Leistungseinbruch, mouse cursor verschwindet hin und wieder bitte um log check

Veantur · 28.06.2012, 11:34

Hallo habe seit einigen Tagen einen Leistungeinbruch
und mein mouse curser verschwindet hin und wieder
ist dann zur hälfte sichtbar und merkwürdig verpixelt

anbei der scan von olt

danke im vorraus
vea

Larusso · 30.06.2012, 03:56

Mein Name ist Daniel und ich werde dir mit deinem Malware Relevanten Problemen helfen.

Bevor wir uns an die Arbeit machen, möchte ich dich bitten, folgende Punkte vollständig und aufmerksam zu lesen.

Lies dir meine Anleitungen erst einmal durch. Sollte irgendetwas unklar sein, Frage bevor du beginnst.
Solltest du bei einem Schritt Probleme haben, stoppe dort und beschreib mir das Problem so gut du kannst. Manchmal erfordert ein Schritt den vorhergehenden.
Sollte ich auf diese, sowie allen weiteren Antworten, innerhalb von 3 Tagen keine Antwort von dir erhalten, werde ich das Thema aus meinen Abonnements löschen.
Nur Scanns durchführen zu denen Du von einem Helfer aufgefordert wirst und Installiere / Deinstalliere keine Software ohne Aufforderung.
Poste die Logfiles direkt in deinen Thread und nicht als Anhang, ausser du wurdest dazu aufgefordert. Erschwert mir das Auswerten.

Note: Sollte ich 48 Stunden nichts von mir hören lassen, schicke mir bitte eine PM. Nervige "Wann geht es weiter" Nachrichten enden mit Schließung deines Themas. Auch ich habe ein Leben abseits des PCs.

Lese bitte folgende Anweisungen genau. Wir wollen hier noch nichts "fixen" sondern nur einen Scan Report sehen.

Downloade dir bitte TDSSKiller.exe und speichere diese Datei auf dem Desktop

Starte die TDSSKiller.exe
Drücke Start Scan
Sollten infizierte Objekte gefunden werden, wähle keinesfalls Cure. Wähle Skip und speichere das Logfile.
TDSSKiller wird eine Logfile auf deinem Systemlaufwerk speichern ( Meistens C:\ )
Als Beispiel: C:\TDSSKiller.<version_date_time>log.txt

Poste den Inhalt bitte hier in deinen Thread.

Veantur · 30.06.2012, 07:46

Hallo Daniel,

hier die Log des Scans,

08:45:10.0301 3036 TDSS rootkit removing tool 2.7.43.0 Jun 29 2012 17:54:22
08:45:10.0394 3036 ============================================================
08:45:10.0394 3036 Current date / time: 2012/06/30 08:45:10.0394
08:45:10.0394 3036 SystemInfo:
08:45:10.0394 3036
08:45:10.0394 3036 OS Version: 6.1.7601 ServicePack: 1.0
08:45:10.0394 3036 Product type: Workstation
08:45:10.0394 3036 ComputerName: S-SYSTEM-PC
08:45:10.0394 3036 UserName: S-System
08:45:10.0394 3036 Windows directory: C:\Windows
08:45:10.0394 3036 System windows directory: C:\Windows
08:45:10.0394 3036 Running under WOW64
08:45:10.0394 3036 Processor architecture: Intel x64
08:45:10.0394 3036 Number of processors: 4
08:45:10.0394 3036 Page size: 0x1000
08:45:10.0394 3036 Boot type: Normal boot
08:45:10.0394 3036 ============================================================
08:45:11.0216 3036 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
08:45:11.0216 3036 Drive \Device\Harddisk1\DR1 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
08:45:11.0231 3036 Drive \Device\Harddisk2\DR2 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
08:45:11.0236 3036 ============================================================
08:45:11.0236 3036 \Device\Harddisk0\DR0:
08:45:11.0236 3036 MBR partitions:
08:45:11.0236 3036 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x33C2E0E9
08:45:11.0236 3036 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x33C2E128, BlocksNum 0x2DFCF9DB
08:45:11.0236 3036 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x61BFDB03, BlocksNum 0x12B07EBE
08:45:11.0236 3036 \Device\Harddisk1\DR1:
08:45:11.0236 3036 MBR partitions:
08:45:11.0236 3036 \Device\Harddisk1\DR1\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x3A385000
08:45:11.0236 3036 \Device\Harddisk2\DR2:
08:45:11.0236 3036 MBR partitions:
08:45:11.0236 3036 \Device\Harddisk2\DR2\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x30D3C74
08:45:11.0236 3036 \Device\Harddisk2\DR2\Partition1: MBR, Type 0x7, StartLBA 0x30D3CB3, BlocksNum 0x1D4B178
08:45:11.0236 3036 \Device\Harddisk2\DR2\Partition2: MBR, Type 0x7, StartLBA 0x4E1EE2B, BlocksNum 0xB5F6826
08:45:11.0306 3036 ============================================================
08:45:11.0349 3036 C: <-> \Device\Harddisk0\DR0\Partition2
08:45:11.0376 3036 D: <-> \Device\Harddisk2\DR2\Partition0
08:45:11.0829 3036 E: <-> \Device\Harddisk1\DR1\Partition0
08:45:11.0862 3036 F: <-> \Device\Harddisk2\DR2\Partition1
08:45:11.0903 3036 G: <-> \Device\Harddisk2\DR2\Partition2
08:45:11.0919 3036 H: <-> \Device\Harddisk0\DR0\Partition0
08:45:11.0937 3036 I: <-> \Device\Harddisk0\DR0\Partition1
08:45:11.0937 3036 ============================================================
08:45:11.0937 3036 Initialize success
08:45:11.0937 3036 ============================================================
08:45:18.0834 4032 ============================================================
08:45:18.0834 4032 Scan started
08:45:18.0834 4032 Mode: Manual;
08:45:18.0834 4032 ============================================================
08:45:19.0631 4032 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
08:45:19.0634 4032 1394ohci - ok
08:45:19.0658 4032 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
08:45:19.0662 4032 ACPI - ok
08:45:19.0673 4032 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
08:45:19.0674 4032 AcpiPmi - ok
08:45:19.0720 4032 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
08:45:19.0722 4032 AdobeARMservice - ok
08:45:19.0761 4032 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
08:45:19.0767 4032 adp94xx - ok
08:45:19.0791 4032 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
08:45:19.0796 4032 adpahci - ok
08:45:19.0816 4032 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
08:45:19.0819 4032 adpu320 - ok
08:45:19.0850 4032 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
08:45:19.0851 4032 AeLookupSvc - ok
08:45:19.0901 4032 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
08:45:19.0906 4032 AFD - ok
08:45:19.0919 4032 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
08:45:19.0921 4032 agp440 - ok
08:45:19.0936 4032 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
08:45:19.0938 4032 ALG - ok
08:45:19.0946 4032 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
08:45:19.0947 4032 aliide - ok
08:45:19.0991 4032 AMD External Events Utility (2aed9a422ea1574c7d7ef9359a417718) C:\Windows\system32\atiesrxx.exe
08:45:19.0994 4032 AMD External Events Utility - ok
08:45:20.0040 4032 AMD FUEL Service - ok
08:45:20.0055 4032 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
08:45:20.0056 4032 amdide - ok
08:45:20.0082 4032 amdiox64 (6a2eeb0c4133b20773bb3dd0b7b377b4) C:\Windows\system32\DRIVERS\amdiox64.sys
08:45:20.0084 4032 amdiox64 - ok
08:45:20.0100 4032 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
08:45:20.0102 4032 AmdK8 - ok
08:45:20.0589 4032 amdkmdag (bfa5e854959d5546d8834ca61f4ad075) C:\Windows\system32\DRIVERS\atikmdag.sys
08:45:20.0705 4032 amdkmdag - ok
08:45:20.0808 4032 amdkmdap (92d664fffcd9e742fb25254f7f458d88) C:\Windows\system32\DRIVERS\atikmpag.sys
08:45:20.0812 4032 amdkmdap - ok
08:45:20.0838 4032 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
08:45:20.0840 4032 AmdPPM - ok
08:45:20.0874 4032 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
08:45:20.0876 4032 amdsata - ok
08:45:20.0898 4032 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
08:45:20.0901 4032 amdsbs - ok
08:45:20.0911 4032 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
08:45:20.0912 4032 amdxata - ok
08:45:20.0980 4032 AODDriver4.1 (0e2ba6dc63e9cf3bf275856735a3e3be) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys
08:45:20.0981 4032 AODDriver4.1 - ok
08:45:21.0018 4032 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
08:45:21.0020 4032 AppID - ok
08:45:21.0033 4032 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
08:45:21.0034 4032 AppIDSvc - ok
08:45:21.0057 4032 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
08:45:21.0058 4032 Appinfo - ok
08:45:21.0108 4032 AppMgmt (4aba3e75a76195a3e38ed2766c962899) C:\Windows\System32\appmgmts.dll
08:45:21.0111 4032 AppMgmt - ok
08:45:21.0125 4032 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
08:45:21.0127 4032 arc - ok
08:45:21.0140 4032 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
08:45:21.0142 4032 arcsas - ok
08:45:21.0210 4032 aspnet_state (9217d874131ae6ff8f642f124f00a555) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
08:45:21.0228 4032 aspnet_state - ok
08:45:21.0243 4032 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
08:45:21.0244 4032 AsyncMac - ok
08:45:21.0254 4032 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
08:45:21.0255 4032 atapi - ok
08:45:21.0271 4032 AtiHDAudioService (2b3b05c0a7768bf033217eb8f33f9c35) C:\Windows\system32\drivers\AtihdW76.sys
08:45:21.0273 4032 AtiHDAudioService - ok
08:45:21.0447 4032 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
08:45:21.0454 4032 AudioEndpointBuilder - ok
08:45:21.0460 4032 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
08:45:21.0464 4032 AudioSrv - ok
08:45:21.0530 4032 AVP (2718dc27571bd1e37813f5759d2dc118) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\avp.exe
08:45:21.0531 4032 AVP - ok
08:45:21.0549 4032 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll
08:45:21.0551 4032 AxInstSV - ok
08:45:21.0583 4032 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
08:45:21.0589 4032 b06bdrv - ok
08:45:21.0627 4032 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
08:45:21.0631 4032 b57nd60a - ok
08:45:21.0668 4032 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
08:45:21.0670 4032 BDESVC - ok
08:45:21.0683 4032 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
08:45:21.0684 4032 Beep - ok
08:45:21.0741 4032 BFE (82974d6a2fd19445cc5171fc378668a4) C:\Windows\System32\bfe.dll
08:45:21.0758 4032 BFE - ok
08:45:21.0811 4032 BITS (1ea7969e3271cbc59e1730697dc74682) C:\Windows\System32\qmgr.dll
08:45:21.0821 4032 BITS - ok
08:45:21.0854 4032 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
08:45:21.0856 4032 blbdrive - ok
08:45:21.0880 4032 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
08:45:21.0881 4032 bowser - ok
08:45:21.0890 4032 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
08:45:21.0891 4032 BrFiltLo - ok
08:45:21.0894 4032 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
08:45:21.0896 4032 BrFiltUp - ok
08:45:21.0917 4032 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll
08:45:21.0919 4032 Browser - ok
08:45:21.0933 4032 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
08:45:21.0937 4032 Brserid - ok
08:45:21.0944 4032 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
08:45:21.0946 4032 BrSerWdm - ok
08:45:21.0949 4032 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
08:45:21.0951 4032 BrUsbMdm - ok
08:45:21.0961 4032 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
08:45:21.0963 4032 BrUsbSer - ok
08:45:21.0975 4032 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
08:45:21.0977 4032 BTHMODEM - ok
08:45:21.0995 4032 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
08:45:21.0997 4032 bthserv - ok
08:45:22.0012 4032 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
08:45:22.0014 4032 cdfs - ok
08:45:22.0035 4032 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\drivers\cdrom.sys
08:45:22.0037 4032 cdrom - ok
08:45:22.0061 4032 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
08:45:22.0063 4032 CertPropSvc - ok
08:45:22.0071 4032 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
08:45:22.0072 4032 circlass - ok
08:45:22.0095 4032 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
08:45:22.0099 4032 CLFS - ok
08:45:22.0143 4032 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
08:45:22.0145 4032 clr_optimization_v2.0.50727_32 - ok
08:45:22.0176 4032 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
08:45:22.0178 4032 clr_optimization_v2.0.50727_64 - ok
08:45:22.0241 4032 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
08:45:22.0290 4032 clr_optimization_v4.0.30319_32 - ok
08:45:22.0312 4032 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
08:45:22.0328 4032 clr_optimization_v4.0.30319_64 - ok
08:45:22.0336 4032 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
08:45:22.0337 4032 CmBatt - ok
08:45:22.0346 4032 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
08:45:22.0347 4032 cmdide - ok
08:45:22.0385 4032 CNG (c4943b6c962e4b82197542447ad599f4) C:\Windows\system32\Drivers\cng.sys
08:45:22.0389 4032 CNG - ok
08:45:22.0393 4032 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
08:45:22.0395 4032 Compbatt - ok
08:45:22.0407 4032 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
08:45:22.0408 4032 CompositeBus - ok
08:45:22.0421 4032 COMSysApp - ok
08:45:22.0434 4032 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
08:45:22.0435 4032 crcdisk - ok
08:45:22.0490 4032 Creative ALchemy AL6 Licensing Service (c8bd651e13895b93ed9ec5b4f1df42bc) C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe
08:45:22.0492 4032 Creative ALchemy AL6 Licensing Service - ok
08:45:22.0506 4032 Creative Audio Engine Licensing Service (c0ead9f8ab83d41ff07303c75589c2b8) C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
08:45:22.0508 4032 Creative Audio Engine Licensing Service - ok
08:45:22.0542 4032 CryptSvc (4f5414602e2544a4554d95517948b705) C:\Windows\system32\cryptsvc.dll
08:45:22.0545 4032 CryptSvc - ok
08:45:22.0587 4032 CSC (54da3dfd29ed9f1619b6f53f3ce55e49) C:\Windows\system32\drivers\csc.sys
08:45:22.0593 4032 CSC - ok
08:45:22.0636 4032 CscService (3ab183ab4d2c79dcf459cd2c1266b043) C:\Windows\System32\cscsvc.dll
08:45:22.0642 4032 CscService - ok
08:45:22.0688 4032 CTAudSvcService (69cdba2b9c397e349a04fa70dd9170a2) C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
08:45:22.0693 4032 CTAudSvcService - ok
08:45:22.0724 4032 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
08:45:22.0731 4032 DcomLaunch - ok
08:45:22.0767 4032 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
08:45:22.0771 4032 defragsvc - ok
08:45:22.0811 4032 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
08:45:22.0812 4032 DfsC - ok
08:45:22.0843 4032 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll
08:45:22.0846 4032 Dhcp - ok
08:45:22.0860 4032 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
08:45:22.0861 4032 discache - ok
08:45:22.0883 4032 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
08:45:22.0884 4032 Disk - ok
08:45:22.0918 4032 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll
08:45:22.0921 4032 Dnscache - ok
08:45:22.0946 4032 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll
08:45:22.0950 4032 dot3svc - ok
08:45:22.0986 4032 Dot4 (b42ed0320c6e41102fde0005154849bb) C:\Windows\system32\DRIVERS\Dot4.sys
08:45:22.0989 4032 Dot4 - ok
08:45:23.0012 4032 Dot4Print (e9f5969233c5d89f3c35e3a66a52a361) C:\Windows\system32\DRIVERS\Dot4Prt.sys
08:45:23.0013 4032 Dot4Print - ok
08:45:23.0034 4032 dot4usb (fd05a02b0370bc3000f402e543ca5814) C:\Windows\system32\DRIVERS\dot4usb.sys
08:45:23.0036 4032 dot4usb - ok
08:45:23.0070 4032 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll
08:45:23.0073 4032 DPS - ok
08:45:23.0094 4032 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
08:45:23.0095 4032 drmkaud - ok
08:45:23.0145 4032 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
08:45:23.0171 4032 DXGKrnl - ok
08:45:23.0190 4032 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
08:45:23.0192 4032 EapHost - ok
08:45:23.0344 4032 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
08:45:23.0396 4032 ebdrv - ok
08:45:23.0492 4032 EFS (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe
08:45:23.0493 4032 EFS - ok
08:45:23.0546 4032 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe
08:45:23.0564 4032 ehRecvr - ok
08:45:23.0597 4032 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
08:45:23.0599 4032 ehSched - ok
08:45:23.0652 4032 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
08:45:23.0658 4032 elxstor - ok
08:45:23.0683 4032 epmntdrv (9eafb3b3b60b8ad958985152a9309aca) C:\Windows\system32\epmntdrv.sys
08:45:23.0685 4032 epmntdrv - ok
08:45:23.0703 4032 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
08:45:23.0705 4032 ErrDev - ok
08:45:23.0751 4032 EuGdiDrv (fb949ed2c93c878a189039f3d7730942) C:\Windows\system32\EuGdiDrv.sys
08:45:23.0753 4032 EuGdiDrv - ok
08:45:23.0789 4032 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
08:45:23.0795 4032 EventSystem - ok
08:45:23.0806 4032 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
08:45:23.0809 4032 exfat - ok
08:45:23.0837 4032 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
08:45:23.0840 4032 fastfat - ok
08:45:23.0898 4032 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe
08:45:23.0917 4032 Fax - ok
08:45:23.0925 4032 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
08:45:23.0926 4032 fdc - ok
08:45:23.0939 4032 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
08:45:23.0941 4032 fdPHost - ok
08:45:23.0952 4032 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
08:45:23.0959 4032 FDResPub - ok
08:45:23.0965 4032 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
08:45:23.0966 4032 FileInfo - ok
08:45:23.0979 4032 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
08:45:23.0980 4032 Filetrace - ok
08:45:24.0072 4032 FLEXnet Licensing Service 64 (5cee6cd43ae5844c49300ea0b1e557ee) C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
08:45:24.0095 4032 FLEXnet Licensing Service 64 - ok
08:45:24.0178 4032 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
08:45:24.0179 4032 flpydisk - ok
08:45:24.0217 4032 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
08:45:24.0220 4032 FltMgr - ok
08:45:24.0286 4032 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll
08:45:24.0300 4032 FontCache - ok
08:45:24.0351 4032 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
08:45:24.0352 4032 FontCache3.0.0.0 - ok
08:45:24.0365 4032 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
08:45:24.0367 4032 FsDepends - ok
08:45:24.0383 4032 Fs_Rec (6bd9295cc032dd3077c671fccf579a7b) C:\Windows\system32\drivers\Fs_Rec.sys
08:45:24.0384 4032 Fs_Rec - ok
08:45:24.0418 4032 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
08:45:24.0421 4032 fvevol - ok
08:45:24.0437 4032 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
08:45:24.0439 4032 gagp30kx - ok
08:45:24.0488 4032 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll
08:45:24.0519 4032 gpsvc - ok
08:45:24.0538 4032 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
08:45:24.0539 4032 hcw85cir - ok
08:45:24.0582 4032 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys
08:45:24.0586 4032 HdAudAddService - ok
08:45:24.0611 4032 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
08:45:24.0613 4032 HDAudBus - ok
08:45:24.0623 4032 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
08:45:24.0625 4032 HidBatt - ok
08:45:24.0637 4032 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
08:45:24.0639 4032 HidBth - ok
08:45:24.0644 4032 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
08:45:24.0646 4032 HidIr - ok
08:45:24.0668 4032 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\system32\hidserv.dll
08:45:24.0669 4032 hidserv - ok
08:45:24.0686 4032 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys
08:45:24.0687 4032 HidUsb - ok
08:45:24.0711 4032 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll
08:45:24.0713 4032 hkmsvc - ok
08:45:24.0741 4032 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll
08:45:24.0745 4032 HomeGroupListener - ok
08:45:24.0760 4032 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll
08:45:24.0764 4032 HomeGroupProvider - ok
08:45:24.0848 4032 hpqcxs08 (1dae5c46d42b02a6d5862e1482efb390) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
08:45:24.0851 4032 hpqcxs08 - ok
08:45:24.0869 4032 hpqddsvc (99e8eef42fe2f4af29b08c3355dd7685) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
08:45:24.0871 4032 hpqddsvc - ok
08:45:24.0896 4032 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
08:45:24.0898 4032 HpSAMD - ok
08:45:24.0962 4032 HPSLPSVC (7f57926169c1b8aba9274ea7d4b70f18) C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL
08:45:24.0980 4032 HPSLPSVC - ok
08:45:25.0043 4032 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
08:45:25.0060 4032 HTTP - ok
08:45:25.0067 4032 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
08:45:25.0068 4032 hwpolicy - ok
08:45:25.0079 4032 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
08:45:25.0081 4032 i8042prt - ok
08:45:25.0111 4032 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
08:45:25.0116 4032 iaStorV - ok
08:45:25.0193 4032 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
08:45:25.0206 4032 idsvc - ok
08:45:25.0230 4032 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
08:45:25.0232 4032 iirsp - ok
08:45:25.0289 4032 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll
08:45:25.0302 4032 IKEEXT - ok
08:45:25.0316 4032 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
08:45:25.0318 4032 intelide - ok
08:45:25.0333 4032 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
08:45:25.0334 4032 intelppm - ok
08:45:25.0365 4032 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
08:45:25.0367 4032 IPBusEnum - ok
08:45:25.0389 4032 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
08:45:25.0391 4032 IpFilterDriver - ok
08:45:25.0432 4032 iphlpsvc (a34a587fffd45fa649fba6d03784d257) C:\Windows\System32\iphlpsvc.dll
08:45:25.0439 4032 iphlpsvc - ok
08:45:25.0452 4032 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
08:45:25.0454 4032 IPMIDRV - ok
08:45:25.0461 4032 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
08:45:25.0463 4032 IPNAT - ok
08:45:25.0487 4032 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
08:45:25.0488 4032 IRENUM - ok
08:45:25.0501 4032 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
08:45:25.0502 4032 isapnp - ok
08:45:25.0523 4032 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
08:45:25.0527 4032 iScsiPrt - ok
08:45:25.0542 4032 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
08:45:25.0544 4032 kbdclass - ok
08:45:25.0565 4032 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\DRIVERS\kbdhid.sys
08:45:25.0566 4032 kbdhid - ok
08:45:25.0591 4032 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
08:45:25.0593 4032 KeyIso - ok
08:45:25.0645 4032 KL1 (e656fe10d6d27794afa08136685a69e8) C:\Windows\system32\DRIVERS\kl1.sys
08:45:25.0651 4032 KL1 - ok
08:45:25.0661 4032 kl2 (d865dd8b0448e3f963d68c04c532858f) C:\Windows\system32\DRIVERS\kl2.sys
08:45:25.0663 4032 kl2 - ok
08:45:25.0712 4032 KLIF (c7d4f357c482dd37e2b05f34093b7b0c) C:\Windows\system32\DRIVERS\klif.sys
08:45:25.0718 4032 KLIF - ok
08:45:25.0728 4032 KLIM6 (89fb5a33d7171b6d84f5eb721d5055e1) C:\Windows\system32\DRIVERS\klim6.sys
08:45:25.0729 4032 KLIM6 - ok
08:45:25.0738 4032 klmouflt (9468d07e91ba136d82415f5dfc1fe168) C:\Windows\system32\DRIVERS\klmouflt.sys
08:45:25.0739 4032 klmouflt - ok
08:45:25.0751 4032 KSecDD (da1e991a61cfdd755a589e206b97644b) C:\Windows\system32\Drivers\ksecdd.sys
08:45:25.0753 4032 KSecDD - ok
08:45:25.0770 4032 KSecPkg (7e33198d956943a4f11a5474c1e9106f) C:\Windows\system32\Drivers\ksecpkg.sys
08:45:25.0772 4032 KSecPkg - ok
08:45:25.0778 4032 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
08:45:25.0779 4032 ksthunk - ok
08:45:25.0816 4032 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
08:45:25.0822 4032 KtmRm - ok
08:45:25.0845 4032 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\system32\srvsvc.dll
08:45:25.0849 4032 LanmanServer - ok
08:45:25.0865 4032 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll
08:45:25.0874 4032 LanmanWorkstation - ok
08:45:25.0902 4032 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
08:45:25.0904 4032 lltdio - ok
08:45:25.0936 4032 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
08:45:25.0940 4032 lltdsvc - ok
08:45:25.0950 4032 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
08:45:25.0952 4032 lmhosts - ok
08:45:25.0978 4032 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
08:45:25.0980 4032 LSI_FC - ok
08:45:25.0988 4032 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
08:45:25.0990 4032 LSI_SAS - ok
08:45:26.0004 4032 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
08:45:26.0006 4032 LSI_SAS2 - ok
08:45:26.0018 4032 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
08:45:26.0020 4032 LSI_SCSI - ok
08:45:26.0036 4032 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
08:45:26.0038 4032 luafv - ok
08:45:26.0078 4032 MBAMProtector (dbc08862a71459e74f7538b432c114cc) C:\Windows\system32\drivers\mbam.sys
08:45:26.0085 4032 MBAMProtector - ok
08:45:26.0169 4032 MBAMService (ba400ed640bca1eae5c727ae17c10207) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
08:45:26.0179 4032 MBAMService - ok
08:45:26.0197 4032 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll
08:45:26.0200 4032 Mcx2Svc - ok
08:45:26.0208 4032 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
08:45:26.0210 4032 megasas - ok
08:45:26.0237 4032 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
08:45:26.0241 4032 MegaSR - ok
08:45:26.0305 4032 mi-raysat_3dsmax2012_64 (0af89452a8ce3928168f4e5b2208c68b) C:\Program Files\Autodesk\3ds Max 2012\mentalimages\satellite\raysat_3dsmax2012_64server.exe
08:45:26.0306 4032 mi-raysat_3dsmax2012_64 - ok
08:45:26.0322 4032 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
08:45:26.0324 4032 MMCSS - ok
08:45:26.0328 4032 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
08:45:26.0330 4032 Modem - ok
08:45:26.0345 4032 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
08:45:26.0346 4032 monitor - ok
08:45:26.0368 4032 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
08:45:26.0370 4032 mouclass - ok
08:45:26.0377 4032 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
08:45:26.0379 4032 mouhid - ok
08:45:26.0394 4032 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
08:45:26.0396 4032 mountmgr - ok
08:45:26.0480 4032 MozillaMaintenance (15d5398eed42c2504bb3d4fc875c15d1) C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
08:45:26.0483 4032 MozillaMaintenance - ok
08:45:26.0504 4032 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
08:45:26.0507 4032 mpio - ok
08:45:26.0520 4032 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
08:45:26.0522 4032 mpsdrv - ok
08:45:26.0575 4032 MpsSvc (54ffc9c8898113ace189d4aa7199d2c1) C:\Windows\system32\mpssvc.dll
08:45:26.0622 4032 MpsSvc - ok
08:45:26.0643 4032 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
08:45:26.0646 4032 MRxDAV - ok
08:45:26.0675 4032 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
08:45:26.0677 4032 mrxsmb - ok
08:45:26.0696 4032 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
08:45:26.0699 4032 mrxsmb10 - ok
08:45:26.0724 4032 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
08:45:26.0726 4032 mrxsmb20 - ok
08:45:26.0739 4032 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
08:45:26.0740 4032 msahci - ok
08:45:26.0761 4032 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
08:45:26.0764 4032 msdsm - ok
08:45:26.0779 4032 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
08:45:26.0782 4032 MSDTC - ok
08:45:26.0797 4032 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
08:45:26.0798 4032 Msfs - ok
08:45:26.0807 4032 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
08:45:26.0808 4032 mshidkmdf - ok
08:45:26.0823 4032 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
08:45:26.0823 4032 msisadrv - ok
08:45:26.0851 4032 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
08:45:26.0854 4032 MSiSCSI - ok
08:45:26.0857 4032 msiserver - ok
08:45:26.0900 4032 MSI_MSIBIOS_010507 (192476c10371dc83243d67432b2cdcbf) C:\Program Files (x86)\MSI\Live Update 5\msibios64_100507.sys
08:45:26.0902 4032 MSI_MSIBIOS_010507 - ok
08:45:26.0921 4032 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
08:45:26.0922 4032 MSKSSRV - ok
08:45:26.0933 4032 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
08:45:26.0935 4032 MSPCLOCK - ok
08:45:26.0938 4032 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
08:45:26.0939 4032 MSPQM - ok
08:45:26.0976 4032 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
08:45:26.0981 4032 MsRPC - ok
08:45:26.0994 4032 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
08:45:26.0995 4032 mssmbios - ok
08:45:27.0006 4032 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
08:45:27.0007 4032 MSTEE - ok
08:45:27.0020 4032 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
08:45:27.0021 4032 MTConfig - ok
08:45:27.0039 4032 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
08:45:27.0040 4032 Mup - ok
08:45:27.0072 4032 napagent (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll
08:45:27.0079 4032 napagent - ok
08:45:27.0113 4032 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
08:45:27.0117 4032 NativeWifiP - ok
08:45:27.0178 4032 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
08:45:27.0197 4032 NDIS - ok
08:45:27.0213 4032 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
08:45:27.0215 4032 NdisCap - ok
08:45:27.0232 4032 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
08:45:27.0233 4032 NdisTapi - ok
08:45:27.0250 4032 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
08:45:27.0252 4032 Ndisuio - ok
08:45:27.0270 4032 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
08:45:27.0273 4032 NdisWan - ok
08:45:27.0294 4032 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
08:45:27.0295 4032 NDProxy - ok
08:45:27.0332 4032 Net Driver HPZ12 (d5ac41ae382738483faffbd7e373d49a) C:\Windows\system32\HPZinw12.dll
08:45:27.0334 4032 Net Driver HPZ12 - ok
08:45:27.0350 4032 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
08:45:27.0351 4032 NetBIOS - ok
08:45:27.0365 4032 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
08:45:27.0368 4032 NetBT - ok
08:45:27.0380 4032 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
08:45:27.0381 4032 Netlogon - ok
08:45:27.0420 4032 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
08:45:27.0425 4032 Netman - ok
08:45:27.0488 4032 NetMsmqActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
08:45:27.0498 4032 NetMsmqActivator - ok
08:45:27.0501 4032 NetPipeActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
08:45:27.0503 4032 NetPipeActivator - ok
08:45:27.0535 4032 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
08:45:27.0541 4032 netprofm - ok
08:45:27.0553 4032 NetTcpActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
08:45:27.0554 4032 NetTcpActivator - ok
08:45:27.0557 4032 NetTcpPortSharing (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
08:45:27.0558 4032 NetTcpPortSharing - ok
08:45:27.0606 4032 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
08:45:27.0607 4032 nfrd960 - ok
08:45:27.0635 4032 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll
08:45:27.0640 4032 NlaSvc - ok
08:45:27.0648 4032 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
08:45:27.0649 4032 Npfs - ok
08:45:27.0673 4032 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
08:45:27.0675 4032 nsi - ok
08:45:27.0679 4032 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
08:45:27.0680 4032 nsiproxy - ok
08:45:27.0762 4032 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
08:45:27.0785 4032 Ntfs - ok
08:45:27.0838 4032 NTIOLib_1_0_4 (1b32c54b95121ab1683c7b83b2db4b96) C:\Program Files (x86)\MSI\Live Update 5\NTIOLib_X64.sys
08:45:27.0839 4032 NTIOLib_1_0_4 - ok
08:45:27.0909 4032 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
08:45:27.0911 4032 Null - ok
08:45:27.0942 4032 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
08:45:27.0945 4032 nvraid - ok
08:45:27.0973 4032 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
08:45:27.0975 4032 nvstor - ok
08:45:28.0001 4032 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
08:45:28.0003 4032 nv_agp - ok
08:45:28.0020 4032 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
08:45:28.0022 4032 ohci1394 - ok
08:45:28.0106 4032 P17 (634347adebc790b8f07654a3ea8034fd) C:\Windows\system32\drivers\P17.sys
08:45:28.0124 4032 P17 - ok
08:45:28.0162 4032 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
08:45:28.0167 4032 p2pimsvc - ok
08:45:28.0192 4032 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
08:45:28.0198 4032 p2psvc - ok
08:45:28.0214 4032 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
08:45:28.0216 4032 Parport - ok
08:45:28.0242 4032 partmgr (e9766131eeade40a27dc27d2d68fba9c) C:\Windows\system32\drivers\partmgr.sys
08:45:28.0243 4032 partmgr - ok
08:45:28.0259 4032 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
08:45:28.0263 4032 PcaSvc - ok
08:45:28.0284 4032 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
08:45:28.0285 4032 pci - ok
08:45:28.0293 4032 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
08:45:28.0294 4032 pciide - ok
08:45:28.0311 4032 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
08:45:28.0314 4032 pcmcia - ok
08:45:28.0327 4032 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
08:45:28.0328 4032 pcw - ok
08:45:28.0369 4032 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
08:45:28.0380 4032 PEAUTH - ok
08:45:28.0465 4032 PeerDistSvc (b9b0a4299dd2d76a4243f75fd54dc680) C:\Windows\system32\peerdistsvc.dll
08:45:28.0489 4032 PeerDistSvc - ok
08:45:28.0565 4032 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
08:45:28.0567 4032 PerfHost - ok
08:45:28.0692 4032 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll
08:45:28.0715 4032 pla - ok
08:45:28.0751 4032 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll
08:45:28.0757 4032 PlugPlay - ok
08:45:28.0809 4032 Pml Driver HPZ12 (37f6046cdc630442d7dc087501ff6fc6) C:\Windows\system32\HPZipm12.dll
08:45:28.0811 4032 Pml Driver HPZ12 - ok
08:45:28.0819 4032 PnkBstrA - ok
08:45:28.0840 4032 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
08:45:28.0842 4032 PNRPAutoReg - ok
08:45:28.0862 4032 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
08:45:28.0865 4032 PNRPsvc - ok
08:45:28.0901 4032 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll
08:45:28.0907 4032 PolicyAgent - ok
08:45:28.0932 4032 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
08:45:28.0943 4032 Power - ok
08:45:28.0982 4032 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
08:45:28.0985 4032 PptpMiniport - ok
08:45:29.0002 4032 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
08:45:29.0004 4032 Processor - ok
08:45:29.0042 4032 ProfSvc (53e83f1f6cf9d62f32801cf66d8352a8) C:\Windows\system32\profsvc.dll
08:45:29.0046 4032 ProfSvc - ok
08:45:29.0066 4032 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
08:45:29.0067 4032 ProtectedStorage - ok
08:45:29.0100 4032 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
08:45:29.0102 4032 Psched - ok
08:45:29.0177 4032 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
08:45:29.0197 4032 ql2300 - ok
08:45:29.0288 4032 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
08:45:29.0291 4032 ql40xx - ok
08:45:29.0314 4032 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
08:45:29.0318 4032 QWAVE - ok
08:45:29.0331 4032 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
08:45:29.0332 4032 QWAVEdrv - ok
08:45:29.0346 4032 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
08:45:29.0348 4032 RasAcd - ok
08:45:29.0372 4032 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
08:45:29.0373 4032 RasAgileVpn - ok
08:45:29.0388 4032 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
08:45:29.0391 4032 RasAuto - ok
08:45:29.0416 4032 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
08:45:29.0418 4032 Rasl2tp - ok
08:45:29.0447 4032 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll
08:45:29.0452 4032 RasMan - ok
08:45:29.0465 4032 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
08:45:29.0467 4032 RasPppoe - ok
08:45:29.0483 4032 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
08:45:29.0485 4032 RasSstp - ok
08:45:29.0516 4032 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
08:45:29.0520 4032 rdbss - ok
08:45:29.0527 4032 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
08:45:29.0528 4032 rdpbus - ok
08:45:29.0536 4032 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
08:45:29.0537 4032 RDPCDD - ok
08:45:29.0563 4032 RDPDR (1b6163c503398b23ff8b939c67747683) C:\Windows\system32\drivers\rdpdr.sys
08:45:29.0566 4032 RDPDR - ok
08:45:29.0578 4032 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
08:45:29.0579 4032 RDPENCDD - ok
08:45:29.0593 4032 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
08:45:29.0593 4032 RDPREFMP - ok
08:45:29.0618 4032 RDPWD (e61608aa35e98999af9aaeeea6114b0a) C:\Windows\system32\drivers\RDPWD.sys
08:45:29.0621 4032 RDPWD - ok
08:45:29.0662 4032 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
08:45:29.0665 4032 rdyboost - ok
08:45:29.0689 4032 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
08:45:29.0692 4032 RemoteAccess - ok
08:45:29.0709 4032 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
08:45:29.0713 4032 RemoteRegistry - ok
08:45:29.0743 4032 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
08:45:29.0751 4032 RpcEptMapper - ok
08:45:29.0769 4032 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
08:45:29.0771 4032 RpcLocator - ok
08:45:29.0807 4032 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
08:45:29.0810 4032 RpcSs - ok
08:45:29.0821 4032 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
08:45:29.0823 4032 rspndr - ok
08:45:29.0870 4032 RTL8167 (ee082e06a82ff630351d1e0ebbd3d8d0) C:\Windows\system32\DRIVERS\Rt64win7.sys
08:45:29.0876 4032 RTL8167 - ok
08:45:29.0890 4032 s3cap (e60c0a09f997826c7627b244195ab581) C:\Windows\system32\drivers\vms3cap.sys
08:45:29.0891 4032 s3cap - ok
08:45:29.0908 4032 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
08:45:29.0909 4032 SamSs - ok
08:45:29.0926 4032 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
08:45:29.0928 4032 sbp2port - ok
08:45:29.0946 4032 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
08:45:29.0950 4032 SCardSvr - ok
08:45:29.0969 4032 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
08:45:29.0971 4032 scfilter - ok
08:45:30.0031 4032 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll
08:45:30.0048 4032 Schedule - ok
08:45:30.0069 4032 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
08:45:30.0070 4032 SCPolicySvc - ok
08:45:30.0086 4032 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll
08:45:30.0090 4032 SDRSVC - ok
08:45:30.0119 4032 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
08:45:30.0120 4032 secdrv - ok
08:45:30.0136 4032 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll
08:45:30.0139 4032 seclogon - ok
08:45:30.0148 4032 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\System32\sens.dll
08:45:30.0151 4032 SENS - ok
08:45:30.0161 4032 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
08:45:30.0163 4032 SensrSvc - ok
08:45:30.0182 4032 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
08:45:30.0183 4032 Serenum - ok
08:45:30.0197 4032 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
08:45:30.0198 4032 Serial - ok
08:45:30.0213 4032 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
08:45:30.0214 4032 sermouse - ok
08:45:30.0245 4032 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll
08:45:30.0248 4032 SessionEnv - ok
08:45:30.0263 4032 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
08:45:30.0264 4032 sffdisk - ok
08:45:30.0271 4032 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
08:45:30.0273 4032 sffp_mmc - ok
08:45:30.0290 4032 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
08:45:30.0291 4032 sffp_sd - ok
08:45:30.0303 4032 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
08:45:30.0305 4032 sfloppy - ok
08:45:30.0338 4032 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
08:45:30.0343 4032 SharedAccess - ok
08:45:30.0371 4032 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll
08:45:30.0377 4032 ShellHWDetection - ok
08:45:30.0393 4032 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
08:45:30.0395 4032 SiSRaid2 - ok
08:45:30.0403 4032 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
08:45:30.0406 4032 SiSRaid4 - ok
08:45:30.0417 4032 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
08:45:30.0419 4032 Smb - ok
08:45:30.0431 4032 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
08:45:30.0434 4032 SNMPTRAP - ok
08:45:30.0442 4032 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
08:45:30.0443 4032 spldr - ok
08:45:30.0475 4032 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe
08:45:30.0479 4032 Spooler - ok
08:45:30.0655 4032 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe
08:45:30.0705 4032 sppsvc - ok
08:45:30.0774 4032 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
08:45:30.0777 4032 sppuinotify - ok
08:45:30.0831 4032 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
08:45:30.0836 4032 srv - ok
08:45:30.0863 4032 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
08:45:30.0867 4032 srv2 - ok
08:45:30.0881 4032 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
08:45:30.0883 4032 srvnet - ok
08:45:30.0911 4032 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
08:45:30.0915 4032 SSDPSRV - ok
08:45:30.0929 4032 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
08:45:30.0931 4032 SstpSvc - ok
08:45:30.0967 4032 Steam Client Service - ok
08:45:30.0978 4032 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
08:45:30.0981 4032 stexstor - ok
08:45:31.0027 4032 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll
08:45:31.0034 4032 stisvc - ok
08:45:31.0053 4032 storflt (7785dc213270d2fc066538daf94087e7) C:\Windows\system32\drivers\vmstorfl.sys
08:45:31.0054 4032 storflt - ok
08:45:31.0073 4032 StorSvc (c40841817ef57d491f22eb103da587cc) C:\Windows\system32\storsvc.dll
08:45:31.0075 4032 StorSvc - ok
08:45:31.0084 4032 storvsc (d34e4943d5ac096c8edeebfd80d76e23) C:\Windows\system32\drivers\storvsc.sys
08:45:31.0085 4032 storvsc - ok
08:45:31.0096 4032 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
08:45:31.0097 4032 swenum - ok
08:45:31.0133 4032 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
08:45:31.0140 4032 swprv - ok
08:45:31.0230 4032 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll
08:45:31.0252 4032 SysMain - ok
08:45:31.0337 4032 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll
08:45:31.0340 4032 TabletInputService - ok
08:45:31.0366 4032 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll
08:45:31.0371 4032 TapiSrv - ok
08:45:31.0380 4032 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
08:45:31.0383 4032 TBS - ok
08:45:31.0656 4032 Tcpip (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\drivers\tcpip.sys
08:45:31.0702 4032 Tcpip - ok
08:45:31.0820 4032 TCPIP6 (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\DRIVERS\tcpip.sys
08:45:31.0829 4032 TCPIP6 - ok
08:45:31.0874 4032 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
08:45:31.0876 4032 tcpipreg - ok
08:45:31.0886 4032 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
08:45:31.0887 4032 TDPIPE - ok
08:45:31.0910 4032 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys
08:45:31.0911 4032 TDTCP - ok
08:45:31.0938 4032 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
08:45:31.0940 4032 tdx - ok
08:45:31.0946 4032 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
08:45:31.0947 4032 TermDD - ok
08:45:31.0993 4032 TermService (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll
08:45:32.0012 4032 TermService - ok
08:45:32.0016 4032 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
08:45:32.0018 4032 Themes - ok
08:45:32.0038 4032 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
08:45:32.0039 4032 THREADORDER - ok
08:45:32.0067 4032 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
08:45:32.0080 4032 TrkWks - ok
08:45:32.0117 4032 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe
08:45:32.0119 4032 TrustedInstaller - ok
08:45:32.0147 4032 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
08:45:32.0149 4032 tssecsrv - ok
08:45:32.0186 4032 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
08:45:32.0187 4032 TsUsbFlt - ok
08:45:32.0212 4032 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
08:45:32.0214 4032 tunnel - ok
08:45:32.0230 4032 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
08:45:32.0232 4032 uagp35 - ok
08:45:32.0260 4032 UCOREW64 - ok
08:45:32.0295 4032 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
08:45:32.0299 4032 udfs - ok
08:45:32.0312 4032 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
08:45:32.0315 4032 UI0Detect - ok
08:45:32.0342 4032 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
08:45:32.0344 4032 uliagpkx - ok
08:45:32.0359 4032 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\DRIVERS\umbus.sys
08:45:32.0361 4032 umbus - ok
08:45:32.0369 4032 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
08:45:32.0370 4032 UmPass - ok
08:45:32.0394 4032 UmRdpService (a293dcd756d04d8492a750d03b9a297c) C:\Windows\System32\umrdp.dll
08:45:32.0398 4032 UmRdpService - ok
08:45:32.0427 4032 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
08:45:32.0433 4032 upnphost - ok
08:45:32.0451 4032 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
08:45:32.0453 4032 usbccgp - ok
08:45:32.0475 4032 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
08:45:32.0477 4032 usbcir - ok
08:45:32.0486 4032 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\DRIVERS\usbehci.sys
08:45:32.0488 4032 usbehci - ok
08:45:32.0521 4032 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
08:45:32.0525 4032 usbhub - ok
08:45:32.0537 4032 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\DRIVERS\usbohci.sys
08:45:32.0538 4032 usbohci - ok
08:45:32.0545 4032 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
08:45:32.0546 4032 usbprint - ok
08:45:32.0561 4032 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys
08:45:32.0563 4032 usbscan - ok
08:45:32.0576 4032 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
08:45:32.0578 4032 USBSTOR - ok
08:45:32.0591 4032 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\drivers\usbuhci.sys
08:45:32.0592 4032 usbuhci - ok
08:45:32.0614 4032 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
08:45:32.0617 4032 UxSms - ok
08:45:32.0641 4032 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
08:45:32.0642 4032 VaultSvc - ok
08:45:32.0653 4032 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
08:45:32.0654 4032 vdrvroot - ok
08:45:32.0693 4032 vds (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe
08:45:32.0701 4032 vds - ok
08:45:32.0710 4032 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
08:45:32.0711 4032 vga - ok
08:45:32.0726 4032 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
08:45:32.0727 4032 VgaSave - ok
08:45:32.0744 4032 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
08:45:32.0748 4032 vhdmp - ok
08:45:32.0757 4032 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
08:45:32.0758 4032 viaide - ok
08:45:32.0778 4032 vmbus (86ea3e79ae350fea5331a1303054005f) C:\Windows\system32\drivers\vmbus.sys
08:45:32.0781 4032 vmbus - ok
08:45:32.0795 4032 VMBusHID (7de90b48f210d29649380545db45a187) C:\Windows\system32\drivers\VMBusHID.sys
08:45:32.0797 4032 VMBusHID - ok
08:45:32.0815 4032 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
08:45:32.0816 4032 volmgr - ok
08:45:32.0854 4032 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
08:45:32.0858 4032 volmgrx - ok
08:45:32.0880 4032 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
08:45:32.0884 4032 volsnap - ok
08:45:32.0905 4032 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
08:45:32.0908 4032 vsmraid - ok
08:45:32.0995 4032 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe
08:45:33.0046 4032 VSS - ok
08:45:33.0119 4032 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\System32\drivers\vwifibus.sys
08:45:33.0121 4032 vwifibus - ok
08:45:33.0147 4032 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
08:45:33.0153 4032 W32Time - ok
08:45:33.0172 4032 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
08:45:33.0173 4032 WacomPen - ok
08:45:33.0197 4032 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
08:45:33.0198 4032 WANARP - ok
08:45:33.0205 4032 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
08:45:33.0206 4032 Wanarpv6 - ok
08:45:33.0280 4032 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe
08:45:33.0300 4032 wbengine - ok
08:45:33.0341 4032 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
08:45:33.0345 4032 WbioSrvc - ok
08:45:33.0375 4032 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll
08:45:33.0378 4032 wcncsvc - ok
08:45:33.0392 4032 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
08:45:33.0395 4032 WcsPlugInService - ok
08:45:33.0408 4032 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
08:45:33.0409 4032 Wd - ok
08:45:33.0450 4032 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
08:45:33.0461 4032 Wdf01000 - ok
08:45:33.0472 4032 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
08:45:33.0475 4032 WdiServiceHost - ok
08:45:33.0477 4032 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
08:45:33.0479 4032 WdiSystemHost - ok
08:45:33.0508 4032 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll
08:45:33.0513 4032 WebClient - ok
08:45:33.0529 4032 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
08:45:33.0533 4032 Wecsvc - ok
08:45:33.0556 4032 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
08:45:33.0559 4032 wercplsupport - ok
08:45:33.0568 4032 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
08:45:33.0571 4032 WerSvc - ok
08:45:33.0579 4032 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
08:45:33.0580 4032 WfpLwf - ok
08:45:33.0595 4032 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
08:45:33.0596 4032 WIMMount - ok
08:45:33.0618 4032 WinDefend - ok
08:45:33.0625 4032 WinHttpAutoProxySvc - ok
08:45:33.0670 4032 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
08:45:33.0673 4032 Winmgmt - ok
08:45:33.0766 4032 WinRM (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll
08:45:33.0815 4032 WinRM - ok
08:45:33.0902 4032 WinUsb (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys
08:45:33.0903 4032 WinUsb - ok
08:45:33.0969 4032 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
08:45:33.0990 4032 Wlansvc - ok
08:45:34.0007 4032 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
08:45:34.0008 4032 WmiAcpi - ok
08:45:34.0027 4032 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
08:45:34.0031 4032 wmiApSrv - ok
08:45:34.0038 4032 WMPNetworkSvc - ok
08:45:34.0052 4032 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
08:45:34.0054 4032 WPCSvc - ok
08:45:34.0070 4032 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll
08:45:34.0073 4032 WPDBusEnum - ok
08:45:34.0082 4032 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
08:45:34.0084 4032 ws2ifsl - ok
08:45:34.0098 4032 wscsvc (e8b1fe6669397d1772d8196df0e57a9e) C:\Windows\System32\wscsvc.dll
08:45:34.0101 4032 wscsvc - ok
08:45:34.0104 4032 WSearch - ok
08:45:34.0229 4032 wuauserv (d9ef901dca379cfe914e9fa13b73b4c4) C:\Windows\system32\wuaueng.dll
08:45:34.0259 4032 wuauserv - ok
08:45:34.0329 4032 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
08:45:34.0331 4032 WudfPf - ok
08:45:34.0346 4032 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
08:45:34.0349 4032 WUDFRd - ok
08:45:34.0369 4032 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll
08:45:34.0378 4032 wudfsvc - ok
08:45:34.0396 4032 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
08:45:34.0400 4032 WwanSvc - ok
08:45:34.0431 4032 MBR (0x1B8) (8e734bd7aa1d4f7e9af58df495f6cf9e) \Device\Harddisk0\DR0
08:45:34.0469 4032 \Device\Harddisk0\DR0 - ok
08:45:34.0472 4032 MBR (0x1B8) (5fb38429d5d77768867c76dcbdb35194) \Device\Harddisk1\DR1
08:45:34.0474 4032 \Device\Harddisk1\DR1 - ok
08:45:34.0495 4032 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk2\DR2
08:45:34.0531 4032 \Device\Harddisk2\DR2 - ok
08:45:34.0548 4032 Boot (0x1200) (8de7d6299e76362d1f193785e83acb50) \Device\Harddisk0\DR0\Partition0
08:45:34.0549 4032 \Device\Harddisk0\DR0\Partition0 - ok
08:45:34.0568 4032 Boot (0x1200) (2b6561a94b7cb9180bbaa977d721a961) \Device\Harddisk0\DR0\Partition1
08:45:34.0569 4032 \Device\Harddisk0\DR0\Partition1 - ok
08:45:34.0572 4032 Boot (0x1200) (8b74bed408b78e591a30410488061fa8) \Device\Harddisk0\DR0\Partition2
08:45:34.0573 4032 \Device\Harddisk0\DR0\Partition2 - ok
08:45:34.0576 4032 Boot (0x1200) (fbae870705457b75d856f2755db08404) \Device\Harddisk1\DR1\Partition0
08:45:34.0577 4032 \Device\Harddisk1\DR1\Partition0 - ok
08:45:34.0581 4032 Boot (0x1200) (ae982152ea4386c7241c51bfe724c08c) \Device\Harddisk2\DR2\Partition0
08:45:34.0582 4032 \Device\Harddisk2\DR2\Partition0 - ok
08:45:34.0585 4032 Boot (0x1200) (79760734d8b794594c0c8e3ac6c42c9c) \Device\Harddisk2\DR2\Partition1
08:45:34.0586 4032 \Device\Harddisk2\DR2\Partition1 - ok
08:45:34.0589 4032 Boot (0x1200) (561db5211190092fbe70b5ef4bd5a7ce) \Device\Harddisk2\DR2\Partition2
08:45:34.0590 4032 \Device\Harddisk2\DR2\Partition2 - ok
08:45:34.0591 4032 ============================================================
08:45:34.0591 4032 Scan finished
08:45:34.0591 4032 ============================================================
08:45:34.0602 3240 Detected object count: 0
08:45:34.0602 3240 Actual detected object count: 0

Larusso · 30.06.2012, 12:59

ESET Online Scanner

Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
Lade und starte Eset Online Scanner
Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
Klicke auf Starten.
Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
Klicke am Ende des Suchlaufs auf Fertig stellen.
Schließe das Fenster von ESET.
Explorer öffnen.
C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
Logfile hier posten.
Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset

Veantur · 02.07.2012, 08:10

hi, mir ist beim scanen nen missgeschikt unterlaufen
beim ersten scan habe ich ausversehen den scan unterbrochen
die datei neu gestartet und nicht drauf geachtet das der haken bei archiven und bei nicht löschen der bedrohungen gesetzt wurde ;/
hier die erste log datei

E:\.... Lager\Sortieren\vea\Documents\SoftonicDownloader_fuer_teamspeak.exe a variant of Win32/SoftonicDownloader.A application cleaned by deleting - quarantined
E:\.... Lager\Sortieren\vea\Pictures\SoftonicDownloader27157.exe a variant of Win32/SoftonicDownloader.A application cleaned by deleting - quarantined
E:\.... Lager\backup\Users\...\Downloads\SoftonicDownloader37664.exe a variant of Win32/SoftonicDownloader.A application cleaned by deleting - quarantined
I:\.... Lager\backup\Users\\...Downloads\SoftonicDownloader37664.exe a variant of Win32/SoftonicDownloader.A application cleaned by deleting - quarantined
I:\.... Lager\backup\Users\vea\Documents\SoftonicDownloader_fuer_teamspeak.exe a variant of Win32/SoftonicDownloader.A application cleaned by deleting - quarantined
I:\.... Lager\backup\Users\vea\Pictures\SoftonicDownloader27157.exe a variant of Win32/SoftonicDownloader.A application cleaned by deleting - quarantined

habe einen zweiten scan durchlauf gemacht

E:\.... Lager\Sortieren\vea\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\4\655de304-10e2a049 probably a variant of Java/Agent.BR trojan
E:\.... Lager\Sortieren\vea\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\5\43458f85-7f5b68a9 a variant of Java/Agent.BR trojan
E:\.... Lager\Sortieren\vea\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\50\6d16b872-226d4544 Java/Exploit.CVE-2009-3867.AL trojan
E:\.... Lager\Sortieren\vea\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\52\4b361974-50743f50 a variant of Java/Agent.AF trojan
E:\.... Lager\Sortieren\vea\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\53\7fa50935-1edda5a2 a variant of Java/Agent.AF trojan
E:\.... Lager\Sortieren\vea\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\54\edb02f6-73cb95af a variant of Java/Agent.BR trojan
E:\.... Lager\Sortieren\vea\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\56\21bbb478-3ec8cf0c Java/Exploit.CVE-2009-3867.AL trojan
E:\.... Lager\Sortieren\vea\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\6\30ee3746-74ee17e4 probably a variant of Java/Agent.BR trojan
I:\.... Lager\backup\Users\vea\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\4\655de304-10e2a049 probably a variant of Java/Agent.BR trojan
I:\.... Lager\backup\Users\vea\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\5\43458f85-7f5b68a9 a variant of Java/Agent.BR trojan
I:\.... Lager\backup\Users\vea\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\50\6d16b872-226d4544 Java/Exploit.CVE-2009-3867.AL trojan
I:\.... Lager\backup\Users\vea\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\52\4b361974-50743f50 a variant of Java/Agent.AF trojan
I:\.... Lager\backup\Users\vea\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\53\7fa50935-1edda5a2 a variant of Java/Agent.AF trojan
I:\.... Lager\backup\Users\vea\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\54\edb02f6-73cb95af a variant of Java/Agent.BR trojan
I:\.... Lager\backup\Users\vea\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\56\21bbb478-3ec8cf0c Java/Exploit.CVE-2009-3867.AL trojan
I:\.... Lager\backup\Users\vea\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\6\30ee3746-74ee17e4 probably a variant of Java/Agent.BR trojan

diese Lager Ordner sind aber alles Sicherrungsordner von Dateien die ich mal vom Laptopt geretet hatte ehe ich diesen wegen Virenbefall neuaufgesetzt habe. Das heisst dieses Daten liegen auf den Festplatten, werden aber nicht benutzt.

Larusso · 02.07.2012, 10:25

Lösche bitte diese beiden Ordner

I:\.... Lager\backup\Users\vea\AppData\LocalLow\Sun\Java\Deployment\cache
E:\.... Lager\Sortieren\vea\AppData\LocalLow\Sun\Java\Deployment\cache

Sonst noch Probleme ausser der bereits erwähnten. Scheint mir kein Malwareproblem zu sein.

Veantur · 02.07.2012, 10:43

hallo daniel,

werde die ordner löschen

danke für die hilfe

was könnte aber dazu führen das der rechner hin und wieder lahm wird und der mouse cursor verschwindet?

Larusso · 03.07.2012, 06:48

Normal nicht mein gebiet, aber versuchen wir mal bisschen zu Graben.

Öffne mal den Taskmanager und beobachte das System etwas. Wenn der Cursor wieder weg ist, sieh mal ob du heraus findest, welcher Prozess für eine hohe Auslastung verantwortlich ist.
( leerlaufprocess darf hoch sein )

Wenn man es mit dem normalen Taskmanager nicht sieht, hab ich da noch was

Veantur · 03.07.2012, 14:48

Hi Daniel,
konnte im Taskmanager nicht beobachten was plötzlich mehr Auslastung hatte.

p.s. ich sollte vll. erwöhnen das der leistungseinbruch nicht immer zusammen mit dem maus cursor auftritt

Larusso · 03.07.2012, 15:04

Hm,

Ich würd einmal im Windows Support um Ideen fragen. Malware ist es keine.

Ich behalte das Thema mal in meinen Abos. Wenn sie dort auch keine Lösung finden, melde dich hier nochmal.

Veantur · 03.07.2012, 16:38

super danke dir
ich werd da morgen dann mal anrufen

Larusso · 03.07.2012, 19:55

Wie, anrufen ?

http://www.trojaner-board.de/alles-rund-um-windows/

Larusso · 09.07.2012, 11:44

Fehlende Rückmeldung
Dieses Thema wurde aus den Abos gelöscht. Somit bekomm ich keine Benachrichtigung über neue Antworten.
PM an mich falls Du denoch weiter machen willst.

Hinweis: Das Verschwinden der Symptome bedeutet nicht, dass Dein Rechner schon sauber ist.

Jeder andere bitte hier klicken und einen eigenen Thread erstellen

03.07.2012, 19:55	#12
Larusso /// Selecta Jahrusso	Leistungseinbruch, mouse cursor verschwindet hin und wieder bitte um log check Wie, anrufen ? http://www.trojaner-board.de/alles-rund-um-windows/ __________________ mfg, Daniel ASAP & UNITE Member Alliance of Security Analysis Professionals Unified Network of Instructors and Trusted Eliminators Lerne, zurück zu schlagen und unterstütze uns! TB Akademie

Leistungseinbruch, mouse cursor verschwindet hin und wieder bitte um log check

Log-Analyse und Auswertung: Leistungseinbruch, mouse cursor verschwindet hin und wieder bitte um log check