| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: GVU Trojaner, ukash usw.Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
03.10.2012, 19:13
| #16 |
| /// Winkelfunktion /// TB-Süch-Tiger™   |  GVU Trojaner, ukash usw. Bitte nun (im normalen Windows-Modus) dieses Tool von Kaspersky (TDSS-Killer) ausführen und das Log posten Anleitung und Downloadlink hier => http://www.trojaner-board.de/82358-t...entfernen.html Hinweis: Bitte den Virenscanner abstellen bevor du den TDSS-Killer ausführst, denn v.a. Avira meldet im TDSS-Tool oft einen Fehalalrm! Das Tool so einstellen wie unten im Bild angegeben - klick auf change parameters und setze die Haken wie im folgenden Screenshot abgebildet, Dann auf Start Scan klicken und wenn es durch ist auf den Button Report klicken um das Log anzuzeigen. Dieses bitte komplett posten. Wenn du das Log nicht findest oder den Inhalt kopieren und in dein Posting übertragen kannst, dann schau bitte direkt auf deiner Windows-Systempartition ( meistens Laufwerk C: ) nach, da speichert der TDSS-Killer seine Logs. Hinweis: Bitte nichts voreilig mit dem TDSS-Killer löschen! Falls Objekte vom TDSS-Killer bemängelt werden, alle mit der Aktion "skip" behandeln und hier nur das Log posten! 
__________________ Logfiles bitte immer in CODE-Tags posten  |
|
03.10.2012, 22:04
| #17 |
 | GVU Trojaner, ukash usw. ok, hier das nächste logfile..
__________________Vielen Dank! Code:
ATTFilter 22:53:38.0377 4880 TDSS rootkit removing tool 2.8.10.0 Sep 17 2012 19:23:24
22:53:38.0529 4880 ============================================================
22:53:38.0529 4880 Current date / time: 2012/10/03 22:53:38.0529
22:53:38.0529 4880 SystemInfo:
22:53:38.0529 4880
22:53:38.0529 4880 OS Version: 6.1.7601 ServicePack: 1.0
22:53:38.0529 4880 Product type: Workstation
22:53:38.0529 4880 ComputerName: xxxx-PC
22:53:38.0530 4880 UserName: xxxx
22:53:38.0530 4880 Windows directory: C:\Windows
22:53:38.0530 4880 System windows directory: C:\Windows
22:53:38.0530 4880 Running under WOW64
22:53:38.0530 4880 Processor architecture: Intel x64
22:53:38.0530 4880 Number of processors: 2
22:53:38.0530 4880 Page size: 0x1000
22:53:38.0530 4880 Boot type: Normal boot
22:53:38.0530 4880 ============================================================
22:53:39.0392 4880 Drive \Device\Harddisk1\DR1 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x700FC, SectorsPerTrack: 0x13, TracksPerCylinder: 0xE0, Type 'K0', Flags 0x00000040
22:53:39.0795 4880 Drive \Device\Harddisk2\DR2 - Size: 0x15D50F66000 (1397.27 Gb), SectorSize: 0x200, Cylinders: 0xE596D, SectorsPerTrack: 0x13, TracksPerCylinder: 0xA4, Type 'K0', Flags 0x00000040
22:53:39.0796 4880 Drive \Device\Harddisk0\DR0 - Size: 0x5D27216000 (372.61 Gb), SectorSize: 0x200, Cylinders: 0xBE01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
22:53:39.0800 4880 ============================================================
22:53:39.0800 4880 \Device\Harddisk1\DR1:
22:53:39.0801 4880 MBR partitions:
22:53:39.0801 4880 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x13, BlocksNum 0x74705D6D
22:53:39.0801 4880 \Device\Harddisk2\DR2:
22:53:39.0801 4880 MBR partitions:
22:53:39.0801 4880 \Device\Harddisk2\DR2\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
22:53:39.0801 4880 \Device\Harddisk2\DR2\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x34934800
22:53:39.0801 4880 \Device\Harddisk2\DR2\Partition3: MBR, Type 0x7, StartLBA 0x34967000, BlocksNum 0x7A120000
22:53:39.0801 4880 \Device\Harddisk0\DR0:
22:53:39.0801 4880 MBR partitions:
22:53:39.0801 4880 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x62B7DB1
22:53:39.0801 4880 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x62BA22C, BlocksNum 0x2867DA95
22:53:39.0801 4880 ============================================================
22:53:39.0824 4880 C: <-> \Device\Harddisk1\DR1\Partition1
22:53:39.0844 4880 E: <-> \Device\Harddisk0\DR0\Partition1
22:53:39.0853 4880 F: <-> \Device\Harddisk2\DR2\Partition1
22:53:39.0882 4880 G: <-> \Device\Harddisk0\DR0\Partition2
22:53:39.0906 4880 H: <-> \Device\Harddisk2\DR2\Partition2
22:53:39.0935 4880 I: <-> \Device\Harddisk2\DR2\Partition3
22:53:39.0935 4880 ============================================================
22:53:39.0936 4880 Initialize success
22:53:39.0936 4880 ============================================================
22:54:44.0002 2780 ============================================================
22:54:44.0002 2780 Scan started
22:54:44.0002 2780 Mode: Manual; SigCheck; TDLFS;
22:54:44.0002 2780 ============================================================
22:54:45.0169 2780 ================ Scan system memory ========================
22:54:45.0169 2780 System memory - ok
22:54:45.0169 2780 ================ Scan services =============================
22:54:45.0297 2780 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
22:54:45.0397 2780 1394ohci - ok
22:54:45.0418 2780 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
22:54:45.0436 2780 ACPI - ok
22:54:45.0454 2780 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
22:54:45.0517 2780 AcpiPmi - ok
22:54:45.0567 2780 [ E42F90B27BDDDD611FA7040AFD256FDA ] acsock C:\Windows\system32\DRIVERS\acsock64.sys
22:54:45.0585 2780 acsock - ok
22:54:45.0713 2780 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
22:54:45.0733 2780 adp94xx - ok
22:54:45.0754 2780 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\drivers\adpahci.sys
22:54:45.0770 2780 adpahci - ok
22:54:45.0790 2780 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
22:54:45.0802 2780 adpu320 - ok
22:54:45.0822 2780 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
22:54:45.0917 2780 AeLookupSvc - ok
22:54:45.0962 2780 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
22:54:46.0013 2780 AFD - ok
22:54:46.0027 2780 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
22:54:46.0039 2780 agp440 - ok
22:54:46.0314 2780 [ 0923671CF87CD511E46D4668B53F5E76 ] Akamai c:\program files (x86)\common files\akamai/netsession_win_5891ae0.dll
22:54:46.0314 2780 Suspicious file (Hidden): c:\program files (x86)\common files\akamai/netsession_win_5891ae0.dll. md5: 0923671CF87CD511E46D4668B53F5E76
22:54:46.0326 2780 Akamai ( HiddenFile.Multi.Generic ) - warning
22:54:46.0326 2780 Akamai - detected HiddenFile.Multi.Generic (1)
22:54:46.0349 2780 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
22:54:46.0398 2780 ALG - ok
22:54:46.0422 2780 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
22:54:46.0435 2780 aliide - ok
22:54:46.0483 2780 [ D696F317BD465A602566F8E1DCCE15F7 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
22:54:46.0546 2780 AMD External Events Utility - ok
22:54:46.0578 2780 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
22:54:46.0588 2780 amdide - ok
22:54:46.0616 2780 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
22:54:46.0645 2780 AmdK8 - ok
22:54:46.0651 2780 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys
22:54:46.0668 2780 AmdPPM - ok
22:54:46.0708 2780 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
22:54:46.0719 2780 amdsata - ok
22:54:46.0749 2780 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
22:54:46.0763 2780 amdsbs - ok
22:54:46.0779 2780 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
22:54:46.0790 2780 amdxata - ok
22:54:46.0833 2780 [ 466A0D95960DAD3222C896D2CEA99993 ] AntiVirSchexxxxrService C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
22:54:46.0844 2780 AntiVirSchexxxxrService - ok
22:54:46.0875 2780 [ A489BE6BB0AA1FF406B488B60542314B ] AntiVirService C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
22:54:46.0886 2780 AntiVirService - ok
22:54:46.0913 2780 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
22:54:47.0014 2780 AppID - ok
22:54:47.0030 2780 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
22:54:47.0083 2780 AppIDSvc - ok
22:54:47.0118 2780 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
22:54:47.0168 2780 Appinfo - ok
22:54:47.0202 2780 [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt C:\Windows\System32\appmgmts.dll
22:54:47.0229 2780 AppMgmt - ok
22:54:47.0254 2780 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\drivers\arc.sys
22:54:47.0266 2780 arc - ok
22:54:47.0272 2780 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\drivers\arcsas.sys
22:54:47.0285 2780 arcsas - ok
22:54:47.0311 2780 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
22:54:47.0369 2780 AsyncMac - ok
22:54:47.0375 2780 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
22:54:47.0385 2780 atapi - ok
22:54:47.0476 2780 [ 52BD95CAA9CAE8977FE043E9AD6D2D0E ] atikmdag C:\Windows\system32\DRIVERS\atikmdag.sys
22:54:47.0592 2780 atikmdag - ok
22:54:47.0634 2780 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
22:54:47.0701 2780 AudioEndpointBuilder - ok
22:54:47.0711 2780 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
22:54:47.0751 2780 AudioSrv - ok
22:54:47.0790 2780 [ 26E38B5A58C6C55FAFBC563EEDDB0867 ] avgntflt C:\Windows\system32\DRIVERS\avgntflt.sys
22:54:47.0801 2780 avgntflt - ok
22:54:47.0838 2780 [ 9D1F00BEFF84CBBF46D7F052BC7E0565 ] avipbb C:\Windows\system32\DRIVERS\avipbb.sys
22:54:47.0850 2780 avipbb - ok
22:54:47.0869 2780 [ 248DB59FC86DE44D2779F4C7FB1A567D ] avkmgr C:\Windows\system32\DRIVERS\avkmgr.sys
22:54:47.0878 2780 avkmgr - ok
22:54:47.0898 2780 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
22:54:47.0968 2780 AxInstSV - ok
22:54:48.0000 2780 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
22:54:48.0037 2780 b06bdrv - ok
22:54:48.0069 2780 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
22:54:48.0104 2780 b57nd60a - ok
22:54:48.0139 2780 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
22:54:48.0169 2780 BDESVC - ok
22:54:48.0195 2780 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
22:54:48.0245 2780 Beep - ok
22:54:48.0286 2780 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
22:54:48.0330 2780 BFE - ok
22:54:48.0365 2780 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
22:54:48.0433 2780 BITS - ok
22:54:48.0464 2780 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
22:54:48.0493 2780 blbdrive - ok
22:54:48.0528 2780 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
22:54:48.0572 2780 bowser - ok
22:54:48.0583 2780 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
22:54:48.0609 2780 BrFiltLo - ok
22:54:48.0627 2780 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
22:54:48.0641 2780 BrFiltUp - ok
22:54:48.0667 2780 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
22:54:48.0680 2780 Browser - ok
22:54:48.0688 2780 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
22:54:48.0720 2780 Brserid - ok
22:54:48.0744 2780 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
22:54:48.0775 2780 BrSerWdm - ok
22:54:48.0796 2780 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
22:54:48.0826 2780 BrUsbMdm - ok
22:54:48.0851 2780 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
22:54:48.0863 2780 BrUsbSer - ok
22:54:48.0878 2780 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
22:54:48.0893 2780 BTHMODEM - ok
22:54:48.0913 2780 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
22:54:48.0949 2780 bthserv - ok
22:54:48.0963 2780 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
22:54:49.0012 2780 cdfs - ok
22:54:49.0041 2780 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
22:54:49.0054 2780 cdrom - ok
22:54:49.0072 2780 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
22:54:49.0124 2780 CertPropSvc - ok
22:54:49.0142 2780 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\drivers\circlass.sys
22:54:49.0157 2780 circlass - ok
22:54:49.0185 2780 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
22:54:49.0204 2780 CLFS - ok
22:54:49.0262 2780 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
22:54:49.0274 2780 clr_optimization_v2.0.50727_32 - ok
22:54:49.0320 2780 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
22:54:49.0332 2780 clr_optimization_v2.0.50727_64 - ok
22:54:49.0396 2780 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
22:54:49.0415 2780 clr_optimization_v4.0.30319_32 - ok
22:54:49.0432 2780 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
22:54:49.0443 2780 clr_optimization_v4.0.30319_64 - ok
22:54:49.0457 2780 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\drivers\CmBatt.sys
22:54:49.0484 2780 CmBatt - ok
22:54:49.0500 2780 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
22:54:49.0511 2780 cmdide - ok
22:54:49.0541 2780 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
22:54:49.0567 2780 CNG - ok
22:54:49.0582 2780 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\drivers\compbatt.sys
22:54:49.0593 2780 Compbatt - ok
22:54:49.0613 2780 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
22:54:49.0643 2780 CompositeBus - ok
22:54:49.0659 2780 COMSysApp - ok
22:54:49.0666 2780 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
22:54:49.0677 2780 crcdisk - ok
22:54:49.0708 2780 [ 4F5414602E2544A4554D95517948B705 ] CryptSvc C:\Windows\system32\cryptsvc.dll
22:54:49.0750 2780 CryptSvc - ok
22:54:49.0774 2780 [ 54DA3DFD29ED9F1619B6F53F3CE55E49 ] CSC C:\Windows\system32\drivers\csc.sys
22:54:49.0820 2780 CSC - ok
22:54:49.0841 2780 [ 3AB183AB4D2C79DCF459CD2C1266B043 ] CscService C:\Windows\System32\cscsvc.dll
22:54:49.0876 2780 CscService - ok
22:54:49.0918 2780 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
22:54:49.0978 2780 DcomLaunch - ok
22:54:50.0013 2780 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
22:54:50.0053 2780 defragsvc - ok
22:54:50.0083 2780 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
22:54:50.0136 2780 DfsC - ok
22:54:50.0157 2780 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
22:54:50.0218 2780 Dhcp - ok
22:54:50.0245 2780 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
22:54:50.0295 2780 discache - ok
22:54:50.0325 2780 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\drivers\disk.sys
22:54:50.0337 2780 Disk - ok
22:54:50.0348 2780 [ 5DB085A8A6600BE6401F2B24EECB5415 ] dmvsc C:\Windows\system32\drivers\dmvsc.sys
22:54:50.0379 2780 dmvsc - ok
22:54:50.0410 2780 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
22:54:50.0444 2780 Dnscache - ok
22:54:50.0469 2780 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
22:54:50.0522 2780 dot3svc - ok
22:54:50.0546 2780 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
22:54:50.0599 2780 DPS - ok
22:54:50.0647 2780 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
22:54:50.0677 2780 drmkaud - ok
22:54:50.0750 2780 dump_wmimmc - ok
22:54:50.0782 2780 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
22:54:50.0810 2780 DXGKrnl - ok
22:54:50.0824 2780 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
22:54:50.0860 2780 EapHost - ok
22:54:50.0919 2780 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\drivers\evbda.sys
22:54:50.0996 2780 ebdrv - ok
22:54:51.0030 2780 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
22:54:51.0056 2780 EFS - ok
22:54:51.0107 2780 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
22:54:51.0129 2780 ehRecvr - ok
22:54:51.0134 2780 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
22:54:51.0166 2780 ehSched - ok
22:54:51.0195 2780 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\drivers\elxstor.sys
22:54:51.0214 2780 elxstor - ok
22:54:51.0227 2780 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
22:54:51.0258 2780 ErrDev - ok
22:54:51.0315 2780 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
22:54:51.0371 2780 EventSystem - ok
22:54:51.0393 2780 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
22:54:51.0430 2780 exfat - ok
22:54:51.0445 2780 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
22:54:51.0482 2780 fastfat - ok
22:54:51.0509 2780 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
22:54:51.0546 2780 Fax - ok
22:54:51.0565 2780 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\drivers\fdc.sys
22:54:51.0588 2780 fdc - ok
22:54:51.0613 2780 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
22:54:51.0664 2780 fdPHost - ok
22:54:51.0685 2780 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
22:54:51.0738 2780 FDResPub - ok
22:54:51.0757 2780 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
22:54:51.0769 2780 FileInfo - ok
22:54:51.0795 2780 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
22:54:51.0847 2780 Filetrace - ok
22:54:51.0871 2780 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
22:54:51.0882 2780 flpydisk - ok
22:54:51.0899 2780 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
22:54:51.0916 2780 FltMgr - ok
22:54:51.0957 2780 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
22:54:51.0984 2780 FontCache - ok
22:54:52.0036 2780 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
22:54:52.0045 2780 FontCache3.0.0.0 - ok
22:54:52.0056 2780 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
22:54:52.0068 2780 FsDepends - ok
22:54:52.0092 2780 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
22:54:52.0103 2780 Fs_Rec - ok
22:54:52.0131 2780 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
22:54:52.0149 2780 fvevol - ok
22:54:52.0165 2780 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
22:54:52.0177 2780 gagp30kx - ok
22:54:52.0208 2780 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
22:54:52.0250 2780 gpsvc - ok
22:54:52.0264 2780 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
22:54:52.0297 2780 hcw85cir - ok
22:54:52.0354 2780 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
22:54:52.0386 2780 HdAudAddService - ok
22:54:52.0411 2780 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
22:54:52.0440 2780 HDAudBus - ok
22:54:52.0445 2780 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
22:54:52.0465 2780 HidBatt - ok
22:54:52.0485 2780 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\drivers\hidbth.sys
22:54:52.0500 2780 HidBth - ok
22:54:52.0505 2780 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\drivers\hidir.sys
22:54:52.0520 2780 HidIr - ok
22:54:52.0533 2780 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
22:54:52.0584 2780 hidserv - ok
22:54:52.0617 2780 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
22:54:52.0628 2780 HidUsb - ok
22:54:52.0653 2780 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
22:54:52.0708 2780 hkmsvc - ok
22:54:52.0732 2780 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
22:54:52.0747 2780 HomeGroupListener - ok
22:54:52.0767 2780 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
22:54:52.0797 2780 HomeGroupProvider - ok
22:54:52.0821 2780 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
22:54:52.0833 2780 HpSAMD - ok
22:54:52.0866 2780 [ F47CEC45FB85791D4AB237563AD0FA8F ] HTCAND64 C:\Windows\system32\Drivers\ANDROIDUSB.sys
22:54:52.0899 2780 HTCAND64 - ok
22:54:52.0964 2780 [ B8B1B284362E1D8135112573395D5DA5 ] htcnprot C:\Windows\system32\DRIVERS\htcnprot.sys
22:54:52.0974 2780 htcnprot - ok
22:54:53.0007 2780 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
22:54:53.0065 2780 HTTP - ok
22:54:53.0083 2780 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
22:54:53.0094 2780 hwpolicy - ok
22:54:53.0106 2780 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
22:54:53.0120 2780 i8042prt - ok
22:54:53.0150 2780 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
22:54:53.0168 2780 iaStorV - ok
22:54:53.0240 2780 [ 6F95324909B502E2651442C1548AB12F ] IDriverT C:\Program Files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
22:54:53.0246 2780 IDriverT ( UnsignedFile.Multi.Generic ) - warning
22:54:53.0246 2780 IDriverT - detected UnsignedFile.Multi.Generic (1)
22:54:53.0274 2780 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
22:54:53.0299 2780 idsvc - ok
22:54:53.0338 2780 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\drivers\iirsp.sys
22:54:53.0350 2780 iirsp - ok
22:54:53.0383 2780 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
22:54:53.0445 2780 IKEEXT - ok
22:54:53.0470 2780 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
22:54:53.0481 2780 intelide - ok
22:54:53.0502 2780 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\drivers\intelppm.sys
22:54:53.0533 2780 intelppm - ok
22:54:53.0555 2780 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
22:54:53.0606 2780 IPBusEnum - ok
22:54:53.0613 2780 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
22:54:53.0649 2780 IpFilterDriver - ok
22:54:53.0678 2780 [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
22:54:53.0737 2780 iphlpsvc - ok
22:54:53.0755 2780 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
22:54:53.0768 2780 IPMIDRV - ok
22:54:53.0780 2780 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
22:54:53.0829 2780 IPNAT - ok
22:54:53.0846 2780 [ 05360B1EA5A2ABF620D1D96EBD8BD8F1 ] irda C:\Windows\system32\DRIVERS\irda.sys
22:54:53.0881 2780 irda - ok
22:54:53.0903 2780 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
22:54:53.0935 2780 IRENUM - ok
22:54:53.0964 2780 [ 3848384AB383F0A8F506C4370635C1F9 ] Irmon C:\Windows\System32\irmon.dll
22:54:53.0998 2780 Irmon - ok
22:54:54.0038 2780 [ D2CA12736624BA636F8357DC3EF0757E ] irsir C:\Windows\system32\DRIVERS\irsir.sys
22:54:54.0075 2780 irsir - ok
22:54:54.0085 2780 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
22:54:54.0096 2780 isapnp - ok
22:54:54.0125 2780 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
22:54:54.0140 2780 iScsiPrt - ok
22:54:54.0147 2780 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
22:54:54.0158 2780 kbdclass - ok
22:54:54.0184 2780 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
22:54:54.0210 2780 kbdhid - ok
22:54:54.0234 2780 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
22:54:54.0246 2780 KeyIso - ok
22:54:54.0274 2780 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
22:54:54.0287 2780 KSecDD - ok
22:54:54.0302 2780 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
22:54:54.0316 2780 KSecPkg - ok
22:54:54.0331 2780 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
22:54:54.0382 2780 ksthunk - ok
22:54:54.0418 2780 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
22:54:54.0472 2780 KtmRm - ok
22:54:54.0500 2780 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
22:54:54.0553 2780 LanmanServer - ok
22:54:54.0588 2780 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
22:54:54.0625 2780 LanmanWorkstation - ok
22:54:54.0650 2780 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
22:54:54.0701 2780 lltdio - ok
22:54:54.0738 2780 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
22:54:54.0795 2780 lltdsvc - ok
22:54:54.0819 2780 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
22:54:54.0873 2780 lmhosts - ok
22:54:54.0895 2780 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
22:54:54.0907 2780 LSI_FC - ok
22:54:54.0914 2780 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
22:54:54.0926 2780 LSI_SAS - ok
22:54:54.0942 2780 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
22:54:54.0954 2780 LSI_SAS2 - ok
22:54:54.0968 2780 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
22:54:54.0980 2780 LSI_SCSI - ok
22:54:55.0002 2780 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
22:54:55.0052 2780 luafv - ok
22:54:55.0097 2780 [ B9FC4CCE5758B816F27DD4D1EED11841 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
22:54:55.0109 2780 MBAMProtector - ok
22:54:55.0135 2780 [ 0DCF16B1449811EFA47AB52CAC84093C ] MBAMSchexxxxr C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamschexxxxr.exe
22:54:55.0151 2780 MBAMSchexxxxr - ok
22:54:55.0176 2780 [ 9EAABA4D601004BEA4DAA6E146E19A96 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
22:54:55.0198 2780 MBAMService - ok
22:54:55.0209 2780 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
22:54:55.0239 2780 Mcx2Svc - ok
22:54:55.0295 2780 [ 7CF1B716372B89568AE4C0FE769F5869 ] MDM C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
22:54:55.0317 2780 MDM ( UnsignedFile.Multi.Generic ) - warning
22:54:55.0317 2780 MDM - detected UnsignedFile.Multi.Generic (1)
22:54:55.0335 2780 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\drivers\megasas.sys
22:54:55.0347 2780 megasas - ok
22:54:55.0368 2780 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
22:54:55.0382 2780 MegaSR - ok
22:54:55.0419 2780 [ 123271BD5237AB991DC5C21FDF8835EB ] Microsoft Office Groove Audit Service C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
22:54:55.0431 2780 Microsoft Office Groove Audit Service - ok
22:54:55.0443 2780 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
22:54:55.0493 2780 MMCSS - ok
22:54:55.0511 2780 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
22:54:55.0546 2780 Modem - ok
22:54:55.0563 2780 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
22:54:55.0589 2780 monitor - ok
22:54:55.0610 2780 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
22:54:55.0621 2780 mouclass - ok
22:54:55.0633 2780 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\drivers\mouhid.sys
22:54:55.0663 2780 mouhid - ok
22:54:55.0686 2780 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
22:54:55.0698 2780 mountmgr - ok
22:54:55.0753 2780 [ CB8AF049AC9BE419A77ADAE288673359 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
22:54:55.0769 2780 MozillaMaintenance - ok
22:54:55.0779 2780 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
22:54:55.0793 2780 mpio - ok
22:54:55.0806 2780 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
22:54:55.0842 2780 mpsdrv - ok
22:54:55.0879 2780 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
22:54:55.0924 2780 MpsSvc - ok
22:54:55.0941 2780 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
22:54:55.0977 2780 MRxDAV - ok
22:54:56.0013 2780 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
22:54:56.0053 2780 mrxsmb - ok
22:54:56.0089 2780 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
22:54:56.0104 2780 mrxsmb10 - ok
22:54:56.0117 2780 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
22:54:56.0129 2780 mrxsmb20 - ok
22:54:56.0143 2780 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
22:54:56.0154 2780 msahci - ok
22:54:56.0161 2780 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
22:54:56.0173 2780 msdsm - ok
22:54:56.0186 2780 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
22:54:56.0202 2780 MSDTC - ok
22:54:56.0223 2780 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
22:54:56.0272 2780 Msfs - ok
22:54:56.0293 2780 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
22:54:56.0330 2780 mshidkmdf - ok
22:54:56.0347 2780 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
22:54:56.0358 2780 msisadrv - ok
22:54:56.0389 2780 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
22:54:56.0426 2780 MSiSCSI - ok
22:54:56.0432 2780 msiserver - ok
22:54:56.0457 2780 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
22:54:56.0505 2780 MSKSSRV - ok
22:54:56.0512 2780 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
22:54:56.0554 2780 MSPCLOCK - ok
22:54:56.0577 2780 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
22:54:56.0625 2780 MSPQM - ok
22:54:56.0655 2780 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
22:54:56.0673 2780 MsRPC - ok
22:54:56.0691 2780 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
22:54:56.0703 2780 mssmbios - ok
22:54:56.0712 2780 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
22:54:56.0764 2780 MSTEE - ok
22:54:56.0770 2780 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
22:54:56.0782 2780 MTConfig - ok
22:54:56.0801 2780 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
22:54:56.0813 2780 Mup - ok
22:54:56.0840 2780 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
22:54:56.0899 2780 napagent - ok
22:54:56.0920 2780 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
22:54:56.0953 2780 NativeWifiP - ok
22:54:56.0998 2780 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
22:54:57.0026 2780 NDIS - ok
22:54:57.0041 2780 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
22:54:57.0077 2780 NdisCap - ok
22:54:57.0094 2780 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
22:54:57.0129 2780 NdisTapi - ok
22:54:57.0135 2780 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
22:54:57.0168 2780 Ndisuio - ok
22:54:57.0184 2780 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
22:54:57.0236 2780 NdisWan - ok
22:54:57.0256 2780 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
22:54:57.0290 2780 NDProxy - ok
22:54:57.0299 2780 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
22:54:57.0348 2780 NetBIOS - ok
22:54:57.0372 2780 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
22:54:57.0408 2780 NetBT - ok
22:54:57.0414 2780 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
22:54:57.0426 2780 Netlogon - ok
22:54:57.0467 2780 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
22:54:57.0526 2780 Netman - ok
22:54:57.0558 2780 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
22:54:57.0612 2780 netprofm - ok
22:54:57.0641 2780 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
22:54:57.0653 2780 NetTcpPortSharing - ok
22:54:57.0669 2780 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
22:54:57.0681 2780 nfrd960 - ok
22:54:57.0701 2780 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
22:54:57.0753 2780 NlaSvc - ok
22:54:57.0813 2780 [ 5FE6F8C05F0769BBB74AFAC11453B182 ] nmwcd C:\Windows\system32\drivers\ccdcmbx64.sys
22:54:57.0858 2780 nmwcd - ok
22:54:57.0878 2780 [ 73C929945C0850B8D1FE2FEA05FDF05D ] nmwcdc C:\Windows\system32\drivers\ccdcmbox64.sys
22:54:57.0917 2780 nmwcdc - ok
22:54:57.0925 2780 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
22:54:57.0960 2780 Npfs - ok
22:54:57.0967 2780 npggsvc - ok
22:54:57.0974 2780 NPPTNT2 - ok
22:54:58.0013 2780 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
22:54:58.0049 2780 nsi - ok
22:54:58.0054 2780 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
22:54:58.0102 2780 nsiproxy - ok
22:54:58.0152 2780 [ A2F74975097F52A00745F9637451FDD8 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
22:54:58.0194 2780 Ntfs - ok
22:54:58.0207 2780 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
22:54:58.0259 2780 Null - ok
22:54:58.0291 2780 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
22:54:58.0303 2780 nvraid - ok
22:54:58.0327 2780 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
22:54:58.0340 2780 nvstor - ok
22:54:58.0359 2780 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
22:54:58.0371 2780 nv_agp - ok
22:54:58.0420 2780 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
22:54:58.0439 2780 odserv - ok
22:54:58.0452 2780 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
22:54:58.0480 2780 ohci1394 - ok
22:54:58.0533 2780 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
22:54:58.0545 2780 ose - ok
22:54:58.0580 2780 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
22:54:58.0611 2780 p2pimsvc - ok
22:54:58.0638 2780 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
22:54:58.0657 2780 p2psvc - ok
22:54:58.0676 2780 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
22:54:58.0709 2780 Parport - ok
22:54:58.0741 2780 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
22:54:58.0753 2780 partmgr - ok
22:54:58.0805 2780 [ A1E779A0CF7A21B42E8FD3E8856D8481 ] PassThru Service C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
22:54:58.0824 2780 PassThru Service ( UnsignedFile.Multi.Generic ) - warning
22:54:58.0825 2780 PassThru Service - detected UnsignedFile.Multi.Generic (1)
22:54:58.0849 2780 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
22:54:58.0888 2780 PcaSvc - ok
22:54:58.0931 2780 [ BC0018C2D29F655188A0ED3FA94FDB24 ] pccsmcfd C:\Windows\system32\DRIVERS\pccsmcfdx64.sys
22:54:58.0942 2780 pccsmcfd - ok
22:54:58.0964 2780 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
22:54:58.0978 2780 pci - ok
22:54:58.0994 2780 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
22:54:59.0005 2780 pciide - ok
22:54:59.0018 2780 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
22:54:59.0031 2780 pcmcia - ok
22:54:59.0047 2780 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
22:54:59.0059 2780 pcw - ok
22:54:59.0082 2780 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
22:54:59.0125 2780 PEAUTH - ok
22:54:59.0157 2780 [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
22:54:59.0208 2780 PeerDistSvc - ok
22:54:59.0262 2780 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
22:54:59.0276 2780 PerfHost - ok
22:54:59.0337 2780 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
22:54:59.0410 2780 pla - ok
22:54:59.0465 2780 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
22:54:59.0483 2780 PlugPlay - ok
22:54:59.0500 2780 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
22:54:59.0526 2780 PNRPAutoReg - ok
22:54:59.0535 2780 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
22:54:59.0551 2780 PNRPsvc - ok
22:54:59.0590 2780 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
22:54:59.0648 2780 PolicyAgent - ok
22:54:59.0682 2780 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
22:54:59.0742 2780 Power - ok
22:54:59.0780 2780 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
22:54:59.0834 2780 PptpMiniport - ok
22:54:59.0851 2780 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\drivers\processr.sys
22:54:59.0876 2780 Processor - ok
22:54:59.0910 2780 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
22:54:59.0943 2780 ProfSvc - ok
22:54:59.0963 2780 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
22:54:59.0974 2780 ProtectedStorage - ok
22:54:59.0991 2780 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
22:55:00.0040 2780 Psched - ok
22:55:00.0087 2780 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
22:55:00.0125 2780 ql2300 - ok
22:55:00.0139 2780 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
22:55:00.0151 2780 ql40xx - ok
22:55:00.0178 2780 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
22:55:00.0200 2780 QWAVE - ok
22:55:00.0216 2780 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
22:55:00.0235 2780 QWAVEdrv - ok
22:55:00.0246 2780 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
22:55:00.0281 2780 RasAcd - ok
22:55:00.0307 2780 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
22:55:00.0342 2780 RasAgileVpn - ok
22:55:00.0348 2780 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
22:55:00.0405 2780 RasAuto - ok
22:55:00.0427 2780 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
22:55:00.0473 2780 Rasl2tp - ok
22:55:00.0501 2780 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
22:55:00.0541 2780 RasMan - ok
22:55:00.0558 2780 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
22:55:00.0607 2780 RasPppoe - ok
22:55:00.0626 2780 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
22:55:00.0662 2780 RasSstp - ok
22:55:00.0678 2780 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
22:55:00.0717 2780 rdbss - ok
22:55:00.0727 2780 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
22:55:00.0753 2780 rdpbus - ok
22:55:00.0772 2780 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
22:55:00.0807 2780 RDPCDD - ok
22:55:00.0825 2780 [ 1B6163C503398B23FF8B939C67747683 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
22:55:00.0837 2780 RDPDR - ok
22:55:00.0928 2780 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
22:55:00.0992 2780 RDPENCDD - ok
22:55:01.0015 2780 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
22:55:01.0049 2780 RDPREFMP - ok
22:55:01.0072 2780 [ 70CBA1A0C98600A2AA1863479B35CB90 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
22:55:01.0095 2780 RdpVideoMiniport - ok
22:55:01.0129 2780 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
22:55:01.0142 2780 RDPWD - ok
22:55:01.0161 2780 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
22:55:01.0175 2780 rdyboost - ok
22:55:01.0201 2780 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
22:55:01.0255 2780 RemoteAccess - ok
22:55:01.0287 2780 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
22:55:01.0338 2780 RemoteRegistry - ok
22:55:01.0365 2780 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
22:55:01.0415 2780 RpcEptMapper - ok
22:55:01.0432 2780 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
22:55:01.0446 2780 RpcLocator - ok
22:55:01.0468 2780 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
22:55:01.0507 2780 RpcSs - ok
22:55:01.0525 2780 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
22:55:01.0560 2780 rspndr - ok
22:55:01.0588 2780 [ BAEFEE35D27A5440D35092CE10267BEC ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
22:55:01.0602 2780 RTL8167 - ok
22:55:01.0631 2780 [ E60C0A09F997826C7627B244195AB581 ] s3cap C:\Windows\system32\drivers\vms3cap.sys
22:55:01.0656 2780 s3cap - ok
22:55:01.0677 2780 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
22:55:01.0688 2780 SamSs - ok
22:55:01.0703 2780 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
22:55:01.0714 2780 sbp2port - ok
22:55:01.0742 2780 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
22:55:01.0782 2780 SCardSvr - ok
22:55:01.0788 2780 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
22:55:01.0838 2780 scfilter - ok
22:55:01.0870 2780 [ 262F6592C3299C005FD6BEC90FC4463A ] Schexxxx C:\Windows\system32\schedsvc.dll
22:55:01.0917 2780 Schexxxx - ok
22:55:01.0938 2780 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
22:55:01.0971 2780 SCPolicySvc - ok
22:55:01.0994 2780 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
22:55:02.0021 2780 SDRSVC - ok
22:55:02.0042 2780 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
22:55:02.0077 2780 secdrv - ok
22:55:02.0090 2780 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
22:55:02.0125 2780 seclogon - ok
22:55:02.0137 2780 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
22:55:02.0191 2780 SENS - ok
22:55:02.0213 2780 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
22:55:02.0238 2780 SensrSvc - ok
22:55:02.0268 2780 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
22:55:02.0296 2780 Serenum - ok
22:55:02.0318 2780 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
22:55:02.0352 2780 Serial - ok
22:55:02.0373 2780 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\drivers\sermouse.sys
22:55:02.0397 2780 sermouse - ok
22:55:02.0491 2780 [ C15B813F2FDB44F87F23312472C6E790 ] ServiceLayer C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
22:55:02.0510 2780 ServiceLayer - ok
22:55:02.0536 2780 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
22:55:02.0588 2780 SessionEnv - ok
22:55:02.0605 2780 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
22:55:02.0620 2780 sffdisk - ok
22:55:02.0636 2780 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
22:55:02.0663 2780 sffp_mmc - ok
22:55:02.0686 2780 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
22:55:02.0718 2780 sffp_sd - ok
22:55:02.0734 2780 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
22:55:02.0762 2780 sfloppy - ok
22:55:02.0796 2780 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
22:55:02.0855 2780 SharedAccess - ok
22:55:02.0879 2780 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
22:55:02.0918 2780 ShellHWDetection - ok
22:55:02.0928 2780 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
22:55:02.0940 2780 SiSRaid2 - ok
22:55:02.0946 2780 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
22:55:02.0958 2780 SiSRaid4 - ok
22:55:02.0966 2780 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
22:55:03.0020 2780 Smb - ok
22:55:03.0065 2780 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
22:55:03.0097 2780 SNMPTRAP - ok
22:55:03.0119 2780 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
22:55:03.0129 2780 spldr - ok
22:55:03.0160 2780 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
22:55:03.0179 2780 Spooler - ok
22:55:03.0234 2780 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
22:55:03.0321 2780 sppsvc - ok
22:55:03.0347 2780 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
22:55:03.0384 2780 sppuinotify - ok
22:55:03.0417 2780 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
22:55:03.0444 2780 srv - ok
22:55:03.0467 2780 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
22:55:03.0499 2780 srv2 - ok
22:55:03.0527 2780 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
22:55:03.0541 2780 srvnet - ok
22:55:03.0565 2780 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
22:55:03.0603 2780 SSDPSRV - ok
22:55:03.0619 2780 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
22:55:03.0655 2780 SstpSvc - ok
22:55:03.0668 2780 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\drivers\stexstor.sys
22:55:03.0679 2780 stexstor - ok
22:55:03.0711 2780 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
22:55:03.0751 2780 stisvc - ok
22:55:03.0781 2780 [ 7785DC213270D2FC066538DAF94087E7 ] storflt C:\Windows\system32\drivers\vmstorfl.sys
22:55:03.0793 2780 storflt - ok
22:55:03.0810 2780 [ C40841817EF57D491F22EB103DA587CC ] StorSvc C:\Windows\system32\storsvc.dll
22:55:03.0823 2780 StorSvc - ok
22:55:03.0849 2780 [ D34E4943D5AC096C8EDEEBFD80D76E23 ] storvsc C:\Windows\system32\drivers\storvsc.sys
22:55:03.0860 2780 storvsc - ok
22:55:03.0875 2780 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
22:55:03.0885 2780 swenum - ok
22:55:03.0979 2780 [ F577910A133A592234EBAAD3F3AFA258 ] SwitchBoard C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
22:55:04.0009 2780 SwitchBoard ( UnsignedFile.Multi.Generic ) - warning
22:55:04.0009 2780 SwitchBoard - detected UnsignedFile.Multi.Generic (1)
22:55:04.0041 2780 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
22:55:04.0105 2780 swprv - ok
22:55:04.0130 2780 [ C3A39C4079305480972D29C44B868C78 ] Synth3dVsc C:\Windows\system32\drivers\synth3dvsc.sys
22:55:04.0143 2780 Synth3dVsc - ok
22:55:04.0178 2780 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
22:55:04.0232 2780 SysMain - ok
22:55:04.0260 2780 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
22:55:04.0296 2780 TabletInputService - ok
22:55:04.0322 2780 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
22:55:04.0379 2780 TapiSrv - ok
22:55:04.0405 2780 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
22:55:04.0441 2780 TBS - ok
22:55:04.0484 2780 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] Tcpip C:\Windows\system32\drivers\tcpip.sys
22:55:04.0531 2780 Tcpip - ok
22:55:04.0561 2780 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
22:55:04.0600 2780 TCPIP6 - ok
22:55:04.0615 2780 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
22:55:04.0648 2780 tcpipreg - ok
22:55:04.0663 2780 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
22:55:04.0684 2780 TDPIPE - ok
22:55:04.0716 2780 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
22:55:04.0745 2780 TDTCP - ok
22:55:04.0773 2780 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
22:55:04.0809 2780 tdx - ok
22:55:04.0820 2780 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
22:55:04.0832 2780 TermDD - ok
22:55:04.0848 2780 [ 2B5BDFF688EC9871D7EC5837833374E9 ] terminpt C:\Windows\system32\drivers\terminpt.sys
22:55:04.0877 2780 terminpt - ok
22:55:04.0915 2780 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
22:55:04.0973 2780 TermService - ok
22:55:05.0002 2780 [ 9201BE2BAB8A9FF8E20D8439AE3BB04D ] Themes C:\Windows\system32\themeservice.dll
22:55:05.0008 2780 Themes ( UnsignedFile.Multi.Generic ) - warning
22:55:05.0008 2780 Themes - detected UnsignedFile.Multi.Generic (1)
22:55:05.0022 2780 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
22:55:05.0058 2780 THREADORDER - ok
22:55:05.0071 2780 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
22:55:05.0122 2780 TrkWks - ok
22:55:05.0168 2780 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
22:55:05.0225 2780 TrustedInstaller - ok
22:55:05.0248 2780 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
22:55:05.0298 2780 tssecsrv - ok
22:55:05.0321 2780 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
22:55:05.0332 2780 TsUsbFlt - ok
22:55:05.0337 2780 [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
22:55:05.0365 2780 TsUsbGD - ok
22:55:05.0392 2780 [ E1748D04AE40118B62BC18AC86032192 ] tsusbhub C:\Windows\system32\drivers\tsusbhub.sys
22:55:05.0420 2780 tsusbhub - ok
22:55:05.0454 2780 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
22:55:05.0500 2780 tunnel - ok
22:55:05.0584 2780 [ E0A9B5B92097211A57FD16D27F2B3750 ] TVersityMediaServer C:\ProgramData\TVersity\Media Server\MediaServer.exe
22:55:05.0600 2780 TVersityMediaServer ( UnsignedFile.Multi.Generic ) - warning
22:55:05.0600 2780 TVersityMediaServer - detected UnsignedFile.Multi.Generic (1)
22:55:05.0616 2780 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
22:55:05.0627 2780 uagp35 - ok
22:55:05.0647 2780 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
22:55:05.0703 2780 udfs - ok
22:55:05.0733 2780 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
22:55:05.0747 2780 UI0Detect - ok
22:55:05.0761 2780 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
22:55:05.0774 2780 uliagpkx - ok
22:55:05.0799 2780 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
22:55:05.0828 2780 umbus - ok
22:55:05.0833 2780 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\drivers\umpass.sys
22:55:05.0853 2780 UmPass - ok
22:55:05.0875 2780 [ A293DCD756D04D8492A750D03B9A297C ] UmRdpService C:\Windows\System32\umrdp.dll
22:55:05.0906 2780 UmRdpService - ok
22:55:05.0933 2780 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
22:55:05.0988 2780 upnphost - ok
22:55:06.0043 2780 [ 34AFB83C7BBA370E404E52CC2290350C ] upperdev C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys
22:55:06.0085 2780 upperdev - ok
22:55:06.0119 2780 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
22:55:06.0130 2780 usbccgp - ok
22:55:06.0147 2780 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
22:55:06.0163 2780 usbcir - ok
22:55:06.0186 2780 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
22:55:06.0212 2780 usbehci - ok
22:55:06.0236 2780 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
22:55:06.0264 2780 usbhub - ok
22:55:06.0289 2780 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
22:55:06.0316 2780 usbohci - ok
22:55:06.0333 2780 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\drivers\usbprint.sys
22:55:06.0366 2780 usbprint - ok
22:55:06.0406 2780 [ 4ACEE387FA8FD39F83564FCD2FC234F2 ] usbser C:\Windows\system32\drivers\usbser.sys
22:55:06.0416 2780 usbser - ok
22:55:06.0429 2780 [ AA75E1EFBEE7186B4CBAAACF1F15E6CA ] UsbserFilt C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys
22:55:06.0466 2780 UsbserFilt - ok
22:55:06.0487 2780 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
22:55:06.0515 2780 USBSTOR - ok
22:55:06.0544 2780 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
22:55:06.0573 2780 usbuhci - ok
22:55:06.0594 2780 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
22:55:06.0630 2780 UxSms - ok
22:55:06.0635 2780 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
22:55:06.0647 2780 VaultSvc - ok
22:55:06.0671 2780 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
22:55:06.0682 2780 vdrvroot - ok
22:55:06.0714 2780 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
22:55:06.0768 2780 vds - ok
22:55:06.0791 2780 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
22:55:06.0804 2780 vga - ok
22:55:06.0823 2780 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
22:55:06.0858 2780 VgaSave - ok
22:55:06.0863 2780 VGPU - ok
22:55:06.0872 2780 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
22:55:06.0885 2780 vhdmp - ok
22:55:06.0896 2780 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
22:55:06.0907 2780 viaide - ok
22:55:06.0925 2780 [ 86EA3E79AE350FEA5331A1303054005F ] vmbus C:\Windows\system32\drivers\vmbus.sys
22:55:06.0939 2780 vmbus - ok
22:55:06.0949 2780 [ 7DE90B48F210D29649380545DB45A187 ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
22:55:06.0960 2780 VMBusHID - ok
22:55:06.0971 2780 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
22:55:06.0984 2780 volmgr - ok
22:55:06.0994 2780 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
22:55:07.0011 2780 volmgrx - ok
22:55:07.0031 2780 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
22:55:07.0047 2780 volsnap - ok
22:55:07.0096 2780 [ F937E203D6F18FAD36B68D92DF02775D ] vpnagent C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe
22:55:07.0115 2780 vpnagent - ok
22:55:07.0146 2780 [ 845DAE50510383B7F6ACA73CE2099048 ] vpnva C:\Windows\system32\DRIVERS\vpnva64.sys
22:55:07.0156 2780 vpnva - ok
22:55:07.0175 2780 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
22:55:07.0189 2780 vsmraid - ok
22:55:07.0223 2780 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
22:55:07.0300 2780 VSS - ok
22:55:07.0324 2780 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
22:55:07.0374 2780 vwifibus - ok
22:55:07.0402 2780 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
22:55:07.0444 2780 W32Time - ok
22:55:07.0460 2780 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\drivers\wacompen.sys
22:55:07.0490 2780 WacomPen - ok
22:55:07.0536 2780 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
22:55:07.0584 2780 WANARP - ok
22:55:07.0588 2780 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
22:55:07.0623 2780 Wanarpv6 - ok
22:55:07.0665 2780 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
22:55:07.0712 2780 wbengine - ok
22:55:07.0733 2780 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
22:55:07.0754 2780 WbioSrvc - ok
22:55:07.0773 2780 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
22:55:07.0815 2780 wcncsvc - ok
22:55:07.0837 2780 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
22:55:07.0865 2780 WcsPlugInService - ok
22:55:07.0886 2780 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\drivers\wd.sys
22:55:07.0897 2780 Wd - ok
22:55:07.0922 2780 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
22:55:07.0946 2780 Wdf01000 - ok
22:55:07.0955 2780 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
22:55:07.0986 2780 WdiServiceHost - ok
22:55:07.0990 2780 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
22:55:08.0008 2780 WdiSystemHost - ok
22:55:08.0035 2780 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
22:55:08.0069 2780 WebClient - ok
22:55:08.0099 2780 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
22:55:08.0153 2780 Wecsvc - ok
22:55:08.0171 2780 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
22:55:08.0208 2780 wercplsupport - ok
22:55:08.0223 2780 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
22:55:08.0261 2780 WerSvc - ok
22:55:08.0269 2780 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
22:55:08.0305 2780 WfpLwf - ok
22:55:08.0319 2780 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
22:55:08.0330 2780 WIMMount - ok
22:55:08.0338 2780 WinDefend - ok
22:55:08.0344 2780 WinHttpAutoProxySvc - ok
22:55:08.0386 2780 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
22:55:08.0423 2780 Winmgmt - ok
22:55:08.0474 2780 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
22:55:08.0540 2780 WinRM - ok
22:55:08.0583 2780 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
22:55:08.0611 2780 WinUsb - ok
22:55:08.0641 2780 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
22:55:08.0690 2780 Wlansvc - ok
22:55:08.0695 2780 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
22:55:08.0708 2780 WmiAcpi - ok
22:55:08.0733 2780 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
22:55:08.0760 2780 wmiApSrv - ok
22:55:08.0779 2780 WMPNetworkSvc - ok
22:55:08.0793 2780 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
22:55:08.0806 2780 WPCSvc - ok
22:55:08.0823 2780 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
22:55:08.0837 2780 WPDBusEnum - ok
22:55:08.0855 2780 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
22:55:08.0889 2780 ws2ifsl - ok
22:55:08.0907 2780 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
22:55:08.0942 2780 wscsvc - ok
22:55:08.0947 2780 WSearch - ok
22:55:09.0012 2780 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
22:55:09.0069 2780 wuauserv - ok
22:55:09.0085 2780 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
22:55:09.0131 2780 WudfPf - ok
22:55:09.0164 2780 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
22:55:09.0199 2780 WUDFRd - ok
22:55:09.0214 2780 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
22:55:09.0250 2780 wudfsvc - ok
22:55:09.0271 2780 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
22:55:09.0325 2780 WwanSvc - ok
22:55:09.0354 2780 ================ Scan global ===============================
22:55:09.0372 2780 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
22:55:09.0402 2780 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
22:55:09.0410 2780 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
22:55:09.0437 2780 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
22:55:09.0465 2780 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
22:55:09.0469 2780 [Global] - ok
22:55:09.0470 2780 ================ Scan MBR ==================================
22:55:09.0479 2780 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
22:55:09.0657 2780 \Device\Harddisk1\DR1 - ok
22:55:09.0660 2780 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk2\DR2
22:55:10.0190 2780 \Device\Harddisk2\DR2 - ok
22:55:10.0195 2780 [ 72B8CE41AF0DE751C946802B3ED844B4 ] \Device\Harddisk0\DR0
22:55:10.0422 2780 \Device\Harddisk0\DR0 - ok
22:55:10.0422 2780 ================ Scan VBR ==================================
22:55:10.0426 2780 [ 3082C73CCBE518F8C79EAADC42D5C0C0 ] \Device\Harddisk1\DR1\Partition1
22:55:10.0427 2780 \Device\Harddisk1\DR1\Partition1 - ok
22:55:10.0433 2780 [ 4F17A4348A96917D15879A4D63189F44 ] \Device\Harddisk2\DR2\Partition1
22:55:10.0434 2780 \Device\Harddisk2\DR2\Partition1 - ok
22:55:10.0438 2780 [ 002DDE7726B5153C196ECC137D519AEE ] \Device\Harddisk2\DR2\Partition2
22:55:10.0440 2780 \Device\Harddisk2\DR2\Partition2 - ok
22:55:10.0444 2780 [ 2F24275FA0946FB950CF73B4D8804017 ] \Device\Harddisk2\DR2\Partition3
22:55:10.0446 2780 \Device\Harddisk2\DR2\Partition3 - ok
22:55:10.0451 2780 [ 095D4BC4A9FB7503DE0A1D55893DA61D ] \Device\Harddisk0\DR0\Partition1
22:55:10.0452 2780 \Device\Harddisk0\DR0\Partition1 - ok
22:55:10.0457 2780 [ E6CB43444DE1F0E2AE71F850C010A52D ] \Device\Harddisk0\DR0\Partition2
22:55:10.0458 2780 \Device\Harddisk0\DR0\Partition2 - ok
22:55:10.0459 2780 ============================================================
22:55:10.0459 2780 Scan finished
22:55:10.0459 2780 ============================================================
22:55:10.0471 1176 Detected object count: 7
22:55:10.0471 1176 Actual detected object count: 7
22:55:31.0480 1176 Akamai ( HiddenFile.Multi.Generic ) - skipped by user
22:55:31.0480 1176 Akamai ( HiddenFile.Multi.Generic ) - User select action: Skip
22:55:31.0482 1176 IDriverT ( UnsignedFile.Multi.Generic ) - skipped by user
22:55:31.0482 1176 IDriverT ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:55:31.0484 1176 MDM ( UnsignedFile.Multi.Generic ) - skipped by user
22:55:31.0484 1176 MDM ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:55:31.0486 1176 PassThru Service ( UnsignedFile.Multi.Generic ) - skipped by user
22:55:31.0486 1176 PassThru Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:55:31.0489 1176 SwitchBoard ( UnsignedFile.Multi.Generic ) - skipped by user
22:55:31.0489 1176 SwitchBoard ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:55:31.0491 1176 Themes ( UnsignedFile.Multi.Generic ) - skipped by user
22:55:31.0491 1176 Themes ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:55:31.0494 1176 TVersityMediaServer ( UnsignedFile.Multi.Generic ) - skipped by user
22:55:31.0494 1176 TVersityMediaServer ( UnsignedFile.Multi.Generic ) - User select action: Skip
|
|
04.10.2012, 09:43
| #18 | |
| /// Winkelfunktion /// TB-Süch-Tiger™ | GVU Trojaner, ukash usw. Dann bitte jetzt CF ausführen:
__________________ComboFix Ein Leitfaden und Tutorium zur Nutzung von ComboFix
Combofix darf ausschließlich ausgeführt werden, wenn ein Kompetenzler dies ausdrücklich empfohlen hat! Solltest du nach der Ausführung von Combofix Probleme beim Starten von Anwendungen haben und Meldungen erhalten wie Zitat:
__________________ |
|
05.10.2012, 21:08
| #19 |
| | GVU Trojaner, ukash usw. Hallo! Hier ist das Logfile nach CombiFix: Combofix Logfile: Code:
ATTFilter ComboFix 12-10-04.02 - xxxx 05.10.2012 21:42:28.1.2 - x64
Microsoft Windows 7 Enterprise 6.1.7601.1.1252.49.1031.18.3327.2135 [GMT 2:00]
ausgeführt von:: c:\users\xxxx\Desktop\ComboFix.exe
AV: Avira Desktop *Disabled/Updated* {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
SP: Avira Desktop *Disabled/Updated* {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
* Neuer Wiederherstellungspunkt wurde erstellt
.
.
((((((((((((((((((((((( Dateien erstellt von 2012-09-05 bis 2012-10-05 ))))))))))))))))))))))))))))))
.
.
2012-10-05 19:51 . 2012-10-05 19:51 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-10-03 12:31 . 2012-10-03 12:31 -------- d-----w- c:\program files (x86)\Unified Remote
2012-10-03 09:19 . 2012-10-03 09:19 -------- d-----w- C:\_OTL
2012-09-30 20:05 . 2001-03-23 14:29 880912 ----a-w- c:\windows\WM8EUTIL.exe
2012-09-26 17:17 . 2012-08-21 21:01 245760 ----a-w- c:\windows\system32\OxpsConverter.exe
2012-09-25 16:11 . 2012-09-25 16:11 -------- d-----w- c:\program files (x86)\ESET
2012-09-24 16:24 . 2012-09-24 16:24 -------- d-----w- c:\program files (x86)\Common Files\Java
2012-09-24 16:22 . 2012-09-24 16:22 95208 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll
2012-09-24 16:22 . 2012-09-24 16:22 -------- d-----w- c:\program files (x86)\Java
2012-09-23 11:42 . 2012-09-23 11:42 -------- d-----w- c:\users\xxxx\AppData\Roaming\Malwarebytes
2012-09-23 11:41 . 2012-09-23 11:41 -------- d-----w- c:\programdata\Malwarebytes
2012-09-23 11:41 . 2012-09-23 11:41 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware
2012-09-23 11:41 . 2012-09-07 15:04 25928 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-09-14 17:45 . 2012-09-14 17:45 -------- d-----w- c:\users\xxxx\AppData\Local\roomeon
2012-09-14 17:45 . 2012-09-14 17:45 -------- d-----w- c:\program files (x86)\roomeon GmbH
2012-09-12 16:01 . 2012-08-22 18:12 950128 ----a-w- c:\windows\system32\drivers\ndis.sys
2012-09-12 16:01 . 2012-07-04 20:26 41472 ----a-w- c:\windows\system32\drivers\RNDISMP.sys
2012-09-12 16:01 . 2012-08-02 17:58 574464 ----a-w- c:\windows\system32\d3d10level9.dll
2012-09-12 16:01 . 2012-08-02 16:57 490496 ----a-w- c:\windows\SysWow64\d3d10level9.dll
2012-09-12 16:01 . 2012-08-22 18:12 1913200 ----a-w- c:\windows\system32\drivers\tcpip.sys
2012-09-12 16:01 . 2012-08-22 18:12 376688 ----a-w- c:\windows\system32\drivers\netio.sys
2012-09-12 16:01 . 2012-08-22 18:12 288624 ----a-w- c:\windows\system32\drivers\FWPKCLNT.SYS
.
.
.
(((((((((((((((((((((((((((((((((((( Find3M Bericht ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-09-24 16:22 . 2012-06-09 11:57 821736 ----a-w- c:\windows\SysWow64\npDeployJava1.dll
2012-09-24 16:22 . 2012-06-09 11:57 746984 ----a-w- c:\windows\SysWow64\deployJava1.dll
2012-09-12 22:17 . 2012-05-13 17:21 64462936 ----a-w- c:\windows\system32\MRT.exe
2012-07-18 18:15 . 2012-08-15 16:41 3148800 ----a-w- c:\windows\system32\win32k.sys
.
.
(((((((((((((((((((((((((((( Autostartpunkte der Registrierung ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2011-02-18 05:12 94208 ----a-w- c:\users\xxxx\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2011-02-18 05:12 94208 ----a-w- c:\users\xxxx\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2011-02-18 05:12 94208 ----a-w- c:\users\xxxx\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"phonostarTimer"="c:\program files (x86)\phonostar-Player\phonostarTimer.exe" [2011-06-20 40960]
"Akamai NetSession Interface"="c:\users\xxxx\AppData\Local\Akamai\netsession_win.exe" [2012-08-10 4440896]
"Unified Remote v2"="c:\program files (x86)\Unified Remote\RemoteServer.exe" [2012-09-14 280672]
"Spotify Web Helper"="c:\users\xxxx\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe" [2012-08-23 1193176]
"NokiaSuite.exe"="c:\program files (x86)\Nokia\Nokia Suite\NokiaSuite.exe" [2012-05-16 1084840]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"GrooveMonitor"="c:\program files (x86)\Microsoft Office\Office12\GrooveMonitor.exe" [2009-02-26 30040]
"SwitchBoard"="c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" [2010-02-19 517096]
"Cisco AnyConnect Secure Mobility Agent for Windows"="c:\program files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe" [2011-09-09 523216]
"avgnt"="c:\program files (x86)\Avira\AntiVir Desktop\avgnt.exe" [2012-08-14 348664]
"LexwareInfoService"="c:\program files (x86)\Common Files\Lexware\Update Manager\LxUpdateManager.exe" [2010-09-15 339312]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2012-07-03 252848]
.
c:\users\xxxx\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Dropbox.lnk - c:\users\xxxx\AppData\Roaming\Dropbox\bin\Dropbox.exe [2012-5-24 27112840]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Rainmeter.lnk - c:\program files\Rainmeter\Rainmeter.exe [2011-9-18 102912]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"aux1"=wdmaud.drv
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-09-07 676936]
R3 dmvsc;dmvsc;c:\windows\system32\drivers\dmvsc.sys [2010-11-21 71168]
R3 dump_wmimmc;dump_wmimmc;c:\spiele\AeriaGames\WolfTeam-DE\GameGuard\dump_wmimmc.sys [x]
R3 HTCAND64;HTC Device Driver;c:\windows\system32\Drivers\ANDROIDUSB.sys [2009-11-01 33736]
R3 htcnprot;HTC NDIS Protocol Driver;c:\windows\system32\DRIVERS\htcnprot.sys [2010-06-25 36928]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2012-09-07 25928]
R3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2012-09-07 114144]
R3 npggsvc;nProtect GameGuard Service;c:\windows\system32\GameMon.des [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2010-11-21 20992]
R3 SwitchBoard;SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys [2010-11-21 88960]
R3 terminpt;Microsoft Remote Desktop Input Driver;c:\windows\system32\drivers\terminpt.sys [2010-11-21 34816]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys [2010-11-21 117248]
R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys [x]
S1 avkmgr;avkmgr;c:\windows\system32\DRIVERS\avkmgr.sys [2011-12-15 27760]
S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2011-06-06 64952]
S2 Akamai;Akamai NetSession Interface;c:\windows\System32\svchost.exe [2009-07-14 27136]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2009-08-18 203264]
S2 AntiVirSchexxxxrService;Avira Planer;c:\program files (x86)\Avira\AntiVir Desktop\sched.exe [2012-05-08 86224]
S2 MBAMSchexxxxr;MBAMSchexxxxr;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamschexxxxr.exe [2012-09-07 399432]
S2 PassThru Service;Internet Pass-Through Service;c:\program files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [2011-03-31 80896]
S2 vpnagent;Cisco AnyConnect Secure Mobility Agent;c:\program files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe [2011-09-09 475088]
S3 acsock;acsock;c:\windows\system32\DRIVERS\acsock64.sys [2011-09-09 106408]
S3 RTL8167;Realtek 8167 NT-Treiber;c:\windows\system32\DRIVERS\Rt64win7.sys [2009-06-10 187392]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost]
Akamai REG_MULTI_SZ Akamai
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2011-02-18 05:12 97792 ----a-w- c:\users\xxxx\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2011-02-18 05:12 97792 ----a-w- c:\users\xxxx\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2011-02-18 05:12 97792 ----a-w- c:\users\xxxx\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4]
@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
2011-02-18 05:12 97792 ----a-w- c:\users\xxxx\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll
.
------- Zusätzlicher Suchlauf -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.hiergehtslos.de
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride = <local>
IE: Nach Microsoft E&xel exportieren - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000
TCP: DhcpNameServer = 192.168.178.1
DPF: 55963676-2F5E-4BAF-AC28-CF26AA587566 - vpnweb.cab
FF - ProfilePath - c:\users\xxxx\AppData\Roaming\Mozilla\Firefox\Profiles\uhewijt8.default\
FF - prefs.js: browser.startup.homepage - about:home
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
URLSearchHooks-{c840e246-6b95-475e-9bd7-caa1c7eca9f2} - (no file)
Wow6432Node-HKCU-Run-AdobeBridge - (no file)
.
.
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\Akamai]
"ServiceDll"="c:\program files (x86)\common files\akamai/netsession_win_5891ae0.dll"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\npggsvc]
"ImagePath"="c:\windows\system32\GameMon.des -service"
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_USERS\S-1-5-21-3520745990-2397459756-1707785564-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\C]
@DACL=(02 0000)
.
[HKEY_USERS\S-1-5-21-3520745990-2397459756-1707785564-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC]
@DACL=(02 0000)
.
[HKEY_USERS\S-1-5-21-3520745990-2397459756-1707785564-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\D]
@DACL=(02 0000)
.
[HKEY_USERS\S-1-5-21-3520745990-2397459756-1707785564-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\E]
@DACL=(02 0000)
.
[HKEY_USERS\S-1-5-21-3520745990-2397459756-1707785564-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\F]
@DACL=(02 0000)
.
[HKEY_USERS\S-1-5-21-3520745990-2397459756-1707785564-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\G]
@DACL=(02 0000)
.
[HKEY_USERS\S-1-5-21-3520745990-2397459756-1707785564-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\H]
@DACL=(02 0000)
.
[HKEY_USERS\S-1-5-21-3520745990-2397459756-1707785564-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\I]
@DACL=(02 0000)
.
[HKEY_USERS\S-1-5-21-3520745990-2397459756-1707785564-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\K]
@DACL=(02 0000)
.
[HKEY_USERS\S-1-5-21-3520745990-2397459756-1707785564-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\L]
@DACL=(02 0000)
.
[HKEY_USERS\S-1-5-21-3520745990-2397459756-1707785564-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{2355f339-4f19-11e1-ba1f-002522896cc3}]
@DACL=(02 0000)
.
[HKEY_USERS\S-1-5-21-3520745990-2397459756-1707785564-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{281d84ca-d6e0-11e0-8e36-002522896cc3}]
@DACL=(02 0000)
.
[HKEY_USERS\S-1-5-21-3520745990-2397459756-1707785564-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{3787ee3c-1e82-11e1-b51a-806e6f6e6963}]
@DACL=(02 0000)
.
[HKEY_USERS\S-1-5-21-3520745990-2397459756-1707785564-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{38097c84-4a64-11e1-9f46-002522896cc3}]
@DACL=(02 0000)
.
[HKEY_USERS\S-1-5-21-3520745990-2397459756-1707785564-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{39d142ca-deea-11e0-87ed-002522896cc3}]
@DACL=(02 0000)
.
[HKEY_USERS\S-1-5-21-3520745990-2397459756-1707785564-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{43ee8966-9ead-11e1-8540-002522896cc3}]
@DACL=(02 0000)
.
[HKEY_USERS\S-1-5-21-3520745990-2397459756-1707785564-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{43ee896c-9ead-11e1-8540-002522896cc3}]
@DACL=(02 0000)
.
[HKEY_USERS\S-1-5-21-3520745990-2397459756-1707785564-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{43ee898d-9ead-11e1-8540-002522896cc3}]
@DACL=(02 0000)
.
[HKEY_USERS\S-1-5-21-3520745990-2397459756-1707785564-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{43ee8994-9ead-11e1-8540-002522896cc3}]
@DACL=(02 0000)
.
[HKEY_USERS\S-1-5-21-3520745990-2397459756-1707785564-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{43ee8999-9ead-11e1-8540-002522896cc3}]
@DACL=(02 0000)
.
[HKEY_USERS\S-1-5-21-3520745990-2397459756-1707785564-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{58fc216b-8a07-11e0-b987-002522896cc3}]
@DACL=(02 0000)
.
[HKEY_USERS\S-1-5-21-3520745990-2397459756-1707785564-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{6dfa3e2e-6aa8-11e0-ab78-002522896cc3}]
@DACL=(02 0000)
.
[HKEY_USERS\S-1-5-21-3520745990-2397459756-1707785564-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{6dfa3e30-6aa8-11e0-ab78-002522896cc3}]
@DACL=(02 0000)
.
[HKEY_USERS\S-1-5-21-3520745990-2397459756-1707785564-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{6eeef941-9d78-11e0-9f0d-002522896cc3}]
@DACL=(02 0000)
.
[HKEY_USERS\S-1-5-21-3520745990-2397459756-1707785564-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{7fed289f-b3a2-11e0-a98b-002522896cc3}]
@DACL=(02 0000)
.
[HKEY_USERS\S-1-5-21-3520745990-2397459756-1707785564-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{8ba7dec2-6c33-11e0-94cf-002522896cc3}]
@DACL=(02 0000)
.
[HKEY_USERS\S-1-5-21-3520745990-2397459756-1707785564-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{8ba7defb-6c33-11e0-94cf-002522896cc3}]
@DACL=(02 0000)
.
[HKEY_USERS\S-1-5-21-3520745990-2397459756-1707785564-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{8db05cac-6870-11e0-b5f1-806e6f6e6963}]
@DACL=(02 0000)
.
[HKEY_USERS\S-1-5-21-3520745990-2397459756-1707785564-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{8db05caf-6870-11e0-b5f1-806e6f6e6963}]
@DACL=(02 0000)
.
[HKEY_USERS\S-1-5-21-3520745990-2397459756-1707785564-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{8deb6cf6-5a14-11e1-9b0e-002522896cc3}]
@DACL=(02 0000)
.
[HKEY_USERS\S-1-5-21-3520745990-2397459756-1707785564-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{985a43c8-3ce0-11e1-86e2-002522896cc3}]
@DACL=(02 0000)
.
[HKEY_USERS\S-1-5-21-3520745990-2397459756-1707785564-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{9ca72bb1-bcd3-11e0-851a-002522896cc3}]
@DACL=(02 0000)
.
[HKEY_USERS\S-1-5-21-3520745990-2397459756-1707785564-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{a16bfb40-68ce-11e0-8990-806e6f6e6963}]
@DACL=(02 0000)
.
[HKEY_USERS\S-1-5-21-3520745990-2397459756-1707785564-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{a16bfb41-68ce-11e0-8990-806e6f6e6963}]
@DACL=(02 0000)
.
[HKEY_USERS\S-1-5-21-3520745990-2397459756-1707785564-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{a16bfb42-68ce-11e0-8990-806e6f6e6963}]
@DACL=(02 0000)
.
[HKEY_USERS\S-1-5-21-3520745990-2397459756-1707785564-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{a16bfb43-68ce-11e0-8990-806e6f6e6963}]
@DACL=(02 0000)
.
[HKEY_USERS\S-1-5-21-3520745990-2397459756-1707785564-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{a16bfb44-68ce-11e0-8990-806e6f6e6963}]
@DACL=(02 0000)
.
[HKEY_USERS\S-1-5-21-3520745990-2397459756-1707785564-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{a16bfe32-68ce-11e0-8990-002522896cc3}]
@DACL=(02 0000)
.
[HKEY_USERS\S-1-5-21-3520745990-2397459756-1707785564-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{a16bfe3f-68ce-11e0-8990-002522896cc3}]
@DACL=(02 0000)
.
[HKEY_USERS\S-1-5-21-3520745990-2397459756-1707785564-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{a248b4ac-7a27-11e1-8172-002522896cc3}]
@DACL=(02 0000)
.
[HKEY_USERS\S-1-5-21-3520745990-2397459756-1707785564-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{b1efb7c5-c582-11e0-8e43-002522896cc3}]
@DACL=(02 0000)
.
[HKEY_USERS\S-1-5-21-3520745990-2397459756-1707785564-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c1198fc0-72f7-11e0-be5c-002522896cc3}]
@DACL=(02 0000)
.
[HKEY_USERS\S-1-5-21-3520745990-2397459756-1707785564-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{d01ccce6-49a0-11e1-9b78-002522896cc3}]
@DACL=(02 0000)
.
[HKEY_USERS\S-1-5-21-3520745990-2397459756-1707785564-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{d205c912-a6cb-11e0-aed1-002522896cc3}]
@DACL=(02 0000)
.
[HKEY_USERS\S-1-5-21-3520745990-2397459756-1707785564-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e797e68a-e220-11e0-91ab-002522896cc3}]
@DACL=(02 0000)
.
[HKEY_USERS\S-1-5-21-3520745990-2397459756-1707785564-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{f6fb810a-bf32-11e0-a585-002522896cc3}]
@DACL=(02 0000)
.
[HKEY_USERS\S-1-5-21-3520745990-2397459756-1707785564-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{f6fb82e7-bf32-11e0-a585-002522896cc3}]
@DACL=(02 0000)
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10i_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10i_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10i.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.10"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10i.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10i.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10i.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\OldTimer Tools\OTL\Files]
@DACL=(02 0000)
"c:\\Users\\xxxx\\AppData\\LocalLow\\Sun\\Java\\Deployment\\cache\\6.0"=""
"c:\\Users\\xxxx\\AppData\\LocalLow\\Sun\\Java\\Deployment\\cache"=""
"g:\\zock\\old_school_emulatoren\\PS2.Emulator.For.PC\\pcsx2_0.6\\plugins"=""
"g:\\zock\\old_school_emulatoren\\PS2.Emulator.For.PC\\pcsx2_0.6\\patches"=""
"g:\\zock\\old_school_emulatoren\\PS2.Emulator.For.PC\\pcsx2_0.6\\Langs\\tr\\LC_MESSAGES\\CVS"=""
"g:\\zock\\old_school_emulatoren\\PS2.Emulator.For.PC\\pcsx2_0.6\\Langs\\tr\\LC_MESSAGES"=""
"g:\\zock\\old_school_emulatoren\\PS2.Emulator.For.PC\\pcsx2_0.6\\Langs\\tr\\CVS"=""
"g:\\zock\\old_school_emulatoren\\PS2.Emulator.For.PC\\pcsx2_0.6\\Langs\\tr"=""
"g:\\zock\\old_school_emulatoren\\PS2.Emulator.For.PC\\pcsx2_0.6\\Langs\\ro\\LC_MESSAGES\\CVS"=""
"g:\\zock\\old_school_emulatoren\\PS2.Emulator.For.PC\\pcsx2_0.6\\Langs\\ro\\LC_MESSAGES"=""
"g:\\zock\\old_school_emulatoren\\PS2.Emulator.For.PC\\pcsx2_0.6\\Langs\\ro\\CVS"=""
"g:\\zock\\old_school_emulatoren\\PS2.Emulator.For.PC\\pcsx2_0.6\\Langs\\ro"=""
"g:\\zock\\old_school_emulatoren\\PS2.Emulator.For.PC\\pcsx2_0.6\\Langs\\nl\\LC_MESSAGES\\CVS"=""
"g:\\zock\\old_school_emulatoren\\PS2.Emulator.For.PC\\pcsx2_0.6\\Langs\\nl\\LC_MESSAGES"=""
"g:\\zock\\old_school_emulatoren\\PS2.Emulator.For.PC\\pcsx2_0.6\\Langs\\nl\\CVS"=""
"g:\\zock\\old_school_emulatoren\\PS2.Emulator.For.PC\\pcsx2_0.6\\Langs\\nl"=""
"g:\\zock\\old_school_emulatoren\\PS2.Emulator.For.PC\\pcsx2_0.6\\Langs\\ja\\LC_MESSAGES\\CVS"=""
"g:\\zock\\old_school_emulatoren\\PS2.Emulator.For.PC\\pcsx2_0.6\\Langs\\ja\\LC_MESSAGES"=""
"g:\\zock\\old_school_emulatoren\\PS2.Emulator.For.PC\\pcsx2_0.6\\Langs\\ja\\CVS"=""
"g:\\zock\\old_school_emulatoren\\PS2.Emulator.For.PC\\pcsx2_0.6\\Langs\\ja"=""
"g:\\zock\\old_school_emulatoren\\PS2.Emulator.For.PC\\pcsx2_0.6\\Langs\\it\\LC_MESSAGES\\CVS"=""
"g:\\zock\\old_school_emulatoren\\PS2.Emulator.For.PC\\pcsx2_0.6\\Langs\\it\\LC_MESSAGES"=""
"g:\\zock\\old_school_emulatoren\\PS2.Emulator.For.PC\\pcsx2_0.6\\Langs\\it\\CVS"=""
"g:\\zock\\old_school_emulatoren\\PS2.Emulator.For.PC\\pcsx2_0.6\\Langs\\it"=""
"g:\\zock\\old_school_emulatoren\\PS2.Emulator.For.PC\\pcsx2_0.6\\Langs\\fr\\LC_MESSAGES\\CVS"=""
"g:\\zock\\old_school_emulatoren\\PS2.Emulator.For.PC\\pcsx2_0.6\\Langs\\fr\\LC_MESSAGES"=""
"g:\\zock\\old_school_emulatoren\\PS2.Emulator.For.PC\\pcsx2_0.6\\Langs\\fr\\CVS"=""
"g:\\zock\\old_school_emulatoren\\PS2.Emulator.For.PC\\pcsx2_0.6\\Langs\\fr"=""
"g:\\zock\\old_school_emulatoren\\PS2.Emulator.For.PC\\pcsx2_0.6\\Langs\\es\\LC_MESSAGES\\CVS"=""
"g:\\zock\\old_school_emulatoren\\PS2.Emulator.For.PC\\pcsx2_0.6\\Langs\\es\\LC_MESSAGES"=""
"g:\\zock\\old_school_emulatoren\\PS2.Emulator.For.PC\\pcsx2_0.6\\Langs\\es\\CVS"=""
"g:\\zock\\old_school_emulatoren\\PS2.Emulator.For.PC\\pcsx2_0.6\\Langs\\es"=""
"g:\\zock\\old_school_emulatoren\\PS2.Emulator.For.PC\\pcsx2_0.6\\Langs\\el\\LC_MESSAGES\\CVS"=""
"g:\\zock\\old_school_emulatoren\\PS2.Emulator.For.PC\\pcsx2_0.6\\Langs\\el\\LC_MESSAGES"=""
"g:\\zock\\old_school_emulatoren\\PS2.Emulator.For.PC\\pcsx2_0.6\\Langs\\el\\CVS"=""
"g:\\zock\\old_school_emulatoren\\PS2.Emulator.For.PC\\pcsx2_0.6\\Langs\\el"=""
"g:\\zock\\old_school_emulatoren\\PS2.Emulator.For.PC\\pcsx2_0.6\\Langs\\de\\LC_MESSAGES\\CVS"=""
"g:\\zock\\old_school_emulatoren\\PS2.Emulator.For.PC\\pcsx2_0.6\\Langs\\de\\LC_MESSAGES"=""
"g:\\zock\\old_school_emulatoren\\PS2.Emulator.For.PC\\pcsx2_0.6\\Langs\\de\\CVS"=""
"g:\\zock\\old_school_emulatoren\\PS2.Emulator.For.PC\\pcsx2_0.6\\Langs\\de"=""
"g:\\zock\\old_school_emulatoren\\PS2.Emulator.For.PC\\pcsx2_0.6\\Langs\\ca\\LC_MESSAGES\\CVS"=""
"g:\\zock\\old_school_emulatoren\\PS2.Emulator.For.PC\\pcsx2_0.6\\Langs\\ca\\LC_MESSAGES"=""
"g:\\zock\\old_school_emulatoren\\PS2.Emulator.For.PC\\pcsx2_0.6\\Langs\\ca\\CVS"=""
"g:\\zock\\old_school_emulatoren\\PS2.Emulator.For.PC\\pcsx2_0.6\\Langs\\ca"=""
"g:\\zock\\old_school_emulatoren\\PS2.Emulator.For.PC\\pcsx2_0.6\\Langs\\bg\\LC_MESSAGES\\CVS"=""
"g:\\zock\\old_school_emulatoren\\PS2.Emulator.For.PC\\pcsx2_0.6\\Langs\\bg\\LC_MESSAGES"=""
"g:\\zock\\old_school_emulatoren\\PS2.Emulator.For.PC\\pcsx2_0.6\\Langs\\bg\\CVS"=""
"g:\\zock\\old_school_emulatoren\\PS2.Emulator.For.PC\\pcsx2_0.6\\Langs\\bg"=""
"g:\\zock\\old_school_emulatoren\\PS2.Emulator.For.PC\\pcsx2_0.6\\Langs"=""
"g:\\zock\\old_school_emulatoren\\PS2.Emulator.For.PC\\pcsx2_0.6\\Docs"=""
"g:\\zock\\old_school_emulatoren\\PS2.Emulator.For.PC\\pcsx2_0.6"=""
"g:\\zock\\old_school_emulatoren\\PS2.Emulator.For.PC"=""
"i:\\backup_E\\zock\\old_school_emulatoren\\PS2.Emulator.For.PC\\pcsx2_0.6\\plugins"=""
"i:\\backup_E\\zock\\old_school_emulatoren\\PS2.Emulator.For.PC\\pcsx2_0.6\\patches"=""
"i:\\backup_E\\zock\\old_school_emulatoren\\PS2.Emulator.For.PC\\pcsx2_0.6\\Langs\\tr\\LC_MESSAGES\\CVS"=""
"i:\\backup_E\\zock\\old_school_emulatoren\\PS2.Emulator.For.PC\\pcsx2_0.6\\Langs\\tr\\LC_MESSAGES"=""
"i:\\backup_E\\zock\\old_school_emulatoren\\PS2.Emulator.For.PC\\pcsx2_0.6\\Langs\\tr\\CVS"=""
"i:\\backup_E\\zock\\old_school_emulatoren\\PS2.Emulator.For.PC\\pcsx2_0.6\\Langs\\tr"=""
"i:\\backup_E\\zock\\old_school_emulatoren\\PS2.Emulator.For.PC\\pcsx2_0.6\\Langs\\ro\\LC_MESSAGES\\CVS"=""
"i:\\backup_E\\zock\\old_school_emulatoren\\PS2.Emulator.For.PC\\pcsx2_0.6\\Langs\\ro\\LC_MESSAGES"=""
"i:\\backup_E\\zock\\old_school_emulatoren\\PS2.Emulator.For.PC\\pcsx2_0.6\\Langs\\ro\\CVS"=""
"i:\\backup_E\\zock\\old_school_emulatoren\\PS2.Emulator.For.PC\\pcsx2_0.6\\Langs\\ro"=""
"i:\\backup_E\\zock\\old_school_emulatoren\\PS2.Emulator.For.PC\\pcsx2_0.6\\Langs\\nl\\LC_MESSAGES\\CVS"=""
"i:\\backup_E\\zock\\old_school_emulatoren\\PS2.Emulator.For.PC\\pcsx2_0.6\\Langs\\nl\\LC_MESSAGES"=""
"i:\\backup_E\\zock\\old_school_emulatoren\\PS2.Emulator.For.PC\\pcsx2_0.6\\Langs\\nl\\CVS"=""
"i:\\backup_E\\zock\\old_school_emulatoren\\PS2.Emulator.For.PC\\pcsx2_0.6\\Langs\\nl"=""
"i:\\backup_E\\zock\\old_school_emulatoren\\PS2.Emulator.For.PC\\pcsx2_0.6\\Langs\\ja\\LC_MESSAGES\\CVS"=""
"i:\\backup_E\\zock\\old_school_emulatoren\\PS2.Emulator.For.PC\\pcsx2_0.6\\Langs\\ja\\LC_MESSAGES"=""
"i:\\backup_E\\zock\\old_school_emulatoren\\PS2.Emulator.For.PC\\pcsx2_0.6\\Langs\\ja\\CVS"=""
"i:\\backup_E\\zock\\old_school_emulatoren\\PS2.Emulator.For.PC\\pcsx2_0.6\\Langs\\ja"=""
"i:\\backup_E\\zock\\old_school_emulatoren\\PS2.Emulator.For.PC\\pcsx2_0.6\\Langs\\it\\LC_MESSAGES\\CVS"=""
"i:\\backup_E\\zock\\old_school_emulatoren\\PS2.Emulator.For.PC\\pcsx2_0.6\\Langs\\it\\LC_MESSAGES"=""
"i:\\backup_E\\zock\\old_school_emulatoren\\PS2.Emulator.For.PC\\pcsx2_0.6\\Langs\\it\\CVS"=""
"i:\\backup_E\\zock\\old_school_emulatoren\\PS2.Emulator.For.PC\\pcsx2_0.6\\Langs\\it"=""
"i:\\backup_E\\zock\\old_school_emulatoren\\PS2.Emulator.For.PC\\pcsx2_0.6\\Langs\\fr\\LC_MESSAGES\\CVS"=""
"i:\\backup_E\\zock\\old_school_emulatoren\\PS2.Emulator.For.PC\\pcsx2_0.6\\Langs\\fr\\LC_MESSAGES"=""
"i:\\backup_E\\zock\\old_school_emulatoren\\PS2.Emulator.For.PC\\pcsx2_0.6\\Langs\\fr\\CVS"=""
"i:\\backup_E\\zock\\old_school_emulatoren\\PS2.Emulator.For.PC\\pcsx2_0.6\\Langs\\fr"=""
"i:\\backup_E\\zock\\old_school_emulatoren\\PS2.Emulator.For.PC\\pcsx2_0.6\\Langs\\es\\LC_MESSAGES\\CVS"=""
"i:\\backup_E\\zock\\old_school_emulatoren\\PS2.Emulator.For.PC\\pcsx2_0.6\\Langs\\es\\LC_MESSAGES"=""
"i:\\backup_E\\zock\\old_school_emulatoren\\PS2.Emulator.For.PC\\pcsx2_0.6\\Langs\\es\\CVS"=""
"i:\\backup_E\\zock\\old_school_emulatoren\\PS2.Emulator.For.PC\\pcsx2_0.6\\Langs\\es"=""
"i:\\backup_E\\zock\\old_school_emulatoren\\PS2.Emulator.For.PC\\pcsx2_0.6\\Langs\\el\\LC_MESSAGES\\CVS"=""
"i:\\backup_E\\zock\\old_school_emulatoren\\PS2.Emulator.For.PC\\pcsx2_0.6\\Langs\\el\\LC_MESSAGES"=""
"i:\\backup_E\\zock\\old_school_emulatoren\\PS2.Emulator.For.PC\\pcsx2_0.6\\Langs\\el\\CVS"=""
"i:\\backup_E\\zock\\old_school_emulatoren\\PS2.Emulator.For.PC\\pcsx2_0.6\\Langs\\el"=""
"i:\\backup_E\\zock\\old_school_emulatoren\\PS2.Emulator.For.PC\\pcsx2_0.6\\Langs\\de\\LC_MESSAGES\\CVS"=""
"i:\\backup_E\\zock\\old_school_emulatoren\\PS2.Emulator.For.PC\\pcsx2_0.6\\Langs\\de\\LC_MESSAGES"=""
"i:\\backup_E\\zock\\old_school_emulatoren\\PS2.Emulator.For.PC\\pcsx2_0.6\\Langs\\de\\CVS"=""
"i:\\backup_E\\zock\\old_school_emulatoren\\PS2.Emulator.For.PC\\pcsx2_0.6\\Langs\\de"=""
"i:\\backup_E\\zock\\old_school_emulatoren\\PS2.Emulator.For.PC\\pcsx2_0.6\\Langs\\ca\\LC_MESSAGES\\CVS"=""
"i:\\backup_E\\zock\\old_school_emulatoren\\PS2.Emulator.For.PC\\pcsx2_0.6\\Langs\\ca\\LC_MESSAGES"=""
"i:\\backup_E\\zock\\old_school_emulatoren\\PS2.Emulator.For.PC\\pcsx2_0.6\\Langs\\ca\\CVS"=""
"i:\\backup_E\\zock\\old_school_emulatoren\\PS2.Emulator.For.PC\\pcsx2_0.6\\Langs\\ca"=""
"i:\\backup_E\\zock\\old_school_emulatoren\\PS2.Emulator.For.PC\\pcsx2_0.6\\Langs\\bg\\LC_MESSAGES\\CVS"=""
"i:\\backup_E\\zock\\old_school_emulatoren\\PS2.Emulator.For.PC\\pcsx2_0.6\\Langs\\bg\\LC_MESSAGES"=""
"i:\\backup_E\\zock\\old_school_emulatoren\\PS2.Emulator.For.PC\\pcsx2_0.6\\Langs\\bg\\CVS"=""
"i:\\backup_E\\zock\\old_school_emulatoren\\PS2.Emulator.For.PC\\pcsx2_0.6\\Langs\\bg"=""
"i:\\backup_E\\zock\\old_school_emulatoren\\PS2.Emulator.For.PC\\pcsx2_0.6\\Langs"=""
"i:\\backup_E\\zock\\old_school_emulatoren\\PS2.Emulator.For.PC\\pcsx2_0.6\\Docs"=""
"i:\\backup_E\\zock\\old_school_emulatoren\\PS2.Emulator.For.PC\\pcsx2_0.6"=""
"i:\\backup_E\\zock\\old_school_emulatoren\\PS2.Emulator.For.PC"=""
"c:\\Users\\xxxx\\AppData\\Local\\Temp\\FXSAPIDebugLogFile.txt"=""
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Zeit der Fertigstellung: 2012-10-05 21:56:16
ComboFix-quarantined-files.txt 2012-10-05 19:56
.
Vor Suchlauf: 11 Verzeichnis(se), 907.307.212.800 Bytes frei
Nach Suchlauf: 17 Verzeichnis(se), 907.171.930.112 Bytes frei
.
- - End Of File - - E59476299F9F5E30C10019524B84A3A4
|
|
07.10.2012, 04:54
| #20 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | GVU Trojaner, ukash usw. Bitte nun Logs mit GMER und OSAM erstellen und posten. GMER stürzt häufiger ab, wenn das Tool auch beim 2. Mal nicht will, lass es einfach weg und führ nur OSAM aus - die Online-Abfrage durch OSAM bitte überspringen. Bei OSAM bitte darauf auch achten, dass Du das Log auch als *.log und nicht *.html oder so abspeicherst. Hinweis: Zum Entpacken von OSAM bitte WinRAR oder 7zip verwenden! Stell auch unbedingt den Virenscanner ab, besonders der Scanner von McAfee meldet oft einen Fehalarm in OSAM! Downloade dir bitte  aswMBR.exe und speichere die Datei auf deinem Desktop.
Wichtig: Drücke keinesfalls einen der Fix Buttons ohne Anweisung Hinweis: Sollte der Scan Button ausgeblendet sein, schließe das Tool und starte es erneut. Sollte der Scan abbrechen und das Programm abstürzen, dann teile mir das mit und wähle unter AV Scan die Einstellung (none). Noch ein Hinweis: Sollte aswMBR abstürzen und es kommt eine Meldung wie "aswMBR.exe funktioniert nicht mehr, dann mach Folgendes: Starte aswMBR neu, wähle unten links im Drop-Down-Menü (unten links im Fenster von aswMBR) bei "AV scan" (none) aus und klick nochmal auf den Scan-Button.
__________________ Logfiles bitte immer in CODE-Tags posten |
|
| Themen zu GVU Trojaner, ukash usw. |
| antivir, autorun, avira, bho, compare, converter, dateien gelöscht, error, fehler, firefox, flash player, gvutrojaner, helper, install.exe, kaspersky, logfile, mozilla, mp3, netzwerk, office 2007, plug-in, prozessor, realtek, registry, richtlinie, rundll, security, senden, server, software, sperrbildschirm, spotify web helper, svchost.exe, trojan.delf, trojaner, ukash betrug, ukash zahlungsaufforderung, version., wgsdgsdgdsgsd.exe |
Linear-Darstellung
