| |
| |||||||
Log-Analyse und Auswertung: Avast Free deaktiviert, lässt sich nicht mehr aktivierenWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
 |
07.02.2013, 00:17
| #1 |
| |  Avast Free deaktiviert, lässt sich nicht mehr aktivieren Hallo seit einem Tag zeigt die Windows-Meldung, dass avast nicht aktiviert ist. Über das diese weiße Meldungsanzeige von Windows lässt sich das Programm nicht aktivieren. Über avast selbst geht auch nichts. (Die logs waren zu lang, ich hab sie in die zip gepackt) ~nextcard |
|
07.02.2013, 11:37
| #2 |
| /// Malware-holic   | Avast Free deaktiviert, lässt sich nicht mehr aktivieren HI
__________________download tdss killer: http://www.trojaner-board.de/82358-t...entfernen.html Klicke auf Change parameters • Setze die Haken bei Verify driver digital signatures und Detect TDLFS file system • Klick auf OK und anschließend auf Start scan - bei funden erst mal immer skip wählen, log posten c: öffnen, tdsskiller-datum-version.txt öffnen, Inhalt posten
__________________ |
|
07.02.2013, 12:56
| #3 |
| | Avast Free deaktiviert, lässt sich nicht mehr aktivierenCode:
ATTFilter 12:53:39.0357 1460 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
12:53:39.0544 1460 ============================================================
12:53:39.0544 1460 Current date / time: 2013/02/07 12:53:39.0544
12:53:39.0544 1460 SystemInfo:
12:53:39.0544 1460
12:53:39.0544 1460 OS Version: 6.1.7601 ServicePack: 1.0
12:53:39.0544 1460 Product type: Workstation
12:53:39.0544 1460 ComputerName: FURKAN-PC
12:53:39.0544 1460 UserName: Furkan
12:53:39.0544 1460 Windows directory: C:\Windows
12:53:39.0544 1460 System windows directory: C:\Windows
12:53:39.0544 1460 Running under WOW64
12:53:39.0544 1460 Processor architecture: Intel x64
12:53:39.0544 1460 Number of processors: 4
12:53:39.0544 1460 Page size: 0x1000
12:53:39.0544 1460 Boot type: Normal boot
12:53:39.0544 1460 ============================================================
12:53:40.0496 1460 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
12:53:40.0512 1460 ============================================================
12:53:40.0512 1460 \Device\Harddisk0\DR0:
12:53:40.0512 1460 MBR partitions:
12:53:40.0512 1460 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
12:53:40.0512 1460 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x3A353000
12:53:40.0512 1460 ============================================================
12:53:40.0527 1460 C: <-> \Device\Harddisk0\DR0\Partition2
12:53:40.0527 1460 ============================================================
12:53:40.0527 1460 Initialize success
12:53:40.0527 1460 ============================================================
12:53:55.0893 0484 ============================================================
12:53:55.0893 0484 Scan started
12:53:55.0893 0484 Mode: Manual; SigCheck; TDLFS;
12:53:55.0893 0484 ============================================================
12:53:56.0860 0484 ================ Scan system memory ========================
12:53:56.0860 0484 System memory - ok
12:53:56.0860 0484 ================ Scan services =============================
12:53:57.0375 0484 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
12:53:57.0594 0484 1394ohci - ok
12:53:57.0625 0484 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
12:53:57.0641 0484 ACPI - ok
12:53:57.0672 0484 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
12:53:57.0812 0484 AcpiPmi - ok
12:53:58.0109 0484 [ 3927397AC60D943DAF8808AFFED582B7 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
12:53:58.0140 0484 AdobeARMservice - ok
12:53:58.0608 0484 [ 424877CB9D5517F980FF7BACA2EB379D ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
12:53:58.0655 0484 AdobeFlashPlayerUpdateSvc - ok
12:53:58.0826 0484 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
12:53:58.0889 0484 adp94xx - ok
12:53:58.0935 0484 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
12:53:58.0982 0484 adpahci - ok
12:53:59.0013 0484 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
12:53:59.0029 0484 adpu320 - ok
12:53:59.0045 0484 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
12:53:59.0154 0484 AeLookupSvc - ok
12:53:59.0201 0484 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
12:53:59.0232 0484 AFD - ok
12:53:59.0263 0484 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
12:53:59.0279 0484 agp440 - ok
12:53:59.0294 0484 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
12:53:59.0341 0484 ALG - ok
12:53:59.0372 0484 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
12:53:59.0403 0484 aliide - ok
12:53:59.0513 0484 [ E20DDDFBD0DBE7D8EAD4D7A51D654367 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
12:53:59.0653 0484 AMD External Events Utility - ok
12:53:59.0700 0484 AMD FUEL Service - ok
12:53:59.0731 0484 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
12:53:59.0778 0484 amdide - ok
12:53:59.0793 0484 [ 6A2EEB0C4133B20773BB3DD0B7B377B4 ] amdiox64 C:\Windows\system32\DRIVERS\amdiox64.sys
12:53:59.0825 0484 amdiox64 - ok
12:53:59.0871 0484 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
12:53:59.0934 0484 AmdK8 - ok
12:54:00.0558 0484 [ 4284FB1240537A33E6EC417EFD87D40F ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
12:54:00.0807 0484 amdkmdag - ok
12:54:00.0917 0484 [ 6C25C497E05EFD0CB6033A0444FC9B51 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
12:54:00.0979 0484 amdkmdap - ok
12:54:01.0057 0484 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
12:54:01.0119 0484 AmdPPM - ok
12:54:01.0151 0484 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
12:54:01.0166 0484 amdsata - ok
12:54:01.0213 0484 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
12:54:01.0260 0484 amdsbs - ok
12:54:01.0275 0484 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
12:54:01.0291 0484 amdxata - ok
12:54:01.0338 0484 [ 5B25D1A753CC3A3EDB909BB759AC1098 ] AODDriver4.1 C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys
12:54:01.0353 0484 AODDriver4.1 - ok
12:54:01.0447 0484 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
12:54:02.0180 0484 AppID - ok
12:54:02.0243 0484 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
12:54:02.0367 0484 AppIDSvc - ok
12:54:02.0399 0484 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
12:54:02.0461 0484 Appinfo - ok
12:54:02.0508 0484 [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt C:\Windows\System32\appmgmts.dll
12:54:02.0570 0484 AppMgmt - ok
12:54:02.0648 0484 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
12:54:02.0695 0484 arc - ok
12:54:02.0711 0484 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
12:54:02.0726 0484 arcsas - ok
12:54:02.0757 0484 [ 4FCAEF0C5BE7629AEB878998E0FE959B ] aswFsBlk C:\Windows\system32\drivers\aswFsBlk.sys
12:54:02.0773 0484 aswFsBlk - ok
12:54:02.0820 0484 [ B50CDD87772D6A11CB90924AAD399DF8 ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys
12:54:02.0851 0484 aswMonFlt - ok
12:54:02.0882 0484 [ 57768C7DB4681F2510F247F82EF31D4F ] aswRdr C:\Windows\System32\Drivers\aswrdr2.sys
12:54:02.0898 0484 aswRdr - ok
12:54:02.0976 0484 [ E71D826A1F3CE9C9DE3E77F2D02AFFBF ] aswSnx C:\Windows\system32\drivers\aswSnx.sys
12:54:03.0023 0484 aswSnx - ok
12:54:03.0101 0484 [ 538A32E2C99BF073D4CA76C30BEDAA60 ] aswSP C:\Windows\system32\drivers\aswSP.sys
12:54:03.0147 0484 aswSP - ok
12:54:03.0163 0484 [ 6EDC79D73745FD44C41B55B2D13D0B70 ] aswTdi C:\Windows\system32\drivers\aswTdi.sys
12:54:03.0179 0484 aswTdi - ok
12:54:03.0210 0484 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
12:54:03.0319 0484 AsyncMac - ok
12:54:03.0335 0484 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
12:54:03.0350 0484 atapi - ok
12:54:03.0444 0484 [ 24464B908E143D2561E9E452FEE97309 ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys
12:54:03.0475 0484 AtiHDAudioService - ok
12:54:03.0678 0484 [ 4284FB1240537A33E6EC417EFD87D40F ] atikmdag C:\Windows\system32\DRIVERS\atikmdag.sys
12:54:03.0787 0484 atikmdag - ok
12:54:03.0927 0484 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
12:54:04.0052 0484 AudioEndpointBuilder - ok
12:54:04.0068 0484 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
12:54:04.0115 0484 AudioSrv - ok
12:54:04.0161 0484 [ 8FA553E9AE69808D99C164733A0F9590 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
12:54:04.0161 0484 avast! Antivirus - ok
12:54:04.0255 0484 [ C6F4C466B654C1BE98AF31418BB5AC30 ] AVM WLAN Connection Service C:\Program Files (x86)\avmwlanstick\WlanNetService.exe
12:54:04.0333 0484 AVM WLAN Connection Service ( UnsignedFile.Multi.Generic ) - warning
12:54:04.0333 0484 AVM WLAN Connection Service - detected UnsignedFile.Multi.Generic (1)
12:54:04.0380 0484 [ 1DC2F715792CF33428AD7993ACBD224D ] avmeject C:\Windows\system32\drivers\avmeject.sys
12:54:04.0427 0484 avmeject - ok
12:54:04.0489 0484 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
12:54:04.0598 0484 AxInstSV - ok
12:54:04.0629 0484 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
12:54:04.0692 0484 b06bdrv - ok
12:54:04.0801 0484 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
12:54:04.0848 0484 b57nd60a - ok
12:54:04.0941 0484 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
12:54:05.0004 0484 BDESVC - ok
12:54:05.0051 0484 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
12:54:05.0144 0484 Beep - ok
12:54:05.0316 0484 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
12:54:05.0394 0484 BFE - ok
12:54:05.0441 0484 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
12:54:05.0519 0484 BITS - ok
12:54:05.0550 0484 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
12:54:05.0597 0484 blbdrive - ok
12:54:05.0628 0484 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
12:54:05.0690 0484 bowser - ok
12:54:05.0737 0484 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
12:54:05.0955 0484 BrFiltLo - ok
12:54:06.0018 0484 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
12:54:06.0158 0484 BrFiltUp - ok
12:54:06.0283 0484 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
12:54:06.0392 0484 Browser - ok
12:54:06.0486 0484 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
12:54:06.0657 0484 Brserid - ok
12:54:06.0704 0484 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
12:54:06.0782 0484 BrSerWdm - ok
12:54:06.0798 0484 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
12:54:06.0845 0484 BrUsbMdm - ok
12:54:06.0923 0484 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
12:54:06.0954 0484 BrUsbSer - ok
12:54:07.0032 0484 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
12:54:07.0079 0484 BTHMODEM - ok
12:54:07.0203 0484 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
12:54:07.0297 0484 bthserv - ok
12:54:07.0313 0484 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
12:54:07.0375 0484 cdfs - ok
12:54:07.0515 0484 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
12:54:07.0562 0484 cdrom - ok
12:54:07.0671 0484 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
12:54:07.0765 0484 CertPropSvc - ok
12:54:07.0812 0484 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
12:54:07.0874 0484 circlass - ok
12:54:08.0015 0484 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
12:54:08.0046 0484 CLFS - ok
12:54:08.0171 0484 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
12:54:08.0202 0484 clr_optimization_v2.0.50727_32 - ok
12:54:08.0311 0484 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
12:54:08.0342 0484 clr_optimization_v2.0.50727_64 - ok
12:54:08.0498 0484 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
12:54:08.0607 0484 clr_optimization_v4.0.30319_32 - ok
12:54:08.0654 0484 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
12:54:08.0701 0484 clr_optimization_v4.0.30319_64 - ok
12:54:08.0763 0484 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
12:54:08.0826 0484 CmBatt - ok
12:54:08.0857 0484 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
12:54:08.0904 0484 cmdide - ok
12:54:08.0997 0484 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
12:54:09.0075 0484 CNG - ok
12:54:09.0122 0484 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
12:54:09.0153 0484 Compbatt - ok
12:54:09.0216 0484 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
12:54:09.0278 0484 CompositeBus - ok
12:54:09.0309 0484 COMSysApp - ok
12:54:09.0341 0484 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
12:54:09.0387 0484 crcdisk - ok
12:54:09.0497 0484 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
12:54:09.0590 0484 CryptSvc - ok
12:54:09.0715 0484 [ 54DA3DFD29ED9F1619B6F53F3CE55E49 ] CSC C:\Windows\system32\drivers\csc.sys
12:54:09.0809 0484 CSC - ok
12:54:10.0011 0484 [ 3AB183AB4D2C79DCF459CD2C1266B043 ] CscService C:\Windows\System32\cscsvc.dll
12:54:10.0074 0484 CscService - ok
12:54:10.0136 0484 [ 44BDDEB03C84A1C993C992FFB5700357 ] CVirtA C:\Windows\system32\DRIVERS\CVirtA64.sys
12:54:10.0167 0484 CVirtA - ok
12:54:10.0261 0484 [ 98C413E1A2FB6E5A4C101C25B3D0B275 ] CVPND C:\Program Files (x86)\Cisco Systems\VPN Client\cvpnd.exe
12:54:10.0323 0484 CVPND - ok
12:54:10.0339 0484 [ 79AF0E203D089AF442A3F70ED00A37FB ] CVPNDRVA C:\Windows\system32\Drivers\CVPNDRVA.sys
12:54:10.0355 0484 CVPNDRVA - ok
12:54:10.0511 0484 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
12:54:10.0651 0484 DcomLaunch - ok
12:54:10.0698 0484 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
12:54:10.0760 0484 defragsvc - ok
12:54:10.0791 0484 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
12:54:10.0885 0484 DfsC - ok
12:54:10.0916 0484 [ B9430166FEB246F6070A62B3554932C9 ] dg_ssudbus C:\Windows\system32\DRIVERS\ssudbus.sys
12:54:10.0932 0484 dg_ssudbus - ok
12:54:10.0947 0484 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
12:54:10.0994 0484 Dhcp - ok
12:54:11.0025 0484 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
12:54:11.0057 0484 discache - ok
12:54:11.0072 0484 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
12:54:11.0088 0484 Disk - ok
12:54:11.0119 0484 [ 05CB5910B3CA6019FC3CCA815EE06FFB ] DNE C:\Windows\system32\DRIVERS\dne64x.sys
12:54:11.0135 0484 DNE - ok
12:54:11.0150 0484 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
12:54:11.0197 0484 Dnscache - ok
12:54:11.0244 0484 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
12:54:11.0291 0484 dot3svc - ok
12:54:11.0337 0484 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
12:54:11.0415 0484 DPS - ok
12:54:11.0462 0484 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
12:54:11.0525 0484 drmkaud - ok
12:54:11.0759 0484 [ 46571ED73AE84469DCA53081D33CF3C8 ] dtsoftbus01 C:\Windows\system32\DRIVERS\dtsoftbus01.sys
12:54:11.0790 0484 dtsoftbus01 - ok
12:54:12.0211 0484 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
12:54:12.0258 0484 DXGKrnl - ok
12:54:12.0289 0484 [ EDC6E9C057C9D7F83EEA22B4CEF5DCAD ] E1G60 C:\Windows\system32\DRIVERS\E1G6032E.sys
12:54:12.0305 0484 E1G60 - ok
12:54:12.0336 0484 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
12:54:12.0398 0484 EapHost - ok
12:54:12.0461 0484 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
12:54:12.0523 0484 ebdrv - ok
12:54:12.0570 0484 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
12:54:12.0648 0484 EFS - ok
12:54:12.0726 0484 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
12:54:12.0835 0484 ehRecvr - ok
12:54:12.0882 0484 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
12:54:12.0975 0484 ehSched - ok
12:54:13.0085 0484 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
12:54:13.0131 0484 elxstor - ok
12:54:13.0147 0484 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
12:54:13.0163 0484 ErrDev - ok
12:54:13.0194 0484 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
12:54:13.0241 0484 EventSystem - ok
12:54:13.0256 0484 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
12:54:13.0303 0484 exfat - ok
12:54:13.0334 0484 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
12:54:13.0381 0484 fastfat - ok
12:54:13.0475 0484 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
12:54:13.0506 0484 Fax - ok
12:54:13.0521 0484 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
12:54:13.0537 0484 fdc - ok
12:54:13.0553 0484 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
12:54:13.0599 0484 fdPHost - ok
12:54:13.0599 0484 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
12:54:13.0662 0484 FDResPub - ok
12:54:13.0677 0484 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
12:54:13.0677 0484 FileInfo - ok
12:54:13.0693 0484 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
12:54:13.0740 0484 Filetrace - ok
12:54:13.0771 0484 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
12:54:13.0787 0484 flpydisk - ok
12:54:13.0865 0484 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
12:54:13.0896 0484 FltMgr - ok
12:54:14.0052 0484 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
12:54:14.0114 0484 FontCache - ok
12:54:14.0208 0484 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
12:54:14.0239 0484 FontCache3.0.0.0 - ok
12:54:14.0286 0484 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
12:54:14.0333 0484 FsDepends - ok
12:54:14.0364 0484 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
12:54:14.0379 0484 Fs_Rec - ok
12:54:14.0411 0484 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
12:54:14.0426 0484 fvevol - ok
12:54:14.0582 0484 [ 444534CBA693DD23C1CC589681E01656 ] FWLANUSB C:\Windows\system32\DRIVERS\fwlanusb.sys
12:54:14.0645 0484 FWLANUSB - ok
12:54:14.0660 0484 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
12:54:14.0676 0484 gagp30kx - ok
12:54:14.0723 0484 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
12:54:14.0769 0484 gpsvc - ok
12:54:14.0801 0484 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
12:54:14.0879 0484 hcw85cir - ok
12:54:14.0925 0484 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
12:54:14.0972 0484 HdAudAddService - ok
12:54:15.0019 0484 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
12:54:15.0050 0484 HDAudBus - ok
12:54:15.0066 0484 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
12:54:15.0144 0484 HidBatt - ok
12:54:15.0159 0484 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
12:54:15.0191 0484 HidBth - ok
12:54:15.0253 0484 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
12:54:15.0315 0484 HidIr - ok
12:54:15.0347 0484 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
12:54:15.0393 0484 hidserv - ok
12:54:15.0425 0484 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
12:54:15.0440 0484 HidUsb - ok
12:54:15.0471 0484 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
12:54:15.0565 0484 hkmsvc - ok
12:54:15.0612 0484 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
12:54:15.0705 0484 HomeGroupListener - ok
12:54:15.0752 0484 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
12:54:15.0783 0484 HomeGroupProvider - ok
12:54:15.0815 0484 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
12:54:15.0846 0484 HpSAMD - ok
12:54:15.0908 0484 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
12:54:15.0986 0484 HTTP - ok
12:54:16.0017 0484 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
12:54:16.0017 0484 hwpolicy - ok
12:54:16.0049 0484 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
12:54:16.0080 0484 i8042prt - ok
12:54:16.0158 0484 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
12:54:16.0189 0484 iaStorV - ok
12:54:16.0236 0484 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
12:54:16.0267 0484 idsvc - ok
12:54:16.0283 0484 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
12:54:16.0314 0484 iirsp - ok
12:54:16.0345 0484 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
12:54:16.0392 0484 IKEEXT - ok
12:54:16.0735 0484 [ C2F868881D48A568B525255F084EF063 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
12:54:16.0797 0484 IntcAzAudAddService - ok
12:54:16.0829 0484 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
12:54:16.0844 0484 intelide - ok
12:54:16.0875 0484 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
12:54:16.0907 0484 intelppm - ok
12:54:16.0922 0484 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
12:54:16.0969 0484 IPBusEnum - ok
12:54:17.0000 0484 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
12:54:17.0094 0484 IpFilterDriver - ok
12:54:17.0125 0484 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
12:54:17.0156 0484 iphlpsvc - ok
12:54:17.0187 0484 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
12:54:17.0203 0484 IPMIDRV - ok
12:54:17.0219 0484 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
12:54:17.0265 0484 IPNAT - ok
12:54:17.0281 0484 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
12:54:17.0328 0484 IRENUM - ok
12:54:17.0343 0484 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
12:54:17.0359 0484 isapnp - ok
12:54:17.0359 0484 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
12:54:17.0375 0484 iScsiPrt - ok
12:54:17.0390 0484 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
12:54:17.0406 0484 kbdclass - ok
12:54:17.0421 0484 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
12:54:17.0421 0484 kbdhid - ok
12:54:17.0437 0484 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
12:54:17.0453 0484 KeyIso - ok
12:54:17.0484 0484 KMService - ok
12:54:17.0499 0484 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
12:54:17.0515 0484 KSecDD - ok
12:54:17.0531 0484 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
12:54:17.0546 0484 KSecPkg - ok
12:54:17.0562 0484 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
12:54:17.0593 0484 ksthunk - ok
12:54:17.0640 0484 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
12:54:17.0687 0484 KtmRm - ok
12:54:17.0702 0484 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
12:54:17.0749 0484 LanmanServer - ok
12:54:17.0780 0484 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
12:54:17.0843 0484 LanmanWorkstation - ok
12:54:17.0858 0484 [ FA529FB35694C24BF98A9EF67C1CD9D0 ] LGBusEnum C:\Windows\system32\drivers\LGBusEnum.sys
12:54:17.0874 0484 LGBusEnum - ok
12:54:17.0905 0484 [ 94B29CE153765E768F004FB3440BE2B0 ] LGVirHid C:\Windows\system32\drivers\LGVirHid.sys
12:54:17.0905 0484 LGVirHid - ok
12:54:17.0936 0484 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
12:54:17.0983 0484 lltdio - ok
12:54:18.0030 0484 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
12:54:18.0077 0484 lltdsvc - ok
12:54:18.0092 0484 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
12:54:18.0123 0484 lmhosts - ok
12:54:18.0139 0484 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
12:54:18.0155 0484 LSI_FC - ok
12:54:18.0170 0484 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
12:54:18.0170 0484 LSI_SAS - ok
12:54:18.0201 0484 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
12:54:18.0201 0484 LSI_SAS2 - ok
12:54:18.0217 0484 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
12:54:18.0233 0484 LSI_SCSI - ok
12:54:18.0248 0484 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
12:54:18.0295 0484 luafv - ok
12:54:18.0451 0484 [ 5747BC465ABEA2858C5D037252AED84E ] LVUVC64 C:\Windows\system32\DRIVERS\lvuvc64.sys
12:54:18.0545 0484 LVUVC64 - ok
12:54:18.0560 0484 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
12:54:18.0591 0484 Mcx2Svc - ok
12:54:18.0607 0484 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
12:54:18.0623 0484 megasas - ok
12:54:18.0669 0484 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
12:54:18.0701 0484 MegaSR - ok
12:54:18.0747 0484 Microsoft SharePoint Workspace Audit Service - ok
12:54:18.0763 0484 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
12:54:18.0825 0484 MMCSS - ok
12:54:18.0857 0484 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
12:54:18.0888 0484 Modem - ok
12:54:18.0919 0484 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
12:54:18.0950 0484 monitor - ok
12:54:18.0981 0484 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
12:54:18.0981 0484 mouclass - ok
12:54:19.0013 0484 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
12:54:19.0028 0484 mouhid - ok
12:54:19.0059 0484 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
12:54:19.0059 0484 mountmgr - ok
12:54:19.0106 0484 [ 51A84B690DF519DCF656F780243D953E ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
12:54:19.0122 0484 MozillaMaintenance - ok
12:54:19.0137 0484 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
12:54:19.0153 0484 mpio - ok
12:54:19.0153 0484 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
12:54:19.0184 0484 mpsdrv - ok
12:54:19.0231 0484 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
12:54:19.0278 0484 MpsSvc - ok
12:54:19.0309 0484 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
12:54:19.0325 0484 MRxDAV - ok
12:54:19.0356 0484 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
12:54:19.0387 0484 mrxsmb - ok
12:54:19.0403 0484 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
12:54:19.0449 0484 mrxsmb10 - ok
12:54:19.0465 0484 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
12:54:19.0481 0484 mrxsmb20 - ok
12:54:19.0496 0484 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
12:54:19.0512 0484 msahci - ok
12:54:19.0543 0484 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
12:54:19.0559 0484 msdsm - ok
12:54:19.0574 0484 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
12:54:19.0590 0484 MSDTC - ok
12:54:19.0621 0484 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
12:54:19.0652 0484 Msfs - ok
12:54:19.0652 0484 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
12:54:19.0699 0484 mshidkmdf - ok
12:54:19.0715 0484 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
12:54:19.0730 0484 msisadrv - ok
12:54:19.0761 0484 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
12:54:19.0808 0484 MSiSCSI - ok
12:54:19.0808 0484 msiserver - ok
12:54:19.0839 0484 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
12:54:19.0871 0484 MSKSSRV - ok
12:54:19.0886 0484 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
12:54:19.0917 0484 MSPCLOCK - ok
12:54:19.0933 0484 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
12:54:19.0964 0484 MSPQM - ok
12:54:19.0995 0484 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
12:54:20.0011 0484 MsRPC - ok
12:54:20.0027 0484 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
12:54:20.0027 0484 mssmbios - ok
12:54:20.0042 0484 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
12:54:20.0089 0484 MSTEE - ok
12:54:20.0089 0484 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
12:54:20.0105 0484 MTConfig - ok
12:54:20.0120 0484 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
12:54:20.0136 0484 Mup - ok
12:54:20.0167 0484 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
12:54:20.0198 0484 napagent - ok
12:54:20.0229 0484 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
12:54:20.0261 0484 NativeWifiP - ok
12:54:20.0370 0484 [ B498A14133BD09AD0817590ACE4470AD ] NBService C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe
12:54:20.0401 0484 NBService - ok
12:54:20.0432 0484 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
12:54:20.0448 0484 NDIS - ok
12:54:20.0479 0484 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
12:54:20.0510 0484 NdisCap - ok
12:54:20.0541 0484 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
12:54:20.0588 0484 NdisTapi - ok
12:54:20.0635 0484 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
12:54:20.0697 0484 Ndisuio - ok
12:54:20.0713 0484 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
12:54:20.0760 0484 NdisWan - ok
12:54:20.0791 0484 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
12:54:20.0822 0484 NDProxy - ok
12:54:20.0838 0484 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
12:54:20.0885 0484 NetBIOS - ok
12:54:20.0916 0484 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
12:54:20.0963 0484 NetBT - ok
12:54:20.0963 0484 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
12:54:20.0978 0484 Netlogon - ok
12:54:21.0025 0484 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
12:54:21.0087 0484 Netman - ok
12:54:21.0103 0484 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
12:54:21.0134 0484 netprofm - ok
12:54:21.0165 0484 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
12:54:21.0181 0484 NetTcpPortSharing - ok
12:54:21.0197 0484 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
12:54:21.0212 0484 nfrd960 - ok
12:54:21.0228 0484 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
12:54:21.0259 0484 NlaSvc - ok
12:54:21.0321 0484 [ A328A46D87BB92CE4D8A4528E9D84787 ] NMIndexingService C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe
12:54:21.0368 0484 NMIndexingService - ok
12:54:21.0384 0484 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
12:54:21.0415 0484 Npfs - ok
12:54:21.0446 0484 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
12:54:21.0477 0484 nsi - ok
12:54:21.0493 0484 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
12:54:21.0524 0484 nsiproxy - ok
12:54:21.0571 0484 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
12:54:21.0602 0484 Ntfs - ok
12:54:21.0618 0484 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
12:54:21.0649 0484 Null - ok
12:54:21.0680 0484 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
12:54:21.0727 0484 nvraid - ok
12:54:21.0743 0484 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
12:54:21.0758 0484 nvstor - ok
12:54:21.0774 0484 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
12:54:21.0789 0484 nv_agp - ok
12:54:21.0789 0484 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
12:54:21.0805 0484 ohci1394 - ok
12:54:21.0852 0484 [ 4965B005492CBA7719E82B71E3245495 ] ose64 C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
12:54:21.0867 0484 ose64 - ok
12:54:21.0992 0484 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
12:54:22.0117 0484 osppsvc - ok
12:54:22.0148 0484 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
12:54:22.0195 0484 p2pimsvc - ok
12:54:22.0211 0484 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
12:54:22.0226 0484 p2psvc - ok
12:54:22.0242 0484 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
12:54:22.0257 0484 Parport - ok
12:54:22.0289 0484 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
12:54:22.0289 0484 partmgr - ok
12:54:22.0304 0484 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
12:54:22.0335 0484 PcaSvc - ok
12:54:22.0367 0484 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
12:54:22.0382 0484 pci - ok
12:54:22.0398 0484 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
12:54:22.0413 0484 pciide - ok
12:54:22.0429 0484 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
12:54:22.0445 0484 pcmcia - ok
12:54:22.0445 0484 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
12:54:22.0460 0484 pcw - ok
12:54:22.0476 0484 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
12:54:22.0523 0484 PEAUTH - ok
12:54:22.0554 0484 [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
12:54:22.0601 0484 PeerDistSvc - ok
12:54:22.0663 0484 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
12:54:22.0710 0484 PerfHost - ok
12:54:22.0757 0484 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
12:54:22.0835 0484 pla - ok
12:54:22.0866 0484 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
12:54:22.0928 0484 PlugPlay - ok
12:54:22.0959 0484 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
12:54:22.0975 0484 PNRPAutoReg - ok
12:54:23.0006 0484 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
12:54:23.0022 0484 PNRPsvc - ok
12:54:23.0053 0484 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
12:54:23.0100 0484 PolicyAgent - ok
12:54:23.0131 0484 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
12:54:23.0162 0484 Power - ok
12:54:23.0193 0484 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
12:54:23.0225 0484 PptpMiniport - ok
12:54:23.0240 0484 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
12:54:23.0271 0484 Processor - ok
12:54:23.0287 0484 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
12:54:23.0334 0484 ProfSvc - ok
12:54:23.0334 0484 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
12:54:23.0349 0484 ProtectedStorage - ok
12:54:23.0381 0484 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
12:54:23.0412 0484 Psched - ok
12:54:23.0474 0484 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
12:54:23.0521 0484 ql2300 - ok
12:54:23.0537 0484 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
12:54:23.0552 0484 ql40xx - ok
12:54:23.0583 0484 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
12:54:23.0599 0484 QWAVE - ok
12:54:23.0615 0484 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
12:54:23.0646 0484 QWAVEdrv - ok
12:54:23.0646 0484 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
12:54:23.0677 0484 RasAcd - ok
12:54:23.0708 0484 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
12:54:23.0739 0484 RasAgileVpn - ok
12:54:23.0755 0484 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
12:54:23.0786 0484 RasAuto - ok
12:54:23.0817 0484 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
12:54:23.0864 0484 Rasl2tp - ok
12:54:23.0864 0484 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
12:54:23.0927 0484 RasMan - ok
12:54:23.0942 0484 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
12:54:23.0973 0484 RasPppoe - ok
12:54:23.0989 0484 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
12:54:24.0036 0484 RasSstp - ok
12:54:24.0051 0484 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
12:54:24.0083 0484 rdbss - ok
12:54:24.0098 0484 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
12:54:24.0129 0484 rdpbus - ok
12:54:24.0145 0484 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
12:54:24.0176 0484 RDPCDD - ok
12:54:24.0207 0484 [ 1B6163C503398B23FF8B939C67747683 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
12:54:24.0239 0484 RDPDR - ok
12:54:24.0239 0484 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
12:54:24.0285 0484 RDPENCDD - ok
12:54:24.0301 0484 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
12:54:24.0332 0484 RDPREFMP - ok
12:54:24.0363 0484 [ 70CBA1A0C98600A2AA1863479B35CB90 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
12:54:24.0395 0484 RdpVideoMiniport - ok
12:54:24.0410 0484 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
12:54:24.0457 0484 RDPWD - ok
12:54:24.0473 0484 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
12:54:24.0488 0484 rdyboost - ok
12:54:24.0519 0484 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
12:54:24.0551 0484 RemoteAccess - ok
12:54:24.0566 0484 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
12:54:24.0644 0484 RemoteRegistry - ok
12:54:24.0675 0484 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
12:54:24.0707 0484 RpcEptMapper - ok
12:54:24.0722 0484 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
12:54:24.0738 0484 RpcLocator - ok
12:54:24.0769 0484 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
12:54:24.0800 0484 RpcSs - ok
12:54:24.0831 0484 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
12:54:24.0863 0484 rspndr - ok
12:54:24.0909 0484 [ ABCB5A38A0D85BDF69B7877E1AD1EED5 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
12:54:24.0956 0484 RTL8167 - ok
12:54:24.0972 0484 [ E60C0A09F997826C7627B244195AB581 ] s3cap C:\Windows\system32\drivers\vms3cap.sys
12:54:25.0003 0484 s3cap - ok
12:54:25.0019 0484 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
12:54:25.0019 0484 SamSs - ok
12:54:25.0034 0484 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
12:54:25.0050 0484 sbp2port - ok
12:54:25.0065 0484 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
12:54:25.0112 0484 SCardSvr - ok
12:54:25.0128 0484 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
12:54:25.0175 0484 scfilter - ok
12:54:25.0221 0484 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
12:54:25.0284 0484 Schedule - ok
12:54:25.0315 0484 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
12:54:25.0362 0484 SCPolicySvc - ok
12:54:25.0393 0484 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
12:54:25.0440 0484 SDRSVC - ok
12:54:25.0455 0484 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
12:54:25.0502 0484 secdrv - ok
12:54:25.0518 0484 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
12:54:25.0565 0484 seclogon - ok
12:54:25.0580 0484 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
12:54:25.0627 0484 SENS - ok
12:54:25.0643 0484 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
12:54:25.0674 0484 SensrSvc - ok
12:54:25.0705 0484 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
12:54:25.0721 0484 Serenum - ok
12:54:25.0736 0484 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
12:54:25.0752 0484 Serial - ok
12:54:25.0767 0484 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
12:54:25.0783 0484 sermouse - ok
12:54:25.0814 0484 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
12:54:25.0845 0484 SessionEnv - ok
12:54:25.0877 0484 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
12:54:25.0923 0484 sffdisk - ok
12:54:25.0939 0484 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
12:54:25.0970 0484 sffp_mmc - ok
12:54:25.0970 0484 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
12:54:26.0001 0484 sffp_sd - ok
12:54:26.0017 0484 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
12:54:26.0033 0484 sfloppy - ok
12:54:26.0048 0484 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
12:54:26.0079 0484 SharedAccess - ok
12:54:26.0111 0484 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
12:54:26.0157 0484 ShellHWDetection - ok
12:54:26.0157 0484 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
12:54:26.0173 0484 SiSRaid2 - ok
12:54:26.0189 0484 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
12:54:26.0204 0484 SiSRaid4 - ok
12:54:26.0220 0484 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
12:54:26.0251 0484 Smb - ok
12:54:26.0298 0484 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
12:54:26.0313 0484 SNMPTRAP - ok
12:54:26.0345 0484 [ 12583AF6CBE0050651EAF2723B3AD7B3 ] speedfan C:\Windows\syswow64\speedfan.sys
12:54:26.0376 0484 speedfan - ok
12:54:26.0391 0484 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
12:54:26.0407 0484 spldr - ok
12:54:26.0438 0484 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
12:54:26.0516 0484 Spooler - ok
12:54:26.0610 0484 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
12:54:26.0703 0484 sppsvc - ok
12:54:26.0719 0484 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
12:54:26.0750 0484 sppuinotify - ok
12:54:26.0781 0484 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
12:54:26.0828 0484 srv - ok
12:54:26.0844 0484 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
12:54:26.0875 0484 srv2 - ok
12:54:26.0875 0484 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
12:54:26.0906 0484 srvnet - ok
12:54:26.0937 0484 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
12:54:26.0984 0484 SSDPSRV - ok
12:54:27.0000 0484 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
12:54:27.0047 0484 SstpSvc - ok
12:54:27.0078 0484 [ C692C94FE55CAD0633440236022C27B3 ] ssudmdm C:\Windows\system32\DRIVERS\ssudmdm.sys
12:54:27.0093 0484 ssudmdm - ok
12:54:27.0140 0484 Steam Client Service - ok
12:54:27.0156 0484 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
12:54:27.0171 0484 stexstor - ok
12:54:27.0203 0484 [ DECACB6921DED1A38642642685D77DAC ] StillCam C:\Windows\system32\DRIVERS\serscan.sys
12:54:27.0218 0484 StillCam - ok
12:54:27.0249 0484 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
12:54:27.0296 0484 stisvc - ok
12:54:27.0312 0484 [ 7785DC213270D2FC066538DAF94087E7 ] storflt C:\Windows\system32\drivers\vmstorfl.sys
12:54:27.0312 0484 storflt - ok
12:54:27.0359 0484 [ D34E4943D5AC096C8EDEEBFD80D76E23 ] storvsc C:\Windows\system32\drivers\storvsc.sys
12:54:27.0405 0484 storvsc - ok
12:54:27.0421 0484 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
12:54:27.0437 0484 swenum - ok
12:54:27.0468 0484 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
12:54:27.0515 0484 swprv - ok
12:54:27.0530 0484 Synth3dVsc - ok
12:54:27.0577 0484 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
12:54:27.0624 0484 SysMain - ok
12:54:27.0639 0484 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
12:54:27.0671 0484 TabletInputService - ok
12:54:27.0702 0484 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
12:54:27.0733 0484 TapiSrv - ok
12:54:27.0764 0484 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
12:54:27.0795 0484 TBS - ok
12:54:27.0842 0484 [ 37608401DFDB388CAF66917F6B2D6FB0 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
12:54:27.0873 0484 Tcpip - ok
12:54:27.0905 0484 [ 37608401DFDB388CAF66917F6B2D6FB0 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
12:54:27.0936 0484 TCPIP6 - ok
12:54:27.0951 0484 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
12:54:27.0983 0484 tcpipreg - ok
12:54:27.0998 0484 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
12:54:28.0045 0484 TDPIPE - ok
12:54:28.0076 0484 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
12:54:28.0123 0484 TDTCP - ok
12:54:28.0139 0484 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
12:54:28.0170 0484 tdx - ok
12:54:28.0201 0484 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
12:54:28.0217 0484 TermDD - ok
12:54:28.0248 0484 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
12:54:28.0295 0484 TermService - ok
12:54:28.0310 0484 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
12:54:28.0341 0484 Themes - ok
12:54:28.0357 0484 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
12:54:28.0388 0484 THREADORDER - ok
12:54:28.0404 0484 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
12:54:28.0451 0484 TrkWks - ok
12:54:28.0497 0484 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
12:54:28.0575 0484 TrustedInstaller - ok
12:54:28.0591 0484 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
12:54:28.0622 0484 tssecsrv - ok
12:54:28.0638 0484 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
12:54:28.0669 0484 TsUsbFlt - ok
12:54:28.0669 0484 tsusbhub - ok
12:54:28.0716 0484 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
12:54:28.0794 0484 tunnel - ok
12:54:28.0809 0484 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
12:54:28.0825 0484 uagp35 - ok
12:54:28.0841 0484 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
12:54:28.0872 0484 udfs - ok
12:54:28.0887 0484 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
12:54:28.0919 0484 UI0Detect - ok
12:54:28.0934 0484 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
12:54:28.0950 0484 uliagpkx - ok
12:54:28.0981 0484 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
12:54:28.0997 0484 umbus - ok
12:54:29.0012 0484 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
12:54:29.0028 0484 UmPass - ok
12:54:29.0059 0484 [ A293DCD756D04D8492A750D03B9A297C ] UmRdpService C:\Windows\System32\umrdp.dll
12:54:29.0090 0484 UmRdpService - ok
12:54:29.0121 0484 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
12:54:29.0153 0484 upnphost - ok
12:54:29.0168 0484 [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
12:54:29.0199 0484 usbaudio - ok
12:54:29.0215 0484 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
12:54:29.0277 0484 usbccgp - ok
12:54:29.0309 0484 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
12:54:29.0340 0484 usbcir - ok
12:54:29.0371 0484 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
12:54:29.0402 0484 usbehci - ok
12:54:29.0418 0484 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
12:54:29.0449 0484 usbhub - ok
12:54:29.0480 0484 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
12:54:29.0511 0484 usbohci - ok
12:54:29.0527 0484 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
12:54:29.0558 0484 usbprint - ok
12:54:29.0574 0484 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
12:54:29.0636 0484 USBSTOR - ok
12:54:29.0652 0484 [ 81FB2216D3A60D1284455D511797DB3D ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
12:54:29.0683 0484 usbuhci - ok
12:54:29.0699 0484 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
12:54:29.0730 0484 usbvideo - ok
12:54:29.0761 0484 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
12:54:29.0808 0484 UxSms - ok
12:54:29.0823 0484 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
12:54:29.0839 0484 VaultSvc - ok
12:54:29.0870 0484 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
12:54:29.0870 0484 vdrvroot - ok
12:54:29.0901 0484 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
12:54:29.0933 0484 vds - ok
12:54:29.0948 0484 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
12:54:29.0964 0484 vga - ok
12:54:29.0979 0484 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
12:54:30.0026 0484 VgaSave - ok
12:54:30.0026 0484 VGPU - ok
12:54:30.0042 0484 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
12:54:30.0057 0484 vhdmp - ok
12:54:30.0073 0484 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
12:54:30.0089 0484 viaide - ok
12:54:30.0104 0484 [ 86EA3E79AE350FEA5331A1303054005F ] vmbus C:\Windows\system32\drivers\vmbus.sys
12:54:30.0120 0484 vmbus - ok
12:54:30.0135 0484 [ 7DE90B48F210D29649380545DB45A187 ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
12:54:30.0151 0484 VMBusHID - ok
12:54:30.0151 0484 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
12:54:30.0167 0484 volmgr - ok
12:54:30.0182 0484 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
12:54:30.0198 0484 volmgrx - ok
12:54:30.0213 0484 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
12:54:30.0229 0484 volsnap - ok
12:54:30.0245 0484 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
12:54:30.0260 0484 vsmraid - ok
12:54:30.0291 0484 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
12:54:30.0369 0484 VSS - ok
12:54:30.0385 0484 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
12:54:30.0432 0484 vwifibus - ok
12:54:30.0479 0484 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
12:54:30.0557 0484 W32Time - ok
12:54:30.0572 0484 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
12:54:30.0635 0484 WacomPen - ok
12:54:30.0697 0484 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
12:54:30.0791 0484 WANARP - ok
12:54:30.0791 0484 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
12:54:30.0822 0484 Wanarpv6 - ok
12:54:30.0993 0484 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
12:54:31.0071 0484 wbengine - ok
12:54:31.0134 0484 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
12:54:31.0196 0484 WbioSrvc - ok
12:54:31.0274 0484 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
12:54:31.0321 0484 wcncsvc - ok
12:54:31.0337 0484 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
12:54:31.0383 0484 WcsPlugInService - ok
12:54:31.0415 0484 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
12:54:31.0430 0484 Wd - ok
12:54:31.0477 0484 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
12:54:31.0524 0484 Wdf01000 - ok
12:54:31.0524 0484 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
12:54:31.0586 0484 WdiServiceHost - ok
12:54:31.0586 0484 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
12:54:31.0602 0484 WdiSystemHost - ok
12:54:31.0617 0484 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
12:54:31.0664 0484 WebClient - ok
12:54:31.0680 0484 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
12:54:31.0727 0484 Wecsvc - ok
12:54:31.0742 0484 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
12:54:31.0789 0484 wercplsupport - ok
12:54:31.0805 0484 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
12:54:31.0851 0484 WerSvc - ok
12:54:31.0867 0484 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
12:54:31.0898 0484 WfpLwf - ok
12:54:31.0914 0484 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
12:54:31.0929 0484 WIMMount - ok
12:54:31.0929 0484 WinDefend - ok
12:54:31.0945 0484 WinHttpAutoProxySvc - ok
12:54:31.0992 0484 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
12:54:32.0039 0484 Winmgmt - ok
12:54:32.0085 0484 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
12:54:32.0132 0484 WinRM - ok
12:54:32.0179 0484 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
12:54:32.0226 0484 WinUsb - ok
12:54:32.0273 0484 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
12:54:32.0319 0484 Wlansvc - ok
12:54:32.0429 0484 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
12:54:32.0475 0484 wlidsvc - ok
12:54:32.0507 0484 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
12:54:32.0522 0484 WmiAcpi - ok
12:54:32.0538 0484 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
12:54:32.0569 0484 wmiApSrv - ok
12:54:32.0585 0484 WMPNetworkSvc - ok
12:54:32.0600 0484 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
12:54:32.0631 0484 WPCSvc - ok
12:54:32.0663 0484 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
12:54:32.0678 0484 WPDBusEnum - ok
12:54:32.0694 0484 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
12:54:32.0725 0484 ws2ifsl - ok
12:54:32.0772 0484 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
12:54:32.0803 0484 wscsvc - ok
12:54:32.0803 0484 WSearch - ok
12:54:32.0850 0484 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
12:54:32.0897 0484 wuauserv - ok
12:54:32.0928 0484 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
12:54:32.0959 0484 WudfPf - ok
12:54:32.0990 0484 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
12:54:33.0006 0484 WUDFRd - ok
12:54:33.0037 0484 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
12:54:33.0068 0484 wudfsvc - ok
12:54:33.0084 0484 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
12:54:33.0115 0484 WwanSvc - ok
12:54:33.0131 0484 ================ Scan global ===============================
12:54:33.0162 0484 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
12:54:33.0177 0484 [ 9E479C2B605C25DA4971ABA36250FAEF ] C:\Windows\system32\winsrv.dll
12:54:33.0193 0484 [ 9E479C2B605C25DA4971ABA36250FAEF ] C:\Windows\system32\winsrv.dll
12:54:33.0240 0484 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
12:54:33.0271 0484 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
12:54:33.0287 0484 [Global] - ok
12:54:33.0287 0484 ================ Scan MBR ==================================
12:54:33.0302 0484 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
12:54:33.0567 0484 \Device\Harddisk0\DR0 - ok
12:54:33.0567 0484 ================ Scan VBR ==================================
12:54:33.0567 0484 [ 16B73F01E7F9F095A6B92BD4DD3A7C5F ] \Device\Harddisk0\DR0\Partition1
12:54:33.0567 0484 \Device\Harddisk0\DR0\Partition1 - ok
12:54:33.0599 0484 [ 2F74E0438372E9C72BA7CDFEF748DFBD ] \Device\Harddisk0\DR0\Partition2
12:54:33.0599 0484 \Device\Harddisk0\DR0\Partition2 - ok
12:54:33.0599 0484 ============================================================
12:54:33.0599 0484 Scan finished
12:54:33.0599 0484 ============================================================
12:54:33.0645 3020 Detected object count: 1
12:54:33.0645 3020 Actual detected object count: 1
12:54:43.0801 3020 AVM WLAN Connection Service ( UnsignedFile.Multi.Generic ) - skipped by user
12:54:43.0801 3020 AVM WLAN Connection Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
12:54:48.0075 1900 Deinitialize success
|
|
07.02.2013, 12:59
| #4 |
| /// Malware-holic | Avast Free deaktiviert, lässt sich nicht mehr aktivieren hi Combofix: Scan mit Combofix
__________________ -Verdächtige mails bitte an uns zur Analyse weiterleiten: markusg.trojaner-board@web.de Weiterleiten Anleitung: http://markusg.trojaner-board.de Mails bitte vorerst nach obiger Anleitung an markusg.trojaner-board@web.de Weiterleiten Wenn Ihr uns unterstützen möchtet |
|
07.02.2013, 13:17
| #5 |
| | Avast Free deaktiviert, lässt sich nicht mehr aktivierenCode:
ATTFilter ComboFix 13-02-07.01 - Furkan 07.02.2013 13:09:01.1.4 - x64
Microsoft Windows 7 Ultimate 6.1.7601.1.1252.49.1031.18.4093.2480 [GMT 1:00]
ausgeführt von:: c:\users\Furkan\Desktop\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Neuer Wiederherstellungspunkt wurde erstellt
.
.
(((((((((((((((((((((((((((((((((((( Weitere Löschungen ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\vpngui.exe.lnk
c:\windows\SysWow64\muzapp.exe
.
.
((((((((((((((((((((((( Dateien erstellt von 2013-01-07 bis 2013-02-07 ))))))))))))))))))))))))))))))
.
.
2013-02-07 12:14 . 2013-02-07 12:14 -------- d-----w- c:\users\Default\AppData\Local\temp
2013-02-02 15:22 . 2013-02-02 15:22 95648 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll
2013-01-09 16:28 . 2012-11-30 05:41 424448 ----a-w- c:\windows\system32\KernelBase.dll
.
.
.
(((((((((((((((((((((((((((((((((((( Find3M Bericht ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-02-02 15:22 . 2012-09-13 17:36 861088 ----a-w- c:\windows\SysWow64\npDeployJava1.dll
2013-02-02 15:22 . 2012-09-13 17:36 782240 ----a-w- c:\windows\SysWow64\deployJava1.dll
2013-01-09 19:20 . 2010-02-09 22:33 67599240 ----a-w- c:\windows\system32\MRT.exe
2013-01-08 19:45 . 2012-08-04 11:51 74248 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-01-08 19:45 . 2012-08-04 11:51 697864 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2012-12-16 17:11 . 2012-12-22 01:38 46080 ----a-w- c:\windows\system32\atmlib.dll
2012-12-16 14:45 . 2012-12-22 01:38 367616 ----a-w- c:\windows\system32\atmfd.dll
2012-12-16 14:13 . 2012-12-22 01:38 295424 ----a-w- c:\windows\SysWow64\atmfd.dll
2012-12-16 14:13 . 2012-12-22 01:38 34304 ----a-w- c:\windows\SysWow64\atmlib.dll
2012-11-30 04:45 . 2013-01-09 16:28 44032 ----a-w- c:\windows\apppatch\acwow64.dll
2012-11-14 07:06 . 2012-12-13 12:38 17811968 ----a-w- c:\windows\system32\mshtml.dll
2012-11-14 06:32 . 2012-12-13 12:38 10925568 ----a-w- c:\windows\system32\ieframe.dll
2012-11-14 06:11 . 2012-12-13 12:39 2312704 ----a-w- c:\windows\system32\jscript9.dll
2012-11-14 06:04 . 2012-12-13 12:39 1346048 ----a-w- c:\windows\system32\urlmon.dll
2012-11-14 06:04 . 2012-12-13 12:39 1392128 ----a-w- c:\windows\system32\wininet.dll
2012-11-14 06:02 . 2012-12-13 12:39 1494528 ----a-w- c:\windows\system32\inetcpl.cpl
2012-11-14 06:02 . 2012-12-13 12:39 237056 ----a-w- c:\windows\system32\url.dll
2012-11-14 05:59 . 2012-12-13 12:39 85504 ----a-w- c:\windows\system32\jsproxy.dll
2012-11-14 05:58 . 2012-12-13 12:39 816640 ----a-w- c:\windows\system32\jscript.dll
2012-11-14 05:57 . 2012-12-13 12:39 599040 ----a-w- c:\windows\system32\vbscript.dll
2012-11-14 05:57 . 2012-12-13 12:39 173056 ----a-w- c:\windows\system32\ieUnatt.exe
2012-11-14 05:55 . 2012-12-13 12:39 2144768 ----a-w- c:\windows\system32\iertutil.dll
2012-11-14 05:55 . 2012-12-13 12:39 729088 ----a-w- c:\windows\system32\msfeeds.dll
2012-11-14 05:53 . 2012-12-13 12:39 96768 ----a-w- c:\windows\system32\mshtmled.dll
2012-11-14 05:52 . 2012-12-13 12:39 2382848 ----a-w- c:\windows\system32\mshtml.tlb
2012-11-14 05:46 . 2012-12-13 12:39 248320 ----a-w- c:\windows\system32\ieui.dll
2012-11-14 02:09 . 2012-12-13 12:39 1800704 ----a-w- c:\windows\SysWow64\jscript9.dll
2012-11-14 01:58 . 2012-12-13 12:39 1427968 ----a-w- c:\windows\SysWow64\inetcpl.cpl
2012-11-14 01:57 . 2012-12-13 12:39 1129472 ----a-w- c:\windows\SysWow64\wininet.dll
2012-11-14 01:49 . 2012-12-13 12:39 142848 ----a-w- c:\windows\SysWow64\ieUnatt.exe
2012-11-14 01:48 . 2012-12-13 12:39 420864 ----a-w- c:\windows\SysWow64\vbscript.dll
2012-11-14 01:44 . 2012-12-13 12:39 2382848 ----a-w- c:\windows\SysWow64\mshtml.tlb
.
.
(((((((((((((((((((((((((((( Autostartpunkte der Registrierung ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"AMD AVT"="start AMD Accelerated Video Transcoding device initialization" [X]
"AVMWlanClient"="c:\program files (x86)\avmwlanstick\wlangui.exe" [2010-10-22 2105344]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2012-07-04 641704]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2012-10-30 4297136]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-12-03 946352]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2012-07-03 252848]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R3 avmeject;AVM Eject;c:\windows\system32\drivers\avmeject.sys [2010-10-22 14120]
R3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudbus.sys [2012-09-19 102368]
R3 ose64;Office 64 Source Engine;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2010-11-20 20992]
R3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudmdm.sys [2012-09-19 203104]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys [x]
R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys [x]
S1 aswSnx;aswSnx; [x]
S1 aswSP;aswSP; [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2012-08-05 283200]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2012-07-04 238080]
S2 AMD FUEL Service;AMD FUEL Service;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2012-07-03 361984]
S2 AODDriver4.1;AODDriver4.1;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2012-03-05 53888]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2012-10-30 71600]
S2 KMService;KMService;c:\windows\system32\srvany.exe [x]
S3 amdiox64;AMD IO Driver;c:\windows\system32\DRIVERS\amdiox64.sys [2010-02-18 46136]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys [2012-02-23 95760]
S3 FWLANUSB;AVM FRITZ!WLAN;c:\windows\system32\DRIVERS\fwlanusb.sys [2010-10-22 460800]
S3 LGBusEnum;Logitech GamePanel Virtual Bus Enumerator Driver;c:\windows\system32\drivers\LGBusEnum.sys [2009-11-24 22408]
S3 LGVirHid;Logitech Gamepanel Virtual HID Device Driver;c:\windows\system32\drivers\LGVirHid.sys [2009-11-24 16008]
S3 LVUVC64;Logitech QuickCam E3500(UVC);c:\windows\system32\DRIVERS\lvuvc64.sys [2009-10-07 6379288]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [2009-03-01 187392]
.
.
--- Andere Dienste/Treiber im Speicher ---
.
*NewlyCreated* - 40680020
*Deregistered* - 40680020
.
Inhalt des "geplante Tasks" Ordners
.
2013-02-06 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-08-04 19:45]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2012-10-30 22:50 133400 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2012-06-11 12503184]
"Launch LCore"="c:\program files\Logitech Gaming Software\LCore.exe" [2012-05-21 6868280]
.
------- Zusätzlicher Suchlauf -------
.
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: Nach Microsoft E&xcel exportieren - c:\progra~1\MICROS~3\Office14\EXCEL.EXE/3000
TCP: DhcpNameServer = 192.168.2.1 192.168.2.1
FF - ProfilePath - c:\users\Furkan\AppData\Roaming\Mozilla\Firefox\Profiles\fnqst9jw.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.google.de/
FF - prefs.js: network.proxy.type - 2
FF - ExtSQL: 2013-01-26 18:09; mediahint@jetpack; c:\users\Furkan\AppData\Roaming\Mozilla\Firefox\Profiles\fnqst9jw.default\extensions\mediahint@jetpack.xpi
.
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_USERS\S-1-5-21-3005017583-1162163579-1460035371-1000_Classes\Wow6432Node\CLSID\{7B8E9164-324D-4A2E-A46D-0165FB2000EC}]
@Denied: (Full) (Everyone)
"scansk"=hex(0):36,82,ec,92,27,fb,11,7a,e6,a6,2e,dd,44,6f,00,0b,f7,b1,77,96,7e,
10,61,59,11,a2,34,37,7f,c4,6c,80,62,d4,e0,68,07,7e,83,4c,00,00,00,00,00,00,\
.
[HKEY_USERS\S-1-5-21-3005017583-1162163579-1460035371-1000_Classes\Wow6432Node\CLSID\{a7cdfa0c-7974-48f2-8c9f-970d6fc26876}]
@Denied: (Full) (Everyone)
@Allowed: (Read) (RestrictedCode)
"Model"=dword:00000151
"Therad"=dword:0000001b
"MData"=hex(0):73,d5,cf,b8,a4,07,89,80,31,e4,35,6b,2a,ca,fe,43,b6,1f,81,1f,5a,
1b,4d,36,46,8f,3c,f2,5c,68,ee,21,46,8f,3c,f2,5c,68,ee,21,46,8f,3c,f2,5c,68,\
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Zeit der Fertigstellung: 2013-02-07 13:16:13
ComboFix-quarantined-files.txt 2013-02-07 12:16
.
Vor Suchlauf: 12 Verzeichnis(se), 417.146.191.872 Bytes frei
Nach Suchlauf: 17 Verzeichnis(se), 416.992.706.560 Bytes frei
.
- - End Of File - - A2E7B2DCAA8C6E7B09A9D9A61A6CD793
|
|
08.02.2013, 16:36
| #6 |
| /// Malware-holic | Avast Free deaktiviert, lässt sich nicht mehr aktivieren hi malwarebytes: Downloade Dir bitte Malwarebytes
__________________ --> Avast Free deaktiviert, lässt sich nicht mehr aktivieren |
|
08.02.2013, 19:25
| #7 |
| | Avast Free deaktiviert, lässt sich nicht mehr aktivierenCode:
ATTFilter Malwarebytes Anti-Malware 1.70.0.1100 www.malwarebytes.org Datenbank Version: v2013.02.08.07 Windows 7 Service Pack 1 x64 NTFS Internet Explorer 9.0.8112.16421 Furkan :: FURKAN-PC [Administrator] 08.02.2013 18:50:18 mbam-log-2013-02-08 (18-50-18).txt Art des Suchlaufs: Vollständiger Suchlauf (C:\|) Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM Deaktivierte Suchlaufeinstellungen: P2P Durchsuchte Objekte: 351177 Laufzeit: 34 Minute(n), 3 Sekunde(n) Infizierte Speicherprozesse: 1 C:\Windows\KMService.exe (RiskWare.Tool.CK) -> 2024 -> Löschen bei Neustart. Infizierte Speichermodule: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungsschlüssel: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungswerte: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateiobjekte der Registrierung: 0 (Keine bösartigen Objekte gefunden) Infizierte Verzeichnisse: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateien: 1 C:\Windows\KMService.exe (RiskWare.Tool.CK) -> Löschen bei Neustart. (Ende) |
|
11.02.2013, 13:22
| #8 |
| /// Malware-holic | Avast Free deaktiviert, lässt sich nicht mehr aktivieren C:\Windows\KMService.exe ist ein Keygen, da illegal gibts hier nur Hilfe beim neu aufsetzen: 1. Datenrettung:
ich werde außerdem noch weitere punkte dazu posten. 4. alle Passwörter ändern! 5. nach PC Absicherung, die gesicherten Daten prüfen und falls sauber: zurückspielen. 6. werde ich dann noch was zum absichern von Onlinebanking mit Chip Card Reader + Star Money sagen.
__________________ -Verdächtige mails bitte an uns zur Analyse weiterleiten: markusg.trojaner-board@web.de Weiterleiten Anleitung: http://markusg.trojaner-board.de Mails bitte vorerst nach obiger Anleitung an markusg.trojaner-board@web.de Weiterleiten Wenn Ihr uns unterstützen möchtet |
|
| Themen zu Avast Free deaktiviert, lässt sich nicht mehr aktivieren |
| aktiviere, aktivieren, aktiviert, avast, deaktiviert, free, gepackt, nicht mehr, programm, weiße, zu lang |
WARNUNG an die MITLESER: 
Linear-Darstellung
