| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Attention Required; Google, Youtube und viele andere Websiten sind gesperrtWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
10.04.2013, 21:02
| #16 | |
| /// Winkelfunktion /// TB-Süch-Tiger™   |  Attention Required; Google, Youtube und viele andere Websiten sind gesperrtZitat:
__________________ Logfiles bitte immer in CODE-Tags posten  |
|
11.04.2013, 14:50
| #17 |
 | Attention Required; Google, Youtube und viele andere Websiten sind gesperrtCode:
ATTFilter 15:33:00.0106 1104 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
15:33:00.0511 1104 ============================================================
15:33:00.0511 1104 Current date / time: 2013/04/11 15:33:00.0511
15:33:00.0511 1104 SystemInfo:
15:33:00.0511 1104
15:33:00.0511 1104 OS Version: 6.1.7601 ServicePack: 1.0
15:33:00.0511 1104 Product type: Workstation
15:33:00.0511 1104 ComputerName: JONAS-PC
15:33:00.0512 1104 UserName: Jonas
15:33:00.0512 1104 Windows directory: C:\Windows
15:33:00.0512 1104 System windows directory: C:\Windows
15:33:00.0512 1104 Processor architecture: Intel x86
15:33:00.0512 1104 Number of processors: 2
15:33:00.0512 1104 Page size: 0x1000
15:33:00.0512 1104 Boot type: Normal boot
15:33:00.0512 1104 ============================================================
15:33:03.0446 1104 Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
15:33:03.0493 1104 ============================================================
15:33:03.0493 1104 \Device\Harddisk0\DR0:
15:33:03.0493 1104 MBR partitions:
15:33:03.0493 1104 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
15:33:03.0493 1104 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x19391800
15:33:03.0493 1104 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x193C4000, BlocksNum 0x3C00000
15:33:03.0493 1104 ============================================================
15:33:03.0541 1104 C: <-> \Device\Harddisk0\DR0\Partition2
15:33:03.0648 1104 D: <-> \Device\Harddisk0\DR0\Partition3
15:33:03.0695 1104 ============================================================
15:33:03.0695 1104 Initialize success
15:33:03.0695 1104 ============================================================
15:46:39.0980 5232 ============================================================
15:46:39.0980 5232 Scan started
15:46:39.0981 5232 Mode: Manual; SigCheck; TDLFS;
15:46:39.0981 5232 ============================================================
15:46:43.0079 5232 ================ Scan system memory ========================
15:46:43.0079 5232 System memory - ok
15:46:43.0080 5232 ================ Scan services =============================
15:46:43.0361 5232 [ 1B133875B8AA8AC48969BD3458AFE9F5 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
15:46:43.0866 5232 1394ohci - ok
15:46:44.0045 5232 [ E6F53D6C0DEA3D375362265E175CA638 ] acedrv11 C:\Windows\system32\drivers\acedrv11.sys
15:46:44.0137 5232 acedrv11 - ok
15:46:44.0217 5232 [ CEA80C80BED809AA0DA6FEBC04733349 ] ACPI C:\Windows\system32\drivers\ACPI.sys
15:46:44.0322 5232 ACPI - ok
15:46:44.0386 5232 [ 1EFBC664ABFF416D1D07DB115DCB264F ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
15:46:44.0568 5232 AcpiPmi - ok
15:46:44.0617 5232 [ C1C7EEF1A53A6B47323187A22559E553 ] ACPIService C:\Windows\system32\DRIVERS\ATKACPI.SYS
15:46:44.0645 5232 ACPIService - ok
15:46:44.0918 5232 [ 0F6D872FD048D437DCBF5C1A80194886 ] AdobeActiveFileMonitor C:\Program Files\Adobe\Photoshop Elements 3.0\PhotoshopElementsFileAgent.exe
15:46:44.0945 5232 AdobeActiveFileMonitor ( UnsignedFile.Multi.Generic ) - warning
15:46:44.0945 5232 AdobeActiveFileMonitor - detected UnsignedFile.Multi.Generic (1)
15:46:45.0007 5232 [ 21E785EBD7DC90A06391141AAC7892FB ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
15:46:45.0176 5232 adp94xx - ok
15:46:45.0236 5232 [ 0C676BC278D5B59FF5ABD57BBE9123F2 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
15:46:45.0281 5232 adpahci - ok
15:46:45.0332 5232 [ 7C7B5EE4B7B822EC85321FE23A27DB33 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
15:46:45.0383 5232 adpu320 - ok
15:46:45.0427 5232 [ 8B5EEFEEC1E6D1A72A06C526628AD161 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
15:46:45.0662 5232 AeLookupSvc - ok
15:46:45.0742 5232 [ 9EBBBA55060F786F0FCAA3893BFA2806 ] AFD C:\Windows\system32\drivers\afd.sys
15:46:45.0987 5232 AFD - ok
15:46:46.0054 5232 [ 5C4125D2AF6DDBB6422CE5F6E9BE7098 ] AFW C:\Windows\system32\DRIVERS\afw.sys
15:46:46.0150 5232 AFW - ok
15:46:46.0207 5232 [ C223C5327FF06330B0251F1830FEE1AF ] afwcore C:\Windows\system32\DRIVERS\afwcore.sys
15:46:46.0266 5232 afwcore - ok
15:46:46.0489 5232 [ 507812C3054C21CEF746B6EE3D04DD6E ] agp440 C:\Windows\system32\drivers\agp440.sys
15:46:46.0743 5232 agp440 - ok
15:46:46.0815 5232 [ 8B30250D573A8F6B4BD23195160D8707 ] aic78xx C:\Windows\system32\DRIVERS\djsvs.sys
15:46:46.0886 5232 aic78xx - ok
15:46:46.0943 5232 [ 18A54E132947CD98FEA9ACCC57F98F13 ] ALG C:\Windows\System32\alg.exe
15:46:47.0072 5232 ALG - ok
15:46:47.0115 5232 [ 0D40BCF52EA90FC7DF2AEAB6503DEA44 ] aliide C:\Windows\system32\drivers\aliide.sys
15:46:47.0157 5232 aliide - ok
15:46:47.0216 5232 [ 3C6600A0696E90A463771C7422E23AB5 ] amdagp C:\Windows\system32\drivers\amdagp.sys
15:46:47.0264 5232 amdagp - ok
15:46:47.0350 5232 [ CD5914170297126B6266860198D1D4F0 ] amdide C:\Windows\system32\drivers\amdide.sys
15:46:47.0392 5232 amdide - ok
15:46:47.0540 5232 [ 00DDA200D71BAC534BF56A9DB5DFD666 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
15:46:48.0101 5232 AmdK8 - ok
15:46:48.0147 5232 [ 3CBF30F5370FDA40DD3E87DF38EA53B6 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
15:46:48.0357 5232 AmdPPM - ok
15:46:48.0422 5232 [ D320BF87125326F996D4904FE24300FC ] amdsata C:\Windows\system32\drivers\amdsata.sys
15:46:48.0493 5232 amdsata - ok
15:46:48.0564 5232 [ EA43AF0C423FF267355F74E7A53BDABA ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
15:46:48.0649 5232 amdsbs - ok
15:46:48.0678 5232 [ 46387FB17B086D16DEA267D5BE23A2F2 ] amdxata C:\Windows\system32\drivers\amdxata.sys
15:46:48.0785 5232 amdxata - ok
15:46:48.0871 5232 [ AEA177F783E20150ACE5383EE368DA19 ] AppID C:\Windows\system32\drivers\appid.sys
15:46:49.0025 5232 AppID - ok
15:46:49.0094 5232 [ 62A9C86CB6085E20DB4823E4E97826F5 ] AppIDSvc C:\Windows\System32\appidsvc.dll
15:46:49.0256 5232 AppIDSvc - ok
15:46:49.0296 5232 [ FB1959012294D6AD43E5304DF65E3C26 ] Appinfo C:\Windows\System32\appinfo.dll
15:46:49.0448 5232 Appinfo - ok
15:46:49.0559 5232 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
15:46:49.0608 5232 Apple Mobile Device - ok
15:46:49.0664 5232 [ 2932004F49677BD84DBC72EDB754FFB3 ] arc C:\Windows\system32\DRIVERS\arc.sys
15:46:49.0710 5232 arc - ok
15:46:49.0747 5232 [ 5D6F36C46FD283AE1B57BD2E9FEB0BC7 ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
15:46:49.0794 5232 arcsas - ok
15:46:50.0075 5232 [ 776ACEFA0CA9DF0FAA51A5FB2F435705 ] aspnet_state C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
15:46:50.0182 5232 aspnet_state - ok
15:46:50.0231 5232 [ ADD2ADE1C2B285AB8378D2DAAF991481 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
15:46:50.0986 5232 AsyncMac - ok
15:46:51.0041 5232 [ 338C86357871C167A96AB976519BF59E ] atapi C:\Windows\system32\drivers\atapi.sys
15:46:51.0083 5232 atapi - ok
15:46:51.0201 5232 [ CE3B4E731638D2EF62FCB419BE0D39F0 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
15:46:51.0536 5232 AudioEndpointBuilder - ok
15:46:51.0574 5232 [ CE3B4E731638D2EF62FCB419BE0D39F0 ] Audiosrv C:\Windows\System32\Audiosrv.dll
15:46:51.0774 5232 Audiosrv - ok
15:46:51.0820 5232 [ 6E30D02AAC9CAC84F421622E3A2F6178 ] AxInstSV C:\Windows\System32\AxInstSV.dll
15:46:52.0050 5232 AxInstSV - ok
15:46:52.0110 5232 [ 1A231ABEC60FD316EC54C66715543CEC ] b06bdrv C:\Windows\system32\DRIVERS\bxvbdx.sys
15:46:52.0325 5232 b06bdrv - ok
15:46:52.0406 5232 [ BD8869EB9CDE6BBE4508D869929869EE ] b57nd60x C:\Windows\system32\DRIVERS\b57nd60x.sys
15:46:52.0508 5232 b57nd60x - ok
15:46:52.0577 5232 [ EE1E9C3BB8228AE423DD38DB69128E71 ] BDESVC C:\Windows\System32\bdesvc.dll
15:46:52.0738 5232 BDESVC - ok
15:46:52.0779 5232 [ FE7D7035833981F5B4EE746805E9C30E ] BdSpy C:\Windows\system32\DRIVERS\BdSpy.sys
15:46:52.0981 5232 BdSpy - ok
15:46:53.0079 5232 [ 505506526A9D467307B3C393DEDAF858 ] Beep C:\Windows\system32\drivers\Beep.sys
15:46:53.0492 5232 Beep - ok
15:46:53.0814 5232 [ 1E2BAC209D184BB851E1A187D8A29136 ] BFE C:\Windows\System32\bfe.dll
15:46:54.0418 5232 BFE - ok
15:46:54.0576 5232 [ C4F6B64F61934523E2DAD838D4B23B12 ] BgRaSvc C:\Program Files\BullGuard Ltd\BullGuard\Support\BgRaSvc.exe
15:46:54.0717 5232 BgRaSvc - ok
15:46:54.0797 5232 [ E585445D5021971FAE10393F0F1C3961 ] BITS C:\Windows\System32\qmgr.dll
15:46:55.0624 5232 BITS - ok
15:46:55.0679 5232 [ 2287078ED48FCFC477B05B20CF38F36F ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
15:46:55.0897 5232 blbdrive - ok
15:46:56.0013 5232 [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
15:46:56.0149 5232 Bonjour Service - ok
15:46:56.0280 5232 [ 8F2DA3028D5FCBD1A060A3DE64CD6506 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
15:46:56.0413 5232 bowser - ok
15:46:56.0474 5232 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
15:46:56.0569 5232 BrFiltLo - ok
15:46:56.0613 5232 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
15:46:56.0718 5232 BrFiltUp - ok
15:46:56.0826 5232 [ 3DAA727B5B0A45039B0E1C9A211B8400 ] Browser C:\Windows\System32\browser.dll
15:46:57.0023 5232 Browser - ok
15:46:57.0304 5232 [ 639838B4BD0ED95F308650B910E3EC82 ] BrowserProtect C:\ProgramData\BrowserProtect\2.6.1095.52\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BrowserProtect.exe
15:46:57.0625 5232 BrowserProtect - ok
15:46:57.0669 5232 [ 845B8CE732E67F3B4133164868C666EA ] Brserid C:\Windows\System32\Drivers\Brserid.sys
15:46:57.0823 5232 Brserid - ok
15:46:57.0935 5232 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
15:46:58.0017 5232 BrSerWdm - ok
15:46:58.0095 5232 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
15:46:58.0229 5232 BrUsbMdm - ok
15:46:58.0312 5232 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
15:46:58.0496 5232 BrUsbSer - ok
15:46:58.0577 5232 [ CD40B39A3DAC59BD00BA0C76941133D2 ] BsBhvScan C:\Program Files\BullGuard Ltd\BullGuard\BullGuardBhvScanner.exe
15:46:58.0722 5232 BsBhvScan - ok
15:46:58.0764 5232 [ 5F15F8A2FE5D087F6EBDC3961A8B198E ] BsBrowser C:\Program Files\BullGuard Ltd\BullGuard\BsBrowser.dll
15:46:58.0888 5232 BsBrowser - ok
15:46:59.0001 5232 [ 514E96F4037B98067863A65E89349D80 ] BsFileScan C:\Program Files\BullGuard Ltd\BullGuard\BsFileScan.dll
15:46:59.0072 5232 BsFileScan - ok
15:46:59.0198 5232 [ 9C6066552E2BF2360667E15730DC0995 ] BsFire C:\Program Files\BullGuard Ltd\BullGuard\BsFire.dll
15:46:59.0408 5232 BsFire - ok
15:46:59.0580 5232 [ 162266BFCEADACEBBB628DFD0C1AB152 ] BsMailProxy C:\Program Files\BullGuard Ltd\BullGuard\BsMailProxy\BsMailProxy.dll
15:46:59.0656 5232 BsMailProxy - ok
15:46:59.0790 5232 [ 60D6ECED581EFC2D237721F72BC6FBAC ] BsMain C:\Program Files\BullGuard Ltd\BullGuard\BsMain.dll
15:46:59.0865 5232 BsMain - ok
15:46:59.0919 5232 [ 173EE0192B8A172D1E7AEA6F36E1058E ] BsScanner C:\Program Files\BullGuard Ltd\BullGuard\BullGuardScanner.exe
15:47:00.0018 5232 BsScanner - ok
15:47:00.0068 5232 [ 7951E867B9C89A2F4156F3AB8FD28E82 ] BsUpdate C:\Program Files\BullGuard Ltd\BullGuard\BullGuardUpdate.exe
15:47:00.0137 5232 BsUpdate - ok
15:47:00.0255 5232 [ 2865A5C8E98C70C605F417908CEBB3A4 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
15:47:00.0488 5232 BthEnum - ok
15:47:00.0512 5232 [ ED3DF7C56CE0084EB2034432FC56565A ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
15:47:00.0713 5232 BTHMODEM - ok
15:47:00.0865 5232 [ AD1872E5829E8A2C3B5B4B641C3EAB0E ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
15:47:00.0938 5232 BthPan - ok
15:47:01.0861 5232 [ 1153DE2E4F5941E10C399CB5592F78A1 ] BTHPORT C:\Windows\system32\Drivers\BTHport.sys
15:47:01.0976 5232 BTHPORT - ok
15:47:02.0029 5232 [ 1DF19C96EEF6C29D1C3E1A8678E07190 ] bthserv C:\Windows\system32\bthserv.dll
15:47:02.0142 5232 bthserv - ok
15:47:02.0212 5232 [ C81E9413A25A439F436B1D4B6A0CF9E9 ] BTHUSB C:\Windows\system32\Drivers\BTHUSB.sys
15:47:02.0262 5232 BTHUSB - ok
15:47:02.0294 5232 [ 92C5B845803F3662637EB691AC0B250F ] btusbflt C:\Windows\system32\drivers\btusbflt.sys
15:47:02.0323 5232 btusbflt - ok
15:47:02.0374 5232 [ 7E826BE3B3558208D5C9B00034E51BE5 ] btwaudio C:\Windows\system32\drivers\btwaudio.sys
15:47:02.0408 5232 btwaudio - ok
15:47:02.0450 5232 [ AF9148C3E844131AC954CB53FF43D971 ] btwavdt C:\Windows\system32\drivers\btwavdt.sys
15:47:02.0501 5232 btwavdt - ok
15:47:02.0587 5232 [ 0E3EE2BC0EC56BFE869FCDE3E5806684 ] btwdins C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
15:47:02.0644 5232 btwdins - ok
15:47:02.0691 5232 [ AAFD7CB76BA61FBB08E302DA208C974A ] btwl2cap C:\Windows\system32\DRIVERS\btwl2cap.sys
15:47:02.0722 5232 btwl2cap - ok
15:47:02.0768 5232 [ 480B3D195854B2E55299CDDDDC50BCF9 ] btwrchid C:\Windows\system32\DRIVERS\btwrchid.sys
15:47:02.0792 5232 btwrchid - ok
15:47:02.0853 5232 [ 77EA11B065E0A8AB902D78145CA51E10 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
15:47:02.0947 5232 cdfs - ok
15:47:03.0009 5232 [ BE167ED0FDB9C1FA1133953C18D5A6C9 ] cdrom C:\Windows\system32\drivers\cdrom.sys
15:47:03.0087 5232 cdrom - ok
15:47:03.0153 5232 [ 319C6B309773D063541D01DF8AC6F55F ] CertPropSvc C:\Windows\System32\certprop.dll
15:47:03.0289 5232 CertPropSvc - ok
15:47:03.0350 5232 [ 3FE3FE94A34DF6FB06E6418D0F6A0060 ] circlass C:\Windows\system32\DRIVERS\circlass.sys
15:47:03.0413 5232 circlass - ok
15:47:03.0472 5232 [ 635181E0E9BBF16871BF5380D71DB02D ] CLFS C:\Windows\system32\CLFS.sys
15:47:03.0515 5232 CLFS - ok
15:47:03.0790 5232 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
15:47:03.0842 5232 clr_optimization_v2.0.50727_32 - ok
15:47:03.0917 5232 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
15:47:04.0043 5232 clr_optimization_v4.0.30319_32 - ok
15:47:04.0081 5232 [ DEA805815E587DAD1DD2C502220B5616 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
15:47:04.0135 5232 CmBatt - ok
15:47:04.0179 5232 [ C537B1DB64D495B9B4717B4D6D9EDBF2 ] cmdide C:\Windows\system32\drivers\cmdide.sys
15:47:04.0211 5232 cmdide - ok
15:47:04.0260 5232 [ 247B4CE2DAB1160CD422D532D5241E1F ] CNG C:\Windows\system32\Drivers\cng.sys
15:47:04.0369 5232 CNG - ok
15:47:04.0406 5232 [ A6023D3823C37043986713F118A89BEE ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
15:47:04.0443 5232 Compbatt - ok
15:47:04.0500 5232 [ CBE8C58A8579CFE5FCCF809E6F114E89 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
15:47:04.0707 5232 CompositeBus - ok
15:47:04.0761 5232 COMSysApp - ok
15:47:04.0812 5232 [ 2C4EBCFC84A9B44F209DFF6C6E6C61D1 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
15:47:04.0848 5232 crcdisk - ok
15:47:04.0921 5232 [ 96C0E38905CFD788313BE8E11DAE3F2F ] CryptSvc C:\Windows\system32\cryptsvc.dll
15:47:05.0170 5232 CryptSvc - ok
15:47:05.0265 5232 [ 7660F01D3B38ACA1747E397D21D790AF ] DcomLaunch C:\Windows\system32\rpcss.dll
15:47:05.0417 5232 DcomLaunch - ok
15:47:05.0475 5232 [ 8D6E10A2D9A5EED59562D9B82CF804E1 ] defragsvc C:\Windows\System32\defragsvc.dll
15:47:05.0633 5232 defragsvc - ok
15:47:05.0729 5232 [ F024449C97EC1E464AAFFDA18593DB88 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
15:47:05.0849 5232 DfsC - ok
15:47:05.0889 5232 [ E9E01EB683C132F7FA27CD607B8A2B63 ] Dhcp C:\Windows\system32\dhcpcore.dll
15:47:06.0052 5232 Dhcp - ok
15:47:06.0141 5232 [ 1A050B0274BFB3890703D490F330C0DA ] discache C:\Windows\system32\drivers\discache.sys
15:47:06.0289 5232 discache - ok
15:47:06.0384 5232 [ 565003F326F99802E68CA78F2A68E9FF ] Disk C:\Windows\system32\DRIVERS\disk.sys
15:47:06.0427 5232 Disk - ok
15:47:06.0480 5232 [ 33EF4861F19A0736B11314AAD9AE28D0 ] Dnscache C:\Windows\System32\dnsrslvr.dll
15:47:06.0576 5232 Dnscache - ok
15:47:06.0640 5232 [ 366BA8FB4B7BB7435E3B9EACB3843F67 ] dot3svc C:\Windows\System32\dot3svc.dll
15:47:06.0738 5232 dot3svc - ok
15:47:06.0800 5232 [ 8EC04CA86F1D68DA9E11952EB85973D6 ] DPS C:\Windows\system32\dps.dll
15:47:06.0928 5232 DPS - ok
15:47:06.0990 5232 [ B918E7C5F9BF77202F89E1A9539F2EB4 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
15:47:07.0139 5232 drmkaud - ok
15:47:07.0263 5232 [ 23F5D28378A160352BA8F817BD8C71CB ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
15:47:07.0328 5232 DXGKrnl - ok
15:47:07.0411 5232 [ 8600142FA91C1B96367D3300AD0F3F3A ] EapHost C:\Windows\System32\eapsvc.dll
15:47:07.0581 5232 EapHost - ok
15:47:07.0744 5232 [ 024E1B5CAC09731E4D868E64DBFB4AB0 ] ebdrv C:\Windows\system32\DRIVERS\evbdx.sys
15:47:07.0991 5232 ebdrv - ok
15:47:08.0045 5232 [ 81951F51E318AECC2D68559E47485CC4 ] EFS C:\Windows\System32\lsass.exe
15:47:08.0143 5232 EFS - ok
15:47:08.0213 5232 [ 0ED67910C8C326796FAA00B2BF6D9D3C ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
15:47:08.0271 5232 elxstor - ok
15:47:08.0332 5232 [ 8FC3208352DD3912C94367A206AB3F11 ] ErrDev C:\Windows\system32\drivers\errdev.sys
15:47:08.0371 5232 ErrDev - ok
15:47:08.0471 5232 [ F6916EFC29D9953D5D0DF06882AE8E16 ] EventSystem C:\Windows\system32\es.dll
15:47:08.0611 5232 EventSystem - ok
15:47:08.0670 5232 [ 2DC9108D74081149CC8B651D3A26207F ] exfat C:\Windows\system32\drivers\exfat.sys
15:47:08.0765 5232 exfat - ok
15:47:08.0852 5232 Fabs - ok
15:47:08.0899 5232 [ 7E0AB74553476622FB6AE36F73D97D35 ] fastfat C:\Windows\system32\drivers\fastfat.sys
15:47:09.0000 5232 fastfat - ok
15:47:09.0078 5232 [ 967EA5B213E9984CBE270205DF37755B ] Fax C:\Windows\system32\fxssvc.exe
15:47:09.0237 5232 Fax - ok
15:47:09.0288 5232 [ E817A017F82DF2A1F8CFDBDA29388B29 ] fdc C:\Windows\system32\DRIVERS\fdc.sys
15:47:09.0341 5232 fdc - ok
15:47:09.0380 5232 [ F3222C893BD2F5821A0179E5C71E88FB ] fdPHost C:\Windows\system32\fdPHost.dll
15:47:09.0470 5232 fdPHost - ok
15:47:09.0492 5232 [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B ] FDResPub C:\Windows\system32\fdrespub.dll
15:47:09.0609 5232 FDResPub - ok
15:47:09.0654 5232 [ 6CF00369C97F3CF563BE99BE983D13D8 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
15:47:09.0689 5232 FileInfo - ok
15:47:09.0810 5232 [ 2B0BCCF997721163E97889DC56EFDBDE ] FileOpenManagerService C:\Program Files\FileOpen\Services\FileOpenManagerService32.exe
15:47:09.0842 5232 FileOpenManagerService - ok
15:47:09.0875 5232 [ 42C51DC94C91DA21CB9196EB64C45DB9 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
15:47:09.0979 5232 Filetrace - ok
15:47:10.0127 5232 [ FFF1130F7C9FA01D093A1EDFC5CCE8FC ] FirebirdServerMAGIXInstance C:\Program Files\Common Files\MAGIX Services\Database\bin\fbserver.exe
15:47:10.0330 5232 FirebirdServerMAGIXInstance ( UnsignedFile.Multi.Generic ) - warning
15:47:10.0333 5232 FirebirdServerMAGIXInstance - detected UnsignedFile.Multi.Generic (1)
15:47:10.0382 5232 [ 87907AA70CB3C56600F1C2FB8841579B ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
15:47:10.0436 5232 flpydisk - ok
15:47:10.0491 5232 [ 7520EC808E0C35E0EE6F841294316653 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
15:47:10.0530 5232 FltMgr - ok
15:47:10.0616 5232 [ AA85D09261FBF080CD9415853BD7B559 ] FontCache C:\Windows\system32\FntCache.dll
15:47:10.0761 5232 FontCache - ok
15:47:10.0871 5232 [ E56F39F6B7FDA0AC77A79B0FD3DE1A2F ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
15:47:10.0941 5232 FontCache3.0.0.0 - ok
15:47:10.0999 5232 [ 1A16B57943853E598CFF37FE2B8CBF1D ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
15:47:11.0058 5232 FsDepends - ok
15:47:11.0147 5232 [ 01BB4A70EA1F47422C1646B06164A8FB ] fspad_wlh32 C:\Windows\system32\DRIVERS\fspad_wlh32.sys
15:47:11.0326 5232 fspad_wlh32 - ok
15:47:11.0397 5232 [ 7DAE5EBCC80E45D3253F4923DC424D05 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
15:47:11.0450 5232 Fs_Rec - ok
15:47:11.0541 5232 [ 8A73E79089B282100B9393B644CB853B ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
15:47:11.0602 5232 fvevol - ok
15:47:11.0656 5232 [ 65EE0C7A58B65E74AE05637418153938 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
15:47:11.0693 5232 gagp30kx - ok
15:47:11.0765 5232 [ 185ADA973B5020655CEE342059A86CBB ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
15:47:11.0800 5232 GEARAspiWDM - ok
15:47:11.0884 5232 [ E897EAF5ED6BA41E081060C9B447A673 ] gpsvc C:\Windows\System32\gpsvc.dll
15:47:12.0014 5232 gpsvc - ok
15:47:12.0093 5232 [ 833051C6C6C42117191935F734CFBD97 ] hamachi C:\Windows\system32\DRIVERS\hamachi.sys
15:47:12.0143 5232 hamachi - ok
15:47:12.0307 5232 [ 616399E27A55C97AE859230EB13984D8 ] Hamachi2Svc C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
15:47:12.0442 5232 Hamachi2Svc - ok
15:47:12.0523 5232 [ C44E3C2BAB6837DB337DDEE7544736DB ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
15:47:12.0648 5232 hcw85cir - ok
15:47:12.0722 5232 [ A5EF29D5315111C80A5C1ABAD14C8972 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
15:47:12.0818 5232 HdAudAddService - ok
15:47:12.0871 5232 [ 9036377B8A6C15DC2EEC53E489D159B5 ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
15:47:12.0988 5232 HDAudBus - ok
15:47:13.0039 5232 [ 1D58A7F3E11A9731D0EAAAA8405ACC36 ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
15:47:13.0120 5232 HidBatt - ok
15:47:13.0173 5232 [ 89448F40E6DF260C206A193A4683BA78 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
15:47:13.0233 5232 HidBth - ok
15:47:13.0277 5232 [ CF50B4CF4A4F229B9F3C08351F99CA5E ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
15:47:13.0329 5232 HidIr - ok
15:47:13.0379 5232 [ 2BC6F6A1992B3A77F5F41432CA6B3B6B ] hidserv C:\Windows\system32\hidserv.dll
15:47:13.0492 5232 hidserv - ok
15:47:13.0552 5232 [ 10C19F8290891AF023EAEC0832E1EB4D ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
15:47:13.0587 5232 HidUsb - ok
15:47:13.0640 5232 [ 196B4E3F4CCCC24AF836CE58FACBB699 ] hkmsvc C:\Windows\system32\kmsvc.dll
15:47:13.0749 5232 hkmsvc - ok
15:47:13.0805 5232 [ 6658F4404DE03D75FE3BA09F7ABA6A30 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
15:47:13.0901 5232 HomeGroupListener - ok
15:47:13.0933 5232 [ DBC02D918FFF1CAD628ACBE0C0EAA8E8 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
15:47:14.0019 5232 HomeGroupProvider - ok
15:47:14.0073 5232 [ 295FDC419039090EB8B49FFDBB374549 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
15:47:14.0121 5232 HpSAMD - ok
15:47:14.0175 5232 [ 871917B07A141BFF43D76D8844D48106 ] HTTP C:\Windows\system32\drivers\HTTP.sys
15:47:14.0272 5232 HTTP - ok
15:47:14.0329 5232 [ 0C4E035C7F105F1299258C90886C64C5 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
15:47:14.0372 5232 hwpolicy - ok
15:47:14.0433 5232 [ F151F0BDC47F4A28B1B20A0818EA36D6 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
15:47:14.0481 5232 i8042prt - ok
15:47:14.0568 5232 [ 5CD5F9A5444E6CDCB0AC89BD62D8B76E ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
15:47:14.0615 5232 iaStorV - ok
15:47:14.0750 5232 [ DAF66902F08796F9C694901660E5A64A ] IDriverT C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
15:47:14.0790 5232 IDriverT ( UnsignedFile.Multi.Generic ) - warning
15:47:14.0790 5232 IDriverT - detected UnsignedFile.Multi.Generic (1)
15:47:14.0867 5232 [ C521D7EB6497BB1AF6AFA89E322FB43C ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
15:47:14.0975 5232 idsvc - ok
15:47:15.0151 5232 [ E21A74A91F7AA3BB2E985C4CDDCA63F2 ] igfx C:\Windows\system32\DRIVERS\igdkmd32.sys
15:47:15.0445 5232 igfx - ok
15:47:15.0494 5232 [ 4173FF5708F3236CF25195FECD742915 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
15:47:15.0528 5232 iirsp - ok
15:47:15.0614 5232 [ F95622F161474511B8D80D6B093AA610 ] IKEEXT C:\Windows\System32\ikeext.dll
15:47:15.0729 5232 IKEEXT - ok
15:47:15.0889 5232 [ 09BF2EFC833A4848665E439EB4DB3331 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
15:47:16.0077 5232 IntcAzAudAddService - ok
15:47:16.0114 5232 [ A0F12F2C9BA6C72F3987CE780E77C130 ] intelide C:\Windows\system32\drivers\intelide.sys
15:47:16.0147 5232 intelide - ok
15:47:16.0192 5232 [ 3B514D27BFC4ACCB4037BC6685F766E0 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
15:47:16.0251 5232 intelppm - ok
15:47:16.0294 5232 [ ACB364B9075A45C0736E5C47BE5CAE19 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
15:47:16.0392 5232 IPBusEnum - ok
15:47:16.0427 5232 [ 709D1761D3B19A932FF0238EA6D50200 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
15:47:16.0528 5232 IpFilterDriver - ok
15:47:16.0595 5232 [ 58F67245D041FBE7AF88F4EAF79DF0FA ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
15:47:16.0693 5232 iphlpsvc - ok
15:47:16.0757 5232 [ 4BD7134618C1D2A27466A099062547BF ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
15:47:16.0806 5232 IPMIDRV - ok
15:47:16.0857 5232 [ A5FA468D67ABCDAA36264E463A7BB0CD ] IPNAT C:\Windows\system32\drivers\ipnat.sys
15:47:16.0953 5232 IPNAT - ok
15:47:17.0048 5232 [ BC0EA61246F8D940FBC5F652D337D6BD ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
15:47:17.0289 5232 iPod Service - ok
15:47:17.0510 5232 [ 42996CFF20A3084A56017B7902307E9F ] IRENUM C:\Windows\system32\drivers\irenum.sys
15:47:17.0563 5232 IRENUM - ok
15:47:17.0591 5232 [ 1F32BB6B38F62F7DF1A7AB7292638A35 ] isapnp C:\Windows\system32\drivers\isapnp.sys
15:47:17.0623 5232 isapnp - ok
15:47:17.0699 5232 [ CB7A9ABB12B8415BCE5D74994C7BA3AE ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
15:47:17.0739 5232 iScsiPrt - ok
15:47:17.0788 5232 [ ADEF52CA1AEAE82B50DF86B56413107E ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
15:47:17.0821 5232 kbdclass - ok
15:47:17.0901 5232 [ 9E3CED91863E6EE98C24794D05E27A71 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
15:47:18.0261 5232 kbdhid - ok
15:47:18.0289 5232 [ 81951F51E318AECC2D68559E47485CC4 ] KeyIso C:\Windows\system32\lsass.exe
15:47:18.0324 5232 KeyIso - ok
15:47:18.0368 5232 [ B7895B4182C0D16F6EFADEB8081E8D36 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
15:47:18.0401 5232 KSecDD - ok
15:47:18.0445 5232 [ D30159AC9237519FBC62C6EC247D2D46 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
15:47:18.0482 5232 KSecPkg - ok
15:47:18.0535 5232 [ 89A7B9CC98D0D80C6F31B91C0A310FCD ] KtmRm C:\Windows\system32\msdtckrm.dll
15:47:18.0644 5232 KtmRm - ok
15:47:18.0707 5232 [ 3705B2273E8EFC9A707864AB7324B614 ] L1C C:\Windows\system32\DRIVERS\L1C62x86.sys
15:47:18.0770 5232 L1C - ok
15:47:18.0821 5232 [ D64AF876D53ECA3668BB97B51B4E70AB ] LanmanServer C:\Windows\system32\srvsvc.dll
15:47:18.0922 5232 LanmanServer - ok
15:47:18.0950 5232 [ 58405E4F68BA8E4057C6E914F326ABA2 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
15:47:19.0057 5232 LanmanWorkstation - ok
15:47:19.0116 5232 [ F7611EC07349979DA9B0AE1F18CCC7A6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
15:47:19.0202 5232 lltdio - ok
15:47:19.0244 5232 [ 5700673E13A2117FA3B9020C852C01E2 ] lltdsvc C:\Windows\System32\lltdsvc.dll
15:47:19.0347 5232 lltdsvc - ok
15:47:19.0383 5232 [ 55CA01BA19D0006C8F2639B6C045E08B ] lmhosts C:\Windows\System32\lmhsvc.dll
15:47:19.0478 5232 lmhosts - ok
15:47:19.0542 5232 [ EB119A53CCF2ACC000AC71B065B78FEF ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
15:47:19.0578 5232 LSI_FC - ok
15:47:19.0618 5232 [ 8ADE1C877256A22E49B75D1CC9161F9C ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
15:47:19.0654 5232 LSI_SAS - ok
15:47:19.0695 5232 [ DC9DC3D3DAA0E276FD2EC262E38B11E9 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
15:47:19.0727 5232 LSI_SAS2 - ok
15:47:19.0782 5232 [ 0A036C7D7CAB643A7F07135AC47E0524 ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
15:47:19.0816 5232 LSI_SCSI - ok
15:47:19.0850 5232 [ 6703E366CC18D3B6E534F5CF7DF39CEE ] luafv C:\Windows\system32\drivers\luafv.sys
15:47:19.0925 5232 luafv - ok
15:47:19.0955 5232 [ 0FFF5B045293002AB38EB1FD1FC2FB74 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
15:47:19.0990 5232 megasas - ok
15:47:20.0033 5232 [ DCBAB2920C75F390CAF1D29F675D03D6 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
15:47:20.0077 5232 MegaSR - ok
15:47:20.0118 5232 [ 146B6F43A673379A3C670E86D89BE5EA ] MMCSS C:\Windows\system32\mmcss.dll
15:47:20.0209 5232 MMCSS - ok
15:47:20.0249 5232 [ F001861E5700EE84E2D4E52C712F4964 ] Modem C:\Windows\system32\drivers\modem.sys
15:47:20.0339 5232 Modem - ok
15:47:20.0372 5232 [ 79D10964DE86B292320E9DFE02282A23 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
15:47:20.0431 5232 monitor - ok
15:47:20.0476 5232 [ FB18CC1D4C2E716B6B903B0AC0CC0609 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
15:47:20.0513 5232 mouclass - ok
15:47:20.0562 5232 [ 2C388D2CD01C9042596CF3C8F3C7B24D ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
15:47:20.0615 5232 mouhid - ok
15:47:20.0676 5232 [ FC8771F45ECCCFD89684E38842539B9B ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
15:47:20.0724 5232 mountmgr - ok
15:47:20.0870 5232 [ E8D79312373F254DC13F3965BDB3D521 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
15:47:21.0006 5232 MozillaMaintenance - ok
15:47:21.0082 5232 [ 2D699FB6E89CE0D8DA14ECC03B3EDFE0 ] mpio C:\Windows\system32\drivers\mpio.sys
15:47:21.0167 5232 mpio - ok
15:47:21.0373 5232 [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
15:47:21.0635 5232 mpsdrv - ok
15:47:21.0713 5232 [ 9835584E999D25004E1EE8E5F3E3B881 ] MpsSvc C:\Windows\system32\mpssvc.dll
15:47:21.0933 5232 MpsSvc - ok
15:47:21.0998 5232 [ CEB46AB7C01C9F825F8CC6BABC18166A ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
15:47:22.0114 5232 MRxDAV - ok
15:47:22.0167 5232 [ 5D16C921E3671636C0EBA3BBAAC5FD25 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
15:47:22.0297 5232 mrxsmb - ok
15:47:22.0359 5232 [ 6D17A4791ACA19328C685D256349FEFC ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
15:47:22.0438 5232 mrxsmb10 - ok
15:47:22.0466 5232 [ B81F204D146000BE76651A50670A5E9E ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
15:47:22.0524 5232 mrxsmb20 - ok
15:47:22.0584 5232 [ 012C5F4E9349E711E11E0F19A8589F0A ] msahci C:\Windows\system32\drivers\msahci.sys
15:47:22.0627 5232 msahci - ok
15:47:22.0673 5232 [ 55055F8AD8BE27A64C831322A780A228 ] msdsm C:\Windows\system32\drivers\msdsm.sys
15:47:22.0715 5232 msdsm - ok
15:47:22.0761 5232 [ E1BCE74A3BD9902B72599C0192A07E27 ] MSDTC C:\Windows\System32\msdtc.exe
15:47:22.0845 5232 MSDTC - ok
15:47:22.0908 5232 [ DAEFB28E3AF5A76ABCC2C3078C07327F ] Msfs C:\Windows\system32\drivers\Msfs.sys
15:47:23.0008 5232 Msfs - ok
15:47:23.0053 5232 [ 3E1E5767043C5AF9367F0056295E9F84 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
15:47:23.0184 5232 mshidkmdf - ok
15:47:23.0225 5232 [ 0A4E5757AE09FA9622E3158CC1AEF114 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
15:47:23.0277 5232 msisadrv - ok
15:47:23.0334 5232 [ 90F7D9E6B6F27E1A707D4A297F077828 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
15:47:23.0453 5232 MSiSCSI - ok
15:47:23.0471 5232 msiserver - ok
15:47:23.0524 5232 [ 8C0860D6366AAFFB6C5BB9DF9448E631 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
15:47:23.0610 5232 MSKSSRV - ok
15:47:23.0645 5232 [ 3EA8B949F963562CEDBB549EAC0C11CE ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
15:47:23.0786 5232 MSPCLOCK - ok
15:47:23.0834 5232 [ F456E973590D663B1073E9C463B40932 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
15:47:23.0941 5232 MSPQM - ok
15:47:23.0988 5232 [ 0E008FC4819D238C51D7C93E7B41E560 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
15:47:24.0040 5232 MsRPC - ok
15:47:24.0097 5232 [ FC6B9FF600CC585EA38B12589BD4E246 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
15:47:24.0127 5232 mssmbios - ok
15:47:24.0235 5232 MSSQL$SQLEXPRESS - ok
15:47:24.0376 5232 [ F1761C8FB2B25A32C6D63E36BB88C3AE ] MSSQLServerADHelper100 c:\Program Files\Microsoft SQL Server\100\Shared\SQLADHLP.EXE
15:47:24.0438 5232 MSSQLServerADHelper100 - ok
15:47:24.0488 5232 [ B42C6B921F61A6E55159B8BE6CD54A36 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
15:47:24.0568 5232 MSTEE - ok
15:47:24.0612 5232 [ 33599130F44E1F34631CEA241DE8AC84 ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
15:47:24.0657 5232 MTConfig - ok
15:47:24.0688 5232 [ 159FAD02F64E6381758C990F753BCC80 ] Mup C:\Windows\system32\Drivers\mup.sys
15:47:24.0724 5232 Mup - ok
15:47:24.0773 5232 [ 61D57A5D7C6D9AFE10E77DAE6E1B445E ] napagent C:\Windows\system32\qagentRT.dll
15:47:24.0898 5232 napagent - ok
15:47:24.0947 5232 [ 26384429FCD85D83746F63E798AB1480 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
15:47:25.0001 5232 NativeWifiP - ok
15:47:25.0077 5232 [ 8C9C922D71F1CD4DEF73F186416B7896 ] NDIS C:\Windows\system32\drivers\ndis.sys
15:47:25.0188 5232 NDIS - ok
15:47:25.0258 5232 [ 0E1787AA6C9191D3D319E8BAFE86F80C ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
15:47:25.0378 5232 NdisCap - ok
15:47:25.0410 5232 [ E4A8AEC125A2E43A9E32AFEEA7C9C888 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
15:47:25.0498 5232 NdisTapi - ok
15:47:25.0551 5232 [ D8A65DAFB3EB41CBB622745676FCD072 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
15:47:25.0647 5232 Ndisuio - ok
15:47:25.0694 5232 [ 38FBE267E7E6983311179230FACB1017 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
15:47:25.0830 5232 NdisWan - ok
15:47:25.0891 5232 [ A4BDC541E69674FBFF1A8FF00BE913F2 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
15:47:25.0957 5232 NDProxy - ok
15:47:26.0011 5232 [ 80B275B1CE3B0E79909DB7B39AF74D51 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
15:47:26.0101 5232 NetBIOS - ok
15:47:26.0139 5232 [ 280122DDCF04B378EDD1AD54D71C1E54 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
15:47:26.0232 5232 NetBT - ok
15:47:26.0256 5232 [ 81951F51E318AECC2D68559E47485CC4 ] Netlogon C:\Windows\system32\lsass.exe
15:47:26.0292 5232 Netlogon - ok
15:47:26.0344 5232 [ 7CCCFCA7510684768DA22092D1FA4DB2 ] Netman C:\Windows\System32\netman.dll
15:47:26.0497 5232 Netman - ok
15:47:26.0587 5232 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
15:47:26.0662 5232 NetMsmqActivator - ok
15:47:26.0677 5232 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
15:47:26.0706 5232 NetPipeActivator - ok
15:47:26.0805 5232 [ 8C338238C16777A802D6A9211EB2BA50 ] netprofm C:\Windows\System32\netprofm.dll
15:47:26.0967 5232 netprofm - ok
15:47:26.0997 5232 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
15:47:27.0026 5232 NetTcpActivator - ok
15:47:27.0035 5232 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
15:47:27.0066 5232 NetTcpPortSharing - ok
15:47:27.0134 5232 [ 1D85C4B390B0EE09C7A46B91EFB2C097 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
15:47:27.0187 5232 nfrd960 - ok
15:47:27.0265 5232 [ 374071043F9E4231EE43BE2BB48DD36D ] NlaSvc C:\Windows\System32\nlasvc.dll
15:47:27.0336 5232 NlaSvc - ok
15:47:27.0455 5232 [ DD8B7B1EEFE8D36CD9F070619CBB66C2 ] NovaShieldFilterDriver C:\Windows\system32\DRIVERS\NSKernel.sys
15:47:27.0497 5232 NovaShieldFilterDriver - ok
15:47:27.0531 5232 [ F137D033742CE16FA8AAF974A899AAF2 ] NovaShieldTDIDriver C:\Windows\system32\DRIVERS\NSNetmon.sys
15:47:27.0557 5232 NovaShieldTDIDriver - ok
15:47:27.0611 5232 [ 1DB262A9F8C087E8153D89BEF3D2235F ] Npfs C:\Windows\system32\drivers\Npfs.sys
15:47:27.0708 5232 Npfs - ok
15:47:27.0762 5232 [ BA387E955E890C8A88306D9B8D06BF17 ] nsi C:\Windows\system32\nsisvc.dll
15:47:27.0900 5232 nsi - ok
15:47:27.0929 5232 [ E9A0A4D07E53D8FEA2BB8387A3293C58 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
15:47:28.0085 5232 nsiproxy - ok
15:47:28.0193 5232 [ 0D87503986BB3DFED58E343FE39DDE13 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
15:47:28.0302 5232 Ntfs - ok
15:47:28.0327 5232 [ F9756A98D69098DCA8945D62858A812C ] Null C:\Windows\system32\drivers\Null.sys
15:47:28.0421 5232 Null - ok
15:47:28.0477 5232 [ B3E25EE28883877076E0E1FF877D02E0 ] nvraid C:\Windows\system32\drivers\nvraid.sys
15:47:28.0511 5232 nvraid - ok
15:47:28.0546 5232 [ 4380E59A170D88C4F1022EFF6719A8A4 ] nvstor C:\Windows\system32\drivers\nvstor.sys
15:47:28.0583 5232 nvstor - ok
15:47:28.0633 5232 [ 5A0983915F02BAE73267CC2A041F717D ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
15:47:28.0704 5232 nv_agp - ok
15:47:28.0745 5232 [ 08A70A1F2CDDE9BB49B885CB817A66EB ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
15:47:28.0795 5232 ohci1394 - ok
15:47:28.0843 5232 [ 82A8521DDC60710C3D3D3E7325209BEC ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
15:47:28.0907 5232 p2pimsvc - ok
15:47:28.0937 5232 [ 59C3DDD501E39E006DAC31BF55150D91 ] p2psvc C:\Windows\system32\p2psvc.dll
15:47:29.0008 5232 p2psvc - ok
15:47:29.0056 5232 [ 2EA877ED5DD9713C5AC74E8EA7348D14 ] Parport C:\Windows\system32\DRIVERS\parport.sys
15:47:29.0102 5232 Parport - ok
15:47:29.0142 5232 [ 3F34A1B4C5F6475F320C275E63AFCE9B ] partmgr C:\Windows\system32\drivers\partmgr.sys
15:47:29.0178 5232 partmgr - ok
15:47:29.0200 5232 [ EB0A59F29C19B86479D36B35983DAADC ] Parvdm C:\Windows\system32\DRIVERS\parvdm.sys
15:47:29.0244 5232 Parvdm - ok
15:47:29.0490 5232 [ 0C7B85E8655E2774466E941B42AD9121 ] pc essentials C:\Program Files\pc essentials\updater.exe
15:47:29.0781 5232 pc essentials ( UnsignedFile.Multi.Generic ) - warning
15:47:29.0781 5232 pc essentials - detected UnsignedFile.Multi.Generic (1)
15:47:29.0828 5232 [ 358AB7956D3160000726574083DFC8A6 ] PcaSvc C:\Windows\System32\pcasvc.dll
15:47:29.0880 5232 PcaSvc - ok
15:47:29.0908 5232 [ 673E55C3498EB970088E812EA820AA8F ] pci C:\Windows\system32\drivers\pci.sys
15:47:29.0951 5232 pci - ok
15:47:29.0992 5232 [ AFE86F419014DB4E5593F69FFE26CE0A ] pciide C:\Windows\system32\drivers\pciide.sys
15:47:30.0022 5232 pciide - ok
15:47:30.0064 5232 [ F396431B31693E71E8A80687EF523506 ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
15:47:30.0104 5232 pcmcia - ok
15:47:30.0140 5232 [ 250F6B43D2B613172035C6747AEEB19F ] pcw C:\Windows\system32\drivers\pcw.sys
15:47:30.0174 5232 pcw - ok
15:47:30.0220 5232 [ 9E0104BA49F4E6973749A02BF41344ED ] PEAUTH C:\Windows\system32\drivers\peauth.sys
15:47:30.0339 5232 PEAUTH - ok
15:47:30.0504 5232 [ E0297D369962F00E52BBACE14A554DF5 ] PhotoshopElementsDeviceConnect C:\Program Files\Adobe\Photoshop Elements 3.0\PhotoshopElementsDeviceConnect.exe
15:47:30.0533 5232 PhotoshopElementsDeviceConnect ( UnsignedFile.Multi.Generic ) - warning
15:47:30.0533 5232 PhotoshopElementsDeviceConnect - detected UnsignedFile.Multi.Generic (1)
15:47:30.0614 5232 [ 414BBA67A3DED1D28437EB66AEB8A720 ] pla C:\Windows\system32\pla.dll
15:47:30.0779 5232 pla - ok
15:47:30.0874 5232 [ EC7BC28D207DA09E79B3E9FAF8B232CA ] PlugPlay C:\Windows\system32\umpnpmgr.dll
15:47:30.0962 5232 PlugPlay - ok
15:47:31.0003 5232 [ 63FF8572611249931EB16BB8EED6AFC8 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
15:47:31.0058 5232 PNRPAutoReg - ok
15:47:31.0088 5232 [ 82A8521DDC60710C3D3D3E7325209BEC ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
15:47:31.0132 5232 PNRPsvc - ok
15:47:31.0178 5232 [ 53946B69BA0836BD95B03759530C81EC ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
15:47:31.0302 5232 PolicyAgent - ok
15:47:31.0375 5232 [ F87D30E72E03D579A5199CCB3831D6EA ] Power C:\Windows\system32\umpo.dll
15:47:31.0504 5232 Power - ok
15:47:31.0552 5232 [ 631E3E205AD6D86F2AED6A4A8E69F2DB ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
15:47:31.0894 5232 PptpMiniport - ok
15:47:31.0961 5232 [ 85B1E3A0C7585BC4AAE6899EC6FCF011 ] Processor C:\Windows\system32\DRIVERS\processr.sys
15:47:32.0083 5232 Processor - ok
15:47:32.0141 5232 [ CADEFAC453040E370A1BDFF3973BE00D ] ProfSvc C:\Windows\system32\profsvc.dll
15:47:32.0220 5232 ProfSvc - ok
15:47:32.0244 5232 [ 81951F51E318AECC2D68559E47485CC4 ] ProtectedStorage C:\Windows\system32\lsass.exe
15:47:32.0297 5232 ProtectedStorage - ok
15:47:32.0373 5232 [ 6270CCAE2A86DE6D146529FE55B3246A ] Psched C:\Windows\system32\DRIVERS\pacer.sys
15:47:32.0459 5232 Psched - ok
15:47:32.0530 5232 [ B5DFB86A6CAEAE9B2BF3DEDB43BE6393 ] PxHelp20 C:\Windows\system32\Drivers\PxHelp20.sys
15:47:32.0646 5232 PxHelp20 ( UnsignedFile.Multi.Generic ) - warning
15:47:32.0646 5232 PxHelp20 - detected UnsignedFile.Multi.Generic (1)
15:47:32.0749 5232 [ AB95ECF1F6659A60DDC166D8315B0751 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
15:47:33.0076 5232 ql2300 - ok
15:47:33.0145 5232 [ B4DD51DD25182244B86737DC51AF2270 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
15:47:33.0235 5232 ql40xx - ok
15:47:33.0354 5232 [ 31AC809E7707EB580B2BDB760390765A ] QWAVE C:\Windows\system32\qwave.dll
15:47:33.0508 5232 QWAVE - ok
15:47:33.0574 5232 [ 584078CA1B95CA72DF2A27C336F9719D ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
15:47:33.0774 5232 QWAVEdrv - ok
15:47:33.0852 5232 [ 30A81B53C766D0133BB86D234E5556AB ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
15:47:34.0026 5232 RasAcd - ok
15:47:34.0094 5232 [ 57EC4AEF73660166074D8F7F31C0D4FD ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
15:47:34.0290 5232 RasAgileVpn - ok
15:47:34.0486 5232 [ A60F1839849C0C00739787FD5EC03F13 ] RasAuto C:\Windows\System32\rasauto.dll
15:47:35.0012 5232 RasAuto - ok
15:47:35.0104 5232 [ D9F91EAFEC2815365CBE6D167E4E332A ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
15:47:35.0229 5232 Rasl2tp - ok
15:47:35.0326 5232 [ CB9E04DC05EACF5B9A36CA276D475006 ] RasMan C:\Windows\System32\rasmans.dll
15:47:35.0499 5232 RasMan - ok
15:47:35.0570 5232 [ 0FE8B15916307A6AC12BFB6A63E45507 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
15:47:35.0740 5232 RasPppoe - ok
15:47:35.0775 5232 [ 44101F495A83EA6401D886E7FD70096B ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
15:47:35.0998 5232 RasSstp - ok
15:47:36.0062 5232 [ D528BC58A489409BA40334EBF96A311B ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
15:47:36.0245 5232 rdbss - ok
15:47:36.0304 5232 [ 0D8F05481CB76E70E1DA06EE9F0DA9DF ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
15:47:36.0419 5232 rdpbus - ok
15:47:36.0488 5232 [ 23DAE03F29D253AE74C44F99E515F9A1 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
15:47:36.0635 5232 RDPCDD - ok
15:47:36.0709 5232 [ 5A53CA1598DD4156D44196D200C94B8A ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
15:47:36.0818 5232 RDPENCDD - ok
15:47:36.0848 5232 [ 44B0A53CD4F27D50ED461DAE0C0B4E1F ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
15:47:36.0969 5232 RDPREFMP - ok
15:47:37.0045 5232 [ F031683E6D1FEA157ABB2FF260B51E61 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
15:47:37.0151 5232 RDPWD - ok
15:47:37.0214 5232 [ 518395321DC96FE2C9F0E96AC743B656 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
15:47:37.0254 5232 rdyboost - ok
15:47:37.0302 5232 [ 7B5E1419717FAC363A31CC302895217A ] RemoteAccess C:\Windows\System32\mprdim.dll
15:47:37.0415 5232 RemoteAccess - ok
15:47:37.0448 5232 [ CB9A8683F4EF2BF99E123D79950D7935 ] RemoteRegistry C:\Windows\system32\regsvc.dll
15:47:37.0548 5232 RemoteRegistry - ok
15:47:37.0589 5232 [ CB928D9E6DAF51879DD6BA8D02F01321 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
15:47:37.0634 5232 RFCOMM - ok
15:47:37.0787 5232 [ 999AA77152F16A40A5727FC657EF66C3 ] RichVideo C:\Program Files\CyberLink\Shared files\RichVideo.exe
15:47:37.0858 5232 RichVideo - ok
15:47:37.0912 5232 [ 78D072F35BC45D9E4E1B61895C152234 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
15:47:38.0024 5232 RpcEptMapper - ok
15:47:38.0076 5232 [ 94D36C0E44677DD26981D2BFEEF2A29D ] RpcLocator C:\Windows\system32\locator.exe
15:47:38.0132 5232 RpcLocator - ok
15:47:38.0165 5232 [ 7660F01D3B38ACA1747E397D21D790AF ] RpcSs C:\Windows\system32\rpcss.dll
15:47:38.0257 5232 RpcSs - ok
15:47:38.0322 5232 [ FD692C6FFADE58F7C4C3C3C9A0EC35BD ] RsFx0103 C:\Windows\system32\DRIVERS\RsFx0103.sys
15:47:38.0365 5232 RsFx0103 - ok
15:47:38.0456 5232 [ 032B0D36AD92B582D869879F5AF5B928 ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
15:47:38.0559 5232 rspndr - ok
15:47:38.0631 5232 [ 44B7739F2D623AD6FB46755BB60351A4 ] rtl8192se C:\Windows\system32\DRIVERS\rtl8192se.sys
15:47:38.0754 5232 rtl8192se - ok
15:47:38.0795 5232 [ 81951F51E318AECC2D68559E47485CC4 ] SamSs C:\Windows\system32\lsass.exe
15:47:38.0845 5232 SamSs - ok
15:47:38.0914 5232 [ 05D860DA1040F111503AC416CCEF2BCA ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
15:47:38.0958 5232 sbp2port - ok
15:47:39.0016 5232 [ 8FC518FFE9519C2631D37515A68009C4 ] SCardSvr C:\Windows\System32\SCardSvr.dll
15:47:39.0138 5232 SCardSvr - ok
15:47:39.0196 5232 [ 0693B5EC673E34DC147E195779A4DCF6 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
15:47:39.0325 5232 scfilter - ok
15:47:39.0389 5232 [ A04BB13F8A72F8B6E8B4071723E4E336 ] Schedule C:\Windows\system32\schedsvc.dll
15:47:39.0539 5232 Schedule - ok
15:47:39.0576 5232 [ 319C6B309773D063541D01DF8AC6F55F ] SCPolicySvc C:\Windows\System32\certprop.dll
15:47:39.0645 5232 SCPolicySvc - ok
15:47:39.0685 5232 [ 08236C4BCE5EDD0A0318A438AF28E0F7 ] SDRSVC C:\Windows\System32\SDRSVC.dll
15:47:39.0795 5232 SDRSVC - ok
15:47:39.0846 5232 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
15:47:39.0942 5232 secdrv - ok
15:47:39.0988 5232 [ A59B3A4442C52060CC7A85293AA3546F ] seclogon C:\Windows\system32\seclogon.dll
15:47:40.0097 5232 seclogon - ok
15:47:40.0149 5232 [ DCB7FCDCC97F87360F75D77425B81737 ] SENS C:\Windows\System32\sens.dll
15:47:40.0274 5232 SENS - ok
15:47:40.0335 5232 [ 9AD8B8B515E3DF6ACD4212EF465DE2D1 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
15:47:40.0408 5232 Serenum - ok
15:47:40.0467 5232 [ 5FB7FCEA0490D821F26F39CC5EA3D1E2 ] Serial C:\Windows\system32\DRIVERS\serial.sys
15:47:40.0539 5232 Serial - ok
15:47:40.0589 5232 [ 79BFFB520327FF916A582DFEA17AA813 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
15:47:40.0653 5232 sermouse - ok
15:47:40.0724 5232 [ 4AE380F39A0032EAB7DD953030B26D28 ] SessionEnv C:\Windows\system32\sessenv.dll
15:47:40.0837 5232 SessionEnv - ok
15:47:40.0878 5232 [ 9F976E1EB233DF46FCE808D9DEA3EB9C ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
15:47:40.0929 5232 sffdisk - ok
15:47:40.0964 5232 [ 932A68EE27833CFD57C1639D375F2731 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
15:47:41.0031 5232 sffp_mmc - ok
15:47:41.0065 5232 [ 6D4CCAEDC018F1CF52866BBBAA235982 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
15:47:41.0107 5232 sffp_sd - ok
15:47:41.0152 5232 [ DB96666CC8312EBC45032F30B007A547 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
15:47:41.0188 5232 sfloppy - ok
15:47:41.0236 5232 [ D1A079A0DE2EA524513B6930C24527A2 ] SharedAccess C:\Windows\System32\ipnathlp.dll
15:47:41.0337 5232 SharedAccess - ok
15:47:41.0398 5232 [ 414DA952A35BF5D50192E28263B40577 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
15:47:41.0507 5232 ShellHWDetection - ok
15:47:41.0577 5232 [ 2565CAC0DC9FE0371BDCE60832582B2E ] sisagp C:\Windows\system32\drivers\sisagp.sys
15:47:41.0614 5232 sisagp - ok
15:47:41.0712 5232 [ A9F0486851BECB6DDA1D89D381E71055 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
15:47:41.0841 5232 SiSRaid2 - ok
15:47:41.0935 5232 [ 3727097B55738E2F554972C3BE5BC1AA ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
15:47:42.0011 5232 SiSRaid4 - ok
15:47:42.0203 5232 [ 8C4F0DCC6A5100D48F9B2F950CDD220F ] SkypeUpdate C:\Program Files\Skype\Updater\Updater.exe
15:47:42.0280 5232 SkypeUpdate - ok
15:47:42.0359 5232 [ 3E21C083B8A01CB70BA1F09303010FCE ] Smb C:\Windows\system32\DRIVERS\smb.sys
15:47:42.0478 5232 Smb - ok
15:47:42.0565 5232 [ 6A984831644ECA1A33FFEAE4126F4F37 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
15:47:42.0609 5232 SNMPTRAP - ok
15:47:42.0624 5232 [ 95CF1AE7527FB70F7816563CBC09D942 ] spldr C:\Windows\system32\drivers\spldr.sys
15:47:42.0656 5232 spldr - ok
15:47:42.0728 5232 [ 9AEA093B8F9C37CF45538382CABA2475 ] Spooler C:\Windows\System32\spoolsv.exe
15:47:42.0870 5232 Spooler - ok
15:47:43.0038 5232 [ CF87A1DE791347E75B98885214CED2B8 ] sppsvc C:\Windows\system32\sppsvc.exe
15:47:43.0262 5232 sppsvc - ok
15:47:43.0324 5232 [ B0180B20B065D89232A78A40FE56EAA6 ] sppuinotify C:\Windows\system32\sppuinotify.dll
15:47:43.0401 5232 sppuinotify - ok
15:47:43.0478 5232 [ A687B5B326AFCFCF182C4931D1FF9771 ] SQLAgent$SQLEXPRESS c:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE
15:47:43.0574 5232 SQLAgent$SQLEXPRESS - ok
15:47:43.0675 5232 [ B54B48F6D92423440C264E91225C5FF1 ] SQLBrowser c:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
15:47:43.0769 5232 SQLBrowser - ok
15:47:43.0859 5232 [ 637A0F23F9012358E92E6F99835494D1 ] SQLWriter c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
15:47:43.0900 5232 SQLWriter - ok
15:47:43.0962 5232 [ E4C2764065D66EA1D2D3EBC28FE99C46 ] srv C:\Windows\system32\DRIVERS\srv.sys
15:47:44.0051 5232 srv - ok
15:47:44.0102 5232 [ 03F0545BD8D4C77FA0AE1CEEDFCC71AB ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
15:47:44.0163 5232 srv2 - ok
15:47:44.0185 5232 [ BE6BD660CAA6F291AE06A718A4FA8ABC ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
15:47:44.0225 5232 srvnet - ok
15:47:44.0274 5232 [ D887C9FD02AC9FA880F6E5027A43E118 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
15:47:44.0406 5232 SSDPSRV - ok
15:47:44.0443 5232 [ D318F23BE45D5E3A107469EB64815B50 ] SstpSvc C:\Windows\system32\sstpsvc.dll
15:47:44.0569 5232 SstpSvc - ok
15:47:44.0630 5232 [ DB32D325C192B801DF274BFD12A7E72B ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
15:47:44.0683 5232 stexstor - ok
15:47:44.0757 5232 [ E1FB3706030FB4578A0D72C2FC3689E4 ] StiSvc C:\Windows\System32\wiaservc.dll
15:47:44.0906 5232 StiSvc - ok
15:47:44.0957 5232 [ E58C78A848ADD9610A4DB6D214AF5224 ] swenum C:\Windows\system32\drivers\swenum.sys
15:47:45.0021 5232 swenum - ok
15:47:45.0062 5232 [ A28BD92DF340E57B024BA433165D34D7 ] swprv C:\Windows\System32\swprv.dll
15:47:45.0202 5232 swprv - ok
15:47:45.0305 5232 [ 36650D618CA34C9D357DFD3D89B2C56F ] SysMain C:\Windows\system32\sysmain.dll
15:47:45.0457 5232 SysMain - ok
15:47:45.0531 5232 [ 763FECDC3D30C815FE72DD57936C6CD1 ] TabletInputService C:\Windows\System32\TabSvc.dll
15:47:45.0662 5232 TabletInputService - ok
15:47:45.0718 5232 [ 613BF4820361543956909043A265C6AC ] TapiSrv C:\Windows\System32\tapisrv.dll
15:47:45.0881 5232 TapiSrv - ok
15:47:45.0933 5232 [ B799D9FDB26111737F58288D8DC172D9 ] TBS C:\Windows\System32\tbssvc.dll
15:47:46.0119 5232 TBS - ok
15:47:46.0269 5232 [ E23A56F843E2AEBBB209D0ACCA73C640 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
15:47:46.0447 5232 Tcpip - ok
15:47:46.0530 5232 [ E23A56F843E2AEBBB209D0ACCA73C640 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
15:47:46.0721 5232 TCPIP6 - ok
15:47:46.0769 5232 [ 3EEBD3BD93DA46A26E89893C7AB2FF3B ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
15:47:46.0827 5232 tcpipreg - ok
15:47:46.0887 5232 [ 1CB91B2BD8F6DD367DFC2EF26FD751B2 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
15:47:46.0975 5232 TDPIPE - ok
15:47:47.0031 5232 [ 2C2C5AFE7EE4F620D69C23C0617651A8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
15:47:47.0100 5232 TDTCP - ok
15:47:47.0158 5232 [ B459575348C20E8121D6039DA063C704 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
15:47:47.0303 5232 tdx - ok
15:47:47.0345 5232 [ 04DBF4B01EA4BF25A9A3E84AFFAC9B20 ] TermDD C:\Windows\system32\drivers\termdd.sys
15:47:47.0501 5232 TermDD - ok
15:47:47.0598 5232 [ 382C804C92811BE57829D8E550A900E2 ] TermService C:\Windows\System32\termsrv.dll
15:47:47.0792 5232 TermService - ok
15:47:47.0936 5232 [ 42FB6AFD6B79D9FE07381609172E7CA4 ] Themes C:\Windows\system32\themeservice.dll
15:47:48.0038 5232 Themes - ok
15:47:48.0075 5232 [ 146B6F43A673379A3C670E86D89BE5EA ] THREADORDER C:\Windows\system32\mmcss.dll
15:47:48.0209 5232 THREADORDER - ok
15:47:48.0237 5232 [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A ] TrkWks C:\Windows\System32\trkwks.dll
15:47:48.0378 5232 TrkWks - ok
15:47:48.0465 5232 [ D391F1171A2E3A7080DF6FAAE7A20C0B ] Trufos C:\Windows\system32\DRIVERS\Trufos.sys
15:47:48.0612 5232 Trufos - ok
15:47:48.0722 5232 [ 2C49B175AEE1D4364B91B531417FE583 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
15:47:48.0941 5232 TrustedInstaller - ok
15:47:49.0014 5232 [ 254BB140EEE3C59D6114C1A86B636877 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
15:47:49.0166 5232 tssecsrv - ok
15:47:49.0385 5232 [ FD1D6C73E6333BE727CBCC6054247654 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
15:47:49.0613 5232 TsUsbFlt - ok
15:47:49.0709 5232 [ B2FA25D9B17A68BB93D58B0556E8C90D ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
15:47:49.0985 5232 tunnel - ok
15:47:50.0031 5232 [ 750FBCB269F4D7DD2E420C56B795DB6D ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
15:47:50.0082 5232 uagp35 - ok
15:47:50.0124 5232 [ EE43346C7E4B5E63E54F927BABBB32FF ] udfs C:\Windows\system32\DRIVERS\udfs.sys
15:47:50.0288 5232 udfs - ok
15:47:50.0346 5232 [ 8344FD4FCE927880AA1AA7681D4927E5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
15:47:50.0501 5232 UI0Detect - ok
15:47:50.0569 5232 [ 44E8048ACE47BEFBFDC2E9BE4CBC8880 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
15:47:50.0691 5232 uliagpkx - ok
15:47:50.0722 5232 [ D295BED4B898F0FD999FCFA9B32B071B ] umbus C:\Windows\system32\drivers\umbus.sys
15:47:50.0863 5232 umbus - ok
15:47:50.0916 5232 [ 7550AD0C6998BA1CB4843E920EE0FEAC ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
15:47:51.0003 5232 UmPass - ok
15:47:51.0119 5232 [ 833FBB672460EFCE8011D262175FAD33 ] upnphost C:\Windows\System32\upnphost.dll
15:47:51.0903 5232 upnphost - ok
15:47:51.0989 5232 [ 73B41F4EAD65F355962168D766AF0F2E ] USBAAPL C:\Windows\system32\Drivers\usbaapl.sys
15:47:52.0310 5232 USBAAPL - ok
15:47:52.0360 5232 [ BD9C55D7023C5DE374507ACC7A14E2AC ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
15:47:52.0602 5232 usbccgp - ok
15:47:52.0684 5232 [ 04EC7CEC62EC3B6D9354EEE93327FC82 ] usbcir C:\Windows\system32\drivers\usbcir.sys
15:47:52.0930 5232 usbcir - ok
15:47:52.0976 5232 [ F92DE757E4B7CE9C07C5E65423F3AE3B ] usbehci C:\Windows\system32\drivers\usbehci.sys
15:47:53.0129 5232 usbehci - ok
15:47:53.0207 5232 [ 8DC94AEC6A7E644A06135AE7506DC2E9 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
15:47:53.0330 5232 usbhub - ok
15:47:53.0378 5232 [ E185D44FAC515A18D9DEDDC23C2CDF44 ] usbohci C:\Windows\system32\drivers\usbohci.sys
15:47:53.0507 5232 usbohci - ok
15:47:53.0576 5232 [ 797D862FE0875E75C7CC4C1AD7B30252 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
15:47:53.0658 5232 usbprint - ok
15:47:53.0716 5232 [ F991AB9CC6B908DB552166768176896A ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
15:47:53.0959 5232 USBSTOR - ok
15:47:54.0008 5232 [ 68DF884CF41CDADA664BEB01DAF67E3D ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
15:47:54.0113 5232 usbuhci - ok
15:47:54.0192 5232 [ 45F4E7BF43DB40A6C6B4D92C76CBC3F2 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
15:47:54.0273 5232 usbvideo - ok
15:47:54.0336 5232 [ 081E6E1C91AEC36758902A9F727CD23C ] UxSms C:\Windows\System32\uxsms.dll
15:47:54.0443 5232 UxSms - ok
15:47:54.0466 5232 [ 81951F51E318AECC2D68559E47485CC4 ] VaultSvc C:\Windows\system32\lsass.exe
15:47:54.0515 5232 VaultSvc - ok
15:47:54.0553 5232 [ A059C4C3EDB09E07D21A8E5C0AABD3CB ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
15:47:54.0585 5232 vdrvroot - ok
15:47:54.0644 5232 [ C3CD30495687C2A2F66A65CA6FD89BE9 ] vds C:\Windows\System32\vds.exe
15:47:54.0805 5232 vds - ok
15:47:54.0887 5232 [ 17C408214EA61696CEC9C66E388B14F3 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
15:47:54.0993 5232 vga - ok
15:47:55.0025 5232 [ 8E38096AD5C8570A6F1570A61E251561 ] VgaSave C:\Windows\System32\drivers\vga.sys
15:47:55.0213 5232 VgaSave - ok
15:47:55.0280 5232 [ 5461686CCA2FDA57B024547733AB42E3 ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
15:47:55.0321 5232 vhdmp - ok
15:47:55.0373 5232 [ C829317A37B4BEA8F39735D4B076E923 ] viaagp C:\Windows\system32\drivers\viaagp.sys
15:47:55.0407 5232 viaagp - ok
15:47:55.0453 5232 [ E02F079A6AA107F06B16549C6E5C7B74 ] ViaC7 C:\Windows\system32\DRIVERS\viac7.sys
15:47:55.0507 5232 ViaC7 - ok
15:47:55.0538 5232 [ E43574F6A56A0EE11809B48C09E4FD3C ] viaide C:\Windows\system32\drivers\viaide.sys
15:47:55.0570 5232 viaide - ok
15:47:55.0597 5232 [ 4C63E00F2F4B5F86AB48A58CD990F212 ] volmgr C:\Windows\system32\drivers\volmgr.sys
15:47:55.0641 5232 volmgr - ok
15:47:55.0701 5232 [ B5BB72067DDDDBBFB04B2F89FF8C3C87 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
15:47:55.0787 5232 volmgrx - ok
15:47:55.0860 5232 [ F497F67932C6FA693D7DE2780631CFE7 ] volsnap C:\Windows\system32\drivers\volsnap.sys
15:47:55.0938 5232 volsnap - ok
15:47:56.0010 5232 [ 9DFA0CC2F8855A04816729651175B631 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
15:47:56.0063 5232 vsmraid - ok
15:47:56.0148 5232 [ 209A3B1901B83AEB8527ED211CCE9E4C ] VSS C:\Windows\system32\vssvc.exe
15:47:56.0324 5232 VSS - ok
15:47:56.0410 5232 [ 90567B1E658001E79D7C8BBD3DDE5AA6 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
15:47:56.0486 5232 vwifibus - ok
15:47:56.0515 5232 [ 7090D3436EEB4E7DA3373090A23448F7 ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
15:47:56.0579 5232 vwififlt - ok
15:47:56.0621 5232 [ A3F04CBEA6C2A10E6CB01F8B47611882 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
15:47:56.0701 5232 vwifimp - ok
15:47:56.0761 5232 [ 55187FD710E27D5095D10A472C8BAF1C ] W32Time C:\Windows\system32\w32time.dll
15:47:56.0910 5232 W32Time - ok
15:47:56.0969 5232 [ DE3721E89C653AA281428C8A69745D90 ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
15:47:57.0071 5232 WacomPen - ok
15:47:57.0114 5232 [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
15:47:57.0258 5232 WANARP - ok
15:47:57.0310 5232 [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
15:47:57.0478 5232 Wanarpv6 - ok
15:47:57.0579 5232 [ 691E3285E53DCA558E1A84667F13E15A ] wbengine C:\Windows\system32\wbengine.exe
15:47:57.0789 5232 wbengine - ok
15:47:57.0852 5232 [ 9614B5D29DC76AC3C29F6D2D3AA70E67 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
15:47:57.0930 5232 WbioSrvc - ok
15:47:57.0976 5232 [ 34EEE0DFAADB4F691D6D5308A51315DC ] wcncsvc C:\Windows\System32\wcncsvc.dll
15:47:58.0060 5232 wcncsvc - ok
15:47:58.0085 5232 [ 5D930B6357A6D2AF4D7653BDABBF352F ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
15:47:58.0202 5232 WcsPlugInService - ok
15:47:58.0222 5232 [ 1112A9BADACB47B7C0BB0392E3158DFF ] Wd C:\Windows\system32\DRIVERS\wd.sys
15:47:58.0259 5232 Wd - ok
15:47:58.0323 5232 [ A840213F1ACDCC175B4D1D5AAEAC0D7A ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
15:47:58.0412 5232 Wdf01000 - ok
15:47:58.0435 5232 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiServiceHost C:\Windows\system32\wdi.dll
15:47:58.0564 5232 WdiServiceHost - ok
15:47:58.0590 5232 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiSystemHost C:\Windows\system32\wdi.dll
15:47:58.0652 5232 WdiSystemHost - ok
15:47:58.0755 5232 [ F4A9476AA49B69D28BE439C64F96C714 ] Web Assistant Updater C:\Program Files\Web Assistant\ExtensionUpdaterService.exe
15:47:58.0808 5232 Web Assistant Updater ( UnsignedFile.Multi.Generic ) - warning
15:47:58.0808 5232 Web Assistant Updater - detected UnsignedFile.Multi.Generic (1)
15:47:58.0856 5232 [ A9D880F97530D5B8FEE278923349929D ] WebClient C:\Windows\System32\webclnt.dll
15:47:58.0931 5232 WebClient - ok
15:47:58.0971 5232 WebOptimizer - ok
15:47:59.0017 5232 [ 760F0AFE937A77CFF27153206534F275 ] Wecsvc C:\Windows\system32\wecsvc.dll
15:47:59.0120 5232 Wecsvc - ok
15:47:59.0145 5232 [ AC804569BB2364FB6017370258A4091B ] wercplsupport C:\Windows\System32\wercplsupport.dll
15:47:59.0320 5232 wercplsupport - ok
15:47:59.0432 5232 [ 08E420D873E4FD85241EE2421B02C4A4 ] WerSvc C:\Windows\System32\WerSvc.dll
15:47:59.0686 5232 WerSvc - ok
15:47:59.0742 5232 [ 8B9A943F3B53861F2BFAF6C186168F79 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
15:47:59.0838 5232 WfpLwf - ok
15:47:59.0863 5232 [ 5CF95B35E59E2A38023836FFF31BE64C ] WIMMount C:\Windows\system32\drivers\wimmount.sys
15:47:59.0901 5232 WIMMount - ok
15:48:00.0042 5232 [ 3FAE8F94296001C32EAB62CD7D82E0FD ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
15:48:00.0139 5232 WinDefend - ok
15:48:00.0187 5232 WinHttpAutoProxySvc - ok
15:48:00.0298 5232 [ F62E510B6AD4C21EB9FE8668ED251826 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
15:48:00.0415 5232 Winmgmt - ok
15:48:00.0488 5232 [ 1B91CD34EA3A90AB6A4EF0550174F4CC ] WinRM C:\Windows\system32\WsmSvc.dll
15:48:00.0665 5232 WinRM - ok
15:48:00.0746 5232 [ A67E5F9A400F3BD1BE3D80613B45F708 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
15:48:00.0805 5232 WinUsb - ok
15:48:00.0864 5232 [ 16935C98FF639D185086A3529B1F2067 ] Wlansvc C:\Windows\System32\wlansvc.dll
15:48:00.0969 5232 Wlansvc - ok
15:48:01.0170 5232 [ D9250B31B353EE3322C1CAD411997E38 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
15:48:01.0332 5232 wlidsvc - ok
15:48:01.0389 5232 [ 0217679B8FCA58714C3BF2726D2CA84E ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
15:48:01.0452 5232 WmiAcpi - ok
15:48:01.0517 5232 [ 6EB6B66517B048D87DC1856DDF1F4C3F ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
15:48:01.0584 5232 wmiApSrv - ok
15:48:01.0692 5232 [ 3B40D3A61AA8C21B88AE57C58AB3122E ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
15:48:01.0829 5232 WMPNetworkSvc - ok
15:48:01.0870 5232 [ A2F0EC770A92F2B3F9DE6D518E11409C ] WPCSvc C:\Windows\System32\wpcsvc.dll
15:48:01.0989 5232 WPCSvc - ok
15:48:02.0121 5232 [ AA53356D60AF47EACC85BC617A4F3F66 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
15:48:02.0187 5232 WPDBusEnum - ok
15:48:02.0229 5232 [ 6DB3276587B853BF886B69528FDB048C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
15:48:02.0324 5232 ws2ifsl - ok
15:48:02.0350 5232 [ 6F5D49EFE0E7164E03AE773A3FE25340 ] wscsvc C:\Windows\System32\wscsvc.dll
15:48:02.0432 5232 wscsvc - ok
15:48:02.0451 5232 WSearch - ok
15:48:02.0566 5232 [ FC3EC24FCE372C89423E015A2AC1A31E ] wuauserv C:\Windows\system32\wuaueng.dll
15:48:02.0730 5232 wuauserv - ok
15:48:02.0783 5232 [ 06E6F32C8D0A3F66D956F57B43A2E070 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
15:48:02.0861 5232 WudfPf - ok
15:48:02.0922 5232 [ 867C301E8B790040AE9CF6486E8041DF ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
15:48:02.0981 5232 WUDFRd - ok
15:48:03.0041 5232 [ FE47B7BC8EA320C2D9B5E5BF6E303765 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
15:48:03.0110 5232 wudfsvc - ok
15:48:03.0204 5232 [ FF2D745B560F7C71B31F30F4D49F73D2 ] WwanSvc C:\Windows\System32\wwansvc.dll
15:48:03.0304 5232 WwanSvc - ok
15:48:03.0430 5232 ================ Scan global ===============================
15:48:03.0495 5232 [ DAB748AE0439955ED2FA22357533DDDB ] C:\Windows\system32\basesrv.dll
15:48:03.0540 5232 [ 93F86C5CCC37D70EA09CE5E76F3E4338 ] C:\Windows\system32\winsrv.dll
15:48:03.0574 5232 [ 93F86C5CCC37D70EA09CE5E76F3E4338 ] C:\Windows\system32\winsrv.dll
15:48:03.0647 5232 [ 364455805E64882844EE9ACB72522830 ] C:\Windows\system32\sxssrv.dll
15:48:03.0688 5232 [ 5F1B6A9C35D3D5CA72D6D6FDEF9747D6 ] C:\Windows\system32\services.exe
15:48:03.0700 5232 [Global] - ok
15:48:03.0703 5232 ================ Scan MBR ==================================
15:48:03.0748 5232 [ D4235019B9CC6FCAC77D4C80F1FA6E89 ] \Device\Harddisk0\DR0
15:48:16.0914 5232 \Device\Harddisk0\DR0 - ok
15:48:16.0915 5232 ================ Scan VBR ==================================
15:48:16.0951 5232 [ DA5516775A07F69A332033049865B2DF ] \Device\Harddisk0\DR0\Partition1
15:48:16.0955 5232 \Device\Harddisk0\DR0\Partition1 - ok
15:48:16.0973 5232 [ F63467ABCEFF98E960D5CC660B2146DF ] \Device\Harddisk0\DR0\Partition2
15:48:16.0978 5232 \Device\Harddisk0\DR0\Partition2 - ok
15:48:17.0039 5232 [ FA6707864A6ABB94C0458B46B84C3B9E ] \Device\Harddisk0\DR0\Partition3
15:48:17.0043 5232 \Device\Harddisk0\DR0\Partition3 - ok
15:48:17.0044 5232 ============================================================
15:48:17.0044 5232 Scan finished
15:48:17.0044 5232 ============================================================
15:48:17.0089 5084 Detected object count: 7
15:48:17.0089 5084 Actual detected object count: 7
15:49:59.0912 5084 C:\Program Files\Adobe\Photoshop Elements 3.0\PhotoshopElementsFileAgent.exe - copied to quarantine
15:49:59.0913 5084 AdobeActiveFileMonitor ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
15:50:00.0159 5084 C:\Program Files\Common Files\MAGIX Services\Database\bin\fbserver.exe - copied to quarantine
15:50:00.0162 5084 FirebirdServerMAGIXInstance ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
15:50:00.0290 5084 C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe - copied to quarantine
15:50:00.0291 5084 IDriverT ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
15:50:00.0620 5084 C:\Program Files\pc essentials\updater.exe - copied to quarantine
15:50:00.0622 5084 pc essentials ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
15:50:00.0658 5084 C:\Program Files\Adobe\Photoshop Elements 3.0\PhotoshopElementsDeviceConnect.exe - copied to quarantine
15:50:00.0659 5084 PhotoshopElementsDeviceConnect ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
15:50:00.0700 5084 C:\Windows\system32\Drivers\PxHelp20.sys - copied to quarantine
15:50:00.0700 5084 PxHelp20 ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
15:50:00.0728 5084 C:\Program Files\Web Assistant\ExtensionUpdaterService.exe - copied to quarantine
15:50:00.0728 5084 Web Assistant Updater ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
15:50:12.0463 3232 Deinitialize success
|
|
11.04.2013, 15:04
| #18 | |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Attention Required; Google, Youtube und viele andere Websiten sind gesperrtZitat:
 Hast du die Dinger jetzt entfernt oder nur in die Q kopieren lassen?! Du solltest JEDEN Eintrag der von tdsskiller gefunden wird doch erstmal nur skippen! Anleitung nicht gelesen? 
__________________ |
|
11.04.2013, 15:15
| #19 |
| | Attention Required; Google, Youtube und viele andere Websiten sind gesperrt In die Q kopieren lassen. |
|
11.04.2013, 15:26
| #20 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Attention Required; Google, Youtube und viele andere Websiten sind gesperrt Hauptsache du hast nichts entfernt Dann bitte jetzt Combofix ausführen: Scan mit Combofix
__________________ Logfiles bitte immer in CODE-Tags posten |
|
11.04.2013, 16:31
| #21 |
| | Attention Required; Google, Youtube und viele andere Websiten sind gesperrtCode:
ATTFilter ComboFix 13-04-10.02 - Jonas 11.04.2013 16:42:15.1.2 - x86
Microsoft Windows 7 Starter 6.1.7601.1.1252.49.1031.18.1014.429 [GMT 2:00]
ausgeführt von:: c:\users\Jonas\Desktop\ComboFix.exe
AV: BullGuard Antivirus *Disabled/Outdated* {504FFF66-3028-EB7E-2E60-62B19ADD791C}
FW: BullGuard Firewall *Disabled* {68747E43-7A47-EA26-053F-CB84640E3E67}
SP: BullGuard Antispyware *Disabled/Outdated* {EB2E1E82-1612-E4F0-14D0-59C3E15A33A1}
SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((((((((((((( Weitere Löschungen ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files\Claro LTD\claro\1.8.8.5\bh\clARo.dll
c:\program files\Claro LTD\claro\1.8.8.5\clARotlbr.dll
c:\program files\Incredibar.com\incredibar\1.5.11.14\bh\inCRedibar.dll
c:\program files\Incredibar.com\incredibar\1.5.11.14\inCRedibartlbr.dll
c:\program files\Pegatron\Hotkey\FastUserSwitching.exe
c:\program files\PricePeep\prICepeep.dll
c:\program files\Web Assistant\ExTEnsion32.dll
c:\program files\Your Product\lua5.1.dll
c:\users\Jonas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\pkg_0ll.exe.lnk
c:\windows\IsUn0407.exe
c:\windows\NCLAUNCH.EXe
c:\windows\unin0407.exe
.
.
((((((((((((((((((((((((((((((((((((((( Treiber/Dienste )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Service_ACPIService
.
.
((((((((((((((((((((((( Dateien erstellt von 2013-03-11 bis 2013-04-11 ))))))))))))))))))))))))))))))
.
.
2013-04-11 15:03 . 2013-04-11 15:07 -------- d-----w- c:\users\Jonas\AppData\Local\temp
2013-04-11 15:03 . 2013-04-11 15:03 -------- d-----w- c:\users\Jonas2\AppData\Local\temp
2013-04-11 15:03 . 2013-04-11 15:03 -------- d-----w- c:\users\Gast\AppData\Local\temp
2013-04-11 15:03 . 2013-04-11 15:03 -------- d-----w- c:\users\Default\AppData\Local\temp
2013-04-11 14:45 . 2013-04-11 14:45 60872 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{F938EF8C-4E73-40C9-BC83-F2DB5D50D88E}\offreg.dll
2013-04-11 13:49 . 2013-04-11 13:49 -------- d-----w- C:\TDSSKiller_Quarantine
2013-03-30 11:14 . 2013-03-30 11:14 163088 ----a-w- c:\programdata\Microsoft\Windows\Sqm\Manifest\Sqm10143.bin
2013-03-23 06:09 . 2013-03-23 06:09 -------- d-----w- c:\users\Jonas\AppData\Local\Programs
2013-03-14 17:05 . 2013-02-08 00:45 6954968 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{F938EF8C-4E73-40C9-BC83-F2DB5D50D88E}\mpengine.dll
.
.
.
(((((((((((((((((((((((((((((((((((( Find3M Bericht ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-01-17 00:28 . 2009-12-18 12:28 232336 ------w- c:\windows\system32\MpSigStub.exe
2013-01-12 02:30 . 2013-01-15 17:07 94112 ----a-w- c:\windows\system32\WindowsAccessBridge.dll
2012-08-25 02:00 . 2012-08-30 12:43 266720 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
(((((((((((((((((((((((((((( Autostartpunkte der Registrierung ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\~\Browser Helper Objects\{60C07B56-542E-4054-A503-4E9E08DF2F84}]
2012-07-17 10:03 1816336 ----a-w- c:\program files\Pagealicious\Pagealicious.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2012-11-13 23:32 129272 ----a-w- c:\users\Jonas\AppData\Roaming\Dropbox\bin\DropboxExt.17.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2012-11-13 23:32 129272 ----a-w- c:\users\Jonas\AppData\Roaming\Dropbox\bin\DropboxExt.17.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2012-11-13 23:32 129272 ----a-w- c:\users\Jonas\AppData\Roaming\Dropbox\bin\DropboxExt.17.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2009-10-22 141848]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2009-10-22 173592]
"Persistence"="c:\windows\system32\igfxpers.exe" [2009-10-22 150552]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe" [2009-11-25 8120864]
"fspuip"="c:\program files\FSP\fspuip.exe" [2009-09-23 3342336]
"UCam_Menu"="c:\program files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe" [2009-05-19 222504]
"UpdatePDRShortCut"="c:\program files\CyberLink\PowerDirector\MUITransfer\MUIStartMenu.exe" [2008-01-04 222504]
"FileOpenBroker"="c:\program files\FileOpen\Services\FileOpenBroker32.exe" [2012-10-17 840112]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2012-07-03 252848]
.
c:\users\Jonas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Dropbox.lnk - c:\users\Jonas\AppData\Roaming\Dropbox\bin\Dropbox.exe [2013-3-12 29106336]
WKCALREM.LNK - c:\program files\COMMON FILES\MICROSOFT SHARED\WORKS SHARED\WKCALREM.EXE [N/A]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"mixer2"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BsMain]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BsScanner]
@="Service"
.
[HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Adobe Gamma Loader.lnk]
path=c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma Loader.lnk
backup=c:\windows\pss\Adobe Gamma Loader.lnk.CommonStartup
backupExtension=.CommonStartup
.
[HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Bluetooth.lnk]
path=c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk
backup=c:\windows\pss\Bluetooth.lnk.CommonStartup
backupExtension=.CommonStartup
.
[HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Microsoft Office.lnk]
path=c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\Microsoft Office.lnk
backup=c:\windows\pss\Microsoft Office.lnk.CommonStartup
backupExtension=.CommonStartup
.
[HKLM\~\startupfolder\C:^Users^Jonas^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^cs8v0k.exe.lnk]
path=c:\users\Jonas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\cs8v0k.exe.lnk
backup=c:\windows\pss\cs8v0k.exe.lnk.Startup
backupExtension=.Startup
.
[HKLM\~\startupfolder\C:^Users^Jonas^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Hardcopy.LNK]
path=c:\users\Jonas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Hardcopy.LNK
backup=c:\windows\pss\Hardcopy.LNK.Startup
backupExtension=.Startup
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
2012-07-11 19:00 919008 ----a-r- c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
2012-07-31 11:20 38872 ----a-w- c:\program files\Adobe\Reader 9.0\Reader\reader_sl.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\APSDaemon]
2012-08-27 20:32 59280 ----a-w- c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BullGuard]
2012-03-17 08:20 1620824 ----a-w- c:\program files\BullGuard Ltd\BullGuard\BullGuard.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
2011-07-19 15:56 136176 ----atw- c:\users\Jonas\AppData\Local\Google\Update\GoogleUpdate.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
2012-09-09 22:30 421776 ----a-w- c:\program files\iTunes\iTunesHelper.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn Hamachi Ui]
2012-12-10 16:29 2254768 ----a-w- c:\program files\LogMeIn Hamachi\hamachi-2-ui.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MMReminderService]
2007-11-21 05:18 37144 ----a-w- c:\program files\Mindjet\MindManager 7\MmReminderService.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\msnmsgr]
2009-07-26 15:44 3883840 ----a-w- c:\program files\Windows Live\Messenger\msnmsgr.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PDFPrint]
2012-07-30 07:56 162408 ----a-w- c:\program files\PDF24\pdf24.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PDVD9LanguageShortcut]
2009-04-27 16:50 50472 ------w- c:\program files\CyberLink\PowerDVD9\Language\Language.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
2011-10-24 13:28 421888 ----a-w- c:\program files\QuickTime\QTTask.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
2013-01-08 11:59 18705664 ----a-r- c:\program files\Skype\Phone\Skype.exe
.
R2 WebOptimizer;WebOptimizer;c:\windows\system32\dmwu.exe [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]
R4 BgRaSvc;BgRaSvc;c:\program files\BullGuard Ltd\BullGuard\Support\BgRaSvc.exe [x]
R4 BrowserProtect;BrowserProtect;c:\programdata\BrowserProtect\2.6.1095.52\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BrowserProtect.exe [x]
R4 BsBhvScan;BullGuard behavioural detection service;c:\program files\BullGuard Ltd\BullGuard\BullGuardBhvScanner.exe [x]
R4 BsScanner;BullGuard scanning service;c:\program files\BullGuard Ltd\BullGuard\BullGuardScanner.exe [x]
R4 BsUpdate;BullGuard update service;c:\program files\BullGuard Ltd\BullGuard\BullGuardUpdate.exe [x]
R4 FirebirdServerMAGIXInstance;Firebird Server - MAGIX Instance;c:\program files\Common Files\MAGIX Services\Database\bin\fbserver.exe [x]
R4 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine;c:\program files\LogMeIn Hamachi\hamachi-2.exe [x]
R4 MSSQLServerADHelper100;SQL Server Hilfsdienst für Active Directory;c:\program files\Microsoft SQL Server\100\Shared\SQLADHLP.EXE [x]
R4 pc essentials;pc essentials;c:\program files\pc essentials\updater.exe [x]
R4 PhotoshopElementsDeviceConnect;Photoshop Elements Device Connect;c:\program files\Adobe\Photoshop Elements 3.0\PhotoshopElementsDeviceConnect.exe [x]
R4 RsFx0103;RsFx0103 Driver;c:\windows\system32\DRIVERS\RsFx0103.sys [x]
R4 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [x]
R4 SQLAgent$SQLEXPRESS;SQL Server-Agent (SQLEXPRESS);c:\program files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [x]
R4 Web Assistant Updater;Web Assistant Updater;c:\program files\Web Assistant\ExtensionUpdaterService.exe [x]
S1 AFW;Agnitum Firewall Driver;c:\windows\system32\DRIVERS\afw.sys [x]
S1 BdSpy;BdSpy;c:\windows\system32\DRIVERS\BdSpy.sys [x]
S1 NovaShieldFilterDriver;NovaShieldFilterDriver;c:\windows\system32\DRIVERS\NSKernel.sys [x]
S1 NovaShieldTDIDriver;NovaShieldTDIDriver;c:\windows\system32\DRIVERS\NSNetmon.sys [x]
S2 acedrv11;acedrv11;c:\windows\system32\drivers\acedrv11.sys [x]
S2 AdobeActiveFileMonitor;Adobe Active File Monitor;c:\program files\Adobe\Photoshop Elements 3.0\PhotoshopElementsFileAgent.exe [x]
S2 BsBrowser;BullGuard antiphishing service;c:\windows\System32\SvcHost.exe [x]
S2 BsFileScan;BullGuard on-access service;c:\windows\System32\SvcHost.exe [x]
S2 BsFire;BullGuard firewall service;c:\windows\System32\SvcHost.exe [x]
S2 BsMailProxy;BullGuard e-mail monitoring service;c:\windows\System32\SvcHost.exe [x]
S2 BsMain;BullGuard main service;c:\windows\System32\SvcHost.exe [x]
S2 Fabs;FABS - Helping agent for MAGIX media database;c:\program files\Common Files\MAGIX Services\Database\bin\FABS.exe [x]
S2 FileOpenManagerService;FileOpen Manager Service;c:\program files\FileOpen\Services\FileOpenManagerService32.exe [x]
S3 afwcore;afwcore;c:\windows\system32\DRIVERS\afwcore.sys [x]
S3 btusbflt;Bluetooth USB Filter;c:\windows\system32\drivers\btusbflt.sys [x]
S3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys [x]
S3 fspad_wlh32;Finger Sensing Pad Driver for Windows 2000/XP/Vista/Win7_wlh32;c:\windows\system32\DRIVERS\fspad_wlh32.sys [x]
S3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;c:\windows\system32\DRIVERS\L1C62x86.sys [x]
S3 rtl8192se;Realtek Wireless LAN 802.11n PCI-E NIC NT Driver;c:\windows\system32\DRIVERS\rtl8192se.sys [x]
.
.
--- Andere Dienste/Treiber im Speicher ---
.
*Deregistered* - FileOpenWebPublisherScreenHookDriver
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalServiceAndNoImpersonation REG_MULTI_SZ SSDPSRV upnphost SCardSvr TBS fdrespub AppIDSvc QWAVE wcncsvc
BullGuard_Main REG_MULTI_SZ BsMain
BullGuard REG_MULTI_SZ BsFileScan BsMailProxy BsFire
BullGuard_LowPriv REG_MULTI_SZ BsBrowser
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - LocalService
FontCache
.
.
Inhalt des "geplante Tasks" Ordners
.
2013-04-11 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3102065283-3266553345-849421369-1000Core.job
- c:\users\Jonas\AppData\Local\Google\Update\GoogleUpdate.exe [2011-07-19 15:56]
.
2013-04-11 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3102065283-3266553345-849421369-1000UA.job
- c:\users\Jonas\AppData\Local\Google\Update\GoogleUpdate.exe [2011-07-19 15:56]
.
.
------- Zusätzlicher Suchlauf -------
.
uStart Page = hxxp://www.claro-search.com/?affID=120133&babsrc=HP_ss&mntrId=883b5e6d0000000000001c4bd6e4a32e
uInternet Settings,ProxyOverride = *.local
IE: Bild an &Bluetooth-Gerät senden... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
IE: Free YouTube to MP3 Converter - c:\users\Jonas\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm
IE: Nach Microsoft &Excel exportieren - c:\progra~1\MIF5BA~1\Office10\EXCEL.EXE/3000
IE: Nach Microsoft E&xel exportieren - c:\progra~1\MIF5BA~1\Office12\EXCEL.EXE/3000
IE: Seite an &Bluetooth-Gerät senden... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
IE: {{0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} - hxxp://rover.ebay.com/rover/1/707-37276-17534-31/4
LSP: c:\windows\system32\BGLsp.dll
TCP: DhcpNameServer = 192.168.2.1
Handler: webde - {8FAF0273-9CA8-4efc-9536-1E35E254D5CD} - c:\program files\WEB.DE Toolbar\IE\uitb.dll
FF - ProfilePath - c:\users\Jonas\AppData\Roaming\Mozilla\Firefox\Profiles\2ayl000g.default\
FF - prefs.js: browser.search.selectedEngine - Claro Search
FF - prefs.js: browser.startup.homepage - hxxp://www.claro-search.com/?affID=120133&babsrc=HP_ss&mntrId=883b5e6d0000000000001c4bd6e4a32e
FF - prefs.js: keyword.URL - hxxp://mystart.incredibar.com/mb165/?loc=IB_DS&a=6R8vftSog1&&i=26&search=
FF - prefs.js: network.proxy.type - 0
FF - ExtSQL: 2013-02-18 16:33; ffxtlbr@claro.com; c:\users\Jonas\AppData\Roaming\Mozilla\Firefox\Profiles\2ayl000g.default\extensions\ffxtlbr@claro.com
FF - user.js: extensions.claro.tlbrSrchUrl -
FF - user.js: extensions.claro.id - 883b5e6d0000000000001c4bd6e4a32e
FF - user.js: extensions.claro.appId - {C3110516-8EFC-49D6-8B72-69354F332062}
FF - user.js: extensions.claro.instlDay - 15754
FF - user.js: extensions.claro.vrsn - 1.8.8.5
FF - user.js: extensions.claro.vrsni - 1.8.8.5
FF - user.js: extensions.claro_i.vrsnTs - 1.8.8.516:33
FF - user.js: extensions.claro.prtnrId - claro
FF - user.js: extensions.claro.prdct - claro
FF - user.js: extensions.claro.aflt - babsst
FF - user.js: extensions.claro_i.smplGrp - none
FF - user.js: extensions.claro.tlbrId - base
FF - user.js: extensions.claro.instlRef - sst
FF - user.js: extensions.claro.dfltLng - en
FF - user.js: extensions.claro_i.excTlbr - false
FF - user.js: extensions.claro.excTlbr - false
FF - user.js: extensions.claro.admin - false
FF - user.js: extensions.claro.autoRvrt - false
FF - user.js: extensions.claro.rvrt - false
FF - user.js: extensions.claro_i.newTab - false
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
MSConfigStartUp-SunJavaUpdateSched - c:\program files\Java\jre7\bin\jusched.exe
AddRemove-Borland JBuilder 2.0 - c:\windows\unin0407.exe
AddRemove-NetObjects Fusion 3.0.1 - c:\windows\IsUn0407.exe
.
.
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_USERS\.Default\Software\Microsoft\Internet Explorer\Approved Extensions]
@Denied: (2) (LocalSystem)
"{8DCB7100-DF86-4384-8842-8FA844297B3F}"=hex:51,66,7a,6c,4c,1d,38,12,6e,72,d8,
89,b4,91,ea,06,f7,54,cc,e8,41,77,3f,2b
"{98889811-442D-49DD-99D7-DC866BE87DBC}"=hex:51,66,7a,6c,4c,1d,38,12,7f,9b,9b,
9c,1f,0a,b3,0c,e6,c1,9f,c6,6e,b6,39,a8
"{C424171E-592A-415A-9EB1-DFD6D95D3530}"=hex:51,66,7a,6c,4c,1d,38,12,70,14,37,
c0,18,17,34,04,e1,a7,9c,96,dc,03,71,24
"{18DF081C-E8AD-4283-A596-FA578C2EBDC3}"=hex:51,66,7a,6c,4c,1d,38,12,72,0b,cc,
1c,9f,a6,ed,07,da,80,b9,17,89,70,f9,d7
"{2EECD738-5844-4A99-B4B6-146BF802613B}"=hex:51,66,7a,6c,4c,1d,38,12,56,d4,ff,
2a,76,16,f7,0f,cb,a0,57,2b,fd,5c,25,2f
"{9030D464-4C02-4ABF-8ECC-5164760863C6}"=hex:51,66,7a,6c,4c,1d,38,12,0a,d7,23,
94,30,02,d1,0f,f1,da,12,24,73,56,27,d2
"{BF42D4A8-016E-4FCD-B1EB-837659FD77C6}"=hex:51,66,7a,6c,4c,1d,38,12,c6,d7,51,
bb,5c,4f,a3,0a,ce,fd,c0,36,5c,a3,33,d2
"{D2CE3E00-F94A-4740-988E-03DC2F38C34F}"=hex:51,66,7a,6c,4c,1d,38,12,6e,3d,dd,
d6,78,b7,2e,02,e7,98,40,9c,2a,66,87,5b
"{DBC80044-A445-435B-BC74-9C25C1C588A9}"=hex:51,66,7a,6c,4c,1d,38,12,2a,03,db,
df,77,ea,35,06,c3,62,df,65,c4,9b,cc,bd
"{97F2FF5B-260C-4CCF-834A-2DDA4E29E39E}"=hex:51,66,7a,6c,4c,1d,38,12,35,fc,e1,
93,3e,68,a1,09,fc,5c,6e,9a,4b,77,a7,8a
"{BDEADE7F-C265-11D0-BCED-00A0C90AB50F}"=hex:51,66,7a,6c,4c,1d,38,12,11,dd,f9,
b9,57,8c,be,54,c3,fb,43,e0,cc,54,f1,1b
"{336D0C35-8A85-403a-B9D2-65C292C39087}"=hex:51,66,7a,6c,4c,1d,3b,1b,08,d6,ed,
77,82,e9,0c,3c,9d,e9,17,af,ad,b0,e5,ab
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
--------------------- Durch laufende Prozesse gestartete DLLs ---------------------
.
- - - - - - - > 'Explorer.exe'(3784)
c:\users\Jonas\AppData\Roaming\Dropbox\bin\DropboxExt.17.dll
c:\program files\Common Files\CyberLink\PowerDVD9\deskband32.dll
c:\program files\WIDCOMM\Bluetooth Software\btncopy.dll
.
------------------------ Weitere laufende Prozesse ------------------------
.
c:\program files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe
c:\program files\Microsoft SQL Server\90\Shared\sqlwriter.exe
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
c:\windows\system32\taskhost.exe
c:\windows\system32\DllHost.exe
c:\program files\Hardcopy\hcdll2_ex_Win32.exe
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
c:\windows\system32\conhost.exe
c:\windows\system32\igfxsrvc.exe
c:\program files\Windows Media Player\wmpnetwk.exe
c:\program files\windows defender\MpCmdRun.exe
.
**************************************************************************
.
Zeit der Fertigstellung: 2013-04-11 17:30:36 - PC wurde neu gestartet
ComboFix-quarantined-files.txt 2013-04-11 15:30
.
Vor Suchlauf: 21 Verzeichnis(se), 137.982.566.400 Bytes frei
Nach Suchlauf: 24 Verzeichnis(se), 137.866.432.512 Bytes frei
.
- - End Of File - - 04D43042B84F120839CE7462533C4F36
|
|
12.04.2013, 12:31
| #22 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Attention Required; Google, Youtube und viele andere Websiten sind gesperrt JRT - Junkware Removal Tool Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Im Anschluss: adwCleaner - Toolbars und ungewollte Start-/Suchseiten entfernen Downloade Dir bitte  AdwCleaner auf deinen Desktop.
Danach eine Kontrolle mit OTL bitte:
__________________ Logfiles bitte immer in CODE-Tags posten |
|
| Themen zu Attention Required; Google, Youtube und viele andere Websiten sind gesperrt |
| andere, anderes, attention, attention required, drücke, einzige, gesperrt, google, html, konnte, könntet, leiste, meldung, required, schnell, website, websiten, youtube |
WARNUNG an die MITLESER: 
Linear-Darstellung
