| |
| |||||||
Log-Analyse und Auswertung: Bundestrojaner (windows7) komme nicht mehr weiterWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
 |
06.07.2013, 13:02
| #1 |
 |  Bundestrojaner (windows7) komme nicht mehr weiter Hallo, Seid gestern hat es mich nun auch erwischt. Nix mehr zu machen. Ich habe aber aufgrund mangelnden Wissens auch erstmal nichts weiter unternommen, wollte es ja nicht noch schlimmer machen. Und hoffe nun , das ihr mir hier echt weiterhelfen könnt. Die frst-Log Datei habe ich bereits realisiert und stelle sie hier ein : Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 04-07-2013
Ran by SYSTEM on 06-07-2013 09:15:00
Running from G:\
Windows 7 Home Premium (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Recovery
The current controlset is ControlSet001
ATTENTION!:=====> FRST is updated to run from normal or Safe mode to produce a full FRST.txt log and an extra Addition.txt log.
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [IAAnotif] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe [186904 2009-06-04] (Intel Corporation)
HKLM\...\Run: [mwlDaemon] C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\mwlDaemon.exe [349480 2009-08-07] (Egis Technology Inc.)
HKLM\...\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup [16334880 2009-07-27] (NVIDIA Corporation)
HKLM\...\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s [8060960 2009-08-05] (Realtek Semiconductor)
HKLM\...\Run: [PLFSetI] C:\Windows\PLFSetI.exe [200704 2008-07-29] ()
HKLM\...\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe [1808168 2009-06-18] (Synaptics Incorporated)
HKLM\...\Run: [Acer ePower Management] C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe [828960 2009-08-05] (Acer Incorporated)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" [37296 2011-06-07] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [NortonOnlineBackupReminder] "C:\Program Files (x86)\Symantec\Norton Online Backup\Activation\NobuActivation.exe" UNATTENDED [588648 2009-07-24] (Symantec Corporation)
HKLM-x32\...\Run: [BackupManagerTray] "C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe" -h -k [261888 2009-08-20] (NewTech Infosystems, Inc.)
HKLM-x32\...\Run: [EgisTecLiveUpdate] "C:\Program Files (x86)\EgisTec Egis Software Update\EgisUpdate.exe" [199464 2009-08-04] (Egis Technology Inc.)
HKLM-x32\...\Run: [LManager] C:\Program Files (x86)\Launch Manager\LManager.exe [1194504 2009-08-21] (Dritek System Inc.)
HKLM-x32\...\Run: [ArcadeDeluxeAgent] "C:\Program Files (x86)\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe" [128296 2009-07-31] (CyberLink Corp.)
HKLM-x32\...\Run: [PlayMovie] "C:\Program Files (x86)\Acer Arcade Deluxe\PlayMovie\PMVService.exe" [181480 2009-08-04] (Acer Corp.)
HKLM-x32\...\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [937920 2011-03-29] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [NPSStartup] [x]
HKLM-x32\...\Run: [BrMfcWnd] C:\Program Files (x86)\Brother\Brmfcmon\BrMfcWnd.exe /AUTORUN [1159168 2009-05-26] (Brother Industries, Ltd.)
HKLM-x32\...\Run: [ControlCenter3] C:\Program Files (x86)\Brother\ControlCenter3\brctrcen.exe /autorun [114688 2008-12-24] (Brother Industries, Ltd.)
HKLM-x32\...\Run: [ArcSoft Connection Service] C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe [207424 2010-10-27] (ArcSoft Inc.)
HKLM-x32\...\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [59280 2012-11-28] (Apple Inc.)
HKLM-x32\...\Run: [AgentMonitor] C:\Program Files (x86)\VTech\DownloadManager\System\AgentMonitor.exe [393640 2011-11-30] ()
HKLM-x32\...\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe" [30040 2009-02-26] (Microsoft Corporation)
HKLM-x32\...\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" [252848 2012-07-02] (Sun Microsystems, Inc.)
HKLM-x32\...\Run: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min [345144 2013-07-05] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime [421888 2012-10-24] (Apple Inc.)
HKLM-x32\...\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe" [152544 2012-12-12] (Apple Inc.)
HKLM-x32\...\Run: [] [x]
HKU\Default\...\RunOnce: [ScrSav] C:\Program Files (x86)\Acer\Screensaver\run_Acer.exe /default [162336 2009-07-08] ()
HKU\Default User\...\RunOnce: [ScrSav] C:\Program Files (x86)\Acer\Screensaver\run_Acer.exe /default [162336 2009-07-08] ()
HKU\Kai und Anna\...\Run: [EA Core] "C:\spiele\Electronic Arts\EADM\Core.exe" -silent [x]
HKU\Kai und Anna\...\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun [357696 2010-04-01] (DT Soft Ltd)
HKU\Kai und Anna\...\Run: [MobileDocuments] C:\Program Files (x86)\Common Files\Apple\Internet Services\ubd.exe [x]
HKU\Kai und Anna\...\Run: [BitComet] "C:\Program Files (x86)\BitComet\BitComet.exe" /tray [x]
Startup: C:\ProgramData\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files (x86)\McAfee Security Scan\3.0.318\SSScheduler.exe (McAfee, Inc.)
Startup: C:\ProgramData\Start Menu\Programs\Startup\WISO Mein Steuer-Sparbuch heute.lnk
ShortcutTarget: WISO Mein Steuer-Sparbuch heute.lnk -> C:\Program Files (x86)\WISO\Steuersoftware 2012\mshaktuell.exe ()
Startup: C:\Users\Kai und Anna\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\regmonstd.lnk
ShortcutTarget: regmonstd.lnk -> C:\Users\KAIUND~1\AppData\Local\Temp\b34btbztdb0vavaw.exe (Microsoft Corporation)
==================== Services (Whitelisted) =================
S2 ACDaemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2010-03-18] (ArcSoft Inc.)
S2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [84024 2013-07-05] (Avira Operations GmbH & Co. KG)
S2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [108088 2013-07-05] (Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE [589368 2013-07-05] (Avira Operations GmbH & Co. KG)
S2 gupdate1cadd34a9973a19; C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [133104 2010-04-15] (Google Inc.)
S3 McComponentHostService; C:\Program Files (x86)\McAfee Security Scan\3.0.318\McCHSvc.exe [235216 2013-02-05] (McAfee, Inc.)
S2 MWLService; C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\\MWLService.exe [311592 2009-08-07] (Egis Technology Inc.)
==================== Drivers (Whitelisted) ====================
S2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [314016 2009-12-24] ()
S2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [100712 2013-04-15] (Avira Operations GmbH & Co. KG)
S1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [130016 2013-04-15] (Avira Operations GmbH & Co. KG)
S1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-04-15] (Avira Operations GmbH & Co. KG)
S3 GigasetGenericUSB_x64; C:\Windows\System32\DRIVERS\GigasetGenericUSB_x64.sys [54272 2009-02-20] (Siemens Home and Office Communication Devices GmbH & Co. KG)
S2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [43680 2009-12-24] ()
S0 sptd; C:\Windows\System32\Drivers\sptd.sys [834544 2010-07-24] (Duplex Secure Ltd.)
S3 pccsmcfd; system32\DRIVERS\pccsmcfdx64.sys [x]
S3 RtsUIR; system32\DRIVERS\Rts516xIR.sys [x]
S3 TFsExDisk; \??\C:\Windows\System32\Drivers\TFsExDisk.sys [x]
S3 USBCCID; system32\DRIVERS\RtsUCcid.sys [x]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-07-05 23:04 - 2013-07-05 23:05 - 00013753 ____A C:\AdwCleaner[S1].txt
2013-07-05 23:04 - 2013-07-05 23:04 - 00013690 ____A C:\AdwCleaner[R1].txt
2013-07-05 23:03 - 2013-07-05 23:03 - 00650027 ____A C:\Users\Kai und Anna\Downloads\adwcleaner_2.3.0.4.exe
2013-07-05 22:59 - 2013-07-05 22:59 - 00000000 ____D C:\FRST
2013-07-05 11:48 - 2013-07-05 11:48 - 00000162 ____A C:\ProgramData\wavav0bdtzbtb43b.reg
2013-07-05 11:48 - 2013-07-05 11:48 - 00000067 ____A C:\ProgramData\wavav0bdtzbtb43b.bat
2013-07-05 11:24 - 2013-07-05 11:24 - 00000000 ____D C:\Bücher
2013-07-05 10:58 - 2013-07-05 10:58 - 19233792 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 15404544 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 14327808 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 13760512 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 03958784 ____A (Microsoft Corporation) C:\Windows\System32\jscript9.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 02877440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 02706432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-07-05 10:58 - 2013-07-05 10:58 - 02706432 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2013-07-05 10:58 - 2013-07-05 10:58 - 02648064 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 02241024 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 02046976 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 01767936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 01509376 ____A (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl
2013-07-05 10:58 - 2013-07-05 10:58 - 01441280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-07-05 10:58 - 2013-07-05 10:58 - 01400416 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-07-05 10:58 - 2013-07-05 10:58 - 01400416 ____A (Microsoft Corporation) C:\Windows\System32\ieapfltr.dat
2013-07-05 10:58 - 2013-07-05 10:58 - 01365504 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 01141248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 01054720 ____A (Microsoft Corporation) C:\Windows\System32\MsSpellCheckingFacility.exe
2013-07-05 10:58 - 2013-07-05 10:58 - 00905728 ____A (Microsoft Corporation) C:\Windows\System32\mshtmlmedia.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00855552 ____A (Microsoft Corporation) C:\Windows\System32\jscript.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00762368 ____A (Microsoft Corporation) C:\Windows\System32\ieapfltr.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00719360 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00690688 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00629248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00603136 ____A (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00599552 ____A (Microsoft Corporation) C:\Windows\System32\vbscript.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00526336 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00523264 ____A (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00493056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00452096 ____A (Microsoft Corporation) C:\Windows\System32\dxtmsft.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00441856 ____A (Microsoft Corporation) C:\Windows\System32\html.iec
2013-07-05 10:58 - 2013-07-05 10:58 - 00391168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00361984 ____A (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-07-05 10:58 - 2013-07-05 10:58 - 00357888 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00281600 ____A (Microsoft Corporation) C:\Windows\System32\dxtrans.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00270848 ____A (Microsoft Corporation) C:\Windows\System32\iedkcs32.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00247296 ____A (Microsoft Corporation) C:\Windows\System32\webcheck.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00242200 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00235008 ____A (Microsoft Corporation) C:\Windows\System32\url.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00232960 ____A (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00226816 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00226304 ____A (Microsoft Corporation) C:\Windows\System32\elshyph.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00216064 ____A (Microsoft Corporation) C:\Windows\System32\msls31.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00204800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00197120 ____A (Microsoft Corporation) C:\Windows\System32\msrating.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00185344 ____A (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00173568 ____A (Microsoft Corporation) C:\Windows\System32\ieUnatt.exe
2013-07-05 10:58 - 2013-07-05 10:58 - 00167424 ____A (Microsoft Corporation) C:\Windows\System32\iexpress.exe
2013-07-05 10:58 - 2013-07-05 10:58 - 00163840 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00158720 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00150528 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-07-05 10:58 - 2013-07-05 10:58 - 00149504 ____A (Microsoft Corporation) C:\Windows\System32\occache.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00144896 ____A (Microsoft Corporation) C:\Windows\System32\wextract.exe
2013-07-05 10:58 - 2013-07-05 10:58 - 00138752 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-07-05 10:58 - 2013-07-05 10:58 - 00137216 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-07-05 10:58 - 2013-07-05 10:58 - 00136704 ____A (Microsoft Corporation) C:\Windows\System32\iesysprep.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00136192 ____A (Microsoft Corporation) C:\Windows\System32\iepeers.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00135680 ____A (Microsoft Corporation) C:\Windows\System32\IEAdvpack.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00125440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00117248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00110592 ____A (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00109056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00102912 ____A (Microsoft Corporation) C:\Windows\System32\inseng.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00097280 ____A (Microsoft Corporation) C:\Windows\System32\mshtmled.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00092160 ____A (Microsoft Corporation) C:\Windows\System32\SetIEInstalledDate.exe
2013-07-05 10:58 - 2013-07-05 10:58 - 00089600 ____A (Microsoft Corporation) C:\Windows\System32\RegisterIEPKEYs.exe
2013-07-05 10:58 - 2013-07-05 10:58 - 00082432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00081408 ____A (Microsoft Corporation) C:\Windows\System32\icardie.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00079872 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00077312 ____A (Microsoft Corporation) C:\Windows\System32\tdc.ocx
2013-07-05 10:58 - 2013-07-05 10:58 - 00073728 ____A (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-07-05 10:58 - 2013-07-05 10:58 - 00071680 ____A (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-07-05 10:58 - 2013-07-05 10:58 - 00069120 ____A (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00067072 ____A (Microsoft Corporation) C:\Windows\System32\iesetup.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00062976 ____A (Microsoft Corporation) C:\Windows\System32\pngfilt.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00061952 ____A (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-07-05 10:58 - 2013-07-05 10:58 - 00061440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00057344 ____A (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00053760 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00052224 ____A (Microsoft Corporation) C:\Windows\System32\msfeedsbs.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00051712 ____A (Microsoft Corporation) C:\Windows\System32\ie4uinit.exe
2013-07-05 10:58 - 2013-07-05 10:58 - 00051200 ____A (Microsoft Corporation) C:\Windows\System32\imgutil.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00048640 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00048640 ____A (Microsoft Corporation) C:\Windows\System32\mshtmler.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00041984 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00039936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00039936 ____A (Microsoft Corporation) C:\Windows\System32\iernonce.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00038400 ____A (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00033280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00027648 ____A (Microsoft Corporation) C:\Windows\System32\licmgr10.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00023040 ____A (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00013824 ____A (Microsoft Corporation) C:\Windows\System32\mshta.exe
2013-07-05 10:58 - 2013-07-05 10:58 - 00012800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-07-05 10:58 - 2013-07-05 10:58 - 00012800 ____A (Microsoft Corporation) C:\Windows\System32\msfeedssync.exe
2013-07-05 10:58 - 2013-07-05 10:58 - 00011776 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-07-05 10:57 - 2013-07-05 10:57 - 03928064 ____A (Microsoft Corporation) C:\Windows\System32\d2d1.dll
2013-07-05 10:57 - 2013-07-05 10:57 - 02776576 ____A (Microsoft Corporation) C:\Windows\System32\msmpeg2vdec.dll
2013-07-05 10:57 - 2013-07-05 10:57 - 02565120 ____A (Microsoft Corporation) C:\Windows\System32\d3d10warp.dll
2013-07-05 10:57 - 2013-07-05 10:57 - 02284544 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2013-07-05 10:57 - 2013-07-05 10:57 - 01682432 ____A (Microsoft Corporation) C:\Windows\System32\XpsPrint.dll
2013-07-05 10:57 - 2013-07-05 10:57 - 01247744 ____A (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2013-07-05 10:57 - 2013-07-05 10:57 - 01158144 ____A (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
2013-07-05 10:57 - 2013-07-05 10:57 - 01080832 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d10.dll
2013-07-05 10:57 - 2013-07-05 10:57 - 00522752 ____A (Microsoft Corporation) C:\Windows\System32\XpsGdiConverter.dll
2013-07-05 10:57 - 2013-07-05 10:57 - 00465920 ____A (Microsoft Corporation) C:\Windows\System32\WMPhoto.dll
2013-07-05 10:57 - 2013-07-05 10:57 - 00417792 ____A (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2013-07-05 10:57 - 2013-07-05 10:57 - 00364544 ____A (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2013-07-05 10:57 - 2013-07-05 10:57 - 00363008 ____A (Microsoft Corporation) C:\Windows\System32\dxgi.dll
2013-07-05 10:57 - 2013-07-05 10:57 - 00220160 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d10core.dll
2013-07-05 10:57 - 2013-07-05 10:57 - 00010752 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-07-05 10:57 - 2013-07-05 10:57 - 00010752 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-07-05 10:57 - 2013-07-05 10:57 - 00009728 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-07-05 10:57 - 2013-07-05 10:57 - 00009728 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-07-05 10:57 - 2013-07-05 10:57 - 00005632 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-07-05 10:57 - 2013-07-05 10:57 - 00005632 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-07-05 10:57 - 2013-07-05 10:57 - 00005632 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-07-05 10:57 - 2013-07-05 10:57 - 00005632 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-07-05 10:57 - 2013-07-05 10:57 - 00004096 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2013-07-05 10:57 - 2013-07-05 10:57 - 00004096 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll
2013-07-05 10:57 - 2013-07-05 10:57 - 00003584 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-07-05 10:57 - 2013-07-05 10:57 - 00003584 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-07-05 10:57 - 2013-07-05 10:57 - 00003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2013-07-05 10:57 - 2013-07-05 10:57 - 00003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-07-05 10:57 - 2013-07-05 10:57 - 00003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll
2013-07-05 10:57 - 2013-07-05 10:57 - 00003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-07-05 10:57 - 2013-07-05 10:57 - 00002560 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-07-05 10:57 - 2013-07-05 10:57 - 00002560 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-07-05 10:56 - 2013-07-05 10:57 - 01175552 ____A (Microsoft Corporation) C:\Windows\System32\FntCache.dll
2013-07-05 10:56 - 2013-07-05 10:56 - 03419136 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2013-07-05 10:56 - 2013-07-05 10:56 - 01988096 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2013-07-05 10:56 - 2013-07-05 10:56 - 01643520 ____A (Microsoft Corporation) C:\Windows\System32\DWrite.dll
2013-07-05 10:56 - 2013-07-05 10:56 - 01424384 ____A (Microsoft Corporation) C:\Windows\System32\WindowsCodecs.dll
2013-07-05 10:56 - 2013-07-05 10:56 - 01238528 ____A (Microsoft Corporation) C:\Windows\System32\d3d10.dll
2013-07-05 10:56 - 2013-07-05 10:56 - 01230336 ____A (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2013-07-05 10:56 - 2013-07-05 10:56 - 00648192 ____A (Microsoft Corporation) C:\Windows\System32\d3d10level9.dll
2013-07-05 10:56 - 2013-07-05 10:56 - 00604160 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2013-07-05 10:56 - 2013-07-05 10:56 - 00333312 ____A (Microsoft Corporation) C:\Windows\System32\d3d10_1core.dll
2013-07-05 10:56 - 2013-07-05 10:56 - 00296960 ____A (Microsoft Corporation) C:\Windows\System32\d3d10core.dll
2013-07-05 10:56 - 2013-07-05 10:56 - 00293376 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2013-07-05 10:56 - 2013-07-05 10:56 - 00249856 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll
2013-07-05 10:56 - 2013-07-05 10:56 - 00245248 ____A (Microsoft Corporation) C:\Windows\System32\WindowsCodecsExt.dll
2013-07-05 10:56 - 2013-07-05 10:56 - 00221184 ____A (Microsoft Corporation) C:\Windows\System32\UIAnimation.dll
2013-07-05 10:56 - 2013-07-05 10:56 - 00207872 ____A (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecsExt.dll
2013-07-05 10:56 - 2013-07-05 10:56 - 00194560 ____A (Microsoft Corporation) C:\Windows\System32\d3d10_1.dll
2013-07-05 10:56 - 2013-07-05 10:56 - 00187392 ____A (Microsoft Corporation) C:\Windows\SysWOW64\UIAnimation.dll
2013-07-05 10:56 - 2013-07-05 10:56 - 00161792 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll
2013-07-01 09:39 - 2013-07-05 11:23 - 00000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2013-07-01 08:06 - 2013-05-12 21:51 - 01464320 ____A (Microsoft Corporation) C:\Windows\System32\crypt32.dll
2013-07-01 08:06 - 2013-05-12 21:51 - 00184320 ____A (Microsoft Corporation) C:\Windows\System32\cryptsvc.dll
2013-07-01 08:06 - 2013-05-12 21:51 - 00139776 ____A (Microsoft Corporation) C:\Windows\System32\cryptnet.dll
2013-07-01 08:06 - 2013-05-12 21:50 - 00052224 ____A (Microsoft Corporation) C:\Windows\System32\certenc.dll
2013-07-01 08:06 - 2013-05-12 20:45 - 01160192 ____A (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-07-01 08:06 - 2013-05-12 20:45 - 00140288 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2013-07-01 08:06 - 2013-05-12 20:45 - 00103936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2013-07-01 08:06 - 2013-05-12 19:43 - 01192448 ____A (Microsoft Corporation) C:\Windows\System32\certutil.exe
2013-07-01 08:06 - 2013-05-12 19:08 - 00903168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe
2013-07-01 08:06 - 2013-05-12 19:08 - 00043008 ____A (Microsoft Corporation) C:\Windows\SysWOW64\certenc.dll
2013-07-01 08:06 - 2013-05-09 21:49 - 00030720 ____A (Microsoft Corporation) C:\Windows\System32\cryptdlg.dll
2013-07-01 08:06 - 2013-05-09 19:20 - 00024576 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cryptdlg.dll
2013-07-01 08:06 - 2013-05-07 22:39 - 01910632 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\tcpip.sys
2013-07-01 08:06 - 2013-04-25 21:51 - 00751104 ____A (Microsoft Corporation) C:\Windows\System32\win32spl.dll
2013-07-01 08:06 - 2013-04-25 20:55 - 00492544 ____A (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll
2013-07-01 08:06 - 2013-04-25 15:30 - 01505280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2013-07-01 08:06 - 2013-03-31 14:52 - 01887232 ____A (Microsoft Corporation) C:\Windows\System32\d3d11.dll
==================== One Month Modified Files and Folders =======
2013-07-05 23:08 - 2012-10-11 02:13 - 00000000 ____D C:\Users\Kai und Anna\Documents\Mein Steuer-Sparbuch Heute
2013-07-05 23:07 - 2010-04-15 23:27 - 00001106 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-07-05 23:07 - 2009-07-13 21:08 - 00000006 ___AH C:\Windows\Tasks\SA.DAT
2013-07-05 23:07 - 2009-07-13 20:51 - 00112085 ____A C:\Windows\setupact.log
2013-07-05 23:05 - 2013-07-05 23:04 - 00013753 ____A C:\AdwCleaner[S1].txt
2013-07-05 23:04 - 2013-07-05 23:04 - 00013690 ____A C:\AdwCleaner[R1].txt
2013-07-05 23:03 - 2013-07-05 23:03 - 00650027 ____A C:\Users\Kai und Anna\Downloads\adwcleaner_2.3.0.4.exe
2013-07-05 22:59 - 2013-07-05 22:59 - 00000000 ____D C:\FRST
2013-07-05 22:57 - 2009-09-02 18:40 - 00654150 ____A C:\Windows\System32\perfh007.dat
2013-07-05 22:57 - 2009-09-02 18:40 - 00130022 ____A C:\Windows\System32\perfc007.dat
2013-07-05 22:57 - 2009-07-13 21:13 - 01498742 ____A C:\Windows\System32\PerfStringBackup.INI
2013-07-05 11:51 - 2012-04-25 05:16 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-07-05 11:51 - 2009-09-02 08:51 - 01529843 ____A C:\Windows\WindowsUpdate.log
2013-07-05 11:48 - 2013-07-05 11:48 - 00000162 ____A C:\ProgramData\wavav0bdtzbtb43b.reg
2013-07-05 11:48 - 2013-07-05 11:48 - 00000067 ____A C:\ProgramData\wavav0bdtzbtb43b.bat
2013-07-05 11:24 - 2013-07-05 11:24 - 00000000 ____D C:\Bücher
2013-07-05 11:23 - 2013-07-01 09:39 - 00000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2013-07-05 11:15 - 2010-04-15 23:27 - 00001110 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-07-05 11:15 - 2009-12-13 05:14 - 00000000 ____D C:\spiele
2013-07-05 11:13 - 2009-07-13 20:45 - 00017376 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-07-05 11:13 - 2009-07-13 20:45 - 00017376 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-07-05 11:05 - 2009-08-22 00:35 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-07-05 11:05 - 2009-07-13 19:20 - 00000000 ____D C:\Windows\SysWOW64\zh-HK
2013-07-05 11:05 - 2009-07-13 19:20 - 00000000 ____D C:\Windows\SysWOW64\tr-TR
2013-07-05 11:05 - 2009-07-13 19:20 - 00000000 ____D C:\Windows\System32\zh-HK
2013-07-05 11:05 - 2009-07-13 19:20 - 00000000 ____D C:\Windows\System32\tr-TR
2013-07-05 11:05 - 2009-07-13 19:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2013-07-05 11:02 - 2013-05-25 13:16 - 00016027 ____A C:\Windows\IE10_main.log
2013-07-05 11:00 - 2012-10-17 10:56 - 00000884 ____A C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-07-05 10:58 - 2013-07-05 10:58 - 19233792 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 15404544 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 14327808 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 13760512 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 03958784 ____A (Microsoft Corporation) C:\Windows\System32\jscript9.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 02877440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 02706432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-07-05 10:58 - 2013-07-05 10:58 - 02706432 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2013-07-05 10:58 - 2013-07-05 10:58 - 02648064 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 02241024 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 02046976 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 01767936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 01509376 ____A (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl
2013-07-05 10:58 - 2013-07-05 10:58 - 01441280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-07-05 10:58 - 2013-07-05 10:58 - 01400416 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-07-05 10:58 - 2013-07-05 10:58 - 01400416 ____A (Microsoft Corporation) C:\Windows\System32\ieapfltr.dat
2013-07-05 10:58 - 2013-07-05 10:58 - 01365504 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 01141248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 01054720 ____A (Microsoft Corporation) C:\Windows\System32\MsSpellCheckingFacility.exe
2013-07-05 10:58 - 2013-07-05 10:58 - 00905728 ____A (Microsoft Corporation) C:\Windows\System32\mshtmlmedia.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00855552 ____A (Microsoft Corporation) C:\Windows\System32\jscript.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00762368 ____A (Microsoft Corporation) C:\Windows\System32\ieapfltr.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00719360 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00690688 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00629248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00603136 ____A (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00599552 ____A (Microsoft Corporation) C:\Windows\System32\vbscript.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00526336 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00523264 ____A (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00493056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00452096 ____A (Microsoft Corporation) C:\Windows\System32\dxtmsft.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00441856 ____A (Microsoft Corporation) C:\Windows\System32\html.iec
2013-07-05 10:58 - 2013-07-05 10:58 - 00391168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00361984 ____A (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-07-05 10:58 - 2013-07-05 10:58 - 00357888 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00281600 ____A (Microsoft Corporation) C:\Windows\System32\dxtrans.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00270848 ____A (Microsoft Corporation) C:\Windows\System32\iedkcs32.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00247296 ____A (Microsoft Corporation) C:\Windows\System32\webcheck.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00242200 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00235008 ____A (Microsoft Corporation) C:\Windows\System32\url.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00232960 ____A (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00226816 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00226304 ____A (Microsoft Corporation) C:\Windows\System32\elshyph.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00216064 ____A (Microsoft Corporation) C:\Windows\System32\msls31.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00204800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00197120 ____A (Microsoft Corporation) C:\Windows\System32\msrating.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00185344 ____A (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00173568 ____A (Microsoft Corporation) C:\Windows\System32\ieUnatt.exe
2013-07-05 10:58 - 2013-07-05 10:58 - 00167424 ____A (Microsoft Corporation) C:\Windows\System32\iexpress.exe
2013-07-05 10:58 - 2013-07-05 10:58 - 00163840 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00158720 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00150528 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-07-05 10:58 - 2013-07-05 10:58 - 00149504 ____A (Microsoft Corporation) C:\Windows\System32\occache.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00144896 ____A (Microsoft Corporation) C:\Windows\System32\wextract.exe
2013-07-05 10:58 - 2013-07-05 10:58 - 00138752 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-07-05 10:58 - 2013-07-05 10:58 - 00137216 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-07-05 10:58 - 2013-07-05 10:58 - 00136704 ____A (Microsoft Corporation) C:\Windows\System32\iesysprep.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00136192 ____A (Microsoft Corporation) C:\Windows\System32\iepeers.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00135680 ____A (Microsoft Corporation) C:\Windows\System32\IEAdvpack.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00125440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00117248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00110592 ____A (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00109056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00102912 ____A (Microsoft Corporation) C:\Windows\System32\inseng.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00097280 ____A (Microsoft Corporation) C:\Windows\System32\mshtmled.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00092160 ____A (Microsoft Corporation) C:\Windows\System32\SetIEInstalledDate.exe
2013-07-05 10:58 - 2013-07-05 10:58 - 00089600 ____A (Microsoft Corporation) C:\Windows\System32\RegisterIEPKEYs.exe
2013-07-05 10:58 - 2013-07-05 10:58 - 00082432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00081408 ____A (Microsoft Corporation) C:\Windows\System32\icardie.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00079872 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00077312 ____A (Microsoft Corporation) C:\Windows\System32\tdc.ocx
2013-07-05 10:58 - 2013-07-05 10:58 - 00073728 ____A (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-07-05 10:58 - 2013-07-05 10:58 - 00071680 ____A (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-07-05 10:58 - 2013-07-05 10:58 - 00069120 ____A (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00067072 ____A (Microsoft Corporation) C:\Windows\System32\iesetup.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00062976 ____A (Microsoft Corporation) C:\Windows\System32\pngfilt.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00061952 ____A (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-07-05 10:58 - 2013-07-05 10:58 - 00061440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00057344 ____A (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00053760 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00052224 ____A (Microsoft Corporation) C:\Windows\System32\msfeedsbs.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00051712 ____A (Microsoft Corporation) C:\Windows\System32\ie4uinit.exe
2013-07-05 10:58 - 2013-07-05 10:58 - 00051200 ____A (Microsoft Corporation) C:\Windows\System32\imgutil.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00048640 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00048640 ____A (Microsoft Corporation) C:\Windows\System32\mshtmler.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00041984 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00039936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00039936 ____A (Microsoft Corporation) C:\Windows\System32\iernonce.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00038400 ____A (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00033280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00027648 ____A (Microsoft Corporation) C:\Windows\System32\licmgr10.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00023040 ____A (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-07-05 10:58 - 2013-07-05 10:58 - 00013824 ____A (Microsoft Corporation) C:\Windows\System32\mshta.exe
2013-07-05 10:58 - 2013-07-05 10:58 - 00012800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-07-05 10:58 - 2013-07-05 10:58 - 00012800 ____A (Microsoft Corporation) C:\Windows\System32\msfeedssync.exe
2013-07-05 10:58 - 2013-07-05 10:58 - 00011776 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-07-05 10:57 - 2013-07-05 10:57 - 03928064 ____A (Microsoft Corporation) C:\Windows\System32\d2d1.dll
2013-07-05 10:57 - 2013-07-05 10:57 - 02776576 ____A (Microsoft Corporation) C:\Windows\System32\msmpeg2vdec.dll
2013-07-05 10:57 - 2013-07-05 10:57 - 02565120 ____A (Microsoft Corporation) C:\Windows\System32\d3d10warp.dll
2013-07-05 10:57 - 2013-07-05 10:57 - 02284544 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2013-07-05 10:57 - 2013-07-05 10:57 - 01682432 ____A (Microsoft Corporation) C:\Windows\System32\XpsPrint.dll
2013-07-05 10:57 - 2013-07-05 10:57 - 01247744 ____A (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2013-07-05 10:57 - 2013-07-05 10:57 - 01158144 ____A (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
2013-07-05 10:57 - 2013-07-05 10:57 - 01080832 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d10.dll
2013-07-05 10:57 - 2013-07-05 10:57 - 00522752 ____A (Microsoft Corporation) C:\Windows\System32\XpsGdiConverter.dll
2013-07-05 10:57 - 2013-07-05 10:57 - 00465920 ____A (Microsoft Corporation) C:\Windows\System32\WMPhoto.dll
2013-07-05 10:57 - 2013-07-05 10:57 - 00417792 ____A (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2013-07-05 10:57 - 2013-07-05 10:57 - 00364544 ____A (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2013-07-05 10:57 - 2013-07-05 10:57 - 00363008 ____A (Microsoft Corporation) C:\Windows\System32\dxgi.dll
2013-07-05 10:57 - 2013-07-05 10:57 - 00220160 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d10core.dll
2013-07-05 10:57 - 2013-07-05 10:57 - 00010752 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-07-05 10:57 - 2013-07-05 10:57 - 00010752 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-07-05 10:57 - 2013-07-05 10:57 - 00009728 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-07-05 10:57 - 2013-07-05 10:57 - 00009728 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-07-05 10:57 - 2013-07-05 10:57 - 00005632 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-07-05 10:57 - 2013-07-05 10:57 - 00005632 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-07-05 10:57 - 2013-07-05 10:57 - 00005632 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-07-05 10:57 - 2013-07-05 10:57 - 00005632 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-07-05 10:57 - 2013-07-05 10:57 - 00004096 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2013-07-05 10:57 - 2013-07-05 10:57 - 00004096 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll
2013-07-05 10:57 - 2013-07-05 10:57 - 00003584 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-07-05 10:57 - 2013-07-05 10:57 - 00003584 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-07-05 10:57 - 2013-07-05 10:57 - 00003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2013-07-05 10:57 - 2013-07-05 10:57 - 00003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-07-05 10:57 - 2013-07-05 10:57 - 00003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll
2013-07-05 10:57 - 2013-07-05 10:57 - 00003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-07-05 10:57 - 2013-07-05 10:57 - 00002560 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-07-05 10:57 - 2013-07-05 10:57 - 00002560 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-07-05 10:57 - 2013-07-05 10:56 - 01175552 ____A (Microsoft Corporation) C:\Windows\System32\FntCache.dll
2013-07-05 10:56 - 2013-07-05 10:56 - 03419136 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2013-07-05 10:56 - 2013-07-05 10:56 - 01988096 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2013-07-05 10:56 - 2013-07-05 10:56 - 01643520 ____A (Microsoft Corporation) C:\Windows\System32\DWrite.dll
2013-07-05 10:56 - 2013-07-05 10:56 - 01424384 ____A (Microsoft Corporation) C:\Windows\System32\WindowsCodecs.dll
2013-07-05 10:56 - 2013-07-05 10:56 - 01238528 ____A (Microsoft Corporation) C:\Windows\System32\d3d10.dll
2013-07-05 10:56 - 2013-07-05 10:56 - 01230336 ____A (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2013-07-05 10:56 - 2013-07-05 10:56 - 00648192 ____A (Microsoft Corporation) C:\Windows\System32\d3d10level9.dll
2013-07-05 10:56 - 2013-07-05 10:56 - 00604160 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2013-07-05 10:56 - 2013-07-05 10:56 - 00333312 ____A (Microsoft Corporation) C:\Windows\System32\d3d10_1core.dll
2013-07-05 10:56 - 2013-07-05 10:56 - 00296960 ____A (Microsoft Corporation) C:\Windows\System32\d3d10core.dll
2013-07-05 10:56 - 2013-07-05 10:56 - 00293376 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2013-07-05 10:56 - 2013-07-05 10:56 - 00249856 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll
2013-07-05 10:56 - 2013-07-05 10:56 - 00245248 ____A (Microsoft Corporation) C:\Windows\System32\WindowsCodecsExt.dll
2013-07-05 10:56 - 2013-07-05 10:56 - 00221184 ____A (Microsoft Corporation) C:\Windows\System32\UIAnimation.dll
2013-07-05 10:56 - 2013-07-05 10:56 - 00207872 ____A (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecsExt.dll
2013-07-05 10:56 - 2013-07-05 10:56 - 00194560 ____A (Microsoft Corporation) C:\Windows\System32\d3d10_1.dll
2013-07-05 10:56 - 2013-07-05 10:56 - 00187392 ____A (Microsoft Corporation) C:\Windows\SysWOW64\UIAnimation.dll
2013-07-05 10:56 - 2013-07-05 10:56 - 00161792 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll
2013-07-05 10:49 - 2009-11-22 07:12 - 75825640 ____A (Microsoft Corporation) C:\Windows\System32\MRT.exe
2013-07-05 10:45 - 2013-05-12 22:57 - 00083672 ____A (Avira Operations GmbH & Co. KG) C:\Windows\System32\Drivers\avnetflt.sys
2013-07-01 09:00 - 2012-07-15 22:28 - 00692104 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-07-01 09:00 - 2012-07-15 22:28 - 00071048 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
Files to move or delete:
====================
C:\ProgramData\FullRemove.exe
C:\ProgramData\wavav0bdtzbtb43b.bat
C:\ProgramData\wavav0bdtzbtb43b.reg
==================== Known DLLs (Whitelisted) ================
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
==================== EXE ASSOCIATION =====================
HKLM\...\.exe: exefile => OK
HKLM\...\exefile\DefaultIcon: %1 => OK
HKLM\...\exefile\open\command: "%1" %* => OK
==================== Restore Points =========================
==================== Memory info ===========================
Percentage of memory in use: 18%
Total physical RAM: 4090.93 MB
Available physical RAM: 3340.32 MB
Total Pagefile: 4089.07 MB
Available Pagefile: 3339.38 MB
Total Virtual: 8192 MB
Available Virtual: 8191.86 MB
==================== Drives ================================
Drive c: (ACER) (Fixed) (Total:453.94 GB) (Free:5.97 GB) NTFS (Disk=0 Partition=3) ==>[System with boot components (obtained from reading drive)]
Drive e: (PQSERVICE) (Fixed) (Total:11.72 GB) (Free:1.95 GB) NTFS (Disk=0 Partition=1)
Drive g: (PKBACK# 001) (Removable) (Total:3.73 GB) (Free:1.4 GB) FAT32 (Disk=1 Partition=1)
Drive x: (Boot) (Fixed) (Total:0.03 GB) (Free:0.03 GB) NTFS
Drive y: (SYSTEM RESERVED) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS (Disk=0 Partition=2) ==>[System with boot components (obtained from reading drive)]
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 466 GB) (Disk ID: F69DF69D)
Partition 1: (Not Active) - (Size=12 GB) - (Type=27)
Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=454 GB) - (Type=07 NTFS)
========================================================
Disk: 1 (MBR Code: Windows XP) (Size: 4 GB) (Disk ID: 1DD8EC22)
Partition 1: (Active) - (Size=4 GB) - (Type=0C)
LastRegBack: 2013-07-01 09:00
==================== End Of Log ============================
|
|
06.07.2013, 13:04
| #2 |
| /// Malware-holic   | Bundestrojaner (windows7) komme nicht mehr weiter Drücke bitte die
__________________ + R Taste und schreibe notepad in das Ausführen Fenster.Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument Code:
ATTFilter Startup: C:\Users\Kai und Anna\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\regmonstd.lnk
ShortcutTarget: regmonstd.lnk -> C:\Users\KAIUND~1\AppData\Local\Temp\b34btbztdb0vavaw.exe (Microsoft Corporation)
2013-07-05 11:48 - 2013-07-05 11:48 - 00000162 ____A C:\ProgramData\wavav0bdtzbtb43b.reg
2013-07-05 11:48 - 2013-07-05 11:48 - 00000067 ____A C:\ProgramData\wavav0bdtzbtb43b.bat
C:\Users\KAIUND~1\AppData\Local\Temp\b34btbztdb0vavaw.exe
Navigiere bitte zu: C:\FRST\Quarantine Rechtsklick, mit Winrar oder einem anderen Archvierer packen und im Uploadchannel hochladen. http://upload.trojaner-board.de
__________________ Geändert von markusg (06.07.2013 um 13:12 Uhr) |
|
06.07.2013, 13:06
| #3 |
| | Bundestrojaner (windows7) komme nicht mehr weiter Super , Dankeschön
__________________ |
|
06.07.2013, 13:23
| #4 |
| | Bundestrojaner (windows7) komme nicht mehr weiter hallo, hatte jetzt die fixlog von Cosinus genommen. Die von Markus war noch nicht da. Sorry, ich hoffe das gibt jetzt keine Probleme. Das Ergebnis sieht so aus : Code:
ATTFilter Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 04-07-2013
Ran by SYSTEM at 2013-07-06 14:15:15 Run:1
Running from G:\
Boot Mode: Recovery
==============================================
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\ => Value deleted successfully.
C:\Users\Kai und Anna\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\regmonstd.lnk => Moved successfully.
C:\Users\KAIUND~1\AppData\Local\Temp\b34btbztdb0vavaw.exe => Moved successfully.
C:\ProgramData\FullRemove.exe => Moved successfully.
C:\ProgramData\wavav0bdtzbtb43b.bat => Moved successfully.
C:\ProgramData\wavav0bdtzbtb43b.reg => Moved successfully.
==== End of Fixlog ====
|
|
06.07.2013, 13:26
| #5 |
| /// Malware-holic | Bundestrojaner (windows7) komme nicht mehr weiter Hi, der Neustart geht? dann mach mal weiter bitte mit dem Upload, steht unter meinem Fix.
__________________ -Verdächtige mails bitte an uns zur Analyse weiterleiten: markusg.trojaner-board@web.de Weiterleiten Anleitung: http://markusg.trojaner-board.de Mails bitte vorerst nach obiger Anleitung an markusg.trojaner-board@web.de Weiterleiten Wenn Ihr uns unterstützen möchtet |
|
06.07.2013, 13:38
| #6 |
| | Bundestrojaner (windows7) komme nicht mehr weiter Neustart klappt, komme ganz normal in Windows. Ich hoffe das mit den upload hat geklappt ?? Ich sehe den irgendwie nicht. Ich danke euch jetzt schonmal. Ihr seid klasse ! |
|
06.07.2013, 13:40
| #7 |
| /// Malware-holic | Bundestrojaner (windows7) komme nicht mehr weiter Hi, währe ja auch blöd, wenn den jeder sehen könnnte und die Dateien dann noch ausführt, da hätten wir ja doppelt so viel Arbeit :-) Ist angekommen, danke. Downloade dir bitte  TDSSKiller.exe und speichere diese Datei auf dem Desktop
__________________ -Verdächtige mails bitte an uns zur Analyse weiterleiten: markusg.trojaner-board@web.de Weiterleiten Anleitung: http://markusg.trojaner-board.de Mails bitte vorerst nach obiger Anleitung an markusg.trojaner-board@web.de Weiterleiten Wenn Ihr uns unterstützen möchtet |
|
06.07.2013, 13:46
| #8 |
| | Bundestrojaner (windows7) komme nicht mehr weiter keine Ahnung was ich hier mache, aber es sieht professionell aus  Code:
ATTFilter 14:42:19.0387 5312 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
14:42:19.0574 5312 ============================================================
14:42:19.0574 5312 Current date / time: 2013/07/06 14:42:19.0574
14:42:19.0574 5312 SystemInfo:
14:42:19.0574 5312
14:42:19.0574 5312 OS Version: 6.1.7601 ServicePack: 1.0
14:42:19.0574 5312 Product type: Workstation
14:42:19.0574 5312 ComputerName: KAIUNDANNA-PC
14:42:19.0574 5312 UserName: Kai und Anna
14:42:19.0574 5312 Windows directory: C:\Windows
14:42:19.0574 5312 System windows directory: C:\Windows
14:42:19.0574 5312 Running under WOW64
14:42:19.0574 5312 Processor architecture: Intel x64
14:42:19.0574 5312 Number of processors: 2
14:42:19.0574 5312 Page size: 0x1000
14:42:19.0574 5312 Boot type: Normal boot
14:42:19.0574 5312 ============================================================
14:42:20.0214 5312 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
14:42:20.0214 5312 ============================================================
14:42:20.0214 5312 \Device\Harddisk0\DR0:
14:42:20.0214 5312 MBR partitions:
14:42:20.0214 5312 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1770800, BlocksNum 0x32000
14:42:20.0214 5312 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x17A2800, BlocksNum 0x38BE3030
14:42:20.0214 5312 ============================================================
14:42:20.0245 5312 C: <-> \Device\Harddisk0\DR0\Partition2
14:42:20.0245 5312 ============================================================
14:42:20.0245 5312 Initialize success
14:42:20.0245 5312 ============================================================
14:42:55.0990 5144 ============================================================
14:42:55.0990 5144 Scan started
14:42:55.0990 5144 Mode: Manual; SigCheck; TDLFS;
14:42:55.0990 5144 ============================================================
14:42:56.0568 5144 ================ Scan system memory ========================
14:42:56.0568 5144 System memory - ok
14:42:56.0568 5144 ================ Scan services =============================
14:42:56.0755 5144 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
14:42:56.0942 5144 1394ohci - ok
14:42:57.0114 5144 [ ADC420616C501B45D26C0FD3EF1E54E4 ] ACDaemon C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
14:42:57.0145 5144 ACDaemon - ok
14:42:57.0223 5144 [ A3769020F7E8A70FD3E824C050F33306 ] acedrv11 C:\Windows\system32\drivers\acedrv11.sys
14:42:57.0254 5144 acedrv11 - ok
14:42:57.0316 5144 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
14:42:57.0332 5144 ACPI - ok
14:42:57.0410 5144 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
14:42:57.0519 5144 AcpiPmi - ok
14:42:57.0691 5144 [ 9915504F602D277EE47FD843A677FD15 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
14:42:57.0722 5144 AdobeFlashPlayerUpdateSvc - ok
14:42:57.0800 5144 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
14:42:57.0878 5144 adp94xx - ok
14:42:57.0925 5144 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
14:42:57.0972 5144 adpahci - ok
14:42:57.0987 5144 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
14:42:58.0018 5144 adpu320 - ok
14:42:58.0050 5144 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
14:42:58.0206 5144 AeLookupSvc - ok
14:42:58.0284 5144 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
14:42:58.0377 5144 AFD - ok
14:42:58.0440 5144 [ B65F8DBA54F251906BBE8611B5A0E7AB ] AgereModemAudio C:\Program Files\LSI SoftModem\agr64svc.exe
14:42:58.0549 5144 AgereModemAudio - ok
14:42:58.0580 5144 [ AF4748EF93416159459769A24A0053AF ] AgereSoftModem C:\Windows\system32\DRIVERS\agrsm64.sys
14:42:58.0674 5144 AgereSoftModem - ok
14:42:58.0736 5144 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
14:42:58.0767 5144 agp440 - ok
14:42:58.0814 5144 [ BC569A6C209D94F6643EE35710AEC1F6 ] aksdf C:\Windows\system32\DRIVERS\aksdf.sys
14:42:58.0892 5144 aksdf - ok
14:42:58.0939 5144 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
14:42:59.0032 5144 ALG - ok
14:42:59.0095 5144 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
14:42:59.0126 5144 aliide - ok
14:42:59.0142 5144 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
14:42:59.0157 5144 amdide - ok
14:42:59.0188 5144 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
14:42:59.0266 5144 AmdK8 - ok
14:42:59.0298 5144 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
14:42:59.0344 5144 AmdPPM - ok
14:42:59.0407 5144 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
14:42:59.0438 5144 amdsata - ok
14:42:59.0469 5144 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
14:42:59.0500 5144 amdsbs - ok
14:42:59.0516 5144 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
14:42:59.0532 5144 amdxata - ok
14:42:59.0610 5144 [ FE9932692FC61C2203EC9884D414F700 ] AntiVirSchedulerService C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
14:42:59.0625 5144 AntiVirSchedulerService - ok
14:42:59.0672 5144 [ B1F8B58F27971B7E316DD316687886EC ] AntiVirService C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
14:42:59.0688 5144 AntiVirService - ok
14:42:59.0750 5144 [ 53DDEA96AA407C3E2BCEF68A44E31A59 ] AntiVirWebService C:\Program Files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE
14:42:59.0797 5144 AntiVirWebService - ok
14:42:59.0859 5144 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
14:43:00.0109 5144 AppID - ok
14:43:00.0156 5144 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
14:43:00.0234 5144 AppIDSvc - ok
14:43:00.0312 5144 [ 9D2A2369AB4B08A4905FE72DB104498F ] Appinfo C:\Windows\System32\appinfo.dll
14:43:00.0405 5144 Appinfo - ok
14:43:00.0483 5144 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
14:43:00.0514 5144 Apple Mobile Device - ok
14:43:00.0546 5144 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
14:43:00.0561 5144 arc - ok
14:43:00.0592 5144 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
14:43:00.0608 5144 arcsas - ok
14:43:00.0624 5144 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
14:43:00.0733 5144 AsyncMac - ok
14:43:00.0795 5144 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
14:43:00.0826 5144 atapi - ok
14:43:00.0873 5144 [ FC0E8778C000291CAF60EB88C011E931 ] atksgt C:\Windows\system32\DRIVERS\atksgt.sys
14:43:00.0904 5144 atksgt - ok
14:43:00.0967 5144 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
14:43:01.0092 5144 AudioEndpointBuilder - ok
14:43:01.0138 5144 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
14:43:01.0185 5144 AudioSrv - ok
14:43:01.0248 5144 [ 09E6069EF94B345061B4BD3CEBD974C8 ] avgntflt C:\Windows\system32\DRIVERS\avgntflt.sys
14:43:01.0263 5144 avgntflt - ok
14:43:01.0294 5144 [ 488486DAD09A5B6C6DBB8B990A8B2307 ] avipbb C:\Windows\system32\DRIVERS\avipbb.sys
14:43:01.0326 5144 avipbb - ok
14:43:01.0357 5144 [ 490FA25161BF3E51993EB724ECF0ACEB ] avkmgr C:\Windows\system32\DRIVERS\avkmgr.sys
14:43:01.0372 5144 avkmgr - ok
14:43:01.0435 5144 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
14:43:01.0560 5144 AxInstSV - ok
14:43:01.0591 5144 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
14:43:01.0716 5144 b06bdrv - ok
14:43:01.0794 5144 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
14:43:01.0887 5144 b57nd60a - ok
14:43:01.0950 5144 [ 9E84A931DBEE0292E38ED672F6293A99 ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl664.sys
14:43:02.0121 5144 BCM43XX - ok
14:43:02.0152 5144 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
14:43:02.0230 5144 BDESVC - ok
14:43:02.0262 5144 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
14:43:02.0324 5144 Beep - ok
14:43:02.0418 5144 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
14:43:02.0511 5144 BFE - ok
14:43:02.0574 5144 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
14:43:02.0683 5144 BITS - ok
14:43:02.0714 5144 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
14:43:02.0776 5144 blbdrive - ok
14:43:02.0854 5144 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
14:43:02.0886 5144 Bonjour Service - ok
14:43:02.0932 5144 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
14:43:02.0964 5144 bowser - ok
14:43:02.0995 5144 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
14:43:03.0042 5144 BrFiltLo - ok
14:43:03.0104 5144 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
14:43:03.0120 5144 BrFiltUp - ok
14:43:03.0151 5144 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
14:43:03.0229 5144 Browser - ok
14:43:03.0244 5144 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
14:43:03.0322 5144 Brserid - ok
14:43:03.0338 5144 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
14:43:03.0385 5144 BrSerWdm - ok
14:43:03.0416 5144 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
14:43:03.0463 5144 BrUsbMdm - ok
14:43:03.0478 5144 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
14:43:03.0541 5144 BrUsbSer - ok
14:43:03.0556 5144 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
14:43:03.0619 5144 BTHMODEM - ok
14:43:03.0666 5144 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
14:43:03.0728 5144 bthserv - ok
14:43:03.0775 5144 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
14:43:03.0868 5144 cdfs - ok
14:43:03.0931 5144 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\drivers\cdrom.sys
14:43:03.0978 5144 cdrom - ok
14:43:04.0040 5144 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
14:43:04.0134 5144 CertPropSvc - ok
14:43:04.0165 5144 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
14:43:04.0227 5144 circlass - ok
14:43:04.0274 5144 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
14:43:04.0290 5144 CLFS - ok
14:43:04.0352 5144 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
14:43:04.0399 5144 clr_optimization_v2.0.50727_32 - ok
14:43:04.0461 5144 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
14:43:04.0492 5144 clr_optimization_v2.0.50727_64 - ok
14:43:04.0586 5144 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
14:43:04.0602 5144 clr_optimization_v4.0.30319_32 - ok
14:43:04.0664 5144 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
14:43:04.0680 5144 clr_optimization_v4.0.30319_64 - ok
14:43:04.0711 5144 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
14:43:04.0758 5144 CmBatt - ok
14:43:04.0789 5144 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
14:43:04.0804 5144 cmdide - ok
14:43:04.0836 5144 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
14:43:04.0882 5144 CNG - ok
14:43:04.0898 5144 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
14:43:04.0914 5144 Compbatt - ok
14:43:04.0976 5144 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
14:43:05.0023 5144 CompositeBus - ok
14:43:05.0054 5144 COMSysApp - ok
14:43:05.0085 5144 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
14:43:05.0116 5144 crcdisk - ok
14:43:05.0163 5144 [ D8129C49798CBBFB2E4351D4B7B8EF9C ] CryptSvc C:\Windows\system32\cryptsvc.dll
14:43:05.0241 5144 CryptSvc - ok
14:43:05.0304 5144 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
14:43:05.0397 5144 DcomLaunch - ok
14:43:05.0444 5144 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
14:43:05.0522 5144 defragsvc - ok
14:43:05.0553 5144 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
14:43:05.0616 5144 DfsC - ok
14:43:05.0694 5144 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
14:43:05.0787 5144 Dhcp - ok
14:43:05.0818 5144 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
14:43:05.0865 5144 discache - ok
14:43:05.0881 5144 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
14:43:05.0896 5144 Disk - ok
14:43:06.0021 5144 [ D5BCB77BE83CF99F508943945D46343D ] DKbFltr C:\Windows\syswow64\Drivers\DKbFltr.sys
14:43:06.0037 5144 DKbFltr - ok
14:43:06.0084 5144 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
14:43:06.0177 5144 Dnscache - ok
14:43:06.0224 5144 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
14:43:06.0318 5144 dot3svc - ok
14:43:06.0349 5144 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
14:43:06.0411 5144 DPS - ok
14:43:06.0458 5144 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
14:43:06.0474 5144 drmkaud - ok
14:43:06.0536 5144 [ AF2E16242AA723F68F461B6EAE2EAD3D ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
14:43:06.0567 5144 DXGKrnl - ok
14:43:06.0598 5144 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
14:43:06.0645 5144 EapHost - ok
14:43:06.0754 5144 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
14:43:06.0988 5144 ebdrv - ok
14:43:07.0051 5144 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
14:43:07.0129 5144 EFS - ok
14:43:07.0207 5144 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
14:43:07.0316 5144 ehRecvr - ok
14:43:07.0347 5144 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
14:43:07.0488 5144 ehSched - ok
14:43:07.0550 5144 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
14:43:07.0597 5144 elxstor - ok
14:43:07.0690 5144 [ 7C35C6865957289D9EFE6CC73F4AB2E1 ] ePowerSvc C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
14:43:07.0722 5144 ePowerSvc - ok
14:43:07.0722 5144 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
14:43:07.0768 5144 ErrDev - ok
14:43:07.0831 5144 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
14:43:07.0878 5144 EventSystem - ok
14:43:07.0893 5144 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
14:43:07.0956 5144 exfat - ok
14:43:07.0971 5144 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
14:43:08.0049 5144 fastfat - ok
14:43:08.0112 5144 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
14:43:08.0221 5144 Fax - ok
14:43:08.0268 5144 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
14:43:08.0283 5144 fdc - ok
14:43:08.0314 5144 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
14:43:08.0392 5144 fdPHost - ok
14:43:08.0424 5144 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
14:43:08.0486 5144 FDResPub - ok
14:43:08.0533 5144 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
14:43:08.0548 5144 FileInfo - ok
14:43:08.0564 5144 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
14:43:08.0611 5144 Filetrace - ok
14:43:08.0626 5144 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
14:43:08.0658 5144 flpydisk - ok
14:43:08.0736 5144 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
14:43:08.0798 5144 FltMgr - ok
14:43:08.0876 5144 [ C4C183E6551084039EC862DA1C945E3D ] FontCache C:\Windows\system32\FntCache.dll
14:43:08.0938 5144 FontCache - ok
14:43:08.0985 5144 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
14:43:09.0016 5144 FontCache3.0.0.0 - ok
14:43:09.0048 5144 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
14:43:09.0063 5144 FsDepends - ok
14:43:09.0110 5144 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
14:43:09.0126 5144 Fs_Rec - ok
14:43:09.0188 5144 [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
14:43:09.0250 5144 fvevol - ok
14:43:09.0266 5144 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
14:43:09.0313 5144 gagp30kx - ok
14:43:09.0391 5144 [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
14:43:09.0422 5144 GEARAspiWDM - ok
14:43:09.0484 5144 [ B93252C4C5A3733ECD5522CAF88DE02D ] GigasetGenericUSB_x64 C:\Windows\system32\DRIVERS\GigasetGenericUSB_x64.sys
14:43:09.0562 5144 GigasetGenericUSB_x64 - ok
14:43:09.0625 5144 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
14:43:09.0718 5144 gpsvc - ok
14:43:09.0812 5144 [ 816FD5A6F3C2F3D600900096632FC60E ] Greg_Service C:\Program Files (x86)\Acer\Registration\GregHSRW.exe
14:43:09.0859 5144 Greg_Service - ok
14:43:09.0968 5144 [ 626A24ED1228580B9518C01930936DF9 ] gupdate1cadd34a9973a19 C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
14:43:09.0999 5144 gupdate1cadd34a9973a19 - ok
14:43:10.0030 5144 [ 626A24ED1228580B9518C01930936DF9 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
14:43:10.0046 5144 gupdatem - ok
14:43:10.0093 5144 [ CC839E8D766CC31A7710C9F38CF3E375 ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
14:43:10.0108 5144 gusvc - ok
14:43:10.0186 5144 [ D8BF3C594BD17A37960362E6C6739B90 ] Hardlock C:\Windows\system32\drivers\hardlock.sys
14:43:10.0264 5144 Hardlock - ok
14:43:10.0311 5144 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
14:43:10.0389 5144 hcw85cir - ok
14:43:10.0452 5144 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
14:43:10.0483 5144 HdAudAddService - ok
14:43:10.0576 5144 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
14:43:10.0623 5144 HDAudBus - ok
14:43:10.0639 5144 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
14:43:10.0670 5144 HidBatt - ok
14:43:10.0701 5144 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
14:43:10.0732 5144 HidBth - ok
14:43:10.0764 5144 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
14:43:10.0810 5144 HidIr - ok
14:43:10.0857 5144 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
14:43:10.0935 5144 hidserv - ok
14:43:10.0998 5144 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
14:43:11.0044 5144 HidUsb - ok
14:43:11.0091 5144 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
14:43:11.0154 5144 hkmsvc - ok
14:43:11.0200 5144 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
14:43:11.0310 5144 HomeGroupListener - ok
14:43:11.0356 5144 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
14:43:11.0419 5144 HomeGroupProvider - ok
14:43:11.0450 5144 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
14:43:11.0481 5144 HpSAMD - ok
14:43:11.0544 5144 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
14:43:11.0653 5144 HTTP - ok
14:43:11.0684 5144 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
14:43:11.0715 5144 hwpolicy - ok
14:43:11.0778 5144 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
14:43:11.0809 5144 i8042prt - ok
14:43:11.0903 5144 [ 7548066DF68A8A1A56B043359F915F37 ] IAANTMON C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
14:43:11.0949 5144 IAANTMON - ok
14:43:11.0996 5144 [ 1D004CB1DA6323B1F55CAEF7F94B61D9 ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
14:43:12.0027 5144 iaStor - ok
14:43:12.0090 5144 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
14:43:12.0121 5144 iaStorV - ok
14:43:12.0199 5144 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
14:43:12.0261 5144 idsvc - ok
14:43:12.0449 5144 [ A87261EF1546325B559374F5689CF5BC ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
14:43:12.0683 5144 igfx - ok
14:43:12.0729 5144 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
14:43:12.0745 5144 iirsp - ok
14:43:12.0807 5144 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
14:43:12.0917 5144 IKEEXT - ok
14:43:12.0995 5144 [ 9AA6A93852E36FE76C3F7FC2904F3B01 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
14:43:13.0057 5144 IntcAzAudAddService - ok
14:43:13.0151 5144 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
14:43:13.0182 5144 intelide - ok
14:43:13.0197 5144 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
14:43:13.0229 5144 intelppm - ok
14:43:13.0275 5144 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
14:43:13.0353 5144 IPBusEnum - ok
14:43:13.0431 5144 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
14:43:13.0525 5144 IpFilterDriver - ok
14:43:13.0587 5144 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
14:43:13.0681 5144 iphlpsvc - ok
14:43:13.0728 5144 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
14:43:13.0775 5144 IPMIDRV - ok
14:43:13.0806 5144 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
14:43:13.0868 5144 IPNAT - ok
14:43:13.0962 5144 [ 0F261EC4F514926177C70C1832374231 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
14:43:14.0009 5144 iPod Service - ok
14:43:14.0024 5144 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
14:43:14.0133 5144 IRENUM - ok
14:43:14.0165 5144 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
14:43:14.0180 5144 isapnp - ok
14:43:14.0227 5144 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
14:43:14.0274 5144 iScsiPrt - ok
14:43:14.0305 5144 [ 249EE2D26CB1530F3BEDE0AC8B9E3099 ] k57nd60a C:\Windows\system32\DRIVERS\k57nd60a.sys
14:43:14.0336 5144 k57nd60a - ok
14:43:14.0352 5144 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
14:43:14.0367 5144 kbdclass - ok
14:43:14.0414 5144 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
14:43:14.0461 5144 kbdhid - ok
14:43:14.0492 5144 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
14:43:14.0523 5144 KeyIso - ok
14:43:14.0555 5144 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
14:43:14.0586 5144 KSecDD - ok
14:43:14.0601 5144 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
14:43:14.0633 5144 KSecPkg - ok
14:43:14.0648 5144 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
14:43:14.0742 5144 ksthunk - ok
14:43:14.0773 5144 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
14:43:14.0851 5144 KtmRm - ok
14:43:14.0913 5144 [ 2AC603C3188C704CFCE353659AA7AD71 ] L1E C:\Windows\system32\DRIVERS\L1E62x64.sys
14:43:14.0960 5144 L1E - ok
14:43:15.0007 5144 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
14:43:15.0101 5144 LanmanServer - ok
14:43:15.0147 5144 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
14:43:15.0241 5144 LanmanWorkstation - ok
14:43:15.0288 5144 [ 156AB2E56DC3CA0B582E3362E07CDED7 ] lirsgt C:\Windows\system32\DRIVERS\lirsgt.sys
14:43:15.0303 5144 lirsgt - ok
14:43:15.0335 5144 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
14:43:15.0397 5144 lltdio - ok
14:43:15.0444 5144 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
14:43:15.0522 5144 lltdsvc - ok
14:43:15.0569 5144 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
14:43:15.0600 5144 lmhosts - ok
14:43:15.0662 5144 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
14:43:15.0678 5144 LSI_FC - ok
14:43:15.0725 5144 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
14:43:15.0756 5144 LSI_SAS - ok
14:43:15.0771 5144 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
14:43:15.0787 5144 LSI_SAS2 - ok
14:43:15.0803 5144 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
14:43:15.0834 5144 LSI_SCSI - ok
14:43:15.0865 5144 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
14:43:15.0927 5144 luafv - ok
14:43:16.0052 5144 [ DDCC236009C707761D60E5C76D639176 ] McComponentHostService C:\Program Files (x86)\McAfee Security Scan\3.0.318\McCHSvc.exe
14:43:16.0083 5144 McComponentHostService - ok
14:43:16.0130 5144 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
14:43:16.0177 5144 Mcx2Svc - ok
14:43:16.0224 5144 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
14:43:16.0239 5144 megasas - ok
14:43:16.0271 5144 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
14:43:16.0302 5144 MegaSR - ok
14:43:16.0395 5144 [ 123271BD5237AB991DC5C21FDF8835EB ] Microsoft Office Groove Audit Service C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
14:43:16.0427 5144 Microsoft Office Groove Audit Service - ok
14:43:16.0458 5144 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
14:43:16.0551 5144 MMCSS - ok
14:43:16.0583 5144 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
14:43:16.0629 5144 Modem - ok
14:43:16.0676 5144 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
14:43:16.0723 5144 monitor - ok
14:43:16.0785 5144 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
14:43:16.0817 5144 mouclass - ok
14:43:16.0848 5144 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
14:43:16.0879 5144 mouhid - ok
14:43:16.0926 5144 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
14:43:16.0957 5144 mountmgr - ok
14:43:17.0082 5144 [ BA7BC321BFEF85B525A9417693B1FF09 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
14:43:17.0113 5144 MozillaMaintenance - ok
14:43:17.0160 5144 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
14:43:17.0191 5144 mpio - ok
14:43:17.0207 5144 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
14:43:17.0253 5144 mpsdrv - ok
14:43:17.0300 5144 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
14:43:17.0425 5144 MpsSvc - ok
14:43:17.0456 5144 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
14:43:17.0519 5144 MRxDAV - ok
14:43:17.0565 5144 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
14:43:17.0628 5144 mrxsmb - ok
14:43:17.0659 5144 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
14:43:17.0721 5144 mrxsmb10 - ok
14:43:17.0737 5144 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
14:43:17.0784 5144 mrxsmb20 - ok
14:43:17.0815 5144 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
14:43:17.0846 5144 msahci - ok
14:43:17.0877 5144 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
14:43:17.0893 5144 msdsm - ok
14:43:17.0909 5144 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
14:43:17.0955 5144 MSDTC - ok
14:43:18.0002 5144 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
14:43:18.0049 5144 Msfs - ok
14:43:18.0065 5144 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
14:43:18.0127 5144 mshidkmdf - ok
14:43:18.0158 5144 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
14:43:18.0174 5144 msisadrv - ok
14:43:18.0205 5144 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
14:43:18.0283 5144 MSiSCSI - ok
14:43:18.0283 5144 msiserver - ok
14:43:18.0345 5144 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
14:43:18.0439 5144 MSKSSRV - ok
14:43:18.0470 5144 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
14:43:18.0548 5144 MSPCLOCK - ok
14:43:18.0579 5144 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
14:43:18.0657 5144 MSPQM - ok
14:43:18.0720 5144 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
14:43:18.0767 5144 MsRPC - ok
14:43:18.0813 5144 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
14:43:18.0829 5144 mssmbios - ok
14:43:18.0845 5144 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
14:43:18.0907 5144 MSTEE - ok
14:43:18.0938 5144 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
14:43:18.0985 5144 MTConfig - ok
14:43:19.0016 5144 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
14:43:19.0032 5144 Mup - ok
14:43:19.0063 5144 [ 6FFECC25B39DC7652A0CEC0ADA9DB589 ] mwlPSDFilter C:\Windows\system32\DRIVERS\mwlPSDFilter.sys
14:43:19.0079 5144 mwlPSDFilter - ok
14:43:19.0079 5144 [ 0BEFE32CA56D6EE89D58175725596A85 ] mwlPSDNServ C:\Windows\system32\DRIVERS\mwlPSDNServ.sys
14:43:19.0094 5144 mwlPSDNServ - ok
14:43:19.0110 5144 [ D43BC633B8660463E446E28E14A51262 ] mwlPSDVDisk C:\Windows\system32\DRIVERS\mwlPSDVDisk.sys
14:43:19.0125 5144 mwlPSDVDisk - ok
14:43:19.0188 5144 [ 0F5FAAC852DB4C340B7A2F187E3358B8 ] MWLService C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\\MWLService.exe
14:43:19.0203 5144 MWLService - ok
14:43:19.0266 5144 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
14:43:19.0359 5144 napagent - ok
14:43:19.0406 5144 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
14:43:19.0500 5144 NativeWifiP - ok
14:43:19.0578 5144 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
14:43:19.0656 5144 NDIS - ok
14:43:19.0687 5144 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
14:43:19.0734 5144 NdisCap - ok
14:43:19.0749 5144 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
14:43:19.0812 5144 NdisTapi - ok
14:43:19.0859 5144 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
14:43:19.0937 5144 Ndisuio - ok
14:43:19.0983 5144 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
14:43:20.0061 5144 NdisWan - ok
14:43:20.0093 5144 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
14:43:20.0171 5144 NDProxy - ok
14:43:20.0217 5144 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
14:43:20.0295 5144 NetBIOS - ok
14:43:20.0327 5144 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
14:43:20.0436 5144 NetBT - ok
14:43:20.0467 5144 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
14:43:20.0483 5144 Netlogon - ok
14:43:20.0529 5144 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
14:43:20.0592 5144 Netman - ok
14:43:20.0607 5144 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
14:43:20.0670 5144 netprofm - ok
14:43:20.0717 5144 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
14:43:20.0732 5144 NetTcpPortSharing - ok
14:43:20.0919 5144 [ 4D85A450EDEF10C38882182753A49AAE ] NETw5s64 C:\Windows\system32\DRIVERS\NETw5s64.sys
14:43:21.0216 5144 NETw5s64 - ok
14:43:21.0387 5144 [ 705283C02177809CA9FA7CC58A4F1E77 ] netw5v64 C:\Windows\system32\DRIVERS\netw5v64.sys
14:43:21.0631 5144 netw5v64 - ok
14:43:21.0663 5144 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
14:43:21.0678 5144 nfrd960 - ok
14:43:21.0725 5144 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
14:43:21.0756 5144 NlaSvc - ok
14:43:21.0819 5144 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
14:43:21.0865 5144 Npfs - ok
14:43:21.0881 5144 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
14:43:21.0943 5144 nsi - ok
14:43:21.0990 5144 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
14:43:22.0053 5144 nsiproxy - ok
14:43:22.0162 5144 [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
14:43:22.0287 5144 Ntfs - ok
14:43:22.0380 5144 [ 70E3EB0CEF795D348F05E5A9B115F491 ] NTI IScheduleSvc C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe
14:43:22.0411 5144 NTI IScheduleSvc - ok
14:43:22.0458 5144 [ FD324CCE1D4D5BB5AF65F8E55B462C7E ] NTIBackupSvc C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
14:43:22.0474 5144 NTIBackupSvc - ok
14:43:22.0505 5144 [ 64DDD0DEE976302F4BD93E5EFCC2F013 ] NTIDrvr C:\Windows\system32\drivers\NTIDrvr.sys
14:43:22.0521 5144 NTIDrvr - ok
14:43:22.0567 5144 [ 3F6268A2EC33CD38CF75C880AF8DED42 ] NTISchedulerSvc C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
14:43:22.0619 5144 NTISchedulerSvc - ok
14:43:22.0650 5144 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
14:43:22.0682 5144 Null - ok
14:43:22.0728 5144 [ 6E41A4DF26340A07A489B721F9721EC1 ] NVHDA C:\Windows\system32\drivers\nvhda64v.sys
14:43:22.0744 5144 NVHDA - ok
14:43:23.0009 5144 [ 24F526274353FF7BB93D99D238E582DA ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
14:43:23.0196 5144 nvlddmkm - ok
14:43:23.0274 5144 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
14:43:23.0306 5144 nvraid - ok
14:43:23.0337 5144 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
14:43:23.0368 5144 nvstor - ok
14:43:23.0399 5144 [ AAD3B6F3E5B9FE1D29BF627904F6120F ] nvsvc C:\Windows\system32\nvvsvc.exe
14:43:23.0415 5144 nvsvc - ok
14:43:23.0462 5144 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
14:43:23.0477 5144 nv_agp - ok
14:43:23.0602 5144 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
14:43:23.0649 5144 odserv - ok
14:43:23.0680 5144 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
14:43:23.0742 5144 ohci1394 - ok
14:43:23.0789 5144 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
14:43:23.0820 5144 ose - ok
14:43:23.0867 5144 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
14:43:23.0930 5144 p2pimsvc - ok
14:43:23.0961 5144 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
14:43:24.0023 5144 p2psvc - ok
14:43:24.0086 5144 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
14:43:24.0117 5144 Parport - ok
14:43:24.0164 5144 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
14:43:24.0179 5144 partmgr - ok
14:43:24.0179 5144 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
14:43:24.0242 5144 PcaSvc - ok
14:43:24.0288 5144 pccsmcfd - ok
14:43:24.0351 5144 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
14:43:24.0398 5144 pci - ok
14:43:24.0413 5144 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
14:43:24.0429 5144 pciide - ok
14:43:24.0444 5144 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
14:43:24.0476 5144 pcmcia - ok
14:43:24.0491 5144 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
14:43:24.0507 5144 pcw - ok
14:43:24.0538 5144 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
14:43:24.0632 5144 PEAUTH - ok
14:43:24.0710 5144 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
14:43:24.0772 5144 PerfHost - ok
14:43:24.0850 5144 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
14:43:24.0990 5144 pla - ok
14:43:25.0068 5144 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
14:43:25.0131 5144 PlugPlay - ok
14:43:25.0162 5144 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
14:43:25.0224 5144 PNRPAutoReg - ok
14:43:25.0256 5144 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
14:43:25.0287 5144 PNRPsvc - ok
14:43:25.0334 5144 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
14:43:25.0443 5144 PolicyAgent - ok
14:43:25.0490 5144 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
14:43:25.0552 5144 Power - ok
14:43:25.0614 5144 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
14:43:25.0677 5144 PptpMiniport - ok
14:43:25.0708 5144 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
14:43:25.0739 5144 Processor - ok
14:43:25.0786 5144 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
14:43:25.0833 5144 ProfSvc - ok
14:43:25.0848 5144 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
14:43:25.0864 5144 ProtectedStorage - ok
14:43:25.0926 5144 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
14:43:25.0973 5144 Psched - ok
14:43:26.0036 5144 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
14:43:26.0129 5144 ql2300 - ok
14:43:26.0160 5144 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
14:43:26.0176 5144 ql40xx - ok
14:43:26.0192 5144 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
14:43:26.0270 5144 QWAVE - ok
14:43:26.0301 5144 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
14:43:26.0332 5144 QWAVEdrv - ok
14:43:26.0363 5144 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
14:43:26.0426 5144 RasAcd - ok
14:43:26.0472 5144 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
14:43:26.0504 5144 RasAgileVpn - ok
14:43:26.0519 5144 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
14:43:26.0566 5144 RasAuto - ok
14:43:26.0597 5144 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
14:43:26.0675 5144 Rasl2tp - ok
14:43:26.0706 5144 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
14:43:26.0784 5144 RasMan - ok
14:43:26.0800 5144 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
14:43:26.0878 5144 RasPppoe - ok
14:43:26.0925 5144 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
14:43:26.0987 5144 RasSstp - ok
14:43:27.0034 5144 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
14:43:27.0159 5144 rdbss - ok
14:43:27.0190 5144 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
14:43:27.0237 5144 rdpbus - ok
14:43:27.0252 5144 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
14:43:27.0315 5144 RDPCDD - ok
14:43:27.0362 5144 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
14:43:27.0440 5144 RDPENCDD - ok
14:43:27.0471 5144 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
14:43:27.0502 5144 RDPREFMP - ok
14:43:27.0549 5144 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
14:43:27.0642 5144 RDPWD - ok
14:43:27.0689 5144 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
14:43:27.0752 5144 rdyboost - ok
14:43:27.0767 5144 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
14:43:27.0845 5144 RemoteAccess - ok
14:43:27.0876 5144 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
14:43:27.0954 5144 RemoteRegistry - ok
14:43:27.0986 5144 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
14:43:28.0032 5144 RpcEptMapper - ok
14:43:28.0064 5144 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
14:43:28.0110 5144 RpcLocator - ok
14:43:28.0173 5144 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
14:43:28.0220 5144 RpcSs - ok
14:43:28.0266 5144 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
14:43:28.0360 5144 rspndr - ok
14:43:28.0391 5144 [ 2DB8116D52B19216812C4E6D5D837810 ] RSUSBSTOR C:\Windows\system32\Drivers\RtsUStor.sys
14:43:28.0454 5144 RSUSBSTOR - ok
14:43:28.0485 5144 RtsUIR - ok
14:43:28.0516 5144 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
14:43:28.0547 5144 SamSs - ok
14:43:28.0610 5144 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
14:43:28.0641 5144 sbp2port - ok
14:43:28.0688 5144 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
14:43:28.0781 5144 SCardSvr - ok
14:43:28.0812 5144 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
14:43:28.0875 5144 scfilter - ok
14:43:28.0937 5144 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
14:43:29.0031 5144 Schedule - ok
14:43:29.0062 5144 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
14:43:29.0093 5144 SCPolicySvc - ok
14:43:29.0140 5144 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
14:43:29.0218 5144 SDRSVC - ok
14:43:29.0249 5144 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
14:43:29.0327 5144 secdrv - ok
14:43:29.0390 5144 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
14:43:29.0468 5144 seclogon - ok
14:43:29.0514 5144 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
14:43:29.0561 5144 SENS - ok
14:43:29.0577 5144 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
14:43:29.0655 5144 SensrSvc - ok
14:43:29.0686 5144 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
14:43:29.0702 5144 Serenum - ok
14:43:29.0748 5144 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
14:43:29.0780 5144 Serial - ok
14:43:29.0858 5144 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
14:43:29.0920 5144 sermouse - ok
14:43:29.0967 5144 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
14:43:30.0029 5144 SessionEnv - ok
14:43:30.0076 5144 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
14:43:30.0138 5144 sffdisk - ok
14:43:30.0170 5144 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
14:43:30.0216 5144 sffp_mmc - ok
14:43:30.0248 5144 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
14:43:30.0294 5144 sffp_sd - ok
14:43:30.0341 5144 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
14:43:30.0372 5144 sfloppy - ok
14:43:30.0419 5144 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
14:43:30.0497 5144 SharedAccess - ok
14:43:30.0544 5144 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
14:43:30.0638 5144 ShellHWDetection - ok
14:43:30.0669 5144 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
14:43:30.0684 5144 SiSRaid2 - ok
14:43:30.0700 5144 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
14:43:30.0716 5144 SiSRaid4 - ok
14:43:30.0762 5144 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
14:43:30.0825 5144 Smb - ok
14:43:30.0872 5144 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
14:43:30.0918 5144 SNMPTRAP - ok
14:43:30.0950 5144 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
14:43:30.0965 5144 spldr - ok
14:43:31.0028 5144 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
14:43:31.0090 5144 Spooler - ok
14:43:31.0215 5144 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
14:43:31.0371 5144 sppsvc - ok
14:43:31.0402 5144 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
14:43:31.0480 5144 sppuinotify - ok
14:43:31.0527 5144 [ 602884696850C86434530790B110E8EB ] sptd C:\Windows\system32\Drivers\sptd.sys
14:43:31.0527 5144 Suspicious file (NoAccess): C:\Windows\system32\Drivers\sptd.sys. md5: 602884696850C86434530790B110E8EB
14:43:31.0527 5144 sptd ( LockedFile.Multi.Generic ) - warning
14:43:31.0527 5144 sptd - detected LockedFile.Multi.Generic (1)
14:43:31.0589 5144 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
14:43:31.0683 5144 srv - ok
14:43:31.0698 5144 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
14:43:31.0776 5144 srv2 - ok
14:43:31.0808 5144 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
14:43:31.0870 5144 srvnet - ok
14:43:31.0917 5144 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
14:43:32.0026 5144 SSDPSRV - ok
14:43:32.0057 5144 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
14:43:32.0104 5144 SstpSvc - ok
14:43:32.0135 5144 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
14:43:32.0151 5144 stexstor - ok
14:43:32.0198 5144 [ DECACB6921DED1A38642642685D77DAC ] StillCam C:\Windows\system32\DRIVERS\serscan.sys
14:43:32.0260 5144 StillCam - ok
14:43:32.0338 5144 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
14:43:32.0416 5144 stisvc - ok
14:43:32.0463 5144 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
14:43:32.0478 5144 swenum - ok
14:43:32.0510 5144 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
14:43:32.0603 5144 swprv - ok
14:43:32.0666 5144 [ BCF305959B53B200CEB2AD25AD22F8A7 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
14:43:32.0697 5144 SynTP - ok
14:43:32.0775 5144 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
14:43:32.0884 5144 SysMain - ok
14:43:32.0915 5144 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
14:43:32.0978 5144 TabletInputService - ok
14:43:33.0024 5144 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
14:43:33.0102 5144 TapiSrv - ok
14:43:33.0134 5144 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
14:43:33.0180 5144 TBS - ok
14:43:33.0258 5144 [ 9849EA3843A2ADBDD1497E97A85D8CAE ] Tcpip C:\Windows\system32\drivers\tcpip.sys
14:43:33.0383 5144 Tcpip - ok
14:43:33.0430 5144 [ 9849EA3843A2ADBDD1497E97A85D8CAE ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
14:43:33.0477 5144 TCPIP6 - ok
14:43:33.0508 5144 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
14:43:33.0570 5144 tcpipreg - ok
14:43:33.0602 5144 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
14:43:33.0680 5144 TDPIPE - ok
14:43:33.0726 5144 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
14:43:33.0789 5144 TDTCP - ok
14:43:33.0820 5144 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
14:43:33.0882 5144 tdx - ok
14:43:33.0929 5144 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
14:43:33.0960 5144 TermDD - ok
14:43:34.0023 5144 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
14:43:34.0116 5144 TermService - ok
14:43:34.0116 5144 TFsExDisk - ok
14:43:34.0163 5144 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
14:43:34.0210 5144 Themes - ok
14:43:34.0241 5144 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
14:43:34.0288 5144 THREADORDER - ok
14:43:34.0288 5144 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
14:43:34.0366 5144 TrkWks - ok
14:43:34.0444 5144 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
14:43:34.0491 5144 TrustedInstaller - ok
14:43:34.0538 5144 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
14:43:34.0584 5144 tssecsrv - ok
14:43:34.0647 5144 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
14:43:34.0725 5144 TsUsbFlt - ok
14:43:34.0787 5144 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
14:43:34.0896 5144 tunnel - ok
14:43:34.0928 5144 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
14:43:34.0959 5144 uagp35 - ok
14:43:34.0990 5144 [ 2E22C1FD397A5A9FFEF55E9D1FC96C00 ] UBHelper C:\Windows\system32\drivers\UBHelper.sys
14:43:35.0006 5144 UBHelper - ok
14:43:35.0052 5144 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
14:43:35.0130 5144 udfs - ok
14:43:35.0177 5144 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
14:43:35.0193 5144 UI0Detect - ok
14:43:35.0208 5144 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
14:43:35.0240 5144 uliagpkx - ok
14:43:35.0286 5144 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
14:43:35.0333 5144 umbus - ok
14:43:35.0364 5144 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
14:43:35.0411 5144 UmPass - ok
14:43:35.0489 5144 [ 70DDE3A86DBEB1D6C3C30AD687B1877A ] Updater Service C:\Program Files\Acer\Acer Updater\UpdaterService.exe
14:43:35.0536 5144 Updater Service - ok
14:43:35.0552 5144 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
14:43:35.0645 5144 upnphost - ok
14:43:35.0692 5144 [ AF1B9474D67897D0C2CFF58E0ACEACCC ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
14:43:35.0723 5144 USBAAPL64 ( UnsignedFile.Multi.Generic ) - warning
14:43:35.0723 5144 USBAAPL64 - detected UnsignedFile.Multi.Generic (1)
14:43:35.0754 5144 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
14:43:35.0801 5144 usbccgp - ok
14:43:35.0801 5144 USBCCID - ok
14:43:35.0848 5144 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
14:43:35.0879 5144 usbcir - ok
14:43:35.0895 5144 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
14:43:35.0942 5144 usbehci - ok
14:43:36.0004 5144 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
14:43:36.0066 5144 usbhub - ok
14:43:36.0113 5144 [ 58E546BBAF87664FC57E0F6081E4F609 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
14:43:36.0129 5144 usbohci - ok
14:43:36.0160 5144 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
14:43:36.0207 5144 usbprint - ok
14:43:36.0254 5144 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
14:43:36.0316 5144 USBSTOR - ok
14:43:36.0347 5144 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
14:43:36.0410 5144 usbuhci - ok
14:43:36.0472 5144 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
14:43:36.0534 5144 usbvideo - ok
14:43:36.0566 5144 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
14:43:36.0628 5144 UxSms - ok
14:43:36.0644 5144 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
14:43:36.0659 5144 VaultSvc - ok
14:43:36.0722 5144 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
14:43:36.0753 5144 vdrvroot - ok
14:43:36.0800 5144 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
14:43:36.0862 5144 vds - ok
14:43:36.0893 5144 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
14:43:36.0924 5144 vga - ok
14:43:36.0940 5144 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
14:43:37.0002 5144 VgaSave - ok
14:43:37.0034 5144 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
14:43:37.0049 5144 vhdmp - ok
14:43:37.0080 5144 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
14:43:37.0096 5144 viaide - ok
14:43:37.0112 5144 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
14:43:37.0127 5144 volmgr - ok
14:43:37.0190 5144 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
14:43:37.0205 5144 volmgrx - ok
14:43:37.0236 5144 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
14:43:37.0268 5144 volsnap - ok
14:43:37.0299 5144 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
14:43:37.0330 5144 vsmraid - ok
14:43:37.0424 5144 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
14:43:37.0517 5144 VSS - ok
14:43:37.0548 5144 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
14:43:37.0580 5144 vwifibus - ok
14:43:37.0595 5144 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
14:43:37.0626 5144 vwififlt - ok
14:43:37.0673 5144 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
14:43:37.0720 5144 vwifimp - ok
14:43:37.0767 5144 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
14:43:37.0829 5144 W32Time - ok
14:43:37.0860 5144 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
14:43:37.0892 5144 WacomPen - ok
14:43:37.0970 5144 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
14:43:38.0048 5144 WANARP - ok
14:43:38.0079 5144 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
14:43:38.0110 5144 Wanarpv6 - ok
14:43:38.0188 5144 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
14:43:38.0344 5144 wbengine - ok
14:43:38.0375 5144 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
14:43:38.0406 5144 WbioSrvc - ok
14:43:38.0469 5144 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
14:43:38.0547 5144 wcncsvc - ok
14:43:38.0562 5144 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
14:43:38.0594 5144 WcsPlugInService - ok
14:43:38.0625 5144 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
14:43:38.0640 5144 Wd - ok
14:43:38.0687 5144 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
14:43:38.0750 5144 Wdf01000 - ok
14:43:38.0765 5144 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
14:43:38.0906 5144 WdiServiceHost - ok
14:43:38.0906 5144 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
14:43:38.0921 5144 WdiSystemHost - ok
14:43:38.0968 5144 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
14:43:39.0030 5144 WebClient - ok
14:43:39.0062 5144 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
14:43:39.0140 5144 Wecsvc - ok
14:43:39.0171 5144 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
14:43:39.0218 5144 wercplsupport - ok
14:43:39.0233 5144 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
14:43:39.0280 5144 WerSvc - ok
14:43:39.0311 5144 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
14:43:39.0358 5144 WfpLwf - ok
14:43:39.0358 5144 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
14:43:39.0374 5144 WIMMount - ok
14:43:39.0405 5144 WinDefend - ok
14:43:39.0420 5144 WinHttpAutoProxySvc - ok
14:43:39.0467 5144 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
14:43:39.0561 5144 Winmgmt - ok
14:43:39.0654 5144 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
14:43:39.0810 5144 WinRM - ok
14:43:39.0920 5144 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
14:43:39.0982 5144 WinUsb - ok
14:43:40.0044 5144 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
14:43:40.0107 5144 Wlansvc - ok
14:43:40.0138 5144 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
14:43:40.0154 5144 WmiAcpi - ok
14:43:40.0185 5144 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
14:43:40.0232 5144 wmiApSrv - ok
14:43:40.0294 5144 WMPNetworkSvc - ok
14:43:40.0325 5144 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
14:43:40.0341 5144 WPCSvc - ok
14:43:40.0388 5144 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
14:43:40.0419 5144 WPDBusEnum - ok
14:43:40.0450 5144 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
14:43:40.0512 5144 ws2ifsl - ok
14:43:40.0544 5144 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
14:43:40.0590 5144 wscsvc - ok
14:43:40.0668 5144 [ 8D918B1DB190A4D9B1753A66FA8C96E8 ] WSDPrintDevice C:\Windows\system32\DRIVERS\WSDPrint.sys
14:43:40.0731 5144 WSDPrintDevice - ok
14:43:40.0731 5144 WSearch - ok
14:43:40.0824 5144 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
14:43:40.0934 5144 wuauserv - ok
14:43:40.0980 5144 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
14:43:41.0043 5144 WudfPf - ok
14:43:41.0090 5144 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
14:43:41.0153 5144 WUDFRd - ok
14:43:41.0184 5144 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
14:43:41.0262 5144 wudfsvc - ok
14:43:41.0325 5144 [ FE90B750AB808FB9DD8FBB428B5FF83B ] WwanSvc C:\Windows\System32\wwansvc.dll
14:43:41.0434 5144 WwanSvc - ok
14:43:41.0465 5144 ================ Scan global ===============================
14:43:41.0496 5144 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
14:43:41.0559 5144 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
14:43:41.0574 5144 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
14:43:41.0652 5144 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
14:43:41.0683 5144 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
14:43:41.0699 5144 [Global] - ok
14:43:41.0699 5144 ================ Scan MBR ==================================
14:43:41.0715 5144 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
14:43:42.0184 5144 \Device\Harddisk0\DR0 - ok
14:43:42.0184 5144 ================ Scan VBR ==================================
14:43:42.0184 5144 [ F6DB4357816CB62E20C12650128FA49F ] \Device\Harddisk0\DR0\Partition1
14:43:42.0199 5144 \Device\Harddisk0\DR0\Partition1 - ok
14:43:42.0230 5144 [ 3E51E668A874195C204969831B7F9A0D ] \Device\Harddisk0\DR0\Partition2
14:43:42.0230 5144 \Device\Harddisk0\DR0\Partition2 - ok
14:43:42.0230 5144 ============================================================
14:43:42.0230 5144 Scan finished
14:43:42.0230 5144 ============================================================
14:43:42.0246 6140 Detected object count: 2
14:43:42.0246 6140 Actual detected object count: 2
14:44:16.0748 6140 sptd ( LockedFile.Multi.Generic ) - skipped by user
14:44:16.0748 6140 sptd ( LockedFile.Multi.Generic ) - User select action: Skip
14:44:16.0748 6140 USBAAPL64 ( UnsignedFile.Multi.Generic ) - skipped by user
14:44:16.0763 6140 USBAAPL64 ( UnsignedFile.Multi.Generic ) - User select action: Skip
14:44:20.0260 4060 Deinitialize success
|
|
06.07.2013, 13:49
| #9 |
| /// Malware-holic | Bundestrojaner (windows7) komme nicht mehr weiter Sieht gut aus. Scan mit Combofix
__________________ -Verdächtige mails bitte an uns zur Analyse weiterleiten: markusg.trojaner-board@web.de Weiterleiten Anleitung: http://markusg.trojaner-board.de Mails bitte vorerst nach obiger Anleitung an markusg.trojaner-board@web.de Weiterleiten Wenn Ihr uns unterstützen möchtet |
|
06.07.2013, 13:52
| #10 |
| | Bundestrojaner (windows7) komme nicht mehr weiter der Link zu Combofix geht irgendwie nicht. Von wo kann ich das noch bedenkenlos runterladen ? |
|
06.07.2013, 13:55
| #11 |
| /// Malware-holic | Bundestrojaner (windows7) komme nicht mehr weiter hmm versuchs noch mal, Link geht hier.
__________________ -Verdächtige mails bitte an uns zur Analyse weiterleiten: markusg.trojaner-board@web.de Weiterleiten Anleitung: http://markusg.trojaner-board.de Mails bitte vorerst nach obiger Anleitung an markusg.trojaner-board@web.de Weiterleiten Wenn Ihr uns unterstützen möchtet |
|
06.07.2013, 14:04
| #12 |
| | Bundestrojaner (windows7) komme nicht mehr weiter Ich komme da immer auf die Registrierungsseite vom Board. sorry, hat geklappt. war leider nicht eingelogt. geht weiter ! |
|
06.07.2013, 14:13
| #13 |
| /// Malware-holic | Bundestrojaner (windows7) komme nicht mehr weiter merkwürdig, aber nu gehts ja :-)
__________________ -Verdächtige mails bitte an uns zur Analyse weiterleiten: markusg.trojaner-board@web.de Weiterleiten Anleitung: http://markusg.trojaner-board.de Mails bitte vorerst nach obiger Anleitung an markusg.trojaner-board@web.de Weiterleiten Wenn Ihr uns unterstützen möchtet |
|
06.07.2013, 14:38
| #14 |
| | Bundestrojaner (windows7) komme nicht mehr weiter hmm, läuft jetzt seit 25 min und hängt jetzt ewig im blauen Bildschirm. da steht lösche Ordner und darunter zwei Verzeichnisse. hat er sich jetzt aufgehängt ? |
|
06.07.2013, 14:41
| #15 |
| /// Malware-holic | Bundestrojaner (windows7) komme nicht mehr weiter hmm lass ihn noch mal ne halbe stunde laufen, sollte er dann nicht weiter machen, starte neu, drücke f8, wähle abgesicherter Modus, melde dich in deinem Konto an, versuchs da noch mal. dann, wenn fertig, wieder normal starten, Combofix.txt posten
__________________ -Verdächtige mails bitte an uns zur Analyse weiterleiten: markusg.trojaner-board@web.de Weiterleiten Anleitung: http://markusg.trojaner-board.de Mails bitte vorerst nach obiger Anleitung an markusg.trojaner-board@web.de Weiterleiten Wenn Ihr uns unterstützen möchtet |
|
| Themen zu Bundestrojaner (windows7) komme nicht mehr weiter |
| adobe, antivir, association, avg, avira, desktop, farbar, farbar recovery scan tool, flash player, frst.txt, google, home, monitor, monitor.exe, mozilla, realtek, registry, rundll, scan, security, services.exe, software, svchost.exe, symantec, system, temp, vista, windows, windows xp, wiso |
WARNUNG an die MITLESER: 
Linear-Darstellung
