| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Online Smile v13.4.24 lässt sich nicht entfernen.Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
13.06.2013, 15:52
| #1 |
 |  Online Smile v13.4.24 lässt sich nicht entfernen. Guten Tag zusammen, ein kollege hat mir mal bei Facebook geschrieben und unter seinem Text befand sich ein Link mit einem Smiley. Auf den hab ich geklickt und seitdem kommt immer wenn ich mit jemandem schreibe unter meinem Text derselbe link... Ich kann dies deaktivieren (Google Chrome Add-On). Aber bei jedem Start von Google Chrome wird das Add-On wieder aktiviert. Habe probiert das Add-on zu löschen, was jedch erfolglos war. Seitdem läuft mein Notebook nicht mehr so flott. Wäre erfreut über eine Antwort mfg buddha |
|
13.06.2013, 15:59
| #2 |
| /// Malware-holic   | Online Smile v13.4.24 lässt sich nicht entfernen. hi,
__________________Falls noch nicht vorhanden, lade Dir bitte OTL von Oldtimer herunter und speichere es auf Deinem Desktop
Code:
ATTFilter activex
netsvcs
msconfig
%SYSTEMDRIVE%\*.
%PROGRAMFILES%\*.exe
%LOCALAPPDATA%\*.exe
%systemroot%\*. /mp /s
C:\Windows\system32\*.tsp
/md5start
userinit.exe
eventlog.dll
scecli.dll
netlogon.dll
cngaudit.dll
ws2ifsl.sys
sceclt.dll
ntelogon.dll
winlogon.exe
logevent.dll
user32.DLL
explorer.exe
iaStor.sys
nvstor.sys
atapi.sys
IdeChnDr.sys
viasraid.sys
AGP440.sys
vaxscsi.sys
nvatabus.sys
viamraid.sys
nvata.sys
nvgts.sys
iastorv.sys
ViPrt.sys
eNetHook.dll
ahcix86.sys
KR10N.sys
nvstor32.sys
ahcix86s.sys
/md5stop
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
%USERPROFILE%\*.*
%USERPROFILE%\Local Settings\Temp\*.exe
%USERPROFILE%\Local Settings\Temp\*.dll
%USERPROFILE%\Application Data\*.exe
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\SubSystems|Windows /rs
CREATERESTOREPOINT
__________________ |
|
13.06.2013, 16:46
| #3 |
| | Online Smile v13.4.24 lässt sich nicht entfernen. Logs im Anhang, da zu viele Zeichen
__________________Habe noch eine zusätzliche Frage... An was kann es liegen wenn bei meinem Notebook die Internetverbindung nach ca. 4-5 Stunden nicht mehr funktioniert? Unabhängig an welchem Netz ich bin. Bei Google Chrome steht dann Website nicht verfügbar. Nur nach einem Neustart geht es wieder für 4-5 Stunden. mfg buddha |
|
13.06.2013, 18:38
| #4 |
| /// Malware-holic | Online Smile v13.4.24 lässt sich nicht entfernen. Hi treiber aktuell, mainboard, Graka, netzwerk etc? Downloade dir bitte  TDSSKiller.exe und speichere diese Datei auf dem Desktop
__________________ -Verdächtige mails bitte an uns zur Analyse weiterleiten: markusg.trojaner-board@web.de Weiterleiten Anleitung: http://markusg.trojaner-board.de Mails bitte vorerst nach obiger Anleitung an markusg.trojaner-board@web.de Weiterleiten Wenn Ihr uns unterstützen möchtet |
|
13.06.2013, 20:06
| #5 |
| | Online Smile v13.4.24 lässt sich nicht entfernen. Hi, ich schätze mal schon das Treiber aktuell sind. Habe das Notebook seid knapp einem Jahr. Wie kann ich den prüfen ob sie noch aktuell sind? Code:
ATTFilter 21:02:42.0065 8152 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
21:02:42.0188 8152 ============================================================
21:02:42.0188 8152 Current date / time: 2013/06/13 21:02:42.0188
21:02:42.0188 8152 SystemInfo:
21:02:42.0188 8152
21:02:42.0188 8152 OS Version: 6.1.7601 ServicePack: 1.0
21:02:42.0188 8152 Product type: Workstation
21:02:42.0189 8152 ComputerName: EUGEN-PC
21:02:42.0189 8152 UserName: Eugen
21:02:42.0189 8152 Windows directory: C:\windows
21:02:42.0189 8152 System windows directory: C:\windows
21:02:42.0189 8152 Running under WOW64
21:02:42.0189 8152 Processor architecture: Intel x64
21:02:42.0189 8152 Number of processors: 4
21:02:42.0189 8152 Page size: 0x1000
21:02:42.0189 8152 Boot type: Normal boot
21:02:42.0189 8152 ============================================================
21:02:42.0750 8152 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
21:02:42.0761 8152 ============================================================
21:02:42.0761 8152 \Device\Harddisk0\DR0:
21:02:42.0761 8152 MBR partitions:
21:02:42.0761 8152 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
21:02:42.0762 8152 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x71557000
21:02:42.0762 8152 ============================================================
21:02:42.0785 8152 C: <-> \Device\Harddisk0\DR0\Partition2
21:02:42.0786 8152 ============================================================
21:02:42.0786 8152 Initialize success
21:02:42.0786 8152 ============================================================
21:03:15.0030 5504 ============================================================
21:03:15.0030 5504 Scan started
21:03:15.0030 5504 Mode: Manual; SigCheck; TDLFS;
21:03:15.0030 5504 ============================================================
21:03:15.0709 5504 ================ Scan system memory ========================
21:03:15.0709 5504 System memory - ok
21:03:15.0710 5504 ================ Scan services =============================
21:03:16.0147 5504 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\windows\system32\drivers\1394ohci.sys
21:03:16.0239 5504 1394ohci - ok
21:03:16.0281 5504 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\windows\system32\drivers\ACPI.sys
21:03:16.0299 5504 ACPI - ok
21:03:16.0340 5504 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\windows\system32\drivers\acpipmi.sys
21:03:16.0358 5504 AcpiPmi - ok
21:03:16.0544 5504 [ 9D90344179ED6A05959DE40FC934A022 ] Ad-Aware Service C:\Program Files (x86)\Ad-Aware Antivirus\AdAwareService.exe
21:03:16.0837 5504 Ad-Aware Service - ok
21:03:17.0010 5504 [ ADDA5E1951B90D3D23C56D3CF0622ADC ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
21:03:17.0028 5504 AdobeARMservice - ok
21:03:17.0161 5504 [ 9915504F602D277EE47FD843A677FD15 ] AdobeFlashPlayerUpdateSvc C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
21:03:17.0182 5504 AdobeFlashPlayerUpdateSvc - ok
21:03:17.0277 5504 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\windows\system32\drivers\adp94xx.sys
21:03:17.0310 5504 adp94xx - ok
21:03:17.0350 5504 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\windows\system32\drivers\adpahci.sys
21:03:17.0377 5504 adpahci - ok
21:03:17.0463 5504 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\windows\system32\drivers\adpu320.sys
21:03:17.0486 5504 adpu320 - ok
21:03:17.0527 5504 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\windows\System32\aelupsvc.dll
21:03:17.0587 5504 AeLookupSvc - ok
21:03:17.0650 5504 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\windows\system32\drivers\afd.sys
21:03:17.0681 5504 AFD - ok
21:03:17.0741 5504 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\windows\system32\drivers\agp440.sys
21:03:17.0760 5504 agp440 - ok
21:03:17.0785 5504 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\windows\System32\alg.exe
21:03:17.0811 5504 ALG - ok
21:03:17.0887 5504 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\windows\system32\drivers\aliide.sys
21:03:17.0905 5504 aliide - ok
21:03:17.0913 5504 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\windows\system32\drivers\amdide.sys
21:03:17.0931 5504 amdide - ok
21:03:17.0956 5504 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\windows\system32\drivers\amdk8.sys
21:03:17.0979 5504 AmdK8 - ok
21:03:18.0005 5504 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\windows\system32\drivers\amdppm.sys
21:03:18.0028 5504 AmdPPM - ok
21:03:18.0107 5504 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\windows\system32\drivers\amdsata.sys
21:03:18.0129 5504 amdsata - ok
21:03:18.0210 5504 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\windows\system32\drivers\amdsbs.sys
21:03:18.0234 5504 amdsbs - ok
21:03:18.0281 5504 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\windows\system32\drivers\amdxata.sys
21:03:18.0300 5504 amdxata - ok
21:03:18.0342 5504 [ 449D90F1FB6402773C2F1ECCEAE15F74 ] AMPPAL C:\windows\system32\DRIVERS\AMPPAL.sys
21:03:18.0378 5504 AMPPAL - ok
21:03:18.0489 5504 [ 449D90F1FB6402773C2F1ECCEAE15F74 ] AMPPALP C:\windows\system32\DRIVERS\amppal.sys
21:03:18.0509 5504 AMPPALP - ok
21:03:18.0681 5504 [ AB6E5B9333101E414D8F04BC570064F1 ] AMPPALR3 C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
21:03:18.0723 5504 AMPPALR3 - ok
21:03:18.0758 5504 [ 4DE0D5D747A73797C95A97DCCE5018B5 ] androidusb C:\windows\system32\Drivers\ssadadb.sys
21:03:18.0783 5504 androidusb - ok
21:03:18.0866 5504 [ 4FC6E2C2FC50445450651F42E90CC0BD ] Apowersoft_AudioDevice C:\windows\system32\drivers\Apowersoft_AudioDevice.sys
21:03:18.0885 5504 Apowersoft_AudioDevice - ok
21:03:18.0921 5504 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\windows\system32\drivers\appid.sys
21:03:18.0979 5504 AppID - ok
21:03:19.0015 5504 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\windows\System32\appidsvc.dll
21:03:19.0065 5504 AppIDSvc - ok
21:03:19.0178 5504 [ 9D2A2369AB4B08A4905FE72DB104498F ] Appinfo C:\windows\System32\appinfo.dll
21:03:19.0205 5504 Appinfo - ok
21:03:19.0256 5504 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\windows\system32\drivers\arc.sys
21:03:19.0277 5504 arc - ok
21:03:19.0301 5504 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\windows\system32\drivers\arcsas.sys
21:03:19.0321 5504 arcsas - ok
21:03:19.0447 5504 [ 108FB6DDB69E537A2EA53F425363FAE5 ] aspnet_state C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
21:03:19.0470 5504 aspnet_state - ok
21:03:19.0520 5504 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\windows\system32\DRIVERS\asyncmac.sys
21:03:19.0573 5504 AsyncMac - ok
21:03:19.0596 5504 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\windows\system32\drivers\atapi.sys
21:03:19.0616 5504 atapi - ok
21:03:19.0663 5504 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\windows\System32\Audiosrv.dll
21:03:19.0725 5504 AudioEndpointBuilder - ok
21:03:19.0737 5504 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\windows\System32\Audiosrv.dll
21:03:19.0787 5504 AudioSrv - ok
21:03:19.0900 5504 [ 587EFD6A3A30A35A27904D21AE1FB882 ] AVP C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe
21:03:19.0926 5504 AVP - ok
21:03:19.0949 5504 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\windows\System32\AxInstSV.dll
21:03:19.0972 5504 AxInstSV - ok
21:03:20.0044 5504 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\windows\system32\drivers\bxvbda.sys
21:03:20.0133 5504 b06bdrv - ok
21:03:20.0173 5504 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\windows\system32\DRIVERS\b57nd60a.sys
21:03:20.0204 5504 b57nd60a - ok
21:03:20.0314 5504 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\windows\System32\bdesvc.dll
21:03:20.0339 5504 BDESVC - ok
21:03:20.0368 5504 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\windows\system32\drivers\Beep.sys
21:03:20.0428 5504 Beep - ok
21:03:20.0485 5504 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\windows\System32\bfe.dll
21:03:20.0554 5504 BFE - ok
21:03:20.0624 5504 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\windows\System32\qmgr.dll
21:03:20.0710 5504 BITS - ok
21:03:20.0726 5504 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\windows\system32\DRIVERS\blbdrive.sys
21:03:20.0747 5504 blbdrive - ok
21:03:20.0887 5504 [ A52EA1D8C2900055323C93DDB252A3DA ] Bluetooth Device Monitor C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
21:03:20.0920 5504 Bluetooth Device Monitor - ok
21:03:20.0964 5504 [ 091210450CA7CED08F360D9D7FEC5D11 ] Bluetooth Media Service C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
21:03:21.0650 5504 Bluetooth Media Service - ok
21:03:21.0744 5504 [ 392450754E17FF778CBC5B9D20583AD1 ] Bluetooth OBEX Service C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
21:03:22.0210 5504 Bluetooth OBEX Service - ok
21:03:22.0275 5504 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\windows\system32\DRIVERS\bowser.sys
21:03:22.0298 5504 bowser - ok
21:03:22.0337 5504 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\windows\system32\drivers\BrFiltLo.sys
21:03:22.0363 5504 BrFiltLo - ok
21:03:22.0398 5504 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\windows\system32\drivers\BrFiltUp.sys
21:03:22.0424 5504 BrFiltUp - ok
21:03:22.0476 5504 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\windows\System32\browser.dll
21:03:22.0503 5504 Browser - ok
21:03:22.0522 5504 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\windows\System32\Drivers\Brserid.sys
21:03:22.0549 5504 Brserid - ok
21:03:22.0571 5504 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\windows\System32\Drivers\BrSerWdm.sys
21:03:22.0596 5504 BrSerWdm - ok
21:03:22.0615 5504 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\windows\System32\Drivers\BrUsbMdm.sys
21:03:22.0684 5504 BrUsbMdm - ok
21:03:22.0706 5504 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\windows\System32\Drivers\BrUsbSer.sys
21:03:22.0737 5504 BrUsbSer - ok
21:03:22.0821 5504 [ A9C4AEE6AC10D41BB815468D2E734045 ] BstHdAndroidSvc C:\Program Files (x86)\BlueStacks\HD-Service.exe
21:03:22.0850 5504 BstHdAndroidSvc - ok
21:03:22.0936 5504 [ EAE75499461AE856330EBDB3489DB1E9 ] BstHdDrv C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys
21:03:22.0955 5504 BstHdDrv - ok
21:03:22.0970 5504 [ CD96992A52B454CDBB77E56F9F7FA151 ] BstHdLogRotatorSvc C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe
21:03:22.0993 5504 BstHdLogRotatorSvc - ok
21:03:23.0039 5504 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\windows\system32\drivers\BthEnum.sys
21:03:23.0061 5504 BthEnum - ok
21:03:23.0086 5504 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\windows\system32\drivers\bthmodem.sys
21:03:23.0113 5504 BTHMODEM - ok
21:03:23.0176 5504 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\windows\system32\DRIVERS\bthpan.sys
21:03:23.0204 5504 BthPan - ok
21:03:23.0246 5504 [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT C:\windows\System32\Drivers\BTHport.sys
21:03:23.0293 5504 BTHPORT - ok
21:03:23.0342 5504 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\windows\system32\bthserv.dll
21:03:23.0393 5504 bthserv - ok
21:03:23.0410 5504 [ 588762F716C2B7A2054AFBC3D58E5C21 ] BTHSSecurityMgr C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
21:03:23.0423 5504 BTHSSecurityMgr - ok
21:03:23.0474 5504 [ F188B7394D81010767B6DF3178519A37 ] BTHUSB C:\windows\System32\Drivers\BTHUSB.sys
21:03:23.0563 5504 BTHUSB - ok
21:03:23.0598 5504 [ 988CC6CC49303665D3B2435C51505C3F ] btmaux C:\windows\system32\DRIVERS\btmaux.sys
21:03:23.0620 5504 btmaux - ok
21:03:23.0669 5504 [ 2B4B508AFAC2A563931AF1FE875A5B16 ] btmhsf C:\windows\system32\DRIVERS\btmhsf.sys
21:03:23.0704 5504 btmhsf - ok
21:03:23.0761 5504 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\windows\system32\DRIVERS\cdfs.sys
21:03:23.0822 5504 cdfs - ok
21:03:23.0867 5504 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\windows\system32\DRIVERS\cdrom.sys
21:03:23.0891 5504 cdrom - ok
21:03:23.0948 5504 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\windows\System32\certprop.dll
21:03:23.0996 5504 CertPropSvc - ok
21:03:24.0024 5504 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\windows\system32\drivers\circlass.sys
21:03:24.0052 5504 circlass - ok
21:03:24.0113 5504 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\windows\system32\CLFS.sys
21:03:24.0138 5504 CLFS - ok
21:03:24.0197 5504 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
21:03:24.0217 5504 clr_optimization_v2.0.50727_32 - ok
21:03:24.0262 5504 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
21:03:24.0279 5504 clr_optimization_v2.0.50727_64 - ok
21:03:24.0359 5504 [ 6D7C8A951AF6AD6835C029B3CB88D333 ] clr_optimization_v4.0.30319_32 C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
21:03:24.0382 5504 clr_optimization_v4.0.30319_32 - ok
21:03:24.0400 5504 [ 86329C35FF23CFEF0FB6C0023BA06BCE ] clr_optimization_v4.0.30319_64 C:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
21:03:24.0420 5504 clr_optimization_v4.0.30319_64 - ok
21:03:24.0461 5504 [ E13A438F9E51DD034730678E33B73290 ] clwvd C:\windows\system32\DRIVERS\clwvd.sys
21:03:24.0478 5504 clwvd - ok
21:03:24.0499 5504 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\windows\system32\DRIVERS\CmBatt.sys
21:03:24.0534 5504 CmBatt - ok
21:03:24.0566 5504 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\windows\system32\drivers\cmdide.sys
21:03:24.0584 5504 cmdide - ok
21:03:24.0626 5504 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\windows\system32\Drivers\cng.sys
21:03:24.0700 5504 CNG - ok
21:03:24.0742 5504 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\windows\system32\DRIVERS\compbatt.sys
21:03:24.0771 5504 Compbatt - ok
21:03:24.0829 5504 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\windows\system32\DRIVERS\CompositeBus.sys
21:03:24.0856 5504 CompositeBus - ok
21:03:24.0866 5504 COMSysApp - ok
21:03:24.0963 5504 [ 6625A43592D123EE9AF0AB42B27B2384 ] cphs C:\windows\SysWow64\IntelCpHeciSvc.exe
21:03:24.0990 5504 cphs - ok
21:03:25.0036 5504 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\windows\system32\drivers\crcdisk.sys
21:03:25.0056 5504 crcdisk - ok
21:03:25.0121 5504 [ D8129C49798CBBFB2E4351D4B7B8EF9C ] CryptSvc C:\windows\system32\cryptsvc.dll
21:03:25.0161 5504 CryptSvc - ok
21:03:25.0228 5504 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\windows\system32\rpcss.dll
21:03:25.0284 5504 DcomLaunch - ok
21:03:25.0313 5504 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\windows\System32\defragsvc.dll
21:03:25.0354 5504 defragsvc - ok
21:03:25.0386 5504 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\windows\system32\Drivers\dfsc.sys
21:03:25.0445 5504 DfsC - ok
21:03:25.0479 5504 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\windows\system32\dhcpcore.dll
21:03:25.0498 5504 Dhcp - ok
21:03:25.0527 5504 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\windows\system32\drivers\discache.sys
21:03:25.0561 5504 discache - ok
21:03:25.0634 5504 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\windows\system32\drivers\disk.sys
21:03:25.0656 5504 Disk - ok
21:03:25.0687 5504 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\windows\System32\dnsrslvr.dll
21:03:25.0725 5504 Dnscache - ok
21:03:25.0755 5504 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\windows\System32\dot3svc.dll
21:03:25.0815 5504 dot3svc - ok
21:03:25.0839 5504 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\windows\system32\dps.dll
21:03:25.0916 5504 DPS - ok
21:03:25.0967 5504 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\windows\system32\drivers\drmkaud.sys
21:03:26.0014 5504 drmkaud - ok
21:03:26.0059 5504 [ AF2E16242AA723F68F461B6EAE2EAD3D ] DXGKrnl C:\windows\System32\drivers\dxgkrnl.sys
21:03:26.0103 5504 DXGKrnl - ok
21:03:26.0236 5504 EagleX64 - ok
21:03:26.0263 5504 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\windows\System32\eapsvc.dll
21:03:26.0321 5504 EapHost - ok
21:03:26.0410 5504 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\windows\system32\drivers\evbda.sys
21:03:26.0517 5504 ebdrv - ok
21:03:26.0614 5504 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\windows\System32\lsass.exe
21:03:26.0640 5504 EFS - ok
21:03:26.0694 5504 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\windows\ehome\ehRecvr.exe
21:03:26.0734 5504 ehRecvr - ok
21:03:26.0750 5504 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\windows\ehome\ehsched.exe
21:03:26.0774 5504 ehSched - ok
21:03:26.0821 5504 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\windows\system32\drivers\elxstor.sys
21:03:26.0852 5504 elxstor - ok
21:03:26.0865 5504 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\windows\system32\drivers\errdev.sys
21:03:26.0879 5504 ErrDev - ok
21:03:26.0931 5504 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\windows\system32\es.dll
21:03:26.0987 5504 EventSystem - ok
21:03:27.0092 5504 [ 64D25284A4E9D11CA0722AF3F30FD970 ] EvtEng C:\Program Files\Intel\WiFi\bin\EvtEng.exe
21:03:27.0125 5504 EvtEng - ok
21:03:27.0167 5504 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\windows\system32\drivers\exfat.sys
21:03:27.0224 5504 exfat - ok
21:03:27.0234 5504 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\windows\system32\drivers\fastfat.sys
21:03:27.0272 5504 fastfat - ok
21:03:27.0317 5504 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\windows\system32\fxssvc.exe
21:03:27.0360 5504 Fax - ok
21:03:27.0398 5504 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\windows\system32\drivers\fdc.sys
21:03:27.0411 5504 fdc - ok
21:03:27.0475 5504 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\windows\system32\fdPHost.dll
21:03:27.0513 5504 fdPHost - ok
21:03:27.0549 5504 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\windows\system32\fdrespub.dll
21:03:27.0608 5504 FDResPub - ok
21:03:27.0653 5504 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\windows\system32\drivers\fileinfo.sys
21:03:27.0674 5504 FileInfo - ok
21:03:27.0760 5504 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\windows\system32\drivers\filetrace.sys
21:03:27.0818 5504 Filetrace - ok
21:03:27.0831 5504 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\windows\system32\drivers\flpydisk.sys
21:03:27.0852 5504 flpydisk - ok
21:03:27.0876 5504 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\windows\system32\drivers\fltmgr.sys
21:03:27.0903 5504 FltMgr - ok
21:03:27.0967 5504 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\windows\system32\FntCache.dll
21:03:28.0010 5504 FontCache - ok
21:03:28.0112 5504 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
21:03:28.0130 5504 FontCache3.0.0.0 - ok
21:03:28.0152 5504 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\windows\system32\drivers\FsDepends.sys
21:03:28.0171 5504 FsDepends - ok
21:03:28.0223 5504 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\windows\system32\drivers\Fs_Rec.sys
21:03:28.0253 5504 Fs_Rec - ok
21:03:28.0322 5504 [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol C:\windows\system32\DRIVERS\fvevol.sys
21:03:28.0351 5504 fvevol - ok
21:03:28.0411 5504 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\windows\system32\drivers\gagp30kx.sys
21:03:28.0431 5504 gagp30kx - ok
21:03:28.0575 5504 [ 521A469CAF61F00E1DE081CC2099C1D6 ] GameConsoleService C:\Program Files (x86)\WildGames\Game Console - WildGames\GameConsoleService.exe
21:03:28.0600 5504 GameConsoleService - ok
21:03:28.0690 5504 [ 9F5E8645FECD68C0ECC374F5A4AE068A ] gfiark C:\windows\system32\drivers\gfiark.sys
21:03:28.0708 5504 gfiark - ok
21:03:28.0783 5504 [ 14908F4F9005C29DE8F5587E271390EE ] gfibto C:\windows\system32\drivers\gfibto.sys
21:03:28.0807 5504 gfibto - ok
21:03:28.0854 5504 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\windows\System32\gpsvc.dll
21:03:28.0941 5504 gpsvc - ok
21:03:29.0093 5504 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
21:03:29.0110 5504 gupdate - ok
21:03:29.0116 5504 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
21:03:29.0131 5504 gupdatem - ok
21:03:29.0181 5504 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\windows\system32\drivers\hcw85cir.sys
21:03:29.0203 5504 hcw85cir - ok
21:03:29.0256 5504 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\windows\system32\drivers\HdAudio.sys
21:03:29.0289 5504 HdAudAddService - ok
21:03:29.0308 5504 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\windows\system32\DRIVERS\HDAudBus.sys
21:03:29.0336 5504 HDAudBus - ok
21:03:29.0356 5504 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\windows\system32\drivers\HidBatt.sys
21:03:29.0379 5504 HidBatt - ok
21:03:29.0401 5504 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\windows\system32\drivers\hidbth.sys
21:03:29.0445 5504 HidBth - ok
21:03:29.0521 5504 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\windows\system32\drivers\hidir.sys
21:03:29.0547 5504 HidIr - ok
21:03:29.0591 5504 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\windows\system32\hidserv.dll
21:03:29.0706 5504 hidserv - ok
21:03:29.0756 5504 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\windows\system32\DRIVERS\hidusb.sys
21:03:29.0791 5504 HidUsb - ok
21:03:29.0817 5504 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\windows\system32\kmsvc.dll
21:03:29.0873 5504 hkmsvc - ok
21:03:29.0905 5504 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\windows\system32\ListSvc.dll
21:03:29.0930 5504 HomeGroupListener - ok
21:03:29.0965 5504 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\windows\system32\provsvc.dll
21:03:30.0016 5504 HomeGroupProvider - ok
21:03:30.0089 5504 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\windows\system32\drivers\HpSAMD.sys
21:03:30.0109 5504 HpSAMD - ok
21:03:30.0147 5504 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\windows\system32\drivers\HTTP.sys
21:03:30.0215 5504 HTTP - ok
21:03:30.0259 5504 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\windows\system32\drivers\hwpolicy.sys
21:03:30.0276 5504 hwpolicy - ok
21:03:30.0344 5504 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\windows\system32\DRIVERS\i8042prt.sys
21:03:30.0368 5504 i8042prt - ok
21:03:30.0447 5504 [ C224331A54571C8C9162F7714400BBBD ] iaStor C:\windows\system32\DRIVERS\iaStor.sys
21:03:30.0474 5504 iaStor - ok
21:03:30.0554 5504 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\windows\system32\drivers\iaStorV.sys
21:03:30.0585 5504 iaStorV - ok
21:03:30.0623 5504 [ 60CC7AE9AEDB4D1E7923BD053B176D97 ] ibtfltcoex C:\windows\system32\DRIVERS\iBtFltCoex.sys
21:03:30.0642 5504 ibtfltcoex - ok
21:03:30.0715 5504 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
21:03:30.0753 5504 idsvc - ok
21:03:31.0029 5504 [ 54E37A4E66B2CA1C38E9728FAD5F9822 ] igfx C:\windows\system32\DRIVERS\igdkmd64.sys
21:03:31.0353 5504 igfx - ok
21:03:31.0392 5504 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\windows\system32\drivers\iirsp.sys
21:03:31.0404 5504 iirsp - ok
21:03:31.0492 5504 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\windows\System32\ikeext.dll
21:03:31.0560 5504 IKEEXT - ok
21:03:31.0612 5504 [ CADDF0927DAC63EDAE48F5C35A61D87D ] intaud_WaveExtensible C:\windows\system32\drivers\intelaud.sys
21:03:31.0627 5504 intaud_WaveExtensible - ok
21:03:31.0813 5504 [ 6EF96DF5184DDB95A12107B8D7531FB7 ] IntcAzAudAddService C:\windows\system32\drivers\RTKVHD64.sys
21:03:32.0048 5504 IntcAzAudAddService - ok
21:03:32.0093 5504 [ 6C9FFFECA9FED31347D211C5D1FFBD2D ] IntcDAud C:\windows\system32\DRIVERS\IntcDAud.sys
21:03:32.0111 5504 IntcDAud - ok
21:03:32.0203 5504 [ 832CE330DD987227B7DEA8C03F22AEFA ] Intel(R) Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
21:03:32.0234 5504 Intel(R) Capability Licensing Service Interface - ok
21:03:32.0354 5504 [ 9571D8BDB56EBC52280E8020574508E6 ] Intel(R) ME Service C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
21:03:32.0433 5504 Intel(R) ME Service - ok
21:03:32.0451 5504 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\windows\system32\drivers\intelide.sys
21:03:32.0469 5504 intelide - ok
21:03:32.0536 5504 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\windows\system32\DRIVERS\intelppm.sys
21:03:32.0560 5504 intelppm - ok
21:03:32.0597 5504 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\windows\system32\ipbusenum.dll
21:03:32.0654 5504 IPBusEnum - ok
21:03:32.0683 5504 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\windows\system32\DRIVERS\ipfltdrv.sys
21:03:32.0751 5504 IpFilterDriver - ok
21:03:32.0792 5504 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\windows\System32\iphlpsvc.dll
21:03:32.0836 5504 iphlpsvc - ok
21:03:32.0867 5504 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\windows\system32\drivers\IPMIDrv.sys
21:03:32.0942 5504 IPMIDRV - ok
21:03:32.0981 5504 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\windows\system32\drivers\ipnat.sys
21:03:33.0043 5504 IPNAT - ok
21:03:33.0128 5504 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\windows\system32\drivers\irenum.sys
21:03:33.0157 5504 IRENUM - ok
21:03:33.0223 5504 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\windows\system32\drivers\isapnp.sys
21:03:33.0242 5504 isapnp - ok
21:03:33.0297 5504 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\windows\system32\drivers\msiscsi.sys
21:03:33.0323 5504 iScsiPrt - ok
21:03:33.0368 5504 [ 8E4577C6E0D3114170509159DE658907 ] iusb3hcs C:\windows\system32\DRIVERS\iusb3hcs.sys
21:03:33.0391 5504 iusb3hcs - ok
21:03:33.0421 5504 [ FE76346E9B57DA575BD1B3BD0CCAD7FF ] iusb3hub C:\windows\system32\DRIVERS\iusb3hub.sys
21:03:33.0453 5504 iusb3hub - ok
21:03:33.0498 5504 [ 1008CD90DA2198FFD250298DEB9DF160 ] iusb3xhc C:\windows\system32\DRIVERS\iusb3xhc.sys
21:03:33.0538 5504 iusb3xhc - ok
21:03:33.0589 5504 [ 716F66336F10885D935B08174DC54242 ] iwdbus C:\windows\system32\DRIVERS\iwdbus.sys
21:03:33.0605 5504 iwdbus - ok
21:03:33.0686 5504 [ DBD76BC1D498FE368F2C8CB76C3E00A4 ] jhi_service C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
21:03:33.0706 5504 jhi_service - ok
21:03:33.0731 5504 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\windows\system32\DRIVERS\kbdclass.sys
21:03:33.0751 5504 kbdclass - ok
21:03:33.0778 5504 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\windows\system32\drivers\kbdhid.sys
21:03:33.0801 5504 kbdhid - ok
21:03:33.0825 5504 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\windows\system32\lsass.exe
21:03:33.0844 5504 KeyIso - ok
21:03:33.0907 5504 [ 8B5219318DF5895ABD230C373F2DF18A ] kl1 C:\windows\system32\DRIVERS\kl1.sys
21:03:33.0946 5504 kl1 - ok
21:03:34.0011 5504 [ 2CBD248370721DCAD632DB70D09C5A6D ] KLIF C:\windows\system32\DRIVERS\klif.sys
21:03:34.0062 5504 KLIF - ok
21:03:34.0146 5504 [ 9BD99E1AB3F664120AB95C35F9EC1EB0 ] KLIM6 C:\windows\system32\DRIVERS\klim6.sys
21:03:34.0173 5504 KLIM6 - ok
21:03:34.0200 5504 [ 2C43FD500522EF3B8C283A5846B7FC41 ] klkbdflt C:\windows\system32\DRIVERS\klkbdflt.sys
21:03:34.0217 5504 klkbdflt - ok
21:03:34.0225 5504 [ 70A6D2E292017EC47949696F51ABE18D ] klmouflt C:\windows\system32\DRIVERS\klmouflt.sys
21:03:34.0252 5504 klmouflt - ok
21:03:34.0267 5504 [ 982974975E679276F0FA39EFA331A268 ] kltdi C:\windows\system32\DRIVERS\kltdi.sys
21:03:34.0284 5504 kltdi - ok
21:03:34.0317 5504 [ 1FCB657B581CC4DF17FD6571F93602DE ] kneps C:\windows\system32\DRIVERS\kneps.sys
21:03:34.0351 5504 kneps - ok
21:03:34.0387 5504 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\windows\system32\Drivers\ksecdd.sys
21:03:34.0409 5504 KSecDD - ok
21:03:34.0419 5504 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\windows\system32\Drivers\ksecpkg.sys
21:03:34.0454 5504 KSecPkg - ok
21:03:34.0475 5504 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\windows\system32\drivers\ksthunk.sys
21:03:34.0541 5504 ksthunk - ok
21:03:34.0577 5504 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\windows\system32\msdtckrm.dll
21:03:34.0675 5504 KtmRm - ok
21:03:34.0724 5504 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\windows\system32\srvsvc.dll
21:03:34.0785 5504 LanmanServer - ok
21:03:34.0810 5504 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\windows\System32\wkssvc.dll
21:03:34.0868 5504 LanmanWorkstation - ok
21:03:34.0907 5504 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\windows\system32\DRIVERS\lltdio.sys
21:03:34.0964 5504 lltdio - ok
21:03:35.0033 5504 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\windows\System32\lltdsvc.dll
21:03:35.0099 5504 lltdsvc - ok
21:03:35.0130 5504 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\windows\System32\lmhsvc.dll
21:03:35.0199 5504 lmhosts - ok
21:03:35.0233 5504 [ 86E4CC39C953D11EF57CF54C4DC78238 ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
21:03:35.0257 5504 LMS - ok
21:03:35.0283 5504 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\windows\system32\drivers\lsi_fc.sys
21:03:35.0302 5504 LSI_FC - ok
21:03:35.0333 5504 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\windows\system32\drivers\lsi_sas.sys
21:03:35.0353 5504 LSI_SAS - ok
21:03:35.0367 5504 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\windows\system32\drivers\lsi_sas2.sys
21:03:35.0385 5504 LSI_SAS2 - ok
21:03:35.0408 5504 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\windows\system32\drivers\lsi_scsi.sys
21:03:35.0427 5504 LSI_SCSI - ok
21:03:35.0474 5504 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\windows\system32\drivers\luafv.sys
21:03:35.0533 5504 luafv - ok
21:03:35.0668 5504 [ 0BB97D43299910CBFBA59C461B99B910 ] MBAMProtector C:\windows\system32\drivers\mbam.sys
21:03:35.0686 5504 MBAMProtector - ok
21:03:35.0842 5504 [ 65085456FD9A74D7F1A999520C299ECB ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
21:03:35.0869 5504 MBAMScheduler - ok
21:03:35.0924 5504 [ E0D7732F2D2E24B2DB3F67B6750295B8 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
21:03:35.0957 5504 MBAMService - ok
21:03:36.0046 5504 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\windows\system32\Mcx2Svc.dll
21:03:36.0085 5504 Mcx2Svc - ok
21:03:36.0136 5504 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\windows\system32\drivers\megasas.sys
21:03:36.0156 5504 megasas - ok
21:03:36.0186 5504 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\windows\system32\drivers\MegaSR.sys
21:03:36.0212 5504 MegaSR - ok
21:03:36.0273 5504 [ 6B01B7414A105B9E51652089A03027CF ] MEIx64 C:\windows\system32\DRIVERS\HECIx64.sys
21:03:36.0290 5504 MEIx64 - ok
21:03:36.0334 5504 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\windows\system32\mmcss.dll
21:03:36.0394 5504 MMCSS - ok
21:03:36.0408 5504 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\windows\system32\drivers\modem.sys
21:03:36.0461 5504 Modem - ok
21:03:36.0568 5504 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\windows\system32\DRIVERS\monitor.sys
21:03:36.0596 5504 monitor - ok
21:03:36.0643 5504 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\windows\system32\DRIVERS\mouclass.sys
21:03:36.0671 5504 mouclass - ok
21:03:36.0710 5504 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\windows\system32\DRIVERS\mouhid.sys
21:03:36.0730 5504 mouhid - ok
21:03:36.0793 5504 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\windows\system32\drivers\mountmgr.sys
21:03:36.0809 5504 mountmgr - ok
21:03:36.0859 5504 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\windows\system32\drivers\mpio.sys
21:03:36.0898 5504 mpio - ok
21:03:36.0936 5504 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\windows\system32\drivers\mpsdrv.sys
21:03:36.0986 5504 mpsdrv - ok
21:03:37.0021 5504 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\windows\system32\mpssvc.dll
21:03:37.0104 5504 MpsSvc - ok
21:03:37.0130 5504 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\windows\system32\drivers\mrxdav.sys
21:03:37.0169 5504 MRxDAV - ok
21:03:37.0225 5504 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\windows\system32\DRIVERS\mrxsmb.sys
21:03:37.0250 5504 mrxsmb - ok
21:03:37.0283 5504 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\windows\system32\DRIVERS\mrxsmb10.sys
21:03:37.0308 5504 mrxsmb10 - ok
21:03:37.0330 5504 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\windows\system32\DRIVERS\mrxsmb20.sys
21:03:37.0353 5504 mrxsmb20 - ok
21:03:37.0379 5504 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\windows\system32\drivers\msahci.sys
21:03:37.0408 5504 msahci - ok
21:03:37.0428 5504 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\windows\system32\drivers\msdsm.sys
21:03:37.0449 5504 msdsm - ok
21:03:37.0470 5504 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\windows\System32\msdtc.exe
21:03:37.0496 5504 MSDTC - ok
21:03:37.0526 5504 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\windows\system32\drivers\Msfs.sys
21:03:37.0583 5504 Msfs - ok
21:03:37.0656 5504 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\windows\System32\drivers\mshidkmdf.sys
21:03:37.0770 5504 mshidkmdf - ok
21:03:37.0783 5504 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\windows\system32\drivers\msisadrv.sys
21:03:37.0801 5504 msisadrv - ok
21:03:37.0821 5504 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\windows\system32\iscsiexe.dll
21:03:37.0927 5504 MSiSCSI - ok
21:03:37.0932 5504 msiserver - ok
21:03:37.0999 5504 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\windows\system32\drivers\MSKSSRV.sys
21:03:38.0056 5504 MSKSSRV - ok
21:03:38.0070 5504 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\windows\system32\drivers\MSPCLOCK.sys
21:03:38.0126 5504 MSPCLOCK - ok
21:03:38.0139 5504 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\windows\system32\drivers\MSPQM.sys
21:03:38.0196 5504 MSPQM - ok
21:03:38.0223 5504 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\windows\system32\drivers\MsRPC.sys
21:03:38.0255 5504 MsRPC - ok
21:03:38.0292 5504 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\windows\system32\DRIVERS\mssmbios.sys
21:03:38.0311 5504 mssmbios - ok
21:03:38.0326 5504 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\windows\system32\drivers\MSTEE.sys
21:03:38.0381 5504 MSTEE - ok
21:03:38.0407 5504 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\windows\system32\drivers\MTConfig.sys
21:03:38.0420 5504 MTConfig - ok
21:03:38.0469 5504 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\windows\system32\Drivers\mup.sys
21:03:38.0490 5504 Mup - ok
21:03:38.0566 5504 [ E3B58E3011B207C5289D11173B30E298 ] MyWiFiDHCPDNS C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
21:03:38.0610 5504 MyWiFiDHCPDNS - ok
21:03:38.0684 5504 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\windows\system32\qagentRT.dll
21:03:38.0829 5504 napagent - ok
21:03:38.0864 5504 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\windows\system32\DRIVERS\nwifi.sys
21:03:38.0913 5504 NativeWifiP - ok
21:03:38.0978 5504 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\windows\system32\drivers\ndis.sys
21:03:39.0018 5504 NDIS - ok
21:03:39.0035 5504 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\windows\system32\DRIVERS\ndiscap.sys
21:03:39.0091 5504 NdisCap - ok
21:03:39.0145 5504 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\windows\system32\DRIVERS\ndistapi.sys
21:03:39.0211 5504 NdisTapi - ok
21:03:39.0242 5504 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\windows\system32\DRIVERS\ndisuio.sys
21:03:39.0297 5504 Ndisuio - ok
21:03:39.0310 5504 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\windows\system32\DRIVERS\ndiswan.sys
21:03:39.0366 5504 NdisWan - ok
21:03:39.0385 5504 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\windows\system32\drivers\NDProxy.sys
21:03:39.0451 5504 NDProxy - ok
21:03:39.0484 5504 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\windows\system32\DRIVERS\netbios.sys
21:03:39.0578 5504 NetBIOS - ok
21:03:39.0610 5504 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\windows\system32\DRIVERS\netbt.sys
21:03:39.0669 5504 NetBT - ok
21:03:39.0683 5504 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\windows\system32\lsass.exe
21:03:39.0701 5504 Netlogon - ok
21:03:39.0746 5504 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\windows\System32\netman.dll
21:03:39.0808 5504 Netman - ok
21:03:39.0955 5504 [ 5243CFC2E7161C91C2B355240035B9E4 ] NetMsmqActivator C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:03:39.0978 5504 NetMsmqActivator - ok
21:03:39.0983 5504 [ 5243CFC2E7161C91C2B355240035B9E4 ] NetPipeActivator C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:03:40.0005 5504 NetPipeActivator - ok
21:03:40.0032 5504 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\windows\System32\netprofm.dll
21:03:40.0095 5504 netprofm - ok
21:03:40.0101 5504 [ 5243CFC2E7161C91C2B355240035B9E4 ] NetTcpActivator C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:03:40.0122 5504 NetTcpActivator - ok
21:03:40.0128 5504 [ 5243CFC2E7161C91C2B355240035B9E4 ] NetTcpPortSharing C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:03:40.0149 5504 NetTcpPortSharing - ok
21:03:40.0424 5504 [ B51E9AD4F4E4F8DBE0AB882756BC5DAB ] NETwNs64 C:\windows\system32\DRIVERS\NETwNs64.sys
21:03:40.0720 5504 NETwNs64 - ok
21:03:40.0759 5504 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\windows\system32\drivers\nfrd960.sys
21:03:40.0776 5504 nfrd960 - ok
21:03:40.0852 5504 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\windows\System32\nlasvc.dll
21:03:40.0879 5504 NlaSvc - ok
21:03:40.0891 5504 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\windows\system32\drivers\Npfs.sys
21:03:40.0961 5504 Npfs - ok
21:03:40.0971 5504 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\windows\system32\nsisvc.dll
21:03:41.0028 5504 nsi - ok
21:03:41.0045 5504 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\windows\system32\drivers\nsiproxy.sys
21:03:41.0099 5504 nsiproxy - ok
21:03:41.0176 5504 [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs C:\windows\system32\drivers\Ntfs.sys
21:03:41.0241 5504 Ntfs - ok
21:03:41.0265 5504 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\windows\system32\drivers\Null.sys
21:03:41.0331 5504 Null - ok
21:03:41.0776 5504 [ 12E18E5F438AAD55DAF77E127C0EA25B ] nvlddmkm C:\windows\system32\DRIVERS\nvlddmkm.sys
21:03:42.0241 5504 nvlddmkm - ok
21:03:42.0254 5504 [ 186290C63FEB79C199A620E36705F9EE ] nvpciflt C:\windows\system32\DRIVERS\nvpciflt.sys
21:03:42.0264 5504 nvpciflt - ok
21:03:42.0286 5504 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\windows\system32\drivers\nvraid.sys
21:03:42.0299 5504 nvraid - ok
21:03:42.0385 5504 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\windows\system32\drivers\nvstor.sys
21:03:42.0406 5504 nvstor - ok
21:03:42.0454 5504 [ 33A2052D60D4EA6599CEE1D6853D0A42 ] nvsvc C:\windows\system32\nvvsvc.exe
21:03:42.0492 5504 nvsvc - ok
21:03:42.0584 5504 [ FD6F5B42DB429FD1AE1A4483DB4DD2E0 ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
21:03:42.0663 5504 nvUpdatusService - ok
21:03:42.0688 5504 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\windows\system32\drivers\nv_agp.sys
21:03:42.0711 5504 nv_agp - ok
21:03:42.0724 5504 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\windows\system32\drivers\ohci1394.sys
21:03:42.0746 5504 ohci1394 - ok
21:03:42.0875 5504 [ 4965B005492CBA7719E82B71E3245495 ] ose64 C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
21:03:42.0896 5504 ose64 - ok
21:03:43.0115 5504 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
21:03:43.0290 5504 osppsvc - ok
21:03:43.0390 5504 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\windows\system32\pnrpsvc.dll
21:03:43.0421 5504 p2pimsvc - ok
21:03:43.0446 5504 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\windows\system32\p2psvc.dll
21:03:43.0475 5504 p2psvc - ok
21:03:43.0582 5504 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\windows\system32\drivers\parport.sys
21:03:43.0606 5504 Parport - ok
21:03:43.0653 5504 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\windows\system32\drivers\partmgr.sys
21:03:43.0685 5504 partmgr - ok
21:03:43.0719 5504 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\windows\System32\pcasvc.dll
21:03:43.0847 5504 PcaSvc - ok
21:03:43.0895 5504 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\windows\system32\drivers\pci.sys
21:03:43.0920 5504 pci - ok
21:03:43.0946 5504 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\windows\system32\drivers\pciide.sys
21:03:43.0965 5504 pciide - ok
21:03:44.0004 5504 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\windows\system32\drivers\pcmcia.sys
21:03:44.0030 5504 pcmcia - ok
21:03:44.0088 5504 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\windows\system32\drivers\pcw.sys
21:03:44.0109 5504 pcw - ok
21:03:44.0127 5504 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\windows\system32\drivers\peauth.sys
21:03:44.0197 5504 PEAUTH - ok
21:03:44.0322 5504 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\windows\SysWow64\perfhost.exe
21:03:44.0346 5504 PerfHost - ok
21:03:44.0403 5504 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\windows\system32\pla.dll
21:03:44.0475 5504 pla - ok
21:03:44.0562 5504 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\windows\system32\umpnpmgr.dll
21:03:44.0593 5504 PlugPlay - ok
21:03:44.0635 5504 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\windows\system32\pnrpauto.dll
21:03:44.0654 5504 PNRPAutoReg - ok
21:03:44.0676 5504 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\windows\system32\pnrpsvc.dll
21:03:44.0698 5504 PNRPsvc - ok
21:03:44.0760 5504 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\windows\System32\ipsecsvc.dll
21:03:44.0887 5504 PolicyAgent - ok
21:03:44.0922 5504 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\windows\system32\umpo.dll
21:03:44.0981 5504 Power - ok
21:03:45.0007 5504 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\windows\system32\DRIVERS\raspptp.sys
21:03:45.0060 5504 PptpMiniport - ok
21:03:45.0102 5504 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\windows\system32\drivers\processr.sys
21:03:45.0169 5504 Processor - ok
21:03:45.0259 5504 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\windows\system32\profsvc.dll
21:03:45.0286 5504 ProfSvc - ok
21:03:45.0296 5504 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\windows\system32\lsass.exe
21:03:45.0315 5504 ProtectedStorage - ok
21:03:45.0344 5504 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\windows\system32\DRIVERS\pacer.sys
21:03:45.0396 5504 Psched - ok
21:03:45.0456 5504 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\windows\system32\drivers\ql2300.sys
21:03:45.0513 5504 ql2300 - ok
21:03:45.0530 5504 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\windows\system32\drivers\ql40xx.sys
21:03:45.0551 5504 ql40xx - ok
21:03:45.0577 5504 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\windows\system32\qwave.dll
21:03:45.0609 5504 QWAVE - ok
21:03:45.0631 5504 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\windows\system32\drivers\qwavedrv.sys
21:03:45.0647 5504 QWAVEdrv - ok
21:03:45.0664 5504 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\windows\system32\DRIVERS\rasacd.sys
21:03:45.0698 5504 RasAcd - ok
21:03:45.0733 5504 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\windows\system32\DRIVERS\AgileVpn.sys
21:03:45.0777 5504 RasAgileVpn - ok
21:03:45.0799 5504 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\windows\System32\rasauto.dll
21:03:45.0886 5504 RasAuto - ok
21:03:45.0916 5504 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\windows\system32\DRIVERS\rasl2tp.sys
21:03:45.0979 5504 Rasl2tp - ok
21:03:46.0081 5504 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\windows\System32\rasmans.dll
21:03:46.0143 5504 RasMan - ok
21:03:46.0183 5504 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\windows\system32\DRIVERS\raspppoe.sys
21:03:46.0240 5504 RasPppoe - ok
21:03:46.0310 5504 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\windows\system32\DRIVERS\rassstp.sys
21:03:46.0381 5504 RasSstp - ok
21:03:46.0399 5504 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\windows\system32\DRIVERS\rdbss.sys
21:03:46.0459 5504 rdbss - ok
21:03:46.0487 5504 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\windows\system32\drivers\rdpbus.sys
21:03:46.0511 5504 rdpbus - ok
21:03:46.0533 5504 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\windows\system32\DRIVERS\RDPCDD.sys
21:03:46.0586 5504 RDPCDD - ok
21:03:46.0598 5504 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\windows\system32\drivers\rdpencdd.sys
21:03:46.0650 5504 RDPENCDD - ok
21:03:46.0659 5504 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\windows\system32\drivers\rdprefmp.sys
21:03:46.0711 5504 RDPREFMP - ok
21:03:46.0746 5504 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\windows\system32\drivers\RDPWD.sys
21:03:46.0773 5504 RDPWD - ok
21:03:46.0833 5504 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\windows\system32\drivers\rdyboost.sys
21:03:46.0858 5504 rdyboost - ok
21:03:46.0913 5504 [ F3AF2B43F35DBB3A0EB9FEEEC7D62217 ] RegSrvc C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
21:03:46.0924 5504 RegSrvc - ok
21:03:46.0944 5504 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\windows\System32\mprdim.dll
21:03:46.0979 5504 RemoteAccess - ok
21:03:47.0002 5504 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\windows\system32\regsvc.dll
21:03:47.0052 5504 RemoteRegistry - ok
21:03:47.0086 5504 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\windows\system32\DRIVERS\rfcomm.sys
21:03:47.0125 5504 RFCOMM - ok
21:03:47.0214 5504 [ F12A68ED55053940CADD59CA5E3468DD ] RichVideo C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
21:03:47.0231 5504 RichVideo ( UnsignedFile.Multi.Generic ) - warning
21:03:47.0232 5504 RichVideo - detected UnsignedFile.Multi.Generic (1)
21:03:47.0258 5504 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\windows\System32\RpcEpMap.dll
21:03:47.0351 5504 RpcEptMapper - ok
21:03:47.0410 5504 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\windows\system32\locator.exe
21:03:47.0432 5504 RpcLocator - ok
21:03:47.0459 5504 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\windows\system32\rpcss.dll
21:03:47.0519 5504 RpcSs - ok
21:03:47.0565 5504 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\windows\system32\DRIVERS\rspndr.sys
21:03:47.0623 5504 rspndr - ok
21:03:47.0653 5504 [ 6CF9DB101A75360E98659F823852E540 ] RTL8167 C:\windows\system32\DRIVERS\Rt64win7.sys
21:03:47.0704 5504 RTL8167 - ok
21:03:47.0750 5504 [ 62DB6CC4B0818F1B5F3441241B098F12 ] SABI C:\windows\system32\Drivers\SABI.sys
21:03:47.0773 5504 SABI - ok
21:03:47.0792 5504 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\windows\system32\lsass.exe
21:03:47.0811 5504 SamSs - ok
21:03:47.0876 5504 [ 5E66ABD041D76C46CBF55AEF910FCA56 ] SamsungDeviceConfigurationWinService C:\Program Files (x86)\Samsung\Easy Settings\SamsungDeviceConfiguration.exe
21:03:47.0890 5504 SamsungDeviceConfigurationWinService - ok
21:03:48.0056 5504 [ 99FC1599F89A80216E41175B8CA44D89 ] SBAMSvc C:\Program Files (x86)\Ad-Aware Antivirus\SBAMSvc.exe
21:03:48.0164 5504 SBAMSvc - ok
21:03:48.0216 5504 [ 8F19D62B04081C0BFF1E8D6F26220A28 ] sbapifs C:\windows\system32\DRIVERS\sbapifs.sys
21:03:48.0233 5504 sbapifs - ok
21:03:48.0329 5504 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\windows\system32\drivers\sbp2port.sys
21:03:48.0351 5504 sbp2port - ok
21:03:48.0383 5504 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\windows\System32\SCardSvr.dll
21:03:48.0436 5504 SCardSvr - ok
21:03:48.0450 5504 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\windows\system32\DRIVERS\scfilter.sys
21:03:48.0482 5504 scfilter - ok
21:03:48.0516 5504 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\windows\system32\schedsvc.dll
21:03:48.0602 5504 Schedule - ok
21:03:48.0631 5504 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\windows\System32\certprop.dll
21:03:48.0685 5504 SCPolicySvc - ok
21:03:48.0706 5504 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\windows\System32\SDRSVC.dll
21:03:48.0732 5504 SDRSVC - ok
21:03:48.0773 5504 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\windows\system32\drivers\secdrv.sys
21:03:48.0838 5504 secdrv - ok
21:03:48.0854 5504 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\windows\system32\seclogon.dll
21:03:48.0909 5504 seclogon - ok
21:03:48.0934 5504 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\windows\System32\sens.dll
21:03:48.0999 5504 SENS - ok
21:03:49.0055 5504 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\windows\system32\sensrsvc.dll
21:03:49.0080 5504 SensrSvc - ok
21:03:49.0124 5504 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\windows\system32\drivers\serenum.sys
21:03:49.0184 5504 Serenum - ok
21:03:49.0261 5504 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\windows\system32\drivers\serial.sys
21:03:49.0301 5504 Serial - ok
21:03:49.0359 5504 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\windows\system32\drivers\sermouse.sys
21:03:49.0379 5504 sermouse - ok
21:03:49.0431 5504 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\windows\system32\sessenv.dll
21:03:49.0488 5504 SessionEnv - ok
21:03:49.0492 5504 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\windows\system32\drivers\sffdisk.sys
21:03:49.0516 5504 sffdisk - ok
21:03:49.0521 5504 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\windows\system32\drivers\sffp_mmc.sys
21:03:49.0546 5504 sffp_mmc - ok
21:03:49.0550 5504 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\windows\system32\drivers\sffp_sd.sys
21:03:49.0574 5504 sffp_sd - ok
21:03:49.0649 5504 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\windows\system32\drivers\sfloppy.sys
21:03:49.0670 5504 sfloppy - ok
21:03:49.0719 5504 [ 2FE1CD3AA602414841DB10AD96C95A5E ] SGDrv C:\windows\system32\DRIVERS\SGdrv64.sys
21:03:49.0738 5504 SGDrv - ok
21:03:49.0795 5504 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\windows\System32\ipnathlp.dll
21:03:49.0859 5504 SharedAccess - ok
21:03:49.0915 5504 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\windows\System32\shsvcs.dll
21:03:49.0977 5504 ShellHWDetection - ok
21:03:49.0994 5504 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\windows\system32\drivers\SiSRaid2.sys
21:03:50.0013 5504 SiSRaid2 - ok
21:03:50.0025 5504 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\windows\system32\drivers\sisraid4.sys
21:03:50.0045 5504 SiSRaid4 - ok
21:03:50.0192 5504 [ 388AE59FE75F1B959DFA0900923C61BB ] Skype C2C Service C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
21:03:50.0540 5504 Skype C2C Service - ok
21:03:50.0602 5504 [ 7C15061CD0372487903B07B9BB03AFAD ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
21:03:50.0621 5504 SkypeUpdate - ok
21:03:50.0695 5504 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\windows\system32\DRIVERS\smb.sys
21:03:50.0752 5504 Smb - ok
21:03:50.0791 5504 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\windows\System32\snmptrap.exe
21:03:50.0816 5504 SNMPTRAP - ok
21:03:50.0855 5504 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\windows\system32\drivers\spldr.sys
21:03:50.0866 5504 spldr - ok
21:03:50.0914 5504 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\windows\System32\spoolsv.exe
21:03:50.0966 5504 Spooler - ok
21:03:51.0060 5504 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\windows\system32\sppsvc.exe
21:03:51.0151 5504 sppsvc - ok
21:03:51.0172 5504 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\windows\system32\sppuinotify.dll
21:03:51.0206 5504 sppuinotify - ok
21:03:51.0245 5504 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\windows\system32\DRIVERS\srv.sys
21:03:51.0326 5504 srv - ok
21:03:51.0350 5504 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\windows\system32\DRIVERS\srv2.sys
21:03:51.0380 5504 srv2 - ok
21:03:51.0417 5504 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\windows\system32\DRIVERS\srvnet.sys
21:03:51.0491 5504 srvnet - ok
21:03:51.0532 5504 [ 8F8324ED1DE63FFC7B1A02CD2D963C72 ] ssadbus C:\windows\system32\DRIVERS\ssadbus.sys
21:03:51.0557 5504 ssadbus - ok
21:03:51.0605 5504 [ 58221EFCB74167B73667F0024C661CE0 ] ssadmdfl C:\windows\system32\DRIVERS\ssadmdfl.sys
21:03:51.0627 5504 ssadmdfl - ok
21:03:51.0670 5504 [ 4DA7C71BFAC5AD71255B7E4CAB980163 ] ssadmdm C:\windows\system32\DRIVERS\ssadmdm.sys
21:03:51.0697 5504 ssadmdm - ok
21:03:51.0761 5504 [ D33D1BD3EC0E766211A234F56A12726D ] ssadserd C:\windows\system32\DRIVERS\ssadserd.sys
21:03:51.0845 5504 ssadserd - ok
21:03:51.0887 5504 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\windows\System32\ssdpsrv.dll
21:03:51.0952 5504 SSDPSRV - ok
21:03:51.0971 5504 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\windows\system32\sstpsvc.dll
21:03:52.0032 5504 SstpSvc - ok
21:03:52.0051 5504 StarOpen - ok
21:03:52.0101 5504 Steam Client Service - ok
21:03:52.0130 5504 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\windows\system32\drivers\stexstor.sys
21:03:52.0148 5504 stexstor - ok
21:03:52.0212 5504 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\windows\System32\wiaservc.dll
21:03:52.0252 5504 stisvc - ok
21:03:52.0271 5504 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\windows\system32\DRIVERS\swenum.sys
21:03:52.0298 5504 swenum - ok
21:03:52.0338 5504 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\windows\System32\swprv.dll
21:03:52.0397 5504 swprv - ok
21:03:52.0438 5504 [ 7E488378004FF5F9DCD1711522B1241A ] SynTP C:\windows\system32\DRIVERS\SynTP.sys
21:03:52.0463 5504 SynTP - ok
21:03:52.0527 5504 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\windows\system32\sysmain.dll
21:03:52.0654 5504 SysMain - ok
21:03:52.0688 5504 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\windows\System32\TabSvc.dll
21:03:52.0720 5504 TabletInputService - ok
21:03:52.0738 5504 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\windows\System32\tapisrv.dll
21:03:52.0799 5504 TapiSrv - ok
21:03:52.0819 5504 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\windows\System32\tbssvc.dll
21:03:52.0881 5504 TBS - ok
21:03:52.0958 5504 [ 9849EA3843A2ADBDD1497E97A85D8CAE ] Tcpip C:\windows\system32\drivers\tcpip.sys
21:03:53.0002 5504 Tcpip - ok
21:03:53.0076 5504 [ 9849EA3843A2ADBDD1497E97A85D8CAE ] TCPIP6 C:\windows\system32\DRIVERS\tcpip.sys
21:03:53.0119 5504 TCPIP6 - ok
21:03:53.0141 5504 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\windows\system32\drivers\tcpipreg.sys
21:03:53.0154 5504 tcpipreg - ok
21:03:53.0203 5504 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\windows\system32\drivers\tdpipe.sys
21:03:53.0238 5504 TDPIPE - ok
21:03:53.0265 5504 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\windows\system32\drivers\tdtcp.sys
21:03:53.0280 5504 TDTCP - ok
21:03:53.0311 5504 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\windows\system32\DRIVERS\tdx.sys
21:03:53.0366 5504 tdx - ok
21:03:54.0219 5504 [ 7C8DD5576695B3362202EF09B20C425E ] TeamViewer8 C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
21:03:55.0630 5504 TeamViewer8 - ok
21:03:55.0663 5504 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\windows\system32\DRIVERS\termdd.sys
21:03:55.0681 5504 TermDD - ok
21:03:55.0713 5504 [ 2E648163254233755035B46DD7B89123 ] TermService C:\windows\System32\termsrv.dll
21:03:55.0792 5504 TermService - ok
21:03:55.0807 5504 [ F0344071948D1A1FA732231785A0664C ] Themes C:\windows\system32\themeservice.dll
21:03:55.0837 5504 Themes - ok
21:03:55.0868 5504 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\windows\system32\mmcss.dll
21:03:55.0924 5504 THREADORDER - ok
21:03:55.0950 5504 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\windows\System32\trkwks.dll
21:03:56.0003 5504 TrkWks - ok
21:03:56.0055 5504 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\windows\servicing\TrustedInstaller.exe
21:03:56.0111 5504 TrustedInstaller - ok
21:03:56.0125 5504 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\windows\system32\DRIVERS\tssecsrv.sys
21:03:56.0161 5504 tssecsrv - ok
21:03:56.0188 5504 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\windows\system32\drivers\tsusbflt.sys
21:03:56.0202 5504 TsUsbFlt - ok
21:03:56.0254 5504 [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD C:\windows\system32\drivers\TsUsbGD.sys
21:03:56.0286 5504 TsUsbGD - ok
21:03:56.0323 5504 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\windows\system32\DRIVERS\tunnel.sys
21:03:56.0385 5504 tunnel - ok
21:03:56.0426 5504 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\windows\system32\drivers\uagp35.sys
21:03:56.0438 5504 uagp35 - ok
21:03:56.0458 5504 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\windows\system32\DRIVERS\udfs.sys
21:03:56.0509 5504 udfs - ok
21:03:56.0537 5504 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\windows\system32\UI0Detect.exe
21:03:56.0554 5504 UI0Detect - ok
21:03:56.0566 5504 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\windows\system32\drivers\uliagpkx.sys
21:03:56.0580 5504 uliagpkx - ok
21:03:56.0607 5504 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\windows\system32\DRIVERS\umbus.sys
21:03:56.0623 5504 umbus - ok
21:03:56.0656 5504 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\windows\system32\drivers\umpass.sys
21:03:56.0672 5504 UmPass - ok
21:03:56.0821 5504 [ D80B1075B69B57A3AB78F750CE463ECE ] UNS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
21:03:56.0849 5504 UNS - ok
21:03:56.0910 5504 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\windows\System32\upnphost.dll
21:03:56.0973 5504 upnphost - ok
21:03:57.0014 5504 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\windows\system32\DRIVERS\usbccgp.sys
21:03:57.0038 5504 usbccgp - ok
21:03:57.0117 5504 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\windows\system32\drivers\usbcir.sys
21:03:57.0146 5504 usbcir - ok
21:03:57.0168 5504 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\windows\system32\drivers\usbehci.sys
21:03:57.0252 5504 usbehci - ok
21:03:57.0326 5504 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\windows\system32\DRIVERS\usbhub.sys
21:03:57.0356 5504 usbhub - ok
21:03:57.0419 5504 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\windows\system32\drivers\usbohci.sys
21:03:57.0448 5504 usbohci - ok
21:03:57.0463 5504 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\windows\system32\drivers\usbprint.sys
21:03:57.0489 5504 usbprint - ok
21:03:57.0505 5504 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\windows\system32\DRIVERS\USBSTOR.SYS
21:03:57.0527 5504 USBSTOR - ok
21:03:57.0574 5504 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\windows\system32\drivers\usbuhci.sys
21:03:57.0594 5504 usbuhci - ok
21:03:57.0637 5504 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\windows\system32\Drivers\usbvideo.sys
21:03:57.0667 5504 usbvideo - ok
21:03:57.0690 5504 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\windows\System32\uxsms.dll
21:03:57.0747 5504 UxSms - ok
21:03:57.0774 5504 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\windows\system32\lsass.exe
21:03:57.0793 5504 VaultSvc - ok
21:03:57.0872 5504 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\windows\system32\drivers\vdrvroot.sys
21:03:57.0891 5504 vdrvroot - ok
21:03:57.0916 5504 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\windows\System32\vds.exe
21:03:57.0979 5504 vds - ok
21:03:58.0000 5504 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\windows\system32\DRIVERS\vgapnp.sys
21:03:58.0024 5504 vga - ok
21:03:58.0039 5504 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\windows\System32\drivers\vga.sys
21:03:58.0114 5504 VgaSave - ok
21:03:58.0138 5504 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\windows\system32\drivers\vhdmp.sys
21:03:58.0161 5504 vhdmp - ok
21:03:58.0189 5504 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\windows\system32\drivers\viaide.sys
21:03:58.0207 5504 viaide - ok
21:03:58.0221 5504 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\windows\system32\drivers\volmgr.sys
21:03:58.0241 5504 volmgr - ok
21:03:58.0261 5504 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\windows\system32\drivers\volmgrx.sys
21:03:58.0284 5504 volmgrx - ok
21:03:58.0306 5504 [ DF8126BD41180351A093A3AD2FC8903B ] volsnap C:\windows\system32\drivers\volsnap.sys
21:03:58.0346 5504 volsnap - ok
21:03:58.0377 5504 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\windows\system32\drivers\vsmraid.sys
21:03:58.0399 5504 vsmraid - ok
21:03:58.0458 5504 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\windows\system32\vssvc.exe
21:03:58.0559 5504 VSS - ok
21:03:58.0574 5504 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\windows\system32\DRIVERS\vwifibus.sys
21:03:58.0594 5504 vwifibus - ok
21:03:58.0638 5504 [ 13A0DECD1794DE60A8427862C8669D27 ] VWiFiFlt C:\windows\system32\DRIVERS\vwififlt.sys
21:03:58.0669 5504 VWiFiFlt - ok
21:03:58.0704 5504 [ 49003B357D101CDC474937437ECF5ABC ] vwifimp C:\windows\system32\DRIVERS\vwifimp.sys
21:03:58.0723 5504 vwifimp - ok
21:03:58.0753 5504 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\windows\system32\w32time.dll
21:03:58.0816 5504 W32Time - ok
21:03:58.0851 5504 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\windows\system32\drivers\wacompen.sys
21:03:58.0872 5504 WacomPen - ok
21:03:58.0934 5504 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\windows\system32\DRIVERS\wanarp.sys
21:03:58.0989 5504 WANARP - ok
21:03:58.0999 5504 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\windows\system32\DRIVERS\wanarp.sys
21:03:59.0052 5504 Wanarpv6 - ok
21:03:59.0109 5504 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\windows\system32\wbengine.exe
21:03:59.0152 5504 wbengine - ok
21:03:59.0173 5504 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\windows\System32\wbiosrvc.dll
21:03:59.0196 5504 WbioSrvc - ok
21:03:59.0216 5504 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\windows\System32\wcncsvc.dll
21:03:59.0239 5504 wcncsvc - ok
21:03:59.0257 5504 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\windows\System32\WcsPlugInService.dll
21:03:59.0272 5504 WcsPlugInService - ok
21:03:59.0306 5504 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\windows\system32\drivers\wd.sys
21:03:59.0317 5504 Wd - ok
21:03:59.0423 5504 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\windows\system32\drivers\Wdf01000.sys
21:03:59.0468 5504 Wdf01000 - ok
21:03:59.0486 5504 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\windows\system32\wdi.dll
21:03:59.0513 5504 WdiServiceHost - ok
21:03:59.0517 5504 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\windows\system32\wdi.dll
21:03:59.0539 5504 WdiSystemHost - ok
21:03:59.0562 5504 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\windows\System32\webclnt.dll
21:03:59.0588 5504 WebClient - ok
21:03:59.0617 5504 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\windows\system32\wecsvc.dll
21:03:59.0666 5504 Wecsvc - ok
21:03:59.0696 5504 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\windows\System32\wercplsupport.dll
21:03:59.0754 5504 wercplsupport - ok
21:03:59.0786 5504 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\windows\System32\WerSvc.dll
21:03:59.0834 5504 WerSvc - ok
21:03:59.0864 5504 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\windows\system32\DRIVERS\wfplwf.sys
21:03:59.0912 5504 WfpLwf - ok
21:03:59.0938 5504 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\windows\system32\drivers\wimmount.sys
21:03:59.0950 5504 WIMMount - ok
21:04:00.0033 5504 WinDefend - ok
21:04:00.0050 5504 WinHttpAutoProxySvc - ok
21:04:00.0110 5504 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\windows\system32\wbem\WMIsvc.dll
21:04:00.0175 5504 Winmgmt - ok
21:04:00.0260 5504 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\windows\system32\WsmSvc.dll
21:04:00.0336 5504 WinRM - ok
21:04:00.0416 5504 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\windows\system32\DRIVERS\WinUsb.sys
21:04:00.0441 5504 WinUsb - ok
21:04:00.0485 5504 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\windows\System32\wlansvc.dll
21:04:00.0543 5504 Wlansvc - ok
21:04:00.0609 5504 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
21:04:00.0627 5504 wlcrasvc - ok
21:04:00.0751 5504 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
21:04:00.0802 5504 wlidsvc - ok
21:04:00.0956 5504 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\windows\system32\DRIVERS\wmiacpi.sys
21:04:00.0977 5504 WmiAcpi - ok
21:04:01.0184 5504 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\windows\system32\wbem\WmiApSrv.exe
21:04:01.0232 5504 wmiApSrv - ok
21:04:01.0496 5504 WMPNetworkSvc - ok
21:04:01.0562 5504 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\windows\System32\wpcsvc.dll
21:04:01.0592 5504 WPCSvc - ok
21:04:01.0637 5504 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\windows\system32\wpdbusenum.dll
21:04:01.0666 5504 WPDBusEnum - ok
21:04:01.0700 5504 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\windows\system32\drivers\ws2ifsl.sys
21:04:01.0754 5504 ws2ifsl - ok
21:04:01.0776 5504 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\windows\System32\wscsvc.dll
21:04:01.0802 5504 wscsvc - ok
21:04:01.0806 5504 WSearch - ok
21:04:02.0208 5504 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\windows\system32\wuaueng.dll
21:04:02.0393 5504 wuauserv - ok
21:04:02.0445 5504 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\windows\system32\drivers\WudfPf.sys
21:04:02.0538 5504 WudfPf - ok
21:04:02.0597 5504 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\windows\system32\DRIVERS\WUDFRd.sys
21:04:02.0637 5504 WUDFRd - ok
21:04:02.0676 5504 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\windows\System32\WUDFSvc.dll
21:04:02.0711 5504 wudfsvc - ok
21:04:02.0833 5504 [ FE90B750AB808FB9DD8FBB428B5FF83B ] WwanSvc C:\windows\System32\wwansvc.dll
21:04:02.0875 5504 WwanSvc - ok
21:04:03.0063 5504 [ 74713CB32792F9C7632DAA7DA22CA974 ] ZeroConfigService C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
21:04:03.0093 5504 ZeroConfigService - ok
21:04:03.0217 5504 ================ Scan global ===============================
21:04:03.0236 5504 [ BA0CD8C393E8C9F83354106093832C7B ] C:\windows\system32\basesrv.dll
21:04:03.0280 5504 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\windows\system32\winsrv.dll
21:04:03.0294 5504 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\windows\system32\winsrv.dll
21:04:03.0322 5504 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\windows\system32\sxssrv.dll
21:04:03.0396 5504 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\windows\system32\services.exe
21:04:03.0402 5504 [Global] - ok
21:04:03.0403 5504 ================ Scan MBR ==================================
21:04:03.0420 5504 [ 2E5DEBB2116B3417023E0D6562D7ED07 ] \Device\Harddisk0\DR0
21:04:03.0735 5504 \Device\Harddisk0\DR0 - ok
21:04:03.0736 5504 ================ Scan VBR ==================================
21:04:03.0739 5504 [ 19003AA414E7B47AA06AF4A5C1D6BDC8 ] \Device\Harddisk0\DR0\Partition1
21:04:03.0741 5504 \Device\Harddisk0\DR0\Partition1 - ok
21:04:03.0778 5504 [ D2F38A16034B907E4966BCCD8CF380DA ] \Device\Harddisk0\DR0\Partition2
21:04:03.0781 5504 \Device\Harddisk0\DR0\Partition2 - ok
21:04:03.0782 5504 ============================================================
21:04:03.0782 5504 Scan finished
21:04:03.0782 5504 ============================================================
21:04:03.0797 8160 Detected object count: 1
21:04:03.0797 8160 Actual detected object count: 1
21:04:29.0716 8160 RichVideo ( UnsignedFile.Multi.Generic ) - skipped by user
21:04:29.0716 8160 RichVideo ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:04:37.0439 5484 Deinitialize success
|
|
13.06.2013, 20:08
| #6 |
| /// Malware-holic | Online Smile v13.4.24 lässt sich nicht entfernen. was sollen wir mit ner schätzung anfangen, prüfe es bitte :-)
__________________ --> Online Smile v13.4.24 lässt sich nicht entfernen. |
|
13.06.2013, 21:13
| #7 | |
| | Online Smile v13.4.24 lässt sich nicht entfernen.Zitat:
|
|
13.06.2013, 21:41
| #8 |
| /// Malware-holic | Online Smile v13.4.24 lässt sich nicht entfernen. auf den herstellerseiten der komponennten oder, wenn es ein fertig pc ist dann auf der herstellerseite
__________________ -Verdächtige mails bitte an uns zur Analyse weiterleiten: markusg.trojaner-board@web.de Weiterleiten Anleitung: http://markusg.trojaner-board.de Mails bitte vorerst nach obiger Anleitung an markusg.trojaner-board@web.de Weiterleiten Wenn Ihr uns unterstützen möchtet |
|
13.06.2013, 22:20
| #9 |
| | Online Smile v13.4.24 lässt sich nicht entfernen. Also Treiber sind nun aktuell. Wie gehts jetzt weiter. |
|
14.06.2013, 13:00
| #10 |
| /// Malware-holic | Online Smile v13.4.24 lässt sich nicht entfernen. hi, Scan mit Combofix
__________________ -Verdächtige mails bitte an uns zur Analyse weiterleiten: markusg.trojaner-board@web.de Weiterleiten Anleitung: http://markusg.trojaner-board.de Mails bitte vorerst nach obiger Anleitung an markusg.trojaner-board@web.de Weiterleiten Wenn Ihr uns unterstützen möchtet |
|
14.06.2013, 21:27
| #11 |
| | Online Smile v13.4.24 lässt sich nicht entfernen. Combofix: Code:
ATTFilter ComboFix 13-06-13.01 - Eugen 14.06.2013 19:38:10.1.4 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.49.1031.18.8089.6138 [GMT 2:00]
ausgeführt von:: c:\allgemein\Trojan\ComboFix.exe
AV: Kaspersky Internet Security *Enabled/Updated* {C3113FBF-4BCB-4461-D78D-6EDFEC9593E5}
AV: Lavasoft Ad-Aware *Disabled/Updated* {E0D97DD4-42BA-B3F2-A5A7-22E9ACE81FC7}
FW: Kaspersky Internet Security *Enabled* {FB2ABE9A-01A4-4539-FCD2-C7EA1246D49E}
FW: Lavasoft Ad-Aware *Disabled* {D8E2FCF1-08D5-B2AA-8EF8-8BDC523B58BC}
SP: Kaspersky Internet Security *Enabled/Updated* {7870DE5B-6DF1-4BEF-ED3D-55AD9712D958}
SP: Lavasoft Ad-Aware *Disabled/Updated* {5BB89C30-6480-BC7C-9F17-199BD76F557A}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((((((((((((( Weitere Löschungen ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\programdata\Roaming
.
.
((((((((((((((((((((((( Dateien erstellt von 2013-05-14 bis 2013-06-14 ))))))))))))))))))))))))))))))
.
.
2013-06-14 17:47 . 2013-06-14 17:47 -------- d-----w- c:\users\Default\AppData\Local\temp
2013-06-14 17:47 . 2013-06-14 17:47 -------- d-----w- c:\users\Administrator\AppData\Local\temp
2013-06-14 11:08 . 2013-04-17 07:02 1230336 ----a-w- c:\windows\SysWow64\WindowsCodecs.dll
2013-06-14 11:08 . 2013-04-17 06:24 1424384 ----a-w- c:\windows\system32\WindowsCodecs.dll
2013-06-13 21:15 . 2012-08-24 18:13 154480 ----a-w- c:\windows\system32\drivers\ksecpkg.sys
2013-06-13 21:15 . 2012-08-24 18:09 458712 ----a-w- c:\windows\system32\drivers\cng.sys
2013-06-13 21:15 . 2012-08-24 18:05 340992 ----a-w- c:\windows\system32\schannel.dll
2013-06-13 21:15 . 2012-08-24 18:03 1448448 ----a-w- c:\windows\system32\lsasrv.dll
2013-06-13 21:15 . 2012-08-24 16:57 247808 ----a-w- c:\windows\SysWow64\schannel.dll
2013-06-13 21:15 . 2012-08-24 16:57 22016 ----a-w- c:\windows\SysWow64\secur32.dll
2013-06-13 21:15 . 2012-08-24 16:53 96768 ----a-w- c:\windows\SysWow64\sspicli.dll
2013-06-13 21:15 . 2012-05-04 11:00 366592 ----a-w- c:\windows\system32\qdvd.dll
2013-06-13 21:15 . 2012-05-04 09:59 514560 ----a-w- c:\windows\SysWow64\qdvd.dll
2013-06-13 21:04 . 2013-06-13 21:05 -------- d-----w- c:\windows\SysWow64\NV
2013-06-13 21:04 . 2013-06-13 21:04 -------- d-----w- c:\windows\system32\NV
2013-06-13 21:01 . 2000-01-01 00:00 62784 ----a-w- c:\windows\system32\drivers\HECIx64.sys
2013-06-13 20:59 . 2013-06-13 20:59 -------- d-----w- c:\windows\system32\SRSLabs
2013-06-13 20:53 . 2013-06-13 20:53 -------- d-----w- C:\Intel
2013-06-13 20:52 . 2000-01-01 00:00 175104 ----a-w- c:\windows\system32\gfxSrvc.dll
2013-06-13 20:49 . 2013-06-13 21:04 -------- d-----w- c:\programdata\NVIDIA
2013-06-13 20:49 . 2013-06-13 20:49 -------- d-----w- c:\users\UpdatusUser.Eugen-PC
2013-06-13 20:49 . 2013-06-13 20:49 -------- d-----w- c:\program files (x86)\AGEIA Technologies
2013-06-13 20:48 . 2013-03-15 04:16 3477280 ----a-w- c:\windows\system32\nvsvc64.dll
2013-06-13 20:48 . 2013-03-15 04:16 6398240 ----a-w- c:\windows\system32\nvcpl.dll
2013-06-13 20:48 . 2013-03-15 04:16 877856 ----a-w- c:\windows\system32\nvvsvc.exe
2013-06-13 20:48 . 2013-03-15 04:16 76064 ----a-w- c:\windows\system32\nv3dappshextr.dll
2013-06-13 20:48 . 2013-03-15 04:16 63776 ----a-w- c:\windows\system32\nvshext.dll
2013-06-13 20:48 . 2013-03-15 04:16 2555680 ----a-w- c:\windows\system32\nvsvcr.dll
2013-06-13 20:48 . 2013-03-15 04:16 237856 ----a-w- c:\windows\system32\nvmctray.dll
2013-06-13 20:48 . 2013-03-15 04:16 1016096 ----a-w- c:\windows\system32\nv3dappshext.dll
2013-06-13 20:48 . 2013-03-13 16:24 3065455 ----a-w- c:\windows\system32\nvcoproc.bin
2013-06-13 20:46 . 2013-06-13 20:46 -------- d-----w- c:\programdata\NVIDIA Corporation
2013-06-13 20:25 . 2013-06-14 15:08 16152 ----a-w- c:\windows\system32\drivers\SWDUMon.sys
2013-06-13 20:25 . 2013-06-13 20:25 -------- d-----w- c:\users\Eugen\AppData\Local\SlimWare Utilities Inc
2013-06-13 20:25 . 2013-06-13 20:25 -------- d-----w- c:\program files (x86)\SlimDrivers
2013-06-13 17:33 . 2013-06-13 17:33 9728 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-06-13 16:47 . 2013-02-12 04:12 19968 ----a-w- c:\windows\system32\drivers\usb8023.sys
2013-06-13 16:47 . 2013-04-10 03:30 3153920 ----a-w- c:\windows\system32\win32k.sys
2013-06-13 16:47 . 2013-03-19 05:53 48640 ----a-w- c:\windows\system32\wwanprotdim.dll
2013-06-13 16:47 . 2013-03-19 05:53 230400 ----a-w- c:\windows\system32\wwansvc.dll
2013-06-13 16:47 . 2013-02-27 05:52 14172672 ----a-w- c:\windows\system32\shell32.dll
2013-06-13 16:47 . 2013-02-27 05:52 197120 ----a-w- c:\windows\system32\shdocvw.dll
2013-06-13 16:47 . 2013-02-27 05:48 1930752 ----a-w- c:\windows\system32\authui.dll
2013-06-13 16:47 . 2013-02-27 06:02 111448 ----a-w- c:\windows\system32\consent.exe
2013-06-13 16:47 . 2013-02-27 05:47 70144 ----a-w- c:\windows\system32\appinfo.dll
2013-06-13 16:47 . 2013-02-27 04:49 1796096 ----a-w- c:\windows\SysWow64\authui.dll
2013-06-11 10:45 . 2013-06-11 10:45 51496 ----a-w- c:\windows\system32\drivers\stflt.sys
2013-06-11 10:45 . 2013-06-13 16:06 -------- d-----w- c:\program files (x86)\Spyware Terminator
2013-06-06 18:15 . 2013-06-06 18:19 -------- d-----w- c:\programdata\NFS Underground
2013-05-31 13:19 . 2013-05-31 13:19 -------- d-----w- c:\users\Eugen\AppData\Roaming\OpenOffice.org
2013-05-31 13:16 . 2013-05-31 13:16 -------- d-----w- c:\program files (x86)\OpenOffice.org 3
2013-05-31 08:55 . 2013-05-31 08:56 -------- d-----w- c:\program files (x86)\Google
2013-05-29 22:38 . 2013-05-29 22:38 -------- d-----w- c:\windows\SysWow64\SysInfo
2013-05-23 15:22 . 2013-05-23 15:22 -------- d-----w- c:\program files (x86)\Common Files\Skype
2013-05-23 14:33 . 2013-05-23 14:33 -------- d-----w- c:\program files (x86)\TeamViewer
2013-05-16 20:20 . 2013-05-16 20:20 -------- d-----w- c:\users\Eugen\neu music
2013-05-16 17:52 . 2013-05-16 17:52 -------- d-----w- C:\Programs
.
.
.
(((((((((((((((((((((((((((((((((((( Find3M Bericht ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-06-11 19:21 . 2012-12-27 12:13 71048 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-06-11 19:21 . 2012-12-27 12:13 692104 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2013-06-11 19:21 . 2013-05-15 17:21 8610696 ----a-w- c:\windows\SysWow64\FlashPlayerInstaller.exe
2013-06-02 15:11 . 2012-10-03 16:32 75825640 ----a-w- c:\windows\system32\MRT.exe
2013-05-14 11:26 . 2013-05-14 11:27 95648 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll
2013-05-14 11:26 . 2012-10-09 16:13 866720 ----a-w- c:\windows\SysWow64\npDeployJava1.dll
2013-05-14 11:26 . 2012-10-09 16:13 788896 ----a-w- c:\windows\SysWow64\deployJava1.dll
2013-05-10 17:35 . 2011-03-28 09:36 22240 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2013-04-24 11:23 . 2012-11-23 14:24 620128 ----a-w- c:\windows\system32\drivers\klif.sys
2013-04-24 11:23 . 2012-08-13 15:49 178448 ----a-w- c:\windows\system32\drivers\kneps.sys
2013-04-24 11:23 . 2012-06-08 10:38 55056 ----a-w- c:\windows\system32\drivers\kltdi.sys
2013-04-24 11:23 . 2012-11-23 14:24 90208 ----a-w- c:\windows\system32\drivers\klflt.sys
2013-04-13 05:49 . 2013-06-13 16:46 135168 ----a-w- c:\windows\apppatch\AppPatch64\AcXtrnal.dll
2013-04-13 05:49 . 2013-06-13 16:46 350208 ----a-w- c:\windows\apppatch\AppPatch64\AcLayers.dll
2013-04-13 05:49 . 2013-06-13 16:46 308736 ----a-w- c:\windows\apppatch\AppPatch64\AcGenral.dll
2013-04-13 05:49 . 2013-06-13 16:46 111104 ----a-w- c:\windows\apppatch\AppPatch64\acspecfc.dll
2013-04-13 04:45 . 2013-06-13 16:46 474624 ----a-w- c:\windows\apppatch\AcSpecfc.dll
2013-04-13 04:45 . 2013-06-13 16:46 2176512 ----a-w- c:\windows\apppatch\AcGenral.dll
2013-04-11 15:03 . 2013-04-11 14:05 963488 ----a-w- c:\windows\system32\deployJava1.dll
2013-04-11 15:03 . 2013-04-11 14:05 1085344 ----a-w- c:\windows\system32\npDeployJava1.dll
2013-04-11 09:06 . 2013-04-08 21:12 39504 ----a-w- c:\windows\system32\drivers\gfiark.sys
2013-04-08 18:54 . 2013-04-08 18:54 14456 ----a-w- c:\windows\system32\drivers\gfibto.sys
2013-04-04 12:50 . 2013-04-09 15:27 25928 ----a-w- c:\windows\system32\drivers\mbam.sys
2013-03-19 06:04 . 2013-04-11 12:02 5550424 ----a-w- c:\windows\system32\ntoskrnl.exe
2013-03-19 05:46 . 2013-04-11 12:02 43520 ----a-w- c:\windows\system32\csrsrv.dll
2013-03-19 05:04 . 2013-04-11 12:02 3968856 ----a-w- c:\windows\SysWow64\ntkrnlpa.exe
2013-03-19 05:04 . 2013-04-11 12:02 3913560 ----a-w- c:\windows\SysWow64\ntoskrnl.exe
2013-03-19 04:47 . 2013-04-11 12:02 6656 ----a-w- c:\windows\SysWow64\apisetschema.dll
2013-03-19 03:06 . 2013-04-11 12:02 112640 ----a-w- c:\windows\system32\smss.exe
.
.
(((((((((((((((((((((((((((( Autostartpunkte der Registrierung ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\~\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}]
2013-01-28 14:49 281760 ----a-w- c:\program files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2012-11-13 23:32 129272 ----a-w- c:\users\Eugen\AppData\Roaming\Dropbox\bin\DropboxExt.17.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2012-11-13 23:32 129272 ----a-w- c:\users\Eugen\AppData\Roaming\Dropbox\bin\DropboxExt.17.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2012-11-13 23:32 129272 ----a-w- c:\users\Eugen\AppData\Roaming\Dropbox\bin\DropboxExt.17.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"AVP"="c:\program files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe" [2012-11-23 356376]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2013-03-12 253816]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
"EnableSecureUIAPath"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
"AppInit_DLLs"=c:\windows\SysWOW64\nvinit.dll c:\windows\SysWOW64\nvinit.dll
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ \0
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ad-Aware Service]
@="Ad-Aware Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MSIServer]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SBAMSvc]
@="Service"
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe"
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus]
"DisableMonitoring"=dword:00000001
.
R2 BstHdAndroidSvc;BlueStacks Android Service;c:\program files (x86)\BlueStacks\HD-Service.exe BstHdAndroidSvc Android;c:\program files (x86)\BlueStacks\HD-Service.exe BstHdAndroidSvc Android [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 ZeroConfigService;Intel(R) PROSet/Wireless Zero Configuration Service;c:\program files\Intel\WiFi\bin\ZeroConfigService.exe;c:\program files\Intel\WiFi\bin\ZeroConfigService.exe [x]
R3 AMPPALP;Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed Protocol;c:\windows\system32\DRIVERS\amppal.sys;c:\windows\SYSNATIVE\DRIVERS\amppal.sys [x]
R3 androidusb;SAMSUNG Android Composite ADB Interface Driver;c:\windows\system32\Drivers\ssadadb.sys;c:\windows\SYSNATIVE\Drivers\ssadadb.sys [x]
R3 EagleX64;EagleX64;c:\windows\system32\drivers\EagleX64.sys;c:\windows\SYSNATIVE\drivers\EagleX64.sys [x]
R3 gfiark;gfiark;c:\windows\system32\drivers\gfiark.sys;c:\windows\SYSNATIVE\drivers\gfiark.sys [x]
R3 intaud_WaveExtensible;Intel WiDi Audio Device;c:\windows\system32\drivers\intelaud.sys;c:\windows\SYSNATIVE\drivers\intelaud.sys [x]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys;c:\windows\SYSNATIVE\drivers\mbam.sys [x]
R3 MyWiFiDHCPDNS;Wireless PAN DHCP Server;c:\program files\Intel\WiFi\bin\PanDhcpDns.exe;c:\program files\Intel\WiFi\bin\PanDhcpDns.exe [x]
R3 ose64;Office 64 Source Engine;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM);c:\windows\system32\DRIVERS\ssadbus.sys;c:\windows\SYSNATIVE\DRIVERS\ssadbus.sys [x]
R3 ssadmdfl;SAMSUNG Android USB Modem (Filter);c:\windows\system32\DRIVERS\ssadmdfl.sys;c:\windows\SYSNATIVE\DRIVERS\ssadmdfl.sys [x]
R3 ssadmdm;SAMSUNG Android USB Modem Drivers;c:\windows\system32\DRIVERS\ssadmdm.sys;c:\windows\SYSNATIVE\DRIVERS\ssadmdm.sys [x]
R3 ssadserd;SAMSUNG Android USB Diagnostic Serial Port (WDM);c:\windows\system32\DRIVERS\ssadserd.sys;c:\windows\SYSNATIVE\DRIVERS\ssadserd.sys [x]
R3 SWDUMon;SWDUMon;c:\windows\system32\DRIVERS\SWDUMon.sys;c:\windows\SYSNATIVE\DRIVERS\SWDUMon.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
R4 MBAMScheduler;MBAMScheduler;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [x]
R4 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [x]
R4 SBAMSvc;Ad-Aware;c:\program files (x86)\Ad-Aware Antivirus\SBAMSvc.exe;c:\program files (x86)\Ad-Aware Antivirus\SBAMSvc.exe [x]
R4 Skype C2C Service;Skype C2C Service;c:\programdata\Skype\Toolbars\Skype C2C Service\c2c_service.exe;c:\programdata\Skype\Toolbars\Skype C2C Service\c2c_service.exe [x]
R4 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R4 TeamViewer8;TeamViewer 8;c:\program files (x86)\TeamViewer\Version8\TeamViewer_Service.exe;c:\program files (x86)\TeamViewer\Version8\TeamViewer_Service.exe [x]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe;c:\program files\Windows Live\Mesh\wlcrasvc.exe [x]
S0 gfibto;gfibto;c:\windows\system32\drivers\gfibto.sys;c:\windows\SYSNATIVE\drivers\gfibto.sys [x]
S0 iusb3hcs;Intel(R) USB 3.0 Host Controller Switch Driver;c:\windows\system32\DRIVERS\iusb3hcs.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3hcs.sys [x]
S0 nvpciflt;nvpciflt;c:\windows\system32\DRIVERS\nvpciflt.sys;c:\windows\SYSNATIVE\DRIVERS\nvpciflt.sys [x]
S1 KLIM6;Kaspersky Anti-Virus NDIS 6 Filter;c:\windows\system32\DRIVERS\klim6.sys;c:\windows\SYSNATIVE\DRIVERS\klim6.sys [x]
S1 kltdi;kltdi;c:\windows\system32\DRIVERS\kltdi.sys;c:\windows\SYSNATIVE\DRIVERS\kltdi.sys [x]
S1 kneps;kneps;c:\windows\system32\DRIVERS\kneps.sys;c:\windows\SYSNATIVE\DRIVERS\kneps.sys [x]
S1 SABI;SAMSUNG Kernel Driver For Windows 7;c:\windows\system32\Drivers\SABI.sys;c:\windows\SYSNATIVE\Drivers\SABI.sys [x]
S2 Ad-Aware Service;Ad-Aware Service;c:\program files (x86)\Ad-Aware Antivirus\AdAwareService.exe;c:\program files (x86)\Ad-Aware Antivirus\AdAwareService.exe [x]
S2 AMPPALR3;Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed Service;c:\program files\Intel\BluetoothHS\BTHSAmpPalService.exe;c:\program files\Intel\BluetoothHS\BTHSAmpPalService.exe [x]
S2 Bluetooth Device Monitor;Bluetooth Device Monitor;c:\program files (x86)\Intel\Bluetooth\devmonsrv.exe;c:\program files (x86)\Intel\Bluetooth\devmonsrv.exe [x]
S2 Bluetooth OBEX Service;Bluetooth OBEX Service;c:\program files (x86)\Intel\Bluetooth\obexsrv.exe;c:\program files (x86)\Intel\Bluetooth\obexsrv.exe [x]
S2 BstHdDrv;BlueStacks Hypervisor;c:\program files (x86)\BlueStacks\HD-Hypervisor-amd64.sys;c:\program files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [x]
S2 BstHdLogRotatorSvc;BlueStacks Log Rotator Service;c:\program files (x86)\BlueStacks\HD-LogRotatorService.exe;c:\program files (x86)\BlueStacks\HD-LogRotatorService.exe [x]
S2 BTHSSecurityMgr;Intel(R) Centrino(R) Wireless Bluetooth(R) 3.0 + High Speed Security Service;c:\program files\Intel\BluetoothHS\BTHSSecurityMgr.exe;c:\program files\Intel\BluetoothHS\BTHSSecurityMgr.exe [x]
S2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;c:\program files\Intel\iCLS Client\HeciServer.exe;c:\program files\Intel\iCLS Client\HeciServer.exe [x]
S2 Intel(R) ME Service;Intel(R) ME Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [x]
S2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [x]
S2 SamsungDeviceConfigurationWinService;SamsungDeviceConfiguration;c:\program files (x86)\Samsung\Easy Settings\SamsungDeviceConfiguration.exe;c:\program files (x86)\Samsung\Easy Settings\SamsungDeviceConfiguration.exe [x]
S2 sbapifs;sbapifs;c:\windows\system32\DRIVERS\sbapifs.sys;c:\windows\SYSNATIVE\DRIVERS\sbapifs.sys [x]
S2 SGDrv;SGDrv;c:\windows\system32\DRIVERS\SGdrv64.sys;c:\windows\SYSNATIVE\DRIVERS\SGdrv64.sys [x]
S2 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [x]
S3 AMPPAL;Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed Virtual Adapter;c:\windows\system32\DRIVERS\AMPPAL.sys;c:\windows\SYSNATIVE\DRIVERS\AMPPAL.sys [x]
S3 Apowersoft_AudioDevice;Apowersoft_AudioDevice;c:\windows\system32\drivers\Apowersoft_AudioDevice.sys;c:\windows\SYSNATIVE\drivers\Apowersoft_AudioDevice.sys [x]
S3 Bluetooth Media Service;Bluetooth Media Service;c:\program files (x86)\Intel\Bluetooth\mediasrv.exe;c:\program files (x86)\Intel\Bluetooth\mediasrv.exe [x]
S3 btmaux;Intel Bluetooth Auxiliary Service;c:\windows\system32\DRIVERS\btmaux.sys;c:\windows\SYSNATIVE\DRIVERS\btmaux.sys [x]
S3 btmhsf;btmhsf;c:\windows\system32\DRIVERS\btmhsf.sys;c:\windows\SYSNATIVE\DRIVERS\btmhsf.sys [x]
S3 clwvd;CyberLink WebCam Virtual Driver;c:\windows\system32\DRIVERS\clwvd.sys;c:\windows\SYSNATIVE\DRIVERS\clwvd.sys [x]
S3 ibtfltcoex;ibtfltcoex;c:\windows\system32\DRIVERS\iBtFltCoex.sys;c:\windows\SYSNATIVE\DRIVERS\iBtFltCoex.sys [x]
S3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS;c:\program files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe;c:\program files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [x]
S3 IntcDAud;Intel(R) Display-Audio;c:\windows\system32\DRIVERS\IntcDAud.sys;c:\windows\SYSNATIVE\DRIVERS\IntcDAud.sys [x]
S3 iusb3hub;Intel(R) USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\iusb3hub.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3hub.sys [x]
S3 iusb3xhc;Intel(R) USB 3.0 eXtensible Host Controller Driver;c:\windows\system32\DRIVERS\iusb3xhc.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3xhc.sys [x]
S3 iwdbus;IWD Bus Enumerator;c:\windows\system32\DRIVERS\iwdbus.sys;c:\windows\SYSNATIVE\DRIVERS\iwdbus.sys [x]
S3 klkbdflt;Kaspersky Lab KLKBDFLT;c:\windows\system32\DRIVERS\klkbdflt.sys;c:\windows\SYSNATIVE\DRIVERS\klkbdflt.sys [x]
S3 klmouflt;Kaspersky Lab KLMOUFLT;c:\windows\system32\DRIVERS\klmouflt.sys;c:\windows\SYSNATIVE\DRIVERS\klmouflt.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
.
.
Inhalt des "geplante Tasks" Ordners
.
2013-06-14 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-12-27 19:21]
.
2013-06-13 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1236569144-611998795-838250545-1001Core.job
- c:\users\Eugen\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-10-12 20:05]
.
2013-06-14 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1236569144-611998795-838250545-1001UA.job
- c:\users\Eugen\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-10-12 20:05]
.
2013-06-14 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-05-31 08:55]
.
2013-06-14 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-05-31 08:55]
.
2013-06-14 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1236569144-611998795-838250545-1001Core.job
- c:\users\Eugen\AppData\Local\Google\Update\GoogleUpdate.exe [2013-04-09 14:40]
.
2013-06-14 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1236569144-611998795-838250545-1001UA.job
- c:\users\Eugen\AppData\Local\Google\Update\GoogleUpdate.exe [2013-04-09 14:40]
.
2012-09-30 c:\windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job
- c:\program files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [2011-11-25 04:41]
.
2013-06-14 c:\windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job
- c:\program files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [2011-11-25 04:41]
.
2013-06-14 c:\windows\Tasks\SlimDrivers Startup.job
- c:\program files (x86)\SlimDrivers\SlimDrivers.exe [2013-06-07 07:01]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}]
2013-01-28 14:49 342176 ----a-w- c:\program files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2012-11-13 23:32 162552 ----a-w- c:\users\Eugen\AppData\Roaming\Dropbox\bin\DropboxExt64.17.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2012-11-13 23:32 162552 ----a-w- c:\users\Eugen\AppData\Roaming\Dropbox\bin\DropboxExt64.17.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2012-11-13 23:32 162552 ----a-w- c:\users\Eugen\AppData\Roaming\Dropbox\bin\DropboxExt64.17.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4]
@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
2012-11-13 23:32 162552 ----a-w- c:\users\Eugen\AppData\Roaming\Dropbox\bin\DropboxExt64.17.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2000-01-01 13260944]
"BTMTrayAgent"="c:\program files (x86)\Intel\Bluetooth\btmshell.dll" [2012-02-21 11406608]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2000-01-01 172016]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2000-01-01 399856]
"Persistence"="c:\windows\system32\igfxpers.exe" [2000-01-01 441840]
"RtHDVBg"="c:\program files\Realtek\Audio\HDA\RAVBg64.exe" [2000-01-01 1253520]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=c:\windows\System32\nvinitx.dll
.
------- Zusätzlicher Suchlauf -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = about:blank
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride = <local>
IE: An OneNote s&enden - c:\progra~1\MICROS~2\Office14\ONBttnIE.dll/105
IE: Free YouTube Download - c:\program files (x86)\Common Files\DVDVideoSoft\plugins\freeytvdownloader.htm
IE: Free YouTube to MP3 Converter - c:\program files (x86)\Common Files\DVDVideoSoft\plugins\freeytmp3downloader.htm
IE: Nach Microsoft E&xcel exportieren - c:\progra~1\MICROS~2\Office14\EXCEL.EXE/3000
IE: {{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - c:\program files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll
TCP: DhcpNameServer = 129.143.2.1 129.143.2.4
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
URLSearchHooks-{0027da2d-c9f2-4b0b-ae05-e2cd1bdb6cff} - (no file)
Toolbar-Locked - (no file)
HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start
Toolbar-Locked - (no file)
HKLM-Run-SynTPEnh - c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe
AddRemove-adawaretb - c:\program files (x86)\adawaretb\uninstall.exe
AddRemove-bwincomPoker - c:\programs\bwincom\bwincomPoker\Uninstall\Setup.exe
AddRemove-TDM-GCC - c:\mingw32\__installer\tdm-gcc-4.7.1-2
.
.
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\BlueStacks]
"SymbolicLinkValue"=hex(6):5c,00,52,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
00,5c,00,4d,00,61,00,63,00,68,00,69,00,6e,00,65,00,5c,00,53,00,6f,00,66,00,\
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_224_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_224_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_224_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_224_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Nico Mak Computing\WinZip]
"SymbolicLinkValue"=hex(6):5c,00,52,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
00,5c,00,4d,00,41,00,43,00,48,00,49,00,4e,00,45,00,5c,00,53,00,6f,00,66,00,\
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Zeit der Fertigstellung: 2013-06-14 19:58:10
ComboFix-quarantined-files.txt 2013-06-14 17:58
.
Vor Suchlauf: 16 Verzeichnis(se), 851.057.655.808 Bytes frei
Nach Suchlauf: 21 Verzeichnis(se), 852.302.241.792 Bytes frei
.
- - End Of File - - 513BAD1BD4C276F2A6D0BBD6C7C729C2
D41D8CD98F00B204E9800998ECF8427E
Das mit den Treibern hat geholfen. Nun keine Internetprobleme. Klasse Danke ;-) |
|
15.06.2013, 13:31
| #12 |
| /// Malware-holic | Online Smile v13.4.24 lässt sich nicht entfernen. hi, poste mal alle Malwarebytes logs mit funden, danach Programm updaten, vollständiger Scan und Log posten. http://www.trojaner-board.de/125889-...en-posten.html
__________________ -Verdächtige mails bitte an uns zur Analyse weiterleiten: markusg.trojaner-board@web.de Weiterleiten Anleitung: http://markusg.trojaner-board.de Mails bitte vorerst nach obiger Anleitung an markusg.trojaner-board@web.de Weiterleiten Wenn Ihr uns unterstützen möchtet |
|
15.06.2013, 15:31
| #13 |
| | Online Smile v13.4.24 lässt sich nicht entfernen. Es sind 19 logs.... Soll ich sie als Anhang oder jeden einzelnen log als code posten? |
|
15.06.2013, 15:32
| #14 |
| /// Malware-holic | Online Smile v13.4.24 lässt sich nicht entfernen. die mit funden posten, also reinkopieren
__________________ -Verdächtige mails bitte an uns zur Analyse weiterleiten: markusg.trojaner-board@web.de Weiterleiten Anleitung: http://markusg.trojaner-board.de Mails bitte vorerst nach obiger Anleitung an markusg.trojaner-board@web.de Weiterleiten Wenn Ihr uns unterstützen möchtet |
|
15.06.2013, 16:51
| #15 |
| | Online Smile v13.4.24 lässt sich nicht entfernen.Code:
ATTFilter Malwarebytes Anti-Malware 1.75.0.1300 www.malwarebytes.org Datenbank Version: v2013.04.23.02 Windows 7 Service Pack 1 x64 NTFS Internet Explorer 9.0.8112.16421 Eugen :: EUGEN-PC [Administrator] 24.04.2013 12:44:16 mbam-log-2013-04-24 (12-44-16).txt Art des Suchlaufs: Quick-Scan Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM Deaktivierte Suchlaufeinstellungen: P2P Durchsuchte Objekte: 260761 Laufzeit: 9 Minute(n), 33 Sekunde(n) Infizierte Speicherprozesse: 0 (Keine bösartigen Objekte gefunden) Infizierte Speichermodule: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungsschlüssel: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungswerte: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateiobjekte der Registrierung: 0 (Keine bösartigen Objekte gefunden) Infizierte Verzeichnisse: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateien: 1 C:\Users\Eugen\Downloads\ConnectifyHotspotInstaller.exe (Trojan.Agent.ED) -> Erfolgreich gelöscht und in Quarantäne gestellt. (Ende) Code:
ATTFilter 2013/04/09 17:28:17 +0200 EUGEN-PC Eugen MESSAGE Executing scheduled update: Daily
2013/04/09 17:28:22 +0200 EUGEN-PC Eugen MESSAGE Starting protection
2013/04/09 17:28:22 +0200 EUGEN-PC Eugen MESSAGE Protection started successfully
2013/04/09 17:28:22 +0200 EUGEN-PC Eugen MESSAGE Starting IP protection
2013/04/09 17:28:24 +0200 EUGEN-PC Eugen MESSAGE IP Protection started successfully
2013/04/09 17:28:28 +0200 EUGEN-PC Eugen MESSAGE Starting database refresh
2013/04/09 17:28:28 +0200 EUGEN-PC Eugen MESSAGE Scheduled update executed successfully: database updated from version v2012.12.14.11 to version v2013.04.09.06
2013/04/09 17:28:28 +0200 EUGEN-PC Eugen MESSAGE Stopping IP protection
2013/04/09 17:28:29 +0200 EUGEN-PC Eugen MESSAGE IP Protection stopped successfully
2013/04/09 17:28:32 +0200 EUGEN-PC Eugen MESSAGE Database refreshed successfully
2013/04/09 17:28:32 +0200 EUGEN-PC Eugen MESSAGE Starting IP protection
2013/04/09 17:28:43 +0200 EUGEN-PC Eugen MESSAGE IP Protection started successfully
2013/04/09 17:51:56 +0200 EUGEN-PC Eugen MESSAGE Stopping protection
2013/04/09 17:51:56 +0200 EUGEN-PC Eugen MESSAGE Protection stopped successfully
2013/04/09 17:51:56 +0200 EUGEN-PC Eugen MESSAGE Stopping IP protection
2013/04/09 17:51:59 +0200 EUGEN-PC Eugen MESSAGE IP Protection stopped successfully
2013/04/09 17:51:59 +0200 EUGEN-PC Eugen MESSAGE Protection stopped
2013/04/09 22:21:22 +0200 EUGEN-PC Eugen MESSAGE Starting protection
2013/04/09 22:21:22 +0200 EUGEN-PC Eugen MESSAGE Protection started successfully
2013/04/09 22:21:22 +0200 EUGEN-PC Eugen MESSAGE Starting IP protection
2013/04/09 22:22:01 +0200 EUGEN-PC Eugen MESSAGE IP Protection started successfully
2013/04/09 22:30:07 +0200 EUGEN-PC Eugen IP-BLOCK 109.163.227.110 (Type: outgoing, Port: 50781, Process: avp.exe)
2013/04/09 23:00:27 +0200 EUGEN-PC Eugen IP-BLOCK 109.163.229.158 (Type: outgoing, Port: 54962, Process: avp.exe)
2013/04/09 23:00:43 +0200 EUGEN-PC Eugen IP-BLOCK 199.80.55.135 (Type: outgoing, Port: 55024, Process: avp.exe)
2013/04/09 23:00:43 +0200 EUGEN-PC Eugen IP-BLOCK 199.80.55.134 (Type: outgoing, Port: 55026, Process: avp.exe)
2013/04/09 23:00:43 +0200 EUGEN-PC Eugen IP-BLOCK 199.80.55.138 (Type: outgoing, Port: 55028, Process: avp.exe)
2013/04/09 23:04:45 +0200 EUGEN-PC Eugen MESSAGE Starting protection
2013/04/09 23:04:45 +0200 EUGEN-PC Eugen MESSAGE Protection started successfully
2013/04/09 23:04:45 +0200 EUGEN-PC Eugen MESSAGE Starting IP protection
2013/04/09 23:05:21 +0200 EUGEN-PC Eugen MESSAGE IP Protection started successfully
2013/04/09 23:12:27 +0200 EUGEN-PC Eugen IP-BLOCK 37.221.167.111 (Type: outgoing, Port: 50151, Process: avp.exe)
2013/04/09 23:12:27 +0200 EUGEN-PC Eugen IP-BLOCK 37.221.167.111 (Type: outgoing, Port: 50153, Process: avp.exe)
2013/04/09 23:12:27 +0200 EUGEN-PC Eugen IP-BLOCK 37.221.161.135 (Type: outgoing, Port: 50158, Process: avp.exe)
2013/04/09 23:12:27 +0200 EUGEN-PC Eugen IP-BLOCK 37.221.161.135 (Type: outgoing, Port: 50161, Process: avp.exe)
2013/04/09 23:13:08 +0200 EUGEN-PC Eugen IP-BLOCK 109.163.229.158 (Type: outgoing, Port: 50238, Process: avp.exe)
2013/04/09 23:13:16 +0200 EUGEN-PC Eugen IP-BLOCK 109.163.226.248 (Type: outgoing, Port: 50253, Process: avp.exe)
2013/04/09 23:13:16 +0200 EUGEN-PC Eugen IP-BLOCK 109.163.226.248 (Type: outgoing, Port: 50254, Process: avp.exe)
2013/04/09 23:13:16 +0200 EUGEN-PC Eugen IP-BLOCK 109.163.226.240 (Type: outgoing, Port: 50261, Process: avp.exe)
2013/04/09 23:13:16 +0200 EUGEN-PC Eugen IP-BLOCK 109.163.226.240 (Type: outgoing, Port: 50263, Process: avp.exe)
2013/04/09 23:13:16 +0200 EUGEN-PC Eugen IP-BLOCK 93.114.44.134 (Type: outgoing, Port: 50273, Process: avp.exe)
2013/04/09 23:13:16 +0200 EUGEN-PC Eugen IP-BLOCK 93.114.44.210 (Type: outgoing, Port: 50275, Process: avp.exe)
2013/04/09 23:13:16 +0200 EUGEN-PC Eugen IP-BLOCK 93.114.44.251 (Type: outgoing, Port: 50282, Process: avp.exe)
2013/04/09 23:13:16 +0200 EUGEN-PC Eugen IP-BLOCK 93.114.44.134 (Type: outgoing, Port: 50286, Process: avp.exe)
2013/04/09 23:13:16 +0200 EUGEN-PC Eugen IP-BLOCK 93.114.44.134 (Type: outgoing, Port: 50288, Process: avp.exe)
2013/04/09 23:13:16 +0200 EUGEN-PC Eugen IP-BLOCK 93.114.44.210 (Type: outgoing, Port: 50291, Process: avp.exe)
2013/04/09 23:13:16 +0200 EUGEN-PC Eugen IP-BLOCK 93.114.44.134 (Type: outgoing, Port: 50295, Process: avp.exe)
2013/04/09 23:13:16 +0200 EUGEN-PC Eugen IP-BLOCK 93.114.44.134 (Type: outgoing, Port: 50297, Process: avp.exe)
2013/04/09 23:13:16 +0200 EUGEN-PC Eugen IP-BLOCK 93.114.44.210 (Type: outgoing, Port: 50299, Process: avp.exe)
2013/04/09 23:13:16 +0200 EUGEN-PC Eugen IP-BLOCK 93.114.44.134 (Type: outgoing, Port: 50300, Process: avp.exe)
2013/04/09 23:13:16 +0200 EUGEN-PC Eugen IP-BLOCK 93.114.44.210 (Type: outgoing, Port: 50302, Process: avp.exe)
2013/04/09 23:13:16 +0200 EUGEN-PC Eugen IP-BLOCK 93.114.44.210 (Type: outgoing, Port: 50307, Process: avp.exe)
2013/04/09 23:13:16 +0200 EUGEN-PC Eugen IP-BLOCK 93.114.44.210 (Type: outgoing, Port: 50310, Process: avp.exe)
2013/04/09 23:13:24 +0200 EUGEN-PC Eugen IP-BLOCK 109.163.226.240 (Type: outgoing, Port: 50383, Process: avp.exe)
2013/04/09 23:13:32 +0200 EUGEN-PC Eugen IP-BLOCK 109.163.226.240 (Type: outgoing, Port: 50403, Process: avp.exe)
2013/04/09 23:13:32 +0200 EUGEN-PC Eugen IP-BLOCK 109.163.226.240 (Type: outgoing, Port: 50407, Process: avp.exe)
2013/04/09 23:13:32 +0200 EUGEN-PC Eugen IP-BLOCK 109.163.226.240 (Type: outgoing, Port: 50412, Process: avp.exe)
2013/04/09 23:13:33 +0200 EUGEN-PC Eugen IP-BLOCK 109.163.226.240 (Type: outgoing, Port: 50417, Process: avp.exe)
2013/04/09 23:13:33 +0200 EUGEN-PC Eugen IP-BLOCK 93.114.44.134 (Type: outgoing, Port: 50428, Process: avp.exe)
2013/04/09 23:13:33 +0200 EUGEN-PC Eugen IP-BLOCK 93.114.44.134 (Type: outgoing, Port: 50433, Process: avp.exe)
2013/04/09 23:13:33 +0200 EUGEN-PC Eugen IP-BLOCK 93.114.44.134 (Type: outgoing, Port: 50435, Process: avp.exe)
2013/04/09 23:13:33 +0200 EUGEN-PC Eugen IP-BLOCK 93.114.44.134 (Type: outgoing, Port: 50436, Process: avp.exe)
2013/04/09 23:13:33 +0200 EUGEN-PC Eugen IP-BLOCK 93.114.44.251 (Type: outgoing, Port: 50437, Process: avp.exe)
2013/04/09 23:13:33 +0200 EUGEN-PC Eugen IP-BLOCK 93.114.44.210 (Type: outgoing, Port: 50438, Process: avp.exe)
2013/04/09 23:13:33 +0200 EUGEN-PC Eugen IP-BLOCK 93.114.44.210 (Type: outgoing, Port: 50444, Process: avp.exe)
2013/04/09 23:13:33 +0200 EUGEN-PC Eugen IP-BLOCK 93.114.44.210 (Type: outgoing, Port: 50445, Process: avp.exe)
2013/04/09 23:13:33 +0200 EUGEN-PC Eugen IP-BLOCK 93.114.44.210 (Type: outgoing, Port: 50446, Process: avp.exe)
2013/04/09 23:13:41 +0200 EUGEN-PC Eugen IP-BLOCK 109.163.226.240 (Type: outgoing, Port: 50460, Process: avp.exe)
2013/04/09 23:13:41 +0200 EUGEN-PC Eugen IP-BLOCK 109.163.226.240 (Type: outgoing, Port: 50467, Process: avp.exe)
2013/04/09 23:13:41 +0200 EUGEN-PC Eugen IP-BLOCK 93.114.44.134 (Type: outgoing, Port: 50478, Process: avp.exe)
2013/04/09 23:13:41 +0200 EUGEN-PC Eugen IP-BLOCK 93.114.44.134 (Type: outgoing, Port: 50480, Process: avp.exe)
2013/04/09 23:13:41 +0200 EUGEN-PC Eugen IP-BLOCK 93.114.44.251 (Type: outgoing, Port: 50484, Process: avp.exe)
2013/04/09 23:13:41 +0200 EUGEN-PC Eugen IP-BLOCK 93.114.44.210 (Type: outgoing, Port: 50487, Process: avp.exe)
2013/04/09 23:13:41 +0200 EUGEN-PC Eugen IP-BLOCK 93.114.44.210 (Type: outgoing, Port: 50488, Process: avp.exe)
2013/04/09 23:13:41 +0200 EUGEN-PC Eugen IP-BLOCK 109.163.226.240 (Type: outgoing, Port: 50501, Process: avp.exe)
2013/04/09 23:13:41 +0200 EUGEN-PC Eugen IP-BLOCK 109.163.226.240 (Type: outgoing, Port: 50505, Process: avp.exe)
2013/04/09 23:13:41 +0200 EUGEN-PC Eugen IP-BLOCK 93.114.44.251 (Type: outgoing, Port: 50513, Process: avp.exe)
2013/04/09 23:13:49 +0200 EUGEN-PC Eugen IP-BLOCK 109.163.226.240 (Type: outgoing, Port: 50518, Process: avp.exe)
2013/04/09 23:14:05 +0200 EUGEN-PC Eugen IP-BLOCK 109.163.226.240 (Type: outgoing, Port: 50601, Process: avp.exe)
2013/04/09 23:14:13 +0200 EUGEN-PC Eugen IP-BLOCK 93.114.44.251 (Type: outgoing, Port: 50607, Process: avp.exe)
2013/04/09 23:14:14 +0200 EUGEN-PC Eugen IP-BLOCK 109.163.226.240 (Type: outgoing, Port: 50609, Process: avp.exe)
2013/04/09 23:14:14 +0200 EUGEN-PC Eugen IP-BLOCK 109.163.226.240 (Type: outgoing, Port: 50614, Process: avp.exe)
2013/04/09 23:14:14 +0200 EUGEN-PC Eugen IP-BLOCK 93.114.44.251 (Type: outgoing, Port: 50620, Process: avp.exe)
2013/04/09 23:14:14 +0200 EUGEN-PC Eugen IP-BLOCK 109.163.226.240 (Type: outgoing, Port: 50623, Process: avp.exe)
2013/04/09 23:14:14 +0200 EUGEN-PC Eugen IP-BLOCK 109.163.226.240 (Type: outgoing, Port: 50628, Process: avp.exe)
2013/04/09 23:14:14 +0200 EUGEN-PC Eugen IP-BLOCK 93.114.44.134 (Type: outgoing, Port: 50636, Process: avp.exe)
2013/04/09 23:14:14 +0200 EUGEN-PC Eugen IP-BLOCK 93.114.44.251 (Type: outgoing, Port: 50637, Process: avp.exe)
2013/04/09 23:14:14 +0200 EUGEN-PC Eugen IP-BLOCK 93.114.44.210 (Type: outgoing, Port: 50639, Process: avp.exe)
2013/04/09 23:14:15 +0200 EUGEN-PC Eugen IP-BLOCK 109.163.226.240 (Type: outgoing, Port: 50645, Process: avp.exe)
2013/04/09 23:14:23 +0200 EUGEN-PC Eugen IP-BLOCK 109.163.226.240 (Type: outgoing, Port: 50657, Process: avp.exe)
2013/04/09 23:14:23 +0200 EUGEN-PC Eugen IP-BLOCK 93.114.44.251 (Type: outgoing, Port: 50663, Process: avp.exe)
2013/04/09 23:14:31 +0200 EUGEN-PC Eugen IP-BLOCK 109.163.226.240 (Type: outgoing, Port: 50665, Process: avp.exe)
2013/04/09 23:14:39 +0200 EUGEN-PC Eugen IP-BLOCK 109.163.226.240 (Type: outgoing, Port: 50733, Process: avp.exe)
2013/04/09 23:14:47 +0200 EUGEN-PC Eugen IP-BLOCK 93.114.44.251 (Type: outgoing, Port: 50738, Process: avp.exe)
2013/04/09 23:14:47 +0200 EUGEN-PC Eugen IP-BLOCK 109.163.226.240 (Type: outgoing, Port: 50741, Process: avp.exe)
2013/04/09 23:14:47 +0200 EUGEN-PC Eugen IP-BLOCK 109.163.226.240 (Type: outgoing, Port: 50747, Process: avp.exe)
2013/04/09 23:14:47 +0200 EUGEN-PC Eugen IP-BLOCK 93.114.44.251 (Type: outgoing, Port: 50758, Process: avp.exe)
2013/04/09 23:14:47 +0200 EUGEN-PC Eugen IP-BLOCK 109.163.226.240 (Type: outgoing, Port: 50765, Process: avp.exe)
2013/04/09 23:15:12 +0200 EUGEN-PC Eugen IP-BLOCK 109.163.226.240 (Type: outgoing, Port: 50803, Process: avp.exe)
2013/04/09 23:15:12 +0200 EUGEN-PC Eugen IP-BLOCK 93.114.44.251 (Type: outgoing, Port: 50809, Process: avp.exe)
2013/04/09 23:15:12 +0200 EUGEN-PC Eugen IP-BLOCK 109.163.226.240 (Type: outgoing, Port: 50814, Process: avp.exe)
2013/04/09 23:15:28 +0200 EUGEN-PC Eugen IP-BLOCK 37.221.167.115 (Type: outgoing, Port: 50839, Process: avp.exe)
2013/04/09 23:15:28 +0200 EUGEN-PC Eugen IP-BLOCK 37.221.167.115 (Type: outgoing, Port: 50841, Process: avp.exe)
2013/04/09 23:15:28 +0200 EUGEN-PC Eugen IP-BLOCK 37.221.161.156 (Type: outgoing, Port: 50844, Process: avp.exe)
2013/04/09 23:15:28 +0200 EUGEN-PC Eugen IP-BLOCK 37.221.161.156 (Type: outgoing, Port: 50846, Process: avp.exe)
2013/04/09 23:15:36 +0200 EUGEN-PC Eugen IP-BLOCK 109.163.226.240 (Type: outgoing, Port: 50857, Process: avp.exe)
2013/04/09 23:15:36 +0200 EUGEN-PC Eugen IP-BLOCK 93.114.44.251 (Type: outgoing, Port: 50910, Process: avp.exe)
2013/04/09 23:15:36 +0200 EUGEN-PC Eugen IP-BLOCK 109.163.226.240 (Type: outgoing, Port: 50913, Process: avp.exe)
2013/04/09 23:15:44 +0200 EUGEN-PC Eugen IP-BLOCK 109.163.226.240 (Type: outgoing, Port: 50928, Process: avp.exe)
2013/04/09 23:15:52 +0200 EUGEN-PC Eugen IP-BLOCK 93.114.44.251 (Type: outgoing, Port: 50935, Process: avp.exe)
2013/04/09 23:15:52 +0200 EUGEN-PC Eugen IP-BLOCK 109.163.226.240 (Type: outgoing, Port: 50937, Process: avp.exe)
2013/04/09 23:15:52 +0200 EUGEN-PC Eugen IP-BLOCK 109.163.229.158 (Type: outgoing, Port: 50941, Process: avp.exe)
2013/04/09 23:15:52 +0200 EUGEN-PC Eugen IP-BLOCK 109.163.226.240 (Type: outgoing, Port: 50948, Process: avp.exe)
2013/04/09 23:15:53 +0200 EUGEN-PC Eugen IP-BLOCK 93.114.44.134 (Type: outgoing, Port: 50954, Process: avp.exe)
2013/04/09 23:15:53 +0200 EUGEN-PC Eugen IP-BLOCK 93.114.44.210 (Type: outgoing, Port: 50956, Process: avp.exe)
2013/04/09 23:15:53 +0200 EUGEN-PC Eugen IP-BLOCK 93.114.44.251 (Type: outgoing, Port: 50960, Process: avp.exe)
2013/04/09 23:16:09 +0200 EUGEN-PC Eugen IP-BLOCK 109.163.226.240 (Type: outgoing, Port: 51032, Process: avp.exe)
2013/04/09 23:16:09 +0200 EUGEN-PC Eugen IP-BLOCK 93.114.44.251 (Type: outgoing, Port: 51038, Process: avp.exe)
2013/04/09 23:16:09 +0200 EUGEN-PC Eugen IP-BLOCK 109.163.226.240 (Type: outgoing, Port: 51044, Process: avp.exe)
2013/04/09 23:16:25 +0200 EUGEN-PC Eugen IP-BLOCK 109.163.226.240 (Type: outgoing, Port: 51080, Process: avp.exe)
2013/04/09 23:16:25 +0200 EUGEN-PC Eugen IP-BLOCK 93.114.44.251 (Type: outgoing, Port: 51086, Process: avp.exe)
2013/04/09 23:16:25 +0200 EUGEN-PC Eugen IP-BLOCK 109.163.226.240 (Type: outgoing, Port: 51088, Process: avp.exe)
2013/04/09 23:18:19 +0200 EUGEN-PC Eugen IP-BLOCK 109.163.226.240 (Type: outgoing, Port: 51271, Process: avp.exe)
2013/04/09 23:18:19 +0200 EUGEN-PC Eugen IP-BLOCK 109.163.226.18 (Type: outgoing, Port: 51273, Process: avp.exe)
2013/04/09 23:18:19 +0200 EUGEN-PC Eugen IP-BLOCK 109.163.226.248 (Type: outgoing, Port: 51275, Process: avp.exe)
2013/04/09 23:38:03 +0200 EUGEN-PC Eugen IP-BLOCK 93.114.44.251 (Type: outgoing, Port: 52673, Process: avp.exe)
2013/04/09 23:38:11 +0200 EUGEN-PC Eugen IP-BLOCK 93.114.44.251 (Type: outgoing, Port: 52690, Process: avp.exe)
2013/04/09 23:38:19 +0200 EUGEN-PC Eugen IP-BLOCK 93.114.44.251 (Type: outgoing, Port: 52717, Process: avp.exe)
2013/04/09 23:38:35 +0200 EUGEN-PC Eugen IP-BLOCK 93.114.44.251 (Type: outgoing, Port: 52788, Process: avp.exe)
2013/04/09 23:38:35 +0200 EUGEN-PC Eugen IP-BLOCK 109.163.229.158 (Type: outgoing, Port: 52790, Process: avp.exe)
2013/04/09 23:38:43 +0200 EUGEN-PC Eugen IP-BLOCK 93.114.44.251 (Type: outgoing, Port: 52806, Process: avp.exe)
2013/04/09 23:38:43 +0200 EUGEN-PC Eugen IP-BLOCK 93.114.44.251 (Type: outgoing, Port: 52827, Process: avp.exe)
2013/04/09 23:40:45 +0200 EUGEN-PC Eugen IP-BLOCK 109.163.226.248 (Type: outgoing, Port: 52989, Process: avp.exe)
2013/04/09 23:40:45 +0200 EUGEN-PC Eugen IP-BLOCK 109.163.226.18 (Type: outgoing, Port: 52991, Process: avp.exe)
2013/04/09 23:40:45 +0200 EUGEN-PC Eugen IP-BLOCK 109.163.226.240 (Type: outgoing, Port: 52993, Process: avp.exe)
2013/04/09 23:42:30 +0200 EUGEN-PC Eugen IP-BLOCK 109.163.226.248 (Type: outgoing, Port: 53119, Process: avp.exe)
2013/04/09 23:42:30 +0200 EUGEN-PC Eugen IP-BLOCK 109.163.226.18 (Type: outgoing, Port: 53121, Process: avp.exe)
2013/04/09 23:42:30 +0200 EUGEN-PC Eugen IP-BLOCK 109.163.226.240 (Type: outgoing, Port: 53123, Process: avp.exe)
2013/04/09 23:42:30 +0200 EUGEN-PC Eugen IP-BLOCK 93.114.44.251 (Type: outgoing, Port: 53182, Process: avp.exe)
2013/04/09 23:42:30 +0200 EUGEN-PC Eugen IP-BLOCK 109.163.226.248 (Type: outgoing, Port: 53184, Process: avp.exe)
2013/04/09 23:42:30 +0200 EUGEN-PC Eugen IP-BLOCK 109.163.226.18 (Type: outgoing, Port: 53186, Process: avp.exe)
2013/04/09 23:42:30 +0200 EUGEN-PC Eugen IP-BLOCK 109.163.226.240 (Type: outgoing, Port: 53188, Process: avp.exe)
2013/04/09 23:42:46 +0200 EUGEN-PC Eugen IP-BLOCK 109.163.226.248 (Type: outgoing, Port: 53229, Process: avp.exe)
2013/04/09 23:42:46 +0200 EUGEN-PC Eugen IP-BLOCK 109.163.226.18 (Type: outgoing, Port: 53231, Process: avp.exe)
2013/04/09 23:42:46 +0200 EUGEN-PC Eugen IP-BLOCK 109.163.226.240 (Type: outgoing, Port: 53233, Process: avp.exe)
2013/04/09 23:42:55 +0200 EUGEN-PC Eugen IP-BLOCK 93.114.44.251 (Type: outgoing, Port: 53247, Process: avp.exe)
2013/04/09 23:42:55 +0200 EUGEN-PC Eugen IP-BLOCK 109.163.226.248 (Type: outgoing, Port: 53250, Process: avp.exe)
2013/04/09 23:42:55 +0200 EUGEN-PC Eugen IP-BLOCK 109.163.226.18 (Type: outgoing, Port: 53252, Process: avp.exe)
2013/04/09 23:42:55 +0200 EUGEN-PC Eugen IP-BLOCK 109.163.226.240 (Type: outgoing, Port: 53254, Process: avp.exe)
2013/04/09 23:43:03 +0200 EUGEN-PC Eugen IP-BLOCK 109.163.226.248 (Type: outgoing, Port: 53284, Process: avp.exe)
2013/04/09 23:43:03 +0200 EUGEN-PC Eugen IP-BLOCK 109.163.226.18 (Type: outgoing, Port: 53286, Process: avp.exe)
2013/04/09 23:43:03 +0200 EUGEN-PC Eugen IP-BLOCK 109.163.226.240 (Type: outgoing, Port: 53288, Process: avp.exe)
2013/04/09 23:43:03 +0200 EUGEN-PC Eugen IP-BLOCK 93.114.44.251 (Type: outgoing, Port: 53294, Process: avp.exe)
2013/04/09 23:43:03 +0200 EUGEN-PC Eugen IP-BLOCK 109.163.226.248 (Type: outgoing, Port: 53297, Process: avp.exe)
2013/04/09 23:43:03 +0200 EUGEN-PC Eugen IP-BLOCK 109.163.226.18 (Type: outgoing, Port: 53299, Process: avp.exe)
2013/04/09 23:43:03 +0200 EUGEN-PC Eugen IP-BLOCK 109.163.226.240 (Type: outgoing, Port: 53301, Process: avp.exe)
2013/04/09 23:43:28 +0200 EUGEN-PC Eugen IP-BLOCK 109.163.226.248 (Type: outgoing, Port: 53369, Process: avp.exe)
2013/04/09 23:43:28 +0200 EUGEN-PC Eugen IP-BLOCK 109.163.226.18 (Type: outgoing, Port: 53371, Process: avp.exe)
2013/04/09 23:43:28 +0200 EUGEN-PC Eugen IP-BLOCK 109.163.226.240 (Type: outgoing, Port: 53373, Process: avp.exe)
2013/04/09 23:43:28 +0200 EUGEN-PC Eugen IP-BLOCK 93.114.44.251 (Type: outgoing, Port: 53380, Process: avp.exe)
2013/04/09 23:43:28 +0200 EUGEN-PC Eugen IP-BLOCK 109.163.226.248 (Type: outgoing, Port: 53383, Process: avp.exe)
2013/04/09 23:43:28 +0200 EUGEN-PC Eugen IP-BLOCK 109.163.226.18 (Type: outgoing, Port: 53385, Process: avp.exe)
2013/04/09 23:43:28 +0200 EUGEN-PC Eugen IP-BLOCK 109.163.226.240 (Type: outgoing, Port: 53387, Process: avp.exe)
2013/04/09 23:45:29 +0200 EUGEN-PC Eugen IP-BLOCK 109.163.226.18 (Type: outgoing, Port: 53655, Process: avp.exe)
2013/04/09 23:45:29 +0200 EUGEN-PC Eugen IP-BLOCK 109.163.226.248 (Type: outgoing, Port: 53657, Process: avp.exe)
2013/04/09 23:45:29 +0200 EUGEN-PC Eugen IP-BLOCK 109.163.226.240 (Type: outgoing, Port: 53659, Process: avp.exe)
Code:
ATTFilter 2013/04/10 09:03:25 +0200 EUGEN-PC Eugen MESSAGE Starting protection
2013/04/10 09:03:25 +0200 EUGEN-PC Eugen MESSAGE Protection started successfully
2013/04/10 09:03:25 +0200 EUGEN-PC Eugen MESSAGE Starting IP protection
2013/04/10 09:04:06 +0200 EUGEN-PC Eugen MESSAGE IP Protection started successfully
2013/04/10 11:57:00 +0200 EUGEN-PC Eugen MESSAGE Executing scheduled update: Daily
2013/04/10 11:57:03 +0200 EUGEN-PC Eugen MESSAGE Database already up-to-date
2013/04/10 12:45:17 +0200 EUGEN-PC Eugen IP-BLOCK 37.221.167.111 (Type: outgoing, Port: 65186, Process: chrome.exe)
2013/04/10 12:45:18 +0200 EUGEN-PC Eugen IP-BLOCK 37.221.167.111 (Type: outgoing, Port: 65187, Process: chrome.exe)
2013/04/10 12:45:18 +0200 EUGEN-PC Eugen IP-BLOCK 37.221.161.156 (Type: outgoing, Port: 65191, Process: chrome.exe)
2013/04/10 12:45:18 +0200 EUGEN-PC Eugen IP-BLOCK 37.221.161.156 (Type: outgoing, Port: 65192, Process: chrome.exe)
2013/04/10 13:13:14 +0200 EUGEN-PC Eugen IP-BLOCK 37.221.167.102 (Type: outgoing, Port: 57988, Process: chrome.exe)
2013/04/10 13:13:14 +0200 EUGEN-PC Eugen IP-BLOCK 37.221.167.102 (Type: outgoing, Port: 57989, Process: chrome.exe)
2013/04/10 13:13:14 +0200 EUGEN-PC Eugen IP-BLOCK 37.221.161.132 (Type: outgoing, Port: 57992, Process: chrome.exe)
2013/04/10 13:13:14 +0200 EUGEN-PC Eugen IP-BLOCK 37.221.161.132 (Type: outgoing, Port: 57997, Process: chrome.exe)
2013/04/10 13:13:30 +0200 EUGEN-PC Eugen IP-BLOCK 109.163.229.158 (Type: outgoing, Port: 58207, Process: chrome.exe)
2013/04/10 13:13:54 +0200 EUGEN-PC Eugen IP-BLOCK 93.114.43.178 (Type: outgoing, Port: 58810, Process: chrome.exe)
2013/04/10 13:13:54 +0200 EUGEN-PC Eugen IP-BLOCK 93.114.43.178 (Type: outgoing, Port: 58812, Process: chrome.exe)
2013/04/10 13:13:54 +0200 EUGEN-PC Eugen IP-BLOCK 93.114.43.178 (Type: outgoing, Port: 58813, Process: chrome.exe)
2013/04/10 17:19:33 +0200 EUGEN-PC (null) MESSAGE Starting protection
2013/04/10 17:19:33 +0200 EUGEN-PC (null) MESSAGE Protection started successfully
2013/04/10 17:19:33 +0200 EUGEN-PC (null) MESSAGE Starting IP protection
2013/04/10 17:19:52 +0200 EUGEN-PC (null) MESSAGE IP Protection started successfully
2013/04/10 20:39:45 +0200 EUGEN-PC Eugen IP-BLOCK 109.163.227.110 (Type: outgoing, Port: 57441, Process: avp.exe)
2013/04/10 20:46:48 +0200 EUGEN-PC Eugen MESSAGE Starting protection
2013/04/10 20:46:48 +0200 EUGEN-PC Eugen MESSAGE Protection started successfully
2013/04/10 20:46:48 +0200 EUGEN-PC Eugen MESSAGE Starting IP protection
2013/04/10 20:47:08 +0200 EUGEN-PC Eugen MESSAGE IP Protection started successfully
2013/04/10 20:52:30 +0200 EUGEN-PC Eugen IP-BLOCK 80.82.64.38 (Type: outgoing, Port: 50263, Process: avp.exe)
2013/04/10 20:52:30 +0200 EUGEN-PC Eugen IP-BLOCK 80.82.64.38 (Type: outgoing, Port: 50283, Process: avp.exe)
2013/04/10 20:52:30 +0200 EUGEN-PC Eugen IP-BLOCK 80.82.64.38 (Type: outgoing, Port: 50285, Process: avp.exe)
2013/04/10 21:09:40 +0200 EUGEN-PC Eugen IP-BLOCK 80.82.64.38 (Type: outgoing, Port: 51702, Process: avp.exe)
2013/04/10 21:09:40 +0200 EUGEN-PC Eugen IP-BLOCK 80.82.64.38 (Type: outgoing, Port: 51707, Process: avp.exe)
2013/04/10 21:09:40 +0200 EUGEN-PC Eugen IP-BLOCK 80.82.64.38 (Type: outgoing, Port: 51708, Process: avp.exe)
2013/04/10 21:51:45 +0200 EUGEN-PC Eugen IP-BLOCK 80.82.64.38 (Type: outgoing, Port: 55189, Process: avp.exe)
2013/04/10 21:51:45 +0200 EUGEN-PC Eugen IP-BLOCK 80.82.64.38 (Type: outgoing, Port: 55193, Process: avp.exe)
2013/04/10 21:51:45 +0200 EUGEN-PC Eugen IP-BLOCK 193.169.104.1 (Type: outgoing, Port: 55300, Process: avp.exe)
2013/04/10 21:51:45 +0200 EUGEN-PC Eugen IP-BLOCK 193.169.104.1 (Type: outgoing, Port: 55301, Process: avp.exe)
2013/04/10 21:55:54 +0200 EUGEN-PC Eugen IP-BLOCK 80.82.64.38 (Type: outgoing, Port: 56617, Process: avp.exe)
2013/04/10 21:55:54 +0200 EUGEN-PC Eugen IP-BLOCK 80.82.64.38 (Type: outgoing, Port: 56620, Process: avp.exe)
2013/04/10 21:55:54 +0200 EUGEN-PC Eugen IP-BLOCK 193.169.104.1 (Type: outgoing, Port: 56651, Process: avp.exe)
2013/04/10 21:55:54 +0200 EUGEN-PC Eugen IP-BLOCK 193.169.104.1 (Type: outgoing, Port: 56654, Process: avp.exe)
2013/04/10 21:55:54 +0200 EUGEN-PC Eugen IP-BLOCK 193.169.104.1 (Type: outgoing, Port: 56656, Process: avp.exe)
2013/04/10 21:55:54 +0200 EUGEN-PC Eugen IP-BLOCK 193.169.104.1 (Type: outgoing, Port: 56715, Process: avp.exe)
2013/04/10 21:55:54 +0200 EUGEN-PC Eugen IP-BLOCK 193.169.104.1 (Type: outgoing, Port: 56716, Process: avp.exe)
2013/04/10 21:55:54 +0200 EUGEN-PC Eugen IP-BLOCK 193.169.104.1 (Type: outgoing, Port: 56718, Process: avp.exe)
Code:
ATTFilter 2013/04/11 13:52:53 +0200 EUGEN-PC (null) MESSAGE Starting protection
2013/04/11 13:52:53 +0200 EUGEN-PC (null) MESSAGE Protection started successfully
2013/04/11 13:52:53 +0200 EUGEN-PC (null) MESSAGE Starting IP protection
2013/04/11 13:53:12 +0200 EUGEN-PC (null) MESSAGE IP Protection started successfully
2013/04/11 14:13:50 +0200 EUGEN-PC (null) MESSAGE Starting protection
2013/04/11 14:13:50 +0200 EUGEN-PC (null) MESSAGE Protection started successfully
2013/04/11 14:13:50 +0200 EUGEN-PC (null) MESSAGE Starting IP protection
2013/04/11 14:14:09 +0200 EUGEN-PC (null) MESSAGE IP Protection started successfully
2013/04/11 14:16:38 +0200 EUGEN-PC Eugen MESSAGE Stopping protection
2013/04/11 14:16:38 +0200 EUGEN-PC Eugen MESSAGE Protection stopped successfully
2013/04/11 14:16:38 +0200 EUGEN-PC Eugen MESSAGE Stopping IP protection
2013/04/11 14:16:39 +0200 EUGEN-PC Eugen MESSAGE IP Protection stopped successfully
2013/04/11 14:16:42 +0200 EUGEN-PC Eugen MESSAGE Protection stopped
2013/04/11 15:07:36 +0200 EUGEN-PC (null) MESSAGE Starting protection
2013/04/11 15:07:36 +0200 EUGEN-PC (null) MESSAGE Protection started successfully
2013/04/11 15:07:36 +0200 EUGEN-PC (null) MESSAGE Starting IP protection
2013/04/11 15:07:57 +0200 EUGEN-PC (null) MESSAGE IP Protection started successfully
2013/04/11 15:14:49 +0200 EUGEN-PC Administrator MESSAGE Stopping protection
2013/04/11 15:14:49 +0200 EUGEN-PC Administrator MESSAGE Protection stopped successfully
2013/04/11 15:14:49 +0200 EUGEN-PC Administrator MESSAGE Stopping IP protection
2013/04/11 15:14:51 +0200 EUGEN-PC Administrator MESSAGE IP Protection stopped successfully
2013/04/11 15:14:51 +0200 EUGEN-PC Administrator MESSAGE Protection stopped
2013/04/11 16:36:46 +0200 EUGEN-PC (null) MESSAGE Starting protection
2013/04/11 16:36:46 +0200 EUGEN-PC (null) MESSAGE Protection started successfully
2013/04/11 16:36:46 +0200 EUGEN-PC (null) MESSAGE Starting IP protection
2013/04/11 16:37:06 +0200 EUGEN-PC (null) MESSAGE IP Protection started successfully
2013/04/11 17:12:27 +0200 EUGEN-PC Eugen MESSAGE Stopping protection
2013/04/11 17:12:27 +0200 EUGEN-PC Eugen MESSAGE Protection stopped successfully
2013/04/11 17:12:27 +0200 EUGEN-PC Eugen MESSAGE Stopping IP protection
2013/04/11 17:12:29 +0200 EUGEN-PC Eugen MESSAGE IP Protection stopped successfully
2013/04/11 17:12:29 +0200 EUGEN-PC Eugen MESSAGE Protection stopped
2013/04/11 19:32:58 +0200 EUGEN-PC Eugen MESSAGE Starting protection
2013/04/11 19:32:58 +0200 EUGEN-PC Eugen MESSAGE Protection started successfully
2013/04/11 19:32:58 +0200 EUGEN-PC Eugen MESSAGE Starting IP protection
2013/04/11 19:33:18 +0200 EUGEN-PC Eugen MESSAGE IP Protection started successfully
2013/04/11 20:34:06 +0200 EUGEN-PC Eugen MESSAGE Stopping IP protection
2013/04/11 20:34:08 +0200 EUGEN-PC Eugen MESSAGE IP Protection stopped successfully
2013/04/11 20:34:08 +0200 EUGEN-PC Eugen MESSAGE Protection stopped
2013/04/11 20:34:21 +0200 EUGEN-PC Eugen MESSAGE Starting protection
2013/04/11 20:34:21 +0200 EUGEN-PC Eugen MESSAGE Protection started successfully
2013/04/11 20:34:21 +0200 EUGEN-PC Eugen MESSAGE Starting IP protection
2013/04/11 20:34:30 +0200 EUGEN-PC Eugen MESSAGE IP Protection started successfully
2013/04/11 23:14:29 +0200 EUGEN-PC Eugen MESSAGE Starting database refresh
2013/04/11 23:14:30 +0200 EUGEN-PC Eugen MESSAGE Stopping IP protection
2013/04/11 23:14:31 +0200 EUGEN-PC Eugen MESSAGE IP Protection stopped successfully
2013/04/11 23:14:38 +0200 EUGEN-PC Eugen MESSAGE Database refreshed successfully
2013/04/11 23:14:38 +0200 EUGEN-PC Eugen MESSAGE Starting IP protection
2013/04/11 23:14:49 +0200 EUGEN-PC Eugen MESSAGE IP Protection started successfully
Code:
ATTFilter 2013/04/12 09:32:09 +0200 EUGEN-PC (null) MESSAGE Starting protection
2013/04/12 09:32:09 +0200 EUGEN-PC (null) MESSAGE Protection started successfully
2013/04/12 09:32:09 +0200 EUGEN-PC (null) MESSAGE Starting IP protection
2013/04/12 09:32:28 +0200 EUGEN-PC Eugen MESSAGE IP Protection started successfully
2013/04/12 11:59:09 +0200 EUGEN-PC Eugen MESSAGE Executing scheduled update: Daily
2013/04/12 11:59:16 +0200 EUGEN-PC Eugen MESSAGE Scheduled update executed successfully: database updated from version v2013.04.11.11 to version v2013.04.12.03
2013/04/12 11:59:16 +0200 EUGEN-PC Eugen MESSAGE Starting database refresh
2013/04/12 11:59:16 +0200 EUGEN-PC Eugen MESSAGE Stopping IP protection
2013/04/12 11:59:18 +0200 EUGEN-PC Eugen MESSAGE IP Protection stopped successfully
2013/04/12 11:59:20 +0200 EUGEN-PC Eugen MESSAGE Database refreshed successfully
2013/04/12 11:59:20 +0200 EUGEN-PC Eugen MESSAGE Starting IP protection
2013/04/12 11:59:32 +0200 EUGEN-PC Eugen MESSAGE IP Protection started successfully
2013/04/12 12:13:52 +0200 EUGEN-PC Eugen IP-BLOCK 37.221.167.115 (Type: outgoing, Port: 61168, Process: avp.exe)
2013/04/12 12:13:52 +0200 EUGEN-PC Eugen IP-BLOCK 37.221.167.115 (Type: outgoing, Port: 61170, Process: avp.exe)
2013/04/12 12:13:52 +0200 EUGEN-PC Eugen IP-BLOCK 37.221.161.179 (Type: outgoing, Port: 61174, Process: avp.exe)
2013/04/12 12:13:52 +0200 EUGEN-PC Eugen IP-BLOCK 37.221.161.179 (Type: outgoing, Port: 61176, Process: avp.exe)
2013/04/12 16:03:16 +0200 EUGEN-PC (null) MESSAGE Starting protection
2013/04/12 16:03:16 +0200 EUGEN-PC (null) MESSAGE Protection started successfully
2013/04/12 16:03:16 +0200 EUGEN-PC (null) MESSAGE Starting IP protection
2013/04/12 16:03:35 +0200 EUGEN-PC Eugen MESSAGE IP Protection started successfully
Code:
ATTFilter 2013/04/16 09:51:07 +0200 EUGEN-PC (null) MESSAGE Starting protection
2013/04/16 09:51:07 +0200 EUGEN-PC (null) MESSAGE Protection started successfully
2013/04/16 09:51:07 +0200 EUGEN-PC (null) MESSAGE Starting IP protection
2013/04/16 09:51:27 +0200 EUGEN-PC (null) MESSAGE IP Protection started successfully
2013/04/16 11:17:18 +0200 EUGEN-PC Eugen IP-BLOCK 37.221.167.103 (Type: outgoing, Port: 57244, Process: avp.exe)
2013/04/16 11:17:18 +0200 EUGEN-PC Eugen IP-BLOCK 37.221.167.103 (Type: outgoing, Port: 57246, Process: avp.exe)
2013/04/16 11:17:18 +0200 EUGEN-PC Eugen IP-BLOCK 37.221.161.179 (Type: outgoing, Port: 57253, Process: avp.exe)
2013/04/16 11:17:18 +0200 EUGEN-PC Eugen IP-BLOCK 37.221.161.179 (Type: outgoing, Port: 57255, Process: avp.exe)
2013/04/16 11:43:17 +0200 EUGEN-PC Eugen MESSAGE Executing scheduled update: Daily
2013/04/16 11:43:27 +0200 EUGEN-PC Eugen MESSAGE Scheduled update executed successfully: database updated from version v2013.04.15.04 to version v2013.04.16.05
2013/04/16 11:43:27 +0200 EUGEN-PC Eugen MESSAGE Starting database refresh
2013/04/16 11:43:27 +0200 EUGEN-PC Eugen MESSAGE Stopping IP protection
2013/04/16 11:43:28 +0200 EUGEN-PC Eugen MESSAGE IP Protection stopped successfully
2013/04/16 11:43:31 +0200 EUGEN-PC Eugen MESSAGE Database refreshed successfully
2013/04/16 11:43:31 +0200 EUGEN-PC Eugen MESSAGE Starting IP protection
2013/04/16 11:43:31 +0200 EUGEN-PC Eugen MESSAGE IP Protection started successfully
2013/04/16 16:32:44 +0200 EUGEN-PC Eugen MESSAGE Starting protection
2013/04/16 16:32:44 +0200 EUGEN-PC Eugen MESSAGE Protection started successfully
2013/04/16 16:32:44 +0200 EUGEN-PC Eugen MESSAGE Starting IP protection
2013/04/16 16:32:45 +0200 EUGEN-PC Eugen MESSAGE IP Protection started successfully
2013/04/16 20:54:37 +0200 EUGEN-PC Eugen MESSAGE Starting protection
2013/04/16 20:54:37 +0200 EUGEN-PC Eugen MESSAGE Protection started successfully
2013/04/16 20:54:37 +0200 EUGEN-PC Eugen MESSAGE Starting IP protection
2013/04/16 20:54:38 +0200 EUGEN-PC Eugen MESSAGE IP Protection started successfully
2013/04/16 20:57:14 +0200 EUGEN-PC Eugen MESSAGE Stopping protection
2013/04/16 20:57:14 +0200 EUGEN-PC Eugen MESSAGE Protection stopped successfully
2013/04/16 20:57:14 +0200 EUGEN-PC Eugen MESSAGE Stopping IP protection
2013/04/16 20:57:14 +0200 EUGEN-PC Eugen MESSAGE IP Protection stopped successfully
2013/04/16 20:57:15 +0200 EUGEN-PC Eugen MESSAGE Protection stopped
|
|
| Themen zu Online Smile v13.4.24 lässt sich nicht entfernen. |
| add-on, chrome, deaktivieren, entferne, entfernen, erfolglos, facebook, geklickt, google, google chrome, guten, jemandem, kollege, link, lässt sich nicht entfernen, löschen, nicht mehr, notebook, online, probiert, seitdem, start, zusammen |
WARNUNG an die MITLESER: 
Linear-Darstellung
