Zurück   Trojaner-Board > Malware entfernen > Log-Analyse und Auswertung
kann keine Windows Updates machen alles wird wieder rückgängig gemacht, habe auch die csrss.exe zweimal

kann keine Windows Updates machen alles wird wieder rückgängig gemacht, habe auch die csrss.exe zweimal


Log-Analyse und Auswertung: kann keine Windows Updates machen alles wird wieder rückgängig gemacht, habe auch die csrss.exe zweimal

Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML.

Antwort
Seite 2 von 2 1 2
Alt 15.03.2013, 15:28   #16
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
kann keine Windows Updates machen alles wird wieder rückgängig gemacht, habe auch die csrss.exe zweimal - Standard

kann keine Windows Updates machen alles wird wieder rückgängig gemacht, habe auch die csrss.exe zweimal


Sry, aber das ist kein Link zu Virustotal
__________________
Logfiles bitte immer in CODE-Tags posten

Alt 15.03.2013, 16:12   #17
bobbypascha
 
kann keine Windows Updates machen alles wird wieder rückgängig gemacht, habe auch die csrss.exe zweimal - Standard

kann keine Windows Updates machen alles wird wieder rückgängig gemacht, habe auch die csrss.exe zweimal


https://www.virustotal.com/de/file/72feafd18f6f85bacd8b37aac0c4e03915d8f64e5c55b5d8faded86fa1affd27/analysis/

das müsste er sein

die 1 beim teufelchen im virustotal war ein versehen. sorry
__________________
Alt 15.03.2013, 17:27   #18
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
kann keine Windows Updates machen alles wird wieder rückgängig gemacht, habe auch die csrss.exe zweimal - Standard

kann keine Windows Updates machen alles wird wieder rückgängig gemacht, habe auch die csrss.exe zweimal


Ok, was ist denn jetzt mit dem Log vom TDSS-Killer? Das fehlt noch.
__________________
__________________
Alt 15.03.2013, 17:36   #19
bobbypascha
 
kann keine Windows Updates machen alles wird wieder rückgängig gemacht, habe auch die csrss.exe zweimal - Standard

kann keine Windows Updates machen alles wird wieder rückgängig gemacht, habe auch die csrss.exe zweimal


habe nicht richtig gepostet, sorry

17:34:26.0845 2576 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
17:34:27.0017 2576 ============================================================
17:34:27.0017 2576 Current date / time: 2013/03/15 17:34:27.0017
17:34:27.0017 2576 SystemInfo:
17:34:27.0017 2576
17:34:27.0017 2576 OS Version: 6.0.6002 ServicePack: 2.0
17:34:27.0017 2576 Product type: Workstation
17:34:27.0017 2576 ComputerName: PETRA-PC
17:34:27.0017 2576 UserName: Petra
17:34:27.0017 2576 Windows directory: C:\Windows
17:34:27.0017 2576 System windows directory: C:\Windows
17:34:27.0017 2576 Processor architecture: Intel x86
17:34:27.0017 2576 Number of processors: 2
17:34:27.0017 2576 Page size: 0x1000
17:34:27.0017 2576 Boot type: Normal boot
17:34:27.0017 2576 ============================================================
17:34:28.0079 2576 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
17:34:28.0095 2576 ============================================================
17:34:28.0095 2576 \Device\Harddisk0\DR0:
17:34:28.0095 2576 MBR partitions:
17:34:28.0095 2576 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x393E4FF8
17:34:28.0095 2576 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x393E5800, BlocksNum 0xFA0000
17:34:28.0095 2576 ============================================================
17:34:28.0126 2576 C: <-> \Device\Harddisk0\DR0\Partition1
17:34:28.0142 2576 D: <-> \Device\Harddisk0\DR0\Partition2
17:34:28.0142 2576 ============================================================
17:34:28.0142 2576 Initialize success
17:34:28.0142 2576 ============================================================
17:34:41.0095 1348 ============================================================
17:34:41.0095 1348 Scan started
17:34:41.0095 1348 Mode: Manual;
17:34:41.0095 1348 ============================================================
17:34:42.0173 1348 ================ Scan system memory ========================
17:34:42.0173 1348 System memory - ok
17:34:42.0173 1348 ================ Scan services =============================
17:34:42.0314 1348 [ 82B296AE1892FE3DBEE00C9CF92F8AC7 ] ACPI C:\Windows\system32\drivers\acpi.sys
17:34:42.0314 1348 ACPI - ok
17:34:42.0517 1348 [ DBD5934D88CDD8B8C255D857DF9F689B ] AddonsHelper C:\Users\Petra\AppData\Local\Temp\OCS\Downloads\0674e23d6502b36621d489f1b4fbd22a\8a2438a7aa1e858526caff1f4deab159\AddonsHelper.exe
17:34:42.0533 1348 AddonsHelper - ok
17:34:42.0579 1348 [ 04F0FCAC69C7C71A3AC4EB97FAFC8303 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
17:34:42.0579 1348 adp94xx - ok
17:34:42.0626 1348 [ 60505E0041F7751BDBB80F88BF45C2CE ] adpahci C:\Windows\system32\drivers\adpahci.sys
17:34:42.0626 1348 adpahci - ok
17:34:42.0642 1348 [ 8A42779B02AEC986EAB64ECFC98F8BD7 ] adpu160m C:\Windows\system32\drivers\adpu160m.sys
17:34:42.0642 1348 adpu160m - ok
17:34:42.0658 1348 [ 241C9E37F8CE45EF51C3DE27515CA4E5 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
17:34:42.0658 1348 adpu320 - ok
17:34:42.0704 1348 [ 9D1FDA9E086BA64E3C93C9DE32461BCF ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
17:34:42.0704 1348 AeLookupSvc - ok
17:34:42.0767 1348 [ 3911B972B55FEA0478476B2E777B29FA ] AFD C:\Windows\system32\drivers\afd.sys
17:34:42.0767 1348 AFD - ok
17:34:42.0814 1348 [ 13F9E33747E6B41A3FF305C37DB0D360 ] agp440 C:\Windows\system32\drivers\agp440.sys
17:34:42.0814 1348 agp440 - ok
17:34:42.0845 1348 [ AE1FDF7BF7BB6C6A70F67699D880592A ] aic78xx C:\Windows\system32\drivers\djsvs.sys
17:34:42.0845 1348 aic78xx - ok
17:34:42.0861 1348 [ A1545B731579895D8CC44FC0481C1192 ] ALG C:\Windows\System32\alg.exe
17:34:42.0861 1348 ALG - ok
17:34:42.0876 1348 [ 9EAEF5FC9B8E351AFA7E78A6FAE91F91 ] aliide C:\Windows\system32\drivers\aliide.sys
17:34:42.0876 1348 aliide - ok
17:34:42.0892 1348 [ C47344BC706E5F0B9DCE369516661578 ] amdagp C:\Windows\system32\drivers\amdagp.sys
17:34:42.0892 1348 amdagp - ok
17:34:42.0908 1348 [ 9B78A39A4C173FDBC1321E0DD659B34C ] amdide C:\Windows\system32\drivers\amdide.sys
17:34:42.0908 1348 amdide - ok
17:34:42.0939 1348 [ 18F29B49AD23ECEE3D2A826C725C8D48 ] AmdK7 C:\Windows\system32\drivers\amdk7.sys
17:34:42.0939 1348 AmdK7 - ok
17:34:42.0954 1348 [ 93AE7F7DD54AB986A6F1A1B37BE7442D ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
17:34:42.0954 1348 AmdK8 - ok
17:34:43.0079 1348 [ 459465DA28E49B358ECFE0D788F328F4 ] AntiVirSchedulerService C:\Program Files\Avira\AntiVir Desktop\sched.exe
17:34:43.0079 1348 AntiVirSchedulerService - ok
17:34:43.0142 1348 [ BCDD17E8469D647A71B347C4B6F86685 ] AntiVirService C:\Program Files\Avira\AntiVir Desktop\avguard.exe
17:34:43.0142 1348 AntiVirService - ok
17:34:43.0173 1348 [ D05B3EB1F1C8C7199D84C9D68D35FD78 ] AntiVirWebService C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE
17:34:43.0173 1348 AntiVirWebService - ok
17:34:43.0220 1348 [ C6D704C7F0434DC791AAC37CAC4B6E14 ] Appinfo C:\Windows\System32\appinfo.dll
17:34:43.0236 1348 Appinfo - ok
17:34:43.0283 1348 [ 5D2888182FB46632511ACEE92FDAD522 ] arc C:\Windows\system32\drivers\arc.sys
17:34:43.0283 1348 arc - ok
17:34:43.0329 1348 [ 5E2A321BD7C8B3624E41FDEC3E244945 ] arcsas C:\Windows\system32\drivers\arcsas.sys
17:34:43.0329 1348 arcsas - ok
17:34:43.0376 1348 [ D320732BCF5FF856120BD06855C66867 ] asusgsb C:\Windows\system32\drivers\asusgsb.sys
17:34:43.0376 1348 asusgsb - ok
17:34:43.0454 1348 [ B3B881EB81013AAC11594A5400ADA47A ] asuskbnt C:\Windows\system32\drivers\atkkbnt.sys
17:34:43.0454 1348 asuskbnt - ok
17:34:43.0470 1348 [ 94442E3029FF6C9F08140FE6718AF4FB ] ASUSVRC C:\Windows\system32\DRIVERS\AsusVRC.sys
17:34:43.0470 1348 ASUSVRC - ok
17:34:43.0517 1348 [ 53B202ABEE6455406254444303E87BE1 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
17:34:43.0517 1348 AsyncMac - ok
17:34:43.0533 1348 [ 1F05B78AB91C9075565A9D8A4B880BC4 ] atapi C:\Windows\system32\drivers\atapi.sys
17:34:43.0533 1348 atapi - ok
17:34:43.0611 1348 [ 73C18A2C69DFAB351FF0D6C0E69474B6 ] athrusb C:\Windows\system32\DRIVERS\athrusb.sys
17:34:43.0642 1348 athrusb - ok
17:34:43.0689 1348 [ DF70303547E59F09DCD32983100EDCD1 ] ATKKeyboardService C:\Windows\ATKKBService.exe
17:34:43.0689 1348 ATKKeyboardService - ok
17:34:43.0751 1348 [ 68E2A1A0407A66CF50DA0300852424AB ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
17:34:43.0751 1348 AudioEndpointBuilder - ok
17:34:43.0783 1348 [ 68E2A1A0407A66CF50DA0300852424AB ] Audiosrv C:\Windows\System32\Audiosrv.dll
17:34:43.0783 1348 Audiosrv - ok
17:34:43.0829 1348 [ A5C175039B1D6D85D0E79F5855828E4D ] avgntflt C:\Windows\system32\DRIVERS\avgntflt.sys
17:34:43.0829 1348 avgntflt - ok
17:34:43.0892 1348 [ 37B854C7D1F477E66C5B49C7700C47CC ] avipbb C:\Windows\system32\DRIVERS\avipbb.sys
17:34:43.0892 1348 avipbb - ok
17:34:43.0939 1348 [ CC4EBA25D80DE42BBC2BF3E553219388 ] avkmgr C:\Windows\system32\DRIVERS\avkmgr.sys
17:34:43.0939 1348 avkmgr - ok
17:34:44.0001 1348 [ 67E506B75BD5326A3EC7B70BD014DFB6 ] Beep C:\Windows\system32\drivers\Beep.sys
17:34:44.0001 1348 Beep - ok
17:34:44.0126 1348 [ C789AF0F724FDA5852FB9A7D3A432381 ] BFE C:\Windows\System32\bfe.dll
17:34:44.0158 1348 BFE - ok
17:34:44.0251 1348 [ 93952506C6D67330367F7E7934B6A02F ] BITS C:\Windows\System32\qmgr.dll
17:34:44.0267 1348 BITS - ok
17:34:44.0283 1348 [ D4DF28447741FD3D953526E33A617397 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys
17:34:44.0283 1348 blbdrive - ok
17:34:44.0298 1348 [ 35F376253F687BDE63976CCB3F2108CA ] bowser C:\Windows\system32\DRIVERS\bowser.sys
17:34:44.0298 1348 bowser - ok
17:34:44.0345 1348 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys
17:34:44.0345 1348 BrFiltLo - ok
17:34:44.0361 1348 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys
17:34:44.0361 1348 BrFiltUp - ok
17:34:44.0392 1348 [ A3629A0C4226F9E9C72FAAEEBC3AD33C ] Browser C:\Windows\System32\browser.dll
17:34:44.0392 1348 Browser - ok
17:34:44.0423 1348 [ B304E75CFF293029EDDF094246747113 ] Brserid C:\Windows\system32\drivers\brserid.sys
17:34:44.0423 1348 Brserid - ok
17:34:44.0439 1348 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys
17:34:44.0439 1348 BrSerWdm - ok
17:34:44.0454 1348 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys
17:34:44.0454 1348 BrUsbMdm - ok
17:34:44.0470 1348 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys
17:34:44.0470 1348 BrUsbSer - ok
17:34:44.0517 1348 [ AD07C1EC6665B8B35741AB91200C6B68 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
17:34:44.0517 1348 BTHMODEM - ok
17:34:44.0548 1348 CBPMp50 - ok
17:34:44.0579 1348 [ 1961590AA191B6B7DCF18A6A693AF7B8 ] CBPSp50 C:\Windows\system32\Drivers\CBPSp50.sys
17:34:44.0579 1348 CBPSp50 - ok
17:34:44.0626 1348 [ 7ADD03E75BEB9E6DD102C3081D29840A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
17:34:44.0626 1348 cdfs - ok
17:34:44.0689 1348 [ 6B4BFFB9BECD728097024276430DB314 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
17:34:44.0689 1348 cdrom - ok
17:34:44.0720 1348 [ 312EC3E37A0A1F2006534913E37B4423 ] CertPropSvc C:\Windows\System32\certprop.dll
17:34:44.0736 1348 CertPropSvc - ok
17:34:44.0736 1348 [ E5D4133F37219DBCFE102BC61072589D ] circlass C:\Windows\system32\drivers\circlass.sys
17:34:44.0736 1348 circlass - ok
17:34:44.0767 1348 [ D7659D3B5B92C31E84E53C1431F35132 ] CLFS C:\Windows\system32\CLFS.sys
17:34:44.0767 1348 CLFS - ok
17:34:44.0829 1348 [ 8EE772032E2FE80A924F3B8DD5082194 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
17:34:44.0829 1348 clr_optimization_v2.0.50727_32 - ok
17:34:44.0861 1348 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
17:34:44.0861 1348 clr_optimization_v4.0.30319_32 - ok
17:34:44.0892 1348 [ 0CA25E686A4928484E9FDABD168AB629 ] cmdide C:\Windows\system32\drivers\cmdide.sys
17:34:44.0892 1348 cmdide - ok
17:34:44.0892 1348 Compbatt - ok
17:34:44.0892 1348 COMSysApp - ok
17:34:44.0923 1348 [ 741E9DFF4F42D2D8477D0FC1DC0DF871 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
17:34:44.0923 1348 crcdisk - ok
17:34:44.0939 1348 [ 1F07BECDCA750766A96CDA811BA86410 ] Crusoe C:\Windows\system32\drivers\crusoe.sys
17:34:44.0939 1348 Crusoe - ok
17:34:45.0001 1348 [ FB27772BEAF8E1D28CCD825C09DA939B ] CryptSvc C:\Windows\system32\cryptsvc.dll
17:34:45.0001 1348 CryptSvc - ok
17:34:45.0017 1348 [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] DcomLaunch C:\Windows\system32\rpcss.dll
17:34:45.0048 1348 DcomLaunch - ok
17:34:45.0079 1348 [ 622C41A07CA7E6DD91770F50D532CB6C ] DfsC C:\Windows\system32\Drivers\dfsc.sys
17:34:45.0079 1348 DfsC - ok
17:34:45.0173 1348 [ 2CC3DCFB533A1035B13DCAB6160AB38B ] DFSR C:\Windows\system32\DFSR.exe
17:34:45.0220 1348 DFSR - ok
17:34:45.0298 1348 [ 9028559C132146FB75EB7ACF384B086A ] Dhcp C:\Windows\System32\dhcpcsvc.dll
17:34:45.0298 1348 Dhcp - ok
17:34:45.0345 1348 [ 5D4AEFC3386920236A548271F8F1AF6A ] disk C:\Windows\system32\drivers\disk.sys
17:34:45.0345 1348 disk - ok
17:34:45.0408 1348 [ 57D762F6F5974AF0DA2BE88A3349BAAA ] Dnscache C:\Windows\System32\dnsrslvr.dll
17:34:45.0408 1348 Dnscache - ok
17:34:45.0423 1348 [ 324FD74686B1EF5E7C19A8AF49E748F6 ] dot3svc C:\Windows\System32\dot3svc.dll
17:34:45.0423 1348 dot3svc - ok
17:34:45.0470 1348 [ 4F59C172C094E1A1D46463A8DC061CBD ] Dot4 C:\Windows\system32\DRIVERS\Dot4.sys
17:34:45.0470 1348 Dot4 - ok
17:34:45.0486 1348 [ 80BF3BA09F6F2523C8F6B7CC6DBF7BD5 ] Dot4Print C:\Windows\system32\DRIVERS\Dot4Prt.sys
17:34:45.0486 1348 Dot4Print - ok
17:34:45.0517 1348 [ C55004CA6B419B6695970DFE849B122F ] dot4usb C:\Windows\system32\DRIVERS\dot4usb.sys
17:34:45.0517 1348 dot4usb - ok
17:34:45.0579 1348 [ A622E888F8AA2F6B49E9BC466F0E5DEF ] DPS C:\Windows\system32\dps.dll
17:34:45.0579 1348 DPS - ok
17:34:45.0626 1348 [ 97FEF831AB90BEE128C9AF390E243F80 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
17:34:45.0626 1348 drmkaud - ok
17:34:45.0658 1348 [ C68AC676B0EF30CFBB1080ADCE49EB1F ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
17:34:45.0673 1348 DXGKrnl - ok
17:34:45.0720 1348 [ 5425F74AC0C1DBD96A1E04F17D63F94C ] E1G60 C:\Windows\system32\DRIVERS\E1G60I32.sys
17:34:45.0720 1348 E1G60 - ok
17:34:45.0767 1348 [ C0B95E40D85CD807D614E264248A45B9 ] EapHost C:\Windows\System32\eapsvc.dll
17:34:45.0767 1348 EapHost - ok
17:34:45.0829 1348 [ 7F64EA048DCFAC7ACF8B4D7B4E6FE371 ] Ecache C:\Windows\system32\drivers\ecache.sys
17:34:45.0829 1348 Ecache - ok
17:34:45.0876 1348 [ 9BE3744D295A7701EB425332014F0797 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
17:34:45.0876 1348 ehRecvr - ok
17:34:45.0908 1348 [ AD1870C8E5D6DD340C829E6074BF3C3F ] ehSched C:\Windows\ehome\ehsched.exe
17:34:45.0908 1348 ehSched - ok
17:34:45.0923 1348 [ C27C4EE8926E74AA72EFCAB24C5242C3 ] ehstart C:\Windows\ehome\ehstart.dll
17:34:45.0923 1348 ehstart - ok
17:34:45.0970 1348 [ 23B62471681A124889978F6295B3F4C6 ] elxstor C:\Windows\system32\drivers\elxstor.sys
17:34:45.0986 1348 elxstor - ok
17:34:46.0017 1348 [ 4E6B23DFC917EA39306B529B773950F4 ] EMDMgmt C:\Windows\system32\emdmgmt.dll
17:34:46.0033 1348 EMDMgmt - ok
17:34:46.0064 1348 [ 3DB974F3935483555D7148663F726C61 ] ErrDev C:\Windows\system32\drivers\errdev.sys
17:34:46.0064 1348 ErrDev - ok
17:34:46.0126 1348 [ 67058C46504BC12D821F38CF99B7B28F ] EventSystem C:\Windows\system32\es.dll
17:34:46.0126 1348 EventSystem - ok
17:34:46.0189 1348 [ 22B408651F9123527BCEE54B4F6C5CAE ] exfat C:\Windows\system32\drivers\exfat.sys
17:34:46.0189 1348 exfat - ok
17:34:46.0236 1348 [ 1E9B9A70D332103C52995E957DC09EF8 ] fastfat C:\Windows\system32\drivers\fastfat.sys
17:34:46.0236 1348 fastfat - ok
17:34:46.0283 1348 [ AFE1E8B9782A0DD7FB46BBD88E43F89A ] fdc C:\Windows\system32\DRIVERS\fdc.sys
17:34:46.0283 1348 fdc - ok
17:34:46.0298 1348 [ 6629B5F0E98151F4AFDD87567EA32BA3 ] fdPHost C:\Windows\system32\fdPHost.dll
17:34:46.0298 1348 fdPHost - ok
17:34:46.0314 1348 [ 89ED56DCE8E47AF40892778A5BD31FD2 ] FDResPub C:\Windows\system32\fdrespub.dll
17:34:46.0314 1348 FDResPub - ok
17:34:46.0329 1348 [ A8C0139A884861E3AAE9CFE73B208A9F ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
17:34:46.0329 1348 FileInfo - ok
17:34:46.0345 1348 [ 0AE429A696AECBC5970E3CF2C62635AE ] Filetrace C:\Windows\system32\drivers\filetrace.sys
17:34:46.0345 1348 Filetrace - ok
17:34:46.0361 1348 [ 85B7CF99D532820495D68D747FDA9EBD ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
17:34:46.0361 1348 flpydisk - ok
17:34:46.0392 1348 [ 01334F9EA68E6877C4EF05D3EA8ABB05 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
17:34:46.0408 1348 FltMgr - ok
17:34:46.0486 1348 [ 8CE364388C8ECA59B14B539179276D44 ] FontCache C:\Windows\system32\FntCache.dll
17:34:46.0501 1348 FontCache - ok
17:34:46.0548 1348 [ C7FBDD1ED42F82BFA35167A5C9803EA3 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
17:34:46.0548 1348 FontCache3.0.0.0 - ok
17:34:46.0564 1348 [ 65EA8B77B5851854F0C55C43FA51A198 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
17:34:46.0564 1348 Fs_Rec - ok
17:34:46.0595 1348 [ 34582A6E6573D54A07ECE5FE24A126B5 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
17:34:46.0595 1348 gagp30kx - ok
17:34:46.0658 1348 [ BDA4545DAE51D53B7A85E7B937CDE634 ] GcKernel C:\Windows\system32\DRIVERS\GcKernel.sys
17:34:46.0658 1348 GcKernel - ok
17:34:46.0704 1348 [ F4A9CD1F2EDACAA78476549158AA5BC1 ] GFilterSvc C:\Windows\System32\GFilterSvc.exe
17:34:46.0704 1348 GFilterSvc - ok
17:34:46.0751 1348 GMSIPCI - ok
17:34:46.0798 1348 [ CD5D0AEEE35DFD4E986A5AA1500A6E66 ] gpsvc C:\Windows\System32\gpsvc.dll
17:34:46.0814 1348 gpsvc - ok
17:34:46.0892 1348 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
17:34:46.0892 1348 gupdate - ok
17:34:46.0923 1348 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
17:34:46.0923 1348 gupdatem - ok
17:34:46.0970 1348 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
17:34:46.0970 1348 gusvc - ok
17:34:46.0986 1348 [ 3F90E001369A07243763BD5A523D8722 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
17:34:46.0986 1348 HdAudAddService - ok
17:34:47.0017 1348 [ 062452B7FFD68C8C042A6261FE8DFF4A ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
17:34:47.0017 1348 HDAudBus - ok
17:34:47.0079 1348 [ 1338520E78D90154ED6BE8F84DE5FCEB ] HidBth C:\Windows\system32\drivers\hidbth.sys
17:34:47.0079 1348 HidBth - ok
17:34:47.0079 1348 [ FF3160C3A2445128C5A6D9B076DA519E ] HidIr C:\Windows\system32\drivers\hidir.sys
17:34:47.0079 1348 HidIr - ok
17:34:47.0111 1348 [ 84067081F3318162797385E11A8F0582 ] hidserv C:\Windows\system32\hidserv.dll
17:34:47.0126 1348 hidserv - ok
17:34:47.0204 1348 [ 3AD266EEA4AF7AA58B43DE1B29B75C4B ] HIDSwvd C:\Windows\system32\DRIVERS\HIDSwvd.sys
17:34:47.0204 1348 HIDSwvd - ok
17:34:47.0220 1348 [ CCA4B519B17E23A00B826C55716809CC ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
17:34:47.0220 1348 HidUsb - ok
17:34:47.0236 1348 [ D8AD255B37DA92434C26E4876DB7D418 ] hkmsvc C:\Windows\system32\kmsvc.dll
17:34:47.0236 1348 hkmsvc - ok
17:34:47.0251 1348 [ 16EE7B23A009E00D835CDB79574A91A6 ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys
17:34:47.0251 1348 HpCISSs - ok
17:34:47.0345 1348 [ FCB563B0A23643E5F80B6FF1E60F610F ] hpqcxs08 C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll
17:34:47.0345 1348 hpqcxs08 - ok
17:34:47.0361 1348 [ 25E443E27165C652723A92D9BDFD4649 ] hpqddsvc C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll
17:34:47.0361 1348 hpqddsvc - ok
17:34:47.0392 1348 [ F870AA3E254628EBEAFE754108D664DE ] HTTP C:\Windows\system32\drivers\HTTP.sys
17:34:47.0408 1348 HTTP - ok
17:34:47.0423 1348 [ C6B032D69650985468160FC9937CF5B4 ] i2omp C:\Windows\system32\drivers\i2omp.sys
17:34:47.0423 1348 i2omp - ok
17:34:47.0470 1348 [ 22D56C8184586B7A1F6FA60BE5F5A2BD ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
17:34:47.0486 1348 i8042prt - ok
17:34:47.0486 1348 [ 54155EA1B0DF185878E0FC9EC3AC3A14 ] iaStorV C:\Windows\system32\drivers\iastorv.sys
17:34:47.0486 1348 iaStorV - ok
17:34:47.0564 1348 [ 54E99BFCF960C1299A0E63F77127E5C8 ] IB Updater C:\Program Files\IB Updater\ExtensionUpdaterService.exe
17:34:47.0595 1348 IB Updater - ok
17:34:47.0673 1348 [ 1CF03C69B49ACB70C722DF92755C0C8C ] IDriverT C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
17:34:47.0673 1348 IDriverT - ok
17:34:47.0720 1348 [ 98477B08E61945F974ED9FDC4CB6BDAB ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
17:34:47.0736 1348 idsvc - ok
17:34:47.0767 1348 [ 2D077BF86E843F901D8DB709C95B49A5 ] iirsp C:\Windows\system32\drivers\iirsp.sys
17:34:47.0767 1348 iirsp - ok
17:34:47.0798 1348 [ 9908D8A397B76CD8D31D0D383C5773C9 ] IKEEXT C:\Windows\System32\ikeext.dll
17:34:47.0798 1348 IKEEXT - ok
17:34:47.0892 1348 [ 251E85A3BAC210FFF6BAD3D1F33113E8 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
17:34:47.0923 1348 IntcAzAudAddService - ok
17:34:48.0001 1348 [ 83AA759F3189E6370C30DE5DC5590718 ] intelide C:\Windows\system32\drivers\intelide.sys
17:34:48.0001 1348 intelide - ok
17:34:48.0017 1348 [ 224191001E78C89DFA78924C3EA595FF ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
17:34:48.0017 1348 intelppm - ok
17:34:48.0033 1348 [ 9AC218C6E6105477484C6FDBE7D409A4 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
17:34:48.0033 1348 IPBusEnum - ok
17:34:48.0048 1348 [ 62C265C38769B864CB25B4BCF62DF6C3 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
17:34:48.0048 1348 IpFilterDriver - ok
17:34:48.0079 1348 [ 1998BD97F950680BB55F55A7244679C2 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
17:34:48.0079 1348 iphlpsvc - ok
17:34:48.0079 1348 IpInIp - ok
17:34:48.0095 1348 [ B25AAF203552B7B3491139D582B39AD1 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys
17:34:48.0095 1348 IPMIDRV - ok
17:34:48.0111 1348 [ 8793643A67B42CEC66490B2A0CF92D68 ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys
17:34:48.0111 1348 IPNAT - ok
17:34:48.0111 1348 [ 109C0DFB82C3632FBD11949B73AEEAC9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
17:34:48.0111 1348 IRENUM - ok
17:34:48.0126 1348 [ 6C70698A3E5C4376C6AB5C7C17FB0614 ] isapnp C:\Windows\system32\drivers\isapnp.sys
17:34:48.0126 1348 isapnp - ok
17:34:48.0142 1348 [ EE9C0105DCE3D1135DF9CB1C24FE4D83 ] iscsicql C:\Windows\system32\CHxReaeingStringIME.exe
17:34:48.0142 1348 iscsicql - ok
17:34:48.0189 1348 [ 232FA340531D940AAC623B121A595034 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
17:34:48.0189 1348 iScsiPrt - ok
17:34:48.0204 1348 [ BCED60D16156E428F8DF8CF27B0DF150 ] iteatapi C:\Windows\system32\drivers\iteatapi.sys
17:34:48.0204 1348 iteatapi - ok
17:34:48.0220 1348 [ 06FA654504A498C30ADCA8BEC4E87E7E ] iteraid C:\Windows\system32\drivers\iteraid.sys
17:34:48.0220 1348 iteraid - ok
17:34:48.0251 1348 [ 37605E0A8CF00CBBA538E753E4344C6E ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
17:34:48.0251 1348 kbdclass - ok
17:34:48.0267 1348 [ EDE59EC70E25C24581ADD1FBEC7325F7 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
17:34:48.0267 1348 kbdhid - ok
17:34:48.0298 1348 [ A3E186B4B935905B829219502557314E ] KeyIso C:\Windows\system32\lsass.exe
17:34:48.0298 1348 KeyIso - ok
17:34:48.0329 1348 [ 2B2F1638466E8CB091400C9019CC730E ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
17:34:48.0329 1348 KSecDD - ok
17:34:48.0392 1348 [ 8078F8F8F7A79E2E6B494523A828C585 ] KtmRm C:\Windows\system32\msdtckrm.dll
17:34:48.0392 1348 KtmRm - ok
17:34:48.0454 1348 [ 1BF5EEBFD518DD7298434D8C862F825D ] LanmanServer C:\Windows\system32\srvsvc.dll
17:34:48.0454 1348 LanmanServer - ok
17:34:48.0486 1348 [ 1DB69705B695B987082C8BAEC0C6B34F ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
17:34:48.0486 1348 LanmanWorkstation - ok
17:34:48.0517 1348 [ D1C5883087A0C3F1344D9D55A44901F6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
17:34:48.0517 1348 lltdio - ok
17:34:48.0533 1348 [ 2D5A428872F1442631D0959A34ABFF63 ] lltdsvc C:\Windows\System32\lltdsvc.dll
17:34:48.0533 1348 lltdsvc - ok
17:34:48.0548 1348 [ 35D40113E4A5B961B6CE5C5857702518 ] lmhosts C:\Windows\System32\lmhsvc.dll
17:34:48.0548 1348 lmhosts - ok
17:34:48.0564 1348 [ C7E15E82879BF3235B559563D4185365 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
17:34:48.0564 1348 LSI_FC - ok
17:34:48.0564 1348 [ EE01EBAE8C9BF0FA072E0FF68718920A ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
17:34:48.0564 1348 LSI_SAS - ok
17:34:48.0595 1348 [ 912A04696E9CA30146A62AFA1463DD5C ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
17:34:48.0611 1348 LSI_SCSI - ok
17:34:48.0626 1348 [ 8F5C7426567798E62A3B3614965D62CC ] luafv C:\Windows\system32\drivers\luafv.sys
17:34:48.0626 1348 luafv - ok
17:34:48.0626 1348 [ AEF9BABB8A506BC4CE0451A64AADED46 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
17:34:48.0626 1348 Mcx2Svc - ok
17:34:48.0642 1348 [ 0001CE609D66632FA17B84705F658879 ] megasas C:\Windows\system32\drivers\megasas.sys
17:34:48.0642 1348 megasas - ok
17:34:48.0658 1348 [ C252F32CD9A49DBFC25ECF26EBD51A99 ] MegaSR C:\Windows\system32\drivers\megasr.sys
17:34:48.0658 1348 MegaSR - ok
17:34:48.0673 1348 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] MMCSS C:\Windows\system32\mmcss.dll
17:34:48.0673 1348 MMCSS - ok
17:34:48.0689 1348 [ E13B5EA0F51BA5B1512EC671393D09BA ] Modem C:\Windows\system32\drivers\modem.sys
17:34:48.0689 1348 Modem - ok
17:34:48.0704 1348 [ 0A9BB33B56E294F686ABB7C1E4E2D8A8 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
17:34:48.0704 1348 monitor - ok
17:34:48.0720 1348 [ 5BF6A1326A335C5298477754A506D263 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
17:34:48.0736 1348 mouclass - ok
17:34:48.0767 1348 [ 93B8D4869E12CFBE663915502900876F ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
17:34:48.0767 1348 mouhid - ok
17:34:48.0783 1348 [ BDAFC88AA6B92F7842416EA6A48E1600 ] MountMgr C:\Windows\system32\drivers\mountmgr.sys
17:34:48.0783 1348 MountMgr - ok
17:34:48.0814 1348 [ 511D011289755DD9F9A7579FB0B064E6 ] mpio C:\Windows\system32\drivers\mpio.sys
17:34:48.0829 1348 mpio - ok
17:34:48.0829 1348 [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
17:34:48.0829 1348 mpsdrv - ok
17:34:48.0861 1348 [ 5DE62C6E9108F14F6794060A9BDECAEC ] MpsSvc C:\Windows\system32\mpssvc.dll
17:34:48.0861 1348 MpsSvc - ok
17:34:48.0876 1348 [ 4FBBB70D30FD20EC51F80061703B001E ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys
17:34:48.0876 1348 Mraid35x - ok
17:34:48.0892 1348 [ 82CEA0395524AACFEB58BA1448E8325C ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
17:34:48.0908 1348 MRxDAV - ok
17:34:48.0923 1348 [ 1E94971C4B446AB2290DEB71D01CF0C2 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
17:34:48.0923 1348 mrxsmb - ok
17:34:48.0939 1348 [ 4FCCB34D793B116423209C0F8B7A3B03 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
17:34:48.0939 1348 mrxsmb10 - ok
17:34:48.0939 1348 [ C3CB1B40AD4A0124D617A1199B0B9D7C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
17:34:48.0954 1348 mrxsmb20 - ok
17:34:48.0954 1348 [ 28023E86F17001F7CD9B15A5BC9AE07D ] msahci C:\Windows\system32\drivers\msahci.sys
17:34:48.0954 1348 msahci - ok
17:34:48.0986 1348 [ 4468B0F385A86ECDDAF8D3CA662EC0E7 ] msdsm C:\Windows\system32\drivers\msdsm.sys
17:34:48.0986 1348 msdsm - ok
17:34:49.0001 1348 [ FD7520CC3A80C5FC8C48852BB24C6DED ] MSDTC C:\Windows\System32\msdtc.exe
17:34:49.0001 1348 MSDTC - ok
17:34:49.0048 1348 [ A9927F4A46B816C92F461ACB90CF8515 ] Msfs C:\Windows\system32\drivers\Msfs.sys
17:34:49.0048 1348 Msfs - ok
17:34:49.0079 1348 [ 0F400E306F385C56317357D6DEA56F62 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
17:34:49.0079 1348 msisadrv - ok
17:34:49.0111 1348 [ 85466C0757A23D9A9AECDC0755203CB2 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
17:34:49.0111 1348 MSiSCSI - ok
17:34:49.0111 1348 msiserver - ok
17:34:49.0126 1348 [ D8C63D34D9C9E56C059E24EC7185CC07 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
17:34:49.0126 1348 MSKSSRV - ok
17:34:49.0142 1348 [ 1D373C90D62DDB641D50E55B9E78D65E ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
17:34:49.0142 1348 MSPCLOCK - ok
17:34:49.0173 1348 [ B572DA05BF4E098D4BBA3A4734FB505B ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
17:34:49.0173 1348 MSPQM - ok
17:34:49.0204 1348 [ B49456D70555DE905C311BCDA6EC6ADB ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
17:34:49.0204 1348 MsRPC - ok
17:34:49.0220 1348 [ E384487CB84BE41D09711C30CA79646C ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
17:34:49.0220 1348 mssmbios - ok
17:34:49.0267 1348 [ 7199C1EEC1E4993CAF96B8C0A26BD58A ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
17:34:49.0267 1348 MSTEE - ok
17:34:49.0283 1348 [ 6A57B5733D4CB702C8EA4542E836B96C ] Mup C:\Windows\system32\Drivers\mup.sys
17:34:49.0283 1348 Mup - ok
17:34:49.0298 1348 [ E4EAF0C5C1B41B5C83386CF212CA9584 ] napagent C:\Windows\system32\qagentRT.dll
17:34:49.0314 1348 napagent - ok
17:34:49.0329 1348 [ 85C44FDFF9CF7E72A40DCB7EC06A4416 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
17:34:49.0329 1348 NativeWifiP - ok
17:34:49.0361 1348 [ 1357274D1883F68300AEADD15D7BBB42 ] NDIS C:\Windows\system32\drivers\ndis.sys
17:34:49.0361 1348 NDIS - ok
17:34:49.0376 1348 [ 0E186E90404980569FB449BA7519AE61 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
17:34:49.0376 1348 NdisTapi - ok
17:34:49.0392 1348 [ D6973AA34C4D5D76C0430B181C3CD389 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
17:34:49.0392 1348 Ndisuio - ok
17:34:49.0439 1348 [ 818F648618AE34F729FDB47EC68345C3 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
17:34:49.0439 1348 NdisWan - ok
17:34:49.0454 1348 [ 71DAB552B41936358F3B541AE5997FB3 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
17:34:49.0454 1348 NDProxy - ok
17:34:49.0517 1348 [ 51C6D8BFBD4EA5B62A1BA7F4469250D3 ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
17:34:49.0517 1348 Net Driver HPZ12 - ok
17:34:49.0533 1348 [ BCD093A5A6777CF626434568DC7DBA78 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
17:34:49.0533 1348 NetBIOS - ok
17:34:49.0564 1348 [ ECD64230A59CBD93C85F1CD1CAB9F3F6 ] netbt C:\Windows\system32\DRIVERS\netbt.sys
17:34:49.0564 1348 netbt - ok
17:34:49.0579 1348 [ A3E186B4B935905B829219502557314E ] Netlogon C:\Windows\system32\lsass.exe
17:34:49.0579 1348 Netlogon - ok
17:34:49.0611 1348 [ C8052711DAECC48B982434C5116CA401 ] Netman C:\Windows\System32\netman.dll
17:34:49.0611 1348 Netman - ok
17:34:49.0642 1348 [ 2EF3BBE22E5A5ACD1428EE387A0D0172 ] netprofm C:\Windows\System32\netprofm.dll
17:34:49.0642 1348 netprofm - ok
17:34:49.0673 1348 [ D6C4E4A39A36029AC0813D476FBD0248 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
17:34:49.0673 1348 NetTcpPortSharing - ok
17:34:49.0689 1348 [ 2E7FB731D4790A1BC6270ACCEFACB36E ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
17:34:49.0689 1348 nfrd960 - ok
17:34:49.0704 1348 [ 2997B15415F9BBE05B5A4C1C85E0C6A2 ] NlaSvc C:\Windows\System32\nlasvc.dll
17:34:49.0720 1348 NlaSvc - ok
17:34:49.0783 1348 [ B0A67DE1A128389AEA4D42C5A56215FD ] nmwcd C:\Windows\system32\drivers\ccdcmb.sys
17:34:49.0783 1348 nmwcd - ok
17:34:49.0829 1348 [ 025C54F9F8C8BC1894EA38529C742C54 ] nmwcdc C:\Windows\system32\drivers\ccdcmbo.sys
17:34:49.0829 1348 nmwcdc - ok
17:34:49.0861 1348 [ D36F239D7CCE1931598E8FB90A0DBC26 ] Npfs C:\Windows\system32\drivers\Npfs.sys
17:34:49.0861 1348 Npfs - ok
17:34:49.0892 1348 [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD ] nsi C:\Windows\system32\nsisvc.dll
17:34:49.0892 1348 nsi - ok
17:34:49.0908 1348 [ 609773E344A97410CE4EBF74A8914FCF ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
17:34:49.0908 1348 nsiproxy - ok
17:34:49.0939 1348 [ 6A4A98CEE84CF9E99564510DDA4BAA47 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
17:34:49.0954 1348 Ntfs - ok
17:34:49.0970 1348 [ E875C093AEC0C978A90F30C9E0DFBB72 ] ntrigdigi C:\Windows\system32\drivers\ntrigdigi.sys
17:34:49.0986 1348 ntrigdigi - ok
17:34:50.0001 1348 [ C5DBBCDA07D780BDA9B685DF333BB41E ] Null C:\Windows\system32\drivers\Null.sys
17:34:50.0001 1348 Null - ok
17:34:50.0079 1348 [ D668632606D1CEBF0B6EC64C1DF7ED6F ] NVENETFD C:\Windows\system32\DRIVERS\nvmfdx32.sys
17:34:50.0142 1348 NVENETFD - ok
17:34:50.0423 1348 [ 0A1B502CBC8230DA74BEFBAADDB58916 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
17:34:50.0642 1348 nvlddmkm - ok
17:34:50.0658 1348 [ 2EDF9E7751554B42CBB60116DE727101 ] nvraid C:\Windows\system32\drivers\nvraid.sys
17:34:50.0658 1348 nvraid - ok
17:34:50.0689 1348 [ B8D6145D3EB05E9F81BADE9B7AFC2C80 ] nvrd32 C:\Windows\system32\drivers\nvrd32.sys
17:34:50.0689 1348 nvrd32 - ok
17:34:50.0704 1348 [ 7EC12A73067BACA25A8E3E2A58AE83D8 ] nvsmu C:\Windows\system32\DRIVERS\nvsmu.sys
17:34:50.0704 1348 nvsmu - ok
17:34:50.0720 1348 [ ABED0C09758D1D97DB0042DBB2688177 ] nvstor C:\Windows\system32\drivers\nvstor.sys
17:34:50.0720 1348 nvstor - ok
17:34:50.0736 1348 [ 9D2BD672C0461185D6EA1AE8BD3AE3F4 ] nvstor32 C:\Windows\system32\drivers\nvstor32.sys
17:34:50.0736 1348 nvstor32 - ok
17:34:50.0767 1348 [ EB5A13F9139F20AD71ADF4BF79C3AA29 ] nvsvc C:\Windows\system32\nvvsvc.exe
17:34:50.0814 1348 nvsvc - ok
17:34:50.0892 1348 [ 0629259E3AF6BB0534FCECA208973404 ] nvUpdatusService C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
17:34:50.0939 1348 nvUpdatusService - ok
17:34:50.0939 1348 [ 18BBDF913916B71BD54575BDB6EEAC0B ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
17:34:50.0939 1348 nv_agp - ok
17:34:50.0954 1348 NwlnkFlt - ok
17:34:50.0954 1348 NwlnkFwd - ok
17:34:50.0970 1348 [ 978DB00DEBE81643F204CBC50707F30D ] O2MDRDR C:\Windows\system32\drivers\o2media.sys
17:34:50.0970 1348 O2MDRDR - ok
17:34:50.0986 1348 [ 694B4555CEC16397AA8731CE87FC1E11 ] O2SDRDR C:\Windows\system32\drivers\o2sd.sys
17:34:50.0986 1348 O2SDRDR - ok
17:34:51.0079 1348 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
17:34:51.0079 1348 odserv - ok
17:34:51.0095 1348 [ BE32DA025A0BE1878F0EE8D6D9386CD5 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
17:34:51.0095 1348 ohci1394 - ok
17:34:51.0158 1348 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
17:34:51.0158 1348 ose - ok
17:34:51.0189 1348 [ 0C8E8E61AD1EB0B250B846712C917506 ] p2pimsvc C:\Windows\system32\p2psvc.dll
17:34:51.0204 1348 p2pimsvc - ok
17:34:51.0220 1348 [ 0C8E8E61AD1EB0B250B846712C917506 ] p2psvc C:\Windows\system32\p2psvc.dll
17:34:51.0220 1348 p2psvc - ok
17:34:51.0236 1348 [ 0FA9B5055484649D63C303FE404E5F4D ] Parport C:\Windows\system32\drivers\parport.sys
17:34:51.0236 1348 Parport - ok
17:34:51.0251 1348 [ B9C2B89F08670E159F7181891E449CD9 ] partmgr C:\Windows\system32\drivers\partmgr.sys
17:34:51.0251 1348 partmgr - ok
17:34:51.0267 1348 [ 4F9A6A8A31413180D0FCB279AD5D8112 ] Parvdm C:\Windows\system32\drivers\parvdm.sys
17:34:51.0267 1348 Parvdm - ok
17:34:51.0298 1348 [ C6276AD11F4BB49B58AA1ED88537F14A ] PcaSvc C:\Windows\System32\pcasvc.dll
17:34:51.0298 1348 PcaSvc - ok
17:34:51.0329 1348 [ 941DC1D19E7E8620F40BBC206981EFDB ] pci C:\Windows\system32\drivers\pci.sys
17:34:51.0329 1348 pci - ok
17:34:51.0376 1348 [ 1636D43F10416AEB483BC6001097B26C ] pciide C:\Windows\system32\drivers\pciide.sys
17:34:51.0376 1348 pciide - ok
17:34:51.0392 1348 [ E6F3FB1B86AA519E7698AD05E58B04E5 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
17:34:51.0392 1348 pcmcia - ok
17:34:51.0454 1348 [ 6349F6ED9C623B44B52EA3C63C831A92 ] PEAUTH C:\Windows\system32\drivers\peauth.sys
17:34:51.0470 1348 PEAUTH - ok
17:34:51.0533 1348 [ B1689DF169143F57053F795390C99DB3 ] pla C:\Windows\system32\pla.dll
17:34:51.0564 1348 pla - ok
17:34:51.0595 1348 [ C5E7F8A996EC0A82D508FD9064A5569E ] PlugPlay C:\Windows\system32\umpnpmgr.dll
17:34:51.0595 1348 PlugPlay - ok
17:34:51.0673 1348 [ 79834AA2FBF9FE81EEBB229024F6F7FC ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
17:34:51.0673 1348 Pml Driver HPZ12 - ok
17:34:51.0689 1348 [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPAutoReg C:\Windows\system32\p2psvc.dll
17:34:51.0704 1348 PNRPAutoReg - ok
17:34:51.0720 1348 [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPsvc C:\Windows\system32\p2psvc.dll
17:34:51.0736 1348 PNRPsvc - ok
17:34:51.0767 1348 [ D0494460421A03CD5225CCA0059AA146 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
17:34:51.0767 1348 PolicyAgent - ok
17:34:51.0798 1348 [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
17:34:51.0798 1348 PptpMiniport - ok
17:34:51.0798 1348 PRISM_A02 - ok
17:34:51.0814 1348 [ 2027293619DD0F047C584CF2E7DF4FFD ] Processor C:\Windows\system32\drivers\processr.sys
17:34:51.0814 1348 Processor - ok
17:34:51.0829 1348 [ 0508FAA222D28835310B7BFCA7A77346 ] ProfSvc C:\Windows\system32\profsvc.dll
17:34:51.0829 1348 ProfSvc - ok
17:34:51.0845 1348 [ A3E186B4B935905B829219502557314E ] ProtectedStorage C:\Windows\system32\lsass.exe
17:34:51.0845 1348 ProtectedStorage - ok
17:34:51.0876 1348 [ 99514FAA8DF93D34B5589187DB3AA0BA ] PSched C:\Windows\system32\DRIVERS\pacer.sys
17:34:51.0876 1348 PSched - ok
17:34:51.0876 1348 [ D86B4A68565E444D76457F14172C875A ] PxHelp20 C:\Windows\system32\Drivers\PxHelp20.sys
17:34:51.0876 1348 PxHelp20 - ok
17:34:51.0939 1348 [ 0A6DB55AFB7820C99AA1F3A1D270F4F6 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
17:34:51.0970 1348 ql2300 - ok
17:34:51.0986 1348 [ 81A7E5C076E59995D54BC1ED3A16E60B ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
17:34:51.0986 1348 ql40xx - ok
17:34:52.0017 1348 [ E9ECAE663F47E6CB43962D18AB18890F ] QWAVE C:\Windows\system32\qwave.dll
17:34:52.0017 1348 QWAVE - ok
17:34:52.0033 1348 [ 9F5E0E1926014D17486901C88ECA2DB7 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
17:34:52.0033 1348 QWAVEdrv - ok
17:34:52.0048 1348 [ 147D7F9C556D259924351FEB0DE606C3 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
17:34:52.0048 1348 RasAcd - ok
17:34:52.0064 1348 [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F ] RasAuto C:\Windows\System32\rasauto.dll
17:34:52.0079 1348 RasAuto - ok
17:34:52.0079 1348 [ A214ADBAF4CB47DD2728859EF31F26B0 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
17:34:52.0079 1348 Rasl2tp - ok
17:34:52.0111 1348 [ 75D47445D70CA6F9F894B032FBC64FCF ] RasMan C:\Windows\System32\rasmans.dll
17:34:52.0111 1348 RasMan - ok
17:34:52.0142 1348 [ 509A98DD18AF4375E1FC40BC175F1DEF ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
17:34:52.0142 1348 RasPppoe - ok
17:34:52.0158 1348 [ 2005F4A1E05FA09389AC85840F0A9E4D ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
17:34:52.0158 1348 RasSstp - ok
17:34:52.0173 1348 [ B14C9D5B9ADD2F84F70570BBBFAA7935 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
17:34:52.0189 1348 rdbss - ok
17:34:52.0204 1348 [ 89E59BE9A564262A3FB6C4F4F1CD9899 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
17:34:52.0204 1348 RDPCDD - ok
17:34:52.0220 1348 [ FBC0BACD9C3D7F6956853F64A66E252D ] rdpdr C:\Windows\system32\drivers\rdpdr.sys
17:34:52.0236 1348 rdpdr - ok
17:34:52.0236 1348 [ 9D91FE5286F748862ECFFA05F8A0710C ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
17:34:52.0236 1348 RDPENCDD - ok
17:34:52.0298 1348 [ 79C6DF8477250F5C54F7C5AE1D6B814E ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
17:34:52.0298 1348 RDPWD - ok
17:34:52.0329 1348 [ BCDD6B4804D06B1F7EBF29E53A57ECE9 ] RemoteAccess C:\Windows\System32\mprdim.dll
17:34:52.0329 1348 RemoteAccess - ok
17:34:52.0345 1348 [ 9E6894EA18DAFF37B63E1005F83AE4AB ] RemoteRegistry C:\Windows\system32\regsvc.dll
17:34:52.0361 1348 RemoteRegistry - ok
17:34:52.0423 1348 [ CFA81DC1BBF0302C3946E3262FE8F80A ] RoxMediaDB9 C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
17:34:52.0454 1348 RoxMediaDB9 - ok
17:34:52.0470 1348 [ CEB110ED72D9690430DAD175F93BC91B ] RoxWatch9 C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe
17:34:52.0470 1348 RoxWatch9 - ok
17:34:52.0486 1348 [ 5123F83CBC4349D065534EEB6BBDC42B ] RpcLocator C:\Windows\system32\locator.exe
17:34:52.0501 1348 RpcLocator - ok
17:34:52.0517 1348 [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] RpcSs C:\Windows\system32\rpcss.dll
17:34:52.0533 1348 RpcSs - ok
17:34:52.0548 1348 [ 9C508F4074A39E8B4B31D27198146FAD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
17:34:52.0548 1348 rspndr - ok
17:34:52.0564 1348 [ 30AED4A37E8F8BBF41983D4AE3A15DF9 ] RxFilter C:\Windows\system32\DRIVERS\RxFilter.sys
17:34:52.0564 1348 RxFilter - ok
17:34:52.0564 1348 [ A3E186B4B935905B829219502557314E ] SamSs C:\Windows\system32\lsass.exe
17:34:52.0564 1348 SamSs - ok
17:34:52.0579 1348 [ 3CE8F073A557E172B330109436984E30 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
17:34:52.0579 1348 sbp2port - ok
17:34:52.0595 1348 [ 77B7A11A0C3D78D3386398FBBEA1B632 ] SCardSvr C:\Windows\System32\SCardSvr.dll
17:34:52.0611 1348 SCardSvr - ok
17:34:52.0642 1348 [ 1A58069DB21D05EB2AB58EE5753EBE8D ] Schedule C:\Windows\system32\schedsvc.dll
17:34:52.0658 1348 Schedule - ok
17:34:52.0673 1348 [ 312EC3E37A0A1F2006534913E37B4423 ] SCPolicySvc C:\Windows\System32\certprop.dll
17:34:52.0673 1348 SCPolicySvc - ok
17:34:52.0689 1348 [ 716313D9F6B0529D03F726D5AAF6F191 ] SDRSVC C:\Windows\System32\SDRSVC.dll
17:34:52.0689 1348 SDRSVC - ok
17:34:52.0704 1348 [ FD5199D4D8A521005E4B5EE7FE00FA9B ] seclogon C:\Windows\system32\seclogon.dll
17:34:52.0704 1348 seclogon - ok
17:34:52.0720 1348 [ A9BBAB5759771E523F55563D6CBE140F ] SENS C:\Windows\System32\sens.dll
17:34:52.0720 1348 SENS - ok
17:34:52.0751 1348 [ 68E44E331D46F0FB38F0863A84CD1A31 ] Serenum C:\Windows\system32\drivers\serenum.sys
17:34:52.0751 1348 Serenum - ok
17:34:52.0783 1348 [ C70D69A918B178D3C3B06339B40C2E1B ] Serial C:\Windows\system32\drivers\serial.sys
17:34:52.0783 1348 Serial - ok
17:34:52.0783 1348 [ 8AF3D28A879BF75DB53A0EE7A4289624 ] sermouse C:\Windows\system32\drivers\sermouse.sys
17:34:52.0783 1348 sermouse - ok
17:34:52.0814 1348 [ D2193326F729B163125610DBF3E17D57 ] SessionEnv C:\Windows\system32\sessenv.dll
17:34:52.0814 1348 SessionEnv - ok
17:34:52.0829 1348 [ 3EFA810BDCA87F6ECC24F9832243FE86 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
17:34:52.0829 1348 sffdisk - ok
17:34:52.0845 1348 [ E95D451F7EA3E583AEC75F3B3EE42DC5 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
17:34:52.0845 1348 sffp_mmc - ok
17:34:52.0845 1348 [ 3D0EA348784B7AC9EA9BD9F317980979 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
17:34:52.0845 1348 sffp_sd - ok
17:34:52.0876 1348 [ 46ED8E91793B2E6F848015445A0AC188 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
17:34:52.0876 1348 sfloppy - ok
17:34:52.0908 1348 [ E1499BD0FF76B1B2FBBF1AF339D91165 ] SharedAccess C:\Windows\System32\ipnathlp.dll
17:34:52.0908 1348 SharedAccess - ok
17:34:52.0923 1348 [ C7230FBEE14437716701C15BE02C27B8 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
17:34:52.0923 1348 ShellHWDetection - ok
17:34:52.0939 1348 [ 1D76624A09A054F682D746B924E2DBC3 ] sisagp C:\Windows\system32\drivers\sisagp.sys
17:34:52.0939 1348 sisagp - ok
17:34:52.0954 1348 [ 43CB7AA756C7DB280D01DA9B676CFDE2 ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys
17:34:52.0954 1348 SiSRaid2 - ok
17:34:52.0986 1348 [ A99C6C8B0BAA970D8AA59DDC50B57F94 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
17:34:52.0986 1348 SiSRaid4 - ok
17:34:53.0079 1348 [ 862BB4CBC05D80C5B45BE430E5EF872F ] slsvc C:\Windows\system32\SLsvc.exe
17:34:53.0126 1348 slsvc - ok
17:34:53.0158 1348 [ 6EDC422215CD78AA8A9CDE6B30ABBD35 ] SLUINotify C:\Windows\system32\SLUINotify.dll
17:34:53.0158 1348 SLUINotify - ok
17:34:53.0173 1348 [ 7B75299A4D201D6A6533603D6914AB04 ] Smb C:\Windows\system32\DRIVERS\smb.sys
17:34:53.0189 1348 Smb - ok
17:34:53.0204 1348 [ 2A146A055B4401C16EE62D18B8E2A032 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
17:34:53.0236 1348 SNMPTRAP - ok
17:34:53.0251 1348 [ 7AEBDEEF071FE28B0EEF2CDD69102BFF ] spldr C:\Windows\system32\drivers\spldr.sys
17:34:53.0251 1348 spldr - ok
17:34:53.0283 1348 [ 8554097E5136C3BF9F69FE578A1B35F4 ] Spooler C:\Windows\System32\spoolsv.exe
17:34:53.0298 1348 Spooler - ok
17:34:53.0361 1348 [ 41987F9FC0E61ADF54F581E15029AD91 ] srv C:\Windows\system32\DRIVERS\srv.sys
17:34:53.0361 1348 srv - ok
17:34:53.0376 1348 [ FF33AFF99564B1AA534F58868CBE41EF ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
17:34:53.0376 1348 srv2 - ok
17:34:53.0392 1348 [ 7605C0E1D01A08F3ECD743F38B834A44 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
17:34:53.0392 1348 srvnet - ok
17:34:53.0408 1348 [ 03D50B37234967433A5EA5BA72BC0B62 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
17:34:53.0408 1348 SSDPSRV - ok
17:34:53.0470 1348 [ A36EE93698802CD899F98BFD553D8185 ] ssmdrv C:\Windows\system32\DRIVERS\ssmdrv.sys
17:34:53.0486 1348 ssmdrv - ok
17:34:53.0517 1348 [ 6F1A32E7B7B30F004D9A20AFADB14944 ] SstpSvc C:\Windows\system32\sstpsvc.dll
17:34:53.0517 1348 SstpSvc - ok
17:34:53.0611 1348 [ F0359F7CE712D69ACEF0886BDB4792ED ] Stereo Service C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
17:34:53.0642 1348 Stereo Service - ok
17:34:53.0689 1348 [ EF70B3D22B4BFFDA6EA851ECB063EFAA ] StillCam C:\Windows\system32\DRIVERS\serscan.sys
17:34:53.0689 1348 StillCam - ok
17:34:53.0736 1348 [ 5DE7D67E49B88F5F07F3E53C4B92A352 ] stisvc C:\Windows\System32\wiaservc.dll
17:34:53.0751 1348 stisvc - ok
17:34:53.0814 1348 [ 4173A9CD59F15A64F54B3242C3232731 ] stllssvr C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
17:34:53.0814 1348 stllssvr - ok
17:34:53.0829 1348 [ 7BA58ECF0C0A9A69D44B3DCA62BECF56 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
17:34:53.0861 1348 swenum - ok
17:34:53.0892 1348 [ F21FD248040681CCA1FB6C9A03AAA93D ] swprv C:\Windows\System32\swprv.dll
17:34:53.0892 1348 swprv - ok
17:34:53.0923 1348 [ 192AA3AC01DF071B541094F251DEED10 ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys
17:34:53.0923 1348 Symc8xx - ok
17:34:53.0923 1348 SymIM - ok
17:34:53.0939 1348 SymIMMP - ok
17:34:53.0970 1348 [ 8C8EB8C76736EBAF3B13B633B2E64125 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys
17:34:53.0970 1348 Sym_hi - ok
17:34:53.0986 1348 [ 8072AF52B5FD103BBBA387A1E49F62CB ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys
17:34:53.0986 1348 Sym_u3 - ok
17:34:54.0001 1348 [ 9A51B04E9886AA4EE90093586B0BA88D ] SysMain C:\Windows\system32\sysmain.dll
17:34:54.0033 1348 SysMain - ok
17:34:54.0064 1348 [ 2DCA225EAE15F42C0933E998EE0231C3 ] TabletInputService C:\Windows\System32\TabSvc.dll
17:34:54.0064 1348 TabletInputService - ok
17:34:54.0095 1348 [ D7673E4B38CE21EE54C59EEEB65E2483 ] TapiSrv C:\Windows\System32\tapisrv.dll
17:34:54.0095 1348 TapiSrv - ok
17:34:54.0111 1348 [ CB05822CD9CC6C688168E113C603DBE7 ] TBS C:\Windows\System32\tbssvc.dll
17:34:54.0111 1348 TBS - ok
17:34:54.0142 1348 [ 27D470DABC77BC60D0A3B0E4DEB6CB91 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
17:34:54.0173 1348 Tcpip - ok
17:34:54.0204 1348 [ 27D470DABC77BC60D0A3B0E4DEB6CB91 ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys
17:34:54.0204 1348 Tcpip6 - ok
17:34:54.0236 1348 [ 608C345A255D82A6289C2D468EB41FD7 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
17:34:54.0236 1348 tcpipreg - ok
17:34:54.0314 1348 [ 5DCF5E267BE67A1AE926F2DF77FBCC56 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
17:34:54.0314 1348 TDPIPE - ok
17:34:54.0345 1348 [ 389C63E32B3CEFED425B61ED92D3F021 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
17:34:54.0345 1348 TDTCP - ok
17:34:54.0392 1348 [ 76B06EB8A01FC8624D699E7045303E54 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
17:34:54.0392 1348 tdx - ok
17:34:54.0423 1348 [ 3CAD38910468EAB9A6479E2F01DB43C7 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
17:34:54.0454 1348 TermDD - ok
17:34:54.0486 1348 [ BB95DA09BEF6E7A131BFF3BA5032090D ] TermService C:\Windows\System32\termsrv.dll
17:34:54.0501 1348 TermService - ok
17:34:54.0517 1348 [ C7230FBEE14437716701C15BE02C27B8 ] Themes C:\Windows\system32\shsvcs.dll
17:34:54.0517 1348 Themes - ok
17:34:54.0533 1348 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] THREADORDER C:\Windows\system32\mmcss.dll
17:34:54.0533 1348 THREADORDER - ok
17:34:54.0564 1348 [ EC74E77D0EB004BD3A809B5F8FB8C2CE ] TrkWks C:\Windows\System32\trkwks.dll
17:34:54.0564 1348 TrkWks - ok
17:34:54.0595 1348 [ 97D9D6A04E3AD9B6C626B9931DB78DBA ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
17:34:54.0595 1348 TrustedInstaller - ok
17:34:54.0626 1348 [ DCF0F056A2E4F52287264F5AB29CF206 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
17:34:54.0626 1348 tssecsrv - ok
17:34:54.0673 1348 [ CAECC0120AC49E3D2F758B9169872D38 ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys
17:34:54.0673 1348 tunmp - ok
17:34:54.0689 1348 [ 300DB877AC094FEAB0BE7688C3454A9C ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
17:34:54.0689 1348 tunnel - ok
17:34:54.0704 1348 [ 7D33C4DB2CE363C8518D2DFCF533941F ] uagp35 C:\Windows\system32\drivers\uagp35.sys
17:34:54.0704 1348 uagp35 - ok
17:34:54.0736 1348 [ D9728AF68C4C7693CB100B8441CBDEC6 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
17:34:54.0736 1348 udfs - ok
17:34:54.0751 1348 [ ECEF404F62863755951E09C802C94AD5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
17:34:54.0751 1348 UI0Detect - ok
17:34:54.0783 1348 [ B0ACFDC9E4AF279E9116C03E014B2B27 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
17:34:54.0783 1348 uliagpkx - ok
17:34:54.0783 1348 [ 9224BB254F591DE4CA8D572A5F0D635C ] uliahci C:\Windows\system32\drivers\uliahci.sys
17:34:54.0798 1348 uliahci - ok
17:34:54.0798 1348 [ 8514D0E5CD0534467C5FC61BE94A569F ] UlSata C:\Windows\system32\drivers\ulsata.sys
17:34:54.0798 1348 UlSata - ok
17:34:54.0814 1348 [ 38C3C6E62B157A6BC46594FADA45C62B ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys
17:34:54.0814 1348 ulsata2 - ok
17:34:54.0829 1348 [ 32CFF9F809AE9AED85464492BF3E32D2 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
17:34:54.0829 1348 umbus - ok
17:34:54.0845 1348 [ 68308183F4AE0BE7BF8ECD07CB297999 ] upnphost C:\Windows\System32\upnphost.dll
17:34:54.0845 1348 upnphost - ok
17:34:54.0908 1348 [ 78B74AF8727A28C128E164E9B53A5413 ] upperdev C:\Windows\system32\DRIVERS\usbser_lowerflt.sys
17:34:54.0908 1348 upperdev - ok
17:34:54.0923 1348 [ 32DB9517628FF0D070682AAB61E688F0 ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
17:34:54.0923 1348 usbaudio - ok
17:34:54.0954 1348 [ CAF811AE4C147FFCD5B51750C7F09142 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
17:34:54.0954 1348 usbccgp - ok
17:34:54.0986 1348 [ E9476E6C486E76BC4898074768FB7131 ] usbcir C:\Windows\system32\drivers\usbcir.sys
17:34:54.0986 1348 usbcir - ok
17:34:55.0033 1348 [ 79E96C23A97CE7B8F14D310DA2DB0C9B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
17:34:55.0033 1348 usbehci - ok
17:34:55.0048 1348 [ 4673BBCB006AF60E7ABDDBE7A130BA42 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
17:34:55.0048 1348 usbhub - ok
17:34:55.0064 1348 [ CE697FEE0D479290D89BEC80DFE793B7 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
17:34:55.0064 1348 usbohci - ok
17:34:55.0079 1348 [ E75C4B5269091D15A2E7DC0B6D35F2F5 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
17:34:55.0079 1348 usbprint - ok
17:34:55.0126 1348 [ A508C9BD8724980512136B039BBA65E9 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
17:34:55.0126 1348 usbscan - ok
17:34:55.0189 1348 [ D575246188F63DE0ACCF6EAC5FB59E6A ] usbser C:\Windows\system32\drivers\usbser.sys
17:34:55.0204 1348 usbser - ok
17:34:55.0204 1348 [ 4F8FBC51A1C0A17310846B417A447F91 ] UsbserFilt C:\Windows\system32\DRIVERS\usbser_lowerfltj.sys
17:34:55.0204 1348 UsbserFilt - ok
17:34:55.0220 1348 [ BE3DA31C191BC222D9AD503C5224F2AD ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
17:34:55.0220 1348 USBSTOR - ok
17:34:55.0267 1348 [ 814D653EFC4D48BE3B04A307ECEFF56F ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
17:34:55.0267 1348 usbuhci - ok
17:34:55.0283 1348 [ E67998E8F14CB0627A769F6530BCB352 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
17:34:55.0283 1348 usbvideo - ok
17:34:55.0314 1348 [ 1509E705F3AC1D474C92454A5C2DD81F ] UxSms C:\Windows\System32\uxsms.dll
17:34:55.0345 1348 UxSms - ok
17:34:55.0376 1348 [ CD88D1B7776DC17A119049742EC07EB4 ] vds C:\Windows\System32\vds.exe
17:34:55.0392 1348 vds - ok
17:34:55.0439 1348 [ 87B06E1F30B749A114F74622D013F8D4 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
17:34:55.0439 1348 vga - ok
17:34:55.0439 1348 [ 2E93AC0A1D8C79D019DB6C51F036636C ] VgaSave C:\Windows\System32\drivers\vga.sys
17:34:55.0439 1348 VgaSave - ok
17:34:55.0454 1348 [ 5D7159DEF58A800D5781BA3A879627BC ] viaagp C:\Windows\system32\drivers\viaagp.sys
17:34:55.0454 1348 viaagp - ok
17:34:55.0470 1348 [ C4F3A691B5BAD343E6249BD8C2D45DEE ] ViaC7 C:\Windows\system32\drivers\viac7.sys
17:34:55.0470 1348 ViaC7 - ok
17:34:55.0486 1348 [ AADF5587A4063F52C2C3FED7887426FC ] viaide C:\Windows\system32\drivers\viaide.sys
17:34:55.0486 1348 viaide - ok
17:34:55.0501 1348 [ 69503668AC66C77C6CD7AF86FBDF8C43 ] volmgr C:\Windows\system32\drivers\volmgr.sys
17:34:55.0501 1348 volmgr - ok
17:34:55.0533 1348 [ 23E41B834759917BFD6B9A0D625D0C28 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
17:34:55.0533 1348 volmgrx - ok
17:34:55.0564 1348 [ 147281C01FCB1DF9252DE2A10D5E7093 ] volsnap C:\Windows\system32\drivers\volsnap.sys
17:34:55.0564 1348 volsnap - ok
17:34:55.0564 1348 [ 587253E09325E6BF226B299774B728A9 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
17:34:55.0579 1348 vsmraid - ok
17:34:55.0626 1348 [ DB3D19F850C6EB32BDCB9BC0836ACDDB ] VSS C:\Windows\system32\vssvc.exe
17:34:55.0642 1348 VSS - ok
17:34:55.0658 1348 [ 96EA68B9EB310A69C25EBB0282B2B9DE ] W32Time C:\Windows\system32\w32time.dll
17:34:55.0673 1348 W32Time - ok
17:34:55.0689 1348 [ 48DFEE8F1AF7C8235D4E626F0C4FE031 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
17:34:55.0689 1348 WacomPen - ok
17:34:55.0704 1348 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys
17:34:55.0704 1348 Wanarp - ok
17:34:55.0704 1348 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
17:34:55.0704 1348 Wanarpv6 - ok
17:34:55.0736 1348 [ A3CD60FD826381B49F03832590E069AF ] wcncsvc C:\Windows\System32\wcncsvc.dll
17:34:55.0736 1348 wcncsvc - ok
17:34:55.0767 1348 [ 11BCB7AFCDD7AADACB5746F544D3A9C7 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
17:34:55.0783 1348 WcsPlugInService - ok
17:34:55.0783 1348 [ 78FE9542363F297B18C027B2D7E7C07F ] Wd C:\Windows\system32\drivers\wd.sys
17:34:55.0783 1348 Wd - ok
17:34:55.0814 1348 [ 9950E3D0F08141C7E89E64456AE7DC73 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
17:34:55.0829 1348 Wdf01000 - ok
17:34:55.0829 1348 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiServiceHost C:\Windows\system32\wdi.dll
17:34:55.0829 1348 WdiServiceHost - ok
17:34:55.0845 1348 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiSystemHost C:\Windows\system32\wdi.dll
17:34:55.0845 1348 WdiSystemHost - ok
17:34:55.0876 1348 [ 04C37D8107320312FBAE09926103D5E2 ] WebClient C:\Windows\System32\webclnt.dll
17:34:55.0876 1348 WebClient - ok
17:34:55.0908 1348 [ AE3736E7E8892241C23E4EBBB7453B60 ] Wecsvc C:\Windows\system32\wecsvc.dll
17:34:55.0908 1348 Wecsvc - ok
17:34:55.0923 1348 [ 670FF720071ED741206D69BD995EA453 ] wercplsupport C:\Windows\System32\wercplsupport.dll
17:34:55.0923 1348 wercplsupport - ok
17:34:55.0954 1348 [ 32B88481D3B326DA6DEB07B1D03481E7 ] WerSvc C:\Windows\System32\WerSvc.dll
17:34:55.0954 1348 WerSvc - ok
17:34:55.0970 1348 WinDefend - ok
17:34:55.0970 1348 WinHttpAutoProxySvc - ok
17:34:56.0048 1348 [ 6B2A1D0E80110E3D04E6863C6E62FD8A ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
17:34:56.0048 1348 Winmgmt - ok
17:34:56.0095 1348 [ 7CFE68BDC065E55AA5E8421607037511 ] WinRM C:\Windows\system32\WsmSvc.dll
17:34:56.0126 1348 WinRM - ok
17:34:56.0158 1348 [ C008405E4FEEB069E30DA1D823910234 ] Wlansvc C:\Windows\System32\wlansvc.dll
17:34:56.0158 1348 Wlansvc - ok
17:34:56.0189 1348 [ 2E7255D172DF0B8283CDFB7B433B864E ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
17:34:56.0189 1348 WmiAcpi - ok
17:34:56.0220 1348 [ 43BE3875207DCB62A85C8C49970B66CC ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
17:34:56.0220 1348 wmiApSrv - ok
17:34:56.0283 1348 [ 3978704576A121A9204F8CC49A301A9B ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
17:34:56.0298 1348 WMPNetworkSvc - ok
17:34:56.0345 1348 [ CFC5A04558F5070CEE3E3A7809F3FF52 ] WPCSvc C:\Windows\System32\wpcsvc.dll
17:34:56.0345 1348 WPCSvc - ok
17:34:56.0376 1348 [ 801FBDB89D472B3C467EB112A0FC9246 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
17:34:56.0376 1348 WPDBusEnum - ok
17:34:56.0423 1348 [ DE9D36F91A4DF3D911626643DEBF11EA ] WpdUsb C:\Windows\system32\DRIVERS\wpdusb.sys
17:34:56.0423 1348 WpdUsb - ok
17:34:56.0486 1348 [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
17:34:56.0517 1348 WPFFontCache_v0400 - ok
17:34:56.0533 1348 [ E3A3CB253C0EC2494D4A61F5E43A389C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
17:34:56.0533 1348 ws2ifsl - ok
17:34:56.0548 1348 [ 1CA6C40261DDC0425987980D0CD2AAAB ] wscsvc C:\Windows\System32\wscsvc.dll
17:34:56.0548 1348 wscsvc - ok
17:34:56.0548 1348 WSearch - ok
17:34:56.0626 1348 [ FC3EC24FCE372C89423E015A2AC1A31E ] wuauserv C:\Windows\system32\wuaueng.dll
17:34:56.0665 1348 wuauserv - ok
17:34:56.0697 1348 [ AC13CB789D93412106B0FB6C7EB2BCB6 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
17:34:56.0697 1348 WUDFRd - ok
17:34:56.0712 1348 [ 575A4190D989F64732119E4114045A4F ] wudfsvc C:\Windows\System32\WUDFSvc.dll
17:34:56.0720 1348 wudfsvc - ok
17:34:56.0736 1348 ================ Scan global ===============================
17:34:56.0767 1348 [ F31EEBC1A1C81FD04005489CC3DCDFE7 ] C:\Windows\system32\basesrv.dll
17:34:56.0798 1348 [ D2293B069E4B63DC17B2F08D45E71124 ] C:\Windows\system32\winsrv.dll
17:34:56.0822 1348 [ D2293B069E4B63DC17B2F08D45E71124 ] C:\Windows\system32\winsrv.dll
17:34:56.0853 1348 [ D4E6D91C1349B7BFB3599A6ADA56851B ] C:\Windows\system32\services.exe
17:34:56.0853 1348 [Global] - ok
17:34:56.0853 1348 ================ Scan MBR ==================================
17:34:56.0861 1348 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
17:34:57.0197 1348 \Device\Harddisk0\DR0 - ok
17:34:57.0204 1348 ================ Scan VBR ==================================
17:34:57.0204 1348 [ B21EF78B4BD35FD1F3EFC53142350C94 ] \Device\Harddisk0\DR0\Partition1
17:34:57.0204 1348 \Device\Harddisk0\DR0\Partition1 - ok
17:34:57.0228 1348 [ D86081837751E5E5C2D2191485221D42 ] \Device\Harddisk0\DR0\Partition2
17:34:57.0228 1348 \Device\Harddisk0\DR0\Partition2 - ok
17:34:57.0228 1348 ============================================================
17:34:57.0228 1348 Scan finished
17:34:57.0228 1348 ============================================================
17:34:57.0236 3268 Detected object count: 0
17:34:57.0236 3268 Actual detected object count: 0

Die hatte ich aber schon gepostet ...
aswMBR version 0.9.9.1707 Copyright(c) 2011 AVAST Software
Run date: 2013-03-15 07:31:29
-----------------------------
07:31:29.181 OS Version: Windows 6.0.6002 Service Pack 2
07:31:29.181 Number of processors: 2 586 0x1706
07:31:29.181 ComputerName: ***** UserName: *****
07:31:32.634 Initialize success
07:33:17.873 AVAST engine defs: 13031402
07:33:40.107 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP3T0L0-3
07:33:40.107 Disk 0 Vendor: WDC_WD5000AAVS-00ZTB0 01.01B01 Size: 476940MB BusType: 3
07:33:40.138 Disk 0 MBR read successfully
07:33:40.138 Disk 0 MBR scan
07:33:40.154 Disk 0 Windows VISTA default MBR code
07:33:40.169 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 468937 MB offset 2048
07:33:40.201 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 8000 MB offset 960387072
07:33:40.216 Disk 0 scanning sectors +976771072
07:33:40.279 Disk 0 scanning C:\Windows\system32\drivers
07:33:50.263 Service scanning
07:33:57.623 Service GMSIPCI E:\INSTALL\GMSIPCI.SYS **LOCKED** 21
07:33:59.873 Service iscsicql C:\Windows\system32\CHxReaeingStringIME.exe **INFECTED** Win32:Agent-AQRH [Trj]
07:34:13.091 Modules scanning
07:34:16.826 Disk 0 trace - called modules:
07:34:16.873 ntoskrnl.exe CLASSPNP.SYS disk.sys acpi.sys hal.dll ataport.SYS pciide.sys PCIIDEX.SYS atapi.sys
07:34:16.888 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x86408ac8]
07:34:16.888 3 CLASSPNP.SYS[8af678b3] -> nt!IofCallDriver -> [0x8528d860]
07:34:16.904 5 acpi.sys[8ae436bc] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP3T0L0-3[0x8527d3c8]
07:34:20.498 AVAST engine scan C:\Windows
07:34:26.044 AVAST engine scan C:\Windows\system32
07:34:35.982 File: C:\Windows\system32\CHxReaeingStringIME.exe **INFECTED** Win32:Agent-AQRH [Trj]
07:38:23.904 AVAST engine scan C:\Windows\system32\drivers
07:38:38.482 AVAST engine scan C:\Users\*****
07:50:48.638 AVAST engine scan C:\ProgramData
07:52:25.591 Scan finished successfully
07:53:01.873 Disk 0 MBR has been saved successfully to "C:\Users\*****\Desktop\MBR.dat"
07:53:01.904 The log file has been saved successfully to "C:\Users\*****\Desktop\aswMBR.txt"
aswMBR version 0.9.9.1707 Copyright(c) 2011 AVAST Software
Run date: 2013-03-15 07:31:29
-----------------------------
07:31:29.181 OS Version: Windows 6.0.6002 Service Pack 2
07:31:29.181 Number of processors: 2 586 0x1706
07:31:29.181 ComputerName:**** UserName: *****
07:31:32.634 Initialize success
07:33:17.873 AVAST engine defs: 13031402
07:33:40.107 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP3T0L0-3
07:33:40.107 Disk 0 Vendor: WDC_WD5000AAVS-00ZTB0 01.01B01 Size: 476940MB BusType: 3
07:33:40.138 Disk 0 MBR read successfully
07:33:40.138 Disk 0 MBR scan
07:33:40.154 Disk 0 Windows VISTA default MBR code
07:33:40.169 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 468937 MB offset 2048
07:33:40.201 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 8000 MB offset 960387072
07:33:40.216 Disk 0 scanning sectors +976771072
07:33:40.279 Disk 0 scanning C:\Windows\system32\drivers
07:33:50.263 Service scanning
07:33:57.623 Service GMSIPCI E:\INSTALL\GMSIPCI.SYS **LOCKED** 21
07:33:59.873 Service iscsicql C:\Windows\system32\CHxReaeingStringIME.exe **INFECTED** Win32:Agent-AQRH [Trj]
07:34:13.091 Modules scanning
07:34:16.826 Disk 0 trace - called modules:
07:34:16.873 ntoskrnl.exe CLASSPNP.SYS disk.sys acpi.sys hal.dll ataport.SYS pciide.sys PCIIDEX.SYS atapi.sys
07:34:16.888 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x86408ac8]
07:34:16.888 3 CLASSPNP.SYS[8af678b3] -> nt!IofCallDriver -> [0x8528d860]
07:34:16.904 5 acpi.sys[8ae436bc] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP3T0L0-3[0x8527d3c8]
07:34:20.498 AVAST engine scan C:\Windows
07:34:26.044 AVAST engine scan C:\Windows\system32
07:34:35.982 File: C:\Windows\system32\CHxReaeingStringIME.exe **INFECTED** Win32:Agent-AQRH [Trj]
07:38:23.904 AVAST engine scan C:\Windows\system32\drivers
07:38:38.482 AVAST engine scan C:\Users\*****
07:50:48.638 AVAST engine scan C:\ProgramData
07:52:25.591 Scan finished successfully
07:53:01.873 Disk 0 MBR has been saved successfully to "C:\Users\*****\Desktop\MBR.dat"
07:53:01.904 The log file has been saved successfully to "C:\Users\*****\Desktop\aswMBR.txt"
07:56:18.891 Disk 0 MBR has been saved successfully to "C:\Users\*****\Desktop\MBR.dat"
07:56:18.922 The log file has been saved successfully to "C:\Users\*****\Desktop\aswMBR.txt"
aswMBR version 0.9.9.1707 Copyright(c) 2011 AVAST Software
Run date: 2013-03-15 07:31:29
-----------------------------
07:31:29.181 OS Version: Windows 6.0.6002 Service Pack 2
07:31:29.181 Number of processors: 2 586 0x1706
07:31:29.181 ComputerName: ***** UserName: *****
07:31:32.634 Initialize success
07:33:17.873 AVAST engine defs: 13031402
07:33:40.107 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP3T0L0-3
07:33:40.107 Disk 0 Vendor: WDC_WD5000AAVS-00ZTB0 01.01B01 Size: 476940MB BusType: 3
07:33:40.138 Disk 0 MBR read successfully
07:33:40.138 Disk 0 MBR scan
07:33:40.154 Disk 0 Windows VISTA default MBR code
07:33:40.169 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 468937 MB offset 2048
07:33:40.201 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 8000 MB offset 960387072
07:33:40.216 Disk 0 scanning sectors +976771072
07:33:40.279 Disk 0 scanning C:\Windows\system32\drivers
07:33:50.263 Service scanning
07:33:57.623 Service GMSIPCI E:\INSTALL\GMSIPCI.SYS **LOCKED** 21
07:33:59.873 Service iscsicql C:\Windows\system32\CHxReaeingStringIME.exe **INFECTED** Win32:Agent-AQRH [Trj]
07:34:13.091 Modules scanning
07:34:16.826 Disk 0 trace - called modules:
07:34:16.873 ntoskrnl.exe CLASSPNP.SYS disk.sys acpi.sys hal.dll ataport.SYS pciide.sys PCIIDEX.SYS atapi.sys
07:34:16.888 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x86408ac8]
07:34:16.888 3 CLASSPNP.SYS[8af678b3] -> nt!IofCallDriver -> [0x8528d860]
07:34:16.904 5 acpi.sys[8ae436bc] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP3T0L0-3[0x8527d3c8]
07:34:20.498 AVAST engine scan C:\Windows
07:34:26.044 AVAST engine scan C:\Windows\system32
07:34:35.982 File: C:\Windows\system32\CHxReaeingStringIME.exe **INFECTED** Win32:Agent-AQRH [Trj]
07:38:23.904 AVAST engine scan C:\Windows\system32\drivers
07:38:38.482 AVAST engine scan C:\Users\*****
07:50:48.638 AVAST engine scan C:\ProgramData
07:52:25.591 Scan finished successfully
07:53:01.873 Disk 0 MBR has been saved successfully to "C:\Users\*****\Desktop\MBR.dat"
07:53:01.904 The log file has been saved successfully to "C:\Users\*****\Desktop\aswMBR.txt"
07:56:18.891 Disk 0 MBR has been saved successfully to "C:\Users\*****\Desktop\MBR.dat"
07:56:18.922 The log file has been saved successfully to "C:\Users\*****\Desktop\aswMBR.txt"
07:57:55.519 Disk 0 MBR has been saved successfully to "C:\Users\*****\Downloads\MBR.dat"
07:57:55.535 The log file has been saved successfully to "C:\Users\*****\Downloads\aswMBR.txt"
08:00:06.725 Disk 0 MBR has been saved successfully to "C:\Users\*****\Documents\MBR.dat"
08:00:06.975 The log file has been saved successfully to "C:\Users\*****\Documents\aswMBR.txt"
08:01:08.212 Disk 0 MBR has been saved successfully to "C:\Users\*****\Documents\MBR.dat"
08:01:08.212 The log file has been saved successfully to "C:\Users\*****\Documents\aswMBR.txt"
08:03:02.521 Disk 0 MBR has been saved successfully to "C:\Users\*****Desktop\MBR.dat"
08:03:02.536 The log file has been saved successfully to "C:\Users\*****\Desktop\aswMBR.txt"
aswMBR version 0.9.9.1707 Copyright(c) 2011 AVAST Software
Run date: 2013-03-15 07:31:29
-----------------------------
07:31:29.181 OS Version: Windows 6.0.6002 Service Pack 2
07:31:29.181 Number of processors: 2 586 0x1706
07:31:29.181 ComputerName: ***** UserName: *****
07:31:32.634 Initialize success
07:33:17.873 AVAST engine defs: 13031402
07:33:40.107 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP3T0L0-3
07:33:40.107 Disk 0 Vendor: WDC_WD5000AAVS-00ZTB0 01.01B01 Size: 476940MB BusType: 3
07:33:40.138 Disk 0 MBR read successfully
07:33:40.138 Disk 0 MBR scan
07:33:40.154 Disk 0 Windows VISTA default MBR code
07:33:40.169 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 468937 MB offset 2048
07:33:40.201 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 8000 MB offset 960387072
07:33:40.216 Disk 0 scanning sectors +976771072
07:33:40.279 Disk 0 scanning C:\Windows\system32\drivers
07:33:50.263 Service scanning
07:33:57.623 Service GMSIPCI E:\INSTALL\GMSIPCI.SYS **LOCKED** 21
07:33:59.873 Service iscsicql C:\Windows\system32\CHxReaeingStringIME.exe **INFECTED** Win32:Agent-AQRH [Trj]
07:34:13.091 Modules scanning
07:34:16.826 Disk 0 trace - called modules:
07:34:16.873 ntoskrnl.exe CLASSPNP.SYS disk.sys acpi.sys hal.dll ataport.SYS pciide.sys PCIIDEX.SYS atapi.sys
07:34:16.888 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x86408ac8]
07:34:16.888 3 CLASSPNP.SYS[8af678b3] -> nt!IofCallDriver -> [0x8528d860]
07:34:16.904 5 acpi.sys[8ae436bc] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP3T0L0-3[0x8527d3c8]
07:34:20.498 AVAST engine scan C:\Windows
07:34:26.044 AVAST engine scan C:\Windows\system32
07:34:35.982 File: C:\Windows\system32\CHxReaeingStringIME.exe **INFECTED** Win32:Agent-AQRH [Trj]
07:38:23.904 AVAST engine scan C:\Windows\system32\drivers
07:38:38.482 AVAST engine scan C:\Users\*****
07:50:48.638 AVAST engine scan C:\ProgramData
07:52:25.591 Scan finished successfully
aswMBR version 0.9.9.1707 Copyright(c) 2011 AVAST Software
Run date: 2013-03-15 17:39:08
-----------------------------
17:39:08.407 OS Version: Windows 6.0.6002 Service Pack 2
17:39:08.407 Number of processors: 2 586 0x1706
17:39:08.407 ComputerName: PETRA-PC UserName: Petra
17:39:46.602 Initialize success
17:39:54.712 AVAST engine defs: 13031402
17:40:11.462 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP3T0L0-4
17:40:11.462 Disk 0 Vendor: WDC_WD5000AAVS-00ZTB0 01.01B01 Size: 476940MB BusType: 3
17:40:11.477 Disk 0 MBR read successfully
17:40:11.493 Disk 0 MBR scan
17:40:11.524 Disk 0 Windows VISTA default MBR code
17:40:11.556 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 468937 MB offset 2048
17:40:11.587 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 8000 MB offset 960387072
17:40:11.587 Disk 0 scanning sectors +976771072
17:40:11.681 Disk 0 scanning C:\Windows\system32\drivers
17:40:27.602 Service scanning
17:40:33.985 Service GMSIPCI E:\INSTALL\GMSIPCI.SYS **LOCKED** 21
17:40:36.306 Service iscsicql C:\Windows\system32\CHxReaeingStringIME.exe **INFECTED** Win32:Agent-AQRH [Trj]
17:40:51.251 Modules scanning
17:40:54.962 Disk 0 trace - called modules:
17:40:55.001 ntoskrnl.exe CLASSPNP.SYS disk.sys acpi.sys hal.dll ataport.SYS pciide.sys PCIIDEX.SYS atapi.sys
17:40:55.009 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x86417670]
17:40:55.016 3 CLASSPNP.SYS[8af648b3] -> nt!IofCallDriver -> [0x85c0cc48]
17:40:55.032 5 acpi.sys[8ae406bc] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP3T0L0-4[0x8527a5a8]
17:40:56.282 AVAST engine scan C:\Windows
17:41:01.540 AVAST engine scan C:\Windows\system32
17:41:13.735 File: C:\Windows\system32\CHxReaeingStringIME.exe **INFECTED** Win32:Agent-AQRH [Trj]
17:45:05.876 AVAST engine scan C:\Windows\system32\drivers
17:45:21.712 AVAST engine scan C:\Users\Petra
17:57:01.720 AVAST engine scan C:\ProgramData
17:58:43.891 Scan finished successfully
18:02:27.673 Disk 0 MBR has been saved successfully to "C:\Users\Petra\Desktop\MBR.dat"
18:02:27.704 The log file has been saved successfully to "C:\Users\Petra\Desktop\aswMBR.txt"

Alt 15.03.2013, 19:28   #20
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
kann keine Windows Updates machen alles wird wieder rückgängig gemacht, habe auch die csrss.exe zweimal - Standard

kann keine Windows Updates machen alles wird wieder rückgängig gemacht, habe auch die csrss.exe zweimal


Code:
ATTFilter
17:34:41.0095 1348 Scan started
17:34:41.0095 1348 Mode: Manual;
Bitte die Anleitungen sorgfältiger lesen und auch genau umsetzen; du hast den TDSS-Killer falsch eingestellt

Außerdem bat ich dich am Anfang alle Logs immer nur in CODe-Tags zu posten

__________________
Logfiles bitte immer in CODE-Tags posten

Alt 16.03.2013, 20:04   #21
bobbypascha
 
kann keine Windows Updates machen alles wird wieder rückgängig gemacht, habe auch die csrss.exe zweimal - Standard

kann keine Windows Updates machen alles wird wieder rückgängig gemacht, habe auch die csrss.exe zweimal


Hi, so ich konnte von den Windows alle bis auf 5 Updates machen, die kann er micht konfigurieren

poste mal:
Sicherheitsupdate für Windows Vista (KB2691442)

Installationsdatum: ‎16.‎03.‎2013 19:48

Installationsstatus: Fehlgeschlagen

Fehlerdetails: Code 800719E4
+++++++++++++++++++++++++++++++

Sicherheitsupdate für Windows Vista (KB2685939)

Installationsdatum: ‎16.‎03.‎2013 19:47

Installationsstatus: Fehlgeschlagen

Fehlerdetails: Code 800719E4

+++++++++++++++++++++++++++++



Kumulatives Sicherheitsupdate für Internet Explorer 9 unter Windows Vista (KB2809289)

Installationsdatum: ‎16.‎03.‎2013 19:47

Installationsstatus: Fehlgeschlagen

Fehlerdetails: Code 800719E4
+++++++++++++++++++++++++++++++++

Sicherheitsupdate für Windows Vista (KB2691442)

Installationsdatum: ‎16.‎03.‎2013 18:11

Installationsstatus: Fehlgeschlagen

Fehlerdetails: Code 800719E4
++++++++++++++++++++++++++++++++++

Sicherheitsupdate für Windows Vista (KB2685939)

Installationsdatum: ‎16.‎03.‎2013 18:10

Installationsstatus: Fehlgeschlagen

Fehlerdetails: Code 800719E4
++++++++++++++++++++++++++++++++

Kumulatives Sicherheitsupdate für Internet Explorer 9 unter Windows Vista (KB2809289)

Installationsdatum: ‎16.‎03.‎2013 18:10

Installationsstatus: Fehlgeschlagen

Fehlerdetails: Code 800719E4
++++++++++++++++++++++++

hoffe Du kannst damit was anfangen

Gruss

Alt 17.03.2013, 15:55   #22
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
kann keine Windows Updates machen alles wird wieder rückgängig gemacht, habe auch die csrss.exe zweimal - Standard

kann keine Windows Updates machen alles wird wieder rückgängig gemacht, habe auch die csrss.exe zweimal


Was soll das jetzt mit den Windows-Updates?
Das war doch überhaupt noch nicht das Thema! Mach bitte das Log vom TDSS-Killer richtig und poste die Logs in CODE Tags

Lesestoff:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert mir massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu gross für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
  • Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
  • Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
  • Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
  • Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.
__________________
Logfiles bitte immer in CODE-Tags posten

Antwort
Seite 2 von 2 1 2

Themen zu kann keine Windows Updates machen alles wird wieder rückgängig gemacht, habe auch die csrss.exe zweimal
brauche, compu, computer, csrss.exe, dateien, entdeck, erklären, langsam, rechner, rechnung, rückgängig, schließ, schließt, sehr langsam, updates, verzweifele, windows, windows updates, zweimal, öfter


« PC immer langsamer und freezed | deo0_sar.exe "Das angegebene Modul wurde nicht gefunden" »


Ähnliche Themen: kann keine Windows Updates machen alles wird wieder rückgängig gemacht, habe auch die csrss.exe zweimal


  1. Windows 8.1 - Startseiten aller Browser verändert; lässt sich nicht rückgängig machen
    Log-Analyse und Auswertung - 12.05.2014 (16)
  2. Kann keine Windows Updates mehr installieren
    Plagegeister aller Art und deren Bekämpfung - 26.03.2014 (16)
  3. Komme nicht in Webbrowswer rein, kann keine Updates machen und Boot CD zeigt Endlosschleife an
    Log-Analyse und Auswertung - 01.11.2013 (7)
  4. ich glaub ich habe einen virus(trojaner>JS/Exploit-Blacole.ht< unter anderen.) sorry habe im ersten thema so ziemlich alles falsch gemacht
    Mülltonne - 21.12.2012 (4)
  5. PC formatiert, lan kabel angeschlossen will keine updates machen ?
    Alles rund um Windows - 02.08.2012 (2)
  6. Neuaufsetzen System rückgängig machen?
    Alles rund um Windows - 02.04.2012 (1)
  7. habe auch diesen bka ukash trojaner und keinen Plan was ich machen kann
    Log-Analyse und Auswertung - 05.03.2012 (1)
  8. OTL-Fix - Fehler rückgängig machen
    Log-Analyse und Auswertung - 20.01.2012 (0)
  9. Windows XP Recovery, habe ich alles richtig gemacht?
    Log-Analyse und Auswertung - 26.05.2011 (29)
  10. Kann in Windows XP Pro, keine Updates meht installieren. HJThis LOG inside...
    Alles rund um Windows - 04.02.2010 (1)
  11. Browser wird umgelenkt und antvir kann plötzlich keine updates mehr
    Log-Analyse und Auswertung - 28.02.2009 (17)
  12. Kann keine updates mehr machen mit kaspersky
    Log-Analyse und Auswertung - 03.02.2009 (18)
  13. Ich kann keine Windows Updates machen
    Log-Analyse und Auswertung - 13.01.2009 (8)
  14. Ich kann keine Windows updates aktivieren
    Mülltonne - 17.11.2008 (0)
  15. Dingens.org rückgängig machen!
    Überwachung, Datenschutz und Spam - 06.01.2006 (1)
  16. Kann ich die Updates auch woander runterladen, als bei windows?
    Alles rund um Windows - 18.08.2005 (9)
  17. Aurora Bitte um Hilfe habe schon alles gemacht was ich finden konnte!!
    Log-Analyse und Auswertung - 14.06.2005 (10)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema kann keine Windows Updates machen alles wird wieder rückgängig gemacht, habe auch die csrss.exe zweimal - Sry, aber das ist kein Link zu Virustotal - kann keine Windows Updates machen alles wird wieder rückgängig gemacht, habe auch die csrss.exe zweimal...
Archiv
Du betrachtest: kann keine Windows Updates machen alles wird wieder rückgängig gemacht, habe auch die csrss.exe zweimal auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55