Frank Zeiger

habe mir einen Trojaner eingefangen und kann ihn nicht entfernen

Recommended Posts

Hallo,

ich hbae mir einen Trojaner eingefangen, und mir deshalb das Anti-Malware zugelegt. Beim 1. Scan hat er einige Trojaner gefunden und in Quarantäne gelegt. Beim 2. Scan hat er ur noch den Trojan.WinNT.Necurs.AMN (A) gefunden, sagt aber das er diesen nicht in Quarantäne legen kann. Nach dem dritten Scan findet er diesen gar nicht mehr. Ich dachte schon das der Trojaner weg ist, habe aber bemerkt da ich den Virenwächter gar nicht aktivieren kann. Dieser steht immer auf aus und springt auch sofort wieder dorthin wenn ich versuche ihn zu aktivieren.

 

Ich hoffe mir kann jemand weiterhelfen.

 

Vielen Dank vorab.

 

FrankZ

Share this post


Link to post
Share on other sites

Hi und Willkommen beim Emsisoft Support Forum!

 

 

 

Lese bitte folgende Anweisungen genau. Wir wollen hier noch nichts "fixen" sondern nur einen Scan Report sehen.

Downloade dir bitte  http://support.kaspersky.com/downloads/utils/tdsskiller.exe'>TDSSKiller.exe und speichere diese Datei auf dem Desktop

  • Starte die TDSSKiller.exe
  • Drücke Start Scan
  • Sollten infizierte Objekte gefunden werden, wähle keinesfalls Cure Wähle Skip und speichere das Logfile.
    TDSSKiller wird eine Logfile auf deinem Systemlaufwerk speichern ( Meistens C:\ )
    Als Beispiel: C:\TDSSKiller.<version_date_time>log.txt


Poste den Inhalt bitte hier in deinen Thread.

Share this post


Link to post
Share on other sites

Hallo, anbei der Report vom TDSSKiller

 

08:10:11.0937 2776  TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
08:10:12.0046 2776  ============================================================
08:10:12.0046 2776  Current date / time: 2012/12/10 08:10:12.0046
08:10:12.0046 2776  SystemInfo:
08:10:12.0046 2776 
08:10:12.0046 2776  OS Version: 5.1.2600 ServicePack: 3.0
08:10:12.0046 2776  Product type: Workstation
08:10:12.0046 2776  ComputerName: FRANKPC2
08:10:12.0046 2776  UserName: Frank
08:10:12.0046 2776  Windows directory: C:\WINDOWS
08:10:12.0046 2776  System windows directory: C:\WINDOWS
08:10:12.0046 2776  Processor architecture: Intel x86
08:10:12.0046 2776  Number of processors: 2
08:10:12.0046 2776  Page size: 0x1000
08:10:12.0046 2776  Boot type: Normal boot
08:10:12.0046 2776  ============================================================
08:10:22.0062 2776  !crdlk
08:10:22.0062 2776  Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'A'
08:10:22.0078 2776  Drive \Device\Harddisk1\DR1 - Size: 0x2E93E36000 (186.31 Gb), SectorSize: 0x200, Cylinders: 0x5F01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'A'
08:10:22.0109 2776  ============================================================
08:10:22.0109 2776  \Device\Harddisk0\DR0:
08:10:22.0109 2776  MBR partitions:
08:10:22.0109 2776  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0xEFFFFB2
08:10:22.0109 2776  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0xEFFFFF1, BlocksNum 0xE1C4590
08:10:22.0109 2776  \Device\Harddisk1\DR1:
08:10:22.0109 2776  MBR partitions:
08:10:22.0109 2776  \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x17499EC1
08:10:22.0109 2776  ============================================================
08:10:22.0140 2776  C: <-> \Device\Harddisk0\DR0\Partition1
08:10:22.0203 2776  D: <-> \Device\Harddisk0\DR0\Partition2
08:10:22.0234 2776  F: <-> \Device\Harddisk1\DR1\Partition1
08:10:22.0234 2776  ============================================================
08:10:22.0234 2776  Initialize success
08:10:22.0234 2776  ============================================================
08:10:28.0453 3372  ============================================================
08:10:28.0453 3372  Scan started
08:10:28.0453 3372  Mode: Manual;
08:10:28.0453 3372  ============================================================
08:10:28.0671 3372  ================ Scan system memory ========================
08:10:28.0687 3372  System memory - ok
08:10:28.0687 3372  ================ Scan services =============================
08:10:28.0703 3372  Suspicious service (NoAccess): 4d3ab16ba79b8771
08:10:28.0875 3372  [ 0907292986E05A8752BC1863556D229E ] 4d3ab16ba79b8771 C:\WINDOWS\System32\Drivers\4d3ab16ba79b8771.sys
08:10:28.0875 3372  Suspicious file (NoAccess): C:\WINDOWS\System32\Drivers\4d3ab16ba79b8771.sys. md5: 0907292986E05A8752BC1863556D229E
08:10:29.0375 3372  4d3ab16ba79b8771 ( Rootkit.Win32.Necurs.gen ) - infected
08:10:29.0375 3372  4d3ab16ba79b8771 - detected Rootkit.Win32.Necurs.gen (0)
08:10:29.0531 3372  [ A8A4E18857CDFD8D9AB81E2C9EAF89B5 ] a2acc           C:\PROGRAMME\EMSISOFT ANTI-MALWARE\a2accx86.sys
08:10:29.0531 3372  a2acc - ok
08:10:29.0640 3372  [ E327C0DE1D7013BE360881801C0AB0FA ] a2AntiMalware   C:\Programme\Emsisoft Anti-Malware\a2service.exe
08:10:29.0671 3372  a2AntiMalware - ok
08:10:29.0734 3372  [ F7EABCA8375EA2DC6F35C4BCA4757515 ] A2DDA           C:\Programme\Emsisoft Anti-Malware\a2ddax86.sys
08:10:29.0734 3372  A2DDA - ok
08:10:29.0781 3372  [ 2DA26EB05B5495D3B2EE36456C239FB7 ] a2util          C:\Programme\Emsisoft Anti-Malware\a2util32.sys
08:10:29.0781 3372  a2util - ok
08:10:29.0843 3372  [ 1FEC1C2506A20F0D2AF9D5D530B24CB3 ] a320raid        C:\WINDOWS\system32\DRIVERS\a320raid.sys
08:10:29.0843 3372  a320raid - ok
08:10:29.0859 3372  Abiosdsk - ok
08:10:29.0890 3372  [ 6ABB91494FE6C59089B9336452AB2EA3 ] abp480n5        C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS
08:10:29.0906 3372  abp480n5 - ok
08:10:29.0968 3372  [ AC407F1A62C3A300B4F2B5A9F1D55B2C ] ACPI            C:\WINDOWS\system32\DRIVERS\ACPI.sys
08:10:29.0968 3372  ACPI - ok
08:10:30.0015 3372  [ 9E1CA3160DAFB159CA14F83B1E317F75 ] ACPIEC          C:\WINDOWS\system32\drivers\ACPIEC.sys
08:10:30.0015 3372  ACPIEC - ok
08:10:30.0109 3372  [ 0CB0AA071C7B86A64F361DCFDF357329 ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
08:10:30.0125 3372  AdobeFlashPlayerUpdateSvc - ok
08:10:30.0171 3372  [ 9A11864873DA202C996558B2106B0BBC ] adpu160m        C:\WINDOWS\system32\DRIVERS\adpu160m.sys
08:10:30.0171 3372  adpu160m - ok
08:10:30.0218 3372  [ E4E13CE4C85C7E45A643BA54B8C8B16B ] adpu320         C:\WINDOWS\system32\DRIVERS\adpu320.sys
08:10:30.0218 3372  adpu320 - ok
08:10:30.0265 3372  [ 8BED39E3C35D6A489438B8141717A557 ] aec             C:\WINDOWS\system32\drivers\aec.sys
08:10:30.0265 3372  aec - ok
08:10:30.0343 3372  [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD             C:\WINDOWS\System32\drivers\afd.sys
08:10:30.0343 3372  AFD - ok
08:10:30.0375 3372  [ 08FD04AA961BDC77FB983F328334E3D7 ] agp440          C:\WINDOWS\system32\DRIVERS\agp440.sys
08:10:30.0375 3372  agp440 - ok
08:10:30.0421 3372  [ 03A7E0922ACFE1B07D5DB2EEB0773063 ] agpCPQ          C:\WINDOWS\system32\DRIVERS\agpCPQ.sys
08:10:30.0421 3372  agpCPQ - ok
08:10:30.0437 3372  [ C23EA9B5F46C7F7910DB3EAB648FF013 ] Aha154x         C:\WINDOWS\system32\DRIVERS\aha154x.sys
08:10:30.0437 3372  Aha154x - ok
08:10:30.0453 3372  [ 19DD0FB48B0C18892F70E2E7D61A1529 ] aic78u2         C:\WINDOWS\system32\DRIVERS\aic78u2.sys
08:10:30.0453 3372  aic78u2 - ok
08:10:30.0468 3372  [ B7FE594A7468AA0132DEB03FB8E34326 ] aic78xx         C:\WINDOWS\system32\DRIVERS\aic78xx.sys
08:10:30.0484 3372  aic78xx - ok
08:10:30.0531 3372  [ 3F9F42085AB5B6A55498A539C54575AB ] akshasp         C:\WINDOWS\system32\DRIVERS\akshasp.sys
08:10:30.0531 3372  akshasp - ok
08:10:30.0578 3372  [ D2B95315CC47F9230006FDBCBA394D8D ] aksusb          C:\WINDOWS\system32\DRIVERS\aksusb.sys
08:10:30.0578 3372  aksusb - ok
08:10:30.0625 3372  [ 738D80CC01D7BC7584BE917B7F544394 ] Alerter         C:\WINDOWS\system32\alrsvc.dll
08:10:30.0625 3372  Alerter - ok
08:10:30.0671 3372  [ 190CD73D4984F94D823F9444980513E5 ] ALG             C:\WINDOWS\System32\alg.exe
08:10:30.0671 3372  ALG - ok
08:10:30.0687 3372  [ 1140AB9938809700B46BB88E46D72A96 ] AliIde          C:\WINDOWS\system32\DRIVERS\aliide.sys
08:10:30.0687 3372  AliIde - ok
08:10:30.0718 3372  [ CB08AED0DE2DD889A8A820CD8082D83C ] alim1541        C:\WINDOWS\system32\DRIVERS\alim1541.sys
08:10:30.0718 3372  alim1541 - ok
08:10:30.0765 3372  [ 5C3D047466AF6FC35A273F558F14EF2B ] AlteraByteBlaster C:\WINDOWS\system32\drivers\pgdhdlc.sys
08:10:30.0765 3372  AlteraByteBlaster - ok
08:10:30.0875 3372  [ 5E90A956526086634547BF8093FEB699 ] altio           C:\Programme\Altium Designer Summer 09\System\Drivers\altio.sys
08:10:30.0875 3372  altio - ok
08:10:30.0921 3372  [ E46EE40E8ACE43EE51A1F3EEB1E03168 ] AltiumUSBJtag   C:\WINDOWS\system32\Drivers\AltiumUSBJtag.sys
08:10:30.0937 3372  AltiumUSBJtag - ok
08:10:30.0968 3372  [ 95B4FB835E28AA1336CEEB07FD5B9398 ] amdagp          C:\WINDOWS\system32\DRIVERS\amdagp.sys
08:10:30.0968 3372  amdagp - ok
08:10:31.0015 3372  [ 79F5ADD8D24BD6893F2903A3E2F3FAD6 ] amsint          C:\WINDOWS\system32\DRIVERS\amsint.sys
08:10:31.0015 3372  amsint - ok
08:10:31.0109 3372  [ F401929EE0CC92BFE7F15161CA535383 ] Apple Mobile Device C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\AppleMobileDeviceService.exe
08:10:31.0109 3372  Apple Mobile Device - ok
08:10:31.0156 3372  [ D45960BE52C3C610D361977057F98C54 ] AppMgmt         C:\WINDOWS\System32\appmgmts.dll
08:10:31.0156 3372  AppMgmt - ok
08:10:31.0250 3372  [ B5B8A80875C1DEDEDA8B02765642C32F ] Arp1394         C:\WINDOWS\system32\DRIVERS\arp1394.sys
08:10:31.0250 3372  Arp1394 - ok
08:10:31.0312 3372  [ 62D318E9A0C8FC9B780008E724283707 ] asc             C:\WINDOWS\system32\DRIVERS\asc.sys
08:10:31.0312 3372  asc - ok
08:10:31.0343 3372  [ 69EB0CC7714B32896CCBFD5EDCBEA447 ] asc3350p        C:\WINDOWS\system32\DRIVERS\asc3350p.sys
08:10:31.0343 3372  asc3350p - ok
08:10:31.0359 3372  [ 5D8DE112AA0254B907861E9E9C31D597 ] asc3550         C:\WINDOWS\system32\DRIVERS\asc3550.sys
08:10:31.0359 3372  asc3550 - ok
08:10:31.0468 3372  [ 0E5E4957549056E2BF2C49F4F6B601AD ] aspnet_state    C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
08:10:31.0578 3372  aspnet_state - ok
08:10:31.0687 3372  [ F16E27F1AFAD4DEE2F0651AC90691BBD ] Asset Management Daemon C:\Programme\Gemeinsame Dateien\Portrait Displays\Plugins\AM\dtsslsrv.exe
08:10:31.0687 3372  Asset Management Daemon - ok
08:10:31.0718 3372  [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac        C:\WINDOWS\system32\DRIVERS\asyncmac.sys
08:10:31.0718 3372  AsyncMac - ok
08:10:31.0734 3372  [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi           C:\WINDOWS\system32\DRIVERS\atapi.sys
08:10:31.0734 3372  atapi - ok
08:10:31.0750 3372  Atdisk - ok
08:10:31.0765 3372  [ 9916C1225104BA14794209CFA8012159 ] Atmarpc         C:\WINDOWS\system32\DRIVERS\atmarpc.sys
08:10:31.0765 3372  Atmarpc - ok
08:10:31.0828 3372  [ 58ED0D5452DF7BE732193E7999C6B9A4 ] AudioSrv        C:\WINDOWS\System32\audiosrv.dll
08:10:31.0828 3372  AudioSrv - ok
08:10:31.0875 3372  [ D9F724AA26C010A217C97606B160ED68 ] audstub         C:\WINDOWS\system32\DRIVERS\audstub.sys
08:10:31.0875 3372  audstub - ok
08:10:31.0937 3372  [ 3A3A82FFD268BCFB7AE6A48CECF00AD9 ] b57w2k          C:\WINDOWS\system32\DRIVERS\b57xp32.sys
08:10:31.0937 3372  b57w2k - ok
08:10:31.0984 3372  [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep            C:\WINDOWS\system32\drivers\Beep.sys
08:10:31.0984 3372  Beep - ok
08:10:32.0031 3372  BitKinex - ok
08:10:32.0093 3372  [ D6F603772A789BB3228F310D650B8BD1 ] BITS            C:\WINDOWS\system32\qmgr.dll
08:10:32.0187 3372  BITS - ok
08:10:32.0296 3372  [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] Bonjour Service C:\Programme\Bonjour\mDNSResponder.exe
08:10:32.0312 3372  Bonjour Service - ok
08:10:32.0328 3372  Brother XP spl Service - ok
08:10:32.0359 3372  [ B71549F23736ADF83A571061C47777FD ] Browser         C:\WINDOWS\System32\browser.dll
08:10:32.0359 3372  Browser - ok
08:10:32.0390 3372  [ 0A4738EFE76716DF8B193CDBB3204870 ] Cadence License Manager C:\Programme\Cadence Design Systems\Cadence License Manager\lmgrd.exe
08:10:32.0390 3372  Cadence License Manager - ok
08:10:32.0562 3372  [ 048BB4921BC148EBA4020295AB265063 ] Canon Driver Information Assist Service C:\Programme\Canon\DIAS\CnxDIAS.exe
08:10:32.0640 3372  Canon Driver Information Assist Service - ok
08:10:32.0687 3372  [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf           C:\WINDOWS\system32\DRIVERS\cbidf2k.sys
08:10:32.0687 3372  cbidf - ok
08:10:32.0687 3372  [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k         C:\WINDOWS\system32\drivers\cbidf2k.sys
08:10:32.0687 3372  cbidf2k - ok
08:10:32.0765 3372  [ 0BE5AEF125BE881C4F854C554F2B025C ] CCDECODE        C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
08:10:32.0765 3372  CCDECODE - ok
08:10:32.0781 3372  [ F3EC03299634490E97BBCE94CD2954C7 ] cd20xrnt        C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys
08:10:32.0781 3372  cd20xrnt - ok
08:10:32.0843 3372  [ C1B486A7658353D33A10CC15211A873B ] Cdaudio         C:\WINDOWS\system32\drivers\Cdaudio.sys
08:10:32.0843 3372  Cdaudio - ok
08:10:32.0890 3372  [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs            C:\WINDOWS\system32\drivers\Cdfs.sys
08:10:32.0890 3372  Cdfs - ok
08:10:32.0968 3372  [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom           C:\WINDOWS\system32\DRIVERS\cdrom.sys
08:10:32.0968 3372  Cdrom - ok
08:10:33.0015 3372  [ BC9C2EF22EE0320C079E3FF9B4D29951 ] CERUSB          C:\WINDOWS\system32\drivers\SiUSBXp.sys
08:10:33.0015 3372  CERUSB - ok
08:10:33.0015 3372  Changer - ok
08:10:33.0062 3372  [ 28E3040D1F1CA2008CD6B29DFEBC9A5E ] CiSvc           C:\WINDOWS\system32\cisvc.exe
08:10:33.0062 3372  CiSvc - ok
08:10:33.0093 3372  [ 778A30ED3C134EB7E406AFC407E9997D ] ClipSrv         C:\WINDOWS\system32\clipsrv.exe
08:10:33.0093 3372  ClipSrv - ok
08:10:33.0140 3372  [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
08:10:33.0218 3372  clr_optimization_v2.0.50727_32 - ok
08:10:33.0281 3372  [ C687F81290303D90099B027A6474F99F ] CmdIde          C:\WINDOWS\system32\DRIVERS\cmdide.sys
08:10:33.0281 3372  CmdIde - ok
08:10:33.0390 3372  [ 5BD8084248CC2A9450D99AA3FDAEE160 ] ComRedirSvc     C:\Programme\Lantronix\Redirector\redirsvc.exe
08:10:33.0390 3372  ComRedirSvc - ok
08:10:33.0406 3372  COMSysApp - ok
08:10:33.0421 3372  [ 3EE529119EED34CD212A215E8C40D4B6 ] Cpqarray        C:\WINDOWS\system32\DRIVERS\cpqarray.sys
08:10:33.0421 3372  Cpqarray - ok
08:10:33.0453 3372  [ 611F824E5C703A5A899F84C5F1699E4D ] CryptSvc        C:\WINDOWS\System32\cryptsvc.dll
08:10:33.0453 3372  CryptSvc - ok
08:10:33.0484 3372  [ E550E7418984B65A78299D248F0A7F36 ] dac2w2k         C:\WINDOWS\system32\DRIVERS\dac2w2k.sys
08:10:33.0484 3372  dac2w2k - ok
08:10:33.0515 3372  [ 683789CAA3864EB46125AE86FF677D34 ] dac960nt        C:\WINDOWS\system32\DRIVERS\dac960nt.sys
08:10:33.0515 3372  dac960nt - ok
08:10:33.0562 3372  [ 3127AFBF2C1ED0AB14A1BBB7AAECB85B ] DcomLaunch      C:\WINDOWS\system32\rpcss.dll
08:10:33.0578 3372  DcomLaunch - ok
08:10:33.0640 3372  [ C29A1C9B75BA38FA37F8C44405DEC360 ] Dhcp            C:\WINDOWS\System32\dhcpcsvc.dll
08:10:33.0656 3372  Dhcp - ok
08:10:33.0703 3372  [ 044452051F3E02E7963599FC8F4F3E25 ] Disk            C:\WINDOWS\system32\DRIVERS\disk.sys
08:10:33.0703 3372  Disk - ok
08:10:33.0718 3372  dmadmin - ok
08:10:33.0781 3372  [ 0DCFC8395A99FECBB1EF771CEC7FE4EA ] dmboot          C:\WINDOWS\system32\drivers\dmboot.sys
08:10:33.0796 3372  dmboot - ok
08:10:33.0859 3372  [ 53720AB12B48719D00E327DA470A619A ] dmio            C:\WINDOWS\system32\drivers\dmio.sys
08:10:33.0859 3372  dmio - ok
08:10:33.0890 3372  [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload          C:\WINDOWS\system32\drivers\dmload.sys
08:10:33.0890 3372  dmload - ok
08:10:33.0937 3372  [ 25C83FFBBA13B554EB6D59A9B2E2EE78 ] dmserver        C:\WINDOWS\System32\dmserver.dll
08:10:33.0937 3372  dmserver - ok
08:10:34.0000 3372  [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic          C:\WINDOWS\system32\drivers\DMusic.sys
08:10:34.0000 3372  DMusic - ok
08:10:34.0046 3372  [ 407F3227AC618FD1CA54B335B083DE07 ] Dnscache        C:\WINDOWS\System32\dnsrslvr.dll
08:10:34.0046 3372  Dnscache - ok
08:10:34.0093 3372  [ 676E36C4FF5BCEA1900F44182B9723E6 ] Dot3svc         C:\WINDOWS\System32\dot3svc.dll
08:10:34.0109 3372  Dot3svc - ok
08:10:34.0156 3372  [ 40F3B93B4E5B0126F2F5C0A7A5E22660 ] dpti2o          C:\WINDOWS\system32\DRIVERS\dpti2o.sys
08:10:34.0156 3372  dpti2o - ok
08:10:34.0187 3372  [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud         C:\WINDOWS\system32\drivers\drmkaud.sys
08:10:34.0187 3372  drmkaud - ok
08:10:34.0234 3372  [ 79666B3AC5EE1534E973469E4F0EB63B ] DS1410D         C:\WINDOWS\system32\drivers\DS1410D.SYS
08:10:34.0234 3372  DS1410D - ok
08:10:34.0281 3372  [ 222F54132446024480741ABB675245B9 ] DTSRVC          C:\Programme\Gemeinsame Dateien\Portrait Displays\Shared\DTSRVC.exe
08:10:34.0281 3372  DTSRVC - ok
08:10:34.0312 3372  [ 4E4F2FDDAB0A0736D7671134DCCE91FB ] EapHost         C:\WINDOWS\System32\eapsvc.dll
08:10:34.0328 3372  EapHost - ok
08:10:34.0343 3372  [ BC9C2EF22EE0320C079E3FF9B4D29951 ] ELUSBXP         C:\WINDOWS\system32\drivers\SiUSBXp.sys
08:10:34.0343 3372  ELUSBXP - ok
08:10:34.0406 3372  [ 877C18558D70587AA7823A1A308AC96B ] ERSvc           C:\WINDOWS\System32\ersvc.dll
08:10:34.0406 3372  ERSvc - ok
08:10:34.0468 3372  [ A3EDBE9053889FB24AB22492472B39DC ] Eventlog        C:\WINDOWS\system32\services.exe
08:10:34.0484 3372  Eventlog - ok
08:10:34.0562 3372  [ AF4F6B5739D18CA7972AB53E091CBC74 ] EventSystem     C:\WINDOWS\system32\es.dll
08:10:34.0562 3372  EventSystem - ok
08:10:34.0609 3372  [ 38D332A6D56AF32635675F132548343E ] Fastfat         C:\WINDOWS\system32\drivers\Fastfat.sys
08:10:34.0609 3372  Fastfat - ok
08:10:34.0656 3372  [ 2DB7D303C36DDD055215052F118E8E75 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
08:10:34.0656 3372  FastUserSwitchingCompatibility - ok
08:10:34.0718 3372  [ 08B8B302AF0D1B3B8543429BBAC8F21F ] Fax             C:\WINDOWS\system32\fxssvc.exe
08:10:34.0718 3372  Fax - ok
08:10:34.0781 3372  [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc             C:\WINDOWS\system32\DRIVERS\fdc.sys
08:10:34.0781 3372  Fdc - ok
08:10:34.0828 3372  [ B0678A548587C5F1967B0D70BACAD6C1 ] Fips            C:\WINDOWS\system32\drivers\Fips.sys
08:10:34.0828 3372  Fips - ok
08:10:34.0875 3372  [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk        C:\WINDOWS\system32\DRIVERS\flpydisk.sys
08:10:34.0875 3372  Flpydisk - ok
08:10:34.0890 3372  [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr          C:\WINDOWS\system32\drivers\fltmgr.sys
08:10:34.0906 3372  FltMgr - ok
08:10:34.0984 3372  [ 27C75AC6D6FC808D8244D9C9CEA681D1 ] fltsrv          C:\WINDOWS\system32\DRIVERS\fltsrv.sys
08:10:34.0984 3372  fltsrv - ok
08:10:35.0078 3372  [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
08:10:35.0078 3372  FontCache3.0.0.0 - ok
08:10:35.0156 3372  [ C6EE3A87FE609D3E1DB9DBD072A248DE ] fssfltr         C:\WINDOWS\system32\DRIVERS\fssfltr_tdi.sys
08:10:35.0156 3372  fssfltr - ok
08:10:35.0312 3372  [ 45B52394F9624237F33A8A3D73C0B221 ] fsssvc          C:\Programme\Windows Live\Family Safety\fsssvc.exe
08:10:35.0312 3372  fsssvc - ok
08:10:35.0406 3372  [ 790A4CA68F44BE35967B3DF61F3E4675 ] FsUsbExDisk     C:\WINDOWS\system32\FsUsbExDisk.SYS
08:10:35.0406 3372  FsUsbExDisk - ok
08:10:35.0468 3372  [ D3F9205CC4CB07553F2F9472C767EA87 ] FsUsbExService  C:\WINDOWS\system32\FsUsbExService.Exe
08:10:35.0468 3372  FsUsbExService - ok
08:10:35.0515 3372  [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec          C:\WINDOWS\system32\drivers\Fs_Rec.sys
08:10:35.0515 3372  Fs_Rec - ok
08:10:35.0578 3372  [ AB40574F179B60BE08FE87DF70ECF9EB ] FTD2XX          C:\WINDOWS\system32\Drivers\FTD2XX.sys
08:10:35.0578 3372  FTD2XX - ok
08:10:35.0640 3372  [ AAE37F0F2F613218DCE17B42A18C38DB ] FTDIBUS         C:\WINDOWS\system32\drivers\ftdibus.sys
08:10:35.0640 3372  FTDIBUS - ok
08:10:35.0703 3372  [ 8F1955CE42E1484714B542F341647778 ] Ftdisk          C:\WINDOWS\system32\DRIVERS\ftdisk.sys
08:10:35.0703 3372  Ftdisk - ok
08:10:35.0750 3372  [ 48BFD1BA45C9C9E7AB339E25ABFBA1D2 ] FTSER2K         C:\WINDOWS\system32\drivers\ftser2k.sys
08:10:35.0750 3372  FTSER2K - ok
08:10:35.0812 3372  [ BC9C2EF22EE0320C079E3FF9B4D29951 ] GATEXP          C:\WINDOWS\system32\drivers\SiUSBXp.sys
08:10:35.0812 3372  GATEXP - ok
08:10:35.0875 3372  [ 8182FF89C65E4D38B2DE4BB0FB18564E ] GEARAspiWDM     C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
08:10:35.0875 3372  GEARAspiWDM - ok
08:10:35.0921 3372  [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc             C:\WINDOWS\system32\DRIVERS\msgpc.sys
08:10:35.0921 3372  Gpc - ok
08:10:36.0015 3372  [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdate         C:\Programme\Google\Update\GoogleUpdate.exe
08:10:36.0015 3372  gupdate - ok
08:10:36.0031 3372  [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdatem        C:\Programme\Google\Update\GoogleUpdate.exe
08:10:36.0031 3372  gupdatem - ok
08:10:36.0093 3372  [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc           C:\Programme\Google\Common\Google Updater\GoogleUpdaterService.exe
08:10:36.0093 3372  gusvc - ok
08:10:36.0156 3372  [ D95554949082FD29A04D351B58396718 ] hardlock        C:\WINDOWS\system32\drivers\hardlock.sys
08:10:36.0156 3372  hardlock - ok
08:10:36.0218 3372  [ 2DD25F060DC9F79B5CDF33D90ED93669 ] Haspnt          C:\WINDOWS\system32\drivers\Haspnt.sys
08:10:36.0218 3372  Haspnt - ok
08:10:36.0265 3372  [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus        C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
08:10:36.0265 3372  HDAudBus - ok
08:10:36.0328 3372  [ CB66BF85BF599BEFD6C6A57C2E20357F ] helpsvc         C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
08:10:36.0328 3372  helpsvc - ok
08:10:36.0359 3372  [ B35DA85E60C0103F2E4104532DA2F12B ] HidServ         C:\WINDOWS\System32\hidserv.dll
08:10:36.0359 3372  HidServ - ok
08:10:36.0421 3372  [ CCF82C5EC8A7326C3066DE870C06DAF1 ] HidUsb          C:\WINDOWS\system32\DRIVERS\hidusb.sys
08:10:36.0421 3372  HidUsb - ok
08:10:36.0468 3372  [ ED29F14101523A6E0E808107405D452C ] hkmsvc          C:\WINDOWS\System32\kmsvc.dll
08:10:36.0468 3372  hkmsvc - ok
08:10:36.0515 3372  [ B028377DEA0546A5FCFBA928A8AEFAE0 ] hpn             C:\WINDOWS\system32\DRIVERS\hpn.sys
08:10:36.0515 3372  hpn - ok
08:10:36.0578 3372  [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP            C:\WINDOWS\system32\Drivers\HTTP.sys
08:10:36.0578 3372  HTTP - ok
08:10:36.0625 3372  [ 9E4ADB854CEBCFB81A4B36718FEECD16 ] HTTPFilter      C:\WINDOWS\System32\w3ssl.dll
08:10:36.0625 3372  HTTPFilter - ok
08:10:36.0640 3372  [ 9368670BD426EBEA5E8B18A62416EC28 ] i2omgmt         C:\WINDOWS\system32\drivers\i2omgmt.sys
08:10:36.0640 3372  i2omgmt - ok
08:10:36.0656 3372  [ F10863BF1CCC290BABD1A09188AE49E0 ] i2omp           C:\WINDOWS\system32\DRIVERS\i2omp.sys
08:10:36.0671 3372  i2omp - ok
08:10:36.0671 3372  [ E283B97CFBEB86C1D86BAED5F7846A92 ] i8042prt        C:\WINDOWS\system32\DRIVERS\i8042prt.sys
08:10:36.0671 3372  i8042prt - ok
08:10:36.0718 3372  [ 294110966CEDD127629C5BE48367C8CF ] iaStor          C:\WINDOWS\system32\DRIVERS\iaStor.sys
08:10:36.0718 3372  iaStor - ok
08:10:36.0828 3372  [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc           C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
08:10:36.0843 3372  idsvc - ok
08:10:36.0875 3372  [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi           C:\WINDOWS\system32\DRIVERS\imapi.sys
08:10:36.0875 3372  Imapi - ok
08:10:36.0921 3372  [ D4B413AA210C21E46AEDD2BA5B68D38E ] ImapiService    C:\WINDOWS\system32\imapi.exe
08:10:36.0937 3372  ImapiService - ok
08:10:36.0984 3372  [ 4A40E045FAEE58631FD8D91AFC620719 ] ini910u         C:\WINDOWS\system32\DRIVERS\ini910u.sys
08:10:36.0984 3372  ini910u - ok
08:10:37.0156 3372  [ 909D03B3B7FB7C830B74F74F4D0EA7CE ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RtkHDAud.sys
08:10:37.0187 3372  IntcAzAudAddService - ok
08:10:37.0234 3372  [ 69C4E3C9E67A1F103B94E14FDD5F3213 ] IntelIde        C:\WINDOWS\system32\DRIVERS\intelide.sys
08:10:37.0234 3372  IntelIde - ok
08:10:37.0296 3372  [ 4C7D2750158ED6E7AD642D97BFFAE351 ] intelppm        C:\WINDOWS\system32\DRIVERS\intelppm.sys
08:10:37.0296 3372  intelppm - ok
08:10:37.0343 3372  [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw           C:\WINDOWS\system32\drivers\ip6fw.sys
08:10:37.0343 3372  Ip6Fw - ok
08:10:37.0375 3372  [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver  C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
08:10:37.0375 3372  IpFilterDriver - ok
08:10:37.0390 3372  [ B87AB476DCF76E72010632B5550955F5 ] IpInIp          C:\WINDOWS\system32\DRIVERS\ipinip.sys
08:10:37.0390 3372  IpInIp - ok
08:10:37.0437 3372  [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat           C:\WINDOWS\system32\DRIVERS\ipnat.sys
08:10:37.0453 3372  IpNat - ok
08:10:37.0546 3372  [ E6BE7A41A28D8F2DB174957454D32448 ] iPod Service    C:\Programme\iPod\bin\iPodService.exe
08:10:37.0562 3372  iPod Service - ok
08:10:37.0593 3372  [ 23C74D75E36E7158768DD63D92789A91 ] IPSec           C:\WINDOWS\system32\DRIVERS\ipsec.sys
08:10:37.0593 3372  IPSec - ok
08:10:37.0609 3372  [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM          C:\WINDOWS\system32\DRIVERS\irenum.sys
08:10:37.0609 3372  IRENUM - ok
08:10:37.0656 3372  [ 6DFB88F64135C525433E87648BDA30DE ] isapnp          C:\WINDOWS\system32\DRIVERS\isapnp.sys
08:10:37.0656 3372  isapnp - ok
08:10:37.0796 3372  [ DE5D05FD449798EF88CC34AD4B1E7F85 ] JavaQuickStarterService C:\Programme\Java\jre6\bin\jqs.exe
08:10:37.0796 3372  JavaQuickStarterService - ok
08:10:37.0968 3372  [ 21F12E351D011BD546C5BB46D66DBD6C ] JTAGServer      c:\altera\90\quartus\bin\jtagserver.exe
08:10:38.0046 3372  JTAGServer - ok
08:10:38.0125 3372  [ 1704D8C4C8807B889E43C649B478A452 ] Kbdclass        C:\WINDOWS\system32\DRIVERS\kbdclass.sys
08:10:38.0125 3372  Kbdclass - ok
08:10:38.0140 3372  [ B6D6C117D771C98130497265F26D1882 ] kbdhid          C:\WINDOWS\system32\DRIVERS\kbdhid.sys
08:10:38.0140 3372  kbdhid - ok
08:10:38.0203 3372  [ B5AF8F521FE24FE756260278B7B76296 ] KEILUL          C:\WINDOWS\system32\DRIVERS\keilul.sys
08:10:38.0203 3372  KEILUL - ok
08:10:38.0234 3372  [ 692BCF44383D056AED41B045A323D378 ] kmixer          C:\WINDOWS\system32\drivers\kmixer.sys
08:10:38.0234 3372  kmixer - ok
08:10:38.0296 3372  [ B467646C54CC746128904E1654C750C1 ] KSecDD          C:\WINDOWS\system32\drivers\KSecDD.sys
08:10:38.0296 3372  KSecDD - ok
08:10:38.0359 3372  [ 2BBDCB79900990F0716DFCB714E72DE7 ] lanmanserver    C:\WINDOWS\System32\srvsvc.dll
08:10:38.0359 3372  lanmanserver - ok
08:10:38.0421 3372  [ 1869B14B06B44B44AF70548E1EA3303F ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
08:10:38.0421 3372  lanmanworkstation - ok
08:10:38.0437 3372  lbrtfdc - ok
08:10:38.0515 3372  [ C9914934118ADD9AFE928A16A3379016 ] libusb0         C:\WINDOWS\system32\DRIVERS\libusb0.sys
08:10:38.0515 3372  libusb0 - ok
08:10:38.0593 3372  [ 636714B7D43C8D0C80449123FD266920 ] LmHosts         C:\WINDOWS\System32\lmhsvc.dll
08:10:38.0593 3372  LmHosts - ok
08:10:38.0640 3372  [ 5A8E14FC728B4B65151855076CE5A3C9 ] Ltxred          C:\WINDOWS\System32\drivers\ltxred.sys
08:10:38.0640 3372  Ltxred - ok
08:10:38.0765 3372  [ 2D46DC95709F2967D401326CA67D4111 ] M4-Service      C:\Dokumente und Einstellungen\Frank\Anwendungsdaten\Mikogo 4\M4-Service.exe
08:10:38.0796 3372  M4-Service - ok
08:10:38.0921 3372  [ 11F714F85530A2BD134074DC30E99FCA ] MDM             C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7Debug\mdm.exe
08:10:38.0921 3372  MDM - ok
08:10:38.0968 3372  [ B7550A7107281D170CE85524B1488C98 ] Messenger       C:\WINDOWS\System32\msgsvc.dll
08:10:38.0984 3372  Messenger - ok
08:10:39.0046 3372  [ A0DBFCBE2024E82F3BCF860DCF8D9497 ] mlnxfltr        C:\WINDOWS\system32\drivers\mlnxfltr.sys
08:10:39.0046 3372  mlnxfltr - ok
08:10:39.0093 3372  [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd           C:\WINDOWS\system32\drivers\mnmdd.sys
08:10:39.0093 3372  mnmdd - ok
08:10:39.0140 3372  [ C2F1D365FD96791B037EE504868065D3 ] mnmsrvc         C:\WINDOWS\system32\mnmsrvc.exe
08:10:39.0140 3372  mnmsrvc - ok
08:10:39.0187 3372  [ 6FB74EBD4EC57A6F1781DE3852CC3362 ] Modem           C:\WINDOWS\system32\drivers\Modem.sys
08:10:39.0187 3372  Modem - ok
08:10:39.0234 3372  [ B24CE8005DEAB254C0251E15CB71D802 ] Mouclass        C:\WINDOWS\system32\DRIVERS\mouclass.sys
08:10:39.0234 3372  Mouclass - ok
08:10:39.0281 3372  [ 66A6F73C74E1791464160A7065CE711A ] mouhid          C:\WINDOWS\system32\DRIVERS\mouhid.sys
08:10:39.0281 3372  mouhid - ok
08:10:39.0296 3372  [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr        C:\WINDOWS\system32\drivers\MountMgr.sys
08:10:39.0296 3372  MountMgr - ok
08:10:39.0375 3372  [ 15D5398EED42C2504BB3D4FC875C15D1 ] MozillaMaintenance C:\Programme\Mozilla Maintenance Service\maintenanceservice.exe
08:10:39.0375 3372  MozillaMaintenance - ok
08:10:39.0421 3372  [ 3F4BB95E5A44F3BE34824E8E7CAF0737 ] mraid35x        C:\WINDOWS\system32\DRIVERS\mraid35x.sys
08:10:39.0421 3372  mraid35x - ok
08:10:39.0468 3372  [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV          C:\WINDOWS\system32\DRIVERS\mrxdav.sys
08:10:39.0484 3372  MRxDAV - ok
08:10:39.0515 3372  [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb          C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
08:10:39.0531 3372  MRxSmb - ok
08:10:39.0562 3372  [ 35A031AF38C55F92D28AA03EE9F12CC9 ] MSDTC           C:\WINDOWS\system32\msdtc.exe
08:10:39.0578 3372  MSDTC - ok
08:10:39.0593 3372  [ C941EA2454BA8350021D774DAF0F1027 ] Msfs            C:\WINDOWS\system32\drivers\Msfs.sys
08:10:39.0593 3372  Msfs - ok
08:10:39.0609 3372  MSIServer - ok
08:10:39.0640 3372  [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV         C:\WINDOWS\system32\drivers\MSKSSRV.sys
08:10:39.0640 3372  MSKSSRV - ok
08:10:39.0687 3372  [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK        C:\WINDOWS\system32\drivers\MSPCLOCK.sys
08:10:39.0687 3372  MSPCLOCK - ok
08:10:39.0703 3372  [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM           C:\WINDOWS\system32\drivers\MSPQM.sys
08:10:39.0703 3372  MSPQM - ok
08:10:39.0765 3372  [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios        C:\WINDOWS\system32\DRIVERS\mssmbios.sys
08:10:39.0765 3372  mssmbios - ok
08:10:39.0875 3372  MSSQL$ERWEKAMC - ok
08:10:39.0937 3372  [ 1D89EB4E2A99CABD4E81225F4F4C4B25 ] MSSQLServerADHelper C:\Programme\Microsoft SQL Server\90\Shared\sqladhlp90.exe
08:10:39.0937 3372  MSSQLServerADHelper - ok
08:10:39.0984 3372  [ E53736A9E30C45FA9E7B5EAC55056D1D ] MSTEE           C:\WINDOWS\system32\drivers\MSTEE.sys
08:10:39.0984 3372  MSTEE - ok
08:10:40.0015 3372  [ 8533638869A3EC274E93C49C6B910306 ] MultiLINX       C:\WINDOWS\system32\drivers\mltlnx.sys
08:10:40.0015 3372  MultiLINX - ok
08:10:40.0078 3372  [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup             C:\WINDOWS\system32\drivers\Mup.sys
08:10:40.0078 3372  Mup - ok
08:10:40.0140 3372  [ 5B50F1B2A2ED47D560577B221DA734DB ] NABTSFEC        C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
08:10:40.0140 3372  NABTSFEC - ok
08:10:40.0218 3372  [ 46BB15AE2AC7D025D6D2567B876817BD ] napagent        C:\WINDOWS\System32\qagentrt.dll
08:10:40.0218 3372  napagent - ok
08:10:40.0281 3372  [ 1DF7F42665C94B825322FAE71721130D ] NDIS            C:\WINDOWS\system32\drivers\NDIS.sys
08:10:40.0296 3372  NDIS - ok
08:10:40.0343 3372  [ 7FF1F1FD8609C149AA432F95A8163D97 ] NdisIP          C:\WINDOWS\system32\DRIVERS\NdisIP.sys
08:10:40.0343 3372  NdisIP - ok
08:10:40.0421 3372  [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi        C:\WINDOWS\system32\DRIVERS\ndistapi.sys
08:10:40.0421 3372  NdisTapi - ok
08:10:40.0468 3372  [ F927A4434C5028758A842943EF1A3849 ] Ndisuio         C:\WINDOWS\system32\DRIVERS\ndisuio.sys
08:10:40.0468 3372  Ndisuio - ok
08:10:40.0500 3372  [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan         C:\WINDOWS\system32\DRIVERS\ndiswan.sys
08:10:40.0500 3372  NdisWan - ok
08:10:40.0546 3372  [ A1D2E1B46E79CE3081607FB88DE2909B ] NDMSHLP         C:\Programme\Gemeinsame Dateien\HHD Software\Device Monitor\ndmshlp.sys
08:10:40.0546 3372  NDMSHLP - ok
08:10:40.0593 3372  [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy         C:\WINDOWS\system32\drivers\NDProxy.sys
08:10:40.0593 3372  NDProxy - ok
08:10:40.0671 3372  [ F7C14F5077BF2BC476C348B88A7F74E2 ] Net Driver HPZ12 C:\WINDOWS\system32\HPZinw12.dll
08:10:40.0671 3372  Net Driver HPZ12 - ok
08:10:40.0750 3372  [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS         C:\WINDOWS\system32\DRIVERS\netbios.sys
08:10:40.0765 3372  NetBIOS - ok
08:10:40.0843 3372  [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT           C:\WINDOWS\system32\DRIVERS\netbt.sys
08:10:40.0843 3372  NetBT - ok
08:10:40.0890 3372  [ 8ACE4251BFFD09CE75679FE940E996CC ] NetDDE          C:\WINDOWS\system32\netdde.exe
08:10:40.0890 3372  NetDDE - ok
08:10:40.0906 3372  [ 8ACE4251BFFD09CE75679FE940E996CC ] NetDDEdsdm      C:\WINDOWS\system32\netdde.exe
08:10:40.0906 3372  NetDDEdsdm - ok
08:10:40.0968 3372  [ AFB8261B56CBA0D86AEB6DF682AF9785 ] Netlogon        C:\WINDOWS\system32\lsass.exe
08:10:40.0968 3372  Netlogon - ok
08:10:41.0031 3372  [ E6D88F1F6745BF00B57E7855A2AB696C ] Netman          C:\WINDOWS\System32\netman.dll
08:10:41.0031 3372  Netman - ok
08:10:41.0093 3372  [ D34612C5D02D026535B3095D620626AE ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
08:10:41.0093 3372  NetTcpPortSharing - ok
08:10:41.0140 3372  [ E9E47CFB2D461FA0FC75B7A74C6383EA ] NIC1394         C:\WINDOWS\system32\DRIVERS\nic1394.sys
08:10:41.0140 3372  NIC1394 - ok
08:10:41.0203 3372  [ F1B67B6B0751AE0E6E964B02821206A3 ] Nla             C:\WINDOWS\System32\mswsock.dll
08:10:41.0203 3372  Nla - ok
08:10:41.0250 3372  [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs            C:\WINDOWS\system32\drivers\Npfs.sys
08:10:41.0265 3372  Npfs - ok
08:10:41.0296 3372  [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs            C:\WINDOWS\system32\drivers\Ntfs.sys
08:10:41.0328 3372  Ntfs - ok
08:10:41.0328 3372  [ AFB8261B56CBA0D86AEB6DF682AF9785 ] NtLmSsp         C:\WINDOWS\system32\lsass.exe
08:10:41.0343 3372  NtLmSsp - ok
08:10:41.0390 3372  [ 56AF4064996FA5BAC9C449B1514B4770 ] NtmsSvc         C:\WINDOWS\system32\ntmssvc.dll
08:10:41.0406 3372  NtmsSvc - ok
08:10:41.0500 3372  [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null            C:\WINDOWS\system32\drivers\Null.sys
08:10:41.0500 3372  Null - ok
08:10:41.0703 3372  [ 33AE09E9027F5F22E80A6C80715B79DF ] nv              C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
08:10:41.0750 3372  nv - ok
08:10:41.0812 3372  [ 0344AA9113DC16EEC379F4652020849D ] nvatabus        C:\WINDOWS\system32\DRIVERS\nvatabus.sys
08:10:41.0812 3372  nvatabus - ok
08:10:41.0828 3372  [ A4F2A29B9D40F9FFBBB54E56CE483797 ] nvraid          C:\WINDOWS\system32\DRIVERS\nvraid.sys
08:10:41.0828 3372  nvraid - ok
08:10:41.0875 3372  [ DE6F8D1079FC0E9912AB60308B110026 ] NVSvc           C:\WINDOWS\system32\nvsvc32.exe
08:10:41.0875 3372  NVSvc - ok
08:10:41.0906 3372  [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt        C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
08:10:41.0906 3372  NwlnkFlt - ok
08:10:41.0921 3372  [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd        C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
08:10:41.0921 3372  NwlnkFwd - ok
08:10:41.0921 3372  [ CA33832DF41AFB202EE7AEB05145922F ] ohci1394        C:\WINDOWS\system32\DRIVERS\ohci1394.sys
08:10:41.0937 3372  ohci1394 - ok
08:10:42.0046 3372  [ F5A0A29634E71EC1DD9C91E1D24E5284 ] OTSysCom        C:\Programme\LG Electronics Inc\LGComSpy++\OTSysCom.sys
08:10:42.0046 3372  OTSysCom - ok
08:10:42.0093 3372  [ A7AF0C0860F1C43FC6581BA8A99EABEF ] P3              C:\WINDOWS\system32\DRIVERS\p3.sys
08:10:42.0093 3372  P3 - ok
08:10:42.0156 3372  [ 8E55251D83763CCCA60FE26A811CFB0C ] par1284         C:\WINDOWS\system32\drivers\par1284.sys
08:10:42.0156 3372  par1284 - ok
08:10:42.0187 3372  [ F84785660305B9B903FB3BCA8BA29837 ] Parport         C:\WINDOWS\system32\DRIVERS\parport.sys
08:10:42.0187 3372  Parport - ok
08:10:42.0203 3372  [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr         C:\WINDOWS\system32\drivers\PartMgr.sys
08:10:42.0203 3372  PartMgr - ok
08:10:42.0234 3372  [ C2BF987829099A3EAA2CA6A0A90ECB4F ] ParVdm          C:\WINDOWS\system32\drivers\ParVdm.sys
08:10:42.0234 3372  ParVdm - ok
08:10:42.0328 3372  [ 72735F06EFAEED680DFA41EED853F3AC ] Pcan_usb        C:\WINDOWS\system32\DRIVERS\PCAN_USB.SYS
08:10:42.0359 3372  Pcan_usb - ok
08:10:42.0406 3372  [ 175CC28DCF819F78CAA3FBD44AD9E52A ] pccsmcfd        C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys
08:10:42.0406 3372  pccsmcfd - ok
08:10:42.0421 3372  [ 387E8DEDC343AA2D1EFBC30580273ACD ] PCI             C:\WINDOWS\system32\DRIVERS\pci.sys
08:10:42.0421 3372  PCI - ok
08:10:42.0437 3372  PCIDump - ok
08:10:42.0453 3372  [ 59BA86D9A61CBCF4DF8E598C331F5B82 ] PCIIde          C:\WINDOWS\system32\DRIVERS\pciide.sys
08:10:42.0453 3372  PCIIde - ok
08:10:42.0500 3372  [ A2A966B77D61847D61A3051DF87C8C97 ] Pcmcia          C:\WINDOWS\system32\drivers\Pcmcia.sys
08:10:42.0500 3372  Pcmcia - ok
08:10:42.0500 3372  PDCOMP - ok
08:10:42.0515 3372  PDFRAME - ok
08:10:42.0578 3372  [ FEE34EAE1FF4FEA67248F9F6CF6EC5D0 ] PdiPorts        C:\WINDOWS\system32\Drivers\PdiPorts.sys
08:10:42.0578 3372  PdiPorts - ok
08:10:42.0640 3372  [ 01FA89DEA940234FECB41DD5F73B6EAB ] PdiService      C:\Programme\Gemeinsame Dateien\Portrait Displays\Drivers\pdisrvc.exe
08:10:42.0640 3372  PdiService - ok
08:10:42.0640 3372  PDRELI - ok
08:10:42.0656 3372  PDRFRAME - ok
08:10:42.0671 3372  [ 6C14B9C19BA84F73D3A86DBA11133101 ] perc2           C:\WINDOWS\system32\DRIVERS\perc2.sys
08:10:42.0671 3372  perc2 - ok
08:10:42.0718 3372  [ F50F7C27F131AFE7BEBA13E14A3B9416 ] perc2hib        C:\WINDOWS\system32\DRIVERS\perc2hib.sys
08:10:42.0718 3372  perc2hib - ok
08:10:42.0781 3372  [ 68C6ADE0DA199E7C00B6083DA4605CB8 ] Pivot           C:\WINDOWS\system32\drivers\pivot.sys
08:10:42.0781 3372  Pivot - ok
08:10:42.0812 3372  [ 552A7A474FD47BC634113B169494DFBB ] pivotmou        C:\WINDOWS\system32\drivers\pivotmou.sys
08:10:42.0812 3372  pivotmou - ok
08:10:42.0843 3372  [ F5560F0ACA0238731112077FBB796AB5 ] PLIN Manager    C:\WINDOWS\system32\PLinMng.exe
08:10:42.0843 3372  PLIN Manager - ok
08:10:42.0906 3372  [ 59028A4006C63C05270DB4ADCBF0DD90 ] PLIN_USB        C:\WINDOWS\system32\Drivers\PLIN_USB.sys
08:10:42.0906 3372  PLIN_USB - ok
08:10:42.0953 3372  [ A3EDBE9053889FB24AB22492472B39DC ] PlugPlay        C:\WINDOWS\system32\services.exe
08:10:42.0953 3372  PlugPlay - ok
08:10:43.0031 3372  [ E638656001C52A1FAA34F92E6D3A086B ] Pml Driver HPZ12 C:\WINDOWS\system32\HPZipm12.dll
08:10:43.0031 3372  Pml Driver HPZ12 - ok
08:10:43.0046 3372  [ AFB8261B56CBA0D86AEB6DF682AF9785 ] PolicyAgent     C:\WINDOWS\system32\lsass.exe
08:10:43.0046 3372  PolicyAgent - ok
08:10:43.0093 3372  [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport    C:\WINDOWS\system32\DRIVERS\raspptp.sys
08:10:43.0093 3372  PptpMiniport - ok
08:10:43.0109 3372  [ AFB8261B56CBA0D86AEB6DF682AF9785 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
08:10:43.0109 3372  ProtectedStorage - ok
08:10:43.0125 3372  [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink         C:\WINDOWS\system32\DRIVERS\ptilink.sys
08:10:43.0125 3372  Ptilink - ok
08:10:43.0140 3372  [ 0A63FB54039EB5662433CABA3B26DBA7 ] ql1080          C:\WINDOWS\system32\DRIVERS\ql1080.sys
08:10:43.0140 3372  ql1080 - ok
08:10:43.0140 3372  [ 6503449E1D43A0FF0201AD5CB1B8C706 ] Ql10wnt         C:\WINDOWS\system32\DRIVERS\ql10wnt.sys
08:10:43.0156 3372  Ql10wnt - ok
08:10:43.0171 3372  [ 156ED0EF20C15114CA097A34A30D8A01 ] ql12160         C:\WINDOWS\system32\DRIVERS\ql12160.sys
08:10:43.0171 3372  ql12160 - ok
08:10:43.0187 3372  [ 70F016BEBDE6D29E864C1230A07CC5E6 ] ql1240          C:\WINDOWS\system32\DRIVERS\ql1240.sys
08:10:43.0187 3372  ql1240 - ok
08:10:43.0234 3372  [ 907F0AEEA6BC451011611E732BD31FCF ] ql1280          C:\WINDOWS\system32\DRIVERS\ql1280.sys
08:10:43.0234 3372  ql1280 - ok
08:10:43.0265 3372  [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd          C:\WINDOWS\system32\DRIVERS\rasacd.sys
08:10:43.0265 3372  RasAcd - ok
08:10:43.0296 3372  [ F5BA6CACCDB66C8F048E867563203246 ] RasAuto         C:\WINDOWS\System32\rasauto.dll
08:10:43.0312 3372  RasAuto - ok
08:10:43.0343 3372  [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp         C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
08:10:43.0343 3372  Rasl2tp - ok
08:10:43.0390 3372  [ F9A7B66EA345726EDB5862A46B1ECCD5 ] RasMan          C:\WINDOWS\System32\rasmans.dll
08:10:43.0390 3372  RasMan - ok
08:10:43.0406 3372  [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe        C:\WINDOWS\system32\DRIVERS\raspppoe.sys
08:10:43.0406 3372  RasPppoe - ok
08:10:43.0421 3372  [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti          C:\WINDOWS\system32\DRIVERS\raspti.sys
08:10:43.0421 3372  Raspti - ok
08:10:43.0484 3372  [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss           C:\WINDOWS\system32\DRIVERS\rdbss.sys
08:10:43.0484 3372  Rdbss - ok
08:10:43.0531 3372  [ 4912D5B403614CE99C28420F75353332 ] RDPCDD          C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
08:10:43.0531 3372  RDPCDD - ok
08:10:43.0593 3372  [ 15CABD0F7C00C47C70124907916AF3F1 ] rdpdr           C:\WINDOWS\system32\DRIVERS\rdpdr.sys
08:10:43.0593 3372  rdpdr - ok
08:10:43.0625 3372  [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD           C:\WINDOWS\system32\drivers\RDPWD.sys
08:10:43.0640 3372  RDPWD - ok
08:10:43.0671 3372  [ 263AF18AF0F3DB99F574C95F284CCEC9 ] RDSessMgr       C:\WINDOWS\system32\sessmgr.exe
08:10:43.0687 3372  RDSessMgr - ok
08:10:43.0750 3372  [ ED761D453856F795A7FE056E42C36365 ] redbook         C:\WINDOWS\system32\DRIVERS\redbook.sys
08:10:43.0750 3372  redbook - ok
08:10:43.0796 3372  [ 0E97EC96D6942CEEC2D188CC2EB69A01 ] RemoteAccess    C:\WINDOWS\System32\mprdim.dll
08:10:43.0812 3372  RemoteAccess - ok
08:10:43.0921 3372  [ E4CD1F3D84E1C2CA0B8CF7501E201593 ] RemoteRegistry  C:\WINDOWS\system32\regsvc.dll
08:10:43.0921 3372  RemoteRegistry - ok
08:10:43.0984 3372  [ 2A02E21867497DF20B8FC95631395169 ] RpcLocator      C:\WINDOWS\system32\locator.exe
08:10:43.0984 3372  RpcLocator - ok
08:10:44.0031 3372  [ 3127AFBF2C1ED0AB14A1BBB7AAECB85B ] RpcSs           C:\WINDOWS\system32\rpcss.dll
08:10:44.0046 3372  RpcSs - ok
08:10:44.0093 3372  [ 4BDD71B4B521521499DFD14735C4F398 ] RSVP            C:\WINDOWS\system32\rsvp.exe
08:10:44.0093 3372  RSVP - ok
08:10:44.0125 3372  [ BC9C2EF22EE0320C079E3FF9B4D29951 ] RWKPUA          C:\WINDOWS\system32\drivers\SiUSBXp.sys
08:10:44.0125 3372  RWKPUA - ok
08:10:44.0140 3372  [ BC9C2EF22EE0320C079E3FF9B4D29951 ] RWKXP           C:\WINDOWS\system32\drivers\SiUSBXp.sys
08:10:44.0140 3372  RWKXP - ok
08:10:44.0171 3372  [ AFB8261B56CBA0D86AEB6DF682AF9785 ] SamSs           C:\WINDOWS\system32\lsass.exe
08:10:44.0171 3372  SamSs - ok
08:10:44.0218 3372  [ DCEC079FAD95D36C8DD5CB6D779DFE32 ] SCardSvr        C:\WINDOWS\System32\SCardSvr.exe
08:10:44.0234 3372  SCardSvr - ok
08:10:44.0296 3372  [ A050194A44D7FA8D7186ED2F4E8367AE ] Schedule        C:\WINDOWS\system32\schedsvc.dll
08:10:44.0296 3372  Schedule - ok
08:10:44.0328 3372  [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv          C:\WINDOWS\system32\DRIVERS\secdrv.sys
08:10:44.0328 3372  Secdrv - ok
08:10:44.0375 3372  [ BEE4CFD1D48C23B44CF4B974B0B79B2B ] seclogon        C:\WINDOWS\System32\seclogon.dll
08:10:44.0375 3372  seclogon - ok
08:10:44.0437 3372  [ 2AAC9B6ED9EDDFFB721D6452E34D67E3 ] SENS            C:\WINDOWS\system32\sens.dll
08:10:44.0437 3372  SENS - ok
08:10:44.0484 3372  [ AEBBA7428A6C40CCE3C5ABDE45190B24 ] Sentinel        C:\WINDOWS\System32\Drivers\SENTINEL.SYS
08:10:44.0484 3372  Sentinel - ok
08:10:44.0531 3372  [ 0F29512CCD6BEAD730039FB4BD2C85CE ] serenum         C:\WINDOWS\system32\DRIVERS\serenum.sys
08:10:44.0531 3372  serenum - ok
08:10:44.0593 3372  [ CF24EB4F0412C82BCD1F4F35A025E31D ] Serial          C:\WINDOWS\system32\DRIVERS\serial.sys
08:10:44.0593 3372  Serial - ok
08:10:44.0656 3372  [ B98460D74971F0223C2884779C3777F5 ] SerMon          C:\Programme\HHD Software\Free Serial Port Monitor\sermon.sys
08:10:44.0671 3372  SerMon - ok
08:10:44.0750 3372  [ 9D38320BB32230349379DF5DDBBF7FCE ] ServiceLayer    C:\Programme\PC Connectivity Solution\ServiceLayer.exe
08:10:44.0765 3372  ServiceLayer - ok
08:10:44.0859 3372  [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy         C:\WINDOWS\system32\drivers\Sfloppy.sys
08:10:44.0859 3372  Sfloppy - ok
08:10:44.0906 3372  [ 2DB7D303C36DDD055215052F118E8E75 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
08:10:44.0921 3372  ShellHWDetection - ok
08:10:44.0968 3372  [ 3EAD8E1668CE42A0AFE41D56E7157BCF ] silabenm        C:\WINDOWS\system32\DRIVERS\silabenm.sys
08:10:44.0968 3372  silabenm - ok
08:10:45.0046 3372  [ 5EC84546635D8F6E306F9C80FE09433D ] silabser        C:\WINDOWS\system32\DRIVERS\silabser.sys
08:10:45.0046 3372  silabser - ok
08:10:45.0046 3372  Simbad - ok
08:10:45.0078 3372  [ 6B33D0EBD30DB32E27D1D78FE946A754 ] sisagp          C:\WINDOWS\system32\DRIVERS\sisagp.sys
08:10:45.0093 3372  sisagp - ok
08:10:45.0125 3372  [ BC9C2EF22EE0320C079E3FF9B4D29951 ] SIUSBXP         C:\WINDOWS\system32\drivers\SiUSBXp.sys
08:10:45.0125 3372  SIUSBXP - ok
08:10:45.0187 3372  [ 444186C720885429A2354095C1938143 ] slabbus         C:\WINDOWS\system32\DRIVERS\slabbus.sys
08:10:45.0187 3372  slabbus - ok
08:10:45.0265 3372  [ ED71F8C82EF11C0DA1C57BE021A2FDC9 ] slabser         C:\WINDOWS\system32\DRIVERS\slabser.sys
08:10:45.0265 3372  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\slabser.sys. md5: ED71F8C82EF11C0DA1C57BE021A2FDC9
08:10:45.0296 3372  slabser ( LockedFile.Multi.Generic ) - warning
08:10:45.0296 3372  slabser - detected LockedFile.Multi.Generic (1)
08:10:45.0343 3372  [ 866D538EBE33709A5C9F5C62B73B7D14 ] SLIP            C:\WINDOWS\system32\DRIVERS\SLIP.sys
08:10:45.0343 3372  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\SLIP.sys. md5: 866D538EBE33709A5C9F5C62B73B7D14
08:10:45.0343 3372  SLIP ( LockedFile.Multi.Generic ) - warning
08:10:45.0343 3372  SLIP - detected LockedFile.Multi.Generic (1)
08:10:45.0375 3372  SMR311 - ok
08:10:45.0453 3372  [ A1FF7D99B199CEA1F3DF371BA70D2780 ] Sntnlusb        C:\WINDOWS\system32\DRIVERS\SNTNLUSB.SYS
08:10:45.0453 3372  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\SNTNLUSB.SYS. md5: A1FF7D99B199CEA1F3DF371BA70D2780
08:10:45.0468 3372  Sntnlusb ( LockedFile.Multi.Generic ) - warning
08:10:45.0468 3372  Sntnlusb - detected LockedFile.Multi.Generic (1)
08:10:45.0500 3372  [ 83C0F71F86D3BDAF915685F3D568B20E ] Sparrow         C:\WINDOWS\system32\DRIVERS\sparrow.sys
08:10:45.0500 3372  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\sparrow.sys. md5: 83C0F71F86D3BDAF915685F3D568B20E
08:10:45.0500 3372  Sparrow ( LockedFile.Multi.Generic ) - warning
08:10:45.0500 3372  Sparrow - detected LockedFile.Multi.Generic (1)
08:10:45.0578 3372  [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter        C:\WINDOWS\system32\drivers\splitter.sys
08:10:45.0578 3372  Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\splitter.sys. md5: AB8B92451ECB048A4D1DE7C3FFCB4A9F
08:10:45.0593 3372  splitter ( LockedFile.Multi.Generic ) - warning
08:10:45.0593 3372  splitter - detected LockedFile.Multi.Generic (1)
08:10:45.0640 3372  [ 60784F891563FB1B767F70117FC2428F ] Spooler         C:\WINDOWS\system32\spoolsv.exe
08:10:45.0640 3372  Spooler - ok
08:10:45.0703 3372  [ 86EBD8B1F23E743AAD21F4D5B4D40985 ] SQLBrowser      C:\Programme\Microsoft SQL Server\90\Shared\sqlbrowser.exe
08:10:45.0718 3372  SQLBrowser - ok
08:10:45.0765 3372  [ D89083C4EB02DACA8F944B0E05E57F9D ] SQLWriter       C:\Programme\Microsoft SQL Server\90\Shared\sqlwriter.exe
08:10:45.0765 3372  SQLWriter - ok
08:10:45.0859 3372  [ 50FA898F8C032796D3B1B9951BB5A90F ] sr              C:\WINDOWS\system32\DRIVERS\sr.sys
08:10:45.0859 3372  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\sr.sys. md5: 50FA898F8C032796D3B1B9951BB5A90F
08:10:45.0859 3372  sr ( LockedFile.Multi.Generic ) - warning
08:10:45.0859 3372  sr - detected LockedFile.Multi.Generic (1)
08:10:45.0906 3372  [ FE77A85495065F3AD59C5C65B6C54182 ] srservice       C:\WINDOWS\system32\srsvc.dll
08:10:45.0906 3372  srservice - ok
08:10:45.0984 3372  [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv             C:\WINDOWS\system32\DRIVERS\srv.sys
08:10:45.0984 3372  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\srv.sys. md5: 47DDFC2F003F7F9F0592C6874962A2E7
08:10:45.0984 3372  Srv ( LockedFile.Multi.Generic ) - warning
08:10:45.0984 3372  Srv - detected LockedFile.Multi.Generic (1)
08:10:46.0031 3372  [ D6870895FE46A464A19141440EB6CC1E ] sscdbus         C:\WINDOWS\system32\DRIVERS\sscdbus.sys
08:10:46.0031 3372  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\sscdbus.sys. md5: D6870895FE46A464A19141440EB6CC1E
08:10:46.0046 3372  sscdbus ( LockedFile.Multi.Generic ) - warning
08:10:46.0046 3372  sscdbus - detected LockedFile.Multi.Generic (1)
08:10:46.0109 3372  [ 0FE167362E4689B716CDC8D93ADEDDA8 ] sscdmdfl        C:\WINDOWS\system32\DRIVERS\sscdmdfl.sys
08:10:46.0109 3372  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\sscdmdfl.sys. md5: 0FE167362E4689B716CDC8D93ADEDDA8
08:10:46.0125 3372  sscdmdfl ( LockedFile.Multi.Generic ) - warning
08:10:46.0125 3372  sscdmdfl - detected LockedFile.Multi.Generic (1)
08:10:46.0187 3372  [ 55A15707E32B6709242AD127E62CA55A ] sscdmdm         C:\WINDOWS\system32\DRIVERS\sscdmdm.sys
08:10:46.0187 3372  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\sscdmdm.sys. md5: 55A15707E32B6709242AD127E62CA55A
08:10:46.0203 3372  sscdmdm ( LockedFile.Multi.Generic ) - warning
08:10:46.0203 3372  sscdmdm - detected LockedFile.Multi.Generic (1)
08:10:46.0250 3372  [ 4DF5B05DFAEC29E13E1ED6F6EE12C500 ] SSDPSRV         C:\WINDOWS\System32\ssdpsrv.dll
08:10:46.0265 3372  SSDPSRV - ok
08:10:46.0328 3372  [ BC2C5985611C5356B24AEB370953DED9 ] stisvc          C:\WINDOWS\system32\wiaservc.dll
08:10:46.0343 3372  stisvc - ok
08:10:46.0421 3372  [ E1D202F5A5C88CF915F51957D314066B ] STM Parallel Driver C:\WINDOWS\system32\drivers\parstm.sys
08:10:46.0421 3372  Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\parstm.sys. md5: E1D202F5A5C88CF915F51957D314066B
08:10:46.0437 3372  STM Parallel Driver ( LockedFile.Multi.Generic ) - warning
08:10:46.0437 3372  STM Parallel Driver - detected LockedFile.Multi.Generic (1)
08:10:46.0484 3372  [ 77813007BA6265C4B6098187E6ED79D2 ] streamip        C:\WINDOWS\system32\DRIVERS\StreamIP.sys
08:10:46.0484 3372  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\StreamIP.sys. md5: 77813007BA6265C4B6098187E6ED79D2
08:10:46.0500 3372  streamip ( LockedFile.Multi.Generic ) - warning
08:10:46.0500 3372  streamip - detected LockedFile.Multi.Generic (1)
08:10:46.0546 3372  [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum          C:\WINDOWS\system32\DRIVERS\swenum.sys
08:10:46.0546 3372  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\swenum.sys. md5: 3941D127AEF12E93ADDF6FE6EE027E0F
08:10:46.0562 3372  swenum ( LockedFile.Multi.Generic ) - warning
08:10:46.0562 3372  swenum - detected LockedFile.Multi.Generic (1)
08:10:46.0656 3372  [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi          C:\WINDOWS\system32\drivers\swmidi.sys
08:10:46.0656 3372  Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\swmidi.sys. md5: 8CE882BCC6CF8A62F2B2323D95CB3D01
08:10:46.0656 3372  swmidi ( LockedFile.Multi.Generic ) - warning
08:10:46.0656 3372  swmidi - detected LockedFile.Multi.Generic (1)
08:10:46.0671 3372  SwPrv - ok
08:10:46.0703 3372  [ 1FF3217614018630D0A6758630FC698C ] symc810         C:\WINDOWS\system32\DRIVERS\symc810.sys
08:10:46.0703 3372  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\symc810.sys. md5: 1FF3217614018630D0A6758630FC698C
08:10:46.0703 3372  symc810 ( LockedFile.Multi.Generic ) - warning
08:10:46.0703 3372  symc810 - detected LockedFile.Multi.Generic (1)
08:10:46.0734 3372  [ 070E001D95CF725186EF8B20335F933C ] symc8xx         C:\WINDOWS\system32\DRIVERS\symc8xx.sys
08:10:46.0734 3372  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\symc8xx.sys. md5: 070E001D95CF725186EF8B20335F933C
08:10:46.0734 3372  symc8xx ( LockedFile.Multi.Generic ) - warning
08:10:46.0734 3372  symc8xx - detected LockedFile.Multi.Generic (1)
08:10:46.0750 3372  [ 80AC1C4ABBE2DF3B738BF15517A51F2C ] sym_hi          C:\WINDOWS\system32\DRIVERS\sym_hi.sys
08:10:46.0750 3372  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\sym_hi.sys. md5: 80AC1C4ABBE2DF3B738BF15517A51F2C
08:10:46.0765 3372  sym_hi ( LockedFile.Multi.Generic ) - warning
08:10:46.0765 3372  sym_hi - detected LockedFile.Multi.Generic (1)
08:10:46.0781 3372  [ BF4FAB949A382A8E105F46EBB4937058 ] sym_u3          C:\WINDOWS\system32\DRIVERS\sym_u3.sys
08:10:46.0781 3372  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\sym_u3.sys. md5: BF4FAB949A382A8E105F46EBB4937058
08:10:46.0781 3372  sym_u3 ( LockedFile.Multi.Generic ) - warning
08:10:46.0781 3372  sym_u3 - detected LockedFile.Multi.Generic (1)
08:10:46.0875 3372  [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio        C:\WINDOWS\system32\drivers\sysaudio.sys
08:10:46.0875 3372  Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\sysaudio.sys. md5: 8B83F3ED0F1688B4958F77CD6D2BF290
08:10:46.0875 3372  sysaudio ( LockedFile.Multi.Generic ) - warning
08:10:46.0875 3372  sysaudio - detected LockedFile.Multi.Generic (1)
08:10:46.0937 3372  [ 2903FFFA2523926D6219428040DCE6B9 ] SysmonLog       C:\WINDOWS\system32\smlogsvc.exe
08:10:46.0937 3372  SysmonLog - ok
08:10:47.0000 3372  [ 05903CAC4B98908D55EA5774775B382E ] TapiSrv         C:\WINDOWS\System32\tapisrv.dll
08:10:47.0015 3372  TapiSrv - ok
08:10:47.0109 3372  [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip           C:\WINDOWS\system32\DRIVERS\tcpip.sys
08:10:47.0125 3372  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\tcpip.sys. md5: 9AEFA14BD6B182D61E3119FA5F436D3D
08:10:47.0140 3372  Tcpip ( LockedFile.Multi.Generic ) - warning
08:10:47.0140 3372  Tcpip - detected LockedFile.Multi.Generic (1)
08:10:47.0171 3372  [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE          C:\WINDOWS\system32\drivers\TDPIPE.sys
08:10:47.0187 3372  Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\TDPIPE.sys. md5: 6471A66807F5E104E4885F5B67349397
08:10:47.0187 3372  TDPIPE ( LockedFile.Multi.Generic ) - warning
08:10:47.0187 3372  TDPIPE - detected LockedFile.Multi.Generic (1)
08:10:47.0218 3372  [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP           C:\WINDOWS\system32\drivers\TDTCP.sys
08:10:47.0218 3372  Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\TDTCP.sys. md5: C56B6D0402371CF3700EB322EF3AAF61
08:10:47.0218 3372  TDTCP ( LockedFile.Multi.Generic ) - warning
08:10:47.0218 3372  TDTCP - detected LockedFile.Multi.Generic (1)
08:10:47.0281 3372  [ 88155247177638048422893737429D9E ] TermDD          C:\WINDOWS\system32\DRIVERS\termdd.sys
08:10:47.0281 3372  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\termdd.sys. md5: 88155247177638048422893737429D9E
08:10:47.0281 3372  TermDD ( LockedFile.Multi.Generic ) - warning
08:10:47.0281 3372  TermDD - detected LockedFile.Multi.Generic (1)
08:10:47.0343 3372  [ B7DE02C863D8F5A005A7BF375375A6A4 ] TermService     C:\WINDOWS\System32\termsrv.dll
08:10:47.0359 3372  TermService - ok
08:10:47.0390 3372  [ 2DB7D303C36DDD055215052F118E8E75 ] Themes          C:\WINDOWS\System32\shsvcs.dll
08:10:47.0390 3372  Themes - ok
08:10:47.0453 3372  [ 03681A1CE77F51586903869A5AB1DEAB ] TlntSvr         C:\WINDOWS\system32\tlntsvr.exe
08:10:47.0453 3372  TlntSvr - ok
08:10:47.0500 3372  [ D213A9247DC347F305A2D4CC9B951487 ] TosIde          C:\WINDOWS\system32\DRIVERS\toside.sys
08:10:47.0500 3372  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\toside.sys. md5: D213A9247DC347F305A2D4CC9B951487
08:10:47.0515 3372  TosIde ( LockedFile.Multi.Generic ) - warning
08:10:47.0515 3372  TosIde - detected LockedFile.Multi.Generic (1)
08:10:47.0578 3372  [ 626504572B175867F30F3215C04B3E2F ] TrkWks          C:\WINDOWS\system32\trkwks.dll
08:10:47.0578 3372  TrkWks - ok
08:10:47.0640 3372  [ 20BD83726D69316C3817D1134E5BC465 ] TTUSB2          C:\WINDOWS\system32\Drivers\ttusb2.sys
08:10:47.0640 3372  Suspicious file (NoAccess): C:\WINDOWS\system32\Drivers\ttusb2.sys. md5: 20BD83726D69316C3817D1134E5BC465
08:10:47.0656 3372  TTUSB2 ( LockedFile.Multi.Generic ) - warning
08:10:47.0656 3372  TTUSB2 - detected LockedFile.Multi.Generic (1)
08:10:47.0703 3372  [ 607FC73722F62E1820C8183D58ED1668 ] TVICPORT        C:\WINDOWS\SYSTEM32\DRIVERS\TVICPORT.SYS
08:10:47.0703 3372  Suspicious file (NoAccess): C:\WINDOWS\SYSTEM32\DRIVERS\TVICPORT.SYS. md5: 607FC73722F62E1820C8183D58ED1668
08:10:47.0703 3372  TVICPORT ( LockedFile.Multi.Generic ) - warning
08:10:47.0703 3372  TVICPORT - detected LockedFile.Multi.Generic (1)
08:10:47.0750 3372  [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs            C:\WINDOWS\system32\drivers\Udfs.sys
08:10:47.0750 3372  Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\Udfs.sys. md5: 5787B80C2E3C5E2F56C2A233D91FA2C9
08:10:47.0765 3372  Udfs ( LockedFile.Multi.Generic ) - warning
08:10:47.0765 3372  Udfs - detected LockedFile.Multi.Generic (1)
08:10:47.0796 3372  [ 1B698A51CD528D8DA4FFAED66DFC51B9 ] ultra           C:\WINDOWS\system32\DRIVERS\ultra.sys
08:10:47.0796 3372  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\ultra.sys. md5: 1B698A51CD528D8DA4FFAED66DFC51B9
08:10:47.0812 3372  ultra ( LockedFile.Multi.Generic ) - warning
08:10:47.0812 3372  ultra - detected LockedFile.Multi.Generic (1)
08:10:47.0906 3372  [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update          C:\WINDOWS\system32\DRIVERS\update.sys
08:10:47.0906 3372  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\update.sys. md5: 402DDC88356B1BAC0EE3DD1580C76A31
08:10:47.0906 3372  Update ( LockedFile.Multi.Generic ) - warning
08:10:47.0906 3372  Update - detected LockedFile.Multi.Generic (1)
08:10:47.0953 3372  [ 1DFD8975D8C89214B98D9387C1125B49 ] upnphost        C:\WINDOWS\System32\upnphost.dll
08:10:47.0953 3372  upnphost - ok
08:10:48.0000 3372  [ 9B11E6118958E63E1FEF129466E2BDA7 ] UPS             C:\WINDOWS\System32\ups.exe
08:10:48.0000 3372  UPS - ok
08:10:48.0046 3372  [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp         C:\WINDOWS\system32\DRIVERS\usbccgp.sys
08:10:48.0046 3372  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\usbccgp.sys. md5: 173F317CE0DB8E21322E71B7E60A27E8
08:10:48.0078 3372  usbccgp ( LockedFile.Multi.Generic ) - warning
08:10:48.0078 3372  usbccgp - detected LockedFile.Multi.Generic (1)
08:10:48.0109 3372  [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci         C:\WINDOWS\system32\DRIVERS\usbehci.sys
08:10:48.0109 3372  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\usbehci.sys. md5: 65DCF09D0E37D4C6B11B5B0B76D470A7
08:10:48.0109 3372  usbehci ( LockedFile.Multi.Generic ) - warning
08:10:48.0109 3372  usbehci - detected LockedFile.Multi.Generic (1)
08:10:48.0156 3372  [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub          C:\WINDOWS\system32\DRIVERS\usbhub.sys
08:10:48.0156 3372  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\usbhub.sys. md5: 1AB3CDDE553B6E064D2E754EFE20285C
08:10:48.0156 3372  usbhub ( LockedFile.Multi.Generic ) - warning
08:10:48.0156 3372  usbhub - detected LockedFile.Multi.Generic (1)
08:10:48.0187 3372  [ A717C8721046828520C9EDF31288FC00 ] usbprint        C:\WINDOWS\system32\DRIVERS\usbprint.sys
08:10:48.0187 3372  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\usbprint.sys. md5: A717C8721046828520C9EDF31288FC00
08:10:48.0187 3372  usbprint ( LockedFile.Multi.Generic ) - warning
08:10:48.0187 3372  usbprint - detected LockedFile.Multi.Generic (1)
08:10:48.0250 3372  [ 1C888B000C2F9492F4B15B5B6B84873E ] usbser          C:\WINDOWS\system32\DRIVERS\usbser.sys
08:10:48.0250 3372  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\usbser.sys. md5: 1C888B000C2F9492F4B15B5B6B84873E
08:10:48.0250 3372  usbser ( LockedFile.Multi.Generic ) - warning
08:10:48.0250 3372  usbser - detected LockedFile.Multi.Generic (1)
08:10:48.0296 3372  [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR         C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
08:10:48.0296 3372  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS. md5: A32426D9B14A089EAA1D922E0C5801A9
08:10:48.0296 3372  USBSTOR ( LockedFile.Multi.Generic ) - warning
08:10:48.0296 3372  USBSTOR - detected LockedFile.Multi.Generic (1)
08:10:48.0343 3372  [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci         C:\WINDOWS\system32\DRIVERS\usbuhci.sys
08:10:48.0343 3372  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\usbuhci.sys. md5: 26496F9DEE2D787FC3E61AD54821FFE6
08:10:48.0359 3372  usbuhci ( LockedFile.Multi.Generic ) - warning
08:10:48.0359 3372  usbuhci - detected LockedFile.Multi.Generic (1)
08:10:48.0406 3372  [ 63BBFCA7F390F4C49ED4B96BFB1633E0 ] usbvideo        C:\WINDOWS\system32\Drivers\usbvideo.sys
08:10:48.0406 3372  Suspicious file (NoAccess): C:\WINDOWS\system32\Drivers\usbvideo.sys. md5: 63BBFCA7F390F4C49ED4B96BFB1633E0
08:10:48.0421 3372  usbvideo ( LockedFile.Multi.Generic ) - warning
08:10:48.0421 3372  usbvideo - detected LockedFile.Multi.Generic (1)
08:10:48.0484 3372  [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave         C:\WINDOWS\System32\drivers\vga.sys
08:10:48.0484 3372  Suspicious file (NoAccess): C:\WINDOWS\System32\drivers\vga.sys. md5: 0D3A8FAFCEACD8B7625CD549757A7DF1
08:10:48.0500 3372  VgaSave ( LockedFile.Multi.Generic ) - warning
08:10:48.0500 3372  VgaSave - detected LockedFile.Multi.Generic (1)
08:10:48.0515 3372  [ 754292CE5848B3738281B4F3607EAEF4 ] viaagp          C:\WINDOWS\system32\DRIVERS\viaagp.sys
08:10:48.0515 3372  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\viaagp.sys. md5: 754292CE5848B3738281B4F3607EAEF4
08:10:48.0515 3372  viaagp ( LockedFile.Multi.Generic ) - warning
08:10:48.0515 3372  viaagp - detected LockedFile.Multi.Generic (1)
08:10:48.0546 3372  [ 3B3EFCDA263B8AC14FDF9CBDD0791B2E ] ViaIde          C:\WINDOWS\system32\DRIVERS\viaide.sys
08:10:48.0562 3372  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\viaide.sys. md5: 3B3EFCDA263B8AC14FDF9CBDD0791B2E
08:10:48.0562 3372  ViaIde ( LockedFile.Multi.Generic ) - warning
08:10:48.0562 3372  ViaIde - detected LockedFile.Multi.Generic (1)
08:10:48.0609 3372  [ A5A712F4E880874A477AF790B5186E1D ] VolSnap         C:\WINDOWS\system32\drivers\VolSnap.sys
08:10:48.0609 3372  Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\VolSnap.sys. md5: A5A712F4E880874A477AF790B5186E1D
08:10:48.0609 3372  VolSnap ( LockedFile.Multi.Generic ) - warning
08:10:48.0609 3372  VolSnap - detected LockedFile.Multi.Generic (1)
08:10:48.0640 3372  [ 68F106273BE29E7B7EF8266977268E78 ] VSS             C:\WINDOWS\System32\vssvc.exe
08:10:48.0656 3372  VSS - ok
08:10:48.0703 3372  [ 7B353059E665F8B7AD2BBEAEF597CF45 ] W32Time         C:\WINDOWS\system32\w32time.dll
08:10:48.0718 3372  W32Time - ok
08:10:48.0765 3372  [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp          C:\WINDOWS\system32\DRIVERS\wanarp.sys
08:10:48.0765 3372  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\wanarp.sys. md5: E20B95BAEDB550F32DD489265C1DA1F6
08:10:48.0796 3372  Wanarp ( LockedFile.Multi.Generic ) - warning
08:10:48.0796 3372  Wanarp - detected LockedFile.Multi.Generic (1)
08:10:48.0828 3372  [ 46A247F6617526AFE38B6F12F5512120 ] wceusbsh        C:\WINDOWS\system32\DRIVERS\wceusbsh.sys
08:10:48.0828 3372  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\wceusbsh.sys. md5: 46A247F6617526AFE38B6F12F5512120
08:10:48.0828 3372  wceusbsh ( LockedFile.Multi.Generic ) - warning
08:10:48.0828 3372  wceusbsh - detected LockedFile.Multi.Generic (1)
08:10:48.0906 3372  [ D918617B46457B9AC28027722E30F647 ] Wdf01000        C:\WINDOWS\system32\Drivers\wdf01000.sys
08:10:48.0906 3372  Suspicious file (NoAccess): C:\WINDOWS\system32\Drivers\wdf01000.sys. md5: D918617B46457B9AC28027722E30F647
08:10:48.0921 3372  Wdf01000 ( LockedFile.Multi.Generic ) - warning
08:10:48.0921 3372  Wdf01000 - detected LockedFile.Multi.Generic (1)
08:10:48.0937 3372  WDICA - ok
08:10:48.0968 3372  [ 6768ACF64B18196494413695F0C3A00F ] wdmaud          C:\WINDOWS\system32\drivers\wdmaud.sys
08:10:48.0984 3372  Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\wdmaud.sys. md5: 6768ACF64B18196494413695F0C3A00F
08:10:48.0984 3372  wdmaud ( LockedFile.Multi.Generic ) - warning
08:10:48.0984 3372  wdmaud - detected LockedFile.Multi.Generic (1)
08:10:49.0031 3372  [ 81727C9873E3905A2FFC1EBD07265002 ] WebClient       C:\WINDOWS\System32\webclnt.dll
08:10:49.0046 3372  WebClient - ok
08:10:49.0093 3372  [ 2C7D830E86B378771AF5DAFEAE428A09 ] WinDriver6      C:\WINDOWS\system32\drivers\windrvr6.sys
08:10:49.0093 3372  Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\windrvr6.sys. md5: 2C7D830E86B378771AF5DAFEAE428A09
08:10:49.0109 3372  WinDriver6 ( LockedFile.Multi.Generic ) - warning
08:10:49.0109 3372  WinDriver6 - detected LockedFile.Multi.Generic (1)
08:10:49.0187 3372  [ 6F3F3973D97714CC5F906A19FE883729 ] winmgmt         C:\WINDOWS\system32\wbem\WMIsvc.dll
08:10:49.0187 3372  winmgmt - ok
08:10:49.0234 3372  [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN        C:\WINDOWS\system32\MsPMSNSv.dll
08:10:49.0234 3372  WmdmPmSN - ok
08:10:49.0281 3372  [ FFA4D901D46D07A5BAB2D8307FBB51A6 ] Wmi             C:\WINDOWS\System32\advapi32.dll
08:10:49.0296 3372  Wmi - ok
08:10:49.0328 3372  [ 93908111BA57A6E60EC2FA2DE202105C ] WmiApSrv        C:\WINDOWS\system32\wbem\wmiapsrv.exe
08:10:49.0328 3372  WmiApSrv - ok
08:10:49.0421 3372  [ BF05650BB7DF5E9EBDD25974E22403BB ] WMPNetworkSvc   C:\Programme\Windows Media Player\WMPNetwk.exe
08:10:49.0453 3372  WMPNetworkSvc - ok
08:10:49.0515 3372  [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] WS2IFSL         C:\WINDOWS\System32\drivers\ws2ifsl.sys
08:10:49.0515 3372  Suspicious file (NoAccess): C:\WINDOWS\System32\drivers\ws2ifsl.sys. md5: 6ABE6E225ADB5A751622A9CC3BC19CE8
08:10:49.0546 3372  WS2IFSL ( LockedFile.Multi.Generic ) - warning
08:10:49.0546 3372  WS2IFSL - detected LockedFile.Multi.Generic (1)
08:10:49.0593 3372  [ C98B39829C2BBD34E454150633C62C78 ] WSTCODEC        C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
08:10:49.0593 3372  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS. md5: C98B39829C2BBD34E454150633C62C78
08:10:49.0593 3372  WSTCODEC ( LockedFile.Multi.Generic ) - warning
08:10:49.0593 3372  WSTCODEC - detected LockedFile.Multi.Generic (1)
08:10:49.0640 3372  [ 7B4FE05202AA6BF9F4DFD0E6A0D8A085 ] wuauserv        C:\WINDOWS\system32\wuauserv.dll
08:10:49.0640 3372  wuauserv - ok
08:10:49.0687 3372  [ F15FEAFFFBB3644CCC80C5DA584E6311 ] WudfPf          C:\WINDOWS\system32\DRIVERS\WudfPf.sys
08:10:49.0687 3372  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\WudfPf.sys. md5: F15FEAFFFBB3644CCC80C5DA584E6311
08:10:49.0687 3372  WudfPf ( LockedFile.Multi.Generic ) - warning
08:10:49.0687 3372  WudfPf - detected LockedFile.Multi.Generic (1)
08:10:49.0703 3372  [ 28B524262BCE6DE1F7EF9F510BA3985B ] WudfRd          C:\WINDOWS\system32\DRIVERS\wudfrd.sys
08:10:49.0703 3372  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\wudfrd.sys. md5: 28B524262BCE6DE1F7EF9F510BA3985B
08:10:49.0703 3372  WudfRd ( LockedFile.Multi.Generic ) - warning
08:10:49.0703 3372  WudfRd - detected LockedFile.Multi.Generic (1)
08:10:49.0734 3372  [ 05231C04253C5BC30B26CBAAE680ED89 ] WudfSvc         C:\WINDOWS\System32\WUDFSvc.dll
08:10:49.0750 3372  WudfSvc - ok
08:10:49.0812 3372  [ C4F109C005F6725162D2D12CA751E4A7 ] WZCSVC          C:\WINDOWS\System32\wzcsvc.dll
08:10:49.0828 3372  WZCSVC - ok
08:10:49.0890 3372  [ EEB1D6B491F6448A6214A8043266E566 ] XilinxPC4Driver C:\WINDOWS\System32\drivers\XPC4DRVR.SYS
08:10:49.0890 3372  Suspicious file (NoAccess): C:\WINDOWS\System32\drivers\XPC4DRVR.SYS. md5: EEB1D6B491F6448A6214A8043266E566
08:10:49.0906 3372  XilinxPC4Driver ( LockedFile.Multi.Generic ) - warning
08:10:49.0906 3372  XilinxPC4Driver - detected LockedFile.Multi.Generic (1)
08:10:49.0953 3372  [ 0ADA34871A2E1CD2CAAFED1237A47750 ] xmlprov         C:\WINDOWS\System32\xmlprov.dll
08:10:49.0968 3372  xmlprov - ok
08:10:50.0000 3372  ================ Scan global ===============================
08:10:50.0062 3372  [ 2C60091CA5F67C3032EAB3B30390C27F ] C:\WINDOWS\system32\basesrv.dll
08:10:50.0109 3372  [ A28CE25B59C90E12743001A1F2AE3613 ] C:\WINDOWS\system32\winsrv.dll
08:10:50.0125 3372  [ A28CE25B59C90E12743001A1F2AE3613 ] C:\WINDOWS\system32\winsrv.dll
08:10:50.0156 3372  [ A3EDBE9053889FB24AB22492472B39DC ] C:\WINDOWS\system32\services.exe
08:10:50.0156 3372  [Global] - ok
08:10:50.0156 3372  ================ Scan MBR ==================================
08:10:50.0171 3372  [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk0\DR0
08:10:50.0359 3372  \Device\Harddisk0\DR0 - ok
08:10:50.0390 3372  [ 72B8CE41AF0DE751C946802B3ED844B4 ] \Device\Harddisk1\DR1
08:10:50.0562 3372  \Device\Harddisk1\DR1 - ok
08:10:50.0562 3372  ================ Scan VBR ==================================
08:10:50.0562 3372  [ C106CB2838AEDB4386C0BFEE39759877 ] \Device\Harddisk0\DR0\Partition1
08:10:50.0562 3372  \Device\Harddisk0\DR0\Partition1 - ok
08:10:50.0593 3372  [ C1A818F0F9A20E756708C33D74BF1CEB ] \Device\Harddisk0\DR0\Partition2
08:10:50.0593 3372  \Device\Harddisk0\DR0\Partition2 - ok
08:10:50.0593 3372  [ DF04922DD6C101B08219DF451C2AAE38 ] \Device\Harddisk1\DR1\Partition1
08:10:50.0593 3372  \Device\Harddisk1\DR1\Partition1 - ok
08:10:50.0593 3372  ============================================================
08:10:50.0593 3372  Scan finished
08:10:50.0593 3372  ============================================================
08:10:50.0625 3008  Detected object count: 52
08:10:50.0625 3008  Actual detected object count: 52
08:12:34.0515 3008  4d3ab16ba79b8771 ( Rootkit.Win32.Necurs.gen ) - skipped by user
08:12:34.0515 3008  4d3ab16ba79b8771 ( Rootkit.Win32.Necurs.gen ) - User select action: Skip
08:12:34.0515 3008  slabser ( LockedFile.Multi.Generic ) - skipped by user
08:12:34.0515 3008  slabser ( LockedFile.Multi.Generic ) - User select action: Skip
08:12:34.0515 3008  SLIP ( LockedFile.Multi.Generic ) - skipped by user
08:12:34.0515 3008  SLIP ( LockedFile.Multi.Generic ) - User select action: Skip
08:12:34.0515 3008  Sntnlusb ( LockedFile.Multi.Generic ) - skipped by user
08:12:34.0515 3008  Sntnlusb ( LockedFile.Multi.Generic ) - User select action: Skip
08:12:34.0515 3008  Sparrow ( LockedFile.Multi.Generic ) - skipped by user
08:12:34.0515 3008  Sparrow ( LockedFile.Multi.Generic ) - User select action: Skip
08:12:34.0515 3008  splitter ( LockedFile.Multi.Generic ) - skipped by user
08:12:34.0515 3008  splitter ( LockedFile.Multi.Generic ) - User select action: Skip
08:12:34.0515 3008  sr ( LockedFile.Multi.Generic ) - skipped by user
08:12:34.0515 3008  sr ( LockedFile.Multi.Generic ) - User select action: Skip
08:12:34.0515 3008  Srv ( LockedFile.Multi.Generic ) - skipped by user
08:12:34.0515 3008  Srv ( LockedFile.Multi.Generic ) - User select action: Skip
08:12:34.0515 3008  sscdbus ( LockedFile.Multi.Generic ) - skipped by user
08:12:34.0515 3008  sscdbus ( LockedFile.Multi.Generic ) - User select action: Skip
08:12:34.0515 3008  sscdmdfl ( LockedFile.Multi.Generic ) - skipped by user
08:12:34.0531 3008  sscdmdfl ( LockedFile.Multi.Generic ) - User select action: Skip
08:12:34.0531 3008  sscdmdm ( LockedFile.Multi.Generic ) - skipped by user
08:12:34.0531 3008  sscdmdm ( LockedFile.Multi.Generic ) - User select action: Skip
08:12:34.0531 3008  STM Parallel Driver ( LockedFile.Multi.Generic ) - skipped by user
08:12:34.0531 3008  STM Parallel Driver ( LockedFile.Multi.Generic ) - User select action: Skip
08:12:34.0546 3008  streamip ( LockedFile.Multi.Generic ) - skipped by user
08:12:34.0546 3008  streamip ( LockedFile.Multi.Generic ) - User select action: Skip
08:12:34.0546 3008  swenum ( LockedFile.Multi.Generic ) - skipped by user
08:12:34.0546 3008  swenum ( LockedFile.Multi.Generic ) - User select action: Skip
08:12:34.0546 3008  swmidi ( LockedFile.Multi.Generic ) - skipped by user
08:12:34.0546 3008  swmidi ( LockedFile.Multi.Generic ) - User select action: Skip
08:12:34.0546 3008  symc810 ( LockedFile.Multi.Generic ) - skipped by user
08:12:34.0546 3008  symc810 ( LockedFile.Multi.Generic ) - User select action: Skip
08:12:34.0546 3008  symc8xx ( LockedFile.Multi.Generic ) - skipped by user
08:12:34.0546 3008  symc8xx ( LockedFile.Multi.Generic ) - User select action: Skip
08:12:34.0546 3008  sym_hi ( LockedFile.Multi.Generic ) - skipped by user
08:12:34.0546 3008  sym_hi ( LockedFile.Multi.Generic ) - User select action: Skip
08:12:34.0546 3008  sym_u3 ( LockedFile.Multi.Generic ) - skipped by user
08:12:34.0546 3008  sym_u3 ( LockedFile.Multi.Generic ) - User select action: Skip
08:12:34.0562 3008  sysaudio ( LockedFile.Multi.Generic ) - skipped by user
08:12:34.0562 3008  sysaudio ( LockedFile.Multi.Generic ) - User select action: Skip
08:12:34.0562 3008  Tcpip ( LockedFile.Multi.Generic ) - skipped by user
08:12:34.0562 3008  Tcpip ( LockedFile.Multi.Generic ) - User select action: Skip
08:12:34.0562 3008  TDPIPE ( LockedFile.Multi.Generic ) - skipped by user
08:12:34.0562 3008  TDPIPE ( LockedFile.Multi.Generic ) - User select action: Skip
08:12:34.0562 3008  TDTCP ( LockedFile.Multi.Generic ) - skipped by user
08:12:34.0562 3008  TDTCP ( LockedFile.Multi.Generic ) - User select action: Skip
08:12:34.0562 3008  TermDD ( LockedFile.Multi.Generic ) - skipped by user
08:12:34.0562 3008  TermDD ( LockedFile.Multi.Generic ) - User select action: Skip
08:12:34.0562 3008  TosIde ( LockedFile.Multi.Generic ) - skipped by user
08:12:34.0562 3008  TosIde ( LockedFile.Multi.Generic ) - User select action: Skip
08:12:34.0562 3008  TTUSB2 ( LockedFile.Multi.Generic ) - skipped by user
08:12:34.0562 3008  TTUSB2 ( LockedFile.Multi.Generic ) - User select action: Skip
08:12:34.0578 3008  TVICPORT ( LockedFile.Multi.Generic ) - skipped by user
08:12:34.0578 3008  TVICPORT ( LockedFile.Multi.Generic ) - User select action: Skip
08:12:34.0578 3008  Udfs ( LockedFile.Multi.Generic ) - skipped by user
08:12:34.0578 3008  Udfs ( LockedFile.Multi.Generic ) - User select action: Skip
08:12:34.0578 3008  ultra ( LockedFile.Multi.Generic ) - skipped by user
08:12:34.0578 3008  ultra ( LockedFile.Multi.Generic ) - User select action: Skip
08:12:34.0578 3008  Update ( LockedFile.Multi.Generic ) - skipped by user
08:12:34.0578 3008  Update ( LockedFile.Multi.Generic ) - User select action: Skip
08:12:34.0578 3008  usbccgp ( LockedFile.Multi.Generic ) - skipped by user
08:12:34.0578 3008  usbccgp ( LockedFile.Multi.Generic ) - User select action: Skip
08:12:34.0578 3008  usbehci ( LockedFile.Multi.Generic ) - skipped by user
08:12:34.0578 3008  usbehci ( LockedFile.Multi.Generic ) - User select action: Skip
08:12:34.0578 3008  usbhub ( LockedFile.Multi.Generic ) - skipped by user
08:12:34.0578 3008  usbhub ( LockedFile.Multi.Generic ) - User select action: Skip
08:12:34.0578 3008  usbprint ( LockedFile.Multi.Generic ) - skipped by user
08:12:34.0578 3008  usbprint ( LockedFile.Multi.Generic ) - User select action: Skip
08:12:34.0593 3008  usbser ( LockedFile.Multi.Generic ) - skipped by user
08:12:34.0593 3008  usbser ( LockedFile.Multi.Generic ) - User select action: Skip
08:12:34.0593 3008  USBSTOR ( LockedFile.Multi.Generic ) - skipped by user
08:12:34.0593 3008  USBSTOR ( LockedFile.Multi.Generic ) - User select action: Skip
08:12:34.0593 3008  usbuhci ( LockedFile.Multi.Generic ) - skipped by user
08:12:34.0593 3008  usbuhci ( LockedFile.Multi.Generic ) - User select action: Skip
08:12:34.0593 3008  usbvideo ( LockedFile.Multi.Generic ) - skipped by user
08:12:34.0593 3008  usbvideo ( LockedFile.Multi.Generic ) - User select action: Skip
08:12:34.0593 3008  VgaSave ( LockedFile.Multi.Generic ) - skipped by user
08:12:34.0593 3008  VgaSave ( LockedFile.Multi.Generic ) - User select action: Skip
08:12:34.0593 3008  viaagp ( LockedFile.Multi.Generic ) - skipped by user
08:12:34.0593 3008  viaagp ( LockedFile.Multi.Generic ) - User select action: Skip
08:12:34.0593 3008  ViaIde ( LockedFile.Multi.Generic ) - skipped by user
08:12:34.0593 3008  ViaIde ( LockedFile.Multi.Generic ) - User select action: Skip
08:12:34.0593 3008  VolSnap ( LockedFile.Multi.Generic ) - skipped by user
08:12:34.0593 3008  VolSnap ( LockedFile.Multi.Generic ) - User select action: Skip
08:12:34.0593 3008  Wanarp ( LockedFile.Multi.Generic ) - skipped by user
08:12:34.0593 3008  Wanarp ( LockedFile.Multi.Generic ) - User select action: Skip
08:12:34.0609 3008  wceusbsh ( LockedFile.Multi.Generic ) - skipped by user
08:12:34.0609 3008  wceusbsh ( LockedFile.Multi.Generic ) - User select action: Skip
08:12:34.0609 3008  Wdf01000 ( LockedFile.Multi.Generic ) - skipped by user
08:12:34.0609 3008  Wdf01000 ( LockedFile.Multi.Generic ) - User select action: Skip
08:12:34.0609 3008  wdmaud ( LockedFile.Multi.Generic ) - skipped by user
08:12:34.0609 3008  wdmaud ( LockedFile.Multi.Generic ) - User select action: Skip
08:12:34.0609 3008  WinDriver6 ( LockedFile.Multi.Generic ) - skipped by user
08:12:34.0609 3008  WinDriver6 ( LockedFile.Multi.Generic ) - User select action: Skip
08:12:34.0609 3008  WS2IFSL ( LockedFile.Multi.Generic ) - skipped by user
08:12:34.0609 3008  WS2IFSL ( LockedFile.Multi.Generic ) - User select action: Skip
08:12:34.0609 3008  WSTCODEC ( LockedFile.Multi.Generic ) - skipped by user
08:12:34.0609 3008  WSTCODEC ( LockedFile.Multi.Generic ) - User select action: Skip
08:12:34.0609 3008  WudfPf ( LockedFile.Multi.Generic ) - skipped by user
08:12:34.0609 3008  WudfPf ( LockedFile.Multi.Generic ) - User select action: Skip
08:12:34.0625 3008  WudfRd ( LockedFile.Multi.Generic ) - skipped by user
08:12:34.0625 3008  WudfRd ( LockedFile.Multi.Generic ) - User select action: Skip
08:12:34.0625 3008  XilinxPC4Driver ( LockedFile.Multi.Generic ) - skipped by user
08:12:34.0625 3008  XilinxPC4Driver ( LockedFile.Multi.Generic ) - User select action: Skip
08:12:46.0125 3028  ============================================================
08:12:46.0125 3028  Scan started
08:12:46.0125 3028  Mode: Manual;
08:12:46.0125 3028  ============================================================
08:12:46.0296 3028  ================ Scan system memory ========================
08:12:46.0296 3028  System memory - ok
08:12:46.0296 3028  ================ Scan services =============================
08:12:46.0328 3028  Suspicious service (NoAccess): 4d3ab16ba79b8771
08:12:46.0500 3028  [ 0907292986E05A8752BC1863556D229E ] 4d3ab16ba79b8771 C:\WINDOWS\System32\Drivers\4d3ab16ba79b8771.sys
08:12:46.0500 3028  Suspicious file (NoAccess): C:\WINDOWS\System32\Drivers\4d3ab16ba79b8771.sys. md5: 0907292986E05A8752BC1863556D229E
08:12:46.0515 3028  4d3ab16ba79b8771 ( Rootkit.Win32.Necurs.gen ) - infected
08:12:46.0515 3028  4d3ab16ba79b8771 - detected Rootkit.Win32.Necurs.gen (0)
08:12:46.0656 3028  [ A8A4E18857CDFD8D9AB81E2C9EAF89B5 ] a2acc           C:\PROGRAMME\EMSISOFT ANTI-MALWARE\a2accx86.sys
08:12:46.0656 3028  a2acc - ok
08:12:46.0781 3028  [ E327C0DE1D7013BE360881801C0AB0FA ] a2AntiMalware   C:\Programme\Emsisoft Anti-Malware\a2service.exe
08:12:46.0796 3028  a2AntiMalware - ok
08:12:46.0859 3028  [ F7EABCA8375EA2DC6F35C4BCA4757515 ] A2DDA           C:\Programme\Emsisoft Anti-Malware\a2ddax86.sys
08:12:46.0859 3028  A2DDA - ok
08:12:46.0890 3028  [ 2DA26EB05B5495D3B2EE36456C239FB7 ] a2util          C:\Programme\Emsisoft Anti-Malware\a2util32.sys
08:12:46.0890 3028  a2util - ok
08:12:46.0953 3028  [ 1FEC1C2506A20F0D2AF9D5D530B24CB3 ] a320raid        C:\WINDOWS\system32\DRIVERS\a320raid.sys
08:12:46.0953 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\a320raid.sys. md5: 1FEC1C2506A20F0D2AF9D5D530B24CB3
08:12:46.0968 3028  a320raid ( LockedFile.Multi.Generic ) - warning
08:12:46.0968 3028  a320raid - detected LockedFile.Multi.Generic (1)
08:12:46.0968 3028  Abiosdsk - ok
08:12:46.0984 3028  [ 6ABB91494FE6C59089B9336452AB2EA3 ] abp480n5        C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS
08:12:46.0984 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS. md5: 6ABB91494FE6C59089B9336452AB2EA3
08:12:47.0000 3028  abp480n5 ( LockedFile.Multi.Generic ) - warning
08:12:47.0000 3028  abp480n5 - detected LockedFile.Multi.Generic (1)
08:12:47.0093 3028  [ AC407F1A62C3A300B4F2B5A9F1D55B2C ] ACPI            C:\WINDOWS\system32\DRIVERS\ACPI.sys
08:12:47.0093 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\ACPI.sys. md5: AC407F1A62C3A300B4F2B5A9F1D55B2C
08:12:47.0093 3028  ACPI ( LockedFile.Multi.Generic ) - warning
08:12:47.0093 3028  ACPI - detected LockedFile.Multi.Generic (1)
08:12:47.0125 3028  [ 9E1CA3160DAFB159CA14F83B1E317F75 ] ACPIEC          C:\WINDOWS\system32\drivers\ACPIEC.sys
08:12:47.0125 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\ACPIEC.sys. md5: 9E1CA3160DAFB159CA14F83B1E317F75
08:12:47.0125 3028  ACPIEC ( LockedFile.Multi.Generic ) - warning
08:12:47.0125 3028  ACPIEC - detected LockedFile.Multi.Generic (1)
08:12:47.0218 3028  [ 0CB0AA071C7B86A64F361DCFDF357329 ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
08:12:47.0218 3028  AdobeFlashPlayerUpdateSvc - ok
08:12:47.0281 3028  [ 9A11864873DA202C996558B2106B0BBC ] adpu160m        C:\WINDOWS\system32\DRIVERS\adpu160m.sys
08:12:47.0281 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\adpu160m.sys. md5: 9A11864873DA202C996558B2106B0BBC
08:12:47.0296 3028  adpu160m ( LockedFile.Multi.Generic ) - warning
08:12:47.0296 3028  adpu160m - detected LockedFile.Multi.Generic (1)
08:12:47.0343 3028  [ E4E13CE4C85C7E45A643BA54B8C8B16B ] adpu320         C:\WINDOWS\system32\DRIVERS\adpu320.sys
08:12:47.0343 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\adpu320.sys. md5: E4E13CE4C85C7E45A643BA54B8C8B16B
08:12:47.0343 3028  adpu320 ( LockedFile.Multi.Generic ) - warning
08:12:47.0343 3028  adpu320 - detected LockedFile.Multi.Generic (1)
08:12:47.0390 3028  [ 8BED39E3C35D6A489438B8141717A557 ] aec             C:\WINDOWS\system32\drivers\aec.sys
08:12:47.0390 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\aec.sys. md5: 8BED39E3C35D6A489438B8141717A557
08:12:47.0390 3028  aec ( LockedFile.Multi.Generic ) - warning
08:12:47.0390 3028  aec - detected LockedFile.Multi.Generic (1)
08:12:47.0437 3028  [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD             C:\WINDOWS\System32\drivers\afd.sys
08:12:47.0437 3028  Suspicious file (NoAccess): C:\WINDOWS\System32\drivers\afd.sys. md5: 1E44BC1E83D8FD2305F8D452DB109CF9
08:12:47.0437 3028  AFD ( LockedFile.Multi.Generic ) - warning
08:12:47.0437 3028  AFD - detected LockedFile.Multi.Generic (1)
08:12:47.0468 3028  [ 08FD04AA961BDC77FB983F328334E3D7 ] agp440          C:\WINDOWS\system32\DRIVERS\agp440.sys
08:12:47.0468 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\agp440.sys. md5: 08FD04AA961BDC77FB983F328334E3D7
08:12:47.0484 3028  agp440 ( LockedFile.Multi.Generic ) - warning
08:12:47.0484 3028  agp440 - detected LockedFile.Multi.Generic (1)
08:12:47.0500 3028  [ 03A7E0922ACFE1B07D5DB2EEB0773063 ] agpCPQ          C:\WINDOWS\system32\DRIVERS\agpCPQ.sys
08:12:47.0500 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\agpCPQ.sys. md5: 03A7E0922ACFE1B07D5DB2EEB0773063
08:12:47.0500 3028  agpCPQ ( LockedFile.Multi.Generic ) - warning
08:12:47.0500 3028  agpCPQ - detected LockedFile.Multi.Generic (1)
08:12:47.0546 3028  [ C23EA9B5F46C7F7910DB3EAB648FF013 ] Aha154x         C:\WINDOWS\system32\DRIVERS\aha154x.sys
08:12:47.0546 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\aha154x.sys. md5: C23EA9B5F46C7F7910DB3EAB648FF013
08:12:47.0546 3028  Aha154x ( LockedFile.Multi.Generic ) - warning
08:12:47.0546 3028  Aha154x - detected LockedFile.Multi.Generic (1)
08:12:47.0562 3028  [ 19DD0FB48B0C18892F70E2E7D61A1529 ] aic78u2         C:\WINDOWS\system32\DRIVERS\aic78u2.sys
08:12:47.0562 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\aic78u2.sys. md5: 19DD0FB48B0C18892F70E2E7D61A1529
08:12:47.0562 3028  aic78u2 ( LockedFile.Multi.Generic ) - warning
08:12:47.0562 3028  aic78u2 - detected LockedFile.Multi.Generic (1)
08:12:47.0578 3028  [ B7FE594A7468AA0132DEB03FB8E34326 ] aic78xx         C:\WINDOWS\system32\DRIVERS\aic78xx.sys
08:12:47.0578 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\aic78xx.sys. md5: B7FE594A7468AA0132DEB03FB8E34326
08:12:47.0593 3028  aic78xx ( LockedFile.Multi.Generic ) - warning
08:12:47.0593 3028  aic78xx - detected LockedFile.Multi.Generic (1)
08:12:47.0671 3028  [ 3F9F42085AB5B6A55498A539C54575AB ] akshasp         C:\WINDOWS\system32\DRIVERS\akshasp.sys
08:12:47.0671 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\akshasp.sys. md5: 3F9F42085AB5B6A55498A539C54575AB
08:12:47.0671 3028  akshasp ( LockedFile.Multi.Generic ) - warning
08:12:47.0671 3028  akshasp - detected LockedFile.Multi.Generic (1)
08:12:47.0718 3028  [ D2B95315CC47F9230006FDBCBA394D8D ] aksusb          C:\WINDOWS\system32\DRIVERS\aksusb.sys
08:12:47.0718 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\aksusb.sys. md5: D2B95315CC47F9230006FDBCBA394D8D
08:12:47.0718 3028  aksusb ( LockedFile.Multi.Generic ) - warning
08:12:47.0718 3028  aksusb - detected LockedFile.Multi.Generic (1)
08:12:47.0765 3028  [ 738D80CC01D7BC7584BE917B7F544394 ] Alerter         C:\WINDOWS\system32\alrsvc.dll
08:12:47.0765 3028  Alerter - ok
08:12:47.0796 3028  [ 190CD73D4984F94D823F9444980513E5 ] ALG             C:\WINDOWS\System32\alg.exe
08:12:47.0796 3028  ALG - ok
08:12:47.0812 3028  [ 1140AB9938809700B46BB88E46D72A96 ] AliIde          C:\WINDOWS\system32\DRIVERS\aliide.sys
08:12:47.0812 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\aliide.sys. md5: 1140AB9938809700B46BB88E46D72A96
08:12:47.0812 3028  AliIde ( LockedFile.Multi.Generic ) - warning
08:12:47.0812 3028  AliIde - detected LockedFile.Multi.Generic (1)
08:12:47.0843 3028  [ CB08AED0DE2DD889A8A820CD8082D83C ] alim1541        C:\WINDOWS\system32\DRIVERS\alim1541.sys
08:12:47.0843 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\alim1541.sys. md5: CB08AED0DE2DD889A8A820CD8082D83C
08:12:47.0843 3028  alim1541 ( LockedFile.Multi.Generic ) - warning
08:12:47.0843 3028  alim1541 - detected LockedFile.Multi.Generic (1)
08:12:47.0875 3028  [ 5C3D047466AF6FC35A273F558F14EF2B ] AlteraByteBlaster C:\WINDOWS\system32\drivers\pgdhdlc.sys
08:12:47.0875 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\pgdhdlc.sys. md5: 5C3D047466AF6FC35A273F558F14EF2B
08:12:47.0890 3028  AlteraByteBlaster ( LockedFile.Multi.Generic ) - warning
08:12:47.0890 3028  AlteraByteBlaster - detected LockedFile.Multi.Generic (1)
08:12:48.0015 3028  [ 5E90A956526086634547BF8093FEB699 ] altio           C:\Programme\Altium Designer Summer 09\System\Drivers\altio.sys
08:12:48.0015 3028  Suspicious file (NoAccess): C:\Programme\Altium Designer Summer 09\System\Drivers\altio.sys. md5: 5E90A956526086634547BF8093FEB699
08:12:48.0046 3028  altio ( LockedFile.Multi.Generic ) - warning
08:12:48.0046 3028  altio - detected LockedFile.Multi.Generic (1)
08:12:48.0093 3028  [ E46EE40E8ACE43EE51A1F3EEB1E03168 ] AltiumUSBJtag   C:\WINDOWS\system32\Drivers\AltiumUSBJtag.sys
08:12:48.0093 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\Drivers\AltiumUSBJtag.sys. md5: E46EE40E8ACE43EE51A1F3EEB1E03168
08:12:48.0093 3028  AltiumUSBJtag ( LockedFile.Multi.Generic ) - warning
08:12:48.0093 3028  AltiumUSBJtag - detected LockedFile.Multi.Generic (1)
08:12:48.0125 3028  [ 95B4FB835E28AA1336CEEB07FD5B9398 ] amdagp          C:\WINDOWS\system32\DRIVERS\amdagp.sys
08:12:48.0125 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\amdagp.sys. md5: 95B4FB835E28AA1336CEEB07FD5B9398
08:12:48.0140 3028  amdagp ( LockedFile.Multi.Generic ) - warning
08:12:48.0140 3028  amdagp - detected LockedFile.Multi.Generic (1)
08:12:48.0171 3028  [ 79F5ADD8D24BD6893F2903A3E2F3FAD6 ] amsint          C:\WINDOWS\system32\DRIVERS\amsint.sys
08:12:48.0171 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\amsint.sys. md5: 79F5ADD8D24BD6893F2903A3E2F3FAD6
08:12:48.0171 3028  amsint ( LockedFile.Multi.Generic ) - warning
08:12:48.0171 3028  amsint - detected LockedFile.Multi.Generic (1)
08:12:48.0296 3028  [ F401929EE0CC92BFE7F15161CA535383 ] Apple Mobile Device C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\AppleMobileDeviceService.exe
08:12:48.0296 3028  Apple Mobile Device - ok
08:12:48.0343 3028  [ D45960BE52C3C610D361977057F98C54 ] AppMgmt         C:\WINDOWS\System32\appmgmts.dll
08:12:48.0343 3028  AppMgmt - ok
08:12:48.0421 3028  [ B5B8A80875C1DEDEDA8B02765642C32F ] Arp1394         C:\WINDOWS\system32\DRIVERS\arp1394.sys
08:12:48.0421 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\arp1394.sys. md5: B5B8A80875C1DEDEDA8B02765642C32F
08:12:48.0421 3028  Arp1394 ( LockedFile.Multi.Generic ) - warning
08:12:48.0421 3028  Arp1394 - detected LockedFile.Multi.Generic (1)
08:12:48.0453 3028  [ 62D318E9A0C8FC9B780008E724283707 ] asc             C:\WINDOWS\system32\DRIVERS\asc.sys
08:12:48.0453 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\asc.sys. md5: 62D318E9A0C8FC9B780008E724283707
08:12:48.0453 3028  asc ( LockedFile.Multi.Generic ) - warning
08:12:48.0453 3028  asc - detected LockedFile.Multi.Generic (1)
08:12:48.0468 3028  [ 69EB0CC7714B32896CCBFD5EDCBEA447 ] asc3350p        C:\WINDOWS\system32\DRIVERS\asc3350p.sys
08:12:48.0468 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\asc3350p.sys. md5: 69EB0CC7714B32896CCBFD5EDCBEA447
08:12:48.0468 3028  asc3350p ( LockedFile.Multi.Generic ) - warning
08:12:48.0468 3028  asc3350p - detected LockedFile.Multi.Generic (1)
08:12:48.0515 3028  [ 5D8DE112AA0254B907861E9E9C31D597 ] asc3550         C:\WINDOWS\system32\DRIVERS\asc3550.sys
08:12:48.0515 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\asc3550.sys. md5: 5D8DE112AA0254B907861E9E9C31D597
08:12:48.0531 3028  asc3550 ( LockedFile.Multi.Generic ) - warning
08:12:48.0531 3028  asc3550 - detected LockedFile.Multi.Generic (1)
08:12:48.0656 3028  [ 0E5E4957549056E2BF2C49F4F6B601AD ] aspnet_state    C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
08:12:48.0656 3028  aspnet_state - ok
08:12:48.0734 3028  [ F16E27F1AFAD4DEE2F0651AC90691BBD ] Asset Management Daemon C:\Programme\Gemeinsame Dateien\Portrait Displays\Plugins\AM\dtsslsrv.exe
08:12:48.0734 3028  Asset Management Daemon - ok
08:12:48.0765 3028  [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac        C:\WINDOWS\system32\DRIVERS\asyncmac.sys
08:12:48.0765 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\asyncmac.sys. md5: B153AFFAC761E7F5FCFA822B9C4E97BC
08:12:48.0796 3028  AsyncMac ( LockedFile.Multi.Generic ) - warning
08:12:48.0796 3028  AsyncMac - detected LockedFile.Multi.Generic (1)
08:12:48.0828 3028  [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi           C:\WINDOWS\system32\DRIVERS\atapi.sys
08:12:48.0828 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\atapi.sys. md5: 9F3A2F5AA6875C72BF062C712CFA2674
08:12:48.0828 3028  atapi ( LockedFile.Multi.Generic ) - warning
08:12:48.0828 3028  atapi - detected LockedFile.Multi.Generic (1)
08:12:48.0843 3028  Atdisk - ok
08:12:48.0890 3028  [ 9916C1225104BA14794209CFA8012159 ] Atmarpc         C:\WINDOWS\system32\DRIVERS\atmarpc.sys
08:12:48.0890 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\atmarpc.sys. md5: 9916C1225104BA14794209CFA8012159
08:12:48.0906 3028  Atmarpc ( LockedFile.Multi.Generic ) - warning
08:12:48.0906 3028  Atmarpc - detected LockedFile.Multi.Generic (1)
08:12:48.0937 3028  [ 58ED0D5452DF7BE732193E7999C6B9A4 ] AudioSrv        C:\WINDOWS\System32\audiosrv.dll
08:12:48.0937 3028  AudioSrv - ok
08:12:48.0968 3028  [ D9F724AA26C010A217C97606B160ED68 ] audstub         C:\WINDOWS\system32\DRIVERS\audstub.sys
08:12:48.0968 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\audstub.sys. md5: D9F724AA26C010A217C97606B160ED68
08:12:48.0984 3028  audstub ( LockedFile.Multi.Generic ) - warning
08:12:48.0984 3028  audstub - detected LockedFile.Multi.Generic (1)
08:12:49.0031 3028  [ 3A3A82FFD268BCFB7AE6A48CECF00AD9 ] b57w2k          C:\WINDOWS\system32\DRIVERS\b57xp32.sys
08:12:49.0031 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\b57xp32.sys. md5: 3A3A82FFD268BCFB7AE6A48CECF00AD9
08:12:49.0031 3028  b57w2k ( LockedFile.Multi.Generic ) - warning
08:12:49.0031 3028  b57w2k - detected LockedFile.Multi.Generic (1)
08:12:49.0046 3028  [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep            C:\WINDOWS\system32\drivers\Beep.sys
08:12:49.0046 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\Beep.sys. md5: DA1F27D85E0D1525F6621372E7B685E9
08:12:49.0046 3028  Beep ( LockedFile.Multi.Generic ) - warning
08:12:49.0046 3028  Beep - detected LockedFile.Multi.Generic (1)
08:12:49.0109 3028  BitKinex - ok
08:12:49.0171 3028  [ D6F603772A789BB3228F310D650B8BD1 ] BITS            C:\WINDOWS\system32\qmgr.dll
08:12:49.0171 3028  BITS - ok
08:12:49.0250 3028  [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] Bonjour Service C:\Programme\Bonjour\mDNSResponder.exe
08:12:49.0265 3028  Bonjour Service - ok
08:12:49.0281 3028  Brother XP spl Service - ok
08:12:49.0312 3028  [ B71549F23736ADF83A571061C47777FD ] Browser         C:\WINDOWS\System32\browser.dll
08:12:49.0328 3028  Browser - ok
08:12:49.0375 3028  [ 0A4738EFE76716DF8B193CDBB3204870 ] Cadence License Manager C:\Programme\Cadence Design Systems\Cadence License Manager\lmgrd.exe
08:12:49.0375 3028  Cadence License Manager - ok
08:12:49.0515 3028  [ 048BB4921BC148EBA4020295AB265063 ] Canon Driver Information Assist Service C:\Programme\Canon\DIAS\CnxDIAS.exe
08:12:49.0546 3028  Canon Driver Information Assist Service - ok
08:12:49.0593 3028  [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf           C:\WINDOWS\system32\DRIVERS\cbidf2k.sys
08:12:49.0593 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\cbidf2k.sys. md5: 90A673FC8E12A79AFBED2576F6A7AAF9
08:12:49.0625 3028  cbidf ( LockedFile.Multi.Generic ) - warning
08:12:49.0625 3028  cbidf - detected LockedFile.Multi.Generic (1)
08:12:49.0640 3028  [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k         C:\WINDOWS\system32\drivers\cbidf2k.sys
08:12:49.0640 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\cbidf2k.sys. md5: 90A673FC8E12A79AFBED2576F6A7AAF9
08:12:49.0640 3028  cbidf2k ( LockedFile.Multi.Generic ) - warning
08:12:49.0640 3028  cbidf2k - detected LockedFile.Multi.Generic (1)
08:12:49.0687 3028  [ 0BE5AEF125BE881C4F854C554F2B025C ] CCDECODE        C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
08:12:49.0687 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\CCDECODE.sys. md5: 0BE5AEF125BE881C4F854C554F2B025C
08:12:49.0718 3028  CCDECODE ( LockedFile.Multi.Generic ) - warning
08:12:49.0718 3028  CCDECODE - detected LockedFile.Multi.Generic (1)
08:12:49.0718 3028  [ F3EC03299634490E97BBCE94CD2954C7 ] cd20xrnt        C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys
08:12:49.0718 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys. md5: F3EC03299634490E97BBCE94CD2954C7
08:12:49.0718 3028  cd20xrnt ( LockedFile.Multi.Generic ) - warning
08:12:49.0718 3028  cd20xrnt - detected LockedFile.Multi.Generic (1)
08:12:49.0781 3028  [ C1B486A7658353D33A10CC15211A873B ] Cdaudio         C:\WINDOWS\system32\drivers\Cdaudio.sys
08:12:49.0781 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\Cdaudio.sys. md5: C1B486A7658353D33A10CC15211A873B
08:12:49.0781 3028  Cdaudio ( LockedFile.Multi.Generic ) - warning
08:12:49.0781 3028  Cdaudio - detected LockedFile.Multi.Generic (1)
08:12:49.0843 3028  [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs            C:\WINDOWS\system32\drivers\Cdfs.sys
08:12:49.0843 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\Cdfs.sys. md5: C885B02847F5D2FD45A24E219ED93B32
08:12:49.0843 3028  Cdfs ( LockedFile.Multi.Generic ) - warning
08:12:49.0843 3028  Cdfs - detected LockedFile.Multi.Generic (1)
08:12:49.0890 3028  [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom           C:\WINDOWS\system32\DRIVERS\cdrom.sys
08:12:49.0890 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\cdrom.sys. md5: 1F4260CC5B42272D71F79E570A27A4FE
08:12:49.0890 3028  Cdrom ( LockedFile.Multi.Generic ) - warning
08:12:49.0890 3028  Cdrom - detected LockedFile.Multi.Generic (1)
08:12:49.0921 3028  [ BC9C2EF22EE0320C079E3FF9B4D29951 ] CERUSB          C:\WINDOWS\system32\drivers\SiUSBXp.sys
08:12:49.0921 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\SiUSBXp.sys. md5: BC9C2EF22EE0320C079E3FF9B4D29951
08:12:49.0953 3028  CERUSB ( LockedFile.Multi.Generic ) - warning
08:12:49.0953 3028  CERUSB - detected LockedFile.Multi.Generic (1)
08:12:49.0953 3028  Changer - ok
08:12:50.0015 3028  [ 28E3040D1F1CA2008CD6B29DFEBC9A5E ] CiSvc           C:\WINDOWS\system32\cisvc.exe
08:12:50.0015 3028  CiSvc - ok
08:12:50.0046 3028  [ 778A30ED3C134EB7E406AFC407E9997D ] ClipSrv         C:\WINDOWS\system32\clipsrv.exe
08:12:50.0046 3028  ClipSrv - ok
08:12:50.0109 3028  [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
08:12:50.0109 3028  clr_optimization_v2.0.50727_32 - ok
08:12:50.0140 3028  [ C687F81290303D90099B027A6474F99F ] CmdIde          C:\WINDOWS\system32\DRIVERS\cmdide.sys
08:12:50.0140 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\cmdide.sys. md5: C687F81290303D90099B027A6474F99F
08:12:50.0156 3028  CmdIde ( LockedFile.Multi.Generic ) - warning
08:12:50.0156 3028  CmdIde - detected LockedFile.Multi.Generic (1)
08:12:50.0218 3028  [ 5BD8084248CC2A9450D99AA3FDAEE160 ] ComRedirSvc     C:\Programme\Lantronix\Redirector\redirsvc.exe
08:12:50.0218 3028  ComRedirSvc - ok
08:12:50.0250 3028  COMSysApp - ok
08:12:50.0265 3028  [ 3EE529119EED34CD212A215E8C40D4B6 ] Cpqarray        C:\WINDOWS\system32\DRIVERS\cpqarray.sys
08:12:50.0265 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\cpqarray.sys. md5: 3EE529119EED34CD212A215E8C40D4B6
08:12:50.0265 3028  Cpqarray ( LockedFile.Multi.Generic ) - warning
08:12:50.0265 3028  Cpqarray - detected LockedFile.Multi.Generic (1)
08:12:50.0296 3028  [ 611F824E5C703A5A899F84C5F1699E4D ] CryptSvc        C:\WINDOWS\System32\cryptsvc.dll
08:12:50.0296 3028  CryptSvc - ok
08:12:50.0328 3028  [ E550E7418984B65A78299D248F0A7F36 ] dac2w2k         C:\WINDOWS\system32\DRIVERS\dac2w2k.sys
08:12:50.0328 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\dac2w2k.sys. md5: E550E7418984B65A78299D248F0A7F36
08:12:50.0343 3028  dac2w2k ( LockedFile.Multi.Generic ) - warning
08:12:50.0343 3028  dac2w2k - detected LockedFile.Multi.Generic (1)
08:12:50.0375 3028  [ 683789CAA3864EB46125AE86FF677D34 ] dac960nt        C:\WINDOWS\system32\DRIVERS\dac960nt.sys
08:12:50.0375 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\dac960nt.sys. md5: 683789CAA3864EB46125AE86FF677D34
08:12:50.0375 3028  dac960nt ( LockedFile.Multi.Generic ) - warning
08:12:50.0375 3028  dac960nt - detected LockedFile.Multi.Generic (1)
08:12:50.0453 3028  [ 3127AFBF2C1ED0AB14A1BBB7AAECB85B ] DcomLaunch      C:\WINDOWS\system32\rpcss.dll
08:12:50.0453 3028  DcomLaunch - ok
08:12:50.0515 3028  [ C29A1C9B75BA38FA37F8C44405DEC360 ] Dhcp            C:\WINDOWS\System32\dhcpcsvc.dll
08:12:50.0515 3028  Dhcp - ok
08:12:50.0578 3028  [ 044452051F3E02E7963599FC8F4F3E25 ] Disk            C:\WINDOWS\system32\DRIVERS\disk.sys
08:12:50.0578 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\disk.sys. md5: 044452051F3E02E7963599FC8F4F3E25
08:12:50.0609 3028  Disk ( LockedFile.Multi.Generic ) - warning
08:12:50.0609 3028  Disk - detected LockedFile.Multi.Generic (1)
08:12:50.0625 3028  dmadmin - ok
08:12:50.0687 3028  [ 0DCFC8395A99FECBB1EF771CEC7FE4EA ] dmboot          C:\WINDOWS\system32\drivers\dmboot.sys
08:12:50.0687 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\dmboot.sys. md5: 0DCFC8395A99FECBB1EF771CEC7FE4EA
08:12:50.0687 3028  dmboot ( LockedFile.Multi.Generic ) - warning
08:12:50.0687 3028  dmboot - detected LockedFile.Multi.Generic (1)
08:12:50.0750 3028  [ 53720AB12B48719D00E327DA470A619A ] dmio            C:\WINDOWS\system32\drivers\dmio.sys
08:12:50.0750 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\dmio.sys. md5: 53720AB12B48719D00E327DA470A619A
08:12:50.0750 3028  dmio ( LockedFile.Multi.Generic ) - warning
08:12:50.0750 3028  dmio - detected LockedFile.Multi.Generic (1)
08:12:50.0765 3028  [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload          C:\WINDOWS\system32\drivers\dmload.sys
08:12:50.0765 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\dmload.sys. md5: E9317282A63CA4D188C0DF5E09C6AC5F
08:12:50.0781 3028  dmload ( LockedFile.Multi.Generic ) - warning
08:12:50.0781 3028  dmload - detected LockedFile.Multi.Generic (1)
08:12:50.0812 3028  [ 25C83FFBBA13B554EB6D59A9B2E2EE78 ] dmserver        C:\WINDOWS\System32\dmserver.dll
08:12:50.0812 3028  dmserver - ok
08:12:50.0875 3028  [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic          C:\WINDOWS\system32\drivers\DMusic.sys
08:12:50.0875 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\DMusic.sys. md5: 8A208DFCF89792A484E76C40E5F50B45
08:12:50.0875 3028  DMusic ( LockedFile.Multi.Generic ) - warning
08:12:50.0875 3028  DMusic - detected LockedFile.Multi.Generic (1)
08:12:50.0921 3028  [ 407F3227AC618FD1CA54B335B083DE07 ] Dnscache        C:\WINDOWS\System32\dnsrslvr.dll
08:12:50.0921 3028  Dnscache - ok
08:12:50.0953 3028  [ 676E36C4FF5BCEA1900F44182B9723E6 ] Dot3svc         C:\WINDOWS\System32\dot3svc.dll
08:12:50.0953 3028  Dot3svc - ok
08:12:50.0984 3028  [ 40F3B93B4E5B0126F2F5C0A7A5E22660 ] dpti2o          C:\WINDOWS\system32\DRIVERS\dpti2o.sys
08:12:50.0984 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\dpti2o.sys. md5: 40F3B93B4E5B0126F2F5C0A7A5E22660
08:12:50.0984 3028  dpti2o ( LockedFile.Multi.Generic ) - warning
08:12:50.0984 3028  dpti2o - detected LockedFile.Multi.Generic (1)
08:12:51.0031 3028  [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud         C:\WINDOWS\system32\drivers\drmkaud.sys
08:12:51.0031 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\drmkaud.sys. md5: 8F5FCFF8E8848AFAC920905FBD9D33C8
08:12:51.0031 3028  drmkaud ( LockedFile.Multi.Generic ) - warning
08:12:51.0031 3028  drmkaud - detected LockedFile.Multi.Generic (1)
08:12:51.0078 3028  [ 79666B3AC5EE1534E973469E4F0EB63B ] DS1410D         C:\WINDOWS\system32\drivers\DS1410D.SYS
08:12:51.0078 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\DS1410D.SYS. md5: 79666B3AC5EE1534E973469E4F0EB63B
08:12:51.0093 3028  DS1410D ( LockedFile.Multi.Generic ) - warning
08:12:51.0093 3028  DS1410D - detected LockedFile.Multi.Generic (1)
08:12:51.0156 3028  [ 222F54132446024480741ABB675245B9 ] DTSRVC          C:\Programme\Gemeinsame Dateien\Portrait Displays\Shared\DTSRVC.exe
08:12:51.0156 3028  DTSRVC - ok
08:12:51.0203 3028  [ 4E4F2FDDAB0A0736D7671134DCCE91FB ] EapHost         C:\WINDOWS\System32\eapsvc.dll
08:12:51.0203 3028  EapHost - ok
08:12:51.0234 3028  [ BC9C2EF22EE0320C079E3FF9B4D29951 ] ELUSBXP         C:\WINDOWS\system32\drivers\SiUSBXp.sys
08:12:51.0234 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\SiUSBXp.sys. md5: BC9C2EF22EE0320C079E3FF9B4D29951
08:12:51.0234 3028  ELUSBXP ( LockedFile.Multi.Generic ) - warning
08:12:51.0234 3028  ELUSBXP - detected LockedFile.Multi.Generic (1)
08:12:51.0250 3028  [ 877C18558D70587AA7823A1A308AC96B ] ERSvc           C:\WINDOWS\System32\ersvc.dll
08:12:51.0250 3028  ERSvc - ok
08:12:51.0328 3028  [ A3EDBE9053889FB24AB22492472B39DC ] Eventlog        C:\WINDOWS\system32\services.exe
08:12:51.0328 3028  Eventlog - ok
08:12:51.0421 3028  [ AF4F6B5739D18CA7972AB53E091CBC74 ] EventSystem     C:\WINDOWS\system32\es.dll
08:12:51.0421 3028  EventSystem - ok
08:12:51.0437 3028  [ 38D332A6D56AF32635675F132548343E ] Fastfat         C:\WINDOWS\system32\drivers\Fastfat.sys
08:12:51.0437 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\Fastfat.sys. md5: 38D332A6D56AF32635675F132548343E
08:12:51.0468 3028  Fastfat ( LockedFile.Multi.Generic ) - warning
08:12:51.0468 3028  Fastfat - detected LockedFile.Multi.Generic (1)
08:12:51.0515 3028  [ 2DB7D303C36DDD055215052F118E8E75 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
08:12:51.0515 3028  FastUserSwitchingCompatibility - ok
08:12:51.0562 3028  [ 08B8B302AF0D1B3B8543429BBAC8F21F ] Fax             C:\WINDOWS\system32\fxssvc.exe
08:12:51.0578 3028  Fax - ok
08:12:51.0593 3028  [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc             C:\WINDOWS\system32\DRIVERS\fdc.sys
08:12:51.0593 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\fdc.sys. md5: 92CDD60B6730B9F50F6A1A0C1F8CDC81
08:12:51.0593 3028  Fdc ( LockedFile.Multi.Generic ) - warning
08:12:51.0593 3028  Fdc - detected LockedFile.Multi.Generic (1)
08:12:51.0609 3028  [ B0678A548587C5F1967B0D70BACAD6C1 ] Fips            C:\WINDOWS\system32\drivers\Fips.sys
08:12:51.0609 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\Fips.sys. md5: B0678A548587C5F1967B0D70BACAD6C1
08:12:51.0625 3028  Fips ( LockedFile.Multi.Generic ) - warning
08:12:51.0625 3028  Fips - detected LockedFile.Multi.Generic (1)
08:12:51.0656 3028  [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk        C:\WINDOWS\system32\DRIVERS\flpydisk.sys
08:12:51.0656 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\flpydisk.sys. md5: 9D27E7B80BFCDF1CDD9B555862D5E7F0
08:12:51.0656 3028  Flpydisk ( LockedFile.Multi.Generic ) - warning
08:12:51.0656 3028  Flpydisk - detected LockedFile.Multi.Generic (1)
08:12:51.0687 3028  [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr          C:\WINDOWS\system32\drivers\fltmgr.sys
08:12:51.0687 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\fltmgr.sys. md5: B2CF4B0786F8212CB92ED2B50C6DB6B0
08:12:51.0703 3028  FltMgr ( LockedFile.Multi.Generic ) - warning
08:12:51.0703 3028  FltMgr - detected LockedFile.Multi.Generic (1)
08:12:51.0750 3028  [ 27C75AC6D6FC808D8244D9C9CEA681D1 ] fltsrv          C:\WINDOWS\system32\DRIVERS\fltsrv.sys
08:12:51.0750 3028  fltsrv - ok
08:12:51.0859 3028  [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
08:12:51.0859 3028  FontCache3.0.0.0 - ok
08:12:51.0937 3028  [ C6EE3A87FE609D3E1DB9DBD072A248DE ] fssfltr         C:\WINDOWS\system32\DRIVERS\fssfltr_tdi.sys
08:12:51.0937 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\fssfltr_tdi.sys. md5: C6EE3A87FE609D3E1DB9DBD072A248DE
08:12:51.0968 3028  fssfltr ( LockedFile.Multi.Generic ) - warning
08:12:51.0968 3028  fssfltr - detected LockedFile.Multi.Generic (1)
08:12:52.0125 3028  [ 45B52394F9624237F33A8A3D73C0B221 ] fsssvc          C:\Programme\Windows Live\Family Safety\fsssvc.exe
08:12:52.0125 3028  fsssvc - ok
08:12:52.0203 3028  [ 790A4CA68F44BE35967B3DF61F3E4675 ] FsUsbExDisk     C:\WINDOWS\system32\FsUsbExDisk.SYS
08:12:52.0203 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\FsUsbExDisk.SYS. md5: 790A4CA68F44BE35967B3DF61F3E4675
08:12:52.0218 3028  FsUsbExDisk ( LockedFile.Multi.Generic ) - warning
08:12:52.0218 3028  FsUsbExDisk - detected LockedFile.Multi.Generic (1)
08:12:52.0265 3028  [ D3F9205CC4CB07553F2F9472C767EA87 ] FsUsbExService  C:\WINDOWS\system32\FsUsbExService.Exe
08:12:52.0265 3028  FsUsbExService - ok
08:12:52.0328 3028  [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec          C:\WINDOWS\system32\drivers\Fs_Rec.sys
08:12:52.0328 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\Fs_Rec.sys. md5: 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A
08:12:52.0328 3028  Fs_Rec ( LockedFile.Multi.Generic ) - warning
08:12:52.0328 3028  Fs_Rec - detected LockedFile.Multi.Generic (1)
08:12:52.0375 3028  [ AB40574F179B60BE08FE87DF70ECF9EB ] FTD2XX          C:\WINDOWS\system32\Drivers\FTD2XX.sys
08:12:52.0375 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\Drivers\FTD2XX.sys. md5: AB40574F179B60BE08FE87DF70ECF9EB
08:12:52.0390 3028  FTD2XX ( LockedFile.Multi.Generic ) - warning
08:12:52.0390 3028  FTD2XX - detected LockedFile.Multi.Generic (1)
08:12:52.0468 3028  [ AAE37F0F2F613218DCE17B42A18C38DB ] FTDIBUS         C:\WINDOWS\system32\drivers\ftdibus.sys
08:12:52.0468 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\ftdibus.sys. md5: AAE37F0F2F613218DCE17B42A18C38DB
08:12:52.0468 3028  FTDIBUS ( LockedFile.Multi.Generic ) - warning
08:12:52.0468 3028  FTDIBUS - detected LockedFile.Multi.Generic (1)
08:12:52.0500 3028  [ 8F1955CE42E1484714B542F341647778 ] Ftdisk          C:\WINDOWS\system32\DRIVERS\ftdisk.sys
08:12:52.0500 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\ftdisk.sys. md5: 8F1955CE42E1484714B542F341647778
08:12:52.0500 3028  Ftdisk ( LockedFile.Multi.Generic ) - warning
08:12:52.0500 3028  Ftdisk - detected LockedFile.Multi.Generic (1)
08:12:52.0546 3028  [ 48BFD1BA45C9C9E7AB339E25ABFBA1D2 ] FTSER2K         C:\WINDOWS\system32\drivers\ftser2k.sys
08:12:52.0546 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\ftser2k.sys. md5: 48BFD1BA45C9C9E7AB339E25ABFBA1D2
08:12:52.0593 3028  FTSER2K ( LockedFile.Multi.Generic ) - warning
08:12:52.0593 3028  FTSER2K - detected LockedFile.Multi.Generic (1)
08:12:52.0609 3028  [ BC9C2EF22EE0320C079E3FF9B4D29951 ] GATEXP          C:\WINDOWS\system32\drivers\SiUSBXp.sys
08:12:52.0609 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\SiUSBXp.sys. md5: BC9C2EF22EE0320C079E3FF9B4D29951
08:12:52.0609 3028  GATEXP ( LockedFile.Multi.Generic ) - warning
08:12:52.0609 3028  GATEXP - detected LockedFile.Multi.Generic (1)
08:12:52.0671 3028  [ 8182FF89C65E4D38B2DE4BB0FB18564E ] GEARAspiWDM     C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
08:12:52.0671 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys. md5: 8182FF89C65E4D38B2DE4BB0FB18564E
08:12:52.0671 3028  GEARAspiWDM ( LockedFile.Multi.Generic ) - warning
08:12:52.0671 3028  GEARAspiWDM - detected LockedFile.Multi.Generic (1)
08:12:52.0718 3028  [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc             C:\WINDOWS\system32\DRIVERS\msgpc.sys
08:12:52.0718 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\msgpc.sys. md5: 0A02C63C8B144BD8C86B103DEE7C86A2
08:12:52.0718 3028  Gpc ( LockedFile.Multi.Generic ) - warning
08:12:52.0718 3028  Gpc - detected LockedFile.Multi.Generic (1)
08:12:52.0812 3028  [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdate         C:\Programme\Google\Update\GoogleUpdate.exe
08:12:52.0812 3028  gupdate - ok
08:12:52.0875 3028  [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdatem        C:\Programme\Google\Update\GoogleUpdate.exe
08:12:52.0875 3028  gupdatem - ok
08:12:52.0921 3028  [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc           C:\Programme\Google\Common\Google Updater\GoogleUpdaterService.exe
08:12:52.0921 3028  gusvc - ok
08:12:52.0984 3028  [ D95554949082FD29A04D351B58396718 ] hardlock        C:\WINDOWS\system32\drivers\hardlock.sys
08:12:52.0984 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\hardlock.sys. md5: D95554949082FD29A04D351B58396718
08:12:53.0015 3028  hardlock ( LockedFile.Multi.Generic ) - warning
08:12:53.0015 3028  hardlock - detected LockedFile.Multi.Generic (1)
08:12:53.0078 3028  [ 2DD25F060DC9F79B5CDF33D90ED93669 ] Haspnt          C:\WINDOWS\system32\drivers\Haspnt.sys
08:12:53.0078 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\Haspnt.sys. md5: 2DD25F060DC9F79B5CDF33D90ED93669
08:12:53.0093 3028  Haspnt ( LockedFile.Multi.Generic ) - warning
08:12:53.0093 3028  Haspnt - detected LockedFile.Multi.Generic (1)
08:12:53.0125 3028  [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus        C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
08:12:53.0125 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\HDAudBus.sys. md5: 573C7D0A32852B48F3058CFD8026F511
08:12:53.0125 3028  HDAudBus ( LockedFile.Multi.Generic ) - warning
08:12:53.0125 3028  HDAudBus - detected LockedFile.Multi.Generic (1)
08:12:53.0203 3028  [ CB66BF85BF599BEFD6C6A57C2E20357F ] helpsvc         C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
08:12:53.0203 3028  helpsvc - ok
08:12:53.0250 3028  [ B35DA85E60C0103F2E4104532DA2F12B ] HidServ         C:\WINDOWS\System32\hidserv.dll
08:12:53.0250 3028  HidServ - ok
08:12:53.0312 3028  [ CCF82C5EC8A7326C3066DE870C06DAF1 ] HidUsb          C:\WINDOWS\system32\DRIVERS\hidusb.sys
08:12:53.0312 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\hidusb.sys. md5: CCF82C5EC8A7326C3066DE870C06DAF1
08:12:53.0312 3028  HidUsb ( LockedFile.Multi.Generic ) - warning
08:12:53.0312 3028  HidUsb - detected LockedFile.Multi.Generic (1)
08:12:53.0343 3028  [ ED29F14101523A6E0E808107405D452C ] hkmsvc          C:\WINDOWS\System32\kmsvc.dll
08:12:53.0343 3028  hkmsvc - ok
08:12:53.0390 3028  [ B028377DEA0546A5FCFBA928A8AEFAE0 ] hpn             C:\WINDOWS\system32\DRIVERS\hpn.sys
08:12:53.0390 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\hpn.sys. md5: B028377DEA0546A5FCFBA928A8AEFAE0
08:12:53.0390 3028  hpn ( LockedFile.Multi.Generic ) - warning
08:12:53.0390 3028  hpn - detected LockedFile.Multi.Generic (1)
08:12:53.0437 3028  [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP            C:\WINDOWS\system32\Drivers\HTTP.sys
08:12:53.0437 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\Drivers\HTTP.sys. md5: F80A415EF82CD06FFAF0D971528EAD38
08:12:53.0437 3028  HTTP ( LockedFile.Multi.Generic ) - warning
08:12:53.0437 3028  HTTP - detected LockedFile.Multi.Generic (1)
08:12:53.0484 3028  [ 9E4ADB854CEBCFB81A4B36718FEECD16 ] HTTPFilter      C:\WINDOWS\System32\w3ssl.dll
08:12:53.0484 3028  HTTPFilter - ok
08:12:53.0515 3028  [ 9368670BD426EBEA5E8B18A62416EC28 ] i2omgmt         C:\WINDOWS\system32\drivers\i2omgmt.sys
08:12:53.0515 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\i2omgmt.sys. md5: 9368670BD426EBEA5E8B18A62416EC28
08:12:53.0515 3028  i2omgmt ( LockedFile.Multi.Generic ) - warning
08:12:53.0515 3028  i2omgmt - detected LockedFile.Multi.Generic (1)
08:12:53.0546 3028  [ F10863BF1CCC290BABD1A09188AE49E0 ] i2omp           C:\WINDOWS\system32\DRIVERS\i2omp.sys
08:12:53.0546 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\i2omp.sys. md5: F10863BF1CCC290BABD1A09188AE49E0
08:12:53.0546 3028  i2omp ( LockedFile.Multi.Generic ) - warning
08:12:53.0546 3028  i2omp - detected LockedFile.Multi.Generic (1)
08:12:53.0578 3028  [ E283B97CFBEB86C1D86BAED5F7846A92 ] i8042prt        C:\WINDOWS\system32\DRIVERS\i8042prt.sys
08:12:53.0578 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\i8042prt.sys. md5: E283B97CFBEB86C1D86BAED5F7846A92
08:12:53.0578 3028  i8042prt ( LockedFile.Multi.Generic ) - warning
08:12:53.0578 3028  i8042prt - detected LockedFile.Multi.Generic (1)
08:12:53.0609 3028  [ 294110966CEDD127629C5BE48367C8CF ] iaStor          C:\WINDOWS\system32\DRIVERS\iaStor.sys
08:12:53.0609 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\iaStor.sys. md5: 294110966CEDD127629C5BE48367C8CF
08:12:53.0609 3028  iaStor ( LockedFile.Multi.Generic ) - warning
08:12:53.0609 3028  iaStor - detected LockedFile.Multi.Generic (1)
08:12:53.0765 3028  [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc           C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
08:12:53.0765 3028  idsvc - ok
08:12:53.0828 3028  [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi           C:\WINDOWS\system32\DRIVERS\imapi.sys
08:12:53.0828 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\imapi.sys. md5: 083A052659F5310DD8B6A6CB05EDCF8E
08:12:53.0843 3028  Imapi ( LockedFile.Multi.Generic ) - warning
08:12:53.0843 3028  Imapi - detected LockedFile.Multi.Generic (1)
08:12:53.0890 3028  [ D4B413AA210C21E46AEDD2BA5B68D38E ] ImapiService    C:\WINDOWS\system32\imapi.exe
08:12:53.0906 3028  ImapiService - ok
08:12:53.0953 3028  [ 4A40E045FAEE58631FD8D91AFC620719 ] ini910u         C:\WINDOWS\system32\DRIVERS\ini910u.sys
08:12:53.0953 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\ini910u.sys. md5: 4A40E045FAEE58631FD8D91AFC620719
08:12:53.0953 3028  ini910u ( LockedFile.Multi.Generic ) - warning
08:12:53.0953 3028  ini910u - detected LockedFile.Multi.Generic (1)
08:12:54.0140 3028  [ 909D03B3B7FB7C830B74F74F4D0EA7CE ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RtkHDAud.sys
08:12:54.0140 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\RtkHDAud.sys. md5: 909D03B3B7FB7C830B74F74F4D0EA7CE
08:12:54.0171 3028  IntcAzAudAddService ( LockedFile.Multi.Generic ) - warning
08:12:54.0171 3028  IntcAzAudAddService - detected LockedFile.Multi.Generic (1)
08:12:54.0203 3028  [ 69C4E3C9E67A1F103B94E14FDD5F3213 ] IntelIde        C:\WINDOWS\system32\DRIVERS\intelide.sys
08:12:54.0203 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\intelide.sys. md5: 69C4E3C9E67A1F103B94E14FDD5F3213
08:12:54.0203 3028  IntelIde ( LockedFile.Multi.Generic ) - warning
08:12:54.0203 3028  IntelIde - detected LockedFile.Multi.Generic (1)
08:12:54.0250 3028  [ 4C7D2750158ED6E7AD642D97BFFAE351 ] intelppm        C:\WINDOWS\system32\DRIVERS\intelppm.sys
08:12:54.0250 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\intelppm.sys. md5: 4C7D2750158ED6E7AD642D97BFFAE351
08:12:54.0250 3028  intelppm ( LockedFile.Multi.Generic ) - warning
08:12:54.0250 3028  intelppm - detected LockedFile.Multi.Generic (1)
08:12:54.0281 3028  [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw           C:\WINDOWS\system32\drivers\ip6fw.sys
08:12:54.0281 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\ip6fw.sys. md5: 3BB22519A194418D5FEC05D800A19AD0
08:12:54.0281 3028  Ip6Fw ( LockedFile.Multi.Generic ) - warning
08:12:54.0281 3028  Ip6Fw - detected LockedFile.Multi.Generic (1)
08:12:54.0312 3028  [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver  C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
08:12:54.0312 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys. md5: 731F22BA402EE4B62748ADAF6363C182
08:12:54.0312 3028  IpFilterDriver ( LockedFile.Multi.Generic ) - warning
08:12:54.0312 3028  IpFilterDriver - detected LockedFile.Multi.Generic (1)
08:12:54.0359 3028  [ B87AB476DCF76E72010632B5550955F5 ] IpInIp          C:\WINDOWS\system32\DRIVERS\ipinip.sys
08:12:54.0359 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\ipinip.sys. md5: B87AB476DCF76E72010632B5550955F5
08:12:54.0359 3028  IpInIp ( LockedFile.Multi.Generic ) - warning
08:12:54.0359 3028  IpInIp - detected LockedFile.Multi.Generic (1)
08:12:54.0406 3028  [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat           C:\WINDOWS\system32\DRIVERS\ipnat.sys
08:12:54.0406 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\ipnat.sys. md5: CC748EA12C6EFFDE940EE98098BF96BB
08:12:54.0421 3028  IpNat ( LockedFile.Multi.Generic ) - warning
08:12:54.0421 3028  IpNat - detected LockedFile.Multi.Generic (1)
08:12:54.0500 3028  [ E6BE7A41A28D8F2DB174957454D32448 ] iPod Service    C:\Programme\iPod\bin\iPodService.exe
08:12:54.0500 3028  iPod Service - ok
08:12:54.0562 3028  [ 23C74D75E36E7158768DD63D92789A91 ] IPSec           C:\WINDOWS\system32\DRIVERS\ipsec.sys
08:12:54.0562 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\ipsec.sys. md5: 23C74D75E36E7158768DD63D92789A91
08:12:54.0562 3028  IPSec ( LockedFile.Multi.Generic ) - warning
08:12:54.0562 3028  IPSec - detected LockedFile.Multi.Generic (1)
08:12:54.0593 3028  [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM          C:\WINDOWS\system32\DRIVERS\irenum.sys
08:12:54.0593 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\irenum.sys. md5: C93C9FF7B04D772627A3646D89F7BF89
08:12:54.0593 3028  IRENUM ( LockedFile.Multi.Generic ) - warning
08:12:54.0593 3028  IRENUM - detected LockedFile.Multi.Generic (1)
08:12:54.0687 3028  [ 6DFB88F64135C525433E87648BDA30DE ] isapnp          C:\WINDOWS\system32\DRIVERS\isapnp.sys
08:12:54.0687 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\isapnp.sys. md5: 6DFB88F64135C525433E87648BDA30DE
08:12:54.0687 3028  isapnp ( LockedFile.Multi.Generic ) - warning
08:12:54.0687 3028  isapnp - detected LockedFile.Multi.Generic (1)
08:12:54.0812 3028  [ DE5D05FD449798EF88CC34AD4B1E7F85 ] JavaQuickStarterService C:\Programme\Java\jre6\bin\jqs.exe
08:12:54.0828 3028  JavaQuickStarterService - ok
08:12:55.0000 3028  [ 21F12E351D011BD546C5BB46D66DBD6C ] JTAGServer      c:\altera\90\quartus\bin\jtagserver.exe
08:12:55.0000 3028  JTAGServer - ok
08:12:55.0062 3028  [ 1704D8C4C8807B889E43C649B478A452 ] Kbdclass        C:\WINDOWS\system32\DRIVERS\kbdclass.sys
08:12:55.0062 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\kbdclass.sys. md5: 1704D8C4C8807B889E43C649B478A452
08:12:55.0078 3028  Kbdclass ( LockedFile.Multi.Generic ) - warning
08:12:55.0078 3028  Kbdclass - detected LockedFile.Multi.Generic (1)
08:12:55.0125 3028  [ B6D6C117D771C98130497265F26D1882 ] kbdhid          C:\WINDOWS\system32\DRIVERS\kbdhid.sys
08:12:55.0125 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\kbdhid.sys. md5: B6D6C117D771C98130497265F26D1882
08:12:55.0140 3028  kbdhid ( LockedFile.Multi.Generic ) - warning
08:12:55.0140 3028  kbdhid - detected LockedFile.Multi.Generic (1)
08:12:55.0187 3028  [ B5AF8F521FE24FE756260278B7B76296 ] KEILUL          C:\WINDOWS\system32\DRIVERS\keilul.sys
08:12:55.0187 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\keilul.sys. md5: B5AF8F521FE24FE756260278B7B76296
08:12:55.0187 3028  KEILUL ( LockedFile.Multi.Generic ) - warning
08:12:55.0187 3028  KEILUL - detected LockedFile.Multi.Generic (1)
08:12:55.0250 3028  [ 692BCF44383D056AED41B045A323D378 ] kmixer          C:\WINDOWS\system32\drivers\kmixer.sys
08:12:55.0250 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\kmixer.sys. md5: 692BCF44383D056AED41B045A323D378
08:12:55.0250 3028  kmixer ( LockedFile.Multi.Generic ) - warning
08:12:55.0250 3028  kmixer - detected LockedFile.Multi.Generic (1)
08:12:55.0281 3028  [ B467646C54CC746128904E1654C750C1 ] KSecDD          C:\WINDOWS\system32\drivers\KSecDD.sys
08:12:55.0281 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\KSecDD.sys. md5: B467646C54CC746128904E1654C750C1
08:12:55.0281 3028  KSecDD ( LockedFile.Multi.Generic ) - warning
08:12:55.0281 3028  KSecDD - detected LockedFile.Multi.Generic (1)
08:12:55.0328 3028  [ 2BBDCB79900990F0716DFCB714E72DE7 ] lanmanserver    C:\WINDOWS\System32\srvsvc.dll
08:12:55.0343 3028  lanmanserver - ok
08:12:55.0406 3028  [ 1869B14B06B44B44AF70548E1EA3303F ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
08:12:55.0406 3028  lanmanworkstation - ok
08:12:55.0421 3028  lbrtfdc - ok
08:12:55.0468 3028  [ C9914934118ADD9AFE928A16A3379016 ] libusb0         C:\WINDOWS\system32\DRIVERS\libusb0.sys
08:12:55.0468 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\libusb0.sys. md5: C9914934118ADD9AFE928A16A3379016
08:12:55.0484 3028  libusb0 ( LockedFile.Multi.Generic ) - warning
08:12:55.0484 3028  libusb0 - detected LockedFile.Multi.Generic (1)
08:12:55.0546 3028  [ 636714B7D43C8D0C80449123FD266920 ] LmHosts         C:\WINDOWS\System32\lmhsvc.dll
08:12:55.0546 3028  LmHosts - ok
08:12:55.0593 3028  [ 5A8E14FC728B4B65151855076CE5A3C9 ] Ltxred          C:\WINDOWS\System32\drivers\ltxred.sys
08:12:55.0593 3028  Suspicious file (NoAccess): C:\WINDOWS\System32\drivers\ltxred.sys. md5: 5A8E14FC728B4B65151855076CE5A3C9
08:12:55.0593 3028  Ltxred ( LockedFile.Multi.Generic ) - warning
08:12:55.0593 3028  Ltxred - detected LockedFile.Multi.Generic (1)
08:12:55.0765 3028  [ 2D46DC95709F2967D401326CA67D4111 ] M4-Service      C:\Dokumente und Einstellungen\Frank\Anwendungsdaten\Mikogo 4\M4-Service.exe
08:12:55.0781 3028  M4-Service - ok
08:12:55.0890 3028  [ 11F714F85530A2BD134074DC30E99FCA ] MDM             C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7Debug\mdm.exe
08:12:55.0890 3028  MDM - ok
08:12:55.0953 3028  [ B7550A7107281D170CE85524B1488C98 ] Messenger       C:\WINDOWS\System32\msgsvc.dll
08:12:55.0953 3028  Messenger - ok
08:12:56.0015 3028  [ A0DBFCBE2024E82F3BCF860DCF8D9497 ] mlnxfltr        C:\WINDOWS\system32\drivers\mlnxfltr.sys
08:12:56.0015 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\mlnxfltr.sys. md5: A0DBFCBE2024E82F3BCF860DCF8D9497
08:12:56.0046 3028  mlnxfltr ( LockedFile.Multi.Generic ) - warning
08:12:56.0046 3028  mlnxfltr - detected LockedFile.Multi.Generic (1)
08:12:56.0093 3028  [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd           C:\WINDOWS\system32\drivers\mnmdd.sys
08:12:56.0093 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\mnmdd.sys. md5: 4AE068242760A1FB6E1A44BF4E16AFA6
08:12:56.0093 3028  mnmdd ( LockedFile.Multi.Generic ) - warning
08:12:56.0093 3028  mnmdd - detected LockedFile.Multi.Generic (1)
08:12:56.0140 3028  [ C2F1D365FD96791B037EE504868065D3 ] mnmsrvc         C:\WINDOWS\system32\mnmsrvc.exe
08:12:56.0156 3028  mnmsrvc - ok
08:12:56.0203 3028  [ 6FB74EBD4EC57A6F1781DE3852CC3362 ] Modem           C:\WINDOWS\system32\drivers\Modem.sys
08:12:56.0203 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\Modem.sys. md5: 6FB74EBD4EC57A6F1781DE3852CC3362
08:12:56.0203 3028  Modem ( LockedFile.Multi.Generic ) - warning
08:12:56.0203 3028  Modem - detected LockedFile.Multi.Generic (1)
08:12:56.0234 3028  [ B24CE8005DEAB254C0251E15CB71D802 ] Mouclass        C:\WINDOWS\system32\DRIVERS\mouclass.sys
08:12:56.0234 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\mouclass.sys. md5: B24CE8005DEAB254C0251E15CB71D802
08:12:56.0234 3028  Mouclass ( LockedFile.Multi.Generic ) - warning
08:12:56.0234 3028  Mouclass - detected LockedFile.Multi.Generic (1)
08:12:56.0281 3028  [ 66A6F73C74E1791464160A7065CE711A ] mouhid          C:\WINDOWS\system32\DRIVERS\mouhid.sys
08:12:56.0281 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\mouhid.sys. md5: 66A6F73C74E1791464160A7065CE711A
08:12:56.0281 3028  mouhid ( LockedFile.Multi.Generic ) - warning
08:12:56.0281 3028  mouhid - detected LockedFile.Multi.Generic (1)
08:12:56.0296 3028  [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr        C:\WINDOWS\system32\drivers\MountMgr.sys
08:12:56.0296 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\MountMgr.sys. md5: A80B9A0BAD1B73637DBCBBA7DF72D3FD
08:12:56.0296 3028  MountMgr ( LockedFile.Multi.Generic ) - warning
08:12:56.0296 3028  MountMgr - detected LockedFile.Multi.Generic (1)
08:12:56.0375 3028  [ 15D5398EED42C2504BB3D4FC875C15D1 ] MozillaMaintenance C:\Programme\Mozilla Maintenance Service\maintenanceservice.exe
08:12:56.0375 3028  MozillaMaintenance - ok
08:12:56.0390 3028  [ 3F4BB95E5A44F3BE34824E8E7CAF0737 ] mraid35x        C:\WINDOWS\system32\DRIVERS\mraid35x.sys
08:12:56.0390 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\mraid35x.sys. md5: 3F4BB95E5A44F3BE34824E8E7CAF0737
08:12:56.0390 3028  mraid35x ( LockedFile.Multi.Generic ) - warning
08:12:56.0390 3028  mraid35x - detected LockedFile.Multi.Generic (1)
08:12:56.0421 3028  [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV          C:\WINDOWS\system32\DRIVERS\mrxdav.sys
08:12:56.0421 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\mrxdav.sys. md5: 11D42BB6206F33FBB3BA0288D3EF81BD
08:12:56.0437 3028  MRxDAV ( LockedFile.Multi.Generic ) - warning
08:12:56.0437 3028  MRxDAV - detected LockedFile.Multi.Generic (1)
08:12:56.0500 3028  [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb          C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
08:12:56.0500 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\mrxsmb.sys. md5: 7D304A5EB4344EBEEAB53A2FE3FFB9F0
08:12:56.0515 3028  MRxSmb ( LockedFile.Multi.Generic ) - warning
08:12:56.0515 3028  MRxSmb - detected LockedFile.Multi.Generic (1)
08:12:56.0578 3028  [ 35A031AF38C55F92D28AA03EE9F12CC9 ] MSDTC           C:\WINDOWS\system32\msdtc.exe
08:12:56.0578 3028  MSDTC - ok
08:12:56.0593 3028  [ C941EA2454BA8350021D774DAF0F1027 ] Msfs            C:\WINDOWS\system32\drivers\Msfs.sys
08:12:56.0593 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\Msfs.sys. md5: C941EA2454BA8350021D774DAF0F1027
08:12:56.0593 3028  Msfs ( LockedFile.Multi.Generic ) - warning
08:12:56.0593 3028  Msfs - detected LockedFile.Multi.Generic (1)
08:12:56.0609 3028  MSIServer - ok
08:12:56.0640 3028  [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV         C:\WINDOWS\system32\drivers\MSKSSRV.sys
08:12:56.0640 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\MSKSSRV.sys. md5: D1575E71568F4D9E14CA56B7B0453BF1
08:12:56.0656 3028  MSKSSRV ( LockedFile.Multi.Generic ) - warning
08:12:56.0656 3028  MSKSSRV - detected LockedFile.Multi.Generic (1)
08:12:56.0703 3028  [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK        C:\WINDOWS\system32\drivers\MSPCLOCK.sys
08:12:56.0703 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\MSPCLOCK.sys. md5: 325BB26842FC7CCC1FCCE2C457317F3E
08:12:56.0703 3028  MSPCLOCK ( LockedFile.Multi.Generic ) - warning
08:12:56.0703 3028  MSPCLOCK - detected LockedFile.Multi.Generic (1)
08:12:56.0718 3028  [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM           C:\WINDOWS\system32\drivers\MSPQM.sys
08:12:56.0718 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\MSPQM.sys. md5: BAD59648BA099DA4A17680B39730CB3D
08:12:56.0718 3028  MSPQM ( LockedFile.Multi.Generic ) - warning
08:12:56.0718 3028  MSPQM - detected LockedFile.Multi.Generic (1)
08:12:56.0750 3028  [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios        C:\WINDOWS\system32\DRIVERS\mssmbios.sys
08:12:56.0750 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\mssmbios.sys. md5: AF5F4F3F14A8EA2C26DE30F7A1E17136
08:12:56.0765 3028  mssmbios ( LockedFile.Multi.Generic ) - warning
08:12:56.0765 3028  mssmbios - detected LockedFile.Multi.Generic (1)
08:12:56.0859 3028  MSSQL$ERWEKAMC - ok
08:12:56.0921 3028  [ 1D89EB4E2A99CABD4E81225F4F4C4B25 ] MSSQLServerADHelper C:\Programme\Microsoft SQL Server\90\Shared\sqladhlp90.exe
08:12:56.0921 3028  MSSQLServerADHelper - ok
08:12:56.0968 3028  [ E53736A9E30C45FA9E7B5EAC55056D1D ] MSTEE           C:\WINDOWS\system32\drivers\MSTEE.sys
08:12:56.0968 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\MSTEE.sys. md5: E53736A9E30C45FA9E7B5EAC55056D1D
08:12:56.0984 3028  MSTEE ( LockedFile.Multi.Generic ) - warning
08:12:56.0984 3028  MSTEE - detected LockedFile.Multi.Generic (1)
08:12:57.0031 3028  [ 8533638869A3EC274E93C49C6B910306 ] MultiLINX       C:\WINDOWS\system32\drivers\mltlnx.sys
08:12:57.0031 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\mltlnx.sys. md5: 8533638869A3EC274E93C49C6B910306
08:12:57.0031 3028  MultiLINX ( LockedFile.Multi.Generic ) - warning
08:12:57.0031 3028  MultiLINX - detected LockedFile.Multi.Generic (1)
08:12:57.0093 3028  [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup             C:\WINDOWS\system32\drivers\Mup.sys
08:12:57.0093 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\Mup.sys. md5: DE6A75F5C270E756C5508D94B6CF68F5
08:12:57.0093 3028  Mup ( LockedFile.Multi.Generic ) - warning
08:12:57.0093 3028  Mup - detected LockedFile.Multi.Generic (1)
08:12:57.0140 3028  [ 5B50F1B2A2ED47D560577B221DA734DB ] NABTSFEC        C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
08:12:57.0140 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys. md5: 5B50F1B2A2ED47D560577B221DA734DB
08:12:57.0140 3028  NABTSFEC ( LockedFile.Multi.Generic ) - warning
08:12:57.0140 3028  NABTSFEC - detected LockedFile.Multi.Generic (1)
08:12:57.0203 3028  [ 46BB15AE2AC7D025D6D2567B876817BD ] napagent        C:\WINDOWS\System32\qagentrt.dll
08:12:57.0203 3028  napagent - ok
08:12:57.0234 3028  [ 1DF7F42665C94B825322FAE71721130D ] NDIS            C:\WINDOWS\system32\drivers\NDIS.sys
08:12:57.0234 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\NDIS.sys. md5: 1DF7F42665C94B825322FAE71721130D
08:12:57.0234 3028  NDIS ( LockedFile.Multi.Generic ) - warning
08:12:57.0234 3028  NDIS - detected LockedFile.Multi.Generic (1)
08:12:57.0296 3028  [ 7FF1F1FD8609C149AA432F95A8163D97 ] NdisIP          C:\WINDOWS\system32\DRIVERS\NdisIP.sys
08:12:57.0296 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\NdisIP.sys. md5: 7FF1F1FD8609C149AA432F95A8163D97
08:12:57.0312 3028  NdisIP ( LockedFile.Multi.Generic ) - warning
08:12:57.0312 3028  NdisIP - detected LockedFile.Multi.Generic (1)
08:12:57.0375 3028  [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi        C:\WINDOWS\system32\DRIVERS\ndistapi.sys
08:12:57.0375 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\ndistapi.sys. md5: 0109C4F3850DFBAB279542515386AE22
08:12:57.0390 3028  NdisTapi ( LockedFile.Multi.Generic ) - warning
08:12:57.0390 3028  NdisTapi - detected LockedFile.Multi.Generic (1)
08:12:57.0421 3028  [ F927A4434C5028758A842943EF1A3849 ] Ndisuio         C:\WINDOWS\system32\DRIVERS\ndisuio.sys
08:12:57.0421 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\ndisuio.sys. md5: F927A4434C5028758A842943EF1A3849
08:12:57.0437 3028  Ndisuio ( LockedFile.Multi.Generic ) - warning
08:12:57.0437 3028  Ndisuio - detected LockedFile.Multi.Generic (1)
08:12:57.0468 3028  [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan         C:\WINDOWS\system32\DRIVERS\ndiswan.sys
08:12:57.0468 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\ndiswan.sys. md5: EDC1531A49C80614B2CFDA43CA8659AB
08:12:57.0468 3028  NdisWan ( LockedFile.Multi.Generic ) - warning
08:12:57.0468 3028  NdisWan - detected LockedFile.Multi.Generic (1)
08:12:57.0531 3028  [ A1D2E1B46E79CE3081607FB88DE2909B ] NDMSHLP         C:\Programme\Gemeinsame Dateien\HHD Software\Device Monitor\ndmshlp.sys
08:12:57.0531 3028  Suspicious file (NoAccess): C:\Programme\Gemeinsame Dateien\HHD Software\Device Monitor\ndmshlp.sys. md5: A1D2E1B46E79CE3081607FB88DE2909B
08:12:57.0531 3028  NDMSHLP ( LockedFile.Multi.Generic ) - warning
08:12:57.0531 3028  NDMSHLP - detected LockedFile.Multi.Generic (1)
08:12:57.0578 3028  [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy         C:\WINDOWS\system32\drivers\NDProxy.sys
08:12:57.0578 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\NDProxy.sys. md5: 9282BD12DFB069D3889EB3FCC1000A9B
08:12:57.0593 3028  NDProxy ( LockedFile.Multi.Generic ) - warning
08:12:57.0593 3028  NDProxy - detected LockedFile.Multi.Generic (1)
08:12:57.0640 3028  [ F7C14F5077BF2BC476C348B88A7F74E2 ] Net Driver HPZ12 C:\WINDOWS\system32\HPZinw12.dll
08:12:57.0640 3028  Net Driver HPZ12 - ok
08:12:57.0703 3028  [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS         C:\WINDOWS\system32\DRIVERS\netbios.sys
08:12:57.0703 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\netbios.sys. md5: 5D81CF9A2F1A3A756B66CF684911CDF0
08:12:57.0703 3028  NetBIOS ( LockedFile.Multi.Generic ) - warning
08:12:57.0703 3028  NetBIOS - detected LockedFile.Multi.Generic (1)
08:12:57.0765 3028  [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT           C:\WINDOWS\system32\DRIVERS\netbt.sys
08:12:57.0765 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\netbt.sys. md5: 74B2B2F5BEA5E9A3DC021D685551BD3D
08:12:57.0796 3028  NetBT ( LockedFile.Multi.Generic ) - warning
08:12:57.0796 3028  NetBT - detected LockedFile.Multi.Generic (1)
08:12:57.0843 3028  [ 8ACE4251BFFD09CE75679FE940E996CC ] NetDDE          C:\WINDOWS\system32\netdde.exe
08:12:57.0843 3028  NetDDE - ok
08:12:57.0843 3028  [ 8ACE4251BFFD09CE75679FE940E996CC ] NetDDEdsdm      C:\WINDOWS\system32\netdde.exe
08:12:57.0859 3028  NetDDEdsdm - ok
08:12:57.0921 3028  [ AFB8261B56CBA0D86AEB6DF682AF9785 ] Netlogon        C:\WINDOWS\system32\lsass.exe
08:12:57.0921 3028  Netlogon - ok
08:12:57.0984 3028  [ E6D88F1F6745BF00B57E7855A2AB696C ] Netman          C:\WINDOWS\System32\netman.dll
08:12:57.0984 3028  Netman - ok
08:12:58.0046 3028  [ D34612C5D02D026535B3095D620626AE ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
08:12:58.0046 3028  NetTcpPortSharing - ok
08:12:58.0062 3028  [ E9E47CFB2D461FA0FC75B7A74C6383EA ] NIC1394         C:\WINDOWS\system32\DRIVERS\nic1394.sys
08:12:58.0062 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\nic1394.sys. md5: E9E47CFB2D461FA0FC75B7A74C6383EA
08:12:58.0093 3028  NIC1394 ( LockedFile.Multi.Generic ) - warning
08:12:58.0093 3028  NIC1394 - detected LockedFile.Multi.Generic (1)
08:12:58.0125 3028  [ F1B67B6B0751AE0E6E964B02821206A3 ] Nla             C:\WINDOWS\System32\mswsock.dll
08:12:58.0140 3028  Nla - ok
08:12:58.0187 3028  [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs            C:\WINDOWS\system32\drivers\Npfs.sys
08:12:58.0187 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\Npfs.sys. md5: 3182D64AE053D6FB034F44B6DEF8034A
08:12:58.0187 3028  Npfs ( LockedFile.Multi.Generic ) - warning
08:12:58.0187 3028  Npfs - detected LockedFile.Multi.Generic (1)
08:12:58.0296 3028  [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs            C:\WINDOWS\system32\drivers\Ntfs.sys
08:12:58.0296 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\Ntfs.sys. md5: 78A08DD6A8D65E697C18E1DB01C5CDCA
08:12:58.0296 3028  Ntfs ( LockedFile.Multi.Generic ) - warning
08:12:58.0296 3028  Ntfs - detected LockedFile.Multi.Generic (1)
08:12:58.0312 3028  [ AFB8261B56CBA0D86AEB6DF682AF9785 ] NtLmSsp         C:\WINDOWS\system32\lsass.exe
08:12:58.0312 3028  NtLmSsp - ok
08:12:58.0359 3028  [ 56AF4064996FA5BAC9C449B1514B4770 ] NtmsSvc         C:\WINDOWS\system32\ntmssvc.dll
08:12:58.0359 3028  NtmsSvc - ok
08:12:58.0406 3028  [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null            C:\WINDOWS\system32\drivers\Null.sys
08:12:58.0406 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\Null.sys. md5: 73C1E1F395918BC2C6DD67AF7591A3AD
08:12:58.0421 3028  Null ( LockedFile.Multi.Generic ) - warning
08:12:58.0421 3028  Null - detected LockedFile.Multi.Generic (1)
08:12:58.0609 3028  [ 33AE09E9027F5F22E80A6C80715B79DF ] nv              C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
08:12:58.0609 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\nv4_mini.sys. md5: 33AE09E9027F5F22E80A6C80715B79DF
08:12:58.0625 3028  nv ( LockedFile.Multi.Generic ) - warning
08:12:58.0625 3028  nv - detected LockedFile.Multi.Generic (1)
08:12:58.0687 3028  [ 0344AA9113DC16EEC379F4652020849D ] nvatabus        C:\WINDOWS\system32\DRIVERS\nvatabus.sys
08:12:58.0687 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\nvatabus.sys. md5: 0344AA9113DC16EEC379F4652020849D
08:12:58.0703 3028  nvatabus ( LockedFile.Multi.Generic ) - warning
08:12:58.0703 3028  nvatabus - detected LockedFile.Multi.Generic (1)
08:12:58.0734 3028  [ A4F2A29B9D40F9FFBBB54E56CE483797 ] nvraid          C:\WINDOWS\system32\DRIVERS\nvraid.sys
08:12:58.0734 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\nvraid.sys. md5: A4F2A29B9D40F9FFBBB54E56CE483797
08:12:58.0750 3028  nvraid ( LockedFile.Multi.Generic ) - warning
08:12:58.0750 3028  nvraid - detected LockedFile.Multi.Generic (1)
08:12:58.0765 3028  [ DE6F8D1079FC0E9912AB60308B110026 ] NVSvc           C:\WINDOWS\system32\nvsvc32.exe
08:12:58.0765 3028  NVSvc - ok
08:12:58.0796 3028  [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt        C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
08:12:58.0796 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys. md5: B305F3FAD35083837EF46A0BBCE2FC57
08:12:58.0796 3028  NwlnkFlt ( LockedFile.Multi.Generic ) - warning
08:12:58.0796 3028  NwlnkFlt - detected LockedFile.Multi.Generic (1)
08:12:58.0812 3028  [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd        C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
08:12:58.0812 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys. md5: C99B3415198D1AAB7227F2C88FD664B9
08:12:58.0812 3028  NwlnkFwd ( LockedFile.Multi.Generic ) - warning
08:12:58.0812 3028  NwlnkFwd - detected LockedFile.Multi.Generic (1)
08:12:58.0828 3028  [ CA33832DF41AFB202EE7AEB05145922F ] ohci1394        C:\WINDOWS\system32\DRIVERS\ohci1394.sys
08:12:58.0828 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\ohci1394.sys. md5: CA33832DF41AFB202EE7AEB05145922F
08:12:58.0828 3028  ohci1394 ( LockedFile.Multi.Generic ) - warning
08:12:58.0828 3028  ohci1394 - detected LockedFile.Multi.Generic (1)
08:12:58.0953 3028  [ F5A0A29634E71EC1DD9C91E1D24E5284 ] OTSysCom        C:\Programme\LG Electronics Inc\LGComSpy++\OTSysCom.sys
08:12:58.0953 3028  Suspicious file (NoAccess): C:\Programme\LG Electronics Inc\LGComSpy++\OTSysCom.sys. md5: F5A0A29634E71EC1DD9C91E1D24E5284
08:12:58.0953 3028  OTSysCom ( LockedFile.Multi.Generic ) - warning
08:12:58.0953 3028  OTSysCom - detected LockedFile.Multi.Generic (1)
08:12:59.0015 3028  [ A7AF0C0860F1C43FC6581BA8A99EABEF ] P3              C:\WINDOWS\system32\DRIVERS\p3.sys
08:12:59.0015 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\p3.sys. md5: A7AF0C0860F1C43FC6581BA8A99EABEF
08:12:59.0015 3028  P3 ( LockedFile.Multi.Generic ) - warning
08:12:59.0015 3028  P3 - detected LockedFile.Multi.Generic (1)
08:12:59.0062 3028  [ 8E55251D83763CCCA60FE26A811CFB0C ] par1284         C:\WINDOWS\system32\drivers\par1284.sys
08:12:59.0062 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\par1284.sys. md5: 8E55251D83763CCCA60FE26A811CFB0C
08:12:59.0078 3028  par1284 ( LockedFile.Multi.Generic ) - warning
08:12:59.0078 3028  par1284 - detected LockedFile.Multi.Generic (1)
08:12:59.0125 3028  [ F84785660305B9B903FB3BCA8BA29837 ] Parport         C:\WINDOWS\system32\DRIVERS\parport.sys
08:12:59.0125 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\parport.sys. md5: F84785660305B9B903FB3BCA8BA29837
08:12:59.0125 3028  Parport ( LockedFile.Multi.Generic ) - warning
08:12:59.0125 3028  Parport - detected LockedFile.Multi.Generic (1)
08:12:59.0140 3028  [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr         C:\WINDOWS\system32\drivers\PartMgr.sys
08:12:59.0140 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\PartMgr.sys. md5: BEB3BA25197665D82EC7065B724171C6
08:12:59.0140 3028  PartMgr ( LockedFile.Multi.Generic ) - warning
08:12:59.0140 3028  PartMgr - detected LockedFile.Multi.Generic (1)
08:12:59.0171 3028  [ C2BF987829099A3EAA2CA6A0A90ECB4F ] ParVdm          C:\WINDOWS\system32\drivers\ParVdm.sys
08:12:59.0171 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\ParVdm.sys. md5: C2BF987829099A3EAA2CA6A0A90ECB4F
08:12:59.0171 3028  ParVdm ( LockedFile.Multi.Generic ) - warning
08:12:59.0171 3028  ParVdm - detected LockedFile.Multi.Generic (1)
08:12:59.0250 3028  [ 72735F06EFAEED680DFA41EED853F3AC ] Pcan_usb        C:\WINDOWS\system32\DRIVERS\PCAN_USB.SYS
08:12:59.0250 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\PCAN_USB.SYS. md5: 72735F06EFAEED680DFA41EED853F3AC
08:12:59.0265 3028  Pcan_usb ( LockedFile.Multi.Generic ) - warning
08:12:59.0265 3028  Pcan_usb - detected LockedFile.Multi.Generic (1)
08:12:59.0296 3028  [ 175CC28DCF819F78CAA3FBD44AD9E52A ] pccsmcfd        C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys
08:12:59.0296 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys. md5: 175CC28DCF819F78CAA3FBD44AD9E52A
08:12:59.0312 3028  pccsmcfd ( LockedFile.Multi.Generic ) - warning
08:12:59.0312 3028  pccsmcfd - detected LockedFile.Multi.Generic (1)
08:12:59.0328 3028  [ 387E8DEDC343AA2D1EFBC30580273ACD ] PCI             C:\WINDOWS\system32\DRIVERS\pci.sys
08:12:59.0328 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\pci.sys. md5: 387E8DEDC343AA2D1EFBC30580273ACD
08:12:59.0343 3028  PCI ( LockedFile.Multi.Generic ) - warning
08:12:59.0343 3028  PCI - detected LockedFile.Multi.Generic (1)
08:12:59.0343 3028  PCIDump - ok
08:12:59.0359 3028  [ 59BA86D9A61CBCF4DF8E598C331F5B82 ] PCIIde          C:\WINDOWS\system32\DRIVERS\pciide.sys
08:12:59.0359 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\pciide.sys. md5: 59BA86D9A61CBCF4DF8E598C331F5B82
08:12:59.0359 3028  PCIIde ( LockedFile.Multi.Generic ) - warning
08:12:59.0359 3028  PCIIde - detected LockedFile.Multi.Generic (1)
08:12:59.0406 3028  [ A2A966B77D61847D61A3051DF87C8C97 ] Pcmcia          C:\WINDOWS\system32\drivers\Pcmcia.sys
08:12:59.0406 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\Pcmcia.sys. md5: A2A966B77D61847D61A3051DF87C8C97
08:12:59.0437 3028  Pcmcia ( LockedFile.Multi.Generic ) - warning
08:12:59.0437 3028  Pcmcia - detected LockedFile.Multi.Generic (1)
08:12:59.0437 3028  PDCOMP - ok
08:12:59.0453 3028  PDFRAME - ok
08:12:59.0500 3028  [ FEE34EAE1FF4FEA67248F9F6CF6EC5D0 ] PdiPorts        C:\WINDOWS\system32\Drivers\PdiPorts.sys
08:12:59.0500 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\Drivers\PdiPorts.sys. md5: FEE34EAE1FF4FEA67248F9F6CF6EC5D0
08:12:59.0531 3028  PdiPorts ( LockedFile.Multi.Generic ) - warning
08:12:59.0531 3028  PdiPorts - detected LockedFile.Multi.Generic (1)
08:12:59.0593 3028  [ 01FA89DEA940234FECB41DD5F73B6EAB ] PdiService      C:\Programme\Gemeinsame Dateien\Portrait Displays\Drivers\pdisrvc.exe
08:12:59.0593 3028  PdiService - ok
08:12:59.0593 3028  PDRELI - ok
08:12:59.0609 3028  PDRFRAME - ok
08:12:59.0625 3028  [ 6C14B9C19BA84F73D3A86DBA11133101 ] perc2           C:\WINDOWS\system32\DRIVERS\perc2.sys
08:12:59.0625 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\perc2.sys. md5: 6C14B9C19BA84F73D3A86DBA11133101
08:12:59.0640 3028  perc2 ( LockedFile.Multi.Generic ) - warning
08:12:59.0640 3028  perc2 - detected LockedFile.Multi.Generic (1)
08:12:59.0687 3028  [ F50F7C27F131AFE7BEBA13E14A3B9416 ] perc2hib        C:\WINDOWS\system32\DRIVERS\perc2hib.sys
08:12:59.0687 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\perc2hib.sys. md5: F50F7C27F131AFE7BEBA13E14A3B9416
08:12:59.0687 3028  perc2hib ( LockedFile.Multi.Generic ) - warning
08:12:59.0687 3028  perc2hib - detected LockedFile.Multi.Generic (1)
08:12:59.0765 3028  [ 68C6ADE0DA199E7C00B6083DA4605CB8 ] Pivot           C:\WINDOWS\system32\drivers\pivot.sys
08:12:59.0765 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\pivot.sys. md5: 68C6ADE0DA199E7C00B6083DA4605CB8
08:12:59.0765 3028  Pivot ( LockedFile.Multi.Generic ) - warning
08:12:59.0765 3028  Pivot - detected LockedFile.Multi.Generic (1)
08:12:59.0796 3028  [ 552A7A474FD47BC634113B169494DFBB ] pivotmou        C:\WINDOWS\system32\drivers\pivotmou.sys
08:12:59.0796 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\pivotmou.sys. md5: 552A7A474FD47BC634113B169494DFBB
08:12:59.0796 3028  pivotmou ( LockedFile.Multi.Generic ) - warning
08:12:59.0796 3028  pivotmou - detected LockedFile.Multi.Generic (1)
08:12:59.0828 3028  [ F5560F0ACA0238731112077FBB796AB5 ] PLIN Manager    C:\WINDOWS\system32\PLinMng.exe
08:12:59.0828 3028  PLIN Manager - ok
08:12:59.0875 3028  [ 59028A4006C63C05270DB4ADCBF0DD90 ] PLIN_USB        C:\WINDOWS\system32\Drivers\PLIN_USB.sys
08:12:59.0875 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\Drivers\PLIN_USB.sys. md5: 59028A4006C63C05270DB4ADCBF0DD90
08:12:59.0875 3028  PLIN_USB ( LockedFile.Multi.Generic ) - warning
08:12:59.0875 3028  PLIN_USB - detected LockedFile.Multi.Generic (1)
08:12:59.0906 3028  [ A3EDBE9053889FB24AB22492472B39DC ] PlugPlay        C:\WINDOWS\system32\services.exe
08:12:59.0906 3028  PlugPlay - ok
08:12:59.0968 3028  [ E638656001C52A1FAA34F92E6D3A086B ] Pml Driver HPZ12 C:\WINDOWS\system32\HPZipm12.dll
08:12:59.0968 3028  Pml Driver HPZ12 - ok
08:13:00.0000 3028  [ AFB8261B56CBA0D86AEB6DF682AF9785 ] PolicyAgent     C:\WINDOWS\system32\lsass.exe
08:13:00.0000 3028  PolicyAgent - ok
08:13:00.0046 3028  [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport    C:\WINDOWS\system32\DRIVERS\raspptp.sys
08:13:00.0046 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\raspptp.sys. md5: EFEEC01B1D3CF84F16DDD24D9D9D8F99
08:13:00.0062 3028  PptpMiniport ( LockedFile.Multi.Generic ) - warning
08:13:00.0062 3028  PptpMiniport - detected LockedFile.Multi.Generic (1)
08:13:00.0109 3028  [ AFB8261B56CBA0D86AEB6DF682AF9785 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
08:13:00.0109 3028  ProtectedStorage - ok
08:13:00.0140 3028  [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink         C:\WINDOWS\system32\DRIVERS\ptilink.sys
08:13:00.0140 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\ptilink.sys. md5: 80D317BD1C3DBC5D4FE7B1678C60CADD
08:13:00.0156 3028  Ptilink ( LockedFile.Multi.Generic ) - warning
08:13:00.0156 3028  Ptilink - detected LockedFile.Multi.Generic (1)
08:13:00.0156 3028  [ 0A63FB54039EB5662433CABA3B26DBA7 ] ql1080          C:\WINDOWS\system32\DRIVERS\ql1080.sys
08:13:00.0156 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\ql1080.sys. md5: 0A63FB54039EB5662433CABA3B26DBA7
08:13:00.0156 3028  ql1080 ( LockedFile.Multi.Generic ) - warning
08:13:00.0156 3028  ql1080 - detected LockedFile.Multi.Generic (1)
08:13:00.0171 3028  [ 6503449E1D43A0FF0201AD5CB1B8C706 ] Ql10wnt         C:\WINDOWS\system32\DRIVERS\ql10wnt.sys
08:13:00.0171 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\ql10wnt.sys. md5: 6503449E1D43A0FF0201AD5CB1B8C706
08:13:00.0171 3028  Ql10wnt ( LockedFile.Multi.Generic ) - warning
08:13:00.0171 3028  Ql10wnt - detected LockedFile.Multi.Generic (1)
08:13:00.0203 3028  [ 156ED0EF20C15114CA097A34A30D8A01 ] ql12160         C:\WINDOWS\system32\DRIVERS\ql12160.sys
08:13:00.0203 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\ql12160.sys. md5: 156ED0EF20C15114CA097A34A30D8A01
08:13:00.0203 3028  ql12160 ( LockedFile.Multi.Generic ) - warning
08:13:00.0203 3028  ql12160 - detected LockedFile.Multi.Generic (1)
08:13:00.0218 3028  [ 70F016BEBDE6D29E864C1230A07CC5E6 ] ql1240          C:\WINDOWS\system32\DRIVERS\ql1240.sys
08:13:00.0218 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\ql1240.sys. md5: 70F016BEBDE6D29E864C1230A07CC5E6
08:13:00.0218 3028  ql1240 ( LockedFile.Multi.Generic ) - warning
08:13:00.0218 3028  ql1240 - detected LockedFile.Multi.Generic (1)
08:13:00.0250 3028  [ 907F0AEEA6BC451011611E732BD31FCF ] ql1280          C:\WINDOWS\system32\DRIVERS\ql1280.sys
08:13:00.0250 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\ql1280.sys. md5: 907F0AEEA6BC451011611E732BD31FCF
08:13:00.0250 3028  ql1280 ( LockedFile.Multi.Generic ) - warning
08:13:00.0250 3028  ql1280 - detected LockedFile.Multi.Generic (1)
08:13:00.0281 3028  [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd          C:\WINDOWS\system32\DRIVERS\rasacd.sys
08:13:00.0281 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\rasacd.sys. md5: FE0D99D6F31E4FAD8159F690D68DED9C
08:13:00.0281 3028  RasAcd ( LockedFile.Multi.Generic ) - warning
08:13:00.0281 3028  RasAcd - detected LockedFile.Multi.Generic (1)
08:13:00.0328 3028  [ F5BA6CACCDB66C8F048E867563203246 ] RasAuto         C:\WINDOWS\System32\rasauto.dll
08:13:00.0328 3028  RasAuto - ok
08:13:00.0390 3028  [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp         C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
08:13:00.0390 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\rasl2tp.sys. md5: 11B4A627BC9614B885C4969BFA5FF8A6
08:13:00.0390 3028  Rasl2tp ( LockedFile.Multi.Generic ) - warning
08:13:00.0390 3028  Rasl2tp - detected LockedFile.Multi.Generic (1)
08:13:00.0453 3028  [ F9A7B66EA345726EDB5862A46B1ECCD5 ] RasMan          C:\WINDOWS\System32\rasmans.dll
08:13:00.0453 3028  RasMan - ok
08:13:00.0515 3028  [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe        C:\WINDOWS\system32\DRIVERS\raspppoe.sys
08:13:00.0515 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\raspppoe.sys. md5: 5BC962F2654137C9909C3D4603587DEE
08:13:00.0515 3028  RasPppoe ( LockedFile.Multi.Generic ) - warning
08:13:00.0515 3028  RasPppoe - detected LockedFile.Multi.Generic (1)
08:13:00.0531 3028  [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti          C:\WINDOWS\system32\DRIVERS\raspti.sys
08:13:00.0531 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\raspti.sys. md5: FDBB1D60066FCFBB7452FD8F9829B242
08:13:00.0546 3028  Raspti ( LockedFile.Multi.Generic ) - warning
08:13:00.0546 3028  Raspti - detected LockedFile.Multi.Generic (1)
08:13:00.0593 3028  [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss           C:\WINDOWS\system32\DRIVERS\rdbss.sys
08:13:00.0593 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\rdbss.sys. md5: 7AD224AD1A1437FE28D89CF22B17780A
08:13:00.0625 3028  Rdbss ( LockedFile.Multi.Generic ) - warning
08:13:00.0625 3028  Rdbss - detected LockedFile.Multi.Generic (1)
08:13:00.0671 3028  [ 4912D5B403614CE99C28420F75353332 ] RDPCDD          C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
08:13:00.0671 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\RDPCDD.sys. md5: 4912D5B403614CE99C28420F75353332
08:13:00.0671 3028  RDPCDD ( LockedFile.Multi.Generic ) - warning
08:13:00.0671 3028  RDPCDD - detected LockedFile.Multi.Generic (1)
08:13:00.0718 3028  [ 15CABD0F7C00C47C70124907916AF3F1 ] rdpdr           C:\WINDOWS\system32\DRIVERS\rdpdr.sys
08:13:00.0718 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\rdpdr.sys. md5: 15CABD0F7C00C47C70124907916AF3F1
08:13:00.0734 3028  rdpdr ( LockedFile.Multi.Generic ) - warning
08:13:00.0734 3028  rdpdr - detected LockedFile.Multi.Generic (1)
08:13:00.0781 3028  [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD           C:\WINDOWS\system32\drivers\RDPWD.sys
08:13:00.0781 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\RDPWD.sys. md5: 43AF5212BD8FB5BA6EED9754358BD8F7
08:13:00.0781 3028  RDPWD ( LockedFile.Multi.Generic ) - warning
08:13:00.0781 3028  RDPWD - detected LockedFile.Multi.Generic (1)
08:13:00.0828 3028  [ 263AF18AF0F3DB99F574C95F284CCEC9 ] RDSessMgr       C:\WINDOWS\system32\sessmgr.exe
08:13:00.0828 3028  RDSessMgr - ok
08:13:00.0890 3028  [ ED761D453856F795A7FE056E42C36365 ] redbook         C:\WINDOWS\system32\DRIVERS\redbook.sys
08:13:00.0890 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\redbook.sys. md5: ED761D453856F795A7FE056E42C36365
08:13:00.0890 3028  redbook ( LockedFile.Multi.Generic ) - warning
08:13:00.0890 3028  redbook - detected LockedFile.Multi.Generic (1)
08:13:00.0937 3028  [ 0E97EC96D6942CEEC2D188CC2EB69A01 ] RemoteAccess    C:\WINDOWS\System32\mprdim.dll
08:13:00.0937 3028  RemoteAccess - ok
08:13:01.0031 3028  [ E4CD1F3D84E1C2CA0B8CF7501E201593 ] RemoteRegistry  C:\WINDOWS\system32\regsvc.dll
08:13:01.0031 3028  RemoteRegistry - ok
08:13:01.0062 3028  [ 2A02E21867497DF20B8FC95631395169 ] RpcLocator      C:\WINDOWS\system32\locator.exe
08:13:01.0062 3028  RpcLocator - ok
08:13:01.0156 3028  [ 3127AFBF2C1ED0AB14A1BBB7AAECB85B ] RpcSs           C:\WINDOWS\system32\rpcss.dll
08:13:01.0156 3028  RpcSs - ok
08:13:01.0203 3028  [ 4BDD71B4B521521499DFD14735C4F398 ] RSVP            C:\WINDOWS\system32\rsvp.exe
08:13:01.0203 3028  RSVP - ok
08:13:01.0218 3028  [ BC9C2EF22EE0320C079E3FF9B4D29951 ] RWKPUA          C:\WINDOWS\system32\drivers\SiUSBXp.sys
08:13:01.0218 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\SiUSBXp.sys. md5: BC9C2EF22EE0320C079E3FF9B4D29951
08:13:01.0250 3028  RWKPUA ( LockedFile.Multi.Generic ) - warning
08:13:01.0250 3028  RWKPUA - detected LockedFile.Multi.Generic (1)
08:13:01.0250 3028  [ BC9C2EF22EE0320C079E3FF9B4D29951 ] RWKXP           C:\WINDOWS\system32\drivers\SiUSBXp.sys
08:13:01.0250 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\SiUSBXp.sys. md5: BC9C2EF22EE0320C079E3FF9B4D29951
08:13:01.0250 3028  RWKXP ( LockedFile.Multi.Generic ) - warning
08:13:01.0250 3028  RWKXP - detected LockedFile.Multi.Generic (1)
08:13:01.0296 3028  [ AFB8261B56CBA0D86AEB6DF682AF9785 ] SamSs           C:\WINDOWS\system32\lsass.exe
08:13:01.0296 3028  SamSs - ok
08:13:01.0312 3028  [ DCEC079FAD95D36C8DD5CB6D779DFE32 ] SCardSvr        C:\WINDOWS\System32\SCardSvr.exe
08:13:01.0312 3028  SCardSvr - ok
08:13:01.0375 3028  [ A050194A44D7FA8D7186ED2F4E8367AE ] Schedule        C:\WINDOWS\system32\schedsvc.dll
08:13:01.0375 3028  Schedule - ok
08:13:01.0421 3028  [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv          C:\WINDOWS\system32\DRIVERS\secdrv.sys
08:13:01.0421 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\secdrv.sys. md5: 90A3935D05B494A5A39D37E71F09A677
08:13:01.0453 3028  Secdrv ( LockedFile.Multi.Generic ) - warning
08:13:01.0453 3028  Secdrv - detected LockedFile.Multi.Generic (1)
08:13:01.0500 3028  [ BEE4CFD1D48C23B44CF4B974B0B79B2B ] seclogon        C:\WINDOWS\System32\seclogon.dll
08:13:01.0500 3028  seclogon - ok
08:13:01.0531 3028  [ 2AAC9B6ED9EDDFFB721D6452E34D67E3 ] SENS            C:\WINDOWS\system32\sens.dll
08:13:01.0546 3028  SENS - ok
08:13:01.0593 3028  [ AEBBA7428A6C40CCE3C5ABDE45190B24 ] Sentinel        C:\WINDOWS\System32\Drivers\SENTINEL.SYS
08:13:01.0593 3028  Suspicious file (NoAccess): C:\WINDOWS\System32\Drivers\SENTINEL.SYS. md5: AEBBA7428A6C40CCE3C5ABDE45190B24
08:13:01.0593 3028  Sentinel ( LockedFile.Multi.Generic ) - warning
08:13:01.0593 3028  Sentinel - detected LockedFile.Multi.Generic (1)
08:13:01.0640 3028  [ 0F29512CCD6BEAD730039FB4BD2C85CE ] serenum         C:\WINDOWS\system32\DRIVERS\serenum.sys
08:13:01.0640 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\serenum.sys. md5: 0F29512CCD6BEAD730039FB4BD2C85CE
08:13:01.0640 3028  serenum ( LockedFile.Multi.Generic ) - warning
08:13:01.0640 3028  serenum - detected LockedFile.Multi.Generic (1)
08:13:01.0703 3028  [ CF24EB4F0412C82BCD1F4F35A025E31D ] Serial          C:\WINDOWS\system32\DRIVERS\serial.sys
08:13:01.0703 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\serial.sys. md5: CF24EB4F0412C82BCD1F4F35A025E31D
08:13:01.0703 3028  Serial ( LockedFile.Multi.Generic ) - warning
08:13:01.0703 3028  Serial - detected LockedFile.Multi.Generic (1)
08:13:01.0781 3028  [ B98460D74971F0223C2884779C3777F5 ] SerMon          C:\Programme\HHD Software\Free Serial Port Monitor\sermon.sys
08:13:01.0781 3028  Suspicious file (NoAccess): C:\Programme\HHD Software\Free Serial Port Monitor\sermon.sys. md5: B98460D74971F0223C2884779C3777F5
08:13:01.0781 3028  SerMon ( LockedFile.Multi.Generic ) - warning
08:13:01.0781 3028  SerMon - detected LockedFile.Multi.Generic (1)
08:13:01.0875 3028  [ 9D38320BB32230349379DF5DDBBF7FCE ] ServiceLayer    C:\Programme\PC Connectivity Solution\ServiceLayer.exe
08:13:01.0875 3028  ServiceLayer - ok
08:13:01.0953 3028  [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy         C:\WINDOWS\system32\drivers\Sfloppy.sys
08:13:01.0953 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\Sfloppy.sys. md5: 8E6B8C671615D126FDC553D1E2DE5562
08:13:01.0953 3028  Sfloppy ( LockedFile.Multi.Generic ) - warning
08:13:01.0953 3028  Sfloppy - detected LockedFile.Multi.Generic (1)
08:13:02.0046 3028  [ 2DB7D303C36DDD055215052F118E8E75 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
08:13:02.0046 3028  ShellHWDetection - ok
08:13:02.0093 3028  [ 3EAD8E1668CE42A0AFE41D56E7157BCF ] silabenm        C:\WINDOWS\system32\DRIVERS\silabenm.sys
08:13:02.0093 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\silabenm.sys. md5: 3EAD8E1668CE42A0AFE41D56E7157BCF
08:13:02.0093 3028  silabenm ( LockedFile.Multi.Generic ) - warning
08:13:02.0093 3028  silabenm - detected LockedFile.Multi.Generic (1)
08:13:02.0171 3028  [ 5EC84546635D8F6E306F9C80FE09433D ] silabser        C:\WINDOWS\system32\DRIVERS\silabser.sys
08:13:02.0171 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\silabser.sys. md5: 5EC84546635D8F6E306F9C80FE09433D
08:13:02.0187 3028  silabser ( LockedFile.Multi.Generic ) - warning
08:13:02.0187 3028  silabser - detected LockedFile.Multi.Generic (1)
08:13:02.0203 3028  Simbad - ok
08:13:02.0234 3028  [ 6B33D0EBD30DB32E27D1D78FE946A754 ] sisagp          C:\WINDOWS\system32\DRIVERS\sisagp.sys
08:13:02.0234 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\sisagp.sys. md5: 6B33D0EBD30DB32E27D1D78FE946A754
08:13:02.0250 3028  sisagp ( LockedFile.Multi.Generic ) - warning
08:13:02.0250 3028  sisagp - detected LockedFile.Multi.Generic (1)
08:13:02.0281 3028  [ BC9C2EF22EE0320C079E3FF9B4D29951 ] SIUSBXP         C:\WINDOWS\system32\drivers\SiUSBXp.sys
08:13:02.0281 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\SiUSBXp.sys. md5: BC9C2EF22EE0320C079E3FF9B4D29951
08:13:02.0281 3028  SIUSBXP ( LockedFile.Multi.Generic ) - warning
08:13:02.0281 3028  SIUSBXP - detected LockedFile.Multi.Generic (1)
08:13:02.0343 3028  [ 444186C720885429A2354095C1938143 ] slabbus         C:\WINDOWS\system32\DRIVERS\slabbus.sys
08:13:02.0343 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\slabbus.sys. md5: 444186C720885429A2354095C1938143
08:13:02.0359 3028  slabbus ( LockedFile.Multi.Generic ) - warning
08:13:02.0359 3028  slabbus - detected LockedFile.Multi.Generic (1)
08:13:02.0421 3028  [ ED71F8C82EF11C0DA1C57BE021A2FDC9 ] slabser         C:\WINDOWS\system32\DRIVERS\slabser.sys
08:13:02.0421 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\slabser.sys. md5: ED71F8C82EF11C0DA1C57BE021A2FDC9
08:13:02.0437 3028  slabser ( LockedFile.Multi.Generic ) - warning
08:13:02.0437 3028  slabser - detected LockedFile.Multi.Generic (1)
08:13:02.0484 3028  [ 866D538EBE33709A5C9F5C62B73B7D14 ] SLIP            C:\WINDOWS\system32\DRIVERS\SLIP.sys
08:13:02.0484 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\SLIP.sys. md5: 866D538EBE33709A5C9F5C62B73B7D14
08:13:02.0500 3028  SLIP ( LockedFile.Multi.Generic ) - warning
08:13:02.0500 3028  SLIP - detected LockedFile.Multi.Generic (1)
08:13:02.0515 3028  SMR311 - ok
08:13:02.0578 3028  [ A1FF7D99B199CEA1F3DF371BA70D2780 ] Sntnlusb        C:\WINDOWS\system32\DRIVERS\SNTNLUSB.SYS
08:13:02.0578 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\SNTNLUSB.SYS. md5: A1FF7D99B199CEA1F3DF371BA70D2780
08:13:02.0578 3028  Sntnlusb ( LockedFile.Multi.Generic ) - warning
08:13:02.0578 3028  Sntnlusb - detected LockedFile.Multi.Generic (1)
08:13:02.0609 3028  [ 83C0F71F86D3BDAF915685F3D568B20E ] Sparrow         C:\WINDOWS\system32\DRIVERS\sparrow.sys
08:13:02.0609 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\sparrow.sys. md5: 83C0F71F86D3BDAF915685F3D568B20E
08:13:02.0609 3028  Sparrow ( LockedFile.Multi.Generic ) - warning
08:13:02.0609 3028  Sparrow - detected LockedFile.Multi.Generic (1)
08:13:02.0671 3028  [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter        C:\WINDOWS\system32\drivers\splitter.sys
08:13:02.0671 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\splitter.sys. md5: AB8B92451ECB048A4D1DE7C3FFCB4A9F
08:13:02.0687 3028  splitter ( LockedFile.Multi.Generic ) - warning
08:13:02.0687 3028  splitter - detected LockedFile.Multi.Generic (1)
08:13:02.0750 3028  [ 60784F891563FB1B767F70117FC2428F ] Spooler         C:\WINDOWS\system32\spoolsv.exe
08:13:02.0765 3028  Spooler - ok
08:13:02.0812 3028  [ 86EBD8B1F23E743AAD21F4D5B4D40985 ] SQLBrowser      C:\Programme\Microsoft SQL Server\90\Shared\sqlbrowser.exe
08:13:02.0812 3028  SQLBrowser - ok
08:13:02.0859 3028  [ D89083C4EB02DACA8F944B0E05E57F9D ] SQLWriter       C:\Programme\Microsoft SQL Server\90\Shared\sqlwriter.exe
08:13:02.0859 3028  SQLWriter - ok
08:13:02.0890 3028  [ 50FA898F8C032796D3B1B9951BB5A90F ] sr              C:\WINDOWS\system32\DRIVERS\sr.sys
08:13:02.0890 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\sr.sys. md5: 50FA898F8C032796D3B1B9951BB5A90F
08:13:02.0906 3028  sr ( LockedFile.Multi.Generic ) - warning
08:13:02.0906 3028  sr - detected LockedFile.Multi.Generic (1)
08:13:02.0937 3028  [ FE77A85495065F3AD59C5C65B6C54182 ] srservice       C:\WINDOWS\system32\srsvc.dll
08:13:02.0937 3028  srservice - ok
08:13:03.0015 3028  [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv             C:\WINDOWS\system32\DRIVERS\srv.sys
08:13:03.0015 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\srv.sys. md5: 47DDFC2F003F7F9F0592C6874962A2E7
08:13:03.0015 3028  Srv ( LockedFile.Multi.Generic ) - warning
08:13:03.0015 3028  Srv - detected LockedFile.Multi.Generic (1)
08:13:03.0093 3028  [ D6870895FE46A464A19141440EB6CC1E ] sscdbus         C:\WINDOWS\system32\DRIVERS\sscdbus.sys
08:13:03.0093 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\sscdbus.sys. md5: D6870895FE46A464A19141440EB6CC1E
08:13:03.0125 3028  sscdbus ( LockedFile.Multi.Generic ) - warning
08:13:03.0125 3028  sscdbus - detected LockedFile.Multi.Generic (1)
08:13:03.0187 3028  [ 0FE167362E4689B716CDC8D93ADEDDA8 ] sscdmdfl        C:\WINDOWS\system32\DRIVERS\sscdmdfl.sys
08:13:03.0187 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\sscdmdfl.sys. md5: 0FE167362E4689B716CDC8D93ADEDDA8
08:13:03.0203 3028  sscdmdfl ( LockedFile.Multi.Generic ) - warning
08:13:03.0203 3028  sscdmdfl - detected LockedFile.Multi.Generic (1)
08:13:03.0250 3028  [ 55A15707E32B6709242AD127E62CA55A ] sscdmdm         C:\WINDOWS\system32\DRIVERS\sscdmdm.sys
08:13:03.0250 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\sscdmdm.sys. md5: 55A15707E32B6709242AD127E62CA55A
08:13:03.0281 3028  sscdmdm ( LockedFile.Multi.Generic ) - warning
08:13:03.0281 3028  sscdmdm - detected LockedFile.Multi.Generic (1)
08:13:03.0328 3028  [ 4DF5B05DFAEC29E13E1ED6F6EE12C500 ] SSDPSRV         C:\WINDOWS\System32\ssdpsrv.dll
08:13:03.0328 3028  SSDPSRV - ok
08:13:03.0390 3028  [ BC2C5985611C5356B24AEB370953DED9 ] stisvc          C:\WINDOWS\system32\wiaservc.dll
08:13:03.0406 3028  stisvc - ok
08:13:03.0468 3028  [ E1D202F5A5C88CF915F51957D314066B ] STM Parallel Driver C:\WINDOWS\system32\drivers\parstm.sys
08:13:03.0468 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\parstm.sys. md5: E1D202F5A5C88CF915F51957D314066B
08:13:03.0468 3028  STM Parallel Driver ( LockedFile.Multi.Generic ) - warning
08:13:03.0468 3028  STM Parallel Driver - detected LockedFile.Multi.Generic (1)
08:13:03.0515 3028  [ 77813007BA6265C4B6098187E6ED79D2 ] streamip        C:\WINDOWS\system32\DRIVERS\StreamIP.sys
08:13:03.0515 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\StreamIP.sys. md5: 77813007BA6265C4B6098187E6ED79D2
08:13:03.0515 3028  streamip ( LockedFile.Multi.Generic ) - warning
08:13:03.0515 3028  streamip - detected LockedFile.Multi.Generic (1)
08:13:03.0593 3028  [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum          C:\WINDOWS\system32\DRIVERS\swenum.sys
08:13:03.0593 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\swenum.sys. md5: 3941D127AEF12E93ADDF6FE6EE027E0F
08:13:03.0593 3028  swenum ( LockedFile.Multi.Generic ) - warning
08:13:03.0593 3028  swenum - detected LockedFile.Multi.Generic (1)
08:13:03.0640 3028  [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi          C:\WINDOWS\system32\drivers\swmidi.sys
08:13:03.0640 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\swmidi.sys. md5: 8CE882BCC6CF8A62F2B2323D95CB3D01
08:13:03.0640 3028  swmidi ( LockedFile.Multi.Generic ) - warning
08:13:03.0640 3028  swmidi - detected LockedFile.Multi.Generic (1)
08:13:03.0656 3028  SwPrv - ok
08:13:03.0703 3028  [ 1FF3217614018630D0A6758630FC698C ] symc810         C:\WINDOWS\system32\DRIVERS\symc810.sys
08:13:03.0703 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\symc810.sys. md5: 1FF3217614018630D0A6758630FC698C
08:13:03.0718 3028  symc810 ( LockedFile.Multi.Generic ) - warning
08:13:03.0718 3028  symc810 - detected LockedFile.Multi.Generic (1)
08:13:03.0750 3028  [ 070E001D95CF725186EF8B20335F933C ] symc8xx         C:\WINDOWS\system32\DRIVERS\symc8xx.sys
08:13:03.0750 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\symc8xx.sys. md5: 070E001D95CF725186EF8B20335F933C
08:13:03.0750 3028  symc8xx ( LockedFile.Multi.Generic ) - warning
08:13:03.0750 3028  symc8xx - detected LockedFile.Multi.Generic (1)
08:13:03.0781 3028  [ 80AC1C4ABBE2DF3B738BF15517A51F2C ] sym_hi          C:\WINDOWS\system32\DRIVERS\sym_hi.sys
08:13:03.0781 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\sym_hi.sys. md5: 80AC1C4ABBE2DF3B738BF15517A51F2C
08:13:03.0781 3028  sym_hi ( LockedFile.Multi.Generic ) - warning
08:13:03.0781 3028  sym_hi - detected LockedFile.Multi.Generic (1)
08:13:03.0796 3028  [ BF4FAB949A382A8E105F46EBB4937058 ] sym_u3          C:\WINDOWS\system32\DRIVERS\sym_u3.sys
08:13:03.0796 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\sym_u3.sys. md5: BF4FAB949A382A8E105F46EBB4937058
08:13:03.0796 3028  sym_u3 ( LockedFile.Multi.Generic ) - warning
08:13:03.0796 3028  sym_u3 - detected LockedFile.Multi.Generic (1)
08:13:03.0828 3028  [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio        C:\WINDOWS\system32\drivers\sysaudio.sys
08:13:03.0828 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\sysaudio.sys. md5: 8B83F3ED0F1688B4958F77CD6D2BF290
08:13:03.0843 3028  sysaudio ( LockedFile.Multi.Generic ) - warning
08:13:03.0843 3028  sysaudio - detected LockedFile.Multi.Generic (1)
08:13:03.0890 3028  [ 2903FFFA2523926D6219428040DCE6B9 ] SysmonLog       C:\WINDOWS\system32\smlogsvc.exe
08:13:03.0890 3028  SysmonLog - ok
08:13:03.0953 3028  [ 05903CAC4B98908D55EA5774775B382E ] TapiSrv         C:\WINDOWS\System32\tapisrv.dll
08:13:03.0953 3028  TapiSrv - ok
08:13:04.0031 3028  [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip           C:\WINDOWS\system32\DRIVERS\tcpip.sys
08:13:04.0031 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\tcpip.sys. md5: 9AEFA14BD6B182D61E3119FA5F436D3D
08:13:04.0078 3028  Tcpip ( LockedFile.Multi.Generic ) - warning
08:13:04.0078 3028  Tcpip - detected LockedFile.Multi.Generic (1)
08:13:04.0109 3028  [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE          C:\WINDOWS\system32\drivers\TDPIPE.sys
08:13:04.0125 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\TDPIPE.sys. md5: 6471A66807F5E104E4885F5B67349397
08:13:04.0125 3028  TDPIPE ( LockedFile.Multi.Generic ) - warning
08:13:04.0125 3028  TDPIPE - detected LockedFile.Multi.Generic (1)
08:13:04.0171 3028  [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP           C:\WINDOWS\system32\drivers\TDTCP.sys
08:13:04.0171 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\TDTCP.sys. md5: C56B6D0402371CF3700EB322EF3AAF61
08:13:04.0171 3028  TDTCP ( LockedFile.Multi.Generic ) - warning
08:13:04.0171 3028  TDTCP - detected LockedFile.Multi.Generic (1)
08:13:04.0218 3028  [ 88155247177638048422893737429D9E ] TermDD          C:\WINDOWS\system32\DRIVERS\termdd.sys
08:13:04.0218 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\termdd.sys. md5: 88155247177638048422893737429D9E
08:13:04.0218 3028  TermDD ( LockedFile.Multi.Generic ) - warning
08:13:04.0218 3028  TermDD - detected LockedFile.Multi.Generic (1)
08:13:04.0265 3028  [ B7DE02C863D8F5A005A7BF375375A6A4 ] TermService     C:\WINDOWS\System32\termsrv.dll
08:13:04.0265 3028  TermService - ok
08:13:04.0296 3028  [ 2DB7D303C36DDD055215052F118E8E75 ] Themes          C:\WINDOWS\System32\shsvcs.dll
08:13:04.0296 3028  Themes - ok
08:13:04.0328 3028  [ 03681A1CE77F51586903869A5AB1DEAB ] TlntSvr         C:\WINDOWS\system32\tlntsvr.exe
08:13:04.0343 3028  TlntSvr - ok
08:13:04.0359 3028  [ D213A9247DC347F305A2D4CC9B951487 ] TosIde          C:\WINDOWS\system32\DRIVERS\toside.sys
08:13:04.0359 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\toside.sys. md5: D213A9247DC347F305A2D4CC9B951487
08:13:04.0359 3028  TosIde ( LockedFile.Multi.Generic ) - warning
08:13:04.0375 3028  TosIde - detected LockedFile.Multi.Generic (1)
08:13:04.0437 3028  [ 626504572B175867F30F3215C04B3E2F ] TrkWks          C:\WINDOWS\system32\trkwks.dll
08:13:04.0437 3028  TrkWks - ok
08:13:04.0500 3028  [ 20BD83726D69316C3817D1134E5BC465 ] TTUSB2          C:\WINDOWS\system32\Drivers\ttusb2.sys
08:13:04.0500 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\Drivers\ttusb2.sys. md5: 20BD83726D69316C3817D1134E5BC465
08:13:04.0515 3028  TTUSB2 ( LockedFile.Multi.Generic ) - warning
08:13:04.0515 3028  TTUSB2 - detected LockedFile.Multi.Generic (1)
08:13:04.0578 3028  [ 607FC73722F62E1820C8183D58ED1668 ] TVICPORT        C:\WINDOWS\SYSTEM32\DRIVERS\TVICPORT.SYS
08:13:04.0578 3028  Suspicious file (NoAccess): C:\WINDOWS\SYSTEM32\DRIVERS\TVICPORT.SYS. md5: 607FC73722F62E1820C8183D58ED1668
08:13:04.0578 3028  TVICPORT ( LockedFile.Multi.Generic ) - warning
08:13:04.0578 3028  TVICPORT - detected LockedFile.Multi.Generic (1)
08:13:04.0640 3028  [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs            C:\WINDOWS\system32\drivers\Udfs.sys
08:13:04.0640 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\Udfs.sys. md5: 5787B80C2E3C5E2F56C2A233D91FA2C9
08:13:04.0640 3028  Udfs ( LockedFile.Multi.Generic ) - warning
08:13:04.0640 3028  Udfs - detected LockedFile.Multi.Generic (1)
08:13:04.0671 3028  [ 1B698A51CD528D8DA4FFAED66DFC51B9 ] ultra           C:\WINDOWS\system32\DRIVERS\ultra.sys
08:13:04.0671 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\ultra.sys. md5: 1B698A51CD528D8DA4FFAED66DFC51B9
08:13:04.0671 3028  ultra ( LockedFile.Multi.Generic ) - warning
08:13:04.0671 3028  ultra - detected LockedFile.Multi.Generic (1)
08:13:04.0750 3028  [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update          C:\WINDOWS\system32\DRIVERS\update.sys
08:13:04.0750 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\update.sys. md5: 402DDC88356B1BAC0EE3DD1580C76A31
08:13:04.0765 3028  Update ( LockedFile.Multi.Generic ) - warning
08:13:04.0765 3028  Update - detected LockedFile.Multi.Generic (1)
08:13:04.0812 3028  [ 1DFD8975D8C89214B98D9387C1125B49 ] upnphost        C:\WINDOWS\System32\upnphost.dll
08:13:04.0812 3028  upnphost - ok
08:13:04.0843 3028  [ 9B11E6118958E63E1FEF129466E2BDA7 ] UPS             C:\WINDOWS\System32\ups.exe
08:13:04.0843 3028  UPS - ok
08:13:04.0921 3028  [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp         C:\WINDOWS\system32\DRIVERS\usbccgp.sys
08:13:04.0921 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\usbccgp.sys. md5: 173F317CE0DB8E21322E71B7E60A27E8
08:13:04.0937 3028  usbccgp ( LockedFile.Multi.Generic ) - warning
08:13:04.0937 3028  usbccgp - detected LockedFile.Multi.Generic (1)
08:13:04.0984 3028  [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci         C:\WINDOWS\system32\DRIVERS\usbehci.sys
08:13:04.0984 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\usbehci.sys. md5: 65DCF09D0E37D4C6B11B5B0B76D470A7
08:13:05.0000 3028  usbehci ( LockedFile.Multi.Generic ) - warning
08:13:05.0000 3028  usbehci - detected LockedFile.Multi.Generic (1)
08:13:05.0046 3028  [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub          C:\WINDOWS\system32\DRIVERS\usbhub.sys
08:13:05.0046 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\usbhub.sys. md5: 1AB3CDDE553B6E064D2E754EFE20285C
08:13:05.0046 3028  usbhub ( LockedFile.Multi.Generic ) - warning
08:13:05.0046 3028  usbhub - detected LockedFile.Multi.Generic (1)
08:13:05.0078 3028  [ A717C8721046828520C9EDF31288FC00 ] usbprint        C:\WINDOWS\system32\DRIVERS\usbprint.sys
08:13:05.0078 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\usbprint.sys. md5: A717C8721046828520C9EDF31288FC00
08:13:05.0078 3028  usbprint ( LockedFile.Multi.Generic ) - warning
08:13:05.0078 3028  usbprint - detected LockedFile.Multi.Generic (1)
08:13:05.0140 3028  [ 1C888B000C2F9492F4B15B5B6B84873E ] usbser          C:\WINDOWS\system32\DRIVERS\usbser.sys
08:13:05.0140 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\usbser.sys. md5: 1C888B000C2F9492F4B15B5B6B84873E
08:13:05.0140 3028  usbser ( LockedFile.Multi.Generic ) - warning
08:13:05.0140 3028  usbser - detected LockedFile.Multi.Generic (1)
08:13:05.0203 3028  [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR         C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
08:13:05.0203 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS. md5: A32426D9B14A089EAA1D922E0C5801A9
08:13:05.0203 3028  USBSTOR ( LockedFile.Multi.Generic ) - warning
08:13:05.0203 3028  USBSTOR - detected LockedFile.Multi.Generic (1)
08:13:05.0250 3028  [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci         C:\WINDOWS\system32\DRIVERS\usbuhci.sys
08:13:05.0250 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\usbuhci.sys. md5: 26496F9DEE2D787FC3E61AD54821FFE6
08:13:05.0250 3028  usbuhci ( LockedFile.Multi.Generic ) - warning
08:13:05.0250 3028  usbuhci - detected LockedFile.Multi.Generic (1)
08:13:05.0296 3028  [ 63BBFCA7F390F4C49ED4B96BFB1633E0 ] usbvideo        C:\WINDOWS\system32\Drivers\usbvideo.sys
08:13:05.0296 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\Drivers\usbvideo.sys. md5: 63BBFCA7F390F4C49ED4B96BFB1633E0
08:13:05.0296 3028  usbvideo ( LockedFile.Multi.Generic ) - warning
08:13:05.0296 3028  usbvideo - detected LockedFile.Multi.Generic (1)
08:13:05.0375 3028  [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave         C:\WINDOWS\System32\drivers\vga.sys
08:13:05.0375 3028  Suspicious file (NoAccess): C:\WINDOWS\System32\drivers\vga.sys. md5: 0D3A8FAFCEACD8B7625CD549757A7DF1
08:13:05.0390 3028  VgaSave ( LockedFile.Multi.Generic ) - warning
08:13:05.0390 3028  VgaSave - detected LockedFile.Multi.Generic (1)
08:13:05.0453 3028  [ 754292CE5848B3738281B4F3607EAEF4 ] viaagp          C:\WINDOWS\system32\DRIVERS\viaagp.sys
08:13:05.0453 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\viaagp.sys. md5: 754292CE5848B3738281B4F3607EAEF4
08:13:05.0453 3028  viaagp ( LockedFile.Multi.Generic ) - warning
08:13:05.0453 3028  viaagp - detected LockedFile.Multi.Generic (1)
08:13:05.0484 3028  [ 3B3EFCDA263B8AC14FDF9CBDD0791B2E ] ViaIde          C:\WINDOWS\system32\DRIVERS\viaide.sys
08:13:05.0500 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\viaide.sys. md5: 3B3EFCDA263B8AC14FDF9CBDD0791B2E
08:13:05.0515 3028  ViaIde ( LockedFile.Multi.Generic ) - warning
08:13:05.0515 3028  ViaIde - detected LockedFile.Multi.Generic (1)
08:13:05.0546 3028  [ A5A712F4E880874A477AF790B5186E1D ] VolSnap         C:\WINDOWS\system32\drivers\VolSnap.sys
08:13:05.0546 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\VolSnap.sys. md5: A5A712F4E880874A477AF790B5186E1D
08:13:05.0562 3028  VolSnap ( LockedFile.Multi.Generic ) - warning
08:13:05.0562 3028  VolSnap - detected LockedFile.Multi.Generic (1)
08:13:05.0609 3028  [ 68F106273BE29E7B7EF8266977268E78 ] VSS             C:\WINDOWS\System32\vssvc.exe
08:13:05.0609 3028  VSS - ok
08:13:05.0656 3028  [ 7B353059E665F8B7AD2BBEAEF597CF45 ] W32Time         C:\WINDOWS\system32\w32time.dll
08:13:05.0656 3028  W32Time - ok
08:13:05.0703 3028  [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp          C:\WINDOWS\system32\DRIVERS\wanarp.sys
08:13:05.0703 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\wanarp.sys. md5: E20B95BAEDB550F32DD489265C1DA1F6
08:13:05.0703 3028  Wanarp ( LockedFile.Multi.Generic ) - warning
08:13:05.0703 3028  Wanarp - detected LockedFile.Multi.Generic (1)
08:13:05.0734 3028  [ 46A247F6617526AFE38B6F12F5512120 ] wceusbsh        C:\WINDOWS\system32\DRIVERS\wceusbsh.sys
08:13:05.0734 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\wceusbsh.sys. md5: 46A247F6617526AFE38B6F12F5512120
08:13:05.0734 3028  wceusbsh ( LockedFile.Multi.Generic ) - warning
08:13:05.0734 3028  wceusbsh - detected LockedFile.Multi.Generic (1)
08:13:05.0781 3028  [ D918617B46457B9AC28027722E30F647 ] Wdf01000        C:\WINDOWS\system32\Drivers\wdf01000.sys
08:13:05.0781 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\Drivers\wdf01000.sys. md5: D918617B46457B9AC28027722E30F647
08:13:05.0812 3028  Wdf01000 ( LockedFile.Multi.Generic ) - warning
08:13:05.0812 3028  Wdf01000 - detected LockedFile.Multi.Generic (1)
08:13:05.0828 3028  WDICA - ok
08:13:05.0875 3028  [ 6768ACF64B18196494413695F0C3A00F ] wdmaud          C:\WINDOWS\system32\drivers\wdmaud.sys
08:13:05.0875 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\wdmaud.sys. md5: 6768ACF64B18196494413695F0C3A00F
08:13:05.0890 3028  wdmaud ( LockedFile.Multi.Generic ) - warning
08:13:05.0890 3028  wdmaud - detected LockedFile.Multi.Generic (1)
08:13:05.0968 3028  [ 81727C9873E3905A2FFC1EBD07265002 ] WebClient       C:\WINDOWS\System32\webclnt.dll
08:13:05.0968 3028  WebClient - ok
08:13:06.0015 3028  [ 2C7D830E86B378771AF5DAFEAE428A09 ] WinDriver6      C:\WINDOWS\system32\drivers\windrvr6.sys
08:13:06.0015 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\windrvr6.sys. md5: 2C7D830E86B378771AF5DAFEAE428A09
08:13:06.0015 3028  WinDriver6 ( LockedFile.Multi.Generic ) - warning
08:13:06.0015 3028  WinDriver6 - detected LockedFile.Multi.Generic (1)
08:13:06.0109 3028  [ 6F3F3973D97714CC5F906A19FE883729 ] winmgmt         C:\WINDOWS\system32\wbem\WMIsvc.dll
08:13:06.0109 3028  winmgmt - ok
08:13:06.0156 3028  [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN        C:\WINDOWS\system32\MsPMSNSv.dll
08:13:06.0156 3028  WmdmPmSN - ok
08:13:06.0203 3028  [ FFA4D901D46D07A5BAB2D8307FBB51A6 ] Wmi             C:\WINDOWS\System32\advapi32.dll
08:13:06.0203 3028  Wmi - ok
08:13:06.0234 3028  [ 93908111BA57A6E60EC2FA2DE202105C ] WmiApSrv        C:\WINDOWS\system32\wbem\wmiapsrv.exe
08:13:06.0234 3028  WmiApSrv - ok
08:13:06.0328 3028  [ BF05650BB7DF5E9EBDD25974E22403BB ] WMPNetworkSvc   C:\Programme\Windows Media Player\WMPNetwk.exe
08:13:06.0343 3028  WMPNetworkSvc - ok
08:13:06.0375 3028  [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] WS2IFSL         C:\WINDOWS\System32\drivers\ws2ifsl.sys
08:13:06.0390 3028  Suspicious file (NoAccess): C:\WINDOWS\System32\drivers\ws2ifsl.sys. md5: 6ABE6E225ADB5A751622A9CC3BC19CE8
08:13:06.0390 3028  WS2IFSL ( LockedFile.Multi.Generic ) - warning
08:13:06.0390 3028  WS2IFSL - detected LockedFile.Multi.Generic (1)
08:13:06.0437 3028  [ C98B39829C2BBD34E454150633C62C78 ] WSTCODEC        C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
08:13:06.0437 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS. md5: C98B39829C2BBD34E454150633C62C78
08:13:06.0453 3028  WSTCODEC ( LockedFile.Multi.Generic ) - warning
08:13:06.0453 3028  WSTCODEC - detected LockedFile.Multi.Generic (1)
08:13:06.0500 3028  [ 7B4FE05202AA6BF9F4DFD0E6A0D8A085 ] wuauserv        C:\WINDOWS\system32\wuauserv.dll
08:13:06.0500 3028  wuauserv - ok
08:13:06.0546 3028  [ F15FEAFFFBB3644CCC80C5DA584E6311 ] WudfPf          C:\WINDOWS\system32\DRIVERS\WudfPf.sys
08:13:06.0546 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\WudfPf.sys. md5: F15FEAFFFBB3644CCC80C5DA584E6311
08:13:06.0546 3028  WudfPf ( LockedFile.Multi.Generic ) - warning
08:13:06.0546 3028  WudfPf - detected LockedFile.Multi.Generic (1)
08:13:06.0562 3028  [ 28B524262BCE6DE1F7EF9F510BA3985B ] WudfRd          C:\WINDOWS\system32\DRIVERS\wudfrd.sys
08:13:06.0562 3028  Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\wudfrd.sys. md5: 28B524262BCE6DE1F7EF9F510BA3985B
08:13:06.0562 3028  WudfRd ( LockedFile.Multi.Generic ) - warning
08:13:06.0562 3028  WudfRd - detected LockedFile.Multi.Generic (1)
08:13:06.0609 3028  [ 05231C04253C5BC30B26CBAAE680ED89 ] WudfSvc         C:\WINDOWS\System32\WUDFSvc.dll
08:13:06.0609 3028  WudfSvc - ok
08:13:06.0671 3028  [ C4F109C005F6725162D2D12CA751E4A7 ] WZCSVC          C:\WINDOWS\System32\wzcsvc.dll
08:13:06.0687 3028  WZCSVC - ok
08:13:06.0734 3028  [ EEB1D6B491F6448A6214A8043266E566 ] XilinxPC4Driver C:\WINDOWS\System32\drivers\XPC4DRVR.SYS
08:13:06.0734 3028  Suspicious file (NoAccess): C:\WINDOWS\System32\drivers\XPC4DRVR.SYS. md5: EEB1D6B491F6448A6214A8043266E566
08:13:06.0765 3028  XilinxPC4Driver ( LockedFile.Multi.Generic ) - warning
08:13:06.0765 3028  XilinxPC4Driver - detected LockedFile.Multi.Generic (1)
08:13:06.0812 3028  [ 0ADA34871A2E1CD2CAAFED1237A47750 ] xmlprov         C:\WINDOWS\System32\xmlprov.dll
08:13:06.0812 3028  xmlprov - ok
08:13:06.0812 3028  ================ Scan global ===============================
08:13:06.0906 3028  [ 2C60091CA5F67C3032EAB3B30390C27F ] C:\WINDOWS\system32\basesrv.dll
08:13:06.0953 3028  [ A28CE25B59C90E12743001A1F2AE3613 ] C:\WINDOWS\system32\winsrv.dll
08:13:06.0968 3028  [ A28CE25B59C90E12743001A1F2AE3613 ] C:\WINDOWS\system32\winsrv.dll
08:13:06.0984 3028  [ A3EDBE9053889FB24AB22492472B39DC ] C:\WINDOWS\system32\services.exe
08:13:06.0984 3028  [Global] - ok
08:13:06.0984 3028  ================ Scan MBR ==================================
08:13:07.0000 3028  [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk0\DR0
08:13:07.0171 3028  \Device\Harddisk0\DR0 - ok
08:13:07.0187 3028  [ 72B8CE41AF0DE751C946802B3ED844B4 ] \Device\Harddisk1\DR1
08:13:07.0375 3028  \Device\Harddisk1\DR1 - ok
08:13:07.0375 3028  ================ Scan VBR ==================================
08:13:07.0375 3028  [ C106CB2838AEDB4386C0BFEE39759877 ] \Device\Harddisk0\DR0\Partition1
08:13:07.0375 3028  \Device\Harddisk0\DR0\Partition1 - ok
08:13:07.0406 3028  [ C1A818F0F9A20E756708C33D74BF1CEB ] \Device\Harddisk0\DR0\Partition2
08:13:07.0406 3028  \Device\Harddisk0\DR0\Partition2 - ok
08:13:07.0406 3028  [ DF04922DD6C101B08219DF451C2AAE38 ] \Device\Harddisk1\DR1\Partition1
08:13:07.0406 3028  \Device\Harddisk1\DR1\Partition1 - ok
08:13:07.0406 3028  ============================================================
08:13:07.0406 3028  Scan finished
08:13:07.0406 3028  ============================================================
08:13:07.0421 0912  Detected object count: 232
08:13:07.0421 0912  Actual detected object count: 232
08:13:30.0593 0912  C:\WINDOWS\System32\Drivers\4d3ab16ba79b8771.sys - copied to quarantine
08:13:30.0625 0912  HKLM\SYSTEM\ControlSet002\services\4d3ab16ba79b8771 - will be deleted on reboot
08:13:30.0656 0912  HKLM\SYSTEM\ControlSet003\services\4d3ab16ba79b8771 - will be deleted on reboot
08:13:30.0750 0912  C:\WINDOWS\System32\Drivers\4d3ab16ba79b8771.sys - will be deleted on reboot
08:13:30.0750 0912  4d3ab16ba79b8771 ( Rootkit.Win32.Necurs.gen ) - User select action: Delete
08:13:30.0765 0912  a320raid ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0765 0912  a320raid ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0765 0912  abp480n5 ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0765 0912  abp480n5 ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0765 0912  ACPI ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0765 0912  ACPI ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0765 0912  ACPIEC ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0765 0912  ACPIEC ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0765 0912  adpu160m ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0765 0912  adpu160m ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0765 0912  adpu320 ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0765 0912  adpu320 ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0765 0912  aec ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0765 0912  aec ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0781 0912  AFD ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0781 0912  AFD ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0781 0912  agp440 ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0781 0912  agp440 ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0781 0912  agpCPQ ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0781 0912  agpCPQ ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0781 0912  Aha154x ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0781 0912  Aha154x ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0781 0912  aic78u2 ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0781 0912  aic78u2 ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0781 0912  aic78xx ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0781 0912  aic78xx ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0781 0912  akshasp ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0781 0912  akshasp ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0796 0912  aksusb ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0796 0912  aksusb ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0796 0912  AliIde ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0796 0912  AliIde ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0796 0912  alim1541 ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0796 0912  alim1541 ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0796 0912  AlteraByteBlaster ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0796 0912  AlteraByteBlaster ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0796 0912  altio ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0796 0912  altio ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0796 0912  AltiumUSBJtag ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0796 0912  AltiumUSBJtag ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0812 0912  amdagp ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0812 0912  amdagp ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0812 0912  amsint ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0812 0912  amsint ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0812 0912  Arp1394 ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0812 0912  Arp1394 ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0812 0912  asc ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0812 0912  asc ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0812 0912  asc3350p ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0812 0912  asc3350p ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0812 0912  asc3550 ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0812 0912  asc3550 ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0812 0912  AsyncMac ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0812 0912  AsyncMac ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0828 0912  atapi ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0828 0912  atapi ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0828 0912  Atmarpc ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0828 0912  Atmarpc ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0828 0912  audstub ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0828 0912  audstub ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0828 0912  b57w2k ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0828 0912  b57w2k ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0828 0912  Beep ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0828 0912  Beep ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0828 0912  cbidf ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0828 0912  cbidf ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0843 0912  cbidf2k ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0843 0912  cbidf2k ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0843 0912  CCDECODE ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0843 0912  CCDECODE ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0843 0912  cd20xrnt ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0843 0912  cd20xrnt ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0843 0912  Cdaudio ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0843 0912  Cdaudio ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0843 0912  Cdfs ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0843 0912  Cdfs ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0843 0912  Cdrom ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0843 0912  Cdrom ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0859 0912  CERUSB ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0859 0912  CERUSB ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0859 0912  CmdIde ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0859 0912  CmdIde ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0859 0912  Cpqarray ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0859 0912  Cpqarray ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0859 0912  dac2w2k ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0859 0912  dac2w2k ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0859 0912  dac960nt ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0859 0912  dac960nt ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0859 0912  Disk ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0859 0912  Disk ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0859 0912  dmboot ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0859 0912  dmboot ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0875 0912  dmio ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0875 0912  dmio ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0875 0912  dmload ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0875 0912  dmload ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0875 0912  DMusic ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0875 0912  DMusic ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0875 0912  dpti2o ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0875 0912  dpti2o ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0875 0912  drmkaud ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0875 0912  drmkaud ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0875 0912  DS1410D ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0875 0912  DS1410D ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0890 0912  ELUSBXP ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0890 0912  ELUSBXP ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0890 0912  Fastfat ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0890 0912  Fastfat ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0890 0912  Fdc ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0890 0912  Fdc ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0890 0912  Fips ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0890 0912  Fips ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0890 0912  Flpydisk ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0890 0912  Flpydisk ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0890 0912  FltMgr ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0890 0912  FltMgr ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0906 0912  fssfltr ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0906 0912  fssfltr ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0906 0912  FsUsbExDisk ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0906 0912  FsUsbExDisk ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0906 0912  Fs_Rec ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0906 0912  Fs_Rec ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0906 0912  FTD2XX ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0906 0912  FTD2XX ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0906 0912  FTDIBUS ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0906 0912  FTDIBUS ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0906 0912  Ftdisk ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0906 0912  Ftdisk ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0906 0912  FTSER2K ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0906 0912  FTSER2K ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0906 0912  GATEXP ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0906 0912  GATEXP ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0921 0912  GEARAspiWDM ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0921 0912  GEARAspiWDM ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0921 0912  Gpc ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0921 0912  Gpc ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0921 0912  hardlock ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0921 0912  hardlock ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0921 0912  Haspnt ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0921 0912  Haspnt ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0921 0912  HDAudBus ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0921 0912  HDAudBus ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0921 0912  HidUsb ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0921 0912  HidUsb ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0921 0912  hpn ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0921 0912  hpn ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0921 0912  HTTP ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0921 0912  HTTP ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0937 0912  i2omgmt ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0937 0912  i2omgmt ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0937 0912  i2omp ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0937 0912  i2omp ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0937 0912  i8042prt ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0937 0912  i8042prt ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0937 0912  iaStor ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0937 0912  iaStor ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0937 0912  Imapi ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0937 0912  Imapi ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0937 0912  ini910u ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0937 0912  ini910u ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0937 0912  IntcAzAudAddService ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0937 0912  IntcAzAudAddService ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0953 0912  IntelIde ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0953 0912  IntelIde ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0953 0912  intelppm ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0953 0912  intelppm ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0953 0912  Ip6Fw ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0953 0912  Ip6Fw ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0953 0912  IpFilterDriver ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0953 0912  IpFilterDriver ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0953 0912  IpInIp ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0953 0912  IpInIp ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0953 0912  IpNat ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0953 0912  IpNat ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0953 0912  IPSec ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0953 0912  IPSec ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0953 0912  IRENUM ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0953 0912  IRENUM ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0968 0912  isapnp ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0968 0912  isapnp ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0968 0912  Kbdclass ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0968 0912  Kbdclass ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0968 0912  kbdhid ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0968 0912  kbdhid ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0968 0912  KEILUL ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0968 0912  KEILUL ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0968 0912  kmixer ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0968 0912  kmixer ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0968 0912  KSecDD ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0968 0912  KSecDD ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0968 0912  libusb0 ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0968 0912  libusb0 ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0968 0912  Ltxred ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0968 0912  Ltxred ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0968 0912  mlnxfltr ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0968 0912  mlnxfltr ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0984 0912  mnmdd ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0984 0912  mnmdd ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0984 0912  Modem ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0984 0912  Modem ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0984 0912  Mouclass ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0984 0912  Mouclass ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0984 0912  mouhid ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0984 0912  mouhid ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0984 0912  MountMgr ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0984 0912  MountMgr ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0984 0912  mraid35x ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0984 0912  mraid35x ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0984 0912  MRxDAV ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0984 0912  MRxDAV ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0984 0912  MRxSmb ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0984 0912  MRxSmb ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:30.0984 0912  Msfs ( LockedFile.Multi.Generic ) - skipped by user
08:13:30.0984 0912  Msfs ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0000 0912  MSKSSRV ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0000 0912  MSKSSRV ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0000 0912  MSPCLOCK ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0000 0912  MSPCLOCK ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0000 0912  MSPQM ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0000 0912  MSPQM ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0000 0912  mssmbios ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0000 0912  mssmbios ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0000 0912  MSTEE ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0000 0912  MSTEE ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0000 0912  MultiLINX ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0000 0912  MultiLINX ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0000 0912  Mup ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0000 0912  Mup ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0000 0912  NABTSFEC ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0000 0912  NABTSFEC ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0000 0912  NDIS ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0000 0912  NDIS ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0000 0912  NdisIP ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0000 0912  NdisIP ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0015 0912  NdisTapi ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0015 0912  NdisTapi ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0015 0912  Ndisuio ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0015 0912  Ndisuio ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0015 0912  NdisWan ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0015 0912  NdisWan ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0015 0912  NDMSHLP ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0015 0912  NDMSHLP ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0015 0912  NDProxy ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0015 0912  NDProxy ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0015 0912  NetBIOS ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0015 0912  NetBIOS ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0015 0912  NetBT ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0015 0912  NetBT ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0015 0912  NIC1394 ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0015 0912  NIC1394 ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0015 0912  Npfs ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0015 0912  Npfs ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0015 0912  Ntfs ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0015 0912  Ntfs ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0031 0912  Null ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0031 0912  Null ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0031 0912  nv ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0031 0912  nv ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0031 0912  nvatabus ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0031 0912  nvatabus ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0031 0912  nvraid ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0031 0912  nvraid ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0031 0912  NwlnkFlt ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0031 0912  NwlnkFlt ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0031 0912  NwlnkFwd ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0031 0912  NwlnkFwd ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0031 0912  ohci1394 ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0031 0912  ohci1394 ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0031 0912  OTSysCom ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0031 0912  OTSysCom ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0031 0912  P3 ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0031 0912  P3 ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0031 0912  par1284 ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0031 0912  par1284 ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0031 0912  Parport ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0031 0912  Parport ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0031 0912  PartMgr ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0031 0912  PartMgr ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0046 0912  ParVdm ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0046 0912  ParVdm ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0046 0912  Pcan_usb ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0046 0912  Pcan_usb ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0046 0912  pccsmcfd ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0046 0912  pccsmcfd ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0046 0912  PCI ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0046 0912  PCI ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0046 0912  PCIIde ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0046 0912  PCIIde ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0046 0912  Pcmcia ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0046 0912  Pcmcia ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0046 0912  PdiPorts ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0046 0912  PdiPorts ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0046 0912  perc2 ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0046 0912  perc2 ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0046 0912  perc2hib ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0046 0912  perc2hib ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0062 0912  Pivot ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0062 0912  Pivot ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0062 0912  pivotmou ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0062 0912  pivotmou ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0062 0912  PLIN_USB ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0062 0912  PLIN_USB ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0062 0912  PptpMiniport ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0062 0912  PptpMiniport ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0062 0912  Ptilink ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0062 0912  Ptilink ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0062 0912  ql1080 ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0062 0912  ql1080 ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0062 0912  Ql10wnt ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0062 0912  Ql10wnt ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0062 0912  ql12160 ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0062 0912  ql12160 ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0062 0912  ql1240 ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0062 0912  ql1240 ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0062 0912  ql1280 ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0062 0912  ql1280 ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0078 0912  RasAcd ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0078 0912  RasAcd ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0078 0912  Rasl2tp ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0078 0912  Rasl2tp ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0078 0912  RasPppoe ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0078 0912  RasPppoe ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0078 0912  Raspti ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0078 0912  Raspti ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0078 0912  Rdbss ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0078 0912  Rdbss ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0078 0912  RDPCDD ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0078 0912  RDPCDD ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0078 0912  rdpdr ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0078 0912  rdpdr ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0078 0912  RDPWD ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0078 0912  RDPWD ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0078 0912  redbook ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0078 0912  redbook ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0093 0912  RWKPUA ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0093 0912  RWKPUA ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0093 0912  RWKXP ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0093 0912  RWKXP ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0093 0912  Secdrv ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0093 0912  Secdrv ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0093 0912  Sentinel ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0093 0912  Sentinel ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0093 0912  serenum ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0093 0912  serenum ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0093 0912  Serial ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0093 0912  Serial ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0093 0912  SerMon ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0093 0912  SerMon ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0093 0912  Sfloppy ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0093 0912  Sfloppy ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0093 0912  silabenm ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0093 0912  silabenm ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0093 0912  silabser ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0093 0912  silabser ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0093 0912  sisagp ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0093 0912  sisagp ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0109 0912  SIUSBXP ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0109 0912  SIUSBXP ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0109 0912  slabbus ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0109 0912  slabbus ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0109 0912  slabser ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0109 0912  slabser ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0109 0912  SLIP ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0109 0912  SLIP ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0109 0912  Sntnlusb ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0109 0912  Sntnlusb ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0109 0912  Sparrow ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0109 0912  Sparrow ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0109 0912  splitter ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0109 0912  splitter ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0109 0912  sr ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0109 0912  sr ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0109 0912  Srv ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0109 0912  Srv ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0109 0912  sscdbus ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0109 0912  sscdbus ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0125 0912  sscdmdfl ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0125 0912  sscdmdfl ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0125 0912  sscdmdm ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0125 0912  sscdmdm ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0125 0912  STM Parallel Driver ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0125 0912  STM Parallel Driver ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0125 0912  streamip ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0125 0912  streamip ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0125 0912  swenum ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0125 0912  swenum ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0125 0912  swmidi ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0125 0912  swmidi ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0125 0912  symc810 ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0125 0912  symc810 ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0125 0912  symc8xx ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0125 0912  symc8xx ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0125 0912  sym_hi ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0125 0912  sym_hi ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0125 0912  sym_u3 ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0125 0912  sym_u3 ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0125 0912  sysaudio ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0125 0912  sysaudio ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0140 0912  Tcpip ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0140 0912  Tcpip ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0140 0912  TDPIPE ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0140 0912  TDPIPE ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0140 0912  TDTCP ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0140 0912  TDTCP ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0140 0912  TermDD ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0140 0912  TermDD ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0140 0912  TosIde ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0140 0912  TosIde ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0140 0912  TTUSB2 ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0140 0912  TTUSB2 ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0140 0912  TVICPORT ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0140 0912  TVICPORT ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0140 0912  Udfs ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0140 0912  Udfs ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0140 0912  ultra ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0140 0912  ultra ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0140 0912  Update ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0140 0912  Update ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0156 0912  usbccgp ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0156 0912  usbccgp ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0156 0912  usbehci ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0156 0912  usbehci ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0156 0912  usbhub ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0156 0912  usbhub ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0156 0912  usbprint ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0156 0912  usbprint ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0156 0912  usbser ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0156 0912  usbser ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0156 0912  USBSTOR ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0156 0912  USBSTOR ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0156 0912  usbuhci ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0156 0912  usbuhci ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0156 0912  usbvideo ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0156 0912  usbvideo ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0156 0912  VgaSave ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0156 0912  VgaSave ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0156 0912  viaagp ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0156 0912  viaagp ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0171 0912  ViaIde ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0171 0912  ViaIde ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0171 0912  VolSnap ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0171 0912  VolSnap ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0171 0912  Wanarp ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0171 0912  Wanarp ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0171 0912  wceusbsh ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0171 0912  wceusbsh ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0171 0912  Wdf01000 ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0171 0912  Wdf01000 ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0171 0912  wdmaud ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0171 0912  wdmaud ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0171 0912  WinDriver6 ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0171 0912  WinDriver6 ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0171 0912  WS2IFSL ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0171 0912  WS2IFSL ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0171 0912  WSTCODEC ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0171 0912  WSTCODEC ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0171 0912  WudfPf ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0171 0912  WudfPf ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0171 0912  WudfRd ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0171 0912  WudfRd ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:31.0187 0912  XilinxPC4Driver ( LockedFile.Multi.Generic ) - skipped by user
08:13:31.0187 0912  XilinxPC4Driver ( LockedFile.Multi.Generic ) - User select action: Skip
08:13:50.0328 2404  Deinitialize success
 

Share this post


Link to post
Share on other sites

Hi,

Logfiles bitte anhängen und nicht in den Thread posten :)

Downloade dir bitte Combofix vom folgenden Downloadspiegel

Link 1

WICHTIG - Speichere Combofix auf deinem Desktop

  • Deaktiviere bitte all deine Anti Viren sowie Anti Malware/Spyware Scanner. Diese können Combofix bei der Arbeit stören.
  • Starte die Combofix.exe und folge den Anweisungen auf dem Bildschirm.

    Wenn Combofix fertig ist, wird es eine Logfile erstellen. Bitte poste die C:\Combofix.txt in deiner nächsten Antwort.

    Hinweis: Solltest du nach dem Neustart folgende Fehlermeldung erhalten

    Es wurde versucht, einen Registrierungsschlüssel einem ungültigen Vorgang zu unterziehen, der zum Löschen markiert wurde.

    starte den Rechner einfach neu. Dies sollte das Problem beheben.

Share this post


Link to post
Share on other sites

Hallo,

 

ich habe das Combofix runtergeladen und gestartet.

 Dabei habe ich folgendes festgestellt. Es erscheint irgendann die Meldung "Fertiggestellt Stufe 1 .... 50".

Ist die Stufe 50 erreicht erscheint die Meldung "Lösche Daten", danach wird der Monitor schwarz und der PC fängt an neu zu booten.

 

Share this post


Link to post
Share on other sites

Hi,

die angehängte fix.txt bitte auf dem Desktop speichern. OTL öffnen, die fix.txt in die Box "Benutzerdefinierte Scans/Fixes" ziehen, dort sollte dann ein Script erscheinen. Nun bitte den Fix Button drücken.

Der Fix kann sehr lange dauern, und der Rechner wird neu gestartet.

Downloade Dir bitte AdwCleaner auf deinen Desktop.

  • Starte die adwcleaner.exe mit einem Doppelklick.
  • Klicke auf Suche.
  • Nach Ende des Suchlaufs öffnet sich eine Textdatei.
  • Poste mir den Inhalt mit deiner nächsten Antwort.
  • Die Logdatei findest du auch unter C:\AdwCleaner[R1].txt.
    • Schließe alle offenen Programme und Browser.
    • Starte die adwcleaner.exe mit einem Doppelklick.
    • Klicke auf Löschen.
    • Bestätige jeweils mit Ok.
    • Dein Rechner wird neu gestartet. Nach dem Neustart öffnet sich eine Textdatei.
    • Poste mir den Inhalt mit deiner nächsten Antwort.
    • Die Logdatei findest du auch unter C:\AdwCleaner[s1].txt.
  • ESET Online Scanner

Bitte während der Online-Scans evtl. vorhandene externe Festplatten einschalten! Bitte während der Scans alle Hintergrundwächter (Anti-Virus-Programm, Firewall, Skriptblocking und ähnliches) abstellen und nicht vergessen, alles hinterher wieder einzuschalten.

  • Anmerkung für Vista und Win7 User: Bitte den Browser unbedingt als Administrator starten.
  • Dein Anti-Virus-Programm während des Scans deaktivieren.

    Button eset.jpg (<< klick) drücken.

    • Firefox-User:

      Bitte esetsmartinstaller_enu.exe downloaden.Das Firefox-Addon auf dem Desktop speichern und dann installieren.

    • IE-User:

      müssen das Installieren eines ActiveX Elements erlauben.

  • Setze den einen Hacken bei Yes, i accept the Terms of Use.
  • Drücke den starteg.jpg Button.
  • Warte bis die Komponenten herunter geladen wurden.
  • Setze einen Haken bei "Scan archives".
  • Gehe sicher, dass bei Remove Found Threads kein Haken gesetzt ist.
  • starteg.jpg drücken.
  • Die Signaturen werden herunter geladen.Der Scan beginnt automatisch.
  • Wenn der Scan beendet wurde
    • Klicke esetListThreats.png.
    • Klicke esetExport.png und speichere das Logfile als ESET.txt auf dem Desktop.
    • Klicke Back und Finish
    Bitte poste die Logfile hier.

    Alle Logfiles bitte anhängen, sowie ein frisches OTL logfile. Wie läuft der Rechner?

Share this post


Link to post
Share on other sites

AdwCleaner öffnen > Uninstall

 

Windows-Taste + R > Combofix /Uninstall > Enter drücken

 

OTL öffnen > Button Bereinigung drücken

 

 

 

Hier noch ein paar Tipps zur Absicherung deines Systems.


Ich kann garnicht zu oft erwähnen, wie wichtig es ist, dass dein System Up to Date ist.

  • Bitte überprüfe ob dein System Windows Updates automatisch herunter lädt
  • Windows Updates
    • Windows XP: Start --> Systemsteuerung --> Doppelklick auf Automatische Updates
    • Windows Vista / 7: Start --> Systemsteuerung --> System und Sicherheit --> Automatische Updates aktivieren oder deaktivieren

    [*] Gehe sicher das die automatischen Updates aktiviert sind. [*] Software Updates
    Installierte Software kann ebenfalls Sicherheitslücken haben, welche Malware nutzen kann, um dein System zu infizieren.
    Um deine Installierte Software up to date zu halten, empfehle ich dir http://www.trojaner-board.de/83959-secunia-personal-software-inspector-psi.html'>Secunia Online Software.




Anti- Viren Software

  • Gehe sicher immer eine Anti Viren Software installiert zu haben und das diese auch up to date ist. Es ist nämlich nutzlos wenn diese out of date sind.




Zusätzlicher Schutz

  •   MalwareBytes Anti Malware
    Dies ist eines der besten Anti-Malware Tools auf dem Markt. Es ist ein On- Demond Scan Tool welches viele aktuelle Malware erkennt und auch entfernt.
    Update das Tool und lass es einmal in der Woche laufen. Die Kaufversion biete zudem noch einen Hintergrundwächter.
    Ein Tutorial zur Verwendung findest Du http://www.trojaner-board.de/51187-anleitung-malwarebytes-anti-malware.html'>hier.
  • WinPatrol
    Diese Software macht einen Snapshot deines Systems und warnt dich vor eventuellen Änderungen. Downloade dir die Freeware Version von http://www.winpatrol.com/'>hier.




Sicheres Browsen




Alternative Browser

Andere Browser tendieren zu etwas mehr Sicherheit als der IE, da diese keine Active X Elemente verwenden. Diese können von Spyware zur Infektion deines Systems missbraucht werden.



Performance
Bereinige regelmäßig deine Temp Files. Ich empfehle hierzu http://oldtimer.geekstogo.com/TFC.exe'>TFC
Halte dich fern von jedlichen Registry Cleanern.
Diese Schaden deinem System mehr als sie helfen. Hier ein paar ( englishe ) Links
http://miekiemoes.blogspot.com/2008/02/registry-cleaners-and-system-tweaking_13.html'>Miekemoes Blogspot ( MVP )
http://aumha.net/viewtopic.php?t=28099'>Bill Castner ( MVP )



Don'ts

  • Klicke nicht auf alles nur weil es Dich dazu auffordert und schön bunt ist.
  • verwende keine peer to peer oder Filesharing Software (Emule, uTorrent,..)
  • Lass die Finger von Cracks, Keygens, Serials oder anderer illegaler Software.
  • Öffne keine Anhänge von Dir nicht bekannten Emails. Achte vor allem auf die Dateiendung wie zb deinFoto.jpg.exe


Nun bleibt mir nur noch dir viel Spass beim sicheren Surfen zu wünschen.

Hinweis: Bitte gib mir eine kurze Rückmeldung wenn alles erledigt ist und keine Fragen mehr vorhanden sind, so das ich diesen Thread aus meinen Abos löschen kann.

Share this post


Link to post
Share on other sites

Da das Thema erledigt ist wird der Thread nun geschlossen. Wenn der Thread wieder geöffnet werden soll oder noch Fragen sind schick mir einfach eine PM :).

Share this post


Link to post
Share on other sites
Guest
This topic is now closed to further replies.

  • Recently Browsing   0 members

    No registered users viewing this page.