Frank Zeiger

Hi, ist wieder alles OK. Der Thread kann geschlossen werden. Vielen Dank

Hallo, dann ist ja alles wieder OK. Vielen Dank für die Hilfe.

Hi, habe jetzt alle Scans wie beschriben durchgeführt und es wurde auch noch etwas gefunden. Wurde dieser Trojaner jetzt automatisch gelöscht oder muss ich jetzt noch etwas tun?

Hallo, ich habe das OTL neu ausgeführt und den dern Report angehängt. Die Datei Extra.txt wurde nicht neu erzeugt. Ist das richtig oder hätte ich die alte datei erst löschen müssen?

Hallo, ich habe das Combofix runtergeladen und gestartet. Dabei habe ich folgendes festgestellt. Es erscheint irgendann die Meldung "Fertiggestellt Stufe 1 .... 50". Ist die Stufe 50 erreicht erscheint die Meldung "Lösche Daten", danach wird der Monitor schwarz und der PC fängt an neu zu booten.

Hallo, anbei der Report vom TDSSKiller 08:10:11.0937 2776 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35 08:10:12.0046 2776 ============================================================ 08:10:12.0046 2776 Current date / time: 2012/12/10 08:10:12.0046 08:10:12.0046 2776 SystemInfo: 08:10:12.0046 2776 08:10:12.0046 2776 OS Version: 5.1.2600 ServicePack: 3.0 08:10:12.0046 2776 Product type: Workstation 08:10:12.0046 2776 ComputerName: FRANKPC2 08:10:12.0046 2776 UserName: Frank 08:10:12.0046 2776 Windows directory: C:\WINDOWS 08:10:12.0046 2776 System windows directory: C:\WINDOWS 08:10:12.0046 2776 Processor architecture: Intel x86 08:10:12.0046 2776 Number of processors: 2 08:10:12.0046 2776 Page size: 0x1000 08:10:12.0046 2776 Boot type: Normal boot 08:10:12.0046 2776 ============================================================ 08:10:22.0062 2776 !crdlk 08:10:22.0062 2776 Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'A' 08:10:22.0078 2776 Drive \Device\Harddisk1\DR1 - Size: 0x2E93E36000 (186.31 Gb), SectorSize: 0x200, Cylinders: 0x5F01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'A' 08:10:22.0109 2776 ============================================================ 08:10:22.0109 2776 \Device\Harddisk0\DR0: 08:10:22.0109 2776 MBR partitions: 08:10:22.0109 2776 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0xEFFFFB2 08:10:22.0109 2776 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0xEFFFFF1, BlocksNum 0xE1C4590 08:10:22.0109 2776 \Device\Harddisk1\DR1: 08:10:22.0109 2776 MBR partitions: 08:10:22.0109 2776 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x17499EC1 08:10:22.0109 2776 ============================================================ 08:10:22.0140 2776 C: <-> \Device\Harddisk0\DR0\Partition1 08:10:22.0203 2776 D: <-> \Device\Harddisk0\DR0\Partition2 08:10:22.0234 2776 F: <-> \Device\Harddisk1\DR1\Partition1 08:10:22.0234 2776 ============================================================ 08:10:22.0234 2776 Initialize success 08:10:22.0234 2776 ============================================================ 08:10:28.0453 3372 ============================================================ 08:10:28.0453 3372 Scan started 08:10:28.0453 3372 Mode: Manual; 08:10:28.0453 3372 ============================================================ 08:10:28.0671 3372 ================ Scan system memory ======================== 08:10:28.0687 3372 System memory - ok 08:10:28.0687 3372 ================ Scan services ============================= 08:10:28.0703 3372 Suspicious service (NoAccess): 4d3ab16ba79b8771 08:10:28.0875 3372 [ 0907292986E05A8752BC1863556D229E ] 4d3ab16ba79b8771 C:\WINDOWS\System32\Drivers\4d3ab16ba79b8771.sys 08:10:28.0875 3372 Suspicious file (NoAccess): C:\WINDOWS\System32\Drivers\4d3ab16ba79b8771.sys. md5: 0907292986E05A8752BC1863556D229E 08:10:29.0375 3372 4d3ab16ba79b8771 ( Rootkit.Win32.Necurs.gen ) - infected 08:10:29.0375 3372 4d3ab16ba79b8771 - detected Rootkit.Win32.Necurs.gen (0) 08:10:29.0531 3372 [ A8A4E18857CDFD8D9AB81E2C9EAF89B5 ] a2acc C:\PROGRAMME\EMSISOFT ANTI-MALWARE\a2accx86.sys 08:10:29.0531 3372 a2acc - ok 08:10:29.0640 3372 [ E327C0DE1D7013BE360881801C0AB0FA ] a2AntiMalware C:\Programme\Emsisoft Anti-Malware\a2service.exe 08:10:29.0671 3372 a2AntiMalware - ok 08:10:29.0734 3372 [ F7EABCA8375EA2DC6F35C4BCA4757515 ] A2DDA C:\Programme\Emsisoft Anti-Malware\a2ddax86.sys 08:10:29.0734 3372 A2DDA - ok 08:10:29.0781 3372 [ 2DA26EB05B5495D3B2EE36456C239FB7 ] a2util C:\Programme\Emsisoft Anti-Malware\a2util32.sys 08:10:29.0781 3372 a2util - ok 08:10:29.0843 3372 [ 1FEC1C2506A20F0D2AF9D5D530B24CB3 ] a320raid C:\WINDOWS\system32\DRIVERS\a320raid.sys 08:10:29.0843 3372 a320raid - ok 08:10:29.0859 3372 Abiosdsk - ok 08:10:29.0890 3372 [ 6ABB91494FE6C59089B9336452AB2EA3 ] abp480n5 C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS 08:10:29.0906 3372 abp480n5 - ok 08:10:29.0968 3372 [ AC407F1A62C3A300B4F2B5A9F1D55B2C ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys 08:10:29.0968 3372 ACPI - ok 08:10:30.0015 3372 [ 9E1CA3160DAFB159CA14F83B1E317F75 ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys 08:10:30.0015 3372 ACPIEC - ok 08:10:30.0109 3372 [ 0CB0AA071C7B86A64F361DCFDF357329 ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe 08:10:30.0125 3372 AdobeFlashPlayerUpdateSvc - ok 08:10:30.0171 3372 [ 9A11864873DA202C996558B2106B0BBC ] adpu160m C:\WINDOWS\system32\DRIVERS\adpu160m.sys 08:10:30.0171 3372 adpu160m - ok 08:10:30.0218 3372 [ E4E13CE4C85C7E45A643BA54B8C8B16B ] adpu320 C:\WINDOWS\system32\DRIVERS\adpu320.sys 08:10:30.0218 3372 adpu320 - ok 08:10:30.0265 3372 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys 08:10:30.0265 3372 aec - ok 08:10:30.0343 3372 [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD C:\WINDOWS\System32\drivers\afd.sys 08:10:30.0343 3372 AFD - ok 08:10:30.0375 3372 [ 08FD04AA961BDC77FB983F328334E3D7 ] agp440 C:\WINDOWS\system32\DRIVERS\agp440.sys 08:10:30.0375 3372 agp440 - ok 08:10:30.0421 3372 [ 03A7E0922ACFE1B07D5DB2EEB0773063 ] agpCPQ C:\WINDOWS\system32\DRIVERS\agpCPQ.sys 08:10:30.0421 3372 agpCPQ - ok 08:10:30.0437 3372 [ C23EA9B5F46C7F7910DB3EAB648FF013 ] Aha154x C:\WINDOWS\system32\DRIVERS\aha154x.sys 08:10:30.0437 3372 Aha154x - ok 08:10:30.0453 3372 [ 19DD0FB48B0C18892F70E2E7D61A1529 ] aic78u2 C:\WINDOWS\system32\DRIVERS\aic78u2.sys 08:10:30.0453 3372 aic78u2 - ok 08:10:30.0468 3372 [ B7FE594A7468AA0132DEB03FB8E34326 ] aic78xx C:\WINDOWS\system32\DRIVERS\aic78xx.sys 08:10:30.0484 3372 aic78xx - ok 08:10:30.0531 3372 [ 3F9F42085AB5B6A55498A539C54575AB ] akshasp C:\WINDOWS\system32\DRIVERS\akshasp.sys 08:10:30.0531 3372 akshasp - ok 08:10:30.0578 3372 [ D2B95315CC47F9230006FDBCBA394D8D ] aksusb C:\WINDOWS\system32\DRIVERS\aksusb.sys 08:10:30.0578 3372 aksusb - ok 08:10:30.0625 3372 [ 738D80CC01D7BC7584BE917B7F544394 ] Alerter C:\WINDOWS\system32\alrsvc.dll 08:10:30.0625 3372 Alerter - ok 08:10:30.0671 3372 [ 190CD73D4984F94D823F9444980513E5 ] ALG C:\WINDOWS\System32\alg.exe 08:10:30.0671 3372 ALG - ok 08:10:30.0687 3372 [ 1140AB9938809700B46BB88E46D72A96 ] AliIde C:\WINDOWS\system32\DRIVERS\aliide.sys 08:10:30.0687 3372 AliIde - ok 08:10:30.0718 3372 [ CB08AED0DE2DD889A8A820CD8082D83C ] alim1541 C:\WINDOWS\system32\DRIVERS\alim1541.sys 08:10:30.0718 3372 alim1541 - ok 08:10:30.0765 3372 [ 5C3D047466AF6FC35A273F558F14EF2B ] AlteraByteBlaster C:\WINDOWS\system32\drivers\pgdhdlc.sys 08:10:30.0765 3372 AlteraByteBlaster - ok 08:10:30.0875 3372 [ 5E90A956526086634547BF8093FEB699 ] altio C:\Programme\Altium Designer Summer 09\System\Drivers\altio.sys 08:10:30.0875 3372 altio - ok 08:10:30.0921 3372 [ E46EE40E8ACE43EE51A1F3EEB1E03168 ] AltiumUSBJtag C:\WINDOWS\system32\Drivers\AltiumUSBJtag.sys 08:10:30.0937 3372 AltiumUSBJtag - ok 08:10:30.0968 3372 [ 95B4FB835E28AA1336CEEB07FD5B9398 ] amdagp C:\WINDOWS\system32\DRIVERS\amdagp.sys 08:10:30.0968 3372 amdagp - ok 08:10:31.0015 3372 [ 79F5ADD8D24BD6893F2903A3E2F3FAD6 ] amsint C:\WINDOWS\system32\DRIVERS\amsint.sys 08:10:31.0015 3372 amsint - ok 08:10:31.0109 3372 [ F401929EE0CC92BFE7F15161CA535383 ] Apple Mobile Device C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\AppleMobileDeviceService.exe 08:10:31.0109 3372 Apple Mobile Device - ok 08:10:31.0156 3372 [ D45960BE52C3C610D361977057F98C54 ] AppMgmt C:\WINDOWS\System32\appmgmts.dll 08:10:31.0156 3372 AppMgmt - ok 08:10:31.0250 3372 [ B5B8A80875C1DEDEDA8B02765642C32F ] Arp1394 C:\WINDOWS\system32\DRIVERS\arp1394.sys 08:10:31.0250 3372 Arp1394 - ok 08:10:31.0312 3372 [ 62D318E9A0C8FC9B780008E724283707 ] asc C:\WINDOWS\system32\DRIVERS\asc.sys 08:10:31.0312 3372 asc - ok 08:10:31.0343 3372 [ 69EB0CC7714B32896CCBFD5EDCBEA447 ] asc3350p C:\WINDOWS\system32\DRIVERS\asc3350p.sys 08:10:31.0343 3372 asc3350p - ok 08:10:31.0359 3372 [ 5D8DE112AA0254B907861E9E9C31D597 ] asc3550 C:\WINDOWS\system32\DRIVERS\asc3550.sys 08:10:31.0359 3372 asc3550 - ok 08:10:31.0468 3372 [ 0E5E4957549056E2BF2C49F4F6B601AD ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe 08:10:31.0578 3372 aspnet_state - ok 08:10:31.0687 3372 [ F16E27F1AFAD4DEE2F0651AC90691BBD ] Asset Management Daemon C:\Programme\Gemeinsame Dateien\Portrait Displays\Plugins\AM\dtsslsrv.exe 08:10:31.0687 3372 Asset Management Daemon - ok 08:10:31.0718 3372 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys 08:10:31.0718 3372 AsyncMac - ok 08:10:31.0734 3372 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys 08:10:31.0734 3372 atapi - ok 08:10:31.0750 3372 Atdisk - ok 08:10:31.0765 3372 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys 08:10:31.0765 3372 Atmarpc - ok 08:10:31.0828 3372 [ 58ED0D5452DF7BE732193E7999C6B9A4 ] AudioSrv C:\WINDOWS\System32\audiosrv.dll 08:10:31.0828 3372 AudioSrv - ok 08:10:31.0875 3372 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys 08:10:31.0875 3372 audstub - ok 08:10:31.0937 3372 [ 3A3A82FFD268BCFB7AE6A48CECF00AD9 ] b57w2k C:\WINDOWS\system32\DRIVERS\b57xp32.sys 08:10:31.0937 3372 b57w2k - ok 08:10:31.0984 3372 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys 08:10:31.0984 3372 Beep - ok 08:10:32.0031 3372 BitKinex - ok 08:10:32.0093 3372 [ D6F603772A789BB3228F310D650B8BD1 ] BITS C:\WINDOWS\system32\qmgr.dll 08:10:32.0187 3372 BITS - ok 08:10:32.0296 3372 [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] Bonjour Service C:\Programme\Bonjour\mDNSResponder.exe 08:10:32.0312 3372 Bonjour Service - ok 08:10:32.0328 3372 Brother XP spl Service - ok 08:10:32.0359 3372 [ B71549F23736ADF83A571061C47777FD ] Browser C:\WINDOWS\System32\browser.dll 08:10:32.0359 3372 Browser - ok 08:10:32.0390 3372 [ 0A4738EFE76716DF8B193CDBB3204870 ] Cadence License Manager C:\Programme\Cadence Design Systems\Cadence License Manager\lmgrd.exe 08:10:32.0390 3372 Cadence License Manager - ok 08:10:32.0562 3372 [ 048BB4921BC148EBA4020295AB265063 ] Canon Driver Information Assist Service C:\Programme\Canon\DIAS\CnxDIAS.exe 08:10:32.0640 3372 Canon Driver Information Assist Service - ok 08:10:32.0687 3372 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf C:\WINDOWS\system32\DRIVERS\cbidf2k.sys 08:10:32.0687 3372 cbidf - ok 08:10:32.0687 3372 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys 08:10:32.0687 3372 cbidf2k - ok 08:10:32.0765 3372 [ 0BE5AEF125BE881C4F854C554F2B025C ] CCDECODE C:\WINDOWS\system32\DRIVERS\CCDECODE.sys 08:10:32.0765 3372 CCDECODE - ok 08:10:32.0781 3372 [ F3EC03299634490E97BBCE94CD2954C7 ] cd20xrnt C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys 08:10:32.0781 3372 cd20xrnt - ok 08:10:32.0843 3372 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys 08:10:32.0843 3372 Cdaudio - ok 08:10:32.0890 3372 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys 08:10:32.0890 3372 Cdfs - ok 08:10:32.0968 3372 [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys 08:10:32.0968 3372 Cdrom - ok 08:10:33.0015 3372 [ BC9C2EF22EE0320C079E3FF9B4D29951 ] CERUSB C:\WINDOWS\system32\drivers\SiUSBXp.sys 08:10:33.0015 3372 CERUSB - ok 08:10:33.0015 3372 Changer - ok 08:10:33.0062 3372 [ 28E3040D1F1CA2008CD6B29DFEBC9A5E ] CiSvc C:\WINDOWS\system32\cisvc.exe 08:10:33.0062 3372 CiSvc - ok 08:10:33.0093 3372 [ 778A30ED3C134EB7E406AFC407E9997D ] ClipSrv C:\WINDOWS\system32\clipsrv.exe 08:10:33.0093 3372 ClipSrv - ok 08:10:33.0140 3372 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe 08:10:33.0218 3372 clr_optimization_v2.0.50727_32 - ok 08:10:33.0281 3372 [ C687F81290303D90099B027A6474F99F ] CmdIde C:\WINDOWS\system32\DRIVERS\cmdide.sys 08:10:33.0281 3372 CmdIde - ok 08:10:33.0390 3372 [ 5BD8084248CC2A9450D99AA3FDAEE160 ] ComRedirSvc C:\Programme\Lantronix\Redirector\redirsvc.exe 08:10:33.0390 3372 ComRedirSvc - ok 08:10:33.0406 3372 COMSysApp - ok 08:10:33.0421 3372 [ 3EE529119EED34CD212A215E8C40D4B6 ] Cpqarray C:\WINDOWS\system32\DRIVERS\cpqarray.sys 08:10:33.0421 3372 Cpqarray - ok 08:10:33.0453 3372 [ 611F824E5C703A5A899F84C5F1699E4D ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll 08:10:33.0453 3372 CryptSvc - ok 08:10:33.0484 3372 [ E550E7418984B65A78299D248F0A7F36 ] dac2w2k C:\WINDOWS\system32\DRIVERS\dac2w2k.sys 08:10:33.0484 3372 dac2w2k - ok 08:10:33.0515 3372 [ 683789CAA3864EB46125AE86FF677D34 ] dac960nt C:\WINDOWS\system32\DRIVERS\dac960nt.sys 08:10:33.0515 3372 dac960nt - ok 08:10:33.0562 3372 [ 3127AFBF2C1ED0AB14A1BBB7AAECB85B ] DcomLaunch C:\WINDOWS\system32\rpcss.dll 08:10:33.0578 3372 DcomLaunch - ok 08:10:33.0640 3372 [ C29A1C9B75BA38FA37F8C44405DEC360 ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll 08:10:33.0656 3372 Dhcp - ok 08:10:33.0703 3372 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys 08:10:33.0703 3372 Disk - ok 08:10:33.0718 3372 dmadmin - ok 08:10:33.0781 3372 [ 0DCFC8395A99FECBB1EF771CEC7FE4EA ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys 08:10:33.0796 3372 dmboot - ok 08:10:33.0859 3372 [ 53720AB12B48719D00E327DA470A619A ] dmio C:\WINDOWS\system32\drivers\dmio.sys 08:10:33.0859 3372 dmio - ok 08:10:33.0890 3372 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys 08:10:33.0890 3372 dmload - ok 08:10:33.0937 3372 [ 25C83FFBBA13B554EB6D59A9B2E2EE78 ] dmserver C:\WINDOWS\System32\dmserver.dll 08:10:33.0937 3372 dmserver - ok 08:10:34.0000 3372 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys 08:10:34.0000 3372 DMusic - ok 08:10:34.0046 3372 [ 407F3227AC618FD1CA54B335B083DE07 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll 08:10:34.0046 3372 Dnscache - ok 08:10:34.0093 3372 [ 676E36C4FF5BCEA1900F44182B9723E6 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll 08:10:34.0109 3372 Dot3svc - ok 08:10:34.0156 3372 [ 40F3B93B4E5B0126F2F5C0A7A5E22660 ] dpti2o C:\WINDOWS\system32\DRIVERS\dpti2o.sys 08:10:34.0156 3372 dpti2o - ok 08:10:34.0187 3372 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys 08:10:34.0187 3372 drmkaud - ok 08:10:34.0234 3372 [ 79666B3AC5EE1534E973469E4F0EB63B ] DS1410D C:\WINDOWS\system32\drivers\DS1410D.SYS 08:10:34.0234 3372 DS1410D - ok 08:10:34.0281 3372 [ 222F54132446024480741ABB675245B9 ] DTSRVC C:\Programme\Gemeinsame Dateien\Portrait Displays\Shared\DTSRVC.exe 08:10:34.0281 3372 DTSRVC - ok 08:10:34.0312 3372 [ 4E4F2FDDAB0A0736D7671134DCCE91FB ] EapHost C:\WINDOWS\System32\eapsvc.dll 08:10:34.0328 3372 EapHost - ok 08:10:34.0343 3372 [ BC9C2EF22EE0320C079E3FF9B4D29951 ] ELUSBXP C:\WINDOWS\system32\drivers\SiUSBXp.sys 08:10:34.0343 3372 ELUSBXP - ok 08:10:34.0406 3372 [ 877C18558D70587AA7823A1A308AC96B ] ERSvc C:\WINDOWS\System32\ersvc.dll 08:10:34.0406 3372 ERSvc - ok 08:10:34.0468 3372 [ A3EDBE9053889FB24AB22492472B39DC ] Eventlog C:\WINDOWS\system32\services.exe 08:10:34.0484 3372 Eventlog - ok 08:10:34.0562 3372 [ AF4F6B5739D18CA7972AB53E091CBC74 ] EventSystem C:\WINDOWS\system32\es.dll 08:10:34.0562 3372 EventSystem - ok 08:10:34.0609 3372 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys 08:10:34.0609 3372 Fastfat - ok 08:10:34.0656 3372 [ 2DB7D303C36DDD055215052F118E8E75 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll 08:10:34.0656 3372 FastUserSwitchingCompatibility - ok 08:10:34.0718 3372 [ 08B8B302AF0D1B3B8543429BBAC8F21F ] Fax C:\WINDOWS\system32\fxssvc.exe 08:10:34.0718 3372 Fax - ok 08:10:34.0781 3372 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\DRIVERS\fdc.sys 08:10:34.0781 3372 Fdc - ok 08:10:34.0828 3372 [ B0678A548587C5F1967B0D70BACAD6C1 ] Fips C:\WINDOWS\system32\drivers\Fips.sys 08:10:34.0828 3372 Fips - ok 08:10:34.0875 3372 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\DRIVERS\flpydisk.sys 08:10:34.0875 3372 Flpydisk - ok 08:10:34.0890 3372 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys 08:10:34.0906 3372 FltMgr - ok 08:10:34.0984 3372 [ 27C75AC6D6FC808D8244D9C9CEA681D1 ] fltsrv C:\WINDOWS\system32\DRIVERS\fltsrv.sys 08:10:34.0984 3372 fltsrv - ok 08:10:35.0078 3372 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe 08:10:35.0078 3372 FontCache3.0.0.0 - ok 08:10:35.0156 3372 [ C6EE3A87FE609D3E1DB9DBD072A248DE ] fssfltr C:\WINDOWS\system32\DRIVERS\fssfltr_tdi.sys 08:10:35.0156 3372 fssfltr - ok 08:10:35.0312 3372 [ 45B52394F9624237F33A8A3D73C0B221 ] fsssvc C:\Programme\Windows Live\Family Safety\fsssvc.exe 08:10:35.0312 3372 fsssvc - ok 08:10:35.0406 3372 [ 790A4CA68F44BE35967B3DF61F3E4675 ] FsUsbExDisk C:\WINDOWS\system32\FsUsbExDisk.SYS 08:10:35.0406 3372 FsUsbExDisk - ok 08:10:35.0468 3372 [ D3F9205CC4CB07553F2F9472C767EA87 ] FsUsbExService C:\WINDOWS\system32\FsUsbExService.Exe 08:10:35.0468 3372 FsUsbExService - ok 08:10:35.0515 3372 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys 08:10:35.0515 3372 Fs_Rec - ok 08:10:35.0578 3372 [ AB40574F179B60BE08FE87DF70ECF9EB ] FTD2XX C:\WINDOWS\system32\Drivers\FTD2XX.sys 08:10:35.0578 3372 FTD2XX - ok 08:10:35.0640 3372 [ AAE37F0F2F613218DCE17B42A18C38DB ] FTDIBUS C:\WINDOWS\system32\drivers\ftdibus.sys 08:10:35.0640 3372 FTDIBUS - ok 08:10:35.0703 3372 [ 8F1955CE42E1484714B542F341647778 ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys 08:10:35.0703 3372 Ftdisk - ok 08:10:35.0750 3372 [ 48BFD1BA45C9C9E7AB339E25ABFBA1D2 ] FTSER2K C:\WINDOWS\system32\drivers\ftser2k.sys 08:10:35.0750 3372 FTSER2K - ok 08:10:35.0812 3372 [ BC9C2EF22EE0320C079E3FF9B4D29951 ] GATEXP C:\WINDOWS\system32\drivers\SiUSBXp.sys 08:10:35.0812 3372 GATEXP - ok 08:10:35.0875 3372 [ 8182FF89C65E4D38B2DE4BB0FB18564E ] GEARAspiWDM C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys 08:10:35.0875 3372 GEARAspiWDM - ok 08:10:35.0921 3372 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys 08:10:35.0921 3372 Gpc - ok 08:10:36.0015 3372 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdate C:\Programme\Google\Update\GoogleUpdate.exe 08:10:36.0015 3372 gupdate - ok 08:10:36.0031 3372 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdatem C:\Programme\Google\Update\GoogleUpdate.exe 08:10:36.0031 3372 gupdatem - ok 08:10:36.0093 3372 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Programme\Google\Common\Google Updater\GoogleUpdaterService.exe 08:10:36.0093 3372 gusvc - ok 08:10:36.0156 3372 [ D95554949082FD29A04D351B58396718 ] hardlock C:\WINDOWS\system32\drivers\hardlock.sys 08:10:36.0156 3372 hardlock - ok 08:10:36.0218 3372 [ 2DD25F060DC9F79B5CDF33D90ED93669 ] Haspnt C:\WINDOWS\system32\drivers\Haspnt.sys 08:10:36.0218 3372 Haspnt - ok 08:10:36.0265 3372 [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus C:\WINDOWS\system32\DRIVERS\HDAudBus.sys 08:10:36.0265 3372 HDAudBus - ok 08:10:36.0328 3372 [ CB66BF85BF599BEFD6C6A57C2E20357F ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll 08:10:36.0328 3372 helpsvc - ok 08:10:36.0359 3372 [ B35DA85E60C0103F2E4104532DA2F12B ] HidServ C:\WINDOWS\System32\hidserv.dll 08:10:36.0359 3372 HidServ - ok 08:10:36.0421 3372 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] HidUsb C:\WINDOWS\system32\DRIVERS\hidusb.sys 08:10:36.0421 3372 HidUsb - ok 08:10:36.0468 3372 [ ED29F14101523A6E0E808107405D452C ] hkmsvc C:\WINDOWS\System32\kmsvc.dll 08:10:36.0468 3372 hkmsvc - ok 08:10:36.0515 3372 [ B028377DEA0546A5FCFBA928A8AEFAE0 ] hpn C:\WINDOWS\system32\DRIVERS\hpn.sys 08:10:36.0515 3372 hpn - ok 08:10:36.0578 3372 [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys 08:10:36.0578 3372 HTTP - ok 08:10:36.0625 3372 [ 9E4ADB854CEBCFB81A4B36718FEECD16 ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll 08:10:36.0625 3372 HTTPFilter - ok 08:10:36.0640 3372 [ 9368670BD426EBEA5E8B18A62416EC28 ] i2omgmt C:\WINDOWS\system32\drivers\i2omgmt.sys 08:10:36.0640 3372 i2omgmt - ok 08:10:36.0656 3372 [ F10863BF1CCC290BABD1A09188AE49E0 ] i2omp C:\WINDOWS\system32\DRIVERS\i2omp.sys 08:10:36.0671 3372 i2omp - ok 08:10:36.0671 3372 [ E283B97CFBEB86C1D86BAED5F7846A92 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys 08:10:36.0671 3372 i8042prt - ok 08:10:36.0718 3372 [ 294110966CEDD127629C5BE48367C8CF ] iaStor C:\WINDOWS\system32\DRIVERS\iaStor.sys 08:10:36.0718 3372 iaStor - ok 08:10:36.0828 3372 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe 08:10:36.0843 3372 idsvc - ok 08:10:36.0875 3372 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys 08:10:36.0875 3372 Imapi - ok 08:10:36.0921 3372 [ D4B413AA210C21E46AEDD2BA5B68D38E ] ImapiService C:\WINDOWS\system32\imapi.exe 08:10:36.0937 3372 ImapiService - ok 08:10:36.0984 3372 [ 4A40E045FAEE58631FD8D91AFC620719 ] ini910u C:\WINDOWS\system32\DRIVERS\ini910u.sys 08:10:36.0984 3372 ini910u - ok 08:10:37.0156 3372 [ 909D03B3B7FB7C830B74F74F4D0EA7CE ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RtkHDAud.sys 08:10:37.0187 3372 IntcAzAudAddService - ok 08:10:37.0234 3372 [ 69C4E3C9E67A1F103B94E14FDD5F3213 ] IntelIde C:\WINDOWS\system32\DRIVERS\intelide.sys 08:10:37.0234 3372 IntelIde - ok 08:10:37.0296 3372 [ 4C7D2750158ED6E7AD642D97BFFAE351 ] intelppm C:\WINDOWS\system32\DRIVERS\intelppm.sys 08:10:37.0296 3372 intelppm - ok 08:10:37.0343 3372 [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw C:\WINDOWS\system32\drivers\ip6fw.sys 08:10:37.0343 3372 Ip6Fw - ok 08:10:37.0375 3372 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys 08:10:37.0375 3372 IpFilterDriver - ok 08:10:37.0390 3372 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys 08:10:37.0390 3372 IpInIp - ok 08:10:37.0437 3372 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys 08:10:37.0453 3372 IpNat - ok 08:10:37.0546 3372 [ E6BE7A41A28D8F2DB174957454D32448 ] iPod Service C:\Programme\iPod\bin\iPodService.exe 08:10:37.0562 3372 iPod Service - ok 08:10:37.0593 3372 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys 08:10:37.0593 3372 IPSec - ok 08:10:37.0609 3372 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys 08:10:37.0609 3372 IRENUM - ok 08:10:37.0656 3372 [ 6DFB88F64135C525433E87648BDA30DE ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys 08:10:37.0656 3372 isapnp - ok 08:10:37.0796 3372 [ DE5D05FD449798EF88CC34AD4B1E7F85 ] JavaQuickStarterService C:\Programme\Java\jre6\bin\jqs.exe 08:10:37.0796 3372 JavaQuickStarterService - ok 08:10:37.0968 3372 [ 21F12E351D011BD546C5BB46D66DBD6C ] JTAGServer c:\altera\90\quartus\bin\jtagserver.exe 08:10:38.0046 3372 JTAGServer - ok 08:10:38.0125 3372 [ 1704D8C4C8807B889E43C649B478A452 ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys 08:10:38.0125 3372 Kbdclass - ok 08:10:38.0140 3372 [ B6D6C117D771C98130497265F26D1882 ] kbdhid C:\WINDOWS\system32\DRIVERS\kbdhid.sys 08:10:38.0140 3372 kbdhid - ok 08:10:38.0203 3372 [ B5AF8F521FE24FE756260278B7B76296 ] KEILUL C:\WINDOWS\system32\DRIVERS\keilul.sys 08:10:38.0203 3372 KEILUL - ok 08:10:38.0234 3372 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys 08:10:38.0234 3372 kmixer - ok 08:10:38.0296 3372 [ B467646C54CC746128904E1654C750C1 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys 08:10:38.0296 3372 KSecDD - ok 08:10:38.0359 3372 [ 2BBDCB79900990F0716DFCB714E72DE7 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll 08:10:38.0359 3372 lanmanserver - ok 08:10:38.0421 3372 [ 1869B14B06B44B44AF70548E1EA3303F ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll 08:10:38.0421 3372 lanmanworkstation - ok 08:10:38.0437 3372 lbrtfdc - ok 08:10:38.0515 3372 [ C9914934118ADD9AFE928A16A3379016 ] libusb0 C:\WINDOWS\system32\DRIVERS\libusb0.sys 08:10:38.0515 3372 libusb0 - ok 08:10:38.0593 3372 [ 636714B7D43C8D0C80449123FD266920 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll 08:10:38.0593 3372 LmHosts - ok 08:10:38.0640 3372 [ 5A8E14FC728B4B65151855076CE5A3C9 ] Ltxred C:\WINDOWS\System32\drivers\ltxred.sys 08:10:38.0640 3372 Ltxred - ok 08:10:38.0765 3372 [ 2D46DC95709F2967D401326CA67D4111 ] M4-Service C:\Dokumente und Einstellungen\Frank\Anwendungsdaten\Mikogo 4\M4-Service.exe 08:10:38.0796 3372 M4-Service - ok 08:10:38.0921 3372 [ 11F714F85530A2BD134074DC30E99FCA ] MDM C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7Debug\mdm.exe 08:10:38.0921 3372 MDM - ok 08:10:38.0968 3372 [ B7550A7107281D170CE85524B1488C98 ] Messenger C:\WINDOWS\System32\msgsvc.dll 08:10:38.0984 3372 Messenger - ok 08:10:39.0046 3372 [ A0DBFCBE2024E82F3BCF860DCF8D9497 ] mlnxfltr C:\WINDOWS\system32\drivers\mlnxfltr.sys 08:10:39.0046 3372 mlnxfltr - ok 08:10:39.0093 3372 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys 08:10:39.0093 3372 mnmdd - ok 08:10:39.0140 3372 [ C2F1D365FD96791B037EE504868065D3 ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe 08:10:39.0140 3372 mnmsrvc - ok 08:10:39.0187 3372 [ 6FB74EBD4EC57A6F1781DE3852CC3362 ] Modem C:\WINDOWS\system32\drivers\Modem.sys 08:10:39.0187 3372 Modem - ok 08:10:39.0234 3372 [ B24CE8005DEAB254C0251E15CB71D802 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys 08:10:39.0234 3372 Mouclass - ok 08:10:39.0281 3372 [ 66A6F73C74E1791464160A7065CE711A ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys 08:10:39.0281 3372 mouhid - ok 08:10:39.0296 3372 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys 08:10:39.0296 3372 MountMgr - ok 08:10:39.0375 3372 [ 15D5398EED42C2504BB3D4FC875C15D1 ] MozillaMaintenance C:\Programme\Mozilla Maintenance Service\maintenanceservice.exe 08:10:39.0375 3372 MozillaMaintenance - ok 08:10:39.0421 3372 [ 3F4BB95E5A44F3BE34824E8E7CAF0737 ] mraid35x C:\WINDOWS\system32\DRIVERS\mraid35x.sys 08:10:39.0421 3372 mraid35x - ok 08:10:39.0468 3372 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys 08:10:39.0484 3372 MRxDAV - ok 08:10:39.0515 3372 [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys 08:10:39.0531 3372 MRxSmb - ok 08:10:39.0562 3372 [ 35A031AF38C55F92D28AA03EE9F12CC9 ] MSDTC C:\WINDOWS\system32\msdtc.exe 08:10:39.0578 3372 MSDTC - ok 08:10:39.0593 3372 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys 08:10:39.0593 3372 Msfs - ok 08:10:39.0609 3372 MSIServer - ok 08:10:39.0640 3372 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys 08:10:39.0640 3372 MSKSSRV - ok 08:10:39.0687 3372 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys 08:10:39.0687 3372 MSPCLOCK - ok 08:10:39.0703 3372 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys 08:10:39.0703 3372 MSPQM - ok 08:10:39.0765 3372 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys 08:10:39.0765 3372 mssmbios - ok 08:10:39.0875 3372 MSSQL$ERWEKAMC - ok 08:10:39.0937 3372 [ 1D89EB4E2A99CABD4E81225F4F4C4B25 ] MSSQLServerADHelper C:\Programme\Microsoft SQL Server\90\Shared\sqladhlp90.exe 08:10:39.0937 3372 MSSQLServerADHelper - ok 08:10:39.0984 3372 [ E53736A9E30C45FA9E7B5EAC55056D1D ] MSTEE C:\WINDOWS\system32\drivers\MSTEE.sys 08:10:39.0984 3372 MSTEE - ok 08:10:40.0015 3372 [ 8533638869A3EC274E93C49C6B910306 ] MultiLINX C:\WINDOWS\system32\drivers\mltlnx.sys 08:10:40.0015 3372 MultiLINX - ok 08:10:40.0078 3372 [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup C:\WINDOWS\system32\drivers\Mup.sys 08:10:40.0078 3372 Mup - ok 08:10:40.0140 3372 [ 5B50F1B2A2ED47D560577B221DA734DB ] NABTSFEC C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys 08:10:40.0140 3372 NABTSFEC - ok 08:10:40.0218 3372 [ 46BB15AE2AC7D025D6D2567B876817BD ] napagent C:\WINDOWS\System32\qagentrt.dll 08:10:40.0218 3372 napagent - ok 08:10:40.0281 3372 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys 08:10:40.0296 3372 NDIS - ok 08:10:40.0343 3372 [ 7FF1F1FD8609C149AA432F95A8163D97 ] NdisIP C:\WINDOWS\system32\DRIVERS\NdisIP.sys 08:10:40.0343 3372 NdisIP - ok 08:10:40.0421 3372 [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys 08:10:40.0421 3372 NdisTapi - ok 08:10:40.0468 3372 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys 08:10:40.0468 3372 Ndisuio - ok 08:10:40.0500 3372 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys 08:10:40.0500 3372 NdisWan - ok 08:10:40.0546 3372 [ A1D2E1B46E79CE3081607FB88DE2909B ] NDMSHLP C:\Programme\Gemeinsame Dateien\HHD Software\Device Monitor\ndmshlp.sys 08:10:40.0546 3372 NDMSHLP - ok 08:10:40.0593 3372 [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys 08:10:40.0593 3372 NDProxy - ok 08:10:40.0671 3372 [ F7C14F5077BF2BC476C348B88A7F74E2 ] Net Driver HPZ12 C:\WINDOWS\system32\HPZinw12.dll 08:10:40.0671 3372 Net Driver HPZ12 - ok 08:10:40.0750 3372 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys 08:10:40.0765 3372 NetBIOS - ok 08:10:40.0843 3372 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys 08:10:40.0843 3372 NetBT - ok 08:10:40.0890 3372 [ 8ACE4251BFFD09CE75679FE940E996CC ] NetDDE C:\WINDOWS\system32\netdde.exe 08:10:40.0890 3372 NetDDE - ok 08:10:40.0906 3372 [ 8ACE4251BFFD09CE75679FE940E996CC ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe 08:10:40.0906 3372 NetDDEdsdm - ok 08:10:40.0968 3372 [ AFB8261B56CBA0D86AEB6DF682AF9785 ] Netlogon C:\WINDOWS\system32\lsass.exe 08:10:40.0968 3372 Netlogon - ok 08:10:41.0031 3372 [ E6D88F1F6745BF00B57E7855A2AB696C ] Netman C:\WINDOWS\System32\netman.dll 08:10:41.0031 3372 Netman - ok 08:10:41.0093 3372 [ D34612C5D02D026535B3095D620626AE ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe 08:10:41.0093 3372 NetTcpPortSharing - ok 08:10:41.0140 3372 [ E9E47CFB2D461FA0FC75B7A74C6383EA ] NIC1394 C:\WINDOWS\system32\DRIVERS\nic1394.sys 08:10:41.0140 3372 NIC1394 - ok 08:10:41.0203 3372 [ F1B67B6B0751AE0E6E964B02821206A3 ] Nla C:\WINDOWS\System32\mswsock.dll 08:10:41.0203 3372 Nla - ok 08:10:41.0250 3372 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys 08:10:41.0265 3372 Npfs - ok 08:10:41.0296 3372 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys 08:10:41.0328 3372 Ntfs - ok 08:10:41.0328 3372 [ AFB8261B56CBA0D86AEB6DF682AF9785 ] NtLmSsp C:\WINDOWS\system32\lsass.exe 08:10:41.0343 3372 NtLmSsp - ok 08:10:41.0390 3372 [ 56AF4064996FA5BAC9C449B1514B4770 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll 08:10:41.0406 3372 NtmsSvc - ok 08:10:41.0500 3372 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys 08:10:41.0500 3372 Null - ok 08:10:41.0703 3372 [ 33AE09E9027F5F22E80A6C80715B79DF ] nv C:\WINDOWS\system32\DRIVERS\nv4_mini.sys 08:10:41.0750 3372 nv - ok 08:10:41.0812 3372 [ 0344AA9113DC16EEC379F4652020849D ] nvatabus C:\WINDOWS\system32\DRIVERS\nvatabus.sys 08:10:41.0812 3372 nvatabus - ok 08:10:41.0828 3372 [ A4F2A29B9D40F9FFBBB54E56CE483797 ] nvraid C:\WINDOWS\system32\DRIVERS\nvraid.sys 08:10:41.0828 3372 nvraid - ok 08:10:41.0875 3372 [ DE6F8D1079FC0E9912AB60308B110026 ] NVSvc C:\WINDOWS\system32\nvsvc32.exe 08:10:41.0875 3372 NVSvc - ok 08:10:41.0906 3372 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys 08:10:41.0906 3372 NwlnkFlt - ok 08:10:41.0921 3372 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys 08:10:41.0921 3372 NwlnkFwd - ok 08:10:41.0921 3372 [ CA33832DF41AFB202EE7AEB05145922F ] ohci1394 C:\WINDOWS\system32\DRIVERS\ohci1394.sys 08:10:41.0937 3372 ohci1394 - ok 08:10:42.0046 3372 [ F5A0A29634E71EC1DD9C91E1D24E5284 ] OTSysCom C:\Programme\LG Electronics Inc\LGComSpy++\OTSysCom.sys 08:10:42.0046 3372 OTSysCom - ok 08:10:42.0093 3372 [ A7AF0C0860F1C43FC6581BA8A99EABEF ] P3 C:\WINDOWS\system32\DRIVERS\p3.sys 08:10:42.0093 3372 P3 - ok 08:10:42.0156 3372 [ 8E55251D83763CCCA60FE26A811CFB0C ] par1284 C:\WINDOWS\system32\drivers\par1284.sys 08:10:42.0156 3372 par1284 - ok 08:10:42.0187 3372 [ F84785660305B9B903FB3BCA8BA29837 ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys 08:10:42.0187 3372 Parport - ok 08:10:42.0203 3372 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys 08:10:42.0203 3372 PartMgr - ok 08:10:42.0234 3372 [ C2BF987829099A3EAA2CA6A0A90ECB4F ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys 08:10:42.0234 3372 ParVdm - ok 08:10:42.0328 3372 [ 72735F06EFAEED680DFA41EED853F3AC ] Pcan_usb C:\WINDOWS\system32\DRIVERS\PCAN_USB.SYS 08:10:42.0359 3372 Pcan_usb - ok 08:10:42.0406 3372 [ 175CC28DCF819F78CAA3FBD44AD9E52A ] pccsmcfd C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys 08:10:42.0406 3372 pccsmcfd - ok 08:10:42.0421 3372 [ 387E8DEDC343AA2D1EFBC30580273ACD ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys 08:10:42.0421 3372 PCI - ok 08:10:42.0437 3372 PCIDump - ok 08:10:42.0453 3372 [ 59BA86D9A61CBCF4DF8E598C331F5B82 ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys 08:10:42.0453 3372 PCIIde - ok 08:10:42.0500 3372 [ A2A966B77D61847D61A3051DF87C8C97 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys 08:10:42.0500 3372 Pcmcia - ok 08:10:42.0500 3372 PDCOMP - ok 08:10:42.0515 3372 PDFRAME - ok 08:10:42.0578 3372 [ FEE34EAE1FF4FEA67248F9F6CF6EC5D0 ] PdiPorts C:\WINDOWS\system32\Drivers\PdiPorts.sys 08:10:42.0578 3372 PdiPorts - ok 08:10:42.0640 3372 [ 01FA89DEA940234FECB41DD5F73B6EAB ] PdiService C:\Programme\Gemeinsame Dateien\Portrait Displays\Drivers\pdisrvc.exe 08:10:42.0640 3372 PdiService - ok 08:10:42.0640 3372 PDRELI - ok 08:10:42.0656 3372 PDRFRAME - ok 08:10:42.0671 3372 [ 6C14B9C19BA84F73D3A86DBA11133101 ] perc2 C:\WINDOWS\system32\DRIVERS\perc2.sys 08:10:42.0671 3372 perc2 - ok 08:10:42.0718 3372 [ F50F7C27F131AFE7BEBA13E14A3B9416 ] perc2hib C:\WINDOWS\system32\DRIVERS\perc2hib.sys 08:10:42.0718 3372 perc2hib - ok 08:10:42.0781 3372 [ 68C6ADE0DA199E7C00B6083DA4605CB8 ] Pivot C:\WINDOWS\system32\drivers\pivot.sys 08:10:42.0781 3372 Pivot - ok 08:10:42.0812 3372 [ 552A7A474FD47BC634113B169494DFBB ] pivotmou C:\WINDOWS\system32\drivers\pivotmou.sys 08:10:42.0812 3372 pivotmou - ok 08:10:42.0843 3372 [ F5560F0ACA0238731112077FBB796AB5 ] PLIN Manager C:\WINDOWS\system32\PLinMng.exe 08:10:42.0843 3372 PLIN Manager - ok 08:10:42.0906 3372 [ 59028A4006C63C05270DB4ADCBF0DD90 ] PLIN_USB C:\WINDOWS\system32\Drivers\PLIN_USB.sys 08:10:42.0906 3372 PLIN_USB - ok 08:10:42.0953 3372 [ A3EDBE9053889FB24AB22492472B39DC ] PlugPlay C:\WINDOWS\system32\services.exe 08:10:42.0953 3372 PlugPlay - ok 08:10:43.0031 3372 [ E638656001C52A1FAA34F92E6D3A086B ] Pml Driver HPZ12 C:\WINDOWS\system32\HPZipm12.dll 08:10:43.0031 3372 Pml Driver HPZ12 - ok 08:10:43.0046 3372 [ AFB8261B56CBA0D86AEB6DF682AF9785 ] PolicyAgent C:\WINDOWS\system32\lsass.exe 08:10:43.0046 3372 PolicyAgent - ok 08:10:43.0093 3372 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys 08:10:43.0093 3372 PptpMiniport - ok 08:10:43.0109 3372 [ AFB8261B56CBA0D86AEB6DF682AF9785 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe 08:10:43.0109 3372 ProtectedStorage - ok 08:10:43.0125 3372 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys 08:10:43.0125 3372 Ptilink - ok 08:10:43.0140 3372 [ 0A63FB54039EB5662433CABA3B26DBA7 ] ql1080 C:\WINDOWS\system32\DRIVERS\ql1080.sys 08:10:43.0140 3372 ql1080 - ok 08:10:43.0140 3372 [ 6503449E1D43A0FF0201AD5CB1B8C706 ] Ql10wnt C:\WINDOWS\system32\DRIVERS\ql10wnt.sys 08:10:43.0156 3372 Ql10wnt - ok 08:10:43.0171 3372 [ 156ED0EF20C15114CA097A34A30D8A01 ] ql12160 C:\WINDOWS\system32\DRIVERS\ql12160.sys 08:10:43.0171 3372 ql12160 - ok 08:10:43.0187 3372 [ 70F016BEBDE6D29E864C1230A07CC5E6 ] ql1240 C:\WINDOWS\system32\DRIVERS\ql1240.sys 08:10:43.0187 3372 ql1240 - ok 08:10:43.0234 3372 [ 907F0AEEA6BC451011611E732BD31FCF ] ql1280 C:\WINDOWS\system32\DRIVERS\ql1280.sys 08:10:43.0234 3372 ql1280 - ok 08:10:43.0265 3372 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys 08:10:43.0265 3372 RasAcd - ok 08:10:43.0296 3372 [ F5BA6CACCDB66C8F048E867563203246 ] RasAuto C:\WINDOWS\System32\rasauto.dll 08:10:43.0312 3372 RasAuto - ok 08:10:43.0343 3372 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys 08:10:43.0343 3372 Rasl2tp - ok 08:10:43.0390 3372 [ F9A7B66EA345726EDB5862A46B1ECCD5 ] RasMan C:\WINDOWS\System32\rasmans.dll 08:10:43.0390 3372 RasMan - ok 08:10:43.0406 3372 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys 08:10:43.0406 3372 RasPppoe - ok 08:10:43.0421 3372 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys 08:10:43.0421 3372 Raspti - ok 08:10:43.0484 3372 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys 08:10:43.0484 3372 Rdbss - ok 08:10:43.0531 3372 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys 08:10:43.0531 3372 RDPCDD - ok 08:10:43.0593 3372 [ 15CABD0F7C00C47C70124907916AF3F1 ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys 08:10:43.0593 3372 rdpdr - ok 08:10:43.0625 3372 [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys 08:10:43.0640 3372 RDPWD - ok 08:10:43.0671 3372 [ 263AF18AF0F3DB99F574C95F284CCEC9 ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe 08:10:43.0687 3372 RDSessMgr - ok 08:10:43.0750 3372 [ ED761D453856F795A7FE056E42C36365 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys 08:10:43.0750 3372 redbook - ok 08:10:43.0796 3372 [ 0E97EC96D6942CEEC2D188CC2EB69A01 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll 08:10:43.0812 3372 RemoteAccess - ok 08:10:43.0921 3372 [ E4CD1F3D84E1C2CA0B8CF7501E201593 ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll 08:10:43.0921 3372 RemoteRegistry - ok 08:10:43.0984 3372 [ 2A02E21867497DF20B8FC95631395169 ] RpcLocator C:\WINDOWS\system32\locator.exe 08:10:43.0984 3372 RpcLocator - ok 08:10:44.0031 3372 [ 3127AFBF2C1ED0AB14A1BBB7AAECB85B ] RpcSs C:\WINDOWS\system32\rpcss.dll 08:10:44.0046 3372 RpcSs - ok 08:10:44.0093 3372 [ 4BDD71B4B521521499DFD14735C4F398 ] RSVP C:\WINDOWS\system32\rsvp.exe 08:10:44.0093 3372 RSVP - ok 08:10:44.0125 3372 [ BC9C2EF22EE0320C079E3FF9B4D29951 ] RWKPUA C:\WINDOWS\system32\drivers\SiUSBXp.sys 08:10:44.0125 3372 RWKPUA - ok 08:10:44.0140 3372 [ BC9C2EF22EE0320C079E3FF9B4D29951 ] RWKXP C:\WINDOWS\system32\drivers\SiUSBXp.sys 08:10:44.0140 3372 RWKXP - ok 08:10:44.0171 3372 [ AFB8261B56CBA0D86AEB6DF682AF9785 ] SamSs C:\WINDOWS\system32\lsass.exe 08:10:44.0171 3372 SamSs - ok 08:10:44.0218 3372 [ DCEC079FAD95D36C8DD5CB6D779DFE32 ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe 08:10:44.0234 3372 SCardSvr - ok 08:10:44.0296 3372 [ A050194A44D7FA8D7186ED2F4E8367AE ] Schedule C:\WINDOWS\system32\schedsvc.dll 08:10:44.0296 3372 Schedule - ok 08:10:44.0328 3372 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys 08:10:44.0328 3372 Secdrv - ok 08:10:44.0375 3372 [ BEE4CFD1D48C23B44CF4B974B0B79B2B ] seclogon C:\WINDOWS\System32\seclogon.dll 08:10:44.0375 3372 seclogon - ok 08:10:44.0437 3372 [ 2AAC9B6ED9EDDFFB721D6452E34D67E3 ] SENS C:\WINDOWS\system32\sens.dll 08:10:44.0437 3372 SENS - ok 08:10:44.0484 3372 [ AEBBA7428A6C40CCE3C5ABDE45190B24 ] Sentinel C:\WINDOWS\System32\Drivers\SENTINEL.SYS 08:10:44.0484 3372 Sentinel - ok 08:10:44.0531 3372 [ 0F29512CCD6BEAD730039FB4BD2C85CE ] serenum C:\WINDOWS\system32\DRIVERS\serenum.sys 08:10:44.0531 3372 serenum - ok 08:10:44.0593 3372 [ CF24EB4F0412C82BCD1F4F35A025E31D ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys 08:10:44.0593 3372 Serial - ok 08:10:44.0656 3372 [ B98460D74971F0223C2884779C3777F5 ] SerMon C:\Programme\HHD Software\Free Serial Port Monitor\sermon.sys 08:10:44.0671 3372 SerMon - ok 08:10:44.0750 3372 [ 9D38320BB32230349379DF5DDBBF7FCE ] ServiceLayer C:\Programme\PC Connectivity Solution\ServiceLayer.exe 08:10:44.0765 3372 ServiceLayer - ok 08:10:44.0859 3372 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys 08:10:44.0859 3372 Sfloppy - ok 08:10:44.0906 3372 [ 2DB7D303C36DDD055215052F118E8E75 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll 08:10:44.0921 3372 ShellHWDetection - ok 08:10:44.0968 3372 [ 3EAD8E1668CE42A0AFE41D56E7157BCF ] silabenm C:\WINDOWS\system32\DRIVERS\silabenm.sys 08:10:44.0968 3372 silabenm - ok 08:10:45.0046 3372 [ 5EC84546635D8F6E306F9C80FE09433D ] silabser C:\WINDOWS\system32\DRIVERS\silabser.sys 08:10:45.0046 3372 silabser - ok 08:10:45.0046 3372 Simbad - ok 08:10:45.0078 3372 [ 6B33D0EBD30DB32E27D1D78FE946A754 ] sisagp C:\WINDOWS\system32\DRIVERS\sisagp.sys 08:10:45.0093 3372 sisagp - ok 08:10:45.0125 3372 [ BC9C2EF22EE0320C079E3FF9B4D29951 ] SIUSBXP C:\WINDOWS\system32\drivers\SiUSBXp.sys 08:10:45.0125 3372 SIUSBXP - ok 08:10:45.0187 3372 [ 444186C720885429A2354095C1938143 ] slabbus C:\WINDOWS\system32\DRIVERS\slabbus.sys 08:10:45.0187 3372 slabbus - ok 08:10:45.0265 3372 [ ED71F8C82EF11C0DA1C57BE021A2FDC9 ] slabser C:\WINDOWS\system32\DRIVERS\slabser.sys 08:10:45.0265 3372 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\slabser.sys. md5: ED71F8C82EF11C0DA1C57BE021A2FDC9 08:10:45.0296 3372 slabser ( LockedFile.Multi.Generic ) - warning 08:10:45.0296 3372 slabser - detected LockedFile.Multi.Generic (1) 08:10:45.0343 3372 [ 866D538EBE33709A5C9F5C62B73B7D14 ] SLIP C:\WINDOWS\system32\DRIVERS\SLIP.sys 08:10:45.0343 3372 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\SLIP.sys. md5: 866D538EBE33709A5C9F5C62B73B7D14 08:10:45.0343 3372 SLIP ( LockedFile.Multi.Generic ) - warning 08:10:45.0343 3372 SLIP - detected LockedFile.Multi.Generic (1) 08:10:45.0375 3372 SMR311 - ok 08:10:45.0453 3372 [ A1FF7D99B199CEA1F3DF371BA70D2780 ] Sntnlusb C:\WINDOWS\system32\DRIVERS\SNTNLUSB.SYS 08:10:45.0453 3372 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\SNTNLUSB.SYS. md5: A1FF7D99B199CEA1F3DF371BA70D2780 08:10:45.0468 3372 Sntnlusb ( LockedFile.Multi.Generic ) - warning 08:10:45.0468 3372 Sntnlusb - detected LockedFile.Multi.Generic (1) 08:10:45.0500 3372 [ 83C0F71F86D3BDAF915685F3D568B20E ] Sparrow C:\WINDOWS\system32\DRIVERS\sparrow.sys 08:10:45.0500 3372 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\sparrow.sys. md5: 83C0F71F86D3BDAF915685F3D568B20E 08:10:45.0500 3372 Sparrow ( LockedFile.Multi.Generic ) - warning 08:10:45.0500 3372 Sparrow - detected LockedFile.Multi.Generic (1) 08:10:45.0578 3372 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINDOWS\system32\drivers\splitter.sys 08:10:45.0578 3372 Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\splitter.sys. md5: AB8B92451ECB048A4D1DE7C3FFCB4A9F 08:10:45.0593 3372 splitter ( LockedFile.Multi.Generic ) - warning 08:10:45.0593 3372 splitter - detected LockedFile.Multi.Generic (1) 08:10:45.0640 3372 [ 60784F891563FB1B767F70117FC2428F ] Spooler C:\WINDOWS\system32\spoolsv.exe 08:10:45.0640 3372 Spooler - ok 08:10:45.0703 3372 [ 86EBD8B1F23E743AAD21F4D5B4D40985 ] SQLBrowser C:\Programme\Microsoft SQL Server\90\Shared\sqlbrowser.exe 08:10:45.0718 3372 SQLBrowser - ok 08:10:45.0765 3372 [ D89083C4EB02DACA8F944B0E05E57F9D ] SQLWriter C:\Programme\Microsoft SQL Server\90\Shared\sqlwriter.exe 08:10:45.0765 3372 SQLWriter - ok 08:10:45.0859 3372 [ 50FA898F8C032796D3B1B9951BB5A90F ] sr C:\WINDOWS\system32\DRIVERS\sr.sys 08:10:45.0859 3372 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\sr.sys. md5: 50FA898F8C032796D3B1B9951BB5A90F 08:10:45.0859 3372 sr ( LockedFile.Multi.Generic ) - warning 08:10:45.0859 3372 sr - detected LockedFile.Multi.Generic (1) 08:10:45.0906 3372 [ FE77A85495065F3AD59C5C65B6C54182 ] srservice C:\WINDOWS\system32\srsvc.dll 08:10:45.0906 3372 srservice - ok 08:10:45.0984 3372 [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys 08:10:45.0984 3372 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\srv.sys. md5: 47DDFC2F003F7F9F0592C6874962A2E7 08:10:45.0984 3372 Srv ( LockedFile.Multi.Generic ) - warning 08:10:45.0984 3372 Srv - detected LockedFile.Multi.Generic (1) 08:10:46.0031 3372 [ D6870895FE46A464A19141440EB6CC1E ] sscdbus C:\WINDOWS\system32\DRIVERS\sscdbus.sys 08:10:46.0031 3372 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\sscdbus.sys. md5: D6870895FE46A464A19141440EB6CC1E 08:10:46.0046 3372 sscdbus ( LockedFile.Multi.Generic ) - warning 08:10:46.0046 3372 sscdbus - detected LockedFile.Multi.Generic (1) 08:10:46.0109 3372 [ 0FE167362E4689B716CDC8D93ADEDDA8 ] sscdmdfl C:\WINDOWS\system32\DRIVERS\sscdmdfl.sys 08:10:46.0109 3372 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\sscdmdfl.sys. md5: 0FE167362E4689B716CDC8D93ADEDDA8 08:10:46.0125 3372 sscdmdfl ( LockedFile.Multi.Generic ) - warning 08:10:46.0125 3372 sscdmdfl - detected LockedFile.Multi.Generic (1) 08:10:46.0187 3372 [ 55A15707E32B6709242AD127E62CA55A ] sscdmdm C:\WINDOWS\system32\DRIVERS\sscdmdm.sys 08:10:46.0187 3372 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\sscdmdm.sys. md5: 55A15707E32B6709242AD127E62CA55A 08:10:46.0203 3372 sscdmdm ( LockedFile.Multi.Generic ) - warning 08:10:46.0203 3372 sscdmdm - detected LockedFile.Multi.Generic (1) 08:10:46.0250 3372 [ 4DF5B05DFAEC29E13E1ED6F6EE12C500 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll 08:10:46.0265 3372 SSDPSRV - ok 08:10:46.0328 3372 [ BC2C5985611C5356B24AEB370953DED9 ] stisvc C:\WINDOWS\system32\wiaservc.dll 08:10:46.0343 3372 stisvc - ok 08:10:46.0421 3372 [ E1D202F5A5C88CF915F51957D314066B ] STM Parallel Driver C:\WINDOWS\system32\drivers\parstm.sys 08:10:46.0421 3372 Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\parstm.sys. md5: E1D202F5A5C88CF915F51957D314066B 08:10:46.0437 3372 STM Parallel Driver ( LockedFile.Multi.Generic ) - warning 08:10:46.0437 3372 STM Parallel Driver - detected LockedFile.Multi.Generic (1) 08:10:46.0484 3372 [ 77813007BA6265C4B6098187E6ED79D2 ] streamip C:\WINDOWS\system32\DRIVERS\StreamIP.sys 08:10:46.0484 3372 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\StreamIP.sys. md5: 77813007BA6265C4B6098187E6ED79D2 08:10:46.0500 3372 streamip ( LockedFile.Multi.Generic ) - warning 08:10:46.0500 3372 streamip - detected LockedFile.Multi.Generic (1) 08:10:46.0546 3372 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys 08:10:46.0546 3372 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\swenum.sys. md5: 3941D127AEF12E93ADDF6FE6EE027E0F 08:10:46.0562 3372 swenum ( LockedFile.Multi.Generic ) - warning 08:10:46.0562 3372 swenum - detected LockedFile.Multi.Generic (1) 08:10:46.0656 3372 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys 08:10:46.0656 3372 Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\swmidi.sys. md5: 8CE882BCC6CF8A62F2B2323D95CB3D01 08:10:46.0656 3372 swmidi ( LockedFile.Multi.Generic ) - warning 08:10:46.0656 3372 swmidi - detected LockedFile.Multi.Generic (1) 08:10:46.0671 3372 SwPrv - ok 08:10:46.0703 3372 [ 1FF3217614018630D0A6758630FC698C ] symc810 C:\WINDOWS\system32\DRIVERS\symc810.sys 08:10:46.0703 3372 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\symc810.sys. md5: 1FF3217614018630D0A6758630FC698C 08:10:46.0703 3372 symc810 ( LockedFile.Multi.Generic ) - warning 08:10:46.0703 3372 symc810 - detected LockedFile.Multi.Generic (1) 08:10:46.0734 3372 [ 070E001D95CF725186EF8B20335F933C ] symc8xx C:\WINDOWS\system32\DRIVERS\symc8xx.sys 08:10:46.0734 3372 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\symc8xx.sys. md5: 070E001D95CF725186EF8B20335F933C 08:10:46.0734 3372 symc8xx ( LockedFile.Multi.Generic ) - warning 08:10:46.0734 3372 symc8xx - detected LockedFile.Multi.Generic (1) 08:10:46.0750 3372 [ 80AC1C4ABBE2DF3B738BF15517A51F2C ] sym_hi C:\WINDOWS\system32\DRIVERS\sym_hi.sys 08:10:46.0750 3372 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\sym_hi.sys. md5: 80AC1C4ABBE2DF3B738BF15517A51F2C 08:10:46.0765 3372 sym_hi ( LockedFile.Multi.Generic ) - warning 08:10:46.0765 3372 sym_hi - detected LockedFile.Multi.Generic (1) 08:10:46.0781 3372 [ BF4FAB949A382A8E105F46EBB4937058 ] sym_u3 C:\WINDOWS\system32\DRIVERS\sym_u3.sys 08:10:46.0781 3372 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\sym_u3.sys. md5: BF4FAB949A382A8E105F46EBB4937058 08:10:46.0781 3372 sym_u3 ( LockedFile.Multi.Generic ) - warning 08:10:46.0781 3372 sym_u3 - detected LockedFile.Multi.Generic (1) 08:10:46.0875 3372 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys 08:10:46.0875 3372 Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\sysaudio.sys. md5: 8B83F3ED0F1688B4958F77CD6D2BF290 08:10:46.0875 3372 sysaudio ( LockedFile.Multi.Generic ) - warning 08:10:46.0875 3372 sysaudio - detected LockedFile.Multi.Generic (1) 08:10:46.0937 3372 [ 2903FFFA2523926D6219428040DCE6B9 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe 08:10:46.0937 3372 SysmonLog - ok 08:10:47.0000 3372 [ 05903CAC4B98908D55EA5774775B382E ] TapiSrv C:\WINDOWS\System32\tapisrv.dll 08:10:47.0015 3372 TapiSrv - ok 08:10:47.0109 3372 [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys 08:10:47.0125 3372 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\tcpip.sys. md5: 9AEFA14BD6B182D61E3119FA5F436D3D 08:10:47.0140 3372 Tcpip ( LockedFile.Multi.Generic ) - warning 08:10:47.0140 3372 Tcpip - detected LockedFile.Multi.Generic (1) 08:10:47.0171 3372 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys 08:10:47.0187 3372 Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\TDPIPE.sys. md5: 6471A66807F5E104E4885F5B67349397 08:10:47.0187 3372 TDPIPE ( LockedFile.Multi.Generic ) - warning 08:10:47.0187 3372 TDPIPE - detected LockedFile.Multi.Generic (1) 08:10:47.0218 3372 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys 08:10:47.0218 3372 Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\TDTCP.sys. md5: C56B6D0402371CF3700EB322EF3AAF61 08:10:47.0218 3372 TDTCP ( LockedFile.Multi.Generic ) - warning 08:10:47.0218 3372 TDTCP - detected LockedFile.Multi.Generic (1) 08:10:47.0281 3372 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys 08:10:47.0281 3372 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\termdd.sys. md5: 88155247177638048422893737429D9E 08:10:47.0281 3372 TermDD ( LockedFile.Multi.Generic ) - warning 08:10:47.0281 3372 TermDD - detected LockedFile.Multi.Generic (1) 08:10:47.0343 3372 [ B7DE02C863D8F5A005A7BF375375A6A4 ] TermService C:\WINDOWS\System32\termsrv.dll 08:10:47.0359 3372 TermService - ok 08:10:47.0390 3372 [ 2DB7D303C36DDD055215052F118E8E75 ] Themes C:\WINDOWS\System32\shsvcs.dll 08:10:47.0390 3372 Themes - ok 08:10:47.0453 3372 [ 03681A1CE77F51586903869A5AB1DEAB ] TlntSvr C:\WINDOWS\system32\tlntsvr.exe 08:10:47.0453 3372 TlntSvr - ok 08:10:47.0500 3372 [ D213A9247DC347F305A2D4CC9B951487 ] TosIde C:\WINDOWS\system32\DRIVERS\toside.sys 08:10:47.0500 3372 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\toside.sys. md5: D213A9247DC347F305A2D4CC9B951487 08:10:47.0515 3372 TosIde ( LockedFile.Multi.Generic ) - warning 08:10:47.0515 3372 TosIde - detected LockedFile.Multi.Generic (1) 08:10:47.0578 3372 [ 626504572B175867F30F3215C04B3E2F ] TrkWks C:\WINDOWS\system32\trkwks.dll 08:10:47.0578 3372 TrkWks - ok 08:10:47.0640 3372 [ 20BD83726D69316C3817D1134E5BC465 ] TTUSB2 C:\WINDOWS\system32\Drivers\ttusb2.sys 08:10:47.0640 3372 Suspicious file (NoAccess): C:\WINDOWS\system32\Drivers\ttusb2.sys. md5: 20BD83726D69316C3817D1134E5BC465 08:10:47.0656 3372 TTUSB2 ( LockedFile.Multi.Generic ) - warning 08:10:47.0656 3372 TTUSB2 - detected LockedFile.Multi.Generic (1) 08:10:47.0703 3372 [ 607FC73722F62E1820C8183D58ED1668 ] TVICPORT C:\WINDOWS\SYSTEM32\DRIVERS\TVICPORT.SYS 08:10:47.0703 3372 Suspicious file (NoAccess): C:\WINDOWS\SYSTEM32\DRIVERS\TVICPORT.SYS. md5: 607FC73722F62E1820C8183D58ED1668 08:10:47.0703 3372 TVICPORT ( LockedFile.Multi.Generic ) - warning 08:10:47.0703 3372 TVICPORT - detected LockedFile.Multi.Generic (1) 08:10:47.0750 3372 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys 08:10:47.0750 3372 Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\Udfs.sys. md5: 5787B80C2E3C5E2F56C2A233D91FA2C9 08:10:47.0765 3372 Udfs ( LockedFile.Multi.Generic ) - warning 08:10:47.0765 3372 Udfs - detected LockedFile.Multi.Generic (1) 08:10:47.0796 3372 [ 1B698A51CD528D8DA4FFAED66DFC51B9 ] ultra C:\WINDOWS\system32\DRIVERS\ultra.sys 08:10:47.0796 3372 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\ultra.sys. md5: 1B698A51CD528D8DA4FFAED66DFC51B9 08:10:47.0812 3372 ultra ( LockedFile.Multi.Generic ) - warning 08:10:47.0812 3372 ultra - detected LockedFile.Multi.Generic (1) 08:10:47.0906 3372 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys 08:10:47.0906 3372 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\update.sys. md5: 402DDC88356B1BAC0EE3DD1580C76A31 08:10:47.0906 3372 Update ( LockedFile.Multi.Generic ) - warning 08:10:47.0906 3372 Update - detected LockedFile.Multi.Generic (1) 08:10:47.0953 3372 [ 1DFD8975D8C89214B98D9387C1125B49 ] upnphost C:\WINDOWS\System32\upnphost.dll 08:10:47.0953 3372 upnphost - ok 08:10:48.0000 3372 [ 9B11E6118958E63E1FEF129466E2BDA7 ] UPS C:\WINDOWS\System32\ups.exe 08:10:48.0000 3372 UPS - ok 08:10:48.0046 3372 [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys 08:10:48.0046 3372 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\usbccgp.sys. md5: 173F317CE0DB8E21322E71B7E60A27E8 08:10:48.0078 3372 usbccgp ( LockedFile.Multi.Generic ) - warning 08:10:48.0078 3372 usbccgp - detected LockedFile.Multi.Generic (1) 08:10:48.0109 3372 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys 08:10:48.0109 3372 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\usbehci.sys. md5: 65DCF09D0E37D4C6B11B5B0B76D470A7 08:10:48.0109 3372 usbehci ( LockedFile.Multi.Generic ) - warning 08:10:48.0109 3372 usbehci - detected LockedFile.Multi.Generic (1) 08:10:48.0156 3372 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys 08:10:48.0156 3372 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\usbhub.sys. md5: 1AB3CDDE553B6E064D2E754EFE20285C 08:10:48.0156 3372 usbhub ( LockedFile.Multi.Generic ) - warning 08:10:48.0156 3372 usbhub - detected LockedFile.Multi.Generic (1) 08:10:48.0187 3372 [ A717C8721046828520C9EDF31288FC00 ] usbprint C:\WINDOWS\system32\DRIVERS\usbprint.sys 08:10:48.0187 3372 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\usbprint.sys. md5: A717C8721046828520C9EDF31288FC00 08:10:48.0187 3372 usbprint ( LockedFile.Multi.Generic ) - warning 08:10:48.0187 3372 usbprint - detected LockedFile.Multi.Generic (1) 08:10:48.0250 3372 [ 1C888B000C2F9492F4B15B5B6B84873E ] usbser C:\WINDOWS\system32\DRIVERS\usbser.sys 08:10:48.0250 3372 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\usbser.sys. md5: 1C888B000C2F9492F4B15B5B6B84873E 08:10:48.0250 3372 usbser ( LockedFile.Multi.Generic ) - warning 08:10:48.0250 3372 usbser - detected LockedFile.Multi.Generic (1) 08:10:48.0296 3372 [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS 08:10:48.0296 3372 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS. md5: A32426D9B14A089EAA1D922E0C5801A9 08:10:48.0296 3372 USBSTOR ( LockedFile.Multi.Generic ) - warning 08:10:48.0296 3372 USBSTOR - detected LockedFile.Multi.Generic (1) 08:10:48.0343 3372 [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys 08:10:48.0343 3372 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\usbuhci.sys. md5: 26496F9DEE2D787FC3E61AD54821FFE6 08:10:48.0359 3372 usbuhci ( LockedFile.Multi.Generic ) - warning 08:10:48.0359 3372 usbuhci - detected LockedFile.Multi.Generic (1) 08:10:48.0406 3372 [ 63BBFCA7F390F4C49ED4B96BFB1633E0 ] usbvideo C:\WINDOWS\system32\Drivers\usbvideo.sys 08:10:48.0406 3372 Suspicious file (NoAccess): C:\WINDOWS\system32\Drivers\usbvideo.sys. md5: 63BBFCA7F390F4C49ED4B96BFB1633E0 08:10:48.0421 3372 usbvideo ( LockedFile.Multi.Generic ) - warning 08:10:48.0421 3372 usbvideo - detected LockedFile.Multi.Generic (1) 08:10:48.0484 3372 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys 08:10:48.0484 3372 Suspicious file (NoAccess): C:\WINDOWS\System32\drivers\vga.sys. md5: 0D3A8FAFCEACD8B7625CD549757A7DF1 08:10:48.0500 3372 VgaSave ( LockedFile.Multi.Generic ) - warning 08:10:48.0500 3372 VgaSave - detected LockedFile.Multi.Generic (1) 08:10:48.0515 3372 [ 754292CE5848B3738281B4F3607EAEF4 ] viaagp C:\WINDOWS\system32\DRIVERS\viaagp.sys 08:10:48.0515 3372 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\viaagp.sys. md5: 754292CE5848B3738281B4F3607EAEF4 08:10:48.0515 3372 viaagp ( LockedFile.Multi.Generic ) - warning 08:10:48.0515 3372 viaagp - detected LockedFile.Multi.Generic (1) 08:10:48.0546 3372 [ 3B3EFCDA263B8AC14FDF9CBDD0791B2E ] ViaIde C:\WINDOWS\system32\DRIVERS\viaide.sys 08:10:48.0562 3372 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\viaide.sys. md5: 3B3EFCDA263B8AC14FDF9CBDD0791B2E 08:10:48.0562 3372 ViaIde ( LockedFile.Multi.Generic ) - warning 08:10:48.0562 3372 ViaIde - detected LockedFile.Multi.Generic (1) 08:10:48.0609 3372 [ A5A712F4E880874A477AF790B5186E1D ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys 08:10:48.0609 3372 Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\VolSnap.sys. md5: A5A712F4E880874A477AF790B5186E1D 08:10:48.0609 3372 VolSnap ( LockedFile.Multi.Generic ) - warning 08:10:48.0609 3372 VolSnap - detected LockedFile.Multi.Generic (1) 08:10:48.0640 3372 [ 68F106273BE29E7B7EF8266977268E78 ] VSS C:\WINDOWS\System32\vssvc.exe 08:10:48.0656 3372 VSS - ok 08:10:48.0703 3372 [ 7B353059E665F8B7AD2BBEAEF597CF45 ] W32Time C:\WINDOWS\system32\w32time.dll 08:10:48.0718 3372 W32Time - ok 08:10:48.0765 3372 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys 08:10:48.0765 3372 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\wanarp.sys. md5: E20B95BAEDB550F32DD489265C1DA1F6 08:10:48.0796 3372 Wanarp ( LockedFile.Multi.Generic ) - warning 08:10:48.0796 3372 Wanarp - detected LockedFile.Multi.Generic (1) 08:10:48.0828 3372 [ 46A247F6617526AFE38B6F12F5512120 ] wceusbsh C:\WINDOWS\system32\DRIVERS\wceusbsh.sys 08:10:48.0828 3372 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\wceusbsh.sys. md5: 46A247F6617526AFE38B6F12F5512120 08:10:48.0828 3372 wceusbsh ( LockedFile.Multi.Generic ) - warning 08:10:48.0828 3372 wceusbsh - detected LockedFile.Multi.Generic (1) 08:10:48.0906 3372 [ D918617B46457B9AC28027722E30F647 ] Wdf01000 C:\WINDOWS\system32\Drivers\wdf01000.sys 08:10:48.0906 3372 Suspicious file (NoAccess): C:\WINDOWS\system32\Drivers\wdf01000.sys. md5: D918617B46457B9AC28027722E30F647 08:10:48.0921 3372 Wdf01000 ( LockedFile.Multi.Generic ) - warning 08:10:48.0921 3372 Wdf01000 - detected LockedFile.Multi.Generic (1) 08:10:48.0937 3372 WDICA - ok 08:10:48.0968 3372 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys 08:10:48.0984 3372 Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\wdmaud.sys. md5: 6768ACF64B18196494413695F0C3A00F 08:10:48.0984 3372 wdmaud ( LockedFile.Multi.Generic ) - warning 08:10:48.0984 3372 wdmaud - detected LockedFile.Multi.Generic (1) 08:10:49.0031 3372 [ 81727C9873E3905A2FFC1EBD07265002 ] WebClient C:\WINDOWS\System32\webclnt.dll 08:10:49.0046 3372 WebClient - ok 08:10:49.0093 3372 [ 2C7D830E86B378771AF5DAFEAE428A09 ] WinDriver6 C:\WINDOWS\system32\drivers\windrvr6.sys 08:10:49.0093 3372 Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\windrvr6.sys. md5: 2C7D830E86B378771AF5DAFEAE428A09 08:10:49.0109 3372 WinDriver6 ( LockedFile.Multi.Generic ) - warning 08:10:49.0109 3372 WinDriver6 - detected LockedFile.Multi.Generic (1) 08:10:49.0187 3372 [ 6F3F3973D97714CC5F906A19FE883729 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll 08:10:49.0187 3372 winmgmt - ok 08:10:49.0234 3372 [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN C:\WINDOWS\system32\MsPMSNSv.dll 08:10:49.0234 3372 WmdmPmSN - ok 08:10:49.0281 3372 [ FFA4D901D46D07A5BAB2D8307FBB51A6 ] Wmi C:\WINDOWS\System32\advapi32.dll 08:10:49.0296 3372 Wmi - ok 08:10:49.0328 3372 [ 93908111BA57A6E60EC2FA2DE202105C ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe 08:10:49.0328 3372 WmiApSrv - ok 08:10:49.0421 3372 [ BF05650BB7DF5E9EBDD25974E22403BB ] WMPNetworkSvc C:\Programme\Windows Media Player\WMPNetwk.exe 08:10:49.0453 3372 WMPNetworkSvc - ok 08:10:49.0515 3372 [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] WS2IFSL C:\WINDOWS\System32\drivers\ws2ifsl.sys 08:10:49.0515 3372 Suspicious file (NoAccess): C:\WINDOWS\System32\drivers\ws2ifsl.sys. md5: 6ABE6E225ADB5A751622A9CC3BC19CE8 08:10:49.0546 3372 WS2IFSL ( LockedFile.Multi.Generic ) - warning 08:10:49.0546 3372 WS2IFSL - detected LockedFile.Multi.Generic (1) 08:10:49.0593 3372 [ C98B39829C2BBD34E454150633C62C78 ] WSTCODEC C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS 08:10:49.0593 3372 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS. md5: C98B39829C2BBD34E454150633C62C78 08:10:49.0593 3372 WSTCODEC ( LockedFile.Multi.Generic ) - warning 08:10:49.0593 3372 WSTCODEC - detected LockedFile.Multi.Generic (1) 08:10:49.0640 3372 [ 7B4FE05202AA6BF9F4DFD0E6A0D8A085 ] wuauserv C:\WINDOWS\system32\wuauserv.dll 08:10:49.0640 3372 wuauserv - ok 08:10:49.0687 3372 [ F15FEAFFFBB3644CCC80C5DA584E6311 ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys 08:10:49.0687 3372 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\WudfPf.sys. md5: F15FEAFFFBB3644CCC80C5DA584E6311 08:10:49.0687 3372 WudfPf ( LockedFile.Multi.Generic ) - warning 08:10:49.0687 3372 WudfPf - detected LockedFile.Multi.Generic (1) 08:10:49.0703 3372 [ 28B524262BCE6DE1F7EF9F510BA3985B ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys 08:10:49.0703 3372 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\wudfrd.sys. md5: 28B524262BCE6DE1F7EF9F510BA3985B 08:10:49.0703 3372 WudfRd ( LockedFile.Multi.Generic ) - warning 08:10:49.0703 3372 WudfRd - detected LockedFile.Multi.Generic (1) 08:10:49.0734 3372 [ 05231C04253C5BC30B26CBAAE680ED89 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll 08:10:49.0750 3372 WudfSvc - ok 08:10:49.0812 3372 [ C4F109C005F6725162D2D12CA751E4A7 ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll 08:10:49.0828 3372 WZCSVC - ok 08:10:49.0890 3372 [ EEB1D6B491F6448A6214A8043266E566 ] XilinxPC4Driver C:\WINDOWS\System32\drivers\XPC4DRVR.SYS 08:10:49.0890 3372 Suspicious file (NoAccess): C:\WINDOWS\System32\drivers\XPC4DRVR.SYS. md5: EEB1D6B491F6448A6214A8043266E566 08:10:49.0906 3372 XilinxPC4Driver ( LockedFile.Multi.Generic ) - warning 08:10:49.0906 3372 XilinxPC4Driver - detected LockedFile.Multi.Generic (1) 08:10:49.0953 3372 [ 0ADA34871A2E1CD2CAAFED1237A47750 ] xmlprov C:\WINDOWS\System32\xmlprov.dll 08:10:49.0968 3372 xmlprov - ok 08:10:50.0000 3372 ================ Scan global =============================== 08:10:50.0062 3372 [ 2C60091CA5F67C3032EAB3B30390C27F ] C:\WINDOWS\system32\basesrv.dll 08:10:50.0109 3372 [ A28CE25B59C90E12743001A1F2AE3613 ] C:\WINDOWS\system32\winsrv.dll 08:10:50.0125 3372 [ A28CE25B59C90E12743001A1F2AE3613 ] C:\WINDOWS\system32\winsrv.dll 08:10:50.0156 3372 [ A3EDBE9053889FB24AB22492472B39DC ] C:\WINDOWS\system32\services.exe 08:10:50.0156 3372 [Global] - ok 08:10:50.0156 3372 ================ Scan MBR ================================== 08:10:50.0171 3372 [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk0\DR0 08:10:50.0359 3372 \Device\Harddisk0\DR0 - ok 08:10:50.0390 3372 [ 72B8CE41AF0DE751C946802B3ED844B4 ] \Device\Harddisk1\DR1 08:10:50.0562 3372 \Device\Harddisk1\DR1 - ok 08:10:50.0562 3372 ================ Scan VBR ================================== 08:10:50.0562 3372 [ C106CB2838AEDB4386C0BFEE39759877 ] \Device\Harddisk0\DR0\Partition1 08:10:50.0562 3372 \Device\Harddisk0\DR0\Partition1 - ok 08:10:50.0593 3372 [ C1A818F0F9A20E756708C33D74BF1CEB ] \Device\Harddisk0\DR0\Partition2 08:10:50.0593 3372 \Device\Harddisk0\DR0\Partition2 - ok 08:10:50.0593 3372 [ DF04922DD6C101B08219DF451C2AAE38 ] \Device\Harddisk1\DR1\Partition1 08:10:50.0593 3372 \Device\Harddisk1\DR1\Partition1 - ok 08:10:50.0593 3372 ============================================================ 08:10:50.0593 3372 Scan finished 08:10:50.0593 3372 ============================================================ 08:10:50.0625 3008 Detected object count: 52 08:10:50.0625 3008 Actual detected object count: 52 08:12:34.0515 3008 4d3ab16ba79b8771 ( Rootkit.Win32.Necurs.gen ) - skipped by user 08:12:34.0515 3008 4d3ab16ba79b8771 ( Rootkit.Win32.Necurs.gen ) - User select action: Skip 08:12:34.0515 3008 slabser ( LockedFile.Multi.Generic ) - skipped by user 08:12:34.0515 3008 slabser ( LockedFile.Multi.Generic ) - User select action: Skip 08:12:34.0515 3008 SLIP ( LockedFile.Multi.Generic ) - skipped by user 08:12:34.0515 3008 SLIP ( LockedFile.Multi.Generic ) - User select action: Skip 08:12:34.0515 3008 Sntnlusb ( LockedFile.Multi.Generic ) - skipped by user 08:12:34.0515 3008 Sntnlusb ( LockedFile.Multi.Generic ) - User select action: Skip 08:12:34.0515 3008 Sparrow ( LockedFile.Multi.Generic ) - skipped by user 08:12:34.0515 3008 Sparrow ( LockedFile.Multi.Generic ) - User select action: Skip 08:12:34.0515 3008 splitter ( LockedFile.Multi.Generic ) - skipped by user 08:12:34.0515 3008 splitter ( LockedFile.Multi.Generic ) - User select action: Skip 08:12:34.0515 3008 sr ( LockedFile.Multi.Generic ) - skipped by user 08:12:34.0515 3008 sr ( LockedFile.Multi.Generic ) - User select action: Skip 08:12:34.0515 3008 Srv ( LockedFile.Multi.Generic ) - skipped by user 08:12:34.0515 3008 Srv ( LockedFile.Multi.Generic ) - User select action: Skip 08:12:34.0515 3008 sscdbus ( LockedFile.Multi.Generic ) - skipped by user 08:12:34.0515 3008 sscdbus ( LockedFile.Multi.Generic ) - User select action: Skip 08:12:34.0515 3008 sscdmdfl ( LockedFile.Multi.Generic ) - skipped by user 08:12:34.0531 3008 sscdmdfl ( LockedFile.Multi.Generic ) - User select action: Skip 08:12:34.0531 3008 sscdmdm ( LockedFile.Multi.Generic ) - skipped by user 08:12:34.0531 3008 sscdmdm ( LockedFile.Multi.Generic ) - User select action: Skip 08:12:34.0531 3008 STM Parallel Driver ( LockedFile.Multi.Generic ) - skipped by user 08:12:34.0531 3008 STM Parallel Driver ( LockedFile.Multi.Generic ) - User select action: Skip 08:12:34.0546 3008 streamip ( LockedFile.Multi.Generic ) - skipped by user 08:12:34.0546 3008 streamip ( LockedFile.Multi.Generic ) - User select action: Skip 08:12:34.0546 3008 swenum ( LockedFile.Multi.Generic ) - skipped by user 08:12:34.0546 3008 swenum ( LockedFile.Multi.Generic ) - User select action: Skip 08:12:34.0546 3008 swmidi ( LockedFile.Multi.Generic ) - skipped by user 08:12:34.0546 3008 swmidi ( LockedFile.Multi.Generic ) - User select action: Skip 08:12:34.0546 3008 symc810 ( LockedFile.Multi.Generic ) - skipped by user 08:12:34.0546 3008 symc810 ( LockedFile.Multi.Generic ) - User select action: Skip 08:12:34.0546 3008 symc8xx ( LockedFile.Multi.Generic ) - skipped by user 08:12:34.0546 3008 symc8xx ( LockedFile.Multi.Generic ) - User select action: Skip 08:12:34.0546 3008 sym_hi ( LockedFile.Multi.Generic ) - skipped by user 08:12:34.0546 3008 sym_hi ( LockedFile.Multi.Generic ) - User select action: Skip 08:12:34.0546 3008 sym_u3 ( LockedFile.Multi.Generic ) - skipped by user 08:12:34.0546 3008 sym_u3 ( LockedFile.Multi.Generic ) - User select action: Skip 08:12:34.0562 3008 sysaudio ( LockedFile.Multi.Generic ) - skipped by user 08:12:34.0562 3008 sysaudio ( LockedFile.Multi.Generic ) - User select action: Skip 08:12:34.0562 3008 Tcpip ( LockedFile.Multi.Generic ) - skipped by user 08:12:34.0562 3008 Tcpip ( LockedFile.Multi.Generic ) - User select action: Skip 08:12:34.0562 3008 TDPIPE ( LockedFile.Multi.Generic ) - skipped by user 08:12:34.0562 3008 TDPIPE ( LockedFile.Multi.Generic ) - User select action: Skip 08:12:34.0562 3008 TDTCP ( LockedFile.Multi.Generic ) - skipped by user 08:12:34.0562 3008 TDTCP ( LockedFile.Multi.Generic ) - User select action: Skip 08:12:34.0562 3008 TermDD ( LockedFile.Multi.Generic ) - skipped by user 08:12:34.0562 3008 TermDD ( LockedFile.Multi.Generic ) - User select action: Skip 08:12:34.0562 3008 TosIde ( LockedFile.Multi.Generic ) - skipped by user 08:12:34.0562 3008 TosIde ( LockedFile.Multi.Generic ) - User select action: Skip 08:12:34.0562 3008 TTUSB2 ( LockedFile.Multi.Generic ) - skipped by user 08:12:34.0562 3008 TTUSB2 ( LockedFile.Multi.Generic ) - User select action: Skip 08:12:34.0578 3008 TVICPORT ( LockedFile.Multi.Generic ) - skipped by user 08:12:34.0578 3008 TVICPORT ( LockedFile.Multi.Generic ) - User select action: Skip 08:12:34.0578 3008 Udfs ( LockedFile.Multi.Generic ) - skipped by user 08:12:34.0578 3008 Udfs ( LockedFile.Multi.Generic ) - User select action: Skip 08:12:34.0578 3008 ultra ( LockedFile.Multi.Generic ) - skipped by user 08:12:34.0578 3008 ultra ( LockedFile.Multi.Generic ) - User select action: Skip 08:12:34.0578 3008 Update ( LockedFile.Multi.Generic ) - skipped by user 08:12:34.0578 3008 Update ( LockedFile.Multi.Generic ) - User select action: Skip 08:12:34.0578 3008 usbccgp ( LockedFile.Multi.Generic ) - skipped by user 08:12:34.0578 3008 usbccgp ( LockedFile.Multi.Generic ) - User select action: Skip 08:12:34.0578 3008 usbehci ( LockedFile.Multi.Generic ) - skipped by user 08:12:34.0578 3008 usbehci ( LockedFile.Multi.Generic ) - User select action: Skip 08:12:34.0578 3008 usbhub ( LockedFile.Multi.Generic ) - skipped by user 08:12:34.0578 3008 usbhub ( LockedFile.Multi.Generic ) - User select action: Skip 08:12:34.0578 3008 usbprint ( LockedFile.Multi.Generic ) - skipped by user 08:12:34.0578 3008 usbprint ( LockedFile.Multi.Generic ) - User select action: Skip 08:12:34.0593 3008 usbser ( LockedFile.Multi.Generic ) - skipped by user 08:12:34.0593 3008 usbser ( LockedFile.Multi.Generic ) - User select action: Skip 08:12:34.0593 3008 USBSTOR ( LockedFile.Multi.Generic ) - skipped by user 08:12:34.0593 3008 USBSTOR ( LockedFile.Multi.Generic ) - User select action: Skip 08:12:34.0593 3008 usbuhci ( LockedFile.Multi.Generic ) - skipped by user 08:12:34.0593 3008 usbuhci ( LockedFile.Multi.Generic ) - User select action: Skip 08:12:34.0593 3008 usbvideo ( LockedFile.Multi.Generic ) - skipped by user 08:12:34.0593 3008 usbvideo ( LockedFile.Multi.Generic ) - User select action: Skip 08:12:34.0593 3008 VgaSave ( LockedFile.Multi.Generic ) - skipped by user 08:12:34.0593 3008 VgaSave ( LockedFile.Multi.Generic ) - User select action: Skip 08:12:34.0593 3008 viaagp ( LockedFile.Multi.Generic ) - skipped by user 08:12:34.0593 3008 viaagp ( LockedFile.Multi.Generic ) - User select action: Skip 08:12:34.0593 3008 ViaIde ( LockedFile.Multi.Generic ) - skipped by user 08:12:34.0593 3008 ViaIde ( LockedFile.Multi.Generic ) - User select action: Skip 08:12:34.0593 3008 VolSnap ( LockedFile.Multi.Generic ) - skipped by user 08:12:34.0593 3008 VolSnap ( LockedFile.Multi.Generic ) - User select action: Skip 08:12:34.0593 3008 Wanarp ( LockedFile.Multi.Generic ) - skipped by user 08:12:34.0593 3008 Wanarp ( LockedFile.Multi.Generic ) - User select action: Skip 08:12:34.0609 3008 wceusbsh ( LockedFile.Multi.Generic ) - skipped by user 08:12:34.0609 3008 wceusbsh ( LockedFile.Multi.Generic ) - User select action: Skip 08:12:34.0609 3008 Wdf01000 ( LockedFile.Multi.Generic ) - skipped by user 08:12:34.0609 3008 Wdf01000 ( LockedFile.Multi.Generic ) - User select action: Skip 08:12:34.0609 3008 wdmaud ( LockedFile.Multi.Generic ) - skipped by user 08:12:34.0609 3008 wdmaud ( LockedFile.Multi.Generic ) - User select action: Skip 08:12:34.0609 3008 WinDriver6 ( LockedFile.Multi.Generic ) - skipped by user 08:12:34.0609 3008 WinDriver6 ( LockedFile.Multi.Generic ) - User select action: Skip 08:12:34.0609 3008 WS2IFSL ( LockedFile.Multi.Generic ) - skipped by user 08:12:34.0609 3008 WS2IFSL ( LockedFile.Multi.Generic ) - User select action: Skip 08:12:34.0609 3008 WSTCODEC ( LockedFile.Multi.Generic ) - skipped by user 08:12:34.0609 3008 WSTCODEC ( LockedFile.Multi.Generic ) - User select action: Skip 08:12:34.0609 3008 WudfPf ( LockedFile.Multi.Generic ) - skipped by user 08:12:34.0609 3008 WudfPf ( LockedFile.Multi.Generic ) - User select action: Skip 08:12:34.0625 3008 WudfRd ( LockedFile.Multi.Generic ) - skipped by user 08:12:34.0625 3008 WudfRd ( LockedFile.Multi.Generic ) - User select action: Skip 08:12:34.0625 3008 XilinxPC4Driver ( LockedFile.Multi.Generic ) - skipped by user 08:12:34.0625 3008 XilinxPC4Driver ( LockedFile.Multi.Generic ) - User select action: Skip 08:12:46.0125 3028 ============================================================ 08:12:46.0125 3028 Scan started 08:12:46.0125 3028 Mode: Manual; 08:12:46.0125 3028 ============================================================ 08:12:46.0296 3028 ================ Scan system memory ======================== 08:12:46.0296 3028 System memory - ok 08:12:46.0296 3028 ================ Scan services ============================= 08:12:46.0328 3028 Suspicious service (NoAccess): 4d3ab16ba79b8771 08:12:46.0500 3028 [ 0907292986E05A8752BC1863556D229E ] 4d3ab16ba79b8771 C:\WINDOWS\System32\Drivers\4d3ab16ba79b8771.sys 08:12:46.0500 3028 Suspicious file (NoAccess): C:\WINDOWS\System32\Drivers\4d3ab16ba79b8771.sys. md5: 0907292986E05A8752BC1863556D229E 08:12:46.0515 3028 4d3ab16ba79b8771 ( Rootkit.Win32.Necurs.gen ) - infected 08:12:46.0515 3028 4d3ab16ba79b8771 - detected Rootkit.Win32.Necurs.gen (0) 08:12:46.0656 3028 [ A8A4E18857CDFD8D9AB81E2C9EAF89B5 ] a2acc C:\PROGRAMME\EMSISOFT ANTI-MALWARE\a2accx86.sys 08:12:46.0656 3028 a2acc - ok 08:12:46.0781 3028 [ E327C0DE1D7013BE360881801C0AB0FA ] a2AntiMalware C:\Programme\Emsisoft Anti-Malware\a2service.exe 08:12:46.0796 3028 a2AntiMalware - ok 08:12:46.0859 3028 [ F7EABCA8375EA2DC6F35C4BCA4757515 ] A2DDA C:\Programme\Emsisoft Anti-Malware\a2ddax86.sys 08:12:46.0859 3028 A2DDA - ok 08:12:46.0890 3028 [ 2DA26EB05B5495D3B2EE36456C239FB7 ] a2util C:\Programme\Emsisoft Anti-Malware\a2util32.sys 08:12:46.0890 3028 a2util - ok 08:12:46.0953 3028 [ 1FEC1C2506A20F0D2AF9D5D530B24CB3 ] a320raid C:\WINDOWS\system32\DRIVERS\a320raid.sys 08:12:46.0953 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\a320raid.sys. md5: 1FEC1C2506A20F0D2AF9D5D530B24CB3 08:12:46.0968 3028 a320raid ( LockedFile.Multi.Generic ) - warning 08:12:46.0968 3028 a320raid - detected LockedFile.Multi.Generic (1) 08:12:46.0968 3028 Abiosdsk - ok 08:12:46.0984 3028 [ 6ABB91494FE6C59089B9336452AB2EA3 ] abp480n5 C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS 08:12:46.0984 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS. md5: 6ABB91494FE6C59089B9336452AB2EA3 08:12:47.0000 3028 abp480n5 ( LockedFile.Multi.Generic ) - warning 08:12:47.0000 3028 abp480n5 - detected LockedFile.Multi.Generic (1) 08:12:47.0093 3028 [ AC407F1A62C3A300B4F2B5A9F1D55B2C ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys 08:12:47.0093 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\ACPI.sys. md5: AC407F1A62C3A300B4F2B5A9F1D55B2C 08:12:47.0093 3028 ACPI ( LockedFile.Multi.Generic ) - warning 08:12:47.0093 3028 ACPI - detected LockedFile.Multi.Generic (1) 08:12:47.0125 3028 [ 9E1CA3160DAFB159CA14F83B1E317F75 ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys 08:12:47.0125 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\ACPIEC.sys. md5: 9E1CA3160DAFB159CA14F83B1E317F75 08:12:47.0125 3028 ACPIEC ( LockedFile.Multi.Generic ) - warning 08:12:47.0125 3028 ACPIEC - detected LockedFile.Multi.Generic (1) 08:12:47.0218 3028 [ 0CB0AA071C7B86A64F361DCFDF357329 ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe 08:12:47.0218 3028 AdobeFlashPlayerUpdateSvc - ok 08:12:47.0281 3028 [ 9A11864873DA202C996558B2106B0BBC ] adpu160m C:\WINDOWS\system32\DRIVERS\adpu160m.sys 08:12:47.0281 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\adpu160m.sys. md5: 9A11864873DA202C996558B2106B0BBC 08:12:47.0296 3028 adpu160m ( LockedFile.Multi.Generic ) - warning 08:12:47.0296 3028 adpu160m - detected LockedFile.Multi.Generic (1) 08:12:47.0343 3028 [ E4E13CE4C85C7E45A643BA54B8C8B16B ] adpu320 C:\WINDOWS\system32\DRIVERS\adpu320.sys 08:12:47.0343 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\adpu320.sys. md5: E4E13CE4C85C7E45A643BA54B8C8B16B 08:12:47.0343 3028 adpu320 ( LockedFile.Multi.Generic ) - warning 08:12:47.0343 3028 adpu320 - detected LockedFile.Multi.Generic (1) 08:12:47.0390 3028 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys 08:12:47.0390 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\aec.sys. md5: 8BED39E3C35D6A489438B8141717A557 08:12:47.0390 3028 aec ( LockedFile.Multi.Generic ) - warning 08:12:47.0390 3028 aec - detected LockedFile.Multi.Generic (1) 08:12:47.0437 3028 [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD C:\WINDOWS\System32\drivers\afd.sys 08:12:47.0437 3028 Suspicious file (NoAccess): C:\WINDOWS\System32\drivers\afd.sys. md5: 1E44BC1E83D8FD2305F8D452DB109CF9 08:12:47.0437 3028 AFD ( LockedFile.Multi.Generic ) - warning 08:12:47.0437 3028 AFD - detected LockedFile.Multi.Generic (1) 08:12:47.0468 3028 [ 08FD04AA961BDC77FB983F328334E3D7 ] agp440 C:\WINDOWS\system32\DRIVERS\agp440.sys 08:12:47.0468 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\agp440.sys. md5: 08FD04AA961BDC77FB983F328334E3D7 08:12:47.0484 3028 agp440 ( LockedFile.Multi.Generic ) - warning 08:12:47.0484 3028 agp440 - detected LockedFile.Multi.Generic (1) 08:12:47.0500 3028 [ 03A7E0922ACFE1B07D5DB2EEB0773063 ] agpCPQ C:\WINDOWS\system32\DRIVERS\agpCPQ.sys 08:12:47.0500 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\agpCPQ.sys. md5: 03A7E0922ACFE1B07D5DB2EEB0773063 08:12:47.0500 3028 agpCPQ ( LockedFile.Multi.Generic ) - warning 08:12:47.0500 3028 agpCPQ - detected LockedFile.Multi.Generic (1) 08:12:47.0546 3028 [ C23EA9B5F46C7F7910DB3EAB648FF013 ] Aha154x C:\WINDOWS\system32\DRIVERS\aha154x.sys 08:12:47.0546 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\aha154x.sys. md5: C23EA9B5F46C7F7910DB3EAB648FF013 08:12:47.0546 3028 Aha154x ( LockedFile.Multi.Generic ) - warning 08:12:47.0546 3028 Aha154x - detected LockedFile.Multi.Generic (1) 08:12:47.0562 3028 [ 19DD0FB48B0C18892F70E2E7D61A1529 ] aic78u2 C:\WINDOWS\system32\DRIVERS\aic78u2.sys 08:12:47.0562 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\aic78u2.sys. md5: 19DD0FB48B0C18892F70E2E7D61A1529 08:12:47.0562 3028 aic78u2 ( LockedFile.Multi.Generic ) - warning 08:12:47.0562 3028 aic78u2 - detected LockedFile.Multi.Generic (1) 08:12:47.0578 3028 [ B7FE594A7468AA0132DEB03FB8E34326 ] aic78xx C:\WINDOWS\system32\DRIVERS\aic78xx.sys 08:12:47.0578 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\aic78xx.sys. md5: B7FE594A7468AA0132DEB03FB8E34326 08:12:47.0593 3028 aic78xx ( LockedFile.Multi.Generic ) - warning 08:12:47.0593 3028 aic78xx - detected LockedFile.Multi.Generic (1) 08:12:47.0671 3028 [ 3F9F42085AB5B6A55498A539C54575AB ] akshasp C:\WINDOWS\system32\DRIVERS\akshasp.sys 08:12:47.0671 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\akshasp.sys. md5: 3F9F42085AB5B6A55498A539C54575AB 08:12:47.0671 3028 akshasp ( LockedFile.Multi.Generic ) - warning 08:12:47.0671 3028 akshasp - detected LockedFile.Multi.Generic (1) 08:12:47.0718 3028 [ D2B95315CC47F9230006FDBCBA394D8D ] aksusb C:\WINDOWS\system32\DRIVERS\aksusb.sys 08:12:47.0718 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\aksusb.sys. md5: D2B95315CC47F9230006FDBCBA394D8D 08:12:47.0718 3028 aksusb ( LockedFile.Multi.Generic ) - warning 08:12:47.0718 3028 aksusb - detected LockedFile.Multi.Generic (1) 08:12:47.0765 3028 [ 738D80CC01D7BC7584BE917B7F544394 ] Alerter C:\WINDOWS\system32\alrsvc.dll 08:12:47.0765 3028 Alerter - ok 08:12:47.0796 3028 [ 190CD73D4984F94D823F9444980513E5 ] ALG C:\WINDOWS\System32\alg.exe 08:12:47.0796 3028 ALG - ok 08:12:47.0812 3028 [ 1140AB9938809700B46BB88E46D72A96 ] AliIde C:\WINDOWS\system32\DRIVERS\aliide.sys 08:12:47.0812 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\aliide.sys. md5: 1140AB9938809700B46BB88E46D72A96 08:12:47.0812 3028 AliIde ( LockedFile.Multi.Generic ) - warning 08:12:47.0812 3028 AliIde - detected LockedFile.Multi.Generic (1) 08:12:47.0843 3028 [ CB08AED0DE2DD889A8A820CD8082D83C ] alim1541 C:\WINDOWS\system32\DRIVERS\alim1541.sys 08:12:47.0843 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\alim1541.sys. md5: CB08AED0DE2DD889A8A820CD8082D83C 08:12:47.0843 3028 alim1541 ( LockedFile.Multi.Generic ) - warning 08:12:47.0843 3028 alim1541 - detected LockedFile.Multi.Generic (1) 08:12:47.0875 3028 [ 5C3D047466AF6FC35A273F558F14EF2B ] AlteraByteBlaster C:\WINDOWS\system32\drivers\pgdhdlc.sys 08:12:47.0875 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\pgdhdlc.sys. md5: 5C3D047466AF6FC35A273F558F14EF2B 08:12:47.0890 3028 AlteraByteBlaster ( LockedFile.Multi.Generic ) - warning 08:12:47.0890 3028 AlteraByteBlaster - detected LockedFile.Multi.Generic (1) 08:12:48.0015 3028 [ 5E90A956526086634547BF8093FEB699 ] altio C:\Programme\Altium Designer Summer 09\System\Drivers\altio.sys 08:12:48.0015 3028 Suspicious file (NoAccess): C:\Programme\Altium Designer Summer 09\System\Drivers\altio.sys. md5: 5E90A956526086634547BF8093FEB699 08:12:48.0046 3028 altio ( LockedFile.Multi.Generic ) - warning 08:12:48.0046 3028 altio - detected LockedFile.Multi.Generic (1) 08:12:48.0093 3028 [ E46EE40E8ACE43EE51A1F3EEB1E03168 ] AltiumUSBJtag C:\WINDOWS\system32\Drivers\AltiumUSBJtag.sys 08:12:48.0093 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\Drivers\AltiumUSBJtag.sys. md5: E46EE40E8ACE43EE51A1F3EEB1E03168 08:12:48.0093 3028 AltiumUSBJtag ( LockedFile.Multi.Generic ) - warning 08:12:48.0093 3028 AltiumUSBJtag - detected LockedFile.Multi.Generic (1) 08:12:48.0125 3028 [ 95B4FB835E28AA1336CEEB07FD5B9398 ] amdagp C:\WINDOWS\system32\DRIVERS\amdagp.sys 08:12:48.0125 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\amdagp.sys. md5: 95B4FB835E28AA1336CEEB07FD5B9398 08:12:48.0140 3028 amdagp ( LockedFile.Multi.Generic ) - warning 08:12:48.0140 3028 amdagp - detected LockedFile.Multi.Generic (1) 08:12:48.0171 3028 [ 79F5ADD8D24BD6893F2903A3E2F3FAD6 ] amsint C:\WINDOWS\system32\DRIVERS\amsint.sys 08:12:48.0171 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\amsint.sys. md5: 79F5ADD8D24BD6893F2903A3E2F3FAD6 08:12:48.0171 3028 amsint ( LockedFile.Multi.Generic ) - warning 08:12:48.0171 3028 amsint - detected LockedFile.Multi.Generic (1) 08:12:48.0296 3028 [ F401929EE0CC92BFE7F15161CA535383 ] Apple Mobile Device C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\AppleMobileDeviceService.exe 08:12:48.0296 3028 Apple Mobile Device - ok 08:12:48.0343 3028 [ D45960BE52C3C610D361977057F98C54 ] AppMgmt C:\WINDOWS\System32\appmgmts.dll 08:12:48.0343 3028 AppMgmt - ok 08:12:48.0421 3028 [ B5B8A80875C1DEDEDA8B02765642C32F ] Arp1394 C:\WINDOWS\system32\DRIVERS\arp1394.sys 08:12:48.0421 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\arp1394.sys. md5: B5B8A80875C1DEDEDA8B02765642C32F 08:12:48.0421 3028 Arp1394 ( LockedFile.Multi.Generic ) - warning 08:12:48.0421 3028 Arp1394 - detected LockedFile.Multi.Generic (1) 08:12:48.0453 3028 [ 62D318E9A0C8FC9B780008E724283707 ] asc C:\WINDOWS\system32\DRIVERS\asc.sys 08:12:48.0453 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\asc.sys. md5: 62D318E9A0C8FC9B780008E724283707 08:12:48.0453 3028 asc ( LockedFile.Multi.Generic ) - warning 08:12:48.0453 3028 asc - detected LockedFile.Multi.Generic (1) 08:12:48.0468 3028 [ 69EB0CC7714B32896CCBFD5EDCBEA447 ] asc3350p C:\WINDOWS\system32\DRIVERS\asc3350p.sys 08:12:48.0468 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\asc3350p.sys. md5: 69EB0CC7714B32896CCBFD5EDCBEA447 08:12:48.0468 3028 asc3350p ( LockedFile.Multi.Generic ) - warning 08:12:48.0468 3028 asc3350p - detected LockedFile.Multi.Generic (1) 08:12:48.0515 3028 [ 5D8DE112AA0254B907861E9E9C31D597 ] asc3550 C:\WINDOWS\system32\DRIVERS\asc3550.sys 08:12:48.0515 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\asc3550.sys. md5: 5D8DE112AA0254B907861E9E9C31D597 08:12:48.0531 3028 asc3550 ( LockedFile.Multi.Generic ) - warning 08:12:48.0531 3028 asc3550 - detected LockedFile.Multi.Generic (1) 08:12:48.0656 3028 [ 0E5E4957549056E2BF2C49F4F6B601AD ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe 08:12:48.0656 3028 aspnet_state - ok 08:12:48.0734 3028 [ F16E27F1AFAD4DEE2F0651AC90691BBD ] Asset Management Daemon C:\Programme\Gemeinsame Dateien\Portrait Displays\Plugins\AM\dtsslsrv.exe 08:12:48.0734 3028 Asset Management Daemon - ok 08:12:48.0765 3028 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys 08:12:48.0765 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\asyncmac.sys. md5: B153AFFAC761E7F5FCFA822B9C4E97BC 08:12:48.0796 3028 AsyncMac ( LockedFile.Multi.Generic ) - warning 08:12:48.0796 3028 AsyncMac - detected LockedFile.Multi.Generic (1) 08:12:48.0828 3028 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys 08:12:48.0828 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\atapi.sys. md5: 9F3A2F5AA6875C72BF062C712CFA2674 08:12:48.0828 3028 atapi ( LockedFile.Multi.Generic ) - warning 08:12:48.0828 3028 atapi - detected LockedFile.Multi.Generic (1) 08:12:48.0843 3028 Atdisk - ok 08:12:48.0890 3028 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys 08:12:48.0890 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\atmarpc.sys. md5: 9916C1225104BA14794209CFA8012159 08:12:48.0906 3028 Atmarpc ( LockedFile.Multi.Generic ) - warning 08:12:48.0906 3028 Atmarpc - detected LockedFile.Multi.Generic (1) 08:12:48.0937 3028 [ 58ED0D5452DF7BE732193E7999C6B9A4 ] AudioSrv C:\WINDOWS\System32\audiosrv.dll 08:12:48.0937 3028 AudioSrv - ok 08:12:48.0968 3028 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys 08:12:48.0968 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\audstub.sys. md5: D9F724AA26C010A217C97606B160ED68 08:12:48.0984 3028 audstub ( LockedFile.Multi.Generic ) - warning 08:12:48.0984 3028 audstub - detected LockedFile.Multi.Generic (1) 08:12:49.0031 3028 [ 3A3A82FFD268BCFB7AE6A48CECF00AD9 ] b57w2k C:\WINDOWS\system32\DRIVERS\b57xp32.sys 08:12:49.0031 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\b57xp32.sys. md5: 3A3A82FFD268BCFB7AE6A48CECF00AD9 08:12:49.0031 3028 b57w2k ( LockedFile.Multi.Generic ) - warning 08:12:49.0031 3028 b57w2k - detected LockedFile.Multi.Generic (1) 08:12:49.0046 3028 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys 08:12:49.0046 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\Beep.sys. md5: DA1F27D85E0D1525F6621372E7B685E9 08:12:49.0046 3028 Beep ( LockedFile.Multi.Generic ) - warning 08:12:49.0046 3028 Beep - detected LockedFile.Multi.Generic (1) 08:12:49.0109 3028 BitKinex - ok 08:12:49.0171 3028 [ D6F603772A789BB3228F310D650B8BD1 ] BITS C:\WINDOWS\system32\qmgr.dll 08:12:49.0171 3028 BITS - ok 08:12:49.0250 3028 [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] Bonjour Service C:\Programme\Bonjour\mDNSResponder.exe 08:12:49.0265 3028 Bonjour Service - ok 08:12:49.0281 3028 Brother XP spl Service - ok 08:12:49.0312 3028 [ B71549F23736ADF83A571061C47777FD ] Browser C:\WINDOWS\System32\browser.dll 08:12:49.0328 3028 Browser - ok 08:12:49.0375 3028 [ 0A4738EFE76716DF8B193CDBB3204870 ] Cadence License Manager C:\Programme\Cadence Design Systems\Cadence License Manager\lmgrd.exe 08:12:49.0375 3028 Cadence License Manager - ok 08:12:49.0515 3028 [ 048BB4921BC148EBA4020295AB265063 ] Canon Driver Information Assist Service C:\Programme\Canon\DIAS\CnxDIAS.exe 08:12:49.0546 3028 Canon Driver Information Assist Service - ok 08:12:49.0593 3028 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf C:\WINDOWS\system32\DRIVERS\cbidf2k.sys 08:12:49.0593 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\cbidf2k.sys. md5: 90A673FC8E12A79AFBED2576F6A7AAF9 08:12:49.0625 3028 cbidf ( LockedFile.Multi.Generic ) - warning 08:12:49.0625 3028 cbidf - detected LockedFile.Multi.Generic (1) 08:12:49.0640 3028 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys 08:12:49.0640 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\cbidf2k.sys. md5: 90A673FC8E12A79AFBED2576F6A7AAF9 08:12:49.0640 3028 cbidf2k ( LockedFile.Multi.Generic ) - warning 08:12:49.0640 3028 cbidf2k - detected LockedFile.Multi.Generic (1) 08:12:49.0687 3028 [ 0BE5AEF125BE881C4F854C554F2B025C ] CCDECODE C:\WINDOWS\system32\DRIVERS\CCDECODE.sys 08:12:49.0687 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\CCDECODE.sys. md5: 0BE5AEF125BE881C4F854C554F2B025C 08:12:49.0718 3028 CCDECODE ( LockedFile.Multi.Generic ) - warning 08:12:49.0718 3028 CCDECODE - detected LockedFile.Multi.Generic (1) 08:12:49.0718 3028 [ F3EC03299634490E97BBCE94CD2954C7 ] cd20xrnt C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys 08:12:49.0718 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys. md5: F3EC03299634490E97BBCE94CD2954C7 08:12:49.0718 3028 cd20xrnt ( LockedFile.Multi.Generic ) - warning 08:12:49.0718 3028 cd20xrnt - detected LockedFile.Multi.Generic (1) 08:12:49.0781 3028 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys 08:12:49.0781 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\Cdaudio.sys. md5: C1B486A7658353D33A10CC15211A873B 08:12:49.0781 3028 Cdaudio ( LockedFile.Multi.Generic ) - warning 08:12:49.0781 3028 Cdaudio - detected LockedFile.Multi.Generic (1) 08:12:49.0843 3028 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys 08:12:49.0843 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\Cdfs.sys. md5: C885B02847F5D2FD45A24E219ED93B32 08:12:49.0843 3028 Cdfs ( LockedFile.Multi.Generic ) - warning 08:12:49.0843 3028 Cdfs - detected LockedFile.Multi.Generic (1) 08:12:49.0890 3028 [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys 08:12:49.0890 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\cdrom.sys. md5: 1F4260CC5B42272D71F79E570A27A4FE 08:12:49.0890 3028 Cdrom ( LockedFile.Multi.Generic ) - warning 08:12:49.0890 3028 Cdrom - detected LockedFile.Multi.Generic (1) 08:12:49.0921 3028 [ BC9C2EF22EE0320C079E3FF9B4D29951 ] CERUSB C:\WINDOWS\system32\drivers\SiUSBXp.sys 08:12:49.0921 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\SiUSBXp.sys. md5: BC9C2EF22EE0320C079E3FF9B4D29951 08:12:49.0953 3028 CERUSB ( LockedFile.Multi.Generic ) - warning 08:12:49.0953 3028 CERUSB - detected LockedFile.Multi.Generic (1) 08:12:49.0953 3028 Changer - ok 08:12:50.0015 3028 [ 28E3040D1F1CA2008CD6B29DFEBC9A5E ] CiSvc C:\WINDOWS\system32\cisvc.exe 08:12:50.0015 3028 CiSvc - ok 08:12:50.0046 3028 [ 778A30ED3C134EB7E406AFC407E9997D ] ClipSrv C:\WINDOWS\system32\clipsrv.exe 08:12:50.0046 3028 ClipSrv - ok 08:12:50.0109 3028 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe 08:12:50.0109 3028 clr_optimization_v2.0.50727_32 - ok 08:12:50.0140 3028 [ C687F81290303D90099B027A6474F99F ] CmdIde C:\WINDOWS\system32\DRIVERS\cmdide.sys 08:12:50.0140 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\cmdide.sys. md5: C687F81290303D90099B027A6474F99F 08:12:50.0156 3028 CmdIde ( LockedFile.Multi.Generic ) - warning 08:12:50.0156 3028 CmdIde - detected LockedFile.Multi.Generic (1) 08:12:50.0218 3028 [ 5BD8084248CC2A9450D99AA3FDAEE160 ] ComRedirSvc C:\Programme\Lantronix\Redirector\redirsvc.exe 08:12:50.0218 3028 ComRedirSvc - ok 08:12:50.0250 3028 COMSysApp - ok 08:12:50.0265 3028 [ 3EE529119EED34CD212A215E8C40D4B6 ] Cpqarray C:\WINDOWS\system32\DRIVERS\cpqarray.sys 08:12:50.0265 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\cpqarray.sys. md5: 3EE529119EED34CD212A215E8C40D4B6 08:12:50.0265 3028 Cpqarray ( LockedFile.Multi.Generic ) - warning 08:12:50.0265 3028 Cpqarray - detected LockedFile.Multi.Generic (1) 08:12:50.0296 3028 [ 611F824E5C703A5A899F84C5F1699E4D ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll 08:12:50.0296 3028 CryptSvc - ok 08:12:50.0328 3028 [ E550E7418984B65A78299D248F0A7F36 ] dac2w2k C:\WINDOWS\system32\DRIVERS\dac2w2k.sys 08:12:50.0328 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\dac2w2k.sys. md5: E550E7418984B65A78299D248F0A7F36 08:12:50.0343 3028 dac2w2k ( LockedFile.Multi.Generic ) - warning 08:12:50.0343 3028 dac2w2k - detected LockedFile.Multi.Generic (1) 08:12:50.0375 3028 [ 683789CAA3864EB46125AE86FF677D34 ] dac960nt C:\WINDOWS\system32\DRIVERS\dac960nt.sys 08:12:50.0375 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\dac960nt.sys. md5: 683789CAA3864EB46125AE86FF677D34 08:12:50.0375 3028 dac960nt ( LockedFile.Multi.Generic ) - warning 08:12:50.0375 3028 dac960nt - detected LockedFile.Multi.Generic (1) 08:12:50.0453 3028 [ 3127AFBF2C1ED0AB14A1BBB7AAECB85B ] DcomLaunch C:\WINDOWS\system32\rpcss.dll 08:12:50.0453 3028 DcomLaunch - ok 08:12:50.0515 3028 [ C29A1C9B75BA38FA37F8C44405DEC360 ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll 08:12:50.0515 3028 Dhcp - ok 08:12:50.0578 3028 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys 08:12:50.0578 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\disk.sys. md5: 044452051F3E02E7963599FC8F4F3E25 08:12:50.0609 3028 Disk ( LockedFile.Multi.Generic ) - warning 08:12:50.0609 3028 Disk - detected LockedFile.Multi.Generic (1) 08:12:50.0625 3028 dmadmin - ok 08:12:50.0687 3028 [ 0DCFC8395A99FECBB1EF771CEC7FE4EA ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys 08:12:50.0687 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\dmboot.sys. md5: 0DCFC8395A99FECBB1EF771CEC7FE4EA 08:12:50.0687 3028 dmboot ( LockedFile.Multi.Generic ) - warning 08:12:50.0687 3028 dmboot - detected LockedFile.Multi.Generic (1) 08:12:50.0750 3028 [ 53720AB12B48719D00E327DA470A619A ] dmio C:\WINDOWS\system32\drivers\dmio.sys 08:12:50.0750 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\dmio.sys. md5: 53720AB12B48719D00E327DA470A619A 08:12:50.0750 3028 dmio ( LockedFile.Multi.Generic ) - warning 08:12:50.0750 3028 dmio - detected LockedFile.Multi.Generic (1) 08:12:50.0765 3028 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys 08:12:50.0765 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\dmload.sys. md5: E9317282A63CA4D188C0DF5E09C6AC5F 08:12:50.0781 3028 dmload ( LockedFile.Multi.Generic ) - warning 08:12:50.0781 3028 dmload - detected LockedFile.Multi.Generic (1) 08:12:50.0812 3028 [ 25C83FFBBA13B554EB6D59A9B2E2EE78 ] dmserver C:\WINDOWS\System32\dmserver.dll 08:12:50.0812 3028 dmserver - ok 08:12:50.0875 3028 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys 08:12:50.0875 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\DMusic.sys. md5: 8A208DFCF89792A484E76C40E5F50B45 08:12:50.0875 3028 DMusic ( LockedFile.Multi.Generic ) - warning 08:12:50.0875 3028 DMusic - detected LockedFile.Multi.Generic (1) 08:12:50.0921 3028 [ 407F3227AC618FD1CA54B335B083DE07 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll 08:12:50.0921 3028 Dnscache - ok 08:12:50.0953 3028 [ 676E36C4FF5BCEA1900F44182B9723E6 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll 08:12:50.0953 3028 Dot3svc - ok 08:12:50.0984 3028 [ 40F3B93B4E5B0126F2F5C0A7A5E22660 ] dpti2o C:\WINDOWS\system32\DRIVERS\dpti2o.sys 08:12:50.0984 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\dpti2o.sys. md5: 40F3B93B4E5B0126F2F5C0A7A5E22660 08:12:50.0984 3028 dpti2o ( LockedFile.Multi.Generic ) - warning 08:12:50.0984 3028 dpti2o - detected LockedFile.Multi.Generic (1) 08:12:51.0031 3028 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys 08:12:51.0031 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\drmkaud.sys. md5: 8F5FCFF8E8848AFAC920905FBD9D33C8 08:12:51.0031 3028 drmkaud ( LockedFile.Multi.Generic ) - warning 08:12:51.0031 3028 drmkaud - detected LockedFile.Multi.Generic (1) 08:12:51.0078 3028 [ 79666B3AC5EE1534E973469E4F0EB63B ] DS1410D C:\WINDOWS\system32\drivers\DS1410D.SYS 08:12:51.0078 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\DS1410D.SYS. md5: 79666B3AC5EE1534E973469E4F0EB63B 08:12:51.0093 3028 DS1410D ( LockedFile.Multi.Generic ) - warning 08:12:51.0093 3028 DS1410D - detected LockedFile.Multi.Generic (1) 08:12:51.0156 3028 [ 222F54132446024480741ABB675245B9 ] DTSRVC C:\Programme\Gemeinsame Dateien\Portrait Displays\Shared\DTSRVC.exe 08:12:51.0156 3028 DTSRVC - ok 08:12:51.0203 3028 [ 4E4F2FDDAB0A0736D7671134DCCE91FB ] EapHost C:\WINDOWS\System32\eapsvc.dll 08:12:51.0203 3028 EapHost - ok 08:12:51.0234 3028 [ BC9C2EF22EE0320C079E3FF9B4D29951 ] ELUSBXP C:\WINDOWS\system32\drivers\SiUSBXp.sys 08:12:51.0234 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\SiUSBXp.sys. md5: BC9C2EF22EE0320C079E3FF9B4D29951 08:12:51.0234 3028 ELUSBXP ( LockedFile.Multi.Generic ) - warning 08:12:51.0234 3028 ELUSBXP - detected LockedFile.Multi.Generic (1) 08:12:51.0250 3028 [ 877C18558D70587AA7823A1A308AC96B ] ERSvc C:\WINDOWS\System32\ersvc.dll 08:12:51.0250 3028 ERSvc - ok 08:12:51.0328 3028 [ A3EDBE9053889FB24AB22492472B39DC ] Eventlog C:\WINDOWS\system32\services.exe 08:12:51.0328 3028 Eventlog - ok 08:12:51.0421 3028 [ AF4F6B5739D18CA7972AB53E091CBC74 ] EventSystem C:\WINDOWS\system32\es.dll 08:12:51.0421 3028 EventSystem - ok 08:12:51.0437 3028 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys 08:12:51.0437 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\Fastfat.sys. md5: 38D332A6D56AF32635675F132548343E 08:12:51.0468 3028 Fastfat ( LockedFile.Multi.Generic ) - warning 08:12:51.0468 3028 Fastfat - detected LockedFile.Multi.Generic (1) 08:12:51.0515 3028 [ 2DB7D303C36DDD055215052F118E8E75 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll 08:12:51.0515 3028 FastUserSwitchingCompatibility - ok 08:12:51.0562 3028 [ 08B8B302AF0D1B3B8543429BBAC8F21F ] Fax C:\WINDOWS\system32\fxssvc.exe 08:12:51.0578 3028 Fax - ok 08:12:51.0593 3028 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\DRIVERS\fdc.sys 08:12:51.0593 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\fdc.sys. md5: 92CDD60B6730B9F50F6A1A0C1F8CDC81 08:12:51.0593 3028 Fdc ( LockedFile.Multi.Generic ) - warning 08:12:51.0593 3028 Fdc - detected LockedFile.Multi.Generic (1) 08:12:51.0609 3028 [ B0678A548587C5F1967B0D70BACAD6C1 ] Fips C:\WINDOWS\system32\drivers\Fips.sys 08:12:51.0609 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\Fips.sys. md5: B0678A548587C5F1967B0D70BACAD6C1 08:12:51.0625 3028 Fips ( LockedFile.Multi.Generic ) - warning 08:12:51.0625 3028 Fips - detected LockedFile.Multi.Generic (1) 08:12:51.0656 3028 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\DRIVERS\flpydisk.sys 08:12:51.0656 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\flpydisk.sys. md5: 9D27E7B80BFCDF1CDD9B555862D5E7F0 08:12:51.0656 3028 Flpydisk ( LockedFile.Multi.Generic ) - warning 08:12:51.0656 3028 Flpydisk - detected LockedFile.Multi.Generic (1) 08:12:51.0687 3028 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys 08:12:51.0687 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\fltmgr.sys. md5: B2CF4B0786F8212CB92ED2B50C6DB6B0 08:12:51.0703 3028 FltMgr ( LockedFile.Multi.Generic ) - warning 08:12:51.0703 3028 FltMgr - detected LockedFile.Multi.Generic (1) 08:12:51.0750 3028 [ 27C75AC6D6FC808D8244D9C9CEA681D1 ] fltsrv C:\WINDOWS\system32\DRIVERS\fltsrv.sys 08:12:51.0750 3028 fltsrv - ok 08:12:51.0859 3028 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe 08:12:51.0859 3028 FontCache3.0.0.0 - ok 08:12:51.0937 3028 [ C6EE3A87FE609D3E1DB9DBD072A248DE ] fssfltr C:\WINDOWS\system32\DRIVERS\fssfltr_tdi.sys 08:12:51.0937 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\fssfltr_tdi.sys. md5: C6EE3A87FE609D3E1DB9DBD072A248DE 08:12:51.0968 3028 fssfltr ( LockedFile.Multi.Generic ) - warning 08:12:51.0968 3028 fssfltr - detected LockedFile.Multi.Generic (1) 08:12:52.0125 3028 [ 45B52394F9624237F33A8A3D73C0B221 ] fsssvc C:\Programme\Windows Live\Family Safety\fsssvc.exe 08:12:52.0125 3028 fsssvc - ok 08:12:52.0203 3028 [ 790A4CA68F44BE35967B3DF61F3E4675 ] FsUsbExDisk C:\WINDOWS\system32\FsUsbExDisk.SYS 08:12:52.0203 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\FsUsbExDisk.SYS. md5: 790A4CA68F44BE35967B3DF61F3E4675 08:12:52.0218 3028 FsUsbExDisk ( LockedFile.Multi.Generic ) - warning 08:12:52.0218 3028 FsUsbExDisk - detected LockedFile.Multi.Generic (1) 08:12:52.0265 3028 [ D3F9205CC4CB07553F2F9472C767EA87 ] FsUsbExService C:\WINDOWS\system32\FsUsbExService.Exe 08:12:52.0265 3028 FsUsbExService - ok 08:12:52.0328 3028 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys 08:12:52.0328 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\Fs_Rec.sys. md5: 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A 08:12:52.0328 3028 Fs_Rec ( LockedFile.Multi.Generic ) - warning 08:12:52.0328 3028 Fs_Rec - detected LockedFile.Multi.Generic (1) 08:12:52.0375 3028 [ AB40574F179B60BE08FE87DF70ECF9EB ] FTD2XX C:\WINDOWS\system32\Drivers\FTD2XX.sys 08:12:52.0375 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\Drivers\FTD2XX.sys. md5: AB40574F179B60BE08FE87DF70ECF9EB 08:12:52.0390 3028 FTD2XX ( LockedFile.Multi.Generic ) - warning 08:12:52.0390 3028 FTD2XX - detected LockedFile.Multi.Generic (1) 08:12:52.0468 3028 [ AAE37F0F2F613218DCE17B42A18C38DB ] FTDIBUS C:\WINDOWS\system32\drivers\ftdibus.sys 08:12:52.0468 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\ftdibus.sys. md5: AAE37F0F2F613218DCE17B42A18C38DB 08:12:52.0468 3028 FTDIBUS ( LockedFile.Multi.Generic ) - warning 08:12:52.0468 3028 FTDIBUS - detected LockedFile.Multi.Generic (1) 08:12:52.0500 3028 [ 8F1955CE42E1484714B542F341647778 ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys 08:12:52.0500 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\ftdisk.sys. md5: 8F1955CE42E1484714B542F341647778 08:12:52.0500 3028 Ftdisk ( LockedFile.Multi.Generic ) - warning 08:12:52.0500 3028 Ftdisk - detected LockedFile.Multi.Generic (1) 08:12:52.0546 3028 [ 48BFD1BA45C9C9E7AB339E25ABFBA1D2 ] FTSER2K C:\WINDOWS\system32\drivers\ftser2k.sys 08:12:52.0546 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\ftser2k.sys. md5: 48BFD1BA45C9C9E7AB339E25ABFBA1D2 08:12:52.0593 3028 FTSER2K ( LockedFile.Multi.Generic ) - warning 08:12:52.0593 3028 FTSER2K - detected LockedFile.Multi.Generic (1) 08:12:52.0609 3028 [ BC9C2EF22EE0320C079E3FF9B4D29951 ] GATEXP C:\WINDOWS\system32\drivers\SiUSBXp.sys 08:12:52.0609 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\SiUSBXp.sys. md5: BC9C2EF22EE0320C079E3FF9B4D29951 08:12:52.0609 3028 GATEXP ( LockedFile.Multi.Generic ) - warning 08:12:52.0609 3028 GATEXP - detected LockedFile.Multi.Generic (1) 08:12:52.0671 3028 [ 8182FF89C65E4D38B2DE4BB0FB18564E ] GEARAspiWDM C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys 08:12:52.0671 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys. md5: 8182FF89C65E4D38B2DE4BB0FB18564E 08:12:52.0671 3028 GEARAspiWDM ( LockedFile.Multi.Generic ) - warning 08:12:52.0671 3028 GEARAspiWDM - detected LockedFile.Multi.Generic (1) 08:12:52.0718 3028 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys 08:12:52.0718 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\msgpc.sys. md5: 0A02C63C8B144BD8C86B103DEE7C86A2 08:12:52.0718 3028 Gpc ( LockedFile.Multi.Generic ) - warning 08:12:52.0718 3028 Gpc - detected LockedFile.Multi.Generic (1) 08:12:52.0812 3028 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdate C:\Programme\Google\Update\GoogleUpdate.exe 08:12:52.0812 3028 gupdate - ok 08:12:52.0875 3028 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdatem C:\Programme\Google\Update\GoogleUpdate.exe 08:12:52.0875 3028 gupdatem - ok 08:12:52.0921 3028 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Programme\Google\Common\Google Updater\GoogleUpdaterService.exe 08:12:52.0921 3028 gusvc - ok 08:12:52.0984 3028 [ D95554949082FD29A04D351B58396718 ] hardlock C:\WINDOWS\system32\drivers\hardlock.sys 08:12:52.0984 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\hardlock.sys. md5: D95554949082FD29A04D351B58396718 08:12:53.0015 3028 hardlock ( LockedFile.Multi.Generic ) - warning 08:12:53.0015 3028 hardlock - detected LockedFile.Multi.Generic (1) 08:12:53.0078 3028 [ 2DD25F060DC9F79B5CDF33D90ED93669 ] Haspnt C:\WINDOWS\system32\drivers\Haspnt.sys 08:12:53.0078 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\Haspnt.sys. md5: 2DD25F060DC9F79B5CDF33D90ED93669 08:12:53.0093 3028 Haspnt ( LockedFile.Multi.Generic ) - warning 08:12:53.0093 3028 Haspnt - detected LockedFile.Multi.Generic (1) 08:12:53.0125 3028 [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus C:\WINDOWS\system32\DRIVERS\HDAudBus.sys 08:12:53.0125 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\HDAudBus.sys. md5: 573C7D0A32852B48F3058CFD8026F511 08:12:53.0125 3028 HDAudBus ( LockedFile.Multi.Generic ) - warning 08:12:53.0125 3028 HDAudBus - detected LockedFile.Multi.Generic (1) 08:12:53.0203 3028 [ CB66BF85BF599BEFD6C6A57C2E20357F ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll 08:12:53.0203 3028 helpsvc - ok 08:12:53.0250 3028 [ B35DA85E60C0103F2E4104532DA2F12B ] HidServ C:\WINDOWS\System32\hidserv.dll 08:12:53.0250 3028 HidServ - ok 08:12:53.0312 3028 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] HidUsb C:\WINDOWS\system32\DRIVERS\hidusb.sys 08:12:53.0312 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\hidusb.sys. md5: CCF82C5EC8A7326C3066DE870C06DAF1 08:12:53.0312 3028 HidUsb ( LockedFile.Multi.Generic ) - warning 08:12:53.0312 3028 HidUsb - detected LockedFile.Multi.Generic (1) 08:12:53.0343 3028 [ ED29F14101523A6E0E808107405D452C ] hkmsvc C:\WINDOWS\System32\kmsvc.dll 08:12:53.0343 3028 hkmsvc - ok 08:12:53.0390 3028 [ B028377DEA0546A5FCFBA928A8AEFAE0 ] hpn C:\WINDOWS\system32\DRIVERS\hpn.sys 08:12:53.0390 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\hpn.sys. md5: B028377DEA0546A5FCFBA928A8AEFAE0 08:12:53.0390 3028 hpn ( LockedFile.Multi.Generic ) - warning 08:12:53.0390 3028 hpn - detected LockedFile.Multi.Generic (1) 08:12:53.0437 3028 [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys 08:12:53.0437 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\Drivers\HTTP.sys. md5: F80A415EF82CD06FFAF0D971528EAD38 08:12:53.0437 3028 HTTP ( LockedFile.Multi.Generic ) - warning 08:12:53.0437 3028 HTTP - detected LockedFile.Multi.Generic (1) 08:12:53.0484 3028 [ 9E4ADB854CEBCFB81A4B36718FEECD16 ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll 08:12:53.0484 3028 HTTPFilter - ok 08:12:53.0515 3028 [ 9368670BD426EBEA5E8B18A62416EC28 ] i2omgmt C:\WINDOWS\system32\drivers\i2omgmt.sys 08:12:53.0515 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\i2omgmt.sys. md5: 9368670BD426EBEA5E8B18A62416EC28 08:12:53.0515 3028 i2omgmt ( LockedFile.Multi.Generic ) - warning 08:12:53.0515 3028 i2omgmt - detected LockedFile.Multi.Generic (1) 08:12:53.0546 3028 [ F10863BF1CCC290BABD1A09188AE49E0 ] i2omp C:\WINDOWS\system32\DRIVERS\i2omp.sys 08:12:53.0546 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\i2omp.sys. md5: F10863BF1CCC290BABD1A09188AE49E0 08:12:53.0546 3028 i2omp ( LockedFile.Multi.Generic ) - warning 08:12:53.0546 3028 i2omp - detected LockedFile.Multi.Generic (1) 08:12:53.0578 3028 [ E283B97CFBEB86C1D86BAED5F7846A92 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys 08:12:53.0578 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\i8042prt.sys. md5: E283B97CFBEB86C1D86BAED5F7846A92 08:12:53.0578 3028 i8042prt ( LockedFile.Multi.Generic ) - warning 08:12:53.0578 3028 i8042prt - detected LockedFile.Multi.Generic (1) 08:12:53.0609 3028 [ 294110966CEDD127629C5BE48367C8CF ] iaStor C:\WINDOWS\system32\DRIVERS\iaStor.sys 08:12:53.0609 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\iaStor.sys. md5: 294110966CEDD127629C5BE48367C8CF 08:12:53.0609 3028 iaStor ( LockedFile.Multi.Generic ) - warning 08:12:53.0609 3028 iaStor - detected LockedFile.Multi.Generic (1) 08:12:53.0765 3028 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe 08:12:53.0765 3028 idsvc - ok 08:12:53.0828 3028 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys 08:12:53.0828 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\imapi.sys. md5: 083A052659F5310DD8B6A6CB05EDCF8E 08:12:53.0843 3028 Imapi ( LockedFile.Multi.Generic ) - warning 08:12:53.0843 3028 Imapi - detected LockedFile.Multi.Generic (1) 08:12:53.0890 3028 [ D4B413AA210C21E46AEDD2BA5B68D38E ] ImapiService C:\WINDOWS\system32\imapi.exe 08:12:53.0906 3028 ImapiService - ok 08:12:53.0953 3028 [ 4A40E045FAEE58631FD8D91AFC620719 ] ini910u C:\WINDOWS\system32\DRIVERS\ini910u.sys 08:12:53.0953 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\ini910u.sys. md5: 4A40E045FAEE58631FD8D91AFC620719 08:12:53.0953 3028 ini910u ( LockedFile.Multi.Generic ) - warning 08:12:53.0953 3028 ini910u - detected LockedFile.Multi.Generic (1) 08:12:54.0140 3028 [ 909D03B3B7FB7C830B74F74F4D0EA7CE ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RtkHDAud.sys 08:12:54.0140 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\RtkHDAud.sys. md5: 909D03B3B7FB7C830B74F74F4D0EA7CE 08:12:54.0171 3028 IntcAzAudAddService ( LockedFile.Multi.Generic ) - warning 08:12:54.0171 3028 IntcAzAudAddService - detected LockedFile.Multi.Generic (1) 08:12:54.0203 3028 [ 69C4E3C9E67A1F103B94E14FDD5F3213 ] IntelIde C:\WINDOWS\system32\DRIVERS\intelide.sys 08:12:54.0203 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\intelide.sys. md5: 69C4E3C9E67A1F103B94E14FDD5F3213 08:12:54.0203 3028 IntelIde ( LockedFile.Multi.Generic ) - warning 08:12:54.0203 3028 IntelIde - detected LockedFile.Multi.Generic (1) 08:12:54.0250 3028 [ 4C7D2750158ED6E7AD642D97BFFAE351 ] intelppm C:\WINDOWS\system32\DRIVERS\intelppm.sys 08:12:54.0250 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\intelppm.sys. md5: 4C7D2750158ED6E7AD642D97BFFAE351 08:12:54.0250 3028 intelppm ( LockedFile.Multi.Generic ) - warning 08:12:54.0250 3028 intelppm - detected LockedFile.Multi.Generic (1) 08:12:54.0281 3028 [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw C:\WINDOWS\system32\drivers\ip6fw.sys 08:12:54.0281 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\ip6fw.sys. md5: 3BB22519A194418D5FEC05D800A19AD0 08:12:54.0281 3028 Ip6Fw ( LockedFile.Multi.Generic ) - warning 08:12:54.0281 3028 Ip6Fw - detected LockedFile.Multi.Generic (1) 08:12:54.0312 3028 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys 08:12:54.0312 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys. md5: 731F22BA402EE4B62748ADAF6363C182 08:12:54.0312 3028 IpFilterDriver ( LockedFile.Multi.Generic ) - warning 08:12:54.0312 3028 IpFilterDriver - detected LockedFile.Multi.Generic (1) 08:12:54.0359 3028 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys 08:12:54.0359 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\ipinip.sys. md5: B87AB476DCF76E72010632B5550955F5 08:12:54.0359 3028 IpInIp ( LockedFile.Multi.Generic ) - warning 08:12:54.0359 3028 IpInIp - detected LockedFile.Multi.Generic (1) 08:12:54.0406 3028 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys 08:12:54.0406 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\ipnat.sys. md5: CC748EA12C6EFFDE940EE98098BF96BB 08:12:54.0421 3028 IpNat ( LockedFile.Multi.Generic ) - warning 08:12:54.0421 3028 IpNat - detected LockedFile.Multi.Generic (1) 08:12:54.0500 3028 [ E6BE7A41A28D8F2DB174957454D32448 ] iPod Service C:\Programme\iPod\bin\iPodService.exe 08:12:54.0500 3028 iPod Service - ok 08:12:54.0562 3028 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys 08:12:54.0562 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\ipsec.sys. md5: 23C74D75E36E7158768DD63D92789A91 08:12:54.0562 3028 IPSec ( LockedFile.Multi.Generic ) - warning 08:12:54.0562 3028 IPSec - detected LockedFile.Multi.Generic (1) 08:12:54.0593 3028 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys 08:12:54.0593 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\irenum.sys. md5: C93C9FF7B04D772627A3646D89F7BF89 08:12:54.0593 3028 IRENUM ( LockedFile.Multi.Generic ) - warning 08:12:54.0593 3028 IRENUM - detected LockedFile.Multi.Generic (1) 08:12:54.0687 3028 [ 6DFB88F64135C525433E87648BDA30DE ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys 08:12:54.0687 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\isapnp.sys. md5: 6DFB88F64135C525433E87648BDA30DE 08:12:54.0687 3028 isapnp ( LockedFile.Multi.Generic ) - warning 08:12:54.0687 3028 isapnp - detected LockedFile.Multi.Generic (1) 08:12:54.0812 3028 [ DE5D05FD449798EF88CC34AD4B1E7F85 ] JavaQuickStarterService C:\Programme\Java\jre6\bin\jqs.exe 08:12:54.0828 3028 JavaQuickStarterService - ok 08:12:55.0000 3028 [ 21F12E351D011BD546C5BB46D66DBD6C ] JTAGServer c:\altera\90\quartus\bin\jtagserver.exe 08:12:55.0000 3028 JTAGServer - ok 08:12:55.0062 3028 [ 1704D8C4C8807B889E43C649B478A452 ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys 08:12:55.0062 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\kbdclass.sys. md5: 1704D8C4C8807B889E43C649B478A452 08:12:55.0078 3028 Kbdclass ( LockedFile.Multi.Generic ) - warning 08:12:55.0078 3028 Kbdclass - detected LockedFile.Multi.Generic (1) 08:12:55.0125 3028 [ B6D6C117D771C98130497265F26D1882 ] kbdhid C:\WINDOWS\system32\DRIVERS\kbdhid.sys 08:12:55.0125 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\kbdhid.sys. md5: B6D6C117D771C98130497265F26D1882 08:12:55.0140 3028 kbdhid ( LockedFile.Multi.Generic ) - warning 08:12:55.0140 3028 kbdhid - detected LockedFile.Multi.Generic (1) 08:12:55.0187 3028 [ B5AF8F521FE24FE756260278B7B76296 ] KEILUL C:\WINDOWS\system32\DRIVERS\keilul.sys 08:12:55.0187 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\keilul.sys. md5: B5AF8F521FE24FE756260278B7B76296 08:12:55.0187 3028 KEILUL ( LockedFile.Multi.Generic ) - warning 08:12:55.0187 3028 KEILUL - detected LockedFile.Multi.Generic (1) 08:12:55.0250 3028 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys 08:12:55.0250 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\kmixer.sys. md5: 692BCF44383D056AED41B045A323D378 08:12:55.0250 3028 kmixer ( LockedFile.Multi.Generic ) - warning 08:12:55.0250 3028 kmixer - detected LockedFile.Multi.Generic (1) 08:12:55.0281 3028 [ B467646C54CC746128904E1654C750C1 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys 08:12:55.0281 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\KSecDD.sys. md5: B467646C54CC746128904E1654C750C1 08:12:55.0281 3028 KSecDD ( LockedFile.Multi.Generic ) - warning 08:12:55.0281 3028 KSecDD - detected LockedFile.Multi.Generic (1) 08:12:55.0328 3028 [ 2BBDCB79900990F0716DFCB714E72DE7 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll 08:12:55.0343 3028 lanmanserver - ok 08:12:55.0406 3028 [ 1869B14B06B44B44AF70548E1EA3303F ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll 08:12:55.0406 3028 lanmanworkstation - ok 08:12:55.0421 3028 lbrtfdc - ok 08:12:55.0468 3028 [ C9914934118ADD9AFE928A16A3379016 ] libusb0 C:\WINDOWS\system32\DRIVERS\libusb0.sys 08:12:55.0468 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\libusb0.sys. md5: C9914934118ADD9AFE928A16A3379016 08:12:55.0484 3028 libusb0 ( LockedFile.Multi.Generic ) - warning 08:12:55.0484 3028 libusb0 - detected LockedFile.Multi.Generic (1) 08:12:55.0546 3028 [ 636714B7D43C8D0C80449123FD266920 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll 08:12:55.0546 3028 LmHosts - ok 08:12:55.0593 3028 [ 5A8E14FC728B4B65151855076CE5A3C9 ] Ltxred C:\WINDOWS\System32\drivers\ltxred.sys 08:12:55.0593 3028 Suspicious file (NoAccess): C:\WINDOWS\System32\drivers\ltxred.sys. md5: 5A8E14FC728B4B65151855076CE5A3C9 08:12:55.0593 3028 Ltxred ( LockedFile.Multi.Generic ) - warning 08:12:55.0593 3028 Ltxred - detected LockedFile.Multi.Generic (1) 08:12:55.0765 3028 [ 2D46DC95709F2967D401326CA67D4111 ] M4-Service C:\Dokumente und Einstellungen\Frank\Anwendungsdaten\Mikogo 4\M4-Service.exe 08:12:55.0781 3028 M4-Service - ok 08:12:55.0890 3028 [ 11F714F85530A2BD134074DC30E99FCA ] MDM C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7Debug\mdm.exe 08:12:55.0890 3028 MDM - ok 08:12:55.0953 3028 [ B7550A7107281D170CE85524B1488C98 ] Messenger C:\WINDOWS\System32\msgsvc.dll 08:12:55.0953 3028 Messenger - ok 08:12:56.0015 3028 [ A0DBFCBE2024E82F3BCF860DCF8D9497 ] mlnxfltr C:\WINDOWS\system32\drivers\mlnxfltr.sys 08:12:56.0015 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\mlnxfltr.sys. md5: A0DBFCBE2024E82F3BCF860DCF8D9497 08:12:56.0046 3028 mlnxfltr ( LockedFile.Multi.Generic ) - warning 08:12:56.0046 3028 mlnxfltr - detected LockedFile.Multi.Generic (1) 08:12:56.0093 3028 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys 08:12:56.0093 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\mnmdd.sys. md5: 4AE068242760A1FB6E1A44BF4E16AFA6 08:12:56.0093 3028 mnmdd ( LockedFile.Multi.Generic ) - warning 08:12:56.0093 3028 mnmdd - detected LockedFile.Multi.Generic (1) 08:12:56.0140 3028 [ C2F1D365FD96791B037EE504868065D3 ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe 08:12:56.0156 3028 mnmsrvc - ok 08:12:56.0203 3028 [ 6FB74EBD4EC57A6F1781DE3852CC3362 ] Modem C:\WINDOWS\system32\drivers\Modem.sys 08:12:56.0203 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\Modem.sys. md5: 6FB74EBD4EC57A6F1781DE3852CC3362 08:12:56.0203 3028 Modem ( LockedFile.Multi.Generic ) - warning 08:12:56.0203 3028 Modem - detected LockedFile.Multi.Generic (1) 08:12:56.0234 3028 [ B24CE8005DEAB254C0251E15CB71D802 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys 08:12:56.0234 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\mouclass.sys. md5: B24CE8005DEAB254C0251E15CB71D802 08:12:56.0234 3028 Mouclass ( LockedFile.Multi.Generic ) - warning 08:12:56.0234 3028 Mouclass - detected LockedFile.Multi.Generic (1) 08:12:56.0281 3028 [ 66A6F73C74E1791464160A7065CE711A ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys 08:12:56.0281 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\mouhid.sys. md5: 66A6F73C74E1791464160A7065CE711A 08:12:56.0281 3028 mouhid ( LockedFile.Multi.Generic ) - warning 08:12:56.0281 3028 mouhid - detected LockedFile.Multi.Generic (1) 08:12:56.0296 3028 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys 08:12:56.0296 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\MountMgr.sys. md5: A80B9A0BAD1B73637DBCBBA7DF72D3FD 08:12:56.0296 3028 MountMgr ( LockedFile.Multi.Generic ) - warning 08:12:56.0296 3028 MountMgr - detected LockedFile.Multi.Generic (1) 08:12:56.0375 3028 [ 15D5398EED42C2504BB3D4FC875C15D1 ] MozillaMaintenance C:\Programme\Mozilla Maintenance Service\maintenanceservice.exe 08:12:56.0375 3028 MozillaMaintenance - ok 08:12:56.0390 3028 [ 3F4BB95E5A44F3BE34824E8E7CAF0737 ] mraid35x C:\WINDOWS\system32\DRIVERS\mraid35x.sys 08:12:56.0390 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\mraid35x.sys. md5: 3F4BB95E5A44F3BE34824E8E7CAF0737 08:12:56.0390 3028 mraid35x ( LockedFile.Multi.Generic ) - warning 08:12:56.0390 3028 mraid35x - detected LockedFile.Multi.Generic (1) 08:12:56.0421 3028 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys 08:12:56.0421 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\mrxdav.sys. md5: 11D42BB6206F33FBB3BA0288D3EF81BD 08:12:56.0437 3028 MRxDAV ( LockedFile.Multi.Generic ) - warning 08:12:56.0437 3028 MRxDAV - detected LockedFile.Multi.Generic (1) 08:12:56.0500 3028 [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys 08:12:56.0500 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\mrxsmb.sys. md5: 7D304A5EB4344EBEEAB53A2FE3FFB9F0 08:12:56.0515 3028 MRxSmb ( LockedFile.Multi.Generic ) - warning 08:12:56.0515 3028 MRxSmb - detected LockedFile.Multi.Generic (1) 08:12:56.0578 3028 [ 35A031AF38C55F92D28AA03EE9F12CC9 ] MSDTC C:\WINDOWS\system32\msdtc.exe 08:12:56.0578 3028 MSDTC - ok 08:12:56.0593 3028 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys 08:12:56.0593 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\Msfs.sys. md5: C941EA2454BA8350021D774DAF0F1027 08:12:56.0593 3028 Msfs ( LockedFile.Multi.Generic ) - warning 08:12:56.0593 3028 Msfs - detected LockedFile.Multi.Generic (1) 08:12:56.0609 3028 MSIServer - ok 08:12:56.0640 3028 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys 08:12:56.0640 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\MSKSSRV.sys. md5: D1575E71568F4D9E14CA56B7B0453BF1 08:12:56.0656 3028 MSKSSRV ( LockedFile.Multi.Generic ) - warning 08:12:56.0656 3028 MSKSSRV - detected LockedFile.Multi.Generic (1) 08:12:56.0703 3028 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys 08:12:56.0703 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\MSPCLOCK.sys. md5: 325BB26842FC7CCC1FCCE2C457317F3E 08:12:56.0703 3028 MSPCLOCK ( LockedFile.Multi.Generic ) - warning 08:12:56.0703 3028 MSPCLOCK - detected LockedFile.Multi.Generic (1) 08:12:56.0718 3028 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys 08:12:56.0718 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\MSPQM.sys. md5: BAD59648BA099DA4A17680B39730CB3D 08:12:56.0718 3028 MSPQM ( LockedFile.Multi.Generic ) - warning 08:12:56.0718 3028 MSPQM - detected LockedFile.Multi.Generic (1) 08:12:56.0750 3028 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys 08:12:56.0750 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\mssmbios.sys. md5: AF5F4F3F14A8EA2C26DE30F7A1E17136 08:12:56.0765 3028 mssmbios ( LockedFile.Multi.Generic ) - warning 08:12:56.0765 3028 mssmbios - detected LockedFile.Multi.Generic (1) 08:12:56.0859 3028 MSSQL$ERWEKAMC - ok 08:12:56.0921 3028 [ 1D89EB4E2A99CABD4E81225F4F4C4B25 ] MSSQLServerADHelper C:\Programme\Microsoft SQL Server\90\Shared\sqladhlp90.exe 08:12:56.0921 3028 MSSQLServerADHelper - ok 08:12:56.0968 3028 [ E53736A9E30C45FA9E7B5EAC55056D1D ] MSTEE C:\WINDOWS\system32\drivers\MSTEE.sys 08:12:56.0968 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\MSTEE.sys. md5: E53736A9E30C45FA9E7B5EAC55056D1D 08:12:56.0984 3028 MSTEE ( LockedFile.Multi.Generic ) - warning 08:12:56.0984 3028 MSTEE - detected LockedFile.Multi.Generic (1) 08:12:57.0031 3028 [ 8533638869A3EC274E93C49C6B910306 ] MultiLINX C:\WINDOWS\system32\drivers\mltlnx.sys 08:12:57.0031 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\mltlnx.sys. md5: 8533638869A3EC274E93C49C6B910306 08:12:57.0031 3028 MultiLINX ( LockedFile.Multi.Generic ) - warning 08:12:57.0031 3028 MultiLINX - detected LockedFile.Multi.Generic (1) 08:12:57.0093 3028 [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup C:\WINDOWS\system32\drivers\Mup.sys 08:12:57.0093 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\Mup.sys. md5: DE6A75F5C270E756C5508D94B6CF68F5 08:12:57.0093 3028 Mup ( LockedFile.Multi.Generic ) - warning 08:12:57.0093 3028 Mup - detected LockedFile.Multi.Generic (1) 08:12:57.0140 3028 [ 5B50F1B2A2ED47D560577B221DA734DB ] NABTSFEC C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys 08:12:57.0140 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys. md5: 5B50F1B2A2ED47D560577B221DA734DB 08:12:57.0140 3028 NABTSFEC ( LockedFile.Multi.Generic ) - warning 08:12:57.0140 3028 NABTSFEC - detected LockedFile.Multi.Generic (1) 08:12:57.0203 3028 [ 46BB15AE2AC7D025D6D2567B876817BD ] napagent C:\WINDOWS\System32\qagentrt.dll 08:12:57.0203 3028 napagent - ok 08:12:57.0234 3028 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys 08:12:57.0234 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\NDIS.sys. md5: 1DF7F42665C94B825322FAE71721130D 08:12:57.0234 3028 NDIS ( LockedFile.Multi.Generic ) - warning 08:12:57.0234 3028 NDIS - detected LockedFile.Multi.Generic (1) 08:12:57.0296 3028 [ 7FF1F1FD8609C149AA432F95A8163D97 ] NdisIP C:\WINDOWS\system32\DRIVERS\NdisIP.sys 08:12:57.0296 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\NdisIP.sys. md5: 7FF1F1FD8609C149AA432F95A8163D97 08:12:57.0312 3028 NdisIP ( LockedFile.Multi.Generic ) - warning 08:12:57.0312 3028 NdisIP - detected LockedFile.Multi.Generic (1) 08:12:57.0375 3028 [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys 08:12:57.0375 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\ndistapi.sys. md5: 0109C4F3850DFBAB279542515386AE22 08:12:57.0390 3028 NdisTapi ( LockedFile.Multi.Generic ) - warning 08:12:57.0390 3028 NdisTapi - detected LockedFile.Multi.Generic (1) 08:12:57.0421 3028 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys 08:12:57.0421 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\ndisuio.sys. md5: F927A4434C5028758A842943EF1A3849 08:12:57.0437 3028 Ndisuio ( LockedFile.Multi.Generic ) - warning 08:12:57.0437 3028 Ndisuio - detected LockedFile.Multi.Generic (1) 08:12:57.0468 3028 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys 08:12:57.0468 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\ndiswan.sys. md5: EDC1531A49C80614B2CFDA43CA8659AB 08:12:57.0468 3028 NdisWan ( LockedFile.Multi.Generic ) - warning 08:12:57.0468 3028 NdisWan - detected LockedFile.Multi.Generic (1) 08:12:57.0531 3028 [ A1D2E1B46E79CE3081607FB88DE2909B ] NDMSHLP C:\Programme\Gemeinsame Dateien\HHD Software\Device Monitor\ndmshlp.sys 08:12:57.0531 3028 Suspicious file (NoAccess): C:\Programme\Gemeinsame Dateien\HHD Software\Device Monitor\ndmshlp.sys. md5: A1D2E1B46E79CE3081607FB88DE2909B 08:12:57.0531 3028 NDMSHLP ( LockedFile.Multi.Generic ) - warning 08:12:57.0531 3028 NDMSHLP - detected LockedFile.Multi.Generic (1) 08:12:57.0578 3028 [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys 08:12:57.0578 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\NDProxy.sys. md5: 9282BD12DFB069D3889EB3FCC1000A9B 08:12:57.0593 3028 NDProxy ( LockedFile.Multi.Generic ) - warning 08:12:57.0593 3028 NDProxy - detected LockedFile.Multi.Generic (1) 08:12:57.0640 3028 [ F7C14F5077BF2BC476C348B88A7F74E2 ] Net Driver HPZ12 C:\WINDOWS\system32\HPZinw12.dll 08:12:57.0640 3028 Net Driver HPZ12 - ok 08:12:57.0703 3028 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys 08:12:57.0703 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\netbios.sys. md5: 5D81CF9A2F1A3A756B66CF684911CDF0 08:12:57.0703 3028 NetBIOS ( LockedFile.Multi.Generic ) - warning 08:12:57.0703 3028 NetBIOS - detected LockedFile.Multi.Generic (1) 08:12:57.0765 3028 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys 08:12:57.0765 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\netbt.sys. md5: 74B2B2F5BEA5E9A3DC021D685551BD3D 08:12:57.0796 3028 NetBT ( LockedFile.Multi.Generic ) - warning 08:12:57.0796 3028 NetBT - detected LockedFile.Multi.Generic (1) 08:12:57.0843 3028 [ 8ACE4251BFFD09CE75679FE940E996CC ] NetDDE C:\WINDOWS\system32\netdde.exe 08:12:57.0843 3028 NetDDE - ok 08:12:57.0843 3028 [ 8ACE4251BFFD09CE75679FE940E996CC ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe 08:12:57.0859 3028 NetDDEdsdm - ok 08:12:57.0921 3028 [ AFB8261B56CBA0D86AEB6DF682AF9785 ] Netlogon C:\WINDOWS\system32\lsass.exe 08:12:57.0921 3028 Netlogon - ok 08:12:57.0984 3028 [ E6D88F1F6745BF00B57E7855A2AB696C ] Netman C:\WINDOWS\System32\netman.dll 08:12:57.0984 3028 Netman - ok 08:12:58.0046 3028 [ D34612C5D02D026535B3095D620626AE ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe 08:12:58.0046 3028 NetTcpPortSharing - ok 08:12:58.0062 3028 [ E9E47CFB2D461FA0FC75B7A74C6383EA ] NIC1394 C:\WINDOWS\system32\DRIVERS\nic1394.sys 08:12:58.0062 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\nic1394.sys. md5: E9E47CFB2D461FA0FC75B7A74C6383EA 08:12:58.0093 3028 NIC1394 ( LockedFile.Multi.Generic ) - warning 08:12:58.0093 3028 NIC1394 - detected LockedFile.Multi.Generic (1) 08:12:58.0125 3028 [ F1B67B6B0751AE0E6E964B02821206A3 ] Nla C:\WINDOWS\System32\mswsock.dll 08:12:58.0140 3028 Nla - ok 08:12:58.0187 3028 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys 08:12:58.0187 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\Npfs.sys. md5: 3182D64AE053D6FB034F44B6DEF8034A 08:12:58.0187 3028 Npfs ( LockedFile.Multi.Generic ) - warning 08:12:58.0187 3028 Npfs - detected LockedFile.Multi.Generic (1) 08:12:58.0296 3028 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys 08:12:58.0296 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\Ntfs.sys. md5: 78A08DD6A8D65E697C18E1DB01C5CDCA 08:12:58.0296 3028 Ntfs ( LockedFile.Multi.Generic ) - warning 08:12:58.0296 3028 Ntfs - detected LockedFile.Multi.Generic (1) 08:12:58.0312 3028 [ AFB8261B56CBA0D86AEB6DF682AF9785 ] NtLmSsp C:\WINDOWS\system32\lsass.exe 08:12:58.0312 3028 NtLmSsp - ok 08:12:58.0359 3028 [ 56AF4064996FA5BAC9C449B1514B4770 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll 08:12:58.0359 3028 NtmsSvc - ok 08:12:58.0406 3028 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys 08:12:58.0406 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\Null.sys. md5: 73C1E1F395918BC2C6DD67AF7591A3AD 08:12:58.0421 3028 Null ( LockedFile.Multi.Generic ) - warning 08:12:58.0421 3028 Null - detected LockedFile.Multi.Generic (1) 08:12:58.0609 3028 [ 33AE09E9027F5F22E80A6C80715B79DF ] nv C:\WINDOWS\system32\DRIVERS\nv4_mini.sys 08:12:58.0609 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\nv4_mini.sys. md5: 33AE09E9027F5F22E80A6C80715B79DF 08:12:58.0625 3028 nv ( LockedFile.Multi.Generic ) - warning 08:12:58.0625 3028 nv - detected LockedFile.Multi.Generic (1) 08:12:58.0687 3028 [ 0344AA9113DC16EEC379F4652020849D ] nvatabus C:\WINDOWS\system32\DRIVERS\nvatabus.sys 08:12:58.0687 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\nvatabus.sys. md5: 0344AA9113DC16EEC379F4652020849D 08:12:58.0703 3028 nvatabus ( LockedFile.Multi.Generic ) - warning 08:12:58.0703 3028 nvatabus - detected LockedFile.Multi.Generic (1) 08:12:58.0734 3028 [ A4F2A29B9D40F9FFBBB54E56CE483797 ] nvraid C:\WINDOWS\system32\DRIVERS\nvraid.sys 08:12:58.0734 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\nvraid.sys. md5: A4F2A29B9D40F9FFBBB54E56CE483797 08:12:58.0750 3028 nvraid ( LockedFile.Multi.Generic ) - warning 08:12:58.0750 3028 nvraid - detected LockedFile.Multi.Generic (1) 08:12:58.0765 3028 [ DE6F8D1079FC0E9912AB60308B110026 ] NVSvc C:\WINDOWS\system32\nvsvc32.exe 08:12:58.0765 3028 NVSvc - ok 08:12:58.0796 3028 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys 08:12:58.0796 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys. md5: B305F3FAD35083837EF46A0BBCE2FC57 08:12:58.0796 3028 NwlnkFlt ( LockedFile.Multi.Generic ) - warning 08:12:58.0796 3028 NwlnkFlt - detected LockedFile.Multi.Generic (1) 08:12:58.0812 3028 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys 08:12:58.0812 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys. md5: C99B3415198D1AAB7227F2C88FD664B9 08:12:58.0812 3028 NwlnkFwd ( LockedFile.Multi.Generic ) - warning 08:12:58.0812 3028 NwlnkFwd - detected LockedFile.Multi.Generic (1) 08:12:58.0828 3028 [ CA33832DF41AFB202EE7AEB05145922F ] ohci1394 C:\WINDOWS\system32\DRIVERS\ohci1394.sys 08:12:58.0828 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\ohci1394.sys. md5: CA33832DF41AFB202EE7AEB05145922F 08:12:58.0828 3028 ohci1394 ( LockedFile.Multi.Generic ) - warning 08:12:58.0828 3028 ohci1394 - detected LockedFile.Multi.Generic (1) 08:12:58.0953 3028 [ F5A0A29634E71EC1DD9C91E1D24E5284 ] OTSysCom C:\Programme\LG Electronics Inc\LGComSpy++\OTSysCom.sys 08:12:58.0953 3028 Suspicious file (NoAccess): C:\Programme\LG Electronics Inc\LGComSpy++\OTSysCom.sys. md5: F5A0A29634E71EC1DD9C91E1D24E5284 08:12:58.0953 3028 OTSysCom ( LockedFile.Multi.Generic ) - warning 08:12:58.0953 3028 OTSysCom - detected LockedFile.Multi.Generic (1) 08:12:59.0015 3028 [ A7AF0C0860F1C43FC6581BA8A99EABEF ] P3 C:\WINDOWS\system32\DRIVERS\p3.sys 08:12:59.0015 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\p3.sys. md5: A7AF0C0860F1C43FC6581BA8A99EABEF 08:12:59.0015 3028 P3 ( LockedFile.Multi.Generic ) - warning 08:12:59.0015 3028 P3 - detected LockedFile.Multi.Generic (1) 08:12:59.0062 3028 [ 8E55251D83763CCCA60FE26A811CFB0C ] par1284 C:\WINDOWS\system32\drivers\par1284.sys 08:12:59.0062 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\par1284.sys. md5: 8E55251D83763CCCA60FE26A811CFB0C 08:12:59.0078 3028 par1284 ( LockedFile.Multi.Generic ) - warning 08:12:59.0078 3028 par1284 - detected LockedFile.Multi.Generic (1) 08:12:59.0125 3028 [ F84785660305B9B903FB3BCA8BA29837 ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys 08:12:59.0125 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\parport.sys. md5: F84785660305B9B903FB3BCA8BA29837 08:12:59.0125 3028 Parport ( LockedFile.Multi.Generic ) - warning 08:12:59.0125 3028 Parport - detected LockedFile.Multi.Generic (1) 08:12:59.0140 3028 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys 08:12:59.0140 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\PartMgr.sys. md5: BEB3BA25197665D82EC7065B724171C6 08:12:59.0140 3028 PartMgr ( LockedFile.Multi.Generic ) - warning 08:12:59.0140 3028 PartMgr - detected LockedFile.Multi.Generic (1) 08:12:59.0171 3028 [ C2BF987829099A3EAA2CA6A0A90ECB4F ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys 08:12:59.0171 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\ParVdm.sys. md5: C2BF987829099A3EAA2CA6A0A90ECB4F 08:12:59.0171 3028 ParVdm ( LockedFile.Multi.Generic ) - warning 08:12:59.0171 3028 ParVdm - detected LockedFile.Multi.Generic (1) 08:12:59.0250 3028 [ 72735F06EFAEED680DFA41EED853F3AC ] Pcan_usb C:\WINDOWS\system32\DRIVERS\PCAN_USB.SYS 08:12:59.0250 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\PCAN_USB.SYS. md5: 72735F06EFAEED680DFA41EED853F3AC 08:12:59.0265 3028 Pcan_usb ( LockedFile.Multi.Generic ) - warning 08:12:59.0265 3028 Pcan_usb - detected LockedFile.Multi.Generic (1) 08:12:59.0296 3028 [ 175CC28DCF819F78CAA3FBD44AD9E52A ] pccsmcfd C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys 08:12:59.0296 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys. md5: 175CC28DCF819F78CAA3FBD44AD9E52A 08:12:59.0312 3028 pccsmcfd ( LockedFile.Multi.Generic ) - warning 08:12:59.0312 3028 pccsmcfd - detected LockedFile.Multi.Generic (1) 08:12:59.0328 3028 [ 387E8DEDC343AA2D1EFBC30580273ACD ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys 08:12:59.0328 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\pci.sys. md5: 387E8DEDC343AA2D1EFBC30580273ACD 08:12:59.0343 3028 PCI ( LockedFile.Multi.Generic ) - warning 08:12:59.0343 3028 PCI - detected LockedFile.Multi.Generic (1) 08:12:59.0343 3028 PCIDump - ok 08:12:59.0359 3028 [ 59BA86D9A61CBCF4DF8E598C331F5B82 ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys 08:12:59.0359 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\pciide.sys. md5: 59BA86D9A61CBCF4DF8E598C331F5B82 08:12:59.0359 3028 PCIIde ( LockedFile.Multi.Generic ) - warning 08:12:59.0359 3028 PCIIde - detected LockedFile.Multi.Generic (1) 08:12:59.0406 3028 [ A2A966B77D61847D61A3051DF87C8C97 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys 08:12:59.0406 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\Pcmcia.sys. md5: A2A966B77D61847D61A3051DF87C8C97 08:12:59.0437 3028 Pcmcia ( LockedFile.Multi.Generic ) - warning 08:12:59.0437 3028 Pcmcia - detected LockedFile.Multi.Generic (1) 08:12:59.0437 3028 PDCOMP - ok 08:12:59.0453 3028 PDFRAME - ok 08:12:59.0500 3028 [ FEE34EAE1FF4FEA67248F9F6CF6EC5D0 ] PdiPorts C:\WINDOWS\system32\Drivers\PdiPorts.sys 08:12:59.0500 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\Drivers\PdiPorts.sys. md5: FEE34EAE1FF4FEA67248F9F6CF6EC5D0 08:12:59.0531 3028 PdiPorts ( LockedFile.Multi.Generic ) - warning 08:12:59.0531 3028 PdiPorts - detected LockedFile.Multi.Generic (1) 08:12:59.0593 3028 [ 01FA89DEA940234FECB41DD5F73B6EAB ] PdiService C:\Programme\Gemeinsame Dateien\Portrait Displays\Drivers\pdisrvc.exe 08:12:59.0593 3028 PdiService - ok 08:12:59.0593 3028 PDRELI - ok 08:12:59.0609 3028 PDRFRAME - ok 08:12:59.0625 3028 [ 6C14B9C19BA84F73D3A86DBA11133101 ] perc2 C:\WINDOWS\system32\DRIVERS\perc2.sys 08:12:59.0625 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\perc2.sys. md5: 6C14B9C19BA84F73D3A86DBA11133101 08:12:59.0640 3028 perc2 ( LockedFile.Multi.Generic ) - warning 08:12:59.0640 3028 perc2 - detected LockedFile.Multi.Generic (1) 08:12:59.0687 3028 [ F50F7C27F131AFE7BEBA13E14A3B9416 ] perc2hib C:\WINDOWS\system32\DRIVERS\perc2hib.sys 08:12:59.0687 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\perc2hib.sys. md5: F50F7C27F131AFE7BEBA13E14A3B9416 08:12:59.0687 3028 perc2hib ( LockedFile.Multi.Generic ) - warning 08:12:59.0687 3028 perc2hib - detected LockedFile.Multi.Generic (1) 08:12:59.0765 3028 [ 68C6ADE0DA199E7C00B6083DA4605CB8 ] Pivot C:\WINDOWS\system32\drivers\pivot.sys 08:12:59.0765 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\pivot.sys. md5: 68C6ADE0DA199E7C00B6083DA4605CB8 08:12:59.0765 3028 Pivot ( LockedFile.Multi.Generic ) - warning 08:12:59.0765 3028 Pivot - detected LockedFile.Multi.Generic (1) 08:12:59.0796 3028 [ 552A7A474FD47BC634113B169494DFBB ] pivotmou C:\WINDOWS\system32\drivers\pivotmou.sys 08:12:59.0796 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\pivotmou.sys. md5: 552A7A474FD47BC634113B169494DFBB 08:12:59.0796 3028 pivotmou ( LockedFile.Multi.Generic ) - warning 08:12:59.0796 3028 pivotmou - detected LockedFile.Multi.Generic (1) 08:12:59.0828 3028 [ F5560F0ACA0238731112077FBB796AB5 ] PLIN Manager C:\WINDOWS\system32\PLinMng.exe 08:12:59.0828 3028 PLIN Manager - ok 08:12:59.0875 3028 [ 59028A4006C63C05270DB4ADCBF0DD90 ] PLIN_USB C:\WINDOWS\system32\Drivers\PLIN_USB.sys 08:12:59.0875 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\Drivers\PLIN_USB.sys. md5: 59028A4006C63C05270DB4ADCBF0DD90 08:12:59.0875 3028 PLIN_USB ( LockedFile.Multi.Generic ) - warning 08:12:59.0875 3028 PLIN_USB - detected LockedFile.Multi.Generic (1) 08:12:59.0906 3028 [ A3EDBE9053889FB24AB22492472B39DC ] PlugPlay C:\WINDOWS\system32\services.exe 08:12:59.0906 3028 PlugPlay - ok 08:12:59.0968 3028 [ E638656001C52A1FAA34F92E6D3A086B ] Pml Driver HPZ12 C:\WINDOWS\system32\HPZipm12.dll 08:12:59.0968 3028 Pml Driver HPZ12 - ok 08:13:00.0000 3028 [ AFB8261B56CBA0D86AEB6DF682AF9785 ] PolicyAgent C:\WINDOWS\system32\lsass.exe 08:13:00.0000 3028 PolicyAgent - ok 08:13:00.0046 3028 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys 08:13:00.0046 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\raspptp.sys. md5: EFEEC01B1D3CF84F16DDD24D9D9D8F99 08:13:00.0062 3028 PptpMiniport ( LockedFile.Multi.Generic ) - warning 08:13:00.0062 3028 PptpMiniport - detected LockedFile.Multi.Generic (1) 08:13:00.0109 3028 [ AFB8261B56CBA0D86AEB6DF682AF9785 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe 08:13:00.0109 3028 ProtectedStorage - ok 08:13:00.0140 3028 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys 08:13:00.0140 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\ptilink.sys. md5: 80D317BD1C3DBC5D4FE7B1678C60CADD 08:13:00.0156 3028 Ptilink ( LockedFile.Multi.Generic ) - warning 08:13:00.0156 3028 Ptilink - detected LockedFile.Multi.Generic (1) 08:13:00.0156 3028 [ 0A63FB54039EB5662433CABA3B26DBA7 ] ql1080 C:\WINDOWS\system32\DRIVERS\ql1080.sys 08:13:00.0156 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\ql1080.sys. md5: 0A63FB54039EB5662433CABA3B26DBA7 08:13:00.0156 3028 ql1080 ( LockedFile.Multi.Generic ) - warning 08:13:00.0156 3028 ql1080 - detected LockedFile.Multi.Generic (1) 08:13:00.0171 3028 [ 6503449E1D43A0FF0201AD5CB1B8C706 ] Ql10wnt C:\WINDOWS\system32\DRIVERS\ql10wnt.sys 08:13:00.0171 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\ql10wnt.sys. md5: 6503449E1D43A0FF0201AD5CB1B8C706 08:13:00.0171 3028 Ql10wnt ( LockedFile.Multi.Generic ) - warning 08:13:00.0171 3028 Ql10wnt - detected LockedFile.Multi.Generic (1) 08:13:00.0203 3028 [ 156ED0EF20C15114CA097A34A30D8A01 ] ql12160 C:\WINDOWS\system32\DRIVERS\ql12160.sys 08:13:00.0203 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\ql12160.sys. md5: 156ED0EF20C15114CA097A34A30D8A01 08:13:00.0203 3028 ql12160 ( LockedFile.Multi.Generic ) - warning 08:13:00.0203 3028 ql12160 - detected LockedFile.Multi.Generic (1) 08:13:00.0218 3028 [ 70F016BEBDE6D29E864C1230A07CC5E6 ] ql1240 C:\WINDOWS\system32\DRIVERS\ql1240.sys 08:13:00.0218 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\ql1240.sys. md5: 70F016BEBDE6D29E864C1230A07CC5E6 08:13:00.0218 3028 ql1240 ( LockedFile.Multi.Generic ) - warning 08:13:00.0218 3028 ql1240 - detected LockedFile.Multi.Generic (1) 08:13:00.0250 3028 [ 907F0AEEA6BC451011611E732BD31FCF ] ql1280 C:\WINDOWS\system32\DRIVERS\ql1280.sys 08:13:00.0250 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\ql1280.sys. md5: 907F0AEEA6BC451011611E732BD31FCF 08:13:00.0250 3028 ql1280 ( LockedFile.Multi.Generic ) - warning 08:13:00.0250 3028 ql1280 - detected LockedFile.Multi.Generic (1) 08:13:00.0281 3028 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys 08:13:00.0281 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\rasacd.sys. md5: FE0D99D6F31E4FAD8159F690D68DED9C 08:13:00.0281 3028 RasAcd ( LockedFile.Multi.Generic ) - warning 08:13:00.0281 3028 RasAcd - detected LockedFile.Multi.Generic (1) 08:13:00.0328 3028 [ F5BA6CACCDB66C8F048E867563203246 ] RasAuto C:\WINDOWS\System32\rasauto.dll 08:13:00.0328 3028 RasAuto - ok 08:13:00.0390 3028 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys 08:13:00.0390 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\rasl2tp.sys. md5: 11B4A627BC9614B885C4969BFA5FF8A6 08:13:00.0390 3028 Rasl2tp ( LockedFile.Multi.Generic ) - warning 08:13:00.0390 3028 Rasl2tp - detected LockedFile.Multi.Generic (1) 08:13:00.0453 3028 [ F9A7B66EA345726EDB5862A46B1ECCD5 ] RasMan C:\WINDOWS\System32\rasmans.dll 08:13:00.0453 3028 RasMan - ok 08:13:00.0515 3028 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys 08:13:00.0515 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\raspppoe.sys. md5: 5BC962F2654137C9909C3D4603587DEE 08:13:00.0515 3028 RasPppoe ( LockedFile.Multi.Generic ) - warning 08:13:00.0515 3028 RasPppoe - detected LockedFile.Multi.Generic (1) 08:13:00.0531 3028 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys 08:13:00.0531 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\raspti.sys. md5: FDBB1D60066FCFBB7452FD8F9829B242 08:13:00.0546 3028 Raspti ( LockedFile.Multi.Generic ) - warning 08:13:00.0546 3028 Raspti - detected LockedFile.Multi.Generic (1) 08:13:00.0593 3028 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys 08:13:00.0593 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\rdbss.sys. md5: 7AD224AD1A1437FE28D89CF22B17780A 08:13:00.0625 3028 Rdbss ( LockedFile.Multi.Generic ) - warning 08:13:00.0625 3028 Rdbss - detected LockedFile.Multi.Generic (1) 08:13:00.0671 3028 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys 08:13:00.0671 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\RDPCDD.sys. md5: 4912D5B403614CE99C28420F75353332 08:13:00.0671 3028 RDPCDD ( LockedFile.Multi.Generic ) - warning 08:13:00.0671 3028 RDPCDD - detected LockedFile.Multi.Generic (1) 08:13:00.0718 3028 [ 15CABD0F7C00C47C70124907916AF3F1 ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys 08:13:00.0718 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\rdpdr.sys. md5: 15CABD0F7C00C47C70124907916AF3F1 08:13:00.0734 3028 rdpdr ( LockedFile.Multi.Generic ) - warning 08:13:00.0734 3028 rdpdr - detected LockedFile.Multi.Generic (1) 08:13:00.0781 3028 [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys 08:13:00.0781 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\RDPWD.sys. md5: 43AF5212BD8FB5BA6EED9754358BD8F7 08:13:00.0781 3028 RDPWD ( LockedFile.Multi.Generic ) - warning 08:13:00.0781 3028 RDPWD - detected LockedFile.Multi.Generic (1) 08:13:00.0828 3028 [ 263AF18AF0F3DB99F574C95F284CCEC9 ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe 08:13:00.0828 3028 RDSessMgr - ok 08:13:00.0890 3028 [ ED761D453856F795A7FE056E42C36365 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys 08:13:00.0890 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\redbook.sys. md5: ED761D453856F795A7FE056E42C36365 08:13:00.0890 3028 redbook ( LockedFile.Multi.Generic ) - warning 08:13:00.0890 3028 redbook - detected LockedFile.Multi.Generic (1) 08:13:00.0937 3028 [ 0E97EC96D6942CEEC2D188CC2EB69A01 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll 08:13:00.0937 3028 RemoteAccess - ok 08:13:01.0031 3028 [ E4CD1F3D84E1C2CA0B8CF7501E201593 ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll 08:13:01.0031 3028 RemoteRegistry - ok 08:13:01.0062 3028 [ 2A02E21867497DF20B8FC95631395169 ] RpcLocator C:\WINDOWS\system32\locator.exe 08:13:01.0062 3028 RpcLocator - ok 08:13:01.0156 3028 [ 3127AFBF2C1ED0AB14A1BBB7AAECB85B ] RpcSs C:\WINDOWS\system32\rpcss.dll 08:13:01.0156 3028 RpcSs - ok 08:13:01.0203 3028 [ 4BDD71B4B521521499DFD14735C4F398 ] RSVP C:\WINDOWS\system32\rsvp.exe 08:13:01.0203 3028 RSVP - ok 08:13:01.0218 3028 [ BC9C2EF22EE0320C079E3FF9B4D29951 ] RWKPUA C:\WINDOWS\system32\drivers\SiUSBXp.sys 08:13:01.0218 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\SiUSBXp.sys. md5: BC9C2EF22EE0320C079E3FF9B4D29951 08:13:01.0250 3028 RWKPUA ( LockedFile.Multi.Generic ) - warning 08:13:01.0250 3028 RWKPUA - detected LockedFile.Multi.Generic (1) 08:13:01.0250 3028 [ BC9C2EF22EE0320C079E3FF9B4D29951 ] RWKXP C:\WINDOWS\system32\drivers\SiUSBXp.sys 08:13:01.0250 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\SiUSBXp.sys. md5: BC9C2EF22EE0320C079E3FF9B4D29951 08:13:01.0250 3028 RWKXP ( LockedFile.Multi.Generic ) - warning 08:13:01.0250 3028 RWKXP - detected LockedFile.Multi.Generic (1) 08:13:01.0296 3028 [ AFB8261B56CBA0D86AEB6DF682AF9785 ] SamSs C:\WINDOWS\system32\lsass.exe 08:13:01.0296 3028 SamSs - ok 08:13:01.0312 3028 [ DCEC079FAD95D36C8DD5CB6D779DFE32 ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe 08:13:01.0312 3028 SCardSvr - ok 08:13:01.0375 3028 [ A050194A44D7FA8D7186ED2F4E8367AE ] Schedule C:\WINDOWS\system32\schedsvc.dll 08:13:01.0375 3028 Schedule - ok 08:13:01.0421 3028 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys 08:13:01.0421 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\secdrv.sys. md5: 90A3935D05B494A5A39D37E71F09A677 08:13:01.0453 3028 Secdrv ( LockedFile.Multi.Generic ) - warning 08:13:01.0453 3028 Secdrv - detected LockedFile.Multi.Generic (1) 08:13:01.0500 3028 [ BEE4CFD1D48C23B44CF4B974B0B79B2B ] seclogon C:\WINDOWS\System32\seclogon.dll 08:13:01.0500 3028 seclogon - ok 08:13:01.0531 3028 [ 2AAC9B6ED9EDDFFB721D6452E34D67E3 ] SENS C:\WINDOWS\system32\sens.dll 08:13:01.0546 3028 SENS - ok 08:13:01.0593 3028 [ AEBBA7428A6C40CCE3C5ABDE45190B24 ] Sentinel C:\WINDOWS\System32\Drivers\SENTINEL.SYS 08:13:01.0593 3028 Suspicious file (NoAccess): C:\WINDOWS\System32\Drivers\SENTINEL.SYS. md5: AEBBA7428A6C40CCE3C5ABDE45190B24 08:13:01.0593 3028 Sentinel ( LockedFile.Multi.Generic ) - warning 08:13:01.0593 3028 Sentinel - detected LockedFile.Multi.Generic (1) 08:13:01.0640 3028 [ 0F29512CCD6BEAD730039FB4BD2C85CE ] serenum C:\WINDOWS\system32\DRIVERS\serenum.sys 08:13:01.0640 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\serenum.sys. md5: 0F29512CCD6BEAD730039FB4BD2C85CE 08:13:01.0640 3028 serenum ( LockedFile.Multi.Generic ) - warning 08:13:01.0640 3028 serenum - detected LockedFile.Multi.Generic (1) 08:13:01.0703 3028 [ CF24EB4F0412C82BCD1F4F35A025E31D ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys 08:13:01.0703 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\serial.sys. md5: CF24EB4F0412C82BCD1F4F35A025E31D 08:13:01.0703 3028 Serial ( LockedFile.Multi.Generic ) - warning 08:13:01.0703 3028 Serial - detected LockedFile.Multi.Generic (1) 08:13:01.0781 3028 [ B98460D74971F0223C2884779C3777F5 ] SerMon C:\Programme\HHD Software\Free Serial Port Monitor\sermon.sys 08:13:01.0781 3028 Suspicious file (NoAccess): C:\Programme\HHD Software\Free Serial Port Monitor\sermon.sys. md5: B98460D74971F0223C2884779C3777F5 08:13:01.0781 3028 SerMon ( LockedFile.Multi.Generic ) - warning 08:13:01.0781 3028 SerMon - detected LockedFile.Multi.Generic (1) 08:13:01.0875 3028 [ 9D38320BB32230349379DF5DDBBF7FCE ] ServiceLayer C:\Programme\PC Connectivity Solution\ServiceLayer.exe 08:13:01.0875 3028 ServiceLayer - ok 08:13:01.0953 3028 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys 08:13:01.0953 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\Sfloppy.sys. md5: 8E6B8C671615D126FDC553D1E2DE5562 08:13:01.0953 3028 Sfloppy ( LockedFile.Multi.Generic ) - warning 08:13:01.0953 3028 Sfloppy - detected LockedFile.Multi.Generic (1) 08:13:02.0046 3028 [ 2DB7D303C36DDD055215052F118E8E75 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll 08:13:02.0046 3028 ShellHWDetection - ok 08:13:02.0093 3028 [ 3EAD8E1668CE42A0AFE41D56E7157BCF ] silabenm C:\WINDOWS\system32\DRIVERS\silabenm.sys 08:13:02.0093 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\silabenm.sys. md5: 3EAD8E1668CE42A0AFE41D56E7157BCF 08:13:02.0093 3028 silabenm ( LockedFile.Multi.Generic ) - warning 08:13:02.0093 3028 silabenm - detected LockedFile.Multi.Generic (1) 08:13:02.0171 3028 [ 5EC84546635D8F6E306F9C80FE09433D ] silabser C:\WINDOWS\system32\DRIVERS\silabser.sys 08:13:02.0171 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\silabser.sys. md5: 5EC84546635D8F6E306F9C80FE09433D 08:13:02.0187 3028 silabser ( LockedFile.Multi.Generic ) - warning 08:13:02.0187 3028 silabser - detected LockedFile.Multi.Generic (1) 08:13:02.0203 3028 Simbad - ok 08:13:02.0234 3028 [ 6B33D0EBD30DB32E27D1D78FE946A754 ] sisagp C:\WINDOWS\system32\DRIVERS\sisagp.sys 08:13:02.0234 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\sisagp.sys. md5: 6B33D0EBD30DB32E27D1D78FE946A754 08:13:02.0250 3028 sisagp ( LockedFile.Multi.Generic ) - warning 08:13:02.0250 3028 sisagp - detected LockedFile.Multi.Generic (1) 08:13:02.0281 3028 [ BC9C2EF22EE0320C079E3FF9B4D29951 ] SIUSBXP C:\WINDOWS\system32\drivers\SiUSBXp.sys 08:13:02.0281 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\SiUSBXp.sys. md5: BC9C2EF22EE0320C079E3FF9B4D29951 08:13:02.0281 3028 SIUSBXP ( LockedFile.Multi.Generic ) - warning 08:13:02.0281 3028 SIUSBXP - detected LockedFile.Multi.Generic (1) 08:13:02.0343 3028 [ 444186C720885429A2354095C1938143 ] slabbus C:\WINDOWS\system32\DRIVERS\slabbus.sys 08:13:02.0343 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\slabbus.sys. md5: 444186C720885429A2354095C1938143 08:13:02.0359 3028 slabbus ( LockedFile.Multi.Generic ) - warning 08:13:02.0359 3028 slabbus - detected LockedFile.Multi.Generic (1) 08:13:02.0421 3028 [ ED71F8C82EF11C0DA1C57BE021A2FDC9 ] slabser C:\WINDOWS\system32\DRIVERS\slabser.sys 08:13:02.0421 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\slabser.sys. md5: ED71F8C82EF11C0DA1C57BE021A2FDC9 08:13:02.0437 3028 slabser ( LockedFile.Multi.Generic ) - warning 08:13:02.0437 3028 slabser - detected LockedFile.Multi.Generic (1) 08:13:02.0484 3028 [ 866D538EBE33709A5C9F5C62B73B7D14 ] SLIP C:\WINDOWS\system32\DRIVERS\SLIP.sys 08:13:02.0484 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\SLIP.sys. md5: 866D538EBE33709A5C9F5C62B73B7D14 08:13:02.0500 3028 SLIP ( LockedFile.Multi.Generic ) - warning 08:13:02.0500 3028 SLIP - detected LockedFile.Multi.Generic (1) 08:13:02.0515 3028 SMR311 - ok 08:13:02.0578 3028 [ A1FF7D99B199CEA1F3DF371BA70D2780 ] Sntnlusb C:\WINDOWS\system32\DRIVERS\SNTNLUSB.SYS 08:13:02.0578 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\SNTNLUSB.SYS. md5: A1FF7D99B199CEA1F3DF371BA70D2780 08:13:02.0578 3028 Sntnlusb ( LockedFile.Multi.Generic ) - warning 08:13:02.0578 3028 Sntnlusb - detected LockedFile.Multi.Generic (1) 08:13:02.0609 3028 [ 83C0F71F86D3BDAF915685F3D568B20E ] Sparrow C:\WINDOWS\system32\DRIVERS\sparrow.sys 08:13:02.0609 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\sparrow.sys. md5: 83C0F71F86D3BDAF915685F3D568B20E 08:13:02.0609 3028 Sparrow ( LockedFile.Multi.Generic ) - warning 08:13:02.0609 3028 Sparrow - detected LockedFile.Multi.Generic (1) 08:13:02.0671 3028 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINDOWS\system32\drivers\splitter.sys 08:13:02.0671 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\splitter.sys. md5: AB8B92451ECB048A4D1DE7C3FFCB4A9F 08:13:02.0687 3028 splitter ( LockedFile.Multi.Generic ) - warning 08:13:02.0687 3028 splitter - detected LockedFile.Multi.Generic (1) 08:13:02.0750 3028 [ 60784F891563FB1B767F70117FC2428F ] Spooler C:\WINDOWS\system32\spoolsv.exe 08:13:02.0765 3028 Spooler - ok 08:13:02.0812 3028 [ 86EBD8B1F23E743AAD21F4D5B4D40985 ] SQLBrowser C:\Programme\Microsoft SQL Server\90\Shared\sqlbrowser.exe 08:13:02.0812 3028 SQLBrowser - ok 08:13:02.0859 3028 [ D89083C4EB02DACA8F944B0E05E57F9D ] SQLWriter C:\Programme\Microsoft SQL Server\90\Shared\sqlwriter.exe 08:13:02.0859 3028 SQLWriter - ok 08:13:02.0890 3028 [ 50FA898F8C032796D3B1B9951BB5A90F ] sr C:\WINDOWS\system32\DRIVERS\sr.sys 08:13:02.0890 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\sr.sys. md5: 50FA898F8C032796D3B1B9951BB5A90F 08:13:02.0906 3028 sr ( LockedFile.Multi.Generic ) - warning 08:13:02.0906 3028 sr - detected LockedFile.Multi.Generic (1) 08:13:02.0937 3028 [ FE77A85495065F3AD59C5C65B6C54182 ] srservice C:\WINDOWS\system32\srsvc.dll 08:13:02.0937 3028 srservice - ok 08:13:03.0015 3028 [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys 08:13:03.0015 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\srv.sys. md5: 47DDFC2F003F7F9F0592C6874962A2E7 08:13:03.0015 3028 Srv ( LockedFile.Multi.Generic ) - warning 08:13:03.0015 3028 Srv - detected LockedFile.Multi.Generic (1) 08:13:03.0093 3028 [ D6870895FE46A464A19141440EB6CC1E ] sscdbus C:\WINDOWS\system32\DRIVERS\sscdbus.sys 08:13:03.0093 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\sscdbus.sys. md5: D6870895FE46A464A19141440EB6CC1E 08:13:03.0125 3028 sscdbus ( LockedFile.Multi.Generic ) - warning 08:13:03.0125 3028 sscdbus - detected LockedFile.Multi.Generic (1) 08:13:03.0187 3028 [ 0FE167362E4689B716CDC8D93ADEDDA8 ] sscdmdfl C:\WINDOWS\system32\DRIVERS\sscdmdfl.sys 08:13:03.0187 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\sscdmdfl.sys. md5: 0FE167362E4689B716CDC8D93ADEDDA8 08:13:03.0203 3028 sscdmdfl ( LockedFile.Multi.Generic ) - warning 08:13:03.0203 3028 sscdmdfl - detected LockedFile.Multi.Generic (1) 08:13:03.0250 3028 [ 55A15707E32B6709242AD127E62CA55A ] sscdmdm C:\WINDOWS\system32\DRIVERS\sscdmdm.sys 08:13:03.0250 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\sscdmdm.sys. md5: 55A15707E32B6709242AD127E62CA55A 08:13:03.0281 3028 sscdmdm ( LockedFile.Multi.Generic ) - warning 08:13:03.0281 3028 sscdmdm - detected LockedFile.Multi.Generic (1) 08:13:03.0328 3028 [ 4DF5B05DFAEC29E13E1ED6F6EE12C500 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll 08:13:03.0328 3028 SSDPSRV - ok 08:13:03.0390 3028 [ BC2C5985611C5356B24AEB370953DED9 ] stisvc C:\WINDOWS\system32\wiaservc.dll 08:13:03.0406 3028 stisvc - ok 08:13:03.0468 3028 [ E1D202F5A5C88CF915F51957D314066B ] STM Parallel Driver C:\WINDOWS\system32\drivers\parstm.sys 08:13:03.0468 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\parstm.sys. md5: E1D202F5A5C88CF915F51957D314066B 08:13:03.0468 3028 STM Parallel Driver ( LockedFile.Multi.Generic ) - warning 08:13:03.0468 3028 STM Parallel Driver - detected LockedFile.Multi.Generic (1) 08:13:03.0515 3028 [ 77813007BA6265C4B6098187E6ED79D2 ] streamip C:\WINDOWS\system32\DRIVERS\StreamIP.sys 08:13:03.0515 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\StreamIP.sys. md5: 77813007BA6265C4B6098187E6ED79D2 08:13:03.0515 3028 streamip ( LockedFile.Multi.Generic ) - warning 08:13:03.0515 3028 streamip - detected LockedFile.Multi.Generic (1) 08:13:03.0593 3028 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys 08:13:03.0593 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\swenum.sys. md5: 3941D127AEF12E93ADDF6FE6EE027E0F 08:13:03.0593 3028 swenum ( LockedFile.Multi.Generic ) - warning 08:13:03.0593 3028 swenum - detected LockedFile.Multi.Generic (1) 08:13:03.0640 3028 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys 08:13:03.0640 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\swmidi.sys. md5: 8CE882BCC6CF8A62F2B2323D95CB3D01 08:13:03.0640 3028 swmidi ( LockedFile.Multi.Generic ) - warning 08:13:03.0640 3028 swmidi - detected LockedFile.Multi.Generic (1) 08:13:03.0656 3028 SwPrv - ok 08:13:03.0703 3028 [ 1FF3217614018630D0A6758630FC698C ] symc810 C:\WINDOWS\system32\DRIVERS\symc810.sys 08:13:03.0703 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\symc810.sys. md5: 1FF3217614018630D0A6758630FC698C 08:13:03.0718 3028 symc810 ( LockedFile.Multi.Generic ) - warning 08:13:03.0718 3028 symc810 - detected LockedFile.Multi.Generic (1) 08:13:03.0750 3028 [ 070E001D95CF725186EF8B20335F933C ] symc8xx C:\WINDOWS\system32\DRIVERS\symc8xx.sys 08:13:03.0750 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\symc8xx.sys. md5: 070E001D95CF725186EF8B20335F933C 08:13:03.0750 3028 symc8xx ( LockedFile.Multi.Generic ) - warning 08:13:03.0750 3028 symc8xx - detected LockedFile.Multi.Generic (1) 08:13:03.0781 3028 [ 80AC1C4ABBE2DF3B738BF15517A51F2C ] sym_hi C:\WINDOWS\system32\DRIVERS\sym_hi.sys 08:13:03.0781 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\sym_hi.sys. md5: 80AC1C4ABBE2DF3B738BF15517A51F2C 08:13:03.0781 3028 sym_hi ( LockedFile.Multi.Generic ) - warning 08:13:03.0781 3028 sym_hi - detected LockedFile.Multi.Generic (1) 08:13:03.0796 3028 [ BF4FAB949A382A8E105F46EBB4937058 ] sym_u3 C:\WINDOWS\system32\DRIVERS\sym_u3.sys 08:13:03.0796 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\sym_u3.sys. md5: BF4FAB949A382A8E105F46EBB4937058 08:13:03.0796 3028 sym_u3 ( LockedFile.Multi.Generic ) - warning 08:13:03.0796 3028 sym_u3 - detected LockedFile.Multi.Generic (1) 08:13:03.0828 3028 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys 08:13:03.0828 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\sysaudio.sys. md5: 8B83F3ED0F1688B4958F77CD6D2BF290 08:13:03.0843 3028 sysaudio ( LockedFile.Multi.Generic ) - warning 08:13:03.0843 3028 sysaudio - detected LockedFile.Multi.Generic (1) 08:13:03.0890 3028 [ 2903FFFA2523926D6219428040DCE6B9 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe 08:13:03.0890 3028 SysmonLog - ok 08:13:03.0953 3028 [ 05903CAC4B98908D55EA5774775B382E ] TapiSrv C:\WINDOWS\System32\tapisrv.dll 08:13:03.0953 3028 TapiSrv - ok 08:13:04.0031 3028 [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys 08:13:04.0031 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\tcpip.sys. md5: 9AEFA14BD6B182D61E3119FA5F436D3D 08:13:04.0078 3028 Tcpip ( LockedFile.Multi.Generic ) - warning 08:13:04.0078 3028 Tcpip - detected LockedFile.Multi.Generic (1) 08:13:04.0109 3028 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys 08:13:04.0125 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\TDPIPE.sys. md5: 6471A66807F5E104E4885F5B67349397 08:13:04.0125 3028 TDPIPE ( LockedFile.Multi.Generic ) - warning 08:13:04.0125 3028 TDPIPE - detected LockedFile.Multi.Generic (1) 08:13:04.0171 3028 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys 08:13:04.0171 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\TDTCP.sys. md5: C56B6D0402371CF3700EB322EF3AAF61 08:13:04.0171 3028 TDTCP ( LockedFile.Multi.Generic ) - warning 08:13:04.0171 3028 TDTCP - detected LockedFile.Multi.Generic (1) 08:13:04.0218 3028 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys 08:13:04.0218 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\termdd.sys. md5: 88155247177638048422893737429D9E 08:13:04.0218 3028 TermDD ( LockedFile.Multi.Generic ) - warning 08:13:04.0218 3028 TermDD - detected LockedFile.Multi.Generic (1) 08:13:04.0265 3028 [ B7DE02C863D8F5A005A7BF375375A6A4 ] TermService C:\WINDOWS\System32\termsrv.dll 08:13:04.0265 3028 TermService - ok 08:13:04.0296 3028 [ 2DB7D303C36DDD055215052F118E8E75 ] Themes C:\WINDOWS\System32\shsvcs.dll 08:13:04.0296 3028 Themes - ok 08:13:04.0328 3028 [ 03681A1CE77F51586903869A5AB1DEAB ] TlntSvr C:\WINDOWS\system32\tlntsvr.exe 08:13:04.0343 3028 TlntSvr - ok 08:13:04.0359 3028 [ D213A9247DC347F305A2D4CC9B951487 ] TosIde C:\WINDOWS\system32\DRIVERS\toside.sys 08:13:04.0359 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\toside.sys. md5: D213A9247DC347F305A2D4CC9B951487 08:13:04.0359 3028 TosIde ( LockedFile.Multi.Generic ) - warning 08:13:04.0375 3028 TosIde - detected LockedFile.Multi.Generic (1) 08:13:04.0437 3028 [ 626504572B175867F30F3215C04B3E2F ] TrkWks C:\WINDOWS\system32\trkwks.dll 08:13:04.0437 3028 TrkWks - ok 08:13:04.0500 3028 [ 20BD83726D69316C3817D1134E5BC465 ] TTUSB2 C:\WINDOWS\system32\Drivers\ttusb2.sys 08:13:04.0500 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\Drivers\ttusb2.sys. md5: 20BD83726D69316C3817D1134E5BC465 08:13:04.0515 3028 TTUSB2 ( LockedFile.Multi.Generic ) - warning 08:13:04.0515 3028 TTUSB2 - detected LockedFile.Multi.Generic (1) 08:13:04.0578 3028 [ 607FC73722F62E1820C8183D58ED1668 ] TVICPORT C:\WINDOWS\SYSTEM32\DRIVERS\TVICPORT.SYS 08:13:04.0578 3028 Suspicious file (NoAccess): C:\WINDOWS\SYSTEM32\DRIVERS\TVICPORT.SYS. md5: 607FC73722F62E1820C8183D58ED1668 08:13:04.0578 3028 TVICPORT ( LockedFile.Multi.Generic ) - warning 08:13:04.0578 3028 TVICPORT - detected LockedFile.Multi.Generic (1) 08:13:04.0640 3028 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys 08:13:04.0640 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\Udfs.sys. md5: 5787B80C2E3C5E2F56C2A233D91FA2C9 08:13:04.0640 3028 Udfs ( LockedFile.Multi.Generic ) - warning 08:13:04.0640 3028 Udfs - detected LockedFile.Multi.Generic (1) 08:13:04.0671 3028 [ 1B698A51CD528D8DA4FFAED66DFC51B9 ] ultra C:\WINDOWS\system32\DRIVERS\ultra.sys 08:13:04.0671 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\ultra.sys. md5: 1B698A51CD528D8DA4FFAED66DFC51B9 08:13:04.0671 3028 ultra ( LockedFile.Multi.Generic ) - warning 08:13:04.0671 3028 ultra - detected LockedFile.Multi.Generic (1) 08:13:04.0750 3028 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys 08:13:04.0750 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\update.sys. md5: 402DDC88356B1BAC0EE3DD1580C76A31 08:13:04.0765 3028 Update ( LockedFile.Multi.Generic ) - warning 08:13:04.0765 3028 Update - detected LockedFile.Multi.Generic (1) 08:13:04.0812 3028 [ 1DFD8975D8C89214B98D9387C1125B49 ] upnphost C:\WINDOWS\System32\upnphost.dll 08:13:04.0812 3028 upnphost - ok 08:13:04.0843 3028 [ 9B11E6118958E63E1FEF129466E2BDA7 ] UPS C:\WINDOWS\System32\ups.exe 08:13:04.0843 3028 UPS - ok 08:13:04.0921 3028 [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys 08:13:04.0921 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\usbccgp.sys. md5: 173F317CE0DB8E21322E71B7E60A27E8 08:13:04.0937 3028 usbccgp ( LockedFile.Multi.Generic ) - warning 08:13:04.0937 3028 usbccgp - detected LockedFile.Multi.Generic (1) 08:13:04.0984 3028 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys 08:13:04.0984 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\usbehci.sys. md5: 65DCF09D0E37D4C6B11B5B0B76D470A7 08:13:05.0000 3028 usbehci ( LockedFile.Multi.Generic ) - warning 08:13:05.0000 3028 usbehci - detected LockedFile.Multi.Generic (1) 08:13:05.0046 3028 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys 08:13:05.0046 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\usbhub.sys. md5: 1AB3CDDE553B6E064D2E754EFE20285C 08:13:05.0046 3028 usbhub ( LockedFile.Multi.Generic ) - warning 08:13:05.0046 3028 usbhub - detected LockedFile.Multi.Generic (1) 08:13:05.0078 3028 [ A717C8721046828520C9EDF31288FC00 ] usbprint C:\WINDOWS\system32\DRIVERS\usbprint.sys 08:13:05.0078 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\usbprint.sys. md5: A717C8721046828520C9EDF31288FC00 08:13:05.0078 3028 usbprint ( LockedFile.Multi.Generic ) - warning 08:13:05.0078 3028 usbprint - detected LockedFile.Multi.Generic (1) 08:13:05.0140 3028 [ 1C888B000C2F9492F4B15B5B6B84873E ] usbser C:\WINDOWS\system32\DRIVERS\usbser.sys 08:13:05.0140 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\usbser.sys. md5: 1C888B000C2F9492F4B15B5B6B84873E 08:13:05.0140 3028 usbser ( LockedFile.Multi.Generic ) - warning 08:13:05.0140 3028 usbser - detected LockedFile.Multi.Generic (1) 08:13:05.0203 3028 [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS 08:13:05.0203 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS. md5: A32426D9B14A089EAA1D922E0C5801A9 08:13:05.0203 3028 USBSTOR ( LockedFile.Multi.Generic ) - warning 08:13:05.0203 3028 USBSTOR - detected LockedFile.Multi.Generic (1) 08:13:05.0250 3028 [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys 08:13:05.0250 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\usbuhci.sys. md5: 26496F9DEE2D787FC3E61AD54821FFE6 08:13:05.0250 3028 usbuhci ( LockedFile.Multi.Generic ) - warning 08:13:05.0250 3028 usbuhci - detected LockedFile.Multi.Generic (1) 08:13:05.0296 3028 [ 63BBFCA7F390F4C49ED4B96BFB1633E0 ] usbvideo C:\WINDOWS\system32\Drivers\usbvideo.sys 08:13:05.0296 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\Drivers\usbvideo.sys. md5: 63BBFCA7F390F4C49ED4B96BFB1633E0 08:13:05.0296 3028 usbvideo ( LockedFile.Multi.Generic ) - warning 08:13:05.0296 3028 usbvideo - detected LockedFile.Multi.Generic (1) 08:13:05.0375 3028 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys 08:13:05.0375 3028 Suspicious file (NoAccess): C:\WINDOWS\System32\drivers\vga.sys. md5: 0D3A8FAFCEACD8B7625CD549757A7DF1 08:13:05.0390 3028 VgaSave ( LockedFile.Multi.Generic ) - warning 08:13:05.0390 3028 VgaSave - detected LockedFile.Multi.Generic (1) 08:13:05.0453 3028 [ 754292CE5848B3738281B4F3607EAEF4 ] viaagp C:\WINDOWS\system32\DRIVERS\viaagp.sys 08:13:05.0453 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\viaagp.sys. md5: 754292CE5848B3738281B4F3607EAEF4 08:13:05.0453 3028 viaagp ( LockedFile.Multi.Generic ) - warning 08:13:05.0453 3028 viaagp - detected LockedFile.Multi.Generic (1) 08:13:05.0484 3028 [ 3B3EFCDA263B8AC14FDF9CBDD0791B2E ] ViaIde C:\WINDOWS\system32\DRIVERS\viaide.sys 08:13:05.0500 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\viaide.sys. md5: 3B3EFCDA263B8AC14FDF9CBDD0791B2E 08:13:05.0515 3028 ViaIde ( LockedFile.Multi.Generic ) - warning 08:13:05.0515 3028 ViaIde - detected LockedFile.Multi.Generic (1) 08:13:05.0546 3028 [ A5A712F4E880874A477AF790B5186E1D ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys 08:13:05.0546 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\VolSnap.sys. md5: A5A712F4E880874A477AF790B5186E1D 08:13:05.0562 3028 VolSnap ( LockedFile.Multi.Generic ) - warning 08:13:05.0562 3028 VolSnap - detected LockedFile.Multi.Generic (1) 08:13:05.0609 3028 [ 68F106273BE29E7B7EF8266977268E78 ] VSS C:\WINDOWS\System32\vssvc.exe 08:13:05.0609 3028 VSS - ok 08:13:05.0656 3028 [ 7B353059E665F8B7AD2BBEAEF597CF45 ] W32Time C:\WINDOWS\system32\w32time.dll 08:13:05.0656 3028 W32Time - ok 08:13:05.0703 3028 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys 08:13:05.0703 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\wanarp.sys. md5: E20B95BAEDB550F32DD489265C1DA1F6 08:13:05.0703 3028 Wanarp ( LockedFile.Multi.Generic ) - warning 08:13:05.0703 3028 Wanarp - detected LockedFile.Multi.Generic (1) 08:13:05.0734 3028 [ 46A247F6617526AFE38B6F12F5512120 ] wceusbsh C:\WINDOWS\system32\DRIVERS\wceusbsh.sys 08:13:05.0734 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\wceusbsh.sys. md5: 46A247F6617526AFE38B6F12F5512120 08:13:05.0734 3028 wceusbsh ( LockedFile.Multi.Generic ) - warning 08:13:05.0734 3028 wceusbsh - detected LockedFile.Multi.Generic (1) 08:13:05.0781 3028 [ D918617B46457B9AC28027722E30F647 ] Wdf01000 C:\WINDOWS\system32\Drivers\wdf01000.sys 08:13:05.0781 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\Drivers\wdf01000.sys. md5: D918617B46457B9AC28027722E30F647 08:13:05.0812 3028 Wdf01000 ( LockedFile.Multi.Generic ) - warning 08:13:05.0812 3028 Wdf01000 - detected LockedFile.Multi.Generic (1) 08:13:05.0828 3028 WDICA - ok 08:13:05.0875 3028 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys 08:13:05.0875 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\wdmaud.sys. md5: 6768ACF64B18196494413695F0C3A00F 08:13:05.0890 3028 wdmaud ( LockedFile.Multi.Generic ) - warning 08:13:05.0890 3028 wdmaud - detected LockedFile.Multi.Generic (1) 08:13:05.0968 3028 [ 81727C9873E3905A2FFC1EBD07265002 ] WebClient C:\WINDOWS\System32\webclnt.dll 08:13:05.0968 3028 WebClient - ok 08:13:06.0015 3028 [ 2C7D830E86B378771AF5DAFEAE428A09 ] WinDriver6 C:\WINDOWS\system32\drivers\windrvr6.sys 08:13:06.0015 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\windrvr6.sys. md5: 2C7D830E86B378771AF5DAFEAE428A09 08:13:06.0015 3028 WinDriver6 ( LockedFile.Multi.Generic ) - warning 08:13:06.0015 3028 WinDriver6 - detected LockedFile.Multi.Generic (1) 08:13:06.0109 3028 [ 6F3F3973D97714CC5F906A19FE883729 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll 08:13:06.0109 3028 winmgmt - ok 08:13:06.0156 3028 [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN C:\WINDOWS\system32\MsPMSNSv.dll 08:13:06.0156 3028 WmdmPmSN - ok 08:13:06.0203 3028 [ FFA4D901D46D07A5BAB2D8307FBB51A6 ] Wmi C:\WINDOWS\System32\advapi32.dll 08:13:06.0203 3028 Wmi - ok 08:13:06.0234 3028 [ 93908111BA57A6E60EC2FA2DE202105C ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe 08:13:06.0234 3028 WmiApSrv - ok 08:13:06.0328 3028 [ BF05650BB7DF5E9EBDD25974E22403BB ] WMPNetworkSvc C:\Programme\Windows Media Player\WMPNetwk.exe 08:13:06.0343 3028 WMPNetworkSvc - ok 08:13:06.0375 3028 [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] WS2IFSL C:\WINDOWS\System32\drivers\ws2ifsl.sys 08:13:06.0390 3028 Suspicious file (NoAccess): C:\WINDOWS\System32\drivers\ws2ifsl.sys. md5: 6ABE6E225ADB5A751622A9CC3BC19CE8 08:13:06.0390 3028 WS2IFSL ( LockedFile.Multi.Generic ) - warning 08:13:06.0390 3028 WS2IFSL - detected LockedFile.Multi.Generic (1) 08:13:06.0437 3028 [ C98B39829C2BBD34E454150633C62C78 ] WSTCODEC C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS 08:13:06.0437 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS. md5: C98B39829C2BBD34E454150633C62C78 08:13:06.0453 3028 WSTCODEC ( LockedFile.Multi.Generic ) - warning 08:13:06.0453 3028 WSTCODEC - detected LockedFile.Multi.Generic (1) 08:13:06.0500 3028 [ 7B4FE05202AA6BF9F4DFD0E6A0D8A085 ] wuauserv C:\WINDOWS\system32\wuauserv.dll 08:13:06.0500 3028 wuauserv - ok 08:13:06.0546 3028 [ F15FEAFFFBB3644CCC80C5DA584E6311 ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys 08:13:06.0546 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\WudfPf.sys. md5: F15FEAFFFBB3644CCC80C5DA584E6311 08:13:06.0546 3028 WudfPf ( LockedFile.Multi.Generic ) - warning 08:13:06.0546 3028 WudfPf - detected LockedFile.Multi.Generic (1) 08:13:06.0562 3028 [ 28B524262BCE6DE1F7EF9F510BA3985B ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys 08:13:06.0562 3028 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\wudfrd.sys. md5: 28B524262BCE6DE1F7EF9F510BA3985B 08:13:06.0562 3028 WudfRd ( LockedFile.Multi.Generic ) - warning 08:13:06.0562 3028 WudfRd - detected LockedFile.Multi.Generic (1) 08:13:06.0609 3028 [ 05231C04253C5BC30B26CBAAE680ED89 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll 08:13:06.0609 3028 WudfSvc - ok 08:13:06.0671 3028 [ C4F109C005F6725162D2D12CA751E4A7 ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll 08:13:06.0687 3028 WZCSVC - ok 08:13:06.0734 3028 [ EEB1D6B491F6448A6214A8043266E566 ] XilinxPC4Driver C:\WINDOWS\System32\drivers\XPC4DRVR.SYS 08:13:06.0734 3028 Suspicious file (NoAccess): C:\WINDOWS\System32\drivers\XPC4DRVR.SYS. md5: EEB1D6B491F6448A6214A8043266E566 08:13:06.0765 3028 XilinxPC4Driver ( LockedFile.Multi.Generic ) - warning 08:13:06.0765 3028 XilinxPC4Driver - detected LockedFile.Multi.Generic (1) 08:13:06.0812 3028 [ 0ADA34871A2E1CD2CAAFED1237A47750 ] xmlprov C:\WINDOWS\System32\xmlprov.dll 08:13:06.0812 3028 xmlprov - ok 08:13:06.0812 3028 ================ Scan global =============================== 08:13:06.0906 3028 [ 2C60091CA5F67C3032EAB3B30390C27F ] C:\WINDOWS\system32\basesrv.dll 08:13:06.0953 3028 [ A28CE25B59C90E12743001A1F2AE3613 ] C:\WINDOWS\system32\winsrv.dll 08:13:06.0968 3028 [ A28CE25B59C90E12743001A1F2AE3613 ] C:\WINDOWS\system32\winsrv.dll 08:13:06.0984 3028 [ A3EDBE9053889FB24AB22492472B39DC ] C:\WINDOWS\system32\services.exe 08:13:06.0984 3028 [Global] - ok 08:13:06.0984 3028 ================ Scan MBR ================================== 08:13:07.0000 3028 [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk0\DR0 08:13:07.0171 3028 \Device\Harddisk0\DR0 - ok 08:13:07.0187 3028 [ 72B8CE41AF0DE751C946802B3ED844B4 ] \Device\Harddisk1\DR1 08:13:07.0375 3028 \Device\Harddisk1\DR1 - ok 08:13:07.0375 3028 ================ Scan VBR ================================== 08:13:07.0375 3028 [ C106CB2838AEDB4386C0BFEE39759877 ] \Device\Harddisk0\DR0\Partition1 08:13:07.0375 3028 \Device\Harddisk0\DR0\Partition1 - ok 08:13:07.0406 3028 [ C1A818F0F9A20E756708C33D74BF1CEB ] \Device\Harddisk0\DR0\Partition2 08:13:07.0406 3028 \Device\Harddisk0\DR0\Partition2 - ok 08:13:07.0406 3028 [ DF04922DD6C101B08219DF451C2AAE38 ] \Device\Harddisk1\DR1\Partition1 08:13:07.0406 3028 \Device\Harddisk1\DR1\Partition1 - ok 08:13:07.0406 3028 ============================================================ 08:13:07.0406 3028 Scan finished 08:13:07.0406 3028 ============================================================ 08:13:07.0421 0912 Detected object count: 232 08:13:07.0421 0912 Actual detected object count: 232 08:13:30.0593 0912 C:\WINDOWS\System32\Drivers\4d3ab16ba79b8771.sys - copied to quarantine 08:13:30.0625 0912 HKLM\SYSTEM\ControlSet002\services\4d3ab16ba79b8771 - will be deleted on reboot 08:13:30.0656 0912 HKLM\SYSTEM\ControlSet003\services\4d3ab16ba79b8771 - will be deleted on reboot 08:13:30.0750 0912 C:\WINDOWS\System32\Drivers\4d3ab16ba79b8771.sys - will be deleted on reboot 08:13:30.0750 0912 4d3ab16ba79b8771 ( Rootkit.Win32.Necurs.gen ) - User select action: Delete 08:13:30.0765 0912 a320raid ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0765 0912 a320raid ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0765 0912 abp480n5 ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0765 0912 abp480n5 ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0765 0912 ACPI ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0765 0912 ACPI ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0765 0912 ACPIEC ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0765 0912 ACPIEC ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0765 0912 adpu160m ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0765 0912 adpu160m ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0765 0912 adpu320 ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0765 0912 adpu320 ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0765 0912 aec ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0765 0912 aec ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0781 0912 AFD ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0781 0912 AFD ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0781 0912 agp440 ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0781 0912 agp440 ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0781 0912 agpCPQ ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0781 0912 agpCPQ ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0781 0912 Aha154x ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0781 0912 Aha154x ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0781 0912 aic78u2 ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0781 0912 aic78u2 ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0781 0912 aic78xx ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0781 0912 aic78xx ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0781 0912 akshasp ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0781 0912 akshasp ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0796 0912 aksusb ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0796 0912 aksusb ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0796 0912 AliIde ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0796 0912 AliIde ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0796 0912 alim1541 ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0796 0912 alim1541 ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0796 0912 AlteraByteBlaster ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0796 0912 AlteraByteBlaster ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0796 0912 altio ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0796 0912 altio ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0796 0912 AltiumUSBJtag ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0796 0912 AltiumUSBJtag ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0812 0912 amdagp ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0812 0912 amdagp ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0812 0912 amsint ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0812 0912 amsint ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0812 0912 Arp1394 ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0812 0912 Arp1394 ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0812 0912 asc ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0812 0912 asc ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0812 0912 asc3350p ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0812 0912 asc3350p ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0812 0912 asc3550 ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0812 0912 asc3550 ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0812 0912 AsyncMac ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0812 0912 AsyncMac ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0828 0912 atapi ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0828 0912 atapi ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0828 0912 Atmarpc ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0828 0912 Atmarpc ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0828 0912 audstub ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0828 0912 audstub ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0828 0912 b57w2k ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0828 0912 b57w2k ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0828 0912 Beep ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0828 0912 Beep ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0828 0912 cbidf ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0828 0912 cbidf ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0843 0912 cbidf2k ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0843 0912 cbidf2k ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0843 0912 CCDECODE ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0843 0912 CCDECODE ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0843 0912 cd20xrnt ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0843 0912 cd20xrnt ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0843 0912 Cdaudio ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0843 0912 Cdaudio ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0843 0912 Cdfs ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0843 0912 Cdfs ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0843 0912 Cdrom ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0843 0912 Cdrom ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0859 0912 CERUSB ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0859 0912 CERUSB ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0859 0912 CmdIde ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0859 0912 CmdIde ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0859 0912 Cpqarray ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0859 0912 Cpqarray ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0859 0912 dac2w2k ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0859 0912 dac2w2k ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0859 0912 dac960nt ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0859 0912 dac960nt ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0859 0912 Disk ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0859 0912 Disk ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0859 0912 dmboot ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0859 0912 dmboot ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0875 0912 dmio ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0875 0912 dmio ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0875 0912 dmload ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0875 0912 dmload ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0875 0912 DMusic ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0875 0912 DMusic ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0875 0912 dpti2o ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0875 0912 dpti2o ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0875 0912 drmkaud ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0875 0912 drmkaud ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0875 0912 DS1410D ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0875 0912 DS1410D ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0890 0912 ELUSBXP ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0890 0912 ELUSBXP ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0890 0912 Fastfat ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0890 0912 Fastfat ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0890 0912 Fdc ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0890 0912 Fdc ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0890 0912 Fips ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0890 0912 Fips ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0890 0912 Flpydisk ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0890 0912 Flpydisk ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0890 0912 FltMgr ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0890 0912 FltMgr ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0906 0912 fssfltr ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0906 0912 fssfltr ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0906 0912 FsUsbExDisk ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0906 0912 FsUsbExDisk ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0906 0912 Fs_Rec ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0906 0912 Fs_Rec ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0906 0912 FTD2XX ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0906 0912 FTD2XX ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0906 0912 FTDIBUS ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0906 0912 FTDIBUS ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0906 0912 Ftdisk ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0906 0912 Ftdisk ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0906 0912 FTSER2K ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0906 0912 FTSER2K ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0906 0912 GATEXP ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0906 0912 GATEXP ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0921 0912 GEARAspiWDM ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0921 0912 GEARAspiWDM ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0921 0912 Gpc ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0921 0912 Gpc ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0921 0912 hardlock ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0921 0912 hardlock ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0921 0912 Haspnt ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0921 0912 Haspnt ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0921 0912 HDAudBus ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0921 0912 HDAudBus ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0921 0912 HidUsb ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0921 0912 HidUsb ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0921 0912 hpn ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0921 0912 hpn ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0921 0912 HTTP ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0921 0912 HTTP ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0937 0912 i2omgmt ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0937 0912 i2omgmt ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0937 0912 i2omp ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0937 0912 i2omp ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0937 0912 i8042prt ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0937 0912 i8042prt ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0937 0912 iaStor ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0937 0912 iaStor ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0937 0912 Imapi ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0937 0912 Imapi ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0937 0912 ini910u ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0937 0912 ini910u ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0937 0912 IntcAzAudAddService ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0937 0912 IntcAzAudAddService ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0953 0912 IntelIde ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0953 0912 IntelIde ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0953 0912 intelppm ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0953 0912 intelppm ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0953 0912 Ip6Fw ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0953 0912 Ip6Fw ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0953 0912 IpFilterDriver ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0953 0912 IpFilterDriver ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0953 0912 IpInIp ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0953 0912 IpInIp ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0953 0912 IpNat ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0953 0912 IpNat ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0953 0912 IPSec ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0953 0912 IPSec ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0953 0912 IRENUM ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0953 0912 IRENUM ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0968 0912 isapnp ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0968 0912 isapnp ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0968 0912 Kbdclass ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0968 0912 Kbdclass ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0968 0912 kbdhid ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0968 0912 kbdhid ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0968 0912 KEILUL ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0968 0912 KEILUL ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0968 0912 kmixer ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0968 0912 kmixer ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0968 0912 KSecDD ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0968 0912 KSecDD ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0968 0912 libusb0 ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0968 0912 libusb0 ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0968 0912 Ltxred ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0968 0912 Ltxred ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0968 0912 mlnxfltr ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0968 0912 mlnxfltr ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0984 0912 mnmdd ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0984 0912 mnmdd ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0984 0912 Modem ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0984 0912 Modem ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0984 0912 Mouclass ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0984 0912 Mouclass ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0984 0912 mouhid ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0984 0912 mouhid ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0984 0912 MountMgr ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0984 0912 MountMgr ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0984 0912 mraid35x ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0984 0912 mraid35x ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0984 0912 MRxDAV ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0984 0912 MRxDAV ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0984 0912 MRxSmb ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0984 0912 MRxSmb ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:30.0984 0912 Msfs ( LockedFile.Multi.Generic ) - skipped by user 08:13:30.0984 0912 Msfs ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0000 0912 MSKSSRV ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0000 0912 MSKSSRV ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0000 0912 MSPCLOCK ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0000 0912 MSPCLOCK ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0000 0912 MSPQM ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0000 0912 MSPQM ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0000 0912 mssmbios ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0000 0912 mssmbios ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0000 0912 MSTEE ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0000 0912 MSTEE ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0000 0912 MultiLINX ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0000 0912 MultiLINX ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0000 0912 Mup ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0000 0912 Mup ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0000 0912 NABTSFEC ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0000 0912 NABTSFEC ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0000 0912 NDIS ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0000 0912 NDIS ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0000 0912 NdisIP ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0000 0912 NdisIP ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0015 0912 NdisTapi ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0015 0912 NdisTapi ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0015 0912 Ndisuio ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0015 0912 Ndisuio ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0015 0912 NdisWan ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0015 0912 NdisWan ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0015 0912 NDMSHLP ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0015 0912 NDMSHLP ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0015 0912 NDProxy ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0015 0912 NDProxy ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0015 0912 NetBIOS ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0015 0912 NetBIOS ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0015 0912 NetBT ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0015 0912 NetBT ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0015 0912 NIC1394 ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0015 0912 NIC1394 ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0015 0912 Npfs ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0015 0912 Npfs ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0015 0912 Ntfs ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0015 0912 Ntfs ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0031 0912 Null ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0031 0912 Null ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0031 0912 nv ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0031 0912 nv ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0031 0912 nvatabus ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0031 0912 nvatabus ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0031 0912 nvraid ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0031 0912 nvraid ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0031 0912 NwlnkFlt ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0031 0912 NwlnkFlt ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0031 0912 NwlnkFwd ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0031 0912 NwlnkFwd ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0031 0912 ohci1394 ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0031 0912 ohci1394 ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0031 0912 OTSysCom ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0031 0912 OTSysCom ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0031 0912 P3 ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0031 0912 P3 ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0031 0912 par1284 ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0031 0912 par1284 ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0031 0912 Parport ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0031 0912 Parport ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0031 0912 PartMgr ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0031 0912 PartMgr ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0046 0912 ParVdm ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0046 0912 ParVdm ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0046 0912 Pcan_usb ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0046 0912 Pcan_usb ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0046 0912 pccsmcfd ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0046 0912 pccsmcfd ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0046 0912 PCI ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0046 0912 PCI ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0046 0912 PCIIde ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0046 0912 PCIIde ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0046 0912 Pcmcia ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0046 0912 Pcmcia ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0046 0912 PdiPorts ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0046 0912 PdiPorts ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0046 0912 perc2 ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0046 0912 perc2 ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0046 0912 perc2hib ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0046 0912 perc2hib ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0062 0912 Pivot ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0062 0912 Pivot ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0062 0912 pivotmou ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0062 0912 pivotmou ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0062 0912 PLIN_USB ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0062 0912 PLIN_USB ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0062 0912 PptpMiniport ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0062 0912 PptpMiniport ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0062 0912 Ptilink ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0062 0912 Ptilink ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0062 0912 ql1080 ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0062 0912 ql1080 ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0062 0912 Ql10wnt ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0062 0912 Ql10wnt ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0062 0912 ql12160 ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0062 0912 ql12160 ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0062 0912 ql1240 ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0062 0912 ql1240 ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0062 0912 ql1280 ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0062 0912 ql1280 ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0078 0912 RasAcd ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0078 0912 RasAcd ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0078 0912 Rasl2tp ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0078 0912 Rasl2tp ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0078 0912 RasPppoe ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0078 0912 RasPppoe ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0078 0912 Raspti ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0078 0912 Raspti ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0078 0912 Rdbss ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0078 0912 Rdbss ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0078 0912 RDPCDD ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0078 0912 RDPCDD ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0078 0912 rdpdr ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0078 0912 rdpdr ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0078 0912 RDPWD ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0078 0912 RDPWD ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0078 0912 redbook ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0078 0912 redbook ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0093 0912 RWKPUA ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0093 0912 RWKPUA ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0093 0912 RWKXP ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0093 0912 RWKXP ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0093 0912 Secdrv ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0093 0912 Secdrv ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0093 0912 Sentinel ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0093 0912 Sentinel ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0093 0912 serenum ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0093 0912 serenum ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0093 0912 Serial ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0093 0912 Serial ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0093 0912 SerMon ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0093 0912 SerMon ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0093 0912 Sfloppy ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0093 0912 Sfloppy ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0093 0912 silabenm ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0093 0912 silabenm ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0093 0912 silabser ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0093 0912 silabser ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0093 0912 sisagp ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0093 0912 sisagp ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0109 0912 SIUSBXP ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0109 0912 SIUSBXP ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0109 0912 slabbus ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0109 0912 slabbus ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0109 0912 slabser ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0109 0912 slabser ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0109 0912 SLIP ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0109 0912 SLIP ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0109 0912 Sntnlusb ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0109 0912 Sntnlusb ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0109 0912 Sparrow ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0109 0912 Sparrow ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0109 0912 splitter ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0109 0912 splitter ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0109 0912 sr ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0109 0912 sr ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0109 0912 Srv ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0109 0912 Srv ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0109 0912 sscdbus ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0109 0912 sscdbus ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0125 0912 sscdmdfl ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0125 0912 sscdmdfl ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0125 0912 sscdmdm ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0125 0912 sscdmdm ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0125 0912 STM Parallel Driver ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0125 0912 STM Parallel Driver ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0125 0912 streamip ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0125 0912 streamip ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0125 0912 swenum ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0125 0912 swenum ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0125 0912 swmidi ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0125 0912 swmidi ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0125 0912 symc810 ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0125 0912 symc810 ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0125 0912 symc8xx ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0125 0912 symc8xx ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0125 0912 sym_hi ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0125 0912 sym_hi ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0125 0912 sym_u3 ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0125 0912 sym_u3 ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0125 0912 sysaudio ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0125 0912 sysaudio ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0140 0912 Tcpip ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0140 0912 Tcpip ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0140 0912 TDPIPE ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0140 0912 TDPIPE ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0140 0912 TDTCP ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0140 0912 TDTCP ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0140 0912 TermDD ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0140 0912 TermDD ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0140 0912 TosIde ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0140 0912 TosIde ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0140 0912 TTUSB2 ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0140 0912 TTUSB2 ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0140 0912 TVICPORT ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0140 0912 TVICPORT ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0140 0912 Udfs ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0140 0912 Udfs ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0140 0912 ultra ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0140 0912 ultra ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0140 0912 Update ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0140 0912 Update ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0156 0912 usbccgp ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0156 0912 usbccgp ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0156 0912 usbehci ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0156 0912 usbehci ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0156 0912 usbhub ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0156 0912 usbhub ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0156 0912 usbprint ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0156 0912 usbprint ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0156 0912 usbser ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0156 0912 usbser ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0156 0912 USBSTOR ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0156 0912 USBSTOR ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0156 0912 usbuhci ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0156 0912 usbuhci ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0156 0912 usbvideo ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0156 0912 usbvideo ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0156 0912 VgaSave ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0156 0912 VgaSave ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0156 0912 viaagp ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0156 0912 viaagp ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0171 0912 ViaIde ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0171 0912 ViaIde ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0171 0912 VolSnap ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0171 0912 VolSnap ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0171 0912 Wanarp ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0171 0912 Wanarp ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0171 0912 wceusbsh ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0171 0912 wceusbsh ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0171 0912 Wdf01000 ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0171 0912 Wdf01000 ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0171 0912 wdmaud ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0171 0912 wdmaud ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0171 0912 WinDriver6 ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0171 0912 WinDriver6 ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0171 0912 WS2IFSL ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0171 0912 WS2IFSL ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0171 0912 WSTCODEC ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0171 0912 WSTCODEC ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0171 0912 WudfPf ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0171 0912 WudfPf ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0171 0912 WudfRd ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0171 0912 WudfRd ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:31.0187 0912 XilinxPC4Driver ( LockedFile.Multi.Generic ) - skipped by user 08:13:31.0187 0912 XilinxPC4Driver ( LockedFile.Multi.Generic ) - User select action: Skip 08:13:50.0328 2404 Deinitialize success

Hallo, ich hbae mir einen Trojaner eingefangen, und mir deshalb das Anti-Malware zugelegt. Beim 1. Scan hat er einige Trojaner gefunden und in Quarantäne gelegt. Beim 2. Scan hat er ur noch den Trojan.WinNT.Necurs.AMN (A) gefunden, sagt aber das er diesen nicht in Quarantäne legen kann. Nach dem dritten Scan findet er diesen gar nicht mehr. Ich dachte schon das der Trojaner weg ist, habe aber bemerkt da ich den Virenwächter gar nicht aktivieren kann. Dieser steht immer auf aus und springt auch sofort wieder dorthin wenn ich versuche ihn zu aktivieren. Ich hoffe mir kann jemand weiterhelfen. Vielen Dank vorab. FrankZ