| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Probleme bei der Aktualisierung von AVIRAWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
20.11.2012, 21:00
| #1 |
| |  Probleme bei der Aktualisierung von AVIRA Hallo Leute, ich hab hier ein Problem. AVIRA akualisiert sich nicht mehr. Es wird folgender Fehler angezeigt: Zuletzt aufgetretener Fehler: Anderer HTTP Fehler (404) während des Versuchs 77.234.41.39:80//iavs5x/jrog2-653.vpx zu erreichen. Kann mir da jemand helfen? Ich hatte vor 2 Tagen eine Malwarnung. Gruß Sigi |
|
21.11.2012, 16:35
| #2 |
| /// TB-Ausbilder   | Probleme bei der Aktualisierung von AVIRA Mein Name ist Matthias und ich werde dir bei der Bereinigung deines Computers helfen. Bitte beachte folgende Hinweise:
Schritt 1 Downloade dir bitte DDS ( von sUBs ) von einem der folgenden Downloadspiegel und speichere die Datei auf deinem Desktop. dds.com dds.exe
Schritt 2 Downloade Dir bitte defogger von jpshortstuff auf Deinem Desktop.
Schritt 3 Downloade dir bitte aswMBR.exe und speichere die Datei auf deinem Desktop.
Wichtig: Drücke keinesfalls einen der Fix Buttons ohne Anweisung Hinweis: Sollte der Scan Button ausgeblendet sein, schließe das Tool und starte es erneut. Sollte es erneut nicht klappen teile mir das bitte mit. Schritt 4 Lese bitte folgende Anweisungen genau. Wir wollen hier noch nichts "fixen" sondern nur einen Scan Report sehen. Downloade dir bitte TDSSKiller.exe und speichere diese Datei auf dem Desktop
Bitte poste mit deiner nächsten Antwort
|
|
21.11.2012, 19:14
| #3 |
| | Probleme bei der Aktualisierung von AVIRA Hallo Matthias und danke für deine hilfe im voraus ;-)DDS Logfile:
__________________Code:
ATTFilter DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 9.0.8112.16455
Run by Sigi at 18:52:47 on 2012-11-21
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.49.1031.18.2813.909 [GMT 1:00]
.
AV: avast! Antivirus *Enabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
SP: avast! Antivirus *Enabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ===============
.
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\atieclxx.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\svchost.exe -k imgsvc
C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesService64.exe
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesApp64.exe
C:\Windows\Explorer.EXE
C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
C:\Program Files (x86)\Samsung\Kies\Kies.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_5_502_110.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_5_502_110.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxps://isearch.avg.com/?cid={0D5A7BBB-A6F2-4879-A401-48CE5D42A6FE}&mid=9a61136e06b947d0a79dd16d387f6b44-c0d1c14b5785edd9b979a8e7337537a8e552ae12&lang=de&ds=pd011&pr=sa&d=2012-10-07 20:11:18&v=12.2.5.34&sap=hp
mWinlogon: Userinit = userinit.exe
BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO: avast! WebRep: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
BHO: AVG Security Toolbar: {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\12.2.5.34\AVG Secure Search_toolbar.dll
BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL
TB: avast! WebRep: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
TB: AVG Security Toolbar: {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\12.2.5.34\AVG Secure Search_toolbar.dll
uRun: [] C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
uRun: [KiesAirMessage] C:\Program Files (x86)\Samsung\Kies\KiesAirMessage.exe -startup
uRun: [KiesPreload] C:\Program Files (x86)\Samsung\Kies\Kies.exe /preload
mRun: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
uPolicies-Explorer: NoDriveTypeAutoRun = dword:221
mPolicies-Explorer: NoActiveDesktop = dword:1
mPolicies-Explorer: NoActiveDesktopChanges = dword:1
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
IE: An OneNote s&enden - C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
IE: Free YouTube to MP3 Converter - C:\Users\Sigi\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm
IE: Nach Microsoft E&xcel exportieren - C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
TCP: NameServer = 192.168.2.1 192.168.2.1
TCP: Interfaces\{8FE5730C-BC20-46AE-988E-F82B11500099} : DHCPNameServer = 192.168.2.1 192.168.2.1
Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\12.2.6\ViProtocol.dll
SSODL: WebCheck - <orphaned>
mASetup: {A8D647C8-65AC-409F-B7B2-3C0FEE1A32F2} - C:\Program Files (x86)\PixiePack Codec Pack\InstallerHelper.exe
x64-BHO: avast! WebRep: {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll
x64-BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL
x64-TB: avast! WebRep: {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll
x64-IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
x64-IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
x64-Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
x64-Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - <orphaned>
x64-SSODL: WebCheck - <orphaned>
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\Sigi\AppData\Roaming\Mozilla\Firefox\Profiles\lbu11bwo.default\
FF - prefs.js: browser.startup.homepage - Google
FF - prefs.js: keyword.URL - hxxps://isearch.avg.com/search?cid=%7B37ec98e2-392d-4ad7-96ca-0a027bc8df66%7D&mid=9a61136e06b947d0a79dd16d387f6b44-c0d1c14b5785edd9b979a8e7337537a8e552ae12&ds=pd011&v=12.2.5.34&lang=de&pr=sa&d=2012-10-07%2020%3A11%3A18&sap=ku&q=
FF - plugin: C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL
FF - plugin: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL
FF - plugin: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
FF - plugin: C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\12.2.6\npsitesafety.dll
FF - plugin: C:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrlui.dll
FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\npwachk.dll
FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_110.dll
FF - ExtSQL: 2012-10-07 19:23; testpilot@labs.mozilla.com; C:\Users\Sigi\AppData\Roaming\Mozilla\Firefox\Profiles\lbu11bwo.default\extensions\testpilot@labs.mozilla.com.xpi
FF - ExtSQL: 2012-10-07 19:25; {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}; C:\Users\Sigi\AppData\Roaming\Mozilla\Firefox\Profiles\lbu11bwo.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF - ExtSQL: 2012-10-07 19:26; status4evar@caligonstudios.com; C:\Users\Sigi\AppData\Roaming\Mozilla\Firefox\Profiles\lbu11bwo.default\extensions\status4evar@caligonstudios.com.xpi
FF - ExtSQL: 2012-10-07 19:26; {a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}; C:\Users\Sigi\AppData\Roaming\Mozilla\Firefox\Profiles\lbu11bwo.default\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}
FF - ExtSQL: 2012-10-07 19:48; smarterwiki@wikiatic.com; C:\Users\Sigi\AppData\Roaming\Mozilla\Firefox\Profiles\lbu11bwo.default\extensions\smarterwiki@wikiatic.com.xpi
FF - ExtSQL: 2012-10-07 19:48; {64161300-e22b-11db-8314-0800200c9a66}; C:\Users\Sigi\AppData\Roaming\Mozilla\Firefox\Profiles\lbu11bwo.default\extensions\{64161300-e22b-11db-8314-0800200c9a66}.xpi
FF - ExtSQL: 2012-10-07 19:48; {c36177c0-224a-11da-8cd6-0800200c9a91}; C:\Users\Sigi\AppData\Roaming\Mozilla\Firefox\Profiles\lbu11bwo.default\extensions\{c36177c0-224a-11da-8cd6-0800200c9a91}.xpi
FF - ExtSQL: 2012-10-07 20:01; wrc@avast.com; C:\Program Files\AVAST Software\Avast\WebRep\FF
FF - ExtSQL: 2012-10-07 20:11; avg@toolbar; C:\ProgramData\AVG Secure Search\12.2.5.34
FF - ExtSQL: 2012-10-08 20:26; firefoxtweak@pribic.am; C:\Users\Sigi\AppData\Roaming\Mozilla\Firefox\Profiles\lbu11bwo.default\extensions\firefoxtweak@pribic.am
FF - ExtSQL: 2012-10-15 18:36; adblockpopups@jessehakanen.net; C:\Users\Sigi\AppData\Roaming\Mozilla\Firefox\Profiles\lbu11bwo.default\extensions\adblockpopups@jessehakanen.net.xpi
FF - ExtSQL: 2012-10-16 20:41; {ACAA314B-EEBA-48e4-AD47-84E31C44796C}; C:\Users\Sigi\AppData\Roaming\Mozilla\Firefox\Profiles\lbu11bwo.default\extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}.xpi
FF - ExtSQL: 2012-11-18 09:34; {03B08592-E5B4-45ff-A0BE-C1D975458688}; C:\Users\Sigi\AppData\Roaming\Mozilla\Firefox\Profiles\lbu11bwo.default\extensions\{03B08592-E5B4-45ff-A0BE-C1D975458688}
.
---- FIREFOX POLICIES ----
FF - user.js: extensions.autoDisableScopes - 10
FF - user.js: network.http.max-persistent-connections-per-server - 4
FF - user.js: nglayout.initialpaint.delay - 600
FF - user.js: content.notify.interval - 600000
FF - user.js: content.max.tokenizing.time - 1800000
FF - user.js: content.switch.threshold - 600000
.
============= SERVICES / DRIVERS ===============
.
R1 aswSnx;aswSnx;C:\Windows\System32\drivers\aswSnx.sys [2012-10-7 984144]
R1 aswSP;aswSP;C:\Windows\System32\drivers\aswSP.sys [2012-10-7 370288]
R1 avgtp;avgtp;C:\Windows\System32\drivers\avgtpx64.sys [2012-10-7 31080]
R2 AMD External Events Utility;AMD External Events Utility;C:\Windows\System32\atiesrxx.exe [2009-8-18 203264]
R2 aswFsBlk;aswFsBlk;C:\Windows\System32\drivers\aswFsBlk.sys [2012-10-7 25232]
R2 aswMonFlt;aswMonFlt;C:\Windows\System32\drivers\aswMonFlt.sys [2012-10-7 71600]
R2 avast! Antivirus;avast! Antivirus;C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2012-11-6 44808]
R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesService64.exe [2011-12-8 2028864]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesDriver64.sys [2010-8-19 11856]
R3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller;C:\Windows\System32\drivers\yk62x64.sys [2009-9-28 395264]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
S3 androidusb;SAMSUNG Android Composite ADB Interface Driver;C:\Windows\System32\drivers\ssadadb.sys [2012-11-18 36328]
S3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM);C:\Windows\System32\drivers\ssadbus.sys [2012-11-18 157672]
S3 ssadmdfl;SAMSUNG Android USB Modem (Filter);C:\Windows\System32\drivers\ssadmdfl.sys [2012-11-18 16872]
S3 ssadmdm;SAMSUNG Android USB Modem Drivers;C:\Windows\System32\drivers\ssadmdm.sys [2012-11-18 177640]
S3 ssadserd;SAMSUNG Android USB Diagnostic Serial Port (WDM);C:\Windows\System32\drivers\ssadserd.sys [2012-11-18 146920]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2012-10-9 59392]
S4 vToolbarUpdater12.2.6;vToolbarUpdater12.2.6;C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\12.2.6\ToolbarUpdater.exe [2012-10-7 722528]
.
=============== Created Last 30 ================
.
2012-11-19 05:10:09 -------- d-----w- C:\Users\Sigi\AppData\Local\Diagnostics
2012-11-18 06:37:48 36328 ----a-w- C:\Windows\System32\drivers\ssadadb.sys
2012-11-18 06:37:48 177640 ----a-w- C:\Windows\System32\drivers\ssadmdm.sys
2012-11-18 06:37:48 16872 ----a-w- C:\Windows\System32\drivers\ssadmdfl.sys
2012-11-18 06:37:48 157672 ----a-w- C:\Windows\System32\drivers\ssadbus.sys
2012-11-18 06:37:48 13800 ----a-w- C:\Windows\System32\drivers\ssadwhnt.sys
2012-11-18 06:37:48 13288 ----a-w- C:\Windows\System32\drivers\ssadcmnt.sys
2012-11-18 06:37:47 146920 ----a-w- C:\Windows\System32\drivers\ssadserd.sys
2012-11-16 05:31:41 2560 ----a-w- C:\Windows\System32\drivers\de-DE\wdf01000.sys.mui
2012-11-16 05:31:38 9728 ----a-w- C:\Windows\System32\Wdfres.dll
2012-11-16 05:31:38 785512 ----a-w- C:\Windows\System32\drivers\Wdf01000.sys
2012-11-16 05:31:38 54376 ----a-w- C:\Windows\System32\drivers\WdfLdr.sys
2012-11-16 05:19:41 87040 ----a-w- C:\Windows\System32\drivers\WUDFPf.sys
2012-11-16 05:19:41 198656 ----a-w- C:\Windows\System32\drivers\WUDFRd.sys
2012-11-16 05:19:40 84992 ----a-w- C:\Windows\System32\WUDFSvc.dll
2012-11-16 05:19:40 194048 ----a-w- C:\Windows\System32\WUDFPlatform.dll
2012-11-16 05:19:39 45056 ----a-w- C:\Windows\System32\WUDFCoinstaller.dll
2012-11-16 05:19:38 744448 ----a-w- C:\Windows\System32\WUDFx.dll
2012-11-16 05:19:38 229888 ----a-w- C:\Windows\System32\WUDFHost.exe
2012-11-16 04:50:55 3149824 ----a-w- C:\Windows\System32\win32k.sys
2012-11-16 04:50:53 95744 ----a-w- C:\Windows\System32\synceng.dll
2012-11-16 04:50:53 78336 ----a-w- C:\Windows\SysWow64\synceng.dll
2012-11-07 15:18:34 -------- d-----w- C:\Users\Sigi\AppData\Roaming\OpenCandy
2012-11-07 15:18:34 -------- d-----w- C:\Program Files (x86)\DVDVideoSoft
2012-11-07 15:18:34 -------- d-----w- C:\Program Files (x86)\Common Files\DVDVideoSoft
2012-11-06 17:06:58 821824 ----a-w- C:\Windows\SysWow64\dgderapi.dll
2012-11-04 19:06:23 -------- d-----r- C:\Users\Sigi\AppData\Roaming\Brother
2012-10-28 17:47:55 34624 ----a-w- C:\Windows\System32\TURegOpt.exe
2012-10-28 17:47:52 36160 ----a-w- C:\Windows\System32\uxtuneup.dll
2012-10-28 17:47:52 29504 ----a-w- C:\Windows\SysWow64\uxtuneup.dll
2012-10-28 17:47:51 25920 ----a-w- C:\Windows\System32\authuitu.dll
2012-10-28 17:47:51 21312 ----a-w- C:\Windows\SysWow64\authuitu.dll
2012-10-26 15:33:25 -------- d-sh--w- C:\ProgramData\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
2012-10-26 15:30:39 -------- d-----w- C:\Users\Sigi\AppData\Roaming\TuneUp Software
2012-10-26 15:28:52 -------- d-----w- C:\Program Files (x86)\TuneUp Utilities 2011
2012-10-26 15:26:57 -------- d-----w- C:\ProgramData\TuneUp Software
2012-10-25 02:12:26 94208 ----a-w- C:\Windows\SysWow64\QuickTimeVR.qtx
2012-10-25 02:12:26 69632 ----a-w- C:\Windows\SysWow64\QuickTime.qts
.
==================== Find3M ====================
.
2012-11-11 05:36:19 73656 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2012-11-11 05:36:19 697272 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
2012-10-30 22:51:55 984144 ----a-w- C:\Windows\System32\drivers\aswSnx.sys
2012-10-30 22:51:55 71600 ----a-w- C:\Windows\System32\drivers\aswMonFlt.sys
2012-10-30 22:51:07 41224 ----a-w- C:\Windows\avastSS.scr
2012-10-15 16:59:28 54072 ----a-w- C:\Windows\System32\drivers\aswRdr2.sys
2012-10-10 18:16:25 152576 ----a-w- C:\Windows\SysWow64\msclmd.dll
2012-10-10 18:16:24 175616 ----a-w- C:\Windows\System32\msclmd.dll
2012-10-09 18:17:13 55296 ----a-w- C:\Windows\System32\dhcpcsvc6.dll
2012-10-09 18:17:13 226816 ----a-w- C:\Windows\System32\dhcpcore6.dll
2012-10-09 17:40:31 44032 ----a-w- C:\Windows\SysWow64\dhcpcsvc6.dll
2012-10-09 17:40:31 193536 ----a-w- C:\Windows\SysWow64\dhcpcore6.dll
2012-10-08 11:31:03 2312704 ----a-w- C:\Windows\System32\jscript9.dll
2012-10-08 11:23:52 1392128 ----a-w- C:\Windows\System32\wininet.dll
2012-10-08 11:22:55 1494528 ----a-w- C:\Windows\System32\inetcpl.cpl
2012-10-08 11:18:22 173056 ----a-w- C:\Windows\System32\ieUnatt.exe
2012-10-08 11:17:35 599040 ----a-w- C:\Windows\System32\vbscript.dll
2012-10-08 11:13:33 2382848 ----a-w- C:\Windows\System32\mshtml.tlb
2012-10-08 07:56:24 1800704 ----a-w- C:\Windows\SysWow64\jscript9.dll
2012-10-08 07:48:03 1129472 ----a-w- C:\Windows\SysWow64\wininet.dll
2012-10-08 07:47:44 1427968 ----a-w- C:\Windows\SysWow64\inetcpl.cpl
2012-10-08 07:44:05 142848 ----a-w- C:\Windows\SysWow64\ieUnatt.exe
2012-10-08 07:43:21 420864 ----a-w- C:\Windows\SysWow64\vbscript.dll
2012-10-08 07:40:56 2382848 ----a-w- C:\Windows\SysWow64\mshtml.tlb
2012-10-07 18:11:15 31080 ----a-w- C:\Windows\System32\drivers\avgtpx64.sys
2012-10-07 16:33:15 0 ----a-w- C:\Windows\ativpsrm.bin
2012-10-03 17:56:54 1914248 ----a-w- C:\Windows\System32\drivers\tcpip.sys
2012-10-03 17:44:21 70656 ----a-w- C:\Windows\System32\nlaapi.dll
2012-10-03 17:44:21 303104 ----a-w- C:\Windows\System32\nlasvc.dll
2012-10-03 17:44:17 246272 ----a-w- C:\Windows\System32\netcorehc.dll
2012-10-03 17:44:17 18944 ----a-w- C:\Windows\System32\netevent.dll
2012-10-03 17:44:16 216576 ----a-w- C:\Windows\System32\ncsi.dll
2012-10-03 17:42:16 569344 ----a-w- C:\Windows\System32\iphlpsvc.dll
2012-10-03 16:42:24 18944 ----a-w- C:\Windows\SysWow64\netevent.dll
2012-10-03 16:42:24 175104 ----a-w- C:\Windows\SysWow64\netcorehc.dll
2012-10-03 16:42:23 156672 ----a-w- C:\Windows\SysWow64\ncsi.dll
2012-10-03 16:07:26 45568 ----a-w- C:\Windows\System32\drivers\tcpipreg.sys
2012-09-26 19:57:22 4659712 ----a-w- C:\Windows\SysWow64\Redemption.dll
2012-09-26 19:57:16 90112 ----a-w- C:\Windows\MAMCityDownload.ocx
2012-09-26 19:57:16 330240 ----a-w- C:\Windows\MASetupCaller.dll
2012-09-26 19:57:16 30568 ----a-w- C:\Windows\MusiccityDownload.exe
2012-09-14 19:19:29 2048 ----a-w- C:\Windows\System32\tzres.dll
2012-09-14 18:28:53 2048 ----a-w- C:\Windows\SysWow64\tzres.dll
2012-08-31 18:19:35 1659760 ----a-w- C:\Windows\System32\drivers\ntfs.sys
2012-08-30 18:03:45 5559664 ----a-w- C:\Windows\System32\ntoskrnl.exe
2012-08-30 17:12:02 3968880 ----a-w- C:\Windows\SysWow64\ntkrnlpa.exe
2012-08-30 17:12:02 3914096 ----a-w- C:\Windows\SysWow64\ntoskrnl.exe
2012-08-24 18:05:07 220160 ----a-w- C:\Windows\System32\wintrust.dll
2012-08-24 16:57:48 172544 ----a-w- C:\Windows\SysWow64\wintrust.dll
.
============= FINISH: 18:53:29,12 ===============
. UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG. IF REQUESTED, ZIP IT UP & ATTACH IT . DDS (Ver_2012-11-20.01) . Microsoft Windows 7 Home Premium Boot Device: \Device\HarddiskVolume1 Install Date: 07.10.2012 18:39:33 System Uptime: 21.11.2012 14:58:40 (4 hours ago) . Motherboard: Hewlett-Packard | | 308C Processor: AMD Athlon(tm)X2 DualCore QL-64 | Unknown | 2100/200mhz . ==== Disk Partitions ========================= . C: is FIXED (NTFS) - 76 GiB total, 34,827 GiB free. D: is FIXED (NTFS) - 73 GiB total, 72,986 GiB free. E: is CDROM () . ==== Disabled Device Manager Items ============= . ==== System Restore Points =================== . RP26: 05.11.2012 21:20:41 - Removed Samsung Kies RP27: 06.11.2012 18:05:07 - Installed Samsung Kies RP28: 16.11.2012 06:18:07 - Windows Update . ==== Installed Programs ====================== . Adobe AIR Adobe Flash Player 11 Plugin Adobe Reader XI - Deutsch Apple Application Support Apple Software Update avast! Free Antivirus AVG Security Toolbar Brother MFL-Pro Suite Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition Free YouTube to MP3 Converter version 3.11.35.1031 Hotfix for Microsoft .NET Framework 4 Client Profile (KB2461678) Microsoft .NET Framework 4 Client Profile Microsoft .NET Framework 4 Client Profile DEU Language Pack Microsoft Office 2010 Service Pack 1 (SP1) Microsoft Office Access MUI (German) 2010 Microsoft Office Excel MUI (German) 2010 Microsoft Office Home and Student 2010 Microsoft Office Office 64-bit Components 2010 Microsoft Office OneNote MUI (German) 2010 Microsoft Office Outlook MUI (German) 2010 Microsoft Office PowerPoint MUI (German) 2010 Microsoft Office Proof (English) 2010 Microsoft Office Proof (French) 2010 Microsoft Office Proof (German) 2010 Microsoft Office Proof (Italian) 2010 Microsoft Office Proofing (German) 2010 Microsoft Office Publisher MUI (German) 2010 Microsoft Office Shared 64-bit MUI (German) 2010 Microsoft Office Shared MUI (German) 2010 Microsoft Office Single Image 2010 Microsoft Office Word MUI (German) 2010 Microsoft Silverlight Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Mozilla Firefox 17.0 (x86 de) Mozilla Maintenance Service Mozilla Thunderbird 17.0 (x86 de) MyFreeCodec MyPhoneExplorer PixiePack Codec Pack QuickTime Radiotracker Samsung Kies SAMSUNG USB Driver for Mobile Phones Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121) Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351) Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2) Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405) Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827) Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449) Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019) Security Update for Microsoft Excel 2010 (KB2597126) 32-Bit Edition Security Update for Microsoft InfoPath 2010 (KB2687417) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2553091) Security Update for Microsoft Office 2010 (KB2553096) Security Update for Microsoft Office 2010 (KB2553260) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2553371) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2553447) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2589320) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2589322) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2597986) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2598243) 32-Bit Edition Security Update for Microsoft PowerPoint 2010 (KB2553185) 32-Bit Edition Security Update for Microsoft Visio Viewer 2010 (KB2598287) 32-Bit Edition Security Update for Microsoft Word 2010 (KB2553488) 32-Bit Edition Synaptics Pointing Device Driver TeraCopy 2.27 Trojan Remover 6.8.5 TuneUp Utilities 2011 TuneUp Utilities Language Pack (de-DE) Update for Microsoft .NET Framework 4 Client Profile (KB2468871) Update for Microsoft .NET Framework 4 Client Profile (KB2533523) Update for Microsoft .NET Framework 4 Client Profile (KB2600217) Update for Microsoft Office 2010 (KB2553065) Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition Update for Microsoft Office 2010 (KB2553267) 32-Bit Edition Update for Microsoft Office 2010 (KB2553270) 32-Bit Edition Update for Microsoft Office 2010 (KB2553272) 32-Bit Edition Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition Update for Microsoft Office 2010 (KB2566458) Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition Update for Microsoft Office 2010 (KB2687509) 32-Bit Edition Update for Microsoft OneNote 2010 (KB2553290) 32-Bit Edition Update for Microsoft OneNote 2010 (KB2687277) 32-Bit Edition Update for Microsoft Outlook 2010 (KB2687623) 32-Bit Edition Update for Microsoft Outlook Social Connector 2010 (KB2553406) 32-Bit Edition Update for Microsoft SharePoint Workspace 2010 (KB2589371) 32-Bit Edition Winamp Winamp Erkennungs-Plug-in Wise Registry Cleaner 7.45 . ==== End Of File =========================== 19:08:00.0802 0932 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35 19:08:01.0232 0932 ============================================================ 19:08:01.0232 0932 Current date / time: 2012/11/21 19:08:01.0232 19:08:01.0232 0932 SystemInfo: 19:08:01.0232 0932 19:08:01.0232 0932 OS Version: 6.1.7601 ServicePack: 1.0 19:08:01.0232 0932 Product type: Workstation 19:08:01.0232 0932 ComputerName: SIGI-PC 19:08:01.0232 0932 UserName: Sigi 19:08:01.0232 0932 Windows directory: C:\Windows 19:08:01.0232 0932 System windows directory: C:\Windows 19:08:01.0232 0932 Running under WOW64 19:08:01.0232 0932 Processor architecture: Intel x64 19:08:01.0232 0932 Number of processors: 2 19:08:01.0232 0932 Page size: 0x1000 19:08:01.0232 0932 Boot type: Normal boot 19:08:01.0232 0932 ============================================================ 19:08:02.0832 0932 Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040 19:08:02.0912 0932 ============================================================ 19:08:02.0912 0932 \Device\Harddisk0\DR0: 19:08:02.0932 0932 MBR partitions: 19:08:02.0932 0932 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000 19:08:02.0932 0932 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x976A800 19:08:02.0932 0932 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x979D000, BlocksNum 0x927B800 19:08:02.0932 0932 ============================================================ 19:08:02.0992 0932 C: <-> \Device\Harddisk0\DR0\Partition2 19:08:03.0052 0932 D: <-> \Device\Harddisk0\DR0\Partition3 19:08:03.0052 0932 ============================================================ 19:08:03.0052 0932 Initialize success 19:08:03.0052 0932 ============================================================ 19:08:04.0872 3688 ============================================================ 19:08:04.0872 3688 Scan started 19:08:04.0872 3688 Mode: Manual; 19:08:04.0872 3688 ============================================================ 19:08:05.0822 3688 ================ Scan system memory ======================== 19:08:05.0822 3688 System memory - ok 19:08:05.0822 3688 ================ Scan services ============================= 19:08:06.0102 3688 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys 19:08:06.0122 3688 1394ohci - ok 19:08:06.0172 3688 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys 19:08:06.0172 3688 ACPI - ok 19:08:06.0202 3688 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys 19:08:06.0212 3688 AcpiPmi - ok 19:08:06.0332 3688 [ B1EA9681502EE57F87DB71D726288A5B ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe 19:08:06.0352 3688 AdobeARMservice - ok 19:08:06.0482 3688 [ 0CB0AA071C7B86A64F361DCFDF357329 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe 19:08:06.0482 3688 AdobeFlashPlayerUpdateSvc - ok 19:08:06.0572 3688 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys 19:08:06.0592 3688 adp94xx - ok 19:08:06.0662 3688 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys 19:08:06.0662 3688 adpahci - ok 19:08:06.0672 3688 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys 19:08:06.0682 3688 adpu320 - ok 19:08:06.0732 3688 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll 19:08:06.0732 3688 AeLookupSvc - ok 19:08:06.0802 3688 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys 19:08:06.0812 3688 AFD - ok 19:08:06.0872 3688 [ 98022774D9930ECBB292E70DB7601DF6 ] AgereSoftModem C:\Windows\system32\DRIVERS\agrsm64.sys 19:08:06.0892 3688 AgereSoftModem - ok 19:08:06.0952 3688 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys 19:08:06.0962 3688 agp440 - ok 19:08:07.0012 3688 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe 19:08:07.0012 3688 ALG - ok 19:08:07.0062 3688 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys 19:08:07.0062 3688 aliide - ok 19:08:07.0152 3688 [ D696F317BD465A602566F8E1DCCE15F7 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe 19:08:07.0162 3688 AMD External Events Utility - ok 19:08:07.0212 3688 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys 19:08:07.0232 3688 amdide - ok 19:08:07.0282 3688 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys 19:08:07.0282 3688 AmdK8 - ok 19:08:07.0312 3688 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys 19:08:07.0312 3688 AmdPPM - ok 19:08:07.0342 3688 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys 19:08:07.0362 3688 amdsata - ok 19:08:07.0392 3688 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys 19:08:07.0412 3688 amdsbs - ok 19:08:07.0452 3688 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys 19:08:07.0462 3688 amdxata - ok 19:08:07.0542 3688 [ 4DE0D5D747A73797C95A97DCCE5018B5 ] androidusb C:\Windows\system32\Drivers\ssadadb.sys 19:08:07.0542 3688 androidusb - ok 19:08:07.0622 3688 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys 19:08:07.0622 3688 AppID - ok 19:08:07.0672 3688 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll 19:08:07.0682 3688 AppIDSvc - ok 19:08:07.0742 3688 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll 19:08:07.0742 3688 Appinfo - ok 19:08:07.0782 3688 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys 19:08:07.0782 3688 arc - ok 19:08:07.0792 3688 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys 19:08:07.0802 3688 arcsas - ok 19:08:07.0862 3688 [ 4FCAEF0C5BE7629AEB878998E0FE959B ] aswFsBlk C:\Windows\system32\drivers\aswFsBlk.sys 19:08:07.0862 3688 aswFsBlk - ok 19:08:07.0922 3688 [ B50CDD87772D6A11CB90924AAD399DF8 ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys 19:08:07.0932 3688 aswMonFlt - ok 19:08:07.0952 3688 [ 57768C7DB4681F2510F247F82EF31D4F ] aswRdr C:\Windows\System32\Drivers\aswrdr2.sys 19:08:07.0952 3688 aswRdr - ok 19:08:08.0002 3688 [ E71D826A1F3CE9C9DE3E77F2D02AFFBF ] aswSnx C:\Windows\system32\drivers\aswSnx.sys 19:08:08.0012 3688 aswSnx - ok 19:08:08.0052 3688 [ 538A32E2C99BF073D4CA76C30BEDAA60 ] aswSP C:\Windows\system32\drivers\aswSP.sys 19:08:08.0052 3688 aswSP - ok 19:08:08.0082 3688 [ 6EDC79D73745FD44C41B55B2D13D0B70 ] aswTdi C:\Windows\system32\drivers\aswTdi.sys 19:08:08.0082 3688 aswTdi - ok 19:08:08.0112 3688 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys 19:08:08.0112 3688 AsyncMac - ok 19:08:08.0152 3688 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys 19:08:08.0152 3688 atapi - ok 19:08:08.0482 3688 [ 52BD95CAA9CAE8977FE043E9AD6D2D0E ] atikmdag C:\Windows\system32\DRIVERS\atikmdag.sys 19:08:08.0632 3688 atikmdag - ok 19:08:08.0732 3688 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll 19:08:08.0742 3688 AudioEndpointBuilder - ok 19:08:08.0782 3688 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll 19:08:08.0782 3688 AudioSrv - ok 19:08:08.0882 3688 [ 8FA553E9AE69808D99C164733A0F9590 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe 19:08:08.0882 3688 avast! Antivirus - ok 19:08:08.0922 3688 [ DE24B2CA078FC6A7EAA53B1DFD3F61CF ] avgtp C:\Windows\system32\drivers\avgtpx64.sys 19:08:08.0922 3688 avgtp - ok 19:08:08.0972 3688 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll 19:08:08.0982 3688 AxInstSV - ok 19:08:09.0042 3688 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys 19:08:09.0052 3688 b06bdrv - ok 19:08:09.0082 3688 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys 19:08:09.0092 3688 b57nd60a - ok 19:08:09.0372 3688 [ FB4FDA64F2E8552EAEB5986C3F34462C ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl664.sys 19:08:09.0442 3688 BCM43XX - ok 19:08:09.0512 3688 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll 19:08:09.0512 3688 BDESVC - ok 19:08:09.0582 3688 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys 19:08:09.0582 3688 Beep - ok 19:08:09.0652 3688 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll 19:08:09.0662 3688 BFE - ok 19:08:09.0762 3688 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll 19:08:09.0782 3688 BITS - ok 19:08:09.0802 3688 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys 19:08:09.0802 3688 blbdrive - ok 19:08:09.0832 3688 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys 19:08:09.0832 3688 bowser - ok 19:08:09.0882 3688 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys 19:08:09.0892 3688 BrFiltLo - ok 19:08:09.0892 3688 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys 19:08:09.0892 3688 BrFiltUp - ok 19:08:09.0942 3688 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll 19:08:09.0952 3688 Browser - ok 19:08:10.0002 3688 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys 19:08:10.0002 3688 Brserid - ok 19:08:10.0022 3688 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys 19:08:10.0022 3688 BrSerWdm - ok 19:08:10.0032 3688 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys 19:08:10.0042 3688 BrUsbMdm - ok 19:08:10.0052 3688 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys 19:08:10.0052 3688 BrUsbSer - ok 19:08:10.0112 3688 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys 19:08:10.0122 3688 BthEnum - ok 19:08:10.0162 3688 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys 19:08:10.0162 3688 BTHMODEM - ok 19:08:10.0202 3688 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys 19:08:10.0212 3688 BthPan - ok 19:08:10.0262 3688 [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys 19:08:10.0272 3688 BTHPORT - ok 19:08:10.0312 3688 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll 19:08:10.0312 3688 bthserv - ok 19:08:10.0342 3688 [ F188B7394D81010767B6DF3178519A37 ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys 19:08:10.0342 3688 BTHUSB - ok 19:08:10.0392 3688 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys 19:08:10.0392 3688 cdfs - ok 19:08:10.0442 3688 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\drivers\cdrom.sys 19:08:10.0442 3688 cdrom - ok 19:08:10.0492 3688 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll 19:08:10.0502 3688 CertPropSvc - ok 19:08:10.0522 3688 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys 19:08:10.0522 3688 circlass - ok 19:08:10.0592 3688 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys 19:08:10.0602 3688 CLFS - ok 19:08:10.0682 3688 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe 19:08:10.0692 3688 clr_optimization_v2.0.50727_32 - ok 19:08:10.0742 3688 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe 19:08:10.0742 3688 clr_optimization_v2.0.50727_64 - ok 19:08:10.0862 3688 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe 19:08:10.0922 3688 clr_optimization_v4.0.30319_32 - ok 19:08:11.0042 3688 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe 19:08:11.0052 3688 clr_optimization_v4.0.30319_64 - ok 19:08:11.0092 3688 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys 19:08:11.0092 3688 CmBatt - ok 19:08:11.0152 3688 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys 19:08:11.0152 3688 cmdide - ok 19:08:11.0222 3688 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys 19:08:11.0232 3688 CNG - ok 19:08:11.0312 3688 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys 19:08:11.0312 3688 Compbatt - ok 19:08:11.0342 3688 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys 19:08:11.0362 3688 CompositeBus - ok 19:08:11.0392 3688 COMSysApp - ok 19:08:11.0412 3688 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys 19:08:11.0422 3688 crcdisk - ok 19:08:11.0462 3688 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll 19:08:11.0472 3688 CryptSvc - ok 19:08:11.0522 3688 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll 19:08:11.0542 3688 DcomLaunch - ok 19:08:11.0602 3688 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll 19:08:11.0602 3688 defragsvc - ok 19:08:11.0632 3688 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys 19:08:11.0632 3688 DfsC - ok 19:08:11.0692 3688 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll 19:08:11.0702 3688 Dhcp - ok 19:08:11.0732 3688 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys 19:08:11.0732 3688 discache - ok 19:08:11.0772 3688 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys 19:08:11.0782 3688 Disk - ok 19:08:11.0812 3688 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll 19:08:11.0822 3688 Dnscache - ok 19:08:11.0872 3688 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll 19:08:11.0882 3688 dot3svc - ok 19:08:11.0932 3688 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll 19:08:11.0932 3688 DPS - ok 19:08:11.0982 3688 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys 19:08:11.0982 3688 drmkaud - ok 19:08:12.0042 3688 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys 19:08:12.0062 3688 DXGKrnl - ok 19:08:12.0102 3688 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll 19:08:12.0112 3688 EapHost - ok 19:08:12.0362 3688 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys 19:08:12.0452 3688 ebdrv - ok 19:08:12.0492 3688 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe 19:08:12.0502 3688 EFS - ok 19:08:12.0642 3688 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe 19:08:12.0652 3688 ehRecvr - ok 19:08:12.0702 3688 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe 19:08:12.0722 3688 ehSched - ok 19:08:12.0832 3688 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys 19:08:12.0842 3688 elxstor - ok 19:08:12.0892 3688 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys 19:08:12.0892 3688 ErrDev - ok 19:08:12.0982 3688 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll 19:08:12.0992 3688 EventSystem - ok 19:08:13.0042 3688 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys 19:08:13.0042 3688 exfat - ok 19:08:13.0112 3688 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys 19:08:13.0132 3688 fastfat - ok 19:08:13.0192 3688 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe 19:08:13.0202 3688 Fax - ok 19:08:13.0252 3688 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys 19:08:13.0252 3688 fdc - ok 19:08:13.0282 3688 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll 19:08:13.0292 3688 fdPHost - ok 19:08:13.0322 3688 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll 19:08:13.0322 3688 FDResPub - ok 19:08:13.0362 3688 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys 19:08:13.0362 3688 FileInfo - ok 19:08:13.0392 3688 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys 19:08:13.0392 3688 Filetrace - ok 19:08:13.0422 3688 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys 19:08:13.0422 3688 flpydisk - ok 19:08:13.0502 3688 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys 19:08:13.0502 3688 FltMgr - ok 19:08:13.0622 3688 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll 19:08:13.0642 3688 FontCache - ok 19:08:13.0702 3688 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe 19:08:13.0702 3688 FontCache3.0.0.0 - ok 19:08:13.0732 3688 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys 19:08:13.0732 3688 FsDepends - ok 19:08:13.0792 3688 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys 19:08:13.0802 3688 Fs_Rec - ok 19:08:13.0862 3688 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys 19:08:13.0872 3688 fvevol - ok 19:08:13.0892 3688 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys 19:08:13.0892 3688 gagp30kx - ok 19:08:13.0952 3688 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll 19:08:13.0962 3688 gpsvc - ok 19:08:14.0042 3688 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys 19:08:14.0052 3688 hcw85cir - ok 19:08:14.0132 3688 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys 19:08:14.0142 3688 HdAudAddService - ok 19:08:14.0182 3688 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys 19:08:14.0182 3688 HDAudBus - ok 19:08:14.0212 3688 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys 19:08:14.0222 3688 HidBatt - ok 19:08:14.0222 3688 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys 19:08:14.0232 3688 HidBth - ok 19:08:14.0242 3688 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys 19:08:14.0242 3688 HidIr - ok 19:08:14.0272 3688 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll 19:08:14.0272 3688 hidserv - ok 19:08:14.0352 3688 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\drivers\hidusb.sys 19:08:14.0352 3688 HidUsb - ok 19:08:14.0402 3688 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll 19:08:14.0402 3688 hkmsvc - ok 19:08:14.0472 3688 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll 19:08:14.0482 3688 HomeGroupListener - ok 19:08:14.0552 3688 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll 19:08:14.0562 3688 HomeGroupProvider - ok 19:08:14.0602 3688 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys 19:08:14.0602 3688 HpSAMD - ok 19:08:14.0702 3688 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys 19:08:14.0722 3688 HTTP - ok 19:08:14.0762 3688 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys 19:08:14.0782 3688 hwpolicy - ok 19:08:14.0812 3688 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys 19:08:14.0812 3688 i8042prt - ok 19:08:14.0852 3688 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys 19:08:14.0882 3688 iaStorV - ok 19:08:14.0982 3688 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe 19:08:15.0002 3688 idsvc - ok 19:08:15.0052 3688 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys 19:08:15.0062 3688 iirsp - ok 19:08:15.0122 3688 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll 19:08:15.0132 3688 IKEEXT - ok 19:08:15.0162 3688 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys 19:08:15.0162 3688 intelide - ok 19:08:15.0202 3688 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys 19:08:15.0202 3688 intelppm - ok 19:08:15.0252 3688 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll 19:08:15.0252 3688 IPBusEnum - ok 19:08:15.0302 3688 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys 19:08:15.0312 3688 IpFilterDriver - ok 19:08:15.0382 3688 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll 19:08:15.0402 3688 iphlpsvc - ok 19:08:15.0442 3688 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys 19:08:15.0472 3688 IPMIDRV - ok 19:08:15.0512 3688 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys 19:08:15.0512 3688 IPNAT - ok 19:08:15.0572 3688 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys 19:08:15.0572 3688 IRENUM - ok 19:08:15.0622 3688 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys 19:08:15.0622 3688 isapnp - ok 19:08:15.0652 3688 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys 19:08:15.0662 3688 iScsiPrt - ok 19:08:15.0682 3688 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys 19:08:15.0682 3688 kbdclass - ok 19:08:15.0742 3688 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys 19:08:15.0752 3688 kbdhid - ok 19:08:15.0782 3688 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe 19:08:15.0782 3688 KeyIso - ok 19:08:15.0842 3688 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys 19:08:15.0852 3688 KSecDD - ok 19:08:15.0882 3688 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys 19:08:15.0882 3688 KSecPkg - ok 19:08:15.0922 3688 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys 19:08:15.0922 3688 ksthunk - ok 19:08:15.0992 3688 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll 19:08:16.0002 3688 KtmRm - ok 19:08:16.0062 3688 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll 19:08:16.0072 3688 LanmanServer - ok 19:08:16.0132 3688 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll 19:08:16.0142 3688 LanmanWorkstation - ok 19:08:16.0212 3688 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys 19:08:16.0272 3688 lltdio - ok 19:08:16.0312 3688 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll 19:08:16.0332 3688 lltdsvc - ok 19:08:16.0342 3688 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll 19:08:16.0352 3688 lmhosts - ok 19:08:16.0412 3688 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys 19:08:16.0412 3688 LSI_FC - ok 19:08:16.0442 3688 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys 19:08:16.0452 3688 LSI_SAS - ok 19:08:16.0462 3688 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys 19:08:16.0462 3688 LSI_SAS2 - ok 19:08:16.0472 3688 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys 19:08:16.0472 3688 LSI_SCSI - ok 19:08:16.0502 3688 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys 19:08:16.0512 3688 luafv - ok 19:08:16.0552 3688 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll 19:08:16.0572 3688 Mcx2Svc - ok 19:08:16.0592 3688 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys 19:08:16.0612 3688 megasas - ok 19:08:16.0642 3688 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys 19:08:16.0662 3688 MegaSR - ok 19:08:16.0702 3688 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll 19:08:16.0712 3688 MMCSS - ok 19:08:16.0752 3688 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys 19:08:16.0772 3688 Modem - ok 19:08:16.0802 3688 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys 19:08:16.0802 3688 monitor - ok 19:08:16.0852 3688 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\drivers\mouclass.sys 19:08:16.0852 3688 mouclass - ok 19:08:16.0882 3688 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys 19:08:16.0882 3688 mouhid - ok 19:08:16.0922 3688 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys 19:08:16.0932 3688 mountmgr - ok 19:08:17.0032 3688 [ 8121C6DD654970FEDDBC195596D9706E ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe 19:08:17.0042 3688 MozillaMaintenance - ok 19:08:17.0102 3688 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys 19:08:17.0112 3688 mpio - ok 19:08:17.0142 3688 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys 19:08:17.0152 3688 mpsdrv - ok 19:08:17.0222 3688 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll 19:08:17.0232 3688 MpsSvc - ok 19:08:17.0282 3688 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys 19:08:17.0282 3688 MRxDAV - ok 19:08:17.0342 3688 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys 19:08:17.0342 3688 mrxsmb - ok 19:08:17.0372 3688 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys 19:08:17.0382 3688 mrxsmb10 - ok 19:08:17.0422 3688 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys 19:08:17.0422 3688 mrxsmb20 - ok 19:08:17.0442 3688 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys 19:08:17.0462 3688 msahci - ok 19:08:17.0502 3688 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys 19:08:17.0502 3688 msdsm - ok 19:08:17.0542 3688 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe 19:08:17.0552 3688 MSDTC - ok 19:08:17.0592 3688 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys 19:08:17.0592 3688 Msfs - ok 19:08:17.0612 3688 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys 19:08:17.0622 3688 mshidkmdf - ok 19:08:17.0642 3688 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys 19:08:17.0652 3688 msisadrv - ok 19:08:17.0712 3688 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll 19:08:17.0722 3688 MSiSCSI - ok 19:08:17.0722 3688 msiserver - ok 19:08:17.0802 3688 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys 19:08:17.0802 3688 MSKSSRV - ok 19:08:17.0822 3688 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys 19:08:17.0822 3688 MSPCLOCK - ok 19:08:17.0842 3688 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys 19:08:17.0842 3688 MSPQM - ok 19:08:17.0912 3688 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys 19:08:17.0912 3688 MsRPC - ok 19:08:17.0952 3688 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys 19:08:17.0952 3688 mssmbios - ok 19:08:17.0972 3688 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys 19:08:17.0972 3688 MSTEE - ok 19:08:17.0982 3688 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys 19:08:17.0982 3688 MTConfig - ok 19:08:18.0012 3688 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys 19:08:18.0012 3688 Mup - ok 19:08:18.0092 3688 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll 19:08:18.0102 3688 napagent - ok 19:08:18.0182 3688 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys 19:08:18.0192 3688 NativeWifiP - ok 19:08:18.0282 3688 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys 19:08:18.0302 3688 NDIS - ok 19:08:18.0372 3688 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys 19:08:18.0372 3688 NdisCap - ok 19:08:18.0402 3688 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys 19:08:18.0402 3688 NdisTapi - ok 19:08:18.0442 3688 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys 19:08:18.0442 3688 Ndisuio - ok 19:08:18.0492 3688 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys 19:08:18.0502 3688 NdisWan - ok 19:08:18.0522 3688 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys 19:08:18.0532 3688 NDProxy - ok 19:08:18.0592 3688 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys 19:08:18.0592 3688 NetBIOS - ok 19:08:18.0662 3688 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys 19:08:18.0662 3688 NetBT - ok 19:08:18.0692 3688 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe 19:08:18.0692 3688 Netlogon - ok 19:08:18.0812 3688 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll 19:08:18.0822 3688 Netman - ok 19:08:18.0902 3688 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll 19:08:18.0912 3688 netprofm - ok 19:08:18.0952 3688 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe 19:08:18.0962 3688 NetTcpPortSharing - ok 19:08:19.0012 3688 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys 19:08:19.0012 3688 nfrd960 - ok 19:08:19.0082 3688 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll 19:08:19.0102 3688 NlaSvc - ok 19:08:19.0132 3688 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys 19:08:19.0132 3688 Npfs - ok 19:08:19.0172 3688 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll 19:08:19.0182 3688 nsi - ok 19:08:19.0232 3688 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys 19:08:19.0232 3688 nsiproxy - ok 19:08:19.0352 3688 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys 19:08:19.0382 3688 Ntfs - ok 19:08:19.0452 3688 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys 19:08:19.0452 3688 Null - ok 19:08:19.0502 3688 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys 19:08:19.0502 3688 nvraid - ok 19:08:19.0542 3688 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys 19:08:19.0562 3688 nvstor - ok 19:08:19.0612 3688 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys 19:08:19.0612 3688 nv_agp - ok 19:08:19.0662 3688 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys 19:08:19.0662 3688 ohci1394 - ok 19:08:19.0752 3688 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE 19:08:19.0762 3688 ose - ok 19:08:20.0152 3688 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE 19:08:20.0282 3688 osppsvc - ok 19:08:20.0332 3688 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll 19:08:20.0342 3688 p2pimsvc - ok 19:08:20.0362 3688 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll 19:08:20.0382 3688 p2psvc - ok 19:08:20.0432 3688 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys 19:08:20.0442 3688 Parport - ok 19:08:20.0492 3688 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys 19:08:20.0492 3688 partmgr - ok 19:08:20.0542 3688 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll 19:08:20.0562 3688 PcaSvc - ok 19:08:20.0612 3688 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys 19:08:20.0632 3688 pci - ok 19:08:20.0652 3688 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys 19:08:20.0662 3688 pciide - ok 19:08:20.0732 3688 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys 19:08:20.0742 3688 pcmcia - ok 19:08:20.0772 3688 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys 19:08:20.0772 3688 pcw - ok 19:08:20.0862 3688 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys 19:08:20.0872 3688 PEAUTH - ok 19:08:21.0122 3688 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe 19:08:21.0122 3688 PerfHost - ok 19:08:21.0222 3688 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll 19:08:21.0252 3688 pla - ok 19:08:21.0332 3688 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll 19:08:21.0342 3688 PlugPlay - ok 19:08:21.0372 3688 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll 19:08:21.0382 3688 PNRPAutoReg - ok 19:08:21.0402 3688 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll 19:08:21.0412 3688 PNRPsvc - ok 19:08:21.0452 3688 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll 19:08:21.0472 3688 PolicyAgent - ok 19:08:21.0512 3688 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll 19:08:21.0522 3688 Power - ok 19:08:21.0562 3688 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys 19:08:21.0562 3688 PptpMiniport - ok 19:08:21.0652 3688 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys 19:08:21.0652 3688 Processor - ok 19:08:21.0722 3688 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll 19:08:21.0732 3688 ProfSvc - ok 19:08:21.0752 3688 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe 19:08:21.0762 3688 ProtectedStorage - ok 19:08:21.0822 3688 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys 19:08:21.0822 3688 Psched - ok 19:08:21.0952 3688 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys 19:08:21.0972 3688 ql2300 - ok 19:08:22.0022 3688 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys 19:08:22.0022 3688 ql40xx - ok 19:08:22.0072 3688 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll 19:08:22.0082 3688 QWAVE - ok 19:08:22.0092 3688 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys 19:08:22.0102 3688 QWAVEdrv - ok 19:08:22.0122 3688 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys 19:08:22.0132 3688 RasAcd - ok 19:08:22.0172 3688 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys 19:08:22.0182 3688 RasAgileVpn - ok 19:08:22.0202 3688 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll 19:08:22.0212 3688 RasAuto - ok 19:08:22.0252 3688 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys 19:08:22.0262 3688 Rasl2tp - ok 19:08:22.0302 3688 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll 19:08:22.0312 3688 RasMan - ok 19:08:22.0352 3688 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys 19:08:22.0362 3688 RasPppoe - ok 19:08:22.0412 3688 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys 19:08:22.0412 3688 RasSstp - ok 19:08:22.0462 3688 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys 19:08:22.0472 3688 rdbss - ok 19:08:22.0502 3688 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys 19:08:22.0502 3688 rdpbus - ok 19:08:22.0532 3688 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys 19:08:22.0532 3688 RDPCDD - ok 19:08:22.0582 3688 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys 19:08:22.0582 3688 RDPENCDD - ok 19:08:22.0602 3688 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys 19:08:22.0602 3688 RDPREFMP - ok 19:08:22.0662 3688 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys 19:08:22.0682 3688 RDPWD - ok 19:08:22.0732 3688 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys 19:08:22.0742 3688 rdyboost - ok 19:08:22.0782 3688 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll 19:08:22.0792 3688 RemoteAccess - ok 19:08:22.0832 3688 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll 19:08:22.0842 3688 RemoteRegistry - ok 19:08:22.0892 3688 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys 19:08:22.0892 3688 RFCOMM - ok 19:08:22.0932 3688 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll 19:08:22.0952 3688 RpcEptMapper - ok 19:08:22.0982 3688 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe 19:08:22.0982 3688 RpcLocator - ok 19:08:23.0032 3688 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll 19:08:23.0042 3688 RpcSs - ok 19:08:23.0092 3688 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys 19:08:23.0092 3688 rspndr - ok 19:08:23.0122 3688 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe 19:08:23.0122 3688 SamSs - ok 19:08:23.0172 3688 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys 19:08:23.0172 3688 sbp2port - ok 19:08:23.0222 3688 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll 19:08:23.0242 3688 SCardSvr - ok 19:08:23.0272 3688 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys 19:08:23.0282 3688 scfilter - ok 19:08:23.0372 3688 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll 19:08:23.0392 3688 Schedule - ok 19:08:23.0422 3688 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll 19:08:23.0422 3688 SCPolicySvc - ok 19:08:23.0462 3688 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll 19:08:23.0472 3688 SDRSVC - ok 19:08:23.0512 3688 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys 19:08:23.0512 3688 secdrv - ok 19:08:23.0562 3688 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll 19:08:23.0562 3688 seclogon - ok 19:08:23.0592 3688 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll 19:08:23.0602 3688 SENS - ok 19:08:23.0622 3688 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll 19:08:23.0632 3688 SensrSvc - ok 19:08:23.0652 3688 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys 19:08:23.0652 3688 Serenum - ok 19:08:23.0692 3688 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys 19:08:23.0692 3688 Serial - ok 19:08:23.0732 3688 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys 19:08:23.0742 3688 sermouse - ok 19:08:23.0772 3688 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll 19:08:23.0782 3688 SessionEnv - ok 19:08:23.0812 3688 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys 19:08:23.0822 3688 sffdisk - ok 19:08:23.0842 3688 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys 19:08:23.0842 3688 sffp_mmc - ok 19:08:23.0872 3688 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys 19:08:23.0872 3688 sffp_sd - ok 19:08:23.0922 3688 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys 19:08:23.0932 3688 sfloppy - ok 19:08:23.0992 3688 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll 19:08:24.0002 3688 SharedAccess - ok 19:08:24.0062 3688 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll 19:08:24.0072 3688 ShellHWDetection - ok 19:08:24.0092 3688 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys 19:08:24.0102 3688 SiSRaid2 - ok 19:08:24.0112 3688 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys 19:08:24.0122 3688 SiSRaid4 - ok 19:08:24.0152 3688 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys 19:08:24.0172 3688 Smb - ok 19:08:24.0212 3688 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe 19:08:24.0222 3688 SNMPTRAP - ok 19:08:24.0242 3688 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys 19:08:24.0252 3688 spldr - ok 19:08:24.0302 3688 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe 19:08:24.0312 3688 Spooler - ok 19:08:24.0542 3688 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe 19:08:24.0632 3688 sppsvc - ok 19:08:24.0672 3688 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll 19:08:24.0672 3688 sppuinotify - ok 19:08:24.0722 3688 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys 19:08:24.0732 3688 srv - ok 19:08:24.0752 3688 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys 19:08:24.0762 3688 srv2 - ok 19:08:24.0812 3688 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys 19:08:24.0812 3688 srvnet - ok 19:08:24.0922 3688 [ 8F8324ED1DE63FFC7B1A02CD2D963C72 ] ssadbus C:\Windows\system32\DRIVERS\ssadbus.sys 19:08:24.0932 3688 ssadbus - ok 19:08:24.0972 3688 [ 58221EFCB74167B73667F0024C661CE0 ] ssadmdfl C:\Windows\system32\DRIVERS\ssadmdfl.sys 19:08:24.0972 3688 ssadmdfl - ok 19:08:25.0002 3688 [ 4DA7C71BFAC5AD71255B7E4CAB980163 ] ssadmdm C:\Windows\system32\DRIVERS\ssadmdm.sys 19:08:25.0002 3688 ssadmdm - ok 19:08:25.0052 3688 [ D33D1BD3EC0E766211A234F56A12726D ] ssadserd C:\Windows\system32\DRIVERS\ssadserd.sys 19:08:25.0062 3688 ssadserd - ok 19:08:25.0122 3688 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll 19:08:25.0132 3688 SSDPSRV - ok 19:08:25.0182 3688 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll 19:08:25.0192 3688 SstpSvc - ok 19:08:25.0252 3688 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys 19:08:25.0252 3688 stexstor - ok 19:08:25.0362 3688 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll 19:08:25.0382 3688 stisvc - ok 19:08:25.0422 3688 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys 19:08:25.0422 3688 swenum - ok 19:08:25.0532 3688 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll 19:08:25.0552 3688 swprv - ok 19:08:25.0692 3688 [ C52B05821884F9A0EBEE38C45DBD73CD ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys 19:08:25.0702 3688 SynTP - ok 19:08:25.0772 3688 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll 19:08:25.0802 3688 SysMain - ok 19:08:25.0832 3688 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll 19:08:25.0832 3688 TabletInputService - ok 19:08:25.0882 3688 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll 19:08:25.0882 3688 TapiSrv - ok 19:08:25.0932 3688 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll 19:08:25.0942 3688 TBS - ok 19:08:26.0192 3688 [ 37608401DFDB388CAF66917F6B2D6FB0 ] Tcpip C:\Windows\system32\drivers\tcpip.sys 19:08:26.0212 3688 Tcpip - ok 19:08:26.0292 3688 [ 37608401DFDB388CAF66917F6B2D6FB0 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys 19:08:26.0312 3688 TCPIP6 - ok 19:08:26.0352 3688 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys 19:08:26.0352 3688 tcpipreg - ok 19:08:26.0392 3688 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys 19:08:26.0392 3688 TDPIPE - ok 19:08:26.0432 3688 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys 19:08:26.0442 3688 TDTCP - ok 19:08:26.0492 3688 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys 19:08:26.0492 3688 tdx - ok 19:08:26.0522 3688 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys 19:08:26.0522 3688 TermDD - ok 19:08:26.0592 3688 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll 19:08:26.0612 3688 TermService - ok 19:08:26.0672 3688 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll 19:08:26.0682 3688 Themes - ok 19:08:26.0712 3688 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll 19:08:26.0712 3688 THREADORDER - ok 19:08:26.0772 3688 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll 19:08:26.0772 3688 TrkWks - ok 19:08:26.0862 3688 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe 19:08:26.0862 3688 TrustedInstaller - ok 19:08:26.0882 3688 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys 19:08:26.0882 3688 tssecsrv - ok 19:08:26.0952 3688 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys 19:08:26.0972 3688 TsUsbFlt - ok 19:08:27.0192 3688 [ 286809293BC5AE5D6A1A381B53C72D1A ] TuneUp.UtilitiesSvc C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesService64.exe 19:08:27.0252 3688 TuneUp.UtilitiesSvc - ok 19:08:27.0302 3688 [ DCC94C51D27C7EC0DADECA8F64C94FCF ] TuneUpUtilitiesDrv C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesDriver64.sys 19:08:27.0302 3688 TuneUpUtilitiesDrv - ok 19:08:27.0372 3688 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys 19:08:27.0382 3688 tunnel - ok 19:08:27.0422 3688 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys 19:08:27.0432 3688 uagp35 - ok 19:08:27.0472 3688 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys 19:08:27.0472 3688 udfs - ok 19:08:27.0522 3688 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe 19:08:27.0532 3688 UI0Detect - ok 19:08:27.0572 3688 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys 19:08:27.0572 3688 uliagpkx - ok 19:08:27.0632 3688 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys 19:08:27.0632 3688 umbus - ok 19:08:27.0672 3688 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys 19:08:27.0672 3688 UmPass - ok 19:08:27.0722 3688 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll 19:08:27.0732 3688 upnphost - ok 19:08:27.0752 3688 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys 19:08:27.0762 3688 usbccgp - ok 19:08:27.0782 3688 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys 19:08:27.0782 3688 usbcir - ok 19:08:27.0832 3688 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys 19:08:27.0842 3688 usbehci - ok 19:08:27.0902 3688 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys 19:08:27.0902 3688 usbhub - ok 19:08:27.0972 3688 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys 19:08:27.0982 3688 usbohci - ok 19:08:28.0082 3688 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys 19:08:28.0092 3688 usbprint - ok 19:08:28.0152 3688 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys 19:08:28.0152 3688 usbscan - ok 19:08:28.0182 3688 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS 19:08:28.0182 3688 USBSTOR - ok 19:08:28.0202 3688 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys 19:08:28.0202 3688 usbuhci - ok 19:08:28.0252 3688 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys 19:08:28.0252 3688 usbvideo - ok 19:08:28.0292 3688 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll 19:08:28.0302 3688 UxSms - ok 19:08:28.0432 3688 [ 594DF74EC1411592585D8FE8165D0816 ] UxTuneUp C:\Windows\System32\uxtuneup.dll 19:08:28.0442 3688 UxTuneUp - ok 19:08:28.0452 3688 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe 19:08:28.0462 3688 VaultSvc - ok 19:08:28.0502 3688 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys 19:08:28.0512 3688 vdrvroot - ok 19:08:28.0592 3688 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe 19:08:28.0602 3688 vds - ok 19:08:28.0642 3688 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys 19:08:28.0642 3688 vga - ok 19:08:28.0672 3688 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys 19:08:28.0672 3688 VgaSave - ok 19:08:28.0732 3688 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys 19:08:28.0752 3688 vhdmp - ok 19:08:28.0782 3688 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys 19:08:28.0782 3688 viaide - ok 19:08:28.0802 3688 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys 19:08:28.0802 3688 volmgr - ok 19:08:28.0852 3688 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys 19:08:28.0852 3688 volmgrx - ok 19:08:28.0892 3688 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys 19:08:28.0922 3688 volsnap - ok 19:08:28.0982 3688 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys 19:08:28.0982 3688 vsmraid - ok 19:08:29.0132 3688 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe 19:08:29.0162 3688 VSS - ok 19:08:29.0252 3688 [ 40DBA03782BCC10685A8C200C5EBDCD0 ] vToolbarUpdater12.2.6 C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\12.2.6\ToolbarUpdater.exe 19:08:29.0272 3688 vToolbarUpdater12.2.6 - ok 19:08:29.0292 3688 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys 19:08:29.0292 3688 vwifibus - ok 19:08:29.0332 3688 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys 19:08:29.0332 3688 vwififlt - ok 19:08:29.0382 3688 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll 19:08:29.0392 3688 W32Time - ok 19:08:29.0422 3688 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys 19:08:29.0432 3688 WacomPen - ok 19:08:29.0492 3688 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys 19:08:29.0492 3688 WANARP - ok 19:08:29.0512 3688 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys 19:08:29.0512 3688 Wanarpv6 - ok 19:08:29.0662 3688 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe 19:08:29.0692 3688 wbengine - ok 19:08:29.0772 3688 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll 19:08:29.0792 3688 WbioSrvc - ok 19:08:29.0832 3688 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll 19:08:29.0852 3688 wcncsvc - ok 19:08:29.0872 3688 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll 19:08:29.0882 3688 WcsPlugInService - ok 19:08:29.0922 3688 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys 19:08:29.0922 3688 Wd - ok 19:08:29.0982 3688 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys 19:08:30.0012 3688 Wdf01000 - ok 19:08:30.0032 3688 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll 19:08:30.0042 3688 WdiServiceHost - ok 19:08:30.0052 3688 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll 19:08:30.0062 3688 WdiSystemHost - ok 19:08:30.0102 3688 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll 19:08:30.0112 3688 WebClient - ok 19:08:30.0142 3688 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll 19:08:30.0172 3688 Wecsvc - ok 19:08:30.0222 3688 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll 19:08:30.0222 3688 wercplsupport - ok 19:08:30.0262 3688 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll 19:08:30.0272 3688 WerSvc - ok 19:08:30.0352 3688 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys 19:08:30.0352 3688 WfpLwf - ok 19:08:30.0402 3688 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys 19:08:30.0412 3688 WIMMount - ok 19:08:30.0442 3688 WinDefend - ok 19:08:30.0452 3688 WinHttpAutoProxySvc - ok 19:08:30.0582 3688 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll 19:08:30.0592 3688 Winmgmt - ok 19:08:30.0682 3688 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll 19:08:30.0722 3688 WinRM - ok 19:08:30.0792 3688 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll 19:08:30.0812 3688 Wlansvc - ok 19:08:30.0862 3688 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys 19:08:30.0862 3688 WmiAcpi - ok 19:08:30.0912 3688 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe 19:08:30.0912 3688 wmiApSrv - ok 19:08:30.0962 3688 WMPNetworkSvc - ok 19:08:31.0002 3688 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll 19:08:31.0012 3688 WPCSvc - ok 19:08:31.0052 3688 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll 19:08:31.0072 3688 WPDBusEnum - ok 19:08:31.0102 3688 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys 19:08:31.0112 3688 ws2ifsl - ok 19:08:31.0152 3688 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll 19:08:31.0162 3688 wscsvc - ok 19:08:31.0172 3688 WSearch - ok 19:08:31.0342 3688 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll 19:08:31.0382 3688 wuauserv - ok 19:08:31.0412 3688 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys 19:08:31.0422 3688 WudfPf - ok 19:08:31.0492 3688 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys 19:08:31.0492 3688 WUDFRd - ok 19:08:31.0532 3688 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll 19:08:31.0542 3688 wudfsvc - ok 19:08:31.0582 3688 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll 19:08:31.0592 3688 WwanSvc - ok 19:08:31.0682 3688 [ 64F88AF327AA74E03658AE32B48CCB8B ] yukonw7 C:\Windows\system32\DRIVERS\yk62x64.sys 19:08:31.0692 3688 yukonw7 - ok 19:08:31.0722 3688 ================ Scan global =============================== 19:08:31.0782 3688 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll 19:08:31.0822 3688 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll 19:08:31.0852 3688 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll 19:08:31.0902 3688 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll 19:08:31.0952 3688 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe 19:08:31.0972 3688 [Global] - ok 19:08:31.0972 3688 ================ Scan MBR ================================== 19:08:32.0012 3688 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0 19:08:32.0982 3688 \Device\Harddisk0\DR0 - ok 19:08:32.0982 3688 ================ Scan VBR ================================== 19:08:33.0012 3688 [ D07A0ECF1B0DA78F27923D684D45047E ] \Device\Harddisk0\DR0\Partition1 19:08:33.0012 3688 \Device\Harddisk0\DR0\Partition1 - ok 19:08:33.0032 3688 [ C60F9489B3A7DFCD5B5D6FCE6027237A ] \Device\Harddisk0\DR0\Partition2 19:08:33.0042 3688 \Device\Harddisk0\DR0\Partition2 - ok 19:08:33.0072 3688 [ 382E6B05DF4A6AFAB26B8C755DD3D41F ] \Device\Harddisk0\DR0\Partition3 19:08:33.0092 3688 \Device\Harddisk0\DR0\Partition3 - ok 19:08:33.0092 3688 ============================================================ 19:08:33.0092 3688 Scan finished 19:08:33.0092 3688 ============================================================ 19:08:33.0112 3560 Detected object count: 0 19:08:33.0112 3560 Actual detected object count: 0 19:10:22.0458 3952 Deinitialize success aswmbr.exe hat 3 mal abgebrochen |
|
21.11.2012, 20:02
| #4 | |||
| /// TB-Ausbilder | Probleme bei der Aktualisierung von AVIRA Servus, Zitat:
 Ich sehe nämlich nur Avast! Antivirus auf deinem Rechner installiert. Zitat:
Solche allgemeinen Aussagen helfen nicht weiter. Zitat:
Wann hat aswMBR abgebrochen? Am Anfang des Scans, am Ende, ... ? |
|
21.11.2012, 21:10
| #5 |
| | Probleme bei der Aktualisierung von AVIRA Hallo Matthias, sorry. ich hab nicht avira sondern avast... abgebrochen wurde das programm ziemlich am ende des scans. das programm konnte nicht ausgeführt werden. die malwarnung hab ich leider net aufgeschrieben, da ich dachte avast hat sich darum gekümmert. ich bin halt leider nur user und ein bischen "blond" in dieser beziehung ;-( |
|
22.11.2012, 16:45
| #6 |
| /// TB-Ausbilder | Probleme bei der Aktualisierung von AVIRA Servus, starte aswMBR.exe nochmal. Wähle links unten None aus und klicke auf Scan. Warte bitte bis Scan finished successfully im DOS Fenster steht. Drücke auf Save Log und speichere diese auf dem Desktop. Poste mir die aswMBR.txt in deiner nächsten Antwort. |
|
22.11.2012, 16:59
| #7 |
| | Probleme bei der Aktualisierung von AVIRA hallo matthias, jetzt hat es geklappt ;-) aswMBR version 0.9.9.1707 Copyright(c) 2011 AVAST Software Run date: 2012-11-21 19:41:43 ----------------------------- 19:41:43.738 OS Version: Windows x64 6.1.7601 Service Pack 1 19:41:43.738 Number of processors: 2 586 0x301 19:41:43.738 ComputerName: SIGI-PC UserName: Sigi 19:41:44.159 Initialize success 19:41:44.237 AVAST engine defs: 12112100 19:41:50.040 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0 19:41:50.040 Disk 0 Vendor: Hitachi_HTS543216L9A300 FB2OC40J Size: 152627MB BusType: 11 19:41:50.056 Disk 0 MBR read successfully 19:41:50.071 Disk 0 MBR scan 19:41:50.071 Disk 0 Windows 7 default MBR code 19:41:50.071 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 2048 19:41:50.102 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 77525 MB offset 206848 19:41:50.134 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 74999 MB offset 158978048 19:41:50.196 Disk 0 scanning C:\Windows\system32\drivers 19:42:02.957 Service scanning 19:42:03.799 Disk 0 MBR has been saved successfully to "C:\Users\Sigi\Desktop\MBR.dat" 19:42:03.799 The log file has been saved successfully to "C:\Users\Sigi\Desktop\aswMBR.txt" aswMBR version 0.9.9.1707 Copyright(c) 2011 AVAST Software Run date: 2012-11-21 19:41:43 ----------------------------- 19:41:43.738 OS Version: Windows x64 6.1.7601 Service Pack 1 19:41:43.738 Number of processors: 2 586 0x301 19:41:43.738 ComputerName: SIGI-PC UserName: Sigi 19:41:44.159 Initialize success 19:41:44.237 AVAST engine defs: 12112100 19:41:50.040 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0 19:41:50.040 Disk 0 Vendor: Hitachi_HTS543216L9A300 FB2OC40J Size: 152627MB BusType: 11 19:41:50.056 Disk 0 MBR read successfully 19:41:50.071 Disk 0 MBR scan 19:41:50.071 Disk 0 Windows 7 default MBR code 19:41:50.071 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 2048 19:41:50.102 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 77525 MB offset 206848 19:41:50.134 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 74999 MB offset 158978048 19:41:50.196 Disk 0 scanning C:\Windows\system32\drivers 19:42:02.957 Service scanning 19:42:03.799 Disk 0 MBR has been saved successfully to "C:\Users\Sigi\Desktop\MBR.dat" 19:42:03.799 The log file has been saved successfully to "C:\Users\Sigi\Desktop\aswMBR.txt" 19:42:26.642 Modules scanning 19:42:26.642 Disk 0 trace - called modules: 19:42:26.673 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys ataport.SYS PCIIDEX.SYS hal.dll msahci.sys 19:42:26.689 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa800314c730] 19:42:26.689 3 CLASSPNP.SYS[fffff8800160143f] -> nt!IofCallDriver -> [0xfffffa8002c53760] 19:42:26.705 5 ACPI.sys[fffff88000f477a1] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-0[0xfffffa8002c14060] 19:42:27.063 AVAST engine scan C:\Windows 19:42:28.935 AVAST engine scan C:\Windows\system32 19:43:41.704 Disk 0 MBR has been saved successfully to "C:\Users\Sigi\Desktop\MBR.dat" 19:43:41.704 The log file has been saved successfully to "C:\Users\Sigi\Desktop\aswMBR.txt" aswMBR version 0.9.9.1707 Copyright(c) 2011 AVAST Software Run date: 2012-11-22 16:56:01 ----------------------------- 16:56:01.450 OS Version: Windows x64 6.1.7601 Service Pack 1 16:56:01.450 Number of processors: 2 586 0x301 16:56:01.450 ComputerName: SIGI-PC UserName: Sigi 16:56:02.370 Initialize success 16:56:02.573 AVAST engine defs: 12112200 16:56:09.328 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0 16:56:09.328 Disk 0 Vendor: Hitachi_HTS543216L9A300 FB2OC40J Size: 152627MB BusType: 11 16:56:09.359 Disk 0 MBR read successfully 16:56:09.359 Disk 0 MBR scan 16:56:09.359 Disk 0 Windows 7 default MBR code 16:56:09.375 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 2048 16:56:09.375 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 77525 MB offset 206848 16:56:09.406 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 74999 MB offset 158978048 16:56:09.437 Disk 0 scanning C:\Windows\system32\drivers 16:56:18.641 Service scanning 16:56:42.150 Modules scanning 16:56:42.150 Disk 0 trace - called modules: 16:56:42.182 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys ataport.SYS PCIIDEX.SYS hal.dll msahci.sys 16:56:42.182 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa800314b790] 16:56:42.197 3 CLASSPNP.SYS[fffff880019af43f] -> nt!IofCallDriver -> [0xfffffa8002c52520] 16:56:42.197 5 ACPI.sys[fffff88000f6e7a1] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-0[0xfffffa8002c12680] 16:56:42.213 Scan finished successfully 16:56:55.348 Disk 0 MBR has been saved successfully to "C:\Users\Sigi\Desktop\MBR.dat" 16:56:55.379 The log file has been saved successfully to "C:\Users\Sigi\Desktop\aswMBR.txt" |
|
22.11.2012, 17:56
| #8 |
| /// TB-Ausbilder | Probleme bei der Aktualisierung von AVIRA Servus, Schritt 1 Ich sehe, dass du sog. Registry Cleaner auf dem System hast. In deinem Fall Wise Registry Cleaner und TuneUp Utilities 2011. Wir empfehlen auf keinen Fall jegliche Art von Registry Cleaner. Der Grund ist ganz einfach: Die Registry ist das Hirn des Systems. Funktioniert das Hirn nicht, funktioniert der Rest nicht mehr wirklich. Wir lesen oft genug von Hilfesuchenden, dass deren System nach der Nutzung von Registry Cleanern nicht mehr booted.
Zerstörst Du die Registry, zerstörst Du Windows. Ich empfehle dir hiermit die oben genannte Software zu deinstallieren und in Zukunft auf solche Art von Software zu verzichten. Am Ende empfehle ich dir ein anderes Tool, mit dem du deine temporären Dateien entfernen kannst. Schritt 2
Schritt 3 Downloade Dir bitte  AdwCleaner auf deinen Desktop.
Schritt 4 Scan mit Combofix
Bitte poste mit deiner nächsten Antwort
|
|
22.11.2012, 18:58
| #9 |
| | Probleme bei der Aktualisierung von AVIRA Hallo Matthias, hier die beiden .txt´s... tuneup und wisecleaner sind auch deinstalliert.. Combofix Logfile: Code:
ATTFilter ComboFix 12-11-22.03 - Sigi 22.11.2012 18:40:13.1.2 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.49.1031.18.2813.1862 [GMT 1:00]
ausgeführt von:: c:\users\Sigi\Desktop\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((((((((((((( Weitere Löschungen ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\Sigi\AppData\Roaming\Microsoft\Windows\Recent\PDFCreator.url
c:\users\Sigi\AppData\Roaming\Microsoft\Windows\Recent\Reisekosten_SeptOkt.2012.pdf? (79 KB?) (2).URL . . . . Nicht in der Lage zu löschen
c:\users\Sigi\AppData\Roaming\Microsoft\Windows\Recent\Reisekosten_SeptOkt.2012.pdf? (79 KB?).URL . . . . Nicht in der Lage zu löschen
.
.
((((((((((((((((((((((( Dateien erstellt von 2012-10-22 bis 2012-11-22 ))))))))))))))))))))))))))))))
.
.
2012-11-22 17:46 . 2012-11-22 17:46 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-11-21 04:33 . 2012-11-21 04:34 -------- d-----w- c:\users\Gast
2012-11-20 20:27 . 2012-11-20 20:27 -------- d-----w- c:\program files (x86)\Mozilla Thunderbird
2012-11-19 05:10 . 2012-11-19 05:10 -------- d-----w- c:\users\Sigi\AppData\Local\Diagnostics
2012-11-18 06:37 . 2012-06-27 08:37 36328 ----a-w- c:\windows\system32\drivers\ssadadb.sys
2012-11-18 06:37 . 2012-06-27 08:37 177640 ----a-w- c:\windows\system32\drivers\ssadmdm.sys
2012-11-18 06:37 . 2012-06-27 08:37 16872 ----a-w- c:\windows\system32\drivers\ssadmdfl.sys
2012-11-18 06:37 . 2012-06-27 08:37 157672 ----a-w- c:\windows\system32\drivers\ssadbus.sys
2012-11-18 06:37 . 2012-06-27 08:37 13800 ----a-w- c:\windows\system32\drivers\ssadwhnt.sys
2012-11-18 06:37 . 2012-06-27 08:37 13288 ----a-w- c:\windows\system32\drivers\ssadcmnt.sys
2012-11-18 06:37 . 2012-06-27 08:37 146920 ----a-w- c:\windows\system32\drivers\ssadserd.sys
2012-11-18 06:26 . 2012-11-18 06:26 159744 ----a-w- c:\program files (x86)\Internet Explorer\Plugins\npqtplugin7.dll
2012-11-18 06:26 . 2012-11-18 06:26 159744 ----a-w- c:\program files (x86)\Internet Explorer\Plugins\npqtplugin6.dll
2012-11-18 06:26 . 2012-11-18 06:26 159744 ----a-w- c:\program files (x86)\Internet Explorer\Plugins\npqtplugin5.dll
2012-11-18 06:26 . 2012-11-18 06:26 159744 ----a-w- c:\program files (x86)\Internet Explorer\Plugins\npqtplugin4.dll
2012-11-18 06:26 . 2012-11-18 06:26 159744 ----a-w- c:\program files (x86)\Internet Explorer\Plugins\npqtplugin3.dll
2012-11-18 06:26 . 2012-11-18 06:26 159744 ----a-w- c:\program files (x86)\Internet Explorer\Plugins\npqtplugin2.dll
2012-11-18 06:26 . 2012-11-18 06:26 159744 ----a-w- c:\program files (x86)\Internet Explorer\Plugins\npqtplugin.dll
2012-11-18 06:25 . 2012-11-18 06:26 -------- d-----w- c:\program files (x86)\QuickTime
2012-11-18 06:25 . 2012-11-18 06:25 -------- d-----w- c:\programdata\Apple Computer
2012-11-16 05:31 . 2012-07-26 07:46 2560 ----a-w- c:\windows\system32\drivers\de-DE\wdf01000.sys.mui
2012-11-16 05:31 . 2012-07-26 04:55 785512 ----a-w- c:\windows\system32\drivers\Wdf01000.sys
2012-11-16 05:31 . 2012-07-26 04:55 54376 ----a-w- c:\windows\system32\drivers\WdfLdr.sys
2012-11-16 05:31 . 2012-07-26 02:36 9728 ----a-w- c:\windows\system32\Wdfres.dll
2012-11-16 05:21 . 2012-10-08 11:24 1346048 ----a-w- c:\windows\system32\urlmon.dll
2012-11-16 05:19 . 2012-07-26 02:26 87040 ----a-w- c:\windows\system32\drivers\WUDFPf.sys
2012-11-16 05:19 . 2012-07-26 02:26 198656 ----a-w- c:\windows\system32\drivers\WUDFRd.sys
2012-11-16 05:19 . 2012-07-26 03:08 84992 ----a-w- c:\windows\system32\WUDFSvc.dll
2012-11-16 05:19 . 2012-07-26 03:08 194048 ----a-w- c:\windows\system32\WUDFPlatform.dll
2012-11-16 05:19 . 2012-07-26 03:08 45056 ----a-w- c:\windows\system32\WUDFCoinstaller.dll
2012-11-16 05:19 . 2012-07-26 03:08 229888 ----a-w- c:\windows\system32\WUDFHost.exe
2012-11-16 05:19 . 2012-07-26 03:08 744448 ----a-w- c:\windows\system32\WUDFx.dll
2012-11-16 04:50 . 2012-10-18 18:25 3149824 ----a-w- c:\windows\system32\win32k.sys
2012-11-16 04:50 . 2012-09-25 22:47 78336 ----a-w- c:\windows\SysWow64\synceng.dll
2012-11-16 04:50 . 2012-09-25 22:46 95744 ----a-w- c:\windows\system32\synceng.dll
2012-11-07 15:18 . 2012-11-07 15:18 -------- d-----w- c:\program files (x86)\Common Files\DVDVideoSoft
2012-11-07 15:18 . 2012-11-07 15:18 -------- d-----w- c:\program files (x86)\DVDVideoSoft
2012-11-06 17:06 . 2012-09-26 19:57 821824 ----a-w- c:\windows\SysWow64\dgderapi.dll
2012-11-04 19:06 . 2012-11-04 19:06 -------- d-----r- c:\users\Sigi\AppData\Roaming\Brother
2012-11-02 13:29 . 2012-11-02 13:29 -------- d-----w- c:\program files (x86)\Common Files\Adobe AIR
2012-10-26 15:33 . 2012-10-26 16:10 -------- d-sh--w- c:\programdata\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
2012-10-26 15:30 . 2012-10-26 15:35 -------- d-----w- c:\users\Sigi\AppData\Roaming\TuneUp Software
2012-10-26 15:26 . 2012-10-28 17:57 -------- d-----w- c:\programdata\TuneUp Software
2012-10-25 02:12 . 2012-10-25 02:12 94208 ----a-w- c:\windows\SysWow64\QuickTimeVR.qtx
2012-10-25 02:12 . 2012-10-25 02:12 69632 ----a-w- c:\windows\SysWow64\QuickTime.qts
.
.
.
(((((((((((((((((((((((((((((((((((( Find3M Bericht ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-11-16 05:20 . 2012-10-08 15:05 66395536 ----a-w- c:\windows\system32\MRT.exe
2012-11-11 05:36 . 2012-10-07 18:05 73656 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2012-11-11 05:36 . 2012-10-07 18:05 697272 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2012-10-30 22:51 . 2012-10-07 18:02 59728 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2012-10-30 22:51 . 2012-10-07 18:02 370288 ----a-w- c:\windows\system32\drivers\aswSP.sys
2012-10-30 22:51 . 2012-10-07 18:02 984144 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2012-10-30 22:51 . 2012-10-07 18:02 71600 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2012-10-30 22:51 . 2012-10-07 18:02 25232 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2012-10-30 22:51 . 2012-10-07 18:01 41224 ----a-w- c:\windows\avastSS.scr
2012-10-30 22:50 . 2012-10-07 18:01 227648 ----a-w- c:\windows\SysWow64\aswBoot.exe
2012-10-30 22:50 . 2012-10-07 18:02 285328 ----a-w- c:\windows\system32\aswBoot.exe
2012-10-15 16:59 . 2012-10-07 18:02 54072 ----a-w- c:\windows\system32\drivers\aswRdr2.sys
2012-10-10 18:16 . 2009-07-14 02:36 152576 ----a-w- c:\windows\SysWow64\msclmd.dll
2012-10-10 18:16 . 2009-07-14 02:36 175616 ----a-w- c:\windows\system32\msclmd.dll
2012-10-08 15:15 . 2012-10-08 15:15 89088 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe
2012-10-08 15:15 . 2012-10-08 15:15 86528 ----a-w- c:\windows\SysWow64\iesysprep.dll
2012-10-08 15:15 . 2012-10-08 15:15 76800 ----a-w- c:\windows\SysWow64\SetIEInstalledDate.exe
2012-10-08 15:15 . 2012-10-08 15:15 74752 ----a-w- c:\windows\SysWow64\RegisterIEPKEYs.exe
2012-10-08 15:15 . 2012-10-08 15:15 74752 ----a-w- c:\windows\SysWow64\iesetup.dll
2012-10-08 15:15 . 2012-10-08 15:15 63488 ----a-w- c:\windows\SysWow64\tdc.ocx
2012-10-08 15:15 . 2012-10-08 15:15 48640 ----a-w- c:\windows\SysWow64\mshtmler.dll
2012-10-08 15:15 . 2012-10-08 15:15 367104 ----a-w- c:\windows\SysWow64\html.iec
2012-10-08 15:15 . 2012-10-08 15:15 35840 ----a-w- c:\windows\SysWow64\imgutil.dll
2012-10-08 15:15 . 2012-10-08 15:15 23552 ----a-w- c:\windows\SysWow64\licmgr10.dll
2012-10-08 15:15 . 2012-10-08 15:15 222208 ----a-w- c:\windows\system32\msls31.dll
2012-10-08 15:15 . 2012-10-08 15:15 197120 ----a-w- c:\windows\system32\msrating.dll
2012-10-08 15:15 . 2012-10-08 15:15 161792 ----a-w- c:\windows\SysWow64\msls31.dll
2012-10-08 15:15 . 2012-10-08 15:15 152064 ----a-w- c:\windows\SysWow64\wextract.exe
2012-10-08 15:15 . 2012-10-08 15:15 150528 ----a-w- c:\windows\SysWow64\iexpress.exe
2012-10-08 15:15 . 2012-10-08 15:15 11776 ----a-w- c:\windows\SysWow64\mshta.exe
2012-10-08 15:15 . 2012-10-08 15:15 110592 ----a-w- c:\windows\SysWow64\IEAdvpack.dll
2012-10-08 15:15 . 2012-10-08 15:15 101888 ----a-w- c:\windows\SysWow64\admparse.dll
2012-10-08 15:15 . 2012-10-08 15:15 91648 ----a-w- c:\windows\system32\SetIEInstalledDate.exe
2012-10-08 15:15 . 2012-10-08 15:15 89088 ----a-w- c:\windows\system32\ie4uinit.exe
2012-10-08 15:15 . 2012-10-08 15:15 85504 ----a-w- c:\windows\system32\iesetup.dll
2012-10-08 15:15 . 2012-10-08 15:15 82432 ----a-w- c:\windows\system32\icardie.dll
2012-10-08 15:15 . 2012-10-08 15:15 76800 ----a-w- c:\windows\system32\tdc.ocx
2012-10-08 15:15 . 2012-10-08 15:15 65024 ----a-w- c:\windows\system32\pngfilt.dll
2012-10-08 15:15 . 2012-10-08 15:15 55296 ----a-w- c:\windows\system32\msfeedsbs.dll
2012-10-08 15:15 . 2012-10-08 15:15 534528 ----a-w- c:\windows\system32\ieapfltr.dll
2012-10-08 15:15 . 2012-10-08 15:15 49664 ----a-w- c:\windows\system32\imgutil.dll
2012-10-08 15:15 . 2012-10-08 15:15 48640 ----a-w- c:\windows\system32\mshtmler.dll
2012-10-08 15:15 . 2012-10-08 15:15 452608 ----a-w- c:\windows\system32\dxtmsft.dll
2012-10-08 15:15 . 2012-10-08 15:15 448512 ----a-w- c:\windows\system32\html.iec
2012-10-08 15:15 . 2012-10-08 15:15 403248 ----a-w- c:\windows\system32\iedkcs32.dll
2012-10-08 15:15 . 2012-10-08 15:15 39936 ----a-w- c:\windows\system32\iernonce.dll
2012-10-08 15:15 . 2012-10-08 15:15 3695416 ----a-w- c:\windows\system32\ieapfltr.dat
2012-10-08 15:15 . 2012-10-08 15:15 30720 ----a-w- c:\windows\system32\licmgr10.dll
2012-10-08 15:15 . 2012-10-08 15:15 282112 ----a-w- c:\windows\system32\dxtrans.dll
2012-10-08 15:15 . 2012-10-08 15:15 267776 ----a-w- c:\windows\system32\ieaksie.dll
2012-10-08 15:15 . 2012-10-08 15:15 249344 ----a-w- c:\windows\system32\webcheck.dll
2012-10-08 15:15 . 2012-10-08 15:15 165888 ----a-w- c:\windows\system32\iexpress.exe
2012-10-08 15:15 . 2012-10-08 15:15 163840 ----a-w- c:\windows\system32\ieakui.dll
2012-10-08 15:15 . 2012-10-08 15:15 160256 ----a-w- c:\windows\system32\wextract.exe
2012-10-08 15:15 . 2012-10-08 15:15 160256 ----a-w- c:\windows\system32\ieakeng.dll
2012-10-08 15:15 . 2012-10-08 15:15 149504 ----a-w- c:\windows\system32\occache.dll
2012-10-08 15:15 . 2012-10-08 15:15 145920 ----a-w- c:\windows\system32\iepeers.dll
2012-10-08 15:15 . 2012-10-08 15:15 135168 ----a-w- c:\windows\system32\IEAdvpack.dll
2012-10-08 15:15 . 2012-10-08 15:15 12288 ----a-w- c:\windows\system32\mshta.exe
2012-10-08 15:15 . 2012-10-08 15:15 114176 ----a-w- c:\windows\system32\admparse.dll
2012-10-08 15:15 . 2012-10-08 15:15 111616 ----a-w- c:\windows\system32\iesysprep.dll
2012-10-08 15:15 . 2012-10-08 15:15 10752 ----a-w- c:\windows\system32\msfeedssync.exe
2012-10-08 15:15 . 2012-10-08 15:15 103936 ----a-w- c:\windows\system32\inseng.dll
2012-09-26 19:57 . 2012-10-07 18:37 4659712 ----a-w- c:\windows\SysWow64\Redemption.dll
2012-09-26 19:57 . 2012-09-26 19:57 90112 ----a-w- c:\windows\MAMCityDownload.ocx
2012-09-26 19:57 . 2012-09-26 19:57 330240 ----a-w- c:\windows\MASetupCaller.dll
2012-09-26 19:57 . 2012-09-26 19:57 30568 ----a-w- c:\windows\MusiccityDownload.exe
2012-09-26 18:57 . 2012-09-26 18:57 974848 ----a-w- c:\windows\SysWow64\cis-2.4.dll
2012-09-26 18:57 . 2012-09-26 18:57 81920 ----a-w- c:\windows\SysWow64\issacapi_bs-2.3.dll
2012-09-26 18:57 . 2012-09-26 18:57 65536 ----a-w- c:\windows\SysWow64\issacapi_pe-2.3.dll
2012-09-26 18:57 . 2012-09-26 18:57 57344 ----a-w- c:\windows\SysWow64\MTXSYNCICON.dll
2012-09-26 18:57 . 2012-09-26 18:57 57344 ----a-w- c:\windows\SysWow64\MK_Lyric.dll
2012-09-26 18:57 . 2012-09-26 18:57 57344 ----a-w- c:\windows\SysWow64\issacapi_se-2.3.dll
2012-09-26 18:57 . 2012-09-26 18:57 569344 ----a-w- c:\windows\SysWow64\muzdecode.ax
2012-09-26 18:57 . 2012-09-26 18:57 491520 ----a-w- c:\windows\SysWow64\muzapp.dll
2012-09-26 18:57 . 2012-09-26 18:57 49152 ----a-w- c:\windows\SysWow64\MaJGUILib.dll
2012-09-26 18:57 . 2012-09-26 18:57 45320 ----a-w- c:\windows\SysWow64\MAMACExtract.dll
2012-09-26 18:57 . 2012-09-26 18:57 45056 ----a-w- c:\windows\SysWow64\MaXMLProto.dll
2012-09-26 18:57 . 2012-09-26 18:57 45056 ----a-w- c:\windows\SysWow64\MACXMLProto.dll
2012-09-26 18:57 . 2012-09-26 18:57 40960 ----a-w- c:\windows\SysWow64\MTTELECHIP.dll
2012-09-26 18:57 . 2012-09-26 18:57 352256 ----a-w- c:\windows\SysWow64\MSLUR71.dll
2012-09-26 18:57 . 2012-09-26 18:57 258048 ----a-w- c:\windows\SysWow64\muzoggsp.ax
2012-09-26 18:57 . 2012-09-26 18:57 245760 ----a-w- c:\windows\SysWow64\MSCLib.dll
2012-09-26 18:57 . 2012-09-26 18:57 24576 ----a-w- c:\windows\SysWow64\MASetupCleaner.exe
2012-09-26 18:57 . 2012-09-26 18:57 200704 ----a-w- c:\windows\SysWow64\muzwmts.dll
2012-09-26 18:57 . 2012-09-26 18:57 172032 ----a-w- c:\windows\SysWow64\muzapp.exe
2012-09-26 18:57 . 2012-09-26 18:57 155648 ----a-w- c:\windows\SysWow64\MSFLib.dll
2012-09-26 18:57 . 2012-09-26 18:57 143360 ----a-w- c:\windows\SysWow64\3DAudio.ax
2012-09-26 18:57 . 2012-09-26 18:57 135168 ----a-w- c:\windows\SysWow64\muzaf1.dll
2012-09-26 18:57 . 2012-09-26 18:57 131072 ----a-w- c:\windows\SysWow64\muzmpgsp.ax
2012-09-26 18:57 . 2012-09-26 18:57 122880 ----a-w- c:\windows\SysWow64\muzeffect.ax
2012-09-26 18:57 . 2012-09-26 18:57 118784 ----a-w- c:\windows\SysWow64\MaDRM.dll
2012-09-26 18:57 . 2012-09-26 18:57 110592 ----a-w- c:\windows\SysWow64\muzmp4sp.ax
2012-09-18 22:58 . 2012-10-09 14:21 9308616 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{7182D44F-A524-494B-A6C7-3CCD7F41D687}\mpengine.dll
2012-09-14 19:19 . 2012-10-10 12:59 2048 ----a-w- c:\windows\system32\tzres.dll
2012-09-14 18:28 . 2012-10-10 12:59 2048 ----a-w- c:\windows\SysWow64\tzres.dll
2012-08-31 18:19 . 2012-10-10 13:00 1659760 ----a-w- c:\windows\system32\drivers\ntfs.sys
2012-08-30 18:03 . 2012-10-10 13:00 5559664 ----a-w- c:\windows\system32\ntoskrnl.exe
2012-08-30 17:12 . 2012-10-10 13:00 3914096 ----a-w- c:\windows\SysWow64\ntoskrnl.exe
2012-08-30 17:12 . 2012-10-10 13:00 3968880 ----a-w- c:\windows\SysWow64\ntkrnlpa.exe
.
.
(((((((((((((((((((((((((((( Autostartpunkte der Registrierung ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"KiesAirMessage"="c:\program files (x86)\Samsung\Kies\KiesAirMessage.exe" [2012-11-01 577536]
"KiesPreload"="c:\program files (x86)\Samsung\Kies\Kies.exe" [2012-11-12 968120]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2012-10-30 4297136]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-]
"QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" -atboottime
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R3 androidusb;SAMSUNG Android Composite ADB Interface Driver;c:\windows\system32\Drivers\ssadadb.sys [2012-06-27 36328]
R3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM);c:\windows\system32\DRIVERS\ssadbus.sys [2012-06-27 157672]
R3 ssadmdfl;SAMSUNG Android USB Modem (Filter);c:\windows\system32\DRIVERS\ssadmdfl.sys [2012-06-27 16872]
R3 ssadmdm;SAMSUNG Android USB Modem Drivers;c:\windows\system32\DRIVERS\ssadmdm.sys [2012-06-27 177640]
R3 ssadserd;SAMSUNG Android USB Diagnostic Serial Port (WDM);c:\windows\system32\DRIVERS\ssadserd.sys [2012-06-27 146920]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
S1 aswSnx;aswSnx; [x]
S1 aswSP;aswSP; [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2009-08-18 203264]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2012-10-30 71600]
S3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller;c:\windows\system32\DRIVERS\yk62x64.sys [2009-09-28 395264]
.
.
--- Andere Dienste/Treiber im Speicher ---
.
*NewlyCreated* - WS2IFSL
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{A8D647C8-65AC-409F-B7B2-3C0FEE1A32F2}]
2010-02-16 17:02 114688 ----a-w- c:\program files (x86)\PixiePack Codec Pack\InstallerHelper.exe
.
Inhalt des "geplante Tasks" Ordners
.
2012-11-22 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-10-07 05:36]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2012-10-30 22:50 133400 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll
.
------- Zusätzlicher Suchlauf -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = about:blank
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: An OneNote s&enden - c:\progra~2\MICROS~1\Office14\ONBttnIE.dll/105
IE: Free YouTube to MP3 Converter - c:\users\Sigi\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm
IE: Nach Microsoft E&xcel exportieren - c:\progra~2\MICROS~1\Office14\EXCEL.EXE/3000
TCP: DhcpNameServer = 192.168.2.1 192.168.2.1
FF - ProfilePath - c:\users\Sigi\AppData\Roaming\Mozilla\Firefox\Profiles\lbu11bwo.default\
FF - prefs.js: browser.startup.homepage - Google
FF - ExtSQL: 2012-10-07 19:23; testpilot@labs.mozilla.com; c:\users\Sigi\AppData\Roaming\Mozilla\Firefox\Profiles\lbu11bwo.default\extensions\testpilot@labs.mozilla.com.xpi
FF - ExtSQL: 2012-10-07 19:25; {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}; c:\users\Sigi\AppData\Roaming\Mozilla\Firefox\Profiles\lbu11bwo.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF - ExtSQL: 2012-10-07 19:26; status4evar@caligonstudios.com; c:\users\Sigi\AppData\Roaming\Mozilla\Firefox\Profiles\lbu11bwo.default\extensions\status4evar@caligonstudios.com.xpi
FF - ExtSQL: 2012-10-07 19:26; {a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}; c:\users\Sigi\AppData\Roaming\Mozilla\Firefox\Profiles\lbu11bwo.default\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}
FF - ExtSQL: 2012-10-07 19:48; smarterwiki@wikiatic.com; c:\users\Sigi\AppData\Roaming\Mozilla\Firefox\Profiles\lbu11bwo.default\extensions\smarterwiki@wikiatic.com.xpi
FF - ExtSQL: 2012-10-07 19:48; {64161300-e22b-11db-8314-0800200c9a66}; c:\users\Sigi\AppData\Roaming\Mozilla\Firefox\Profiles\lbu11bwo.default\extensions\{64161300-e22b-11db-8314-0800200c9a66}.xpi
FF - ExtSQL: 2012-10-07 19:48; {c36177c0-224a-11da-8cd6-0800200c9a91}; c:\users\Sigi\AppData\Roaming\Mozilla\Firefox\Profiles\lbu11bwo.default\extensions\{c36177c0-224a-11da-8cd6-0800200c9a91}.xpi
FF - ExtSQL: 2012-10-07 20:01; wrc@avast.com; c:\program files\AVAST Software\Avast\WebRep\FF
FF - ExtSQL: 2012-10-08 20:26; firefoxtweak@pribic.am; c:\users\Sigi\AppData\Roaming\Mozilla\Firefox\Profiles\lbu11bwo.default\extensions\firefoxtweak@pribic.am
FF - ExtSQL: 2012-10-15 18:36; adblockpopups@jessehakanen.net; c:\users\Sigi\AppData\Roaming\Mozilla\Firefox\Profiles\lbu11bwo.default\extensions\adblockpopups@jessehakanen.net.xpi
FF - ExtSQL: 2012-10-16 20:41; {ACAA314B-EEBA-48e4-AD47-84E31C44796C}; c:\users\Sigi\AppData\Roaming\Mozilla\Firefox\Profiles\lbu11bwo.default\extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}.xpi
FF - ExtSQL: 2012-11-18 09:34; {03B08592-E5B4-45ff-A0BE-C1D975458688}; c:\users\Sigi\AppData\Roaming\Mozilla\Firefox\Profiles\lbu11bwo.default\extensions\{03B08592-E5B4-45ff-A0BE-C1D975458688}
.
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
"MSCurrentCountry"=dword:000000b5
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Weitere laufende Prozesse ------------------------
.
c:\program files\AVAST Software\Avast\AvastSvc.exe
.
**************************************************************************
.
Zeit der Fertigstellung: 2012-11-22 18:53:02 - PC wurde neu gestartet
ComboFix-quarantined-files.txt 2012-11-22 17:53
.
Vor Suchlauf: 9 Verzeichnis(se), 39.760.961.536 Bytes frei
Nach Suchlauf: 15 Verzeichnis(se), 39.539.417.088 Bytes frei
.
- - End Of File - - 94D840F2F0982C0E2207684784FD189D
# AdwCleaner v2.008 - Datei am 22/11/2012 um 18:27:39 erstellt # Aktualisiert am 17/11/2012 von Xplode # Betriebssystem : Windows 7 Home Premium Service Pack 1 (64 bits) # Benutzer : Sigi - SIGI-PC # Bootmodus : Normal # Ausgeführt unter : C:\Users\Sigi\Desktop\adwcleaner.exe # Option [Löschen] **** [Dienste] **** ***** [Dateien / Ordner] ***** Datei Gelöscht : C:\Users\Sigi\AppData\Local\Temp\Uninstall.exe Ordner Gelöscht : C:\Users\Sigi\AppData\Roaming\OpenCandy Ordner Gelöscht : C:\Users\Sigi\AppData\Roaming\pdfforge ***** [Registrierungsdatenbank] ***** Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\PriceGong Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233} Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233} Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706} Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{11549FE4-7C5A-4C17-9FC3-56FC5162A994} Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8} Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE} Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{826D7151-8D99-434B-8540-082B8C2AE556} Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217} Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE} Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC} Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217} Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE} Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC} ***** [Internet Browser] ***** -\\ Internet Explorer v9.0.8112.16421 [OK] Die Registrierungsdatenbank ist sauber. -\\ Mozilla Firefox v17.0 (de) Profilname : default Datei : C:\Users\Sigi\AppData\Roaming\Mozilla\Firefox\Profiles\lbu11bwo.default\prefs.js C:\Users\Sigi\AppData\Roaming\Mozilla\Firefox\Profiles\lbu11bwo.default\user.js ... Gelöscht ! [OK] Die Datei ist sauber. ************************* AdwCleaner[S1].txt - [2530 octets] - [22/11/2012 18:27:39] ########## EOF - C:\AdwCleaner[S1].txt - [2590 octets] ########## gruß sigi |
|
22.11.2012, 20:09
| #10 |
| /// TB-Ausbilder | Probleme bei der Aktualisierung von AVIRA Servus, kannst du Avast wieder aktualisieren? Schritt 1
Schritt 2 ESET Online Scanner
Schritt 3 Downloade Dir bitte SecurityCheck
Bitte poste mit deiner nächsten Antwort
|
|
22.11.2012, 20:16
| #11 |
| | Probleme bei der Aktualisierung von AVIRA hallo matthias, ja ich kann avast wieder aktualisieren. geht wieder ohne probleme ;-) ich daaaanke dir schon mal. wenn ich es wieder gut machen kann, bin ich gern bereit... ich bin verwaltungsfachangestellter und kenn mich mit gesetzen, ämtern und blitzern saugut aus, falls du da mal hilfe brauchst... |
|
22.11.2012, 20:24
| #12 |
| /// TB-Ausbilder | Probleme bei der Aktualisierung von AVIRA Servus, freut mich, dass es wieder funktioniert.  Führe bitte noch die Kontrollsuchläufe durch.  |
|
22.11.2012, 21:02
| #13 |
| | Probleme bei der Aktualisierung von AVIRA bin dabei^^ esset käuft noch... was für ein programm empfiehlst du zum reinigen?? Results of screen317's Security Check version 0.99.54 Windows 7 Service Pack 1 x64 (UAC is enabled) Internet Explorer 9 ``````````````Antivirus/Firewall Check:`````````````` avast! Antivirus Antivirus up to date! `````````Anti-malware/Other Utilities Check:````````` Trojan Remover 6.8.5 Malwarebytes Anti-Malware Version 1.65.1.1000 Adobe Flash Player 11.5.502.110 Mozilla Firefox (17.0) Mozilla Thunderbird (17.0.) ````````Process Check: objlist.exe by Laurent```````` Malwarebytes Anti-Malware mbamservice.exe Malwarebytes Anti-Malware mbamgui.exe ESET ESET Online Scanner OnlineScannerApp.exe ESET ESET Online Scanner OnlineCmdLineScanner.exe Malwarebytes' Anti-Malware mbamscheduler.exe AVAST Software Avast AvastSvc.exe AVAST Software Avast AvastUI.exe `````````````````System Health check````````````````` Total Fragmentation on Drive C: ````````````````````End of Log`````````````````````` Malwarebytes Anti-Malware (Test) 1.65.1.1000 Malwarebytes : Free Anti-Malware download Datenbank Version: v2012.11.22.09 Windows 7 Service Pack 1 x64 NTFS Internet Explorer 9.0.8112.16421 Sigi :: SIGI-PC [Administrator] Schutz: Aktiviert 22.11.2012 20:23:15 mbam-log-2012-11-22 (20-23-15).txt Art des Suchlaufs: Quick-Scan Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM Deaktivierte Suchlaufeinstellungen: P2P Durchsuchte Objekte: 225991 Laufzeit: 2 Minute(n), 59 Sekunde(n) Infizierte Speicherprozesse: 0 (Keine bösartigen Objekte gefunden) Infizierte Speichermodule: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungsschlüssel: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungswerte: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateiobjekte der Registrierung: 0 (Keine bösartigen Objekte gefunden) Infizierte Verzeichnisse: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateien: 0 (Keine bösartigen Objekte gefunden) (Ende) eset hat keine logdatei gebracht. hat aber auch nix gefunden... |
|
23.11.2012, 19:14
| #14 |
| /// TB-Ausbilder | Probleme bei der Aktualisierung von AVIRA Servus, Wenn du keine Probleme mehr hast, dann sind wir hier fertig. Deine Logdateien sind sauber.  Zum Schluss müssen wir noch ein paar abschließende Schritte unternehmen, um deinen Pc aufzuräumen und abzusichern. Schritt 1 Starte DeFogger und klicke auf Re-enable. Gegebenenfalls muss dein Rechner neu gestartet werden. Schritt 2 Bitte vor der folgenden Aktion wieder temporär Antivirus-Programm, evtl. vorhandenes Skript-Blocking und Anti-Malware Programme deaktivieren. Windows-Taste + R drücke. Kopiere nun folgende Zeile in die Kommandozeile und klicke OK. Code:
ATTFilter Combofix /Uninstall
 Damit wird Combofix komplett entfernt und der Cache der Systemwiederherstellung geleert, damit auch aus dieser die Schädlinge verschwinden. Nun die eben deaktivierten Programme wieder aktivieren. Schritt 3 Downloade dir bitte delfix auf deinen Desktop.
Schritt 4 Hier noch ein paar Tipps zur Absicherung deines Systems. Ich kann garnicht zu oft erwähnen, wie wichtig es ist, dass dein System Up to Date ist.
Anti- Viren Software
Zusätzlicher Schutz
Sicheres Browsen
Alternative Browser Andere Browser tendieren zu etwas mehr Sicherheit als der IE, da diese keine Active X Elemente verwenden. Diese können von Spyware zur Infektion deines Systems missbraucht werden.
Performance Bereinige regelmäßig deine Temp Files. Ich empfehle hierzu TFC Halte dich fern von jedlichen Registry Cleanern. Diese Schaden deinem System mehr als sie helfen. Hier ein paar ( englishe ) Links Miekemoes Blogspot ( MVP ) Bill Castner ( MVP ) Don'ts
Hinweis: Bitte gib mir eine kurze Rückmeldung wenn alles erledigt ist und keine Fragen mehr vorhanden sind, so dass ich dieses Thema aus meinen Abos löschen kann. |
|
23.11.2012, 21:21
| #15 |
| | Probleme bei der Aktualisierung von AVIRA Matthias, ich danke dir ganz herzlich für deine zeit, die du für mich geopfert hast ;-) mein angebot steht... einfach e-mail schreiben und ich helf dir, falls du probleme hast ;-))) danke dir nochmal gruß sigi |
|
| Themen zu Probleme bei der Aktualisierung von AVIRA |
| aktualisierung, anderer, angezeigt, avira, erreiche, fehler, folge, folgender, leute, malwar, probleme, tagen, versuchs |
WARNUNG an die MITLESER: 
Linear-Darstellung
