|
Plagegeister aller Art und deren Bekämpfung: Google redirect Virus und nichts hilft scheinbarWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
02.02.2013, 13:13 | #1 |
| Google redirect Virus und nichts hilft scheinbar Hallo zusammen, Ich bin leider ein Computerlaie und seit kurzem habe ich ein Problem mit Google. Bei der Suche in Google werden, obwohl ich die vermeintlich richtige Seite anklicke, andere Seiten aufgemacht. Dies zum teil im Hindergrund. Ich habe bereits Antivirus und Anti Spyware Programme laufen lassen, aber nichts hilft... Kann mir jemand helfen? Alle txt Dateien aus der Neustarter Anleitung habe ich als zip Datei angehangen, reicht das so? Vielen Dank vorab für eure Hilfe und verzweifelte Grüße, Peter |
02.02.2013, 13:18 | #2 |
| Google redirect Virus und nichts hilft scheinbar Ich hatte auch noch ein Programm namens TDS Killer ausprobiert... Leider ohne Erfolg:
__________________12:41:38.0015 5728 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35 12:41:38.0311 5728 ============================================================ 12:41:38.0311 5728 Current date / time: 2013/02/01 12:41:38.0311 12:41:38.0311 5728 SystemInfo: 12:41:38.0311 5728 12:41:38.0311 5728 OS Version: 6.1.7600 ServicePack: 0.0 12:41:38.0311 5728 Product type: Workstation 12:41:38.0311 5728 ComputerName: MOBIL-PC 12:41:38.0311 5728 UserName: mobil 12:41:38.0311 5728 Windows directory: C:\Windows 12:41:38.0311 5728 System windows directory: C:\Windows 12:41:38.0311 5728 Processor architecture: Intel x86 12:41:38.0311 5728 Number of processors: 2 12:41:38.0311 5728 Page size: 0x1000 12:41:38.0311 5728 Boot type: Normal boot 12:41:38.0311 5728 ============================================================ 12:41:40.0791 5728 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050 12:41:40.0807 5728 ============================================================ 12:41:40.0807 5728 \Device\Harddisk0\DR0: 12:41:40.0885 5728 MBR partitions: 12:41:40.0885 5728 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000 12:41:40.0885 5728 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0xC31E000 12:41:40.0885 5728 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0xC350800, BlocksNum 0x190DD000 12:41:40.0885 5728 ============================================================ 12:41:40.0885 5728 C: <-> \Device\Harddisk0\DR0\Partition2 12:41:41.0042 5728 F: <-> \Device\Harddisk0\DR0\Partition3 12:41:41.0042 5728 ============================================================ 12:41:41.0042 5728 Initialize success 12:41:41.0042 5728 ============================================================ 12:41:42.0555 5996 ============================================================ 12:41:42.0555 5996 Scan started 12:41:42.0555 5996 Mode: Manual; 12:41:42.0555 5996 ============================================================ 12:41:43.0117 5996 ================ Scan system memory ======================== 12:41:43.0117 5996 System memory - ok 12:41:43.0117 5996 ================ Scan services ============================= 12:41:43.0288 5996 [ 6D2ACA41739BFE8CB86EE8E85F29697D ] 1394ohci C:\Windows\system32\DRIVERS\1394ohci.sys 12:41:43.0288 5996 1394ohci - ok 12:41:43.0398 5996 ACDaemon - ok 12:41:43.0429 5996 [ F0E07D144C8685B8774BC32FC8DA4DF0 ] ACPI C:\Windows\system32\DRIVERS\ACPI.sys 12:41:43.0429 5996 ACPI - ok 12:41:43.0460 5996 [ 98D81CA942D19F7D9153B095162AC013 ] AcpiPmi C:\Windows\system32\DRIVERS\acpipmi.sys 12:41:43.0460 5996 AcpiPmi - ok 12:41:43.0554 5996 [ 424877CB9D5517F980FF7BACA2EB379D ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe 12:41:43.0554 5996 AdobeFlashPlayerUpdateSvc - ok 12:41:43.0600 5996 [ 21E785EBD7DC90A06391141AAC7892FB ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys 12:41:43.0616 5996 adp94xx - ok 12:41:43.0632 5996 [ 0C676BC278D5B59FF5ABD57BBE9123F2 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys 12:41:43.0647 5996 adpahci - ok 12:41:43.0663 5996 [ 7C7B5EE4B7B822EC85321FE23A27DB33 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys 12:41:43.0663 5996 adpu320 - ok 12:41:43.0710 5996 [ 8B5EEFEEC1E6D1A72A06C526628AD161 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll 12:41:43.0710 5996 AeLookupSvc - ok 12:41:43.0741 5996 [ 640C921EC74B53462969EF597FCC9129 ] AFBAgent C:\Windows\system32\FBAgent.exe 12:41:43.0741 5996 AFBAgent - ok 12:41:43.0788 5996 [ FE3EA6E9AFC1A78E6EDCA121E006AFB7 ] Afc C:\Windows\system32\drivers\Afc.sys 12:41:43.0788 5996 Afc - ok 12:41:43.0819 5996 [ DDC040FDB01EF1712A6B13E52AFB104C ] AFD C:\Windows\system32\drivers\afd.sys 12:41:43.0819 5996 AFD - ok 12:41:43.0850 5996 [ 507812C3054C21CEF746B6EE3D04DD6E ] agp440 C:\Windows\system32\DRIVERS\agp440.sys 12:41:43.0850 5996 agp440 - ok 12:41:43.0881 5996 [ 8B30250D573A8F6B4BD23195160D8707 ] aic78xx C:\Windows\system32\DRIVERS\djsvs.sys 12:41:43.0881 5996 aic78xx - ok 12:41:43.0928 5996 [ 18A54E132947CD98FEA9ACCC57F98F13 ] ALG C:\Windows\System32\alg.exe 12:41:43.0928 5996 ALG - ok 12:41:43.0928 5996 [ 0D40BCF52EA90FC7DF2AEAB6503DEA44 ] aliide C:\Windows\system32\DRIVERS\aliide.sys 12:41:43.0928 5996 aliide - ok 12:41:43.0959 5996 [ 3C6600A0696E90A463771C7422E23AB5 ] amdagp C:\Windows\system32\DRIVERS\amdagp.sys 12:41:43.0959 5996 amdagp - ok 12:41:43.0975 5996 [ CD5914170297126B6266860198D1D4F0 ] amdide C:\Windows\system32\DRIVERS\amdide.sys 12:41:43.0975 5996 amdide - ok 12:41:43.0990 5996 [ 00DDA200D71BAC534BF56A9DB5DFD666 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys 12:41:43.0990 5996 AmdK8 - ok 12:41:44.0006 5996 [ 3CBF30F5370FDA40DD3E87DF38EA53B6 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys 12:41:44.0006 5996 AmdPPM - ok 12:41:44.0022 5996 [ 2101A86C25C154F8314B24EF49D7FBC2 ] amdsata C:\Windows\system32\DRIVERS\amdsata.sys 12:41:44.0037 5996 amdsata - ok 12:41:44.0053 5996 [ EA43AF0C423FF267355F74E7A53BDABA ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys 12:41:44.0053 5996 amdsbs - ok 12:41:44.0068 5996 [ B81C2B5616F6420A9941EA093A92B150 ] amdxata C:\Windows\system32\DRIVERS\amdxata.sys 12:41:44.0084 5996 amdxata - ok 12:41:44.0115 5996 [ 0E46FDA73FD47FA4C61223E45187F7D5 ] androidusb C:\Windows\system32\Drivers\androidusb.sys 12:41:44.0115 5996 androidusb - ok 12:41:44.0162 5996 [ FEB834C02CE1E84B6A38F953CA067706 ] AppID C:\Windows\system32\drivers\appid.sys 12:41:44.0162 5996 AppID - ok 12:41:44.0193 5996 [ 62A9C86CB6085E20DB4823E4E97826F5 ] AppIDSvc C:\Windows\System32\appidsvc.dll 12:41:44.0193 5996 AppIDSvc - ok 12:41:44.0209 5996 [ 7DEAD9E3F65DCB2794F2711003BBF650 ] Appinfo C:\Windows\System32\appinfo.dll 12:41:44.0209 5996 Appinfo - ok 12:41:44.0349 5996 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe 12:41:44.0349 5996 Apple Mobile Device - ok 12:41:44.0380 5996 [ 2932004F49677BD84DBC72EDB754FFB3 ] arc C:\Windows\system32\DRIVERS\arc.sys 12:41:44.0396 5996 arc - ok 12:41:44.0412 5996 [ 5D6F36C46FD283AE1B57BD2E9FEB0BC7 ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys 12:41:44.0412 5996 arcsas - ok 12:41:44.0521 5996 [ 18E5C2F937F9DEB8C282DF66A3761925 ] ASLDRService C:\Program Files\ASUS\ATK Hotkey\ASLDRSrv.exe 12:41:44.0521 5996 ASLDRService - ok 12:41:44.0552 5996 [ ADD2ADE1C2B285AB8378D2DAAF991481 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys 12:41:44.0552 5996 AsyncMac - ok 12:41:44.0568 5996 [ 338C86357871C167A96AB976519BF59E ] atapi C:\Windows\system32\DRIVERS\atapi.sys 12:41:44.0568 5996 atapi - ok 12:41:44.0646 5996 [ B01751CC563AECAC09BBE36AAA21FBEF ] athr C:\Windows\system32\DRIVERS\athr.sys 12:41:44.0646 5996 athr - ok 12:41:44.0692 5996 [ 510C873BFA135AA829F4180352772734 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll 12:41:44.0692 5996 AudioEndpointBuilder - ok 12:41:44.0708 5996 [ 510C873BFA135AA829F4180352772734 ] Audiosrv C:\Windows\System32\Audiosrv.dll 12:41:44.0724 5996 Audiosrv - ok 12:41:44.0786 5996 [ DD6A431B43E34B91A767D1CE33728175 ] AxInstSV C:\Windows\System32\AxInstSV.dll 12:41:44.0786 5996 AxInstSV - ok 12:41:44.0833 5996 [ 1A231ABEC60FD316EC54C66715543CEC ] b06bdrv C:\Windows\system32\DRIVERS\bxvbdx.sys 12:41:44.0833 5996 b06bdrv - ok 12:41:44.0864 5996 [ BD8869EB9CDE6BBE4508D869929869EE ] b57nd60x C:\Windows\system32\DRIVERS\b57nd60x.sys 12:41:44.0880 5996 b57nd60x - ok 12:41:44.0926 5996 [ EE1E9C3BB8228AE423DD38DB69128E71 ] BDESVC C:\Windows\System32\bdesvc.dll 12:41:44.0926 5996 BDESVC - ok 12:41:44.0942 5996 [ 505506526A9D467307B3C393DEDAF858 ] Beep C:\Windows\system32\drivers\Beep.sys 12:41:44.0942 5996 Beep - ok 12:41:44.0973 5996 [ 85AC71C045CEB054ED48A7841AAE0C11 ] BFE C:\Windows\System32\bfe.dll 12:41:44.0989 5996 BFE - ok 12:41:45.0020 5996 [ 53F476476F55A27F580661BDE09C4EC4 ] BITS C:\Windows\System32\qmgr.dll 12:41:45.0036 5996 BITS - ok 12:41:45.0067 5996 [ 2287078ED48FCFC477B05B20CF38F36F ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys 12:41:45.0067 5996 blbdrive - ok 12:41:45.0160 5996 [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe 12:41:45.0160 5996 Bonjour Service - ok 12:41:45.0223 5996 [ 9A5C671B7FBAE4865149BB11F59B91B2 ] bowser C:\Windows\system32\DRIVERS\bowser.sys 12:41:45.0223 5996 bowser - ok 12:41:45.0238 5996 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys 12:41:45.0238 5996 BrFiltLo - ok 12:41:45.0270 5996 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys 12:41:45.0270 5996 BrFiltUp - ok 12:41:45.0285 5996 [ 598E1280E7FF3744F4B8329366CC5635 ] Browser C:\Windows\System32\browser.dll 12:41:45.0301 5996 Browser - ok 12:41:45.0301 5996 [ 845B8CE732E67F3B4133164868C666EA ] Brserid C:\Windows\System32\Drivers\Brserid.sys 12:41:45.0301 5996 Brserid - ok 12:41:45.0348 5996 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys 12:41:45.0348 5996 BrSerWdm - ok 12:41:45.0363 5996 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys 12:41:45.0363 5996 BrUsbMdm - ok 12:41:45.0363 5996 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys 12:41:45.0379 5996 BrUsbSer - ok 12:41:45.0410 5996 [ ED3DF7C56CE0084EB2034432FC56565A ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys 12:41:45.0410 5996 BTHMODEM - ok 12:41:45.0457 5996 [ 1DF19C96EEF6C29D1C3E1A8678E07190 ] bthserv C:\Windows\system32\bthserv.dll 12:41:45.0457 5996 bthserv - ok 12:41:45.0488 5996 [ 77EA11B065E0A8AB902D78145CA51E10 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys 12:41:45.0488 5996 cdfs - ok 12:41:45.0519 5996 [ BA6E70AA0E6091BC39DE29477D866A77 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys 12:41:45.0519 5996 cdrom - ok 12:41:45.0566 5996 [ 628A9E30EC5E18DD5DE6BE4DBDC12198 ] CertPropSvc C:\Windows\System32\certprop.dll 12:41:45.0566 5996 CertPropSvc - ok 12:41:45.0582 5996 [ 3FE3FE94A34DF6FB06E6418D0F6A0060 ] circlass C:\Windows\system32\DRIVERS\circlass.sys 12:41:45.0582 5996 circlass - ok 12:41:45.0613 5996 [ 635181E0E9BBF16871BF5380D71DB02D ] CLFS C:\Windows\system32\CLFS.sys 12:41:45.0613 5996 CLFS - ok 12:41:45.0675 5996 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe 12:41:45.0675 5996 clr_optimization_v2.0.50727_32 - ok 12:41:45.0784 5996 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe 12:41:45.0784 5996 clr_optimization_v4.0.30319_32 - ok 12:41:45.0816 5996 [ DEA805815E587DAD1DD2C502220B5616 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys 12:41:45.0816 5996 CmBatt - ok 12:41:45.0831 5996 [ C537B1DB64D495B9B4717B4D6D9EDBF2 ] cmdide C:\Windows\system32\DRIVERS\cmdide.sys 12:41:45.0831 5996 cmdide - ok 12:41:45.0862 5996 [ 1B675691ED940766149C93E8F4488D68 ] CNG C:\Windows\system32\Drivers\cng.sys 12:41:45.0862 5996 CNG - ok 12:41:45.0878 5996 [ A6023D3823C37043986713F118A89BEE ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys 12:41:45.0878 5996 Compbatt - ok 12:41:45.0925 5996 [ F1724BA27E97D627F808FB0BA77A28A6 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys 12:41:45.0925 5996 CompositeBus - ok 12:41:45.0940 5996 COMSysApp - ok 12:41:45.0956 5996 [ 2C4EBCFC84A9B44F209DFF6C6E6C61D1 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys 12:41:45.0956 5996 crcdisk - ok 12:41:46.0003 5996 [ 9C231178CE4FB385F4B54B0A9080B8A4 ] CryptSvc C:\Windows\system32\cryptsvc.dll 12:41:46.0003 5996 CryptSvc - ok 12:41:46.0050 5996 [ A38F95E2A1A459E7F59D5713909C9111 ] dc3d C:\Windows\system32\DRIVERS\dc3d.sys 12:41:46.0050 5996 dc3d - ok 12:41:46.0081 5996 [ B82CD39E336973359D7C9BF911E8E84F ] DcomLaunch C:\Windows\system32\rpcss.dll 12:41:46.0096 5996 DcomLaunch - ok 12:41:46.0128 5996 [ 8D6E10A2D9A5EED59562D9B82CF804E1 ] defragsvc C:\Windows\System32\defragsvc.dll 12:41:46.0128 5996 defragsvc - ok 12:41:46.0159 5996 [ 8E09E52EE2E3CEB199EF3DD99CF9E3FB ] DfsC C:\Windows\system32\Drivers\dfsc.sys 12:41:46.0159 5996 DfsC - ok 12:41:46.0206 5996 [ C56495FBD770712367CAD35E5DE72DA6 ] Dhcp C:\Windows\system32\dhcpcore.dll 12:41:46.0206 5996 Dhcp - ok 12:41:46.0221 5996 [ 1A050B0274BFB3890703D490F330C0DA ] discache C:\Windows\system32\drivers\discache.sys 12:41:46.0221 5996 discache - ok 12:41:46.0237 5996 [ 565003F326F99802E68CA78F2A68E9FF ] Disk C:\Windows\system32\DRIVERS\disk.sys 12:41:46.0237 5996 Disk - ok 12:41:46.0284 5996 [ B15BE77A2BACF9C3177D27518AFE26A9 ] Dnscache C:\Windows\System32\dnsrslvr.dll 12:41:46.0284 5996 Dnscache - ok 12:41:46.0299 5996 [ 4408C85C21EEA48EB0CE486BAEEF0502 ] dot3svc C:\Windows\System32\dot3svc.dll 12:41:46.0299 5996 dot3svc - ok 12:41:46.0315 5996 [ 7FA81C6E11CAA594ADB52084DA73A1E5 ] DPS C:\Windows\system32\dps.dll 12:41:46.0330 5996 DPS - ok 12:41:46.0377 5996 [ B918E7C5F9BF77202F89E1A9539F2EB4 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys 12:41:46.0377 5996 drmkaud - ok 12:41:46.0518 5996 [ 1679A4669326CB1A67CC95658D273234 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys 12:41:46.0533 5996 DXGKrnl - ok 12:41:46.0580 5996 [ 8600142FA91C1B96367D3300AD0F3F3A ] EapHost C:\Windows\System32\eapsvc.dll 12:41:46.0580 5996 EapHost - ok 12:41:46.0689 5996 [ 024E1B5CAC09731E4D868E64DBFB4AB0 ] ebdrv C:\Windows\system32\DRIVERS\evbdx.sys 12:41:46.0720 5996 ebdrv - ok 12:41:46.0736 5996 [ F42309C4191C506B71DB5D1126D26318 ] EFS C:\Windows\System32\lsass.exe 12:41:46.0736 5996 EFS - ok 12:41:46.0814 5996 [ 1697C39978CD69F6FBC15302EDCECE1F ] ehRecvr C:\Windows\ehome\ehRecvr.exe 12:41:46.0814 5996 ehRecvr - ok 12:41:46.0845 5996 [ D389BFF34F80CAEDE417BF9D1507996A ] ehSched C:\Windows\ehome\ehsched.exe 12:41:46.0845 5996 ehSched - ok 12:41:46.0892 5996 [ 0ED67910C8C326796FAA00B2BF6D9D3C ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys 12:41:46.0892 5996 elxstor - ok 12:41:46.0908 5996 [ 8FC3208352DD3912C94367A206AB3F11 ] ErrDev C:\Windows\system32\DRIVERS\errdev.sys 12:41:46.0908 5996 ErrDev - ok 12:41:46.0954 5996 [ F6916EFC29D9953D5D0DF06882AE8E16 ] EventSystem C:\Windows\system32\es.dll 12:41:46.0954 5996 EventSystem - ok 12:41:46.0970 5996 [ 2DC9108D74081149CC8B651D3A26207F ] exfat C:\Windows\system32\drivers\exfat.sys 12:41:46.0970 5996 exfat - ok 12:41:46.0986 5996 [ 7E0AB74553476622FB6AE36F73D97D35 ] fastfat C:\Windows\system32\drivers\fastfat.sys 12:41:46.0986 5996 fastfat - ok 12:41:47.0033 5996 [ F7EA23CC5E6BF2181F3F399D54F6EFC1 ] Fax C:\Windows\system32\fxssvc.exe 12:41:47.0033 5996 Fax - ok 12:41:47.0065 5996 [ E817A017F82DF2A1F8CFDBDA29388B29 ] fdc C:\Windows\system32\DRIVERS\fdc.sys 12:41:47.0065 5996 fdc - ok 12:41:47.0111 5996 [ F3222C893BD2F5821A0179E5C71E88FB ] fdPHost C:\Windows\system32\fdPHost.dll 12:41:47.0111 5996 fdPHost - ok 12:41:47.0127 5996 [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B ] FDResPub C:\Windows\system32\fdrespub.dll 12:41:47.0127 5996 FDResPub - ok 12:41:47.0143 5996 [ 6CF00369C97F3CF563BE99BE983D13D8 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys 12:41:47.0143 5996 FileInfo - ok 12:41:47.0158 5996 [ 42C51DC94C91DA21CB9196EB64C45DB9 ] Filetrace C:\Windows\system32\drivers\filetrace.sys 12:41:47.0158 5996 Filetrace - ok 12:41:47.0174 5996 [ 87907AA70CB3C56600F1C2FB8841579B ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys 12:41:47.0174 5996 flpydisk - ok 12:41:47.0205 5996 [ 7520EC808E0C35E0EE6F841294316653 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys 12:41:47.0205 5996 FltMgr - ok 12:41:47.0267 5996 [ 7FE4995528A7529A761875151EE3D512 ] FontCache C:\Windows\system32\FntCache.dll 12:41:47.0283 5996 FontCache - ok 12:41:47.0361 5996 [ E56F39F6B7FDA0AC77A79B0FD3DE1A2F ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe 12:41:47.0361 5996 FontCache3.0.0.0 - ok 12:41:47.0392 5996 [ 1A16B57943853E598CFF37FE2B8CBF1D ] FsDepends C:\Windows\system32\drivers\FsDepends.sys 12:41:47.0392 5996 FsDepends - ok 12:41:47.0408 5996 [ A574B4360E438977038AAE4BF60D79A2 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys 12:41:47.0408 5996 Fs_Rec - ok 12:41:47.0455 5996 [ DAFBD9FE39197495AED6D51F3B85B5D2 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys 12:41:47.0455 5996 fvevol - ok 12:41:47.0486 5996 [ 65EE0C7A58B65E74AE05637418153938 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys 12:41:47.0486 5996 gagp30kx - ok 12:41:47.0548 5996 [ 185ADA973B5020655CEE342059A86CBB ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys 12:41:47.0548 5996 GEARAspiWDM - ok 12:41:47.0595 5996 [ 83013434503BDEBC0A2BE9B099DEB862 ] ghsdiagMDM C:\Windows\system32\DRIVERS\ghsdiagMDM.sys 12:41:47.0595 5996 ghsdiagMDM - ok 12:41:47.0642 5996 [ 8BA3C04702BF8F927AB36AE8313CA4EE ] gpsvc C:\Windows\System32\gpsvc.dll 12:41:47.0642 5996 gpsvc - ok 12:41:47.0720 5996 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe 12:41:47.0720 5996 gupdate - ok 12:41:47.0735 5996 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe 12:41:47.0735 5996 gupdatem - ok 12:41:47.0751 5996 [ C44E3C2BAB6837DB337DDEE7544736DB ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys 12:41:47.0751 5996 hcw85cir - ok 12:41:47.0813 5996 [ 3530CAD25DEBA7DC7DE8BB51632CBC5F ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys 12:41:47.0813 5996 HdAudAddService - ok 12:41:47.0845 5996 [ 717A2207FD6F13AD3E664C7D5A43C7BF ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys 12:41:47.0845 5996 HDAudBus - ok 12:41:47.0860 5996 [ 1D58A7F3E11A9731D0EAAAA8405ACC36 ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys 12:41:47.0860 5996 HidBatt - ok 12:41:47.0876 5996 [ 89448F40E6DF260C206A193A4683BA78 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys 12:41:47.0876 5996 HidBth - ok 12:41:47.0907 5996 [ CF50B4CF4A4F229B9F3C08351F99CA5E ] HidIr C:\Windows\system32\DRIVERS\hidir.sys 12:41:47.0907 5996 HidIr - ok 12:41:47.0954 5996 [ 2BC6F6A1992B3A77F5F41432CA6B3B6B ] hidserv C:\Windows\system32\hidserv.dll 12:41:47.0954 5996 hidserv - ok 12:41:47.0985 5996 [ 25072FB35AC90B25F9E4E3BACF774102 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys 12:41:47.0985 5996 HidUsb - ok 12:41:48.0016 5996 [ 741C2A45CA8407E374AABA3E330B7872 ] hkmsvc C:\Windows\system32\kmsvc.dll 12:41:48.0016 5996 hkmsvc - ok 12:41:48.0048 5996 [ A768CA158BB06782A2835B907F4873C3 ] HomeGroupListener C:\Windows\system32\ListSvc.dll 12:41:48.0048 5996 HomeGroupListener - ok 12:41:48.0095 5996 [ FB08DEC5EF43D0C66D83B8E9694E7549 ] HomeGroupProvider C:\Windows\system32\provsvc.dll 12:41:48.0095 5996 HomeGroupProvider - ok 12:41:48.0126 5996 [ 295FDC419039090EB8B49FFDBB374549 ] HpSAMD C:\Windows\system32\DRIVERS\HpSAMD.sys 12:41:48.0126 5996 HpSAMD - ok 12:41:48.0189 5996 [ C531C7FD9E8B62021112787C4E2C5A5A ] HTTP C:\Windows\system32\drivers\HTTP.sys 12:41:48.0189 5996 HTTP - ok 12:41:48.0204 5996 [ 8305F33CDE89AD6C7A0763ED0B5A8D42 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys 12:41:48.0204 5996 hwpolicy - ok 12:41:48.0236 5996 [ F151F0BDC47F4A28B1B20A0818EA36D6 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys 12:41:48.0236 5996 i8042prt - ok 12:41:48.0298 5996 [ 934AF4D7C5F457B9F0743F4299B77B67 ] iaStorV C:\Windows\system32\DRIVERS\iaStorV.sys 12:41:48.0298 5996 iaStorV - ok 12:41:48.0360 5996 [ 5AF815EB5BC9802E5A064E2BA62BFC0C ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe 12:41:48.0376 5996 idsvc - ok 12:41:48.0610 5996 [ 8266AE06DF974E5BA047B3E9E9E70B3F ] igfx C:\Windows\system32\DRIVERS\igdkmd32.sys 12:41:48.0672 5996 igfx - ok 12:41:48.0719 5996 [ 4173FF5708F3236CF25195FECD742915 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys 12:41:48.0719 5996 iirsp - ok 12:41:48.0766 5996 [ FAC0EE6562B121B1399D6E855583F7A5 ] IKEEXT C:\Windows\System32\ikeext.dll 12:41:48.0766 5996 IKEEXT - ok 12:41:48.0797 5996 [ A0F12F2C9BA6C72F3987CE780E77C130 ] intelide C:\Windows\system32\DRIVERS\intelide.sys 12:41:48.0797 5996 intelide - ok 12:41:48.0828 5996 [ 3B514D27BFC4ACCB4037BC6685F766E0 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys 12:41:48.0828 5996 intelppm - ok 12:41:48.0844 5996 [ ACB364B9075A45C0736E5C47BE5CAE19 ] IPBusEnum C:\Windows\system32\ipbusenum.dll 12:41:48.0844 5996 IPBusEnum - ok 12:41:48.0875 5996 [ 709D1761D3B19A932FF0238EA6D50200 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys 12:41:48.0875 5996 IpFilterDriver - ok 12:41:48.0906 5996 [ 477397B432A256A50EE7E4339EB9EA14 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll 12:41:48.0922 5996 iphlpsvc - ok 12:41:48.0938 5996 [ E4454B6C37D7FFD5649611F6496308A7 ] IPMIDRV C:\Windows\system32\DRIVERS\IPMIDrv.sys 12:41:48.0938 5996 IPMIDRV - ok 12:41:48.0953 5996 [ A5FA468D67ABCDAA36264E463A7BB0CD ] IPNAT C:\Windows\system32\drivers\ipnat.sys 12:41:48.0953 5996 IPNAT - ok 12:41:49.0047 5996 [ E8A39D41474BE42FD8830CED32932D6C ] iPod Service C:\Program Files\iPod\bin\iPodService.exe 12:41:49.0047 5996 iPod Service - ok 12:41:49.0079 5996 [ 42996CFF20A3084A56017B7902307E9F ] IRENUM C:\Windows\system32\drivers\irenum.sys 12:41:49.0079 5996 IRENUM - ok 12:41:49.0110 5996 [ 1F32BB6B38F62F7DF1A7AB7292638A35 ] isapnp C:\Windows\system32\DRIVERS\isapnp.sys 12:41:49.0110 5996 isapnp - ok 12:41:49.0141 5996 [ ED46C223AE46C6866AB77CDC41C404B7 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys 12:41:49.0141 5996 iScsiPrt - ok 12:41:49.0173 5996 [ ADEF52CA1AEAE82B50DF86B56413107E ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys 12:41:49.0173 5996 kbdclass - ok 12:41:49.0188 5996 [ 3D9F0EBF350EDCFD6498057301455964 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys 12:41:49.0204 5996 kbdhid - ok 12:41:49.0204 5996 [ F42309C4191C506B71DB5D1126D26318 ] KeyIso C:\Windows\system32\lsass.exe 12:41:49.0204 5996 KeyIso - ok 12:41:49.0235 5996 [ E36A061EC11B373826905B21BE10948F ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys 12:41:49.0235 5996 KSecDD - ok 12:41:49.0297 5996 [ 365C6154BBBC5377173F1CA7BFB6CC59 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys 12:41:49.0297 5996 KSecPkg - ok 12:41:49.0329 5996 [ 89A7B9CC98D0D80C6F31B91C0A310FCD ] KtmRm C:\Windows\system32\msdtckrm.dll 12:41:49.0344 5996 KtmRm - ok 12:41:49.0391 5996 [ F7CDABA15C7E853F0A11AF6D77FCA990 ] L1E C:\Windows\system32\DRIVERS\L1E62x86.sys 12:41:49.0391 5996 L1E - ok 12:41:49.0438 5996 [ 8F6BF790D3168224C16F2AF68A84438C ] LanmanServer C:\Windows\system32\srvsvc.dll 12:41:49.0438 5996 LanmanServer - ok 12:41:49.0485 5996 [ B9891F885DCF1F0513A51CB58493CB1F ] LanmanWorkstation C:\Windows\System32\wkssvc.dll 12:41:49.0485 5996 LanmanWorkstation - ok 12:41:49.0531 5996 [ F7611EC07349979DA9B0AE1F18CCC7A6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys 12:41:49.0531 5996 lltdio - ok 12:41:49.0563 5996 [ 5700673E13A2117FA3B9020C852C01E2 ] lltdsvc C:\Windows\System32\lltdsvc.dll 12:41:49.0563 5996 lltdsvc - ok 12:41:49.0578 5996 [ 55CA01BA19D0006C8F2639B6C045E08B ] lmhosts C:\Windows\System32\lmhsvc.dll 12:41:49.0578 5996 lmhosts - ok 12:41:49.0609 5996 [ EB119A53CCF2ACC000AC71B065B78FEF ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys 12:41:49.0609 5996 LSI_FC - ok 12:41:49.0672 5996 [ 8ADE1C877256A22E49B75D1CC9161F9C ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys 12:41:49.0672 5996 LSI_SAS - ok 12:41:49.0687 5996 [ DC9DC3D3DAA0E276FD2EC262E38B11E9 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys 12:41:49.0687 5996 LSI_SAS2 - ok 12:41:49.0703 5996 [ 0A036C7D7CAB643A7F07135AC47E0524 ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys 12:41:49.0703 5996 LSI_SCSI - ok 12:41:49.0719 5996 [ 6703E366CC18D3B6E534F5CF7DF39CEE ] luafv C:\Windows\system32\drivers\luafv.sys 12:41:49.0734 5996 luafv - ok 12:41:49.0781 5996 [ C198E92793907CEEF52C4A60B1B10D6F ] massfilter_hs C:\Windows\system32\drivers\massfilter_hs.sys 12:41:49.0781 5996 massfilter_hs - ok 12:41:49.0812 5996 [ E2B0887816ED336685954E3D8FDAA51D ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll 12:41:49.0812 5996 Mcx2Svc - ok 12:41:49.0843 5996 [ 0FFF5B045293002AB38EB1FD1FC2FB74 ] megasas C:\Windows\system32\DRIVERS\megasas.sys 12:41:49.0843 5996 megasas - ok 12:41:49.0875 5996 [ DCBAB2920C75F390CAF1D29F675D03D6 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys 12:41:49.0875 5996 MegaSR - ok 12:41:49.0906 5996 [ 146B6F43A673379A3C670E86D89BE5EA ] MMCSS C:\Windows\system32\mmcss.dll 12:41:49.0921 5996 MMCSS - ok 12:41:49.0937 5996 [ F001861E5700EE84E2D4E52C712F4964 ] Modem C:\Windows\system32\drivers\modem.sys 12:41:49.0937 5996 Modem - ok 12:41:49.0968 5996 [ 79D10964DE86B292320E9DFE02282A23 ] monitor C:\Windows\system32\DRIVERS\monitor.sys 12:41:49.0968 5996 monitor - ok 12:41:50.0015 5996 [ FB18CC1D4C2E716B6B903B0AC0CC0609 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys 12:41:50.0015 5996 mouclass - ok 12:41:50.0046 5996 [ 2C388D2CD01C9042596CF3C8F3C7B24D ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys 12:41:50.0046 5996 mouhid - ok 12:41:50.0062 5996 [ 921C18727C5920D6C0300736646931C2 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys 12:41:50.0062 5996 mountmgr - ok 12:41:50.0124 5996 [ 9C3758018DED02F4AE53CCA1C5F084A2 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe 12:41:50.0124 5996 MozillaMaintenance - ok 12:41:50.0202 5996 [ 7E34BFA1A7B60BBA1DA03D677F16CD63 ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys 12:41:50.0202 5996 MpFilter - ok 12:41:50.0233 5996 [ 2AF5997438C55FB79D33D015C30E1974 ] mpio C:\Windows\system32\DRIVERS\mpio.sys 12:41:50.0233 5996 mpio - ok 12:41:50.0421 5996 [ A69630D039C38018689190234F866D77 ] MpKsl09600677 C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{3A33184C-19F5-4EDE-8EF4-889B9D0A9DDD}\MpKsl09600677.sys 12:41:50.0421 5996 MpKsl09600677 - ok 12:41:50.0499 5996 [ F32E2D6A1640A469A9ED4F1929A4A861 ] MpNWMon C:\Windows\system32\DRIVERS\MpNWMon.sys 12:41:50.0499 5996 MpNWMon - ok 12:41:50.0514 5996 [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys 12:41:50.0514 5996 mpsdrv - ok 12:41:50.0561 5996 [ 5CD996CECF45CBC3E8D109C86B82D69E ] MpsSvc C:\Windows\system32\mpssvc.dll 12:41:50.0561 5996 MpsSvc - ok 12:41:50.0623 5996 [ B1BE47008D20E43DA3ADC37C24CDB89D ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys 12:41:50.0623 5996 MRxDAV - ok 12:41:50.0670 5996 [ B4C76EF46322A9711C7B0F4E21EF6EA5 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys 12:41:50.0670 5996 mrxsmb - ok 12:41:50.0701 5996 [ E593D45024A3FDD11E93CC4A6CA91101 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys 12:41:50.0701 5996 mrxsmb10 - ok 12:41:50.0717 5996 [ A9F86C82C9CC3B679CC3957E1183A30F ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys 12:41:50.0717 5996 mrxsmb20 - ok 12:41:50.0748 5996 [ 4326D168944123F38DD3B2D9C37A0B12 ] msahci C:\Windows\system32\DRIVERS\msahci.sys 12:41:50.0748 5996 msahci - ok 12:41:50.0779 5996 [ 455029C7174A2DBB03DBA8A0D8BDDD9A ] msdsm C:\Windows\system32\DRIVERS\msdsm.sys 12:41:50.0779 5996 msdsm - ok 12:41:50.0842 5996 [ E1BCE74A3BD9902B72599C0192A07E27 ] MSDTC C:\Windows\System32\msdtc.exe 12:41:50.0842 5996 MSDTC - ok 12:41:50.0873 5996 [ DAEFB28E3AF5A76ABCC2C3078C07327F ] Msfs C:\Windows\system32\drivers\Msfs.sys 12:41:50.0873 5996 Msfs - ok 12:41:50.0889 5996 [ 3E1E5767043C5AF9367F0056295E9F84 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys 12:41:50.0889 5996 mshidkmdf - ok 12:41:50.0904 5996 [ 0A4E5757AE09FA9622E3158CC1AEF114 ] msisadrv C:\Windows\system32\DRIVERS\msisadrv.sys 12:41:50.0904 5996 msisadrv - ok 12:41:50.0967 5996 [ 90F7D9E6B6F27E1A707D4A297F077828 ] MSiSCSI C:\Windows\system32\iscsiexe.dll 12:41:50.0967 5996 MSiSCSI - ok 12:41:50.0967 5996 msiserver - ok 12:41:50.0998 5996 [ 8C0860D6366AAFFB6C5BB9DF9448E631 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys 12:41:50.0998 5996 MSKSSRV - ok 12:41:51.0091 5996 [ 90DC23D940551DB35367FB1E40575B25 ] MsMpSvc C:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe 12:41:51.0091 5996 MsMpSvc - ok 12:41:51.0107 5996 [ 3EA8B949F963562CEDBB549EAC0C11CE ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys 12:41:51.0107 5996 MSPCLOCK - ok 12:41:51.0123 5996 [ F456E973590D663B1073E9C463B40932 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys 12:41:51.0123 5996 MSPQM - ok 12:41:51.0138 5996 [ 0E008FC4819D238C51D7C93E7B41E560 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys 12:41:51.0138 5996 MsRPC - ok 12:41:51.0169 5996 [ FC6B9FF600CC585EA38B12589BD4E246 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys 12:41:51.0185 5996 mssmbios - ok 12:41:51.0201 5996 [ B42C6B921F61A6E55159B8BE6CD54A36 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys 12:41:51.0201 5996 MSTEE - ok 12:41:51.0216 5996 [ 33599130F44E1F34631CEA241DE8AC84 ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys 12:41:51.0216 5996 MTConfig - ok 12:41:51.0263 5996 [ 97AFFA9D95FFE20EEE6229BC6BE166CF ] MTsensor C:\Windows\system32\DRIVERS\ATKACPI.sys 12:41:51.0263 5996 MTsensor - ok 12:41:51.0279 5996 [ 159FAD02F64E6381758C990F753BCC80 ] Mup C:\Windows\system32\Drivers\mup.sys 12:41:51.0279 5996 Mup - ok 12:41:51.0325 5996 [ 80284F1985C70C86F0B5F86DA2DFE1DF ] napagent C:\Windows\system32\qagentRT.dll 12:41:51.0325 5996 napagent - ok 12:41:51.0403 5996 [ 26384429FCD85D83746F63E798AB1480 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys 12:41:51.0403 5996 NativeWifiP - ok 12:41:51.0450 5996 [ 23759D175A0A9BAAF04D05047BC135A8 ] NDIS C:\Windows\system32\drivers\ndis.sys 12:41:51.0450 5996 NDIS - ok 12:41:51.0466 5996 [ 0E1787AA6C9191D3D319E8BAFE86F80C ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys 12:41:51.0481 5996 NdisCap - ok 12:41:51.0497 5996 [ E4A8AEC125A2E43A9E32AFEEA7C9C888 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys 12:41:51.0497 5996 NdisTapi - ok 12:41:51.0528 5996 [ B30AE7F2B6D7E343B0DF32E6C08FCE75 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys 12:41:51.0528 5996 Ndisuio - ok 12:41:51.0528 5996 [ 267C415EADCBE53C9CA873DEE39CF3A4 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys 12:41:51.0528 5996 NdisWan - ok 12:41:51.0575 5996 [ AF7E7C63DCEF3F8772726F86039D6EB4 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys 12:41:51.0575 5996 NDProxy - ok 12:41:51.0637 5996 [ 80B275B1CE3B0E79909DB7B39AF74D51 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys 12:41:51.0637 5996 NetBIOS - ok 12:41:51.0715 5996 [ DD52A733BF4CA5AF84562A5E2F963B91 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys 12:41:51.0715 5996 NetBT - ok 12:41:51.0747 5996 [ F42309C4191C506B71DB5D1126D26318 ] Netlogon C:\Windows\system32\lsass.exe 12:41:51.0762 5996 Netlogon - ok 12:41:51.0793 5996 [ 7CCCFCA7510684768DA22092D1FA4DB2 ] Netman C:\Windows\System32\netman.dll 12:41:51.0809 5996 Netman - ok 12:41:51.0825 5996 [ 8C338238C16777A802D6A9211EB2BA50 ] netprofm C:\Windows\System32\netprofm.dll 12:41:51.0840 5996 netprofm - ok 12:41:51.0871 5996 [ FE2AA5A684B0DD9B1FAE57B7817C198B ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe 12:41:51.0871 5996 NetTcpPortSharing - ok 12:41:51.0934 5996 [ 1D85C4B390B0EE09C7A46B91EFB2C097 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys 12:41:51.0934 5996 nfrd960 - ok 12:41:51.0981 5996 [ 17E2C08C5ECFBE94A7C67B1C275EE9D9 ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys 12:41:51.0981 5996 NisDrv - ok 12:41:52.0027 5996 [ C73DE53197AC0C4DB60B80588F0D54DF ] NisSrv C:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe 12:41:52.0027 5996 NisSrv - ok 12:41:52.0059 5996 [ 2226496E34BD40734946A054B1CD657F ] NlaSvc C:\Windows\System32\nlasvc.dll 12:41:52.0059 5996 NlaSvc - ok 12:41:52.0121 5996 [ FD306FBCCE7ADB1077B709742E7148E9 ] NMSAccessU C:\Program Files\CDBurnerXP\NMSAccessU.exe 12:41:52.0121 5996 NMSAccessU - ok 12:41:52.0137 5996 [ 1DB262A9F8C087E8153D89BEF3D2235F ] Npfs C:\Windows\system32\drivers\Npfs.sys 12:41:52.0137 5996 Npfs - ok 12:41:52.0168 5996 [ BA387E955E890C8A88306D9B8D06BF17 ] nsi C:\Windows\system32\nsisvc.dll 12:41:52.0168 5996 nsi - ok 12:41:52.0183 5996 [ E9A0A4D07E53D8FEA2BB8387A3293C58 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys 12:41:52.0199 5996 nsiproxy - ok 12:41:52.0246 5996 [ 3795DCD21F740EE799FB7223234215AF ] Ntfs C:\Windows\system32\drivers\Ntfs.sys 12:41:52.0246 5996 Ntfs - ok 12:41:52.0324 5996 [ 37BE10FF10A92031FC5A01E8363925CC ] NuidFltr C:\Windows\system32\DRIVERS\NuidFltr.sys 12:41:52.0324 5996 NuidFltr - ok 12:41:52.0339 5996 [ F9756A98D69098DCA8945D62858A812C ] Null C:\Windows\system32\drivers\Null.sys 12:41:52.0339 5996 Null - ok 12:41:52.0371 5996 [ 3F3D04B1D08D43C16EA7963954EC768D ] nvraid C:\Windows\system32\DRIVERS\nvraid.sys 12:41:52.0386 5996 nvraid - ok 12:41:52.0402 5996 [ C99F251A5DE63C6F129CF71933ACED0F ] nvstor C:\Windows\system32\DRIVERS\nvstor.sys 12:41:52.0402 5996 nvstor - ok 12:41:52.0417 5996 [ 5A0983915F02BAE73267CC2A041F717D ] nv_agp C:\Windows\system32\DRIVERS\nv_agp.sys 12:41:52.0417 5996 nv_agp - ok 12:41:52.0449 5996 [ 08A70A1F2CDDE9BB49B885CB817A66EB ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys 12:41:52.0449 5996 ohci1394 - ok 12:41:52.0480 5996 [ 82A8521DDC60710C3D3D3E7325209BEC ] p2pimsvc C:\Windows\system32\pnrpsvc.dll 12:41:52.0495 5996 p2pimsvc - ok 12:41:52.0511 5996 [ 59C3DDD501E39E006DAC31BF55150D91 ] p2psvc C:\Windows\system32\p2psvc.dll 12:41:52.0511 5996 p2psvc - ok 12:41:52.0558 5996 [ 2EA877ED5DD9713C5AC74E8EA7348D14 ] Parport C:\Windows\system32\DRIVERS\parport.sys 12:41:52.0558 5996 Parport - ok 12:41:52.0573 5996 [ FF4218952B51DE44FE910953A3E686B9 ] partmgr C:\Windows\system32\drivers\partmgr.sys 12:41:52.0573 5996 partmgr - ok 12:41:52.0589 5996 [ EB0A59F29C19B86479D36B35983DAADC ] Parvdm C:\Windows\system32\DRIVERS\parvdm.sys 12:41:52.0589 5996 Parvdm - ok 12:41:52.0620 5996 [ 358AB7956D3160000726574083DFC8A6 ] PcaSvc C:\Windows\System32\pcasvc.dll 12:41:52.0620 5996 PcaSvc - ok 12:41:52.0651 5996 [ C858CB77C577780ECC456A892E7E7D0F ] pci C:\Windows\system32\DRIVERS\pci.sys 12:41:52.0651 5996 pci - ok 12:41:52.0667 5996 [ AFE86F419014DB4E5593F69FFE26CE0A ] pciide C:\Windows\system32\DRIVERS\pciide.sys 12:41:52.0667 5996 pciide - ok 12:41:52.0698 5996 [ F396431B31693E71E8A80687EF523506 ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys 12:41:52.0698 5996 pcmcia - ok 12:41:52.0714 5996 [ 250F6B43D2B613172035C6747AEEB19F ] pcw C:\Windows\system32\drivers\pcw.sys 12:41:52.0714 5996 pcw - ok 12:41:52.0745 5996 [ 9E0104BA49F4E6973749A02BF41344ED ] PEAUTH C:\Windows\system32\drivers\peauth.sys 12:41:52.0745 5996 PEAUTH - ok 12:41:52.0823 5996 [ 9C1BFF7910C89A1D12E57343475840CB ] pla C:\Windows\system32\pla.dll 12:41:52.0823 5996 pla - ok 12:41:52.0870 5996 [ 2CC2008F1296968FBA162ED9F9AFE328 ] PlugPlay C:\Windows\system32\umpnpmgr.dll 12:41:52.0870 5996 PlugPlay - ok 12:41:52.0901 5996 [ 63FF8572611249931EB16BB8EED6AFC8 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll 12:41:52.0901 5996 PNRPAutoReg - ok 12:41:52.0917 5996 [ 82A8521DDC60710C3D3D3E7325209BEC ] PNRPsvc C:\Windows\system32\pnrpsvc.dll 12:41:52.0917 5996 PNRPsvc - ok 12:41:52.0963 5996 [ 896D916DE06F5502D301E8C4DC442AE8 ] Point32 C:\Windows\system32\DRIVERS\point32.sys 12:41:52.0963 5996 Point32 - ok 12:41:53.0010 5996 [ 48E1B75C6DC0232FD92BAAE4BD344721 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll 12:41:53.0010 5996 PolicyAgent - ok 12:41:53.0041 5996 [ DBFF83F709A91049621C1D35DD45C92C ] Power C:\Windows\system32\umpo.dll 12:41:53.0041 5996 Power - ok 12:41:53.0088 5996 [ 631E3E205AD6D86F2AED6A4A8E69F2DB ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys 12:41:53.0088 5996 PptpMiniport - ok 12:41:53.0105 5996 [ 85B1E3A0C7585BC4AAE6899EC6FCF011 ] Processor C:\Windows\system32\DRIVERS\processr.sys 12:41:53.0105 5996 Processor - ok 12:41:53.0152 5996 [ 630CF26F0227498B7D5A92B12548960F ] ProfSvc C:\Windows\system32\profsvc.dll 12:41:53.0152 5996 ProfSvc - ok 12:41:53.0167 5996 [ F42309C4191C506B71DB5D1126D26318 ] ProtectedStorage C:\Windows\system32\lsass.exe 12:41:53.0167 5996 ProtectedStorage - ok 12:41:53.0198 5996 [ 6270CCAE2A86DE6D146529FE55B3246A ] Psched C:\Windows\system32\DRIVERS\pacer.sys 12:41:53.0198 5996 Psched - ok 12:41:53.0261 5996 [ AB95ECF1F6659A60DDC166D8315B0751 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys 12:41:53.0261 5996 ql2300 - ok 12:41:53.0323 5996 [ B4DD51DD25182244B86737DC51AF2270 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys 12:41:53.0323 5996 ql40xx - ok 12:41:53.0354 5996 [ 31AC809E7707EB580B2BDB760390765A ] QWAVE C:\Windows\system32\qwave.dll 12:41:53.0354 5996 QWAVE - ok 12:41:53.0386 5996 [ 584078CA1B95CA72DF2A27C336F9719D ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys 12:41:53.0386 5996 QWAVEdrv - ok 12:41:53.0401 5996 [ 30A81B53C766D0133BB86D234E5556AB ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys 12:41:53.0401 5996 RasAcd - ok 12:41:53.0432 5996 [ 57EC4AEF73660166074D8F7F31C0D4FD ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys 12:41:53.0432 5996 RasAgileVpn - ok 12:41:53.0464 5996 [ A60F1839849C0C00739787FD5EC03F13 ] RasAuto C:\Windows\System32\rasauto.dll 12:41:53.0464 5996 RasAuto - ok 12:41:53.0479 5996 [ D9F91EAFEC2815365CBE6D167E4E332A ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys 12:41:53.0479 5996 Rasl2tp - ok 12:41:53.0510 5996 [ 0CE66EC736B7FC526D78F7624C7D2A94 ] RasMan C:\Windows\System32\rasmans.dll 12:41:53.0510 5996 RasMan - ok 12:41:53.0526 5996 [ 0FE8B15916307A6AC12BFB6A63E45507 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys 12:41:53.0526 5996 RasPppoe - ok 12:41:53.0573 5996 [ 44101F495A83EA6401D886E7FD70096B ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys 12:41:53.0573 5996 RasSstp - ok 12:41:53.0604 5996 [ 835D7E81BF517A3B72384BDCC85E1CE6 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys 12:41:53.0604 5996 rdbss - ok 12:41:53.0620 5996 [ 0D8F05481CB76E70E1DA06EE9F0DA9DF ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys 12:41:53.0620 5996 rdpbus - ok 12:41:53.0635 5996 [ 1E016846895B15A99F9A176A05029075 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys 12:41:53.0635 5996 RDPCDD - ok 12:41:53.0666 5996 [ 5A53CA1598DD4156D44196D200C94B8A ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys 12:41:53.0666 5996 RDPENCDD - ok 12:41:53.0698 5996 [ 44B0A53CD4F27D50ED461DAE0C0B4E1F ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys 12:41:53.0698 5996 RDPREFMP - ok 12:41:53.0713 5996 [ 801371BA9782282892D00AADB08EE367 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys 12:41:53.0729 5996 RDPWD - ok 12:41:53.0744 5996 [ 4EA225BF1CF05E158853F30A99CA29A7 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys 12:41:53.0744 5996 rdyboost - ok 12:41:53.0776 5996 [ 7B5E1419717FAC363A31CC302895217A ] RemoteAccess C:\Windows\System32\mprdim.dll 12:41:53.0776 5996 RemoteAccess - ok 12:41:53.0807 5996 [ CB9A8683F4EF2BF99E123D79950D7935 ] RemoteRegistry C:\Windows\system32\regsvc.dll 12:41:53.0807 5996 RemoteRegistry - ok 12:41:53.0963 5996 [ 17E0BEF5CA5C9CE52CC8082AC6EBC449 ] RichVideo C:\Program Files\CyberLink\Shared Files\RichVideo.exe 12:41:53.0963 5996 RichVideo - ok 12:41:53.0994 5996 [ 78D072F35BC45D9E4E1B61895C152234 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll 12:41:53.0994 5996 RpcEptMapper - ok 12:41:54.0025 5996 [ 94D36C0E44677DD26981D2BFEEF2A29D ] RpcLocator C:\Windows\system32\locator.exe 12:41:54.0025 5996 RpcLocator - ok 12:41:54.0041 5996 [ B82CD39E336973359D7C9BF911E8E84F ] RpcSs C:\Windows\system32\rpcss.dll 12:41:54.0041 5996 RpcSs - ok 12:41:54.0088 5996 [ 032B0D36AD92B582D869879F5AF5B928 ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys 12:41:54.0088 5996 rspndr - ok 12:41:54.0103 5996 [ F42309C4191C506B71DB5D1126D26318 ] SamSs C:\Windows\system32\lsass.exe 12:41:54.0103 5996 SamSs - ok 12:41:54.0119 5996 [ 34EE0C44B724E3E4CE2EFF29126DE5B5 ] sbp2port C:\Windows\system32\DRIVERS\sbp2port.sys 12:41:54.0119 5996 sbp2port - ok 12:41:54.0150 5996 [ 8FC518FFE9519C2631D37515A68009C4 ] SCardSvr C:\Windows\System32\SCardSvr.dll 12:41:54.0150 5996 SCardSvr - ok 12:41:54.0166 5996 [ A95C54B2AC3CC9C73FCDF9E51A1D6B51 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys 12:41:54.0166 5996 scfilter - ok 12:41:54.0244 5996 [ DF1E5C82E4D09CF8105CC644980C4803 ] Schedule C:\Windows\system32\schedsvc.dll 12:41:54.0244 5996 Schedule - ok 12:41:54.0275 5996 [ 628A9E30EC5E18DD5DE6BE4DBDC12198 ] SCPolicySvc C:\Windows\System32\certprop.dll 12:41:54.0275 5996 SCPolicySvc - ok 12:41:54.0290 5996 [ 5FD90ABDBFAEE85986802622CBB03446 ] SDRSVC C:\Windows\System32\SDRSVC.dll 12:41:54.0290 5996 SDRSVC - ok 12:41:54.0337 5996 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys 12:41:54.0337 5996 secdrv - ok 12:41:54.0353 5996 [ A59B3A4442C52060CC7A85293AA3546F ] seclogon C:\Windows\system32\seclogon.dll 12:41:54.0353 5996 seclogon - ok 12:41:54.0368 5996 [ DCB7FCDCC97F87360F75D77425B81737 ] SENS C:\Windows\System32\sens.dll 12:41:54.0384 5996 SENS - ok 12:41:54.0400 5996 [ 50087FE1EE447009C9CC2997B90DE53F ] SensrSvc C:\Windows\system32\sensrsvc.dll 12:41:54.0400 5996 SensrSvc - ok 12:41:54.0431 5996 [ 9AD8B8B515E3DF6ACD4212EF465DE2D1 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys 12:41:54.0431 5996 Serenum - ok 12:41:54.0462 5996 [ 5FB7FCEA0490D821F26F39CC5EA3D1E2 ] Serial C:\Windows\system32\DRIVERS\serial.sys 12:41:54.0462 5996 Serial - ok 12:41:54.0478 5996 [ 79BFFB520327FF916A582DFEA17AA813 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys 12:41:54.0478 5996 sermouse - ok 12:41:54.0540 5996 [ 8F55CE568C543D5ADF45C409D16718FC ] SessionEnv C:\Windows\system32\sessenv.dll 12:41:54.0540 5996 SessionEnv - ok 12:41:54.0571 5996 [ 9F976E1EB233DF46FCE808D9DEA3EB9C ] sffdisk C:\Windows\system32\drivers\sffdisk.sys 12:41:54.0587 5996 sffdisk - ok 12:41:54.0634 5996 [ 932A68EE27833CFD57C1639D375F2731 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys 12:41:54.0634 5996 sffp_mmc - ok 12:41:54.0680 5996 [ A0708BBD07D245C06FF9DE549CA47185 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys 12:41:54.0680 5996 sffp_sd - ok 12:41:54.0712 5996 [ DB96666CC8312EBC45032F30B007A547 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys 12:41:54.0712 5996 sfloppy - ok 12:41:54.0758 5996 [ D1A079A0DE2EA524513B6930C24527A2 ] SharedAccess C:\Windows\System32\ipnathlp.dll 12:41:54.0758 5996 SharedAccess - ok 12:41:54.0790 5996 [ CD2E48FA5B29EE2B3B5858056D246EF2 ] ShellHWDetection C:\Windows\System32\shsvcs.dll 12:41:54.0805 5996 ShellHWDetection - ok 12:41:54.0821 5996 [ 2565CAC0DC9FE0371BDCE60832582B2E ] sisagp C:\Windows\system32\DRIVERS\sisagp.sys 12:41:54.0821 5996 sisagp - ok 12:41:54.0852 5996 [ A9F0486851BECB6DDA1D89D381E71055 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys 12:41:54.0852 5996 SiSRaid2 - ok 12:41:54.0883 5996 [ 3727097B55738E2F554972C3BE5BC1AA ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys 12:41:54.0883 5996 SiSRaid4 - ok 12:41:54.0961 5996 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files\Skype\Updater\Updater.exe 12:41:54.0961 5996 SkypeUpdate - ok 12:41:55.0008 5996 [ 3E21C083B8A01CB70BA1F09303010FCE ] Smb C:\Windows\system32\DRIVERS\smb.sys 12:41:55.0008 5996 Smb - ok 12:41:55.0039 5996 [ 6A984831644ECA1A33FFEAE4126F4F37 ] SNMPTRAP C:\Windows\System32\snmptrap.exe 12:41:55.0039 5996 SNMPTRAP - ok 12:41:55.0133 5996 [ 060F51141B20B8156804446A04AB8B2A ] SNP2UVC C:\Windows\system32\DRIVERS\snp2uvc.sys 12:41:55.0148 5996 SNP2UVC - ok 12:41:55.0164 5996 [ 95CF1AE7527FB70F7816563CBC09D942 ] spldr C:\Windows\system32\drivers\spldr.sys 12:41:55.0164 5996 spldr - ok 12:41:55.0226 5996 [ D1BB750EB51694DE183E08B9C33BE5B2 ] Spooler C:\Windows\System32\spoolsv.exe 12:41:55.0226 5996 Spooler - ok 12:41:55.0320 5996 [ 4C287F9069FEDBD791178876EE9DE536 ] sppsvc C:\Windows\system32\sppsvc.exe 12:41:55.0336 5996 sppsvc - ok 12:41:55.0367 5996 [ D8E3E19EEBDAB49DD4A8D3062EAD4EC7 ] sppuinotify C:\Windows\system32\sppuinotify.dll 12:41:55.0367 5996 sppuinotify - ok 12:41:55.0414 5996 [ 4A9B0F215DE2519E2363F91DF25C1E97 ] srv C:\Windows\system32\DRIVERS\srv.sys 12:41:55.0429 5996 srv - ok 12:41:55.0445 5996 [ 14C44875518AE1C982E54EA8C5F7FE28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys 12:41:55.0445 5996 srv2 - ok 12:41:55.0492 5996 [ 07A14223B0A50E76ADE003FDF95D4FEC ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys 12:41:55.0492 5996 srvnet - ok 12:41:55.0523 5996 [ D887C9FD02AC9FA880F6E5027A43E118 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll 12:41:55.0523 5996 SSDPSRV - ok 12:41:55.0538 5996 [ D318F23BE45D5E3A107469EB64815B50 ] SstpSvc C:\Windows\system32\sstpsvc.dll 12:41:55.0538 5996 SstpSvc - ok 12:41:55.0570 5996 [ DB32D325C192B801DF274BFD12A7E72B ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys 12:41:55.0570 5996 stexstor - ok 12:41:55.0632 5996 [ A22825E7BB7018E8AF3E229A5AF17221 ] StiSvc C:\Windows\System32\wiaservc.dll 12:41:55.0648 5996 StiSvc - ok 12:41:55.0663 5996 [ E58C78A848ADD9610A4DB6D214AF5224 ] swenum C:\Windows\system32\DRIVERS\swenum.sys 12:41:55.0663 5996 swenum - ok 12:41:55.0694 5996 [ A28BD92DF340E57B024BA433165D34D7 ] swprv C:\Windows\System32\swprv.dll 12:41:55.0694 5996 swprv - ok 12:41:55.0741 5996 [ 04105C8DA62353589C29BDAEB8D88BD8 ] SysMain C:\Windows\system32\sysmain.dll 12:41:55.0757 5996 SysMain - ok 12:41:55.0788 5996 [ FCFB6C552FBC0DA299799CBD50AD9FD4 ] TabletInputService C:\Windows\System32\TabSvc.dll 12:41:55.0788 5996 TabletInputService - ok 12:41:55.0804 5996 [ 2F46B0C70A4ADC8C90CF825DA3B4FEAF ] TapiSrv C:\Windows\System32\tapisrv.dll 12:41:55.0804 5996 TapiSrv - ok 12:41:55.0819 5996 [ B799D9FDB26111737F58288D8DC172D9 ] TBS C:\Windows\System32\tbssvc.dll 12:41:55.0835 5996 TBS - ok 12:41:55.0913 5996 [ BB7F39C31C4A4417FD318E7CD184E225 ] Tcpip C:\Windows\system32\drivers\tcpip.sys 12:41:55.0913 5996 Tcpip - ok 12:41:55.0975 5996 [ BB7F39C31C4A4417FD318E7CD184E225 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys 12:41:55.0975 5996 TCPIP6 - ok 12:41:56.0038 5996 [ E64444523ADD154F86567C469BC0B17F ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys 12:41:56.0038 5996 tcpipreg - ok 12:41:56.0069 5996 [ 1875C1490D99E70E449E3AFAE9FCBADF ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys 12:41:56.0069 5996 TDPIPE - ok 12:41:56.0069 5996 [ 7551E91EA999EE9A8E9C331D5A9C31F3 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys 12:41:56.0069 5996 TDTCP - ok 12:41:56.0084 5996 [ CB39E896A2A83702D1737BFD402B3542 ] tdx C:\Windows\system32\DRIVERS\tdx.sys 12:41:56.0084 5996 tdx - ok 12:41:56.0225 5996 [ 98AF4DE61E75D465AA9EDD268A074C58 ] TeamViewer5 C:\Program Files\TeamViewer\Version5\TeamViewer_Service.exe 12:41:56.0225 5996 TeamViewer5 - ok 12:41:56.0240 5996 [ C36F41EE20E6999DBF4B0425963268A5 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys 12:41:56.0240 5996 TermDD - ok 12:41:56.0303 5996 [ A01E50A04D7B1960B33E92B9080E6A94 ] TermService C:\Windows\System32\termsrv.dll 12:41:56.0303 5996 TermService - ok 12:41:56.0318 5996 [ 42FB6AFD6B79D9FE07381609172E7CA4 ] Themes C:\Windows\system32\themeservice.dll 12:41:56.0318 5996 Themes - ok 12:41:56.0334 5996 [ 146B6F43A673379A3C670E86D89BE5EA ] THREADORDER C:\Windows\system32\mmcss.dll 12:41:56.0334 5996 THREADORDER - ok 12:41:56.0365 5996 [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A ] TrkWks C:\Windows\System32\trkwks.dll 12:41:56.0365 5996 TrkWks - ok 12:41:56.0443 5996 [ 41A4C781D2286208D397D72099304133 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe 12:41:56.0443 5996 TrustedInstaller - ok 12:41:56.0459 5996 [ 98AE6FA07D12CB4EC5CF4A9BFA5F4242 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys 12:41:56.0459 5996 tssecsrv - ok 12:41:56.0490 5996 [ 3E461D890A97F9D4C168F5FDA36E1D00 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys 12:41:56.0506 5996 tunnel - ok 12:41:56.0521 5996 [ 750FBCB269F4D7DD2E420C56B795DB6D ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys 12:41:56.0537 5996 uagp35 - ok 12:41:56.0568 5996 [ 09CC3E16F8E5EE7168E01CF8FCBE061A ] udfs C:\Windows\system32\DRIVERS\udfs.sys 12:41:56.0568 5996 udfs - ok 12:41:56.0599 5996 [ 8344FD4FCE927880AA1AA7681D4927E5 ] UI0Detect C:\Windows\system32\UI0Detect.exe 12:41:56.0599 5996 UI0Detect - ok 12:41:56.0615 5996 [ 44E8048ACE47BEFBFDC2E9BE4CBC8880 ] uliagpkx C:\Windows\system32\DRIVERS\uliagpkx.sys 12:41:56.0615 5996 uliagpkx - ok 12:41:56.0646 5996 [ 049B3A50B3D646BAEEEE9EEC9B0668DC ] umbus C:\Windows\system32\DRIVERS\umbus.sys 12:41:56.0646 5996 umbus - ok 12:41:56.0646 5996 [ 7550AD0C6998BA1CB4843E920EE0FEAC ] UmPass C:\Windows\system32\DRIVERS\umpass.sys 12:41:56.0646 5996 UmPass - ok 12:41:56.0677 5996 [ 833FBB672460EFCE8011D262175FAD33 ] upnphost C:\Windows\System32\upnphost.dll 12:41:56.0677 5996 upnphost - ok 12:41:56.0693 5996 [ 8455C4ED038EFD09E99327F9D2D48FFA ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys 12:41:56.0693 5996 usbccgp - ok 12:41:56.0708 5996 [ 04EC7CEC62EC3B6D9354EEE93327FC82 ] usbcir C:\Windows\system32\DRIVERS\usbcir.sys 12:41:56.0708 5996 usbcir - ok 12:41:56.0724 5996 [ 1C333BFD60F2FED2C7AD5DAF533CB742 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys 12:41:56.0724 5996 usbehci - ok 12:41:56.0802 5996 [ EE6EF93CCFA94FAE8C6AB298273D8AE2 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys 12:41:56.0802 5996 usbhub - ok 12:41:56.0818 5996 [ A6FB7957EA7AFB1165991E54CE934B74 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys 12:41:56.0818 5996 usbohci - ok 12:41:56.0864 5996 [ 797D862FE0875E75C7CC4C1AD7B30252 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys 12:41:56.0864 5996 usbprint - ok 12:41:56.0911 5996 [ 576096CCBC07E7C4EA4F5E6686D6888F ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys 12:41:56.0911 5996 usbscan - ok 12:41:56.0942 5996 [ D8889D56E0D27E57ED4591837FE71D27 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS 12:41:56.0942 5996 USBSTOR - ok 12:41:56.0958 5996 [ 78780C3EBCE17405B1CCD07A3A8A7D72 ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys 12:41:56.0958 5996 usbuhci - ok 12:41:56.0989 5996 [ B5F6A992D996282B7FAE7048E50AF83A ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys 12:41:56.0989 5996 usbvideo - ok 12:41:57.0052 5996 [ D82F43D15FDAA666856C0190CB73E7C9 ] usb_rndisx C:\Windows\system32\DRIVERS\usb8023x.sys 12:41:57.0052 5996 usb_rndisx - ok 12:41:57.0083 5996 [ 081E6E1C91AEC36758902A9F727CD23C ] UxSms C:\Windows\System32\uxsms.dll 12:41:57.0083 5996 UxSms - ok 12:41:57.0114 5996 [ F42309C4191C506B71DB5D1126D26318 ] VaultSvc C:\Windows\system32\lsass.exe 12:41:57.0114 5996 VaultSvc - ok 12:41:57.0130 5996 [ A059C4C3EDB09E07D21A8E5C0AABD3CB ] vdrvroot C:\Windows\system32\DRIVERS\vdrvroot.sys 12:41:57.0130 5996 vdrvroot - ok 12:41:57.0161 5996 [ 8C4E7C49D3641BC9E299E466A7F8867D ] vds C:\Windows\System32\vds.exe 12:41:57.0161 5996 vds - ok 12:41:57.0192 5996 [ 17C408214EA61696CEC9C66E388B14F3 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys 12:41:57.0192 5996 vga - ok 12:41:57.0208 5996 [ 8E38096AD5C8570A6F1570A61E251561 ] VgaSave C:\Windows\System32\drivers\vga.sys 12:41:57.0208 5996 VgaSave - ok 12:41:57.0223 5996 [ 3BE6E1F3A4F1AFEC8CEE0D7883F93583 ] vhdmp C:\Windows\system32\DRIVERS\vhdmp.sys 12:41:57.0223 5996 vhdmp - ok 12:41:57.0239 5996 [ C829317A37B4BEA8F39735D4B076E923 ] viaagp C:\Windows\system32\DRIVERS\viaagp.sys 12:41:57.0239 5996 viaagp - ok 12:41:57.0239 5996 [ E02F079A6AA107F06B16549C6E5C7B74 ] ViaC7 C:\Windows\system32\DRIVERS\viac7.sys 12:41:57.0239 5996 ViaC7 - ok 12:41:57.0270 5996 [ E43574F6A56A0EE11809B48C09E4FD3C ] viaide C:\Windows\system32\DRIVERS\viaide.sys 12:41:57.0270 5996 viaide - ok 12:41:57.0301 5996 [ 384E5A2AA49934295171E499F86BA6F3 ] volmgr C:\Windows\system32\DRIVERS\volmgr.sys 12:41:57.0301 5996 volmgr - ok 12:41:57.0317 5996 [ B5BB72067DDDDBBFB04B2F89FF8C3C87 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys 12:41:57.0317 5996 volmgrx - ok 12:41:57.0332 5996 [ 58DF9D2481A56EDDE167E51B334D44FD ] volsnap C:\Windows\system32\DRIVERS\volsnap.sys 12:41:57.0348 5996 volsnap - ok 12:41:57.0379 5996 [ 9DFA0CC2F8855A04816729651175B631 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys 12:41:57.0379 5996 vsmraid - ok 12:41:57.0442 5996 [ 7EA2BCD94D9CFAF4C556F5CC94532A6C ] VSS C:\Windows\system32\vssvc.exe 12:41:57.0457 5996 VSS - ok 12:41:57.0473 5996 [ 90567B1E658001E79D7C8BBD3DDE5AA6 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys 12:41:57.0473 5996 vwifibus - ok 12:41:57.0520 5996 [ 7090D3436EEB4E7DA3373090A23448F7 ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys 12:41:57.0520 5996 vwififlt - ok 12:41:57.0566 5996 [ A3F04CBEA6C2A10E6CB01F8B47611882 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys 12:41:57.0566 5996 vwifimp - ok 12:41:57.0582 5996 [ 55187FD710E27D5095D10A472C8BAF1C ] W32Time C:\Windows\system32\w32time.dll 12:41:57.0582 5996 W32Time - ok 12:41:57.0613 5996 [ DE3721E89C653AA281428C8A69745D90 ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys 12:41:57.0613 5996 WacomPen - ok 12:41:57.0644 5996 [ 692A712062146E96D28BA0B7D75DE31B ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys 12:41:57.0644 5996 WANARP - ok 12:41:57.0644 5996 [ 692A712062146E96D28BA0B7D75DE31B ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys 12:41:57.0644 5996 Wanarpv6 - ok 12:41:57.0691 5996 [ 7790B77FE1E5EE47DCC66247095BB4C9 ] wbengine C:\Windows\system32\wbengine.exe 12:41:57.0707 5996 wbengine - ok 12:41:57.0722 5996 [ 9614B5D29DC76AC3C29F6D2D3AA70E67 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll 12:41:57.0722 5996 WbioSrvc - ok 12:41:57.0769 5996 [ 6D9B75275C3E3A5F51AEF81AFFADB2B6 ] wcncsvc C:\Windows\System32\wcncsvc.dll 12:41:57.0785 5996 wcncsvc - ok 12:41:57.0800 5996 [ 5D930B6357A6D2AF4D7653BDABBF352F ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll 12:41:57.0800 5996 WcsPlugInService - ok 12:41:57.0816 5996 [ 1112A9BADACB47B7C0BB0392E3158DFF ] Wd C:\Windows\system32\DRIVERS\wd.sys 12:41:57.0816 5996 Wd - ok 12:41:57.0878 5996 [ A840213F1ACDCC175B4D1D5AAEAC0D7A ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys 12:41:57.0878 5996 Wdf01000 - ok 12:41:57.0894 5996 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiServiceHost C:\Windows\system32\wdi.dll 12:41:57.0910 5996 WdiServiceHost - ok 12:41:57.0910 5996 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiSystemHost C:\Windows\system32\wdi.dll 12:41:57.0910 5996 WdiSystemHost - ok 12:41:57.0956 5996 [ BB5EC38F8D4600119B4720BC5D4211F1 ] WebClient C:\Windows\System32\webclnt.dll 12:41:57.0956 5996 WebClient - ok 12:41:58.0003 5996 [ 760F0AFE937A77CFF27153206534F275 ] Wecsvc C:\Windows\system32\wecsvc.dll 12:41:58.0003 5996 Wecsvc - ok 12:41:58.0019 5996 [ AC804569BB2364FB6017370258A4091B ] wercplsupport C:\Windows\System32\wercplsupport.dll 12:41:58.0019 5996 wercplsupport - ok 12:41:58.0034 5996 [ 08E420D873E4FD85241EE2421B02C4A4 ] WerSvc C:\Windows\System32\WerSvc.dll 12:41:58.0050 5996 WerSvc - ok 12:41:58.0066 5996 [ 8B9A943F3B53861F2BFAF6C186168F79 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys 12:41:58.0066 5996 WfpLwf - ok 12:41:58.0097 5996 [ 5CF95B35E59E2A38023836FFF31BE64C ] WIMMount C:\Windows\system32\drivers\wimmount.sys 12:41:58.0097 5996 WIMMount - ok 12:41:58.0159 5996 [ 3FAE8F94296001C32EAB62CD7D82E0FD ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll 12:41:58.0175 5996 WinDefend - ok 12:41:58.0175 5996 WinHttpAutoProxySvc - ok 12:41:58.0253 5996 [ F62E510B6AD4C21EB9FE8668ED251826 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll 12:41:58.0253 5996 Winmgmt - ok 12:41:58.0300 5996 [ C4F5D3901D1B41D602DDC196E0B95B51 ] WinRM C:\Windows\system32\WsmSvc.dll 12:41:58.0315 5996 WinRM - ok 12:41:58.0378 5996 [ 30FC6E5448D0CBAAA95280EEEF7FEDAE ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys 12:41:58.0378 5996 WinUsb - ok 12:41:58.0424 5996 [ 16935C98FF639D185086A3529B1F2067 ] Wlansvc C:\Windows\System32\wlansvc.dll 12:41:58.0424 5996 Wlansvc - ok 12:41:58.0440 5996 [ 0217679B8FCA58714C3BF2726D2CA84E ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys 12:41:58.0440 5996 WmiAcpi - ok 12:41:58.0471 5996 [ 6EB6B66517B048D87DC1856DDF1F4C3F ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe 12:41:58.0471 5996 wmiApSrv - ok 12:41:58.0565 5996 [ 77FBD400984CF72BA0FC4B3489D65F74 ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe 12:41:58.0580 5996 WMPNetworkSvc - ok 12:41:58.0612 5996 [ A2F0EC770A92F2B3F9DE6D518E11409C ] WPCSvc C:\Windows\System32\wpcsvc.dll 12:41:58.0612 5996 WPCSvc - ok 12:41:58.0627 5996 [ B7F658A2EBC07129538AD9AB35212637 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll 12:41:58.0627 5996 WPDBusEnum - ok 12:41:58.0658 5996 [ 6DB3276587B853BF886B69528FDB048C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys 12:41:58.0658 5996 ws2ifsl - ok 12:41:58.0705 5996 [ A661A76333057B383A06E65F0073222F ] wscsvc C:\Windows\System32\wscsvc.dll 12:41:58.0705 5996 wscsvc - ok 12:41:58.0705 5996 WSearch - ok 12:41:58.0783 5996 [ A33408CC036F9C08142B11BE5E93F0A1 ] wuauserv C:\Windows\system32\wuaueng.dll 12:41:58.0799 5996 wuauserv - ok 12:41:58.0814 5996 [ 6F9B6C0C93232CFF47D0F72D6DB1D21E ] WudfPf C:\Windows\system32\drivers\WudfPf.sys 12:41:58.0814 5996 WudfPf - ok 12:41:58.0846 5996 [ F91FF1E51FCA30B3C3981DB7D5924252 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys 12:41:58.0846 5996 WUDFRd - ok 12:41:58.0877 5996 [ DDEE3682FE97037C45F4D7AB467CB8B6 ] wudfsvc C:\Windows\System32\WUDFSvc.dll 12:41:58.0877 5996 wudfsvc - ok 12:41:58.0892 5996 [ FF2D745B560F7C71B31F30F4D49F73D2 ] WwanSvc C:\Windows\System32\wwansvc.dll 12:41:58.0908 5996 WwanSvc - ok 12:41:58.0970 5996 [ FA4E89DECD2AC99E0E83CE368ECE60D9 ] zghsmdm C:\Windows\system32\DRIVERS\zghsmdm.sys 12:41:58.0970 5996 zghsmdm - ok 12:41:59.0017 5996 ================ Scan global =============================== 12:41:59.0048 5996 [ 9A595DF601070DA78C40481120DD2C06 ] C:\Windows\system32\basesrv.dll 12:41:59.0095 5996 [ 827E4F75901CA3F990B1487D3301841E ] C:\Windows\system32\winsrv.dll 12:41:59.0095 5996 [ 827E4F75901CA3F990B1487D3301841E ] C:\Windows\system32\winsrv.dll 12:41:59.0126 5996 [ 364455805E64882844EE9ACB72522830 ] C:\Windows\system32\sxssrv.dll 12:41:59.0158 5996 [ 5F1B6A9C35D3D5CA72D6D6FDEF9747D6 ] C:\Windows\system32\services.exe 12:41:59.0173 5996 [Global] - ok 12:41:59.0173 5996 ================ Scan MBR ================================== 12:41:59.0189 5996 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0 12:41:59.0594 5996 \Device\Harddisk0\DR0 - ok 12:41:59.0594 5996 ================ Scan VBR ================================== 12:41:59.0626 5996 [ C1284D0CDCAE2D81D8B4181C91F297BA ] \Device\Harddisk0\DR0\Partition1 12:41:59.0626 5996 \Device\Harddisk0\DR0\Partition1 - ok 12:41:59.0672 5996 [ C71A66FAA480763E57737DF41AB62E75 ] \Device\Harddisk0\DR0\Partition2 12:41:59.0672 5996 \Device\Harddisk0\DR0\Partition2 - ok 12:41:59.0688 5996 [ ABEA8390B6B44B33842CF07ACD7AF2F4 ] \Device\Harddisk0\DR0\Partition3 12:41:59.0688 5996 \Device\Harddisk0\DR0\Partition3 - ok 12:41:59.0688 5996 ============================================================ 12:41:59.0688 5996 Scan finished 12:41:59.0688 5996 ============================================================ 12:41:59.0704 4288 Detected object count: 0 12:41:59.0704 4288 Actual detected object count: 0 12:42:02.0200 2988 Deinitialize success |
04.02.2013, 02:14 | #3 |
/// Helfer-Team | Google redirect Virus und nichts hilft scheinbarBitte das Malwarebytes Logfile posten! (Reiter Logdateien) Die Bereinigung besteht aus mehreren Schritten, die ausgefuehrt werden muessen. Diese Nacheinander abarbeiten und die 3 Logs, die dabei erstellt werden bitte in deine naechste Antwort einfuegen. Sollte der OTL-FIX nicht richig durchgelaufen sein. Fahre nicht fort, sondern melde dies bitte. 1. Schritt Fixen mit OTL Lade (falls noch nicht vorhanden) OTL von Oldtimer herunter und speichere es auf Deinem Desktop (nicht woanders hin).
Code:
ATTFilter :OTL [2013.01.28 23:56:33 | 000,126,976 | RHS- | M] () -- C:\Users\mobil\AppData\Roaming\C_1026C.dll :Files C:\ProgramData\*.exe C:\ProgramData\*.dll C:\ProgramData\*.tmp C:\ProgramData\TEMP C:\Users\mobil\*.tmp C:\Users\mobil\AppData\Local\Temp\*.exe C:\Users\mobil\AppData\LocalLow\Sun\Java\Deployment\cache %APPDATA%\Microsoft\Windows\Start Menu\Programs\Startup unctf.lnk ipconfig /flushdns /c :Commands [emptytemp]
Hinweis für Mitleser: Obiges OTL-Script ist ausschließlich für diesen User in dieser Situtation erstellt worden. Auf keinen Fall auf anderen Rechnern anwenden, das kann andere Systeme nachhaltig schädigen! 2. Schritt Downloade dir bitte Malwarebytes Anti-Rootkit und speichere es auf deinem Desktop.
Starte keine andere Datei in diesem Ordner ohne Anweisung eines Helfers danach: 3. Schritt Downloade Dir bitte AdwCleaner auf deinen Desktop.
__________________ |
04.02.2013, 18:41 | #4 |
| Google redirect Virus und nichts hilft scheinbar All processes killed ========== OTL ========== C:\Users\mobil\AppData\Roaming\C_1026C.dll moved successfully. ========== FILES ========== File\Folder C:\ProgramData\*.exe not found. File\Folder C:\ProgramData\*.dll not found. File\Folder C:\ProgramData\*.tmp not found. C:\ProgramData\Temp\{D36DD326-7280-11D8-97C8-000129760CBE} folder moved successfully. C:\ProgramData\Temp\{5DB1DF0C-AABC-4362-8A6D-CEFDFB036E41} folder moved successfully. C:\ProgramData\Temp\{40BF1E83-20EB-11D8-97C5-0009C5020658} folder moved successfully. C:\ProgramData\Temp\{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79} folder moved successfully. C:\ProgramData\Temp folder moved successfully. File\Folder C:\Users\mobil\*.tmp not found. C:\Users\mobil\AppData\Local\Temp\setup.exe moved successfully. C:\Users\mobil\AppData\Local\Temp\_is3F41.exe moved successfully. C:\Users\mobil\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\tmp folder moved successfully. C:\Users\mobil\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\muffin folder moved successfully. C:\Users\mobil\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\host folder moved successfully. C:\Users\mobil\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\9 folder moved successfully. C:\Users\mobil\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\8 folder moved successfully. C:\Users\mobil\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\7 folder moved successfully. C:\Users\mobil\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\63 folder moved successfully. C:\Users\mobil\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\62 folder moved successfully. C:\Users\mobil\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\61 folder moved successfully. C:\Users\mobil\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\60 folder moved successfully. C:\Users\mobil\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\6 folder moved successfully. C:\Users\mobil\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\59 folder moved successfully. C:\Users\mobil\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\58 folder moved successfully. C:\Users\mobil\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\57 folder moved successfully. C:\Users\mobil\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\56 folder moved successfully. C:\Users\mobil\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\55 folder moved successfully. C:\Users\mobil\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\54 folder moved successfully. C:\Users\mobil\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\53 folder moved successfully. C:\Users\mobil\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\52 folder moved successfully. C:\Users\mobil\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\51 folder moved successfully. C:\Users\mobil\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\50 folder moved successfully. C:\Users\mobil\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\5 folder moved successfully. C:\Users\mobil\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\49 folder moved successfully. C:\Users\mobil\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\48 folder moved successfully. C:\Users\mobil\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\47 folder moved successfully. C:\Users\mobil\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\46 folder moved successfully. C:\Users\mobil\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\45 folder moved successfully. C:\Users\mobil\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\44 folder moved successfully. C:\Users\mobil\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\43 folder moved successfully. C:\Users\mobil\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\42 folder moved successfully. C:\Users\mobil\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\41 folder moved successfully. C:\Users\mobil\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\40 folder moved successfully. C:\Users\mobil\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\4 folder moved successfully. C:\Users\mobil\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\39 folder moved successfully. C:\Users\mobil\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\38 folder moved successfully. C:\Users\mobil\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\37 folder moved successfully. C:\Users\mobil\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\36 folder moved successfully. C:\Users\mobil\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\35 folder moved successfully. C:\Users\mobil\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\34 folder moved successfully. C:\Users\mobil\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\33 folder moved successfully. C:\Users\mobil\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\32 folder moved successfully. C:\Users\mobil\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\31 folder moved successfully. C:\Users\mobil\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\30 folder moved successfully. C:\Users\mobil\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\3 folder moved successfully. C:\Users\mobil\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\29 folder moved successfully. C:\Users\mobil\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\28 folder moved successfully. C:\Users\mobil\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\27 folder moved successfully. C:\Users\mobil\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\26 folder moved successfully. C:\Users\mobil\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\25 folder moved successfully. C:\Users\mobil\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\24 folder moved successfully. C:\Users\mobil\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\23 folder moved successfully. C:\Users\mobil\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\22 folder moved successfully. C:\Users\mobil\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\21 folder moved successfully. C:\Users\mobil\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\20 folder moved successfully. C:\Users\mobil\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\2 folder moved successfully. C:\Users\mobil\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\19 folder moved successfully. C:\Users\mobil\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\18 folder moved successfully. C:\Users\mobil\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\17 folder moved successfully. C:\Users\mobil\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\16 folder moved successfully. C:\Users\mobil\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\15 folder moved successfully. C:\Users\mobil\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\14 folder moved successfully. C:\Users\mobil\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\13 folder moved successfully. C:\Users\mobil\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\12 folder moved successfully. C:\Users\mobil\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\11 folder moved successfully. C:\Users\mobil\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\10 folder moved successfully. C:\Users\mobil\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\1 folder moved successfully. C:\Users\mobil\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\0 folder moved successfully. C:\Users\mobil\AppData\LocalLow\Sun\Java\Deployment\cache\6.0 folder moved successfully. C:\Users\mobil\AppData\LocalLow\Sun\Java\Deployment\cache folder moved successfully. File/Folder C:\Users\mobil\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup unctf.lnk not found. < ipconfig /flushdns /c > Windows-IP-Konfiguration Der DNS-Aufl”sungscache wurde geleert. C:\Users\mobil\Desktop\cmd.bat deleted successfully. C:\Users\mobil\Desktop\cmd.txt deleted successfully. ========== COMMANDS ========== [EMPTYTEMP] User: All Users User: Default ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes User: Default User ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes User: mobil ->Temp folder emptied: 7997536 bytes ->Temporary Internet Files folder emptied: 17920036 bytes ->FireFox cache emptied: 95529024 bytes ->Google Chrome cache emptied: 10126865 bytes ->Apple Safari cache emptied: 546816 bytes ->Flash cache emptied: 57369 bytes User: Public %systemdrive% .tmp files removed: 0 bytes %systemroot% .tmp files removed: 0 bytes %systemroot%\System32 .tmp files removed: 0 bytes %systemroot%\System32\drivers .tmp files removed: 0 bytes Windows Temp folder emptied: 89117776 bytes RecycleBin emptied: 0 bytes Total Files Cleaned = 211,00 mb OTL by OldTimer - Version 3.2.69.0 log created on 02042013_183402 Files\Folders moved on Reboot... PendingFileRenameOperations files... Registry entries deleted on Reboot... --------------------------------------- Malwarebytes Anti-Rootkit BETA 1.01.0.1017 (c) Malwarebytes Corporation 2011-2012 OS version: 6.1.7600 Windows 7 x86 Account is Administrative Internet Explorer version: 8.0.7600.16385 Java version: 1.6.0_37 File system is: NTFS Disk drives: C:\ DRIVE_FIXED, F:\ DRIVE_FIXED CPU speed: 2.194000 GHz Memory total: 3184615424, free: 2141491200 ------------ Kernel report ------------ 02/04/2013 18:46:03 ------------ Loaded modules ----------- \SystemRoot\system32\ntkrnlpa.exe \SystemRoot\system32\halmacpi.dll \SystemRoot\system32\kdcom.dll \SystemRoot\system32\mcupdate_GenuineIntel.dll \SystemRoot\system32\PSHED.dll \SystemRoot\system32\BOOTVID.dll \SystemRoot\system32\CLFS.SYS \SystemRoot\system32\CI.dll \SystemRoot\system32\drivers\Wdf01000.sys \SystemRoot\system32\drivers\WDFLDR.SYS \SystemRoot\system32\DRIVERS\ACPI.sys \SystemRoot\system32\DRIVERS\WMILIB.SYS \SystemRoot\system32\DRIVERS\msisadrv.sys \SystemRoot\system32\DRIVERS\pci.sys \SystemRoot\system32\DRIVERS\vdrvroot.sys \SystemRoot\System32\drivers\partmgr.sys \SystemRoot\system32\DRIVERS\compbatt.sys \SystemRoot\system32\DRIVERS\BATTC.SYS \SystemRoot\system32\DRIVERS\volmgr.sys \SystemRoot\System32\drivers\volmgrx.sys \SystemRoot\System32\drivers\mountmgr.sys \SystemRoot\system32\DRIVERS\atapi.sys \SystemRoot\system32\DRIVERS\ataport.SYS \SystemRoot\system32\DRIVERS\msahci.sys \SystemRoot\system32\DRIVERS\PCIIDEX.SYS \SystemRoot\system32\DRIVERS\amdxata.sys \SystemRoot\system32\drivers\fltmgr.sys \SystemRoot\system32\drivers\fileinfo.sys \SystemRoot\System32\Drivers\Ntfs.sys \SystemRoot\System32\Drivers\msrpc.sys \SystemRoot\System32\Drivers\ksecdd.sys \SystemRoot\System32\Drivers\cng.sys \SystemRoot\System32\drivers\pcw.sys \SystemRoot\System32\Drivers\Fs_Rec.sys \SystemRoot\system32\drivers\ndis.sys \SystemRoot\system32\drivers\NETIO.SYS \SystemRoot\System32\Drivers\ksecpkg.sys \SystemRoot\System32\drivers\tcpip.sys \SystemRoot\System32\drivers\fwpkclnt.sys \SystemRoot\system32\DRIVERS\volsnap.sys \SystemRoot\System32\Drivers\spldr.sys \SystemRoot\System32\drivers\rdyboost.sys \SystemRoot\System32\Drivers\mup.sys \SystemRoot\System32\drivers\hwpolicy.sys \SystemRoot\System32\DRIVERS\fvevol.sys \SystemRoot\system32\DRIVERS\disk.sys \SystemRoot\system32\DRIVERS\CLASSPNP.SYS \SystemRoot\system32\DRIVERS\cdrom.sys \SystemRoot\system32\DRIVERS\MpFilter.sys \SystemRoot\System32\Drivers\Null.SYS \SystemRoot\System32\Drivers\Beep.SYS \SystemRoot\System32\drivers\vga.sys \SystemRoot\System32\drivers\VIDEOPRT.SYS \SystemRoot\System32\drivers\watchdog.sys \SystemRoot\System32\DRIVERS\RDPCDD.sys \SystemRoot\system32\drivers\rdpencdd.sys \SystemRoot\system32\drivers\rdprefmp.sys \SystemRoot\System32\Drivers\Msfs.SYS \SystemRoot\System32\Drivers\Npfs.SYS \SystemRoot\system32\DRIVERS\tdx.sys \SystemRoot\system32\DRIVERS\TDI.SYS \SystemRoot\system32\drivers\afd.sys \SystemRoot\System32\DRIVERS\netbt.sys \SystemRoot\system32\DRIVERS\wfplwf.sys \SystemRoot\system32\DRIVERS\pacer.sys \SystemRoot\system32\DRIVERS\vwififlt.sys \SystemRoot\system32\DRIVERS\netbios.sys \SystemRoot\system32\DRIVERS\wanarp.sys \SystemRoot\system32\DRIVERS\termdd.sys \SystemRoot\system32\DRIVERS\rdbss.sys \SystemRoot\system32\drivers\nsiproxy.sys \SystemRoot\system32\DRIVERS\mssmbios.sys \SystemRoot\System32\drivers\discache.sys \SystemRoot\System32\Drivers\dfsc.sys \SystemRoot\system32\DRIVERS\blbdrive.sys \SystemRoot\system32\DRIVERS\tunnel.sys \SystemRoot\system32\DRIVERS\intelppm.sys \SystemRoot\system32\DRIVERS\igdkmd32.sys \SystemRoot\System32\drivers\dxgkrnl.sys \SystemRoot\System32\drivers\dxgmms1.sys \SystemRoot\system32\DRIVERS\usbuhci.sys \SystemRoot\system32\DRIVERS\USBPORT.SYS \SystemRoot\system32\DRIVERS\usbehci.sys \SystemRoot\system32\DRIVERS\HDAudBus.sys \SystemRoot\system32\DRIVERS\athr.sys \SystemRoot\system32\DRIVERS\vwifibus.sys \SystemRoot\system32\DRIVERS\L1E62x86.sys \SystemRoot\system32\DRIVERS\i8042prt.sys \SystemRoot\system32\DRIVERS\kbdclass.sys \SystemRoot\system32\DRIVERS\mouclass.sys \SystemRoot\system32\drivers\Afc.sys \SystemRoot\system32\DRIVERS\GEARAspiWDM.sys \SystemRoot\system32\DRIVERS\CmBatt.sys \SystemRoot\system32\DRIVERS\ATKACPI.sys \SystemRoot\system32\DRIVERS\CompositeBus.sys \SystemRoot\system32\DRIVERS\AgileVpn.sys \SystemRoot\system32\DRIVERS\rasl2tp.sys \SystemRoot\system32\DRIVERS\ndistapi.sys \SystemRoot\system32\DRIVERS\ndiswan.sys \SystemRoot\system32\DRIVERS\raspppoe.sys \SystemRoot\system32\DRIVERS\raspptp.sys \SystemRoot\system32\DRIVERS\rassstp.sys \SystemRoot\system32\DRIVERS\swenum.sys \SystemRoot\system32\DRIVERS\ks.sys \SystemRoot\system32\DRIVERS\umbus.sys \SystemRoot\system32\DRIVERS\usbhub.sys \SystemRoot\System32\Drivers\NDProxy.SYS \SystemRoot\system32\drivers\HdAudio.sys \SystemRoot\system32\drivers\portcls.sys \SystemRoot\system32\drivers\drmk.sys \SystemRoot\system32\DRIVERS\usbccgp.sys \SystemRoot\system32\DRIVERS\USBD.SYS \SystemRoot\system32\DRIVERS\snp2uvc.sys \SystemRoot\system32\DRIVERS\STREAM.SYS \SystemRoot\system32\DRIVERS\sncduvc.SYS \SystemRoot\system32\DRIVERS\dc3d.sys \SystemRoot\system32\DRIVERS\HIDPARSE.SYS \SystemRoot\system32\DRIVERS\hidusb.sys \SystemRoot\system32\DRIVERS\HIDCLASS.SYS \SystemRoot\system32\DRIVERS\NuidFltr.sys \SystemRoot\system32\DRIVERS\mouhid.sys \SystemRoot\system32\DRIVERS\point32.sys \SystemRoot\System32\Drivers\crashdmp.sys \SystemRoot\System32\Drivers\dump_dumpata.sys \SystemRoot\System32\Drivers\dump_msahci.sys \SystemRoot\System32\Drivers\dump_dumpfve.sys \SystemRoot\System32\win32k.sys \SystemRoot\System32\drivers\Dxapi.sys \SystemRoot\system32\DRIVERS\monitor.sys \SystemRoot\System32\TSDDD.dll \SystemRoot\System32\cdd.dll \SystemRoot\System32\ATMFD.DLL \SystemRoot\system32\drivers\luafv.sys \SystemRoot\system32\drivers\WudfPf.sys \SystemRoot\system32\DRIVERS\lltdio.sys \SystemRoot\system32\DRIVERS\nwifi.sys \SystemRoot\system32\DRIVERS\ndisuio.sys \SystemRoot\system32\DRIVERS\rspndr.sys \SystemRoot\system32\DRIVERS\vwifimp.sys \SystemRoot\system32\drivers\HTTP.sys \SystemRoot\system32\DRIVERS\bowser.sys \SystemRoot\System32\drivers\mpsdrv.sys \SystemRoot\system32\DRIVERS\mrxsmb.sys \SystemRoot\system32\DRIVERS\mrxsmb10.sys \SystemRoot\system32\DRIVERS\mrxsmb20.sys \SystemRoot\system32\drivers\peauth.sys \SystemRoot\System32\Drivers\secdrv.SYS \SystemRoot\System32\DRIVERS\srvnet.sys \SystemRoot\System32\drivers\tcpipreg.sys \SystemRoot\system32\DRIVERS\MpNWMon.sys \SystemRoot\System32\DRIVERS\srv2.sys \SystemRoot\System32\DRIVERS\srv.sys \SystemRoot\system32\DRIVERS\NisDrvWFP.sys \??\C:\Windows\system32\drivers\mbamchameleon.sys \??\C:\Windows\system32\drivers\mbamswissarmy.sys \Windows\System32\ntdll.dll \Windows\System32\smss.exe \Windows\System32\apisetschema.dll ----------- End ----------- <<<1>>> Upper Device Name: \Device\Harddisk0\DR0 Upper Device Object: 0xffffffff8617a2e0 Upper Device Driver Name: \Driver\Disk\ Lower Device Name: \Device\Ide\IdeDeviceP0T0L0-0\ Lower Device Object: 0xffffffff86079030 Lower Device Driver Name: \Driver\atapi\ Driver name found: atapi Initialization returned 0x0 Port sub-driver loaded: \??\C:\Windows\System32\drivers\ataport.sys (0x0) Load Function returned 0x0 Downloaded database version: v2013.02.04.07 Downloaded database version: v2013.01.23.01 Initializing... Done! <<<2>>> Device number: 0, partition: 2 Physical Sector Size: 512 Drive: 0, DevicePointer: 0xffffffff8617a2e0, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\ --------- Disk Stack ------ DevicePointer: 0xffffffff8617b020, DeviceName: Unknown, DriverName: \Driver\partmgr\ DevicePointer: 0xffffffff8617a2e0, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\ DevicePointer: 0xffffffff86045918, DeviceName: Unknown, DriverName: \Driver\ACPI\ DevicePointer: 0xffffffff86079030, DeviceName: \Device\Ide\IdeDeviceP0T0L0-0\, DriverName: \Driver\atapi\ ------------ End ---------- Upper DeviceData: 0xffffffffbe28f3f0, 0xffffffff8617a2e0, 0xffffffff8583fac8 Lower DeviceData: 0xffffffffbe313c18, 0xffffffff86079030, 0xffffffffae06cc20 <<<3>>> Volume: C: File system type: NTFS SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes Scanning directory: C:\Windows\system32\drivers... Done! Drive 0 Scanning MBR on drive 0... Inspecting partition table: MBR Signature: 55AA Disk Signature: 516D077A Partition information: Partition 0 type is Primary (0x7) Partition is ACTIVE. Partition starts at LBA: 2048 Numsec = 204800 Partition file system is NTFS Partition is bootable Partition 1 type is Primary (0x7) Partition is NOT ACTIVE. Partition starts at LBA: 206848 Numsec = 204595200 Partition 2 type is Primary (0x7) Partition is NOT ACTIVE. Partition starts at LBA: 204802048 Numsec = 420335616 Partition 3 type is Empty (0x0) Partition is NOT ACTIVE. Partition starts at LBA: 0 Numsec = 0 Disk Size: 320072933376 bytes Sector size: 512 bytes Scanning physical sectors of unpartitioned space on drive 0 (1-2047-625122448-625142448)... Done! Performing system, memory and registry scan... Done! Scan finished ======================================= |
05.02.2013, 03:19 | #5 |
/// Helfer-Team | Google redirect Virus und nichts hilft scheinbar Das ist das falsche Anti-Rootkit-Log bitte Anleitung schauen. wo ist das adwCleaner-Log? |
06.02.2013, 22:27 | #6 | |||
| Google redirect Virus und nichts hilft scheinbar Hallo, ich übernehme mal für meinen Papa also die Logs waren direkt untereinander und der ADW hatte gefehlt: OTL Log: Zitat:
Zitat:
Zitat:
|
07.02.2013, 00:59 | #7 |
/// Helfer-Team | Google redirect Virus und nichts hilft scheinbar Sehr gut! Redirect noch da? Malware-Scan mit Emsisoft Anti-Malware Lade die Gratisversion von => Emsisoft Anti-Malware herunter und installiere das Programm. Lade über Jetzt Updaten die aktuellen Signaturen herunter. Wähle den Freeware-Modus aus. Wähle Detail Scan und starte über den Button Scan die Überprüfung des Computers. Am Ende des Scans nichts loeschen lassen!. Mit Klick auf Bericht speichern das Logfile auf dem Desktop speichern und hier in den Thread posten. Anleitung: http://www.trojaner-board.de/103809-...i-malware.html danach: Downloade dir bitte aswMBR.exe und speichere die Datei auf deinem Desktop.
Poste mir die aswMBR.txt in deiner nächsten Antwort. Wichtig: Drücke keinesfalls einen der Fix Buttons ohne Anweisung Hinweis: Sollte der Scan Button ausgeblendet sein, schließe das Tool und starte es erneut. Sollte es erneut nicht klappen teile mir das bitte mit. |
09.02.2013, 14:10 | #8 |
| Google redirect Virus und nichts hilft scheinbar Hallo, vielen Dank für deine Hilfe, konnte das erste tool leider nicht installieren, weil die autoupdates von windows nicht mehr laufen und das sp1 gar nicht hier installiert war. das musste ich erstmal fixen (dateien im windows update ordner mussten gelöscht werden). Hoffe ich kann gleich das sp1 installieren und dann die tools laufen lassen. viele grüße! |
09.02.2013, 16:58 | #9 |
/// Helfer-Team | Google redirect Virus und nichts hilft scheinbar Melde dich, falls es nicht gehen sollte! |
09.02.2013, 21:13 | #10 | ||
| Google redirect Virus und nichts hilft scheinbar Hallo, jetzt läufts: Anti Malware: Zitat:
Zitat:
|
09.02.2013, 21:22 | #11 |
/// Helfer-Team | Google redirect Virus und nichts hilft scheinbar Sehr gut! Deinstalliere: Emsisoft Anti-Malware ESET Online Scanner Vorbereitung
danach: Downloade Dir bitte SecurityCheck und:
|
10.02.2013, 11:00 | #12 | ||
| Google redirect Virus und nichts hilft scheinbar Hallo, hier die Ergebnisse: ESET: Zitat:
Zitat:
|
10.02.2013, 20:08 | #13 |
/// Helfer-Team | Google redirect Virus und nichts hilft scheinbar Aktualisiere: Adobe Reader: Adobe Reader - Download - Filepony (Alternativen: PDF Tools) Java aktualisieren Dein Java ist nicht mehr aktuell. Älter Versionen enthalten Sicherheitslücken, die von Malware missbraucht werden können.
Dann so einstellen: http://www.trojaner-board.de/105213-...tellungen.html Danach poste (kopieren und einfuegen) mir, was du hier angezeigt bekommst: PluginCheck Java deaktivieren Aufgrund derezeitigen Sicherheitsluecke: http://www.trojaner-board.de/122961-...ktivieren.html Danach poste mir (kopieren und einfuegen), was du hier angezeigt bekommst: PluginCheck |
11.02.2013, 03:45 | #14 | |
| Google redirect Virus und nichts hilft scheinbar Hallo, hier das Ergebnis: Zitat:
Tobias |
11.02.2013, 13:56 | #15 |
/// Helfer-Team | Google redirect Virus und nichts hilft scheinbar Gibt es noch Probleme mit dem Rechner? |
Themen zu Google redirect Virus und nichts hilft scheinbar |
andere, anleitung, antivirus, bereits, dateien, gen, google, google redirect, hallo zusammen, hilft, klicke, kurzem, laufen, nichts, problem, programme, redirect, schei, seite, seiten, spyware, suche, virus, zusammen |