|
Log-Analyse und Auswertung: System nach Spy.Banker.Gen2 wieder sauber?Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
27.11.2011, 12:05 | #16 |
| System nach Spy.Banker.Gen2 wieder sauber? Finde keinen Combofix Log, aber der Ordner ist vorhanden, ja... In der \Lastrun\drev_.txt stehen "C:\install.exe" "C:\Users\Badger_2\AppData\Roaming\AcroIEHelpe.txt" "C:\Users\Badger_2\AppData\Roaming\srvblck2.tmp" "C:\Windows\pkunzip.pif" "C:\Windows\pkzip.pif" Und befinden sich nu alle im Quarantine Ordner in Qoobox |
27.11.2011, 12:13 | #17 |
/// Winkelfunktion /// TB-Süch-Tiger™ | System nach Spy.Banker.Gen2 wieder sauber? Ich brauch den Quarantäneordner von Combofix. Bitte folgendes machen:
__________________1.) GANZ WICHTIG!! Virenscanner deaktivieren, der darf das Packen nicht beeinflussen! 2.) Ordner Quarantine in C:\Qoobox in eine Datei zippen 3.) die erstellte ZIP-Datei hier hochladen => http://www.trojaner-board.de/54791-a...ner-board.html Hinweis: Die Datei bitte wie in der Anleitung zum UpChannel angegeben auch da hochladen. Bitte NICHT die ZIP-Datei hier als Anhang in den Thread posten! 4.) Wenns erfolgreich war Bescheid sagen 5.) Erst dann wieder den Virenscanner einschalten
__________________ |
27.11.2011, 12:19 | #18 |
| System nach Spy.Banker.Gen2 wieder sauber? Ist hochgeladen
__________________ |
27.11.2011, 12:33 | #19 |
/// Winkelfunktion /// TB-Süch-Tiger™ | System nach Spy.Banker.Gen2 wieder sauber? Mach einen OTL-Fix, beende alle evtl. geöffneten Programme, auch Virenscanner deaktivieren (!), starte OTL und kopiere folgenden Text in die "Custom Scan/Fixes" Box (unten in OTL): (das ":OTL" muss mitkopiert werden!!!) Code:
ATTFilter :OTL FF - prefs.js..browser.startup.homepage: "http://startsear.ch/?aff=1" FF - prefs.js..browser.search.defaultenginename: "Web Search" FF - prefs.js..browser.search.defaultengine: "Web Search" FF - prefs.js..browser.search.order.1: "Web Search" FF - prefs.js..browser.search.selectedEngine: "Web Search" FF - prefs.js..keyword.URL: "http://startsear.ch/?aff=1&src=sp&cf=7decdf60-f732-11e0-89e3-dd5d7a854ee0&q=" [2011.05.20 00:13:58 | 000,000,000 | ---D | M] ("DVDVideoSoft Menu") -- C:\Users\Badger\AppData\Roaming\mozilla\Firefox\Profiles\2ilz1vf0.default\extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C} [2011.07.11 19:04:02 | 000,000,633 | ---- | M] () -- C:\Users\Badger\AppData\Roaming\Mozilla\Firefox\Profiles\2ilz1vf0.default\searchplugins\startsear.xml :Files C:\Program Files (x86)\Win7codecs C:\ProgramData\Win7codecs C:\Users\All Users\Win7codecs C:\Windows\Installer\315564.msi D:\Downloads\Software\SoftonicDownloader92616.exe :Commands [emptytemp] [resethosts] Das Logfile müsste geöffnet werden, wenn Du nach dem Fixen auf ok klickst, poste das bitte. Evtl. wird der Rechner neu gestartet. Die mit diesem Script gefixten Einträge, Dateien und Ordner werden zur Sicherheit nicht vollständig gelöscht, es wird eine Sicherheitskopie auf der Systempartition im Ordner "_OTL" erstellt. Hinweis: Das obige Script ist nur für diesen einen User in dieser Situtation erstellt worden. Es ist auf keinen anderen Rechner portierbar und darf nicht anderweitig verwandt werden, da es das System nachhaltig schädigen kann!
__________________ Logfiles bitte immer in CODE-Tags posten |
27.11.2011, 13:00 | #20 |
| System nach Spy.Banker.Gen2 wieder sauber?Code:
ATTFilter All processes killed ========== OTL ========== Prefs.js: "hxxp://startsear.ch/?aff=1" removed from browser.startup.homepage Prefs.js: "Web Search" removed from browser.search.defaultenginename Prefs.js: "Web Search" removed from browser.search.defaultengine Prefs.js: "Web Search" removed from browser.search.order.1 Prefs.js: "Web Search" removed from browser.search.selectedEngine Prefs.js: "hxxp://startsear.ch/?aff=1&src=sp&cf=7decdf60-f732-11e0-89e3-dd5d7a854ee0&q=" removed from keyword.URL C:\Users\Badger\AppData\Roaming\mozilla\Firefox\Profiles\2ilz1vf0.default\extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}\chrome folder moved successfully. C:\Users\Badger\AppData\Roaming\mozilla\Firefox\Profiles\2ilz1vf0.default\extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C} folder moved successfully. C:\Users\Badger\AppData\Roaming\Mozilla\Firefox\Profiles\2ilz1vf0.default\searchplugins\startsear.xml moved successfully. ========== FILES ========== C:\Program Files (x86)\Win7codecs\Tools folder moved successfully. C:\Program Files (x86)\Win7codecs\rm\Update_OB folder moved successfully. C:\Program Files (x86)\Win7codecs\rm\Rpplugins folder moved successfully. C:\Program Files (x86)\Win7codecs\rm\Plugins\ExtResources folder moved successfully. C:\Program Files (x86)\Win7codecs\rm\Plugins folder moved successfully. C:\Program Files (x86)\Win7codecs\rm\Common folder moved successfully. C:\Program Files (x86)\Win7codecs\rm\Codecs folder moved successfully. C:\Program Files (x86)\Win7codecs\rm\Browser\Plugins folder moved successfully. C:\Program Files (x86)\Win7codecs\rm\Browser\Components folder moved successfully. C:\Program Files (x86)\Win7codecs\rm\Browser folder moved successfully. C:\Program Files (x86)\Win7codecs\rm folder moved successfully. C:\Program Files (x86)\Win7codecs\icons folder moved successfully. C:\Program Files (x86)\Win7codecs\filters\languages folder moved successfully. C:\Program Files (x86)\Win7codecs\filters\lang\zh@Traditional\LC_MESSAGES folder moved successfully. C:\Program Files (x86)\Win7codecs\filters\lang\zh@Traditional folder moved successfully. C:\Program Files (x86)\Win7codecs\filters\lang\zh@Simplified\LC_MESSAGES folder moved successfully. C:\Program Files (x86)\Win7codecs\filters\lang\zh@Simplified folder moved successfully. C:\Program Files (x86)\Win7codecs\filters\lang\swe\LC_MESSAGES folder moved successfully. C:\Program Files (x86)\Win7codecs\filters\lang\swe folder moved successfully. C:\Program Files (x86)\Win7codecs\filters\lang\spa\LC_MESSAGES folder moved successfully. C:\Program Files (x86)\Win7codecs\filters\lang\spa folder moved successfully. C:\Program Files (x86)\Win7codecs\filters\lang\slv\LC_MESSAGES folder moved successfully. C:\Program Files (x86)\Win7codecs\filters\lang\slv folder moved successfully. C:\Program Files (x86)\Win7codecs\filters\lang\slo\LC_MESSAGES folder moved successfully. C:\Program Files (x86)\Win7codecs\filters\lang\slo folder moved successfully. C:\Program Files (x86)\Win7codecs\filters\lang\rus\LC_MESSAGES folder moved successfully. C:\Program Files (x86)\Win7codecs\filters\lang\rus folder moved successfully. C:\Program Files (x86)\Win7codecs\filters\lang\pt_BR\LC_MESSAGES folder moved successfully. C:\Program Files (x86)\Win7codecs\filters\lang\pt_BR folder moved successfully. C:\Program Files (x86)\Win7codecs\filters\lang\pol\LC_MESSAGES folder moved successfully. C:\Program Files (x86)\Win7codecs\filters\lang\pol folder moved successfully. C:\Program Files (x86)\Win7codecs\filters\lang\kor\LC_MESSAGES folder moved successfully. C:\Program Files (x86)\Win7codecs\filters\lang\kor folder moved successfully. C:\Program Files (x86)\Win7codecs\filters\lang\jpn\LC_MESSAGES folder moved successfully. C:\Program Files (x86)\Win7codecs\filters\lang\jpn folder moved successfully. C:\Program Files (x86)\Win7codecs\filters\lang\ita\LC_MESSAGES folder moved successfully. C:\Program Files (x86)\Win7codecs\filters\lang\ita folder moved successfully. C:\Program Files (x86)\Win7codecs\filters\lang\ind\LC_MESSAGES folder moved successfully. C:\Program Files (x86)\Win7codecs\filters\lang\ind folder moved successfully. C:\Program Files (x86)\Win7codecs\filters\lang\hun\LC_MESSAGES folder moved successfully. C:\Program Files (x86)\Win7codecs\filters\lang\hun folder moved successfully. C:\Program Files (x86)\Win7codecs\filters\lang\heb\LC_MESSAGES folder moved successfully. C:\Program Files (x86)\Win7codecs\filters\lang\heb folder moved successfully. C:\Program Files (x86)\Win7codecs\filters\lang\gre\LC_MESSAGES folder moved successfully. C:\Program Files (x86)\Win7codecs\filters\lang\gre folder moved successfully. C:\Program Files (x86)\Win7codecs\filters\lang\ger\LC_MESSAGES folder moved successfully. C:\Program Files (x86)\Win7codecs\filters\lang\ger folder moved successfully. C:\Program Files (x86)\Win7codecs\filters\lang\fre\LC_MESSAGES folder moved successfully. C:\Program Files (x86)\Win7codecs\filters\lang\fre folder moved successfully. C:\Program Files (x86)\Win7codecs\filters\lang\fin\LC_MESSAGES folder moved successfully. C:\Program Files (x86)\Win7codecs\filters\lang\fin folder moved successfully. C:\Program Files (x86)\Win7codecs\filters\lang\dut\LC_MESSAGES folder moved successfully. C:\Program Files (x86)\Win7codecs\filters\lang\dut folder moved successfully. C:\Program Files (x86)\Win7codecs\filters\lang\cze\LC_MESSAGES folder moved successfully. C:\Program Files (x86)\Win7codecs\filters\lang\cze folder moved successfully. C:\Program Files (x86)\Win7codecs\filters\lang folder moved successfully. C:\Program Files (x86)\Win7codecs\filters folder moved successfully. C:\Program Files (x86)\Win7codecs folder moved successfully. C:\ProgramData\Win7codecs\{6B010B4A-EBD4-491C-A6A9-BC1063E2A432} folder moved successfully. C:\ProgramData\Win7codecs folder moved successfully. File\Folder C:\Users\All Users\Win7codecs not found. C:\Windows\Installer\315564.msi moved successfully. D:\Downloads\Software\SoftonicDownloader92616.exe moved successfully. ========== COMMANDS ========== [EMPTYTEMP] User: All Users User: Angy ->Temp folder emptied: 6771073 bytes ->Temporary Internet Files folder emptied: 49895422 bytes ->Java cache emptied: 228894 bytes ->FireFox cache emptied: 544856452 bytes ->Flash cache emptied: 28768 bytes User: Badger ->Temp folder emptied: 1209782938 bytes ->Temporary Internet Files folder emptied: 361144 bytes ->Java cache emptied: 0 bytes ->FireFox cache emptied: 90215328 bytes ->Flash cache emptied: 3120 bytes User: Badger_2 ->Temp folder emptied: 118970712 bytes ->Temporary Internet Files folder emptied: 59525934 bytes ->Java cache emptied: 34301646 bytes ->FireFox cache emptied: 813851962 bytes ->Google Chrome cache emptied: 8475515 bytes ->Flash cache emptied: 1291842 bytes User: Carstinho ->Temp folder emptied: 15602 bytes ->Temporary Internet Files folder emptied: 425970 bytes User: Default ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes ->Flash cache emptied: 56502 bytes User: Default User ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes ->Flash cache emptied: 0 bytes User: Public %systemdrive% .tmp files removed: 0 bytes %systemroot% .tmp files removed: 0 bytes %systemroot%\System32 .tmp files removed: 0 bytes %systemroot%\System32 (64bit) .tmp files removed: 0 bytes %systemroot%\System32\drivers .tmp files removed: 0 bytes Windows Temp folder emptied: 0 bytes %systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 50434 bytes RecycleBin emptied: 0 bytes Total Files Cleaned = 2.803,00 mb C:\Windows\System32\drivers\etc\Hosts moved successfully. HOSTS file reset successfully OTL by OldTimer - Version 3.2.31.0 log created on 11272011_123629 Files\Folders moved on Reboot... File move failed. C:\Users\Badger_2\AppData\Local\Temp\FXSAPIDebugLogFile.txt scheduled to be moved on reboot. Registry entries deleted on Reboot... |
27.11.2011, 13:24 | #21 |
/// Winkelfunktion /// TB-Süch-Tiger™ | System nach Spy.Banker.Gen2 wieder sauber? Bitte nun dieses Tool von Kaspersky ausführen und das Log posten => http://www.trojaner-board.de/82358-t...entfernen.html Das Tool so einstellen wie unten im Bild angegeben - klick auf change parameters und setze die Haken wie im folgenden Screenshot abgebildet, Dann auf Start Scan klicken und wenn es durch ist auf den Button Report klicken um das Log anzuzeigen. Dieses bitte komplett posten. Wenn du das Log nicht findest oder den Inhalt kopieren und in dein Posting übertragen kannst, dann schau bitte direkt auf deiner Windows-Systempartition nach, da speichert der TDSS-Killer seine Logs. Hinweis: Bitte nichts voreilig mit dem TDSS-Killer löschen! Falls Objekte vom TDSS-Killer bemängelt werden, alle mit der Aktion "skip" behandeln und hier nur das Log posten! Falls du durch die Infektion auf deine Dokumente/Eigenen Dateien nicht zugreifen kannst, Verknüpfungen auf dem Desktop oder im Startmenü unter "alle Programme" fehlen, bitte unhide ausführen: Downloade dir bitte unhide.exe und speichere diese Datei auf deinem Desktop. Starte das Tool und es sollten alle Dateien und Ordner wieder sichtbar sein. ( Könnte eine Weile dauern ) Windows-Vista und Windows-7-User müssen das Tool per Rechtsklick als Administrator ausführen!
__________________ --> System nach Spy.Banker.Gen2 wieder sauber? |
27.11.2011, 13:33 | #22 |
| System nach Spy.Banker.Gen2 wieder sauber? In voller Pracht und Länge Code:
ATTFilter 13:30:32.0451 3024 TDSS rootkit removing tool 2.6.21.0 Nov 24 2011 12:32:44 13:30:32.0888 3024 ============================================================ 13:30:32.0888 3024 Current date / time: 2011/11/27 13:30:32.0888 13:30:32.0888 3024 SystemInfo: 13:30:32.0888 3024 13:30:32.0888 3024 OS Version: 6.1.7600 ServicePack: 0.0 13:30:32.0888 3024 Product type: Workstation 13:30:32.0889 3024 ComputerName: BADGERLI 13:30:32.0891 3024 UserName: Badger 13:30:32.0891 3024 Windows directory: C:\Windows 13:30:32.0891 3024 System windows directory: C:\Windows 13:30:32.0891 3024 Running under WOW64 13:30:32.0891 3024 Processor architecture: Intel x64 13:30:32.0891 3024 Number of processors: 2 13:30:32.0891 3024 Page size: 0x1000 13:30:32.0891 3024 Boot type: Normal boot 13:30:32.0891 3024 ============================================================ 13:30:33.0391 3024 Initialize success 13:31:05.0165 2388 ============================================================ 13:31:05.0165 2388 Scan started 13:31:05.0165 2388 Mode: Manual; SigCheck; TDLFS; 13:31:05.0165 2388 ============================================================ 13:31:05.0545 2388 1394ohci (1b00662092f9f9568b995902f0cc40d5) C:\Windows\system32\DRIVERS\1394ohci.sys 13:31:05.0605 2388 1394ohci ( UnsignedFile.Multi.Generic ) - warning 13:31:05.0605 2388 1394ohci - detected UnsignedFile.Multi.Generic (1) 13:31:05.0755 2388 ACPI (6f11e88748cdefd2f76aa215f97ddfe5) C:\Windows\system32\DRIVERS\ACPI.sys 13:31:05.0805 2388 ACPI - ok 13:31:05.0945 2388 AcpiPmi (63b05a0420ce4bf0e4af6dcc7cada254) C:\Windows\system32\DRIVERS\acpipmi.sys 13:31:05.0965 2388 AcpiPmi ( UnsignedFile.Multi.Generic ) - warning 13:31:05.0965 2388 AcpiPmi - detected UnsignedFile.Multi.Generic (1) 13:31:06.0125 2388 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys 13:31:06.0145 2388 adp94xx - ok 13:31:06.0295 2388 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys 13:31:06.0315 2388 adpahci - ok 13:31:06.0455 2388 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys 13:31:06.0475 2388 adpu320 - ok 13:31:06.0615 2388 AFD (b9384e03479d2506bc924c16a3db87bc) C:\Windows\system32\drivers\afd.sys 13:31:06.0645 2388 AFD ( UnsignedFile.Multi.Generic ) - warning 13:31:06.0645 2388 AFD - detected UnsignedFile.Multi.Generic (1) 13:31:06.0785 2388 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\DRIVERS\agp440.sys 13:31:06.0795 2388 agp440 - ok 13:31:06.0925 2388 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\DRIVERS\aliide.sys 13:31:06.0935 2388 aliide - ok 13:31:07.0065 2388 altausb (267c87fed5ac9443502004ada6238aba) C:\Windows\system32\DRIVERS\altausb.sys 13:31:07.0085 2388 altausb ( UnsignedFile.Multi.Generic ) - warning 13:31:07.0085 2388 altausb - detected UnsignedFile.Multi.Generic (1) 13:31:07.0245 2388 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\DRIVERS\amdide.sys 13:31:07.0265 2388 amdide - ok 13:31:07.0405 2388 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys 13:31:07.0425 2388 AmdK8 ( UnsignedFile.Multi.Generic ) - warning 13:31:07.0425 2388 AmdK8 - detected UnsignedFile.Multi.Generic (1) 13:31:07.0575 2388 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys 13:31:07.0595 2388 AmdPPM ( UnsignedFile.Multi.Generic ) - warning 13:31:07.0595 2388 AmdPPM - detected UnsignedFile.Multi.Generic (1) 13:31:07.0735 2388 amdsata (7a4b413614c055935567cf88a9734d38) C:\Windows\system32\DRIVERS\amdsata.sys 13:31:07.0745 2388 amdsata - ok 13:31:07.0875 2388 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys 13:31:07.0895 2388 amdsbs - ok 13:31:08.0025 2388 amdxata (b4ad0cacbab298671dd6f6ef7e20679d) C:\Windows\system32\DRIVERS\amdxata.sys 13:31:08.0035 2388 amdxata - ok 13:31:08.0175 2388 AppID (42fd751b27fa0e9c69bb39f39e409594) C:\Windows\system32\drivers\appid.sys 13:31:08.0205 2388 AppID ( UnsignedFile.Multi.Generic ) - warning 13:31:08.0205 2388 AppID - detected UnsignedFile.Multi.Generic (1) 13:31:08.0365 2388 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys 13:31:08.0385 2388 arc - ok 13:31:08.0495 2388 archlp (2e18f6a486330bc2c9c0172878799099) C:\Windows\system32\drivers\archlp.sys 13:31:09.0445 2388 archlp - ok 13:31:09.0575 2388 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys 13:31:09.0595 2388 arcsas - ok 13:31:09.0705 2388 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys 13:31:09.0725 2388 AsyncMac ( UnsignedFile.Multi.Generic ) - warning 13:31:09.0725 2388 AsyncMac - detected UnsignedFile.Multi.Generic (1) 13:31:09.0875 2388 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\DRIVERS\atapi.sys 13:31:09.0885 2388 atapi - ok 13:31:10.0015 2388 avgntflt (aa8f79a1bdfc03b3bc70c44ab00589b4) C:\Windows\system32\DRIVERS\avgntflt.sys 13:31:10.0025 2388 avgntflt - ok 13:31:10.0155 2388 avipbb (d959309ececca73fc79f8ef8521346b2) C:\Windows\system32\DRIVERS\avipbb.sys 13:31:10.0165 2388 avipbb - ok 13:31:10.0315 2388 avkmgr (248db59fc86de44d2779f4c7fb1a567d) C:\Windows\system32\DRIVERS\avkmgr.sys 13:31:10.0325 2388 avkmgr - ok 13:31:10.0475 2388 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys 13:31:10.0505 2388 b06bdrv ( UnsignedFile.Multi.Generic ) - warning 13:31:10.0505 2388 b06bdrv - detected UnsignedFile.Multi.Generic (1) 13:31:10.0645 2388 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys 13:31:10.0665 2388 b57nd60a ( UnsignedFile.Multi.Generic ) - warning 13:31:10.0665 2388 b57nd60a - detected UnsignedFile.Multi.Generic (1) 13:31:10.0845 2388 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys 13:31:10.0865 2388 Beep ( UnsignedFile.Multi.Generic ) - warning 13:31:10.0865 2388 Beep - detected UnsignedFile.Multi.Generic (1) 13:31:11.0005 2388 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys 13:31:11.0035 2388 blbdrive ( UnsignedFile.Multi.Generic ) - warning 13:31:11.0035 2388 blbdrive - detected UnsignedFile.Multi.Generic (1) 13:31:11.0165 2388 bowser (91ce0d3dc57dd377e690a2d324022b08) C:\Windows\system32\DRIVERS\bowser.sys 13:31:11.0185 2388 bowser ( UnsignedFile.Multi.Generic ) - warning 13:31:11.0185 2388 bowser - detected UnsignedFile.Multi.Generic (1) 13:31:11.0305 2388 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys 13:31:11.0335 2388 BrFiltLo ( UnsignedFile.Multi.Generic ) - warning 13:31:11.0335 2388 BrFiltLo - detected UnsignedFile.Multi.Generic (1) 13:31:11.0425 2388 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys 13:31:11.0455 2388 BrFiltUp ( UnsignedFile.Multi.Generic ) - warning 13:31:11.0455 2388 BrFiltUp - detected UnsignedFile.Multi.Generic (1) 13:31:11.0505 2388 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys 13:31:11.0535 2388 Brserid ( UnsignedFile.Multi.Generic ) - warning 13:31:11.0535 2388 Brserid - detected UnsignedFile.Multi.Generic (1) 13:31:11.0635 2388 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys 13:31:11.0665 2388 BrSerWdm ( UnsignedFile.Multi.Generic ) - warning 13:31:11.0665 2388 BrSerWdm - detected UnsignedFile.Multi.Generic (1) 13:31:11.0795 2388 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys 13:31:11.0815 2388 BrUsbMdm ( UnsignedFile.Multi.Generic ) - warning 13:31:11.0815 2388 BrUsbMdm - detected UnsignedFile.Multi.Generic (1) 13:31:11.0955 2388 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys 13:31:11.0975 2388 BrUsbSer ( UnsignedFile.Multi.Generic ) - warning 13:31:11.0975 2388 BrUsbSer - detected UnsignedFile.Multi.Generic (1) 13:31:12.0095 2388 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys 13:31:12.0125 2388 BTHMODEM ( UnsignedFile.Multi.Generic ) - warning 13:31:12.0125 2388 BTHMODEM - detected UnsignedFile.Multi.Generic (1) 13:31:12.0255 2388 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys 13:31:12.0285 2388 cdfs ( UnsignedFile.Multi.Generic ) - warning 13:31:12.0285 2388 cdfs - detected UnsignedFile.Multi.Generic (1) 13:31:12.0435 2388 cdrom (83d2d75e1efb81b3450c18131443f7db) C:\Windows\system32\DRIVERS\cdrom.sys 13:31:12.0465 2388 cdrom ( UnsignedFile.Multi.Generic ) - warning 13:31:12.0465 2388 cdrom - detected UnsignedFile.Multi.Generic (1) 13:31:12.0605 2388 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys 13:31:12.0625 2388 circlass ( UnsignedFile.Multi.Generic ) - warning 13:31:12.0625 2388 circlass - detected UnsignedFile.Multi.Generic (1) 13:31:12.0765 2388 CLBUDF (0fca6da0b344facdc77c9b75e4710c67) C:\Windows\system32\drivers\CLBUDF.sys 13:31:12.0795 2388 CLBUDF - ok 13:31:12.0885 2388 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys 13:31:12.0905 2388 CLFS - ok 13:31:13.0045 2388 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys 13:31:13.0075 2388 CmBatt ( UnsignedFile.Multi.Generic ) - warning 13:31:13.0075 2388 CmBatt - detected UnsignedFile.Multi.Generic (1) 13:31:13.0185 2388 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\DRIVERS\cmdide.sys 13:31:13.0195 2388 cmdide - ok 13:31:13.0325 2388 CNG (f95fd4cb7da00ba2a63ce9f6b5c053e1) C:\Windows\system32\Drivers\cng.sys 13:31:13.0345 2388 CNG - ok 13:31:13.0485 2388 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys 13:31:13.0495 2388 Compbatt - ok 13:31:13.0635 2388 CompositeBus (f26b3a86f6fa87ca360b879581ab4123) C:\Windows\system32\DRIVERS\CompositeBus.sys 13:31:13.0655 2388 CompositeBus ( UnsignedFile.Multi.Generic ) - warning 13:31:13.0655 2388 CompositeBus - detected UnsignedFile.Multi.Generic (1) 13:31:13.0825 2388 cpuz133 (95c88d25e211a4d52a82c53e5d93e634) C:\Windows\system32\drivers\cpuz133_x64.sys 13:31:13.0835 2388 cpuz133 - ok 13:31:13.0955 2388 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys 13:31:13.0975 2388 crcdisk - ok 13:31:14.0095 2388 CSC (4a6173c2279b498cd8f57cae504564cb) C:\Windows\system32\drivers\csc.sys 13:31:14.0125 2388 CSC ( UnsignedFile.Multi.Generic ) - warning 13:31:14.0125 2388 CSC - detected UnsignedFile.Multi.Generic (1) 13:31:14.0265 2388 CVirtA (44bddeb03c84a1c993c992ffb5700357) C:\Windows\system32\DRIVERS\CVirtA64.sys 13:31:14.0275 2388 CVirtA - ok 13:31:14.0425 2388 DfsC (3f1dc527070acb87e40afe46ef6da749) C:\Windows\system32\Drivers\dfsc.sys 13:31:14.0445 2388 DfsC ( UnsignedFile.Multi.Generic ) - warning 13:31:14.0445 2388 DfsC - detected UnsignedFile.Multi.Generic (1) 13:31:14.0565 2388 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys 13:31:14.0585 2388 discache ( UnsignedFile.Multi.Generic ) - warning 13:31:14.0585 2388 discache - detected UnsignedFile.Multi.Generic (1) 13:31:14.0715 2388 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys 13:31:14.0725 2388 Disk - ok 13:31:14.0865 2388 DNE (05cb5910b3ca6019fc3cca815ee06ffb) C:\Windows\system32\DRIVERS\dne64x.sys 13:31:14.0875 2388 DNE - ok 13:31:15.0015 2388 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys 13:31:15.0035 2388 drmkaud ( UnsignedFile.Multi.Generic ) - warning 13:31:15.0035 2388 drmkaud - detected UnsignedFile.Multi.Generic (1) 13:31:15.0185 2388 DXGKrnl (ebce0b0924835f635f620d19f0529dce) C:\Windows\System32\drivers\dxgkrnl.sys 13:31:15.0215 2388 DXGKrnl - ok 13:31:15.0375 2388 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys 13:31:15.0465 2388 ebdrv ( UnsignedFile.Multi.Generic ) - warning 13:31:15.0465 2388 ebdrv - detected UnsignedFile.Multi.Generic (1) 13:31:15.0625 2388 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys 13:31:15.0645 2388 elxstor - ok 13:31:15.0745 2388 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\DRIVERS\errdev.sys 13:31:15.0765 2388 ErrDev ( UnsignedFile.Multi.Generic ) - warning 13:31:15.0765 2388 ErrDev - detected UnsignedFile.Multi.Generic (1) 13:31:15.0905 2388 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys 13:31:15.0935 2388 exfat ( UnsignedFile.Multi.Generic ) - warning 13:31:15.0935 2388 exfat - detected UnsignedFile.Multi.Generic (1) 13:31:16.0045 2388 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys 13:31:16.0065 2388 fastfat ( UnsignedFile.Multi.Generic ) - warning 13:31:16.0065 2388 fastfat - detected UnsignedFile.Multi.Generic (1) 13:31:16.0215 2388 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys 13:31:16.0245 2388 fdc ( UnsignedFile.Multi.Generic ) - warning 13:31:16.0245 2388 fdc - detected UnsignedFile.Multi.Generic (1) 13:31:16.0365 2388 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys 13:31:16.0385 2388 FileInfo - ok 13:31:16.0405 2388 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys 13:31:16.0435 2388 Filetrace ( UnsignedFile.Multi.Generic ) - warning 13:31:16.0435 2388 Filetrace - detected UnsignedFile.Multi.Generic (1) 13:31:16.0575 2388 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys 13:31:16.0595 2388 flpydisk ( UnsignedFile.Multi.Generic ) - warning 13:31:16.0595 2388 flpydisk - detected UnsignedFile.Multi.Generic (1) 13:31:16.0625 2388 FltMgr (f7866af72abbaf84b1fa5aa195378c59) C:\Windows\system32\drivers\fltmgr.sys 13:31:16.0645 2388 FltMgr - ok 13:31:16.0765 2388 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys 13:31:16.0785 2388 FsDepends - ok 13:31:16.0895 2388 Fs_Rec (e95ef8547de20cf0603557c0cf7a9462) C:\Windows\system32\drivers\Fs_Rec.sys 13:31:16.0905 2388 Fs_Rec - ok 13:31:17.0035 2388 fvevol (ae87ba80d0ec3b57126ed2cdc15b24ed) C:\Windows\system32\DRIVERS\fvevol.sys 13:31:17.0055 2388 fvevol - ok 13:31:17.0175 2388 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys 13:31:17.0185 2388 gagp30kx - ok 13:31:17.0305 2388 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys 13:31:17.0325 2388 hcw85cir ( UnsignedFile.Multi.Generic ) - warning 13:31:17.0325 2388 hcw85cir - detected UnsignedFile.Multi.Generic (1) 13:31:17.0385 2388 HdAudAddService (6410f6f415b2a5a9037224c41da8bf12) C:\Windows\system32\drivers\HdAudio.sys 13:31:17.0415 2388 HdAudAddService ( UnsignedFile.Multi.Generic ) - warning 13:31:17.0415 2388 HdAudAddService - detected UnsignedFile.Multi.Generic (1) 13:31:17.0545 2388 HDAudBus (0a49913402747a0b67de940fb42cbdbb) C:\Windows\system32\DRIVERS\HDAudBus.sys 13:31:17.0575 2388 HDAudBus ( UnsignedFile.Multi.Generic ) - warning 13:31:17.0575 2388 HDAudBus - detected UnsignedFile.Multi.Generic (1) 13:31:17.0585 2388 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys 13:31:17.0605 2388 HidBatt ( UnsignedFile.Multi.Generic ) - warning 13:31:17.0605 2388 HidBatt - detected UnsignedFile.Multi.Generic (1) 13:31:17.0695 2388 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys 13:31:17.0715 2388 HidBth ( UnsignedFile.Multi.Generic ) - warning 13:31:17.0715 2388 HidBth - detected UnsignedFile.Multi.Generic (1) 13:31:17.0735 2388 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys 13:31:17.0765 2388 HidIr ( UnsignedFile.Multi.Generic ) - warning 13:31:17.0765 2388 HidIr - detected UnsignedFile.Multi.Generic (1) 13:31:17.0875 2388 HidUsb (b3bf6b5b50006def50b66306d99fcf6f) C:\Windows\system32\DRIVERS\hidusb.sys 13:31:17.0905 2388 HidUsb ( UnsignedFile.Multi.Generic ) - warning 13:31:17.0905 2388 HidUsb - detected UnsignedFile.Multi.Generic (1) 13:31:17.0965 2388 HpSAMD (0886d440058f203eba0e1825e4355914) C:\Windows\system32\DRIVERS\HpSAMD.sys 13:31:17.0985 2388 HpSAMD - ok 13:31:18.0085 2388 HTTP (cee049cac4efa7f4e1e4ad014414a5d4) C:\Windows\system32\drivers\HTTP.sys 13:31:18.0125 2388 HTTP ( UnsignedFile.Multi.Generic ) - warning 13:31:18.0125 2388 HTTP - detected UnsignedFile.Multi.Generic (1) 13:31:18.0235 2388 hwpolicy (f17766a19145f111856378df337a5d79) C:\Windows\system32\drivers\hwpolicy.sys 13:31:18.0255 2388 hwpolicy - ok 13:31:18.0375 2388 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\DRIVERS\i8042prt.sys 13:31:18.0395 2388 i8042prt ( UnsignedFile.Multi.Generic ) - warning 13:31:18.0395 2388 i8042prt - detected UnsignedFile.Multi.Generic (1) 13:31:18.0535 2388 iaStor (1d004cb1da6323b1f55caef7f94b61d9) C:\Windows\system32\DRIVERS\iaStor.sys 13:31:18.0545 2388 iaStor - ok 13:31:18.0685 2388 iaStorV (d83efb6fd45df9d55e9a1afc63640d50) C:\Windows\system32\DRIVERS\iaStorV.sys 13:31:18.0705 2388 iaStorV - ok 13:31:18.0825 2388 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys 13:31:18.0835 2388 iirsp - ok 13:31:19.0005 2388 IntcAzAudAddService (bc64b75e8e0a0b8982ab773483164e72) C:\Windows\system32\drivers\RTKVHD64.sys 13:31:19.0055 2388 IntcAzAudAddService - ok 13:31:19.0175 2388 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\DRIVERS\intelide.sys 13:31:19.0185 2388 intelide - ok 13:31:19.0235 2388 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys 13:31:19.0255 2388 intelppm ( UnsignedFile.Multi.Generic ) - warning 13:31:19.0255 2388 intelppm - detected UnsignedFile.Multi.Generic (1) 13:31:19.0345 2388 IpFilterDriver (722dd294df62483cecaae6e094b4d695) C:\Windows\system32\DRIVERS\ipfltdrv.sys 13:31:19.0375 2388 IpFilterDriver ( UnsignedFile.Multi.Generic ) - warning 13:31:19.0375 2388 IpFilterDriver - detected UnsignedFile.Multi.Generic (1) 13:31:19.0405 2388 IPMIDRV (e2b4a4494db7cb9b89b55ca268c337c5) C:\Windows\system32\DRIVERS\IPMIDrv.sys 13:31:19.0425 2388 IPMIDRV ( UnsignedFile.Multi.Generic ) - warning 13:31:19.0425 2388 IPMIDRV - detected UnsignedFile.Multi.Generic (1) 13:31:19.0435 2388 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys 13:31:19.0465 2388 IPNAT ( UnsignedFile.Multi.Generic ) - warning 13:31:19.0465 2388 IPNAT - detected UnsignedFile.Multi.Generic (1) 13:31:19.0555 2388 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys 13:31:19.0585 2388 IRENUM ( UnsignedFile.Multi.Generic ) - warning 13:31:19.0585 2388 IRENUM - detected UnsignedFile.Multi.Generic (1) 13:31:19.0695 2388 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\DRIVERS\isapnp.sys 13:31:19.0705 2388 isapnp - ok 13:31:19.0725 2388 iScsiPrt (fa4d2557de56d45b0a346f93564be6e1) C:\Windows\system32\DRIVERS\msiscsi.sys 13:31:19.0745 2388 iScsiPrt - ok 13:31:19.0845 2388 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys 13:31:19.0855 2388 kbdclass - ok 13:31:19.0895 2388 kbdhid (6def98f8541e1b5dceb2c822a11f7323) C:\Windows\system32\DRIVERS\kbdhid.sys 13:31:19.0925 2388 kbdhid ( UnsignedFile.Multi.Generic ) - warning 13:31:19.0925 2388 kbdhid - detected UnsignedFile.Multi.Generic (1) 13:31:20.0035 2388 KSecDD (e8b6fcc9c83535c67f835d407620bd27) C:\Windows\system32\Drivers\ksecdd.sys 13:31:20.0055 2388 KSecDD - ok 13:31:20.0085 2388 KSecPkg (a8c63880ef6f4d3fec7b616b9c060215) C:\Windows\system32\Drivers\ksecpkg.sys 13:31:20.0105 2388 KSecPkg - ok 13:31:20.0215 2388 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys 13:31:20.0235 2388 ksthunk ( UnsignedFile.Multi.Generic ) - warning 13:31:20.0235 2388 ksthunk - detected UnsignedFile.Multi.Generic (1) 13:31:20.0385 2388 LHidFilt (b6552d382ff070b4ed34cbd6737277c0) C:\Windows\system32\DRIVERS\LHidFilt.Sys 13:31:20.0395 2388 LHidFilt - ok 13:31:20.0525 2388 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys 13:31:20.0555 2388 lltdio ( UnsignedFile.Multi.Generic ) - warning 13:31:20.0555 2388 lltdio - detected UnsignedFile.Multi.Generic (1) 13:31:20.0615 2388 LMouFilt (73c1f563ab73d459dffe682d66476558) C:\Windows\system32\DRIVERS\LMouFilt.Sys 13:31:20.0625 2388 LMouFilt - ok 13:31:20.0745 2388 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys 13:31:20.0755 2388 LSI_FC - ok 13:31:20.0795 2388 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys 13:31:20.0815 2388 LSI_SAS - ok 13:31:20.0925 2388 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys 13:31:20.0945 2388 LSI_SAS2 - ok 13:31:20.0975 2388 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys 13:31:20.0995 2388 LSI_SCSI - ok 13:31:21.0105 2388 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys 13:31:21.0125 2388 luafv ( UnsignedFile.Multi.Generic ) - warning 13:31:21.0125 2388 luafv - detected UnsignedFile.Multi.Generic (1) 13:31:21.0275 2388 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys 13:31:21.0285 2388 megasas - ok 13:31:21.0305 2388 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys 13:31:21.0325 2388 MegaSR - ok 13:31:21.0445 2388 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys 13:31:21.0465 2388 Modem ( UnsignedFile.Multi.Generic ) - warning 13:31:21.0465 2388 Modem - detected UnsignedFile.Multi.Generic (1) 13:31:21.0605 2388 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys 13:31:21.0625 2388 monitor ( UnsignedFile.Multi.Generic ) - warning 13:31:21.0625 2388 monitor - detected UnsignedFile.Multi.Generic (1) 13:31:21.0755 2388 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys 13:31:21.0765 2388 mouclass - ok 13:31:21.0885 2388 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys 13:31:21.0905 2388 mouhid ( UnsignedFile.Multi.Generic ) - warning 13:31:21.0905 2388 mouhid - detected UnsignedFile.Multi.Generic (1) 13:31:21.0935 2388 mountmgr (791af66c4d0e7c90a3646066386fb571) C:\Windows\system32\drivers\mountmgr.sys 13:31:21.0945 2388 mountmgr - ok 13:31:22.0035 2388 mpio (609d1d87649ecc19796f4d76d4c15cea) C:\Windows\system32\DRIVERS\mpio.sys 13:31:22.0055 2388 mpio - ok 13:31:22.0075 2388 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys 13:31:22.0095 2388 mpsdrv ( UnsignedFile.Multi.Generic ) - warning 13:31:22.0095 2388 mpsdrv - detected UnsignedFile.Multi.Generic (1) 13:31:22.0195 2388 MRxDAV (30524261bb51d96d6fcbac20c810183c) C:\Windows\system32\drivers\mrxdav.sys 13:31:22.0225 2388 MRxDAV ( UnsignedFile.Multi.Generic ) - warning 13:31:22.0225 2388 MRxDAV - detected UnsignedFile.Multi.Generic (1) 13:31:22.0275 2388 mrxsmb (767a4c3bcf9410c286ced15a2db17108) C:\Windows\system32\DRIVERS\mrxsmb.sys 13:31:22.0305 2388 mrxsmb ( UnsignedFile.Multi.Generic ) - warning 13:31:22.0305 2388 mrxsmb - detected UnsignedFile.Multi.Generic (1) 13:31:22.0405 2388 mrxsmb10 (920ee0ff995fcfdeb08c41605a959e1c) C:\Windows\system32\DRIVERS\mrxsmb10.sys 13:31:22.0435 2388 mrxsmb10 ( UnsignedFile.Multi.Generic ) - warning 13:31:22.0435 2388 mrxsmb10 - detected UnsignedFile.Multi.Generic (1) 13:31:22.0455 2388 mrxsmb20 (740d7ea9d72c981510a5292cf6adc941) C:\Windows\system32\DRIVERS\mrxsmb20.sys 13:31:22.0475 2388 mrxsmb20 ( UnsignedFile.Multi.Generic ) - warning 13:31:22.0475 2388 mrxsmb20 - detected UnsignedFile.Multi.Generic (1) 13:31:22.0575 2388 msahci (5c37497276e3b3a5488b23a326a754b7) C:\Windows\system32\DRIVERS\msahci.sys 13:31:22.0585 2388 msahci - ok 13:31:22.0605 2388 msdsm (8d27b597229aed79430fb9db3bcbfbd0) C:\Windows\system32\DRIVERS\msdsm.sys 13:31:22.0625 2388 msdsm - ok 13:31:22.0735 2388 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys 13:31:22.0755 2388 Msfs ( UnsignedFile.Multi.Generic ) - warning 13:31:22.0755 2388 Msfs - detected UnsignedFile.Multi.Generic (1) 13:31:22.0765 2388 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys 13:31:22.0795 2388 mshidkmdf ( UnsignedFile.Multi.Generic ) - warning 13:31:22.0795 2388 mshidkmdf - detected UnsignedFile.Multi.Generic (1) 13:31:22.0815 2388 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\DRIVERS\msisadrv.sys 13:31:22.0825 2388 msisadrv - ok 13:31:22.0945 2388 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys 13:31:22.0965 2388 MSKSSRV ( UnsignedFile.Multi.Generic ) - warning 13:31:22.0965 2388 MSKSSRV - detected UnsignedFile.Multi.Generic (1) 13:31:22.0995 2388 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys 13:31:23.0015 2388 MSPCLOCK ( UnsignedFile.Multi.Generic ) - warning 13:31:23.0015 2388 MSPCLOCK - detected UnsignedFile.Multi.Generic (1) 13:31:23.0115 2388 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys 13:31:23.0135 2388 MSPQM ( UnsignedFile.Multi.Generic ) - warning 13:31:23.0135 2388 MSPQM - detected UnsignedFile.Multi.Generic (1) 13:31:23.0175 2388 MsRPC (89cb141aa8616d8c6a4610fa26c60964) C:\Windows\system32\drivers\MsRPC.sys 13:31:23.0195 2388 MsRPC - ok 13:31:23.0275 2388 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\DRIVERS\mssmbios.sys 13:31:23.0295 2388 mssmbios - ok 13:31:23.0335 2388 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys 13:31:23.0355 2388 MSTEE ( UnsignedFile.Multi.Generic ) - warning 13:31:23.0355 2388 MSTEE - detected UnsignedFile.Multi.Generic (1) 13:31:23.0425 2388 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys 13:31:23.0455 2388 MTConfig ( UnsignedFile.Multi.Generic ) - warning 13:31:23.0455 2388 MTConfig - detected UnsignedFile.Multi.Generic (1) 13:31:23.0485 2388 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys 13:31:23.0495 2388 Mup - ok 13:31:23.0615 2388 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys 13:31:23.0645 2388 NativeWifiP ( UnsignedFile.Multi.Generic ) - warning 13:31:23.0645 2388 NativeWifiP - detected UnsignedFile.Multi.Generic (1) 13:31:23.0805 2388 NDIS (cad515dbd07d082bb317d9928ce8962c) C:\Windows\system32\drivers\ndis.sys 13:31:23.0835 2388 NDIS - ok 13:31:23.0945 2388 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys 13:31:23.0975 2388 NdisCap ( UnsignedFile.Multi.Generic ) - warning 13:31:23.0975 2388 NdisCap - detected UnsignedFile.Multi.Generic (1) 13:31:24.0035 2388 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys 13:31:24.0055 2388 NdisTapi ( UnsignedFile.Multi.Generic ) - warning 13:31:24.0055 2388 NdisTapi - detected UnsignedFile.Multi.Generic (1) 13:31:24.0135 2388 Ndisuio (f105ba1e22bf1f2ee8f005d4305e4bec) C:\Windows\system32\DRIVERS\ndisuio.sys 13:31:24.0165 2388 Ndisuio ( UnsignedFile.Multi.Generic ) - warning 13:31:24.0165 2388 Ndisuio - detected UnsignedFile.Multi.Generic (1) 13:31:24.0195 2388 NdisWan (557dfab9ca1fcb036ac77564c010dad3) C:\Windows\system32\DRIVERS\ndiswan.sys 13:31:24.0215 2388 NdisWan ( UnsignedFile.Multi.Generic ) - warning 13:31:24.0215 2388 NdisWan - detected UnsignedFile.Multi.Generic (1) 13:31:24.0305 2388 NDProxy (659b74fb74b86228d6338d643cd3e3cf) C:\Windows\system32\drivers\NDProxy.sys 13:31:24.0325 2388 NDProxy ( UnsignedFile.Multi.Generic ) - warning 13:31:24.0325 2388 NDProxy - detected UnsignedFile.Multi.Generic (1) 13:31:24.0375 2388 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys 13:31:24.0395 2388 NetBIOS ( UnsignedFile.Multi.Generic ) - warning 13:31:24.0395 2388 NetBIOS - detected UnsignedFile.Multi.Generic (1) 13:31:24.0495 2388 NetBT (9162b273a44ab9dce5b44362731d062a) C:\Windows\system32\DRIVERS\netbt.sys 13:31:24.0515 2388 NetBT ( UnsignedFile.Multi.Generic ) - warning 13:31:24.0515 2388 NetBT - detected UnsignedFile.Multi.Generic (1) 13:31:24.0745 2388 netw5v64 (64428dfdaf6e88366cb51f45a79c5f69) C:\Windows\system32\DRIVERS\netw5v64.sys 13:31:24.0905 2388 netw5v64 ( UnsignedFile.Multi.Generic ) - warning 13:31:24.0905 2388 netw5v64 - detected UnsignedFile.Multi.Generic (1) 13:31:25.0025 2388 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys 13:31:25.0035 2388 nfrd960 - ok 13:31:25.0175 2388 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys 13:31:25.0195 2388 Npfs ( UnsignedFile.Multi.Generic ) - warning 13:31:25.0195 2388 Npfs - detected UnsignedFile.Multi.Generic (1) 13:31:25.0225 2388 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys 13:31:25.0245 2388 nsiproxy ( UnsignedFile.Multi.Generic ) - warning 13:31:25.0245 2388 nsiproxy - detected UnsignedFile.Multi.Generic (1) 13:31:25.0315 2388 NSNDIS5 - ok 13:31:25.0415 2388 Ntfs (356698a13c4630d5b31c37378d469196) C:\Windows\system32\drivers\Ntfs.sys 13:31:25.0465 2388 Ntfs - ok 13:31:25.0565 2388 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys 13:31:25.0585 2388 Null ( UnsignedFile.Multi.Generic ) - warning 13:31:25.0585 2388 Null - detected UnsignedFile.Multi.Generic (1) 13:31:25.0865 2388 nvlddmkm (e55cab397f77d5208db18a78b1b7c0d5) C:\Windows\system32\DRIVERS\nvlddmkm.sys 13:31:26.0135 2388 nvlddmkm - ok 13:31:26.0305 2388 nvraid (3e38712941e9bb4ddbee00affe3fed3d) C:\Windows\system32\DRIVERS\nvraid.sys 13:31:26.0325 2388 nvraid - ok 13:31:26.0395 2388 nvstor (477dc4d6deb99be37084c9ac6d013da1) C:\Windows\system32\DRIVERS\nvstor.sys 13:31:26.0415 2388 nvstor - ok 13:31:26.0555 2388 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\DRIVERS\nv_agp.sys 13:31:26.0565 2388 nv_agp - ok 13:31:26.0685 2388 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\DRIVERS\ohci1394.sys 13:31:26.0715 2388 ohci1394 ( UnsignedFile.Multi.Generic ) - warning 13:31:26.0715 2388 ohci1394 - detected UnsignedFile.Multi.Generic (1) 13:31:26.0895 2388 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys 13:31:26.0915 2388 Parport ( UnsignedFile.Multi.Generic ) - warning 13:31:26.0915 2388 Parport - detected UnsignedFile.Multi.Generic (1) 13:31:26.0945 2388 partmgr (7daa117143316c4a1537e074a5a9eaf0) C:\Windows\system32\drivers\partmgr.sys 13:31:26.0955 2388 partmgr - ok 13:31:27.0045 2388 pci (f36f6504009f2fb0dfd1b17a116ad74b) C:\Windows\system32\DRIVERS\pci.sys 13:31:27.0065 2388 pci - ok 13:31:27.0185 2388 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\DRIVERS\pciide.sys 13:31:27.0195 2388 pciide - ok 13:31:27.0215 2388 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys 13:31:27.0235 2388 pcmcia - ok 13:31:27.0335 2388 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys 13:31:27.0345 2388 pcw - ok 13:31:27.0375 2388 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys 13:31:27.0415 2388 PEAUTH ( UnsignedFile.Multi.Generic ) - warning 13:31:27.0415 2388 PEAUTH - detected UnsignedFile.Multi.Generic (1) 13:31:27.0585 2388 PptpMiniport (27cc19e81ba5e3403c48302127bda717) C:\Windows\system32\DRIVERS\raspptp.sys 13:31:27.0615 2388 PptpMiniport ( UnsignedFile.Multi.Generic ) - warning 13:31:27.0615 2388 PptpMiniport - detected UnsignedFile.Multi.Generic (1) 13:31:27.0635 2388 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys 13:31:27.0665 2388 Processor ( UnsignedFile.Multi.Generic ) - warning 13:31:27.0665 2388 Processor - detected UnsignedFile.Multi.Generic (1) 13:31:27.0785 2388 Psched (ee992183bd8eaefd9973f352e587a299) C:\Windows\system32\DRIVERS\pacer.sys 13:31:27.0815 2388 Psched ( UnsignedFile.Multi.Generic ) - warning 13:31:27.0815 2388 Psched - detected UnsignedFile.Multi.Generic (1) 13:31:27.0955 2388 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys 13:31:28.0005 2388 ql2300 - ok 13:31:28.0105 2388 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys 13:31:28.0125 2388 ql40xx - ok 13:31:28.0145 2388 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys 13:31:28.0165 2388 QWAVEdrv ( UnsignedFile.Multi.Generic ) - warning 13:31:28.0165 2388 QWAVEdrv - detected UnsignedFile.Multi.Generic (1) 13:31:28.0185 2388 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys 13:31:28.0205 2388 RasAcd ( UnsignedFile.Multi.Generic ) - warning 13:31:28.0205 2388 RasAcd - detected UnsignedFile.Multi.Generic (1) 13:31:28.0335 2388 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys 13:31:28.0355 2388 RasAgileVpn ( UnsignedFile.Multi.Generic ) - warning 13:31:28.0355 2388 RasAgileVpn - detected UnsignedFile.Multi.Generic (1) 13:31:28.0475 2388 Rasl2tp (87a6e852a22991580d6d39adc4790463) C:\Windows\system32\DRIVERS\rasl2tp.sys 13:31:28.0505 2388 Rasl2tp ( UnsignedFile.Multi.Generic ) - warning 13:31:28.0505 2388 Rasl2tp - detected UnsignedFile.Multi.Generic (1) 13:31:28.0525 2388 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys 13:31:28.0555 2388 RasPppoe ( UnsignedFile.Multi.Generic ) - warning 13:31:28.0555 2388 RasPppoe - detected UnsignedFile.Multi.Generic (1) 13:31:28.0675 2388 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys 13:31:28.0705 2388 RasSstp ( UnsignedFile.Multi.Generic ) - warning 13:31:28.0705 2388 RasSstp - detected UnsignedFile.Multi.Generic (1) 13:31:28.0715 2388 rdbss (3bac8142102c15d59a87757c1d41dce5) C:\Windows\system32\DRIVERS\rdbss.sys 13:31:28.0745 2388 rdbss ( UnsignedFile.Multi.Generic ) - warning 13:31:28.0745 2388 rdbss - detected UnsignedFile.Multi.Generic (1) 13:31:28.0835 2388 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys 13:31:28.0855 2388 rdpbus ( UnsignedFile.Multi.Generic ) - warning 13:31:28.0855 2388 rdpbus - detected UnsignedFile.Multi.Generic (1) 13:31:28.0955 2388 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys 13:31:28.0975 2388 RDPCDD ( UnsignedFile.Multi.Generic ) - warning 13:31:28.0975 2388 RDPCDD - detected UnsignedFile.Multi.Generic (1) 13:31:29.0005 2388 RDPDR (9706b84dbabfc4b4ca46c5a82b14dfa3) C:\Windows\system32\drivers\rdpdr.sys 13:31:29.0035 2388 RDPDR ( UnsignedFile.Multi.Generic ) - warning 13:31:29.0035 2388 RDPDR - detected UnsignedFile.Multi.Generic (1) 13:31:29.0145 2388 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys 13:31:29.0175 2388 RDPENCDD ( UnsignedFile.Multi.Generic ) - warning 13:31:29.0175 2388 RDPENCDD - detected UnsignedFile.Multi.Generic (1) 13:31:29.0195 2388 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys 13:31:29.0215 2388 RDPREFMP ( UnsignedFile.Multi.Generic ) - warning 13:31:29.0215 2388 RDPREFMP - detected UnsignedFile.Multi.Generic (1) 13:31:29.0235 2388 RDPWD (8a3e6bea1c53ea6177fe2b6eba2c80d7) C:\Windows\system32\drivers\RDPWD.sys 13:31:29.0265 2388 RDPWD ( UnsignedFile.Multi.Generic ) - warning 13:31:29.0265 2388 RDPWD - detected UnsignedFile.Multi.Generic (1) 13:31:29.0395 2388 rdyboost (634b9a2181d98f15941236886164ec8b) C:\Windows\system32\drivers\rdyboost.sys 13:31:29.0405 2388 rdyboost - ok 13:31:29.0555 2388 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys 13:31:29.0575 2388 rspndr ( UnsignedFile.Multi.Generic ) - warning 13:31:29.0575 2388 rspndr - detected UnsignedFile.Multi.Generic (1) 13:31:29.0785 2388 RTCore64 (bc5366760098dc14ec00ae36c359f42b) C:\Program Files (x86)\RMClock\RTCore64.sys 13:31:29.0795 2388 RTCore64 - ok 13:31:29.0905 2388 RTL8167 (baefee35d27a5440d35092ce10267bec) C:\Windows\system32\DRIVERS\Rt64win7.sys 13:31:29.0935 2388 RTL8167 ( UnsignedFile.Multi.Generic ) - warning 13:31:29.0935 2388 RTL8167 - detected UnsignedFile.Multi.Generic (1) 13:31:29.0965 2388 s3cap (88af6e02ab19df7fd07ecdf9c91e9af6) C:\Windows\system32\DRIVERS\vms3cap.sys 13:31:29.0985 2388 s3cap ( UnsignedFile.Multi.Generic ) - warning 13:31:29.0985 2388 s3cap - detected UnsignedFile.Multi.Generic (1) 13:31:30.0075 2388 sbp2port (e3bbb89983daf5622c1d50cf49f28227) C:\Windows\system32\DRIVERS\sbp2port.sys 13:31:30.0085 2388 sbp2port - ok 13:31:30.0115 2388 scfilter (c94da20c7e3ba1dca269bc8460d98387) C:\Windows\system32\DRIVERS\scfilter.sys 13:31:30.0145 2388 scfilter ( UnsignedFile.Multi.Generic ) - warning 13:31:30.0145 2388 scfilter - detected UnsignedFile.Multi.Generic (1) 13:31:30.0245 2388 sdbus (54e47ad086782d3ae9417c155cdceb9b) C:\Windows\system32\DRIVERS\sdbus.sys 13:31:30.0275 2388 sdbus ( UnsignedFile.Multi.Generic ) - warning 13:31:30.0275 2388 sdbus - detected UnsignedFile.Multi.Generic (1) 13:31:30.0395 2388 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys 13:31:30.0415 2388 secdrv ( UnsignedFile.Multi.Generic ) - warning 13:31:30.0415 2388 secdrv - detected UnsignedFile.Multi.Generic (1) 13:31:30.0535 2388 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys 13:31:30.0555 2388 Serenum ( UnsignedFile.Multi.Generic ) - warning 13:31:30.0555 2388 Serenum - detected UnsignedFile.Multi.Generic (1) 13:31:30.0675 2388 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys 13:31:30.0705 2388 Serial ( UnsignedFile.Multi.Generic ) - warning 13:31:30.0705 2388 Serial - detected UnsignedFile.Multi.Generic (1) 13:31:30.0745 2388 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys 13:31:30.0775 2388 sermouse ( UnsignedFile.Multi.Generic ) - warning 13:31:30.0775 2388 sermouse - detected UnsignedFile.Multi.Generic (1) 13:31:30.0875 2388 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\DRIVERS\sffdisk.sys 13:31:30.0895 2388 sffdisk ( UnsignedFile.Multi.Generic ) - warning 13:31:30.0895 2388 sffdisk - detected UnsignedFile.Multi.Generic (1) 13:31:30.0925 2388 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\DRIVERS\sffp_mmc.sys 13:31:30.0945 2388 sffp_mmc ( UnsignedFile.Multi.Generic ) - warning 13:31:30.0945 2388 sffp_mmc - detected UnsignedFile.Multi.Generic (1) 13:31:31.0035 2388 sffp_sd (5588b8c6193eb1522490c122eb94dffa) C:\Windows\system32\DRIVERS\sffp_sd.sys 13:31:31.0065 2388 sffp_sd ( UnsignedFile.Multi.Generic ) - warning 13:31:31.0065 2388 sffp_sd - detected UnsignedFile.Multi.Generic (1) 13:31:31.0145 2388 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys 13:31:31.0175 2388 sfloppy ( UnsignedFile.Multi.Generic ) - warning 13:31:31.0175 2388 sfloppy - detected UnsignedFile.Multi.Generic (1) 13:31:31.0245 2388 silabenm (7799106fee728b907a86d9c9751e02d5) C:\Windows\system32\DRIVERS\silabenm.sys 13:31:31.0255 2388 silabenm - ok 13:31:31.0375 2388 silabser (3c356beaa55339d7ce7a9509e22166cc) C:\Windows\system32\DRIVERS\silabser.sys 13:31:31.0395 2388 silabser ( UnsignedFile.Multi.Generic ) - warning 13:31:31.0395 2388 silabser - detected UnsignedFile.Multi.Generic (1) 13:31:31.0515 2388 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys 13:31:31.0535 2388 SiSRaid2 - ok 13:31:31.0545 2388 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys 13:31:31.0565 2388 SiSRaid4 - ok 13:31:31.0675 2388 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys 13:31:31.0705 2388 Smb ( UnsignedFile.Multi.Generic ) - warning 13:31:31.0705 2388 Smb - detected UnsignedFile.Multi.Generic (1) 13:31:31.0845 2388 smserial (7ae8bca90539ecbde87ac45ba1436be3) C:\Windows\system32\DRIVERS\SmSerl64.sys 13:31:31.0895 2388 smserial ( UnsignedFile.Multi.Generic ) - warning 13:31:31.0895 2388 smserial - detected UnsignedFile.Multi.Generic (1) 13:31:32.0015 2388 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys 13:31:32.0025 2388 spldr - ok 13:31:32.0075 2388 srv (43067a65522eaec33d31a12d6fa8e3f4) C:\Windows\system32\DRIVERS\srv.sys 13:31:32.0105 2388 srv ( UnsignedFile.Multi.Generic ) - warning 13:31:32.0105 2388 srv - detected UnsignedFile.Multi.Generic (1) 13:31:32.0205 2388 srv2 (03715cf9c30b563da35fc5f2b8f7b8e0) C:\Windows\system32\DRIVERS\srv2.sys 13:31:32.0235 2388 srv2 ( UnsignedFile.Multi.Generic ) - warning 13:31:32.0235 2388 srv2 - detected UnsignedFile.Multi.Generic (1) 13:31:32.0365 2388 srvnet (fbd09635227a8026c0f7790f604343c6) C:\Windows\system32\DRIVERS\srvnet.sys 13:31:32.0395 2388 srvnet ( UnsignedFile.Multi.Generic ) - warning 13:31:32.0395 2388 srvnet - detected UnsignedFile.Multi.Generic (1) 13:31:32.0535 2388 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys 13:31:32.0545 2388 stexstor - ok 13:31:32.0665 2388 storflt (ffd7a6f15b14234b5b0e5d49e7961895) C:\Windows\system32\DRIVERS\vmstorfl.sys 13:31:32.0675 2388 storflt - ok 13:31:32.0795 2388 storvsc (8fccbefc5c440b3c23454656e551b09a) C:\Windows\system32\DRIVERS\storvsc.sys 13:31:32.0815 2388 storvsc - ok 13:31:32.0835 2388 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\DRIVERS\swenum.sys 13:31:32.0855 2388 swenum - ok 13:31:32.0985 2388 SynTP (8f63178d1db81bb79270ae55ecdd8321) C:\Windows\system32\DRIVERS\SynTP.sys 13:31:33.0005 2388 SynTP - ok 13:31:33.0155 2388 Tcpip (90a2d722cf64d911879d6c4a4f802a4d) C:\Windows\system32\drivers\tcpip.sys 13:31:33.0215 2388 Tcpip - ok 13:31:33.0355 2388 TCPIP6 (90a2d722cf64d911879d6c4a4f802a4d) C:\Windows\system32\DRIVERS\tcpip.sys 13:31:33.0405 2388 TCPIP6 - ok 13:31:33.0505 2388 tcpipreg (76d078af6f587b162d50210f761eb9ed) C:\Windows\system32\drivers\tcpipreg.sys 13:31:33.0525 2388 tcpipreg ( UnsignedFile.Multi.Generic ) - warning 13:31:33.0525 2388 tcpipreg - detected UnsignedFile.Multi.Generic (1) 13:31:33.0545 2388 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys 13:31:33.0565 2388 TDPIPE ( UnsignedFile.Multi.Generic ) - warning 13:31:33.0565 2388 TDPIPE - detected UnsignedFile.Multi.Generic (1) 13:31:33.0655 2388 TDTCP (e4245bda3190a582d55ed09e137401a9) C:\Windows\system32\drivers\tdtcp.sys 13:31:33.0675 2388 TDTCP ( UnsignedFile.Multi.Generic ) - warning 13:31:33.0675 2388 TDTCP - detected UnsignedFile.Multi.Generic (1) 13:31:33.0705 2388 tdx (079125c4b17b01fcaeebce0bcb290c0f) C:\Windows\system32\DRIVERS\tdx.sys 13:31:33.0735 2388 tdx ( UnsignedFile.Multi.Generic ) - warning 13:31:33.0735 2388 tdx - detected UnsignedFile.Multi.Generic (1) 13:31:33.0755 2388 TermDD (c448651339196c0e869a355171875522) C:\Windows\system32\DRIVERS\termdd.sys 13:31:33.0775 2388 TermDD - ok 13:31:33.0915 2388 tssecsrv (61b96c26131e37b24e93327a0bd1fb95) C:\Windows\system32\DRIVERS\tssecsrv.sys 13:31:33.0935 2388 tssecsrv ( UnsignedFile.Multi.Generic ) - warning 13:31:33.0935 2388 tssecsrv - detected UnsignedFile.Multi.Generic (1) 13:31:34.0075 2388 tunnel (3836171a2cdf3af8ef10856db9835a70) C:\Windows\system32\DRIVERS\tunnel.sys 13:31:34.0105 2388 tunnel ( UnsignedFile.Multi.Generic ) - warning 13:31:34.0105 2388 tunnel - detected UnsignedFile.Multi.Generic (1) 13:31:34.0195 2388 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys 13:31:34.0205 2388 uagp35 - ok 13:31:34.0235 2388 udfs (d47baead86c65d4f4069d7ce0a4edceb) C:\Windows\system32\DRIVERS\udfs.sys 13:31:34.0265 2388 udfs ( UnsignedFile.Multi.Generic ) - warning 13:31:34.0265 2388 udfs - detected UnsignedFile.Multi.Generic (1) 13:31:34.0375 2388 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\DRIVERS\uliagpkx.sys 13:31:34.0395 2388 uliagpkx - ok 13:31:34.0525 2388 umbus (eab6c35e62b1b0db0d1b48b671d3a117) C:\Windows\system32\DRIVERS\umbus.sys 13:31:34.0545 2388 umbus ( UnsignedFile.Multi.Generic ) - warning 13:31:34.0545 2388 umbus - detected UnsignedFile.Multi.Generic (1) 13:31:34.0665 2388 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys 13:31:34.0695 2388 UmPass ( UnsignedFile.Multi.Generic ) - warning 13:31:34.0695 2388 UmPass - detected UnsignedFile.Multi.Generic (1) 13:31:34.0825 2388 usbccgp (b26afb54a534d634523c4fb66765b026) C:\Windows\system32\DRIVERS\usbccgp.sys 13:31:34.0855 2388 usbccgp ( UnsignedFile.Multi.Generic ) - warning 13:31:34.0855 2388 usbccgp - detected UnsignedFile.Multi.Generic (1) 13:31:34.0975 2388 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\DRIVERS\usbcir.sys 13:31:34.0995 2388 usbcir ( UnsignedFile.Multi.Generic ) - warning 13:31:34.0995 2388 usbcir - detected UnsignedFile.Multi.Generic (1) 13:31:35.0115 2388 usbehci (2ea4aff7be7eb4632e3aa8595b0803b5) C:\Windows\system32\DRIVERS\usbehci.sys 13:31:35.0135 2388 usbehci ( UnsignedFile.Multi.Generic ) - warning 13:31:35.0135 2388 usbehci - detected UnsignedFile.Multi.Generic (1) 13:31:35.0285 2388 usbhub (4c9042b8df86c1e8e6240c218b99b39b) C:\Windows\system32\DRIVERS\usbhub.sys 13:31:35.0315 2388 usbhub ( UnsignedFile.Multi.Generic ) - warning 13:31:35.0315 2388 usbhub - detected UnsignedFile.Multi.Generic (1) 13:31:35.0405 2388 usbohci (58e546bbaf87664fc57e0f6081e4f609) C:\Windows\system32\DRIVERS\usbohci.sys 13:31:35.0425 2388 usbohci ( UnsignedFile.Multi.Generic ) - warning 13:31:35.0425 2388 usbohci - detected UnsignedFile.Multi.Generic (1) 13:31:35.0445 2388 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys 13:31:35.0465 2388 usbprint ( UnsignedFile.Multi.Generic ) - warning 13:31:35.0465 2388 usbprint - detected UnsignedFile.Multi.Generic (1) 13:31:35.0565 2388 USBSTOR (080d3820da6c046be82fc8b45a893e83) C:\Windows\system32\DRIVERS\USBSTOR.SYS 13:31:35.0585 2388 USBSTOR ( UnsignedFile.Multi.Generic ) - warning 13:31:35.0585 2388 USBSTOR - detected UnsignedFile.Multi.Generic (1) 13:31:35.0605 2388 usbuhci (81fb2216d3a60d1284455d511797db3d) C:\Windows\system32\DRIVERS\usbuhci.sys 13:31:35.0635 2388 usbuhci ( UnsignedFile.Multi.Generic ) - warning 13:31:35.0635 2388 usbuhci - detected UnsignedFile.Multi.Generic (1) 13:31:35.0755 2388 usbvideo (d501e12614b00a3252073101d6a1a74b) C:\Windows\system32\Drivers\usbvideo.sys 13:31:35.0785 2388 usbvideo ( UnsignedFile.Multi.Generic ) - warning 13:31:35.0785 2388 usbvideo - detected UnsignedFile.Multi.Generic (1) 13:31:35.0915 2388 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\DRIVERS\vdrvroot.sys 13:31:35.0925 2388 vdrvroot - ok 13:31:35.0965 2388 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys 13:31:35.0995 2388 vga ( UnsignedFile.Multi.Generic ) - warning 13:31:35.0995 2388 vga - detected UnsignedFile.Multi.Generic (1) 13:31:36.0085 2388 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys 13:31:36.0115 2388 VgaSave ( UnsignedFile.Multi.Generic ) - warning 13:31:36.0115 2388 VgaSave - detected UnsignedFile.Multi.Generic (1) 13:31:36.0125 2388 vhdmp (c82e748660f62a242b2dfac1442f22a4) C:\Windows\system32\DRIVERS\vhdmp.sys 13:31:36.0145 2388 vhdmp - ok 13:31:36.0235 2388 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\DRIVERS\viaide.sys 13:31:36.0255 2388 viaide - ok 13:31:36.0295 2388 vmbus (1501699d7eda984abc4155a7da5738d1) C:\Windows\system32\DRIVERS\vmbus.sys 13:31:36.0305 2388 vmbus - ok 13:31:36.0405 2388 VMBusHID (ae10c35761889e65a6f7176937c5592c) C:\Windows\system32\DRIVERS\VMBusHID.sys 13:31:36.0435 2388 VMBusHID ( UnsignedFile.Multi.Generic ) - warning 13:31:36.0435 2388 VMBusHID - detected UnsignedFile.Multi.Generic (1) 13:31:36.0555 2388 volmgr (2b1a3dae2b4e70dbba822b7a03fbd4a3) C:\Windows\system32\DRIVERS\volmgr.sys 13:31:36.0565 2388 volmgr - ok 13:31:36.0585 2388 volmgrx (99b0cbb569ca79acaed8c91461d765fb) C:\Windows\system32\drivers\volmgrx.sys 13:31:36.0605 2388 volmgrx - ok 13:31:36.0715 2388 volsnap (58f82eed8ca24b461441f9c3e4f0bf5c) C:\Windows\system32\DRIVERS\volsnap.sys 13:31:36.0735 2388 volsnap - ok 13:31:36.0855 2388 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys 13:31:36.0865 2388 vsmraid - ok 13:31:36.0895 2388 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\System32\drivers\vwifibus.sys 13:31:36.0915 2388 vwifibus ( UnsignedFile.Multi.Generic ) - warning 13:31:36.0915 2388 vwifibus - detected UnsignedFile.Multi.Generic (1) 13:31:37.0025 2388 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys 13:31:37.0045 2388 WacomPen ( UnsignedFile.Multi.Generic ) - warning 13:31:37.0045 2388 WacomPen - detected UnsignedFile.Multi.Generic (1) 13:31:37.0185 2388 WANARP (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys 13:31:37.0215 2388 WANARP ( UnsignedFile.Multi.Generic ) - warning 13:31:37.0215 2388 WANARP - detected UnsignedFile.Multi.Generic (1) 13:31:37.0225 2388 Wanarpv6 (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys 13:31:37.0255 2388 Wanarpv6 ( UnsignedFile.Multi.Generic ) - warning 13:31:37.0255 2388 Wanarpv6 - detected UnsignedFile.Multi.Generic (1) 13:31:37.0365 2388 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys 13:31:37.0385 2388 Wd - ok 13:31:37.0415 2388 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys 13:31:37.0445 2388 Wdf01000 - ok 13:31:37.0595 2388 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys 13:31:37.0615 2388 WfpLwf ( UnsignedFile.Multi.Generic ) - warning 13:31:37.0615 2388 WfpLwf - detected UnsignedFile.Multi.Generic (1) 13:31:37.0735 2388 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys 13:31:37.0745 2388 WIMMount - ok 13:31:37.0895 2388 WinUsb (817eaff5d38674edd7713b9dfb8e9791) C:\Windows\system32\DRIVERS\WinUSB.sys 13:31:37.0915 2388 WinUsb ( UnsignedFile.Multi.Generic ) - warning 13:31:37.0915 2388 WinUsb - detected UnsignedFile.Multi.Generic (1) 13:31:38.0045 2388 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\DRIVERS\wmiacpi.sys 13:31:38.0065 2388 WmiAcpi ( UnsignedFile.Multi.Generic ) - warning 13:31:38.0065 2388 WmiAcpi - detected UnsignedFile.Multi.Generic (1) 13:31:38.0195 2388 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys 13:31:38.0215 2388 ws2ifsl ( UnsignedFile.Multi.Generic ) - warning 13:31:38.0215 2388 ws2ifsl - detected UnsignedFile.Multi.Generic (1) 13:31:38.0245 2388 WudfPf (7cadc74271dd6461c452c271b30bd378) C:\Windows\system32\drivers\WudfPf.sys 13:31:38.0275 2388 WudfPf ( UnsignedFile.Multi.Generic ) - warning 13:31:38.0275 2388 WudfPf - detected UnsignedFile.Multi.Generic (1) 13:31:38.0385 2388 WUDFRd (3b197af0fff08aa66b6b2241ca538d64) C:\Windows\system32\DRIVERS\WUDFRd.sys 13:31:38.0405 2388 WUDFRd ( UnsignedFile.Multi.Generic ) - warning 13:31:38.0405 2388 WUDFRd - detected UnsignedFile.Multi.Generic (1) 13:31:38.0805 2388 {1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC} (74983addca2d9618512c088d856d6615) C:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\000.fcl 13:31:38.0815 2388 {1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC} - ok 13:31:38.0865 2388 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0 13:31:39.0535 2388 \Device\Harddisk0\DR0 - ok 13:31:39.0565 2388 Boot (0x1200) (472bc8eb05d07c9e13d8349f38ab9d01) \Device\Harddisk0\DR0\Partition0 13:31:39.0565 2388 \Device\Harddisk0\DR0\Partition0 - ok 13:31:39.0585 2388 Boot (0x1200) (7e2bed643425068eedfcec0453becb4a) \Device\Harddisk0\DR0\Partition1 13:31:39.0585 2388 \Device\Harddisk0\DR0\Partition1 - ok 13:31:39.0605 2388 Boot (0x1200) (43614343699ba275d7bc216b5d597426) \Device\Harddisk0\DR0\Partition2 13:31:39.0605 2388 \Device\Harddisk0\DR0\Partition2 - ok 13:31:39.0605 2388 ============================================================ 13:31:39.0605 2388 Scan finished 13:31:39.0605 2388 ============================================================ 13:31:39.0625 4756 Detected object count: 150 13:31:39.0625 4756 Actual detected object count: 150 13:31:55.0215 4756 1394ohci ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0215 4756 1394ohci ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0215 4756 AcpiPmi ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0215 4756 AcpiPmi ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0215 4756 AFD ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0215 4756 AFD ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0215 4756 altausb ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0215 4756 altausb ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0225 4756 AmdK8 ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0225 4756 AmdK8 ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0225 4756 AmdPPM ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0225 4756 AmdPPM ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0225 4756 AppID ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0225 4756 AppID ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0225 4756 AsyncMac ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0225 4756 AsyncMac ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0225 4756 b06bdrv ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0225 4756 b06bdrv ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0235 4756 b57nd60a ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0235 4756 b57nd60a ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0235 4756 Beep ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0235 4756 Beep ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0235 4756 blbdrive ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0235 4756 blbdrive ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0235 4756 bowser ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0235 4756 bowser ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0235 4756 BrFiltLo ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0235 4756 BrFiltLo ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0245 4756 BrFiltUp ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0245 4756 BrFiltUp ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0245 4756 Brserid ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0245 4756 Brserid ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0245 4756 BrSerWdm ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0245 4756 BrSerWdm ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0245 4756 BrUsbMdm ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0245 4756 BrUsbMdm ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0245 4756 BrUsbSer ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0245 4756 BrUsbSer ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0255 4756 BTHMODEM ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0255 4756 BTHMODEM ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0255 4756 cdfs ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0255 4756 cdfs ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0255 4756 cdrom ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0255 4756 cdrom ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0255 4756 circlass ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0255 4756 circlass ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0255 4756 CmBatt ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0255 4756 CmBatt ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0265 4756 CompositeBus ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0265 4756 CompositeBus ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0265 4756 CSC ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0265 4756 CSC ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0265 4756 DfsC ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0265 4756 DfsC ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0265 4756 discache ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0265 4756 discache ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0265 4756 drmkaud ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0265 4756 drmkaud ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0275 4756 ebdrv ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0275 4756 ebdrv ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0275 4756 ErrDev ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0275 4756 ErrDev ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0275 4756 exfat ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0275 4756 exfat ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0275 4756 fastfat ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0275 4756 fastfat ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0275 4756 fdc ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0275 4756 fdc ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0285 4756 Filetrace ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0285 4756 Filetrace ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0285 4756 flpydisk ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0285 4756 flpydisk ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0285 4756 hcw85cir ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0285 4756 hcw85cir ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0285 4756 HdAudAddService ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0285 4756 HdAudAddService ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0285 4756 HDAudBus ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0285 4756 HDAudBus ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0285 4756 HidBatt ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0285 4756 HidBatt ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0295 4756 HidBth ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0295 4756 HidBth ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0295 4756 HidIr ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0295 4756 HidIr ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0295 4756 HidUsb ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0295 4756 HidUsb ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0295 4756 HTTP ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0295 4756 HTTP ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0295 4756 i8042prt ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0295 4756 i8042prt ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0305 4756 intelppm ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0305 4756 intelppm ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0305 4756 IpFilterDriver ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0305 4756 IpFilterDriver ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0305 4756 IPMIDRV ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0305 4756 IPMIDRV ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0305 4756 IPNAT ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0305 4756 IPNAT ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0305 4756 IRENUM ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0305 4756 IRENUM ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0315 4756 kbdhid ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0315 4756 kbdhid ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0315 4756 ksthunk ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0315 4756 ksthunk ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0315 4756 lltdio ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0315 4756 lltdio ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0315 4756 luafv ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0315 4756 luafv ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0315 4756 Modem ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0315 4756 Modem ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0325 4756 monitor ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0325 4756 monitor ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0325 4756 mouhid ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0325 4756 mouhid ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0325 4756 mpsdrv ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0325 4756 mpsdrv ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0325 4756 MRxDAV ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0325 4756 MRxDAV ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0325 4756 mrxsmb ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0325 4756 mrxsmb ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0335 4756 mrxsmb10 ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0335 4756 mrxsmb10 ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0335 4756 mrxsmb20 ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0335 4756 mrxsmb20 ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0335 4756 Msfs ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0335 4756 Msfs ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0335 4756 mshidkmdf ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0335 4756 mshidkmdf ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0335 4756 MSKSSRV ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0335 4756 MSKSSRV ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0335 4756 MSPCLOCK ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0335 4756 MSPCLOCK ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0345 4756 MSPQM ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0345 4756 MSPQM ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0345 4756 MSTEE ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0345 4756 MSTEE ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0345 4756 MTConfig ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0345 4756 MTConfig ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0345 4756 NativeWifiP ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0345 4756 NativeWifiP ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0345 4756 NdisCap ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0345 4756 NdisCap ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0355 4756 NdisTapi ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0355 4756 NdisTapi ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0355 4756 Ndisuio ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0355 4756 Ndisuio ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0355 4756 NdisWan ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0355 4756 NdisWan ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0355 4756 NDProxy ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0355 4756 NDProxy ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0355 4756 NetBIOS ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0355 4756 NetBIOS ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0365 4756 NetBT ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0365 4756 NetBT ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0365 4756 netw5v64 ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0365 4756 netw5v64 ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0365 4756 Npfs ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0365 4756 Npfs ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0365 4756 nsiproxy ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0365 4756 nsiproxy ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0365 4756 Null ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0365 4756 Null ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0365 4756 ohci1394 ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0365 4756 ohci1394 ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0375 4756 Parport ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0375 4756 Parport ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0375 4756 PEAUTH ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0375 4756 PEAUTH ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0375 4756 PptpMiniport ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0375 4756 PptpMiniport ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0375 4756 Processor ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0375 4756 Processor ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0375 4756 Psched ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0375 4756 Psched ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0385 4756 QWAVEdrv ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0385 4756 QWAVEdrv ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0385 4756 RasAcd ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0385 4756 RasAcd ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0385 4756 RasAgileVpn ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0385 4756 RasAgileVpn ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0385 4756 Rasl2tp ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0385 4756 Rasl2tp ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0385 4756 RasPppoe ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0385 4756 RasPppoe ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0395 4756 RasSstp ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0395 4756 RasSstp ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0395 4756 rdbss ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0395 4756 rdbss ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0395 4756 rdpbus ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0395 4756 rdpbus ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0395 4756 RDPCDD ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0395 4756 RDPCDD ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0395 4756 RDPDR ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0395 4756 RDPDR ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0405 4756 RDPENCDD ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0405 4756 RDPENCDD ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0405 4756 RDPREFMP ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0405 4756 RDPREFMP ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0405 4756 RDPWD ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0405 4756 RDPWD ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0405 4756 rspndr ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0405 4756 rspndr ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0415 4756 RTL8167 ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0415 4756 RTL8167 ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0415 4756 s3cap ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0415 4756 s3cap ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0415 4756 scfilter ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0415 4756 scfilter ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0415 4756 sdbus ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0415 4756 sdbus ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0425 4756 secdrv ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0425 4756 secdrv ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0425 4756 Serenum ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0425 4756 Serenum ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0425 4756 Serial ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0425 4756 Serial ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0425 4756 sermouse ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0425 4756 sermouse ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0435 4756 sffdisk ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0435 4756 sffdisk ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0435 4756 sffp_mmc ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0435 4756 sffp_mmc ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0435 4756 sffp_sd ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0435 4756 sffp_sd ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0435 4756 sfloppy ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0435 4756 sfloppy ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0445 4756 silabser ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0445 4756 silabser ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0445 4756 Smb ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0445 4756 Smb ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0445 4756 smserial ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0445 4756 smserial ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0445 4756 srv ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0445 4756 srv ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0455 4756 srv2 ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0455 4756 srv2 ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0455 4756 srvnet ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0455 4756 srvnet ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0455 4756 tcpipreg ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0455 4756 tcpipreg ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0455 4756 TDPIPE ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0455 4756 TDPIPE ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0465 4756 TDTCP ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0465 4756 TDTCP ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0465 4756 tdx ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0465 4756 tdx ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0465 4756 tssecsrv ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0465 4756 tssecsrv ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0465 4756 tunnel ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0465 4756 tunnel ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0465 4756 udfs ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0465 4756 udfs ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0475 4756 umbus ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0475 4756 umbus ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0475 4756 UmPass ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0475 4756 UmPass ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0475 4756 usbccgp ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0475 4756 usbccgp ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0475 4756 usbcir ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0475 4756 usbcir ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0485 4756 usbehci ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0485 4756 usbehci ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0485 4756 usbhub ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0485 4756 usbhub ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0485 4756 usbohci ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0485 4756 usbohci ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0485 4756 usbprint ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0485 4756 usbprint ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0495 4756 USBSTOR ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0495 4756 USBSTOR ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0495 4756 usbuhci ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0495 4756 usbuhci ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0495 4756 usbvideo ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0495 4756 usbvideo ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0495 4756 vga ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0495 4756 vga ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0495 4756 VgaSave ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0495 4756 VgaSave ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0505 4756 VMBusHID ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0505 4756 VMBusHID ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0505 4756 vwifibus ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0505 4756 vwifibus ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0505 4756 WacomPen ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0505 4756 WacomPen ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0505 4756 WANARP ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0505 4756 WANARP ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0515 4756 Wanarpv6 ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0515 4756 Wanarpv6 ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0515 4756 WfpLwf ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0515 4756 WfpLwf ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0515 4756 WinUsb ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0515 4756 WinUsb ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0515 4756 WmiAcpi ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0515 4756 WmiAcpi ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0525 4756 ws2ifsl ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0525 4756 ws2ifsl ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0525 4756 WudfPf ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0525 4756 WudfPf ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:31:55.0525 4756 WUDFRd ( UnsignedFile.Multi.Generic ) - skipped by user 13:31:55.0525 4756 WUDFRd ( UnsignedFile.Multi.Generic ) - User select action: Skip |
27.11.2011, 22:07 | #23 | |
/// Winkelfunktion /// TB-Süch-Tiger™ | System nach Spy.Banker.Gen2 wieder sauber? Dann bitte jetzt CF ausführen, unter kontrollierten Bedingungen!! ComboFix Ein Leitfaden und Tutorium zur Nutzung von ComboFix
Combofix darf ausschließlich ausgeführt werden, wenn ein Kompetenzler dies ausdrücklich empfohlen hat! Solltest du nach der Ausführung von Combofix Probleme beim Starten von Anwendungen haben und Meldungen erhalten wie Zitat:
__________________ Logfiles bitte immer in CODE-Tags posten |
28.11.2011, 18:06 | #24 |
| System nach Spy.Banker.Gen2 wieder sauber? Hm... Das Problem vom Anfang mit Combofix trat wieder auf... Aber hab inzwischen die Lösung gefunden, nach dem restart als Admin anmelden... Allerdings bereitet Combofix nun schon seit ner knappen Stunde angeblich das Logfile vor... Ist das normal? Offensichtlich hats nu doch geklappt Code:
ATTFilter ComboFix 11-11-28.02 - Badger 28.11.2011 17:15:52.2.2 - x64 Microsoft Windows 7 Professional 6.1.7600.0.1252.49.1031.18.4091.2809 [GMT 1:00] ausgeführt von:: c:\users\Badger_2\Desktop\ComboFix.exe AV: Avira Desktop *Disabled/Updated* {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C} SP: Avira Desktop *Disabled/Updated* {4D1AAC01-E68E-63B1-344F-57F1C6DA4691} SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} . . (((((((((((((((((((((((((((((((((((( Weitere Löschungen )))))))))))))))))))))))))))))))))))))))))))))))) . . ---- Vorheriger Suchlauf ------- . C:\install.exe c:\windows\pkunzip.pif c:\windows\pkzip.pif . . ((((((((((((((((((((((( Dateien erstellt von 2011-10-28 bis 2011-11-28 )))))))))))))))))))))))))))))) . . 2011-11-28 16:24 . 2011-11-28 16:26 -------- d-----w- c:\users\Badger\AppData\Local\temp 2011-11-28 16:24 . 2011-11-28 16:24 -------- d-----w- c:\users\Default\AppData\Local\temp 2011-11-28 16:24 . 2011-11-28 16:24 -------- d-----w- c:\users\Carstinho\AppData\Local\temp 2011-11-28 16:24 . 2011-11-28 16:24 -------- d-----w- c:\users\Angy\AppData\Local\temp 2011-11-28 16:11 . 2011-11-28 16:11 -------- d-----w- c:\users\Badger\AppData\Roaming\Avira 2011-11-27 11:36 . 2011-11-27 11:36 -------- d-----w- C:\_OTL 2011-11-27 07:59 . 2011-11-27 07:59 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware 2011-11-26 13:49 . 2011-11-26 13:49 -------- d-----w- c:\program files (x86)\ESET 2011-11-26 09:15 . 2011-11-26 09:15 525544 ----a-w- c:\windows\system32\deployJava1.dll 2011-11-26 09:15 . 2011-11-26 09:15 -------- d-----w- c:\program files\Java 2011-11-26 08:29 . 2011-11-26 08:29 -------- d-----w- c:\users\Badger_2\AppData\Local\Apple Computer 2011-11-25 12:23 . 2011-11-25 16:04 -------- d-----w- C:\Combo-Fix 2011-11-20 06:42 . 2011-11-20 06:42 -------- d-----w- c:\users\Angy\AppData\Roaming\Malwarebytes 2011-11-19 10:51 . 2011-11-19 10:51 -------- d-----w- c:\users\Badger_2\AppData\Roaming\Malwarebytes 2011-11-19 10:44 . 2011-11-19 10:44 -------- d-----w- c:\users\Badger\AppData\Roaming\Malwarebytes 2011-11-19 10:43 . 2011-11-19 10:43 -------- d-----w- c:\programdata\Malwarebytes 2011-11-19 10:43 . 2011-08-31 16:00 25416 ----a-w- c:\windows\system32\drivers\mbam.sys 2011-11-17 13:55 . 2011-11-17 13:55 -------- d-----w- c:\users\Carstinho\AppData\Local\Intel 2011-11-17 11:00 . 2011-11-20 09:57 -------- d-----w- c:\users\Badger_2\AppData\Roaming\fityk 2011-11-17 10:57 . 2011-11-17 11:00 -------- d-----w- c:\users\Badger\AppData\Roaming\fityk 2011-11-17 10:56 . 2011-11-17 10:56 -------- d-----w- c:\program files (x86)\Fityk 2011-11-13 18:50 . 2011-11-13 18:50 -------- d-----w- c:\users\Angy\AppData\Local\ColdCut 2011-11-11 17:27 . 2011-11-25 07:23 -------- d-----w- c:\users\Badger_2\AppData\Roaming\components 2011-11-09 20:23 . 2011-11-17 18:27 -------- d-----w- c:\users\Badger_2\AppData\Roaming\xmldm 2011-11-09 20:23 . 2011-11-09 20:23 -------- d-----w- c:\users\Badger_2\AppData\Roaming\kock . . . (((((((((((((((((((((((((((((((((((( Find3M Bericht )))))))))))))))))))))))))))))))))))))))))))))))))))))) . 2011-11-10 06:35 . 2011-07-02 12:11 414368 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl 2011-10-11 13:00 . 2011-10-18 05:29 97312 ----a-w- c:\windows\system32\drivers\avgntflt.sys 2011-10-11 13:00 . 2011-10-18 05:29 27760 ----a-w- c:\windows\system32\drivers\avkmgr.sys 2011-10-11 13:00 . 2011-10-18 05:29 130760 ----a-w- c:\windows\system32\drivers\avipbb.sys 2011-09-01 20:25 . 2011-09-01 20:25 472808 ----a-w- c:\windows\SysWow64\deployJava1.dll . . ------- Sigcheck ------- Note: Unsigned files aren't necessarily malware. . [-] 2009-07-14 . 769765CE2CC62867468CEA93969B2242 . 23040 . . [6.1.7600.16385] .. c:\windows\winsxs\amd64_microsoft-windows-rasbase-asyncmac_31bf3856ad364e35_6.1.7600.16385_none_804cc08a4e8a4516\asyncmac.sys [-] 2009-07-14 . 769765CE2CC62867468CEA93969B2242 . 23040 . . [6.1.7600.16385] .. c:\windows\system32\drivers\asyncmac.sys . [-] 2009-07-13 . 9899284589F75FA8724FF3D16AED75C1 . 6144 . . [6.1.7600.16385] .. c:\windows\winsxs\amd64_microsoft-windows-null_31bf3856ad364e35_6.1.7600.16385_none_055adf2434ae116e\null.sys [-] 2009-07-13 . 9899284589F75FA8724FF3D16AED75C1 . 6144 . . [6.1.7600.16385] .. c:\windows\system32\drivers\null.sys . [-] 2009-07-14 . 94FBC06F294D58D02361918418F996E3 . 136192 . . [6.1.7600.16385] .. c:\windows\winsxs\amd64_microsoft-windows-browserservice_31bf3856ad364e35_6.1.7600.16385_none_d4de1860b7af7c14\browser.dll [-] 2009-07-14 . 94FBC06F294D58D02361918418F996E3 . 136192 . . [6.1.7600.16385] .. c:\windows\system32\browser.dll . [-] 2009-07-14 . 0793F40B9B8A1BDD266296409DBD91EA . 31232 . . [6.1.7600.16385] .. c:\windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7600.16385_none_023f7c69767c3edd\lsass.exe [-] 2009-07-14 . 0793F40B9B8A1BDD266296409DBD91EA . 31232 . . [6.1.7600.16385] .. c:\windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7600.16484_none_023e7e05767d22ad\lsass.exe [-] 2009-07-14 . 0793F40B9B8A1BDD266296409DBD91EA . 31232 . . [6.1.7600.16385] .. c:\windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7600.20594_none_02bd4ae48fa2de68\lsass.exe [-] 2009-07-14 . 0793F40B9B8A1BDD266296409DBD91EA . 31232 . . [6.1.7600.16385] .. c:\windows\system32\lsass.exe . [-] 2009-07-14 . 847D3AE376C0817161A14A82C8922A9E . 360448 . . [6.1.7600.16385] .. c:\windows\winsxs\amd64_microsoft-windows-netman_31bf3856ad364e35_6.1.7600.16385_none_6bb20d3d6b80d9da\netman.dll [-] 2009-07-14 . 847D3AE376C0817161A14A82C8922A9E . 360448 . . [6.1.7600.16385] .. c:\windows\system32\netman.dll . [-] 2009-07-14 . 7F0C323FE3DA28AA4AA1BDA3F575707F . 848384 . . [7.5.7600.16385] .. c:\windows\winsxs\amd64_microsoft-windows-bits-client_31bf3856ad364e35_6.1.7600.16385_none_7f85b69413231233\qmgr.dll [-] 2009-07-14 . 7F0C323FE3DA28AA4AA1BDA3F575707F . 848384 . . [7.5.7600.16385] .. c:\windows\system32\qmgr.dll . [-] 2009-07-14 . 7266972E86890E2B30C0C322E906B027 . 509440 . . [6.1.7600.16385] .. c:\windows\winsxs\amd64_microsoft-windows-com-base-qfe-rpcss_31bf3856ad364e35_6.1.7600.16385_none_c5bfcda3579104e3\rpcss.dll [-] 2009-07-14 . 7266972E86890E2B30C0C322E906B027 . 509440 . . [6.1.7600.16385] .. c:\windows\system32\rpcss.dll . [-] 2009-07-14 . 24ACB7E5BE595468E3B9AA488B9B4FCB . 328704 . . [6.1.7600.16385] .. c:\windows\winsxs\amd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_2b54b20ee6fa07b1\services.exe [-] 2009-07-14 . 24ACB7E5BE595468E3B9AA488B9B4FCB . 328704 . . [6.1.7600.16385] .. c:\windows\system32\services.exe . [-] 2010-08-21 . F8E1FA03CB70D54A9892AC88B91D1E7B . 558592 . . [6.1.7600.16385] .. c:\windows\winsxs\amd64_microsoft-windows-printing-spooler-core_31bf3856ad364e35_6.1.7600.16661_none_3252392adb2d25f4\spoolsv.exe [-] 2010-08-20 . 8547491BE7086EE317163365D83A37D2 . 559104 . . [6.1.7600.16385] .. c:\windows\winsxs\amd64_microsoft-windows-printing-spooler-core_31bf3856ad364e35_6.1.7600.20785_none_32ca3745f45762fc\spoolsv.exe [-] 2009-07-14 . 89E8550C5862999FCF482EA562B0E98E . 558080 . . [6.1.7600.16385] .. c:\windows\winsxs\amd64_microsoft-windows-printing-spooler-core_31bf3856ad364e35_6.1.7600.16385_none_324094c8db39cbbd\spoolsv.exe [-] 2010-08-21 . F8E1FA03CB70D54A9892AC88B91D1E7B . 558592 . . [6.1.7600.16385] .. c:\windows\system32\spoolsv.exe . [-] 2009-10-28 . A93D41A4D4B0D91C072D11DD8AF266DE . 389632 . . [6.1.7600.16385] .. c:\windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.20560_none_cc522fd507b468f8\winlogon.exe [-] 2009-10-28 . DA3E2A6FA9660CC75B471530CE88453A . 389632 . . [6.1.7600.16385] .. c:\windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16447_none_cbe534e7ee8042ad\winlogon.exe [-] 2009-07-14 . 132328DF455B0028F13BF0ABEE51A63A . 389120 . . [6.1.7600.16385] .. c:\windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16385_none_cbb7f2bdeea2829c\winlogon.exe [-] 2009-10-28 . DA3E2A6FA9660CC75B471530CE88453A . 389632 . . [6.1.7600.16385] .. c:\windows\system32\winlogon.exe . [-] 2009-07-14 . 0C12A2B863FEA45598134E3B6E379F88 . 51200 . . [7.3.7600.16385] .. c:\windows\winsxs\amd64_microsoft-windows-w..wsupdateclient-core_31bf3856ad364e35_7.3.7600.16385_none_8ca5655e8bc7dae9\wuauclt.exe [-] 2009-07-14 . 0C12A2B863FEA45598134E3B6E379F88 . 51200 . . [7.3.7600.16385] .. c:\windows\system32\wuauclt.exe . [-] 2009-07-14 . 7E8AB50AB7F2F81F30DCC8A98025B73A . 633856 . . [5.82] .. c:\windows\winsxs\amd64_microsoft-windows-shell-comctl32-v5_31bf3856ad364e35_6.1.7600.16385_none_959110a7f1a88a21\comctl32.dll [-] 2009-07-14 . 7E8AB50AB7F2F81F30DCC8A98025B73A . 633856 . . [5.82] .. c:\windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7600.16385_none_a44af8ec57f961cf\comctl32.dll [-] 2009-07-14 . C093E7835C1372D6D70A6675EDAA97B5 . 2030080 . . [5.82] .. c:\windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_fa645303170382f6\comctl32.dll [-] 2009-07-14 . 7E8AB50AB7F2F81F30DCC8A98025B73A . 633856 . . [5.82] .. c:\windows\system32\comctl32.dll . [-] 2009-07-14 . 1A47D52E303B7543E4E6026595B95422 . 1297408 . . [2001.12.8530.16385] .. c:\windows\winsxs\amd64_microsoft-windows-com-complus.res_31bf3856ad364e35_6.1.7600.16385_none_88a5cc7effe2dfca\comres.dll [-] 2009-07-14 . 1A47D52E303B7543E4E6026595B95422 . 1297408 . . [2001.12.8530.16385] .. c:\windows\system32\comres.dll . [-] 2009-07-14 . 8C57411B66282C01533CB776F98AD384 . 175104 . . [6.1.7600.16385] .. c:\windows\winsxs\amd64_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7600.16385_none_d1f48b0bb4805490\cryptsvc.dll [-] 2009-07-14 . 8C57411B66282C01533CB776F98AD384 . 175104 . . [6.1.7600.16385] .. c:\windows\system32\cryptsvc.dll . [-] 2009-07-14 . 4166F82BE4D24938977DD1746BE9B8A0 . 402944 . . [2001.12.8530.16385] .. c:\windows\winsxs\amd64_microsoft-windows-c..complus-eventsystem_31bf3856ad364e35_6.1.7600.16385_none_68e290c46b6ea6d0\es.dll [-] 2009-07-14 . 4166F82BE4D24938977DD1746BE9B8A0 . 402944 . . [2001.12.8530.16385] .. c:\windows\system32\es.dll . [-] 2009-07-14 . AA2C08CE85653B1A0D2E4AB407FA176C . 167424 . . [6.1.7600.16385] .. c:\windows\winsxs\amd64_microsoft-windows-imm32_31bf3856ad364e35_6.1.7600.16385_none_b84b0fbd941c03a9\imm32.dll [-] 2009-07-14 . AA2C08CE85653B1A0D2E4AB407FA176C . 167424 . . [6.1.7600.16385] .. c:\windows\system32\imm32.dll . [-] 2009-07-14 . 5F2BDCA5FA0F20A6F452CF0EE2A2B18C . 801280 . . [1.0626.7600.16385] .. c:\windows\winsxs\amd64_microsoft-windows-usp_31bf3856ad364e35_6.1.7600.16385_none_08ef6ab5722d66d5\usp10.dll [-] 2009-07-14 . 5F2BDCA5FA0F20A6F452CF0EE2A2B18C . 801280 . . [1.0626.7600.16385] .. c:\windows\system32\usp10.dll . [-] 2009-07-14 . 5B4B379AD10DEDA4EDA01B8C6961B193 . 1162240 . . [6.1.7600.16385] .. c:\windows\winsxs\amd64_microsoft-windows-kernel32_31bf3856ad364e35_6.1.7600.16385_none_efb2d6e86ffc8f55\kernel32.dll [-] 2009-07-14 . 5B4B379AD10DEDA4EDA01B8C6961B193 . 1162240 . . [6.1.7600.16385] .. c:\windows\system32\kernel32.dll . [-] 2009-07-14 . A0A65D306A5490D2EB8E7DE66898ECFD . 29696 . . [6.1.7600.16385] .. c:\windows\winsxs\amd64_microsoft-windows-linkinfo_31bf3856ad364e35_6.1.7600.16385_none_945a23c3bf051859\linkinfo.dll [-] 2009-07-14 . A0A65D306A5490D2EB8E7DE66898ECFD . 29696 . . [6.1.7600.16385] .. c:\windows\system32\linkinfo.dll . [-] 2009-07-14 . D202223587518B13D72D68937B7E3F70 . 41984 . . [6.1.7600.16385] .. c:\windows\winsxs\amd64_microsoft-windows-gdi_31bf3856ad364e35_6.1.7600.16385_none_05c80a1f743763f3\lpk.dll [-] 2009-07-14 . D202223587518B13D72D68937B7E3F70 . 41984 . . [6.1.7600.16385] .. c:\windows\winsxs\amd64_microsoft-windows-gdi_31bf3856ad364e35_6.1.7600.16402_none_061b8a8773f9358d\lpk.dll [-] 2009-07-14 . D202223587518B13D72D68937B7E3F70 . 41984 . . [6.1.7600.16385] .. c:\windows\winsxs\amd64_microsoft-windows-gdi_31bf3856ad364e35_6.1.7600.16444_none_05f24b6b7417d7ff\lpk.dll [-] 2009-07-14 . D202223587518B13D72D68937B7E3F70 . 41984 . . [6.1.7600.16385] .. c:\windows\winsxs\amd64_microsoft-windows-gdi_31bf3856ad364e35_6.1.7600.16600_none_06198dbf73fafd2d\lpk.dll [-] 2009-07-14 . D202223587518B13D72D68937B7E3F70 . 41984 . . [6.1.7600.16385] .. c:\windows\winsxs\amd64_microsoft-windows-gdi_31bf3856ad364e35_6.1.7600.20498_none_0649d7dc8d5a6bb3\lpk.dll [-] 2009-07-14 . D202223587518B13D72D68937B7E3F70 . 41984 . . [6.1.7600.16385] .. c:\windows\winsxs\amd64_microsoft-windows-gdi_31bf3856ad364e35_6.1.7600.20553_none_067018008d3e7a63\lpk.dll [-] 2009-07-14 . D202223587518B13D72D68937B7E3F70 . 41984 . . [6.1.7600.16385] .. c:\windows\winsxs\amd64_microsoft-windows-gdi_31bf3856ad364e35_6.1.7600.20720_none_068d8ab28d28d4d9\lpk.dll [-] 2009-07-14 . D202223587518B13D72D68937B7E3F70 . 41984 . . [6.1.7600.16385] .. c:\windows\system32\lpk.dll . [-] 2009-07-14 . 3B367397320C26DBA890B260F80D1B1B . 424448 . . [6.1.7600.16385] .. c:\windows\winsxs\amd64_microsoft-windows-i..ectionsharingconfig_31bf3856ad364e35_6.1.7600.16385_none_0c2b375bae4a8d38\hnetcfg.dll [-] 2009-07-14 . 3B367397320C26DBA890B260F80D1B1B . 424448 . . [6.1.7600.16385] .. c:\windows\system32\hnetcfg.dll . [-] 2010-06-30 . E16D240876BAD97B05DCAD346AC734F6 . 9295360 . . [8.00.7600.16385] .. c:\windows\winsxs\amd64_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_8.0.7600.20745_none_8aa72da7cbd9a1bb\mshtml.dll [-] 2010-06-30 . 74DA18BB61FE98FC002866F032329265 . 9298432 . . [8.00.7600.16385] .. c:\windows\winsxs\amd64_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_8.0.7600.16625_none_8a3330b4b2abca0f\mshtml.dll [-] 2009-07-14 . 12C3F25EA578DAA752024E1918D59313 . 9271296 . . [8.00.7600.16385] .. c:\windows\winsxs\amd64_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_8.0.7600.16385_none_89f24b7ab2dc7a40\mshtml.dll [-] 2010-06-30 . 74DA18BB61FE98FC002866F032329265 . 9298432 . . [8.00.7600.16385] .. c:\windows\system32\mshtml.dll . [-] 2009-07-14 . 7319BB10FA1F86E49E3DCF4136F6C957 . 634880 . . [7.0.7600.16385] .. c:\windows\winsxs\amd64_microsoft-windows-msvcrt_31bf3856ad364e35_6.1.7600.16385_none_2d4a27c7b8972454\msvcrt.dll [-] 2009-07-14 . 7319BB10FA1F86E49E3DCF4136F6C957 . 634880 . . [7.0.7600.16385] .. c:\windows\system32\msvcrt.dll . [-] 2009-07-14 . FC76FE3C1E1FDB761244D4F74EF560FD . 320000 . . [6.1.7600.16385] .. c:\windows\winsxs\amd64_microsoft-windows-w..-infrastructure-bsp_31bf3856ad364e35_6.1.7600.16385_none_144848ad46fcc535\mswsock.dll [-] 2009-07-14 . FC76FE3C1E1FDB761244D4F74EF560FD . 320000 . . [6.1.7600.16385] .. c:\windows\system32\mswsock.dll . [-] 2009-07-14 . 956D030D375F207B22FB111E06EF9C35 . 692736 . . [6.1.7600.16385] .. c:\windows\winsxs\amd64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7600.16385_none_59aca8ea51aaeefe\netlogon.dll [-] 2009-07-14 . 956D030D375F207B22FB111E06EF9C35 . 692736 . . [6.1.7600.16385] .. c:\windows\system32\netlogon.dll . [-] 2009-07-14 . 716175021BDA290504CE434273F666BC . 167424 . . [6.1.7600.16385] .. c:\windows\winsxs\amd64_microsoft-windows-userpowermanagement_31bf3856ad364e35_6.1.7600.16385_none_ff0e900816896618\powrprof.dll [-] 2009-07-14 . 716175021BDA290504CE434273F666BC . 167424 . . [6.1.7600.16385] .. c:\windows\system32\powrprof.dll . [-] 2009-07-14 . 398712DDDAEFB85EDF61DF6A07B65C79 . 232448 . . [6.1.7600.16385] .. c:\windows\winsxs\amd64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_9402d402f2cc75b9\scecli.dll [-] 2009-07-14 . 398712DDDAEFB85EDF61DF6A07B65C79 . 232448 . . [6.1.7600.16385] .. c:\windows\system32\scecli.dll . [-] 2009-07-14 . C6DCD1D11ED6827F05C00773C3E7053C . 3072 . . [6.1.7600.16385] .. c:\windows\winsxs\amd64_microsoft-windows-sfc_31bf3856ad364e35_6.1.7600.16385_none_032ab4f375e2ac1f\sfc.dll [-] 2009-07-14 . C6DCD1D11ED6827F05C00773C3E7053C . 3072 . . [6.1.7600.16385] .. c:\windows\system32\sfc.dll . [-] 2009-07-14 . C78655BC80301D76ED4FEF1C1EA40A7D . 27136 . . [6.1.7600.16385] .. c:\windows\winsxs\amd64_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_11b04b481efec48c\svchost.exe [-] 2009-07-14 . C78655BC80301D76ED4FEF1C1EA40A7D . 27136 . . [6.1.7600.16385] .. c:\windows\system32\svchost.exe . [-] 2009-07-14 . 884264AC597B690C5707C89723BB8E7B . 316416 . . [6.1.7600.16385] .. c:\windows\winsxs\amd64_microsoft-windows-tapiservice_31bf3856ad364e35_6.1.7600.16385_none_3f31ca82fea39f26\tapisrv.dll [-] 2009-07-14 . 884264AC597B690C5707C89723BB8E7B . 316416 . . [6.1.7600.16385] .. c:\windows\system32\tapisrv.dll . [-] 2009-07-14 . 72D7B3EA16946E8F0CF7458150031CC6 . 1008640 . . [6.1.7600.16385] .. c:\windows\winsxs\amd64_microsoft-windows-user32_31bf3856ad364e35_6.1.7600.16385_none_292d5de8870d85d9\user32.dll [-] 2009-07-14 . 72D7B3EA16946E8F0CF7458150031CC6 . 1008640 . . [6.1.7600.16385] .. c:\windows\system32\user32.dll . [-] 2009-07-14 . 6F8F1376A13114CC10C0E69274F5A4DE . 30208 . . [6.1.7600.16385] .. c:\windows\winsxs\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_381dabbceb60feb2\userinit.exe [-] 2009-07-14 . 6F8F1376A13114CC10C0E69274F5A4DE . 30208 . . [6.1.7600.16385] .. c:\windows\system32\userinit.exe . [-] 2010-06-30 . DBC6EC40DDEDF875C0576CF2C0CAF9C3 . 1196544 . . [8.00.7600.16385] .. c:\windows\winsxs\amd64_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_8.0.7600.20745_none_794d0e894b833885\wininet.dll [-] 2010-06-30 . 3DEB428ACD3D4DECD1619C24E4628DD2 . 1192960 . . [8.00.7600.16385] .. c:\windows\winsxs\amd64_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_8.0.7600.16625_none_78d91196325560d9\wininet.dll [-] 2009-07-14 . B1037F0131C9A010D611F6914E03CD92 . 1193472 . . [8.00.7600.16385] .. c:\windows\winsxs\amd64_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_8.0.7600.16385_none_78982c5c3286110a\wininet.dll [-] 2010-06-30 . 3DEB428ACD3D4DECD1619C24E4628DD2 . 1192960 . . [8.00.7600.16385] .. c:\windows\system32\wininet.dll . [-] 2009-07-14 . 7083F463788CB34FCC42F565D56F89E8 . 296448 . . [6.1.7600.16385] .. c:\windows\winsxs\amd64_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.1.7600.16385_none_4eaca269e8070c6b\ws2_32.dll [-] 2009-07-14 . 7083F463788CB34FCC42F565D56F89E8 . 296448 . . [6.1.7600.16385] .. c:\windows\system32\ws2_32.dll . [-] 2009-07-14 . 8396C6C26AADDFE4590CCEF0F419B6B7 . 4608 . . [6.1.7600.16385] .. c:\windows\winsxs\amd64_microsoft-windows-w..nfrastructure-other_31bf3856ad364e35_6.1.7600.16385_none_6079f415110c0210\ws2help.dll [-] 2009-07-14 . 8396C6C26AADDFE4590CCEF0F419B6B7 . 4608 . . [6.1.7600.16385] .. c:\windows\system32\ws2help.dll . [-] 2009-07-14 . 4B25DDE615AC2CABAB73169CA7DA96E6 . 2084352 . . [6.1.7600.16385] .. c:\windows\winsxs\amd64_microsoft-windows-com-base-qfe-ole32_31bf3856ad364e35_6.1.7600.16385_none_081299030c02672b\ole32.dll [-] 2009-07-14 . 4B25DDE615AC2CABAB73169CA7DA96E6 . 2084352 . . [6.1.7600.16385] .. c:\windows\system32\ole32.dll . [-] 2009-07-14 . 86FE1B1F8FD42CD0DB641AB1CDB13093 . 18944 . . [6.1.7600.16385] .. c:\windows\winsxs\amd64_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.1.7600.16385_none_4458dccc49458461\cngaudit.dll [-] 2009-07-14 . 86FE1B1F8FD42CD0DB641AB1CDB13093 . 18944 . . [6.1.7600.16385] .. c:\windows\system32\cngaudit.dll . [-] 2009-07-14 . 94355C28C1970635A31B3FE52EB7CEBA . 129024 . . [6.1.7600.16385] .. c:\windows\winsxs\amd64_microsoft-windows-wininit_31bf3856ad364e35_6.1.7600.16385_none_8ce7aa761e01ad49\wininit.exe [-] 2009-07-14 . 94355C28C1970635A31B3FE52EB7CEBA . 129024 . . [6.1.7600.16385] .. c:\windows\system32\wininit.exe . [-] 2009-07-14 . 42B6A94DD747DF2B5F628A2752E62A98 . 9728 . . [6.1.7600.16385] .. c:\windows\winsxs\amd64_microsoft-windows-t..cesframework-ctfmon_31bf3856ad364e35_6.1.7600.16385_none_f9257e7aaa4290ce\ctfmon.exe [-] 2009-07-14 . 42B6A94DD747DF2B5F628A2752E62A98 . 9728 . . [6.1.7600.16385] .. c:\windows\system32\ctfmon.exe . [-] 2009-07-14 . 0298AC45D0EFFFB2DB4BAA7DD186E7BF . 369664 . . [6.1.7600.16385] .. c:\windows\winsxs\amd64_microsoft-windows-shsvcs_31bf3856ad364e35_6.1.7600.16385_none_29254ed1369e9d89\shsvcs.dll [-] 2009-07-14 . 0298AC45D0EFFFB2DB4BAA7DD186E7BF . 369664 . . [6.1.7600.16385] .. c:\windows\system32\shsvcs.dll . [-] 2009-07-14 . E4D94F24081440B5FC5AA556C7C62702 . 159232 . . [6.1.7600.16385] .. c:\windows\winsxs\amd64_microsoft-windows-remoteregistry-service_31bf3856ad364e35_6.1.7600.16385_none_e55af7609d2857a8\regsvc.dll [-] 2009-07-14 . E4D94F24081440B5FC5AA556C7C62702 . 159232 . . [6.1.7600.16385] .. c:\windows\system32\regsvc.dll . [-] 2009-07-14 . EC56B171F85C7E855E7B0588AC503EEA . 1104384 . . [6.1.7600.16385] .. c:\windows\winsxs\amd64_microsoft-windows-taskscheduler-service_31bf3856ad364e35_6.1.7600.16385_none_8af61038b0b37f5f\schedsvc.dll [-] 2009-07-14 . EC56B171F85C7E855E7B0588AC503EEA . 1104384 . . [6.1.7600.16385] .. c:\windows\system32\schedsvc.dll . [-] 2009-07-14 . 51B52FBD583CDE8AA9BA62B8B4298F33 . 193024 . . [6.1.7600.16385] .. c:\windows\winsxs\amd64_microsoft-windows-upnpssdp_31bf3856ad364e35_6.1.7600.16385_none_dbbe6492eae9505c\ssdpsrv.dll [-] 2009-07-14 . 51B52FBD583CDE8AA9BA62B8B4298F33 . 193024 . . [6.1.7600.16385] .. c:\windows\system32\ssdpsrv.dll . [-] 2009-07-14 . 0F05EC2887BFE197AD82A13287D2F404 . 706560 . . [6.1.7600.16385] .. c:\windows\winsxs\amd64_microsoft-windows-t..teconnectionmanager_31bf3856ad364e35_6.1.7600.16385_none_ea94336f6df51e09\termsrv.dll [-] 2009-07-14 . 0F05EC2887BFE197AD82A13287D2F404 . 706560 . . [6.1.7600.16385] .. c:\windows\system32\termsrv.dll . [-] 2009-07-14 . 8560FFFC8EB3A806DCD4F82252CFC8C6 . 5120 . . [6.1.7600.16385] .. c:\windows\winsxs\amd64_microsoft-windows-d..tshow-kernelsupport_31bf3856ad364e35_6.1.7600.16385_none_43f68e03b0fd4b38\ksuser.dll [-] 2009-07-14 . 8560FFFC8EB3A806DCD4F82252CFC8C6 . 5120 . . [6.1.7600.16385] .. c:\windows\system32\ksuser.dll . [-] 2009-07-14 . B62AA1BB1F63839051441D2C6DD7B775 . 530432 . . [5.82] .. c:\windows\SysWOW64\comctl32.dll [-] 2009-07-14 . B62AA1BB1F63839051441D2C6DD7B775 . 530432 . . [5.82] .. c:\windows\winsxs\x86_microsoft-windows-shell-comctl32-v5_31bf3856ad364e35_6.1.7600.16385_none_39727524394b18eb\comctl32.dll [-] 2009-07-14 . B62AA1BB1F63839051441D2C6DD7B775 . 530432 . . [5.82] .. c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7600.16385_none_ebf82fc36c758ad5\comctl32.dll [-] 2009-07-14 . 0FA436A553408CBEBA070E3182658DE3 . 1680896 . . [5.82] .. c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc\comctl32.dll . [-] 2009-07-14 . 9C231178CE4FB385F4B54B0A9080B8A4 . 135680 . . [6.1.7600.16385] .. c:\windows\SysWOW64\cryptsvc.dll [-] 2009-07-14 . 9C231178CE4FB385F4B54B0A9080B8A4 . 135680 . . [6.1.7600.16385] .. c:\windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7600.16385_none_75d5ef87fc22e35a\cryptsvc.dll . [-] 2009-07-14 . F6916EFC29D9953D5D0DF06882AE8E16 . 271360 . . [2001.12.8530.16385] .. c:\windows\SysWOW64\es.dll [-] 2009-07-14 . F6916EFC29D9953D5D0DF06882AE8E16 . 271360 . . [2001.12.8530.16385] .. c:\windows\winsxs\wow64_microsoft-windows-c..complus-eventsystem_31bf3856ad364e35_6.1.7600.16385_none_73373b169fcf68cb\es.dll . [-] 2009-07-14 . 0DE3069D6E09BA262856EF31C941BEFE . 119808 . . [6.1.7600.16385] .. c:\windows\SysWOW64\imm32.dll [-] 2009-07-14 . 0DE3069D6E09BA262856EF31C941BEFE . 119808 . . [6.1.7600.16385] .. c:\windows\winsxs\wow64_microsoft-windows-imm32_31bf3856ad364e35_6.1.7600.16385_none_c29fba0fc87cc5a4\imm32.dll . [-] 2009-07-14 . 606ECB76A424CC535407E7A24E2A34BC . 836608 . . [6.1.7600.16385] .. c:\windows\SysWOW64\kernel32.dll [-] 2009-07-14 . 606ECB76A424CC535407E7A24E2A34BC . 836608 . . [6.1.7600.16385] .. c:\windows\winsxs\wow64_microsoft-windows-kernel32_31bf3856ad364e35_6.1.7600.16385_none_fa07813aa45d5150\kernel32.dll . [-] 2009-07-14 . 5987EA8A82C53359BCD2C29D6588583E . 22016 . . [6.1.7600.16385] .. c:\windows\SysWOW64\linkinfo.dll [-] 2009-07-14 . 5987EA8A82C53359BCD2C29D6588583E . 22016 . . [6.1.7600.16385] .. c:\windows\winsxs\wow64_microsoft-windows-linkinfo_31bf3856ad364e35_6.1.7600.16385_none_9eaece15f365da54\linkinfo.dll . [-] 2009-07-14 . 384721EF4024890092625E20CADFAF85 . 25600 . . [6.1.7600.16385] .. c:\windows\SysWOW64\lpk.dll [-] 2009-07-14 . 384721EF4024890092625E20CADFAF85 . 25600 . . [6.1.7600.16385] .. c:\windows\winsxs\wow64_microsoft-windows-gdi_31bf3856ad364e35_6.1.7600.16385_none_101cb471a89825ee\lpk.dll [-] 2009-07-14 . 384721EF4024890092625E20CADFAF85 . 25600 . . [6.1.7600.16385] .. c:\windows\winsxs\wow64_microsoft-windows-gdi_31bf3856ad364e35_6.1.7600.16402_none_107034d9a859f788\lpk.dll [-] 2009-07-14 . 384721EF4024890092625E20CADFAF85 . 25600 . . [6.1.7600.16385] .. c:\windows\winsxs\wow64_microsoft-windows-gdi_31bf3856ad364e35_6.1.7600.16444_none_1046f5bda87899fa\lpk.dll [-] 2009-07-14 . 384721EF4024890092625E20CADFAF85 . 25600 . . [6.1.7600.16385] .. c:\windows\winsxs\wow64_microsoft-windows-gdi_31bf3856ad364e35_6.1.7600.16600_none_106e3811a85bbf28\lpk.dll [-] 2009-07-14 . 384721EF4024890092625E20CADFAF85 . 25600 . . [6.1.7600.16385] .. c:\windows\winsxs\wow64_microsoft-windows-gdi_31bf3856ad364e35_6.1.7600.20498_none_109e822ec1bb2dae\lpk.dll [-] 2009-07-14 . 384721EF4024890092625E20CADFAF85 . 25600 . . [6.1.7600.16385] .. c:\windows\winsxs\wow64_microsoft-windows-gdi_31bf3856ad364e35_6.1.7600.20553_none_10c4c252c19f3c5e\lpk.dll [-] 2009-07-14 . 384721EF4024890092625E20CADFAF85 . 25600 . . [6.1.7600.16385] .. c:\windows\winsxs\wow64_microsoft-windows-gdi_31bf3856ad364e35_6.1.7600.20720_none_10e23504c18996d4\lpk.dll . [-] 2010-06-30 . BDFD710842C8A25DD27254D91DE60AC6 . 5971456 . . [8.00.7600.16385] .. c:\windows\SysWOW64\mshtml.dll [-] 2010-06-30 . BDFD710842C8A25DD27254D91DE60AC6 . 5971456 . . [8.00.7600.16385] .. c:\windows\winsxs\wow64_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_8.0.7600.16625_none_9487db06e70c8c0a\mshtml.dll [-] 2010-06-30 . 25C1646ADC24C371B594544C3D530967 . 5972992 . . [8.00.7600.16385] .. c:\windows\winsxs\wow64_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_8.0.7600.20745_none_94fbd7fa003a63b6\mshtml.dll [-] 2009-07-14 . 43592D31AFF84DD957199248898D9430 . 5957632 . . [8.00.7600.16385] .. c:\windows\winsxs\wow64_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_8.0.7600.16385_none_9446f5cce73d3c3b\mshtml.dll . [-] 2009-07-14 . E46D48A7FE961401F1CBF85531CDF05D . 690688 . . [7.0.7600.16385] .. c:\windows\SysWOW64\msvcrt.dll [-] 2009-07-14 . E46D48A7FE961401F1CBF85531CDF05D . 690688 . . [7.0.7600.16385] .. c:\windows\winsxs\x86_microsoft-windows-msvcrt_31bf3856ad364e35_6.1.7600.16385_none_d12b8c440039b31e\msvcrt.dll . [-] 2009-07-14 . 11A41F17527ED75D6B758FDD7F4FD00D . 232448 . . [6.1.7600.16385] .. c:\windows\SysWOW64\mswsock.dll [-] 2009-07-14 . 11A41F17527ED75D6B758FDD7F4FD00D . 232448 . . [6.1.7600.16385] .. c:\windows\winsxs\x86_microsoft-windows-w..-infrastructure-bsp_31bf3856ad364e35_6.1.7600.16385_none_b829ad298e9f53ff\mswsock.dll . [-] 2009-07-14 . EAA75D9000B71F10EEC04D2AE6C60E81 . 563712 . . [6.1.7600.16385] .. c:\windows\SysWOW64\netlogon.dll [-] 2009-07-14 . EAA75D9000B71F10EEC04D2AE6C60E81 . 563712 . . [6.1.7600.16385] .. c:\windows\winsxs\wow64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7600.16385_none_6401533c860bb0f9\netlogon.dll . [-] 2009-07-14 . 08DFDBD2FD4EA951DC46B1C7661ED35A . 145408 . . [6.1.7600.16385] .. c:\windows\SysWOW64\powrprof.dll [-] 2009-07-14 . 08DFDBD2FD4EA951DC46B1C7661ED35A . 145408 . . [6.1.7600.16385] .. c:\windows\winsxs\x86_microsoft-windows-userpowermanagement_31bf3856ad364e35_6.1.7600.16385_none_a2eff4845e2bf4e2\powrprof.dll . [-] 2009-07-14 . 26073302DAEA83CC5B944C546D6B47D2 . 175616 . . [6.1.7600.16385] .. c:\windows\SysWOW64\scecli.dll [-] 2009-07-14 . 26073302DAEA83CC5B944C546D6B47D2 . 175616 . . [6.1.7600.16385] .. c:\windows\winsxs\wow64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_9e577e55272d37b4\scecli.dll . [-] 2009-07-14 . 40CAEEE0EAF1B8569F7C8DF6420F2CB9 . 2560 . . [6.1.7600.16385] .. c:\windows\SysWOW64\sfc.dll [-] 2009-07-14 . 40CAEEE0EAF1B8569F7C8DF6420F2CB9 . 2560 . . [6.1.7600.16385] .. c:\windows\winsxs\x86_microsoft-windows-sfc_31bf3856ad364e35_6.1.7600.16385_none_a70c196fbd853ae9\sfc.dll . [-] 2009-07-14 . 54A47F6B5E09A77E61649109C6A08866 . 20992 . . [6.1.7600.16385] .. c:\windows\SysWOW64\svchost.exe [-] 2009-07-14 . 54A47F6B5E09A77E61649109C6A08866 . 20992 . . [6.1.7600.16385] .. c:\windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe . [-] 2009-07-14 . 2F46B0C70A4ADC8C90CF825DA3B4FEAF . 241664 . . [6.1.7600.16385] .. c:\windows\SysWOW64\tapisrv.dll [-] 2009-07-14 . 2F46B0C70A4ADC8C90CF825DA3B4FEAF . 241664 . . [6.1.7600.16385] .. c:\windows\winsxs\x86_microsoft-windows-tapiservice_31bf3856ad364e35_6.1.7600.16385_none_e3132eff46462df0\tapisrv.dll . [-] 2009-07-14 . E8B0FFC209E504CB7E79FC24E6C085F0 . 833024 . . [6.1.7600.16385] .. c:\windows\SysWOW64\user32.dll [-] 2009-07-14 . E8B0FFC209E504CB7E79FC24E6C085F0 . 833024 . . [6.1.7600.16385] .. c:\windows\winsxs\wow64_microsoft-windows-user32_31bf3856ad364e35_6.1.7600.16385_none_3382083abb6e47d4\user32.dll . [-] 2009-07-14 . 6DE80F60D7DE9CE6B8C2DDFDF79EF175 . 26112 . . [6.1.7600.16385] .. c:\windows\SysWOW64\userinit.exe [-] 2009-07-14 . 6DE80F60D7DE9CE6B8C2DDFDF79EF175 . 26112 . . [6.1.7600.16385] .. c:\windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_dbff103933038d7c\userinit.exe . [-] 2010-06-30 . 250267CE6217C1AB4517F22FB7EA13E8 . 978432 . . [8.00.7600.16385] .. c:\windows\SysWOW64\wininet.dll [-] 2010-06-30 . 250267CE6217C1AB4517F22FB7EA13E8 . 978432 . . [8.00.7600.16385] .. c:\windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_8.0.7600.16625_none_1cba761279f7efa3\wininet.dll [-] 2010-06-30 . 91A9CCAD9829A89C840899932B9EC2DF . 980480 . . [8.00.7600.16385] .. c:\windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_8.0.7600.20745_none_1d2e73059325c74f\wininet.dll [-] 2009-07-14 . 0D874F3BC751CC2198AF2E6783FB8B35 . 977920 . . [8.00.7600.16385] .. c:\windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_8.0.7600.16385_none_1c7990d87a289fd4\wininet.dll . [-] 2009-07-14 . DAAE8A9B8C0ACC7F858454132553C30D . 206336 . . [6.1.7600.16385] .. c:\windows\SysWOW64\ws2_32.dll [-] 2009-07-14 . DAAE8A9B8C0ACC7F858454132553C30D . 206336 . . [6.1.7600.16385] .. c:\windows\winsxs\x86_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.1.7600.16385_none_f28e06e62fa99b35\ws2_32.dll . [-] 2009-07-14 . 808AABDF9337312195CAFF76D1804786 . 4608 . . [6.1.7600.16385] .. c:\windows\SysWOW64\ws2help.dll [-] 2009-07-14 . 808AABDF9337312195CAFF76D1804786 . 4608 . . [6.1.7600.16385] .. c:\windows\winsxs\wow64_microsoft-windows-w..nfrastructure-other_31bf3856ad364e35_6.1.7600.16385_none_6ace9e67456cc40b\ws2help.dll . [-] 2009-10-31 . B8EC4BD49CE8F6FC457721BFC210B67F . 2870272 . . [6.1.7600.16385] .. c:\windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20563_none_ae46d6aeac7ca7c7\explorer.exe [-] 2009-10-31 . 9AAAEC8DAC27AA17B053E6352AD233AE . 2870272 . . [6.1.7600.16385] .. c:\windows\explorer.exe [-] 2009-10-31 . 9AAAEC8DAC27AA17B053E6352AD233AE . 2870272 . . [6.1.7600.16385] .. c:\windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16450_none_adc508f19359a007\explorer.exe [-] 2009-08-03 . 700073016DAC1C3D2E7E2CE4223334B6 . 2868224 . . [6.1.7600.16385] .. c:\windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_ae84b558ac4eb41c\explorer.exe [-] 2009-08-03 . F170B4A061C9E026437B193B4D571799 . 2868224 . . [6.1.7600.16385] .. c:\windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_adff19b5932d79ae\explorer.exe [-] 2009-07-14 . C235A51CB740E45FFA0EBFB9BAFCDA64 . 2868224 . . [6.1.7600.16385] .. c:\windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_ada998b9936d7566\explorer.exe . [-] 2009-07-14 . 2E2C937846A0B8789E5E91739284D17A . 427008 . . [6.1.7600.16385] .. c:\windows\winsxs\amd64_microsoft-windows-registry-editor_31bf3856ad364e35_6.1.7600.16385_none_5023a70bf589ad3e\regedit.exe [-] 2009-07-14 . 2E2C937846A0B8789E5E91739284D17A . 398336 . . [6.1.7600.16385] .. c:\windows\regedit.exe . [-] 2009-07-14 . 4ACB903AD1693858A918907358CBD9E4 . 1412608 . . [6.1.7600.16385] .. c:\windows\SysWOW64\ole32.dll [-] 2009-07-14 . 4ACB903AD1693858A918907358CBD9E4 . 1412608 . . [6.1.7600.16385] .. c:\windows\winsxs\x86_microsoft-windows-com-base-qfe-ole32_31bf3856ad364e35_6.1.7600.16385_none_abf3fd7f53a4f5f5\ole32.dll . [-] 2009-07-14 . 0BA19F3198C40AC4E8CC66EE02EDA6C6 . 627200 . . [1.0626.7600.16385] .. c:\windows\SysWOW64\usp10.dll [-] 2009-07-14 . 0BA19F3198C40AC4E8CC66EE02EDA6C6 . 627200 . . [1.0626.7600.16385] .. c:\windows\winsxs\x86_microsoft-windows-usp_31bf3856ad364e35_6.1.7600.16385_none_acd0cf31b9cff59f\usp10.dll . [-] 2009-07-14 . 9C67F6BBDA3881CFD02095160CF91576 . 4608 . . [6.1.7600.16385] .. c:\windows\SysWOW64\ksuser.dll [-] 2009-07-14 . 9C67F6BBDA3881CFD02095160CF91576 . 4608 . . [6.1.7600.16385] .. c:\windows\winsxs\x86_microsoft-windows-d..tshow-kernelsupport_31bf3856ad364e35_6.1.7600.16385_none_e7d7f27ff89fda02\ksuser.dll . [-] 2009-07-14 . 4A3CDCEF8ED41B221F3DBEF5792FB52D . 8704 . . [6.1.7600.16385] .. c:\windows\SysWOW64\ctfmon.exe [-] 2009-07-14 . 4A3CDCEF8ED41B221F3DBEF5792FB52D . 8704 . . [6.1.7600.16385] .. c:\windows\winsxs\x86_microsoft-windows-t..cesframework-ctfmon_31bf3856ad364e35_6.1.7600.16385_none_9d06e2f6f1e51f98\ctfmon.exe . [-] 2009-07-14 . CD2E48FA5B29EE2B3B5858056D246EF2 . 328192 . . [6.1.7600.16385] .. c:\windows\SysWOW64\shsvcs.dll [-] 2009-07-14 . CD2E48FA5B29EE2B3B5858056D246EF2 . 328192 . . [6.1.7600.16385] .. c:\windows\winsxs\wow64_microsoft-windows-shsvcs_31bf3856ad364e35_6.1.7600.16385_none_3379f9236aff5f84\shsvcs.dll . [-] 2009-07-14 . 50BA656134F78AF64E4DD3C8B6FEFD7E . 12288 . . [6.1.7600.16385] .. c:\windows\SysWOW64\cngaudit.dll [-] 2009-07-14 . 50BA656134F78AF64E4DD3C8B6FEFD7E . 12288 . . [6.1.7600.16385] .. c:\windows\winsxs\x86_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.1.7600.16385_none_e83a414890e8132b\cngaudit.dll . [-] 2009-07-14 . B5C5DCAD3899512020D135600129D665 . 96256 . . [6.1.7600.16385] .. c:\windows\SysWOW64\wininit.exe [-] 2009-07-14 . B5C5DCAD3899512020D135600129D665 . 96256 . . [6.1.7600.16385] .. c:\windows\winsxs\x86_microsoft-windows-wininit_31bf3856ad364e35_6.1.7600.16385_none_30c90ef265a43c13\wininit.exe . [-] 2009-07-14 . A45D184DF6A8803DA13A0B329517A64A . 149504 . . [6.1.7600.16385] .. c:\windows\SysWOW64\appmgmts.dll [-] 2009-07-14 . A45D184DF6A8803DA13A0B329517A64A . 149504 . . [6.1.7600.16385] .. c:\windows\winsxs\wow64_microsoft-windows-g..oftwareinstallation_31bf3856ad364e35_6.1.7600.16385_none_e818845daa1b69db\appmgmts.dll . [-] 2009-07-14 . A1E91B5B5273573FC132B683E550B5E6 . 19456 . . [6.1.7600.16385] .. c:\windows\SysWOW64\ias.dll [-] 2009-07-14 . A1E91B5B5273573FC132B683E550B5E6 . 19456 . . [6.1.7600.16385] .. c:\windows\winsxs\x86_microsoft-windows-n..ion_service_runtime_31bf3856ad364e35_6.1.7600.16385_none_f8d730c7a3d9d889\ias.dll . [-] 2009-07-14 01:15 . F8742FC618ECBDA92A406725197E93AE . 924944 . . [4.1.6140] .. c:\windows\SysWOW64\mfc40u.dll [-] 2009-07-14 01:15 . F8742FC618ECBDA92A406725197E93AE . 924944 . . [4.1.6140] .. c:\windows\winsxs\x86_microsoft-windows-mfc40u_31bf3856ad364e35_6.1.7600.16385_none_f2e96828b6e3cefa\mfc40u.dll . [-] 2009-07-14 . 833FBB672460EFCE8011D262175FAD33 . 266752 . . [6.1.7600.16385] .. c:\windows\SysWOW64\upnphost.dll [-] 2009-07-14 . 833FBB672460EFCE8011D262175FAD33 . 266752 . . [6.1.7600.16385] .. c:\windows\winsxs\wow64_microsoft-windows-upnpdevicehost_31bf3856ad364e35_6.1.7600.16385_none_2831d06e8295c671\upnphost.dll . [-] 2009-07-14 . 0E85C11F8850D524B02181C6E02BA9AE . 453632 . . [6.1.7600.16385] .. c:\windows\SysWOW64\dsound.dll [-] 2009-07-14 . 0E85C11F8850D524B02181C6E02BA9AE . 453632 . . [6.1.7600.16385] .. c:\windows\winsxs\x86_microsoft-windows-audio-dsound_31bf3856ad364e35_6.1.7600.16385_none_5872147ba3367471\dsound.dll . [-] 2009-07-14 . 7459301D21C2E21468823F73042D9F87 . 1826816 . . [6.1.7600.16385] .. c:\windows\SysWOW64\d3d9.dll [-] 2009-07-14 . 7459301D21C2E21468823F73042D9F87 . 1826816 . . [6.1.7600.16385] .. c:\windows\winsxs\x86_microsoft-windows-directx-direct3d9_31bf3856ad364e35_6.1.7600.16385_none_c223c2c8c219cb6a\d3d9.dll . [-] 2009-07-14 . 198552AEFECA69D646867EC8D792DE95 . 531968 . . [6.1.7600.16385] .. c:\windows\SysWOW64\ddraw.dll [-] 2009-07-14 . 198552AEFECA69D646867EC8D792DE95 . 531968 . . [6.1.7600.16385] .. c:\windows\winsxs\x86_microsoft-windows-directx-directdraw_31bf3856ad364e35_6.1.7600.16385_none_04dbf9102154d42e\ddraw.dll . [-] 2009-07-14 01:16 . C10459DBDC2099C5A8428CB7D87DB85F . 90112 . . [6.1.7600.16385] .. c:\windows\SysWOW64\olepro32.dll [-] 2009-07-14 01:16 . C10459DBDC2099C5A8428CB7D87DB85F . 90112 . . [6.1.7600.16385] .. c:\windows\winsxs\x86_microsoft-windows-ole-automation-legacy_31bf3856ad364e35_6.1.7600.16385_none_39ea10b66307dbef\olepro32.dll . [-] 2009-07-14 . EDD2AD141DEBD425D74A52A4D7BE6AC4 . 39424 . . [6.1.7600.16385] .. c:\windows\SysWOW64\perfctrs.dll [-] 2009-07-14 . EDD2AD141DEBD425D74A52A4D7BE6AC4 . 39424 . . [6.1.7600.16385] .. c:\windows\winsxs\wow64_microsoft-windows-p..ormancebasecounters_31bf3856ad364e35_6.1.7600.16385_none_97bcd9bcab2b9b3a\perfctrs.dll . [-] 2009-07-14 . 702254574E7E52052DE39408457B7149 . 21504 . . [6.1.7600.16385] .. c:\windows\SysWOW64\version.dll [-] 2009-07-14 . 702254574E7E52052DE39408457B7149 . 21504 . . [6.1.7600.16385] .. c:\windows\winsxs\x86_microsoft-windows-version_31bf3856ad364e35_6.1.7600.16385_none_14d4a552b2395165\version.dll . [-] 2009-07-14 . 5A12C364AD1D4FCC0AD0E56DBBC34462 . 16896 . . [6.1.7600.16385] .. c:\windows\SysWOW64\midimap.dll [-] 2009-07-14 . 5A12C364AD1D4FCC0AD0E56DBBC34462 . 16896 . . [6.1.7600.16385] .. c:\windows\winsxs\x86_microsoft-windows-audio-mmecore-other_31bf3856ad364e35_6.1.7600.16385_none_8cd41e2771e37717\midimap.dll . [-] 2009-07-14 . ED6EE83D61EBC683C2CD8E899EA6FEBE . 11776 . . [6.1.7600.16385] .. c:\windows\SysWOW64\rasadhlp.dll [-] 2009-07-14 . ED6EE83D61EBC683C2CD8E899EA6FEBE . 11776 . . [6.1.7600.16385] .. c:\windows\winsxs\wow64_microsoft-windows-rasautodial_31bf3856ad364e35_6.1.7600.16385_none_76239aafb364e805\rasadhlp.dll . (((((((((((((((((((((((((((( Autostartpunkte der Registrierung )))))))))))))))))))))))))))))))))))))))) . . *Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt. REGEDIT4 . [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar] "{7AC3E13B-3BCA-4158-B330-F66DBB03C1B5}"= "c:\program files (x86)\vShare.tv plugin\BarLcher.dll" [2011-09-22 177712] . [HKEY_CLASSES_ROOT\clsid\{7ac3e13b-3bca-4158-b330-f66dbb03c1b5}] [HKEY_CLASSES_ROOT\MyNewsBarLauncher.IE5BarLauncher.1] [HKEY_CLASSES_ROOT\TypeLib\{BB7256DD-EBA9-480B-8441-A00388C2BEC3}] [HKEY_CLASSES_ROOT\MyNewsBarLauncher.IE5BarLauncher] . [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run] "GrooveMonitor"="c:\program files (x86)\Microsoft Office\Office12\GrooveMonitor.exe" [2006-10-26 31016] "InstantBurn"="c:\progra~2\CYBERL~1\INSTAN~1\Win2K\IBurn.exe" [2007-10-26 681256] "CLMLServer"="c:\program files (x86)\CyberLink\Power2Go\CLMLSvc.exe" [2008-07-18 104936] "P2Go_Menu"="c:\program files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" [2008-06-13 210216] "UpdatePDRShortCut"="c:\program files (x86)\CyberLink\DVD Suite\MUITransfer\MUIStartMenu.exe" [2008-10-29 210216] "QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" [2008-05-27 413696] "UpdatePPShortCut"="c:\program files (x86)\CyberLink\PowerProducer\MUITransfer\MUIStartMenu.exe" [2008-06-13 210216] "RemoteControl8"="c:\program files (x86)\CyberLink\PowerDVD8\PDVD8Serv.exe" [2009-07-16 91432] "PDVD8LanguageShortcut"="c:\program files (x86)\CyberLink\PowerDVD8\Language\Language.exe" [2009-04-15 50472] "RemoteControl10"="c:\program files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe" [2010-02-02 87336] "BDRegion"="c:\program files (x86)\Cyberlink\Shared files\brs.exe" [2010-12-29 75048] "Intel AppUp(SM) center"="c:\program files (x86)\Intel\IntelAppStore\bin\serviceManager.lnk" [2011-02-09 1298] "SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2011-06-09 254696] "avgnt"="c:\program files (x86)\Avira\AntiVir Desktop\avgnt.exe" [2011-10-11 258512] "Malwarebytes' Anti-Malware (reboot)"="c:\program files (x86)\Malwarebytes' Anti-Malware\mbam.exe" [2011-08-31 1047208] . c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\ Hotkey.lnk - c:\program files (x86)\Hotkey\Hotkey.exe [2009-9-16 2409472] Logitech SetPoint.lnk - c:\program files\Logitech\SetPoint\SetPoint.exe [2010-9-17 1207312] McAfee Security Scan Plus.lnk - c:\program files (x86)\McAfee Security Scan\2.0.181\SSScheduler.exe [2010-1-15 255536] . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "ConsentPromptBehaviorAdmin"= 5 (0x5) "ConsentPromptBehaviorUser"= 3 (0x3) "EnableUIADesktopToggle"= 0 (0x0) . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32] "aux"=wdmaud.drv . R3 altausb;altausb;c:\windows\system32\DRIVERS\altausb.sys [2009-10-09 15360] R3 McComponentHostService;McAfee Security Scan Component Host Service;c:\program files (x86)\McAfee Security Scan\2.0.181\McCHSvc.exe [2010-01-15 227232] R3 silabenm;Silicon Labs CP210x USB to UART Bridge Serial Port Enumerator Driver;c:\windows\system32\DRIVERS\silabenm.sys [x] R3 silabser;Silicon Labs CP210x USB to UART Bridge Driver;c:\windows\system32\DRIVERS\silabser.sys [x] S1 archlp;archlp;c:\windows\system32\drivers\archlp.sys [2009-08-13 147968] S1 avkmgr;avkmgr;c:\windows\system32\DRIVERS\avkmgr.sys [x] S2 {1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC};Power Control [2011/01/08 22:59];c:\program files (x86)\CyberLink\PowerDVD10\NavFilter\000.fcl [2010-12-29 10:26 146928] S2 AntiVirSchedulerService;Avira Planer;c:\program files (x86)\Avira\AntiVir Desktop\sched.exe [2011-10-11 86224] S2 CLBUDF;CyberLink InstantBurn UDF Filesystem; [x] S2 cpuz133;cpuz133;c:\windows\system32\drivers\cpuz133_x64.sys [x] S2 PowerBiosServer;PowerBiosServer;c:\program files (x86)\Hotkey\PowerBiosServer.exe [2009-08-31 37784] S3 netw5v64;Intel(R) Wireless WiFi Link 5000 Series - Adaptertreiber für Windows Vista 64 Bit;c:\windows\system32\DRIVERS\netw5v64.sys [x] S3 RTCore64;RTCore64;c:\program files (x86)\RMClock\RTCore64.sys [2010-09-15 14352] S3 RTL8167;Realtek 8167 NT-Treiber;c:\windows\system32\DRIVERS\Rt64win7.sys [x] . . Inhalt des "geplante Tasks" Ordners . 2011-11-26 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-619731557-10252568-3936735321-1002Core.job - c:\users\Badger_2\AppData\Local\Google\Update\GoogleUpdate.exe [2010-10-07 05:23] . 2011-11-28 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-619731557-10252568-3936735321-1002UA.job - c:\users\Badger_2\AppData\Local\Google\Update\GoogleUpdate.exe [2010-10-07 05:23] . . --------- x86-64 ----------- . . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "IAAnotif"="c:\program files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe" [2009-06-04 186904] "RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2010-09-15 7981088] "Kernel and Hardware Abstraction Layer"="KHALMNPR.EXE" [2009-06-17 130576] . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] "LoadAppInit_DLLs"=0x0 . ------- Zusätzlicher Suchlauf ------- . uLocal Page = c:\windows\system32\blank.htm uStart Page = hxxp://www.google.com mStart Page = hxxp://www.google.com mLocal Page = c:\windows\SysWOW64\blank.htm IE: Free YouTube Download - c:\users\Badger\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubedownload.htm IE: Nach Microsoft E&xel exportieren - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000 TCP: DhcpNameServer = 192.168.2.1 FF - ProfilePath - c:\users\Badger\AppData\Roaming\Mozilla\Firefox\Profiles\2ilz1vf0.default\ FF - prefs.js: browser.startup.homepage - FF - prefs.js: browser.search.selectedEngine - FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files (x86)\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} . - - - - Entfernte verwaiste Registrierungseinträge - - - - . Wow6432Node-HKLM-Run-amd_dc_opt - c:\program files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe HKLM-Run-SynTPEnh - c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe AddRemove-SLABCOMM&10C4&EA60 - c:\program files (x86)\Silabs\MCU\CP210x\DriverUninstaller.exe VCP CP210x Cardinal\SLABCOMM&10C4&EA60 . . . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\{1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC}] "ImagePath"="\??\c:\program files (x86)\CyberLink\PowerDVD10\NavFilter\000.fcl" . --------------------- Gesperrte Registrierungsschluessel --------------------- . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}] @Denied: (A 2) (Everyone) @="FlashBroker" "LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10l_ActiveX.exe,-101" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation] "Enabled"=dword:00000001 . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10l_ActiveX.exe" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}] @Denied: (A 2) (Everyone) @="Shockwave Flash Object" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10l.ocx" "ThreadingModel"="Apartment" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus] @="0" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID] @="ShockwaveFlash.ShockwaveFlash.10" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10l.ocx, 1" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib] @="{D27CDB6B-AE6D-11cf-96B8-444553540000}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version] @="1.0" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID] @="ShockwaveFlash.ShockwaveFlash" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}] @Denied: (A 2) (Everyone) @="Macromedia Flash Factory Object" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10l.ocx" "ThreadingModel"="Apartment" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID] @="FlashFactory.FlashFactory.1" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10l.ocx, 1" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib] @="{D27CDB6B-AE6D-11cf-96B8-444553540000}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version] @="1.0" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID] @="FlashFactory.FlashFactory" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}] @Denied: (A 2) (Everyone) @="IFlashBroker4" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32] @="{00020424-0000-0000-C000-000000000046}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" "Version"="1.0" . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 "MSCurrentCountry"=dword:000000b5 . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security] @Denied: (Full) (Everyone) . ------------------------ Weitere laufende Prozesse ------------------------ . c:\program files (x86)\Avira\AntiVir Desktop\avguard.exe c:\windows\SysWOW64\lkads.exe c:\windows\SysWOW64\lktsrv.exe c:\program files (x86)\National Instruments\MAX\nimxs.exe c:\program files (x86)\National Instruments\Shared\Security\nidmsrv.exe c:\windows\SysWOW64\nisvcloc.exe c:\program files (x86)\National Instruments\Shared\Tagger\tagsrv.exe c:\program files (x86)\CyberLink\Shared files\RichVideo.exe c:\program files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe c:\program files (x86)\RMClock\RMClock.exe c:\program files (x86)\CyberLink\InstantBurn\Win2K\IBurn.exe c:\program files (x86)\Intel\IntelAppStore\bin\serviceManager.exe . ************************************************************************** . Zeit der Fertigstellung: 2011-11-28 18:14:51 - PC wurde neu gestartet ComboFix-quarantined-files.txt 2011-11-28 17:14 . Vor Suchlauf: 20 Verzeichnis(se), 156.802.498.560 Bytes frei Nach Suchlauf: 22 Verzeichnis(se), 156.157.333.504 Bytes frei . - - End Of File - - C849A254A9890407E638C829263A5A2C Geändert von Badgerli (28.11.2011 um 18:18 Uhr) |
28.11.2011, 18:41 | #25 |
/// Winkelfunktion /// TB-Süch-Tiger™ | System nach Spy.Banker.Gen2 wieder sauber? Downloade dir bitte aswMBR.exe und speichere die Datei auf deinem Desktop.
__________________ Logfiles bitte immer in CODE-Tags posten |
28.11.2011, 19:00 | #26 |
| System nach Spy.Banker.Gen2 wieder sauber?Code:
ATTFilter aswMBR version 0.9.8.986 Copyright(c) 2011 AVAST Software Run date: 2011-11-28 18:45:32 ----------------------------- 18:45:32.545 OS Version: Windows x64 6.1.7600 18:45:32.545 Number of processors: 2 586 0x170A 18:45:32.546 ComputerName: BADGERLI UserName: Badger 18:45:33.794 Initialize success 18:53:43.306 AVAST engine defs: 11112801 18:54:13.493 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1 18:54:13.496 Disk 0 Vendor: TOSHIBA_ GN00 Size: 715404MB BusType: 3 18:54:13.507 Disk 0 MBR read successfully 18:54:13.510 Disk 0 MBR scan 18:54:13.517 Disk 0 Windows 7 default MBR code 18:54:13.521 Service scanning 18:54:14.774 Modules scanning 18:54:14.778 Disk 0 trace - called modules: 18:54:14.818 ntoskrnl.exe CLASSPNP.SYS disk.sys iaStor.sys hal.dll 18:54:14.823 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa80057be060] 18:54:14.827 3 CLASSPNP.SYS[fffff8800120143f] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa800470b050] 18:54:16.299 AVAST engine scan C:\Windows 18:54:22.612 AVAST engine scan C:\Windows\system32 18:56:27.745 AVAST engine scan C:\Windows\system32\drivers 18:56:37.702 AVAST engine scan C:\Users\Badger 18:56:52.705 AVAST engine scan C:\ProgramData 18:57:34.831 Scan finished successfully 18:59:45.445 Disk 0 MBR has been saved successfully to "C:\Users\Badger_2\Desktop\MBR.dat" 18:59:45.452 The log file has been saved successfully to "C:\Users\Badger_2\Desktop\aswMBR.txt" |
28.11.2011, 20:02 | #27 |
/// Winkelfunktion /// TB-Süch-Tiger™ | System nach Spy.Banker.Gen2 wieder sauber? Sieht ok aus. Mach bitte zur Kontrolle Vollscans mit Malwarebytes und SUPERAntiSpyware und poste die Logs. Denk dran beide Tools zu updaten vor dem Scan!! Anschließend über den OnlineScanner von ESET eine zusätzliche Meinung zu holen ist auch nicht verkehrt: ESET Online Scanner
__________________ Logfiles bitte immer in CODE-Tags posten |
29.11.2011, 16:42 | #28 |
| System nach Spy.Banker.Gen2 wieder sauber?Code:
ATTFilter Malwarebytes' Anti-Malware 1.51.2.1300 www.malwarebytes.org Datenbank Version: 8259 Windows 6.1.7600 Internet Explorer 8.0.7600.16385 28.11.2011 21:32:40 mbam-log-2011-11-28 (21-32-40).txt Art des Suchlaufs: Vollständiger Suchlauf (C:\|D:\|) Durchsuchte Objekte: 482100 Laufzeit: 1 Stunde(n), 21 Minute(n), 13 Sekunde(n) Infizierte Speicherprozesse: 0 Infizierte Speichermodule: 0 Infizierte Registrierungsschlüssel: 0 Infizierte Registrierungswerte: 0 Infizierte Dateiobjekte der Registrierung: 0 Infizierte Verzeichnisse: 0 Infizierte Dateien: 0 Infizierte Speicherprozesse: (Keine bösartigen Objekte gefunden) Infizierte Speichermodule: (Keine bösartigen Objekte gefunden) Infizierte Registrierungsschlüssel: (Keine bösartigen Objekte gefunden) Infizierte Registrierungswerte: (Keine bösartigen Objekte gefunden) Infizierte Dateiobjekte der Registrierung: (Keine bösartigen Objekte gefunden) Infizierte Verzeichnisse: (Keine bösartigen Objekte gefunden) Infizierte Dateien: (Keine bösartigen Objekte gefunden) Code:
ATTFilter SUPERAntiSpyware Scan Log hxxp://www.superantispyware.com Generated 11/29/2011 at 12:15 PM Application Version : 5.0.1136 Core Rules Database Version : 7996 Trace Rules Database Version: 5808 Scan type : Complete Scan Total Scan Time : 03:23:13 Operating System Information Windows 7 Professional 64-bit (Build 6.01.7600) UAC On - Limited User Memory items scanned : 536 Memory threats detected : 0 Registry items scanned : 73462 Registry threats detected : 21 File items scanned : 288505 File threats detected : 236 Adware.Tracking Cookie C:\Users\Badger\AppData\Roaming\Microsoft\Windows\Cookies\badger@ad.yieldmanager[2].txt [ /ad.yieldmanager ] C:\Users\Badger\AppData\Roaming\Microsoft\Windows\Cookies\badger@ad3.adfarm1.adition[1].txt [ /ad3.adfarm1.adition ] C:\Users\Badger\AppData\Roaming\Microsoft\Windows\Cookies\badger@adfarm1.adition[2].txt [ /adfarm1.adition ] C:\Users\Badger\AppData\Roaming\Microsoft\Windows\Cookies\badger@arcsoft-totalmedia-theatre.softonic[2].txt [ /arcsoft-totalmedia-theatre.softonic ] C:\Users\Badger\AppData\Roaming\Microsoft\Windows\Cookies\badger@atdmt[1].txt [ /atdmt ] C:\Users\Badger\AppData\Roaming\Microsoft\Windows\Cookies\badger@doubleclick[1].txt [ /doubleclick ] C:\Users\Badger\AppData\Roaming\Microsoft\Windows\Cookies\badger@fastclick[1].txt [ /fastclick ] C:\Users\Badger\AppData\Roaming\Microsoft\Windows\Cookies\badger@im.banner.t-online[1].txt [ /im.banner.t-online ] C:\Users\Badger\AppData\Roaming\Microsoft\Windows\Cookies\badger@interclick[1].txt [ /interclick ] C:\USERS\ANGY\AppData\Roaming\Microsoft\Windows\Cookies\Low\angy@traffictrack[1].txt [ Cookie:angy@traffictrack.de/ ] C:\USERS\ANGY\AppData\Roaming\Microsoft\Windows\Cookies\Low\angy@webmasterplan[2].txt [ Cookie:angy@webmasterplan.com/ ] C:\USERS\ANGY\AppData\Roaming\Microsoft\Windows\Cookies\Low\angy@ad.zanox[1].txt [ Cookie:angy@ad.zanox.com/ ] C:\USERS\ANGY\AppData\Roaming\Microsoft\Windows\Cookies\Low\angy@msnportal.112.2o7[1].txt [ Cookie:angy@msnportal.112.2o7.net/ ] C:\USERS\ANGY\AppData\Roaming\Microsoft\Windows\Cookies\Low\angy@www.zanox-affiliate[1].txt [ Cookie:angy@www.zanox-affiliate.de/ ] C:\USERS\ANGY\AppData\Roaming\Microsoft\Windows\Cookies\Low\angy@studivz.adfarm1.adition[2].txt [ Cookie:angy@studivz.adfarm1.adition.com/ ] C:\USERS\ANGY\AppData\Roaming\Microsoft\Windows\Cookies\Low\angy@mediaplex[1].txt [ Cookie:angy@mediaplex.com/ ] C:\USERS\ANGY\AppData\Roaming\Microsoft\Windows\Cookies\Low\angy@googleads.g.doubleclick[1].txt [ Cookie:angy@googleads.g.doubleclick.net/ ] C:\USERS\ANGY\AppData\Roaming\Microsoft\Windows\Cookies\Low\angy@adviva[1].txt [ Cookie:angy@adviva.net/ ] C:\USERS\ANGY\AppData\Roaming\Microsoft\Windows\Cookies\Low\angy@tracking.quisma[1].txt [ Cookie:angy@tracking.quisma.com/ ] C:\USERS\ANGY\AppData\Roaming\Microsoft\Windows\Cookies\Low\angy@zanox[1].txt [ Cookie:angy@zanox.com/ ] C:\USERS\ANGY\AppData\Roaming\Microsoft\Windows\Cookies\Low\angy@atdmt[1].txt [ Cookie:angy@atdmt.com/ ] C:\USERS\ANGY\AppData\Roaming\Microsoft\Windows\Cookies\Low\angy@adtech[1].txt [ Cookie:angy@adtech.de/ ] C:\USERS\ANGY\AppData\Roaming\Microsoft\Windows\Cookies\Low\angy@c.atdmt[2].txt [ Cookie:angy@c.atdmt.com/ ] C:\USERS\ANGY\AppData\Roaming\Microsoft\Windows\Cookies\Low\angy@zbox.zanox[1].txt [ Cookie:angy@zbox.zanox.com/ ] C:\USERS\ANGY\AppData\Roaming\Microsoft\Windows\Cookies\Low\angy@www6.addfreestats[2].txt [ Cookie:angy@www6.addfreestats.com/cgi-bin ] C:\USERS\ANGY\AppData\Roaming\Microsoft\Windows\Cookies\Low\angy@doubleclick[2].txt [ Cookie:angy@doubleclick.net/ ] C:\USERS\ANGY\AppData\Roaming\Microsoft\Windows\Cookies\Low\angy@apmebf[1].txt [ Cookie:angy@apmebf.com/ ] C:\USERS\ANGY\AppData\Roaming\Microsoft\Windows\Cookies\Low\angy@serving-sys[2].txt [ Cookie:angy@serving-sys.com/ ] C:\USERS\ANGY\AppData\Roaming\Microsoft\Windows\Cookies\Low\angy@adbrite[2].txt [ Cookie:angy@adbrite.com/ ] C:\USERS\ANGY\AppData\Roaming\Microsoft\Windows\Cookies\Low\angy@specificclick[2].txt [ Cookie:angy@specificclick.net/ ] C:\USERS\ANGY\AppData\Roaming\Microsoft\Windows\Cookies\Low\angy@tradedoubler[1].txt [ Cookie:angy@tradedoubler.com/ ] C:\USERS\ANGY\AppData\Roaming\Microsoft\Windows\Cookies\Low\angy@bs.serving-sys[1].txt [ Cookie:angy@bs.serving-sys.com/ ] C:\USERS\ANGY\AppData\Roaming\Microsoft\Windows\Cookies\Low\angy@invitemedia[1].txt [ Cookie:angy@invitemedia.com/ ] C:\USERS\BADGER\Cookies\badger@fastclick[1].txt [ Cookie:badger@fastclick.net/ ] C:\USERS\BADGER\Cookies\badger@doubleclick[1].txt [ Cookie:badger@doubleclick.net/ ] C:\USERS\BADGER\Cookies\badger@interclick[1].txt [ Cookie:badger@interclick.com/ ] C:\USERS\BADGER\Cookies\badger@ad3.adfarm1.adition[1].txt [ Cookie:badger@ad3.adfarm1.adition.com/ ] C:\USERS\BADGER\Cookies\badger@atdmt[1].txt [ Cookie:badger@atdmt.com/ ] C:\USERS\BADGER_2\AppData\Roaming\Microsoft\Windows\Cookies\badger_2@revsci[1].txt [ Cookie:badger_2@revsci.net/ ] C:\USERS\BADGER_2\AppData\Roaming\Microsoft\Windows\Cookies\badger_2@c.atdmt[2].txt [ Cookie:badger_2@c.atdmt.com/ ] C:\USERS\BADGER_2\AppData\Roaming\Microsoft\Windows\Cookies\badger_2@doubleclick[3].txt [ Cookie:badger_2@doubleclick.net/ ] C:\USERS\BADGER_2\AppData\Roaming\Microsoft\Windows\Cookies\badger_2@msnportal.112.2o7[1].txt [ Cookie:badger_2@msnportal.112.2o7.net/ ] C:\USERS\BADGER_2\AppData\Roaming\Microsoft\Windows\Cookies\badger_2@eyewonder[2].txt [ Cookie:badger_2@eyewonder.com/ ] C:\USERS\BADGER_2\AppData\Roaming\Microsoft\Windows\Cookies\badger_2@content.yieldmanager[4].txt [ Cookie:badger_2@content.yieldmanager.com/ak/ ] C:\USERS\BADGER_2\AppData\Roaming\Microsoft\Windows\Cookies\badger_2@statcounter[1].txt [ Cookie:badger_2@statcounter.com/ ] C:\USERS\BADGER_2\AppData\Roaming\Microsoft\Windows\Cookies\badger_2@mediaplex[1].txt [ Cookie:badger_2@mediaplex.com/ ] C:\USERS\BADGER_2\AppData\Roaming\Microsoft\Windows\Cookies\badger_2@ad1.adfarm1.adition[1].txt [ Cookie:badger_2@ad1.adfarm1.adition.com/ ] C:\USERS\BADGER_2\AppData\Roaming\Microsoft\Windows\Cookies\badger_2@media6degrees[1].txt [ Cookie:badger_2@media6degrees.com/ ] C:\USERS\BADGER_2\AppData\Roaming\Microsoft\Windows\Cookies\badger_2@smartadserver[1].txt [ Cookie:badger_2@smartadserver.com/ ] C:\USERS\BADGER_2\AppData\Roaming\Microsoft\Windows\Cookies\badger_2@ad2.adfarm1.adition[2].txt [ Cookie:badger_2@ad2.adfarm1.adition.com/ ] C:\USERS\BADGER_2\AppData\Roaming\Microsoft\Windows\Cookies\badger_2@tradedoubler[3].txt [ Cookie:badger_2@tradedoubler.com/ ] C:\USERS\BADGER_2\AppData\Roaming\Microsoft\Windows\Cookies\badger_2@imrworldwide[3].txt [ Cookie:badger_2@imrworldwide.com/cgi-bin ] C:\USERS\BADGER_2\AppData\Roaming\Microsoft\Windows\Cookies\badger_2@webmasterplan[2].txt [ Cookie:badger_2@webmasterplan.com/ ] C:\USERS\BADGER_2\AppData\Roaming\Microsoft\Windows\Cookies\badger_2@bs.serving-sys[1].txt [ Cookie:badger_2@bs.serving-sys.com/ ] C:\USERS\BADGER_2\AppData\Roaming\Microsoft\Windows\Cookies\badger_2@apmebf[1].txt [ Cookie:badger_2@apmebf.com/ ] C:\USERS\BADGER_2\AppData\Roaming\Microsoft\Windows\Cookies\badger_2@doubleclick[2].txt [ Cookie:badger_2@doubleclick.net/ ] C:\USERS\BADGER_2\AppData\Roaming\Microsoft\Windows\Cookies\badger_2@hotlog[1].txt [ Cookie:badger_2@hotlog.ru/ ] C:\USERS\BADGER_2\AppData\Roaming\Microsoft\Windows\Cookies\badger_2@ad3.adfarm1.adition[3].txt [ Cookie:badger_2@ad3.adfarm1.adition.com/ ] C:\USERS\BADGER_2\AppData\Roaming\Microsoft\Windows\Cookies\badger_2@leetmedia[1].txt [ Cookie:badger_2@leetmedia.com/ ] C:\USERS\BADGER_2\AppData\Roaming\Microsoft\Windows\Cookies\badger_2@ad4.adfarm1.adition[2].txt [ Cookie:badger_2@ad4.adfarm1.adition.com/ ] C:\USERS\BADGER_2\AppData\Roaming\Microsoft\Windows\Cookies\badger_2@sevenoneintermedia.112.2o7[1].txt [ Cookie:badger_2@sevenoneintermedia.112.2o7.net/ ] C:\USERS\BADGER_2\AppData\Roaming\Microsoft\Windows\Cookies\badger_2@rambler[1].txt [ Cookie:badger_2@rambler.ru/ ] C:\USERS\BADGER_2\AppData\Roaming\Microsoft\Windows\Cookies\badger_2@content.yieldmanager[3].txt [ Cookie:badger_2@content.yieldmanager.com/ ] C:\USERS\BADGER_2\AppData\Roaming\Microsoft\Windows\Cookies\badger_2@atdmt[2].txt [ Cookie:badger_2@atdmt.com/ ] C:\USERS\BADGER_2\AppData\Roaming\Microsoft\Windows\Cookies\badger_2@ww251.smartadserver[1].txt [ Cookie:badger_2@ww251.smartadserver.com/ ] C:\USERS\BADGER_2\AppData\Roaming\Microsoft\Windows\Cookies\badger_2@ad.yieldmanager[1].txt [ Cookie:badger_2@ad.yieldmanager.com/ ] C:\USERS\BADGER_2\AppData\Roaming\Microsoft\Windows\Cookies\badger_2@fastclick[1].txt [ Cookie:badger_2@fastclick.net/ ] C:\USERS\BADGER_2\AppData\Roaming\Microsoft\Windows\Cookies\badger_2@invitemedia[1].txt [ Cookie:badger_2@invitemedia.com/ ] C:\USERS\BADGER_2\AppData\Roaming\Microsoft\Windows\Cookies\badger_2@adx.chip[1].txt [ Cookie:badger_2@adx.chip.de/ ] C:\USERS\BADGER_2\AppData\Roaming\Microsoft\Windows\Cookies\badger_2@specificclick[1].txt [ Cookie:badger_2@specificclick.net/ ] C:\USERS\BADGER_2\AppData\Roaming\Microsoft\Windows\Cookies\Low\badger_2@c.atdmt[2].txt [ Cookie:badger_2@c.atdmt.com/ ] C:\USERS\BADGER_2\AppData\Roaming\Microsoft\Windows\Cookies\Low\badger_2@doubleclick[1].txt [ Cookie:badger_2@doubleclick.net/ ] C:\USERS\BADGER_2\AppData\Roaming\Microsoft\Windows\Cookies\Low\badger_2@msnportal.112.2o7[1].txt [ Cookie:badger_2@msnportal.112.2o7.net/ ] C:\USERS\BADGER_2\AppData\Roaming\Microsoft\Windows\Cookies\Low\badger_2@statcounter[1].txt [ Cookie:badger_2@statcounter.com/ ] C:\USERS\BADGER_2\AppData\Roaming\Microsoft\Windows\Cookies\Low\badger_2@mediaplex[1].txt [ Cookie:badger_2@mediaplex.com/ ] C:\USERS\BADGER_2\AppData\Roaming\Microsoft\Windows\Cookies\Low\badger_2@media6degrees[1].txt [ Cookie:badger_2@media6degrees.com/ ] C:\USERS\BADGER_2\AppData\Roaming\Microsoft\Windows\Cookies\Low\badger_2@smartadserver[1].txt [ Cookie:badger_2@smartadserver.com/ ] C:\USERS\BADGER_2\AppData\Roaming\Microsoft\Windows\Cookies\Low\badger_2@tradedoubler[2].txt [ Cookie:badger_2@tradedoubler.com/ ] C:\USERS\BADGER_2\AppData\Roaming\Microsoft\Windows\Cookies\Low\badger_2@imrworldwide[2].txt [ Cookie:badger_2@imrworldwide.com/cgi-bin ] C:\USERS\BADGER_2\AppData\Roaming\Microsoft\Windows\Cookies\Low\badger_2@webmasterplan[2].txt [ Cookie:badger_2@webmasterplan.com/ ] C:\USERS\BADGER_2\AppData\Roaming\Microsoft\Windows\Cookies\Low\badger_2@bs.serving-sys[1].txt [ Cookie:badger_2@bs.serving-sys.com/ ] C:\USERS\BADGER_2\AppData\Roaming\Microsoft\Windows\Cookies\Low\badger_2@apmebf[1].txt [ Cookie:badger_2@apmebf.com/ ] C:\USERS\BADGER_2\AppData\Roaming\Microsoft\Windows\Cookies\Low\badger_2@hotlog[1].txt [ Cookie:badger_2@hotlog.ru/ ] C:\USERS\BADGER_2\AppData\Roaming\Microsoft\Windows\Cookies\Low\badger_2@leetmedia[1].txt [ Cookie:badger_2@leetmedia.com/ ] C:\USERS\BADGER_2\AppData\Roaming\Microsoft\Windows\Cookies\Low\badger_2@rambler[1].txt [ Cookie:badger_2@rambler.ru/ ] C:\USERS\BADGER_2\AppData\Roaming\Microsoft\Windows\Cookies\Low\badger_2@content.yieldmanager[1].txt [ Cookie:badger_2@content.yieldmanager.com/ ] C:\USERS\BADGER_2\AppData\Roaming\Microsoft\Windows\Cookies\Low\badger_2@atdmt[2].txt [ Cookie:badger_2@atdmt.com/ ] C:\USERS\BADGER_2\AppData\Roaming\Microsoft\Windows\Cookies\Low\badger_2@ww251.smartadserver[1].txt [ Cookie:badger_2@ww251.smartadserver.com/ ] C:\USERS\BADGER_2\AppData\Roaming\Microsoft\Windows\Cookies\Low\badger_2@ad.yieldmanager[1].txt [ Cookie:badger_2@ad.yieldmanager.com/ ] C:\USERS\BADGER_2\AppData\Roaming\Microsoft\Windows\Cookies\Low\badger_2@fastclick[1].txt [ Cookie:badger_2@fastclick.net/ ] C:\USERS\BADGER_2\Cookies\badger_2@revsci[1].txt [ Cookie:badger_2@revsci.net/ ] C:\USERS\BADGER_2\Cookies\badger_2@c.atdmt[2].txt [ Cookie:badger_2@c.atdmt.com/ ] C:\USERS\BADGER_2\Cookies\badger_2@doubleclick[3].txt [ Cookie:badger_2@doubleclick.net/ ] C:\USERS\BADGER_2\Cookies\badger_2@msnportal.112.2o7[1].txt [ Cookie:badger_2@msnportal.112.2o7.net/ ] C:\USERS\BADGER_2\Cookies\badger_2@eyewonder[2].txt [ Cookie:badger_2@eyewonder.com/ ] C:\USERS\BADGER_2\Cookies\badger_2@content.yieldmanager[4].txt [ Cookie:badger_2@content.yieldmanager.com/ak/ ] C:\USERS\BADGER_2\Cookies\badger_2@statcounter[1].txt [ Cookie:badger_2@statcounter.com/ ] C:\USERS\BADGER_2\Cookies\badger_2@mediaplex[1].txt [ Cookie:badger_2@mediaplex.com/ ] C:\USERS\BADGER_2\Cookies\badger_2@ad1.adfarm1.adition[1].txt [ Cookie:badger_2@ad1.adfarm1.adition.com/ ] C:\USERS\BADGER_2\Cookies\badger_2@media6degrees[1].txt [ Cookie:badger_2@media6degrees.com/ ] C:\USERS\BADGER_2\Cookies\badger_2@smartadserver[1].txt [ Cookie:badger_2@smartadserver.com/ ] C:\USERS\BADGER_2\Cookies\badger_2@ad2.adfarm1.adition[2].txt [ Cookie:badger_2@ad2.adfarm1.adition.com/ ] C:\USERS\BADGER_2\Cookies\badger_2@tradedoubler[3].txt [ Cookie:badger_2@tradedoubler.com/ ] C:\USERS\BADGER_2\Cookies\badger_2@imrworldwide[3].txt [ Cookie:badger_2@imrworldwide.com/cgi-bin ] C:\USERS\BADGER_2\Cookies\badger_2@webmasterplan[2].txt [ Cookie:badger_2@webmasterplan.com/ ] C:\USERS\BADGER_2\Cookies\badger_2@bs.serving-sys[1].txt [ Cookie:badger_2@bs.serving-sys.com/ ] C:\USERS\BADGER_2\Cookies\badger_2@apmebf[1].txt [ Cookie:badger_2@apmebf.com/ ] C:\USERS\BADGER_2\Cookies\badger_2@doubleclick[2].txt [ Cookie:badger_2@doubleclick.net/ ] C:\USERS\BADGER_2\Cookies\badger_2@hotlog[1].txt [ Cookie:badger_2@hotlog.ru/ ] C:\USERS\BADGER_2\Cookies\badger_2@ad3.adfarm1.adition[3].txt [ Cookie:badger_2@ad3.adfarm1.adition.com/ ] C:\USERS\BADGER_2\Cookies\badger_2@leetmedia[1].txt [ Cookie:badger_2@leetmedia.com/ ] C:\USERS\BADGER_2\Cookies\badger_2@ad4.adfarm1.adition[2].txt [ Cookie:badger_2@ad4.adfarm1.adition.com/ ] C:\USERS\BADGER_2\Cookies\badger_2@sevenoneintermedia.112.2o7[1].txt [ Cookie:badger_2@sevenoneintermedia.112.2o7.net/ ] C:\USERS\BADGER_2\Cookies\badger_2@rambler[1].txt [ Cookie:badger_2@rambler.ru/ ] C:\USERS\BADGER_2\Cookies\badger_2@content.yieldmanager[3].txt [ Cookie:badger_2@content.yieldmanager.com/ ] C:\USERS\BADGER_2\Cookies\badger_2@atdmt[2].txt [ Cookie:badger_2@atdmt.com/ ] C:\USERS\BADGER_2\Cookies\badger_2@ww251.smartadserver[1].txt [ Cookie:badger_2@ww251.smartadserver.com/ ] C:\USERS\BADGER_2\Cookies\badger_2@ad.yieldmanager[1].txt [ Cookie:badger_2@ad.yieldmanager.com/ ] C:\USERS\BADGER_2\Cookies\badger_2@fastclick[1].txt [ Cookie:badger_2@fastclick.net/ ] C:\USERS\BADGER_2\Cookies\badger_2@invitemedia[1].txt [ Cookie:badger_2@invitemedia.com/ ] C:\USERS\BADGER_2\Cookies\badger_2@adx.chip[1].txt [ Cookie:badger_2@adx.chip.de/ ] C:\USERS\BADGER_2\Cookies\badger_2@specificclick[1].txt [ Cookie:badger_2@specificclick.net/ ] C:\USERS\ANGY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\ANGY@IMRWORLDWIDE[2].TXT [ /IMRWORLDWIDE ] C:\USERS\ANGY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\ANGY@AD2.ADFARM1.ADITION[1].TXT [ /AD2.ADFARM1.ADITION ] C:\USERS\ANGY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\ANGY@ADFARM1.ADITION[2].TXT [ /ADFARM1.ADITION ] C:\USERS\ANGY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\ANGY@ADS.CLUBPORTAL[1].TXT [ /ADS.CLUBPORTAL ] .doubleclick.net [ C:\USERS\BADGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\2ILZ1VF0.DEFAULT\COOKIES.SQLITE ] .ehg-techtarget.hitbox.com [ C:\USERS\BADGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\2ILZ1VF0.DEFAULT\COOKIES.SQLITE ] .hitbox.com [ C:\USERS\BADGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\2ILZ1VF0.DEFAULT\COOKIES.SQLITE ] .tradedoubler.com [ C:\USERS\BADGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\2ILZ1VF0.DEFAULT\COOKIES.SQLITE ] .tradedoubler.com [ C:\USERS\BADGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\2ILZ1VF0.DEFAULT\COOKIES.SQLITE ] .traffictrack.de [ C:\USERS\BADGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\2ILZ1VF0.DEFAULT\COOKIES.SQLITE ] .yadro.ru [ C:\USERS\BADGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\2ILZ1VF0.DEFAULT\COOKIES.SQLITE ] .kontera.com [ C:\USERS\BADGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\2ILZ1VF0.DEFAULT\COOKIES.SQLITE ] .collective-media.net [ C:\USERS\BADGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\2ILZ1VF0.DEFAULT\COOKIES.SQLITE ] ad.yieldmanager.com [ C:\USERS\BADGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\2ILZ1VF0.DEFAULT\COOKIES.SQLITE ] ad.yieldmanager.com [ C:\USERS\BADGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\2ILZ1VF0.DEFAULT\COOKIES.SQLITE ] ad.yieldmanager.com [ C:\USERS\BADGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\2ILZ1VF0.DEFAULT\COOKIES.SQLITE ] .adxpose.com [ C:\USERS\BADGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\2ILZ1VF0.DEFAULT\COOKIES.SQLITE ] .adfarm1.adition.com [ C:\USERS\BADGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\2ILZ1VF0.DEFAULT\COOKIES.SQLITE ] studivz.adfarm1.adition.com [ C:\USERS\BADGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\2ILZ1VF0.DEFAULT\COOKIES.SQLITE ] .smartadserver.com [ C:\USERS\BADGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\2ILZ1VF0.DEFAULT\COOKIES.SQLITE ] .smartadserver.com [ C:\USERS\BADGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\2ILZ1VF0.DEFAULT\COOKIES.SQLITE ] .smartadserver.com [ C:\USERS\BADGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\2ILZ1VF0.DEFAULT\COOKIES.SQLITE ] .smartadserver.com [ C:\USERS\BADGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\2ILZ1VF0.DEFAULT\COOKIES.SQLITE ] ad.yieldmanager.com [ C:\USERS\BADGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\2ILZ1VF0.DEFAULT\COOKIES.SQLITE ] ad2.adfarm1.adition.com [ C:\USERS\BADGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\2ILZ1VF0.DEFAULT\COOKIES.SQLITE ] .atdmt.com [ C:\USERS\BADGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\2ILZ1VF0.DEFAULT\COOKIES.SQLITE ] .atdmt.com [ C:\USERS\BADGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\2ILZ1VF0.DEFAULT\COOKIES.SQLITE ] ad3.adfarm1.adition.com [ C:\USERS\BADGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\2ILZ1VF0.DEFAULT\COOKIES.SQLITE ] .e-2dj6wnmiuhcpsho.stats.esomniture.com [ C:\USERS\BADGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\2ILZ1VF0.DEFAULT\COOKIES.SQLITE ] adx.chip.de [ C:\USERS\BADGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\2ILZ1VF0.DEFAULT\COOKIES.SQLITE ] .apmebf.com [ C:\USERS\BADGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\2ILZ1VF0.DEFAULT\COOKIES.SQLITE ] .mediaplex.com [ C:\USERS\BADGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\2ILZ1VF0.DEFAULT\COOKIES.SQLITE ] .specificclick.net [ C:\USERS\BADGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\2ILZ1VF0.DEFAULT\COOKIES.SQLITE ] .specificclick.net [ C:\USERS\BADGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\2ILZ1VF0.DEFAULT\COOKIES.SQLITE ] .specificclick.net [ C:\USERS\BADGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\2ILZ1VF0.DEFAULT\COOKIES.SQLITE ] .specificclick.net [ C:\USERS\BADGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\2ILZ1VF0.DEFAULT\COOKIES.SQLITE ] .specificclick.net [ C:\USERS\BADGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\2ILZ1VF0.DEFAULT\COOKIES.SQLITE ] .specificclick.net [ C:\USERS\BADGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\2ILZ1VF0.DEFAULT\COOKIES.SQLITE ] .specificclick.net [ C:\USERS\BADGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\2ILZ1VF0.DEFAULT\COOKIES.SQLITE ] .adviva.net [ C:\USERS\BADGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\2ILZ1VF0.DEFAULT\COOKIES.SQLITE ] .im.banner.t-online.de [ C:\USERS\BADGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\2ILZ1VF0.DEFAULT\COOKIES.SQLITE ] .advertising.com [ C:\USERS\BADGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\2ILZ1VF0.DEFAULT\COOKIES.SQLITE ] .tradedoubler.com [ C:\USERS\BADGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\2ILZ1VF0.DEFAULT\COOKIES.SQLITE ] .adtech.de [ C:\USERS\BADGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\2ILZ1VF0.DEFAULT\COOKIES.SQLITE ] .questionmarket.com [ C:\USERS\BADGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\2ILZ1VF0.DEFAULT\COOKIES.SQLITE ] .questionmarket.com [ C:\USERS\BADGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\2ILZ1VF0.DEFAULT\COOKIES.SQLITE ] .discountfan.de [ C:\USERS\BADGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\2ILZ1VF0.DEFAULT\COOKIES.SQLITE ] .discountfan.de [ C:\USERS\BADGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\2ILZ1VF0.DEFAULT\COOKIES.SQLITE ] .4stats.de [ C:\USERS\BADGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\2ILZ1VF0.DEFAULT\COOKIES.SQLITE ] adfarm1.adition.com [ C:\USERS\BADGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\2ILZ1VF0.DEFAULT\COOKIES.SQLITE ] .ads.quartermedia.de [ C:\USERS\BADGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\2ILZ1VF0.DEFAULT\COOKIES.SQLITE ] .ads.quartermedia.de [ C:\USERS\BADGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\2ILZ1VF0.DEFAULT\COOKIES.SQLITE ] .ads.quartermedia.de [ C:\USERS\BADGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\2ILZ1VF0.DEFAULT\COOKIES.SQLITE ] .ads.quartermedia.de [ C:\USERS\BADGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\2ILZ1VF0.DEFAULT\COOKIES.SQLITE ] .imrworldwide.com [ C:\USERS\BADGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\2ILZ1VF0.DEFAULT\COOKIES.SQLITE ] .imrworldwide.com [ C:\USERS\BADGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\2ILZ1VF0.DEFAULT\COOKIES.SQLITE ] ad.adserver01.de [ C:\USERS\BADGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\2ILZ1VF0.DEFAULT\COOKIES.SQLITE ] .media6degrees.com [ C:\USERS\BADGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\2ILZ1VF0.DEFAULT\COOKIES.SQLITE ] .media6degrees.com [ C:\USERS\BADGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\2ILZ1VF0.DEFAULT\COOKIES.SQLITE ] .media6degrees.com [ C:\USERS\BADGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\2ILZ1VF0.DEFAULT\COOKIES.SQLITE ] .webmasterplan.com [ C:\USERS\BADGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\2ILZ1VF0.DEFAULT\COOKIES.SQLITE ] .traffictrack.de [ C:\USERS\BADGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\2ILZ1VF0.DEFAULT\COOKIES.SQLITE ] www6.addfreestats.com [ C:\USERS\BADGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\2ILZ1VF0.DEFAULT\COOKIES.SQLITE ] .bs.serving-sys.com [ C:\USERS\BADGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\2ILZ1VF0.DEFAULT\COOKIES.SQLITE ] .serving-sys.com [ C:\USERS\BADGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\2ILZ1VF0.DEFAULT\COOKIES.SQLITE ] .serving-sys.com [ C:\USERS\BADGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\2ILZ1VF0.DEFAULT\COOKIES.SQLITE ] .serving-sys.com [ C:\USERS\BADGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\2ILZ1VF0.DEFAULT\COOKIES.SQLITE ] .serving-sys.com [ C:\USERS\BADGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\2ILZ1VF0.DEFAULT\COOKIES.SQLITE ] .serving-sys.com [ C:\USERS\BADGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\2ILZ1VF0.DEFAULT\COOKIES.SQLITE ] .serving-sys.com [ C:\USERS\BADGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\2ILZ1VF0.DEFAULT\COOKIES.SQLITE ] .serving-sys.com [ C:\USERS\BADGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\2ILZ1VF0.DEFAULT\COOKIES.SQLITE ] .specificclick.net [ C:\USERS\BADGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\2ILZ1VF0.DEFAULT\COOKIES.SQLITE ] .secmedia.de [ C:\USERS\BADGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\2ILZ1VF0.DEFAULT\COOKIES.SQLITE ] .mediaplex.com [ C:\USERS\BADGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\2ILZ1VF0.DEFAULT\COOKIES.SQLITE ] .apmebf.com [ C:\USERS\BADGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\2ILZ1VF0.DEFAULT\COOKIES.SQLITE ] .clicksor.com [ C:\USERS\BADGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\2ILZ1VF0.DEFAULT\COOKIES.SQLITE ] .clicksor.com [ C:\USERS\BADGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\2ILZ1VF0.DEFAULT\COOKIES.SQLITE ] ad.adition.net [ C:\USERS\BADGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\2ILZ1VF0.DEFAULT\COOKIES.SQLITE ] ad.adition.net [ C:\USERS\BADGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\2ILZ1VF0.DEFAULT\COOKIES.SQLITE ] ad1.adfarm1.adition.com [ C:\USERS\BADGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\2ILZ1VF0.DEFAULT\COOKIES.SQLITE ] .ru4.com [ C:\USERS\BADGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\2ILZ1VF0.DEFAULT\COOKIES.SQLITE ] .ru4.com [ C:\USERS\BADGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\2ILZ1VF0.DEFAULT\COOKIES.SQLITE ] .media6degrees.com [ C:\USERS\BADGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\2ILZ1VF0.DEFAULT\COOKIES.SQLITE ] user.lucidmedia.com [ C:\USERS\BADGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\2ILZ1VF0.DEFAULT\COOKIES.SQLITE ] ad.yieldmanager.com [ C:\USERS\BADGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\2ILZ1VF0.DEFAULT\COOKIES.SQLITE ] .ad.adnet.de [ C:\USERS\BADGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\2ILZ1VF0.DEFAULT\COOKIES.SQLITE ] aka-cdn-ns.adtech.de [ C:\USERS\BADGER_2\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\33MVTAQG ] delivery.ibanner.de [ C:\USERS\BADGER_2\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\33MVTAQG ] media.mtvnservices.com [ C:\USERS\BADGER_2\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\33MVTAQG ] C:\USERS\BADGER_2\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\BADGER_2@AD.AD-SRV[2].TXT [ /AD.AD-SRV ] C:\USERS\BADGER_2\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\BADGER_2@ADFARM1.ADITION[1].TXT [ /ADFARM1.ADITION ] C:\USERS\BADGER_2\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\BADGER_2@SERVING-SYS[2].TXT [ /SERVING-SYS ] C:\USERS\BADGER_2\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\BADGER_2@MYWEBSEARCH[1].TXT [ /MYWEBSEARCH ] C:\USERS\BADGER_2\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\BADGER_2@IMRWORLDWIDE[2].TXT [ /IMRWORLDWIDE ] C:\USERS\BADGER_2\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\BADGER_2@ADS.CREATIVE-SERVING[2].TXT [ /ADS.CREATIVE-SERVING ] C:\USERS\BADGER_2\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\BADGER_2@INTERCLICK[1].TXT [ /INTERCLICK ] C:\USERS\BADGER_2\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\BADGER_2@ZANOX-AFFILIATE[1].TXT [ /ZANOX-AFFILIATE ] C:\USERS\BADGER_2\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\BADGER_2@TRADEDOUBLER[1].TXT [ /TRADEDOUBLER ] C:\USERS\BADGER_2\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\BADGER_2@AD4.ADFARM1.ADITION[1].TXT [ /AD4.ADFARM1.ADITION ] C:\USERS\BADGER_2\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\BADGER_2@ZANOX[2].TXT [ /ZANOX ] C:\USERS\BADGER_2\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\BADGER_2@TRADEDOUBLER[2].TXT [ /TRADEDOUBLER ] C:\USERS\BADGER_2\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\BADGER_2@TRACKING.MINDSHARE[1].TXT [ /TRACKING.MINDSHARE ] C:\USERS\BADGER_2\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\BADGER_2@ADFARM1.ADITION[2].TXT [ /ADFARM1.ADITION ] C:\USERS\BADGER_2\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\BADGER_2@CONTENT.YIELDMANAGER[1].TXT [ /CONTENT.YIELDMANAGER ] C:\USERS\BADGER_2\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\BADGER_2@AD3.ADFARM1.ADITION[1].TXT [ /AD3.ADFARM1.ADITION ] C:\USERS\BADGER_2\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\BADGER_2@ATWOLA[1].TXT [ /ATWOLA ] C:\USERS\BADGER_2\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\BADGER_2@AD.AD-SRV[2].TXT [ /AD.AD-SRV ] C:\USERS\BADGER_2\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\BADGER_2@SERVING-SYS[2].TXT [ /SERVING-SYS ] C:\USERS\BADGER_2\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\BADGER_2@MYWEBSEARCH[1].TXT [ /MYWEBSEARCH ] C:\USERS\BADGER_2\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\BADGER_2@INTERCLICK[1].TXT [ /INTERCLICK ] C:\USERS\BADGER_2\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\BADGER_2@ZANOX-AFFILIATE[1].TXT [ /ZANOX-AFFILIATE ] C:\USERS\BADGER_2\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\BADGER_2@AD2.ADFARM1.ADITION[1].TXT [ /AD2.ADFARM1.ADITION ] C:\USERS\BADGER_2\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\BADGER_2@ZANOX[2].TXT [ /ZANOX ] C:\USERS\BADGER_2\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\BADGER_2@ADFARM1.ADITION[2].TXT [ /ADFARM1.ADITION ] Adware.ActivShopper (x86) HKLM\Software\Classes\CLSID\{7AC3E13B-3BCA-4158-B330-F66DBB03C1B5} (x86) HKCR\CLSID\{7AC3E13B-3BCA-4158-B330-F66DBB03C1B5} (x86) HKCR\CLSID\{7AC3E13B-3BCA-4158-B330-F66DBB03C1B5} (x86) HKCR\CLSID\{7AC3E13B-3BCA-4158-B330-F66DBB03C1B5}\InprocServer32 (x86) HKCR\CLSID\{7AC3E13B-3BCA-4158-B330-F66DBB03C1B5}\InprocServer32#ThreadingModel (x86) HKCR\CLSID\{7AC3E13B-3BCA-4158-B330-F66DBB03C1B5}\ProgID (x86) HKCR\CLSID\{7AC3E13B-3BCA-4158-B330-F66DBB03C1B5}\Programmable (x86) HKCR\CLSID\{7AC3E13B-3BCA-4158-B330-F66DBB03C1B5}\TypeLib (x86) HKCR\CLSID\{7AC3E13B-3BCA-4158-B330-F66DBB03C1B5}\VersionIndependentProgID (x86) HKCR\MyNewsBarLauncher.IE5BarLauncher.1 (x86) HKCR\MyNewsBarLauncher.IE5BarLauncher (x86) HKCR\TypeLib\{BB7256DD-EBA9-480B-8441-A00388C2BEC3} (x86) HKLM\Software\Microsoft\Internet Explorer\Toolbar#{7AC3E13B-3BCA-4158-B330-F66DBB03C1B5} (x86) HKCR\Interface\{3D782BB2-F2A5-11D3-BF4C-000000000000} (x86) HKCR\Interface\{3D782BB2-F2A5-11D3-BF4C-000000000000}\ProxyStubClsid32 (x86) HKCR\Interface\{3D782BB2-F2A5-11D3-BF4C-000000000000}\TypeLib (x86) HKCR\Interface\{3D782BB2-F2A5-11D3-BF4C-000000000000}\TypeLib#Version (x86) HKCR\Interface\{DB1F5554-582C-4F53-82CC-458D2C04A2F1} (x86) HKCR\Interface\{DB1F5554-582C-4F53-82CC-458D2C04A2F1}\ProxyStubClsid32 (x86) HKCR\Interface\{DB1F5554-582C-4F53-82CC-458D2C04A2F1}\TypeLib (x86) HKCR\Interface\{DB1F5554-582C-4F53-82CC-458D2C04A2F1}\TypeLib#Version Code:
ATTFilter ESETSmartInstaller@High as downloader log: all ok # version=7 # OnlineScannerApp.exe=1.0.0.1 # OnlineScanner.ocx=1.0.0.6583 # api_version=3.0.2 # EOSSerial=21628609aa0aec4aa5e28c152566ff91 # end=finished # remove_checked=false # archives_checked=true # unwanted_checked=true # unsafe_checked=false # antistealth_checked=true # utc_time=2011-11-26 05:47:30 # local_time=2011-11-26 06:47:30 (+0100, Mitteleuropäische Zeit) # country="Germany" # lang=1033 # osver=6.1.7600 NT # compatibility_mode=1792 16777215 100 0 3399907 3399907 0 0 # compatibility_mode=5893 16776574 100 94 36967324 74721349 0 0 # compatibility_mode=8192 67108863 100 0 3915 3915 0 0 # scanned=310119 # found=7 # cleaned=0 # scan_time=13972 C:\Program Files (x86)\Win7codecs\Tools\Settings32.exe Win32/Packed.Autoit.C.Gen application (unable to clean) 00000000000000000000000000000000 I C:\ProgramData\Win7codecs\{6B010B4A-EBD4-491C-A6A9-BC1063E2A432}\Win7codecs.msi Win32/Packed.Autoit.C.Gen application (unable to clean) 00000000000000000000000000000000 I C:\Users\All Users\Win7codecs\{6B010B4A-EBD4-491C-A6A9-BC1063E2A432}\Win7codecs.msi Win32/Packed.Autoit.C.Gen application (unable to clean) 00000000000000000000000000000000 I C:\Windows\Installer\315564.msi Win32/Packed.Autoit.C.Gen application (unable to clean) 00000000000000000000000000000000 I D:\Downloads\Alte Festplatte\Downloads\gbsetup120.exe Win32/Induc virus (unable to clean) 00000000000000000000000000000000 I D:\Downloads\Alte Festplatte\Downloads\SoftonicDownloader22948.exe a variant of Win32/SoftonicDownloader.A application (unable to clean) 00000000000000000000000000000000 I D:\Downloads\Software\SoftonicDownloader92616.exe a variant of Win32/SoftonicDownloader.A application (unable to clean) 00000000000000000000000000000000 I ESETSmartInstaller@High as downloader log: all ok # version=7 # OnlineScannerApp.exe=1.0.0.1 # OnlineScanner.ocx=1.0.0.6583 # api_version=3.0.2 # EOSSerial=21628609aa0aec4aa5e28c152566ff91 # end=finished # remove_checked=false # archives_checked=true # unwanted_checked=true # unsafe_checked=false # antistealth_checked=true # utc_time=2011-11-29 03:34:30 # local_time=2011-11-29 04:34:30 (+0100, Mitteleuropäische Zeit) # country="Germany" # lang=1033 # osver=6.1.7600 NT # compatibility_mode=1792 16777215 100 0 3653102 3653102 0 0 # compatibility_mode=5893 16776574 100 94 37220519 74974544 0 0 # compatibility_mode=8192 67108863 100 0 257110 257110 0 0 # scanned=256112 # found=6 # cleaned=0 # scan_time=11997 C:\_OTL\MovedFiles\11272011_123629\C_Program Files (x86)\Win7codecs\Tools\Settings32.exe Win32/Packed.Autoit.C.Gen application (unable to clean) 00000000000000000000000000000000 I C:\_OTL\MovedFiles\11272011_123629\C_ProgramData\Win7codecs\{6B010B4A-EBD4-491C-A6A9-BC1063E2A432}\Win7codecs.msi Win32/Packed.Autoit.C.Gen application (unable to clean) 00000000000000000000000000000000 I C:\_OTL\MovedFiles\11272011_123629\C_Windows\Installer\315564.msi Win32/Packed.Autoit.C.Gen application (unable to clean) 00000000000000000000000000000000 I C:\_OTL\MovedFiles\11272011_123629\D_Downloads\Software\SoftonicDownloader92616.exe a variant of Win32/SoftonicDownloader.A application (unable to clean) 00000000000000000000000000000000 I D:\Downloads\Alte Festplatte\Downloads\gbsetup120.exe Win32/Induc virus (unable to clean) 00000000000000000000000000000000 I D:\Downloads\Alte Festplatte\Downloads\SoftonicDownloader22948.exe a variant of Win32/SoftonicDownloader.A application (unable to clean) 00000000000000000000000000000000 I |
29.11.2011, 17:23 | #29 |
/// Winkelfunktion /// TB-Süch-Tiger™ | System nach Spy.Banker.Gen2 wieder sauber? Überreste und ein paar Cookies. Kann alles weg. Rechner ansonsten wieder im Lot?
__________________ Logfiles bitte immer in CODE-Tags posten |
29.11.2011, 21:35 | #30 |
| System nach Spy.Banker.Gen2 wieder sauber? Bis gerade eben wollte ich ja schreiben, doch gerade beim Systemstart hatte ich nen schwarzen Bilschirm mit nem Fenster, dass mein Windows möglicherweise nicht legal sei, da es nicht aktiviert wurde (nutze das System seit nem knappen Jahr von daher wundert mich der Zeitpunkt)... Hatte nur die Möglichkeit auf OK zu klicken, danach kam dann "Windows wurde aktiviert" und alles läuft normal... Nur Windows Update nicht (sagt immer, dass es nicht gestartet werden kann, weil der Dienst nicht gestartet sei, was er aber ist...) Können aber vom Rest völlig unabhängige Probleme sein... Den Softonic Downloader kann ich nach dem Laden der Software auch bedenkenlos zernichten und verstören, richtig? Danke für deine Mühen auf jeden Fall schonmal |
Themen zu System nach Spy.Banker.Gen2 wieder sauber? |
alarm, appdata, avira, beendet, combofix, datei, dauernd, einträge, erfolglos, firefox, gelöscht, guten, hilfe!, laufe, laufen, log, löschen, namen, neu, ordner, rechner, registry, roaming, runtergeladen, scan, scanner, seitdem, seite, seiten, sofort, start, system, troja, trojaner, versuch, versucht, virenscanner, öffnen, öffnet |