|
TR/ATRAPS.Gen2 gefunden in Windows\installer Hallo, ich wollte heute ein Programm aus dem Internet installieren und habe seit dem immer wieder die im Titel genannte Fehlermeldung vom AVIRA-Echtzeit-Scanner. Kann mir jemd. helfen?? Wäre super! Ich würde den Rechner ungern neu aufsetzen. Es befinden sich viele wichtige Daten auf dem Rechner. Zudem betreibe ich online-banking. lg, Nil Update: Ich kann den Windowssicherheitscenter nicht mehr starten und der Hostprozess der Windows-Dienste wurde beendet und geschlossen |
Hi, Downloade dir bitte  TDSSKiller.exe und speichere diese Datei auf dem Desktop
|
a18:56:32.0351 4108 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42 18:56:32.0704 4108 ============================================================ 18:56:32.0704 4108 Current date / time: 2013/06/08 18:56:32.0704 18:56:32.0704 4108 SystemInfo: 18:56:32.0704 4108 18:56:32.0704 4108 OS Version: 6.0.6002 ServicePack: 2.0 18:56:32.0704 4108 Product type: Workstation 18:56:32.0704 4108 ComputerName: XXXXXXXXX-PC 18:56:32.0704 4108 UserName: XXXXXXXXXX 18:56:32.0704 4108 Windows directory: C:\Windows 18:56:32.0704 4108 System windows directory: C:\Windows 18:56:32.0704 4108 Running under WOW64 18:56:32.0704 4108 Processor architecture: Intel x64 18:56:32.0704 4108 Number of processors: 4 18:56:32.0704 4108 Page size: 0x1000 18:56:32.0704 4108 Boot type: Normal boot 18:56:32.0704 4108 ============================================================ 18:56:33.0937 4108 Drive \Device\Harddisk0\DR0 - Size: 0x950B056000 (596.17 Gb), SectorSize: 0x200, Cylinders: 0x13001, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040 18:56:33.0948 4108 ============================================================ 18:56:33.0948 4108 \Device\Harddisk0\DR0: 18:56:33.0948 4108 MBR partitions: 18:56:33.0948 4108 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x48B46A59 18:56:33.0948 4108 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x48B46A98, BlocksNum 0x1D10429 18:56:33.0948 4108 ============================================================ 18:56:34.0018 4108 C: <-> \Device\Harddisk0\DR0\Partition1 18:56:34.0124 4108 D: <-> \Device\Harddisk0\DR0\Partition2 18:56:34.0124 4108 ============================================================ 18:56:34.0124 4108 Initialize success 18:56:34.0124 4108 ============================================================ 18:56:42.0971 4804 ============================================================ 18:56:42.0971 4804 Scan started 18:56:42.0971 4804 Mode: Manual; SigCheck; TDLFS; 18:56:42.0971 4804 ============================================================ 18:56:43.0894 4804 ================ Scan system memory ======================== 18:56:43.0894 4804 System memory - ok 18:56:43.0894 4804 ================ Scan services ============================= 18:56:44.0048 4804 [ A0709B82FA3B5AFAD1467E565B8B3BA0 ] !SASCORE C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE 18:56:44.0195 4804 !SASCORE ( UnsignedFile.Multi.Generic ) - warning 18:56:44.0195 4804 !SASCORE - detected UnsignedFile.Multi.Generic (1) 18:56:44.0359 4804 [ B33CF4DE909A5B30F526D82053A63C8E ] ABBYY.Licensing.FineReader.Sprint.9.0 C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe 18:56:44.0489 4804 ABBYY.Licensing.FineReader.Sprint.9.0 - ok 18:56:45.0191 4804 [ 1965AAFFAB07E3FB03C77F81BEBA3547 ] ACPI C:\Windows\system32\drivers\acpi.sys 18:56:45.0225 4804 ACPI - ok 18:56:45.0255 4804 [ A19C69ABB22525D11E9C3E45DFA20850 ] acsint C:\Windows\system32\DRIVERS\acsint64.sys 18:56:45.0487 4804 acsint - ok 18:56:45.0502 4804 [ 3AAFC0ACF51C45605256D3BC4EB6C4FB ] acsmux C:\Windows\system32\DRIVERS\acsmux64.sys 18:56:45.0533 4804 acsmux - ok 18:56:45.0615 4804 [ ADDA5E1951B90D3D23C56D3CF0622ADC ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe 18:56:45.0627 4804 AdobeARMservice - ok 18:56:45.0762 4804 [ F040037B149FD0F5A5044AE563390FA7 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe 18:56:45.0776 4804 AdobeFlashPlayerUpdateSvc - ok 18:56:45.0828 4804 [ F14215E37CF124104575073F782111D2 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys 18:56:45.0880 4804 adp94xx - ok 18:56:45.0933 4804 [ 7D05A75E3066861A6610F7EE04FF085C ] adpahci C:\Windows\system32\drivers\adpahci.sys 18:56:45.0965 4804 adpahci - ok 18:56:45.0984 4804 [ 820A201FE08A0C345B3BEDBC30E1A77C ] adpu160m C:\Windows\system32\drivers\adpu160m.sys 18:56:46.0002 4804 adpu160m - ok 18:56:46.0067 4804 [ 9B4AB6854559DC168FBB4C24FC52E794 ] adpu320 C:\Windows\system32\drivers\adpu320.sys 18:56:46.0088 4804 adpu320 - ok 18:56:46.0124 4804 [ 0F421175574BFE0BF2F4D8E910A253BB ] AeLookupSvc C:\Windows\System32\aelupsvc.dll 18:56:46.0249 4804 AeLookupSvc - ok 18:56:46.0299 4804 [ C4F6CE6087760AD70960C9EB130E7943 ] AFD C:\Windows\system32\drivers\afd.sys 18:56:46.0377 4804 AFD - ok 18:56:46.0441 4804 [ F6F6793B7F17B550ECFDBD3B229173F7 ] agp440 C:\Windows\system32\drivers\agp440.sys 18:56:46.0458 4804 agp440 - ok 18:56:46.0519 4804 [ 222CB641B4B8A1D1126F8033F9FD6A00 ] aic78xx C:\Windows\system32\drivers\djsvs.sys 18:56:46.0537 4804 aic78xx - ok 18:56:46.0554 4804 [ 5922F4F59B7868F3D74BBBBEB7B825A3 ] ALG C:\Windows\System32\alg.exe 18:56:46.0688 4804 ALG - ok 18:56:46.0717 4804 [ 157D0898D4B73F075CE9FA26B482DF98 ] aliide C:\Windows\system32\drivers\aliide.sys 18:56:46.0732 4804 aliide - ok 18:56:46.0745 4804 [ 970FA5059E61E30D25307B99903E991E ] amdide C:\Windows\system32\drivers\amdide.sys 18:56:46.0759 4804 amdide - ok 18:56:46.0770 4804 [ CDC3632A3A5EA4DBB83E46076A3165A1 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys 18:56:46.0824 4804 AmdK8 - ok 18:56:46.0930 4804 [ 466A0D95960DAD3222C896D2CEA99993 ] AntiVirSchedulerService C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe 18:56:46.0953 4804 AntiVirSchedulerService - ok 18:56:47.0000 4804 [ A489BE6BB0AA1FF406B488B60542314B ] AntiVirService C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe 18:56:47.0011 4804 AntiVirService - ok 18:56:47.0053 4804 [ 9C37B3FD5615477CB9A0CD116CF43F5C ] Appinfo C:\Windows\System32\appinfo.dll 18:56:47.0108 4804 Appinfo - ok 18:56:47.0294 4804 [ 4B5AE15E5C73EB4DC8DBEC2788230D41 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe 18:56:47.0339 4804 Apple Mobile Device - ok 18:56:47.0378 4804 [ BA8417D4765F3988FF921F30F630E303 ] arc C:\Windows\system32\drivers\arc.sys 18:56:47.0397 4804 arc - ok 18:56:47.0419 4804 [ 9D41C435619733B34CC16A511E644B11 ] arcsas C:\Windows\system32\drivers\arcsas.sys 18:56:47.0439 4804 arcsas - ok 18:56:47.0472 4804 [ E536856E96A7605EBF580D62A868E5FE ] ASGT C:\Windows\SysWOW64\ASGT.exe 18:56:47.0494 4804 ASGT ( UnsignedFile.Multi.Generic ) - warning 18:56:47.0494 4804 ASGT - detected UnsignedFile.Multi.Generic (1) 18:56:47.0733 4804 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe 18:56:47.0745 4804 aspnet_state - ok 18:56:47.0766 4804 [ 22D13FF3DAFEC2A80634752B1EAA2DE6 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys 18:56:47.0819 4804 AsyncMac - ok 18:56:47.0874 4804 [ E68D9B3A3905619732F7FE039466A623 ] atapi C:\Windows\system32\drivers\atapi.sys 18:56:47.0886 4804 atapi - ok 18:56:47.0960 4804 [ 79318C744693EC983D20E9337A2F8196 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll 18:56:48.0036 4804 AudioEndpointBuilder - ok 18:56:48.0091 4804 [ 79318C744693EC983D20E9337A2F8196 ] AudioSrv C:\Windows\System32\Audiosrv.dll 18:56:48.0120 4804 AudioSrv - ok 18:56:48.0262 4804 [ 26E38B5A58C6C55FAFBC563EEDDB0867 ] avgntflt C:\Windows\system32\DRIVERS\avgntflt.sys 18:56:48.0273 4804 avgntflt - ok 18:56:48.0351 4804 [ 9D1F00BEFF84CBBF46D7F052BC7E0565 ] avipbb C:\Windows\system32\DRIVERS\avipbb.sys 18:56:48.0370 4804 avipbb - ok 18:56:48.0506 4804 [ 248DB59FC86DE44D2779F4C7FB1A567D ] avkmgr C:\Windows\system32\DRIVERS\avkmgr.sys 18:56:48.0547 4804 avkmgr - ok 18:56:48.0607 4804 [ C6F4C466B654C1BE98AF31418BB5AC30 ] AVM WLAN Connection Service C:\Program Files (x86)\avmwlanstick\WlanNetService.exe 18:56:48.0671 4804 AVM WLAN Connection Service ( UnsignedFile.Multi.Generic ) - warning 18:56:48.0671 4804 AVM WLAN Connection Service - detected UnsignedFile.Multi.Generic (1) 18:56:48.0705 4804 [ 1DC2F715792CF33428AD7993ACBD224D ] avmeject C:\Windows\system32\drivers\avmeject.sys 18:56:48.0718 4804 avmeject - ok 18:56:48.0746 4804 [ 79FEEB40056683F8F61398D81DDA65D2 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys 18:56:48.0783 4804 blbdrive - ok 18:56:48.0805 4804 [ 3F56903E124E820AEECE6D471583C6C1 ] Bonjour Service C:\Program Files (x86)\Bonjour\mDNSResponder.exe 18:56:48.0817 4804 Bonjour Service - ok 18:56:48.0877 4804 [ 2348447A80920B2493A9B582A23E81E1 ] bowser C:\Windows\system32\DRIVERS\bowser.sys 18:56:48.0922 4804 bowser - ok 18:56:48.0950 4804 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys 18:56:48.0991 4804 BrFiltLo - ok 18:56:49.0018 4804 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys 18:56:49.0058 4804 BrFiltUp - ok 18:56:49.0092 4804 [ A1B39DE453433B115B4EA69EE0343816 ] Browser C:\Windows\System32\browser.dll 18:56:49.0150 4804 Browser - ok 18:56:49.0165 4804 [ F0F0BA4D815BE446AA6A4583CA3BCA9B ] Brserid C:\Windows\system32\drivers\brserid.sys 18:56:49.0318 4804 Brserid - ok 18:56:49.0331 4804 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys 18:56:49.0404 4804 BrSerWdm - ok 18:56:49.0418 4804 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys 18:56:49.0482 4804 BrUsbMdm - ok 18:56:49.0495 4804 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys 18:56:49.0557 4804 BrUsbSer - ok 18:56:49.0576 4804 [ E0777B34E05F8A82A21856EFC900C29F ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys 18:56:49.0643 4804 BTHMODEM - ok 18:56:49.0673 4804 [ B4D787DB8D30793A4D4DF9FEED18F136 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys 18:56:49.0718 4804 cdfs - ok 18:56:49.0772 4804 [ C025AA69BE3D0D25C7A2E746EF6F94FC ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys 18:56:49.0822 4804 cdrom - ok 18:56:49.0899 4804 [ 5A268127633C7EE2A7FB87F39D748D56 ] CertPropSvc C:\Windows\System32\certprop.dll 18:56:49.0937 4804 CertPropSvc - ok 18:56:49.0956 4804 [ 02EA568D498BBDD4BA55BF3FCE34D456 ] circlass C:\Windows\system32\drivers\circlass.sys 18:56:50.0004 4804 circlass - ok 18:56:50.0057 4804 [ 3DCA9A18B204939CFB24BEA53E31EB48 ] CLFS C:\Windows\system32\CLFS.sys 18:56:50.0097 4804 CLFS - ok 18:56:50.0157 4804 [ 8EE772032E2FE80A924F3B8DD5082194 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe 18:56:50.0191 4804 clr_optimization_v2.0.50727_32 - ok 18:56:50.0257 4804 [ CE07A466201096F021CD09D631B21540 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe 18:56:50.0274 4804 clr_optimization_v2.0.50727_64 - ok 18:56:50.0578 4804 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe 18:56:50.0605 4804 clr_optimization_v4.0.30319_32 - ok 18:56:50.0660 4804 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe 18:56:50.0677 4804 clr_optimization_v4.0.30319_64 - ok 18:56:50.0692 4804 [ E5D5499A1C50A54B5161296B6AFE6192 ] cmdide C:\Windows\system32\drivers\cmdide.sys 18:56:50.0706 4804 cmdide - ok 18:56:50.0719 4804 [ 7FB8AD01DB0EABE60C8A861531A8F431 ] Compbatt C:\Windows\system32\drivers\compbatt.sys 18:56:50.0735 4804 Compbatt - ok 18:56:50.0738 4804 COMSysApp - ok 18:56:50.0768 4804 [ A8585B6412253803CE8EFCBD6D6DC15C ] crcdisk C:\Windows\system32\drivers\crcdisk.sys 18:56:50.0792 4804 crcdisk - ok 18:56:50.0840 4804 [ CA78B312C44E4D52E842C2C8BD48E452 ] CryptSvc C:\Windows\system32\cryptsvc.dll 18:56:50.0885 4804 CryptSvc - ok 18:56:50.0978 4804 [ CF8B9A3A5E7DC57724A89D0C3E8CF9EF ] DcomLaunch C:\Windows\system32\rpcss.dll 18:56:51.0199 4804 DcomLaunch - ok 18:56:51.0231 4804 [ 8B722BA35205C71E7951CDC4CDBADE19 ] DfsC C:\Windows\system32\Drivers\dfsc.sys 18:56:51.0281 4804 DfsC - ok 18:56:51.0399 4804 [ C647F468F7DE343DF8C143655C5557D4 ] DFSR C:\Windows\system32\DFSR.exe 18:56:51.0568 4804 DFSR - ok 18:56:51.0652 4804 [ 3ED0321127CE70ACDAABBF77E157C2A7 ] Dhcp C:\Windows\System32\dhcpcsvc.dll 18:56:51.0705 4804 Dhcp - ok 18:56:51.0756 4804 [ B0107E40ECDB5FA692EBF832F295D905 ] disk C:\Windows\system32\drivers\disk.sys 18:56:51.0774 4804 disk - ok 18:56:51.0836 4804 [ 06230F1B721494A6DF8D47FD395BB1B0 ] Dnscache C:\Windows\System32\dnsrslvr.dll 18:56:51.0870 4804 Dnscache - ok 18:56:51.0931 4804 [ 1A7156DD1E850E9914E5E991E3225B94 ] dot3svc C:\Windows\System32\dot3svc.dll 18:56:51.0974 4804 dot3svc - ok 18:56:52.0004 4804 [ 1583B39790DB3EAEC7EDB0CB0140C708 ] DPS C:\Windows\system32\dps.dll 18:56:52.0046 4804 DPS - ok 18:56:52.0085 4804 [ F1A78A98CFC2EE02144C6BEC945447E6 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys 18:56:52.0134 4804 drmkaud - ok 18:56:52.0178 4804 [ F3932288EEECD776FF1F9F653AD878F3 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys 18:56:52.0242 4804 DXGKrnl - ok 18:56:52.0287 4804 [ 264CEE7B031A9D6C827F3D0CB031F2FE ] E1G60 C:\Windows\system32\DRIVERS\E1G6032E.sys 18:56:52.0325 4804 E1G60 - ok 18:56:52.0348 4804 [ C2303883FD9BE49DC36A6400643002EA ] EapHost C:\Windows\System32\eapsvc.dll 18:56:52.0388 4804 EapHost - ok 18:56:52.0457 4804 [ 5F94962BE5A62DB6E447FF6470C4F48A ] Ecache C:\Windows\system32\drivers\ecache.sys 18:56:52.0482 4804 Ecache - ok 18:56:52.0760 4804 [ 14CE384D2E27B64C256BDA4DC39C312D ] ehRecvr C:\Windows\ehome\ehRecvr.exe 18:56:52.0850 4804 ehRecvr - ok 18:56:52.0872 4804 [ B93159C1313D66FDFBBE876F5189CD52 ] ehSched C:\Windows\ehome\ehsched.exe 18:56:52.0909 4804 ehSched - ok 18:56:52.0933 4804 [ F5EE2527D74449868E3C3227A59BCD28 ] ehstart C:\Windows\ehome\ehstart.dll 18:56:52.0978 4804 ehstart - ok 18:56:53.0074 4804 [ C4636D6E10469404AB5308D9FD45ED07 ] elxstor C:\Windows\system32\drivers\elxstor.sys 18:56:53.0114 4804 elxstor - ok 18:56:53.0287 4804 [ A9B18B63A4FD6BAAB83326706D857FAB ] EMDMgmt C:\Windows\system32\emdmgmt.dll 18:56:53.0401 4804 EMDMgmt - ok 18:56:53.0523 4804 [ ABDD5AD016AFFD34AD40E944CE94BF59 ] EpsonBidirectionalService C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSVC.exe 18:56:53.0562 4804 EpsonBidirectionalService ( UnsignedFile.Multi.Generic ) - warning 18:56:53.0562 4804 EpsonBidirectionalService - detected UnsignedFile.Multi.Generic (1) 18:56:53.0594 4804 [ BC3A58E938BB277E46BF4B3003B01ABD ] ErrDev C:\Windows\system32\drivers\errdev.sys 18:56:53.0642 4804 ErrDev - ok 18:56:53.0805 4804 [ E12F22B73F153DECE721CD45EC05B4AF ] EventSystem C:\Windows\system32\es.dll 18:56:53.0894 4804 EventSystem - ok 18:56:53.0998 4804 [ 486844F47B6636044A42454614ED4523 ] exfat C:\Windows\system32\drivers\exfat.sys 18:56:54.0079 4804 exfat - ok 18:56:54.0086 4804 ezSharedSvc - ok 18:56:54.0168 4804 [ 1A4BEE34277784619DDAF0422C0C6E23 ] fastfat C:\Windows\system32\drivers\fastfat.sys 18:56:54.0242 4804 fastfat - ok 18:56:54.0272 4804 [ 81B79B6DF71FA1D2C6D688D830616E39 ] fdc C:\Windows\system32\DRIVERS\fdc.sys 18:56:54.0321 4804 fdc - ok 18:56:54.0358 4804 [ BB9267ACACD8B7533DD936C34A0CBA5E ] fdPHost C:\Windows\system32\fdPHost.dll 18:56:54.0412 4804 fdPHost - ok 18:56:54.0432 4804 [ 300C80931EABBE1DB7591C516EFE8D0F ] FDResPub C:\Windows\system32\fdrespub.dll 18:56:54.0504 4804 FDResPub - ok 18:56:54.0523 4804 [ 457B7D1D533E4BD62A99AED9C7BB4C59 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys 18:56:54.0558 4804 FileInfo - ok 18:56:54.0581 4804 [ D421327FD6EFCCAF884A54C58E1B0D7F ] Filetrace C:\Windows\system32\drivers\filetrace.sys 18:56:54.0631 4804 Filetrace - ok 18:56:54.0651 4804 [ 230923EA2B80F79B0F88D90F87B87EBD ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys 18:56:54.0698 4804 flpydisk - ok 18:56:54.0782 4804 [ E3041BC26D6930D61F42AEDB79C91720 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys 18:56:54.0811 4804 FltMgr - ok 18:56:55.0104 4804 [ BE1C5BD1CA7ED015BC6FA1AE67E592C8 ] FontCache C:\Windows\system32\FntCache.dll 18:56:55.0216 4804 FontCache - ok 18:56:55.0304 4804 [ BC5B0BE5AF3510B0FD8C140EE42C6D3E ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe 18:56:55.0342 4804 FontCache3.0.0.0 - ok 18:56:55.0393 4804 [ 5779B86CD8B32519FBECB136394D946A ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys 18:56:55.0444 4804 Fs_Rec - ok 18:56:55.0585 4804 [ 15585492E45E2F30768B2D5B57929D99 ] fwlanusbn C:\Windows\system32\DRIVERS\fwlanusbn.sys 18:56:55.0679 4804 fwlanusbn - ok 18:56:55.0718 4804 [ C8E416668D3DC2BE3D4FE4C79224997F ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys 18:56:55.0764 4804 gagp30kx - ok 18:56:55.0813 4804 [ E403AACF8C7BB11375122D2464560311 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys 18:56:55.0826 4804 GEARAspiWDM - ok 18:56:55.0883 4804 [ A0E1B575BA8F504968CD40C0FAEB2384 ] gpsvc C:\Windows\System32\gpsvc.dll 18:56:55.0966 4804 gpsvc - ok 18:56:56.0003 4804 [ 1DBBF9BE473F6CA2F2F4182FCCF563DC ] HauppaugeTVServer C:\PROGRA~2\WinTV\TVServer\HAUPPA~1.EXE 18:56:56.0065 4804 HauppaugeTVServer ( UnsignedFile.Multi.Generic ) - warning 18:56:56.0065 4804 HauppaugeTVServer - detected UnsignedFile.Multi.Generic (1) 18:56:56.0110 4804 [ 7927EB9E64902FCAF126538F009C824C ] hcw95bda C:\Windows\system32\Drivers\hcw95bda.sys 18:56:56.0376 4804 hcw95bda - ok 18:56:56.0427 4804 [ 6CC035E4B3FD9702ABEB71D3FF8B899E ] hcw95rc C:\Windows\system32\DRIVERS\hcw95rc.sys 18:56:56.0460 4804 hcw95rc - ok 18:56:56.0598 4804 [ 68E732382B32417FF61FD663259B4B09 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys 18:56:56.0641 4804 HdAudAddService - ok 18:56:56.0747 4804 [ F942C5820205F2FB453243EDFEC82A3D ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys 18:56:56.0851 4804 HDAudBus - ok 18:56:56.0889 4804 [ B4881C84A180E75B8C25DC1D726C375F ] HidBth C:\Windows\system32\drivers\hidbth.sys 18:56:56.0977 4804 HidBth - ok 18:56:56.0994 4804 [ 4E77A77E2C986E8F88F996BB3E1AD829 ] HidIr C:\Windows\system32\drivers\hidir.sys 18:56:57.0063 4804 HidIr - ok 18:56:57.0117 4804 [ 59361D38A297755D46A540E450202B2A ] hidserv C:\Windows\system32\hidserv.dll 18:56:57.0168 4804 hidserv - ok 18:56:57.0221 4804 [ 443BDD2D30BB4F00795C797E2CF99EDF ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys 18:56:57.0290 4804 HidUsb - ok 18:56:57.0314 4804 [ B12F367EA39C0795FD57E31242CE1A5A ] hkmsvc C:\Windows\system32\kmsvc.dll 18:56:57.0349 4804 hkmsvc - ok 18:56:57.0370 4804 [ D7109A1E6BD2DFDBCBA72A6BC626A13B ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys 18:56:57.0387 4804 HpCISSs - ok 18:56:57.0486 4804 [ 098F1E4E5C9CB5B0063A959063631610 ] HTTP C:\Windows\system32\drivers\HTTP.sys 18:56:57.0573 4804 HTTP - ok 18:56:57.0585 4804 [ DA94C854CEA5FAC549D4E1F6E88349E8 ] i2omp C:\Windows\system32\drivers\i2omp.sys 18:56:57.0601 4804 i2omp - ok 18:56:57.0621 4804 [ CBB597659A2713CE0C9CC20C88C7591F ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys 18:56:57.0662 4804 i8042prt - ok 18:56:57.0684 4804 [ 3E3BF3627D886736D0B4E90054F929F6 ] iaStorV C:\Windows\system32\drivers\iastorv.sys 18:56:57.0713 4804 iaStorV - ok 18:56:57.0773 4804 [ 749F5F8CEDCA70F2A512945325FC489D ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe 18:56:57.0823 4804 idsvc - ok 18:56:57.0867 4804 [ 8C3951AD2FE886EF76C7B5027C3125D3 ] iirsp C:\Windows\system32\drivers\iirsp.sys 18:56:57.0882 4804 iirsp - ok 18:56:57.0950 4804 [ 0C9EA6E654E7B0471741E343A6C671AF ] IKEEXT C:\Windows\System32\ikeext.dll 18:56:58.0023 4804 IKEEXT - ok 18:56:58.0080 4804 ildid - ok 18:56:58.0144 4804 [ 1EDAB7F9B9DE4424BECCDEF950CE2FF0 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys 18:56:58.0273 4804 IntcAzAudAddService - ok 18:56:58.0305 4804 [ DF797A12176F11B2D301C5B234BB200E ] intelide C:\Windows\system32\DRIVERS\intelide.sys 18:56:58.0328 4804 intelide - ok 18:56:58.0370 4804 [ BFD84AF32FA1BAD6231C4585CB469630 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys 18:56:58.0419 4804 intelppm - ok 18:56:58.0450 4804 [ 5624BC1BC5EEB49C0AB76A8114F05EA3 ] IPBusEnum C:\Windows\system32\ipbusenum.dll 18:56:58.0505 4804 IPBusEnum - ok 18:56:58.0567 4804 [ D8AABC341311E4780D6FCE8C73C0AD81 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys 18:56:58.0617 4804 IpFilterDriver - ok 18:56:58.0622 4804 IpInIp - ok 18:56:58.0637 4804 [ 9C2EE2E6E5A7203BFAE15C299475EC67 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys 18:56:58.0689 4804 IPMIDRV - ok 18:56:58.0714 4804 [ B7E6212F581EA5F6AB0C3A6CEEEB89BE ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys 18:56:58.0784 4804 IPNAT - ok 18:56:58.0989 4804 [ 006597773BE583D1CCF6A913477937E0 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe 18:56:59.0048 4804 iPod Service - ok 18:56:59.0095 4804 [ 8C42CA155343A2F11D29FECA67FAA88D ] IRENUM C:\Windows\system32\drivers\irenum.sys 18:56:59.0148 4804 IRENUM - ok 18:56:59.0175 4804 [ 0672BFCEDC6FC468A2B0500D81437F4F ] isapnp C:\Windows\system32\drivers\isapnp.sys 18:56:59.0190 4804 isapnp - ok 18:56:59.0251 4804 [ E4FDF99599F27EC25D2CF6D754243520 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys 18:56:59.0266 4804 iScsiPrt - ok 18:56:59.0287 4804 [ 63C766CDC609FF8206CB447A65ABBA4A ] iteatapi C:\Windows\system32\drivers\iteatapi.sys 18:56:59.0315 4804 iteatapi - ok 18:56:59.0337 4804 [ 1281FE73B17664631D12F643CBEA3F59 ] iteraid C:\Windows\system32\drivers\iteraid.sys 18:56:59.0353 4804 iteraid - ok 18:56:59.0374 4804 [ 423696F3BA6472DD17699209B933BC26 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys 18:56:59.0391 4804 kbdclass - ok 18:56:59.0434 4804 [ DBDF75D51464FBC47D0104EC3D572C05 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys 18:56:59.0472 4804 kbdhid - ok 18:56:59.0508 4804 [ 260BF9C43EE12C6898A9F5AAB0FB0E5D ] KeyIso C:\Windows\system32\lsass.exe 18:56:59.0547 4804 KeyIso - ok 18:56:59.0657 4804 [ 88956AD9FA510848AD176777A6C6C1F5 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys 18:56:59.0719 4804 KSecDD - ok 18:56:59.0746 4804 [ 1D419CF43DB29396ECD7113D129D94EB ] ksthunk C:\Windows\system32\drivers\ksthunk.sys 18:56:59.0790 4804 ksthunk - ok 18:56:59.0830 4804 [ 1FAF6926F3416D3DA05C5B265491BDAE ] KtmRm C:\Windows\system32\msdtckrm.dll 18:56:59.0899 4804 KtmRm - ok 18:56:59.0952 4804 [ 50C7A3CB427E9BB5ED0708A669956AB5 ] LanmanServer C:\Windows\system32\srvsvc.dll 18:57:00.0008 4804 LanmanServer - ok 18:57:00.0055 4804 [ CAF86FC1388BE1E470F1A7B43E348ADB ] LanmanWorkstation C:\Windows\System32\wkssvc.dll 18:57:00.0091 4804 LanmanWorkstation - ok 18:57:00.0135 4804 [ DFEFF67508D3A9AEB1A85D7B0F513B24 ] LightScribeService c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe 18:57:00.0153 4804 LightScribeService ( UnsignedFile.Multi.Generic ) - warning 18:57:00.0153 4804 LightScribeService - detected UnsignedFile.Multi.Generic (1) 18:57:00.0172 4804 [ 96ECE2659B6654C10A0C310AE3A6D02C ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys 18:57:00.0225 4804 lltdio - ok 18:57:00.0263 4804 [ 961CCBD0B1CCB5675D64976FAE37D092 ] lltdsvc C:\Windows\System32\lltdsvc.dll 18:57:00.0326 4804 lltdsvc - ok 18:57:00.0343 4804 [ A47F8080CACC23C91FE823AD19AA5612 ] lmhosts C:\Windows\System32\lmhsvc.dll 18:57:00.0378 4804 lmhosts - ok 18:57:00.0415 4804 [ ACBE1AF32D3123E330A07BFBC5EC4A9B ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys 18:57:00.0433 4804 LSI_FC - ok 18:57:00.0449 4804 [ 799FFB2FC4729FA46D2157C0065B3525 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys 18:57:00.0467 4804 LSI_SAS - ok 18:57:00.0496 4804 [ F445FF1DAAD8A226366BFAF42551226B ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys 18:57:00.0515 4804 LSI_SCSI - ok 18:57:00.0529 4804 [ 52F87B9CC8932C2A7375C3B2A9BE5E3E ] luafv C:\Windows\system32\drivers\luafv.sys 18:57:00.0579 4804 luafv - ok 18:57:00.0616 4804 [ 701223C663019B62029FAB1A2385EE81 ] LUMDriver C:\Windows\system32\drivers\LUMDriver.sys 18:57:00.0630 4804 LUMDriver - ok 18:57:00.0638 4804 lvpepf64 - ok 18:57:00.0646 4804 LVPr2M64 - ok 18:57:00.0672 4804 [ A401CFF74982D8DF851F20307C806073 ] LVRS64 C:\Windows\system32\DRIVERS\lvrs64.sys 18:57:00.0702 4804 LVRS64 - ok 18:57:00.0706 4804 LVUSBS64 - ok 18:57:01.0209 4804 [ 13384CB5F5813E65F31078D6ABFAAF38 ] LVUVC64 C:\Windows\system32\DRIVERS\lvuvc64.sys 18:57:01.0441 4804 LVUVC64 - ok 18:57:01.0648 4804 [ BDD577BD14B8F1D909AAD45AD729108C ] matlabserver C:\Program Files (x86)\MATLAB71\webserver\bin\win32\matlabserver.exe 18:57:01.0781 4804 matlabserver ( UnsignedFile.Multi.Generic ) - warning 18:57:01.0781 4804 matlabserver - detected UnsignedFile.Multi.Generic (1) 18:57:01.0827 4804 [ 76A58DF02BD4EA29F189B82D0BEF17F8 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll 18:57:01.0919 4804 Mcx2Svc - ok 18:57:02.0009 4804 [ 5C5CD6AACED32FB26C3FB34B3DCF972F ] megasas C:\Windows\system32\drivers\megasas.sys 18:57:02.0024 4804 megasas - ok 18:57:02.0113 4804 [ 859BC2436B076C77C159ED694ACFE8F8 ] MegaSR C:\Windows\system32\drivers\megasr.sys 18:57:02.0143 4804 MegaSR - ok 18:57:02.0210 4804 [ 123271BD5237AB991DC5C21FDF8835EB ] Microsoft Office Groove Audit Service C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe 18:57:02.0243 4804 Microsoft Office Groove Audit Service - ok 18:57:02.0263 4804 [ 3CBE4995E80E13CCFBC42E5DCF3AC81A ] MMCSS C:\Windows\system32\mmcss.dll 18:57:02.0306 4804 MMCSS - ok 18:57:02.0326 4804 [ 59848D5CC74606F0EE7557983BB73C2E ] Modem C:\Windows\system32\drivers\modem.sys 18:57:02.0360 4804 Modem - ok 18:57:02.0425 4804 [ C247CC2A57E0A0C8C6DCCF7807B3E9E5 ] monitor C:\Windows\system32\DRIVERS\monitor.sys 18:57:02.0456 4804 monitor - ok 18:57:02.0483 4804 [ 9367304E5E412B120CF5F4EA14E4E4F1 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys 18:57:02.0499 4804 mouclass - ok 18:57:02.0508 4804 [ C2C2BD5C5CE5AAF786DDD74B75D2AC69 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys 18:57:02.0552 4804 mouhid - ok 18:57:02.0573 4804 [ 11BC9B1E8801B01F7F6ADB9EAD30019B ] MountMgr C:\Windows\system32\drivers\mountmgr.sys 18:57:02.0611 4804 MountMgr - ok 18:57:02.0653 4804 [ 825BF0E46B4470A463AEB641480C5FCA ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe 18:57:02.0690 4804 MozillaMaintenance - ok 18:57:02.0713 4804 [ F8276EB8698142884498A528DFEA8478 ] mpio C:\Windows\system32\drivers\mpio.sys 18:57:02.0755 4804 mpio - ok 18:57:02.0781 4804 [ C92B9ABDB65A5991E00C28F13491DBA2 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys 18:57:02.0819 4804 mpsdrv - ok 18:57:02.0833 4804 [ 3C200630A89EF2C0864D515B7A75802E ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys 18:57:02.0848 4804 Mraid35x - ok 18:57:02.0920 4804 [ 7C1DE4AA96DC0C071611F9E7DE02A68D ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys 18:57:02.0971 4804 MRxDAV - ok 18:57:03.0025 4804 [ 1485811B320FF8C7EDAD1CAEBB1C6C2B ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys 18:57:03.0086 4804 mrxsmb - ok 18:57:03.0112 4804 [ 3B929A60C833FC615FD97FBA82BC7632 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys 18:57:03.0155 4804 mrxsmb10 - ok 18:57:03.0172 4804 [ C64AB3E1F53B4F5B5BB6D796B2D7BEC3 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys 18:57:03.0190 4804 mrxsmb20 - ok 18:57:03.0201 4804 [ 1AC860612B85D8E85EE257D372E39F4D ] msahci C:\Windows\system32\drivers\msahci.sys 18:57:03.0216 4804 msahci - ok 18:57:03.0238 4804 [ 264BBB4AAF312A485F0E44B65A6B7202 ] msdsm C:\Windows\system32\drivers\msdsm.sys 18:57:03.0257 4804 msdsm - ok 18:57:03.0292 4804 [ 7EC02CE772F068ED0BEAFA3DA341A9BC ] MSDTC C:\Windows\System32\msdtc.exe 18:57:03.0348 4804 MSDTC - ok 18:57:03.0374 4804 [ 704F59BFC4512D2BB0146AEC31B10A7C ] Msfs C:\Windows\system32\drivers\Msfs.sys 18:57:03.0419 4804 Msfs - ok 18:57:03.0447 4804 [ 00EBC952961664780D43DCA157E79B27 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys 18:57:03.0462 4804 msisadrv - ok 18:57:03.0488 4804 [ 366B0C1F4478B519C181E37D43DCDA32 ] MSiSCSI C:\Windows\system32\iscsiexe.dll 18:57:03.0532 4804 MSiSCSI - ok 18:57:03.0536 4804 msiserver - ok 18:57:03.0558 4804 [ 0EA73E498F53B96D83DBFCA074AD4CF8 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys 18:57:03.0602 4804 MSKSSRV - ok 18:57:03.0624 4804 [ 52E59B7E992A58E740AA63F57EDBAE8B ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys 18:57:03.0673 4804 MSPCLOCK - ok 18:57:03.0691 4804 [ 49084A75BAE043AE02D5B44D02991BB2 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys 18:57:03.0741 4804 MSPQM - ok 18:57:03.0826 4804 [ DC6CCF440CDEDE4293DB41C37A5060A5 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys 18:57:03.0867 4804 MsRPC - ok 18:57:03.0911 4804 [ 855796E59DF77EA93AF46F20155BF55B ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys 18:57:03.0923 4804 mssmbios - ok 18:57:03.0955 4804 [ 86D632D75D05D5B7C7C043FA3564AE86 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys 18:57:04.0025 4804 MSTEE - ok 18:57:04.0078 4804 [ 0CC49F78D8ACA0877D885F149084E543 ] Mup C:\Windows\system32\Drivers\mup.sys 18:57:04.0129 4804 Mup - ok 18:57:04.0212 4804 [ A5B10C845E7538C60C0F5D87A57CB3F5 ] napagent C:\Windows\system32\qagentRT.dll 18:57:04.0266 4804 napagent - ok 18:57:04.0337 4804 [ 2007B826C4ACD94AE32232B41F0842B9 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys 18:57:04.0380 4804 NativeWifiP - ok 18:57:04.0420 4804 NAVENG - ok 18:57:04.0423 4804 NAVEX15 - ok 18:57:04.0570 4804 [ 65950E07329FCEE8E6516B17C8D0ABB6 ] NDIS C:\Windows\system32\drivers\ndis.sys 18:57:04.0626 4804 NDIS - ok 18:57:04.0695 4804 [ 64DF698A425478E321981431AC171334 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys 18:57:04.0744 4804 NdisTapi - ok 18:57:04.0761 4804 [ 8BAA43196D7B5BB972C9A6B2BBF61A19 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys 18:57:04.0837 4804 Ndisuio - ok 18:57:04.0901 4804 [ F8158771905260982CE724076419EF19 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys 18:57:04.0949 4804 NdisWan - ok 18:57:04.0966 4804 [ 9CB77ED7CB72850253E973A2D6AFDF49 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys 18:57:05.0031 4804 NDProxy - ok 18:57:05.0051 4804 [ A499294F5029A7862ADC115BDA7371CE ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys 18:57:05.0105 4804 NetBIOS - ok 18:57:05.0176 4804 [ FC2C792EBDDC8E28DF939D6A92C83D61 ] netbt C:\Windows\system32\DRIVERS\netbt.sys 18:57:05.0208 4804 netbt - ok 18:57:05.0215 4804 [ 260BF9C43EE12C6898A9F5AAB0FB0E5D ] Netlogon C:\Windows\system32\lsass.exe 18:57:05.0228 4804 Netlogon - ok 18:57:05.0336 4804 [ 9B63B29DEFC0F3115A559D2597BF5D75 ] Netman C:\Windows\System32\netman.dll 18:57:05.0392 4804 Netman - ok 18:57:05.0450 4804 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe 18:57:05.0484 4804 NetMsmqActivator - ok 18:57:05.0488 4804 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe 18:57:05.0500 4804 NetPipeActivator - ok 18:57:05.0619 4804 [ 7846D0136CC2B264926A73047BA7688A ] netprofm C:\Windows\System32\netprofm.dll 18:57:05.0671 4804 netprofm - ok 18:57:05.0675 4804 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe 18:57:05.0687 4804 NetTcpActivator - ok 18:57:05.0701 4804 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe 18:57:05.0712 4804 NetTcpPortSharing - ok 18:57:05.0736 4804 [ 4AC08BD6AF2DF42E0C3196D826C8AEA7 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys 18:57:05.0752 4804 nfrd960 - ok 18:57:05.0772 4804 [ F145BF4C4668E7E312069F81EF847CFC ] NlaSvc C:\Windows\System32\nlasvc.dll 18:57:05.0816 4804 NlaSvc - ok 18:57:05.0831 4804 Norton Internet Security - ok 18:57:05.0890 4804 [ B298874F8E0EA93F06EC40AA8D146478 ] Npfs C:\Windows\system32\drivers\Npfs.sys 18:57:05.0933 4804 Npfs - ok 18:57:05.0967 4804 [ ACB62BAA1C319B17752553DF3026EEEB ] nsi C:\Windows\system32\nsisvc.dll 18:57:06.0044 4804 nsi - ok 18:57:06.0067 4804 [ 1523AF19EE8B030BA682F7A53537EAEB ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys 18:57:06.0112 4804 nsiproxy - ok 18:57:06.0237 4804 [ 2ACCAA3C3C55370A32F17B3595E1A217 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys 18:57:06.0309 4804 Ntfs - ok 18:57:06.0337 4804 [ DD5D684975352B85B52E3FD5347C20CB ] Null C:\Windows\system32\drivers\Null.sys 18:57:06.0398 4804 Null - ok 18:57:06.0428 4804 [ 57C718139D52E017331806BAF4A1100A ] NVFLASH C:\Windows\system32\drivers\nvflash.sys 18:57:06.0442 4804 NVFLASH - ok 18:57:06.0470 4804 [ 8D4AAC74B571FC356560E5B308955E93 ] NVHDA C:\Windows\system32\drivers\nvhda64v.sys 18:57:06.0490 4804 NVHDA - ok 18:57:07.0032 4804 [ FCBA1C22727939E7CFF9EB08FE9692AB ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys 18:57:07.0499 4804 nvlddmkm - ok 18:57:07.0522 4804 [ 2C040B7ADA5B06F6FACADAC8514AA034 ] nvraid C:\Windows\system32\drivers\nvraid.sys 18:57:07.0541 4804 nvraid - ok 18:57:07.0579 4804 [ F7EA0FE82842D05EDA3EFDD376DBFDBA ] nvstor C:\Windows\system32\drivers\nvstor.sys 18:57:07.0611 4804 nvstor - ok 18:57:07.0653 4804 [ 10C232F6CFFD51D2332898AE7AE0FF23 ] nvsvc C:\Windows\system32\nvvsvc.exe 18:57:07.0689 4804 nvsvc - ok 18:57:07.0775 4804 [ 4789E020D2617046862D1790FC235FF6 ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe 18:57:07.0831 4804 nvUpdatusService - ok 18:57:07.0848 4804 [ 19067CA93075EF4823E3938A686F532F ] nv_agp C:\Windows\system32\drivers\nv_agp.sys 18:57:07.0867 4804 nv_agp - ok 18:57:07.0870 4804 NwlnkFlt - ok 18:57:07.0875 4804 NwlnkFwd - ok 18:57:08.0047 4804 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE 18:57:08.0113 4804 odserv - ok 18:57:08.0166 4804 [ 7B58953E2F263421FDBB09A192712A85 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys 18:57:08.0239 4804 ohci1394 - ok 18:57:08.0263 4804 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE 18:57:08.0301 4804 ose - ok 18:57:08.0564 4804 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE 18:57:08.0792 4804 osppsvc - ok 18:57:08.0890 4804 [ 9AE31D2E1D15C10D91318E0EC149CEAC ] p2pimsvc C:\Windows\system32\p2psvc.dll 18:57:09.0030 4804 p2pimsvc - ok 18:57:09.0042 4804 [ 9AE31D2E1D15C10D91318E0EC149CEAC ] p2psvc C:\Windows\system32\p2psvc.dll 18:57:09.0084 4804 p2psvc - ok 18:57:09.0178 4804 [ AECD57F94C887F58919F307C35498EA0 ] Parport C:\Windows\system32\drivers\parport.sys 18:57:09.0261 4804 Parport - ok 18:57:09.0290 4804 [ B43751085E2ABE389DA466BC62A4B987 ] partmgr C:\Windows\system32\drivers\partmgr.sys 18:57:09.0308 4804 partmgr - ok 18:57:09.0325 4804 [ 9AB157B374192FF276C1628FBDBA2B0E ] PcaSvc C:\Windows\System32\pcasvc.dll 18:57:09.0385 4804 PcaSvc - ok 18:57:09.0453 4804 [ 47AB1E0FC9D0E12BB53BA246E3A0906D ] pci C:\Windows\system32\drivers\pci.sys 18:57:09.0474 4804 pci - ok 18:57:09.0491 4804 [ 8D618C829034479985A9ED56106CC732 ] pciide C:\Windows\system32\drivers\pciide.sys 18:57:09.0505 4804 pciide - ok 18:57:09.0518 4804 [ 037661F3D7C507C9993B7010CEEE6288 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys 18:57:09.0539 4804 pcmcia - ok 18:57:09.0563 4804 [ 58865916F53592A61549B04941BFD80D ] PEAUTH C:\Windows\system32\drivers\peauth.sys 18:57:09.0649 4804 PEAUTH - ok 18:57:09.0716 4804 [ 0ED8727EA0172860F47258456C06CAEA ] PerfHost C:\Windows\SysWow64\perfhost.exe 18:57:09.0764 4804 PerfHost - ok 18:57:09.0789 4804 PID_PEPI - ok 18:57:09.0830 4804 [ E9E68C1A0F25CF4A7AC966EEA74EE89E ] pla C:\Windows\system32\pla.dll 18:57:09.0985 4804 pla - ok 18:57:10.0080 4804 [ FE6B0F59215C9FD9F9D26539C58C8B82 ] PlugPlay C:\Windows\system32\umpnpmgr.dll 18:57:10.0116 4804 PlugPlay - ok 18:57:10.0158 4804 [ 9AE31D2E1D15C10D91318E0EC149CEAC ] PNRPAutoReg C:\Windows\system32\p2psvc.dll 18:57:10.0224 4804 PNRPAutoReg - ok 18:57:10.0355 4804 [ 9AE31D2E1D15C10D91318E0EC149CEAC ] PNRPsvc C:\Windows\system32\p2psvc.dll 18:57:10.0389 4804 PNRPsvc - ok 18:57:10.0473 4804 [ 147938DA9605668EC48B8419E819CAF1 ] Point64 C:\Windows\system32\DRIVERS\point64k.sys 18:57:10.0497 4804 Point64 - ok 18:57:10.0645 4804 [ 89A5560671C2D8B4A4B51F3E1AA069D8 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll 18:57:10.0728 4804 PolicyAgent - ok 18:57:10.0810 4804 postgresql-8.4 - ok 18:57:10.0863 4804 [ 23386E9952025F5F21C368971E2E7301 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys 18:57:10.0919 4804 PptpMiniport - ok 18:57:10.0960 4804 [ 5080E59ECEE0BC923F14018803AA7A01 ] Processor C:\Windows\system32\drivers\processr.sys 18:57:11.0010 4804 Processor - ok 18:57:11.0061 4804 [ E058CE4FC2449D8BFA14739C83B7FF2A ] ProfSvc C:\Windows\system32\profsvc.dll 18:57:11.0103 4804 ProfSvc - ok 18:57:11.0123 4804 [ 260BF9C43EE12C6898A9F5AAB0FB0E5D ] ProtectedStorage C:\Windows\system32\lsass.exe 18:57:11.0136 4804 ProtectedStorage - ok 18:57:11.0191 4804 [ C5AB7F0809392D0DA027F4A2A81BFA31 ] PSched C:\Windows\system32\DRIVERS\pacer.sys 18:57:11.0220 4804 PSched - ok 18:57:11.0526 4804 [ 0B83F4E681062F3839BE2EC1D98FD94A ] ql2300 C:\Windows\system32\drivers\ql2300.sys 18:57:11.0585 4804 ql2300 - ok 18:57:11.0636 4804 [ E1C80F8D4D1E39EF9595809C1369BF2A ] ql40xx C:\Windows\system32\drivers\ql40xx.sys 18:57:11.0669 4804 ql40xx - ok 18:57:11.0695 4804 [ 90574842C3DA781E279061A3EFF91F07 ] QWAVE C:\Windows\system32\qwave.dll 18:57:11.0738 4804 QWAVE - ok 18:57:11.0753 4804 [ E8D76EDAB77EC9C634C27B8EAC33ADC5 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys 18:57:11.0770 4804 QWAVEdrv - ok 18:57:11.0776 4804 [ 1013B3B663A56D3DDD784F581C1BD005 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys 18:57:11.0825 4804 RasAcd - ok 18:57:11.0862 4804 [ B2AE18F847D07F0044404DDF7CB04497 ] RasAuto C:\Windows\System32\rasauto.dll 18:57:11.0915 4804 RasAuto - ok 18:57:11.0968 4804 [ AC7BC4D42A7E558718DFDEC599BBFC2C ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys 18:57:12.0018 4804 Rasl2tp - ok 18:57:12.0046 4804 [ 3AD83E4046C43BE510DE681588ACB8AF ] RasMan C:\Windows\System32\rasmans.dll 18:57:12.0073 4804 RasMan - ok 18:57:12.0141 4804 [ 4517FBF8B42524AFE4EDE1DE102AAE3E ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys 18:57:12.0204 4804 RasPppoe - ok 18:57:12.0248 4804 [ C6A593B51F34C33E5474539544072527 ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys 18:57:12.0291 4804 RasSstp - ok 18:57:12.0342 4804 [ 322DB5C6B55E8D8EE8D6F358B2AAABB1 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys 18:57:12.0376 4804 rdbss - ok 18:57:12.0387 4804 [ 603900CC05F6BE65CCBF373800AF3716 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys 18:57:12.0419 4804 RDPCDD - ok 18:57:12.0455 4804 [ C045D1FB111C28DF0D1BE8D4BDA22C06 ] rdpdr C:\Windows\system32\drivers\rdpdr.sys 18:57:12.0521 4804 rdpdr - ok 18:57:12.0524 4804 [ CAB9421DAF3D97B33D0D055858E2C3AB ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys 18:57:12.0558 4804 RDPENCDD - ok 18:57:12.0629 4804 [ AE4BD9E1C33D351D8E607FC81F15160C ] RDPWD C:\Windows\system32\drivers\RDPWD.sys 18:57:12.0695 4804 RDPWD - ok 18:57:12.0713 4804 [ C612B9557DA73F70D41F8A6FBC8E5344 ] RemoteAccess C:\Windows\System32\mprdim.dll 18:57:12.0767 4804 RemoteAccess - ok 18:57:12.0847 4804 [ 44B9D8EC2F3EF3A0EFB00857AF70D861 ] RemoteRegistry C:\Windows\system32\regsvc.dll 18:57:12.0893 4804 RemoteRegistry - ok 18:57:12.0920 4804 [ F46C457840D4B7A4DAAFEE739CE04102 ] RpcLocator C:\Windows\system32\locator.exe 18:57:12.0964 4804 RpcLocator - ok 18:57:13.0021 4804 [ CF8B9A3A5E7DC57724A89D0C3E8CF9EF ] RpcSs C:\Windows\system32\rpcss.dll 18:57:13.0054 4804 RpcSs - ok 18:57:13.0065 4804 [ 22A9CB08B1A6707C1550C6BF099AAE73 ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys 18:57:13.0110 4804 rspndr - ok 18:57:13.0137 4804 [ D53C84EC99AB4D78A90001E5CE5386EC ] RTL8169 C:\Windows\system32\DRIVERS\Rtlh64.sys 18:57:13.0192 4804 RTL8169 - ok 18:57:13.0215 4804 [ 260BF9C43EE12C6898A9F5AAB0FB0E5D ] SamSs C:\Windows\system32\lsass.exe 18:57:13.0227 4804 SamSs - ok 18:57:13.0368 4804 [ 99DF79C258B3342B6C8A5F802998DE56 ] SASDIFSV C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS 18:57:13.0387 4804 SASDIFSV - ok 18:57:13.0390 4804 [ 2859C35C0651E8EB0D86D48E740388F2 ] SASKUTIL C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS 18:57:13.0402 4804 SASKUTIL - ok 18:57:13.0406 4804 sboliv - ok 18:57:13.0417 4804 [ CD9C693589C60AD59BBBCFB0E524E01B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys 18:57:13.0435 4804 sbp2port - ok 18:57:13.0742 4804 [ 794D4B48DFB6E999537C7C3947863463 ] SBSDWSCService C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe 18:57:13.0788 4804 SBSDWSCService - ok 18:57:13.0863 4804 [ FD1CDCF108D5EF3366F00D18B70FB89B ] SCardSvr C:\Windows\System32\SCardSvr.dll 18:57:13.0892 4804 SCardSvr - ok 18:57:14.0140 4804 [ 0F838C811AD295D2A4489B9993096C63 ] Schedule C:\Windows\system32\schedsvc.dll 18:57:14.0247 4804 Schedule - ok 18:57:14.0322 4804 [ 5A268127633C7EE2A7FB87F39D748D56 ] SCPolicySvc C:\Windows\System32\certprop.dll 18:57:14.0345 4804 SCPolicySvc - ok 18:57:14.0386 4804 [ 4FF71B076A7760FE75EA5AE2D0EE0018 ] SDRSVC C:\Windows\System32\SDRSVC.dll 18:57:14.0424 4804 SDRSVC - ok 18:57:14.0456 4804 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys 18:57:14.0526 4804 secdrv - ok 18:57:14.0536 4804 [ 5ACDCBC67FCF894A1815B9F96D704490 ] seclogon C:\Windows\system32\seclogon.dll 18:57:14.0581 4804 seclogon - ok 18:57:14.0650 4804 [ 90973A64B96CD647FF81C79443618EED ] SENS C:\Windows\System32\sens.dll 18:57:14.0699 4804 SENS - ok 18:57:14.0715 4804 [ F71BFE7AC6C52273B7C82CBF1BB2A222 ] Serenum C:\Windows\system32\drivers\serenum.sys 18:57:14.0792 4804 Serenum - ok 18:57:14.0838 4804 [ E62FAC91EE288DB29A9696A9D279929C ] Serial C:\Windows\system32\drivers\serial.sys 18:57:14.0914 4804 Serial - ok 18:57:14.0923 4804 [ A842F04833684BCEEA7336211BE478DF ] sermouse C:\Windows\system32\drivers\sermouse.sys 18:57:14.0973 4804 sermouse - ok 18:57:15.0032 4804 [ A8E4A4407A09F35DCCC3771AF590B0C4 ] SessionEnv C:\Windows\system32\sessenv.dll 18:57:15.0068 4804 SessionEnv - ok 18:57:15.0092 4804 [ 14D4B4465193A87C127933978E8C4106 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys 18:57:15.0154 4804 sffdisk - ok 18:57:15.0209 4804 [ 7073AEE3F82F3D598E3825962AA98AB2 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys 18:57:15.0243 4804 sffp_mmc - ok 18:57:15.0256 4804 [ 35E59EBE4A01A0532ED67975161C7B82 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys 18:57:15.0302 4804 sffp_sd - ok 18:57:15.0320 4804 [ 6B7838C94135768BD455CBDC23E39E5F ] sfloppy C:\Windows\system32\drivers\sfloppy.sys 18:57:15.0392 4804 sfloppy - ok 18:57:15.0441 4804 [ 56793271ECDEDD350C5ADD305603E963 ] ShellHWDetection C:\Windows\System32\shsvcs.dll 18:57:15.0502 4804 ShellHWDetection - ok 18:57:15.0525 4804 [ 7A5DE502AEB719D4594C6471060A78B3 ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys 18:57:15.0542 4804 SiSRaid2 - ok 18:57:15.0553 4804 [ 3A2F769FAB9582BC720E11EA1DFB184D ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys 18:57:15.0571 4804 SiSRaid4 - ok 18:57:15.0994 4804 [ 4CA43B85F22C7739311788B651A779CB ] Skype C2C Service C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe 18:57:16.0127 4804 Skype C2C Service - ok 18:57:16.0259 4804 [ 2F5AF9D91D51E832773D4A9EAF65CB33 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe 18:57:16.0270 4804 SkypeUpdate - ok 18:57:16.0424 4804 [ A9A27A8E257B45A604FDAD4F26FE7241 ] slsvc C:\Windows\system32\SLsvc.exe 18:57:16.0536 4804 slsvc - ok 18:57:16.0585 4804 [ FD74B4B7C2088E390A30C85A896FC3AF ] SLUINotify C:\Windows\system32\SLUINotify.dll 18:57:16.0659 4804 SLUINotify - ok 18:57:16.0747 4804 [ 290B6F6A0EC4FCDFC90F5CB6D7020473 ] Smb C:\Windows\system32\DRIVERS\smb.sys 18:57:16.0858 4804 Smb - ok 18:57:16.0893 4804 [ F8F47F38909823B1AF28D60B96340CFF ] SNMPTRAP C:\Windows\System32\snmptrap.exe 18:57:16.0930 4804 SNMPTRAP - ok 18:57:16.0980 4804 [ 386C3C63F00A7040C7EC5E384217E89D ] spldr C:\Windows\system32\drivers\spldr.sys 18:57:16.0997 4804 spldr - ok 18:57:17.0079 4804 [ F66FF751E7EFC816D266977939EF5DC3 ] Spooler C:\Windows\System32\spoolsv.exe 18:57:17.0110 4804 Spooler - ok 18:57:17.0127 4804 SRTSP - ok 18:57:17.0132 4804 SRTSPX - ok 18:57:17.0225 4804 [ 880A57FCCB571EBD063D4DD50E93E46D ] srv C:\Windows\system32\DRIVERS\srv.sys 18:57:17.0309 4804 srv - ok 18:57:17.0439 4804 [ A1AD14A6D7A37891FFFECA35EBBB0730 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys 18:57:17.0495 4804 srv2 - ok 18:57:17.0525 4804 [ 4BED62F4FA4D8300973F1151F4C4D8A7 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys 18:57:17.0561 4804 srvnet - ok 18:57:17.0584 4804 [ 192C74646EC5725AEF3F80D19FF75F6A ] SSDPSRV C:\Windows\System32\ssdpsrv.dll 18:57:17.0634 4804 SSDPSRV - ok 18:57:17.0665 4804 [ 2EE3FA0308E6185BA64A9A7F2E74332B ] SstpSvc C:\Windows\system32\sstpsvc.dll 18:57:17.0690 4804 SstpSvc - ok 18:57:17.0739 4804 [ 5A19667A580B1CE886EAF968B9743F45 ] Stereo Service C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe 18:57:17.0762 4804 Stereo Service - ok 18:57:17.0829 4804 [ 15825C1FBFB8779992CB65087F316AF5 ] stisvc C:\Windows\System32\wiaservc.dll 18:57:17.0889 4804 stisvc - ok 18:57:17.0915 4804 [ 8A851CA908B8B974F89C50D2E18D4F0C ] swenum C:\Windows\system32\DRIVERS\swenum.sys 18:57:17.0929 4804 swenum - ok 18:57:18.0024 4804 [ 6DE37F4DE19D4EFD9C48C43ADDBC949A ] swprv C:\Windows\System32\swprv.dll 18:57:18.0106 4804 swprv - ok 18:57:18.0146 4804 [ 2F26A2C6FC96B29BEFF5D8ED74E6625B ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys 18:57:18.0170 4804 Symc8xx - ok 18:57:18.0200 4804 [ A909667976D3BCCD1DF813FED517D837 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys 18:57:18.0215 4804 Sym_hi - ok 18:57:18.0226 4804 [ 36887B56EC2D98B9C362F6AE4DE5B7B0 ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys 18:57:18.0242 4804 Sym_u3 - ok 18:57:18.0415 4804 [ 92D7A8B0F87B036F17D25885937897A6 ] SysMain C:\Windows\system32\sysmain.dll 18:57:18.0506 4804 SysMain - ok 18:57:18.0544 4804 [ 005CE42567F9113A3BCCB3B20073B029 ] TabletInputService C:\Windows\System32\TabSvc.dll 18:57:18.0572 4804 TabletInputService - ok 18:57:18.0597 4804 [ CC2562B4D55E0B6A4758C65407F63B79 ] TapiSrv C:\Windows\System32\tapisrv.dll 18:57:18.0641 4804 TapiSrv - ok 18:57:18.0656 4804 [ CDBE8D7C1E201B911CDC346D06617FB5 ] TBS C:\Windows\System32\tbssvc.dll 18:57:18.0705 4804 TBS - ok 18:57:18.0747 4804 [ 0E970F59D7FBB838316176B19A2ADB82 ] Tcpip C:\Windows\system32\drivers\tcpip.sys 18:57:18.0831 4804 Tcpip - ok 18:57:18.0849 4804 [ 0E970F59D7FBB838316176B19A2ADB82 ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys 18:57:18.0892 4804 Tcpip6 - ok 18:57:18.0944 4804 [ C7E72A4071EE0200E3C075DACFB2B334 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys 18:57:19.0020 4804 tcpipreg - ok 18:57:19.0044 4804 [ 1D8BF4AAA5FB7A2761475781DC1195BC ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys 18:57:19.0094 4804 TDPIPE - ok 18:57:19.0111 4804 [ 7F7E00CDF609DF657F4CDA02DD1C9BB1 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys 18:57:19.0171 4804 TDTCP - ok 18:57:19.0209 4804 [ 458919C8C42E398DC4802178D5FFEE27 ] tdx C:\Windows\system32\DRIVERS\tdx.sys 18:57:19.0255 4804 tdx - ok 18:57:19.0311 4804 [ 8C19678D22649EC002EF2282EAE92F98 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys 18:57:19.0348 4804 TermDD - ok 18:57:19.0366 4804 [ 5CDD30BC217082DAC71A9878D9BFD566 ] TermService C:\Windows\System32\termsrv.dll 18:57:19.0427 4804 TermService - ok 18:57:19.0507 4804 [ 56793271ECDEDD350C5ADD305603E963 ] Themes C:\Windows\system32\shsvcs.dll 18:57:19.0524 4804 Themes - ok 18:57:19.0544 4804 [ 3CBE4995E80E13CCFBC42E5DCF3AC81A ] THREADORDER C:\Windows\system32\mmcss.dll 18:57:19.0579 4804 THREADORDER - ok 18:57:19.0608 4804 [ F4689F05AF472A651A7B1B7B02D200E7 ] TrkWks C:\Windows\System32\trkwks.dll 18:57:19.0657 4804 TrkWks - ok 18:57:19.0726 4804 [ 66328B08EF5A9305D8EDE36B93930369 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe 18:57:19.0767 4804 TrustedInstaller - ok 18:57:19.0791 4804 [ 9E5409CD17C8BEF193AAD498F3BC2CB8 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys 18:57:19.0842 4804 tssecsrv - ok 18:57:19.0873 4804 [ 89EC74A9E602D16A75A4170511029B3C ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys 18:57:19.0916 4804 tunmp - ok 18:57:19.0975 4804 [ 30A9B3F45AD081BFFC3BCAA9C812B609 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys 18:57:20.0006 4804 tunnel - ok 18:57:20.0022 4804 [ FEC266EF401966311744BD0F359F7F56 ] uagp35 C:\Windows\system32\drivers\uagp35.sys 18:57:20.0041 4804 uagp35 - ok 18:57:20.0163 4804 [ FAF2640A2A76ED03D449E443194C4C34 ] udfs C:\Windows\system32\DRIVERS\udfs.sys 18:57:20.0221 4804 udfs - ok 18:57:20.0247 4804 [ 060507C4113391394478F6953A79EEDC ] UI0Detect C:\Windows\system32\UI0Detect.exe 18:57:20.0298 4804 UI0Detect - ok 18:57:20.0326 4804 [ 4EC9447AC3AB462647F60E547208CA00 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys 18:57:20.0362 4804 uliagpkx - ok 18:57:20.0389 4804 [ 697F0446134CDC8F99E69306184FBBB4 ] uliahci C:\Windows\system32\drivers\uliahci.sys 18:57:20.0418 4804 uliahci - ok 18:57:20.0466 4804 [ 31707F09846056651EA2C37858F5DDB0 ] UlSata C:\Windows\system32\drivers\ulsata.sys 18:57:20.0484 4804 UlSata - ok 18:57:20.0537 4804 [ 85E5E43ED5B48C8376281BAB519271B7 ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys 18:57:20.0593 4804 ulsata2 - ok 18:57:20.0611 4804 [ 46E9A994C4FED537DD951F60B86AD3F4 ] umbus C:\Windows\system32\DRIVERS\umbus.sys 18:57:20.0668 4804 umbus - ok 18:57:20.0756 4804 [ 7093799FF80E9DECA0680D2E3535BE60 ] upnphost C:\Windows\System32\upnphost.dll 18:57:20.0834 4804 upnphost - ok 18:57:20.0880 4804 [ 9E58997A211C8C9AC9E6CFFA53614A73 ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys 18:57:20.0906 4804 USBAAPL64 - ok 18:57:20.0971 4804 [ C6BA890DE6E41857FBE84175519CAE7D ] usbaudio C:\Windows\system32\drivers\usbaudio.sys 18:57:21.0049 4804 usbaudio - ok 18:57:21.0150 4804 [ 07E3498FC60834219D2356293DA0FECC ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys 18:57:21.0221 4804 usbccgp - ok 18:57:21.0248 4804 [ 9247F7E0B65852C1F6631480984D6ED2 ] usbcir C:\Windows\system32\drivers\usbcir.sys 18:57:21.0344 4804 usbcir - ok 18:57:21.0570 4804 [ 827E44DE934A736EA31E91D353EB126F ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys 18:57:21.0692 4804 usbehci - ok 18:57:21.0773 4804 [ BB35CD80A2ECECFADC73569B3D70C7D1 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys 18:57:21.0915 4804 usbhub - ok 18:57:21.0965 4804 [ EBA14EF0C07CEC233F1529C698D0D154 ] usbohci C:\Windows\system32\drivers\usbohci.sys 18:57:22.0057 4804 usbohci - ok 18:57:22.0098 4804 [ 28B693B6D31E7B9332C1BDCEFEF228C1 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys 18:57:22.0146 4804 usbprint - ok 18:57:22.0209 4804 [ EA0BF666868964FBE8CB10E50C97B9F1 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys 18:57:22.0263 4804 usbscan - ok 18:57:22.0326 4804 [ B854C1558FCA0C269A38663E8B59B581 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS 18:57:22.0426 4804 USBSTOR - ok 18:57:22.0451 4804 [ B2872CBF9F47316ABD0E0C74A1ABA507 ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys 18:57:22.0478 4804 usbuhci - ok 18:57:22.0519 4804 [ FC33099877790D51B0927B7039059855 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys 18:57:22.0580 4804 usbvideo - ok 18:57:22.0626 4804 [ D76E231E4850BB3F88A3D9A78DF191E3 ] UxSms C:\Windows\System32\uxsms.dll 18:57:22.0655 4804 UxSms - ok 18:57:22.0801 4804 [ 294945381DFA7CE58CECF0A9896AF327 ] vds C:\Windows\System32\vds.exe 18:57:22.0864 4804 vds - ok 18:57:22.0881 4804 [ 916B94BCF1E09873FFF2D5FB11767BBC ] vga C:\Windows\system32\DRIVERS\vgapnp.sys 18:57:22.0933 4804 vga - ok 18:57:22.0958 4804 [ B83AB16B51FEDA65DD81B8C59D114D63 ] VgaSave C:\Windows\System32\drivers\vga.sys 18:57:23.0005 4804 VgaSave - ok 18:57:23.0027 4804 [ 8294B6C3FDB6C33F24E150DE647ECDAA ] viaide C:\Windows\system32\drivers\viaide.sys 18:57:23.0045 4804 viaide - ok 18:57:23.0083 4804 [ 2B7E885ED951519A12C450D24535DFCA ] volmgr C:\Windows\system32\drivers\volmgr.sys 18:57:23.0112 4804 volmgr - ok 18:57:23.0311 4804 [ CEC5AC15277D75D9E5DEC2E1C6EAF877 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys 18:57:23.0360 4804 volmgrx - ok 18:57:23.0491 4804 [ 582F710097B46140F5A89A19A6573D4B ] volsnap C:\Windows\system32\drivers\volsnap.sys 18:57:23.0532 4804 volsnap - ok 18:57:23.0729 4804 [ 80E63B86C40C5E067475DC98F845A6DD ] vpnagent C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe 18:57:23.0758 4804 vpnagent - ok 18:57:23.0793 4804 [ A8D4FED106B4BD337DF3DA20BA44E18E ] vpnva C:\Windows\system32\DRIVERS\vpnva64.sys 18:57:23.0808 4804 vpnva - ok 18:57:23.0841 4804 [ A68F455ED2673835209318DD61BFBB0E ] vsmraid C:\Windows\system32\drivers\vsmraid.sys 18:57:23.0861 4804 vsmraid - ok 18:57:23.0933 4804 [ B75232DAD33BFD95BF6F0A3E6BFF51E1 ] VSS C:\Windows\system32\vssvc.exe 18:57:24.0016 4804 VSS - ok 18:57:24.0065 4804 [ F14A7DE2EA41883E250892E1E5230A9A ] W32Time C:\Windows\system32\w32time.dll 18:57:24.0130 4804 W32Time - ok 18:57:24.0182 4804 [ FEF8FE5923FEAD2CEE4DFABFCE3393A7 ] WacomPen C:\Windows\system32\drivers\wacompen.sys 18:57:24.0233 4804 WacomPen - ok 18:57:24.0283 4804 [ B8E7049622300D20BA6D8BE0C47C0CFD ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys 18:57:24.0311 4804 Wanarp - ok 18:57:24.0316 4804 [ B8E7049622300D20BA6D8BE0C47C0CFD ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys 18:57:24.0341 4804 Wanarpv6 - ok 18:57:24.0359 4804 [ B4E4C37D0AA6100090A53213EE2BF1C1 ] wcncsvc C:\Windows\System32\wcncsvc.dll 18:57:24.0405 4804 wcncsvc - ok 18:57:24.0460 4804 [ EA4B369560E986F19D93F45A881484AC ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll 18:57:24.0500 4804 WcsPlugInService - ok 18:57:24.0519 4804 [ 0C17A0816F65B89E362E682AD5E7266E ] Wd C:\Windows\system32\drivers\wd.sys 18:57:24.0535 4804 Wd - ok 18:57:24.0571 4804 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys 18:57:24.0622 4804 Wdf01000 - ok 18:57:24.0650 4804 [ C5EFDA73EBFCA8B02A094898DE0A9276 ] WdiServiceHost C:\Windows\system32\wdi.dll 18:57:24.0683 4804 WdiServiceHost - ok 18:57:24.0686 4804 [ C5EFDA73EBFCA8B02A094898DE0A9276 ] WdiSystemHost C:\Windows\system32\wdi.dll 18:57:24.0719 4804 WdiSystemHost - ok 18:57:24.0731 4804 [ 3E6D05381CF35F75EBB055544A8ED9AC ] WebClient C:\Windows\System32\webclnt.dll 18:57:24.0753 4804 WebClient - ok 18:57:24.0782 4804 [ 8D40BC587993F876658BF9FB0F7D3462 ] Wecsvc C:\Windows\system32\wecsvc.dll 18:57:24.0835 4804 Wecsvc - ok 18:57:24.0862 4804 [ 9C980351D7E96288EA0C23AE232BD065 ] wercplsupport C:\Windows\System32\wercplsupport.dll 18:57:24.0891 4804 wercplsupport - ok 18:57:24.0899 4804 [ 66B9ECEBC46683F47EDC06333C075FEF ] WerSvc C:\Windows\System32\WerSvc.dll 18:57:24.0942 4804 WerSvc - ok 18:57:24.0950 4804 WinHttpAutoProxySvc - ok 18:57:25.0044 4804 [ D2E7296ED1BD26D8DB2799770C077A02 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll 18:57:25.0095 4804 Winmgmt - ok 18:57:25.0150 4804 [ 6CBB0C68F13B9C2EC1B16F5FA5E7C869 ] WinRM C:\Windows\system32\WsmSvc.dll 18:57:25.0238 4804 WinRM - ok 18:57:25.0277 4804 [ EC339C8115E91BAED835957E9A677F16 ] Wlansvc C:\Windows\System32\wlansvc.dll 18:57:25.0378 4804 Wlansvc - ok 18:57:25.0538 4804 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE 18:57:25.0688 4804 wlidsvc - ok 18:57:25.0739 4804 [ E18AEBAAA5A773FE11AA2C70F65320F5 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys 18:57:25.0764 4804 WmiAcpi - ok 18:57:25.0834 4804 [ 21FA389E65A852698B6A1341F36EE02D ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe 18:57:25.0863 4804 wmiApSrv - ok 18:57:25.0892 4804 WMPNetworkSvc - ok 18:57:25.0917 4804 [ CBC156C913F099E6680D1DF9307DB7A8 ] WPCSvc C:\Windows\System32\wpcsvc.dll 18:57:25.0967 4804 WPCSvc - ok 18:57:26.0026 4804 [ 490A18B4E4D53DC10879DEAA8E8B70D9 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll 18:57:26.0059 4804 WPDBusEnum - ok 18:57:26.0132 4804 [ 5E2401B3FC1089C90E081291357371A9 ] WpdUsb C:\Windows\system32\DRIVERS\wpdusb.sys 18:57:26.0157 4804 WpdUsb - ok 18:57:26.0410 4804 [ 991E2C2CF3BC204C2BB2EE1476149E4E ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\WPF\WPFFontCache_v0400.exe 18:57:26.0454 4804 WPFFontCache_v0400 - ok 18:57:26.0490 4804 [ 8A900348370E359B6BFF6A550E4649E1 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys 18:57:26.0541 4804 ws2ifsl - ok 18:57:26.0544 4804 WSearch - ok 18:57:26.0584 4804 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys 18:57:26.0631 4804 WudfPf - ok 18:57:26.0659 4804 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys 18:57:26.0696 4804 WUDFRd - ok 18:57:26.0716 4804 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll 18:57:26.0752 4804 wudfsvc - ok 18:57:26.0757 4804 yyca - ok 18:57:26.0778 4804 ================ Scan global =============================== 18:57:26.0806 4804 [ 060DC3A7A9A2626031EB23D90151428D ] C:\Windows\system32\basesrv.dll 18:57:26.0846 4804 [ D665D594B7E11133D29D726BDDC7A5B0 ] C:\Windows\system32\winsrv.dll 18:57:26.0870 4804 [ D665D594B7E11133D29D726BDDC7A5B0 ] C:\Windows\system32\winsrv.dll 18:57:26.0903 4804 [ B8844F93D2C5F1DCDB179AAA9AF134B7 ] C:\Windows\system32\services.exe 18:57:26.0907 4804 C:\Windows\system32\services.exe ( Virus.Win64.ZAccess.a ) - infected 18:57:26.0907 4804 C:\Windows\system32\services.exe - detected Virus.Win64.ZAccess.a (0) 18:57:26.0907 4804 ================ Scan MBR ================================== 18:57:26.0916 4804 [ 81CD5EC01DB0CE57EDD853F82462EF27 ] \Device\Harddisk0\DR0 18:57:27.0875 4804 \Device\Harddisk0\DR0 - ok 18:57:27.0875 4804 ================ Scan VBR ================================== 18:57:27.0880 4804 [ 73B88313EEEC8D1935C176FCC911E938 ] \Device\Harddisk0\DR0\Partition1 18:57:27.0892 4804 \Device\Harddisk0\DR0\Partition1 - ok 18:57:27.0924 4804 [ D8FAEC64F54C85571B13B1BAF41E9665 ] \Device\Harddisk0\DR0\Partition2 18:57:27.0951 4804 \Device\Harddisk0\DR0\Partition2 - ok 18:57:27.0951 4804 ============================================================ 18:57:27.0951 4804 Scan finished 18:57:27.0951 4804 ============================================================ 18:57:27.0960 3632 Detected object count: 8 18:57:27.0960 3632 Actual detected object count: 8 18:57:55.0051 3632 !SASCORE ( UnsignedFile.Multi.Generic ) - skipped by user 18:57:55.0051 3632 !SASCORE ( UnsignedFile.Multi.Generic ) - User select action: Skip 18:57:55.0053 3632 ASGT ( UnsignedFile.Multi.Generic ) - skipped by user 18:57:55.0053 3632 ASGT ( UnsignedFile.Multi.Generic ) - User select action: Skip 18:57:55.0054 3632 AVM WLAN Connection Service ( UnsignedFile.Multi.Generic ) - skipped by user 18:57:55.0055 3632 AVM WLAN Connection Service ( UnsignedFile.Multi.Generic ) - User select action: Skip 18:57:55.0056 3632 EpsonBidirectionalService ( UnsignedFile.Multi.Generic ) - skipped by user 18:57:55.0056 3632 EpsonBidirectionalService ( UnsignedFile.Multi.Generic ) - User select action: Skip 18:57:55.0058 3632 HauppaugeTVServer ( UnsignedFile.Multi.Generic ) - skipped by user 18:57:55.0058 3632 HauppaugeTVServer ( UnsignedFile.Multi.Generic ) - User select action: Skip 18:57:55.0060 3632 LightScribeService ( UnsignedFile.Multi.Generic ) - skipped by user 18:57:55.0060 3632 LightScribeService ( UnsignedFile.Multi.Generic ) - User select action: Skip 18:57:55.0061 3632 matlabserver ( UnsignedFile.Multi.Generic ) - skipped by user 18:57:55.0061 3632 matlabserver ( UnsignedFile.Multi.Generic ) - User select action: Skip 18:57:55.0063 3632 C:\Windows\system32\services.exe ( Virus.Win64.ZAccess.a ) - skipped by user 18:57:55.0063 3632 C:\Windows\system32\services.exe ( Virus.Win64.ZAccess.a ) - User select action: Skip 18:58:00.0680 1040 Deinitialize success Sorry, ich weiß gerad nicht wie ich das in einen spoiler kriege oder Anhang... Es wurde scheinbar ein "Virus" gefunden. Danke, dass hier so schnell Hilfe kommt! Update: bei Programmen unter "Start" steht jetzt ein Programm "Software995.com". Das habe ich vorher noch nicht gesehen, evtl hab ich es aber auch nur übersehen bisher!? |
Code: 18:57:55.0063 3632 C:\Windows\system32\services.exe ( Virus.Win64.ZAccess.a ) - skipped by userDas andere Programm deinstallieren.  So funktioniert es:Posten in CODE-Tags Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert mir massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu gross für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
|
Code: nach dem neustart kam diese log-datei dazu Code: |
Zitat:
Combofix sollte ausschließlich ausgeführt werden, wenn dies von einem Teammitglied angewiesen wurde!Downloade dir bitte Combofix vom folgenden Downloadspiegel Link 1 WICHTIG - Speichere Combofix auf deinem Desktop
Wenn Combofix fertig ist, wird es eine Logfile erstellen. Bitte poste die C:\Combofix.txt in deiner nächsten Antwort. Hinweis: Solltest du nach dem Neustart folgende Fehlermeldung erhalten Zitat:
|
Moin! Ich werde mich um ca 13.00 uhr um diesen schritt kümmern. Danke weiterhin |
Alles klar :) |
Combofix braucht ewig und bricht nicht ab oder so. Letzte meldung im fenster: system file is infected !! Attempting to restore /windows/system32/services.exe |
Hm die sollte eigentlich von TDSSKiller gefixt sein. Wenn CF in 20 min immer noch läuft abschiessen, reboot, frischer Scan mit TDSSKiller. |
Nabend. Ich war ne Zeit unterwegs und habe combofix weiterlaufen lassen. Und der Durchlauf wurde korrekt beendet! Hier das log Combofix Logfile: Code: ComboFix 13-06-08.02 - XXXX 09.06.2013 13:51:37.2.4 - x6481CD5EC01DB0CE57EDD853F82462EF27 |
Frisches Scanlog mit TDSSKiller bitte. Systemscan mit FRST Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST 32-Bit | FRST 64-Bit (Wenn du nicht sicher bist: Start > Computer (Rechtsklick) > Eigenschaften)
|
Code: Code: |
TDSS Killer: Code: |
Fix mit FRST Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster. Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument Code: ZeroAccess:
|
| Alle Zeitangaben in WEZ +1. Es ist jetzt 20:49 Uhr. |
Copyright ©2000-2025, Trojaner-Board