CIO Tech Eksperten IT-JOB IT-Kurser Events Podcast Søg
Cookie ikon
Avatar billede AndersDom Nybegynder
11. oktober 2012 - 22:28 Der er 13 kommentarer

Virus

Hej. Jeg har virkelig brug for noget hjælp! Når jeg starter min computer får jeg denne fejlmelding fra mit sikkerheds program "Ondsindet kode fundet i master boot record på disk MBR (0x80).
Inficering: Rootkit.MBR.Mebroot.B (Boot image)"

Jeg har F-Secure client som antivirus, men det kan ikke fjerne problemet. Har prøvet at køre anti-malware og Superantispyware, disse kan heller ikke nakke den.

Er der nogen der kan hjælpe?

På forhånd tak :)

Mvh. Anders
Avatar billede Computer Hjælp (Gratis) Mester
11. oktober 2012 - 22:34 #1
Velkommen til E. ...

Under hvilket system:
Win98, ME, W2000, XP, Vista, Win7, OS/2, Unix, Linux, ... ?

---

Hent og instalér CCleaner www.ccleaner.com/ + www.spywarefri.dk/manualer/manual-for-installation-og-brug-af-ccleaner/
www.alt-til-windows.dk/?Artikler/CCleaner-GuideTilOptimeringAfVista/763
Lad programmet foretage en oprydning...

http://gratisupload.dk/vis/62873/
http://gratisupload.dk/vis/62874/
http://gratisupload.dk/vis/63036/

--------

Hent Malwarebytes Anti-Malware herfra:
www.besttechie.net/tools/mbam-setup.exe

Installer programmet - når det er gjort skal du lade programmet opdatere sig. Herefter åbner et vindue, hvor du skal flytte prikken til "Kør et fuldstændigt systemscan" - klik på Skan Knappen - lad programmet arbejde. Når det er færdig (det tager lidt tid afhængig af hvor meget du har på computeren).
Derefter - Tryk på "Vis resultater" knappen efter scanningen - og herefter tryk på "Fjern det valgte" - nu åbnes log'en og du skal gemme den et sted, hvor du kan finde den igen.
Kopier indholdet herind sammen med en frisk log fra HiJackThis...

...og her er omtalte HiJackThis ->
www.spywareinfo.dk/index.htm#/manualer/hijackthis.htm

Bemærk at HiJackThis.exe programmet skal gemmes i en dertil oprettet mappe og IKKE køres direkte fra nettet...

PS: Brug denne version af HJT -> www.trendsecure.com/portal/en-US/_download/HiJackThis.exe

Mht.: Vista/Win7 - HøjreMusseTast - "Kør som Administrator..."

------------------
Avatar billede 220661 Ekspert
12. oktober 2012 - 08:35 #2
Måske denne her:
http://www.hotforsecurity.com/?downloadkey=804a5265650d8145d9b094c2b62cfe60&file=19
Avatar billede 220661 Ekspert
12. oktober 2012 - 08:38 #3
Eller denne her:
http://support.kaspersky.com/viruses/solutions?qid=208280748
Avatar billede f-arn Guru
12. oktober 2012 - 15:10 #4
Ja - TDSSKiller burde kunne fjerne den.
Avatar billede AndersDom Nybegynder
13. oktober 2012 - 19:11 #5
Hej

Har kørt CC Cleaner og Malwarebytes + Hijackthis.

Log fra Malwarebytes

Malwarebytes Anti-Malware (Prøveversion) 1.65.0.1400
www.malwarebytes.org

Database version: v2012.10.11.13

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
L290202 :: L290202PC [administrator]

Beskyttelse: Slået til

11-10-2012 22:53:44
mbam-log-2012-10-11 (22-53-44).txt

Skanningstype: Fuldstændig skanning (C:\|)
Skanningsmuligheder valgt: Hukommelse | Opstart | Registreringsdatabasen | Filsystem | Heuristics/Ekstra | Heuristics/Shuriken | PUP | PUM
Skanningsmuligheder som er deaktiverede: P2P
Objekter skannet: 320835
Tid gået: 1 time(e), 44 minut(ter), 12 sekund(er)

Hukommelses Processorer Inficeret: 0
(Ingen skadelige objekter blev fundet)

Hukommelses Moduler Inficeret: 0
(Ingen skadelige objekter blev fundet)

Registreringsdatabasenøgler Inficeret: 0
(Ingen skadelige objekter blev fundet)

Registreringsdatabaseværdier Inficeret: 0
(Ingen skadelige objekter blev fundet)

Registreringsdatabasedata Objekter Inficeret: 0
(Ingen skadelige objekter blev fundet)

Inficerede Mapper: 0
(Ingen skadelige objekter blev fundet)

Inficerede Filer: 0
(Ingen skadelige objekter blev fundet)

(færdig)

Log fra Hijackthis

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 23:15:03, on 11-10-2012
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\Programmer\Fingerprint Sensor\AtService.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Programmer\Intel\WiFi\bin\S24EvMon.exe
C:\WINDOWS\system32\spoolsv.exe
c:\drivers\audio\r213367\stacsv.exe
C:\Programmer\SUPERAntiSpyware\SASCORE.EXE
C:\Programmer\Intel\WiFi\bin\EvtEng.exe
C:\Programmer\F-Secure\Anti-Virus\fsgk32st.exe
C:\Programmer\F-Secure\Anti-Virus\FSGK32.EXE
C:\Programmer\F-Secure\Common\FSMA32.EXE
C:\Programmer\F-Secure\Common\FSHDLL32.EXE
C:\Programmer\Java\jre6\bin\jqs.exe
C:\Programmer\Malwarebytes' Anti-Malware\mbamscheduler.exe
C:\Programmer\Malwarebytes' Anti-Malware\mbamservice.exe
C:\Programmer\Fælles filer\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\system32\HPZipm12.exe
C:\Programmer\Fælles filer\Intel\WirelessCommon\RegSrvc.exe
C:\Programmer\SMART Technologies\SMART Board Drivers\SMARTBoardService.exe
C:\WINDOWS\system32\svchost.exe
C:\Programmer\Dell\Dell ControlPoint\DCPButtonSvc.exe
C:\Programmer\Dell\Dell ControlPoint\System Manager\DCPSysMgrSvc.exe
C:\Programmer\Intel\Intel Matrix Storage Manager\IAANTMon.exe
C:\Programmer\WIDCOMM\Bluetooth Software\bin\btwdins.exe
C:\Programmer\F-Secure\Common\FNRB32.EXE
C:\Programmer\F-Secure\Common\FIH32.EXE
C:\Programmer\F-Secure\FWES\Program\fsdfwd.exe
C:\Programmer\F-Secure\Anti-Virus\fssm32.exe
C:\WINDOWS\Explorer.EXE
C:\Programmer\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Programmer\F-Secure\Anti-Virus\fsav32.exe
C:\Programmer\IDT\WDM\sttray.exe
C:\WINDOWS\system32\AESTFltr.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Programmer\Intel\Intel Matrix Storage Manager\iaanotif.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\Programmer\Dell\Dell ControlPoint\Dell.ControlPoint.exe
C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe
C:\Programmer\Fælles filer\Java\Java Update\jusched.exe
C:\Programmer\DellTPad\Apoint.exe
C:\Programmer\F-Secure\Common\FSM32.EXE
C:\Programmer\DellTPad\ApMsgFwd.exe
C:\Programmer\Fælles filer\Adobe\ARM\1.0\AdobeARM.exe
C:\Programmer\Winamp\winampa.exe
C:\Programmer\HP\HP Software Update\HPWuSchd2.exe
C:\Programmer\DellTPad\HidFind.exe
C:\Programmer\DellTPad\Apntex.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Programmer\Fælles filer\InstallShield\UpdateService\ISUSPM.exe
C:\Programmer\Windows Live\Messenger\msnmsgr.exe
C:\Programmer\RocketDock\RocketDock.exe
C:\Programmer\Rainlendar2\Rainlendar2.exe
C:\Programmer\Messenger\msmsgs.exe
C:\Programmer\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Programmer\Dell\Dell ControlPoint\System Manager\DCPSysMgr.exe
C:\Documents and Settings\L290202\Application Data\Dropbox\bin\Dropbox.exe
C:\WINDOWS\system32\igfxext.exe
C:\Programmer\Malwarebytes' Anti-Malware\mbam.exe
C:\Documents and Settings\L290202\Dokumenter\Hijackthis\HiJackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.uk.msn.com/USREL/6
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://blackboard.ucsyd.dk/webapps/portal/frameset.jsp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Search,Default_Page_URL = http://g.uk.msn.com/USREL/6
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Hyperlinks
R3 - URLSearchHook: UrlSearchHook Class - {00000000-6E41-4FD3-8538-502F5495E5FC} - C:\Programmer\Ask.com\GenericAskToolbar.dll (file missing)
R3 - URLSearchHook: DVDVideoSoftTB Toolbar - {872b5b88-9db5-4310-bdd0-ac189557e5f5} - C:\Programmer\DVDVideoSoftTB\prxtbDVDV.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Programmer\Fælles filer\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: SMART Notebook Download Plugin - {67BCF957-85FC-4036-8DC4-D4D80E00A77B} - C:\Programmer\SMART Technologies\Notebook Software\NotebookPlugin.dll
O2 - BHO: (no name) - {78875F5C-A685-4405-8DC5-D48DC65452B0} - (no file)
O2 - BHO: DVDVideoSoftTB - {872b5b88-9db5-4310-bdd0-ac189557e5f5} - C:\Programmer\DVDVideoSoftTB\prxtbDVDV.dll
O2 - BHO: Hjælp til tilmelding til Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programmer\Fælles filer\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Programmer\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: LitmusBHO - {C6867EB7-8350-4856-877F-93CF8AE3DC9C} - C:\Programmer\F-Secure\NRS\iescript\baselitmus.dll
O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Programmer\Ask.com\GenericAskToolbar.dll (file missing)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Programmer\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Programmer\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Programmer\Ask.com\GenericAskToolbar.dll (file missing)
O3 - Toolbar: DVDVideoSoftTB Toolbar - {872b5b88-9db5-4310-bdd0-ac189557e5f5} - C:\Programmer\DVDVideoSoftTB\prxtbDVDV.dll
O3 - Toolbar: Browsing Protection Toolbar - {265EEE8E-3228-44D3-AEA5-F7FDF5860049} - C:\Programmer\F-Secure\NRS\iescript\baselitmus.dll
O4 - HKLM\..\Run: [SysTrayApp] %ProgramFiles%\IDT\WDM\sttray.exe
O4 - HKLM\..\Run: [AESTFltr] %SystemRoot%\system32\AESTFltr.exe /NoDlg
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [IAAnotif] C:\Programmer\Intel\Intel Matrix Storage Manager\iaanotif.exe
O4 - HKLM\..\Run: [ChangeTPMAuth] C:\Programmer\Wave Systems Corp\Common\ChangeTPMAuth.exe /T:NTRU12
O4 - HKLM\..\Run: [DellControlPoint] "C:\Programmer\Dell\Dell ControlPoint\Dell.ControlPoint.exe"
O4 - HKLM\..\Run: [PDVDDXSrv] "C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Programmer\Fælles filer\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [Apoint] C:\Programmer\DellTPad\Apoint.exe
O4 - HKLM\..\Run: [F-Secure Manager] "C:\Programmer\F-Secure\Common\FSM32.EXE" /splash
O4 - HKLM\..\Run: [F-Secure TNB] "C:\Programmer\F-Secure\FSGUI\TNBUtil.exe" /CHECKALL /WAITFORSW
O4 - HKLM\..\Run: [ANIWZCS2Service] C:\Programmer\ANI\ANIWZCS2 Service\WZCSLDR2.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Programmer\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Programmer\Fælles filer\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [WinampAgent] C:\Programmer\Winamp\winampa.exe
O4 - HKLM\..\Run: [HP Software Update] C:\Programmer\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Programmer\QuickTime\qttask.exe" -atboottime
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [ISUSPM] "C:\Programmer\Fælles filer\InstallShield\UpdateService\ISUSPM.exe" -scheduler
O4 - HKCU\..\Run: [msnmsgr] "C:\Programmer\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [RocketDock] "C:\Programmer\RocketDock\RocketDock.exe"
O4 - HKCU\..\Run: [Rainlendar2] C:\Programmer\Rainlendar2\Rainlendar2.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Programmer\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Programmer\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKCU\..\Run: [Spotify] "C:\Documents and Settings\L290202\Lokale indstillinger\Temporary Internet Files\Content.IE5\2GNBFIC1\Spotify%20Installer[1].exe" /uri spotify:autostart
O4 - HKCU\..\Run: [HW_OPENEYE_OUC_Mobilt Bredband] "C:\Programmer\Mobilt Bredband\UpdateDog\ouc.exe"
O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\L290202\Lokale indstillinger\Application Data\Google\Update\GoogleUpdate.exe" /c
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOKAL TJENESTE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETVÆRKSTJENESTE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: Dropbox.lnk = C:\Documents and Settings\L290202\Application Data\Dropbox\bin\Dropbox.exe
O4 - Global Startup: Dell ControlPoint System Manager.lnk = C:\Programmer\Dell\Dell ControlPoint\System Manager\DCPSysMgr.exe
O8 - Extra context menu item: E&ksporter til Microsoft Excel - res://C:\PROGRA~1\MI1933~1\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Free YouTube to Mp3 Converter - C:\Documents and Settings\L290202\Application Data\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm
O8 - Extra context menu item: Send to &Bluetooth Device... - C:\Programmer\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Send To Bluetooth - C:\Programmer\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: Blog det - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Programmer\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Blog det i Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Programmer\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Programmer\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Programmer\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Opslag - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MI1933~1\OFFICE11\REFIEBAR.DLL
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Programmer\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Programmer\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programmer\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programmer\Messenger\msmsgs.exe
O15 - Trusted Zone: http://www.filmstriben.dk
O16 - DPF: {029FDBA6-3547-11D7-AA4C-0050BF051A00} (Rawflow ICD Client) - http://downol.dr.dk/download/netradio/Rawflow.cab
O16 - DPF: {149E45D8-163E-4189-86FC-45022AB2B6C9} (SpinTop DRM Control) - file:///C:/Programmer/Peggle%20Nights/Images/stg_drm.ocx
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1249969818656
O16 - DPF: {D4003189-95B1-4A2F-9A87-F2B03665960D} (VodClient Control Class) - http://www.vexcast.com/download/vexcast.cab
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: Domain = cvu.lokal
O17 - HKLM\Software\..\Telephony: DomainName = cvu.lokal
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: Domain = cvu.lokal
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Programmer\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FLLESF~1\Skype\SKYPE4~1.DLL
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Programmer\SUPERAntiSpyware\SASCORE.EXE
O23 - Service: AuthenTec Fingerprint Service (ATService) - AuthenTec, Inc. - C:\Programmer\Fingerprint Sensor\AtService.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Programmer\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: Dell ControlPoint Button Service (buttonsvc32) - Dell Inc. - C:\Programmer\Dell\Dell ControlPoint\DCPButtonSvc.exe
O23 - Service: Dell ControlPoint System Manager (dcpsysmgrsvc) - Dell Inc. - C:\Programmer\Dell\Dell ControlPoint\System Manager\DCPSysMgrSvc.exe
O23 - Service: Intel® PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Programmer\Intel\WiFi\bin\EvtEng.exe
O23 - Service: FSGKHS (F-Secure Gatekeeper Handler Starter) - F-Secure Corporation - C:\Programmer\F-Secure\Anti-Virus\fsgk32st.exe
O23 - Service: F-Secure Network Request Broker - F-Secure Corporation - C:\Programmer\F-Secure\Common\FNRB32.EXE
O23 - Service: F-Secure Anti-Virus Firewall Daemon (FSDFWD) - F-Secure Corporation - C:\Programmer\F-Secure\FWES\Program\fsdfwd.exe
O23 - Service: FSMA - F-Secure Corporation - C:\Programmer\F-Secure\Common\FSMA32.EXE
O23 - Service: F-Secure ORSP Client (FSORSPClient) - F-Secure Corporation - C:\Programmer\F-Secure\ORSP Client\fsorsp.exe
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Programmer\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update Tjeneste (gupdatem) (gupdatem) - Google Inc. - C:\Programmer\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Programmer\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Programmer\Java\jre6\bin\jqs.exe
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Programmer\Malwarebytes' Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Programmer\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: Intel® PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Programmer\Fælles filer\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: Intel® PROSet/Wireless WiFi Service (S24EventMonitor) - Intel(R) Corporation - C:\Programmer\Intel\WiFi\bin\S24EvMon.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Programmer\Skype\Updater\Updater.exe
O23 - Service: SMART Board-tjeneste (SMART Board Service) - SMART Technologies - C:\Programmer\SMART Technologies\SMART Board Drivers\SMARTBoardService.exe
O23 - Service: SMART SNMP Agent Service - SMART Technologies ULC - C:\Programmer\SMART Technologies\SMART Board Drivers\SMARTSNMPAgent.exe
O23 - Service: SMART-webserver (SMART Web Server) - Unknown owner - C:\Programmer\SMART Technologies\SMART Board Drivers\WebServer.exe
O23 - Service: Audio Service (STacSV) - IDT, Inc. - c:\drivers\audio\r213367\stacsv.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Programmer\Fælles filer\SureThing Shared\stllssvr.exe

--
End of file - 15437 bytes

Her er hvad mit antivirus program giver mig når jeg har kørt et scan.

Resultat: 1 malware blev fundet
Rootkit.MBR.Mebroot (virus)
Handling: FEJL




--------------------------------------------------------------------------------

Statistik
Scannede:
Filer: 8577
Ikke scannede: 0
Resultat:
Virus: 1
Spyware: 0
Mistænkelige elementer: 0
Riskware: 0
Handlinger:
Desinficeret: 0
Omdøbt: 0
Slettet: 0
I karantæne: 0
Fejl: 1
Bootsektorer:
Scannede: 0
Inficerede: 0
Mistænkelige elementer: 0
Desinficeret: 0

Har prøvet at køre TDSSKiller, den kan ikke fjerne den

Ps. Jeg har Windows XP pro
Avatar billede f-arn Guru
13. oktober 2012 - 19:26 #6
Har prøvet at køre TDSSKiller, den kan ikke fjerne den

Vil den ikke køre eller ... ?
Avatar billede AndersDom Nybegynder
14. oktober 2012 - 14:47 #7
Jo, men den kan ikke fjerne virussen..
Avatar billede f-arn Guru
14. oktober 2012 - 17:21 #8
Det lyder underligt.

Må vi se loggen.

Den ligger som:

C:\TDSSKiller.[Version]_[Dato]_[Tidspunkt]_log.txt.
Avatar billede AndersDom Nybegynder
14. oktober 2012 - 22:13 #9
Log fra TDSSKiller

22:16:41.0687 2408  TDSS rootkit removing tool 2.8.10.0 Sep 17 2012 19:23:24
22:16:42.0343 2408  ============================================================
22:16:42.0343 2408  Current date / time: 2012/10/14 22:16:42.0343
22:16:42.0343 2408  SystemInfo:
22:16:42.0343 2408 
22:16:42.0343 2408  OS Version: 5.1.2600 ServicePack: 3.0
22:16:42.0343 2408  Product type: Workstation
22:16:42.0343 2408  ComputerName: L290202PC
22:16:42.0343 2408  UserName: L290202
22:16:42.0343 2408  Windows directory: C:\WINDOWS
22:16:42.0343 2408  System windows directory: C:\WINDOWS
22:16:42.0343 2408  Processor architecture: Intel x86
22:16:42.0343 2408  Number of processors: 2
22:16:42.0343 2408  Page size: 0x1000
22:16:42.0343 2408  Boot type: Normal boot
22:16:42.0343 2408  ============================================================
22:16:43.0250 2408  Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000020
22:16:43.0250 2408  Drive \Device\Harddisk1\DR3 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
22:16:52.0359 2408  ============================================================
22:16:52.0359 2408  \Device\Harddisk0\DR0:
22:16:52.0390 2408  MBR partitions:
22:16:52.0390 2408  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3EC10, BlocksNum 0x129D9EB1
22:16:52.0390 2408  \Device\Harddisk1\DR3:
22:16:52.0406 2408  MBR partitions:
22:16:52.0406 2408  \Device\Harddisk1\DR3\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x3A384C02
22:16:52.0406 2408  ============================================================
22:16:52.0453 2408  C: <-> \Device\Harddisk0\DR0\Partition1
22:16:52.0484 2408  E: <-> \Device\Harddisk1\DR3\Partition1
22:16:52.0500 2408  ============================================================
22:16:57.0000 2408  Initialize success
22:16:57.0000 2408  ============================================================
22:16:58.0484 3460  ============================================================
22:16:58.0484 3460  Scan started
22:16:58.0484 3460  Mode: Manual;
22:16:58.0484 3460  ============================================================
22:17:00.0250 3460  ================ Scan system memory ========================
22:17:01.0562 3460  System memory - ok
22:17:01.0562 3460  ================ Scan services =============================
22:17:01.0687 3460  [ 01E81C84AD1D0ACC61CF3CFD06632210 ] !SASCORE        C:\Programmer\SUPERAntiSpyware\SASCORE.EXE
22:17:01.0687 3460  !SASCORE - ok
22:17:01.0953 3460  00954063 - ok
22:17:01.0984 3460  [ 914A9709FC3BF419AD2F85547F2A4832 ] 61883          C:\WINDOWS\system32\DRIVERS\61883.sys
22:17:01.0984 3460  61883 - ok
22:17:01.0984 3460  Abiosdsk - ok
22:17:02.0031 3460  [ 6ABB91494FE6C59089B9336452AB2EA3 ] abp480n5        C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS
22:17:02.0031 3460  abp480n5 - ok
22:17:02.0062 3460  [ 991B6D6FE2A4D70CAF76C41334E60926 ] ACPI            C:\WINDOWS\system32\DRIVERS\ACPI.sys
22:17:02.0062 3460  ACPI - ok
22:17:02.0062 3460  [ 6F99FE216DE8C4875DBB12937620DA0C ] ACPIEC          C:\WINDOWS\system32\DRIVERS\ACPIEC.sys
22:17:02.0062 3460  ACPIEC - ok
22:17:02.0093 3460  [ 9A11864873DA202C996558B2106B0BBC ] adpu160m        C:\WINDOWS\system32\DRIVERS\adpu160m.sys
22:17:02.0093 3460  adpu160m - ok
22:17:02.0140 3460  [ 8BED39E3C35D6A489438B8141717A557 ] aec            C:\WINDOWS\system32\drivers\aec.sys
22:17:02.0140 3460  aec - ok
22:17:02.0187 3460  [ F21D5E93A94514BE9F5B6EBF74A696B2 ] AESTAud        C:\WINDOWS\system32\drivers\AESTAud.sys
22:17:02.0187 3460  AESTAud - ok
22:17:02.0234 3460  [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD            C:\WINDOWS\System32\drivers\afd.sys
22:17:02.0234 3460  AFD - ok
22:17:02.0265 3460  [ 08FD04AA961BDC77FB983F328334E3D7 ] agp440          C:\WINDOWS\system32\DRIVERS\agp440.sys
22:17:02.0265 3460  agp440 - ok
22:17:02.0281 3460  [ 03A7E0922ACFE1B07D5DB2EEB0773063 ] agpCPQ          C:\WINDOWS\system32\DRIVERS\agpCPQ.sys
22:17:02.0281 3460  agpCPQ - ok
22:17:02.0296 3460  [ C23EA9B5F46C7F7910DB3EAB648FF013 ] Aha154x        C:\WINDOWS\system32\DRIVERS\aha154x.sys
22:17:02.0296 3460  Aha154x - ok
22:17:02.0312 3460  [ 19DD0FB48B0C18892F70E2E7D61A1529 ] aic78u2        C:\WINDOWS\system32\DRIVERS\aic78u2.sys
22:17:02.0312 3460  aic78u2 - ok
22:17:02.0343 3460  [ B7FE594A7468AA0132DEB03FB8E34326 ] aic78xx        C:\WINDOWS\system32\DRIVERS\aic78xx.sys
22:17:02.0343 3460  aic78xx - ok
22:17:02.0375 3460  [ 6642DB68B97ECB8088FBA2D2539FDB7E ] Alerter        C:\WINDOWS\system32\alrsvc.dll
22:17:02.0375 3460  Alerter - ok
22:17:02.0406 3460  [ AB74A1B7500ACA7D43D84804CBDF11FB ] ALG            C:\WINDOWS\System32\alg.exe
22:17:02.0406 3460  ALG - ok
22:17:02.0421 3460  [ 1140AB9938809700B46BB88E46D72A96 ] AliIde          C:\WINDOWS\system32\DRIVERS\aliide.sys
22:17:02.0421 3460  AliIde - ok
22:17:02.0453 3460  [ CB08AED0DE2DD889A8A820CD8082D83C ] alim1541        C:\WINDOWS\system32\DRIVERS\alim1541.sys
22:17:02.0453 3460  alim1541 - ok
22:17:02.0468 3460  [ 95B4FB835E28AA1336CEEB07FD5B9398 ] amdagp          C:\WINDOWS\system32\DRIVERS\amdagp.sys
22:17:02.0468 3460  amdagp - ok
22:17:02.0515 3460  [ 79F5ADD8D24BD6893F2903A3E2F3FAD6 ] amsint          C:\WINDOWS\system32\DRIVERS\amsint.sys
22:17:02.0515 3460  amsint - ok
22:17:02.0546 3460  [ 4A5C7EAEFA4C43D139C402C6DA5BFD2C ] ANIO            C:\WINDOWS\system32\ANIO.SYS
22:17:02.0546 3460  ANIO - ok
22:17:02.0593 3460  [ B83F9DA84F7079451C1C6A4A2F140920 ] ApfiltrService  C:\WINDOWS\system32\DRIVERS\Apfiltr.sys
22:17:02.0593 3460  ApfiltrService - ok
22:17:02.0656 3460  [ E39274E0BE87E672211392A4176C4EE6 ] AppMgmt        C:\WINDOWS\System32\appmgmts.dll
22:17:02.0656 3460  AppMgmt - ok
22:17:02.0687 3460  [ B5B8A80875C1DEDEDA8B02765642C32F ] Arp1394        C:\WINDOWS\system32\DRIVERS\arp1394.sys
22:17:02.0687 3460  Arp1394 - ok
22:17:02.0734 3460  [ 62D318E9A0C8FC9B780008E724283707 ] asc            C:\WINDOWS\system32\DRIVERS\asc.sys
22:17:02.0734 3460  asc - ok
22:17:02.0734 3460  [ 69EB0CC7714B32896CCBFD5EDCBEA447 ] asc3350p        C:\WINDOWS\system32\DRIVERS\asc3350p.sys
22:17:02.0734 3460  asc3350p - ok
22:17:02.0765 3460  [ 5D8DE112AA0254B907861E9E9C31D597 ] asc3550        C:\WINDOWS\system32\DRIVERS\asc3550.sys
22:17:02.0765 3460  asc3550 - ok
22:17:02.0859 3460  [ 0E5E4957549056E2BF2C49F4F6B601AD ] aspnet_state    C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
22:17:02.0859 3460  aspnet_state - ok
22:17:02.0890 3460  [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac        C:\WINDOWS\system32\DRIVERS\asyncmac.sys
22:17:02.0890 3460  AsyncMac - ok
22:17:02.0890 3460  [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi          C:\WINDOWS\system32\DRIVERS\atapi.sys
22:17:02.0890 3460  atapi - ok
22:17:02.0906 3460  Atdisk - ok
22:17:02.0921 3460  [ 9916C1225104BA14794209CFA8012159 ] Atmarpc        C:\WINDOWS\system32\DRIVERS\atmarpc.sys
22:17:02.0921 3460  Atmarpc - ok
22:17:03.0015 3460  [ D3FCB01559309C8611E1E1F955E896C9 ] ATService      C:\Programmer\Fingerprint Sensor\AtService.exe
22:17:03.0031 3460  ATService - ok
22:17:03.0062 3460  [ F6C00138B3F637DDE807005B16E61DCC ] AudioSrv        C:\WINDOWS\System32\audiosrv.dll
22:17:03.0062 3460  AudioSrv - ok
22:17:03.0109 3460  [ D9F724AA26C010A217C97606B160ED68 ] audstub        C:\WINDOWS\system32\DRIVERS\audstub.sys
22:17:03.0109 3460  audstub - ok
22:17:03.0140 3460  [ F8E6956A614F15A0860474C5E2A7DE6B ] Avc            C:\WINDOWS\system32\DRIVERS\avc.sys
22:17:03.0140 3460  Avc - ok
22:17:03.0203 3460  [ 58911390115465BF6D8048F21F48655A ] b57w2k          C:\WINDOWS\system32\DRIVERS\b57xp32.sys
22:17:03.0203 3460  b57w2k - ok
22:17:03.0234 3460  [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep            C:\WINDOWS\system32\drivers\Beep.sys
22:17:03.0234 3460  Beep - ok
22:17:03.0343 3460  [ 51C84408E87A52187E25D839C58BDC45 ] BITS            C:\WINDOWS\system32\qmgr.dll
22:17:03.0421 3460  BITS - ok
22:17:03.0453 3460  [ E93DC965521ACE0132093FB203C5C9EE ] Browser        C:\WINDOWS\System32\browser.dll
22:17:03.0468 3460  Browser - ok
22:17:03.0515 3460  [ F688BBBE8E3E7E03E35CAABD66616DDB ] btaudio        C:\WINDOWS\system32\drivers\btaudio.sys
22:17:03.0531 3460  btaudio - ok
22:17:03.0562 3460  [ 2F9F111D31AA3FBBE5781D829A4524E6 ] BTDriver        C:\WINDOWS\system32\DRIVERS\btport.sys
22:17:03.0562 3460  BTDriver - ok
22:17:03.0625 3460  [ 38A3331E2F690D4CDC9DE0604B9416E5 ] BTKRNL          C:\WINDOWS\system32\DRIVERS\btkrnl.sys
22:17:03.0640 3460  BTKRNL - ok
22:17:03.0734 3460  [ D48148110AE078CB7221D0FCF20ADFEC ] btwdins        C:\Programmer\WIDCOMM\Bluetooth Software\bin\btwdins.exe
22:17:03.0734 3460  btwdins - ok
22:17:03.0750 3460  [ 80F61DE965C116051614AC2F04222FF7 ] BTWDNDIS        C:\WINDOWS\system32\DRIVERS\btwdndis.sys
22:17:03.0750 3460  BTWDNDIS - ok
22:17:03.0843 3460  [ 5922BAE0CD84924B9CD7E6BB515EE070 ] btwmodem        C:\WINDOWS\system32\DRIVERS\btwmodem.sys
22:17:03.0843 3460  btwmodem - ok
22:17:03.0890 3460  [ D5AF663711660D32EC230C6AAF7B6B83 ] BTWUSB          C:\WINDOWS\system32\Drivers\btwusb.sys
22:17:03.0890 3460  BTWUSB - ok
22:17:04.0000 3460  [ 81A395AAB3C606D5F1667CC5FC02B3D2 ] buttonsvc32    C:\Programmer\Dell\Dell ControlPoint\DCPButtonSvc.exe
22:17:04.0000 3460  buttonsvc32 - ok
22:17:04.0046 3460  [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf          C:\WINDOWS\system32\DRIVERS\cbidf2k.sys
22:17:04.0046 3460  cbidf - ok
22:17:04.0046 3460  [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k        C:\WINDOWS\system32\drivers\cbidf2k.sys
22:17:04.0046 3460  cbidf2k - ok
22:17:04.0078 3460  [ 0BE5AEF125BE881C4F854C554F2B025C ] CCDECODE        C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
22:17:04.0093 3460  CCDECODE - ok
22:17:04.0109 3460  [ F3EC03299634490E97BBCE94CD2954C7 ] cd20xrnt        C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys
22:17:04.0125 3460  cd20xrnt - ok
22:17:04.0156 3460  [ C1B486A7658353D33A10CC15211A873B ] Cdaudio        C:\WINDOWS\system32\drivers\Cdaudio.sys
22:17:04.0156 3460  Cdaudio - ok
22:17:04.0171 3460  [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs            C:\WINDOWS\system32\drivers\Cdfs.sys
22:17:04.0187 3460  Cdfs - ok
22:17:04.0187 3460  [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom          C:\WINDOWS\system32\DRIVERS\cdrom.sys
22:17:04.0187 3460  Cdrom - ok
22:17:04.0203 3460  Changer - ok
22:17:04.0234 3460  [ 1838615C98AFA3A0AC1F4B15A113A82F ] CiSvc          C:\WINDOWS\system32\cisvc.exe
22:17:04.0234 3460  CiSvc - ok
22:17:04.0250 3460  [ 5CEA9FBC68FBD66A91E7EF09900AB566 ] ClipSrv        C:\WINDOWS\system32\clipsrv.exe
22:17:04.0250 3460  ClipSrv - ok
22:17:04.0296 3460  [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
22:17:04.0359 3460  clr_optimization_v2.0.50727_32 - ok
22:17:04.0390 3460  [ 0F6C187D38D98F8DF904589A5F94D411 ] CmBatt          C:\WINDOWS\system32\DRIVERS\CmBatt.sys
22:17:04.0390 3460  CmBatt - ok
22:17:04.0421 3460  [ 5F473210A23E33AFAFEF3CF42B064D88 ] CmdIde          C:\WINDOWS\system32\DRIVERS\cmdide.sys
22:17:04.0421 3460  CmdIde - ok
22:17:04.0437 3460  [ 6E4C9F21F0FAE8940661144F41B13203 ] Compbatt        C:\WINDOWS\system32\DRIVERS\compbatt.sys
22:17:04.0453 3460  Compbatt - ok
22:17:04.0453 3460  COMSysApp - ok
22:17:04.0468 3460  [ 3EE529119EED34CD212A215E8C40D4B6 ] Cpqarray        C:\WINDOWS\system32\DRIVERS\cpqarray.sys
22:17:04.0468 3460  Cpqarray - ok
22:17:04.0500 3460  [ 325D42794A21D1717B98F354ACF499E2 ] CryptSvc        C:\WINDOWS\System32\cryptsvc.dll
22:17:04.0500 3460  CryptSvc - ok
22:17:04.0546 3460  [ E550E7418984B65A78299D248F0A7F36 ] dac2w2k        C:\WINDOWS\system32\DRIVERS\dac2w2k.sys
22:17:04.0546 3460  dac2w2k - ok
22:17:04.0562 3460  [ 683789CAA3864EB46125AE86FF677D34 ] dac960nt        C:\WINDOWS\system32\DRIVERS\dac960nt.sys
22:17:04.0562 3460  dac960nt - ok
22:17:04.0625 3460  [ 059187B38452A01BB3B397691DDF3552 ] DcomLaunch      C:\WINDOWS\system32\rpcss.dll
22:17:04.0625 3460  DcomLaunch - ok
22:17:04.0734 3460  [ EB8C5E4996F91808FB7CA297B903208B ] dcpsysmgrsvc    C:\Programmer\Dell\Dell ControlPoint\System Manager\DCPSysMgrSvc.exe
22:17:04.0750 3460  dcpsysmgrsvc - ok
22:17:04.0781 3460  [ A6E52FA9ADA7F92DEF4206C0F64F6784 ] Dhcp            C:\WINDOWS\System32\dhcpcsvc.dll
22:17:04.0781 3460  Dhcp - ok
22:17:04.0828 3460  [ 044452051F3E02E7963599FC8F4F3E25 ] Disk            C:\WINDOWS\system32\DRIVERS\disk.sys
22:17:04.0828 3460  Disk - ok
22:17:04.0843 3460  [ A0500678A33802D8954153839301D539 ] DLABMFSM        C:\WINDOWS\system32\Drivers\DLABMFSM.SYS
22:17:04.0843 3460  DLABMFSM - ok
22:17:04.0859 3460  [ B8D2F68CAC54D46281399F9092644794 ] DLABOIOM        C:\WINDOWS\system32\Drivers\DLABOIOM.SYS
22:17:04.0859 3460  DLABOIOM - ok
22:17:04.0875 3460  [ 0EE93AB799D1CB4EC90B36F3612FE907 ] DLACDBHM        C:\WINDOWS\system32\Drivers\DLACDBHM.SYS
22:17:04.0875 3460  DLACDBHM - ok
22:17:04.0875 3460  [ 87413B94AE1FABC117C4E8AE6725134E ] DLADResM        C:\WINDOWS\system32\Drivers\DLADResM.SYS
22:17:04.0875 3460  DLADResM - ok
22:17:04.0875 3460  [ 766A148235BE1C0039C974446E4C0EDC ] DLAIFS_M        C:\WINDOWS\system32\Drivers\DLAIFS_M.SYS
22:17:04.0890 3460  DLAIFS_M - ok
22:17:04.0890 3460  [ 38267CCA177354F1C64450A43A4F7627 ] DLAOPIOM        C:\WINDOWS\system32\Drivers\DLAOPIOM.SYS
22:17:04.0890 3460  DLAOPIOM - ok
22:17:04.0890 3460  [ FD363369FD313B46B5AEAB1A688B52E9 ] DLAPoolM        C:\WINDOWS\system32\Drivers\DLAPoolM.SYS
22:17:04.0890 3460  DLAPoolM - ok
22:17:04.0890 3460  [ 336AE18F0912EF4FBE5518849E004D74 ] DLARTL_M        C:\WINDOWS\system32\Drivers\DLARTL_M.SYS
22:17:04.0890 3460  DLARTL_M - ok
22:17:04.0906 3460  [ FD85F682C1CC2A7CA878C7A448E6D87E ] DLAUDFAM        C:\WINDOWS\system32\Drivers\DLAUDFAM.SYS
22:17:04.0906 3460  DLAUDFAM - ok
22:17:04.0906 3460  [ AF389CE587B6BF5BBDCD6F6ABE5EABC0 ] DLAUDF_M        C:\WINDOWS\system32\Drivers\DLAUDF_M.SYS
22:17:04.0906 3460  DLAUDF_M - ok
22:17:04.0906 3460  dmadmin - ok
22:17:04.0953 3460  [ 8A3088F97B2CAA3340BBB068F314E596 ] dmboot          C:\WINDOWS\system32\drivers\dmboot.sys
22:17:04.0953 3460  dmboot - ok
22:17:04.0968 3460  [ 6D152A2781FFBD6A63A1E58801240E8E ] dmio            C:\WINDOWS\system32\drivers\dmio.sys
22:17:04.0968 3460  dmio - ok
22:17:04.0984 3460  [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload          C:\WINDOWS\system32\drivers\dmload.sys
22:17:04.0984 3460  dmload - ok
22:17:05.0015 3460  [ 6428446DF3FE5C3B439973FB4C43D38E ] dmserver        C:\WINDOWS\System32\dmserver.dll
22:17:05.0015 3460  dmserver - ok
22:17:05.0046 3460  [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic          C:\WINDOWS\system32\drivers\DMusic.sys
22:17:05.0046 3460  DMusic - ok
22:17:05.0078 3460  [ 42970873BC779A19C2BAAD3FC0D5833A ] Dnscache        C:\WINDOWS\System32\dnsrslvr.dll
22:17:05.0078 3460  Dnscache - ok
22:17:05.0109 3460  [ 0B8193A12175EAE5BC34063A63C49CFF ] Dot3svc        C:\WINDOWS\System32\dot3svc.dll
22:17:05.0109 3460  Dot3svc - ok
22:17:05.0140 3460  [ 40F3B93B4E5B0126F2F5C0A7A5E22660 ] dpti2o          C:\WINDOWS\system32\DRIVERS\dpti2o.sys
22:17:05.0140 3460  dpti2o - ok
22:17:05.0171 3460  [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud        C:\WINDOWS\system32\drivers\drmkaud.sys
22:17:05.0171 3460  drmkaud - ok
22:17:05.0203 3460  [ 5D3B71BB2BB0009D65D290E2EF374BD3 ] DRVMCDB        C:\WINDOWS\system32\Drivers\DRVMCDB.SYS
22:17:05.0203 3460  DRVMCDB - ok
22:17:05.0234 3460  [ C591BA9F96F40A1FD6494DAFDCD17185 ] DRVNDDM        C:\WINDOWS\system32\Drivers\DRVNDDM.SYS
22:17:05.0234 3460  DRVNDDM - ok
22:17:05.0265 3460  [ 95885EC4562461D3AD78AA6AC714D32F ] EapHost        C:\WINDOWS\System32\eapsvc.dll
22:17:05.0265 3460  EapHost - ok
22:17:05.0296 3460  [ 396038F82CB672D83E792092319024AA ] ERSvc          C:\WINDOWS\System32\ersvc.dll
22:17:05.0296 3460  ERSvc - ok
22:17:05.0343 3460  esgiguard - ok
22:17:05.0390 3460  [ 32F091E3425759B126760F44B5E931C9 ] Eventlog        C:\WINDOWS\system32\services.exe
22:17:05.0406 3460  Eventlog - ok
22:17:05.0453 3460  [ 72B9667D6F9FF2A85FCC43FDD7C8ED9F ] EventSystem    C:\WINDOWS\system32\es.dll
22:17:05.0468 3460  EventSystem - ok
22:17:05.0578 3460  [ 87A32636C84555525700E623662E34D9 ] EvtEng          C:\Programmer\Intel\WiFi\bin\EvtEng.exe
22:17:05.0593 3460  EvtEng - ok
22:17:05.0593 3460  ewusbnet - ok
22:17:05.0593 3460  ew_hwusbdev - ok
22:17:05.0625 3460  ew_usbenumfilter - ok
22:17:05.0781 3460  [ DC2FFA1CE9841C12DBC038B24FF17FF0 ] F-Secure Gatekeeper C:\Programmer\F-Secure\Anti-Virus\minifilter\fsgk.sys
22:17:05.0781 3460  F-Secure Gatekeeper - ok
22:17:05.0781 3460  [ D8D246F6F64C8115C771589879D966BF ] F-Secure Gatekeeper Handler Starter C:\Programmer\F-Secure\Anti-Virus\fsgk32st.exe
22:17:05.0812 3460  F-Secure Gatekeeper Handler Starter - ok
22:17:05.0875 3460  [ 6137A461CEA0277EF62F53DF4BADF7D0 ] F-Secure HIPS  C:\Programmer\F-Secure\HIPS\drivers\fshs.sys
22:17:05.0875 3460  F-Secure HIPS - ok
22:17:05.0968 3460  [ B17FA57BB3085E0CFDF233E4DBD9B30F ] F-Secure Network Request Broker C:\Programmer\F-Secure\Common\FNRB32.EXE
22:17:05.0968 3460  F-Secure Network Request Broker - ok
22:17:06.0015 3460  [ 38D332A6D56AF32635675F132548343E ] Fastfat        C:\WINDOWS\system32\drivers\Fastfat.sys
22:17:06.0015 3460  Fastfat - ok
22:17:06.0062 3460  [ A17D630FABFE7B796CBDBEE79F9E6612 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
22:17:06.0062 3460  FastUserSwitchingCompatibility - ok
22:17:06.0125 3460  [ B49EBD8514D56838D8D2601E2AB7FFD6 ] Fax            C:\WINDOWS\system32\fxssvc.exe
22:17:06.0125 3460  Fax - ok
22:17:06.0140 3460  [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc            C:\WINDOWS\system32\drivers\Fdc.sys
22:17:06.0140 3460  Fdc - ok
22:17:06.0171 3460  [ BB52A20854CF3E8E0474EE7167C7A3A5 ] Fips            C:\WINDOWS\system32\drivers\Fips.sys
22:17:06.0171 3460  Fips - ok
22:17:06.0187 3460  fke15h.sys - ok
22:17:06.0218 3460  [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk        C:\WINDOWS\system32\drivers\Flpydisk.sys
22:17:06.0218 3460  Flpydisk - ok
22:17:06.0265 3460  [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr          C:\WINDOWS\system32\DRIVERS\fltMgr.sys
22:17:06.0265 3460  FltMgr - ok
22:17:06.0359 3460  [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
22:17:06.0359 3460  FontCache3.0.0.0 - ok
22:17:06.0375 3460  [ 18DA737DD5122A475DA4948ED4643675 ] fsbts          C:\WINDOWS\system32\Drivers\fsbts.sys
22:17:06.0375 3460  fsbts - ok
22:17:06.0468 3460  [ ACCB19D7C58C4CA908904934EFC5B236 ] FSDFWD          C:\Programmer\F-Secure\FWES\Program\fsdfwd.exe
22:17:06.0468 3460  FSDFWD - ok
22:17:06.0500 3460  [ 3B40B0703059461F6F739F4D88FAA6F8 ] FSFW            C:\WINDOWS\system32\drivers\fsdfw.sys
22:17:06.0500 3460  FSFW - ok
22:17:06.0546 3460  [ BCA5577B0C300524BBC61CB19D89A582 ] FSMA            C:\Programmer\F-Secure\Common\FSMA32.EXE
22:17:06.0562 3460  FSMA - ok
22:17:06.0609 3460  [ 42AEF6A385354ACA65FC210CE7CE4D7C ] FSORSPClient    C:\Programmer\F-Secure\ORSP Client\fsorsp.exe
22:17:06.0609 3460  FSORSPClient - ok
22:17:06.0625 3460  [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec          C:\WINDOWS\system32\drivers\Fs_Rec.sys
22:17:06.0625 3460  Fs_Rec - ok
22:17:06.0640 3460  [ 0A58505B5D0ABA661D2FF59CD8CF79B9 ] Ftdisk          C:\WINDOWS\system32\DRIVERS\ftdisk.sys
22:17:06.0640 3460  Ftdisk - ok
22:17:06.0687 3460  [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc            C:\WINDOWS\system32\DRIVERS\msgpc.sys
22:17:06.0687 3460  Gpc - ok
22:17:06.0734 3460  [ 626A24ED1228580B9518C01930936DF9 ] gupdate        C:\Programmer\Google\Update\GoogleUpdate.exe
22:17:06.0734 3460  gupdate - ok
22:17:06.0734 3460  [ 626A24ED1228580B9518C01930936DF9 ] gupdatem        C:\Programmer\Google\Update\GoogleUpdate.exe
22:17:06.0734 3460  gupdatem - ok
22:17:06.0796 3460  [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus        C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
22:17:06.0796 3460  HDAudBus - ok
22:17:06.0890 3460  [ 9E256613B0A999DDD2AA889E340CD402 ] helpsvc        C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
22:17:06.0890 3460  helpsvc - ok
22:17:06.0921 3460  [ 8DBCD76C2A538C26357831DD14CD792F ] HidServ        C:\WINDOWS\System32\hidserv.dll
22:17:06.0921 3460  HidServ - ok
22:17:06.0968 3460  [ CCF82C5EC8A7326C3066DE870C06DAF1 ] hidusb          C:\WINDOWS\system32\DRIVERS\hidusb.sys
22:17:06.0968 3460  hidusb - ok
22:17:07.0000 3460  [ 8751C1091AF19D3787798DA90FFB0902 ] hkmsvc          C:\WINDOWS\System32\kmsvc.dll
22:17:07.0000 3460  hkmsvc - ok
22:17:07.0015 3460  [ B028377DEA0546A5FCFBA928A8AEFAE0 ] hpn            C:\WINDOWS\system32\DRIVERS\hpn.sys
22:17:07.0015 3460  hpn - ok
22:17:07.0046 3460  [ 30CA91E657CEDE2F95359D6EF186F650 ] HPZid412        C:\WINDOWS\system32\DRIVERS\HPZid412.sys
22:17:07.0046 3460  HPZid412 - ok
22:17:07.0062 3460  [ EFD31AFA752AA7C7BBB57BCBE2B01C78 ] HPZipr12        C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
22:17:07.0062 3460  HPZipr12 - ok
22:17:07.0062 3460  [ 7AC43C38CA8FD7ED0B0A4466F753E06E ] HPZius12        C:\WINDOWS\system32\DRIVERS\HPZius12.sys
22:17:07.0078 3460  HPZius12 - ok
22:17:07.0109 3460  [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP            C:\WINDOWS\system32\Drivers\HTTP.sys
22:17:07.0109 3460  HTTP - ok
22:17:07.0156 3460  [ 8E23B6943D42D0BE0419F3FFFDE93A31 ] HTTPFilter      C:\WINDOWS\System32\w3ssl.dll
22:17:07.0156 3460  HTTPFilter - ok
22:17:07.0156 3460  huawei_enumerator - ok
22:17:07.0171 3460  hwdatacard - ok
22:17:07.0203 3460  [ 9368670BD426EBEA5E8B18A62416EC28 ] i2omgmt        C:\WINDOWS\system32\drivers\i2omgmt.sys
22:17:07.0203 3460  i2omgmt - ok
22:17:07.0234 3460  [ F10863BF1CCC290BABD1A09188AE49E0 ] i2omp          C:\WINDOWS\system32\DRIVERS\i2omp.sys
22:17:07.0234 3460  i2omp - ok
22:17:07.0265 3460  [ 42F890598EFB480076558CA3CC151107 ] i8042prt        C:\WINDOWS\system32\DRIVERS\i8042prt.sys
22:17:07.0281 3460  i8042prt - ok
22:17:07.0359 3460  [ 52E8A3CC8269ADB27D25182284C5E650 ] IAANTMON        C:\Programmer\Intel\Intel Matrix Storage Manager\IAANTMon.exe
22:17:07.0375 3460  IAANTMON - ok
22:17:07.0750 3460  [ 3B743262B6456167888D15F1121B3BF7 ] ialm            C:\WINDOWS\system32\DRIVERS\igxpmp32.sys
22:17:08.0093 3460  ialm - ok
22:17:08.0140 3460  [ 650DA76F18F226BFC216D24E6898B9BF ] iaStor          C:\WINDOWS\system32\drivers\iaStor.sys
22:17:08.0140 3460  Suspicious file (Forged): C:\WINDOWS\system32\drivers\iaStor.sys. Real md5: 650DA76F18F226BFC216D24E6898B9BF, Fake md5: EA323EFD2F0DC21889B3E2101D308321
22:17:08.0140 3460  iaStor ( ForgedFile.Multi.Generic ) - warning
22:17:08.0140 3460  iaStor - detected ForgedFile.Multi.Generic (1)
22:17:08.0250 3460  [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc          C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
22:17:08.0265 3460  idsvc - ok
22:17:08.0296 3460  [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi          C:\WINDOWS\system32\DRIVERS\imapi.sys
22:17:08.0296 3460  Imapi - ok
22:17:08.0328 3460  [ F73C9C37D4B7453C2CB7DCFD2640C75F ] ImapiService    C:\WINDOWS\system32\imapi.exe
22:17:08.0343 3460  ImapiService - ok
22:17:08.0375 3460  [ 4A40E045FAEE58631FD8D91AFC620719 ] ini910u        C:\WINDOWS\system32\DRIVERS\ini910u.sys
22:17:08.0375 3460  ini910u - ok
22:17:08.0406 3460  [ F32A62C765885BD8E4352A1565F702A6 ] IntcHdmiAddService C:\WINDOWS\system32\drivers\IntcHdmi.sys
22:17:08.0406 3460  IntcHdmiAddService - ok
22:17:08.0437 3460  [ 3BCDDA95F24D21D4B050C9F0F531C88B ] IntelIde        C:\WINDOWS\system32\DRIVERS\intelide.sys
22:17:08.0437 3460  IntelIde - ok
22:17:08.0484 3460  [ D1CD31B6CD4A99F3B82AEC84CFDD4CBA ] intelppm        C:\WINDOWS\system32\DRIVERS\intelppm.sys
22:17:08.0484 3460  intelppm - ok
22:17:08.0500 3460  [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw          C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
22:17:08.0500 3460  Ip6Fw - ok
22:17:08.0515 3460  [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver  C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
22:17:08.0515 3460  IpFilterDriver - ok
22:17:08.0531 3460  [ B87AB476DCF76E72010632B5550955F5 ] IpInIp          C:\WINDOWS\system32\DRIVERS\ipinip.sys
22:17:08.0531 3460  IpInIp - ok
22:17:08.0562 3460  [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat          C:\WINDOWS\system32\DRIVERS\ipnat.sys
22:17:08.0562 3460  IpNat - ok
22:17:08.0578 3460  [ 23C74D75E36E7158768DD63D92789A91 ] IPSec          C:\WINDOWS\system32\DRIVERS\ipsec.sys
22:17:08.0578 3460  IPSec - ok
22:17:08.0609 3460  [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM          C:\WINDOWS\system32\DRIVERS\irenum.sys
22:17:08.0609 3460  IRENUM - ok
22:17:08.0640 3460  [ 3CE6EC5903C59223B61F6A0B9B84B022 ] isapnp          C:\WINDOWS\system32\DRIVERS\isapnp.sys
22:17:08.0640 3460  isapnp - ok
22:17:08.0750 3460  [ 126A16F569122AE00AD3D12EF831D651 ] JavaQuickStarterService C:\Programmer\Java\jre6\bin\jqs.exe
22:17:08.0750 3460  JavaQuickStarterService - ok
22:17:08.0796 3460  [ 32E823DFD0A7F18CF3B024F78C7AA7DD ] Kbdclass        C:\WINDOWS\system32\DRIVERS\kbdclass.sys
22:17:08.0796 3460  Kbdclass - ok
22:17:08.0812 3460  [ 530D40F58095397B6B8AA5A0FDD074A5 ] kbdhid          C:\WINDOWS\system32\DRIVERS\kbdhid.sys
22:17:08.0812 3460  kbdhid - ok
22:17:08.0828 3460  [ 692BCF44383D056AED41B045A323D378 ] kmixer          C:\WINDOWS\system32\drivers\kmixer.sys
22:17:08.0828 3460  kmixer - ok
22:17:08.0843 3460  [ B467646C54CC746128904E1654C750C1 ] KSecDD          C:\WINDOWS\system32\drivers\KSecDD.sys
22:17:08.0859 3460  KSecDD - ok
22:17:08.0875 3460  [ F429B46A773ED6B84025C8EA9949188F ] LanmanServer    C:\WINDOWS\System32\srvsvc.dll
22:17:08.0890 3460  LanmanServer - ok
22:17:08.0937 3460  [ 62D286F1131AAD51B6D8D8249A27B8CA ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
22:17:08.0937 3460  lanmanworkstation - ok
22:17:08.0937 3460  lbrtfdc - ok
22:17:08.0984 3460  [ 508C79641EB2256D7B8FD9ED64AA7B53 ] LmHosts        C:\WINDOWS\System32\lmhsvc.dll
22:17:08.0984 3460  LmHosts - ok
22:17:08.0984 3460  massfilter - ok
22:17:09.0078 3460  [ 65E794E86468B61F2BC79ABC48BC4433 ] MBAMProtector  C:\WINDOWS\system32\drivers\mbam.sys
22:17:09.0078 3460  MBAMProtector - ok
22:17:09.0109 3460  [ 0DCF16B1449811EFA47AB52CAC84093C ] MBAMScheduler  C:\Programmer\Malwarebytes' Anti-Malware\mbamscheduler.exe
22:17:09.0109 3460  MBAMScheduler - ok
22:17:09.0156 3460  [ 9EAABA4D601004BEA4DAA6E146E19A96 ] MBAMService    C:\Programmer\Malwarebytes' Anti-Malware\mbamservice.exe
22:17:09.0156 3460  MBAMService - ok
22:17:09.0250 3460  [ 11F714F85530A2BD134074DC30E99FCA ] MDM            C:\Programmer\Fælles filer\Microsoft Shared\VS7DEBUG\MDM.EXE
22:17:09.0250 3460  MDM - ok
22:17:09.0296 3460  [ 6C585D70D270607FF861D762494B25E2 ] Messenger      C:\WINDOWS\System32\msgsvc.dll
22:17:09.0296 3460  Messenger - ok
22:17:09.0312 3460  [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd          C:\WINDOWS\system32\drivers\mnmdd.sys
22:17:09.0328 3460  mnmdd - ok
22:17:09.0343 3460  [ 8184E5463AB9BB8CFB37A28852DB16C5 ] mnmsrvc        C:\WINDOWS\system32\mnmsrvc.exe
22:17:09.0343 3460  mnmsrvc - ok
22:17:09.0390 3460  [ 67AC997DB66FDFD07738DF58B45CD1B9 ] Modem          C:\WINDOWS\system32\drivers\Modem.sys
22:17:09.0390 3460  Modem - ok
22:17:09.0390 3460  [ 22774A2AB832972ECA2CE227819F5AF0 ] Mouclass        C:\WINDOWS\system32\DRIVERS\mouclass.sys
22:17:09.0390 3460  Mouclass - ok
22:17:09.0406 3460  [ 39F0A46109B167707018E8889D5FEC93 ] mouhid          C:\WINDOWS\system32\DRIVERS\mouhid.sys
22:17:09.0406 3460  mouhid - ok
22:17:09.0421 3460  [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr        C:\WINDOWS\system32\drivers\MountMgr.sys
22:17:09.0421 3460  MountMgr - ok
22:17:09.0468 3460  [ 3F4BB95E5A44F3BE34824E8E7CAF0737 ] mraid35x        C:\WINDOWS\system32\DRIVERS\mraid35x.sys
22:17:09.0468 3460  mraid35x - ok
22:17:09.0500 3460  [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV          C:\WINDOWS\system32\DRIVERS\mrxdav.sys
22:17:09.0500 3460  MRxDAV - ok
22:17:09.0546 3460  [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb          C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
22:17:09.0546 3460  MRxSmb - ok
22:17:09.0593 3460  [ 5375122A1C3ABF51A9DBE222398E3A25 ] MSDTC          C:\WINDOWS\system32\msdtc.exe
22:17:09.0593 3460  MSDTC - ok
22:17:09.0625 3460  [ 1477849772712BAC69C144DCF2C9CE81 ] MSDV            C:\WINDOWS\system32\DRIVERS\msdv.sys
22:17:09.0625 3460  MSDV - ok
22:17:09.0640 3460  [ C941EA2454BA8350021D774DAF0F1027 ] Msfs            C:\WINDOWS\system32\drivers\Msfs.sys
22:17:09.0640 3460  Msfs - ok
22:17:09.0640 3460  MSIServer - ok
22:17:09.0671 3460  [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV        C:\WINDOWS\system32\drivers\MSKSSRV.sys
22:17:09.0671 3460  MSKSSRV - ok
22:17:09.0703 3460  [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK        C:\WINDOWS\system32\drivers\MSPCLOCK.sys
22:17:09.0703 3460  MSPCLOCK - ok
22:17:09.0718 3460  [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM          C:\WINDOWS\system32\drivers\MSPQM.sys
22:17:09.0718 3460  MSPQM - ok
22:17:09.0750 3460  [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios        C:\WINDOWS\system32\DRIVERS\mssmbios.sys
22:17:09.0750 3460  mssmbios - ok
22:17:09.0750 3460  [ E53736A9E30C45FA9E7B5EAC55056D1D ] MSTEE          C:\WINDOWS\system32\drivers\MSTEE.sys
22:17:09.0765 3460  MSTEE - ok
22:17:09.0828 3460  [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup            C:\WINDOWS\system32\drivers\Mup.sys
22:17:09.0828 3460  Mup - ok
22:17:09.0875 3460  [ 5B50F1B2A2ED47D560577B221DA734DB ] NABTSFEC        C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
22:17:09.0875 3460  NABTSFEC - ok
22:17:09.0921 3460  [ 8FF76BFF355B66E320BC1E4429C22657 ] napagent        C:\WINDOWS\System32\qagentrt.dll
22:17:09.0921 3460  napagent - ok
22:17:09.0968 3460  [ 1DF7F42665C94B825322FAE71721130D ] NDIS            C:\WINDOWS\system32\drivers\NDIS.sys
22:17:09.0968 3460  NDIS - ok
22:17:10.0000 3460  [ 7FF1F1FD8609C149AA432F95A8163D97 ] NdisIP          C:\WINDOWS\system32\DRIVERS\NdisIP.sys
22:17:10.0000 3460  NdisIP - ok
22:17:10.0046 3460  [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi        C:\WINDOWS\system32\DRIVERS\ndistapi.sys
22:17:10.0046 3460  NdisTapi - ok
22:17:10.0062 3460  [ F927A4434C5028758A842943EF1A3849 ] Ndisuio        C:\WINDOWS\system32\DRIVERS\ndisuio.sys
22:17:10.0062 3460  Ndisuio - ok
22:17:10.0109 3460  [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan        C:\WINDOWS\system32\DRIVERS\ndiswan.sys
22:17:10.0109 3460  NdisWan - ok
22:17:10.0156 3460  [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy        C:\WINDOWS\system32\drivers\NDProxy.sys
22:17:10.0156 3460  NDProxy - ok
22:17:10.0171 3460  [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS        C:\WINDOWS\system32\DRIVERS\netbios.sys
22:17:10.0171 3460  NetBIOS - ok
22:17:10.0187 3460  [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT          C:\WINDOWS\system32\DRIVERS\netbt.sys
22:17:10.0203 3460  NetBT - ok
22:17:10.0250 3460  [ 1B81D1D833268A82F979CB4CC8F7A4EF ] NetDDE          C:\WINDOWS\system32\netdde.exe
22:17:10.0250 3460  NetDDE - ok
22:17:10.0250 3460  [ 1B81D1D833268A82F979CB4CC8F7A4EF ] NetDDEdsdm      C:\WINDOWS\system32\netdde.exe
22:17:10.0250 3460  NetDDEdsdm - ok
22:17:10.0265 3460  [ AC9FCA8BCD685ABDB9928B1964B731A2 ] Netlogon        C:\WINDOWS\system32\lsass.exe
22:17:10.0281 3460  Netlogon - ok
22:17:10.0312 3460  [ 7B4A4A94389364565C2334A82FCDDF67 ] Netman          C:\WINDOWS\System32\netman.dll
22:17:10.0312 3460  Netman - ok
22:17:10.0453 3460  [ D34612C5D02D026535B3095D620626AE ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
22:17:10.0453 3460  NetTcpPortSharing - ok
22:17:10.0593 3460  [ A3B69ACD14051AE87AB9E1823A508B6D ] NETw5x32        C:\WINDOWS\system32\DRIVERS\NETw5x32.sys
22:17:10.0703 3460  NETw5x32 - ok
22:17:10.0765 3460  [ E9E47CFB2D461FA0FC75B7A74C6383EA ] NIC1394        C:\WINDOWS\system32\DRIVERS\nic1394.sys
22:17:10.0765 3460  NIC1394 - ok
22:17:10.0812 3460  [ 3B0979E9506755266C100F43D3700CA7 ] Nla            C:\WINDOWS\System32\mswsock.dll
22:17:10.0828 3460  Nla - ok
22:17:10.0859 3460  [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs            C:\WINDOWS\system32\drivers\Npfs.sys
22:17:10.0859 3460  Npfs - ok
22:17:10.0953 3460  [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs            C:\WINDOWS\system32\drivers\Ntfs.sys
22:17:10.0968 3460  Ntfs - ok
22:17:11.0000 3460  [ AC9FCA8BCD685ABDB9928B1964B731A2 ] NtLmSsp        C:\WINDOWS\system32\lsass.exe
22:17:11.0000 3460  NtLmSsp - ok
22:17:11.0046 3460  [ 1FE8446399F6044504F569014A2599B3 ] NtmsSvc        C:\WINDOWS\system32\ntmssvc.dll
22:17:11.0046 3460  NtmsSvc - ok
22:17:11.0078 3460  [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null            C:\WINDOWS\system32\drivers\Null.sys
22:17:11.0078 3460  Null - ok
22:17:11.0078 3460  NvtSp50 - ok
22:17:11.0109 3460  [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt        C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
22:17:11.0109 3460  NwlnkFlt - ok
22:17:11.0125 3460  [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd        C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
22:17:11.0125 3460  NwlnkFwd - ok
22:17:11.0171 3460  [ CA33832DF41AFB202EE7AEB05145922F ] ohci1394        C:\WINDOWS\system32\DRIVERS\ohci1394.sys
22:17:11.0171 3460  ohci1394 - ok
22:17:11.0203 3460  [ 7A56CF3E3F12E8AF599963B16F50FB6A ] ose            C:\Programmer\Fælles filer\Microsoft Shared\Source Engine\OSE.EXE
22:17:11.0203 3460  ose - ok
22:17:11.0234 3460  [ 9E048790F33FE5F4FA9D27B5650A1DD5 ] Parport        C:\WINDOWS\system32\drivers\Parport.sys
22:17:11.0250 3460  Parport - ok
22:17:11.0250 3460  [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr        C:\WINDOWS\system32\drivers\PartMgr.sys
22:17:11.0250 3460  PartMgr - ok
22:17:11.0281 3460  [ 48E97AF5B876301131E9D1B0C43212C3 ] ParVdm          C:\WINDOWS\system32\drivers\ParVdm.sys
22:17:11.0281 3460  ParVdm - ok
22:17:11.0281 3460  PBADRV - ok
22:17:11.0281 3460  [ 5D756DA95BD1E2F6E495704715532FDC ] PCI            C:\WINDOWS\system32\DRIVERS\pci.sys
22:17:11.0296 3460  PCI - ok
22:17:11.0296 3460  PCIDump - ok
22:17:11.0343 3460  [ 69CE0D409C11347196147EA4C6C02364 ] PCIIde          C:\WINDOWS\system32\DRIVERS\pciide.sys
22:17:11.0359 3460  PCIIde - ok
22:17:11.0359 3460  [ E980B6D0CA6ACBA679A0AC810AB9A57C ] Pcmcia          C:\WINDOWS\system32\DRIVERS\pcmcia.sys
22:17:11.0359 3460  Pcmcia - ok
22:17:11.0359 3460  PDCOMP - ok
22:17:11.0359 3460  PDFRAME - ok
22:17:11.0375 3460  PDRELI - ok
22:17:11.0375 3460  PDRFRAME - ok
22:17:11.0390 3460  [ 6C14B9C19BA84F73D3A86DBA11133101 ] perc2          C:\WINDOWS\system32\DRIVERS\perc2.sys
22:17:11.0390 3460  perc2 - ok
22:17:11.0390 3460  [ F50F7C27F131AFE7BEBA13E14A3B9416 ] perc2hib        C:\WINDOWS\system32\DRIVERS\perc2hib.sys
22:17:11.0390 3460  perc2hib - ok
22:17:11.0421 3460  [ 32F091E3425759B126760F44B5E931C9 ] PlugPlay        C:\WINDOWS\system32\services.exe
22:17:11.0421 3460  PlugPlay - ok
22:17:11.0468 3460  [ A38B3CE68E7F126190CDE4AA3FDF050F ] Pml Driver HPZ12 C:\WINDOWS\system32\HPZipm12.exe
22:17:11.0468 3460  Pml Driver HPZ12 - ok
22:17:11.0468 3460  [ AC9FCA8BCD685ABDB9928B1964B731A2 ] PolicyAgent    C:\WINDOWS\system32\lsass.exe
22:17:11.0468 3460  PolicyAgent - ok
22:17:11.0515 3460  [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport    C:\WINDOWS\system32\DRIVERS\raspptp.sys
22:17:11.0515 3460  PptpMiniport - ok
22:17:11.0515 3460  [ AC9FCA8BCD685ABDB9928B1964B731A2 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
22:17:11.0515 3460  ProtectedStorage - ok
22:17:11.0531 3460  [ 09298EC810B07E5D582CB3A3F9255424 ] PSched          C:\WINDOWS\system32\DRIVERS\psched.sys
22:17:11.0531 3460  PSched - ok
22:17:11.0546 3460  [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink        C:\WINDOWS\system32\DRIVERS\ptilink.sys
22:17:11.0546 3460  Ptilink - ok
22:17:11.0593 3460  [ E42E3433DBB4CFFE8FDD91EAB29AEA8E ] PxHelp20        C:\WINDOWS\system32\Drivers\PxHelp20.sys
22:17:11.0593 3460  PxHelp20 - ok
22:17:11.0640 3460  [ 0A63FB54039EB5662433CABA3B26DBA7 ] ql1080          C:\WINDOWS\system32\DRIVERS\ql1080.sys
22:17:11.0640 3460  ql1080 - ok
22:17:11.0656 3460  [ 6503449E1D43A0FF0201AD5CB1B8C706 ] Ql10wnt        C:\WINDOWS\system32\DRIVERS\ql10wnt.sys
22:17:11.0656 3460  Ql10wnt - ok
22:17:11.0687 3460  [ 156ED0EF20C15114CA097A34A30D8A01 ] ql12160        C:\WINDOWS\system32\DRIVERS\ql12160.sys
22:17:11.0687 3460  ql12160 - ok
22:17:11.0703 3460  [ 70F016BEBDE6D29E864C1230A07CC5E6 ] ql1240          C:\WINDOWS\system32\DRIVERS\ql1240.sys
22:17:11.0703 3460  ql1240 - ok
22:17:11.0718 3460  [ 907F0AEEA6BC451011611E732BD31FCF ] ql1280          C:\WINDOWS\system32\DRIVERS\ql1280.sys
22:17:11.0718 3460  ql1280 - ok
22:17:11.0750 3460  [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd          C:\WINDOWS\system32\DRIVERS\rasacd.sys
22:17:11.0750 3460  RasAcd - ok
22:17:11.0781 3460  [ 82C008EC993ABA0BBC9D178B25F71746 ] RasAuto        C:\WINDOWS\System32\rasauto.dll
22:17:11.0781 3460  RasAuto - ok
22:17:11.0812 3460  [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp        C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
22:17:11.0812 3460  Rasl2tp - ok
22:17:11.0828 3460  [ 8A18F96203BE26AD7E6A4AF765610527 ] RasMan          C:\WINDOWS\System32\rasmans.dll
22:17:11.0828 3460  RasMan - ok
22:17:11.0875 3460  [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe        C:\WINDOWS\system32\DRIVERS\raspppoe.sys
22:17:11.0875 3460  RasPppoe - ok
22:17:11.0875 3460  [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti          C:\WINDOWS\system32\DRIVERS\raspti.sys
22:17:11.0875 3460  Raspti - ok
22:17:11.0921 3460  [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss          C:\WINDOWS\system32\DRIVERS\rdbss.sys
22:17:11.0921 3460  Rdbss - ok
22:17:11.0953 3460  [ 4912D5B403614CE99C28420F75353332 ] RDPCDD          C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
22:17:11.0953 3460  RDPCDD - ok
22:17:12.0000 3460  [ 15CABD0F7C00C47C70124907916AF3F1 ] rdpdr          C:\WINDOWS\system32\DRIVERS\rdpdr.sys
22:17:12.0000 3460  rdpdr - ok
22:17:12.0046 3460  [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD          C:\WINDOWS\system32\drivers\RDPWD.sys
22:17:12.0046 3460  RDPWD - ok
22:17:12.0078 3460  [ 2C0AB39D91E3C9118A191A48F7BD67F6 ] RDSessMgr      C:\WINDOWS\system32\sessmgr.exe
22:17:12.0078 3460  RDSessMgr - ok
22:17:12.0109 3460  [ D2EA9DAE9A9F1BF40C0EA1D1D7C5592C ] redbook        C:\WINDOWS\system32\DRIVERS\redbook.sys
22:17:12.0109 3460  redbook - ok
22:17:12.0203 3460  [ D1875727D04EAE948F139022DCAD3D47 ] RegSrvc        C:\Programmer\Fælles filer\Intel\WirelessCommon\RegSrvc.exe
22:17:12.0203 3460  RegSrvc - ok
22:17:12.0250 3460  [ BD3EA2FCA2D32B003874BA4819F1818C ] RemoteAccess    C:\WINDOWS\System32\mprdim.dll
22:17:12.0250 3460  RemoteAccess - ok
22:17:12.0281 3460  [ 13BCBC0ACF9DC7F3192034BD858CC1AD ] RemoteRegistry  C:\WINDOWS\system32\regsvc.dll
22:17:12.0281 3460  RemoteRegistry - ok
22:17:12.0343 3460  [ EA885E7A56F1BE1F14C372337C42FE48 ] rimmptsk        C:\WINDOWS\system32\DRIVERS\rimmptsk.sys
22:17:12.0343 3460  rimmptsk - ok
22:17:12.0390 3460  [ 9FABC6ADD7A3212EA934E62943DE252C ] RpcLocator      C:\WINDOWS\system32\locator.exe
22:17:12.0390 3460  RpcLocator - ok
22:17:12.0421 3460  [ 059187B38452A01BB3B397691DDF3552 ] RpcSs          C:\WINDOWS\system32\rpcss.dll
22:17:12.0421 3460  RpcSs - ok
22:17:12.0437 3460  [ 72309905945D7EAAB911B376F86B95E6 ] RSVP            C:\WINDOWS\system32\rsvp.exe
22:17:12.0468 3460  RSVP - ok
22:17:12.0468 3460  RTLWUSB - ok
22:17:12.0531 3460  [ 8B4459365C254196F498A3CBC2898DBB ] S24EventMonitor C:\Programmer\Intel\WiFi\bin\S24EvMon.exe
22:17:12.0546 3460  S24EventMonitor - ok
22:17:12.0578 3460  [ 87940243EA2AD3EBE274F5409C5E9072 ] s24trans        C:\WINDOWS\system32\DRIVERS\s24trans.sys
22:17:12.0578 3460  s24trans - ok
22:17:12.0593 3460  [ AC9FCA8BCD685ABDB9928B1964B731A2 ] SamSs          C:\WINDOWS\system32\lsass.exe
22:17:12.0593 3460  SamSs - ok
22:17:12.0625 3460  [ 39763504067962108505BFF25F024345 ] SASDIFSV        C:\Programmer\SUPERAntiSpyware\SASDIFSV.SYS
22:17:12.0625 3460  SASDIFSV - ok
22:17:12.0671 3460  [ 7CE61C25C159F50F9EAF6D77FC83FA35 ] SASENUM        C:\Programmer\SUPERAntiSpyware\SASENUM.SYS
22:17:12.0671 3460  SASENUM - ok
22:17:12.0687 3460  [ 77B9FC20084B48408AD3E87570EB4A85 ] SASKUTIL        C:\Programmer\SUPERAntiSpyware\SASKUTIL.sys
22:17:12.0687 3460  SASKUTIL - ok
22:17:12.0734 3460  [ C8BF6AE55768820130ECF35A6E4D64CC ] SCardSvr        C:\WINDOWS\System32\SCardSvr.exe
22:17:12.0734 3460  SCardSvr - ok
22:17:12.0765 3460  [ 7D53DC5DE342AF26401A3CBBBC8CAFB8 ] Schedule        C:\WINDOWS\system32\schedsvc.dll
22:17:12.0781 3460  Schedule - ok
22:17:12.0843 3460  [ 8D04819A3CE51B9EB47E5689B44D43C4 ] sdbus          C:\WINDOWS\system32\DRIVERS\sdbus.sys
22:17:12.0843 3460  sdbus - ok
22:17:12.0859 3460  [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv          C:\WINDOWS\system32\DRIVERS\secdrv.sys
22:17:12.0875 3460  Secdrv - ok
22:17:12.0890 3460  [ 31C48478030803C99A050C47C22D4A9D ] seclogon        C:\WINDOWS\System32\seclogon.dll
22:17:12.0906 3460  seclogon - ok
22:17:12.0906 3460  [ 1DDA52FBBD05D3FA61A209447FA54AEF ] SENS            C:\WINDOWS\system32\sens.dll
22:17:12.0906 3460  SENS - ok
22:17:12.0937 3460  [ 680ED46039EBD4C23EB708F1AF6B9E5D ] Serial          C:\WINDOWS\system32\drivers\Serial.sys
22:17:12.0953 3460  Serial - ok
22:17:12.0968 3460  [ 0FA803C64DF0914B41F807EA276BF2A6 ] sffdisk        C:\WINDOWS\system32\DRIVERS\sffdisk.sys
22:17:12.0968 3460  sffdisk - ok
22:17:12.0984 3460  [ C17C331E435ED8737525C86A7557B3AC ] sffp_sd        C:\WINDOWS\system32\DRIVERS\sffp_sd.sys
22:17:12.0984 3460  sffp_sd - ok
22:17:13.0031 3460  [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy        C:\WINDOWS\system32\drivers\Sfloppy.sys
22:17:13.0031 3460  Sfloppy - ok
22:17:13.0078 3460  [ 27BB7647B600A43147AA2D2C297660F0 ] SharedAccess    C:\WINDOWS\System32\ipnathlp.dll
22:17:13.0078 3460  SharedAccess - ok
22:17:13.0109 3460  [ A17D630FABFE7B796CBDBEE79F9E6612 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
22:17:13.0125 3460  ShellHWDetection - ok
22:17:13.0125 3460  Simbad - ok
22:17:13.0140 3460  [ 6B33D0EBD30DB32E27D1D78FE946A754 ] sisagp          C:\WINDOWS\system32\DRIVERS\sisagp.sys
22:17:13.0140 3460  sisagp - ok
22:17:13.0203 3460  [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate    C:\Programmer\Skype\Updater\Updater.exe
22:17:13.0203 3460  SkypeUpdate - ok
22:17:13.0218 3460  [ 866D538EBE33709A5C9F5C62B73B7D14 ] SLIP            C:\WINDOWS\system32\DRIVERS\SLIP.sys
22:17:13.0218 3460  SLIP - ok
22:17:13.0375 3460  [ CF3182C299CD3C4F30AC70D5A88087D3 ] SMART Board Service C:\Programmer\SMART Technologies\SMART Board Drivers\SMARTBoardService.exe
22:17:13.0406 3460  SMART Board Service - ok
22:17:13.0468 3460  [ 478D15EC2BE2270F4FB1CA306C863014 ] SMART SNMP Agent Service C:\Programmer\SMART Technologies\SMART Board Drivers\SMARTSNMPAgent.exe
22:17:13.0468 3460  SMART SNMP Agent Service - ok
22:17:13.0546 3460  [ 10D7FD10D0E0942179B112BD97068692 ] SMART Web Server C:\Programmer\SMART Technologies\SMART Board Drivers\WebServer.exe
22:17:13.0562 3460  SMART Web Server - ok
22:17:13.0593 3460  [ 83C0F71F86D3BDAF915685F3D568B20E ] Sparrow        C:\WINDOWS\system32\DRIVERS\sparrow.sys
22:17:13.0593 3460  Sparrow - ok
22:17:13.0640 3460  [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter        C:\WINDOWS\system32\drivers\splitter.sys
22:17:13.0640 3460  splitter - ok
22:17:13.0718 3460  [ 60784F891563FB1B767F70117FC2428F ] Spooler        C:\WINDOWS\system32\spoolsv.exe
22:17:13.0734 3460  Spooler - ok
22:17:13.0765 3460  [ B3ECB8B07F7991132C71C1B16A82FFE3 ] sr              C:\WINDOWS\system32\DRIVERS\sr.sys
22:17:13.0781 3460  sr - ok
22:17:13.0828 3460  [ 1E8F91A7CD08BDB7482746F97365E12E ] srservice      C:\WINDOWS\system32\srsvc.dll
22:17:13.0828 3460  srservice - ok
22:17:13.0875 3460  [ 584477FDFA731AF4635F5875C6B52531 ] SRS_PremiumSound_Service C:\WINDOWS\system32\drivers\srs_PremiumSound_i386.sys
22:17:13.0875 3460  SRS_PremiumSound_Service - ok
22:17:13.0906 3460  [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv            C:\WINDOWS\system32\DRIVERS\srv.sys
22:17:13.0906 3460  Srv - ok
22:17:13.0937 3460  [ B1D1003D618961EB936A0717E74CB147 ] SSDPSRV        C:\WINDOWS\System32\ssdpsrv.dll
22:17:13.0937 3460  SSDPSRV - ok
22:17:14.0125 3460  [ 3603F3DB9FBA2A8FA91829681BA25AFA ] STacSV          c:\drivers\audio\r213367\stacsv.exe
22:17:14.0125 3460  STacSV - ok
22:17:14.0203 3460  [ 1B76479B80FF0F6E245BA590A64102BE ] STHDA          C:\WINDOWS\system32\drivers\sthda.sys
22:17:14.0218 3460  STHDA - ok
22:17:14.0234 3460  [ 787E2A34B0BE4B102843D0659811C7AC ] stisvc          C:\WINDOWS\system32\wiaservc.dll
22:17:14.0234 3460  stisvc - ok
22:17:14.0281 3460  [ DE3E7A2345EBAA3CE8E6957DFB55FB15 ] stllssvr        C:\Programmer\Fælles filer\SureThing Shared\stllssvr.exe
22:17:14.0281 3460  stllssvr - ok
22:17:14.0328 3460  [ 77813007BA6265C4B6098187E6ED79D2 ] streamip        C:\WINDOWS\system32\DRIVERS\StreamIP.sys
22:17:14.0328 3460  streamip - ok
22:17:14.0359 3460  [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum          C:\WINDOWS\system32\DRIVERS\swenum.sys
22:17:14.0359 3460  swenum - ok
22:17:14.0406 3460  [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi          C:\WINDOWS\system32\drivers\swmidi.sys
22:17:14.0406 3460  swmidi - ok
22:17:14.0406 3460  SwPrv - ok
22:17:14.0453 3460  [ 1FF3217614018630D0A6758630FC698C ] symc810        C:\WINDOWS\system32\DRIVERS\symc810.sys
22:17:14.0453 3460  symc810 - ok
22:17:14.0468 3460  [ 070E001D95CF725186EF8B20335F933C ] symc8xx        C:\WINDOWS\system32\DRIVERS\symc8xx.sys
22:17:14.0468 3460  symc8xx - ok
22:17:14.0468 3460  [ 80AC1C4ABBE2DF3B738BF15517A51F2C ] sym_hi          C:\WINDOWS\system32\DRIVERS\sym_hi.sys
22:17:14.0468 3460  sym_hi - ok
22:17:14.0484 3460  [ BF4FAB949A382A8E105F46EBB4937058 ] sym_u3          C:\WINDOWS\system32\DRIVERS\sym_u3.sys
22:17:14.0484 3460  sym_u3 - ok
22:17:14.0500 3460  [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio        C:\WINDOWS\system32\drivers\sysaudio.sys
22:17:14.0500 3460  sysaudio - ok
22:17:14.0531 3460  [ 6453945E83873CDC17E81B0E6A71E707 ] SysmonLog      C:\WINDOWS\system32\smlogsvc.exe
22:17:14.0546 3460  SysmonLog - ok
22:17:14.0578 3460  [ DD04BA74CF4D5D223675B1BD8326648E ] TapiSrv        C:\WINDOWS\System32\tapisrv.dll
22:17:14.0578 3460  TapiSrv - ok
22:17:14.0625 3460  [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip          C:\WINDOWS\system32\DRIVERS\tcpip.sys
22:17:14.0625 3460  Tcpip - ok
22:17:14.0671 3460  [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE          C:\WINDOWS\system32\drivers\TDPIPE.sys
22:17:14.0671 3460  TDPIPE - ok
22:17:14.0734 3460  [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP          C:\WINDOWS\system32\drivers\TDTCP.sys
22:17:14.0734 3460  TDTCP - ok
22:17:14.0765 3460  [ 88155247177638048422893737429D9E ] TermDD          C:\WINDOWS\system32\DRIVERS\termdd.sys
22:17:14.0781 3460  TermDD - ok
22:17:14.0828 3460  [ 14C8EC0AA06A33CCC5407E4324F91312 ] TermService    C:\WINDOWS\System32\termsrv.dll
22:17:14.0828 3460  TermService - ok
22:17:14.0875 3460  [ A17D630FABFE7B796CBDBEE79F9E6612 ] Themes          C:\WINDOWS\System32\shsvcs.dll
22:17:14.0875 3460  Themes - ok
22:17:14.0890 3460  [ 5CA8CA112235E9178F20422A07135F0E ] TlntSvr        C:\WINDOWS\system32\tlntsvr.exe
22:17:14.0906 3460  TlntSvr - ok
22:17:14.0937 3460  [ 9B0EDFA321A32202B0D0D94B853F0A78 ] TosIde          C:\WINDOWS\system32\DRIVERS\toside.sys
22:17:14.0937 3460  TosIde - ok
22:17:14.0968 3460  [ F9D5FFA46CDE05C235EA258C02BA8A66 ] TrkWks          C:\WINDOWS\system32\trkwks.dll
22:17:14.0968 3460  TrkWks - ok
22:17:14.0984 3460  [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs            C:\WINDOWS\system32\drivers\Udfs.sys
22:17:14.0984 3460  Udfs - ok
22:17:15.0015 3460  [ 1B698A51CD528D8DA4FFAED66DFC51B9 ] ultra          C:\WINDOWS\system32\DRIVERS\ultra.sys
22:17:15.0015 3460  ultra - ok
22:17:15.0046 3460  [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update          C:\WINDOWS\system32\DRIVERS\update.sys
22:17:15.0046 3460  Update - ok
22:17:15.0125 3460  [ D091AA5963C06AFEC8BFC3D5B1B24647 ] upnphost        C:\WINDOWS\System32\upnphost.dll
22:17:15.0125 3460  upnphost - ok
22:17:15.0156 3460  [ 925EDCAE2170355679E1D2D1E638F68E ] UPS            C:\WINDOWS\System32\ups.exe
22:17:15.0156 3460  UPS - ok
22:17:15.0203 3460  [ C18D6C74953621346DF6B0A11F80C1CC ] usbccgp        C:\WINDOWS\system32\DRIVERS\usbccgp.sys
22:17:15.0203 3460  usbccgp - ok
22:17:15.0250 3460  [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci        C:\WINDOWS\system32\DRIVERS\usbehci.sys
22:17:15.0250 3460  usbehci - ok
22:17:15.0296 3460  [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub          C:\WINDOWS\system32\DRIVERS\usbhub.sys
22:17:15.0296 3460  usbhub - ok
22:17:15.0343 3460  [ A717C8721046828520C9EDF31288FC00 ] usbprint        C:\WINDOWS\system32\DRIVERS\usbprint.sys
22:17:15.0343 3460  usbprint - ok
22:17:15.0375 3460  [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan        C:\WINDOWS\system32\DRIVERS\usbscan.sys
22:17:15.0375 3460  usbscan - ok
22:17:15.0453 3460  [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR        C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
22:17:15.0453 3460  USBSTOR - ok
22:17:15.0468 3460  [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci        C:\WINDOWS\system32\DRIVERS\usbuhci.sys
22:17:15.0468 3460  usbuhci - ok
22:17:15.0500 3460  [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave        C:\WINDOWS\System32\drivers\vga.sys
22:17:15.0500 3460  VgaSave - ok
22:17:15.0546 3460  [ 754292CE5848B3738281B4F3607EAEF4 ] viaagp          C:\WINDOWS\system32\DRIVERS\viaagp.sys
22:17:15.0546 3460  viaagp - ok
22:17:15.0562 3460  [ 3B3EFCDA263B8AC14FDF9CBDD0791B2E ] ViaIde          C:\WINDOWS\system32\DRIVERS\viaide.sys
22:17:15.0562 3460  ViaIde - ok
22:17:15.0593 3460  [ 69D9E1DE5F897580F8B1D1957528B0B2 ] VolSnap        C:\WINDOWS\system32\drivers\VolSnap.sys
22:17:15.0593 3460  VolSnap - ok
22:17:15.0640 3460  [ 3F5D90C4BB1C6A75E264E8D7148EB3CE ] VSS            C:\WINDOWS\System32\vssvc.exe
22:17:15.0640 3460  VSS - ok
22:17:15.0718 3460  [ 9E8C7A7B8A98E4F6CCBBF9F88A1C111F ] vvdsvc          C:\WINDOWS\system32\nagasoft\vjocx.dll
22:17:15.0750 3460  vvdsvc - ok
22:17:15.0781 3460  [ 1C398054BA3D3E75E991F548AB8D763F ] w32time        C:\WINDOWS\system32\w32time.dll
22:17:15.0796 3460  w32time - ok
22:17:15.0796 3460  [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp          C:\WINDOWS\system32\DRIVERS\wanarp.sys
22:17:15.0812 3460  Wanarp - ok
22:17:15.0859 3460  [ BBCFEAB7E871CDDAC2D397EE7FA91FDC ] Wdf01000        C:\WINDOWS\system32\DRIVERS\Wdf01000.sys
22:17:15.0906 3460  Wdf01000 - ok
22:17:15.0906 3460  WDICA - ok
22:17:15.0937 3460  [ 6768ACF64B18196494413695F0C3A00F ] wdmaud          C:\WINDOWS\system32\drivers\wdmaud.sys
22:17:15.0953 3460  wdmaud - ok
22:17:15.0984 3460  [ 1A85AD583CD64227203BDC1FE2AFA520 ] WebClient      C:\WINDOWS\System32\webclnt.dll
22:17:15.0984 3460  WebClient - ok
22:17:16.0078 3460  [ C16C23396F1C1BA7D170C54EC4E78F1B ] winmgmt        C:\WINDOWS\system32\wbem\WMIsvc.dll
22:17:16.0078 3460  winmgmt - ok
22:17:16.0125 3460  [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN        C:\WINDOWS\system32\MsPMSNSv.dll
22:17:16.0140 3460  WmdmPmSN - ok
22:17:16.0203 3460  [ 031AE33D8F143D37F53E122375950396 ] Wmi            C:\WINDOWS\System32\advapi32.dll
22:17:16.0203 3460  Wmi - ok
22:17:16.0250 3460  [ C42584FD66CE9E17403AEBCA199F7BDB ] WmiAcpi        C:\WINDOWS\system32\DRIVERS\wmiacpi.sys
22:17:16.0250 3460  WmiAcpi - ok
22:17:16.0296 3460  [ A11D7A4DBABBF29BD66E189905C21D4E ] WmiApSrv        C:\WINDOWS\system32\wbem\wmiapsrv.exe
22:17:16.0296 3460  WmiApSrv - ok
22:17:16.0375 3460  [ 6EE45AD8DBEF8785B8CD312736626EBE ] WMPNetworkSvc  C:\Programmer\Windows Media Player\WMPNetwk.exe
22:17:16.0390 3460  WMPNetworkSvc - ok
22:17:16.0421 3460  [ BC71BC51DD57E792851D31795F3EDBF1 ] wscsvc          C:\WINDOWS\system32\wscsvc.dll
22:17:16.0421 3460  wscsvc - ok
22:17:16.0437 3460  [ C98B39829C2BBD34E454150633C62C78 ] WSTCODEC        C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
22:17:16.0437 3460  WSTCODEC - ok
22:17:16.0453 3460  [ 2BC349942C6CE07736F78BEC266816CE ] wuauserv        C:\WINDOWS\system32\wuauserv.dll
22:17:16.0468 3460  wuauserv - ok
22:17:16.0484 3460  [ F15FEAFFFBB3644CCC80C5DA584E6311 ] WudfPf          C:\WINDOWS\system32\DRIVERS\WudfPf.sys
22:17:16.0500 3460  WudfPf - ok
22:17:16.0500 3460  [ 28B524262BCE6DE1F7EF9F510BA3985B ] WudfRd          C:\WINDOWS\system32\DRIVERS\wudfrd.sys
22:17:16.0500 3460  WudfRd - ok
22:17:16.0546 3460  [ 05231C04253C5BC30B26CBAAE680ED89 ] WudfSvc        C:\WINDOWS\System32\WUDFSvc.dll
22:17:16.0546 3460  WudfSvc - ok
22:17:16.0640 3460  [ F335FB0F45374C2EA9C3EBA798EB550D ] WZCSVC          C:\WINDOWS\System32\wzcsvc.dll
22:17:16.0671 3460  WZCSVC - ok
22:17:16.0671 3460  xcpip - ok
22:17:16.0703 3460  [ 3FEE6C536D5BFC0F1B6BCA56F97D1F80 ] xmlprov        C:\WINDOWS\System32\xmlprov.dll
22:17:16.0718 3460  xmlprov - ok
22:17:16.0718 3460  xpsec - ok
22:17:16.0718 3460  ZD1201U(ZyXEL) - ok
22:17:16.0718 3460  ZDNDIS5 - ok
22:17:16.0734 3460  ZTEusbmdm6k - ok
22:17:16.0734 3460  ZTEusbnmea - ok
22:17:16.0734 3460  ZTEusbser6k - ok
22:17:16.0750 3460  ================ Scan global ===============================
22:17:16.0843 3460  [ 0F8B96647BAEE41953B838F8E29C7069 ] C:\WINDOWS\system32\basesrv.dll
22:17:16.0890 3460  [ 4A8D86E8E4E8918B302D1B95509C8631 ] C:\WINDOWS\system32\winsrv.dll
22:17:16.0890 3460  [ 4A8D86E8E4E8918B302D1B95509C8631 ] C:\WINDOWS\system32\winsrv.dll
22:17:16.0937 3460  [ 32F091E3425759B126760F44B5E931C9 ] C:\WINDOWS\system32\services.exe
22:17:16.0937 3460  [Global] - ok
22:17:16.0937 3460  ================ Scan MBR ==================================
22:17:16.0984 3460  [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
22:17:17.0671 3460  \Device\Harddisk0\DR0 - ok
22:17:17.0687 3460  [ A4A15D6782E6FE1DCE41A606CB3AFFE3 ] \Device\Harddisk1\DR3
22:17:17.0953 3460  \Device\Harddisk1\DR3 - ok
22:17:17.0953 3460  ================ Scan VBR ==================================
22:17:18.0031 3460  [ E22EC5DAEF43FB5612740F72700983C8 ] \Device\Harddisk0\DR0\Partition1
22:17:18.0031 3460  \Device\Harddisk0\DR0\Partition1 - ok
22:17:18.0046 3460  [ 2727C5861400F09DDEA8135A113A3B92 ] \Device\Harddisk1\DR3\Partition1
22:17:18.0046 3460  \Device\Harddisk1\DR3\Partition1 - ok
22:17:18.0046 3460  ============================================================
22:17:18.0046 3460  Scan finished
22:17:18.0046 3460  ============================================================
22:17:18.0062 5144  Detected object count: 1
22:17:18.0062 5144  Actual detected object count: 1
22:17:26.0640 5144  iaStor ( ForgedFile.Multi.Generic ) - skipped by user
22:17:26.0640 5144  iaStor ( ForgedFile.Multi.Generic ) - User select action: Skip
Avatar billede f-arn Guru
15. oktober 2012 - 11:34 #10
Deaktiver dit sikkerhedprogram, mens du kører dette ->

Hent og gem aswMBR på dit Skrivebord.

Start aswMBR og klik på "Scan"

Hvis den spørger efter "Avast virus definitioner" klikker du "Yes"

Når den er færdig med at scanne, klikker du på "SAVE LOG" og sender loggen herind.

Du må ikke klikke på Fix eller FixMBR !!!
Avatar billede 220661 Ekspert
22. oktober 2012 - 16:15 #11
Afmelder overvågning.
Avatar billede AndersDom Nybegynder
25. oktober 2012 - 15:52 #12
Min computer har vist blå fejlmeldingsskærm i noget tid, har først fået den lavet så jeg kan starte windows i dag! Jeg har f-secure client, og aner ikke hvordan jeg deaktivere det?
Avatar billede AndersDom Nybegynder
25. oktober 2012 - 15:59 #13
Tror jeg fandt ud af det..

Her er log fra aswMBR

aswMBR version 0.9.9.1665 Copyright(c) 2011 AVAST Software
Run date: 2012-10-25 16:02:24
-----------------------------
16:02:24.734    OS Version: Windows 5.1.2600 Service Pack 3
16:02:24.734    Number of processors: 2 586 0x170A
16:02:24.734    ComputerName: L290202PC  UserName: L290202
16:02:26.156    Initialize success
16:03:28.609    AVAST engine defs: 12102501
16:03:41.125    The log file has been saved successfully to "C:\Documents and Settings\L290202\Skrivebord\aswMBR.txt"
Avatar billede Ny bruger Nybegynder

Din løsning...

Tilladte BB-code-tags: [b]fed[/b] [i]kursiv[/i] [u]understreget[/u] Web- og emailadresser omdannes automatisk til links. Der sættes "nofollow" på alle links.

Loading billede Opret Preview
Kategori
Se alle it-kurser fra Computerworld Kurser
IT-kurser om Microsoft 365, sikkerhed, personlig vækst, udvikling, digital markedsføring, grafisk design, SAP og forretningsanalyse.
Se alle it-kurser

Flere spørgsmål fra Virus kategorien

Titel Indlæg Oprettet Seneste aktivitet
mulig ukendt virus Af jackie18 i Virus 3 18/01/202514:07 18/01/202516:39
virus popper op med jævne mellemrum Af Malm i Virus 13 18/01/202511:40 20/01/202517:53
Total AV Af Malm i Virus 10 16/01/202516:48 17/01/202520:47
pop up black friday Af Malm i Virus 12 22/11/202420:49 03/12/202411:04
Findes der mon et Antivirus program, som ikke, konstant, reklamerer, for at købe ? Af Ikke-ekspert i Virus 21 22/06/202419:22 23/06/202412:54
Se alle spørgsmål i kategorien Opret spørgsmål

Log ind eller opret profil

Hov!

For at kunne deltage på Computerworld Eksperten skal du være logget ind.

Det er heldigvis nemt at oprette en bruger: Det tager to minutter og du kan vælge at bruge enten e-mail, Facebook eller Google som login.

Opret Log ind

Du kan også logge ind via nedenstående tjenester



Alle kategorier på Eksperten
Seneste spørgsmål Seneste aktivitet
I dag 19:42 Valg af bærbar pc - MIL-STD certificeringer, vigtigt? Af Don G i PC
I dag 19:11 Kombinere tekst og tal Af 1Dorte i Excel
I dag 13:26 Monetoad.com redirects Af ractic i Browsere
I går 12:24 paragraftegnet Af Hyt vin i Word
I går 10:17 Hvem kan huske "Mellem Lektierne" med Jørgen De Mylius ? Af Ikke-ekspert i Fri debat
White papers
Flere white papers »


Premium
Teaser billede
Bør du som CIO overveje exitplan fra de amerikanske cloud-leverandører efter Trump? Vi spørger Henning Mortensen
Læs mere »
Ateas nye Group CIO, Sara Amini, får 300 it-folk under sin kommando: Sætter nu gang i kæmpe it-transformation
Så meget vil nye cybersikkerheds-regler i energisektoren koste de danske virksomheder
App-udviklere går en hård tid i møde: Hele industrien står overfor store forandringer
Se alle »
Computerworld
Teaser billede
Webshop advarer: Dine kortoplysninger kan være stjålet
Læs mere »
Deepseek sender dine data direkte til Kina - disse oplysninger bliver indsamlet om dig
Test: På vinter-langtur med den ultimative el-VW
Lancering af nyt Apple-produkt rykker nærmere – kan blive årets største nyhed
Se alle »
CIO
Teaser billede
Sådan kom russiske hackere ind i lille vandværk i Tureby: “Det nytter ikke at forsøge at skjule noget,” siger formanden
Læs mere »
Efter Trump: Du bør som CIO få kigget på en exitplan for dine cloud-aftaler med amerikanske tech-kæmper
Her er fem europæiske alternativer til Microsoft 365
Her er årsagen til fyringer i Rigspolitiets it-afdeling: Disse projekter har trukket benene væk under økonomien
Se alle »
Job & Karriere
Teaser billede
Merete Søby klar med nyt top-job efter pludselig exit fra Schultz: Her er hendes nye job
Læs mere »
40 år gammelt dansk it-selskab fusionerer med hollandsk firma og skifter navn
Her er deres månedsløn: Så meget tjener CIO'erne i de danske regioner - den bedst lønnede får mere end digitaliseringsministeren
Dansk headhunter: Dette spørgsmål bliver jeg næsten altid stillet, når jeg forsøger at rekruttere it-folk
Se alle »
White paper
Teaser billede
Sådan: Opgradér din printerløsning uden store investeringer
Læs mere »
Sikkerhed gjort enkelt: Beskyt din virksomhed direkte i browseren
Sæt professionel døgnvagt på din it-infrastruktur
SAP: Skab værdi og minimér omkostninger med effektiv dokumenthåndtering
Se alle »

Events
Flere events »
White papers
Flere white papers »
IT-Kurser
Se alle vores it-kurser »