iexplorer prozess
 

Hallo zusammen,
ich hab seit einiger Zeit Probleme mit meinem Arbeitsspeicher, der völlig ausgelastet zu sein scheint, Ich hab das Problem mitlerweile eingegrenzt auf einen seltsamen Prozess, nämlich iexplore.exe (und das obwohl ich den iexplorer gar nicht benutze), der ist auch nur zu sehen, wenn ich die Prozesse aller benutzer anzeige. Wenn ich den Prozess im Taskmanager lösche, geht die RAM-Ausnutzung schlagartig um 30-40% runter. Der Prozess geht aber fast sofort wieder an (es dauert aber eine Weile, bis er wieder den Arbeitsspeicher so saumäßig vollmacht). Manchmal ist der Prozess sogar mehrfach vorhanden.
Betriebssystem ist Windows 7 Home Premium 64Bit SP1.
Avast findet nix. Das kann aber doch nicht der normale iexplorer sein?

OTL-Scan:OTL Logfile:
OTL EXTRAS Logfile:
--- --- ---

--- --- ---

OTL EXTRAS Logfile:
--- --- ---

Gekauft ? Anlügen bringt nix

Nein, das war eine Testversion, die geht aber nicht mehr. Das kann ich mir leider nicht leisten, weil ich das nur für Hobby bräuchte.

Ich kenn Experten und nichtmal die kommen mit der Software wirklich klar. GIMP ;)




Lese bitte folgende Anweisungen genau. Wir wollen hier noch nichts "fixen" sondern nur einen Scan Report sehen.

Downloade dir bitte TDSSKiller.exe und speichere diese Datei auf dem Desktop

• Starte die TDSSKiller.exe
• Drücke Start Scan
• Sollten infizierte Objekte gefunden werden, wähle keinesfalls Cure. Wähle Skip und speichere das Logfile.
  TDSSKiller wird eine Logfile auf deinem Systemlaufwerk speichern ( Meistens C:\ )
  Als Beispiel: C:\TDSSKiller.<version_date_time>log.txt

Poste den Inhalt bitte hier in deinen Thread.

Hier das Logfile, es wurde aber nichts gefunden:

20:22:51.0720 23184 TDSS rootkit removing tool 2.8.8.0 Aug 24 2012 13:27:48
20:22:52.0019 23184 ============================================================
20:22:52.0019 23184 Current date / time: 2012/09/05 20:22:52.0019
20:22:52.0019 23184 SystemInfo:
20:22:52.0019 23184
20:22:52.0019 23184 OS Version: 6.1.7601 ServicePack: 1.0
20:22:52.0019 23184 Product type: Workstation
20:22:52.0020 23184 ComputerName: NOTEBOOK
20:22:52.0020 23184 UserName: Christof
20:22:52.0020 23184 Windows directory: C:\Windows
20:22:52.0020 23184 System windows directory: C:\Windows
20:22:52.0020 23184 Running under WOW64
20:22:52.0020 23184 Processor architecture: Intel x64
20:22:52.0020 23184 Number of processors: 4
20:22:52.0020 23184 Page size: 0x1000
20:22:52.0020 23184 Boot type: Normal boot
20:22:52.0020 23184 ============================================================
20:22:52.0612 23184 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
20:22:52.0618 23184 ============================================================
20:22:52.0618 23184 \Device\Harddisk0\DR0:
20:22:52.0619 23184 MBR partitions:
20:22:52.0619 23184 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x33000, BlocksNum 0x1D4C000
20:22:52.0619 23184 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1D7F000, BlocksNum 0x38606830
20:22:52.0619 23184 ============================================================
20:22:52.0643 23184 C: <-> \Device\Harddisk0\DR0\Partition2
20:22:52.0643 23184 ============================================================
20:22:52.0643 23184 Initialize success
20:22:52.0643 23184 ============================================================
20:23:39.0601 23204 ============================================================
20:23:39.0601 23204 Scan started
20:23:39.0601 23204 Mode: Manual;
20:23:39.0601 23204 ============================================================
20:23:41.0695 23204 ================ Scan system memory ========================
20:23:41.0695 23204 System memory - ok
20:23:41.0695 23204 ================ Scan services =============================
20:23:41.0880 23204 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
20:23:41.0883 23204 1394ohci - ok
20:23:41.0943 23204 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
20:23:41.0948 23204 ACPI - ok
20:23:41.0999 23204 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
20:23:42.0000 23204 AcpiPmi - ok
20:23:42.0041 23204 [ 2F0683FD2DF1D92E891CACA14B45A8C1 ] adfs C:\Windows\system32\drivers\adfs.sys
20:23:42.0043 23204 adfs - ok
20:23:42.0164 23204 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
20:23:42.0165 23204 AdobeARMservice - ok
20:23:42.0281 23204 [ B2B64AF436FACCFA854DD397027C5360 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
20:23:42.0284 23204 AdobeFlashPlayerUpdateSvc - ok
20:23:42.0326 23204 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
20:23:42.0331 23204 adp94xx - ok
20:23:42.0367 23204 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
20:23:42.0372 23204 adpahci - ok
20:23:42.0389 23204 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
20:23:42.0392 23204 adpu320 - ok
20:23:42.0420 23204 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
20:23:42.0421 23204 AeLookupSvc - ok
20:23:42.0493 23204 [ D1E343BC00136CE03C4D403194D06A80 ] AERTFilters C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
20:23:42.0495 23204 AERTFilters - ok
20:23:42.0563 23204 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
20:23:42.0569 23204 AFD - ok
20:23:42.0615 23204 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
20:23:42.0617 23204 agp440 - ok
20:23:42.0648 23204 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
20:23:42.0650 23204 ALG - ok
20:23:42.0696 23204 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
20:23:42.0697 23204 aliide - ok
20:23:42.0719 23204 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
20:23:42.0721 23204 amdide - ok
20:23:42.0752 23204 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
20:23:42.0754 23204 AmdK8 - ok
20:23:42.0758 23204 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
20:23:42.0760 23204 AmdPPM - ok
20:23:42.0811 23204 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
20:23:42.0814 23204 amdsata - ok
20:23:42.0832 23204 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
20:23:42.0836 23204 amdsbs - ok
20:23:42.0856 23204 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
20:23:42.0858 23204 amdxata - ok
20:23:42.0919 23204 [ 7380B9072EBC65A54DA3074E14BF34B9 ] ApfiltrService C:\Windows\system32\DRIVERS\Apfiltr.sys
20:23:42.0923 23204 ApfiltrService - ok
20:23:43.0012 23204 [ 59D01FA91962C9C1E9B4022B2D3B46DB ] AppHostSvc C:\Windows\system32\inetsrv\apphostsvc.dll
20:23:43.0014 23204 AppHostSvc - ok
20:23:43.0073 23204 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
20:23:43.0075 23204 AppID - ok
20:23:43.0101 23204 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
20:23:43.0104 23204 AppIDSvc - ok
20:23:43.0150 23204 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
20:23:43.0152 23204 Appinfo - ok
20:23:43.0188 23204 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
20:23:43.0190 23204 arc - ok
20:23:43.0197 23204 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
20:23:43.0199 23204 arcsas - ok
20:23:43.0269 23204 [ DF59B8E8DF0BD2E0E303778A3806A17D ] aswFsBlk C:\Windows\system32\drivers\aswFsBlk.sys
20:23:43.0270 23204 aswFsBlk - ok
20:23:43.0347 23204 [ F8E6AB4F876FEFF69250F2E0C29EF004 ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys
20:23:43.0349 23204 aswMonFlt - ok
20:23:43.0416 23204 [ AA92BC4BCBA40CA3AA3FFD1BE24F0C09 ] aswRdr C:\Windows\System32\Drivers\aswrdr2.sys
20:23:43.0418 23204 aswRdr - ok
20:23:43.0471 23204 [ F06E230E1E8CA9437A6474B7B551CD37 ] aswSnx C:\Windows\system32\drivers\aswSnx.sys
20:23:43.0489 23204 aswSnx - ok
20:23:43.0516 23204 [ 3610CA74A69E380424F0452DEC5C1317 ] aswSP C:\Windows\system32\drivers\aswSP.sys
20:23:43.0521 23204 aswSP - ok
20:23:43.0565 23204 [ 87DE3E31CB0091D22351349869324065 ] aswTdi C:\Windows\system32\drivers\aswTdi.sys
20:23:43.0567 23204 aswTdi - ok
20:23:43.0603 23204 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
20:23:43.0605 23204 AsyncMac - ok
20:23:43.0648 23204 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
20:23:43.0650 23204 atapi - ok
20:23:43.0716 23204 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
20:23:43.0723 23204 AudioEndpointBuilder - ok
20:23:43.0737 23204 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
20:23:43.0742 23204 AudioSrv - ok
20:23:43.0815 23204 [ 2F7C0F3E39C45E0127FB78B2F18A41F3 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
20:23:43.0816 23204 avast! Antivirus - ok
20:23:43.0842 23204 [ BD39D7CFD9D6A73396B618113A8E8D57 ] avmaudio C:\Windows\system32\DRIVERS\avmaudio.sys
20:23:43.0844 23204 avmaudio - ok
20:23:43.0904 23204 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
20:23:43.0906 23204 AxInstSV - ok
20:23:43.0965 23204 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
20:23:43.0971 23204 b06bdrv - ok
20:23:44.0015 23204 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
20:23:44.0018 23204 b57nd60a - ok
20:23:44.0060 23204 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
20:23:44.0063 23204 BDESVC - ok
20:23:44.0082 23204 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
20:23:44.0084 23204 Beep - ok
20:23:44.0157 23204 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
20:23:44.0165 23204 BFE - ok
20:23:44.0213 23204 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
20:23:44.0227 23204 BITS - ok
20:23:44.0270 23204 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
20:23:44.0272 23204 blbdrive - ok
20:23:44.0366 23204 [ C620C59D46F43BEECC556F65E801312B ] Bluetooth Device Monitor C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
20:23:44.0385 23204 Bluetooth Device Monitor - ok
20:23:44.0435 23204 [ 5E5EDCCEEA4FA3FDF3A907AC204B5828 ] Bluetooth Media Service C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
20:23:44.0468 23204 Bluetooth Media Service - ok
20:23:44.0523 23204 [ 826E65C945738CBD64F89EAE4406687F ] Bluetooth OBEX Service C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
20:23:44.0543 23204 Bluetooth OBEX Service - ok
20:23:44.0588 23204 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
20:23:44.0590 23204 bowser - ok
20:23:44.0628 23204 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
20:23:44.0629 23204 BrFiltLo - ok
20:23:44.0659 23204 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
20:23:44.0660 23204 BrFiltUp - ok
20:23:44.0707 23204 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
20:23:44.0709 23204 Browser - ok
20:23:44.0738 23204 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
20:23:44.0742 23204 Brserid - ok
20:23:44.0748 23204 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
20:23:44.0750 23204 BrSerWdm - ok
20:23:44.0766 23204 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
20:23:44.0768 23204 BrUsbMdm - ok
20:23:44.0774 23204 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
20:23:44.0775 23204 BrUsbSer - ok
20:23:44.0822 23204 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
20:23:44.0824 23204 BthEnum - ok
20:23:44.0852 23204 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
20:23:44.0854 23204 BTHMODEM - ok
20:23:44.0891 23204 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
20:23:44.0893 23204 BthPan - ok
20:23:44.0946 23204 [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys
20:23:44.0953 23204 BTHPORT - ok
20:23:44.0994 23204 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
20:23:44.0995 23204 bthserv - ok
20:23:45.0036 23204 [ F188B7394D81010767B6DF3178519A37 ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys
20:23:45.0038 23204 BTHUSB - ok
20:23:45.0081 23204 [ 962BD3689E2C85F0BA97F3D7E7BA540B ] btmaux C:\Windows\system32\DRIVERS\btmaux.sys
20:23:45.0083 23204 btmaux - ok
20:23:45.0122 23204 [ 40C6FEC49D1CC4D112368A2BCD2BCBB7 ] btmhsf C:\Windows\system32\DRIVERS\btmhsf.sys
20:23:45.0126 23204 btmhsf - ok
20:23:45.0154 23204 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
20:23:45.0156 23204 cdfs - ok
20:23:45.0222 23204 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\drivers\cdrom.sys
20:23:45.0225 23204 cdrom - ok
20:23:45.0278 23204 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
20:23:45.0280 23204 CertPropSvc - ok
20:23:45.0325 23204 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
20:23:45.0326 23204 circlass - ok
20:23:45.0359 23204 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
20:23:45.0363 23204 CLFS - ok
20:23:45.0430 23204 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
20:23:45.0432 23204 clr_optimization_v2.0.50727_32 - ok
20:23:45.0486 23204 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
20:23:45.0488 23204 clr_optimization_v2.0.50727_64 - ok
20:23:45.0578 23204 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
20:23:45.0580 23204 clr_optimization_v4.0.30319_32 - ok
20:23:45.0619 23204 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
20:23:45.0621 23204 clr_optimization_v4.0.30319_64 - ok
20:23:45.0662 23204 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
20:23:45.0664 23204 CmBatt - ok
20:23:45.0687 23204 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
20:23:45.0689 23204 cmdide - ok
20:23:45.0727 23204 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
20:23:45.0732 23204 CNG - ok
20:23:45.0792 23204 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
20:23:45.0794 23204 Compbatt - ok
20:23:45.0853 23204 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
20:23:45.0855 23204 CompositeBus - ok
20:23:45.0875 23204 COMSysApp - ok
20:23:45.0898 23204 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
20:23:45.0900 23204 crcdisk - ok
20:23:45.0961 23204 [ 4F5414602E2544A4554D95517948B705 ] CryptSvc C:\Windows\system32\cryptsvc.dll
20:23:45.0964 23204 CryptSvc - ok
20:23:46.0004 23204 [ FBE228ABEAB2BE13B9C3A3A112D4D8DC ] CtClsFlt C:\Windows\system32\DRIVERS\CtClsFlt.sys
20:23:46.0008 23204 CtClsFlt - ok
20:23:46.0130 23204 [ 72794D112CBAFF3BC0C29BF7350D4741 ] cvhsvc C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
20:23:46.0140 23204 cvhsvc - ok
20:23:46.0257 23204 [ 958EF96991ABCCFDAC0953C4A24081DC ] DAZContentManagementService C:\Program Files\DAZ 3D\Content Management Service\ContentManagementServer.exe
20:23:46.0258 23204 DAZContentManagementService - ok
20:23:46.0324 23204 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
20:23:46.0331 23204 DcomLaunch - ok
20:23:46.0387 23204 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
20:23:46.0392 23204 defragsvc - ok
20:23:46.0446 23204 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
20:23:46.0449 23204 DfsC - ok
20:23:46.0501 23204 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
20:23:46.0506 23204 Dhcp - ok
20:23:46.0542 23204 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
20:23:46.0544 23204 discache - ok
20:23:46.0571 23204 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
20:23:46.0572 23204 Disk - ok
20:23:46.0602 23204 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
20:23:46.0607 23204 Dnscache - ok
20:23:46.0658 23204 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
20:23:46.0662 23204 dot3svc - ok
20:23:46.0706 23204 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
20:23:46.0709 23204 DPS - ok
20:23:46.0749 23204 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
20:23:46.0751 23204 drmkaud - ok
20:23:46.0811 23204 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
20:23:46.0831 23204 DXGKrnl - ok
20:23:46.0856 23204 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
20:23:46.0858 23204 EapHost - ok
20:23:46.0950 23204 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
20:23:47.0014 23204 ebdrv - ok
20:23:47.0050 23204 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
20:23:47.0053 23204 EFS - ok
20:23:47.0122 23204 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
20:23:47.0130 23204 ehRecvr - ok
20:23:47.0154 23204 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
20:23:47.0156 23204 ehSched - ok
20:23:47.0183 23204 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
20:23:47.0189 23204 elxstor - ok
20:23:47.0240 23204 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
20:23:47.0242 23204 ErrDev - ok
20:23:47.0276 23204 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
20:23:47.0281 23204 EventSystem - ok
20:23:47.0377 23204 [ 8B6C9924B0D333DBF76086B8258A0891 ] EvtEng C:\Program Files\Intel\WiFi\bin\EvtEng.exe
20:23:47.0410 23204 EvtEng - ok
20:23:47.0439 23204 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
20:23:47.0443 23204 exfat - ok
20:23:47.0466 23204 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
20:23:47.0470 23204 fastfat - ok
20:23:47.0539 23204 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
20:23:47.0548 23204 Fax - ok
20:23:47.0568 23204 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
20:23:47.0570 23204 fdc - ok
20:23:47.0591 23204 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
20:23:47.0593 23204 fdPHost - ok
20:23:47.0600 23204 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
20:23:47.0602 23204 FDResPub - ok
20:23:47.0630 23204 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
20:23:47.0632 23204 FileInfo - ok
20:23:47.0639 23204 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
20:23:47.0641 23204 Filetrace - ok
20:23:47.0659 23204 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
20:23:47.0660 23204 flpydisk - ok
20:23:47.0717 23204 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
20:23:47.0721 23204 FltMgr - ok
20:23:47.0791 23204 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
20:23:47.0824 23204 FontCache - ok
20:23:47.0899 23204 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
20:23:47.0900 23204 FontCache3.0.0.0 - ok
20:23:47.0921 23204 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
20:23:47.0923 23204 FsDepends - ok
20:23:47.0959 23204 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
20:23:47.0961 23204 Fs_Rec - ok
20:23:48.0009 23204 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
20:23:48.0012 23204 fvevol - ok
20:23:48.0033 23204 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
20:23:48.0035 23204 gagp30kx - ok
20:23:48.0092 23204 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
20:23:48.0101 23204 gpsvc - ok
20:23:48.0242 23204 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
20:23:48.0244 23204 gupdate - ok
20:23:48.0257 23204 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
20:23:48.0258 23204 gupdatem - ok
20:23:48.0294 23204 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
20:23:48.0295 23204 hcw85cir - ok
20:23:48.0332 23204 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
20:23:48.0336 23204 HdAudAddService - ok
20:23:48.0402 23204 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
20:23:48.0406 23204 HDAudBus - ok
20:23:48.0412 23204 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
20:23:48.0413 23204 HidBatt - ok
20:23:48.0419 23204 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
20:23:48.0424 23204 HidBth - ok
20:23:48.0437 23204 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
20:23:48.0438 23204 HidIr - ok
20:23:48.0469 23204 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
20:23:48.0471 23204 hidserv - ok
20:23:48.0526 23204 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
20:23:48.0528 23204 HidUsb - ok
20:23:48.0573 23204 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
20:23:48.0576 23204 hkmsvc - ok
20:23:48.0619 23204 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
20:23:48.0623 23204 HomeGroupListener - ok
20:23:48.0664 23204 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
20:23:48.0669 23204 HomeGroupProvider - ok
20:23:48.0716 23204 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
20:23:48.0718 23204 HpSAMD - ok
20:23:48.0786 23204 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
20:23:48.0795 23204 HTTP - ok
20:23:48.0837 23204 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
20:23:48.0839 23204 hwpolicy - ok
20:23:48.0959 23204 [ 39602803DE367C94134C585072F5DF02 ] i2p C:\Program Files\i2p\I2Psvc.exe
20:23:48.0964 23204 i2p - ok
20:23:49.0019 23204 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
20:23:49.0021 23204 i8042prt - ok
20:23:49.0057 23204 [ D469B77687E12FE43E344806740B624D ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
20:23:49.0060 23204 iaStor - ok
20:23:49.0099 23204 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
20:23:49.0104 23204 iaStorV - ok
20:23:49.0163 23204 [ FC47F5CF561BF0FD897EFD1A9604DCCF ] iBtFltCoex C:\Windows\system32\DRIVERS\iBtFltCoex.sys
20:23:49.0165 23204 iBtFltCoex - ok
20:23:49.0226 23204 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
20:23:49.0236 23204 idsvc - ok
20:23:49.0578 23204 [ A47D902F5C0C43DCF5EE2CAE02BF39A8 ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
20:23:49.0863 23204 igfx - ok
20:23:49.0896 23204 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
20:23:49.0898 23204 iirsp - ok
20:23:49.0944 23204 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
20:23:49.0953 23204 IKEEXT - ok
20:23:49.0981 23204 [ DD587A55390ED2295BCE6D36AD567DA9 ] Impcd C:\Windows\system32\DRIVERS\Impcd.sys
20:23:49.0983 23204 Impcd - ok
20:23:50.0061 23204 [ 8FED6428FDE53D7F4C105095F22524BE ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
20:23:50.0119 23204 IntcAzAudAddService - ok
20:23:50.0155 23204 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
20:23:50.0157 23204 intelide - ok
20:23:50.0189 23204 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
20:23:50.0191 23204 intelppm - ok
20:23:50.0224 23204 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
20:23:50.0227 23204 IPBusEnum - ok
20:23:50.0264 23204 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
20:23:50.0266 23204 IpFilterDriver - ok
20:23:50.0318 23204 [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
20:23:50.0325 23204 iphlpsvc - ok
20:23:50.0371 23204 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
20:23:50.0373 23204 IPMIDRV - ok
20:23:50.0402 23204 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
20:23:50.0404 23204 IPNAT - ok
20:23:50.0424 23204 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
20:23:50.0425 23204 IRENUM - ok
20:23:50.0475 23204 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
20:23:50.0477 23204 isapnp - ok
20:23:50.0517 23204 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
20:23:50.0521 23204 iScsiPrt - ok
20:23:50.0549 23204 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
20:23:50.0551 23204 kbdclass - ok
20:23:50.0600 23204 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
20:23:50.0602 23204 kbdhid - ok
20:23:50.0617 23204 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
20:23:50.0619 23204 KeyIso - ok
20:23:50.0640 23204 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
20:23:50.0642 23204 KSecDD - ok
20:23:50.0660 23204 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
20:23:50.0663 23204 KSecPkg - ok
20:23:50.0687 23204 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
20:23:50.0688 23204 ksthunk - ok
20:23:50.0720 23204 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
20:23:50.0726 23204 KtmRm - ok
20:23:50.0783 23204 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
20:23:50.0788 23204 LanmanServer - ok
20:23:50.0834 23204 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
20:23:50.0838 23204 LanmanWorkstation - ok
20:23:50.0998 23204 [ 19EFF704CD16DD0429E128431F1DD631 ] LBTServ C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
20:23:51.0002 23204 LBTServ - ok
20:23:51.0079 23204 [ ABFD2B5726F4CCE49297AE48806CC594 ] LEqdUsb C:\Windows\system32\DRIVERS\LEqdUsb.Sys
20:23:51.0081 23204 LEqdUsb - ok
20:23:51.0130 23204 [ 933F69CF9ACD2498693BFCD7ED68E8D4 ] LHidEqd C:\Windows\system32\DRIVERS\LHidEqd.Sys
20:23:51.0132 23204 LHidEqd - ok
20:23:51.0147 23204 [ 1074C77A47835E03C15BF92452F9A750 ] LHidFilt C:\Windows\system32\DRIVERS\LHidFilt.Sys
20:23:51.0150 23204 LHidFilt - ok
20:23:51.0195 23204 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
20:23:51.0197 23204 lltdio - ok
20:23:51.0230 23204 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
20:23:51.0236 23204 lltdsvc - ok
20:23:51.0284 23204 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
20:23:51.0286 23204 lmhosts - ok
20:23:51.0296 23204 [ 96999C364C649E2866A268F7420A304A ] LMouFilt C:\Windows\system32\DRIVERS\LMouFilt.Sys
20:23:51.0298 23204 LMouFilt - ok
20:23:51.0360 23204 [ 7F32D4C47A50E7223491E8FB9359907D ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
20:23:51.0364 23204 LMS - ok
20:23:51.0400 23204 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
20:23:51.0403 23204 LSI_FC - ok
20:23:51.0409 23204 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
20:23:51.0412 23204 LSI_SAS - ok
20:23:51.0419 23204 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
20:23:51.0420 23204 LSI_SAS2 - ok
20:23:51.0426 23204 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
20:23:51.0428 23204 LSI_SCSI - ok
20:23:51.0447 23204 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
20:23:51.0450 23204 luafv - ok
20:23:51.0492 23204 [ 0C85B2B6FB74B36A251792D45E0EF860 ] LVRS64 C:\Windows\system32\DRIVERS\lvrs64.sys
20:23:51.0497 23204 LVRS64 - ok
20:23:51.0626 23204 [ FF3A488924B0032B1A9CA6948C1FA9E8 ] LVUVC64 C:\Windows\system32\DRIVERS\lvuvc64.sys
20:23:51.0729 23204 LVUVC64 - ok
20:23:51.0792 23204 [ 79D51E7F5926E8CE1B3EBECEBAE28CFF ] mcdbus C:\Windows\system32\DRIVERS\mcdbus.sys
20:23:51.0795 23204 mcdbus - ok
20:23:51.0844 23204 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
20:23:51.0847 23204 Mcx2Svc - ok
20:23:51.0867 23204 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
20:23:51.0868 23204 megasas - ok
20:23:51.0893 23204 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
20:23:51.0896 23204 MegaSR - ok
20:23:51.0940 23204 [ A6518DCC42F7A6E999BB3BEA8FD87567 ] MEIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
20:23:51.0942 23204 MEIx64 - ok
20:23:51.0980 23204 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
20:23:51.0983 23204 MMCSS - ok
20:23:52.0000 23204 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
20:23:52.0001 23204 Modem - ok
20:23:52.0041 23204 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
20:23:52.0043 23204 monitor - ok
20:23:52.0063 23204 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
20:23:52.0065 23204 mouclass - ok
20:23:52.0092 23204 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
20:23:52.0093 23204 mouhid - ok
20:23:52.0138 23204 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
20:23:52.0140 23204 mountmgr - ok
20:23:52.0197 23204 [ E8D79312373F254DC13F3965BDB3D521 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
20:23:52.0199 23204 MozillaMaintenance - ok
20:23:52.0218 23204 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
20:23:52.0221 23204 mpio - ok
20:23:52.0246 23204 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
20:23:52.0248 23204 mpsdrv - ok
20:23:52.0309 23204 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
20:23:52.0323 23204 MpsSvc - ok
20:23:52.0364 23204 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
20:23:52.0367 23204 MRxDAV - ok
20:23:52.0410 23204 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
20:23:52.0414 23204 mrxsmb - ok
20:23:52.0463 23204 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
20:23:52.0467 23204 mrxsmb10 - ok
20:23:52.0496 23204 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
20:23:52.0499 23204 mrxsmb20 - ok
20:23:52.0520 23204 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
20:23:52.0522 23204 msahci - ok
20:23:52.0560 23204 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
20:23:52.0563 23204 msdsm - ok
20:23:52.0582 23204 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
20:23:52.0586 23204 MSDTC - ok
20:23:52.0621 23204 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
20:23:52.0623 23204 Msfs - ok
20:23:52.0645 23204 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
20:23:52.0646 23204 mshidkmdf - ok
20:23:52.0687 23204 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
20:23:52.0688 23204 msisadrv - ok
20:23:52.0719 23204 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
20:23:52.0723 23204 MSiSCSI - ok
20:23:52.0727 23204 msiserver - ok
20:23:52.0757 23204 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
20:23:52.0759 23204 MSKSSRV - ok
20:23:52.0791 23204 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
20:23:52.0792 23204 MSPCLOCK - ok
20:23:52.0806 23204 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
20:23:52.0808 23204 MSPQM - ok
20:23:52.0850 23204 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
20:23:52.0855 23204 MsRPC - ok
20:23:52.0906 23204 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
20:23:52.0907 23204 mssmbios - ok
20:23:52.0914 23204 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
20:23:52.0916 23204 MSTEE - ok
20:23:52.0928 23204 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
20:23:52.0930 23204 MTConfig - ok
20:23:52.0953 23204 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
20:23:52.0954 23204 Mup - ok
20:23:52.0999 23204 [ 6ED8935257672F4CD04A88A0F3DE093D ] MyWiFiDHCPDNS C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
20:23:53.0003 23204 MyWiFiDHCPDNS - ok
20:23:53.0060 23204 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
20:23:53.0066 23204 napagent - ok
20:23:53.0127 23204 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
20:23:53.0131 23204 NativeWifiP - ok
20:23:53.0218 23204 [ 13AA2130F2A104DD775EAD0F0EE5417B ] NAUpdate C:\Program Files (x86)\Nero\Update\NASvc.exe
20:23:53.0225 23204 NAUpdate - ok
20:23:53.0308 23204 [ C38B8AE57F78915905064A9A24DC1586 ] NDIS C:\Windows\system32\drivers\ndis.sys
20:23:53.0318 23204 NDIS - ok
20:23:53.0386 23204 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
20:23:53.0388 23204 NdisCap - ok
20:23:53.0420 23204 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
20:23:53.0421 23204 NdisTapi - ok
20:23:53.0483 23204 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
20:23:53.0485 23204 Ndisuio - ok
20:23:53.0533 23204 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
20:23:53.0536 23204 NdisWan - ok
20:23:53.0581 23204 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
20:23:53.0583 23204 NDProxy - ok
20:23:53.0606 23204 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
20:23:53.0608 23204 NetBIOS - ok
20:23:53.0662 23204 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
20:23:53.0665 23204 NetBT - ok
20:23:53.0683 23204 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
20:23:53.0685 23204 Netlogon - ok
20:23:53.0733 23204 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
20:23:53.0739 23204 Netman - ok
20:23:53.0778 23204 [ 3E5A36127E201DDF663176B66828FAFE ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
20:23:53.0780 23204 NetMsmqActivator - ok
20:23:53.0786 23204 [ 3E5A36127E201DDF663176B66828FAFE ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
20:23:53.0787 23204 NetPipeActivator - ok
20:23:53.0813 23204 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
20:23:53.0820 23204 netprofm - ok
20:23:53.0824 23204 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
20:23:53.0825 23204 NetTcpActivator - ok
20:23:53.0829 23204 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
20:23:53.0830 23204 NetTcpPortSharing - ok
20:23:54.0026 23204 [ 5D262402B0634C998F8CBCEAD7DD8676 ] NETwNs64 C:\Windows\system32\DRIVERS\NETwNs64.sys
20:23:54.0223 23204 NETwNs64 - ok
20:23:54.0243 23204 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
20:23:54.0245 23204 nfrd960 - ok
20:23:54.0305 23204 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
20:23:54.0310 23204 NlaSvc - ok
20:23:54.0328 23204 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
20:23:54.0330 23204 Npfs - ok
20:23:54.0355 23204 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
20:23:54.0358 23204 nsi - ok
20:23:54.0366 23204 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
20:23:54.0368 23204 nsiproxy - ok
20:23:54.0416 23204 [ A2F74975097F52A00745F9637451FDD8 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
20:23:54.0454 23204 Ntfs - ok
20:23:54.0484 23204 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
20:23:54.0485 23204 Null - ok
20:23:54.0525 23204 [ A7127E86F9FFE2A53E271B56B2C4CEDF ] nusb3hub C:\Windows\system32\DRIVERS\nusb3hub.sys
20:23:54.0527 23204 nusb3hub - ok
20:23:54.0551 23204 [ 49BBEC6F48D5F9284B03ABF3A959B19B ] nusb3xhc C:\Windows\system32\DRIVERS\nusb3xhc.sys
20:23:54.0555 23204 nusb3xhc - ok
20:23:54.0606 23204 [ 857FB74754EBFF94EE3AD40788740916 ] NVHDA C:\Windows\system32\drivers\nvhda64v.sys
20:23:54.0609 23204 NVHDA - ok
20:23:54.0929 23204 [ D5DEA2C1865CAB9EE6AA29CF9E79A2CE ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
20:23:55.0238 23204 nvlddmkm - ok
20:23:55.0259 23204 [ 5EF70F7714C664BCF50EDFC141DEA9B8 ] nvpciflt C:\Windows\system32\DRIVERS\nvpciflt.sys
20:23:55.0260 23204 nvpciflt - ok
20:23:55.0300 23204 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
20:23:55.0304 23204 nvraid - ok
20:23:55.0327 23204 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
20:23:55.0330 23204 nvstor - ok
20:23:55.0392 23204 [ 5A4AF8EA634B4FEEAF6F16BB1845715A ] NVSvc C:\Windows\system32\nvvsvc.exe
20:23:55.0411 23204 NVSvc - ok
20:23:55.0509 23204 [ 4B7636C52A359AB0783B350A5FBDBB49 ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
20:23:55.0557 23204 nvUpdatusService - ok
20:23:55.0609 23204 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
20:23:55.0611 23204 nv_agp - ok
20:23:55.0653 23204 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
20:23:55.0655 23204 ohci1394 - ok
20:23:55.0715 23204 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
20:23:55.0718 23204 ose - ok
20:23:55.0891 23204 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
20:23:56.0002 23204 osppsvc - ok
20:23:56.0044 23204 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
20:23:56.0049 23204 p2pimsvc - ok
20:23:56.0075 23204 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
20:23:56.0081 23204 p2psvc - ok
20:23:56.0106 23204 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
20:23:56.0108 23204 Parport - ok
20:23:56.0147 23204 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
20:23:56.0149 23204 partmgr - ok
20:23:56.0161 23204 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
20:23:56.0165 23204 PcaSvc - ok
20:23:56.0208 23204 [ BC0018C2D29F655188A0ED3FA94FDB24 ] pccsmcfd C:\Windows\system32\DRIVERS\pccsmcfdx64.sys
20:23:56.0210 23204 pccsmcfd - ok
20:23:56.0229 23204 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
20:23:56.0232 23204 pci - ok
20:23:56.0269 23204 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
20:23:56.0271 23204 pciide - ok
20:23:56.0309 23204 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
20:23:56.0312 23204 pcmcia - ok
20:23:56.0327 23204 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
20:23:56.0328 23204 pcw - ok
20:23:56.0354 23204 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
20:23:56.0362 23204 PEAUTH - ok
20:23:56.0441 23204 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
20:23:56.0444 23204 PerfHost - ok
20:23:56.0517 23204 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
20:23:56.0554 23204 pla - ok
20:23:56.0604 23204 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
20:23:56.0612 23204 PlugPlay - ok
20:23:56.0622 23204 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
20:23:56.0626 23204 PNRPAutoReg - ok
20:23:56.0645 23204 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
20:23:56.0649 23204 PNRPsvc - ok
20:23:56.0702 23204 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
20:23:56.0708 23204 PolicyAgent - ok
20:23:56.0734 23204 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
20:23:56.0739 23204 Power - ok
20:23:56.0793 23204 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
20:23:56.0795 23204 PptpMiniport - ok
20:23:56.0808 23204 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
20:23:56.0810 23204 Processor - ok
20:23:56.0864 23204 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
20:23:56.0869 23204 ProfSvc - ok
20:23:56.0884 23204 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
20:23:56.0886 23204 ProtectedStorage - ok
20:23:56.0938 23204 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
20:23:56.0940 23204 Psched - ok
20:23:56.0964 23204 [ 87B04878A6D59D6C79251DC960C674C1 ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
20:23:56.0966 23204 PxHlpa64 - ok
20:23:57.0016 23204 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
20:23:57.0053 23204 ql2300 - ok
20:23:57.0058 23204 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
20:23:57.0061 23204 ql40xx - ok
20:23:57.0084 23204 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
20:23:57.0089 23204 QWAVE - ok
20:23:57.0116 23204 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
20:23:57.0118 23204 QWAVEdrv - ok
20:23:57.0124 23204 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
20:23:57.0126 23204 RasAcd - ok
20:23:57.0153 23204 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
20:23:57.0156 23204 RasAgileVpn - ok
20:23:57.0172 23204 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
20:23:57.0175 23204 RasAuto - ok
20:23:57.0231 23204 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
20:23:57.0233 23204 Rasl2tp - ok
20:23:57.0281 23204 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
20:23:57.0287 23204 RasMan - ok
20:23:57.0339 23204 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
20:23:57.0342 23204 RasPppoe - ok
20:23:57.0357 23204 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
20:23:57.0359 23204 RasSstp - ok
20:23:57.0410 23204 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
20:23:57.0414 23204 rdbss - ok
20:23:57.0458 23204 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
20:23:57.0460 23204 rdpbus - ok
20:23:57.0479 23204 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
20:23:57.0480 23204 RDPCDD - ok
20:23:57.0517 23204 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
20:23:57.0519 23204 RDPENCDD - ok
20:23:57.0530 23204 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
20:23:57.0532 23204 RDPREFMP - ok
20:23:57.0567 23204 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
20:23:57.0570 23204 RDPWD - ok
20:23:57.0640 23204 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
20:23:57.0643 23204 rdyboost - ok
20:23:57.0729 23204 [ 189C5A8D2098E0AA14FD157A954B34FC ] RegSrvc C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
20:23:57.0740 23204 RegSrvc - ok
20:23:57.0782 23204 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
20:23:57.0787 23204 RemoteAccess - ok
20:23:57.0819 23204 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
20:23:57.0823 23204 RemoteRegistry - ok
20:23:57.0859 23204 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
20:23:57.0862 23204 RFCOMM - ok
20:23:57.0968 23204 [ BDDC447AB46625A54619808575D5CB46 ] RoxMediaDB12OEM C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe
20:23:58.0002 23204 RoxMediaDB12OEM - ok
20:23:58.0034 23204 [ CE203243ADF512540249DF9C264F12DD ] RoxWatch12 C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe
20:23:58.0037 23204 RoxWatch12 - ok
20:23:58.0071 23204 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
20:23:58.0075 23204 RpcEptMapper - ok
20:23:58.0103 23204 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
20:23:58.0106 23204 RpcLocator - ok
20:23:58.0157 23204 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
20:23:58.0162 23204 RpcSs - ok
20:23:58.0203 23204 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
20:23:58.0205 23204 rspndr - ok
20:23:58.0229 23204 [ 135A64530D7699AD48F29D73A658DD11 ] RSUSBSTOR C:\Windows\system32\Drivers\RtsUStor.sys
20:23:58.0230 23204 RSUSBSTOR - ok
20:23:58.0275 23204 [ EE082E06A82FF630351D1E0EBBD3D8D0 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
20:23:58.0282 23204 RTL8167 - ok
20:23:58.0295 23204 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
20:23:58.0297 23204 SamSs - ok
20:23:58.0335 23204 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
20:23:58.0337 23204 sbp2port - ok
20:23:58.0364 23204 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
20:23:58.0369 23204 SCardSvr - ok
20:23:58.0414 23204 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
20:23:58.0416 23204 scfilter - ok
20:23:58.0480 23204 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
20:23:58.0514 23204 Schedule - ok
20:23:58.0556 23204 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
20:23:58.0558 23204 SCPolicySvc - ok
20:23:58.0597 23204 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
20:23:58.0602 23204 SDRSVC - ok
20:23:58.0641 23204 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
20:23:58.0643 23204 secdrv - ok
20:23:58.0689 23204 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
20:23:58.0692 23204 seclogon - ok
20:23:58.0726 23204 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
20:23:58.0730 23204 SENS - ok
20:23:58.0746 23204 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
20:23:58.0749 23204 SensrSvc - ok
20:23:58.0785 23204 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
20:23:58.0786 23204 Serenum - ok
20:23:58.0802 23204 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
20:23:58.0805 23204 Serial - ok
20:23:58.0850 23204 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
20:23:58.0852 23204 sermouse - ok
20:23:58.0916 23204 [ 8C1F87F5FDD92229D1754B98F073913F ] ServiceLayer C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
20:23:58.0925 23204 ServiceLayer - ok
20:23:58.0990 23204 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
20:23:58.0995 23204 SessionEnv - ok
20:23:59.0032 23204 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
20:23:59.0034 23204 sffdisk - ok
20:23:59.0044 23204 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
20:23:59.0046 23204 sffp_mmc - ok
20:23:59.0051 23204 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
20:23:59.0053 23204 sffp_sd - ok
20:23:59.0100 23204 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
20:23:59.0101 23204 sfloppy - ok
20:23:59.0172 23204 [ C6CC9297BD53E5229653303E556AA539 ] Sftfs C:\Windows\system32\DRIVERS\Sftfslh.sys
20:23:59.0181 23204 Sftfs - ok
20:23:59.0295 23204 [ 13693B6354DD6E72DC5131DA7D764B90 ] sftlist C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
20:23:59.0301 23204 sftlist - ok
20:23:59.0321 23204 [ 390AA7BC52CEE43F6790CDEA1E776703 ] Sftplay C:\Windows\system32\DRIVERS\Sftplaylh.sys
20:23:59.0326 23204 Sftplay - ok
20:23:59.0358 23204 [ 617E29A0B0A2807466560D4C4E338D3E ] Sftredir C:\Windows\system32\DRIVERS\Sftredirlh.sys
20:23:59.0360 23204 Sftredir - ok
20:23:59.0444 23204 [ 74EC60E20516AAA573BE74F31175270F ] SftService C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
20:23:59.0481 23204 SftService - ok
20:23:59.0501 23204 [ 8F571F016FA1976F445147E9E6C8AE9B ] Sftvol C:\Windows\system32\DRIVERS\Sftvollh.sys
20:23:59.0502 23204 Sftvol - ok
20:23:59.0585 23204 [ C3CDDD18F43D44AB713CF8C4916F7696 ] sftvsa C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
20:23:59.0587 23204 sftvsa - ok
20:23:59.0620 23204 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
20:23:59.0626 23204 SharedAccess - ok
20:23:59.0690 23204 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
20:23:59.0698 23204 ShellHWDetection - ok
20:23:59.0726 23204 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
20:23:59.0727 23204 SiSRaid2 - ok
20:23:59.0765 23204 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
20:23:59.0768 23204 SiSRaid4 - ok
20:23:59.0801 23204 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
20:23:59.0803 23204 Smb - ok
20:23:59.0844 23204 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
20:23:59.0847 23204 SNMPTRAP - ok
20:23:59.0860 23204 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
20:23:59.0862 23204 spldr - ok
20:23:59.0921 23204 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
20:23:59.0929 23204 Spooler - ok
20:24:00.0061 23204 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
20:24:00.0137 23204 sppsvc - ok
20:24:00.0179 23204 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
20:24:00.0183 23204 sppuinotify - ok
20:24:00.0227 23204 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
20:24:00.0233 23204 srv - ok
20:24:00.0276 23204 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
20:24:00.0281 23204 srv2 - ok
20:24:00.0296 23204 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
20:24:00.0299 23204 srvnet - ok
20:24:00.0333 23204 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
20:24:00.0339 23204 SSDPSRV - ok
20:24:00.0356 23204 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
20:24:00.0360 23204 SstpSvc - ok
20:24:00.0401 23204 [ 79969ACAEEBEDA7DC3673656AB9918FD ] Stereo Service C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
20:24:00.0406 23204 Stereo Service - ok
20:24:00.0430 23204 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
20:24:00.0432 23204 stexstor - ok
20:24:00.0495 23204 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
20:24:00.0504 23204 stisvc - ok
20:24:00.0544 23204 [ 9E182DD94496550A22A392CC1A8E0F52 ] stllssvr C:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe
20:24:00.0546 23204 stllssvr - ok
20:24:00.0581 23204 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
20:24:00.0583 23204 swenum - ok
20:24:00.0686 23204 [ F577910A133A592234EBAAD3F3AFA258 ] SwitchBoard C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
20:24:00.0693 23204 SwitchBoard - ok
20:24:00.0764 23204 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
20:24:00.0773 23204 swprv - ok
20:24:00.0880 23204 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
20:24:00.0914 23204 SysMain - ok
20:24:00.0964 23204 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
20:24:00.0968 23204 TabletInputService - ok
20:24:01.0150 23204 [ 5F5AC85DE73FD25AD36BF591185EC009 ] TabletServicePen C:\Program Files\Tablet\Pen\Pen_Tablet.exe
20:24:01.0340 23204 TabletServicePen - ok
20:24:01.0397 23204 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
20:24:01.0405 23204 TapiSrv - ok
20:24:01.0470 23204 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
20:24:01.0473 23204 TBS - ok
20:24:01.0535 23204 [ ACB82BDA8F46C84F465C1AFA517DC4B9 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
20:24:01.0584 23204 Tcpip - ok
20:24:01.0660 23204 [ ACB82BDA8F46C84F465C1AFA517DC4B9 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
20:24:01.0678 23204 TCPIP6 - ok
20:24:01.0724 23204 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
20:24:01.0726 23204 tcpipreg - ok
20:24:01.0768 23204 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
20:24:01.0770 23204 TDPIPE - ok
20:24:01.0797 23204 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
20:24:01.0799 23204 TDTCP - ok
20:24:01.0850 23204 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
20:24:01.0853 23204 tdx - ok
20:24:01.0898 23204 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
20:24:01.0900 23204 TermDD - ok
20:24:01.0953 23204 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
20:24:01.0963 23204 TermService - ok
20:24:01.0992 23204 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
20:24:01.0995 23204 Themes - ok
20:24:02.0025 23204 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
20:24:02.0028 23204 THREADORDER - ok
20:24:02.0072 23204 [ 7446E9D669A3B747BC4D11A82F69A5ED ] TouchServicePen C:\Program Files\Tablet\Pen\Pen_TouchService.exe
20:24:02.0078 23204 TouchServicePen - ok
20:24:02.0096 23204 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
20:24:02.0100 23204 TrkWks - ok
20:24:02.0129 23204 [ EA43DE1743C1BA0D2D17B8DB90C91D88 ] truecrypt C:\Windows\system32\drivers\truecrypt.sys
20:24:02.0133 23204 truecrypt - ok
20:24:02.0194 23204 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
20:24:02.0197 23204 TrustedInstaller - ok
20:24:02.0245 23204 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
20:24:02.0247 23204 tssecsrv - ok
20:24:02.0278 23204 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
20:24:02.0280 23204 TsUsbFlt - ok
20:24:02.0360 23204 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
20:24:02.0362 23204 tunnel - ok
20:24:02.0395 23204 [ FD24F98D2898BE093FE926604BE7DB99 ] TurboB C:\Windows\system32\DRIVERS\TurboB.sys
20:24:02.0397 23204 TurboB - ok
20:24:02.0433 23204 [ 600B406A04D90F577FEA8A88D7379F08 ] TurboBoost C:\Program Files\Intel\TurboBoost\TurboBoost.exe
20:24:02.0437 23204 TurboBoost - ok
20:24:02.0463 23204 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
20:24:02.0465 23204 uagp35 - ok
20:24:02.0599 23204 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
20:24:02.0603 23204 udfs - ok
20:24:02.0670 23204 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
20:24:02.0674 23204 UI0Detect - ok
20:24:02.0711 23204 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
20:24:02.0713 23204 uliagpkx - ok
20:24:02.0779 23204 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
20:24:02.0781 23204 umbus - ok
20:24:02.0801 23204 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
20:24:02.0803 23204 UmPass - ok
20:24:02.0892 23204 [ 67A95B9D129ED5399E7965CD09CF30E7 ] UMVPFSrv C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
20:24:02.0897 23204 UMVPFSrv - ok
20:24:02.0980 23204 [ 9DC07E73A4ABB9ACF692113B36A5009F ] UnlockerDriver5 C:\Program Files\Unlocker\UnlockerDriver5.sys
20:24:02.0982 23204 UnlockerDriver5 - ok
20:24:03.0153 23204 [ 2C16648A12999AE69A9EBF41974B0BA2 ] UNS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
20:24:03.0211 23204 UNS - ok
20:24:03.0241 23204 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
20:24:03.0247 23204 upnphost - ok
20:24:03.0273 23204 [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
20:24:03.0275 23204 usbaudio - ok
20:24:03.0320 23204 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
20:24:03.0322 23204 usbccgp - ok
20:24:03.0368 23204 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
20:24:03.0371 23204 usbcir - ok
20:24:03.0386 23204 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\drivers\usbehci.sys
20:24:03.0387 23204 usbehci - ok
20:24:03.0445 23204 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
20:24:03.0450 23204 usbhub - ok
20:24:03.0502 23204 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
20:24:03.0505 23204 usbohci - ok
20:24:03.0552 23204 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
20:24:03.0554 23204 usbprint - ok
20:24:03.0583 23204 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
20:24:03.0585 23204 usbscan - ok
20:24:03.0633 23204 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
20:24:03.0636 23204 USBSTOR - ok
20:24:03.0658 23204 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
20:24:03.0660 23204 usbuhci - ok
20:24:03.0720 23204 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
20:24:03.0723 23204 usbvideo - ok
20:24:03.0747 23204 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
20:24:03.0750 23204 UxSms - ok
20:24:03.0761 23204 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
20:24:03.0765 23204 VaultSvc - ok
20:24:03.0776 23204 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
20:24:03.0778 23204 vdrvroot - ok
20:24:03.0848 23204 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
20:24:03.0856 23204 vds - ok
20:24:03.0896 23204 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
20:24:03.0898 23204 vga - ok
20:24:03.0912 23204 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
20:24:03.0914 23204 VgaSave - ok
20:24:03.0966 23204 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
20:24:03.0969 23204 vhdmp - ok
20:24:04.0008 23204 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
20:24:04.0010 23204 viaide - ok
20:24:04.0033 23204 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
20:24:04.0035 23204 volmgr - ok
20:24:04.0081 23204 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
20:24:04.0087 23204 volmgrx - ok
20:24:04.0103 23204 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
20:24:04.0107 23204 volsnap - ok
20:24:04.0138 23204 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
20:24:04.0142 23204 vsmraid - ok
20:24:04.0210 23204 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
20:24:04.0256 23204 VSS - ok
20:24:04.0273 23204 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
20:24:04.0275 23204 vwifibus - ok
20:24:04.0308 23204 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
20:24:04.0310 23204 vwififlt - ok
20:24:04.0343 23204 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
20:24:04.0345 23204 vwifimp - ok
20:24:04.0375 23204 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
20:24:04.0401 23204 W32Time - ok
20:24:04.0493 23204 [ B32009DB1972E7F2C227499289C4384A ] W3SVC C:\Windows\system32\inetsrv\iisw3adm.dll
20:24:04.0498 23204 W3SVC - ok
20:24:04.0541 23204 [ 43CE14E1E17DA81EA71DFE686805ED07 ] wacmoumonitor C:\Windows\system32\DRIVERS\wacmoumonitor.sys
20:24:04.0542 23204 wacmoumonitor - ok
20:24:04.0589 23204 [ E04D43C7D1641E95D35CAE6086C7E350 ] wacommousefilter C:\Windows\system32\DRIVERS\wacommousefilter.sys
20:24:04.0591 23204 wacommousefilter - ok
20:24:04.0606 23204 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
20:24:04.0608 23204 WacomPen - ok
20:24:04.0636 23204 [ EC1CEB237E365330C1FCFC4876AA0AC0 ] wacomvhid C:\Windows\system32\DRIVERS\wacomvhid.sys
20:24:04.0638 23204 wacomvhid - ok
20:24:04.0699 23204 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
20:24:04.0701 23204 WANARP - ok
20:24:04.0705 23204 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
20:24:04.0706 23204 Wanarpv6 - ok
20:24:04.0749 23204 [ B32009DB1972E7F2C227499289C4384A ] WAS C:\Windows\system32\inetsrv\iisw3adm.dll
20:24:04.0752 23204 WAS - ok
20:24:04.0811 23204 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
20:24:04.0848 23204 wbengine - ok
20:24:04.0888 23204 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
20:24:04.0895 23204 WbioSrvc - ok
20:24:04.0936 23204 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
20:24:04.0944 23204 wcncsvc - ok
20:24:04.0963 23204 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
20:24:04.0967 23204 WcsPlugInService - ok
20:24:04.0998 23204 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
20:24:05.0000 23204 Wd - ok
20:24:05.0031 23204 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
20:24:05.0038 23204 Wdf01000 - ok
20:24:05.0057 23204 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
20:24:05.0061 23204 WdiServiceHost - ok
20:24:05.0064 23204 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
20:24:05.0068 23204 WdiSystemHost - ok
20:24:05.0103 23204 [ 94DC2BF6CBAAA95E369C3756D3115A76 ] wdkmd C:\Windows\system32\DRIVERS\WDKMD.sys
20:24:05.0105 23204 wdkmd - ok
20:24:05.0150 23204 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
20:24:05.0156 23204 WebClient - ok
20:24:05.0190 23204 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
20:24:05.0196 23204 Wecsvc - ok
20:24:05.0206 23204 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
20:24:05.0210 23204 wercplsupport - ok
20:24:05.0242 23204 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
20:24:05.0246 23204 WerSvc - ok
20:24:05.0279 23204 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
20:24:05.0282 23204 WfpLwf - ok
20:24:05.0309 23204 [ B14EF15BD757FA488F9C970EEE9C0D35 ] WimFltr C:\Windows\system32\DRIVERS\wimfltr.sys
20:24:05.0313 23204 WimFltr - ok
20:24:05.0330 23204 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
20:24:05.0332 23204 WIMMount - ok
20:24:05.0344 23204 WinDefend - ok
20:24:05.0349 23204 WinHttpAutoProxySvc - ok
20:24:05.0394 23204 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
20:24:05.0397 23204 Winmgmt - ok
20:24:05.0481 23204 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
20:24:05.0531 23204 WinRM - ok
20:24:05.0607 23204 [ FE88B288356E7B47B74B13372ADD906D ] WinUSB C:\Windows\system32\DRIVERS\WinUSB.sys
20:24:05.0609 23204 WinUSB - ok
20:24:05.0659 23204 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
20:24:05.0675 23204 Wlansvc - ok
20:24:05.0722 23204 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
20:24:05.0724 23204 wlcrasvc - ok
20:24:05.0852 23204 [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
20:24:05.0903 23204 wlidsvc - ok
20:24:05.0966 23204 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
20:24:05.0968 23204 WmiAcpi - ok
20:24:06.0000 23204 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
20:24:06.0003 23204 wmiApSrv - ok
20:24:06.0040 23204 WMPNetworkSvc - ok
20:24:06.0063 23204 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
20:24:06.0067 23204 WPCSvc - ok
20:24:06.0113 23204 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
20:24:06.0118 23204 WPDBusEnum - ok
20:24:06.0152 23204 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
20:24:06.0154 23204 ws2ifsl - ok
20:24:06.0169 23204 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
20:24:06.0173 23204 wscsvc - ok
20:24:06.0176 23204 WSearch - ok
20:24:06.0262 23204 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
20:24:06.0322 23204 wuauserv - ok
20:24:06.0348 23204 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
20:24:06.0351 23204 WudfPf - ok
20:24:06.0402 23204 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
20:24:06.0405 23204 WUDFRd - ok
20:24:06.0436 23204 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
20:24:06.0440 23204 wudfsvc - ok
20:24:06.0467 23204 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
20:24:06.0473 23204 WwanSvc - ok
20:24:06.0490 23204 ================ Scan global ===============================
20:24:06.0517 23204 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
20:24:06.0551 23204 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
20:24:06.0561 23204 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
20:24:06.0592 23204 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
20:24:06.0629 23204 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
20:24:06.0635 23204 [Global] - ok
20:24:06.0635 23204 ================ Scan MBR ==================================
20:24:06.0645 23204 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
20:24:06.0924 23204 \Device\Harddisk0\DR0 - ok
20:24:06.0924 23204 ================ Scan VBR ==================================
20:24:06.0927 23204 [ CA2E3639A093B2D9C85146588E9DB88F ] \Device\Harddisk0\DR0\Partition1
20:24:06.0928 23204 \Device\Harddisk0\DR0\Partition1 - ok
20:24:06.0945 23204 [ C845D5C8BB657EE4EBCDF33A84300C9A ] \Device\Harddisk0\DR0\Partition2
20:24:06.0946 23204 \Device\Harddisk0\DR0\Partition2 - ok
20:24:06.0947 23204 ============================================================
20:24:06.0947 23204 Scan finished
20:24:06.0947 23204 ============================================================
20:24:06.0955 22184 Detected object count: 0
20:24:06.0955 22184 Actual detected object count: 0

Combofix sollte ausschließlich ausgeführt werden, wenn dies von einem Teammitglied angewiesen wurde!

Downloade dir bitte Combofix vom folgenden Downloadspiegel

Link 1


WICHTIG - Speichere Combofix auf deinem Desktop

• Deaktiviere bitte all deine Anti Viren sowie Anti Malware/Spyware Scanner. Diese können Combofix bei der Arbeit stören.

Starte die Combofix.exe und folge den Anweisungen auf dem Bildschirm.

Wenn Combofix fertig ist, wird es eine Logfile erstellen. Bitte poste die C:\Combofix.txt in deiner nächsten Antwort.


Hinweis: Solltest du nach dem Neustart folgende Fehlermeldung erhalten
starte den Rechner einfach neu. Dies sollte das Problem beheben.

Anbei der log von combofix:

Combofix Logfile:
--- --- ---

Es gab während der Ausführung mehrere Fehlermeldungen, ich hab mal Screenshots davon angehängt (ich hoffe es geht). Die eine ohne scan im Titel war während des entpackens der Software, die zweite war während Schritt 2 beim Scan und die dritte war kurz vor dem Ende, als angezeigt wurde, dass sich das Fenster gleich schließen wird.

Downloade dir bitte Farbar Recovery Scan Tool 64-Bit und speichere diese auf einen USB Stick.

Schließe den USB Stick an das infizierte System an

Du musst das System nun in die System Reparatur Option booten.

Über den Boot Manager

• Starte den Rechner neu auf.
• Während dem Hochfahren drücke mehrmals die F8 Taste
• Wähle nun Computer reparieren.
• Wähle dein Betriebssystem und Benutzerkonto und klicke jeweils "Weiter".

Mit Windows CD/DVD

• Lege die Windows CD in dein Laufwerk.
• Starte den Rechner neu auf und starte von der CD
• Wähle die Spracheinstellungen und klicke "Weiter".
• Klicke auf Computerreparaturoptionen !!
• Wähle dein Betriebssystem und Benutzerkonto und klicke jeweils "Weiter".

Wähle in den Reparaturoptionen Eingabeaufforderung

• Gib nun bitte notepad ein und drücke Enter.
• Im öffnenden Textdokument --> Datei --> Speichern unter und wähle Computer
  Hier wird dir der Laufwerksbuchstabe deines USB Sticks angezeigt.
• Schließe Notepad wieder
• Gib nun bitte folgenden Befehl ein.
  e:\frst64.exe
  Hinweis: e steht für den Laufwerksbuchstaben deines USB Sticks. Gegebenfalls anpassen.
• Akzeptiere den Disclaimer mit Yes und klicke Scan

Das Tool erstellt eine FRST.txt auf deinem USB Stick. Poste den Inhalt bitte hier.

Fehlende Rückmeldung
Dieses Thema wurde aus den Abos gelöscht. Somit bekomm ich keine Benachrichtigung über neue Antworten.
PM an mich falls Du denoch weiter machen willst.

Hinweis: Das Verschwinden der Symptome bedeutet nicht, dass Dein Rechner schon sauber ist.

Jeder andere bitte hier klicken und einen eigenen Thread erstellen

Sorry, hatte die letzten Tage keine Zeit mich hierum zu kümmern, ich will das auf jeden Fall zu Ende bringen. Hier also der Scan:

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 11-09-2012
Ran by SYSTEM at 11-09-2012 20:20:07
Running from F:\
Windows 7 Home Premium (X64) OS Language: German Standard
The current controlset is ControlSet001

==================== Registry (Whitelisted) ===================

HKLM\...\Run: [Apoint] C:\Program Files\DellTPad\Apoint.exe [592240 2011-01-05] (Alps Electric Co., Ltd.)
HKLM\...\Run: [IntelWireless] "C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe" /tf Intel Wireless Tray [1933584 2010-12-17] (Intel(R) Corporation)
HKLM\...\Run: [BTMTrayAgent] rundll32.exe "C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll",TrayApp [10222080 2010-12-14] (Intel Corporation)
HKLM\...\Run: [IntelTBRunOnce] wscript.exe //b //nologo "C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs" [4526 2010-11-29] ()
HKLM\...\Run: [DellStage] "C:\Program Files (x86)\Dell Stage\Dell Stage\stage_primary.exe" "C:\Program Files (x86)\Dell Stage\Dell Stage\start.umj" --startup [207350 2011-01-25] ()
HKLM\...\Run: [Eraser] "C:\PROGRA~1\Eraser\Eraser.exe" --atRestart [980368 2010-11-04] (The Eraser Project)
HKLM\...\Run: [NVHotkey] rundll32.exe C:\Windows\system32\nvHotkey.dll,Start [312936 2011-02-18] (NVIDIA Corporation)
HKLM\...\Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe -s [6611048 2011-02-18] (Realtek Semiconductor)
HKLM\...\Run: [AdobeAAMUpdater-1.0] "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [499608 2011-03-15] (Adobe Systems Incorporated)
HKLM\...\Run: [boincmgr] "C:\Program Files\BOINC\boincmgr.exe" /a /s [6707888 2011-06-13] (Space Sciences Laboratory)
HKLM\...\Run: [boinctray] "C:\Program Files\BOINC\boinctray.exe" [71344 2011-06-13] (Space Sciences Laboratory)
HKLM\...\Run: [Logitech Download Assistant] C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch [1580368 2010-11-03] (Logitech, Inc.)
HKLM\...\Run: [EvtMgr6] C:\Program Files\Logitech\SetPointP\SetPoint.exe /launchGaming [1744152 2011-06-23] (Logitech, Inc.)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe" [35768 2012-07-27] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [919008 2012-07-27] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Dell Webcam Central] "C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe" /mode2 [487562 2010-08-19] (Creative Technology Ltd)
HKLM-x32\...\Run: [RoxWatchTray] "C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatchTray12OEM.exe" [240112 2010-09-04] (Sonic Solutions)
HKLM-x32\...\Run: [Desktop Disc Tool] "C:\Program Files (x86)\Roxio\oem\Roxio Burn\RoxioBurnLauncher.exe" [522736 2010-11-01] ()
HKLM-x32\...\Run: [BrMfcWnd] C:\Program Files (x86)\Brother\Brmfcmon\BrMfcWnd.exe /AUTORUN [1159168 2009-05-26] (Brother Industries, Ltd.)
HKLM-x32\...\Run: [ControlCenter3] C:\Program Files (x86)\Brother\ControlCenter3\brctrcen.exe /autorun [114688 2008-12-24] (Brother Industries, Ltd.)
HKLM-x32\...\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui [4282728 2012-08-21] (AVAST Software)
HKLM-x32\...\Run: [NUSB3MON] "C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe" [113288 2010-11-17] (Renesas Electronics Corporation)
HKLM-x32\...\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS5.5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe" -launchedbylogin [1523360 2011-01-12] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [NBAgent] "C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe" /WinStart [1406248 2011-04-08] (Nero AG)
HKLM-x32\...\Run: [KiesHelper] C:\Program Files (x86)\Samsung\Kies\KiesHelper.exe /s [929680 2011-09-29] (Samsung)
HKLM-x32\...\Run: [KiesTrayAgent] C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [3508112 2011-09-29] (Samsung Electronics Co., Ltd.)
HKLM-x32\...\Run: [LWS] C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe -hide [205336 2011-11-11] (Logitech Inc.)
HKU\Christof\...\Run: [AVMUSBFernanschluss] "C:\Users\Christof\AppData\Local\Apps\2.0\7VJ7GXR5.O47\RWGNNHRP.9V6\frit..tion_8488884cfbcefd60_0002.0002_8541bf1f4a1c673d\AVMAutoStart.exe" [147456 2011-04-17] (AVM Berlin)
HKU\UpdatusUser\...\Run: [uTorrent] "C:\Program Files (x86)\uTorrent\uTorrent.exe" [880496 2012-05-11] (BitTorrent, Inc.)
HKU\UpdatusUser\...\Run: [AVMUSBFernanschluss] "C:\Users\Christof\AppData\Local\Apps\2.0\7VJ7GXR5.O47\RWGNNHRP.9V6\frit..tion_8488884cfbcefd60_0002.0002_8541bf1f4a1c673d\AVMAutoStart.exe" [147456 2011-04-17] (AVM Berlin)
HKU\UpdatusUser\...\Run: [RGSC] C:\Program Files (x86)\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe /silent [x]
HKLM-x32\...\RunOnce: ["C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpdate.exe"] "C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpdate.exe" [559616 2011-10-10] (Dell)
Winlogon\Notify\LBTWlgn: c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll (Logitech, Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
AppInit_DLLs: C:\Windows\System32\nvinitx.dll

==================== Services ====================

2 avast! Antivirus; "C:\Program Files\AVAST Software\Avast\AvastSvc.exe" [44808 2012-08-21] (AVAST Software)
2 Bluetooth Device Monitor; "C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe" [901184 2010-12-14] (Intel Corporation)
3 Bluetooth Media Service; "C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe" [1298496 2010-12-14] (Intel Corporation)
2 Bluetooth OBEX Service; "C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe" [974912 2010-12-14] (Intel Corporation)
2 DAZContentManagementService; "C:\Program Files\DAZ 3D\Content Management Service\ContentManagementServer.exe" [22528 2011-05-05] ()
3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [340240 2010-12-17] ()
2 NetPipeActivator; "C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe" [116560 2009-06-10] (Microsoft Corporation)
2 NetTcpActivator; "C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe" [116560 2009-06-10] (Microsoft Corporation)
2 W3SVC; C:\Windows\system32\inetsrv\iisw3adm.dll [453120 2010-11-20] (Microsoft Corporation)
2 W3SVC; C:\Windows\SysWow64\inetsrv\iisw3adm.dll [397824 2010-11-20] (Microsoft Corporation)
2 i2p; "C:\Program Files\i2p\I2Psvc.exe" -s "C:\Program Files\i2p\wrapper.config" [x]

==================== Drivers =================================

2 aswFsBlk; C:\Windows\System32\Drivers\aswFsBlk.sys [25232 2012-08-21] (AVAST Software)
2 aswMonFlt; C:\Windows\System32\Drivers\aswMonFlt.sys [71600 2012-08-21] (AVAST Software)
1 aswRdr; C:\Windows\System32\Drivers\aswRdr.sys [42328 2011-11-28] (AVAST Software)
1 aswSnx; C:\Windows\System32\Drivers\aswSnx.sys [969200 2012-08-21] (AVAST Software)
1 aswSP; C:\Windows\System32\Drivers\aswSP.sys [359464 2012-08-21] (AVAST Software)
1 aswTdi; C:\Windows\System32\Drivers\aswTdi.sys [59728 2012-08-21] (AVAST Software)
3 avmaudio; C:\Windows\System32\Drivers\avmaudio.sys [116096 2011-04-17] (AVM Berlin)
3 catchme; \??\C:\ComboFix\catchme.sys [x]

==================== NetSvcs (Whitelisted) =================


==================== One Month Created Files and Folders ======================

2012-09-11 20:19 - 2012-09-11 20:20 - 00000000 ____D C:\FRST
2012-09-09 15:37 - 2012-09-09 15:37 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2012-09-06 13:11 - 2012-09-06 13:11 - 00026293 ____A C:\ComboFix.txt
2012-09-06 12:56 - 2012-09-06 12:56 - 00000000 ____D C:\Windows\erdnt
2012-09-06 12:05 - 2012-09-06 13:12 - 00000000 ___AD C:\Qoobox
2012-09-06 12:05 - 2011-06-26 01:45 - 00256000 ____A C:\Windows\PEV.exe
2012-09-06 12:05 - 2010-11-07 12:20 - 00208896 ____A C:\Windows\MBR.exe
2012-09-06 12:05 - 2009-04-19 23:56 - 00060416 ____A (NirSoft) C:\Windows\NIRCMD.exe
2012-09-06 12:05 - 2000-08-30 19:00 - 00518144 ____A (SteelWerX) C:\Windows\SWREG.exe
2012-09-06 12:05 - 2000-08-30 19:00 - 00406528 ____A (SteelWerX) C:\Windows\SWSC.exe
2012-09-06 12:05 - 2000-08-30 19:00 - 00098816 ____A C:\Windows\sed.exe
2012-09-06 12:05 - 2000-08-30 19:00 - 00080412 ____A C:\Windows\grep.exe
2012-09-06 12:05 - 2000-08-30 19:00 - 00068096 ____A C:\Windows\zip.exe
2012-09-06 12:00 - 2012-09-06 12:00 - 04745369 ____R (Swearware) C:\Users\Christof\Desktop\ComboFix.exe
2012-09-05 13:22 - 2012-09-05 13:22 - 02211928 ____A (Kaspersky Lab ZAO) C:\Users\Christof\Desktop\tdsskiller.exe
2012-09-03 12:31 - 2012-09-03 12:31 - 00000000 ____A C:\Users\Christof\defogger_reenable
2012-08-28 14:57 - 2012-08-28 14:57 - 00000000 ____D C:\Program Files (x86)\Microsoft CAPICOM 2.1.0.2
2012-08-26 09:11 - 2012-08-26 09:11 - 00000000 ____D C:\Users\Christof\AppData\Local\Logitech® Webcam-Software
2012-08-26 09:07 - 2012-08-26 09:07 - 00000000 ____D C:\Users\All Users\Logitech
2012-08-26 09:07 - 2012-08-26 09:07 - 00000000 ____D C:\Users\All Users\Application Data\Logitech
2012-08-26 09:06 - 2012-08-26 09:06 - 00000000 ____D C:\Program Files (x86)\Logitech
2012-08-26 08:53 - 2012-08-26 14:52 - 00000000 ____A C:\Windows\System32\Drivers\lvuvc.hs
2012-08-26 08:53 - 2012-08-26 09:08 - 00011395 ____A C:\Windows\System32\lvcoinst.log
2012-08-26 08:29 - 2012-09-09 07:53 - 00065024 __ASH C:\Users\Christof\Thumbs.db
2012-08-26 08:29 - 2011-04-12 14:48 - 00000658 ____A C:\Users\Christof\Daten.lnk
2012-08-19 08:24 - 2012-08-22 16:28 - 00000000 ____D C:\Users\Christof\AppData\Local\Freenet
2012-08-17 10:12 - 2012-07-06 15:07 - 00552960 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\bthport.sys
2012-08-17 10:11 - 2012-06-28 23:55 - 17809920 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2012-08-17 10:11 - 2012-06-28 23:09 - 10925568 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2012-08-17 10:11 - 2012-06-28 22:56 - 02312704 ____A (Microsoft Corporation) C:\Windows\System32\jscript9.dll
2012-08-17 10:11 - 2012-06-28 22:49 - 01392128 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll
2012-08-17 10:11 - 2012-06-28 22:49 - 01346048 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2012-08-17 10:11 - 2012-06-28 22:48 - 01494528 ____A (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl
2012-08-17 10:11 - 2012-06-28 22:47 - 00237056 ____A (Microsoft Corporation) C:\Windows\System32\url.dll
2012-08-17 10:11 - 2012-06-28 22:45 - 00085504 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
2012-08-17 10:11 - 2012-06-28 22:44 - 00816640 ____A (Microsoft Corporation) C:\Windows\System32\jscript.dll
2012-08-17 10:11 - 2012-06-28 22:43 - 00173056 ____A (Microsoft Corporation) C:\Windows\System32\ieUnatt.exe
2012-08-17 10:11 - 2012-06-28 22:42 - 02144768 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2012-08-17 10:11 - 2012-06-28 22:40 - 00096768 ____A (Microsoft Corporation) C:\Windows\System32\mshtmled.dll
2012-08-17 10:11 - 2012-06-28 22:39 - 02382848 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2012-08-17 10:11 - 2012-06-28 22:35 - 00248320 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll
2012-08-17 10:11 - 2012-06-28 19:52 - 12317184 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2012-08-17 10:11 - 2012-06-28 19:27 - 09737728 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2012-08-17 10:11 - 2012-06-28 19:16 - 01800704 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2012-08-17 10:11 - 2012-06-28 19:09 - 01129472 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2012-08-17 10:11 - 2012-06-28 19:09 - 01103872 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2012-08-17 10:11 - 2012-06-28 19:08 - 01427968 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2012-08-17 10:11 - 2012-06-28 19:07 - 00231936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2012-08-17 10:11 - 2012-06-28 19:06 - 00065024 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2012-08-17 10:11 - 2012-06-28 19:04 - 00717824 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2012-08-17 10:11 - 2012-06-28 19:04 - 00142848 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2012-08-17 10:11 - 2012-06-28 19:01 - 01793024 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2012-08-17 10:11 - 2012-06-28 19:01 - 00073216 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2012-08-17 10:11 - 2012-06-28 19:00 - 02382848 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2012-08-17 10:11 - 2012-06-28 18:57 - 00176640 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2012-08-15 14:03 - 2012-07-18 13:15 - 03148800 ____A (Microsoft Corporation) C:\Windows\System32\win32k.sys
2012-08-15 14:03 - 2012-07-04 17:16 - 00073216 ____A (Microsoft Corporation) C:\Windows\System32\netapi32.dll
2012-08-15 14:03 - 2012-07-04 17:13 - 00136704 ____A (Microsoft Corporation) C:\Windows\System32\browser.dll
2012-08-15 14:03 - 2012-07-04 17:13 - 00059392 ____A (Microsoft Corporation) C:\Windows\System32\browcli.dll
2012-08-15 14:03 - 2012-07-04 16:16 - 00057344 ____A (Microsoft Corporation) C:\Windows\SysWOW64\netapi32.dll
2012-08-15 14:03 - 2012-07-04 16:14 - 00041984 ____A (Microsoft Corporation) C:\Windows\SysWOW64\browcli.dll
2012-08-15 14:03 - 2012-05-14 00:26 - 00956928 ____A (Microsoft Corporation) C:\Windows\System32\localspl.dll
2012-08-15 14:03 - 2012-05-05 03:36 - 00503808 ____A (Microsoft Corporation) C:\Windows\System32\srcore.dll
2012-08-15 14:03 - 2012-05-05 02:46 - 00043008 ____A (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2012-08-15 14:03 - 2012-02-11 01:43 - 00751104 ____A (Microsoft Corporation) C:\Windows\System32\win32spl.dll
2012-08-15 14:03 - 2012-02-11 01:36 - 00559104 ____A (Microsoft Corporation) C:\Windows\System32\spoolsv.exe
2012-08-15 14:03 - 2012-02-11 01:36 - 00067072 ____A (Microsoft Corporation) C:\Windows\splwow64.exe
2012-08-15 14:03 - 2012-02-11 00:43 - 00492032 ____A (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll

==================== 3 Months Modified Files ================================

2012-09-11 13:14 - 2009-07-14 00:10 - 01412816 ____A C:\Windows\WindowsUpdate.log
2012-09-11 13:03 - 2012-04-13 17:32 - 00001114 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2012-09-11 12:35 - 2012-04-05 07:56 - 00000884 ____A C:\Windows\Tasks\Adobe Flash Player Updater.job
2012-09-11 12:03 - 2012-04-13 17:32 - 00001110 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2012-09-10 13:44 - 2009-07-14 12:58 - 00760156 ____A C:\Windows\System32\perfh007.dat
2012-09-10 13:44 - 2009-07-14 12:58 - 00169484 ____A C:\Windows\System32\perfc007.dat
2012-09-10 13:44 - 2009-07-14 00:13 - 01768540 ____A C:\Windows\System32\PerfStringBackup.INI
2012-09-10 11:27 - 2012-04-05 07:56 - 00696520 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2012-09-10 11:27 - 2011-05-23 15:43 - 00073416 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2012-09-10 11:27 - 2009-07-13 23:45 - 00014016 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2012-09-10 11:27 - 2009-07-13 23:45 - 00014016 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2012-09-10 11:26 - 2011-04-14 15:35 - 00007599 ____A C:\Users\Christof\AppData\Local\Resmon.ResmonCfg
2012-09-10 11:09 - 2009-07-14 00:08 - 00000006 ___AH C:\Windows\Tasks\SA.DAT
2012-09-10 11:09 - 2009-07-13 23:51 - 00078616 ____A C:\Windows\setupact.log
2012-09-09 07:53 - 2012-08-26 08:29 - 00065024 __ASH C:\Users\Christof\Thumbs.db
2012-09-09 03:40 - 2011-07-06 15:42 - 00000000 ____A C:\Windows\SysWOW64\config.nt
2012-09-07 16:16 - 2011-04-06 10:20 - 00030086 ____A C:\Windows\PFRO.log
2012-09-06 13:11 - 2012-09-06 13:11 - 00026293 ____A C:\ComboFix.txt
2012-09-06 12:37 - 2009-07-13 21:34 - 00000215 ____A C:\Windows\system.ini
2012-09-06 12:00 - 2012-09-06 12:00 - 04745369 ____R (Swearware) C:\Users\Christof\Desktop\ComboFix.exe
2012-09-05 13:22 - 2012-09-05 13:22 - 02211928 ____A (Kaspersky Lab ZAO) C:\Users\Christof\Desktop\tdsskiller.exe
2012-09-03 12:31 - 2012-09-03 12:31 - 00000000 ____A C:\Users\Christof\defogger_reenable
2012-08-26 14:52 - 2012-08-26 08:53 - 00000000 ____A C:\Windows\System32\Drivers\lvuvc.hs
2012-08-26 09:08 - 2012-08-26 08:53 - 00011395 ____A C:\Windows\System32\lvcoinst.log
2012-08-26 09:08 - 2011-10-07 10:56 - 00010648 ____A C:\Windows\LDPINST.LOG
2012-08-21 04:13 - 2012-03-17 08:51 - 00054072 ____A (AVAST Software) C:\Windows\System32\Drivers\aswRdr2.sys
2012-08-21 04:13 - 2011-07-06 15:42 - 00969200 ____A (AVAST Software) C:\Windows\System32\Drivers\aswSnx.sys
2012-08-21 04:13 - 2011-07-06 15:42 - 00359464 ____A (AVAST Software) C:\Windows\System32\Drivers\aswSP.sys
2012-08-21 04:13 - 2011-07-06 15:42 - 00071600 ____A (AVAST Software) C:\Windows\System32\Drivers\aswMonFlt.sys
2012-08-21 04:13 - 2011-07-06 15:42 - 00059728 ____A (AVAST Software) C:\Windows\System32\Drivers\aswTdi.sys
2012-08-21 04:13 - 2011-07-06 15:42 - 00025232 ____A (AVAST Software) C:\Windows\System32\Drivers\aswFsBlk.sys
2012-08-21 04:12 - 2011-07-06 15:42 - 00285328 ____A (AVAST Software) C:\Windows\System32\aswBoot.exe
2012-08-21 04:12 - 2011-07-06 15:41 - 00227648 ____A (AVAST Software) C:\Windows\SysWOW64\aswBoot.exe
2012-08-21 04:12 - 2011-07-06 15:41 - 00041224 ____A (AVAST Software) C:\Windows\avastSS.scr
2012-08-18 16:45 - 2009-07-13 23:45 - 04909368 ____A C:\Windows\System32\FNTCACHE.DAT
2012-08-17 10:06 - 2011-04-11 15:42 - 62134624 ____A (Microsoft Corporation) C:\Windows\System32\MRT.exe
2012-08-10 17:30 - 2012-08-10 16:00 - 00000564 ____A C:\Windows\Tasks\PCDoctorBackgroundMonitorTask-Delay.job
2012-08-10 06:48 - 2012-08-10 06:48 - 00000803 ____A C:\Users\Christof\Desktop\TOR-Browser.lnk
2012-08-08 09:35 - 2012-08-08 09:35 - 00000000 ____A C:\Windows\SysWOW64\sho8300.tmp
2012-08-06 03:48 - 2009-07-14 00:08 - 00032632 ____A C:\Windows\Tasks\SCHEDLGU.TXT
2012-07-25 13:14 - 2011-12-29 12:37 - 00000064 ____A C:\Users\Christof\Desktop\Küchenutensilien.txt
2012-07-18 13:15 - 2012-08-15 14:03 - 03148800 ____A (Microsoft Corporation) C:\Windows\System32\win32k.sys
2012-07-15 12:01 - 2012-07-15 12:01 - 00002294 ____A C:\Users\Christof\Desktop\CBH Captcha Solver.lnk
2012-07-13 14:49 - 2012-05-26 15:04 - 00000791 ____A C:\Users\Christof\Desktop\Lokale Videos.lnk
2012-07-13 11:34 - 2012-07-13 11:30 - 00000614 ____A C:\Users\Christof\Desktop\SO-Zugang.txt
2012-07-12 13:38 - 2012-07-12 13:38 - 00001032 ____A C:\Users\Public\Desktop\VLC media player.lnk
2012-07-12 13:38 - 2012-07-12 13:38 - 00001032 ____A C:\Users\All Users\Desktop\VLC media player.lnk
2012-07-07 15:56 - 2012-06-26 15:31 - 00000627 ____A C:\Users\Christof\Desktop\Lautsprecher Umbau Auto.txt
2012-07-06 17:35 - 2011-09-04 07:09 - 00024018 ____A C:\Users\Christof\Desktop\Wacken Bandlist.ods
2012-07-06 15:07 - 2012-08-17 10:12 - 00552960 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\bthport.sys
2012-07-04 17:16 - 2012-08-15 14:03 - 00073216 ____A (Microsoft Corporation) C:\Windows\System32\netapi32.dll
2012-07-04 17:13 - 2012-08-15 14:03 - 00136704 ____A (Microsoft Corporation) C:\Windows\System32\browser.dll
2012-07-04 17:13 - 2012-08-15 14:03 - 00059392 ____A (Microsoft Corporation) C:\Windows\System32\browcli.dll
2012-07-04 16:16 - 2012-08-15 14:03 - 00057344 ____A (Microsoft Corporation) C:\Windows\SysWOW64\netapi32.dll
2012-07-04 16:14 - 2012-08-15 14:03 - 00041984 ____A (Microsoft Corporation) C:\Windows\SysWOW64\browcli.dll
2012-07-04 12:35 - 2011-04-23 16:34 - 00002162 ____A C:\Users\Christof\Desktop\Grand Theft Auto IV.lnk
2012-07-03 06:46 - 2012-08-10 11:54 - 00024904 ____A (Malwarebytes Corporation) C:\Windows\System32\Drivers\mbam.sys
2012-06-28 23:55 - 2012-08-17 10:11 - 17809920 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2012-06-28 23:09 - 2012-08-17 10:11 - 10925568 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2012-06-28 22:56 - 2012-08-17 10:11 - 02312704 ____A (Microsoft Corporation) C:\Windows\System32\jscript9.dll
2012-06-28 22:49 - 2012-08-17 10:11 - 01392128 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll
2012-06-28 22:49 - 2012-08-17 10:11 - 01346048 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2012-06-28 22:48 - 2012-08-17 10:11 - 01494528 ____A (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl
2012-06-28 22:47 - 2012-08-17 10:11 - 00237056 ____A (Microsoft Corporation) C:\Windows\System32\url.dll
2012-06-28 22:45 - 2012-08-17 10:11 - 00085504 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
2012-06-28 22:44 - 2012-08-17 10:11 - 00816640 ____A (Microsoft Corporation) C:\Windows\System32\jscript.dll
2012-06-28 22:43 - 2012-08-17 10:11 - 00173056 ____A (Microsoft Corporation) C:\Windows\System32\ieUnatt.exe
2012-06-28 22:42 - 2012-08-17 10:11 - 02144768 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2012-06-28 22:40 - 2012-08-17 10:11 - 00096768 ____A (Microsoft Corporation) C:\Windows\System32\mshtmled.dll
2012-06-28 22:39 - 2012-08-17 10:11 - 02382848 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2012-06-28 22:35 - 2012-08-17 10:11 - 00248320 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll
2012-06-28 19:52 - 2012-08-17 10:11 - 12317184 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2012-06-28 19:27 - 2012-08-17 10:11 - 09737728 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2012-06-28 19:16 - 2012-08-17 10:11 - 01800704 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2012-06-28 19:09 - 2012-08-17 10:11 - 01129472 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2012-06-28 19:09 - 2012-08-17 10:11 - 01103872 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2012-06-28 19:08 - 2012-08-17 10:11 - 01427968 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2012-06-28 19:07 - 2012-08-17 10:11 - 00231936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2012-06-28 19:06 - 2012-08-17 10:11 - 00065024 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2012-06-28 19:04 - 2012-08-17 10:11 - 00717824 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2012-06-28 19:04 - 2012-08-17 10:11 - 00142848 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2012-06-28 19:01 - 2012-08-17 10:11 - 01793024 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2012-06-28 19:01 - 2012-08-17 10:11 - 00073216 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2012-06-28 19:00 - 2012-08-17 10:11 - 02382848 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2012-06-28 18:57 - 2012-08-17 10:11 - 00176640 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll


==================== Known DLLs (Whitelisted) =================


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

==================== EXE ASSOCIATION =====================

HKLM\...\.exe: exefile => OK
HKLM\...\exefile\DefaultIcon: %1 => OK
HKLM\...\exefile\open\command: "%1" %* => OK

==================== Restore Points =========================

Restore point made on: 2012-08-24 11:10:26
Restore point made on: 2012-08-28 14:56:56
Restore point made on: 2012-09-06 12:06:50

==================== Memory info ===========================

Percentage of memory in use: 14%
Total physical RAM: 4010.17 MB
Available physical RAM: 3413.36 MB
Total Pagefile: 4008.32 MB
Available Pagefile: 3414 MB
Total Virtual: 8192 MB
Available Virtual: 8191.9 MB

==================== Partitions ============================

1 Drive c: (OS) (Fixed) (Total:451.01 GB) (Free:82.62 GB) NTFS
2 Drive d: (RECOVERY) (Fixed) (Total:14.65 GB) (Free:6.6 GB) NTFS ==>[System with boot components (obtained from reading drive)]
4 Drive f: () (Removable) (Total:1.96 GB) (Free:1.96 GB) FAT
5 Drive x: (Boot) (Fixed) (Total:0.03 GB) (Free:0.03 GB) NTFS

Datentr„ger ### Status Gr”áe Frei Dyn GPT
--------------- ------------- ------- ------- --- ---
Datentr„ger 0 Online 465 GB 0 B
Datentr„ger 1 Online 2004 MB 0 B

Partitions of Disk 0:
===============

Partition ### Typ GrӇe Offset
------------- ---------------- ------- -------
Partition 1 OEM 101 MB 31 KB
Partition 2 Prim„r 14 GB 102 MB
Partition 3 Prim„r 451 GB 14 GB

==================================================================================

Disk: 0
Partition 1
Typ : DE
Versteckt: Ja
Aktiv : Nein

Volume ### Bst Bezeichnung DS Typ GrӇe Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 4 FAT Partition 101 MB Fehlerfre Versteck

==================================================================================

Disk: 0
Partition 2
Typ : 07
Versteckt: Nein
Aktiv : Ja

Volume ### Bst Bezeichnung DS Typ GrӇe Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 1 D RECOVERY NTFS Partition 14 GB Fehlerfre

==================================================================================

Disk: 0
Partition 3
Typ : 07
Versteckt: Nein
Aktiv : Nein

Volume ### Bst Bezeichnung DS Typ GrӇe Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 2 C OS NTFS Partition 451 GB Fehlerfre

==================================================================================

Partitions of Disk 1:
===============

Partition ### Typ GrӇe Offset
------------- ---------------- ------- -------
Partition 1 Prim„r 2003 MB 32 KB

==================================================================================

Disk: 1
Partition 1
Typ : 06
Versteckt: Nein
Aktiv : Nein

Volume ### Bst Bezeichnung DS Typ GrӇe Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 3 F FAT Wechselmed 2003 MB Fehlerfre

==================================================================================

Last Boot: 2012-09-06 14:07

==================== End Of Log =============================

Downloade dir bitte Farbar's Service Scanner.
Gehe sicher, dass folgende Einstellungen angehakt sind.

• • Internet Services
  • Windows Firewall
  • System Restore
  • Security Center/Action Center
  • Windows Update
  • Windows Defender
  • Other Services
• Klicke auf Scan.
• Wenn das Tool fertig ist, wird es eine FSS.txt in dem Verzeichnis erstellen, wo das Tool gelaufen ist.

Poste bitte den Inhalt hier.

Farbar Service Scanner Version: 06-08-2012
Ran by Christof (administrator) on 16-09-2012 at 13:53:40
Running from "C:\Daten\Downloaded"
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is set to Demand. The default start type is Auto.
The ImagePath of WinDefend service is OK.
The ServiceDll of WinDefend service is OK.


Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1


Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys
[2012-09-12 18:49] - [2012-08-22 20:12] - 1913200 ____A (Microsoft Corporation) F782CAD3CEDBB3F9FFE3BF2775D92DDC

C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****

Sieht eigentlich alles gut aus.

Update bitte Malwarebytes und lass einen QuickScan laufen. Entferne alle Funde und poste das Logfile hier.




ESET Online Scanner

• Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
• Lade und starte Eset Online Scanner
• Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
• Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
• Klicke auf Starten.
• Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
• Klicke am Ende des Suchlaufs auf Fertig stellen.
• Schließe das Fenster von ESET.
• Explorer öffnen.
• C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
• Logfile hier posten.
• Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
• Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset

Fehlende Rückmeldung
Dieses Thema wurde aus den Abos gelöscht. Somit bekomm ich keine Benachrichtigung über neue Antworten.
PM an mich falls Du denoch weiter machen willst.

Hinweis: Das Verschwinden der Symptome bedeutet nicht, dass Dein Rechner schon sauber ist.

Jeder andere bitte hier klicken und einen eigenen Thread erstellen