Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung

Plagegeister aller Art und deren Bekämpfung: svhost Trojan.Sirefef.BR

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

Antwort
Alt 06.06.2012, 18:57   #61
PAUI
 

svhost Trojan.Sirefef.BR - Standard

svhost Trojan.Sirefef.BR



seit knapp ner stunde steht nur da Processing FF - prefs..network.proxy.http: "127.0.0.1" und der läuft auf hochtouren auch der Lüfter aber es passiert nichts.

das kann ich dir sagen warum weil in der verwaltung unter"dienste und anwendungen" der virus drinne ist und sich immer wieder neustartet".

Alt 06.06.2012, 19:05   #62
Larusso
/// Selecta Jahrusso
 
svhost Trojan.Sirefef.BR - Standard

svhost Trojan.Sirefef.BR



Zitat:
dienste und anwendungen" der virus drinne ist und sich immer wieder neustartet".
Das musste mir jetzt genauer erklären
__________________

__________________

Alt 07.06.2012, 06:19   #63
PAUI
 

svhost Trojan.Sirefef.BR - Standard

svhost Trojan.Sirefef.BR



also das mit dem benutzerdefinierten OTL musste nochma bearbeiten. das funzt net lasse den nich 5 stunden laufen wegen dem zeug.
__________________

Alt 07.06.2012, 21:59   #64
Larusso
/// Selecta Jahrusso
 
svhost Trojan.Sirefef.BR - Standard

svhost Trojan.Sirefef.BR



Du willst mir jetzt sagen, wie ich was zu machen habe ?

Wie wärs wenn du die Kiste einfach neu aufsetzt oder zumind meine Frage beantworten würdest ?
Wenn OTL nicht will, starte den Rechner manuell neu. Die Malware ist nicht was, was man schnell mal so entfernt
__________________
mfg, Daniel

ASAP & UNITE Member
Alliance of Security Analysis Professionals
Unified Network of Instructors and Trusted Eliminators

Lerne, zurück zu schlagen und unterstütze uns!
TB Akademie

Alt 08.06.2012, 01:15   #65
PAUI
 

svhost Trojan.Sirefef.BR - Standard

svhost Trojan.Sirefef.BR



nein will ich nicht, nur der hatte auf eine anfrage über ne stunde rumgerödelt und dann musste ich auf arbeit und hatte ihn ausgemacht. und nun will er nicht mehr hochfahren. ich mache dir en bild davon. muss erst mal "letzte als funtionierende konfiguration" machen damit der wieder läuft.


Alt 09.06.2012, 02:09   #66
PAUI
 

svhost Trojan.Sirefef.BR - Standard

svhost Trojan.Sirefef.BR



hab den fehler gefunden.

bei NetSvcs:64bit: svchost
haste was vergessen ;-)
wusste ich es doch.

tl
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = http=127.0.0.1:60465
FF - prefs.js..network.proxy.http: "127.0.0.1"
FF - prefs.js..network.proxy.http_port: 60465
FF - prefs.js..network.proxy.type: 0
NetSvcs:64bit: stac97 - C:\Windows\SysNative\stac97.dll (Iomega)
NetSvcs:64bit: svchost
NetSvcs:64bit: ASNDIS5 - C:\Windows\SysNative\ASNDIS5.dll (Iomega)
NetSvcs:64bit: cwafadmincontroller - C:\Windows\SysNative\cwafadmincontroller.dll (Iomega)
NetSvcs:64bit: belmonitorservice - C:\Windows\SysNative\belmonitorservice.dll (Iomega)
NetSvcs:64bit: om518p - C:\Windows\SysNative\om518p.dll (Iomega)
NetSvcs:64bit: pfc - C:\Windows\SysNative\pfc.dll (Iomega)
NetSvcs:64bit: bobo - C:\Windows\SysNative\bobo.dll (Iomega)
NetSvcs:64bit: BVRPMPR5 - C:\Windows\SysNative\BVRPMPR5.dll (Iomega)
NetSvcs:64bit: se2Eunic - C:\Windows\SysNative\se2Eunic.dll (Iomega)
NetSvcs:64bit: backupexecnamingservice - C:\Windows\SysNative\backupexecnamingservice.dll (Iomega)
NetSvcs:64bit: HPSLPSVC - C:\Windows\SysNative\HPSLPSVC.dll (Iomega)
NetSvcs:64bit: cdmservice - C:\Windows\SysNative\cdmservice.dll (Iomega)
NetSvcs:64bit: diskperf - C:\Windows\SysNative\diskperf.exe (Microsoft Corporation)
NetSvcs:64bit: dlaudf_m - C:\Windows\SysNative\dlaudf_m.dll (Iomega)
NetSvcs:64bit: wintrust - C:\Windows\SysNative\wintrust.dll (Microsoft Corporation)
NetSvcs:64bit: ssm_mdm - C:\Windows\SysNative\ssm_mdm.dll (Iomega)
NetSvcs:64bit: naimagent32 - C:\Windows\SysNative\naimagent32.dll (Iomega)
NetSvcs:64bit: starwindserviceae - C:\Windows\SysNative\starwindserviceae.dll (Iomega)
NetSvcs:64bit: VRFIL - C:\Windows\SysNative\VRFIL.dll (Iomega)
NetSvcs:64bit: fsbwsys - C:\Windows\SysNative\fsbwsys.dll (Iomega)
NetSvcs:64bit: sdhelper - C:\Windows\SysNative\sdhelper.dll (Iomega)
NetSvcs:64bit: StMp3Rec - C:\Windows\SysNative\StMp3Rec.dll (Iomega)
NetSvcs:64bit: nvnetbus - C:\Windows\SysNative\nvnetbus.dll (Iomega)
NetSvcs:64bit: {95808DC4-FA4A-4c74-92FE-5B863F82066B} - C:\Windows\SysNative\{95808DC4-FA4A-4c74-92FE-5B863F82066B}.dll (Iomega)
NetSvcs:64bit: w810mgmt - C:\Windows\SysNative\w810mgmt.dll (Iomega)
NetSvcs:64bit: opcenum - C:\Windows\SysNative\opcenum.dll (Iomega)
NetSvcs:64bit: cq_mem - C:\Windows\SysNative\cq_mem.dll (Iomega)
NetSvcs:64bit: MSSQL$MSSMLBIZ - C:\Windows\SysNative\MSSQL$MSSMLBIZ.dll (Iomega)
NetSvcs:64bit: wacomvhid - C:\Windows\SysNative\wacomvhid.dll (Iomega)
NetSvcs:64bit: NICM - C:\Windows\SysNative\NICM.dll (Iomega)
NetSvcs:64bit: pdlnsx25 - C:\Windows\SysNative\pdlnsx25.dll (Iomega)
NetSvcs:64bit: VRADFIL - C:\Windows\SysNative\VRADFIL.dll (Iomega)
NetSvcs:64bit: nwlnkipx - C:\Windows\SysNative\nwlnkipx.dll (Iomega)
NetSvcs:64bit: TPM - C:\Windows\SysNative\tpm.msc ()
NetSvcs:64bit: sgectl - C:\Windows\SysNative\sgectl.dll (Iomega)
NetSvcs:64bit: tones - C:\Windows\SysNative\tones.dll (Iomega)
NetSvcs:64bit: mwsarcpkt - C:\Windows\SysNative\mwsarcpkt.dll (Iomega)
NetSvcs:64bit: Spsmqvsm - C:\Windows\SysNative\Spsmqvsm.dll (Iomega)
NetSvcs:64bit: autostore - C:\Windows\SysNative\autostore.dll (Iomega)
NetSvcs:64bit: symtdi - C:\Windows\SysNative\symtdi.dll (Iomega)
NetSvcs:64bit: epfw - C:\Windows\SysNative\epfw.dll (Iomega)
NetSvcs:64bit: vmount2 - C:\Windows\SysNative\vmount2.dll (Iomega)
NetSvcs:64bit: xpadminserver - C:\Windows\SysNative\xpadminserver.dll (Iomega)
NetSvcs:64bit: imonitor - C:\Windows\SysNative\imonitor.dll (Iomega)
NetSvcs:64bit: ulcdrhlp - C:\Windows\SysNative\ulcdrhlp.dll (Iomega)
NetSvcs:64bit: filemon701 - C:\Windows\SysNative\filemon701.dll (Iomega)
NetSvcs:64bit: nicconfigsvc - C:\Windows\SysNative\nicconfigsvc.dll (Iomega)
NetSvcs:64bit: tsmservice - C:\Windows\SysNative\tsmservice.dll (Iomega)
NetSvcs:64bit: CTEDSPIO.DLL - C:\Windows\SysNative\CTEDSPIO.DLL.dll (Iomega)
NetSvcs:64bit: SQLAgent$MICROSOFTSMLBIZ - C:\Windows\SysNative\SQLAgent$MICROSOFTSMLBIZ.dll (Iomega)
NetSvcs:64bit: icepack - C:\Windows\SysNative\icepack.dll (Iomega)
NetSvcs:64bit: AtiHdmiService - C:\Windows\SysNative\AtiHdmiService.dll (Iomega)
NetSvcs:64bit: w300bus - C:\Windows\SysNative\w300bus.dll (Iomega)
NetSvcs:64bit: hcf_msft - C:\Windows\SysNative\hcf_msft.dll (Iomega)
NetSvcs:64bit: GMSIPCI - C:\Windows\SysNative\GMSIPCI.dll (Iomega)
NetSvcs:64bit: avsinc - C:\Windows\SysNative\avsinc.dll (Iomega)
NetSvcs:64bit: rrrspy - C:\Windows\SysNative\rrrspy.dll (Iomega)
NetSvcs:64bit: Wbutton - C:\Windows\SysNative\Wbutton.dll (Iomega)
NetSvcs:64bit: backupclientsvc - C:\Windows\SysNative\backupclientsvc.dll (Iomega)
NetSvcs:64bit: navex15 - C:\Windows\SysNative\navex15.dll (Iomega)
NetSvcs:64bit: PAR1284 - C:\Windows\SysNative\PAR1284.dll (Iomega)
NetSvcs:64bit: vmusb - C:\Windows\SysNative\vmusb.dll (Iomega)

:commands
[reboot]

auf jeden fall läuft der laptop stundenlang auf 50% und es passiert nichts OTL sagt keine Rückmeldung. und es bleibt bei svhost hängen.

und im Anhang noch der screenshot von den Diensten das sind verdammt viele und die sind nicht standartmäßig schon da.

Geändert von PAUI (09.06.2012 um 03:04 Uhr)

Alt 09.06.2012, 05:41   #67
Larusso
/// Selecta Jahrusso
 
svhost Trojan.Sirefef.BR - Standard

svhost Trojan.Sirefef.BR



Nein, das war absicht. Oder soll ich dir eine MS Datei löschen, welche benötigt wird.

Du sagst mir hier, dass du mit dem Laptop immer offline bist und denoch kommen die Dateien wieder. Das ist für mich irgendwie wiedersprüchlich.

Wo ist das Startlog von procmon ?



Lösche bitte die vorhandene Combofix Version und downloade dir von hier eine neue Version.

Speichere diese auf dem Desktop.
Gehe sicher, dass all deine Anti Virus und anderen Schutzprogramme abgeschalten sind.

Starte Combofix und poste die C:\Combofix.txt
__________________
mfg, Daniel

ASAP & UNITE Member
Alliance of Security Analysis Professionals
Unified Network of Instructors and Trusted Eliminators

Lerne, zurück zu schlagen und unterstütze uns!
TB Akademie

Alt 09.06.2012, 16:00   #68
PAUI
 

svhost Trojan.Sirefef.BR - Standard

svhost Trojan.Sirefef.BR



also jetzt nochma zu OTL.

ich habe über nacht den laptop laufen lassen, mit otl, über 5 stunden und es ist nicht fertig geworden.

wenn ich die zeile mit svchost rauslösche läuft es durch aber nach dem neustart, startet er sich immer wieder neu ohne fehlermeldung, dann mach ich letzte als bekannte konfiguration und er läuft wieder aber die alten dateien sind wohl wieder drauf unmd das spiel beginnt von neuem.

ich komme mit otl nicht weiter.

wäre es möglich otl durchlaufen zu lassen und die svchost.exe durch die von meinem rechner zu ersetzen?

mfg

Alt 09.06.2012, 16:56   #69
Larusso
/// Selecta Jahrusso
 
svhost Trojan.Sirefef.BR - Standard

svhost Trojan.Sirefef.BR



Darf ich fragen was du hier aufführst ?
Ich verstehe deine hektik aber ich verstehe nicht, was an meinen Anweisungen unklar ist.

Zitat:
Wenn OTL nicht will, starte den Rechner manuell neu
Rest steht hier
http://www.trojaner-board.de/115453-...tml#post842859

Wenn du dich an die Anweisungen nicht halten willst, dann kann ich dir nicht helfen
__________________
mfg, Daniel

ASAP & UNITE Member
Alliance of Security Analysis Professionals
Unified Network of Instructors and Trusted Eliminators

Lerne, zurück zu schlagen und unterstütze uns!
TB Akademie

Alt 09.06.2012, 17:23   #70
PAUI
 

svhost Trojan.Sirefef.BR - Standard

svhost Trojan.Sirefef.BR



der Laptop ist nicht meiner und der jenige den der gehört will den auch mal wieder haben.

du hast zu mir gesagt ich soll den OTL Fix durchführen hab ich gemacht funktioniert aber nicht und nach dem neustart auch nicht. also muss ich otl auslassen und procman auch weil du das ja in den otl post stehen hattest.

also soll ich jetzt nur Combofix machen? und danach procman?

EDIT: und der laptop hängt nicht am inet.

Alt 09.06.2012, 17:29   #71
Larusso
/// Selecta Jahrusso
 
svhost Trojan.Sirefef.BR - Standard

svhost Trojan.Sirefef.BR



Mach mit Combofix weiter
__________________
mfg, Daniel

ASAP & UNITE Member
Alliance of Security Analysis Professionals
Unified Network of Instructors and Trusted Eliminators

Lerne, zurück zu schlagen und unterstütze uns!
TB Akademie

Alt 09.06.2012, 18:35   #72
PAUI
 

svhost Trojan.Sirefef.BR - Standard

svhost Trojan.Sirefef.BR



Combofix Logfile:
Code:
ATTFilter
ComboFix 12-06-09.01 - Luisa 09.06.2012  19:06:35.4.2 - x64
Microsoft Windows 7 Ultimate   6.1.7600.0.1252.49.1031.18.2038.1257 [GMT 2:00]
ausgeführt von:: c:\users\Luisa\Desktop\ComboFix.exe
AV: BitDefender Antivirus *Disabled/Outdated* {982ADE23-275B-0766-37C5-DE01A484098E}
FW: BitDefender Firewall *Disabled* {A0115F06-6D34-063E-1C9A-77345A574EF5}
SP: BitDefender Antispyware *Disabled/Outdated* {234B3FC7-0161-08E8-0D75-E573DF034333}
 * Neuer Wiederherstellungspunkt wurde erstellt
.
.
(((((((((((((((((((((((   Dateien erstellt von 2012-05-09 bis 2012-06-09  ))))))))))))))))))))))))))))))
.
.
2012-06-09 17:12 . 2012-06-09 17:12	--------	d-----w-	c:\users\Default\AppData\Local\temp
2012-05-24 00:51 . 2012-05-29 20:52	--------	d-----w-	C:\FRST
2012-05-19 23:04 . 2012-05-19 23:04	--------	d-----w-	c:\programdata\Malwarebytes
2012-05-19 23:04 . 2012-05-20 00:14	--------	d-----w-	c:\program files (x86)\Malwarebytes' Anti-Malware
2012-05-19 20:38 . 2012-05-19 20:38	--------	d-----w-	c:\programdata\dc0d0000-285f-421f-58ff-3e3acd773491
2012-05-19 20:31 . 2012-05-19 20:31	--------	d-----w-	c:\users\Luisa\AppData\Roaming\QuickScan
2012-05-19 20:30 . 2012-05-19 20:43	--------	d-----w-	c:\programdata\BitDefender
2012-05-19 20:27 . 2012-05-19 20:44	155455	----a-w-	c:\programdata\bdinstall.bin
.
.
.
((((((((((((((((((((((((((((((((((((   Find3M Bericht   ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-05-22 22:08 . 2012-03-10 12:15	0	--sha-w-	c:\windows\system32\dds_log_ad13.cmd
.
.
(((((((((((((((((((((((((((((   SnapShot@2012-05-24_21.54.47   )))))))))))))))))))))))))))))))))))))))))
.
+ 2012-05-24 21:46 . 2012-05-25 22:18	83016              c:\windows\system32\wdi\SuspendPerformanceDiagnostics_SystemData_S3.bin
+ 2009-10-14 05:16 . 2012-06-09 17:15	28628              c:\windows\system32\wdi\ShutdownPerformanceDiagnostics_SystemData.bin
+ 2009-07-14 05:10 . 2012-06-09 17:15	39396              c:\windows\system32\wdi\BootPerformanceDiagnostics_SystemData.bin
+ 2010-11-01 17:11 . 2012-06-09 17:15	10580              c:\windows\system32\wdi\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-2020745923-3351992433-2440261903-1000_UserData.bin
- 2011-03-18 21:29 . 2012-05-19 23:07	67584              c:\windows\system32\LogFiles\Srt\bootstat.dat
+ 2011-03-18 21:29 . 2012-06-09 14:54	67584              c:\windows\system32\LogFiles\Srt\bootstat.dat
+ 2011-01-13 02:18 . 2012-06-02 15:06	6242              c:\windows\system32\wdi\ERCQueuedResolutions.dat
- 2012-05-24 21:54 . 2012-05-24 21:54	2048              c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
+ 2012-06-09 17:13 . 2012-06-09 17:13	2048              c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
- 2012-05-24 21:54 . 2012-05-24 21:54	2048              c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
+ 2012-06-09 17:13 . 2012-06-09 17:13	2048              c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
- 2009-07-14 02:36 . 2012-05-24 11:53	616008              c:\windows\system32\perfh009.dat
+ 2009-07-14 02:36 . 2012-06-09 17:08	616008              c:\windows\system32\perfh009.dat
+ 2009-07-14 17:58 . 2012-06-09 17:08	654166              c:\windows\system32\perfh007.dat
- 2009-07-14 17:58 . 2012-05-24 11:53	654166              c:\windows\system32\perfh007.dat
+ 2009-07-14 02:36 . 2012-06-09 17:08	106388              c:\windows\system32\perfc009.dat
- 2009-07-14 02:36 . 2012-05-24 11:53	106388              c:\windows\system32\perfc009.dat
- 2009-07-14 17:58 . 2012-05-24 11:53	130006              c:\windows\system32\perfc007.dat
+ 2009-07-14 17:58 . 2012-06-09 17:08	130006              c:\windows\system32\perfc007.dat
- 2009-07-14 05:38 . 2012-05-20 00:14	262144              c:\windows\system32\config\systemprofile\ntuser.dat
+ 2009-07-14 05:38 . 2012-05-29 20:52	262144              c:\windows\system32\config\systemprofile\ntuser.dat
- 2009-07-14 05:01 . 2012-05-24 21:53	274392              c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat
+ 2009-07-14 05:01 . 2012-06-09 17:12	274392              c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat
+ 2011-05-11 01:18 . 2012-06-09 02:04	1115636              c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-2020745923-3351992433-2440261903-1000-12288.dat
- 2011-05-11 01:18 . 2012-05-24 21:53	1115636              c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-2020745923-3351992433-2440261903-1000-12288.dat
- 2009-07-14 02:34 . 2012-04-05 06:13	10485760              c:\windows\system32\SMI\Store\Machine\schema.dat
+ 2009-07-14 02:34 . 2012-06-09 17:42	10485760              c:\windows\system32\SMI\Store\Machine\schema.dat
.
((((((((((((((((((((((((((((   Autostartpunkte der Registrierung   ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt. 
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"HideSCAHealth"= 1 (0x1)
.
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 pcouffin;Uiusys;c:\windows\system32\svchost.exe [2009-07-14 27136]
R3 Arrakis3;BitDefender Arrakis Server;c:\program files\Common Files\BitDefender\BitDefender Arrakis Server\bin\arrakis3.exe [2009-10-19 278224]
R3 BDFM;BDFM;c:\windows\system32\DRIVERS\bdfm.sys [x]
R3 cmnsusbser;Mobile Connector USB Device for Legacy Serial Communication LCT2053s;c:\windows\system32\DRIVERS\cmnsusbser.sys [x]
R3 massfilter;ZTE Mass Storage Filter Driver;c:\windows\system32\DRIVERS\massfilter.sys [x]
R3 SrvHsfHDA;SrvHsfHDA;c:\windows\system32\DRIVERS\VSTAZL6.SYS [x]
R3 SrvHsfV92;SrvHsfV92;c:\windows\system32\DRIVERS\VSTDPV6.SYS [x]
R3 SrvHsfWinac;SrvHsfWinac;c:\windows\system32\DRIVERS\VSTCNXT6.SYS [x]
R3 WatAdminSvc;Windows-Aktivierungstechnologieservice;c:\windows\system32\Wat\WatAdminSvc.exe [x]
R3 zghsmdm;ZTE General Handset USB Modem Proprietary;c:\windows\system32\DRIVERS\zghsmdm.sys [x]
R3 ZTEusbnet;ZTE USB-NDIS miniport;c:\windows\system32\DRIVERS\ZTEusbnet.sys [x]
R3 ZTEusbvoice;ZTE VoUSB Port;c:\windows\system32\DRIVERS\ZTEusbvoice.sys [x]
S1 BdfNdisf;BitDefender Firewall NDIS 6 Filter Driver;c:\windows\system32\DRIVERS\BdfNdisf6.sys [x]
S1 bdfwfpf;bdfwfpf;c:\program files\Common Files\BitDefender\BitDefender Firewall\bdfwfpf.sys [2010-11-01 89680]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [x]
S2 BDVEDISK;BDVEDISK;c:\program files\BitDefender\BitDefender 2010\bdvedisk.sys [2010-01-19 103944]
S2 HsfXAudioService;HsfXAudioService;c:\windows\system32\svchost.exe [2009-07-14 27136]
S2 UI Assistant Service;UI Assistant Service;c:\program files (x86)\T-Mobile Internet Manager 03\AssistantServices.exe [2009-03-30 241664]
S2 VMCService;Vodafone Mobile Connect Service;c:\program files (x86)\Vodafone\Vodafone Mobile Connect\Bin\VMCService.exe [2009-04-20 9216]
S2 WTGService;WTGService;c:\program files (x86)\XSManager\WTGService.exe [2010-04-12 329168]
S2 XS Stick Service;XS Stick Service;c:\windows\service4g.exe [2010-04-30 145064]
S3 CAXHWAZL;CAXHWAZL;c:\windows\system32\DRIVERS\CAXHWAZL.sys [x]
S3 RTL8023x64;Realtek 10/100-Netzwerkkartenfamilie-NDIS-x64-Treiber;c:\windows\system32\DRIVERS\Rtnic64.sys [x]
.
.
NETSVCS BENÖTIGT REPARATUR - Derzeitig vorhandene Einträge:
.
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Svchost  - NetSvcs
.
.
Inhalt des "geplante Tasks" Ordners
.
2012-05-30 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2020745923-3351992433-2440261903-1000Core.job
- c:\users\Luisa\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-03-10 16:07]
.
2012-06-09 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2020745923-3351992433-2440261903-1000UA.job
- c:\users\Luisa\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-03-10 16:07]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"BDAgent"="c:\program files\BitDefender\BitDefender 2010\bdagent.exe" [2011-05-15 1699152]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2009-09-23 165912]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2009-09-23 385560]
"Persistence"="c:\windows\system32\igfxpers.exe" [2009-09-23 363544]
"Apoint"="c:\program files\Apoint2K\Apoint.exe" [2007-10-25 241664]
.
NETSVCS BENÖTIGT REPARATUR - Derzeitig vorhandene Einträge:
AeLookupSvc
CertPropSvc
SCPolicySvc
lanmanserver
gpsvc
IKEEXT
AudioSrv
FastUserSwitchingCompatibility
Ias
Irmon
Nla
Ntmssvc
NWCWorkstation
Nwsapagent
Rasauto
Rasman
Remoteaccess
SENS
Sharedaccess
SRService
Tapisrv
Wmi
WmdmPmSp
ATWPKT2
atfsd
ctaud2k
umpusbxp
pcouffin
pktfilter
axsnmsvc
p1110vid
rslinx
oracleoradb10g_home1isql*plus
nmwcdcm
LVRS
NTSIM
proxyhostservice
NICSer_WPC54G
wintabservice
wampmysqld
sonicwall_netextender
cltnetcnservice
service1
tnbrlds
adobeactivefilemonitor4.0
omsad
transcode360
icraplus
DfwWebAgent
CTMFLT
Ncrc710
lbrtfdc
atitunep
nvlddmkm
rt2500
atikmdag
vxsvc
symantecantibotfilter
TCtrlIO
sscdmdfl
driverhardwarev2
hidgame
cvslock
ofcservice
tunnelguardservice
adihdaudaddservice
procexp90
VirtualCam
Wpsnuio
fsaua
mfcom
mf
rtl8187Se
automate5
EpmShd
PolarUSB
admjoy
SenFiltService
wscsvc
zebrmdfl
Ld51ocnucsnp
k56
icdsptsv
btwaudio
v2imount
freesshdservice
bt3cusb
elnkfwppservice
ZSMC211
Rawwan
elosystemservice
lxdm_device
se44nd5
LUsbFilt
ipsraidn
Si3132
sfhlp02
pdlnslea
tng-dtmg
acedrv07
rppkt
iviregmgr
ccevtmgr
ASFWHide
ql10wnt
se27nd5
dktknsrv
evteng
AF15BDA
stac97
sdbus
websenseusagemonitor
license
MA8032U
vncdrv
Airgo
U81xmdm
scarddrv
pctavsvc
flashcomadmin
tosrfhid
slservice
service
nmservice
lanusb
nic1394
roxliveshare9
z800mdm
epsonbidirectionalagent
rt73
proxyhostmirrordisplay
iAimFP6
avgcoresvc
sandboxu
cicsclient
profos
cwcwdm
pcctlcom
mskservice
lcs
avgascln
db2licd
smapint
SNC
mssql$microsoftsmlbiz
tsdhd
asc
elservice
ipodsrv
racsvc
oracleorahome92tnslistener
siskp
Cam5603C
iaimfp3
pserve
portio
dladresn
NETGEAR_MA111
cwcspud
PQNTDrv
adpu160m
zebrceb
ql1280
dlcf_device
tomcatcws3
AVRec
a8djusb
gusvc
S7oppilx
vetmonnt
aswrdr
clientservice
avgclean
nscirda
USBCCID
SrvcEKIOMngr
FINEPIX_PCC
speedfan
ixiaendpoint
HFACSVC
anbmservice
ilicensesvc
se2Bunic
mcafeeframework
SRS_SSCFilter
regsrvc
mi-raysat_3dsMax2008_32
https-admserv61
mferkdk
SprintRcAppSvc
sfman
webupdate
toside
CX23880
smbios
dmisrv
statusagent
dpc_srv_webcast
dm1service
sifilter
WLAN_USB
bthpan
kpfwsvc
wacomkey
VHidMinidrv
mctskshd.exe
AsuhfivrO
purendis
pdlnemap
epson_pm_rpcv4_01
tos_sps32
mbr
lgsnd_filter
itchfltr
incdrm
atalk
szkg
iolo_srv
MREMP50a64
WmFilter
CdaC15BA
changer
tfsndres
Mtlstrm
FVNETusb
s616bus
retrolauncher
nwcworkstation
midisyn
FireTDI
oraclexeclragent
enxpsvc
mcmispupdmgr
atimpab
AR5523
l8042pr2
cpucoolserver
networkx
CXTUNE
richvideo
svchost
apphostsvc
rnadirectory
PGPsdkDriver
cebdaldr
citrixwmiservice
dnserver32
sony_ssm.sys
db2jds
qmofiltr
Mvc25U870_VID_1262&PID_25FD
idrivert
aalogger
nsm1mdfl
avgio
hamachi
ISAMSvc
nimcdlbk
psimsvc
lvusbsta
A88xXBar
lxcr_device
pelmouse
scramby
nvax
vmkbd2
lxbs_device
RMSvc
SNPSTD3
Si3132r5
ss_mdfl
pdlnatcm
ceepwrsvc
eectrl
taphss
SlWdmSup
trlokom_rmhsvc
hpn
iaimtv2
vsbus
StarOpen
SbieDrv
SunkFilt39
iaimfp1
BCMTPM
UDFReadr
dwusbdnt
asmagent
RESMGR
whoisd32
msloop
n3900
dvd43llh
tosrfcom
videX32
se59mgmt
pca
savscan
navapel
USBAAPL
susbser
hsvcmod
ersvc
sysaudio
epfwtdi
BUFADPT
awservice
vhidmini
grmnusb
lhidusb
maxbackserviceint
USIUDF
symlcbrd
lvpr2mon
cercsr6
rmedia
hibernation
lxcccustomerconnect
HSXHWBS2
vpcbus
PcdrNt
hcwPVRP2
Subsonic
stllssvr
symevent
DniVad
rxfilter
psdistributionagent
amon
MXOFX
zpsc
SrvcSSIOMngr
igniteservice.exe
sr
hclinetd
se44mdm
vnxservice
msdv
st330service
sonytvc
epson_pm_rpcv2_01
vwkernel
W700mdm
pcampr5
USB28xxOEM
PdiPorts
gameenum
win32sl
sfcure01
PCASp50
mpe
sysmonlog
avp
msmframework
purgeieservice
A88xEnc
thkeys
cxpt_service
ups
wg3n
aswlsvc
Stltrk2k
pdlndtdl
db2remotecmd
adiusbaw
cidaemon
MA_CMIDI
wltwo51b
wmp54gssvc
cportclm
psdvdisk
SQLBrowser
SE26bus
FTDIBUS
zumbus
e1express
z800mdfl
lpds
parvdm
rollbackclientservice
snpstd2
qbcfmonitorservice
wuolservice
T6963C
dbustrcm
sbpci
NWSIPX32
dlapoolm
smartlinkservice
deltafw
captureservice
WINUSB
oracleorahome90agent
ISODrive
apache2
ASMMAP
dcstor32
pilogsrv
cpqarray
mqdmbus
CT20XUT.DLL
SrvcEPIOMngr
FiltUSBEMPIA
btwrchid
govsrv
USBModem
STV672
oracleorahome811cmadmin
w810mdfl
anio
vstor2-ws60
slip
tfsnifs
MSFWHLPR
DLH5X
PSSdk23
vmsprog
pivotmou
simbad
nim32
StickyMesger
RMCAST
DeviceScanner
RadProbe
spcsutilityservice
ARCSOFTVIRTUALCAPTURE
wg6n
slabbus
ALABULK
NeroMediaHomeService.4
NWSAP
se27unic
vvdsvc
razerusb
ntuneservice
msfwsvc
timounter
SE26mdfl
s117obex
pdlnctdl
srtspx
ppmoucls
pcnet
tiumfwl
persfw
npkcmsvc
ino_flpy
aeclienthostservice
elnkupdateservice
WinFl32
SE27obex
perc2
w800mgmt
crauto
cachemgr
siside
VAIOMediaPlatform-MusicServer-HTTP
RAPIProtocol
actser
procexp100
vulfntrs
websenseclientdeployservice
s217mgmt
TVALG
ADSMService
pdreli
commserver
pmj151la
lxcj_device
pxfhserd
Dfs
pdlnatdl
sandradatasrv
clnt_clientman
s217nd5
plscsi
fix
elbycdfl
ZDCNDIS5
antivirscheduler
SE2Emdfl
digitizer
iwebmsg
usbser
ql2100
risdptsk
MSW_USB
snareiis
wg111nd5
AR5416
CX88AUD
bb-run
ovmsmaccessmanager
SymIM
konfig
AX88772
pdlnacom
ql1080
irmon
sbservice
ufad-ws60
vzupsvc
wmdmpmsp
kservice
mcstrm
fgdxbus
rupsd
lxrsii1s
srvdpi
qbposdbservices
mksvirmonsvc
hpconfig
mssql$sony_mediamgr
ATMsrvc
UlSata
thotkey
cpqalert
rkhdrv31
DCamUSBGrandTek
Tb2RCAssist
ps2
symappcore
X4HSX32
RDID1027
isapisearch
tmcomm
qcdonner
caili
TryAndDecideService
moufiltr
dmboot
Alpham2
mnsframework
MtxDma0
s7oppitx
lwwlicenseservice
euq_monitor
windrvNT
vaiomediaplatform-integratedserver-upnp
DMUSBUSBDCam
nhcDriverDevice
acrotray
usbcm
nwdls
mcontrol
googledesktopmanager
pdlnepkt
fireport
tapvpn
tvichw32
wm
ofcpfwsvc
SecureStorageService
hsfhwbs2
ntsvcmgr
vet-rec
regdefend
s217mdfl
snoopfree
uphclean
QPSched
oracleformsserver-forms60server-oraform
lemsgt
arrayssl_vpn_service3,0,1,9
vmnetadapter
tcsd_win32.exe
btwhid
aamqdispatcher
ntsyslog
IntelC51
avfilter
EL90X
shdserv
ICAM5USB
wap3gx
ssrtln
vproeventmonitor
dxdebug
slapd-config52
ProcObsrv
SaiClass
mfehidk
JiaoCap
RivaTuner32
sis315
mnmdd
NWFILTER
mcshield
btwdins
WD_FireWire_HID
wwnetdde
nimcdldu
ativraxx
se58unic
tosrfbnp
SaiNtHid
mod7700
irda
WMIService
usbaudio
usbmate
lxcz_device
eabusb
thinkpadmodemservice
usbatapi2000
btnhnd
vci
winpppoverethernet
sprtsvc_dellsupportcenter
se2Cunic
NetTcpActivator
dlcj_device
client32
DcLps
ptserial
VIAPFD
fsma
se59nd5
nimxdfk
hpqcxs08
acedrv05
ASNDIS5
dladresm
cdr4_xp
ELmou
cwafadmincontroller
c34nb4c5
AlKernel
tapeware
vsapint
meiudf
elaunidr
tmmbd
FontCache3.0.0.0.
rimsptsk
lxrsge10s
ssfs0509
lxcc_device
WINIO
qbreminderflash
DSXUSB
LVVI500A
cfsvcs
zpnodecollector
GoogleDesktopManager-010708-104812
belmonitorservice
HabuFltr
LMS
winproxy
lexbces
CTERFXFX.DLL
TBPanel
mpservice
DynDNS_Updater_Service
el90xbc
EPSON_EB_RPCV4_01
mclserviceatl
CE3
NTACCESS
om518p
OneCareMP
wanminiportservice
giveio
SE27mdfl
qkbfiltr
pop3d32
Wuser32
wps
getPlusHelper
cdr4_2k
ntmssvc
pml
pdengine
DMICall
ini910u
kraidsvc
ATIBTXBAR
phnxvcdservice
rdsessmgr
ICAM3NT5
SerTVOutCtlr
wfxsvc
iftpsvc
TestHandler
quickbooksdb
ati2mpaa
PTDCBus
LRMINIPORT
enxpsvr
digisptiservice
s716nd5
LoopBeMidi1
MASPINT
pmshellsrv
U3sHlpDr
se59bus
zntport
pfc
bcserver
LVPrcMon
Sntnlusb
snpstd
pgsql-8.0
a016mdfl
NuidFltr
tphdexlgsvc
UCTblHid
bobo
sglfb
iksyssec
kbstuff
lfsfilt
afs2k
pdcomp
inort
dot4usb
Udfreadr_xp
mwsejcap
W55U01
BVRPMPR5
pvservice
OEM02Vfx
sit_flt
se2Eunic
ftrtsvc
rvsinst
backupexecnamingservice
mqdmmdm
stcagent
elnkservice
SWUMX51
RIOUNIV
sonywbms
ELmon
bgmainsvc
tmesrv3
catchme
mssqlserverolapservice
AtiPcie
tlntsvr
Ndisipo
M2500
issuser
ROB_V
GBDevice
hsfhwazl
vsmon
adobeactivefilemonitor5.0
SE2Bmdfl
fetnd5bv
sfdrv01
mqdmmdfl
JL2005C
datasvr2
avipbb
dnwhodisp
meraksmtp
relational
licenseservice
se2Cnd5
sentinel
rfcomm
vncmirror
stylexphelper
ctdvda2k
ithsgt
rpskt
sddmi2
pwisvc
RVIEG01
senfilt
MobilityService
atirage3
AcronisOSSReinstallSvc
tmtdi
oracleorahome811cman
ndasscsi
w810mdm
oracledbconsoleorcl
ma763004
acmservice
W8335XP
inotask
mediaviewer
usnjsvc
nm
mpfirewl
XTrapD12
wpsdrvnt
qbposdbextservices
nchssvad
avg7core
sysmgmthp
Gernuwa
windowblinds
sysdown
s3savagenb
dot4ufd
aswtdi
thpsrv
rsvchost
atiavpci
ftpds
nmap
msvad_simple
s616mdfl
toscosrv
CXAVXBAR
shuttleengine
lxdj_device
ShockMgr
jukebox3
HPSLPSVC
cdrbsvsd
forcewarewebinterface
egathdrv
VAIOMediaPlatform-MusicServer-UPnP
lp6nds35
webrootspysweeperservice
rimvserport
smartwiservice
cdmservice
lvpopflt
Exportit
nuvaud2
sp_rssrv
mksupdateint
imagedrv
cnxtdiag
snoopfreesvc
vcomm
SE2Bmdm
pdlndlpb
mfetdik
ppa3
ELkbd
NTIDrvr
dot4print
WmaCDriverV32
gdrv
tosrfusb
eamon
mks_scan
diskperf
slpmonx
dlaudf_m
pavatscheduler
XilinxPC4Driver
usbsermpt
usb20l
MRV6X32P
CX88ENC
SI3112
EACSys
mstdfrgs
wintrust
alcaudsl
lxbt_device
nipxirmu
ccs
s125mdm
cfosspeeds
ASLDRService
ssm_mdm
idebusdr
backupexecnotificationserver
icollectservice
TPwSav
riomsc
SE27mdm
scsk4
nvcap
awecho
w550mgmt
g400
nfmservice
pgfilter
dlacdbhm
Slntamr
naimagent32
tm_cfw
USA49W2KP
SlNtHal
hap16v2k
cics.region2
PCISys
superproserver
proxyserverservice
hSONYPVh
pdlndqll
Usb20Scan
Alpham1
pdrframe
tfsndrct
rslinxng
wwsecsvc
arhidfltr
smbusp
DCFS2K
wanatw
db2ntsecserver
a016obex
SRTSPL
cmdagent
tsp
fsdfwd
vclone
smservaz
roxupnpserver
HssTrayService
starwindserviceae
aliadwdm
SbcpHid
int15.sys
idechndr
merakpop3
SE2Ebus
us30service
abnetmon
gv3
vetfddnt
ATNT40K
lvckap
ASInsHelp
rampartsvc
webdriveservice
usbsermptxp
sym_u3
ssidrv
dlaudfam
pinnaclemarvinusb
VRFIL
rt61
fsbwsys
lxdmCATSCustConnectService
ZY202_XP
odysseyIM4
mnmsrvc
ar5211
aw_host
pxfhbus
sdhelper
btdriver
Appn
ipssvc
fastuserswitchingcompatibility
nv
websenselogserver
pavdrv
WmHidLo
avg7rsw
F700iob
pxfhmdfl
bcoreusb
StkAMini
sonypvs1
fasttx2k
tphkdrv
ultra
StMp3Rec
lxrjd31s
rt2870
CTDevice_Srv
macformatservice
cqmgserv
se58mdm
smwdm
dntus26
symids
avidsdmservice
bdfdll
se2Dunic
Epfwndis
iaimtv3
SiSRaid
blueletaudio
dptrackerd
nvnetbus
ami0nt
harmony
uscbs108
Intel_MIPMNMP
ufdsvc
iviaspi
transarcafsdaemon
mcmscsvc
VC4CB104
mfebopk
{95808DC4-FA4A-4c74-92FE-5B863F82066B}
ncupdatesvc
CTMMOUNT
zpcache
SE27bus
atinrvxx
oracleorahometnslistener
useraccess7
w800bus
Hotkey
SWNC8U20
oraclemtsrecoveryservice
netmnt
pdlnecfg
backupexecdevicemediaservice
perc2hib
TcUsb
z800bus
raysatxsi5_0server
rpcnet
{a7447300-8075-4b0d-83f1-3d75c8ebc623}
nvnforce
PPPoEWin
mcsysmon
bthidenum
vpn5000service
w810mgmt
HssDrv
SymIMMP
s116unic
MxlW2k
k750obex
se59unic
mssql$pinnaclesys
BlueSoleilCS
dirms_defragmentation
tbhsd
vaiomediaplatform-mobile-gateway
s217unic
USBDeviceService
NAL
issm
spmgr
spbbcsvc
SIODRV
winvnc4
ARSVC
avcgbfl
SE2Eobex
mclogmanagerservice
alertservice
aexnsclienttransport
tavsvc
tgsrvc_smartagent
DM9102
caisafe
WBHWDOCT
USR1806V
zpcollector
rtl8185
PAC7302
flutilssvc
kpf4
ac97intc
ipahelper.exe
webfilter
opcenum
id2scaps
mssqlserver
sandrathesrv
slabser
BCM43XV
nwlnkfwd
ntlmssp
DcPTP
lvcomser
s716mdm
UBHelper
se2Dnd5
vcsw
elotouchscreen
adsexpb
venturi2
xcomm
vvoice
cq_mem
DellAMBrokerService
SE26mdm
trioservice
L8042mou
CTEDSPFX.DLL
mldserv
cpqnicmgmt
MSSQL$MSSMLBIZ
ZuneWlanCfgSvc
mvserver
mcdbus
AlteraByteBlaster
se44mdfl
tdcmdpst
wacomvhid
atdisk
sqlserveragent
MTsensor
bocdrive
incdfs
iAimFP7
se58bus
swmidi
VAIOMediaPlatform-PhotoServer-HTTP
wencrservice
DcFpoint
MTC0001_ESB
houdiniserver
LPCFilter
ser2pl
ctxcpusched
PTproct
X10UIF
ssisvr32
tb2launch
Memctl
w200mdm
eaps2kbd
BRGSp50
wlluc48b
PTDCMdm
splitter
ntgrip
NICM
ntpr_nic_service2
sleepy
prevxagent
wdm_au8820
wlidsvc
IASJet
ATKFUSService
logmein
msmpsvc
a016mdm
anydvd
wzcsvc
upsentry_smart
HSX_DP
toshidpt
zebrsce
DCamUSBSQTECH
PGPwded
ctprxy2k
ctsfm2k
acdservice
iolodmv
sit_mdm
freebsd
regmanserv
ntsecure
pdlnsx25
alerter
orbmediaservice
RR2IOMod
VRADFIL
sonypvu1
ccalib8
BrScnUsb
wusb54gv2svc
CVPND
ec2007service
AGV
areschatserver
jobserver_report
TMKEmu
owstimer
olapserver
JRAID
StreamDispatcher
SE2Cmgmt
hddsvc
p1131vid
se45nd5
nwlnkipx
InterBaseServer
cdralw2k
TPM
wacommousefilter
magictuneengine
tpkmpsvc
PXRDDriver
tdsmapi
SQTECH905C
NtMtlFax
sgectl
usb_rndisx
sonicstagemonitoring
wlsetupsvc
emproxy
vmauthdservice
TOSHIBASoftModem
mcods
WavxDMgr
tones
aha154x
SMTPSVC
dlbt_device
mwsarcpkt
aolservice
LCcfltr
EU3_USB
epsonbidirectionalservice
odysseyIM3
RIOXDRV
AKSIFDH
sansaservice
RTL8169
vzcdbsvc
bt3cser
nimcrpcsu
DELL_A02
sisperf
StkScan
Spsmqvsm
lirsgt
pduip6000dmemcrdmgr
v124
snapman380
ehstart
avg7rsxp
mssql$sqlexpress
db2das00
mcpromgr
zenos1
smcservice
SaiNtSub
SfCtlCom
autostore
edspport
HIDSwvd
WGX
InterBaseGuardian
openvpnservice
sfilter
FETNDISB
palmusbd
symtdi
ghaio
tdimsys
se26unic
kmixer
rpcapd
ikfileflt
iAimTV5
PID_08A0
CamAv
SED133x
iaimfp4
SaiH040B
IFP700
lxcg_device
epfw
SE2Bbus
NxFsMon
viaagp1
mxserver
emAudio
ssdiagn
nsm1serd
vusbbus
SunkFilt
cachemanxp
mcupdmgr.exe
2wirepcp
issimon
dnsexit
TNaviSrv
arp1394
Uim_IM
dlbx_device
nimcdfxk
umxfwhlp
vmount2
Sk9920nt
cygserver
FileDisk
USBVCD
MaVctrl
eSettingsService
penrendezvous
s125obex
xpadminserver
rnadiagreceiver
epsonstatusagent2
regspy
NetMsmqActivator
ziptoa
ngdbserv
atkkeyboardservice
SimpTcp
lvuvc
omci
zebrmdmc
elagopro
tmxpflt
VX1000
dlcc_device
aec
syntp
SWMX00
MagicTune
NPPTNT
veteboot
appdrv
tmlisten
npfmntor
fcprintservice
roxliveshare
firelm01
audstub
avsvcmonitor
screadspool
cdfsvc
imonitor
zmxpzip
filechecker
wdmaud
s716mdfl
TPECioCtl
tmactmon
inport
ccdecode
xfilt
mi-raysat_3dsmax8
utilman
ulcdrhlp
filemon701
server
klblmain
FTSER2K
sprtsvc_ddoctorv2
MSFWDrv
comhost
oracleorahomedatagatherer
dcfssvc
vpcnets2
procmon10
prtg4service
omniinet
lxda_device
advantage
cwafnotesservice
nicconfigsvc
ndiscm
zd1211u(zydas)
streamip
rca
backupexecalertserver
WacomVKHid
imap4d32
sfng32
DNE
ptilink
rp32service
SilverLink
alcan5wn
websensewfreportserver
carboncopy32
SE2Dbus
CrystalSysInfo
se44obex
YahooAUService
pctoolsfirewallplus
trcboot
emitray
tsmservice
W700obex
cmuda3
s116mgmt
dac2w2k
cwafreportscheduler
NxNetMon
netwg311
wmp54gsvc
uhcd
smartscaps
pid_0928
ql1240
CTEDSPIO.DLL
rpaservice
SQLAgent$MICROSOFTSMLBIZ
CiscoVpnInstallService
lxce_device
dsNcAdpt
dlcq_device
wg5n
quickhealfirewall
mcafeeantispyware
tabletservice
ovt519
tfsnudfa
DKbFltr
sqlagent$sony_mediamgr
CTSBLFX.DLL
avhook
sscdserd
xpagentserver
tvicport
symdns
wlluc48
tvtnetwk
rwbackupsrv
tvs
iteatapi
useraccess
se44mgmt
vstor2
imaservice
icepack
swmsflt
cpqdmi
AtiHdmiService
MobilePreInstallerService
XFX_program
JiaoIO
atimtag
VRcore
MXOPSWD
rtport
hwdatacard
traprcvr
winss
utscsi
tosrfec
aclient
bcftdi
oracle_load_balancer_60_client-forms6ip14
tpsrv
cmudau
VSP1284D
nalntservice
papycpu2
ATIBTCAP
radiosvr
DumaNT
WinVd32
sit_prt
gs30s
Si3114r5
pcidump
genregistrar
dvd-ram_service
dmio
uisp
pwd_2K
snapman
w300bus
stirusb
SaiNtBus
IOSLINK
WmUsbHid
hap17v2k
ssm_mdfl
hcf_msft
GMSIPCI
ageresoftmodem
avsinc
trackcam4
vmnetdhcp
zpjobq
ibmpmdrv
F700iat
psasrv
TIEHDUSB
rtl8023
w550mdfl
ooclevercacheagent
ccpwdsvc
WaveFDE
ntcharge
ozoneinstallerservice
iisadmin
symantecantibotdriver
VrAcFil
contentindex
NVENET
cisvc
yukonwxp
rrrspy
IPSECSHM
s125mdfl
UimBus
Wbutton
SE2Dmdm
nvsmu
Ndismeetro
mbmiodrvr
defragfs
vxd
IBMTPCHK
cwbrxd
mgactrl
klif
cavasm
NMSAccessU
GENERICDRV
backupclientsvc
tandpl
pnrouter
jaguar
navex15
swwd
oracleorahomemanagementserver
ipsec
digictrl
bhmonitorservice
ATIVTUTW
ONSIO
dlcg_device
niorbk
openldap-slapd
pdagent
nmwcdcj
mysqlinventime
MA8032M
hsxhwazl
se59mdm
mail2ec
se58nd5
advservice
EAWDMFD
wltrysvc
z800mgmt
sptisrv
GTF32BUS
rt2500usb
unrealircd
pgpsdkservice
PCDCODEC
SQLAgent$LG_LP2
NWUSBPort
GoToAssist
VCIDRV
se44bus
w550mdm
ovsecurityserver
WSIMD
update
Anydlc
papyjoy
abp480n5
servicelayer
stunnel
odclientservice
atierecord
olcamsrv
pelusblf
z525obex
upsmonservice
belgium_id_card_service
pmsveh
GoBack2K
AVCamUSB20
w22n51
snac
arkbcfltr
mysql
RimSerPort
ABVPN2K
b57w2k
liveupdate
SQLAgent$MICROSOFTBCM
amusbprt
sonicatheaterinstallerservice
a8djavs
FET5X86V
sisidex
eeyeevnt
fah@c:+fah+fah-service+fah502-console.exe
USBMN1X1
UpdateCenterService
FVXSCSI
starwindservice
s116obex
regmon701
ichaud
penclass
akshhl
minilog
SiRemFil
smrt
nvstor32
cwafadminmonitor
vaiomediaplatform-integratedserver-appserver
KR3NPXP
Maplom
bdfsdrv
digirefresh
symantecantibotshim
hpqwmiex
adsservice
qconsvc
rupsmon
iSMBIOS
dpti2o
DivisCTP
WmXlCore
proxyhostdriver
bmwebcfg
SE27mgmt
mediamaxxlservice
messenger
bufserv
dklogger
adobeversioncue
bcm4sbxp
WcesComm
avupdsvc
automate6
SiSGbeXP
roxupnprenderer
Cam5603D
EPOWER
BCMModem
cpqfcalm
pdlndoem
vaiomediaplatform-musicserver-appserver
MQAC
ibmcicstransactiongateway
Ktp
mcproxy
GV600_4
idisw2km
acsvc
AmeLanPc
pav_service
k750mgmt
lvsrvlauncher
tdrpman
rootmodem
mohfilt
stylexpservice
truecrypt
EpmPsd
VX3000
NWDHCP
acprfmgrsvc
csctl50
KS0108
centennialiptransferagent
avgtdi
pcradminserver
beatjamupnpmusicserver
dot4
ipinip
epstnt01
sysaidagent
MS1000
emupia
astcc
gemserv
hf30service
isdrv120
CBN
procexp111
eventclientmultiplexer
obvious
w800mdm
foldersize
tvtfilter
Blfp
KR10N
HpqRemHid
w200mgmt
qfcoresvc
dbmang
mdm
irsir
ctxcpuusync
yediex
pdscheduler
backupexecrpcservice
s117unic
protexislicensing
Cardex
remoterecord
backuplauncher
ELacpi
cqcpu
s716bus
wmp54gv4svc
se2Bnd5
lvhidsvc
pinger
nvport
pageserver
wkscfgsrv
AppnApi
pav_security
pmem
autocomplete
ati2mtaa
incdpass
crystalaps
sfrem01
Machnm32
mi-raysat_3dsmax9_32
BASFND
coste
clsched
delldmi
wmccdsls
erecoveryservice
agentsrv
k750mdm
Mtlmnt5
LVCap138
adminserver
savrtpel
WUSB54GPV4SRV
gearsecurity
megamonitorsrv
se58obex
soma
hdthermal
xusb21
BcmSqlStartupSvc
Sunkfiltp
rapapp
wpdusb
ireike
scdemu
noipducservice
netsvc
httpfilter
twdns
sympxsvc
hpzius12
SE2Cobex
w29n51
tunmp
aswupdsv
SMNDIS5
msftesql
sthda
vpnva
btwusb
EACSvrMngr
pdfcreatormessages
fsssvc
SWNC8U51
ss_mdm
MaRdPnp
aracpi
motmodem
mfesmfk
SRTSP
artdhcp
PDExchange
ikhfile
avcgbdr
cvintdrv
EMSCR
CTAudSvcService
s116mdfl
iPassPeriodicUpdateApp
steamdvr
serialkeys
application
dcsloader
pnkbstrk
SiS7018
ni_nic
ma_cmidi_installerservice
WaveEnrollmentService
nsm1bus
mscsptisrv
artourservice
iaimfp0
dmprimer
ZSMC303
sbhooksvc
webrootenterpriseupdateservice
pxfhmdm
bc_ip_f
Nmea
MREMPR5
tnidriver
btnetfilter
UPATC
websensecommunicationagent
personalsecuredriveservice
kl1
se26nd5
z525mgmt
npapimon
U81xmgmt
Wtcls2k
datunidr
pgpserv
drvnddm
ispwdsvc
wdelmgr20
pcx1unic
tng-dts
pavfnsvr
OVT511Plus
TUWinStylerThemeSvc
dac960nt
rbfilter
zunenetworksvc
tosrfbd
PAR1284
Cap7134
AMDPCI
z800obex
amdk7
oracle%oracle_home_service%clientcache80
vwlogger
V0070VID
ipassconnectengine
cpqvcagent
plsremotesvc
c-dillacdac11ba
nmwcd
awlegacy
Pnp680r
ms_mpu401
inspect
LHidFilt
PCDRSRVC
ifp800
GTPTSER
pciSd
es1371
SABSVC
dsncservice
SWUMX20
wcontrol
pdlnsv25
cpqrcmc
se59obex
atchksrv
viaudio
BootScreen
mcvsrte
streamloadservice
LHidKe
ctac32k
BRCMDECO
USRpdA
W8100PCI
orbpvr
ser2plms
SANDRA
symndis
dlaifs_m
rtm
{834170a7-af3b-4d34-a757-e05eb29ee96d}
ctljystk
symproxysvc
PD0620VID
imonnt
CoachUsb
lmimaint
s116mdm
wmi
Eplpdx02
aswmon2
a016bus
NwSapAgent
agnfilt
regservice
IBM_LLC2
nfsds
winpowermanager
cobbmservice
websenseuserservice
si3114r
vpcusb
fssfltr
SE2Cbus
bdss
PGPdisk
ghoststartservice
atixsaudio
armoucfltr
O2SCBUS
aic78xx
CA561
ARPolicy
viaagp
videoacceleratorengine
raidmsvr
SE2Cmdfl
ATSWPDRV
tfsncofs
cpsvc
USB_NDIS_51
sndsrvc
iaantmon
EIO_XP
CVPNDRVA
icam4usb
vcdsecs
bc_filter
oraclewebassistant
toddsrv
ivscheduler
pae_1394
mindrepair
lvtuner
PSI_SVC_2
pcandis5
tng-doba
NWHOST
vmparport
ESDCR
eloggersvc6
oracle_load_balancer_60_client-forms6i
cpqarry2
passthru
DVDVRRdr_xp
VCAM
spupdsvc
prfldsvc
dnetc
rp_fws
SiS300i
SetupSys
DSDrv4
yukonwlh
msftpsvc
LEX_AS_NIC_SERVICE_YNOS
atksgt
emu10k1
picturetaker
avgntflt
axskbus
UWProSys
filterservice
mfeapfk
LMouKE
btaudio
igateway
smservauth
cpuz132
cccredmgr
ZDPNDIS5
SWNC5E00
antivirservice
MRESP50
P17xfi
bwsvc
eskerlicensecontrol
GT890x
DevUpper
tme3srv
F700imd
nipsvc
C-Dilla
sysplant
RushTopDevice
backupexecagentaccelerator
s616unic
RTSTOR
siswlsvc
KMW_SYS
MRESP50a64
hcwPP2
lvprcsrv
NVR0Dev
iap
RTLE8023xp
haspnt
tfsnpool
lvmvdrv
WNIPROT5
LVBulk
s24eventmonitor
SeaPort
ScanUSBEMPIA
defwatch
websensecamserver
teefer2
lhidflt2
MREMP50
cxlpt
iwebcal
sr_service
SECYPUSB
bgsvcgen
ss_bus
s24trans
dwmrcs
epoxusdm
mirrorv3
AsIO
guardian2
NITaggerService
roxwatch
fa_scheduler
oracleservicelocalora
usbbus
revudfservice
oracleorahome92pagingserver
vmnetuserif
ANC
blueletscoaudio
atmeltpm
TMHIDSRV
dlpwd
{85ccb53b-23d8-4e73-b1b7-9ddb71827d9b}
twotrack
basic2
npkcusb
c-dillasrv
RSAFAL
uiusys
Tablet2k
NEOFLTR_600_13319
NETMDUSB
RTL8023xp
paamsrv
vzfw
aspi32
acnusvc
enodpl
wceusbsh
backupexecagentbrowser
ctusfsyn
LUsbKbd
sit_bus
U81xmdfl
rtl8029
usprserv
E1000
SE2Bobex
VNUSB
cics.region1
trufos
pwkntmon
FreshIO
ccsetmgr
MailService
cxusb
cimnotify
nscservice
AEADIFilters
SGIR
usnsvc
tsscoreservice
SMCB000
USA49W
prosync1
PhilCam8116_XP
icm10blk
SndTDriverV32
ntiopnp
lxcf_device
slave
CTEXFIFX.DLL
SDdriver
WmBEnum
websenserealtimeanalyzer
OEM02Afx
NCPro
FETNDIS
AIRPLUS
USB_RNDIS
VC6SecS
MaxtorFrontPanel1
kodakccs
TClass2k
CAMFLT
BLKWGU(Belkin)
omnidrv
Cam5607
vulfnths
netdetect
authsyssvc
bdpredir
gbpoll
PBADRV
alcxwdm
hpci
wandrv
vmusb
IntelC53
HpqKbFiltr
cm102u32
NWADI
remotelyanywhere
3compxe
KMW_USB
pdlncbas
avc
TPPWRIF
wmccds
nvenetfd
AEAudioService
aexnsclient
XBCD
dashsvc
CTEAPSFX.DLL
tpkd
ypcservice
Cinemsup
symredrv
Intels51
nabtsfec
servicemgr
entech
p17xfilt
us30sys
symmpi
dmusic
TermService
wuauserv
BITS
ShellHWDetection
LogonHours
PCAudit
helpsvc
uploadmgr
iphlpsvc
seclogon
AppInfo
msiscsi
MMCSS
winmgmt
SessionEnv
browser
EapHost
schedule
hkmsvc
wercplsupport
ProfSvc
Themes
BDESVC
AppMgmt
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost  - NetSvcs
.
.
------- Zusätzlicher Suchlauf -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.google.de/
mStart Page = about:blank
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: Free YouTube to Mp3 Converter - c:\users\Luisa\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm
TCP: DhcpNameServer = 192.168.0.1
FF - ProfilePath - c:\users\Luisa\AppData\Roaming\Mozilla\Firefox\Profiles\161hpcsf.default\
FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2269050&SearchSource=3&q={searchTerms}
FF - prefs.js: browser.startup.homepage - Google
FF - prefs.js: keyword.URL - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2269050&SearchSource=2&q=
FF - prefs.js: network.proxy.http - 
FF - prefs.js: network.proxy.http_port - 
FF - prefs.js: network.proxy.type - 
FF - user.js: network.http.max-persistent-connections-per-server - 4
FF - user.js: nglayout.initialpaint.delay - 600
FF - user.js: content.notify.interval - 600000
FF - user.js: content.max.tokenizing.time - 1800000
FF - user.js: content.switch.threshold - 600000
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
Toolbar-{cc05a3e3-64c3-4af2-bfc1-af0d66b69065} - (no file)
Toolbar-{30F9B915-B755-4826-820B-08FBA6BD249D} - (no file)
.
.
"ServiceDll"="%systemroot%\system32\W700mdfl.dll"
.
[HKEY_LOCAL_MACHINE\system\ControlSet006\services\fah@c:+fah+fah-service+fah502-console.exe]
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_USERS\.Default\Software\Microsoft\Internet Explorer\Approved Extensions]
@Denied: (2) (LocalSystem)
"{381FFDE8-2394-4F90-B10D-FC6124A40F8C}"=hex:51,66,7a,6c,4c,1d,38,12,86,fe,0c,
   3c,a6,6d,fe,0a,ce,1b,bf,21,21,fa,4b,98
"{18DF081C-E8AD-4283-A596-FA578C2EBDC3}"=hex:51,66,7a,6c,4c,1d,38,12,72,0b,cc,
   1c,9f,a6,ed,07,da,80,b9,17,89,70,f9,d7
.
[HKEY_USERS\.Default\Software\Microsoft\Internet Explorer\ApprovedExtensionsMigration]
@Denied: (2) (LocalSystem)
"Timestamp"=hex:6c,28,b2,06,26,fe,cc,01
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil11e_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil11e_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.10"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\system\ControlSet006\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet006\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet006\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet006\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet006\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0004\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet006\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Weitere laufende Prozesse ------------------------
.
c:\program files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
c:\windows\starter4g.exe
.
**************************************************************************
.
Zeit der Fertigstellung: 2012-06-09  19:29:35 - PC wurde neu gestartet
ComboFix-quarantined-files.txt  2012-06-09 17:29
.
Vor Suchlauf: 10 Verzeichnis(se), 98.715.168.768 Bytes frei
Nach Suchlauf: 11 Verzeichnis(se), 98.512.445.440 Bytes frei
.
- - End Of File - - 68A8A225A20F2C8F6502113EE3018B7B
         
--- --- ---

Alt 09.06.2012, 18:53   #73
Larusso
/// Selecta Jahrusso
 
svhost Trojan.Sirefef.BR - Standard

svhost Trojan.Sirefef.BR



Lade SystemLook von jpshortstuff von einem der folgenden Spiegel herunter und speichere das Tool auf dem Desktop.

Download Mirror #1
  • Doppelklick auf die SystemLook.exe, um das Tool zu starten.
    Vista und Win7 User mit Rechtsklick "als Administrator starten"
  • Kopiere den Inhalt der folgenden Codebox in das Textfeld des Tools:

    Code:
    ATTFilter
    :service
    AeLookupSvc
    CertPropSvc
    SCPolicySvc
    lanmanserver
    gpsvc
    IKEEXT
    AudioSrv
    FastUserSwitchingCompatibility
    Ias
    Irmon
    Nla
    Ntmssvc
    NWCWorkstation
    Nwsapagent
    Rasauto
    Rasman
    Remoteaccess
    SENS
    Sharedaccess
    SRService
    Tapisrv
    Wmi
    WmdmPmSp
    ATWPKT2
    atfsd
    ctaud2k
    umpusbxp
    pcouffin
    pktfilter
    axsnmsvc
    p1110vid
    rslinx
    oracleoradb10g_home1isql*plus
    nmwcdcm
    LVRS
    NTSIM
    proxyhostservice
    NICSer_WPC54G
    wintabservice
    wampmysqld
    sonicwall_netextender
    cltnetcnservice
    service1
    tnbrlds
    adobeactivefilemonitor4.0
    omsad
    transcode360
    icraplus
    DfwWebAgent
    CTMFLT
    Ncrc710
    lbrtfdc
    atitunep
    nvlddmkm
    rt2500
    atikmdag
    vxsvc
    symantecantibotfilter
    TCtrlIO
    sscdmdfl
    driverhardwarev2
    hidgame
    cvslock
    ofcservice
    tunnelguardservice
    adihdaudaddservice
    procexp90
    VirtualCam
    Wpsnuio
    fsaua
    mfcom
    mf
    rtl8187Se
    automate5
    EpmShd
    PolarUSB
    admjoy
    SenFiltService
    wscsvc
    zebrmdfl
    Ld51ocnucsnp
    k56
    icdsptsv
    btwaudio
    v2imount
    freesshdservice
    bt3cusb
    elnkfwppservice
    ZSMC211
    Rawwan
    elosystemservice
    lxdm_device
    se44nd5
    LUsbFilt
    ipsraidn
    Si3132
    sfhlp02
    pdlnslea
    tng-dtmg
    acedrv07
    rppkt
    iviregmgr
    ccevtmgr
    ASFWHide
    ql10wnt
    se27nd5
    dktknsrv
    evteng
    AF15BDA
    stac97
    sdbus
    websenseusagemonitor
    license
    MA8032U
    vncdrv
    Airgo
    U81xmdm
    scarddrv
    pctavsvc
    flashcomadmin
    tosrfhid
    slservice
    service
    nmservice
    lanusb
    nic1394
    roxliveshare9
    z800mdm
    epsonbidirectionalagent
    rt73
    proxyhostmirrordisplay
    iAimFP6
    avgcoresvc
    sandboxu
    cicsclient
    profos
    cwcwdm
    pcctlcom
    mskservice
    lcs
    avgascln
    db2licd
    smapint
    SNC
    mssql$microsoftsmlbiz
    tsdhd
    asc
    elservice
    ipodsrv
    racsvc
    oracleorahome92tnslistener
    siskp
    Cam5603C
    iaimfp3
    pserve
    portio
    dladresn
    NETGEAR_MA111
    cwcspud
    PQNTDrv
    adpu160m
    zebrceb
    ql1280
    dlcf_device
    tomcatcws3
    AVRec
    a8djusb
    gusvc
    S7oppilx
    vetmonnt
    aswrdr
    clientservice
    avgclean
    nscirda
    USBCCID
    SrvcEKIOMngr
    FINEPIX_PCC
    speedfan
    ixiaendpoint
    HFACSVC
    anbmservice
    ilicensesvc
    se2Bunic
    mcafeeframework
    SRS_SSCFilter
    regsrvc
    mi-raysat_3dsMax2008_32
    https-admserv61
    mferkdk
    SprintRcAppSvc
    sfman
    webupdate
    toside
    CX23880
    smbios
    dmisrv
    statusagent
    dpc_srv_webcast
    dm1service
    sifilter
    WLAN_USB
    bthpan
    kpfwsvc
    wacomkey
    VHidMinidrv
    mctskshd.exe
    AsuhfivrO
    purendis
    pdlnemap
    epson_pm_rpcv4_01
    tos_sps32
    mbr
    lgsnd_filter
    itchfltr
    incdrm
    atalk
    szkg
    iolo_srv
    MREMP50a64
    WmFilter
    CdaC15BA
    changer
    tfsndres
    Mtlstrm
    FVNETusb
    s616bus
    retrolauncher
    nwcworkstation
    midisyn
    FireTDI
    oraclexeclragent
    enxpsvc
    mcmispupdmgr
    atimpab
    AR5523
    l8042pr2
    cpucoolserver
    networkx
    CXTUNE
    richvideo
    svchost
    apphostsvc
    rnadirectory
    PGPsdkDriver
    cebdaldr
    citrixwmiservice
    dnserver32
    sony_ssm.sys
    db2jds
    qmofiltr
    Mvc25U870_VID_1262&PID_25FD
    idrivert
    aalogger
    nsm1mdfl
    avgio
    hamachi
    ISAMSvc
    nimcdlbk
    psimsvc
    lvusbsta
    A88xXBar
    lxcr_device
    pelmouse
    scramby
    nvax
    vmkbd2
    lxbs_device
    RMSvc
    SNPSTD3
    Si3132r5
    ss_mdfl
    pdlnatcm
    ceepwrsvc
    eectrl
    taphss
    SlWdmSup
    trlokom_rmhsvc
    hpn
    iaimtv2
    vsbus
    StarOpen
    SbieDrv
    SunkFilt39
    iaimfp1
    BCMTPM
    UDFReadr
    dwusbdnt
    asmagent
    RESMGR
    whoisd32
    msloop
    n3900
    dvd43llh
    tosrfcom
    videX32
    se59mgmt
    pca
    savscan
    navapel
    USBAAPL
    susbser
    hsvcmod
    ersvc
    sysaudio
    epfwtdi
    BUFADPT
    awservice
    vhidmini
    grmnusb
    lhidusb
    maxbackserviceint
    USIUDF
    symlcbrd
    lvpr2mon
    cercsr6
    rmedia
    hibernation
    lxcccustomerconnect
    HSXHWBS2
    vpcbus
    PcdrNt
    hcwPVRP2
    Subsonic
    stllssvr
    symevent
    DniVad
    rxfilter
    psdistributionagent
    amon
    MXOFX
    zpsc
    SrvcSSIOMngr
    igniteservice.exe
    sr
    hclinetd
    se44mdm
    vnxservice
    msdv
    st330service
    sonytvc
    epson_pm_rpcv2_01
    vwkernel
    W700mdm
    pcampr5
    USB28xxOEM
    PdiPorts
    gameenum
    win32sl
    sfcure01
    PCASp50
    mpe
    sysmonlog
    avp
    msmframework
    purgeieservice
    A88xEnc
    thkeys
    cxpt_service
    ups
    wg3n
    aswlsvc
    Stltrk2k
    pdlndtdl
    db2remotecmd
    adiusbaw
    cidaemon
    MA_CMIDI
    wltwo51b
    wmp54gssvc
    cportclm
    psdvdisk
    SQLBrowser
    SE26bus
    FTDIBUS
    zumbus
    e1express
    z800mdfl
    lpds
    parvdm
    rollbackclientservice
    snpstd2
    qbcfmonitorservice
    wuolservice
    T6963C
    dbustrcm
    sbpci
    NWSIPX32
    dlapoolm
    smartlinkservice
    deltafw
    captureservice
    WINUSB
    oracleorahome90agent
    ISODrive
    apache2
    ASMMAP
    dcstor32
    pilogsrv
    cpqarray
    mqdmbus
    CT20XUT.DLL
    SrvcEPIOMngr
    FiltUSBEMPIA
    btwrchid
    govsrv
    USBModem
    STV672
    oracleorahome811cmadmin
    w810mdfl
    anio
    vstor2-ws60
    slip
    tfsnifs
    MSFWHLPR
    DLH5X
    PSSdk23
    vmsprog
    pivotmou
    simbad
    nim32
    StickyMesger
    RMCAST
    DeviceScanner
    RadProbe
    spcsutilityservice
    ARCSOFTVIRTUALCAPTURE
    wg6n
    slabbus
    ALABULK
    NeroMediaHomeService.4
    NWSAP
    se27unic
    vvdsvc
    razerusb
    ntuneservice
    msfwsvc
    timounter
    SE26mdfl
    s117obex
    pdlnctdl
    srtspx
    ppmoucls
    pcnet
    tiumfwl
    persfw
    npkcmsvc
    ino_flpy
    aeclienthostservice
    elnkupdateservice
    WinFl32
    SE27obex
    perc2
    w800mgmt
    crauto
    cachemgr
    siside
    VAIOMediaPlatform-MusicServer-HTTP
    RAPIProtocol
    actser
    procexp100
    vulfntrs
    websenseclientdeployservice
    s217mgmt
    TVALG
    ADSMService
    pdreli
    commserver
    pmj151la
    lxcj_device
    pxfhserd
    Dfs
    pdlnatdl
    sandradatasrv
    clnt_clientman
    s217nd5
    plscsi
    fix
    elbycdfl
    ZDCNDIS5
    antivirscheduler
    SE2Emdfl
    digitizer
    iwebmsg
    usbser
    ql2100
    risdptsk
    MSW_USB
    snareiis
    wg111nd5
    AR5416
    CX88AUD
    bb-run
    ovmsmaccessmanager
    SymIM
    konfig
    AX88772
    pdlnacom
    ql1080
    irmon
    sbservice
    ufad-ws60
    vzupsvc
    wmdmpmsp
    kservice
    mcstrm
    fgdxbus
    rupsd
    lxrsii1s
    srvdpi
    qbposdbservices
    mksvirmonsvc
    hpconfig
    mssql$sony_mediamgr
    ATMsrvc
    UlSata
    thotkey
    cpqalert
    rkhdrv31
    DCamUSBGrandTek
    Tb2RCAssist
    ps2
    symappcore
    X4HSX32
    RDID1027
    isapisearch
    tmcomm
    qcdonner
    caili
    TryAndDecideService
    moufiltr
    dmboot
    Alpham2
    mnsframework
    MtxDma0
    s7oppitx
    lwwlicenseservice
    euq_monitor
    windrvNT
    vaiomediaplatform-integratedserver-upnp
    DMUSBUSBDCam
    nhcDriverDevice
    acrotray
    usbcm
    nwdls
    mcontrol
    googledesktopmanager
    pdlnepkt
    fireport
    tapvpn
    tvichw32
    wm
    ofcpfwsvc
    SecureStorageService
    hsfhwbs2
    ntsvcmgr
    vet-rec
    regdefend
    s217mdfl
    snoopfree
    uphclean
    QPSched
    oracleformsserver-forms60server-oraform
    lemsgt
    arrayssl_vpn_service3,0,1,9
    vmnetadapter
    tcsd_win32.exe
    btwhid
    aamqdispatcher
    ntsyslog
    IntelC51
    avfilter
    EL90X
    shdserv
    ICAM5USB
    wap3gx
    ssrtln
    vproeventmonitor
    dxdebug
    slapd-config52
    ProcObsrv
    SaiClass
    mfehidk
    JiaoCap
    RivaTuner32
    sis315
    mnmdd
    NWFILTER
    mcshield
    btwdins
    WD_FireWire_HID
    wwnetdde
    nimcdldu
    ativraxx
    se58unic
    tosrfbnp
    SaiNtHid
    mod7700
    irda
    WMIService
    usbaudio
    usbmate
    lxcz_device
    eabusb
    thinkpadmodemservice
    usbatapi2000
    btnhnd
    vci
    winpppoverethernet
    sprtsvc_dellsupportcenter
    se2Cunic
    NetTcpActivator
    dlcj_device
    client32
    DcLps
    ptserial
    VIAPFD
    fsma
    se59nd5
    nimxdfk
    hpqcxs08
    acedrv05
    ASNDIS5
    dladresm
    cdr4_xp
    ELmou
    cwafadmincontroller
    c34nb4c5
    AlKernel
    tapeware
    vsapint
    meiudf
    elaunidr
    tmmbd
    FontCache3.0.0.0.
    rimsptsk
    lxrsge10s
    ssfs0509
    lxcc_device
    WINIO
    qbreminderflash
    DSXUSB
    LVVI500A
    cfsvcs
    zpnodecollector
    GoogleDesktopManager-010708-104812
    belmonitorservice
    HabuFltr
    LMS
    winproxy
    lexbces
    CTERFXFX.DLL
    TBPanel
    mpservice
    DynDNS_Updater_Service
    el90xbc
    EPSON_EB_RPCV4_01
    mclserviceatl
    CE3
    NTACCESS
    om518p
    OneCareMP
    wanminiportservice
    giveio
    SE27mdfl
    qkbfiltr
    pop3d32
    Wuser32
    wps
    getPlusHelper
    cdr4_2k
    ntmssvc
    pml
    pdengine
    DMICall
    ini910u
    kraidsvc
    ATIBTXBAR
    phnxvcdservice
    rdsessmgr
    ICAM3NT5
    SerTVOutCtlr
    wfxsvc
    iftpsvc
    TestHandler
    quickbooksdb
    ati2mpaa
    PTDCBus
    LRMINIPORT
    enxpsvr
    digisptiservice
    s716nd5
    LoopBeMidi1
    MASPINT
    pmshellsrv
    U3sHlpDr
    se59bus
    zntport
    pfc
    bcserver
    LVPrcMon
    Sntnlusb
    snpstd
    pgsql-8.0
    a016mdfl
    NuidFltr
    tphdexlgsvc
    UCTblHid
    bobo
    sglfb
    iksyssec
    kbstuff
    lfsfilt
    afs2k
    pdcomp
    inort
    dot4usb
    Udfreadr_xp
    mwsejcap
    W55U01
    BVRPMPR5
    pvservice
    OEM02Vfx
    sit_flt
    se2Eunic
    ftrtsvc
    rvsinst
    backupexecnamingservice
    mqdmmdm
    stcagent
    elnkservice
    SWUMX51
    RIOUNIV
    sonywbms
    ELmon
    bgmainsvc
    tmesrv3
    catchme
    mssqlserverolapservice
    AtiPcie
    tlntsvr
    Ndisipo
    M2500
    issuser
    ROB_V
    GBDevice
    hsfhwazl
    vsmon
    adobeactivefilemonitor5.0
    SE2Bmdfl
    fetnd5bv
    sfdrv01
    mqdmmdfl
    JL2005C
    datasvr2
    avipbb
    dnwhodisp
    meraksmtp
    relational
    licenseservice
    se2Cnd5
    sentinel
    rfcomm
    vncmirror
    stylexphelper
    ctdvda2k
    ithsgt
    rpskt
    sddmi2
    pwisvc
    RVIEG01
    senfilt
    MobilityService
    atirage3
    AcronisOSSReinstallSvc
    tmtdi
    oracleorahome811cman
    ndasscsi
    w810mdm
    oracledbconsoleorcl
    ma763004
    acmservice
    W8335XP
    inotask
    mediaviewer
    usnjsvc
    nm
    mpfirewl
    XTrapD12
    wpsdrvnt
    qbposdbextservices
    nchssvad
    avg7core
    sysmgmthp
    Gernuwa
    windowblinds
    sysdown
    s3savagenb
    dot4ufd
    aswtdi
    thpsrv
    rsvchost
    atiavpci
    ftpds
    nmap
    msvad_simple
    s616mdfl
    toscosrv
    CXAVXBAR
    shuttleengine
    lxdj_device
    ShockMgr
    jukebox3
    HPSLPSVC
    cdrbsvsd
    forcewarewebinterface
    egathdrv
    VAIOMediaPlatform-MusicServer-UPnP
    lp6nds35
    webrootspysweeperservice
    rimvserport
    smartwiservice
    cdmservice
    lvpopflt
    Exportit
    nuvaud2
    sp_rssrv
    mksupdateint
    imagedrv
    cnxtdiag
    snoopfreesvc
    vcomm
    SE2Bmdm
    pdlndlpb
    mfetdik
    ppa3
    ELkbd
    NTIDrvr
    dot4print
    WmaCDriverV32
    gdrv
    tosrfusb
    eamon
    mks_scan
    diskperf
    slpmonx
    dlaudf_m
    pavatscheduler
    XilinxPC4Driver
    usbsermpt
    usb20l
    MRV6X32P
    CX88ENC
    SI3112
    EACSys
    mstdfrgs
    wintrust
    alcaudsl
    lxbt_device
    nipxirmu
    ccs
    s125mdm
    cfosspeeds
    ASLDRService
    ssm_mdm
    idebusdr
    backupexecnotificationserver
    icollectservice
    TPwSav
    riomsc
    SE27mdm
    scsk4
    nvcap
    awecho
    w550mgmt
    g400
    nfmservice
    pgfilter
    dlacdbhm
    Slntamr
    naimagent32
    tm_cfw
    USA49W2KP
    SlNtHal
    hap16v2k
    cics.region2
    PCISys
    superproserver
    proxyserverservice
    hSONYPVh
    pdlndqll
    Usb20Scan
    Alpham1
    pdrframe
    tfsndrct
    rslinxng
    wwsecsvc
    arhidfltr
    smbusp
    DCFS2K
    wanatw
    db2ntsecserver
    a016obex
    SRTSPL
    cmdagent
    tsp
    fsdfwd
    vclone
    smservaz
    roxupnpserver
    HssTrayService
    starwindserviceae
    aliadwdm
    SbcpHid
    int15.sys
    idechndr
    merakpop3
    SE2Ebus
    us30service
    abnetmon
    gv3
    vetfddnt
    ATNT40K
    lvckap
    ASInsHelp
    rampartsvc
    webdriveservice
    usbsermptxp
    sym_u3
    ssidrv
    dlaudfam
    pinnaclemarvinusb
    VRFIL
    rt61
    fsbwsys
    lxdmCATSCustConnectService
    ZY202_XP
    odysseyIM4
    mnmsrvc
    ar5211
    aw_host
    pxfhbus
    sdhelper
    btdriver
    Appn
    ipssvc
    fastuserswitchingcompatibility
    nv
    websenselogserver
    pavdrv
    WmHidLo
    avg7rsw
    F700iob
    pxfhmdfl
    bcoreusb
    StkAMini
    sonypvs1
    fasttx2k
    tphkdrv
    ultra
    StMp3Rec
    lxrjd31s
    rt2870
    CTDevice_Srv
    macformatservice
    cqmgserv
    se58mdm
    smwdm
    dntus26
    symids
    avidsdmservice
    bdfdll
    se2Dunic
    Epfwndis
    iaimtv3
    SiSRaid
    blueletaudio
    dptrackerd
    nvnetbus
    ami0nt
    harmony
    uscbs108
    Intel_MIPMNMP
    ufdsvc
    iviaspi
    transarcafsdaemon
    mcmscsvc
    VC4CB104
    mfebopk
    {95808DC4-FA4A-4c74-92FE-5B863F82066B}
    ncupdatesvc
    CTMMOUNT
    zpcache
    SE27bus
    atinrvxx
    oracleorahometnslistener
    useraccess7
    w800bus
    Hotkey
    SWNC8U20
    oraclemtsrecoveryservice
    netmnt
    pdlnecfg
    backupexecdevicemediaservice
    perc2hib
    TcUsb
    z800bus
    raysatxsi5_0server
    rpcnet
    {a7447300-8075-4b0d-83f1-3d75c8ebc623}
    nvnforce
    PPPoEWin
    mcsysmon
    bthidenum
    vpn5000service
    w810mgmt
    HssDrv
    SymIMMP
    s116unic
    MxlW2k
    k750obex
    se59unic
    mssql$pinnaclesys
    BlueSoleilCS
    dirms_defragmentation
    tbhsd
    vaiomediaplatform-mobile-gateway
    s217unic
    USBDeviceService
    NAL
    issm
    spmgr
    spbbcsvc
    SIODRV
    winvnc4
    ARSVC
    avcgbfl
    SE2Eobex
    mclogmanagerservice
    alertservice
    aexnsclienttransport
    tavsvc
    tgsrvc_smartagent
    DM9102
    caisafe
    WBHWDOCT
    USR1806V
    zpcollector
    rtl8185
    PAC7302
    flutilssvc
    kpf4
    ac97intc
    ipahelper.exe
    webfilter
    opcenum
    id2scaps
    mssqlserver
    sandrathesrv
    slabser
    BCM43XV
    nwlnkfwd
    ntlmssp
    DcPTP
    lvcomser
    s716mdm
    UBHelper
    se2Dnd5
    vcsw
    elotouchscreen
    adsexpb
    venturi2
    xcomm
    vvoice
    cq_mem
    DellAMBrokerService
    SE26mdm
    trioservice
    L8042mou
    CTEDSPFX.DLL
    mldserv
    cpqnicmgmt
    MSSQL$MSSMLBIZ
    ZuneWlanCfgSvc
    mvserver
    mcdbus
    AlteraByteBlaster
    se44mdfl
    tdcmdpst
    wacomvhid
    atdisk
    sqlserveragent
    MTsensor
    bocdrive
    incdfs
    iAimFP7
    se58bus
    swmidi
    VAIOMediaPlatform-PhotoServer-HTTP
    wencrservice
    DcFpoint
    MTC0001_ESB
    houdiniserver
    LPCFilter
    ser2pl
    ctxcpusched
    PTproct
    X10UIF
    ssisvr32
    tb2launch
    Memctl
    w200mdm
    eaps2kbd
    BRGSp50
    wlluc48b
    PTDCMdm
    splitter
    ntgrip
    NICM
    ntpr_nic_service2
    sleepy
    prevxagent
    wdm_au8820
    wlidsvc
    IASJet
    ATKFUSService
    logmein
    msmpsvc
    a016mdm
    anydvd
    wzcsvc
    upsentry_smart
    HSX_DP
    toshidpt
    zebrsce
    DCamUSBSQTECH
    PGPwded
    ctprxy2k
    ctsfm2k
    acdservice
    iolodmv
    sit_mdm
    freebsd
    regmanserv
    ntsecure
    pdlnsx25
    alerter
    orbmediaservice
    RR2IOMod
    VRADFIL
    sonypvu1
    ccalib8
    BrScnUsb
    wusb54gv2svc
    CVPND
    ec2007service
    AGV
    areschatserver
    jobserver_report
    TMKEmu
    owstimer
    olapserver
    JRAID
    StreamDispatcher
    SE2Cmgmt
    hddsvc
    p1131vid
    se45nd5
    nwlnkipx
    InterBaseServer
    cdralw2k
    TPM
    wacommousefilter
    magictuneengine
    tpkmpsvc
    PXRDDriver
    tdsmapi
    SQTECH905C
    NtMtlFax
    sgectl
    usb_rndisx
    sonicstagemonitoring
    wlsetupsvc
    emproxy
    vmauthdservice
    TOSHIBASoftModem
    mcods
    WavxDMgr
    tones
    aha154x
    SMTPSVC
    dlbt_device
    mwsarcpkt
    aolservice
    LCcfltr
    EU3_USB
    epsonbidirectionalservice
    odysseyIM3
    RIOXDRV
    AKSIFDH
    sansaservice
    RTL8169
    vzcdbsvc
    bt3cser
    nimcrpcsu
    DELL_A02
    sisperf
    StkScan
    Spsmqvsm
    lirsgt
    pduip6000dmemcrdmgr
    v124
    snapman380
    ehstart
    avg7rsxp
    mssql$sqlexpress
    db2das00
    mcpromgr
    zenos1
    smcservice
    SaiNtSub
    SfCtlCom
    autostore
    edspport
    HIDSwvd
    WGX
    InterBaseGuardian
    openvpnservice
    sfilter
    FETNDISB
    palmusbd
    symtdi
    ghaio
    tdimsys
    se26unic
    kmixer
    rpcapd
    ikfileflt
    iAimTV5
    PID_08A0
    CamAv
    SED133x
    iaimfp4
    SaiH040B
    IFP700
    lxcg_device
    epfw
    SE2Bbus
    NxFsMon
    viaagp1
    mxserver
    emAudio
    ssdiagn
    nsm1serd
    vusbbus
    SunkFilt
    cachemanxp
    mcupdmgr.exe
    2wirepcp
    issimon
    dnsexit
    TNaviSrv
    arp1394
    Uim_IM
    dlbx_device
    nimcdfxk
    umxfwhlp
    vmount2
    Sk9920nt
    cygserver
    FileDisk
    USBVCD
    MaVctrl
    eSettingsService
    penrendezvous
    s125obex
    xpadminserver
    rnadiagreceiver
    epsonstatusagent2
    regspy
    NetMsmqActivator
    ziptoa
    ngdbserv
    atkkeyboardservice
    SimpTcp
    lvuvc
    omci
    zebrmdmc
    elagopro
    tmxpflt
    VX1000
    dlcc_device
    aec
    syntp
    SWMX00
    MagicTune
    NPPTNT
    veteboot
    appdrv
    tmlisten
    npfmntor
    fcprintservice
    roxliveshare
    firelm01
    audstub
    avsvcmonitor
    screadspool
    cdfsvc
    imonitor
    zmxpzip
    filechecker
    wdmaud
    s716mdfl
    TPECioCtl
    tmactmon
    inport
    ccdecode
    xfilt
    mi-raysat_3dsmax8
    utilman
    ulcdrhlp
    filemon701
    server
    klblmain
    FTSER2K
    sprtsvc_ddoctorv2
    MSFWDrv
    comhost
    oracleorahomedatagatherer
    dcfssvc
    vpcnets2
    procmon10
    prtg4service
    omniinet
    lxda_device
    advantage
    cwafnotesservice
    nicconfigsvc
    ndiscm
    zd1211u(zydas)
    streamip
    rca
    backupexecalertserver
    WacomVKHid
    imap4d32
    sfng32
    DNE
    ptilink
    rp32service
    SilverLink
    alcan5wn
    websensewfreportserver
    carboncopy32
    SE2Dbus
    CrystalSysInfo
    se44obex
    YahooAUService
    pctoolsfirewallplus
    trcboot
    emitray
    tsmservice
    W700obex
    cmuda3
    s116mgmt
    dac2w2k
    cwafreportscheduler
    NxNetMon
    netwg311
    wmp54gsvc
    uhcd
    smartscaps
    pid_0928
    ql1240
    CTEDSPIO.DLL
    rpaservice
    SQLAgent$MICROSOFTSMLBIZ
    CiscoVpnInstallService
    lxce_device
    dsNcAdpt
    dlcq_device
    wg5n
    quickhealfirewall
    mcafeeantispyware
    tabletservice
    ovt519
    tfsnudfa
    DKbFltr
    sqlagent$sony_mediamgr
    CTSBLFX.DLL
    avhook
    sscdserd
    xpagentserver
    tvicport
    symdns
    wlluc48
    tvtnetwk
    rwbackupsrv
    tvs
    iteatapi
    useraccess
    se44mgmt
    vstor2
    imaservice
    icepack
    swmsflt
    cpqdmi
    AtiHdmiService
    MobilePreInstallerService
    XFX_program
    JiaoIO
    atimtag
    VRcore
    MXOPSWD
    rtport
    hwdatacard
    traprcvr
    winss
    utscsi
    tosrfec
    aclient
    bcftdi
    oracle_load_balancer_60_client-forms6ip14
    tpsrv
    cmudau
    VSP1284D
    nalntservice
    papycpu2
    ATIBTCAP
    radiosvr
    DumaNT
    WinVd32
    sit_prt
    gs30s
    Si3114r5
    pcidump
    genregistrar
    dvd-ram_service
    dmio
    uisp
    pwd_2K
    snapman
    w300bus
    stirusb
    SaiNtBus
    IOSLINK
    WmUsbHid
    hap17v2k
    ssm_mdfl
    hcf_msft
    GMSIPCI
    ageresoftmodem
    avsinc
    trackcam4
    vmnetdhcp
    zpjobq
    ibmpmdrv
    F700iat
    psasrv
    TIEHDUSB
    rtl8023
    w550mdfl
    ooclevercacheagent
    ccpwdsvc
    WaveFDE
    ntcharge
    ozoneinstallerservice
    iisadmin
    symantecantibotdriver
    VrAcFil
    contentindex
    NVENET
    cisvc
    yukonwxp
    rrrspy
    IPSECSHM
    s125mdfl
    UimBus
    Wbutton
    SE2Dmdm
    nvsmu
    Ndismeetro
    mbmiodrvr
    defragfs
    vxd
    IBMTPCHK
    cwbrxd
    mgactrl
    klif
    cavasm
    NMSAccessU
    GENERICDRV
    backupclientsvc
    tandpl
    pnrouter
    jaguar
    navex15
    swwd
    oracleorahomemanagementserver
    ipsec
    digictrl
    bhmonitorservice
    ATIVTUTW
    ONSIO
    dlcg_device
    niorbk
    openldap-slapd
    pdagent
    nmwcdcj
    mysqlinventime
    MA8032M
    hsxhwazl
    se59mdm
    mail2ec
    se58nd5
    advservice
    EAWDMFD
    wltrysvc
    z800mgmt
    sptisrv
    GTF32BUS
    rt2500usb
    unrealircd
    pgpsdkservice
    PCDCODEC
    SQLAgent$LG_LP2
    NWUSBPort
    GoToAssist
    VCIDRV
    se44bus
    w550mdm
    ovsecurityserver
    WSIMD
    update
    Anydlc
    papyjoy
    abp480n5
    servicelayer
    stunnel
    odclientservice
    atierecord
    olcamsrv
    pelusblf
    z525obex
    upsmonservice
    belgium_id_card_service
    pmsveh
    GoBack2K
    AVCamUSB20
    w22n51
    snac
    arkbcfltr
    mysql
    RimSerPort
    ABVPN2K
    b57w2k
    liveupdate
    SQLAgent$MICROSOFTBCM
    amusbprt
    sonicatheaterinstallerservice
    a8djavs
    FET5X86V
    sisidex
    eeyeevnt
    fah@c:+fah+fah-service+fah502-console.exe
    USBMN1X1
    UpdateCenterService
    FVXSCSI
    starwindservice
    s116obex
    regmon701
    ichaud
    penclass
    akshhl
    minilog
    SiRemFil
    smrt
    nvstor32
    cwafadminmonitor
    vaiomediaplatform-integratedserver-appserver
    KR3NPXP
    Maplom
    bdfsdrv
    digirefresh
    symantecantibotshim
    hpqwmiex
    adsservice
    qconsvc
    rupsmon
    iSMBIOS
    dpti2o
    DivisCTP
    WmXlCore
    proxyhostdriver
    bmwebcfg
    SE27mgmt
    mediamaxxlservice
    messenger
    bufserv
    dklogger
    adobeversioncue
    bcm4sbxp
    WcesComm
    avupdsvc
    automate6
    SiSGbeXP
    roxupnprenderer
    Cam5603D
    EPOWER
    BCMModem
    cpqfcalm
    pdlndoem
    vaiomediaplatform-musicserver-appserver
    MQAC
    ibmcicstransactiongateway
    Ktp
    mcproxy
    GV600_4
    idisw2km
    acsvc
    AmeLanPc
    pav_service
    k750mgmt
    lvsrvlauncher
    tdrpman
    rootmodem
    mohfilt
    stylexpservice
    truecrypt
    EpmPsd
    VX3000
    NWDHCP
    acprfmgrsvc
    csctl50
    KS0108
    centennialiptransferagent
    avgtdi
    pcradminserver
    beatjamupnpmusicserver
    dot4
    ipinip
    epstnt01
    sysaidagent
    MS1000
    emupia
    astcc
    gemserv
    hf30service
    isdrv120
    CBN
    procexp111
    eventclientmultiplexer
    obvious
    w800mdm
    foldersize
    tvtfilter
    Blfp
    KR10N
    HpqRemHid
    w200mgmt
    qfcoresvc
    dbmang
    mdm
    irsir
    ctxcpuusync
    yediex
    pdscheduler
    backupexecrpcservice
    s117unic
    protexislicensing
    Cardex
    remoterecord
    backuplauncher
    ELacpi
    cqcpu
    s716bus
    wmp54gv4svc
    se2Bnd5
    lvhidsvc
    pinger
    nvport
    pageserver
    wkscfgsrv
    AppnApi
    pav_security
    pmem
    autocomplete
    ati2mtaa
    incdpass
    crystalaps
    sfrem01
    Machnm32
    mi-raysat_3dsmax9_32
    BASFND
    coste
    clsched
    delldmi
    wmccdsls
    erecoveryservice
    agentsrv
    k750mdm
    Mtlmnt5
    LVCap138
    adminserver
    savrtpel
    WUSB54GPV4SRV
    gearsecurity
    megamonitorsrv
    se58obex
    soma
    hdthermal
    xusb21
    BcmSqlStartupSvc
    Sunkfiltp
    rapapp
    wpdusb
    ireike
    scdemu
    noipducservice
    netsvc
    httpfilter
    twdns
    sympxsvc
    hpzius12
    SE2Cobex
    w29n51
    tunmp
    aswupdsv
    SMNDIS5
    msftesql
    sthda
    vpnva
    btwusb
    EACSvrMngr
    pdfcreatormessages
    fsssvc
    SWNC8U51
    ss_mdm
    MaRdPnp
    aracpi
    motmodem
    mfesmfk
    SRTSP
    artdhcp
    PDExchange
    ikhfile
    avcgbdr
    cvintdrv
    EMSCR
    CTAudSvcService
    s116mdfl
    iPassPeriodicUpdateApp
    steamdvr
    serialkeys
    application
    dcsloader
    pnkbstrk
    SiS7018
    ni_nic
    ma_cmidi_installerservice
    WaveEnrollmentService
    nsm1bus
    mscsptisrv
    artourservice
    iaimfp0
    dmprimer
    ZSMC303
    sbhooksvc
    webrootenterpriseupdateservice
    pxfhmdm
    bc_ip_f
    Nmea
    MREMPR5
    tnidriver
    btnetfilter
    UPATC
    websensecommunicationagent
    personalsecuredriveservice
    kl1
    se26nd5
    z525mgmt
    npapimon
    U81xmgmt
    Wtcls2k
    datunidr
    pgpserv
    drvnddm
    ispwdsvc
    wdelmgr20
    pcx1unic
    tng-dts
    pavfnsvr
    OVT511Plus
    TUWinStylerThemeSvc
    dac960nt
    rbfilter
    zunenetworksvc
    tosrfbd
    PAR1284
    Cap7134
    AMDPCI
    z800obex
    amdk7
    oracle%oracle_home_service%clientcache80
    vwlogger
    V0070VID
    ipassconnectengine
    cpqvcagent
    plsremotesvc
    c-dillacdac11ba
    nmwcd
    awlegacy
    Pnp680r
    ms_mpu401
    inspect
    LHidFilt
    PCDRSRVC
    ifp800
    GTPTSER
    pciSd
    es1371
    SABSVC
    dsncservice
    SWUMX20
    wcontrol
    pdlnsv25
    cpqrcmc
    se59obex
    atchksrv
    viaudio
    BootScreen
    mcvsrte
    streamloadservice
    LHidKe
    ctac32k
    BRCMDECO
    USRpdA
    W8100PCI
    orbpvr
    ser2plms
    SANDRA
    symndis
    dlaifs_m
    rtm
    {834170a7-af3b-4d34-a757-e05eb29ee96d}
    ctljystk
    symproxysvc
    PD0620VID
    imonnt
    CoachUsb
    lmimaint
    s116mdm
    wmi
    Eplpdx02
    aswmon2
    a016bus
    NwSapAgent
    agnfilt
    regservice
    IBM_LLC2
    nfsds
    winpowermanager
    cobbmservice
    websenseuserservice
    si3114r
    vpcusb
    fssfltr
    SE2Cbus
    bdss
    PGPdisk
    ghoststartservice
    atixsaudio
    armoucfltr
    O2SCBUS
    aic78xx
    CA561
    ARPolicy
    viaagp
    videoacceleratorengine
    raidmsvr
    SE2Cmdfl
    ATSWPDRV
    tfsncofs
    cpsvc
    USB_NDIS_51
    sndsrvc
    iaantmon
    EIO_XP
    CVPNDRVA
    icam4usb
    vcdsecs
    bc_filter
    oraclewebassistant
    toddsrv
    ivscheduler
    pae_1394
    mindrepair
    lvtuner
    PSI_SVC_2
    pcandis5
    tng-doba
    NWHOST
    vmparport
    ESDCR
    eloggersvc6
    oracle_load_balancer_60_client-forms6i
    cpqarry2
    passthru
    DVDVRRdr_xp
    VCAM
    spupdsvc
    prfldsvc
    dnetc
    rp_fws
    SiS300i
    SetupSys
    DSDrv4
    yukonwlh
    msftpsvc
    LEX_AS_NIC_SERVICE_YNOS
    atksgt
    emu10k1
    picturetaker
    avgntflt
    axskbus
    UWProSys
    filterservice
    mfeapfk
    LMouKE
    btaudio
    igateway
    smservauth
    cpuz132
    cccredmgr
    ZDPNDIS5
    SWNC5E00
    antivirservice
    MRESP50
    P17xfi
    bwsvc
    eskerlicensecontrol
    GT890x
    DevUpper
    tme3srv
    F700imd
    nipsvc
    C-Dilla
    sysplant
    RushTopDevice
    backupexecagentaccelerator
    s616unic
    RTSTOR
    siswlsvc
    KMW_SYS
    MRESP50a64
    hcwPP2
    lvprcsrv
    NVR0Dev
    iap
    RTLE8023xp
    haspnt
    tfsnpool
    lvmvdrv
    WNIPROT5
    LVBulk
    s24eventmonitor
    SeaPort
    ScanUSBEMPIA
    defwatch
    websensecamserver
    teefer2
    lhidflt2
    MREMP50
    cxlpt
    iwebcal
    sr_service
    SECYPUSB
    bgsvcgen
    ss_bus
    s24trans
    dwmrcs
    epoxusdm
    mirrorv3
    AsIO
    guardian2
    NITaggerService
    roxwatch
    fa_scheduler
    oracleservicelocalora
    usbbus
    revudfservice
    oracleorahome92pagingserver
    vmnetuserif
    ANC
    blueletscoaudio
    atmeltpm
    TMHIDSRV
    dlpwd
    {85ccb53b-23d8-4e73-b1b7-9ddb71827d9b}
    twotrack
    basic2
    npkcusb
    c-dillasrv
    RSAFAL
    uiusys
    Tablet2k
    NEOFLTR_600_13319
    NETMDUSB
    RTL8023xp
    paamsrv
    vzfw
    aspi32
    acnusvc
    enodpl
    wceusbsh
    backupexecagentbrowser
    ctusfsyn
    LUsbKbd
    sit_bus
    U81xmdfl
    rtl8029
    usprserv
    E1000
    SE2Bobex
    VNUSB
    cics.region1
    trufos
    pwkntmon
    FreshIO
    ccsetmgr
    MailService
    cxusb
    cimnotify
    nscservice
    AEADIFilters
    SGIR
    usnsvc
    tsscoreservice
    SMCB000
    USA49W
    prosync1
    PhilCam8116_XP
    icm10blk
    SndTDriverV32
    ntiopnp
    lxcf_device
    slave
    CTEXFIFX.DLL
    SDdriver
    WmBEnum
    websenserealtimeanalyzer
    OEM02Afx
    NCPro
    FETNDIS
    AIRPLUS
    USB_RNDIS
    VC6SecS
    MaxtorFrontPanel1
    kodakccs
    TClass2k
    CAMFLT
    BLKWGU(Belkin)
    omnidrv
    Cam5607
    vulfnths
    netdetect
    authsyssvc
    bdpredir
    gbpoll
    PBADRV
    alcxwdm
    hpci
    wandrv
    vmusb
    IntelC53
    HpqKbFiltr
    cm102u32
    NWADI
    remotelyanywhere
    3compxe
    KMW_USB
    pdlncbas
    avc
    TPPWRIF
    wmccds
    nvenetfd
    AEAudioService
    aexnsclient
    XBCD
    dashsvc
    CTEAPSFX.DLL
    tpkd
    ypcservice
    Cinemsup
    symredrv
    Intels51
    nabtsfec
    servicemgr
    entech
    p17xfilt
    us30sys
    symmpi
    dmusic
    TermService
    wuauserv
    BITS
    ShellHWDetection
    LogonHours
    PCAudit
    helpsvc
    uploadmgr
    iphlpsvc
    seclogon
    AppInfo
    msiscsi
    MMCSS
    winmgmt
    SessionEnv
    browser
    EapHost
    schedule
    hkmsvc
    wercplsupport
    ProfSvc
    Themes
    BDESVC
    AppMgmt
             
  • Klicke nun auf den Button Look, um den Scan zu starten.
  • Wenn der Suchlauf beendet ist, wird sich Dein Editor mit den Ergebnissen öffnen, diese hier in den Thread posten.
  • Die Ergebnisse werden auf dem Desktop als SystemLook.txt gespeichert.


Hänge diese bitte hier an. Die wird etwas größer
__________________
mfg, Daniel

ASAP & UNITE Member
Alliance of Security Analysis Professionals
Unified Network of Instructors and Trusted Eliminators

Lerne, zurück zu schlagen und unterstütze uns!
TB Akademie

Alt 09.06.2012, 18:55   #74
PAUI
 

svhost Trojan.Sirefef.BR - Standard

svhost Trojan.Sirefef.BR



download mirror geht nicht

edit habs direkt von seiner seite jetzt geholt

Alt 09.06.2012, 18:57   #75
Larusso
/// Selecta Jahrusso
 
svhost Trojan.Sirefef.BR - Standard

svhost Trojan.Sirefef.BR



Sorry, Tippfehler. Sollte jetzt gehen
__________________
mfg, Daniel

ASAP & UNITE Member
Alliance of Security Analysis Professionals
Unified Network of Instructors and Trusted Eliminators

Lerne, zurück zu schlagen und unterstütze uns!
TB Akademie

Antwort

Themen zu svhost Trojan.Sirefef.BR
abgesicherten, anwendung, bitdefender, boot, boot menu, control, defender, dienste, internet, komplett, konfiguration, laptop, melde, modus, netzwerk, neu, online, scan, security, service, system, system32, trojan dropper win32 sirefef.b, trojaner, verbindung, windows, windows 7




Ähnliche Themen: svhost Trojan.Sirefef.BR


  1. Trojan.Gen.2 in AppData\Roaming\Microsoft\svhost.exe
    Log-Analyse und Auswertung - 19.09.2015 (4)
  2. Windows 7: lsass.exe und TR/CoinMiner.1594368 / Trojan.Agent.Gen in temp/svhost.exe
    Plagegeister aller Art und deren Bekämpfung - 27.03.2015 (15)
  3. Trojan:Win32/Sirefef.AB und Trojan:Win64/Sirefef.P entfernen!
    Log-Analyse und Auswertung - 10.12.2013 (22)
  4. Trojan:Win32/Sirefef.AB und Trojan:Win64/Sirefef.P entfernen!
    Log-Analyse und Auswertung - 02.08.2013 (14)
  5. Trojan.Sirefef.MC und Trojan.Generic.8253580 lassen sich nicht entfernen!
    Log-Analyse und Auswertung - 23.02.2013 (9)
  6. Trojan.Phex.THAGen9 + Trojan.0Access + Sirefef.AH + Sirefef.AL
    Plagegeister aller Art und deren Bekämpfung - 04.09.2012 (3)
  7. Trojan.Sirefef-411 in services.exe u. Trojan.Patchload in \adsldpc.dll, \aaclient.dll, \adsmsext.dll
    Log-Analyse und Auswertung - 05.08.2012 (12)
  8. Virenfund Trojan.Generic.7552386 und Trojan.Sirefef.FY nach GVU-Befall
    Log-Analyse und Auswertung - 03.08.2012 (15)
  9. Virusbefall (Trojan.Generic, Trojan.Sirefef, Win64.Sirefef, Win32.Atraps) bei windows installer & Co
    Plagegeister aller Art und deren Bekämpfung - 23.07.2012 (19)
  10. Spam mails vom computer? Trojan.sirefef, Trojan.dropper, trojan.small, etc.etc.
    Plagegeister aller Art und deren Bekämpfung - 03.07.2012 (13)
  11. Hilfe! Trojan.Small; Trojan.Sirefef; Rootkit.0Access; Trojan.Atraps.Gen2 auf meinem Rechner.
    Plagegeister aller Art und deren Bekämpfung - 29.06.2012 (11)
  12. Probleme mit Trojan.Small, Trojan.Sirefef.AG.35, Rootkid.0Access,TR/ATRAPS.Gen2
    Log-Analyse und Auswertung - 28.06.2012 (23)
  13. Trojan:Win32/Win64/Sirefef; Trojan:Win32/Conedex und Trojandropper:Win32/Sirefef
    Plagegeister aller Art und deren Bekämpfung - 14.03.2012 (11)
  14. Trojan:Win64/Sirefef.K + .../Sirefef.D + .../Sirefef.E
    Log-Analyse und Auswertung - 13.01.2012 (15)
  15. Trojan:Win64/Sirefef.K, Sirefef.E und Sirefef.D kommen immer wieder
    Plagegeister aller Art und deren Bekämpfung - 04.01.2012 (1)
  16. Trojan:Win64/Sirefef.K & Sirefef.D & Sirefef.E
    Log-Analyse und Auswertung - 02.01.2012 (6)
  17. SVHOST (nein nicht svChost!) svhost.exe nervt!
    Log-Analyse und Auswertung - 11.07.2010 (1)

Zum Thema svhost Trojan.Sirefef.BR - seit knapp ner stunde steht nur da Processing FF - prefs..network.proxy.http: "127.0.0.1" und der läuft auf hochtouren auch der Lüfter aber es passiert nichts. das kann ich dir sagen warum - svhost Trojan.Sirefef.BR...
Archiv
Du betrachtest: svhost Trojan.Sirefef.BR auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.