4412 Number of processors: 4
14:03:15.0980 4412 Page size: 0x1000
14:03:15.0980 4412 Boot type: Normal boot
14:03:15.0980 4412 ============================================================
14:03:18.0118 4412 Initialize success
14:03:23.0999 4720 ============================================================
14:03:23.0999 4720 Scan started
14:03:23.0999 4720 Mode: Manual;
14:03:23.0999 4720 ============================================================
14:03:24.0982 4720 1394ohci (1b00662092f9f9568b995902f0cc40d5) C:\Windows\system32\drivers\1394ohci.sys
14:03:24.0982 4720 1394ohci - ok
14:03:24.0997 4720 ACPI (6f11e88748cdefd2f76aa215f97ddfe5) C:\Windows\system32\drivers\ACPI.sys
14:03:24.0997 4720 ACPI - ok
14:03:25.0028 4720 AcpiPmi (63b05a0420ce4bf0e4af6dcc7cada254) C:\Windows\system32\drivers\acpipmi.sys
14:03:25.0028 4720 AcpiPmi - ok
14:03:25.0075 4720 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
14:03:25.0091 4720 adp94xx - ok
14:03:25.0106 4720 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
14:03:25.0106 4720 adpahci - ok
14:03:25.0122 4720 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
14:03:25.0122 4720 adpu320 - ok
14:03:25.0169 4720 AFD (6ef20ddf3172e97d69f596fb90602f29) C:\Windows\system32\drivers\afd.sys
14:03:25.0169 4720 AFD - ok
14:03:25.0184 4720 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
14:03:25.0184 4720 agp440 - ok
14:03:25.0216 4720 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
14:03:25.0231 4720 aliide - ok
14:03:25.0262 4720 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
14:03:25.0262 4720 amdide - ok
14:03:25.0278 4720 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
14:03:25.0278 4720 AmdK8 - ok
14:03:25.0450 4720 amdkmdag (85193e1bcefe65d0a1befd4fda9180f9) C:\Windows\system32\DRIVERS\atikmdag.sys
14:03:25.0543 4720 amdkmdag - ok
14:03:25.0559 4720 amdkmdap (60ab0b979198da597b7251b3c7444f7e) C:\Windows\system32\DRIVERS\atikmpag.sys
14:03:25.0559 4720 amdkmdap - ok
14:03:25.0574 4720 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
14:03:25.0574 4720 AmdPPM - ok
14:03:25.0590 4720 amdsata (ec7ebab00a4d8448bab68d1e49b4beb9) C:\Windows\system32\drivers\amdsata.sys
14:03:25.0590 4720 amdsata - ok
14:03:25.0606 4720 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
14:03:25.0606 4720 amdsbs - ok
14:03:25.0621 4720 amdxata (db27766102c7bf7e95140a2aa81d042e) C:\Windows\system32\drivers\amdxata.sys
14:03:25.0621 4720 amdxata - ok
14:03:25.0652 4720 AppID (42fd751b27fa0e9c69bb39f39e409594) C:\Windows\system32\drivers\appid.sys
14:03:25.0652 4720 AppID - ok
14:03:25.0684 4720 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
14:03:25.0684 4720 arc - ok
14:03:25.0699 4720 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
14:03:25.0699 4720 arcsas - ok
14:03:25.0730 4720 aswFsBlk (5a68b880c16ad5a6aa20b49a47ffff24) C:\Windows\system32\drivers\aswFsBlk.sys
14:03:25.0730 4720 aswFsBlk - ok
14:03:25.0777 4720 aswMonFlt (230613be2d3da8053879be5ed2848f2d) C:\Windows\system32\drivers\aswMonFlt.sys
14:03:25.0777 4720 aswMonFlt - ok
14:03:25.0793 4720 aswRdr (0dc1996ae4178d7d14744ef6b3082313) C:\Windows\system32\drivers\aswRdr.sys
14:03:25.0793 4720 aswRdr - ok
14:03:25.0824 4720 aswSnx (b6ff911c23775cdfdd49612d92637af4) C:\Windows\system32\drivers\aswSnx.sys
14:03:25.0824 4720 aswSnx - ok
14:03:25.0840 4720 aswSP (5a590d8516376aed1829fc07d3bdaa4b) C:\Windows\system32\drivers\aswSP.sys
14:03:25.0855 4720 aswSP - ok
14:03:25.0871 4720 aswTdi (3239c0082fb0c1c4ee323730b85690a5) C:\Windows\system32\drivers\aswTdi.sys
14:03:25.0871 4720 aswTdi - ok
14:03:25.0886 4720 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
14:03:25.0886 4720 AsyncMac - ok
14:03:25.0918 4720 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
14:03:25.0933 4720 atapi - ok
14:03:25.0980 4720 AtiHDAudioService (dbb487d09f56c674430ac454fd8bcab9) C:\Windows\system32\drivers\AtihdW76.sys
14:03:25.0996 4720 AtiHDAudioService - ok
14:03:26.0027 4720 AtiHdmiService (fb7602c5c508be281368aae0b61b51c6) C:\Windows\system32\drivers\AtiHdmi.sys
14:03:26.0042 4720 AtiHdmiService - ok
14:03:26.0120 4720 atillk64 (26d973d6d9a0d133dfda7d8c1adc04b7) C:\Users\Andy\Downloads\winflash\atillk64.sys
14:03:26.0120 4720 atillk64 - ok
14:03:26.0120 4720 ATITool (a6fad7a5ada4675ba9c9feaf4e0542ba) C:\Windows\system32\DRIVERS\ATITool64.sys
14:03:26.0136 4720 ATITool - ok
14:03:26.0167 4720 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
14:03:26.0183 4720 b06bdrv - ok
14:03:26.0198 4720 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
14:03:26.0198 4720 b57nd60a - ok
14:03:26.0245 4720 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
14:03:26.0245 4720 Beep - ok
14:03:26.0276 4720 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
14:03:26.0276 4720 blbdrive - ok
14:03:26.0323 4720 bowser (19d20159708e152267e53b66677a4995) C:\Windows\system32\DRIVERS\bowser.sys
14:03:26.0339 4720 bowser - ok
14:03:26.0354 4720 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
14:03:26.0354 4720 BrFiltLo - ok
14:03:26.0354 4720 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
14:03:26.0354 4720 BrFiltUp - ok
14:03:26.0370 4720 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
14:03:26.0370 4720 Brserid - ok
14:03:26.0386 4720 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
14:03:26.0386 4720 BrSerWdm - ok
14:03:26.0401 4720 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
14:03:26.0401 4720 BrUsbMdm - ok
14:03:26.0417 4720 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
14:03:26.0417 4720 BrUsbSer - ok
14:03:26.0432 4720 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
14:03:26.0432 4720 BTHMODEM - ok
14:03:26.0448 4720 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
14:03:26.0448 4720 cdfs - ok
14:03:26.0495 4720 cdrom (83d2d75e1efb81b3450c18131443f7db) C:\Windows\system32\drivers\cdrom.sys
14:03:26.0510 4720 cdrom - ok
14:03:26.0510 4720 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
14:03:26.0510 4720 circlass - ok
14:03:26.0542 4720 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
14:03:26.0557 4720 CLFS - ok
14:03:26.0588 4720 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
14:03:26.0588 4720 CmBatt - ok
14:03:26.0604 4720 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
14:03:26.0604 4720 cmdide - ok
14:03:26.0620 4720 CNG (f95fd4cb7da00ba2a63ce9f6b5c053e1) C:\Windows\system32\Drivers\cng.sys
14:03:26.0635 4720 CNG - ok
14:03:26.0635 4720 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
14:03:26.0635 4720 Compbatt - ok
14:03:26.0682 4720 CompositeBus (f26b3a86f6fa87ca360b879581ab4123) C:\Windows\system32\drivers\CompositeBus.sys
14:03:26.0682 4720 CompositeBus - ok
14:03:26.0698 4720 cpuz130 - ok
14:03:26.0713 4720 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
14:03:26.0729 4720 crcdisk - ok
14:03:26.0744 4720 CSC (4a6173c2279b498cd8f57cae504564cb) C:\Windows\system32\drivers\csc.sys
14:03:26.0760 4720 CSC - ok
14:03:26.0791 4720 DfsC (9c253ce7311ca60fc11c774692a13208) C:\Windows\system32\Drivers\dfsc.sys
14:03:26.0791 4720 DfsC - ok
14:03:26.0807 4720 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
14:03:26.0822 4720 discache - ok
14:03:26.0838 4720 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
14:03:26.0838 4720 Disk - ok
14:03:26.0900 4720 Dot4 (b42ed0320c6e41102fde0005154849bb) C:\Windows\system32\DRIVERS\Dot4.sys
14:03:26.0900 4720 Dot4 - ok
14:03:26.0916 4720 Dot4Print (85135ad27e79b689335c08167d917cde) C:\Windows\system32\DRIVERS\Dot4Prt.sys
14:03:26.0916 4720 Dot4Print - ok
14:03:26.0932 4720 dot4usb (fd05a02b0370bc3000f402e543ca5814) C:\Windows\system32\DRIVERS\dot4usb.sys
14:03:26.0932 4720 dot4usb - ok
14:03:26.0978 4720 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
14:03:26.0978 4720 drmkaud - ok
14:03:27.0025 4720 DslMNLwf (d52eeb224df107aad9059597f0eb95cc) C:\Windows\system32\DRIVERS\dslmnlwf.sys
14:03:27.0025 4720 DslMNLwf - ok
14:03:27.0056 4720 DXGKrnl (1633b9abf52784a1331476397a48cbef) C:\Windows\System32\drivers\dxgkrnl.sys
14:03:27.0072 4720 DXGKrnl - ok
14:03:27.0119 4720 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
14:03:27.0150 4720 ebdrv - ok
14:03:27.0212 4720 ElbyCDIO (9a47ac3dfcf81d30922cdaaf1c2d579f) C:\Windows\system32\Drivers\ElbyCDIO.sys
14:03:27.0212 4720 ElbyCDIO - ok
14:03:27.0228 4720 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
14:03:27.0244 4720 elxstor - ok
14:03:27.0275 4720 ENTECH64 (12c061d9f9621be916d58191872ec281) C:\Windows\system32\DRIVERS\ENTECH64.sys
14:03:27.0275 4720 ENTECH64 - ok
14:03:27.0306 4720 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
14:03:27.0306 4720 ErrDev - ok
14:03:27.0322 4720 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
14:03:27.0337 4720 exfat - ok
14:03:27.0353 4720 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
14:03:27.0353 4720 fastfat - ok
14:03:27.0368 4720 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
14:03:27.0368 4720 fdc - ok
14:03:27.0400 4720 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
14:03:27.0400 4720 FileInfo - ok
14:03:27.0400 4720 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
14:03:27.0400 4720 Filetrace - ok
14:03:27.0431 4720 FLASHSYS - ok
14:03:27.0446 4720 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
14:03:27.0446 4720 flpydisk - ok
14:03:27.0462 4720 FltMgr (f7866af72abbaf84b1fa5aa195378c59) C:\Windows\system32\drivers\fltmgr.sys
14:03:27.0478 4720 FltMgr - ok
14:03:27.0478 4720 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
14:03:27.0478 4720 FsDepends - ok
14:03:27.0493 4720 Fs_Rec (e95ef8547de20cf0603557c0cf7a9462) C:\Windows\system32\drivers\Fs_Rec.sys
14:03:27.0493 4720 Fs_Rec - ok
14:03:27.0524 4720 fvevol (ae87ba80d0ec3b57126ed2cdc15b24ed) C:\Windows\system32\DRIVERS\fvevol.sys
14:03:27.0524 4720 fvevol - ok
14:03:27.0540 4720 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
14:03:27.0556 4720 gagp30kx - ok
14:03:27.0571 4720 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
14:03:27.0571 4720 hcw85cir - ok
14:03:27.0602 4720 HdAudAddService (6410f6f415b2a5a9037224c41da8bf12) C:\Windows\system32\drivers\HdAudio.sys
14:03:27.0602 4720 HdAudAddService - ok
14:03:27.0634 4720 HDAudBus (0a49913402747a0b67de940fb42cbdbb) C:\Windows\system32\DRIVERS\HDAudBus.sys
14:03:27.0634 4720 HDAudBus - ok
14:03:27.0665 4720 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
14:03:27.0665 4720 HidBatt - ok
14:03:27.0680 4720 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
14:03:27.0680 4720 HidBth - ok
14:03:27.0696 4720 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
14:03:27.0696 4720 HidIr - ok
14:03:27.0743 4720 HidUsb (b3bf6b5b50006def50b66306d99fcf6f) C:\Windows\system32\DRIVERS\hidusb.sys
14:03:27.0743 4720 HidUsb - ok
14:03:27.0758 4720 HpSAMD (0886d440058f203eba0e1825e4355914) C:\Windows\system32\drivers\HpSAMD.sys
14:03:27.0774 4720 HpSAMD - ok
14:03:27.0805 4720 HTTP (cee049cac4efa7f4e1e4ad014414a5d4) C:\Windows\system32\drivers\HTTP.sys
14:03:27.0805 4720 HTTP - ok
14:03:27.0821 4720 hwpolicy (f17766a19145f111856378df337a5d79) C:\Windows\system32\drivers\hwpolicy.sys
14:03:27.0821 4720 hwpolicy - ok
14:03:27.0852 4720 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
14:03:27.0852 4720 i8042prt - ok
14:03:27.0899 4720 iaStor (1d004cb1da6323b1f55caef7f94b61d9) C:\Windows\system32\DRIVERS\iaStor.sys
14:03:27.0899 4720 iaStor - ok
14:03:27.0930 4720 iaStorV (b75e45c564e944a2657167d197ab29da) C:\Windows\system32\drivers\iaStorV.sys
14:03:27.0946 4720 iaStorV - ok
14:03:27.0977 4720 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
14:03:27.0977 4720 iirsp - ok
14:03:28.0070 4720 IntcAzAudAddService (028e40182a6f0374978c755f85b9f07c) C:\Windows\system32\drivers\RTKVHD64.sys
14:03:28.0086 4720 IntcAzAudAddService - ok
14:03:28.0102 4720 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
14:03:28.0102 4720 intelide - ok
14:03:28.0133 4720 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
14:03:28.0133 4720 intelppm - ok
14:03:28.0148 4720 IpFilterDriver (722dd294df62483cecaae6e094b4d695) C:\Windows\system32\DRIVERS\ipfltdrv.sys
14:03:28.0148 4720 IpFilterDriver - ok
14:03:28.0164 4720 IPMIDRV (e2b4a4494db7cb9b89b55ca268c337c5) C:\Windows\system32\drivers\IPMIDrv.sys
14:03:28.0164 4720 IPMIDRV - ok
14:03:28.0180 4720 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
14:03:28.0180 4720 IPNAT - ok
14:03:28.0195 4720 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
14:03:28.0195 4720 IRENUM - ok
14:03:28.0195 4720 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
14:03:28.0195 4720 isapnp - ok
14:03:28.0211 4720 iScsiPrt (fa4d2557de56d45b0a346f93564be6e1) C:\Windows\system32\drivers\msiscsi.sys
14:03:28.0211 4720 iScsiPrt - ok
14:03:28.0226 4720 iteio - ok
14:03:28.0242 4720 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
14:03:28.0242 4720 kbdclass - ok
14:03:28.0258 4720 kbdhid (6def98f8541e1b5dceb2c822a11f7323) C:\Windows\system32\DRIVERS\kbdhid.sys
14:03:28.0273 4720 kbdhid - ok
14:03:28.0273 4720 KSecDD (e8b6fcc9c83535c67f835d407620bd27) C:\Windows\system32\Drivers\ksecdd.sys
14:03:28.0289 4720 KSecDD - ok
14:03:28.0304 4720 KSecPkg (a8c63880ef6f4d3fec7b616b9c060215) C:\Windows\system32\Drivers\ksecpkg.sys
14:03:28.0320 4720 KSecPkg - ok
14:03:28.0336 4720 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
14:03:28.0336 4720 ksthunk - ok
14:03:28.0429 4720 LHidFilt (ceb6e18dcfad5c72b81c7da1ac3c1cc1) C:\Windows\system32\DRIVERS\LHidFilt.Sys
14:03:28.0429 4720 LHidFilt - ok
14:03:28.0492 4720 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
14:03:28.0492 4720 lltdio - ok
14:03:28.0507 4720 LMouFilt (f9e48f18be4d2b365f138987b8e7885b) C:\Windows\system32\DRIVERS\LMouFilt.Sys
14:03:28.0507 4720 LMouFilt - ok
14:03:28.0523 4720 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
14:03:28.0523 4720 LSI_FC - ok
14:03:28.0538 4720 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
14:03:28.0538 4720 LSI_SAS - ok
14:03:28.0554 4720 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
14:03:28.0554 4720 LSI_SAS2 - ok
14:03:28.0585 4720 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
14:03:28.0585 4720 LSI_SCSI - ok
14:03:28.0601 4720 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
14:03:28.0616 4720 luafv - ok
14:03:28.0632 4720 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
14:03:28.0632 4720 megasas - ok
14:03:28.0648 4720 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
14:03:28.0648 4720 MegaSR - ok
14:03:28.0679 4720 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
14:03:28.0679 4720 Modem - ok
14:03:28.0694 4720 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
14:03:28.0694 4720 monitor - ok
14:03:28.0710 4720 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
14:03:28.0710 4720 mouclass - ok
14:03:28.0741 4720 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
14:03:28.0741 4720 mouhid - ok
14:03:28.0741 4720 mountmgr (791af66c4d0e7c90a3646066386fb571) C:\Windows\system32\drivers\mountmgr.sys
14:03:28.0757 4720 mountmgr - ok
14:03:28.0773 4720 mpio (609d1d87649ecc19796f4d76d4c15cea) C:\Windows\system32\drivers\mpio.sys
14:03:28.0788 4720 mpio - ok
14:03:28.0804 4720 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
14:03:28.0804 4720 mpsdrv - ok
14:03:28.0819 4720 MRxDAV (30524261bb51d96d6fcbac20c810183c) C:\Windows\system32\drivers\mrxdav.sys
14:03:28.0819 4720 MRxDAV - ok
14:03:28.0851 4720 mrxsmb (040d62a9d8ad28922632137acdd984f2) C:\Windows\system32\DRIVERS\mrxsmb.sys
14:03:28.0851 4720 mrxsmb - ok
14:03:28.0882 4720 mrxsmb10 (f0067552f8f9b33d7c59403ab808a3cb) C:\Windows\system32\DRIVERS\mrxsmb10.sys
14:03:28.0897 4720 mrxsmb10 - ok
14:03:28.0913 4720 mrxsmb20 (3c142d31de9f2f193218a53fe2632051) C:\Windows\system32\DRIVERS\mrxsmb20.sys
14:03:28.0913 4720 mrxsmb20 - ok
14:03:28.0913 4720 msahci (5c37497276e3b3a5488b23a326a754b7) C:\Windows\system32\drivers\msahci.sys
14:03:28.0913 4720 msahci - ok
14:03:28.0944 4720 msdsm (8d27b597229aed79430fb9db3bcbfbd0) C:\Windows\system32\drivers\msdsm.sys
14:03:28.0944 4720 msdsm - ok
14:03:28.0975 4720 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
14:03:28.0975 4720 Msfs - ok
14:03:28.0975 4720 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
14:03:28.0975 4720 mshidkmdf - ok
14:03:28.0991 4720 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
14:03:28.0991 4720 msisadrv - ok
14:03:29.0007 4720 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
14:03:29.0022 4720 MSKSSRV - ok
14:03:29.0038 4720 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
14:03:29.0038 4720 MSPCLOCK - ok
14:03:29.0053 4720 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
14:03:29.0053 4720 MSPQM - ok
14:03:29.0085 4720 MsRPC (89cb141aa8616d8c6a4610fa26c60964) C:\Windows\system32\drivers\MsRPC.sys
14:03:29.0085 4720 MsRPC - ok
14:03:29.0100 4720 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
14:03:29.0100 4720 mssmbios - ok
14:03:29.0116 4720 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
14:03:29.0116 4720 MSTEE - ok
14:03:29.0131 4720 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
14:03:29.0131 4720 MTConfig - ok
14:03:29.0147 4720 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
14:03:29.0147 4720 Mup - ok
14:03:29.0178 4720 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
14:03:29.0178 4720 NativeWifiP - ok
14:03:29.0209 4720 NDIS (cad515dbd07d082bb317d9928ce8962c) C:\Windows\system32\drivers\ndis.sys
14:03:29.0225 4720 NDIS - ok
14:03:29.0241 4720 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
14:03:29.0241 4720 NdisCap - ok
14:03:29.0256 4720 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
14:03:29.0256 4720 NdisTapi - ok
14:03:29.0272 4720 Ndisuio (f105ba1e22bf1f2ee8f005d4305e4bec) C:\Windows\system32\DRIVERS\ndisuio.sys
14:03:29.0272 4720 Ndisuio - ok
14:03:29.0303 4720 NdisWan (557dfab9ca1fcb036ac77564c010dad3) C:\Windows\system32\DRIVERS\ndiswan.sys
14:03:29.0303 4720 NdisWan - ok
14:03:29.0319 4720 NDProxy (659b74fb74b86228d6338d643cd3e3cf) C:\Windows\system32\drivers\NDProxy.sys
14:03:29.0319 4720 NDProxy - ok
14:03:29.0365 4720 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
14:03:29.0365 4720 NetBIOS - ok
14:03:29.0381 4720 NetBT (9162b273a44ab9dce5b44362731d062a) C:\Windows\system32\DRIVERS\netbt.sys
14:03:29.0397 4720 NetBT - ok
14:03:29.0428 4720 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
14:03:29.0428 4720 nfrd960 - ok
14:03:29.0443 4720 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
14:03:29.0443 4720 Npfs - ok
14:03:29.0459 4720 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
14:03:29.0475 4720 nsiproxy - ok
14:03:29.0506 4720 Ntfs (378e0e0dfea67d98ae6ea53adbbd76bc) C:\Windows\system32\drivers\Ntfs.sys
14:03:29.0537 4720 Ntfs - ok
14:03:29.0553 4720 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
14:03:29.0553 4720 Null - ok
14:03:29.0584 4720 nvraid (a4d9c9a608a97f59307c2f2600edc6a4) C:\Windows\system32\drivers\nvraid.sys
14:03:29.0584 4720 nvraid - ok
14:03:29.0599 4720 nvstor (6c1d5f70e7a6a3fd1c90d840edc048b9) C:\Windows\system32\drivers\nvstor.sys
14:03:29.0599 4720 nvstor - ok
14:03:29.0631 4720 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
14:03:29.0631 4720 nv_agp - ok
14:03:29.0662 4720 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
14:03:29.0662 4720 ohci1394 - ok
14:03:29.0693 4720 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
14:03:29.0693 4720 Parport - ok
14:03:29.0724 4720 partmgr (7daa117143316c4a1537e074a5a9eaf0) C:\Windows\system32\drivers\partmgr.sys
14:03:29.0724 4720 partmgr - ok
14:03:29.0771 4720 pbfilter (55223eefabfdb84a926515febab50d9a) C:\Program Files\PeerBlock\pbfilter.sys
14:03:29.0771 4720 pbfilter - ok
14:03:29.0802 4720 pci (f36f6504009f2fb0dfd1b17a116ad74b) C:\Windows\system32\drivers\pci.sys
14:03:29.0802 4720 pci - ok
14:03:29.0833 4720 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
14:03:29.0833 4720 pciide - ok
14:03:29.0833 4720 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
14:03:29.0833 4720 pcmcia - ok
14:03:29.0849 4720 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
14:03:29.0849 4720 pcw - ok
14:03:29.0865 4720 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
14:03:29.0880 4720 PEAUTH - ok
14:03:29.0943 4720 PptpMiniport (27cc19e81ba5e3403c48302127bda717) C:\Windows\system32\DRIVERS\raspptp.sys
14:03:29.0943 4720 PptpMiniport - ok
14:03:29.0958 4720 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
14:03:29.0958 4720 Processor - ok
14:03:29.0989 4720 Psched (ee992183bd8eaefd9973f352e587a299) C:\Windows\system32\DRIVERS\pacer.sys
14:03:29.0989 4720 Psched - ok
14:03:30.0021 4720 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
14:03:30.0036 4720 ql2300 - ok
14:03:30.0052 4720 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
14:03:30.0052 4720 ql40xx - ok
14:03:30.0067 4720 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
14:03:30.0067 4720 QWAVEdrv - ok
14:03:30.0083 4720 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
14:03:30.0099 4720 RasAcd - ok
14:03:30.0114 4720 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
14:03:30.0114 4720 RasAgileVpn - ok
14:03:30.0130 4720 Rasl2tp (87a6e852a22991580d6d39adc4790463) C:\Windows\system32\DRIVERS\rasl2tp.sys
14:03:30.0145 4720 Rasl2tp - ok
14:03:30.0161 4720 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
14:03:30.0161 4720 RasPppoe - ok
14:03:30.0177 4720 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
14:03:30.0177 4720 RasSstp - ok
14:03:30.0239 4720 rdbss (3bac8142102c15d59a87757c1d41dce5) C:\Windows\system32\DRIVERS\rdbss.sys
14:03:30.0239 4720 rdbss - ok
14:03:30.0255 4720 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
14:03:30.0270 4720 rdpbus - ok
14:03:30.0270 4720 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
14:03:30.0270 4720 RDPCDD - ok
14:03:30.0286 4720 RDPDR (9706b84dbabfc4b4ca46c5a82b14dfa3) C:\Windows\system32\drivers\rdpdr.sys
14:03:30.0301 4720 RDPDR - ok
14:03:30.0317 4720 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
14:03:30.0317 4720 RDPENCDD - ok
14:03:30.0317 4720 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
14:03:30.0317 4720 RDPREFMP - ok
14:03:30.0348 4720 RDPWD (8a3e6bea1c53ea6177fe2b6eba2c80d7) C:\Windows\system32\drivers\RDPWD.sys
14:03:30.0348 4720 RDPWD - ok
14:03:30.0364 4720 rdyboost (634b9a2181d98f15941236886164ec8b) C:\Windows\system32\drivers\rdyboost.sys
14:03:30.0364 4720 rdyboost - ok
14:03:30.0426 4720 RivaTuner64 (a10b40cf9eb57d24e44717a2d38a00f4) C:\Program Files (x86)\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\RivaTuner64.sys
14:03:30.0426 4720 RivaTuner64 - ok
14:03:30.0457 4720 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
14:03:30.0457 4720 rspndr - ok
14:03:30.0489 4720 RTL8167 (abcb5a38a0d85bdf69b7877e1ad1eed5) C:\Windows\system32\DRIVERS\Rt64win7.sys
14:03:30.0489 4720 RTL8167 - ok
14:03:30.0551 4720 s115bus (e0f0977caafdf719929c8ca02a1c5147) C:\Windows\system32\DRIVERS\s115bus.sys
14:03:30.0551 4720 s115bus - ok
14:03:30.0567 4720 s115mdfl (136328e6c3086a19eb3154058bc7b3a3) C:\Windows\system32\DRIVERS\s115mdfl.sys
14:03:30.0567 4720 s115mdfl - ok
14:03:30.0567 4720 s115mdm (54552277de7eae1a2e108a4cff7abb07) C:\Windows\system32\DRIVERS\s115mdm.sys
14:03:30.0582 4720 s115mdm - ok
14:03:30.0598 4720 s115mgmt (e9b3966836cb9c2107264e44249267df) C:\Windows\system32\DRIVERS\s115mgmt.sys
14:03:30.0598 4720 s115mgmt - ok
14:03:30.0629 4720 s115obex (f6ab3b6e35981c4f3fed4198d3f29674) C:\Windows\system32\DRIVERS\s115obex.sys
14:03:30.0629 4720 s115obex - ok
14:03:30.0660 4720 s3cap (88af6e02ab19df7fd07ecdf9c91e9af6) C:\Windows\system32\drivers\vms3cap.sys
14:03:30.0660 4720 s3cap - ok
14:03:30.0691 4720 sbp2port (e3bbb89983daf5622c1d50cf49f28227) C:\Windows\system32\drivers\sbp2port.sys
14:03:30.0691 4720 sbp2port - ok
14:03:30.0691 4720 scfilter (c94da20c7e3ba1dca269bc8460d98387) C:\Windows\system32\DRIVERS\scfilter.sys
14:03:30.0707 4720 scfilter - ok
14:03:30.0723 4720 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
14:03:30.0723 4720 secdrv - ok
14:03:30.0738 4720 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
14:03:30.0738 4720 Serenum - ok
14:03:30.0754 4720 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
14:03:30.0754 4720 Serial - ok
14:03:30.0769 4720 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
14:03:30.0785 4720 sermouse - ok
14:03:30.0801 4720 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
14:03:30.0816 4720 sffdisk - ok
14:03:30.0816 4720 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
14:03:30.0832 4720 sffp_mmc - ok
14:03:30.0832 4720 sffp_sd (178298f767fe638c9fedcbdef58bb5e4) C:\Windows\system32\drivers\sffp_sd.sys
14:03:30.0832 4720 sffp_sd - ok
14:03:30.0847 4720 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
14:03:30.0847 4720 sfloppy - ok
14:03:30.0879 4720 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
14:03:30.0879 4720 SiSRaid2 - ok
14:03:30.0894 4720 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
14:03:30.0894 4720 SiSRaid4 - ok
14:03:30.0910 4720 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
14:03:30.0910 4720 Smb - ok
14:03:30.0957 4720 speedfan - ok
14:03:30.0972 4720 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
14:03:30.0972 4720 spldr - ok
14:03:31.0019 4720 srv (2408c0366d96bcdf63e8f1c78e4a29c5) C:\Windows\system32\DRIVERS\srv.sys
14:03:31.0019 4720 srv - ok
14:03:31.0035 4720 srv2 (76548f7b818881b47d8d1ae1be9c11f8) C:\Windows\system32\DRIVERS\srv2.sys
14:03:31.0035 4720 srv2 - ok
14:03:31.0081 4720 srvnet (0af6e19d39c70844c5caa8fb0183c36e) C:\Windows\system32\DRIVERS\srvnet.sys
14:03:31.0081 4720 srvnet - ok
14:03:31.0097 4720 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
14:03:31.0097 4720 stexstor - ok
14:03:31.0128 4720 storflt (ffd7a6f15b14234b5b0e5d49e7961895) C:\Windows\system32\drivers\vmstorfl.sys
14:03:31.0128 4720 storflt - ok
14:03:31.0144 4720 storvsc (8fccbefc5c440b3c23454656e551b09a) C:\Windows\system32\drivers\storvsc.sys
14:03:31.0144 4720 storvsc - ok
14:03:31.0144 4720 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
14:03:31.0144 4720 swenum - ok
14:03:31.0222 4720 Tcpip (b9d87c7707f058ac652a398cd28de14b) C:\Windows\system32\drivers\tcpip.sys
14:03:31.0237 4720 Tcpip - ok
14:03:31.0269 4720 TCPIP6 (b9d87c7707f058ac652a398cd28de14b) C:\Windows\system32\DRIVERS\tcpip.sys
14:03:31.0284 4720 TCPIP6 - ok
14:03:31.0300 4720 tcpipreg (76d078af6f587b162d50210f761eb9ed) C:\Windows\system32\drivers\tcpipreg.sys
14:03:31.0300 4720 tcpipreg - ok
14:03:31.0362 4720 Tcpz-x64 - ok
14:03:31.0378 4720 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
14:03:31.0378 4720 TDPIPE - ok
14:03:31.0409 4720 TDTCP (e4245bda3190a582d55ed09e137401a9) C:\Windows\system32\drivers\tdtcp.sys
14:03:31.0409 4720 TDTCP - ok
14:03:31.0440 4720 tdx (079125c4b17b01fcaeebce0bcb290c0f) C:\Windows\system32\DRIVERS\tdx.sys
14:03:31.0440 4720 tdx - ok
14:03:31.0456 4720 TermDD (c448651339196c0e869a355171875522) C:\Windows\system32\drivers\termdd.sys
14:03:31.0456 4720 TermDD - ok
14:03:31.0487 4720 tssecsrv (61b96c26131e37b24e93327a0bd1fb95) C:\Windows\system32\DRIVERS\tssecsrv.sys
14:03:31.0487 4720 tssecsrv - ok
14:03:31.0503 4720 tunnel (3836171a2cdf3af8ef10856db9835a70) C:\Windows\system32\DRIVERS\tunnel.sys
14:03:31.0503 4720 tunnel - ok
14:03:31.0534 4720 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
14:03:31.0534 4720 uagp35 - ok
14:03:31.0549 4720 udfs (d47baead86c65d4f4069d7ce0a4edceb) C:\Windows\system32\DRIVERS\udfs.sys
14:03:31.0549 4720 udfs - ok
14:03:31.0596 4720 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
14:03:31.0596 4720 uliagpkx - ok
14:03:31.0627 4720 umbus (eab6c35e62b1b0db0d1b48b671d3a117) C:\Windows\system32\drivers\umbus.sys
14:03:31.0627 4720 umbus - ok
14:03:31.0643 4720 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
14:03:31.0643 4720 UmPass - ok
14:03:31.0659 4720 usbccgp (7b6a127c93ee590e4d79a5f2a76fe46f) C:\Windows\system32\DRIVERS\usbccgp.sys
14:03:31.0674 4720 usbccgp - ok
14:03:31.0705 4720 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
14:03:31.0705 4720 usbcir - ok
14:03:31.0721 4720 usbehci (92969ba5ac44e229c55a332864f79677) C:\Windows\system32\DRIVERS\usbehci.sys
14:03:31.0721 4720 usbehci - ok
14:03:31.0737 4720 usbhub (e7df1cfd28ca86b35ef5add0735ceef3) C:\Windows\system32\DRIVERS\usbhub.sys
14:03:31.0737 4720 usbhub - ok
14:03:31.0752 4720 usbohci (f1bb1e55f1e7a65c5839ccc7b36d773e) C:\Windows\system32\drivers\usbohci.sys
14:03:31.0752 4720 usbohci - ok
14:03:31.0768 4720 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
14:03:31.0768 4720 usbprint - ok
14:03:31.0799 4720 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys
14:03:31.0799 4720 usbscan - ok
14:03:31.0815 4720 USBSTOR (f39983647bc1f3e6100778ddfe9dce29) C:\Windows\system32\drivers\USBSTOR.SYS
14:03:31.0815 4720 USBSTOR - ok
14:03:31.0830 4720 usbuhci (bc3070350a491d84b518d7cca9abd36f) C:\Windows\system32\DRIVERS\usbuhci.sys
14:03:31.0830 4720 usbuhci - ok
14:03:31.0861 4720 vcdrom - ok
14:03:31.0893 4720 VClone (84bb306b7863883018d7f3eb0c453bd5) C:\Windows\system32\DRIVERS\VClone.sys
14:03:31.0893 4720 VClone - ok
14:03:31.0908 4720 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
14:03:31.0924 4720 vdrvroot - ok
14:03:31.0955 4720 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
14:03:31.0955 4720 vga - ok
14:03:31.0971 4720 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
14:03:31.0971 4720 VgaSave - ok
14:03:32.0002 4720 vhdmp (c82e748660f62a242b2dfac1442f22a4) C:\Windows\system32\drivers\vhdmp.sys
14:03:32.0002 4720 vhdmp - ok
14:03:32.0033 4720 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
14:03:32.0033 4720 viaide - ok
14:03:32.0049 4720 vmbus (1501699d7eda984abc4155a7da5738d1) C:\Windows\system32\drivers\vmbus.sys
14:03:32.0049 4720 vmbus - ok
14:03:32.0064 4720 VMBusHID (ae10c35761889e65a6f7176937c5592c) C:\Windows\system32\drivers\VMBusHID.sys
14:03:32.0064 4720 VMBusHID - ok
14:03:32.0080 4720 volmgr (2b1a3dae2b4e70dbba822b7a03fbd4a3) C:\Windows\system32\drivers\volmgr.sys
14:03:32.0080 4720 volmgr - ok
14:03:32.0095 4720 volmgrx (99b0cbb569ca79acaed8c91461d765fb) C:\Windows\system32\drivers\volmgrx.sys
14:03:32.0111 4720 volmgrx - ok
14:03:32.0127 4720 volsnap (58f82eed8ca24b461441f9c3e4f0bf5c) C:\Windows\system32\drivers\volsnap.sys
14:03:32.0127 4720 volsnap - ok
14:03:32.0158 4720 vpcbus (abd9b4a7e2d0ae51a3b8df1af3152d61) C:\Windows\system32\DRIVERS\vpchbus.sys
14:03:32.0158 4720 vpcbus - ok
14:03:32.0173 4720 vpcnfltr (8acda395841538ce9713a67fe8b2a3eb) C:\Windows\system32\DRIVERS\vpcnfltr.sys
14:03:32.0173 4720 vpcnfltr - ok
14:03:32.0205 4720 vpcusb (31924e31bc315773e6d149b157db46d5) C:\Windows\system32\DRIVERS\vpcusb.sys
14:03:32.0205 4720 vpcusb - ok
14:03:32.0236 4720 vpcvmm (c5b651e52540e6f46da66574c74b4898) C:\Windows\system32\drivers\vpcvmm.sys
14:03:32.0251 4720 vpcvmm - ok
14:03:32.0267 4720 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
14:03:32.0283 4720 vsmraid - ok
14:03:32.0283 4720 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\System32\drivers\vwifibus.sys
14:03:32.0283 4720 vwifibus - ok
14:03:32.0314 4720 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
14:03:32.0314 4720 WacomPen - ok
14:03:32.0329 4720 WANARP (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys
14:03:32.0345 4720 WANARP - ok
14:03:32.0345 4720 Wanarpv6 (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys
14:03:32.0345 4720 Wanarpv6 - ok
14:03:32.0361 4720 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
14:03:32.0376 4720 Wd - ok
14:03:32.0392 4720 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
14:03:32.0392 4720 Wdf01000 - ok
14:03:32.0439 4720 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
14:03:32.0439 4720 WfpLwf - ok
14:03:32.0454 4720 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
14:03:32.0454 4720 WIMMount - ok
14:03:32.0501 4720 WinUsb (817eaff5d38674edd7713b9dfb8e9791) C:\Windows\system32\DRIVERS\WinUsb.sys
14:03:32.0501 4720 WinUsb - ok
14:03:32.0548 4720 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
14:03:32.0548 4720 WmiAcpi - ok
14:03:32.0579 4720 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
14:03:32.0579 4720 ws2ifsl - ok
14:03:32.0610 4720 WudfPf (7cadc74271dd6461c452c271b30bd378) C:\Windows\system32\drivers\WudfPf.sys
14:03:32.0610 4720 WudfPf - ok
14:03:32.0641 4720 WUDFRd (3b197af0fff08aa66b6b2241ca538d64) C:\Windows\system32\DRIVERS\WUDFRd.sys
14:03:32.0641 4720 WUDFRd - ok
14:03:32.0673 4720 zntport - ok
14:03:32.0704 4720 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
14:03:32.0704 4720 \Device\Harddisk0\DR0 - ok
14:03:32.0704 4720 Boot (0x1200) (b53ff22f5333bc165a38abbb47576bf6) \Device\Harddisk0\DR0\Partition0
14:03:32.0704 4720 \Device\Harddisk0\DR0\Partition0 - ok
14:03:32.0719 4720 Boot (0x1200) (d3efc9492dcb9cff9420909ecd0c28f1) \Device\Harddisk0\DR0\Partition1
14:03:32.0719 4720 \Device\Harddisk0\DR0\Partition1 - ok
14:03:32.0719 4720 ============================================================
14:03:32.0719 4720 Scan finished
14:03:32.0719 4720 ============================================================
14:03:32.0735 4624 Detected object count: 0
14:03:32.0735 4624 Actual detected object count: 0
14:29:17.0549 3412 ============================================================
14:29:17.0563 3412 Scan started
14:29:17.0563 3412 Mode: Manual;
14:29:17.0563 3412 ============================================================
14:29:17.0953 3412 1394ohci (1b00662092f9f9568b995902f0cc40d5) C:\Windows\system32\drivers\1394ohci.sys
14:29:17.0956 3412 1394ohci - ok
14:29:17.0970 3412 ACPI (6f11e88748cdefd2f76aa215f97ddfe5) C:\Windows\system32\drivers\ACPI.sys
14:29:17.0974 3412 ACPI - ok
14:29:17.0998 3412 AcpiPmi (63b05a0420ce4bf0e4af6dcc7cada254) C:\Windows\system32\drivers\acpipmi.sys
14:29:17.0999 3412 AcpiPmi - ok
14:29:18.0043 3412 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
14:29:18.0048 3412 adp94xx - ok
14:29:18.0063 3412 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
14:29:18.0066 3412 adpahci - ok
14:29:18.0078 3412 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
14:29:18.0081 3412 adpu320 - ok
14:29:18.0123 3412 AFD (6ef20ddf3172e97d69f596fb90602f29) C:\Windows\system32\drivers\afd.sys
14:29:18.0128 3412 AFD - ok
14:29:18.0145 3412 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
14:29:18.0146 3412 agp440 - ok
14:29:18.0170 3412 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
14:29:18.0170 3412 aliide - ok
14:29:18.0213 3412 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
14:29:18.0214 3412 amdide - ok
14:29:18.0232 3412 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
14:29:18.0233 3412 AmdK8 - ok
14:29:18.0402 3412 amdkmdag (85193e1bcefe65d0a1befd4fda9180f9) C:\Windows\system32\DRIVERS\atikmdag.sys
14:29:18.0478 3412 amdkmdag - ok
14:29:18.0514 3412 amdkmdap (60ab0b979198da597b7251b3c7444f7e) C:\Windows\system32\DRIVERS\atikmpag.sys
14:29:18.0515 3412 amdkmdap - ok
14:29:18.0533 3412 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
14:29:18.0534 3412 AmdPPM - ok
14:29:18.0554 3412 amdsata (ec7ebab00a4d8448bab68d1e49b4beb9) C:\Windows\system32\drivers\amdsata.sys
14:29:18.0555 3412 amdsata - ok
14:29:18.0568 3412 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
14:29:18.0570 3412 amdsbs - ok
14:29:18.0587 3412 amdxata (db27766102c7bf7e95140a2aa81d042e) C:\Windows\system32\drivers\amdxata.sys
14:29:18.0588 3412 amdxata - ok
14:29:18.0609 3412 AppID (42fd751b27fa0e9c69bb39f39e409594) C:\Windows\system32\drivers\appid.sys
14:29:18.0610 3412 AppID - ok
14:29:18.0641 3412 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
14:29:18.0643 3412 arc - ok
14:29:18.0656 3412 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
14:29:18.0657 3412 arcsas - ok
14:29:18.0698 3412 aswFsBlk (5a68b880c16ad5a6aa20b49a47ffff24) C:\Windows\system32\drivers\aswFsBlk.sys
14:29:18.0699 3412 aswFsBlk - ok
14:29:18.0738 3412 aswMonFlt (230613be2d3da8053879be5ed2848f2d) C:\Windows\system32\drivers\aswMonFlt.sys
14:29:18.0739 3412 aswMonFlt - ok
14:29:18.0754 3412 aswRdr (0dc1996ae4178d7d14744ef6b3082313) C:\Windows\system32\drivers\aswRdr.sys
14:29:18.0754 3412 aswRdr - ok
14:29:18.0774 3412 aswSnx (b6ff911c23775cdfdd49612d92637af4) C:\Windows\system32\drivers\aswSnx.sys
14:29:18.0780 3412 aswSnx - ok
14:29:18.0802 3412 aswSP (5a590d8516376aed1829fc07d3bdaa4b) C:\Windows\system32\drivers\aswSP.sys
14:29:18.0805 3412 aswSP - ok
14:29:18.0823 3412 aswTdi (3239c0082fb0c1c4ee323730b85690a5) C:\Windows\system32\drivers\aswTdi.sys
14:29:18.0825 3412 aswTdi - ok
14:29:18.0848 3412 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
14:29:18.0848 3412 AsyncMac - ok
14:29:18.0888 3412 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
14:29:18.0889 3412 atapi - ok
14:29:18.0950 3412 AtiHDAudioService (dbb487d09f56c674430ac454fd8bcab9) C:\Windows\system32\drivers\AtihdW76.sys
14:29:18.0952 3412 AtiHDAudioService - ok
14:29:18.0997 3412 AtiHdmiService (fb7602c5c508be281368aae0b61b51c6) C:\Windows\system32\drivers\AtiHdmi.sys
14:29:18.0999 3412 AtiHdmiService - ok
14:29:19.0086 3412 atillk64 (26d973d6d9a0d133dfda7d8c1adc04b7) C:\Users\Andy\Downloads\winflash\atillk64.sys
14:29:19.0087 3412 atillk64 - ok
14:29:19.0107 3412 ATITool (a6fad7a5ada4675ba9c9feaf4e0542ba) C:\Windows\system32\DRIVERS\ATITool64.sys
14:29:19.0109 3412 ATITool - ok
14:29:19.0150 3412 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
14:29:19.0156 3412 b06bdrv - ok
14:29:19.0174 3412 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
14:29:19.0177 3412 b57nd60a - ok
14:29:19.0203 3412 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
14:29:19.0204 3412 Beep - ok
14:29:19.0245 3412 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
14:29:19.0246 3412 blbdrive - ok
14:29:19.0294 3412 bowser (19d20159708e152267e53b66677a4995) C:\Windows\system32\DRIVERS\bowser.sys
14:29:19.0296 3412 bowser - ok
14:29:19.0314 3412 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
14:29:19.0315 3412 BrFiltLo - ok
14:29:19.0322 3412 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
14:29:19.0322 3412 BrFiltUp - ok
14:29:19.0333 3412 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
14:29:19.0336 3412 Brserid - ok
14:29:19.0353 3412 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
14:29:19.0354 3412 BrSerWdm - ok
14:29:19.0369 3412 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
14:29:19.0370 3412 BrUsbMdm - ok
14:29:19.0377 3412 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
14:29:19.0378 3412 BrUsbSer - ok
14:29:19.0410 3412 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
14:29:19.0411 3412 BTHMODEM - ok
14:29:19.0433 3412 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
14:29:19.0434 3412 cdfs - ok
14:29:19.0482 3412 cdrom (83d2d75e1efb81b3450c18131443f7db) C:\Windows\system32\drivers\cdrom.sys
14:29:19.0484 3412 cdrom - ok
14:29:19.0494 3412 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
14:29:19.0496 3412 circlass - ok
14:29:19.0528 3412 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
14:29:19.0533 3412 CLFS - ok
14:29:19.0562 3412 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
14:29:19.0563 3412 CmBatt - ok
14:29:19.0588 3412 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
14:29:19.0589 3412 cmdide - ok
14:29:19.0613 3412 CNG (f95fd4cb7da00ba2a63ce9f6b5c053e1) C:\Windows\system32\Drivers\cng.sys
14:29:19.0617 3412 CNG - ok
14:29:19.0624 3412 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
14:29:19.0625 3412 Compbatt - ok
14:29:19.0665 3412 CompositeBus (f26b3a86f6fa87ca360b879581ab4123) C:\Windows\system32\drivers\CompositeBus.sys
14:29:19.0666 3412 CompositeBus - ok
14:29:19.0689 3412 cpuz130 - ok
14:29:19.0708 3412 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
14:29:19.0709 3412 crcdisk - ok
14:29:19.0736 3412 CSC (4a6173c2279b498cd8f57cae504564cb) C:\Windows\system32\drivers\csc.sys
14:29:19.0742 3412 CSC - ok
14:29:19.0774 3412 DfsC (9c253ce7311ca60fc11c774692a13208) C:\Windows\system32\Drivers\dfsc.sys
14:29:19.0776 3412 DfsC - ok
14:29:19.0793 3412 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
14:29:19.0794 3412 discache - ok
14:29:19.0819 3412 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
14:29:19.0821 3412 Disk - ok
14:29:19.0866 3412 Dot4 (b42ed0320c6e41102fde0005154849bb) C:\Windows\system32\DRIVERS\Dot4.sys
14:29:19.0867 3412 Dot4 - ok
14:29:19.0886 3412 Dot4Print (85135ad27e79b689335c08167d917cde) C:\Windows\system32\DRIVERS\Dot4Prt.sys
14:29:19.0886 3412 Dot4Print - ok
14:29:19.0899 3412 dot4usb (fd05a02b0370bc3000f402e543ca5814) C:\Windows\system32\DRIVERS\dot4usb.sys
14:29:19.0900 3412 dot4usb - ok
14:29:19.0935 3412 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
14:29:19.0936 3412 drmkaud - ok
14:29:19.0974 3412 DslMNLwf (d52eeb224df107aad9059597f0eb95cc) C:\Windows\system32\DRIVERS\dslmnlwf.sys
14:29:19.0975 3412 DslMNLwf - ok
14:29:20.0008 3412 DXGKrnl (1633b9abf52784a1331476397a48cbef) C:\Windows\System32\drivers\dxgkrnl.sys
14:29:20.0017 3412 DXGKrnl - ok
14:29:20.0075 3412 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
14:29:20.0104 3412 ebdrv - ok
14:29:20.0153 3412 ElbyCDIO (9a47ac3dfcf81d30922cdaaf1c2d579f) C:\Windows\system32\Drivers\ElbyCDIO.sys
14:29:20.0155 3412 ElbyCDIO - ok
14:29:20.0178 3412 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
14:29:20.0184 3412 elxstor - ok
14:29:20.0228 3412 ENTECH64 (12c061d9f9621be916d58191872ec281) C:\Windows\system32\DRIVERS\ENTECH64.sys
14:29:20.0229 3412 ENTECH64 - ok
14:29:20.0253 3412 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
14:29:20.0254 3412 ErrDev - ok
14:29:20.0284 3412 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
14:29:20.0286 3412 exfat - ok
14:29:20.0302 3412 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
14:29:20.0304 3412 fastfat - ok
14:29:20.0321 3412 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
14:29:20.0322 3412 fdc - ok
14:29:20.0340 3412 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
14:29:20.0341 3412 FileInfo - ok
14:29:20.0352 3412 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
14:29:20.0353 3412 Filetrace - ok
14:29:20.0372 3412 FLASHSYS - ok
14:29:20.0386 3412 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
14:29:20.0387 3412 flpydisk - ok
14:29:20.0407 3412 FltMgr (f7866af72abbaf84b1fa5aa195378c59) C:\Windows\system32\drivers\fltmgr.sys
14:29:20.0411 3412 FltMgr - ok
14:29:20.0422 3412 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
14:29:20.0424 3412 FsDepends - ok
14:29:20.0437 3412 Fs_Rec (e95ef8547de20cf0603557c0cf7a9462) C:\Windows\system32\drivers\Fs_Rec.sys
14:29:20.0437 3412 Fs_Rec - ok
14:29:20.0467 3412 fvevol (ae87ba80d0ec3b57126ed2cdc15b24ed) C:\Windows\system32\DRIVERS\fvevol.sys
14:29:20.0469 3412 fvevol - ok
14:29:20.0486 3412 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
14:29:20.0487 3412 gagp30kx - ok
14:29:20.0511 3412 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
14:29:20.0512 3412 hcw85cir - ok
14:29:20.0542 3412 HdAudAddService (6410f6f415b2a5a9037224c41da8bf12) C:\Windows\system32\drivers\HdAudio.sys
14:29:20.0546 3412 HdAudAddService - ok
14:29:20.0566 3412 HDAudBus (0a49913402747a0b67de940fb42cbdbb) C:\Windows\system32\DRIVERS\HDAudBus.sys
14:29:20.0567 3412 HDAudBus - ok
14:29:20.0597 3412 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
14:29:20.0598 3412 HidBatt - ok
14:29:20.0615 3412 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
14:29:20.0617 3412 HidBth - ok
14:29:20.0631 3412 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
14:29:20.0632 3412 HidIr - ok
14:29:20.0679 3412 HidUsb (b3bf6b5b50006def50b66306d99fcf6f) C:\Windows\system32\DRIVERS\hidusb.sys
14:29:20.0680 3412 HidUsb - ok
14:29:20.0701 3412 HpSAMD (0886d440058f203eba0e1825e4355914) C:\Windows\system32\drivers\HpSAMD.sys
14:29:20.0703 3412 HpSAMD - ok
14:29:20.0760 3412 HTTP (cee049cac4efa7f4e1e4ad014414a5d4) C:\Windows\system32\drivers\HTTP.sys
14:29:20.0785 3412 HTTP - ok
14:29:20.0860 3412 hwpolicy (f17766a19145f111856378df337a5d79) C:\Windows\system32\drivers\hwpolicy.sys
14:29:20.0861 3412 hwpolicy - ok
14:29:20.0884 3412 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
14:29:20.0885 3412 i8042prt - ok
14:29:20.0938 3412 iaStor (1d004cb1da6323b1f55caef7f94b61d9) C:\Windows\system32\DRIVERS\iaStor.sys
14:29:20.0943 3412 iaStor - ok
14:29:20.0971 3412 iaStorV (b75e45c564e944a2657167d197ab29da) C:\Windows\system32\drivers\iaStorV.sys
14:29:20.0977 3412 iaStorV - ok
14:29:21.0014 3412 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
14:29:21.0016 3412 iirsp - ok
14:29:21.0094 3412 IntcAzAudAddService (028e40182a6f0374978c755f85b9f07c) C:\Windows\system32\drivers\RTKVHD64.sys
14:29:21.0114 3412 IntcAzAudAddService - ok
14:29:21.0141 3412 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
14:29:21.0142 3412 intelide - ok
14:29:21.0164 3412 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
14:29:21.0165 3412 intelppm - ok
14:29:21.0188 3412 IpFilterDriver (722dd294df62483cecaae6e094b4d695) C:\Windows\system32\DRIVERS\ipfltdrv.sys
14:29:21.0190 3412 IpFilterDriver - ok
14:29:21.0207 3412 IPMIDRV (e2b4a4494db7cb9b89b55ca268c337c5) C:\Windows\system32\drivers\IPMIDrv.sys
14:29:21.0209 3412 IPMIDRV - ok
14:29:21.0223 3412 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
14:29:21.0224 3412 IPNAT - ok
14:29:21.0238 3412 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
14:29:21.0239 3412 IRENUM - ok
14:29:21.0256 3412 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
14:29:21.0257 3412 isapnp - ok
14:29:21.0266 3412 iScsiPrt (fa4d2557de56d45b0a346f93564be6e1) C:\Windows\system32\drivers\msiscsi.sys
14:29:21.0269 3412 iScsiPrt - ok
14:29:21.0291 3412 iteio - ok
14:29:21.0300 3412 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
14:29:21.0302 3412 kbdclass - ok
14:29:21.0319 3412 kbdhid (6def98f8541e1b5dceb2c822a11f7323) C:\Windows\system32\DRIVERS\kbdhid.sys
14:29:21.0320 3412 kbdhid - ok
14:29:21.0335 3412 KSecDD (e8b6fcc9c83535c67f835d407620bd27) C:\Windows\system32\Drivers\ksecdd.sys
14:29:21.0336 3412 KSecDD - ok
14:29:21.0364 3412 KSecPkg (a8c63880ef6f4d3fec7b616b9c060215) C:\Windows\system32\Drivers\ksecpkg.sys
14:29:21.0366 3412 KSecPkg - ok
14:29:21.0375 3412 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
14:29:21.0376 3412 ksthunk - ok
14:29:21.0444 3412 LHidFilt (ceb6e18dcfad5c72b81c7da1ac3c1cc1) C:\Windows\system32\DRIVERS\LHidFilt.Sys
14:29:21.0445 3412 LHidFilt - ok
14:29:21.0481 3412 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
14:29:21.0482 3412 lltdio - ok
14:29:21.0496 3412 LMouFilt (f9e48f18be4d2b365f138987b8e7885b) C:\Windows\system32\DRIVERS\LMouFilt.Sys
14:29:21.0498 3412 LMouFilt - ok
14:29:21.0516 3412 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
14:29:21.0517 3412 LSI_FC - ok
14:29:21.0528 3412 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
14:29:21.0530 3412 LSI_SAS - ok
14:29:21.0544 3412 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
14:29:21.0545 3412 LSI_SAS2 - ok
14:29:21.0570 3412 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
14:29:21.0572 3412 LSI_SCSI - ok
14:29:21.0596 3412 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
14:29:21.0597 3412 luafv - ok
14:29:21.0617 3412 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
14:29:21.0618 3412 megasas - ok
14:29:21.0635 3412 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
14:29:21.0638 3412 MegaSR - ok
14:29:21.0661 3412 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
14:29:21.0662 3412 Modem - ok
14:29:21.0681 3412 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
14:29:21.0682 3412 monitor - ok
14:29:21.0694 3412 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
14:29:21.0696 3412 mouclass - ok
14:29:21.0722 3412 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
14:29:21.0723 3412 mouhid - ok
14:29:21.0736 3412 mountmgr (791af66c4d0e7c90a3646066386fb571) C:\Windows\system32\drivers\mountmgr.sys
14:29:21.0737 3412 mountmgr - ok
14:29:21.0768 3412 mpio (609d1d87649ecc19796f4d76d4c15cea) C:\Windows\system32\drivers\mpio.sys
14:29:21.0770 3412 mpio - ok
14:29:21.0785 3412 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
14:29:21.0787 3412 mpsdrv - ok
14:29:21.0805 3412 MRxDAV (30524261bb51d96d6fcbac20c810183c) C:\Windows\system32\drivers\mrxdav.sys
14:29:21.0807 3412 MRxDAV - ok
14:29:21.0836 3412 mrxsmb (040d62a9d8ad28922632137acdd984f2) C:\Windows\system32\DRIVERS\mrxsmb.sys
14:29:21.0838 3412 mrxsmb - ok
14:29:21.0875 3412 mrxsmb10 (f0067552f8f9b33d7c59403ab808a3cb) C:\Windows\system32\DRIVERS\mrxsmb10.sys
14:29:21.0878 3412 mrxsmb10 - ok
14:29:21.0895 3412 mrxsmb20 (3c142d31de9f2f193218a53fe2632051) C:\Windows\system32\DRIVERS\mrxsmb20.sys
14:29:21.0897 3412 mrxsmb20 - ok
14:29:21.0904 3412 msahci (5c37497276e3b3a5488b23a326a754b7) C:\Windows\system32\drivers\msahci.sys
14:29:21.0906 3412 msahci - ok
14:29:21.0925 3412 msdsm (8d27b597229aed79430fb9db3bcbfbd0) C:\Windows\system32\drivers\msdsm.sys
14:29:21.0927 3412 msdsm - ok
14:29:21.0955 3412 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
14:29:21.0956 3412 Msfs - ok
14:29:21.0964 3412 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
14:29:21.0965 3412 mshidkmdf - ok
14:29:21.0996 3412 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
14:29:21.0997 3412 msisadrv - ok
14:29:22.0026 3412 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
14:29:22.0027 3412 MSKSSRV - ok
14:29:22.0045 3412 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
14:29:22.0046 3412 MSPCLOCK - ok
14:29:22.0059 3412 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
14:29:22.0060 3412 MSPQM - ok
14:29:22.0082 3412 MsRPC (89cb141aa8616d8c6a4610fa26c60964) C:\Windows\system32\drivers\MsRPC.sys
14:29:22.0086 3412 MsRPC - ok
14:29:22.0106 3412 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
14:29:22.0107 3412 mssmbios - ok
14:29:22.0114 3412 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
14:29:22.0115 3412 MSTEE - ok
14:29:22.0130 3412 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
14:29:22.0131 3412 MTConfig - ok
14:29:22.0149 3412 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
14:29:22.0150 3412 Mup - ok
14:29:22.0184 3412 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
14:29:22.0187 3412 NativeWifiP - ok
14:29:22.0225 3412 NDIS (cad515dbd07d082bb317d9928ce8962c) C:\Windows\system32\drivers\ndis.sys
14:29:22.0234 3412 NDIS - ok
14:29:22.0249 3412 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
14:29:22.0250 3412 NdisCap - ok
14:29:22.0269 3412 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
14:29:22.0270 3412 NdisTapi - ok
14:29:22.0282 3412 Ndisuio (f105ba1e22bf1f2ee8f005d4305e4bec) C:\Windows\system32\DRIVERS\ndisuio.sys
14:29:22.0283 3412 Ndisuio - ok
14:29:22.0303 3412 NdisWan (557dfab9ca1fcb036ac77564c010dad3) C:\Windows\system32\DRIVERS\ndiswan.sys
14:29:22.0305 3412 NdisWan - ok
14:29:22.0323 3412 NDProxy (659b74fb74b86228d6338d643cd3e3cf) C:\Windows\system32\drivers\NDProxy.sys
14:29:22.0324 3412 NDProxy - ok
14:29:22.0361 3412 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
14:29:22.0363 3412 NetBIOS - ok
14:29:22.0382 3412 NetBT (9162b273a44ab9dce5b44362731d062a) C:\Windows\system32\DRIVERS\netbt.sys
14:29:22.0385 3412 NetBT - ok
14:29:22.0435 3412 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
14:29:22.0436 3412 nfrd960 - ok
14:29:22.0447 3412 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
14:29:22.0448 3412 Npfs - ok
14:29:22.0496 3412 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
14:29:22.0497 3412 nsiproxy - ok
14:29:22.0550 3412 Ntfs (378e0e0dfea67d98ae6ea53adbbd76bc) C:\Windows\system32\drivers\Ntfs.sys
14:29:22.0568 3412 Ntfs - ok
14:29:22.0584 3412 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
14:29:22.0585 3412 Null - ok
14:29:22.0615 3412 nvraid (a4d9c9a608a97f59307c2f2600edc6a4) C:\Windows\system32\drivers\nvraid.sys
14:29:22.0617 3412 nvraid - ok
14:29:22.0633 3412 nvstor (6c1d5f70e7a6a3fd1c90d840edc048b9) C:\Windows\system32\drivers\nvstor.sys
14:29:22.0635 3412 nvstor - ok
14:29:22.0658 3412 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
14:29:22.0660 3412 nv_agp - ok
14:29:22.0688 3412 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
14:29:22.0689 3412 ohci1394 - ok
14:29:22.0727 3412 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
14:29:22.0729 3412 Parport - ok
14:29:22.0745 3412 partmgr (7daa117143316c4a1537e074a5a9eaf0) C:\Windows\system32\drivers\partmgr.sys
14:29:22.0747 3412 partmgr - ok
14:29:22.0801 3412 pbfilter (55223eefabfdb84a926515febab50d9a) C:\Program Files\PeerBlock\pbfilter.sys
14:29:22.0802 3412 pbfilter - ok
14:29:22.0824 3412 pci (f36f6504009f2fb0dfd1b17a116ad74b) C:\Windows\system32\drivers\pci.sys
14:29:22.0827 3412 pci - ok
14:29:22.0856 3412 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
14:29:22.0857 3412 pciide - ok
14:29:22.0866 3412 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
14:29:22.0869 3412 pcmcia - ok
14:29:22.0884 3412 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
14:29:22.0885 3412 pcw - ok
14:29:22.0906 3412 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
14:29:22.0913 3412 PEAUTH - ok
14:29:22.0986 3412 PptpMiniport (27cc19e81ba5e3403c48302127bda717) C:\Windows\system32\DRIVERS\raspptp.sys
14:29:22.0988 3412 PptpMiniport - ok
14:29:22.0999 3412 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
14:29:23.0001 3412 Processor - ok
14:29:23.0020 3412 Psched (ee992183bd8eaefd9973f352e587a299) C:\Windows\system32\DRIVERS\pacer.sys
14:29:23.0022 3412 Psched - ok
14:29:23.0054 3412 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
14:29:23.0068 3412 ql2300 - ok
14:29:23.0077 3412 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
14:29:23.0079 3412 ql40xx - ok
14:29:23.0093 3412 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
14:29:23.0094 3412 QWAVEdrv - ok
14:29:23.0111 3412 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
14:29:23.0112 3412 RasAcd - ok
14:29:23.0140 3412 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
14:29:23.0141 3412 RasAgileVpn - ok
14:29:23.0158 3412 Rasl2tp (87a6e852a22991580d6d39adc4790463) C:\Windows\system32\DRIVERS\rasl2tp.sys
14:29:23.0160 3412 Rasl2tp - ok
14:29:23.0174 3412 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
14:29:23.0176 3412 RasPppoe - ok
14:29:23.0192 3412 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
14:29:23.0194 3412 RasSstp - ok
14:29:23.0210 3412 rdbss (3bac8142102c15d59a87757c1d41dce5) C:\Windows\system32\DRIVERS\rdbss.sys
14:29:23.0214 3412 rdbss - ok
14:29:23.0224 3412 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
14:29:23.0225 3412 rdpbus - ok
14:29:23.0235 3412 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
14:29:23.0236 3412 RDPCDD - ok
14:29:23.0255 3412 RDPDR (9706b84dbabfc4b4ca46c5a82b14dfa3) C:\Windows\system32\drivers\rdpdr.sys
14:29:23.0257 3412 RDPDR - ok
14:29:23.0282 3412 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
14:29:23.0283 3412 RDPENCDD - ok
14:29:23.0292 3412 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
14:29:23.0293 3412 RDPREFMP - ok
14:29:23.0314 3412 RDPWD (8a3e6bea1c53ea6177fe2b6eba2c80d7) C:\Windows\system32\drivers\RDPWD.sys
14:29:23.0317 3412 RDPWD - ok
14:29:23.0334 3412 rdyboost (634b9a2181d98f15941236886164ec8b) C:\Windows\system32\drivers\rdyboost.sys
14:29:23.0337 3412 rdyboost - ok
14:29:23.0395 3412 RivaTuner64 (a10b40cf9eb57d24e44717a2d38a00f4) C:\Program Files (x86)\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\RivaTuner64.sys
14:29:23.0397 3412 RivaTuner64 - ok
14:29:23.0428 3412 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
14:29:23.0430 3412 rspndr - ok
14:29:23.0464 3412 RTL8167 (abcb5a38a0d85bdf69b7877e1ad1eed5) C:\Windows\system32\DRIVERS\Rt64win7.sys
14:29:23.0467 3412 RTL8167 - ok
14:29:23.0514 3412 s115bus (e0f0977caafdf719929c8ca02a1c5147) C:\Windows\system32\DRIVERS\s115bus.sys
14:29:23.0516 3412 s115bus - ok
14:29:23.0533 3412 s115mdfl (136328e6c3086a19eb3154058bc7b3a3) C:\Windows\system32\DRIVERS\s115mdfl.sys
14:29:23.0535 3412 s115mdfl - ok
14:29:23.0544 3412 s115mdm (54552277de7eae1a2e108a4cff7abb07) C:\Windows\system32\DRIVERS\s115mdm.sys
14:29:23.0546 3412 s115mdm - ok
14:29:23.0572 3412 s115mgmt (e9b3966836cb9c2107264e44249267df) C:\Windows\system32\DRIVERS\s115mgmt.sys
14:29:23.0574 3412 s115mgmt - ok
14:29:23.0592 3412 s115obex (f6ab3b6e35981c4f3fed4198d3f29674) C:\Windows\system32\DRIVERS\s115obex.sys
14:29:23.0594 3412 s115obex - ok
14:29:23.0628 3412 s3cap (88af6e02ab19df7fd07ecdf9c91e9af6) C:\Windows\system32\drivers\vms3cap.sys
14:29:23.0629 3412 s3cap - ok
14:29:23.0648 3412 sbp2port (e3bbb89983daf5622c1d50cf49f28227) C:\Windows\system32\drivers\sbp2port.sys
14:29:23.0650 3412 sbp2port - ok
14:29:23.0660 3412 scfilter (c94da20c7e3ba1dca269bc8460d98387) C:\Windows\system32\DRIVERS\scfilter.sys
14:29:23.0661 3412 scfilter - ok
14:29:23.0681 3412 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
14:29:23.0682 3412 secdrv - ok
14:29:23.0713 3412 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
14:29:23.0715 3412 Serenum - ok
14:29:23.0726 3412 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
14:29:23.0728 3412 Serial - ok
14:29:23.0756 3412 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
14:29:23.0757 3412 sermouse - ok
14:29:23.0787 3412 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
14:29:23.0789 3412 sffdisk - ok
14:29:23.0802 3412 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
14:29:23.0804 3412 sffp_mmc - ok
14:29:23.0811 3412 sffp_sd (178298f767fe638c9fedcbdef58bb5e4) C:\Windows\system32\drivers\sffp_sd.sys
14:29:23.0812 3412 sffp_sd - ok
14:29:23.0830 3412 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
14:29:23.0831 3412 sfloppy - ok
14:29:23.0850 3412 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
14:29:23.0851 3412 SiSRaid2 - ok
14:29:23.0869 3412 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
14:29:23.0870 3412 SiSRaid4 - ok
14:29:23.0881 3412 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
14:29:23.0883 3412 Smb - ok
14:29:23.0913 3412 speedfan - ok
14:29:23.0931 3412 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
14:29:23.0932 3412 spldr - ok
14:29:23.0974 3412 srv (2408c0366d96bcdf63e8f1c78e4a29c5) C:\Windows\system32\DRIVERS\srv.sys
14:29:23.0980 3412 srv - ok
14:29:23.0996 3412 srv2 (76548f7b818881b47d8d1ae1be9c11f8) C:\Windows\system32\DRIVERS\srv2.sys
14:29:24.0001 3412 srv2 - ok
14:29:24.0015 3412 srvnet (0af6e19d39c70844c5caa8fb0183c36e) C:\Windows\system32\DRIVERS\srvnet.sys
14:29:24.0017 3412 srvnet - ok
14:29:24.0041 3412 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
14:29:24.0043 3412 stexstor - ok
14:29:24.0059 3412 storflt (ffd7a6f15b14234b5b0e5d49e7961895) C:\Windows\system32\drivers\vmstorfl.sys
14:29:24.0061 3412 storflt - ok
14:29:24.0077 3412 storvsc (8fccbefc5c440b3c23454656e551b09a) C:\Windows\system32\drivers\storvsc.sys
14:29:24.0078 3412 storvsc - ok
14:29:24.0087 3412 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
14:29:24.0088 3412 swenum - ok
14:29:24.0153 3412 Tcpip (b9d87c7707f058ac652a398cd28de14b) C:\Windows\system32\drivers\tcpip.sys
14:29:24.0171 3412 Tcpip - ok
14:29:24.0207 3412 TCPIP6 (b9d87c7707f058ac652a398cd28de14b) C:\Windows\system32\DRIVERS\tcpip.sys
14:29:24.0216 3412 TCPIP6 - ok
14:29:24.0232 3412 tcpipreg (76d078af6f587b162d50210f761eb9ed) C:\Windows\system32\drivers\tcpipreg.sys
14:29:24.0233 3412 tcpipreg - ok
14:29:24.0282 3412 Tcpz-x64 - ok
14:29:24.0298 3412 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
14:29:24.0299 3412 TDPIPE - ok
14:29:24.0331 3412 TDTCP (e4245bda3190a582d55ed09e137401a9) C:\Windows\system32\drivers\tdtcp.sys
14:29:24.0333 3412 TDTCP - ok
14:29:24.0348 3412 tdx (079125c4b17b01fcaeebce0bcb290c0f) C:\Windows\system32\DRIVERS\tdx.sys
14:29:24.0350 3412 tdx - ok
14:29:24.0358 3412 TermDD (c448651339196c0e869a355171875522) C:\Windows\system32\drivers\termdd.sys
14:29:24.0359 3412 TermDD - ok
14:29:24.0385 3412 tssecsrv (61b96c26131e37b24e93327a0bd1fb95) C:\Windows\system32\DRIVERS\tssecsrv.sys
14:29:24.0387 3412 tssecsrv - ok
14:29:24.0411 3412 tunnel (3836171a2cdf3af8ef10856db9835a70) C:\Windows\system32\DRIVERS\tunnel.sys
14:29:24.0413 3412 tunnel - ok
14:29:24.0431 3412 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
14:29:24.0433 3412 uagp35 - ok
14:29:24.0454 3412 udfs (d47baead86c65d4f4069d7ce0a4edceb) C:\Windows\system32\DRIVERS\udfs.sys
14:29:24.0458 3412 udfs - ok
14:29:24.0481 3412 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
14:29:24.0483 3412 uliagpkx - ok
14:29:24.0512 3412 umbus (eab6c35e62b1b0db0d1b48b671d3a117) C:\Windows\system32\drivers\umbus.sys
14:29:24.0513 3412 umbus - ok
14:29:24.0531 3412 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
14:29:24.0532 3412 UmPass - ok
14:29:24.0554 3412 usbccgp (7b6a127c93ee590e4d79a5f2a76fe46f) C:\Windows\system32\DRIVERS\usbccgp.sys
14:29:24.0556 3412 usbccgp - ok
14:29:24.0592 3412 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
14:29:24.0594 3412 usbcir - ok
14:29:24.0607 3412 usbehci (92969ba5ac44e229c55a332864f79677) C:\Windows\system32\DRIVERS\usbehci.sys
14:29:24.0608 3412 usbehci - ok
14:29:24.0628 3412 usbhub (e7df1cfd28ca86b35ef5add0735ceef3) C:\Windows\system32\DRIVERS\usbhub.sys
14:29:24.0633 3412 usbhub - ok
14:29:24.0653 3412 usbohci (f1bb1e55f1e7a65c5839ccc7b36d773e) C:\Windows\system32\drivers\usbohci.sys
14:29:24.0655 3412 usbohci - ok
14:29:24.0662 3412 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
14:29:24.0663 3412 usbprint - ok
14:29:24.0691 3412 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys
14:29:24.0693 3412 usbscan - ok
14:29:24.0705 3412 USBSTOR (f39983647bc1f3e6100778ddfe9dce29) C:\Windows\system32\drivers\USBSTOR.SYS
14:29:24.0707 3412 USBSTOR - ok
14:29:24.0722 3412 usbuhci (bc3070350a491d84b518d7cca9abd36f) C:\Windows\system32\DRIVERS\usbuhci.sys
14:29:24.0723 3412 usbuhci - ok
14:29:24.0761 3412 vcdrom - ok
14:29:24.0803 3412 VClone (84bb306b7863883018d7f3eb0c453bd5) C:\Windows\system32\DRIVERS\VClone.sys
14:29:24.0804 3412 VClone - ok
14:29:24.0820 3412 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
14:29:24.0822 3412 vdrvroot - ok
14:29:24.0845 3412 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
14:29:24.0846 3412 vga - ok
14:29:24.0860 3412 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
14:29:24.0861 3412 VgaSave - ok
14:29:24.0879 3412 vhdmp (c82e748660f62a242b2dfac1442f22a4) C:\Windows\system32\drivers\vhdmp.sys
14:29:24.0882 3412 vhdmp - ok
14:29:24.0911 3412 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
14:29:24.0912 3412 viaide - ok
14:29:24.0922 3412 vmbus (1501699d7eda984abc4155a7da5738d1) C:\Windows\system32\drivers\vmbus.sys
14:29:24.0924 3412 vmbus - ok
14:29:24.0936 3412 VMBusHID (ae10c35761889e65a6f7176937c5592c) C:\Windows\system32\drivers\VMBusHID.sys
14:29:24.0938 3412 VMBusHID - ok
14:29:24.0955 3412 volmgr (2b1a3dae2b4e70dbba822b7a03fbd4a3) C:\Windows\system32\drivers\volmgr.sys
14:29:24.0956 3412 volmgr - ok
14:29:24.0970 3412 volmgrx (99b0cbb569ca79acaed8c91461d765fb) C:\Windows\system32\drivers\volmgrx.sys
14:29:24.0974 3412 volmgrx - ok
14:29:25.0003 3412 volsnap (58f82eed8ca24b461441f9c3e4f0bf5c) C:\Windows\system32\drivers\volsnap.sys
14:29:25.0006 3412 volsnap - ok
14:29:25.0033 3412 vpcbus (abd9b4a7e2d0ae51a3b8df1af3152d61) C:\Windows\system32\DRIVERS\vpchbus.sys
14:29:25.0035 3412 vpcbus - ok
14:29:25.0055 3412 vpcnfltr (8acda395841538ce9713a67fe8b2a3eb) C:\Windows\system32\DRIVERS\vpcnfltr.sys
14:29:25.0056 3412 vpcnfltr - ok
14:29:25.0078 3412 vpcusb (31924e31bc315773e6d149b157db46d5) C:\Windows\system32\DRIVERS\vpcusb.sys
14:29:25.0079 3412 vpcusb - ok
14:29:25.0121 3412 vpcvmm (c5b651e52540e6f46da66574c74b4898) C:\Windows\system32\drivers\vpcvmm.sys
14:29:25.0125 3412 vpcvmm - ok
14:29:25.0152 3412 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
14:29:25.0155 3412 vsmraid - ok
14:29:25.0163 3412 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\System32\drivers\vwifibus.sys
14:29:25.0165 3412 vwifibus - ok
14:29:25.0181 3412 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
14:29:25.0183 3412 WacomPen - ok
14:29:25.0208 3412 WANARP (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys
14:29:25.0210 3412 WANARP - ok
14:29:25.0214 3412 Wanarpv6 (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys
14:29:25.0215 3412 Wanarpv6 - ok
14:29:25.0239 3412 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
14:29:25.0240 3412 Wd - ok
14:29:25.0261 3412 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
14:29:25.0268 3412 Wdf01000 - ok
14:29:25.0298 3412 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
14:29:25.0300 3412 WfpLwf - ok
14:29:25.0318 3412 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
14:29:25.0319 3412 WIMMount - ok
14:29:25.0362 3412 WinUsb (817eaff5d38674edd7713b9dfb8e9791) C:\Windows\system32\DRIVERS\WinUsb.sys
14:29:25.0363 3412 WinUsb - ok
14:29:25.0393 3412 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
14:29:25.0394 3412 WmiAcpi - ok
14:29:25.0416 3412 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
14:29:25.0417 3412 ws2ifsl - ok
14:29:25.0444 3412 WudfPf (7cadc74271dd6461c452c271b30bd378) C:\Windows\system32\drivers\WudfPf.sys
14:29:25.0446 3412 WudfPf - ok
14:29:25.0477 3412 WUDFRd (3b197af0fff08aa66b6b2241ca538d64) C:\Windows\system32\DRIVERS\WUDFRd.sys
14:29:25.0479 3412 WUDFRd - ok
14:29:25.0510 3412 zntport - ok
14:29:25.0521 3412 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
14:29:25.0527 3412 \Device\Harddisk0\DR0 - ok
14:29:25.0529 3412 Boot (0x1200) (b53ff22f5333bc165a38abbb47576bf6) \Device\Harddisk0\DR0\Partition0
14:29:25.0530 3412 \Device\Harddisk0\DR0\Partition0 - ok
14:29:25.0546 3412 Boot (0x1200) (d3efc9492dcb9cff9420909ecd0c28f1) \Device\Harddisk0\DR0\Partition1
14:29:25.0546 3412 \Device\Harddisk0\DR0\Partition1 - ok
14:29:25.0546 3412 ============================================================
14:29:25.0546 3412 Scan finished
14:29:25.0546 3412 ============================================================
14:29:25.0552 4004 Detected object count: 0
14:29:25.0552 4004 Actual detected object count: 0
14:29:35.0310 4224 Deinitialize success

Wie stellt man eigentlich ein Archiv ins Forum wenn die Zeichen ausgehen? Link, oder?

Danke Dir!!!
Gruß, Andy

cosinus · 18.11.2011, 13:45

Dann bitte jetzt CF ausführen:

ComboFix

Ein Leitfaden und Tutorium zur Nutzung von ComboFix

Lade dir ComboFix hier herunter auf deinen Desktop.

Schliesse alle Programme, vor allem dein Antivirenprogramm und andere Hintergrundwächter sowie deinen Internetbrowser.

Starte cofi.exe von deinem Desktop aus, bestätige die Warnmeldungen, führe die Updates durch (falls vorgeschlagen), installiere die Wiederherstellungskonsole (falls vorgeschlagen) und lass dein System durchsuchen.
Vermeide es auch während Combofix läuft die Maus und Tastatur zu benutzen.

Im Anschluss öffnet sich automatisch eine combofix.txt, diesen Inhalt bitte kopieren ([Strg]a, [Strg]c) und in deinen Beitrag einfügen ([Strg]v). Die Datei findest du außerdem unter: C:\ComboFix.txt.

Wichtiger Hinweis:

Combofix darf ausschließlich ausgeführt werden, wenn ein Kompetenzler dies ausdrücklich empfohlen hat!

Es sollte nie auf eigene Initiative hin ausgeführt werden! Eine falsche Benutzung kann ernsthafte Computerprobleme nach sich ziehen und eine Bereinigung der Infektion noch erschweren.

Solltest du nach der Ausführung von Combofix Probleme beim Starten von Anwendungen haben und Meldungen erhalten wie

Zitat:

Es wurde versucht, einen Registrierungsschlüssel einem ungültigen Vorgang zu unterziehen, der zum Löschen markiert wurde.

startest du Windows dann manuell neu und die Fehlermeldungen sollten nicht mehr auftauchen.

rockenderbik · 18.11.2011, 13:54

aber combofix hatte ich doch schon ausgeführt...
ich hatte mir doch ein paar sachen durchgelesen und es dann so gemacht.
die combofix.txt hab ich dir doch gepostet.
soll ich es nochmal machen?

rockenderbik · 18.11.2011, 13:57

ok combofix war nicht auf'm desktop *ärger* ist das wichtig?

cosinus · 18.11.2011, 16:02

Ja führ es bitte so aus wie in der Anleitung beschrieben

rockenderbik · 18.11.2011, 22:02

*lol* ich mach das dann...arne....paypal zahlen und banking kann ich jetzt doch eh vergessen und das werd auch nicht mehr machen mit meinem system......................

rockenderbik · 20.11.2011, 10:09

Hallo Arne,

hab Combofix ausgeführt, hier die Logdatei:

Combofix Logfile:

Code:

ATTFilter

ComboFix 11-11-19.04 - Andy 20.11.2011   9:43.2.4 - x64
Microsoft Windows 7 Ultimate   6.1.7600.0.1252.49.1031.18.4095.3064 [GMT 1:00]
ausgeführt von:: c:\users\Andy\Desktop\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
 * Neuer Wiederherstellungspunkt wurde erstellt
.
.
((((((((((((((((((((((((((((((((((((   Weitere Löschungen   ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\Andy\AppData\Local\Temp\sfamcc00001.dll
c:\users\Andy\AppData\Local\Temp\sfareca00001.dll
.
.
(((((((((((((((((((((((((((((((((((((((   Treiber/Dienste   )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Service_COMSysApp
.
.
(((((((((((((((((((((((   Dateien erstellt von 2011-10-20 bis 2011-11-20  ))))))))))))))))))))))))))))))
.
.
2011-11-20 08:48 . 2011-11-20 08:48	--------	d-----w-	c:\users\Default\AppData\Local\temp
2011-11-13 11:21 . 2011-09-06 21:36	24408	----a-w-	c:\windows\system32\drivers\aswFsBlk.sys
2011-11-13 11:21 . 2011-09-06 21:38	301912	----a-w-	c:\windows\system32\drivers\aswSP.sys
2011-11-13 11:21 . 2011-09-06 21:36	58200	----a-w-	c:\windows\system32\drivers\aswTdi.sys
2011-11-13 11:21 . 2011-09-06 21:36	42328	----a-w-	c:\windows\system32\drivers\aswRdr.sys
2011-11-13 11:21 . 2011-09-06 21:38	601944	----a-w-	c:\windows\system32\drivers\aswSnx.sys
2011-11-13 11:21 . 2011-09-06 21:36	65368	----a-w-	c:\windows\system32\drivers\aswMonFlt.sys
2011-11-13 11:21 . 2011-09-06 21:45	254400	----a-w-	c:\windows\system32\aswBoot.exe
2011-11-13 11:21 . 2011-09-06 21:45	41184	----a-w-	c:\windows\avastSS.scr
2011-11-13 11:21 . 2011-09-06 21:45	199304	----a-w-	c:\windows\SysWow64\aswBoot.exe
2011-11-13 11:20 . 2011-11-13 11:20	--------	d-----w-	c:\programdata\AVAST Software
2011-11-13 11:20 . 2011-11-13 11:20	--------	d-----w-	c:\program files\AVAST Software
2011-11-12 21:54 . 2011-10-18 00:27	8570192	----a-w-	c:\programdata\Microsoft\Windows Defender\Definition Updates\{94AAA841-0E08-4F08-BA45-7504E3AE91AA}\mpengine.dll
2011-11-02 16:42 . 2011-11-02 16:42	--------	d-----w-	c:\users\Andy\AppData\Roaming\atitray
2011-11-02 16:42 . 2011-11-03 16:23	--------	d-----w-	c:\program files (x86)\Ray Adams
2011-11-02 16:23 . 2009-10-10 03:17	14336	----a-w-	c:\windows\system32\drivers\sffp_sd.sys
2011-11-02 16:17 . 2011-02-26 06:23	2870272	----a-w-	c:\windows\explorer.exe
2011-11-02 16:16 . 2011-02-18 06:33	31232	----a-w-	c:\windows\system32\prevhost.exe
2011-11-02 16:16 . 2011-02-18 05:33	31232	----a-w-	c:\windows\SysWow64\prevhost.exe
2011-11-01 16:54 . 2011-04-29 03:13	461312	----a-w-	c:\windows\system32\drivers\srv.sys
2011-11-01 16:54 . 2011-04-29 03:12	399872	----a-w-	c:\windows\system32\drivers\srv2.sys
2011-11-01 16:54 . 2011-04-29 03:12	161792	----a-w-	c:\windows\system32\drivers\srvnet.sys
2011-11-01 16:53 . 2011-07-09 05:14	2048	----a-w-	c:\windows\system32\tzres.dll
2011-11-01 16:53 . 2011-07-09 04:30	2048	----a-w-	c:\windows\SysWow64\tzres.dll
2011-11-01 16:52 . 2011-04-25 02:44	499712	----a-w-	c:\windows\system32\drivers\afd.sys
2011-11-01 16:52 . 2011-06-23 05:29	5507968	----a-w-	c:\windows\system32\ntoskrnl.exe
2011-11-01 16:52 . 2011-06-23 04:38	3957120	----a-w-	c:\windows\SysWow64\ntkrnlpa.exe
2011-11-01 16:52 . 2011-06-23 04:38	3902336	----a-w-	c:\windows\SysWow64\ntoskrnl.exe
2011-11-01 16:50 . 2011-09-06 03:07	3134976	----a-w-	c:\windows\system32\win32k.sys
2011-11-01 16:49 . 2011-05-24 11:21	404992	----a-w-	c:\windows\system32\umpnpmgr.dll
2011-11-01 16:48 . 2011-02-23 05:15	90624	----a-w-	c:\windows\system32\drivers\bowser.sys
2011-11-01 16:47 . 2011-08-27 05:40	861184	----a-w-	c:\windows\system32\oleaut32.dll
2011-11-01 16:47 . 2011-08-27 05:40	331776	----a-w-	c:\windows\system32\oleacc.dll
2011-11-01 16:47 . 2011-08-27 04:43	571904	----a-w-	c:\windows\SysWow64\oleaut32.dll
2011-11-01 16:47 . 2011-08-27 04:43	233472	----a-w-	c:\windows\SysWow64\oleacc.dll
2011-11-01 15:03 . 2011-11-01 15:03	--------	d-----w-	c:\programdata\ATI
2011-11-01 15:01 . 2011-11-01 15:01	--------	d-----w-	c:\program files (x86)\AMD APP
2011-10-30 21:49 . 2011-10-30 21:50	--------	d-----w-	c:\users\Andy\AppData\Local\ESN Sonar
2011-10-30 09:27 . 2011-10-30 09:27	--------	d-----w-	c:\windows\system32\Macromed
2011-10-28 03:47 . 2011-11-12 21:16	--------	d-----w-	c:\program files (x86)\Battlelog Web Plugins
.
.
.
((((((((((((((((((((((((((((((((((((   Find3M Bericht   ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-11-20 08:51 . 2011-11-20 08:51	69000	----a-w-	c:\programdata\Microsoft\Windows Defender\Definition Updates\{94AAA841-0E08-4F08-BA45-7504E3AE91AA}\offreg.dll
2011-11-15 17:50 . 2010-12-29 20:18	280736	----a-w-	c:\windows\SysWow64\PnkBstrB.exe
2011-11-15 17:50 . 2010-03-08 17:06	280736	----a-w-	c:\windows\SysWow64\PnkBstrB.xtr
2011-11-12 14:12 . 2010-03-08 16:55	280736	----a-w-	c:\windows\SysWow64\PnkBstrB.ex0
2011-10-30 09:27 . 2011-06-29 17:24	414368	----a-w-	c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2011-10-27 17:25 . 2010-03-08 16:55	75136	----a-w-	c:\windows\SysWow64\PnkBstrA.exe
2011-10-19 21:14 . 2011-10-19 21:14	59904	----a-w-	c:\windows\SysWow64\OVDecode.dll
2011-10-12 20:56 . 2011-10-12 20:56	10207232	----a-w-	c:\windows\system32\drivers\atikmdag.sys
2011-10-12 20:20 . 2011-10-12 20:20	24629760	----a-w-	c:\windows\system32\atio6axx.dll
2011-10-12 20:14 . 2011-10-12 20:14	159744	----a-w-	c:\windows\system32\atiapfxx.exe
2011-10-12 20:14 . 2011-10-12 20:14	736768	----a-w-	c:\windows\SysWow64\aticfx32.dll
2011-10-12 20:13 . 2011-03-09 04:55	867328	----a-w-	c:\windows\system32\aticfx64.dll
2011-10-12 20:10 . 2011-07-12 02:54	466944	----a-w-	c:\windows\system32\ATIDEMGX.dll
2011-10-12 20:10 . 2011-10-12 20:10	487936	----a-w-	c:\windows\system32\atieclxx.exe
2011-10-12 20:09 . 2011-10-12 20:09	204288	----a-w-	c:\windows\system32\atiesrxx.exe
2011-10-12 20:08 . 2011-10-12 20:08	120320	----a-w-	c:\windows\system32\atitmm64.dll
2011-10-12 20:08 . 2011-10-12 20:08	423424	----a-w-	c:\windows\system32\atipdl64.dll
2011-10-12 20:08 . 2011-10-12 20:08	356352	----a-w-	c:\windows\SysWow64\atipdlxx.dll
2011-10-12 20:07 . 2011-10-12 20:07	278528	----a-w-	c:\windows\SysWow64\Oemdspif.dll
2011-10-12 20:07 . 2011-10-12 20:07	21504	----a-w-	c:\windows\system32\atimuixx.dll
2011-10-12 20:07 . 2011-10-12 20:07	59392	----a-w-	c:\windows\system32\atiedu64.dll
2011-10-12 20:07 . 2011-10-12 20:07	43520	----a-w-	c:\windows\SysWow64\ati2edxx.dll
2011-10-12 20:04 . 2011-10-12 20:04	4231680	----a-w-	c:\windows\SysWow64\atidxx32.dll
2011-10-12 20:04 . 2011-10-12 20:04	18630656	----a-w-	c:\windows\SysWow64\atioglxx.dll
2011-10-12 19:54 . 2011-03-09 04:40	4960768	----a-w-	c:\windows\system32\atidxx64.dll
2011-10-12 19:46 . 2011-10-12 19:46	51200	----a-w-	c:\windows\system32\aticalrt64.dll
2011-10-12 19:46 . 2011-10-12 19:46	46080	----a-w-	c:\windows\SysWow64\aticalrt.dll
2011-10-12 19:46 . 2011-10-12 19:46	44544	----a-w-	c:\windows\system32\aticalcl64.dll
2011-10-12 19:46 . 2011-10-12 19:46	44032	----a-w-	c:\windows\SysWow64\aticalcl.dll
2011-10-12 19:45 . 2011-10-12 19:45	9877504	----a-w-	c:\windows\system32\aticaldd64.dll
2011-10-12 19:44 . 2011-10-12 19:44	1113088	----a-w-	c:\windows\system32\atiumd6v.dll
2011-10-12 19:44 . 2011-10-12 19:44	4289024	----a-w-	c:\windows\SysWow64\atiumdag.dll
2011-10-12 19:44 . 2011-10-12 19:44	1828864	----a-w-	c:\windows\SysWow64\atiumdmv.dll
2011-10-12 19:44 . 2011-07-12 02:27	4023296	----a-w-	c:\windows\system32\atiumd6a.dll
2011-10-12 19:42 . 2011-10-12 19:42	8391680	----a-w-	c:\windows\SysWow64\aticaldd.dll
2011-10-12 19:39 . 2011-07-12 03:03	58880	----a-w-	c:\windows\system32\coinst.dll
2011-10-12 19:38 . 2011-07-12 02:24	5431808	----a-w-	c:\windows\system32\atiumd64.dll
2011-10-12 19:33 . 2011-10-12 19:33	4174848	----a-w-	c:\windows\SysWow64\atiumdva.dll
2011-10-12 19:31 . 2011-07-12 02:16	479744	----a-w-	c:\windows\system32\atiadlxx.dll
2011-10-12 19:31 . 2011-10-12 19:31	335872	----a-w-	c:\windows\SysWow64\atiadlxy.dll
2011-10-12 19:31 . 2011-10-12 19:31	17408	----a-w-	c:\windows\system32\atig6pxx.dll
2011-10-12 19:31 . 2011-10-12 19:31	14336	----a-w-	c:\windows\SysWow64\atiglpxx.dll
2011-10-12 19:31 . 2011-10-12 19:31	14336	----a-w-	c:\windows\system32\atiglpxx.dll
2011-10-12 19:30 . 2011-10-12 19:30	39936	----a-w-	c:\windows\system32\atig6txx.dll
2011-10-12 19:30 . 2011-10-12 19:30	32768	----a-w-	c:\windows\SysWow64\atigktxx.dll
2011-10-12 19:30 . 2011-10-12 19:30	317952	----a-w-	c:\windows\system32\drivers\atikmpag.sys
2011-10-12 19:29 . 2011-07-12 02:15	40960	----a-w-	c:\windows\system32\atiuxp64.dll
2011-10-12 19:29 . 2011-10-12 19:29	31744	----a-w-	c:\windows\SysWow64\atiuxpag.dll
2011-10-12 19:29 . 2011-07-12 02:14	38912	----a-w-	c:\windows\system32\atiu9p64.dll
2011-10-12 19:29 . 2011-10-12 19:29	29184	----a-w-	c:\windows\SysWow64\atiu9pag.dll
2011-10-12 19:28 . 2011-10-12 19:28	53248	----a-w-	c:\windows\system32\drivers\ati2erec.dll
2011-10-12 19:16 . 2011-10-12 19:16	54784	----a-w-	c:\windows\system32\atimpc64.dll
2011-10-12 19:16 . 2011-10-12 19:16	54784	----a-w-	c:\windows\system32\amdpcom64.dll
2011-10-12 19:16 . 2011-10-12 19:16	53760	----a-w-	c:\windows\SysWow64\atimpc32.dll
2011-10-12 19:16 . 2011-10-12 19:16	53760	----a-w-	c:\windows\SysWow64\amdpcom32.dll
2011-10-12 15:16 . 2011-10-12 15:16	66048	----a-w-	c:\windows\system32\OpenVideo64.dll
2011-10-12 15:16 . 2011-10-12 15:16	16787456	----a-w-	c:\windows\system32\amdocl64.dll
2011-10-12 15:14 . 2011-10-12 15:14	51200	----a-w-	c:\windows\system32\OpenCL.dll
2011-10-03 04:06 . 2011-01-02 13:16	472808	----a-w-	c:\windows\SysWow64\deployJava1.dll
2011-09-21 16:59 . 2010-04-01 15:05	18960	----a-w-	c:\windows\system32\drivers\LNonPnP.sys
2011-09-14 09:47 . 2011-09-14 09:47	60416	----a-w-	c:\windows\system32\OVDecode64.dll
2011-09-14 09:46 . 2011-09-14 09:46	13625856	----a-w-	c:\windows\SysWow64\amdocl.dll
2011-09-14 09:38 . 2011-09-14 09:38	44032	----a-w-	c:\windows\system32\amdoclcl64.dll
2011-09-14 09:38 . 2011-09-14 09:38	37376	----a-w-	c:\windows\SysWow64\amdoclcl.dll
2011-09-03 14:53 . 2011-09-03 14:53	140664	----a-r-	c:\users\Andy\AppData\Roaming\Microsoft\Installer\{D9292112-253F-438D-B1AB-432E5A1FE1B5}\ShortcutUpdater_B4EEAB5A25624B9CB01E300A7199EE30.exe
2011-09-03 14:53 . 2011-09-03 14:53	140664	----a-r-	c:\users\Andy\AppData\Roaming\Microsoft\Installer\{D9292112-253F-438D-B1AB-432E5A1FE1B5}\ARPPRODUCTICON.exe
2011-08-31 16:00 . 2010-10-03 13:11	25416	----a-w-	c:\windows\system32\drivers\mbam.sys
.
.
(((((((((((((((((((((((((((((   SnapShot@2011-11-15_16.55.53   )))))))))))))))))))))))))))))))))))))))))
.
- 2009-07-14 04:54 . 2011-11-15 16:55	32768              c:\windows\SysWOW64\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
+ 2009-07-14 04:54 . 2011-11-20 08:05	32768              c:\windows\SysWOW64\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
+ 2009-07-14 04:54 . 2011-11-20 08:05	49152              c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
- 2009-07-14 04:54 . 2011-11-15 16:55	49152              c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
- 2009-07-14 04:54 . 2011-11-15 16:55	32768              c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2009-07-14 04:54 . 2011-11-20 08:05	32768              c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2009-12-23 17:52 . 2011-11-15 17:50	82236              c:\windows\system32\wdi\ShutdownPerformanceDiagnostics_SystemData.bin
+ 2009-07-14 05:10 . 2011-11-16 15:53	46948              c:\windows\system32\wdi\BootPerformanceDiagnostics_SystemData.bin
+ 2009-12-23 16:36 . 2011-11-16 15:53	16544              c:\windows\system32\wdi\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-2814086671-428616876-2365772135-1000_UserData.bin
- 2009-12-23 16:27 . 2011-11-15 16:10	16384              c:\windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
+ 2009-12-23 16:27 . 2011-11-17 18:16	16384              c:\windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
+ 2009-12-23 16:27 . 2011-11-17 18:16	32768              c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
- 2009-12-23 16:27 . 2011-11-15 16:10	32768              c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
- 2009-07-14 04:54 . 2011-11-15 16:10	16384              c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2009-07-14 04:54 . 2011-11-17 18:16	16384              c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2009-12-23 20:19 . 2011-11-16 15:54	16384              c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
- 2009-12-23 20:19 . 2011-11-13 13:04	16384              c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
+ 2009-12-23 20:19 . 2011-11-16 15:54	32768              c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
- 2009-12-23 20:19 . 2011-11-13 13:04	32768              c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
- 2009-12-23 20:19 . 2011-11-13 13:04	16384              c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2009-12-23 20:19 . 2011-11-16 15:54	16384              c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
- 2009-12-23 16:41 . 2011-11-15 16:14	16384              c:\windows\ServiceProfiles\LocalService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
+ 2009-12-23 16:41 . 2011-11-20 08:06	16384              c:\windows\ServiceProfiles\LocalService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
- 2009-12-23 16:41 . 2011-11-15 16:14	16384              c:\windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2009-12-23 16:41 . 2011-11-20 08:06	16384              c:\windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2011-11-20 08:49 . 2011-11-20 08:49	2048              c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
- 2011-11-15 16:55 . 2011-11-15 16:55	2048              c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
- 2011-11-15 16:55 . 2011-11-15 16:55	2048              c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
+ 2011-11-20 08:49 . 2011-11-20 08:49	2048              c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
+ 2009-12-24 09:40 . 2011-11-19 16:39	520046              c:\windows\system32\wdi\SuspendPerformanceDiagnostics_SystemData_S4.bin
+ 2009-12-24 10:59 . 2011-11-20 08:03	445326              c:\windows\system32\wdi\SuspendPerformanceDiagnostics_SystemData_FastS4.bin
+ 2009-07-14 02:36 . 2011-11-16 15:57	921560              c:\windows\system32\perfc009.dat
+ 2009-07-14 05:12 . 2011-11-17 18:16	262144              c:\windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\IETldCache\index.dat
- 2009-07-14 05:12 . 2011-11-02 17:02	262144              c:\windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\IETldCache\index.dat
- 2009-07-14 05:01 . 2011-11-15 16:54	428924              c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat
+ 2009-07-14 05:01 . 2011-11-20 08:48	428924              c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat
+ 2009-07-14 02:36 . 2011-11-16 15:57	1519354              c:\windows\system32\perfh009.dat
+ 2009-07-14 17:58 . 2011-11-16 15:57	3539554              c:\windows\system32\perfh007.dat
+ 2009-07-14 17:58 . 2011-11-16 15:57	1047778              c:\windows\system32\perfc007.dat
- 2011-09-03 15:05 . 2011-11-15 16:54	2367768              c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache3.0.0.0.dat
+ 2011-09-03 15:05 . 2011-11-20 08:48	2367768              c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache3.0.0.0.dat
+ 2009-07-14 02:34 . 2011-11-18 18:23	11010048              c:\windows\system32\SMI\Store\Machine\SCHEMA.DAT
- 2009-07-14 02:34 . 2011-11-10 05:43	11010048              c:\windows\system32\SMI\Store\Machine\SCHEMA.DAT
+ 2009-12-30 14:21 . 2011-11-20 08:48	53030152              c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-2814086671-428616876-2365772135-1000-12288.dat
.
((((((((((((((((((((((((((((   Autostartpunkte der Registrierung   ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt. 
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2009-07-14 1475072]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"VirtualCloneDrive"="c:\program files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe" [2009-06-17 85160]
"Razer Imperator Driver"="c:\program files (x86)\Razer\Imperator\RazerImperatorTray.exe" [2010-03-18 2787224]
"HP Software Update"="c:\program files (x86)\HP\HP Software Update\HPWuSchd2.exe" [2007-05-08 54840]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2011-06-09 254696]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2011-10-12 343168]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2011-09-06 3722416]
"Malwarebytes' Anti-Malware"="c:\program files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" [2011-08-31 449608]
.
c:\users\Andy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
SpeedFan.lnk - c:\program files (x86)\SpeedFan\speedfan.exe [2009-8-9 3986552]
.
c:\users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
DSL-Manager.lnk - c:\program files (x86)\DSL-Manager\DslMgr.exe [2010-1-9 1085440]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages	REG_MULTI_SZ   	kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
R1 vcdrom;Virtual CD-ROM Device Driver;c:\users\Andy\AppData\Local\Temp\VCdRom.sys [x]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R3 atillk64;atillk64;c:\users\Andy\Downloads\winflash\atillk64.sys [2006-07-19 14608]
R3 cpuz130;cpuz130;c:\users\Andy\AppData\Local\Temp\cpuz130\cpuz_x64.sys [x]
R3 ENTECH64;ENTECH64;c:\windows\system32\DRIVERS\ENTECH64.sys [2008-09-17 12744]
R3 FLASHSYS;FLASHSYS;c:\program files (x86)\MSI\Live Update 4\LU4\FLASHSYS64.sys [x]
R3 iteio;iteio;c:\windows\system32\drivers\iteio.sys [x]
R3 pbfilter;pbfilter;c:\program files\PeerBlock\pbfilter.sys [2009-09-28 19544]
R3 RivaTuner64;RivaTuner64;c:\program files (x86)\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\RivaTuner64.sys [2009-12-23 19952]
R3 s115bus;Sony Ericsson Device 115 driver (WDM);c:\windows\system32\DRIVERS\s115bus.sys [x]
R3 s115mdfl;Sony Ericsson Device 115 USB WMC Modem Filter;c:\windows\system32\DRIVERS\s115mdfl.sys [x]
R3 s115mdm;Sony Ericsson Device 115 USB WMC Modem Driver;c:\windows\system32\DRIVERS\s115mdm.sys [x]
R3 s115mgmt;Sony Ericsson Device 115 USB WMC Device Management Drivers (WDM);c:\windows\system32\DRIVERS\s115mgmt.sys [x]
R3 s115obex;Sony Ericsson Device 115 USB WMC OBEX Interface;c:\windows\system32\DRIVERS\s115obex.sys [x]
R3 Tcpz-x64;Tcpz-x64;c:\users\Andy\AppData\Local\Temp\Tcpz-x64.sys [x]
R3 TDslMgrService;DSL-Manager;c:\program files (x86)\DSL-Manager\DslMgrSvc.exe [2008-10-23 307200]
R3 WPFFontCache_v0400;WPFFontCache_v0400;c:\windows\Microsoft.NET\Framework64\v4.0.21006\WPF\WPFFontCache_v0400.exe [x]
S1 aswSnx;aswSnx; [x]
S1 aswSP;aswSP; [x]
S1 DslMNLwf;DSL-Manager NDIS LightWeight Filter;c:\windows\system32\DRIVERS\dslmnlwf.sys [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [x]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [x]
S2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2011-08-31 366152]
S2 Windows7FirewallService;Windows7FirewallService;c:\program files\Windows7FirewallControl\Windows7FirewallService.exe [2009-06-29 545792]
S3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atikmdag.sys [x]
S3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [x]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys [x]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [x]
.
.
.
--------- x86-64 -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2011-09-06 21:45	134384	----a-w-	c:\program files\AVAST Software\Avast\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Windows7FirewallControl"="c:\program files\Windows7FirewallControl\Windows7FirewallControl.exe" [2009-06-29 1021440]
"IAAnotif"="c:\program files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe" [2009-06-04 186904]
"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2011-07-07 12558440]
"combofix"="c:\combofix\CF7718.3XE" [2009-07-14 344576]
.
------- Zusätzlicher Suchlauf -------
.
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: Nach Microsoft E&xel exportieren - c:\progra~2\MICROS~2\Office12\EXCEL.EXE/3000
FF - ProfilePath - c:\users\Andy\AppData\Roaming\Mozilla\Firefox\Profiles\o0huzi6x.default\
FF - prefs.js: browser.search.defaulturl - hxxp://search.sweetim.com/search.asp?src=2&q=
FF - prefs.js: browser.search.selectedEngine - Wikipedia (de)
FF - prefs.js: browser.startup.homepage - hxxp://de.start3.mozilla.com/firefox?client=firefox-a&rls=org.mozilla:de:official
.
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_USERS\S-1-5-21-2814086671-428616876-2365772135-1000\Software\SecuROM\!CAUTION! NEVER A OR CHANGE ANY KEY*]
@Allowed: (Read) (RestrictedCode)
"??"=hex:80,bd,9f,72,f2,d0,46,b5,33,09,06,c3,1a,42,90,db,e9,70,e2,db,13,f4,a3,
   0e,54,77,9a,98,38,9f,1b,a0,8d,7c,2f,b8,70,9b,db,af,77,97,96,2d,fc,34,ec,dd,\
"??"=hex:35,fc,c6,3d,c9,02,ad,db,37,1f,61,de,0f,33,8f,50
.
[HKEY_USERS\S-1-5-21-2814086671-428616876-2365772135-1000\Software\SecuROM\License information*]
"datasecu"=hex:77,91,20,96,87,0a,09,33,11,0a,b2,fd,40,3b,ec,05,29,fe,a5,bd,16,
   b1,50,37,b0,70,65,b5,cc,ac,60,08,f7,8c,97,bc,d5,19,c5,e3,66,33,08,38,41,15,\
"rkeysecu"=hex:e9,92,6b,90,85,2a,a1,3a,e2,43,02,51,2e,e4,cc,29
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10i_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10i_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10i.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.10"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10i.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10i.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10i.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\sphinx-soft\Vista-Wall\1.0\AppList\B*a*t*t*l*e*f*i*e*l*d* *3*"!\Zone]
"Name"="EnableAll"
"Result"=dword:00000000
"Advised"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Weitere laufende Prozesse ------------------------
.
c:\program files\AVAST Software\Avast\AvastSvc.exe
c:\windows\SysWOW64\PnkBstrA.exe
c:\program files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
.
**************************************************************************
.
Zeit der Fertigstellung: 2011-11-20  09:55:30 - PC wurde neu gestartet
ComboFix-quarantined-files.txt  2011-11-20 08:55
ComboFix2.txt  2011-11-15 17:01
.
Vor Suchlauf: 16 Verzeichnis(se), 14.602.141.696 Bytes frei
Nach Suchlauf: 17 Verzeichnis(se), 14.435.762.176 Bytes frei
.
- - End Of File - - 788D1102211F57CD4AEC89BF48D69024

--- --- ---

Danke für Deine Hilfe

Gruß Andy

cosinus · 20.11.2011, 12:58

Downloade dir bitte aswMBR.exe und speichere die Datei auf deinem Desktop.

Starte die aswMBR.exe Vista und Win7 User aswMBR per Rechtsklick "als Administrator ausführen"
Das Tool wird dich fragen, ob Du mit der aktuellen Virendefinition von AVAST! dein System scannen willst. Beantworte diese Frage bitte mit Ja. (Sollte deine Firewall fragen, bitte den Zugriff auf das Internet zulassen) Der Download der Definitionen kann je nach Verbindung eine Weile dauern.
Klicke auf Scan.
Warte bitte bis Scan finished successfully im DOS Fenster steht.
Drücke auf Save Log und speichere diese auf dem Desktop.

Poste mir die aswMBR.txt in deiner nächsten Antwort. Wichtig: Drücke keinesfalls einen der Fix Buttons ohne Anweisung Hinweis: Sollte der Scan Button ausgeblendet sein, schließe das Tool und starte es erneut. Sollte es erneut nicht klappen teile mir das bitte mit.

rockenderbik · 20.11.2011, 15:19

Das Tool hat mich nichts gefragt. Ich bin dann gleich auf Scan. Hier der das Log:

aswMBR version 0.9.8.986 Copyright(c) 2011 AVAST Software
Run date: 2011-11-20 15:06:22
-----------------------------
15:06:22.391 OS Version: Windows x64 6.1.7600
15:06:22.391 Number of processors: 4 586 0xF0B
15:06:22.392 ComputerName: ANDY-PC UserName: Andy
15:06:22.940 Initialize success
15:06:23.255 AVAST engine defs: 11112000
15:08:14.730 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP5T0L0-6
15:08:14.733 Disk 0 Vendor: SAMSUNG_HD103SJ 1AJ100E4 Size: 953869MB BusType: 3
15:08:16.748 Disk 0 MBR read successfully
15:08:16.751 Disk 0 MBR scan
15:08:16.755 Disk 0 Windows 7 default MBR code
15:08:16.758 Service scanning
15:08:18.117 Modules scanning
15:08:18.121 Disk 0 trace - called modules:
15:08:18.129 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys ataport.SYS pciide.sys PCIIDEX.SYS hal.dll atapi.sys
15:08:18.133 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8004a54060]
15:08:18.137 3 CLASSPNP.SYS[fffff8800120143f] -> nt!IofCallDriver -> [0xfffffa80047fa520]
15:08:18.142 5 ACPI.sys[fffff88000ef5781] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP5T0L0-6[0xfffffa800480b060]
15:08:18.299 AVAST engine scan C:\Windows
15:08:19.939 AVAST engine scan C:\Windows\system32
15:09:11.339 AVAST engine scan C:\Windows\system32\drivers
15:09:16.381 AVAST engine scan C:\Users\Andy
15:11:22.027 AVAST engine scan C:\ProgramData
15:12:01.497 Scan finished successfully
15:12:40.494 Disk 0 MBR has been saved successfully to "C:\Users\Andy\Desktop\MBR.dat"
15:12:40.499 The log file has been saved successfully to "C:\Users\Andy\Desktop\aswMBR.txt"

cosinus · 20.11.2011, 15:31

Sieht ok aus. Mach bitte zur Kontrolle Vollscans mit Malwarebytes und SUPERAntiSpyware und poste die Logs.
Denk dran beide Tools zu updaten vor dem Scan!!

Anschließend über den OnlineScanner von ESET eine zusätzliche Meinung zu holen ist auch nicht verkehrt:

ESET Online Scanner

Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
Lade und starte Eset Online Scanner
Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
Klicke auf Starten.
Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
Klicke am Ende des Suchlaufs auf Fertig stellen.
Schließe das Fenster von ESET.
Explorer öffnen.
C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
Logfile hier posten.
Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset

18.11.2011, 16:02	#20
cosinus /// Winkelfunktion /// TB-Süch-Tiger™	w7 64 bit/rootkit whistler, durch ein kaspersky tool entfernt. combofix durchlaufen lassen Ja führ es bitte so aus wie in der Anleitung beschrieben __________________ Logfiles bitte immer in CODE-Tags posten

w7 64 bit/rootkit whistler, durch ein kaspersky tool entfernt. combofix durchlaufen lassen

Log-Analyse und Auswertung: w7 64 bit/rootkit whistler, durch ein kaspersky tool entfernt. combofix durchlaufen lassen