| |
| |||||||
Log-Analyse und Auswertung: Alle Browser haben verbindungsproblemeWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
 |
| |
29.03.2012, 18:36
| #1 |
 |  Alle Browser haben verbindungsprobleme Guten Abend, Ein Pc von einer Bekannten eit ein Paar tage Probleme, als erstes begann es damit das der Lappi keine automatische Verbindung zum wlan netz herstellt. Somit muss man immer manuell verbinden. das ist ja eigentlich nicht so schlimm. Aber seit tagen hat sie das Problem, das sie wenn sie in allen Browsern (firefox, IE, Opera, Chrome) das Problem hat, das jedesmal die Internetseiten nicht mehr richtig laden. es kommt immer Ladefehler oder keine verbindung, erst beim erneuten laden werden die internet seiten geladen. Wobei manche seiten aufbau Probleme haben, und die internetseite ein 3 mal geladen werden muss. Windows und Browser, sowie Flash und java sind auf dem neusten Stand. Virenscanner ist AVG 2012 internet security. CCleaner ist auch druch gelaufen, wird jeden Tag gemacht. Malwarebytes vollscan läuft bereits seit 2:40 Std, hier erstmal die HJackThis log datei. Code:
ATTFilter Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 19:33:24, on 29.03.2012 Platform: Windows 7 SP1 (WinNT 6.00.3505) MSIE: Internet Explorer v9.00 (9.00.8112.16421) Boot mode: Normal Running processes: C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe C:\Program Files (x86)\OXXOGames\GPlayer\GameCenterNotifier.exe C:\Program Files (x86)\ICQ7.5\ICQ.exe C:\Users\Baerchen\AppData\Local\Akamai\netsession_win.exe C:\Program Files (x86)\Siber Systems\AI RoboForm\robotaskbaricon.exe C:\Users\Baerchen\AppData\Local\Akamai\netsession_win.exe C:\Program Files (x86)\Acer Bio Protection\PdtWzd.exe C:\Program Files (x86)\Acer Bio Protection\PwdBank.exe C:\Program Files (x86)\Yahoo!\Messenger\ymsgr_tray.exe C:\Program Files (x86)\CyberLink\YouCam\YouCamTray.exe C:\Program Files (x86)\Mobile Partner Manager\UIExec.exe C:\Program Files (x86)\Yuna Software\Messenger Plus!\PlusService.exe C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe C:\Program Files (x86)\AVG\AVG2012\avgtray.exe C:\Program Files (x86)\AVG Secure Search\vprot.exe C:\Program Files (x86)\IpsosLSPService\Ipsos-WatchDog.exe C:\Program Files (x86)\Mozilla Firefox\firefox.exe C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe C:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe C:\Windows\SysWOW64\DllHost.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://google.de/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkId=69157 R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = 127.0.0.1:9421;<local> R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = R3 - URLSearchHook: (no name) - - (no file) F2 - REG:system.ini: UserInit=userinit.exe, O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files (x86)\AVG\AVG2012\avgssie.dll O2 - BHO: Gacela2 - {4BEEA052-726D-4A6E-B65D-A6BD07C263F3} - C:\Program Files (x86)\Digital Connections\Gacela2.dll O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll O2 - BHO: RoboForm BHO - {724d43a9-0d85-11d4-9908-00400523e39a} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll O2 - BHO: Windows Live ID-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\10.2.0.3\AVG Secure Search_toolbar.dll O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll O3 - Toolbar: &RoboForm Toolbar - {724d43a0-0d85-11d4-9908-00400523e39a} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll O3 - Toolbar: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\10.2.0.3\AVG Secure Search_toolbar.dll O3 - Toolbar: (no name) - {ae07101b-46d4-4a98-af68-0333ea26e113} - (no file) O4 - HKLM\..\Run: [VitaKeyPdtWzd] "C:\Program Files (x86)\Acer Bio Protection\PdtWzd.exe" O4 - HKLM\..\Run: [LManager] C:\Program Files (x86)\Launch Manager\LManager.exe O4 - HKLM\..\Run: [UCam_Menu] "C:\Program Files (x86)\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\YouCam" UpdateWithCreateOnce "Software\CyberLink\YouCam\3.0" O4 - HKLM\..\Run: [YouCam Mirror Tray icon] "C:\Program Files (x86)\CyberLink\YouCam\YouCamTray.exe" /s O4 - HKLM\..\Run: [Name of App] C:\Program Files (x86)\SAMSUNG\FW LiveUpdate\FWManager.exe r O4 - HKLM\..\Run: [UIExec] "C:\Program Files (x86)\Mobile Partner Manager\UIExec.exe" O4 - HKLM\..\Run: [PlusService] C:\Program Files (x86)\Yuna Software\Messenger Plus!\PlusService.exe O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe" O4 - HKLM\..\Run: [TkBellExe] "c:\program files (x86)\real\realplayer\Update\realsched.exe" -osboot O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [AVG_TRAY] "C:\Program Files (x86)\AVG\AVG2012\avgtray.exe" O4 - HKLM\..\Run: [vProt] "C:\Program Files (x86)\AVG Secure Search\vprot.exe" O4 - HKLM\..\Run: [Ipsos-WatchDog] C:\Program Files (x86)\IpsosLSPService\Ipsos-WatchDog.exe /Debug O4 - HKLM\..\Run: [ROC_roc_dec12] "C:\Program Files (x86)\AVG Secure Search\ROC_roc_dec12.exe" /PROMPT /CMPID=roc_dec12 O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\RunOnce: [MessengerPlusForSkypeUninstall] "C:\Users\Baerchen\AppData\Local\Temp\MsgPlusUninstall.exe" /Cleanup O4 - HKLM\..\RunOnce: [Malwarebytes' Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent O4 - HKLM\..\RunOnce: [ Malwarebytes Anti-Malware ] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun O4 - HKCU\..\Run: [Messenger (Yahoo!)] "C:\PROGRA~2\Yahoo!\Messenger\YahooMessenger.exe" -quiet O4 - HKCU\..\Run: [AlcoholAutomount] "C:\Program Files (x86)\Alcohol Soft\Alcohol 120\axcmd.exe" /automount O4 - HKCU\..\Run: [Orb] "C:\Program Files (x86)\Winamp Remote\bin\OrbTray.exe" /background O4 - HKCU\..\Run: [Spiele Post] C:\Program Files (x86)\OXXOGames\GPlayer\GameCenterNotifier.exe O4 - HKCU\..\Run: [ICQ] "C:\Program Files (x86)\ICQ7.5\ICQ.exe" silent loginmode=4 O4 - HKCU\..\Run: [Akamai NetSession Interface] "C:\Users\Baerchen\AppData\Local\Akamai\netsession_win.exe" O4 - HKCU\..\Run: [Sony Ericsson PC Companion] "C:\Program Files (x86)\Sony Ericsson\Sony Ericsson PC Companion\PCCompanion.exe" /Background O4 - HKCU\..\Run: [RoboForm] "C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe" O8 - Extra context menu item: Nach Microsoft E&xel exportieren - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000 O8 - Extra context menu item: RF - Formular ausfüllen - file://C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboFormComFillForms.html O8 - Extra context menu item: RF - Formular speichern - file://C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboFormComSavePass.html O8 - Extra context menu item: RF - Menü anpassen - file://C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboFormComCustomizeIEMenu.html O8 - Extra context menu item: RF - RoboForm-Leiste ein/aus - file://C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html O9 - Extra button: @C:\Program Files (x86)\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll O9 - Extra button: Quick-Launch Area - {10954C80-4F0F-11d3-B17C-00C0DFE39736} - C:\Program Files (x86)\Acer Bio Protection\PwdBank.exe O9 - Extra 'Tools' menuitem: Quick-Launch Area - {10954C80-4F0F-11d3-B17C-00C0DFE39736} - C:\Program Files (x86)\Acer Bio Protection\PwdBank.exe O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: An OneNote senden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: An OneNote s&enden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll O9 - Extra button: Ausfüllen - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll O9 - Extra 'Tools' menuitem: RF - Formular ausfüllen - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll O9 - Extra button: Speichern - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll O9 - Extra 'Tools' menuitem: RF - Formular speichern - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll O9 - Extra button: (no name) - {4BEEA052-726D-4A6E-B65D-A6BD07C263F3} - C:\Program Files (x86)\Digital Connections\Gacela2.dll O9 - Extra 'Tools' menuitem: Über Digital Connections - {4BEEA052-726D-4A6E-B65D-A6BD07C263F3} - C:\Program Files (x86)\Digital Connections\Gacela2.dll O9 - Extra button: Show Toolbar - {724d43aa-0d85-11d4-9908-00400523e39a} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll O9 - Extra 'Tools' menuitem: RF - RoboForm-Leiste ein/aus - {724d43aa-0d85-11d4-9908-00400523e39a} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll O9 - Extra button: ICQ7.5 - {7578ADEA-D65F-4C89-A249-B1C88B6FFC20} - C:\Program Files (x86)\ICQ7.5\ICQ.exe O9 - Extra 'Tools' menuitem: ICQ7.5 - {7578ADEA-D65F-4C89-A249-B1C88B6FFC20} - C:\Program Files (x86)\ICQ7.5\ICQ.exe O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O10 - Unknown file in Winsock LSP: c:\windows\system32\ipsoslspservice.dll O10 - Unknown file in Winsock LSP: c:\windows\system32\ipsoslspservice.dll O10 - Unknown file in Winsock LSP: c:\windows\system32\ipsoslspservice.dll O10 - Unknown file in Winsock LSP: c:\windows\system32\ipsoslspservice.dll O10 - Unknown file in Winsock LSP: c:\windows\system32\ipsoslspservice.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O16 - DPF: {1C11B948-582A-433F-A98D-A8C4D5CC64F2} (20-20 3D Viewer) - hxxp://kitchenplanner.ikea.com/DE/Core/Player/2020PlayerAX_Win32.cab O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG2012\avgpp.dll O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL O18 - Protocol: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\10.2.0\ViProtocol.dll O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: AVG Firewall (avgfws) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2012\avgfws.exe O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2012\AVGIDSAgent.exe O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe O23 - Service: Boonty Games - BOONTY - C:\Program Files (x86)\Common Files\BOONTY Shared\Service\Boonty.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: EPSON V5 Service4(04) (EPSON_EB_RPCV4_04) - SEIKO EPSON CORPORATION - C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50STB.EXE O23 - Service: EPSON V3 Service4(04) (EPSON_PM_RPCV4_04) - SEIKO EPSON CORPORATION - C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-Dienst (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe O23 - Service: EgisTec Service (IGBASVC) - Egis Technology Inc. - C:\Program Files (x86)\Acer Bio Protection\BASVC.exe O23 - Service: Ipsos-Reporting-Service - Unknown owner - C:\Program Files (x86)\Digital Connections\Ipsos-Reporting.exe O23 - Service: Ipsos-Update-Service - Unknown owner - C:\Program Files (x86)\Digital Connections\Ipsos-Updater.exe O23 - Service: IpsosLSPService - Ipsos - C:\Program Files (x86)\IpsosLSPService\IpsosLSPService.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing) O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Protexis Licensing V2 (PSI_SVC_2) - Protexis Inc. - c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: SiSoftware Deployment Agent Service (SandraAgentSrv) - SiSoftware - C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2011.SP4c\RpcAgentSrv.exe O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) O23 - Service: Sony Ericsson PCCompanion - Avanquest Software - C:\Program Files (x86)\Sony Ericsson\Sony Ericsson PC Companion\PCCService.exe O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe O23 - Service: TeamViewer 7 (TeamViewer7) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe O23 - Service: TGCM_ImportWiFiSvc - Unknown owner - C:\Program Files (x86)\o2\Mobile Connection Manager\ImpWiFiSvc.exe O23 - Service: UI Assistant Service - Unknown owner - C:\Program Files (x86)\Mobile Partner Manager\AssistantServices.exe O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: vToolbarUpdater10.2.0 - Unknown owner - C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\10.2.0\ToolbarUpdater.exe O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: Windows Media Player-Netzwerkfreigabedienst (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) O23 - Service: Yahoo! Updater (YahooAUService) - Yahoo! Inc. - C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe -- End of file - 18552 bytes |
|
29.03.2012, 20:06
| #2 |
| /// Malware-holic   | Alle Browser haben verbindungsprobleme hi
__________________1. malwarebytes log posten. 2. Falls noch nicht vorhanden, lade Dir bitte OTL von Oldtimer herunter und speichere es auf Deinem Desktop
Code:
ATTFilter activex
netsvcs
msconfig
%SYSTEMDRIVE%\*.
%PROGRAMFILES%\*.exe
%LOCALAPPDATA%\*.exe
%systemroot%\*. /mp /s
/md5start
userinit.exe
eventlog.dll
scecli.dll
netlogon.dll
cngaudit.dll
ws2ifsl.sys
sceclt.dll
ntelogon.dll
winlogon.exe
logevent.dll
user32.DLL
explorer.exe
iaStor.sys
nvstor.sys
atapi.sys
IdeChnDr.sys
viasraid.sys
AGP440.sys
vaxscsi.sys
nvatabus.sys
viamraid.sys
nvata.sys
nvgts.sys
iastorv.sys
ViPrt.sys
eNetHook.dll
ahcix86.sys
KR10N.sys
nvstor32.sys
ahcix86s.sys
/md5stop
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
%USERPROFILE%\*.*
%USERPROFILE%\Local Settings\Temp\*.exe
%USERPROFILE%\Local Settings\Temp\*.dll
%USERPROFILE%\Application Data\*.exe
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\SubSystems|Windows /rs
CREATERESTOREPOINT
__________________ |
|
29.03.2012, 21:27
| #3 |
| | Alle Browser haben verbindungsprobleme die otl und extras.txt habe ich angehangen.
__________________den Malwarebytes log kommt morgen, die läuft noch durch. ich muss langsam ins bett. |
|
30.03.2012, 09:47
| #4 |
| /// Malware-holic | Alle Browser haben verbindungsprobleme ok, dann poste ihn wenn du so weit bist.
__________________ -Verdächtige mails bitte an uns zur Analyse weiterleiten: markusg.trojaner-board@web.de Weiterleiten Anleitung: http://markusg.trojaner-board.de Mails bitte vorerst nach obiger Anleitung an markusg.trojaner-board@web.de Weiterleiten Wenn Ihr uns unterstützen möchtet |
|
30.03.2012, 10:24
| #5 |
| | Alle Browser haben verbindungsprobleme hier der malwarebyte log Code:
ATTFilter Malwarebytes Anti-Malware (PRO) 1.60.1.1000 www.malwarebytes.org Datenbank Version: v2012.03.29.07 Windows 7 Service Pack 1 x64 NTFS Internet Explorer 9.0.8112.16421 Baerchen :: BAERCHEN-PC [Administrator] Schutz: Aktiviert 30.03.2012 07:20:57 mbam-log-2012-03-30 (07-20-57).txt Art des Suchlaufs: Vollständiger Suchlauf Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM Deaktivierte Suchlaufeinstellungen: P2P Durchsuchte Objekte: 763495 Laufzeit: 3 Stunde(n), 29 Minute(n), 50 Sekunde(n) Infizierte Speicherprozesse: 0 (Keine bösartigen Objekte gefunden) Infizierte Speichermodule: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungsschlüssel: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungswerte: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateiobjekte der Registrierung: 0 (Keine bösartigen Objekte gefunden) Infizierte Verzeichnisse: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateien: 0 (Keine bösartigen Objekte gefunden) (Ende) |
|
30.03.2012, 10:37
| #6 | |
| /// Malware-holic | Alle Browser haben verbindungsproblemeCombofix darf ausschließlich ausgeführt werden, wenn dies von einem Team Mitglied angewiesen wurde!Downloade dir bitte Combofix von einem dieser Downloadspiegel Link 1 Link 2 WICHTIG - Speichere Combofix auf deinem Desktop
Wenn Combofix fertig ist, wird es eine Logfile erstellen. Bitte poste die C:\Combofix.txt in deiner nächsten Antwort. Hinweis: Solltest du nach dem Neustart folgende Fehlermeldung erhalten Zitat:
__________________ --> Alle Browser haben verbindungsprobleme |
|
30.03.2012, 12:51
| #7 |
| | Alle Browser haben verbindungsprobleme hier nun der combo fix log, als anhang. |
|
30.03.2012, 15:30
| #8 |
| | Alle Browser haben verbindungsprobleme kannst du eigentlich schon was sagen, was sich da auf dem lappi eingenistet hat? bis jetzt ist noch keine veränderung zu sehen. |
|
30.03.2012, 16:44
| #9 |
| /// Malware-holic | Alle Browser haben verbindungsprobleme noch nicht, leider. gibts denn in den logs bzw ereigniss meldungen vom antimalware programm fundmeldungen?
__________________ -Verdächtige mails bitte an uns zur Analyse weiterleiten: markusg.trojaner-board@web.de Weiterleiten Anleitung: http://markusg.trojaner-board.de Mails bitte vorerst nach obiger Anleitung an markusg.trojaner-board@web.de Weiterleiten Wenn Ihr uns unterstützen möchtet |
|
30.03.2012, 17:05
| #10 |
| | Alle Browser haben verbindungsprobleme ich habe alle logs hochgeladen, oder hier eingestellt. Da ich mit den logs mich nicht auskenne, kann ich leider nicht sagen ob er was gefunden hat. Avg 2012 hat in den letzten wochen nichts gefunden, der scan ist täglich. Der letzte fund ist vom 10.03.2011 das war ein Win32/heur den hat er in einem Zylom Games gefunden. Geändert von chaoskomet (30.03.2012 um 17:28 Uhr) Grund: virenfund nach getragen |
|
30.03.2012, 17:24
| #11 |
| /// Malware-holic | Alle Browser haben verbindungsprobleme bitte den tdss killer ausführen: http://www.trojaner-board.de/82358-t...entfernen.html
__________________ -Verdächtige mails bitte an uns zur Analyse weiterleiten: markusg.trojaner-board@web.de Weiterleiten Anleitung: http://markusg.trojaner-board.de Mails bitte vorerst nach obiger Anleitung an markusg.trojaner-board@web.de Weiterleiten Wenn Ihr uns unterstützen möchtet |
|
30.03.2012, 18:05
| #12 |
| | Alle Browser haben verbindungsprobleme hier das was tdss killer gefunden hat, als bildschirmdruck der report: Code:
ATTFilter 18:30:50.0541 6400 TDSS rootkit removing tool 2.7.23.0 Mar 26 2012 13:40:18
18:30:52.0553 6400 ============================================================
18:30:52.0553 6400 Current date / time: 2012/03/30 18:30:52.0553
18:30:52.0553 6400 SystemInfo:
18:30:52.0553 6400
18:30:52.0553 6400 OS Version: 6.1.7601 ServicePack: 1.0
18:30:52.0553 6400 Product type: Workstation
18:30:52.0553 6400 ComputerName: BAERCHEN-PC
18:30:52.0553 6400 UserName: Baerchen
18:30:52.0553 6400 Windows directory: C:\Windows
18:30:52.0553 6400 System windows directory: C:\Windows
18:30:52.0553 6400 Running under WOW64
18:30:52.0553 6400 Processor architecture: Intel x64
18:30:52.0553 6400 Number of processors: 2
18:30:52.0553 6400 Page size: 0x1000
18:30:52.0553 6400 Boot type: Normal boot
18:30:52.0553 6400 ============================================================
18:30:56.0672 6400 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
18:30:56.0703 6400 Drive \Device\Harddisk1\DR1 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
18:30:56.0843 6400 \Device\Harddisk0\DR0:
18:30:56.0875 6400 MBR used
18:30:56.0875 6400 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x1388800, BlocksNum 0x32000
18:30:56.0875 6400 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x13BA800, BlocksNum 0x23A73800
18:30:56.0875 6400 \Device\Harddisk1\DR1:
18:30:56.0875 6400 MBR used
18:30:56.0875 6400 \Device\Harddisk1\DR1\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x2542D800
18:30:57.0077 6400 Initialize success
18:30:57.0077 6400 ============================================================
18:31:03.0505 5700 ============================================================
18:31:03.0505 5700 Scan started
18:31:03.0505 5700 Mode: Manual;
18:31:03.0505 5700 ============================================================
18:31:06.0718 5700 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
18:31:06.0765 5700 1394ohci - ok
18:31:07.0030 5700 acedrv11 (a3769020f7e8a70fd3e824c050f33306) C:\Windows\system32\drivers\acedrv11.sys
18:31:07.0077 5700 acedrv11 - ok
18:31:07.0280 5700 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
18:31:07.0296 5700 ACPI - ok
18:31:07.0467 5700 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
18:31:07.0483 5700 AcpiPmi - ok
18:31:07.0732 5700 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
18:31:07.0764 5700 AdobeARMservice - ok
18:31:07.0966 5700 AdobeFlashPlayerUpdateSvc (0d4c486a24a711a45fd83acdf4d18506) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
18:31:07.0966 5700 AdobeFlashPlayerUpdateSvc - ok
18:31:08.0169 5700 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
18:31:08.0185 5700 adp94xx - ok
18:31:08.0434 5700 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
18:31:08.0450 5700 adpahci - ok
18:31:08.0466 5700 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
18:31:08.0481 5700 adpu320 - ok
18:31:08.0700 5700 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
18:31:08.0700 5700 AeLookupSvc - ok
18:31:08.0824 5700 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
18:31:08.0856 5700 AFD - ok
18:31:09.0136 5700 AgereSoftModem (98022774d9930ecbb292e70db7601df6) C:\Windows\system32\DRIVERS\agrsm64.sys
18:31:09.0214 5700 AgereSoftModem - ok
18:31:09.0402 5700 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
18:31:09.0402 5700 agp440 - ok
18:31:09.0433 5700 AIDA64Driver - ok
18:31:09.0760 5700 Akamai (1125c7d9fb8898015829c387c1bc87c7) c:\program files (x86)\common files\akamai/netsession_win_6c825ce.dll
18:31:09.0760 5700 Suspicious file (Hidden): c:\program files (x86)\common files\akamai/netsession_win_6c825ce.dll. md5: 1125c7d9fb8898015829c387c1bc87c7
18:31:09.0776 5700 Akamai ( HiddenFile.Multi.Generic ) - warning
18:31:09.0776 5700 Akamai - detected HiddenFile.Multi.Generic (1)
18:31:10.0041 5700 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
18:31:10.0057 5700 ALG - ok
18:31:10.0150 5700 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
18:31:10.0150 5700 aliide - ok
18:31:10.0400 5700 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
18:31:10.0400 5700 amdide - ok
18:31:10.0525 5700 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
18:31:10.0540 5700 AmdK8 - ok
18:31:10.0712 5700 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
18:31:10.0743 5700 AmdPPM - ok
18:31:10.0837 5700 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
18:31:10.0837 5700 amdsata - ok
18:31:11.0055 5700 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
18:31:11.0055 5700 amdsbs - ok
18:31:11.0149 5700 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
18:31:11.0164 5700 amdxata - ok
18:31:11.0305 5700 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
18:31:11.0320 5700 AppID - ok
18:31:11.0383 5700 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
18:31:11.0383 5700 AppIDSvc - ok
18:31:11.0523 5700 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
18:31:11.0539 5700 Appinfo - ok
18:31:11.0617 5700 AppMgmt (4aba3e75a76195a3e38ed2766c962899) C:\Windows\System32\appmgmts.dll
18:31:11.0648 5700 AppMgmt - ok
18:31:11.0851 5700 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
18:31:11.0866 5700 arc - ok
18:31:12.0022 5700 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
18:31:12.0022 5700 arcsas - ok
18:31:12.0163 5700 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
18:31:12.0178 5700 AsyncMac - ok
18:31:12.0381 5700 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
18:31:12.0397 5700 atapi - ok
18:31:12.0444 5700 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
18:31:12.0459 5700 AudioEndpointBuilder - ok
18:31:12.0475 5700 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
18:31:12.0490 5700 AudioSrv - ok
18:31:12.0693 5700 Avgfwfd (96b4456f1dca4eda506ed31c7d2d6b05) C:\Windows\system32\DRIVERS\avgfwd6a.sys
18:31:12.0693 5700 Avgfwfd - ok
18:31:13.0114 5700 avgfws (5cd22eb540f82c70e33e530003f3903b) C:\Program Files (x86)\AVG\AVG2012\avgfws.exe
18:31:13.0192 5700 avgfws - ok
18:31:14.0113 5700 AVGIDSAgent (6d440ff3f44ca72edfd6176c6d6a89c0) C:\Program Files (x86)\AVG\AVG2012\AVGIDSAgent.exe
18:31:14.0300 5700 AVGIDSAgent - ok
18:31:14.0581 5700 AVGIDSDriver (e29ea1a0ec7ab9fa2dc7e75a03f12a4f) C:\Windows\system32\DRIVERS\AVGIDSDriver.Sys
18:31:14.0596 5700 AVGIDSDriver - ok
18:31:14.0815 5700 AVGIDSEH (f823d184b8e8ffb8da3ead45dbf5bd6a) C:\Windows\system32\DRIVERS\AVGIDSEH.Sys
18:31:14.0846 5700 AVGIDSEH - ok
18:31:14.0908 5700 AVGIDSFilter (ed2b25bd7fe35d1944211968842d30da) C:\Windows\system32\DRIVERS\AVGIDSFilter.Sys
18:31:14.0924 5700 AVGIDSFilter - ok
18:31:15.0174 5700 Avgldx64 (979cf8912449a10b987218bff80a1fa3) C:\Windows\system32\DRIVERS\avgldx64.sys
18:31:15.0189 5700 Avgldx64 - ok
18:31:15.0486 5700 Avgmfx64 (36b1a5843695766eac714daffc5b84d1) C:\Windows\system32\DRIVERS\avgmfx64.sys
18:31:15.0486 5700 Avgmfx64 - ok
18:31:15.0626 5700 Avgrkx64 (1102239fb724527f1febbbbccf6bf313) C:\Windows\system32\DRIVERS\avgrkx64.sys
18:31:15.0642 5700 Avgrkx64 - ok
18:31:15.0860 5700 Avgtdia (11f36d3ea82d9db9aa05a476a210551b) C:\Windows\system32\DRIVERS\avgtdia.sys
18:31:15.0891 5700 Avgtdia - ok
18:31:16.0094 5700 avgwd (6699ece24fe4b3f752a66c66a602ee86) C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe
18:31:16.0110 5700 avgwd - ok
18:31:16.0344 5700 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll
18:31:16.0359 5700 AxInstSV - ok
18:31:16.0484 5700 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
18:31:16.0500 5700 b06bdrv - ok
18:31:16.0718 5700 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
18:31:16.0734 5700 b57nd60a - ok
18:31:16.0843 5700 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
18:31:16.0858 5700 BDESVC - ok
18:31:17.0092 5700 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
18:31:17.0139 5700 Beep - ok
18:31:17.0217 5700 BFE (82974d6a2fd19445cc5171fc378668a4) C:\Windows\System32\bfe.dll
18:31:17.0248 5700 BFE - ok
18:31:17.0560 5700 BITS (1ea7969e3271cbc59e1730697dc74682) C:\Windows\system32\qmgr.dll
18:31:17.0763 5700 BITS - ok
18:31:18.0013 5700 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
18:31:18.0028 5700 blbdrive - ok
18:31:18.0122 5700 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
18:31:18.0138 5700 bowser - ok
18:31:18.0278 5700 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
18:31:18.0278 5700 BrFiltLo - ok
18:31:18.0403 5700 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
18:31:18.0418 5700 BrFiltUp - ok
18:31:18.0606 5700 BridgeMP (5c2f352a4e961d72518261257aae204b) C:\Windows\system32\DRIVERS\bridge.sys
18:31:18.0606 5700 BridgeMP - ok
18:31:18.0902 5700 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll
18:31:18.0918 5700 Browser - ok
18:31:19.0136 5700 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
18:31:19.0152 5700 Brserid - ok
18:31:19.0245 5700 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
18:31:19.0245 5700 BrSerWdm - ok
18:31:19.0401 5700 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
18:31:19.0417 5700 BrUsbMdm - ok
18:31:19.0495 5700 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
18:31:19.0495 5700 BrUsbSer - ok
18:31:19.0635 5700 BthEnum (cf98190a94f62e405c8cb255018b2315) C:\Windows\system32\drivers\BthEnum.sys
18:31:19.0666 5700 BthEnum - ok
18:31:19.0869 5700 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
18:31:19.0869 5700 BTHMODEM - ok
18:31:19.0994 5700 BthPan (02dd601b708dd0667e1331fa8518e9ff) C:\Windows\system32\DRIVERS\bthpan.sys
18:31:20.0025 5700 BthPan - ok
18:31:20.0259 5700 BTHPORT (64c198198501f7560ee41d8d1efa7952) C:\Windows\System32\Drivers\BTHport.sys
18:31:20.0275 5700 BTHPORT - ok
18:31:20.0540 5700 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
18:31:20.0540 5700 bthserv - ok
18:31:20.0680 5700 BTHUSB (f188b7394d81010767b6df3178519a37) C:\Windows\System32\Drivers\BTHUSB.sys
18:31:20.0680 5700 BTHUSB - ok
18:31:20.0696 5700 catchme - ok
18:31:20.0868 5700 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
18:31:20.0883 5700 cdfs - ok
18:31:21.0024 5700 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\DRIVERS\cdrom.sys
18:31:21.0039 5700 cdrom - ok
18:31:21.0086 5700 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
18:31:21.0102 5700 CertPropSvc - ok
18:31:21.0226 5700 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
18:31:21.0226 5700 circlass - ok
18:31:21.0382 5700 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
18:31:21.0382 5700 CLFS - ok
18:31:21.0632 5700 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
18:31:21.0726 5700 clr_optimization_v2.0.50727_32 - ok
18:31:21.0944 5700 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
18:31:21.0944 5700 clr_optimization_v2.0.50727_64 - ok
18:31:22.0053 5700 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
18:31:22.0147 5700 clr_optimization_v4.0.30319_32 - ok
18:31:22.0459 5700 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
18:31:22.0474 5700 clr_optimization_v4.0.30319_64 - ok
18:31:22.0599 5700 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
18:31:22.0599 5700 CmBatt - ok
18:31:22.0771 5700 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
18:31:22.0786 5700 cmdide - ok
18:31:23.0067 5700 CNG (c4943b6c962e4b82197542447ad599f4) C:\Windows\system32\Drivers\cng.sys
18:31:23.0130 5700 CNG - ok
18:31:23.0332 5700 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
18:31:23.0364 5700 Compbatt - ok
18:31:23.0551 5700 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
18:31:23.0551 5700 CompositeBus - ok
18:31:23.0598 5700 COMSysApp - ok
18:31:23.0910 5700 cpuz135 (c08063f052308b6f5882482615387f30) C:\Windows\system32\drivers\cpuz135_x64.sys
18:31:23.0956 5700 cpuz135 - ok
18:31:24.0190 5700 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
18:31:24.0206 5700 crcdisk - ok
18:31:24.0424 5700 CryptSvc (15597883fbe9b056f276ada3ad87d9af) C:\Windows\system32\cryptsvc.dll
18:31:24.0424 5700 CryptSvc - ok
18:31:24.0690 5700 CSC (54da3dfd29ed9f1619b6f53f3ce55e49) C:\Windows\system32\drivers\csc.sys
18:31:24.0705 5700 CSC - ok
18:31:24.0955 5700 CscService (3ab183ab4d2c79dcf459cd2c1266b043) C:\Windows\System32\cscsvc.dll
18:31:25.0002 5700 CscService - ok
18:31:25.0189 5700 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
18:31:25.0220 5700 DcomLaunch - ok
18:31:25.0267 5700 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
18:31:25.0282 5700 defragsvc - ok
18:31:25.0485 5700 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
18:31:25.0485 5700 DfsC - ok
18:31:25.0610 5700 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll
18:31:25.0626 5700 Dhcp - ok
18:31:25.0813 5700 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
18:31:25.0813 5700 discache - ok
18:31:25.0891 5700 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
18:31:25.0891 5700 Disk - ok
18:31:26.0062 5700 DKbFltr (d5bcb77be83cf99f508943945d46343d) C:\Windows\syswow64\Drivers\DKbFltr.sys
18:31:26.0078 5700 DKbFltr - ok
18:31:26.0234 5700 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll
18:31:26.0250 5700 Dnscache - ok
18:31:26.0421 5700 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll
18:31:26.0452 5700 dot3svc - ok
18:31:26.0577 5700 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll
18:31:26.0577 5700 DPS - ok
18:31:26.0671 5700 DritekPortIO - ok
18:31:26.0811 5700 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
18:31:26.0827 5700 drmkaud - ok
18:31:26.0998 5700 DrvAgent64 (1ed08a6264c5c92099d6d1dae5e8f530) C:\Windows\SysWOW64\Drivers\DrvAgent64.SYS
18:31:27.0045 5700 DrvAgent64 - ok
18:31:27.0201 5700 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
18:31:27.0217 5700 DXGKrnl - ok
18:31:27.0388 5700 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
18:31:27.0404 5700 EapHost - ok
18:31:27.0747 5700 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
18:31:27.0856 5700 ebdrv - ok
18:31:28.0059 5700 EFS (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe
18:31:28.0090 5700 EFS - ok
18:31:28.0309 5700 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe
18:31:28.0324 5700 ehRecvr - ok
18:31:28.0434 5700 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
18:31:28.0449 5700 ehSched - ok
18:31:28.0777 5700 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
18:31:28.0824 5700 elxstor - ok
18:31:29.0104 5700 EPSON_EB_RPCV4_04 (7db097f4f6786307168c0dddec43a565) C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50STB.EXE
18:31:29.0182 5700 EPSON_EB_RPCV4_04 - ok
18:31:29.0557 5700 EPSON_PM_RPCV4_04 (258aa65a0862e19b7de6981fda3758ad) C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE
18:31:29.0572 5700 EPSON_PM_RPCV4_04 - ok
18:31:30.0181 5700 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
18:31:30.0196 5700 ErrDev - ok
18:31:30.0976 5700 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
18:31:31.0054 5700 EventSystem - ok
18:31:31.0866 5700 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
18:31:31.0897 5700 exfat - ok
18:31:32.0599 5700 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
18:31:32.0630 5700 fastfat - ok
18:31:33.0254 5700 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe
18:31:33.0285 5700 Fax - ok
18:31:33.0925 5700 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
18:31:33.0972 5700 fdc - ok
18:31:34.0736 5700 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
18:31:34.0845 5700 fdPHost - ok
18:31:35.0360 5700 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
18:31:35.0376 5700 FDResPub - ok
18:31:36.0031 5700 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
18:31:36.0062 5700 FileInfo - ok
18:31:36.0811 5700 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
18:31:36.0842 5700 Filetrace - ok
18:31:37.0856 5700 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
18:31:37.0872 5700 flpydisk - ok
18:31:38.0745 5700 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
18:31:38.0808 5700 FltMgr - ok
18:31:39.0837 5700 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll
18:31:39.0962 5700 FontCache - ok
18:31:40.0477 5700 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
18:31:40.0508 5700 FontCache3.0.0.0 - ok
18:31:41.0210 5700 FPSensor (305380d5d33bfdeaaf14d73e969239fc) C:\Windows\system32\Drivers\FPSensor.sys
18:31:41.0288 5700 FPSensor - ok
18:31:41.0990 5700 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
18:31:42.0052 5700 FsDepends - ok
18:31:42.0676 5700 fssfltr (dc0dce4ec2c5d2cf6472f9fd6aa9a7dc) C:\Windows\system32\DRIVERS\fssfltr.sys
18:31:42.0739 5700 fssfltr - ok
18:31:43.0581 5700 fsssvc (40cdfad174b3d5e80f95dda003c0b97f) C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
18:31:43.0737 5700 fsssvc - ok
18:31:44.0424 5700 Fs_Rec (e95ef8547de20cf0603557c0cf7a9462) C:\Windows\system32\drivers\Fs_Rec.sys
18:31:44.0424 5700 Fs_Rec - ok
18:31:45.0094 5700 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
18:31:45.0141 5700 fvevol - ok
18:31:45.0796 5700 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
18:31:45.0859 5700 gagp30kx - ok
18:31:46.0592 5700 ggflt (a4198f2bd8aa592cb90476277a81b5e1) C:\Windows\system32\DRIVERS\ggflt.sys
18:31:46.0670 5700 ggflt - ok
18:31:47.0154 5700 ggsemc (d266350bdaab9eb6c1aec370eeaaff3a) C:\Windows\system32\DRIVERS\ggsemc.sys
18:31:47.0294 5700 ggsemc - ok
18:31:47.0809 5700 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll
18:31:47.0840 5700 gpsvc - ok
18:31:48.0230 5700 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
18:31:48.0277 5700 gupdate - ok
18:31:48.0386 5700 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
18:31:48.0402 5700 gupdatem - ok
18:31:49.0010 5700 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
18:31:49.0041 5700 hcw85cir - ok
18:31:49.0899 5700 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys
18:31:49.0915 5700 HdAudAddService - ok
18:31:50.0898 5700 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
18:31:50.0944 5700 HDAudBus - ok
18:31:51.0678 5700 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
18:31:51.0787 5700 HidBatt - ok
18:31:52.0426 5700 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
18:31:52.0442 5700 HidBth - ok
18:31:52.0863 5700 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
18:31:52.0894 5700 HidIr - ok
18:31:53.0862 5700 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\System32\hidserv.dll
18:31:53.0908 5700 hidserv - ok
18:31:54.0922 5700 hidshim (93a55379cf5fbee665467f7216e23282) C:\Windows\system32\DRIVERS\hidshim.sys
18:31:55.0016 5700 hidshim - ok
18:31:55.0780 5700 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys
18:31:55.0843 5700 HidUsb - ok
18:31:56.0638 5700 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll
18:31:56.0654 5700 hkmsvc - ok
18:31:57.0200 5700 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll
18:31:57.0231 5700 HomeGroupListener - ok
18:31:57.0871 5700 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll
18:31:57.0918 5700 HomeGroupProvider - ok
18:31:59.0119 5700 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
18:31:59.0134 5700 HpSAMD - ok
18:32:00.0242 5700 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
18:32:00.0382 5700 HTTP - ok
18:32:01.0521 5700 hwdatacard (d969d0e26c5b1e813b17066a8318d5d4) C:\Windows\system32\DRIVERS\ewusbmdm.sys
18:32:01.0599 5700 hwdatacard - ok
18:32:02.0535 5700 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
18:32:02.0598 5700 hwpolicy - ok
18:32:03.0534 5700 hwusbdev (b45b3647ba32749b94fa689175ec8c26) C:\Windows\system32\DRIVERS\ewusbdev.sys
18:32:03.0643 5700 hwusbdev - ok
18:32:04.0204 5700 i8042HDR (45e0f744b0887e2701b1c59dc86147ec) C:\Windows\system32\DRIVERS\i8042HDR.sys
18:32:04.0298 5700 i8042HDR - ok
18:32:04.0704 5700 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
18:32:04.0797 5700 i8042prt - ok
18:32:05.0328 5700 IAANTMON (7548066df68a8a1a56b043359f915f37) C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
18:32:05.0359 5700 IAANTMON - ok
18:32:06.0685 5700 iaStor (1d004cb1da6323b1f55caef7f94b61d9) C:\Windows\system32\DRIVERS\iaStor.sys
18:32:06.0685 5700 iaStor - ok
18:32:07.0387 5700 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
18:32:07.0402 5700 iaStorV - ok
18:32:07.0855 5700 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
18:32:08.0151 5700 idsvc - ok
18:32:10.0600 5700 IGBASVC (607013af90e9107664f7204613db5631) C:\Program Files (x86)\Acer Bio Protection\BASVC.exe
18:32:10.0725 5700 IGBASVC - ok
18:32:11.0833 5700 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
18:32:11.0880 5700 iirsp - ok
18:32:13.0642 5700 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll
18:32:13.0689 5700 IKEEXT - ok
18:32:15.0312 5700 IntcAzAudAddService (2b888bbdf6962e608a5e1a1d7a626adf) C:\Windows\system32\drivers\RTKVHD64.sys
18:32:15.0514 5700 IntcAzAudAddService - ok
18:32:16.0310 5700 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
18:32:16.0341 5700 intelide - ok
18:32:16.0840 5700 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
18:32:16.0887 5700 intelppm - ok
18:32:17.0698 5700 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
18:32:17.0714 5700 IPBusEnum - ok
18:32:18.0432 5700 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
18:32:18.0463 5700 IpFilterDriver - ok
18:32:19.0024 5700 iphlpsvc (a34a587fffd45fa649fba6d03784d257) C:\Windows\System32\iphlpsvc.dll
18:32:19.0071 5700 iphlpsvc - ok
18:32:19.0726 5700 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
18:32:19.0789 5700 IPMIDRV - ok
18:32:20.0694 5700 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
18:32:20.0896 5700 IPNAT - ok
18:32:21.0583 5700 Ipsos-Reporting-Service (e2f9f99c775f1a2de6d046c13c7a5e37) C:\Program Files (x86)\Digital Connections\Ipsos-Reporting.exe
18:32:21.0739 5700 Ipsos-Reporting-Service - ok
18:32:22.0254 5700 Ipsos-Update-Service (2fc199e6594368fc94ceb62c0e570a76) C:\Program Files (x86)\Digital Connections\Ipsos-Updater.exe
18:32:22.0269 5700 Ipsos-Update-Service - ok
18:32:24.0048 5700 IpsosLSPService (dbf1a537a7666838d4229e036f6fea2c) C:\Program Files (x86)\IpsosLSPService\IpsosLSPService.exe
18:32:24.0172 5700 IpsosLSPService - ok
18:32:24.0750 5700 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
18:32:24.0812 5700 IRENUM - ok
18:32:25.0686 5700 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
18:32:25.0717 5700 isapnp - ok
18:32:26.0715 5700 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
18:32:26.0731 5700 iScsiPrt - ok
18:32:27.0558 5700 k57nd60a (7dbafe10c1b777305c80bea42fbda710) C:\Windows\system32\DRIVERS\k57nd60a.sys
18:32:27.0558 5700 k57nd60a - ok
18:32:28.0868 5700 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
18:32:28.0915 5700 kbdclass - ok
18:32:29.0679 5700 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\DRIVERS\kbdhid.sys
18:32:29.0742 5700 kbdhid - ok
18:32:30.0366 5700 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
18:32:30.0366 5700 KeyIso - ok
18:32:31.0146 5700 KSecDD (da1e991a61cfdd755a589e206b97644b) C:\Windows\system32\Drivers\ksecdd.sys
18:32:31.0177 5700 KSecDD - ok
18:32:32.0019 5700 KSecPkg (7e33198d956943a4f11a5474c1e9106f) C:\Windows\system32\Drivers\ksecpkg.sys
18:32:32.0019 5700 KSecPkg - ok
18:32:32.0721 5700 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
18:32:32.0799 5700 ksthunk - ok
18:32:33.0454 5700 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
18:32:33.0532 5700 KtmRm - ok
18:32:34.0562 5700 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\System32\srvsvc.dll
18:32:34.0609 5700 LanmanServer - ok
18:32:35.0077 5700 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll
18:32:35.0139 5700 LanmanWorkstation - ok
18:32:35.0810 5700 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
18:32:35.0935 5700 lltdio - ok
18:32:36.0387 5700 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
18:32:36.0403 5700 lltdsvc - ok
18:32:37.0198 5700 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
18:32:37.0198 5700 lmhosts - ok
18:32:38.0025 5700 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
18:32:38.0056 5700 LSI_FC - ok
18:32:38.0992 5700 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
18:32:39.0008 5700 LSI_SAS - ok
18:32:39.0694 5700 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
18:32:39.0772 5700 LSI_SAS2 - ok
18:32:40.0506 5700 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
18:32:40.0552 5700 LSI_SCSI - ok
18:32:41.0208 5700 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
18:32:41.0223 5700 luafv - ok
18:32:41.0800 5700 massfilter (23488767cb18fc3ff39e3af1db3fb02c) C:\Windows\system32\drivers\massfilter.sys
18:32:41.0847 5700 massfilter - ok
18:32:42.0861 5700 MBAMProtector (79da94b35371b9e7104460c7693dcb2c) C:\Windows\system32\drivers\mbam.sys
18:32:42.0939 5700 MBAMProtector - ok
18:32:43.0641 5700 MBAMService (056b19651bd7b7ce5f89a3ac46dbdc08) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
18:32:43.0672 5700 MBAMService - ok
18:32:44.0125 5700 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll
18:32:44.0140 5700 Mcx2Svc - ok
18:32:44.0702 5700 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
18:32:44.0718 5700 megasas - ok
18:32:45.0217 5700 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
18:32:45.0232 5700 MegaSR - ok
18:32:45.0498 5700 Microsoft Office Groove Audit Service (123271bd5237ab991dc5c21fdf8835eb) C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
18:32:45.0513 5700 Microsoft Office Groove Audit Service - ok
18:32:45.0934 5700 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
18:32:45.0997 5700 MMCSS - ok
18:32:46.0683 5700 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
18:32:46.0714 5700 Modem - ok
18:32:47.0588 5700 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
18:32:47.0604 5700 monitor - ok
18:32:48.0774 5700 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
18:32:48.0789 5700 mouclass - ok
18:32:49.0538 5700 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
18:32:49.0585 5700 mouhid - ok
18:32:50.0505 5700 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
18:32:50.0552 5700 mountmgr - ok
18:32:51.0332 5700 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
18:32:51.0363 5700 mpio - ok
18:32:52.0268 5700 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
18:32:52.0284 5700 mpsdrv - ok
18:32:53.0376 5700 MpsSvc (54ffc9c8898113ace189d4aa7199d2c1) C:\Windows\system32\mpssvc.dll
18:32:53.0469 5700 MpsSvc - ok
18:32:54.0000 5700 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
18:32:54.0015 5700 MRxDAV - ok
18:32:54.0983 5700 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
18:32:55.0029 5700 mrxsmb - ok
18:32:55.0700 5700 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
18:32:55.0716 5700 mrxsmb10 - ok
18:32:56.0714 5700 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
18:32:56.0745 5700 mrxsmb20 - ok
18:32:57.0057 5700 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
18:32:57.0104 5700 msahci - ok
18:32:57.0915 5700 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
18:32:57.0931 5700 msdsm - ok
18:32:58.0181 5700 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
18:32:58.0227 5700 MSDTC - ok
18:32:58.0352 5700 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
18:32:58.0352 5700 Msfs - ok
18:32:58.0571 5700 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
18:32:58.0571 5700 mshidkmdf - ok
18:32:58.0773 5700 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
18:32:58.0773 5700 msisadrv - ok
18:32:59.0413 5700 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
18:32:59.0460 5700 MSiSCSI - ok
18:33:00.0037 5700 msiserver - ok
18:33:01.0067 5700 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
18:33:01.0098 5700 MSKSSRV - ok
18:33:02.0283 5700 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
18:33:02.0299 5700 MSPCLOCK - ok
18:33:03.0079 5700 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
18:33:03.0079 5700 MSPQM - ok
18:33:03.0859 5700 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
18:33:03.0875 5700 MsRPC - ok
18:33:04.0545 5700 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
18:33:04.0577 5700 mssmbios - ok
18:33:05.0372 5700 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
18:33:05.0481 5700 MSTEE - ok
18:33:06.0121 5700 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
18:33:06.0121 5700 MTConfig - ok
18:33:06.0792 5700 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
18:33:06.0963 5700 Mup - ok
18:33:07.0525 5700 napagent (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll
18:33:07.0556 5700 napagent - ok
18:33:08.0118 5700 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
18:33:08.0211 5700 NativeWifiP - ok
18:33:09.0225 5700 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
18:33:09.0257 5700 NDIS - ok
18:33:09.0709 5700 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
18:33:09.0740 5700 NdisCap - ok
18:33:10.0161 5700 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
18:33:10.0239 5700 NdisTapi - ok
18:33:10.0973 5700 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
18:33:11.0035 5700 Ndisuio - ok
18:33:11.0909 5700 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
18:33:11.0909 5700 NdisWan - ok
18:33:12.0564 5700 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
18:33:12.0595 5700 NDProxy - ok
18:33:13.0297 5700 Nero BackItUp Scheduler 4.0 (b90e093e7a7250906f1054418b5339c0) C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
18:33:13.0313 5700 Nero BackItUp Scheduler 4.0 - ok
18:33:13.0843 5700 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
18:33:13.0890 5700 NetBIOS - ok
18:33:14.0249 5700 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
18:33:14.0280 5700 NetBT - ok
18:33:14.0420 5700 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
18:33:14.0420 5700 Netlogon - ok
18:33:14.0951 5700 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
18:33:14.0997 5700 Netman - ok
18:33:15.0731 5700 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
18:33:15.0746 5700 netprofm - ok
18:33:16.0557 5700 NetTcpPortSharing (3e5a36127e201ddf663176b66828fafe) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
18:33:16.0620 5700 NetTcpPortSharing - ok
18:33:19.0053 5700 netw5v64 (64428dfdaf6e88366cb51f45a79c5f69) C:\Windows\system32\DRIVERS\netw5v64.sys
18:33:19.0584 5700 netw5v64 - ok
18:33:20.0333 5700 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
18:33:20.0364 5700 nfrd960 - ok
18:33:20.0613 5700 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll
18:33:20.0629 5700 NlaSvc - ok
18:33:21.0003 5700 nmwcdcx64 (216bdf8b1017bb52692c9ee3c1e50597) C:\Windows\system32\drivers\ccdcmbox64.sys
18:33:21.0019 5700 nmwcdcx64 - ok
18:33:21.0877 5700 nmwcdx64 (c9773ef9cbf2877725a45f07396d5da6) C:\Windows\system32\drivers\ccdcmbx64.sys
18:33:21.0924 5700 nmwcdx64 - ok
18:33:22.0704 5700 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
18:33:22.0782 5700 Npfs - ok
18:33:23.0468 5700 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
18:33:23.0531 5700 nsi - ok
18:33:24.0186 5700 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
18:33:24.0201 5700 nsiproxy - ok
18:33:24.0669 5700 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
18:33:25.0059 5700 Ntfs - ok
18:33:25.0387 5700 ntiomin - ok
18:33:25.0855 5700 ntiopnp (69e894c5a09c6a6e6372e35653bb05f3) C:\Windows\system32\drivers\ntiopnp.sys
18:33:25.0871 5700 ntiopnp - ok
18:33:25.0949 5700 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
18:33:25.0949 5700 Null - ok
18:33:26.0307 5700 nuvotonhidgeneric (d46faa5d102b065610c7cd5855e9c08b) C:\Windows\system32\DRIVERS\nuvotonhidgeneric.sys
18:33:26.0354 5700 nuvotonhidgeneric - ok
18:33:26.0729 5700 NVHDA (6e41a4df26340a07a489b721f9721ec1) C:\Windows\system32\drivers\nvhda64v.sys
18:33:26.0791 5700 NVHDA - ok
18:33:29.0256 5700 nvlddmkm (24f526274353ff7bb93d99d238e582da) C:\Windows\system32\DRIVERS\nvlddmkm.sys
18:33:29.0817 5700 nvlddmkm - ok
18:33:30.0691 5700 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
18:33:30.0691 5700 nvraid - ok
18:33:30.0878 5700 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
18:33:30.0878 5700 nvstor - ok
18:33:31.0050 5700 nvsvc (aad3b6f3e5b9fe1d29bf627904f6120f) C:\Windows\system32\nvvsvc.exe
18:33:31.0065 5700 nvsvc - ok
18:33:31.0299 5700 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
18:33:31.0315 5700 nv_agp - ok
18:33:31.0518 5700 odserv (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
18:33:31.0518 5700 odserv - ok
18:33:31.0767 5700 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
18:33:31.0783 5700 ohci1394 - ok
18:33:32.0033 5700 optousb (84dffad6904d29daa208d28c0c00a8a6) C:\Windows\system32\DRIVERS\optousb.sys
18:33:32.0033 5700 optousb - ok
18:33:32.0267 5700 optovcm (1b30bf9f42d6ac7ce27b8dc83f4b5913) C:\Windows\system32\DRIVERS\optovcm.sys
18:33:32.0267 5700 optovcm - ok
18:33:32.0454 5700 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
18:33:32.0469 5700 ose - ok
18:33:32.0703 5700 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
18:33:32.0703 5700 p2pimsvc - ok
18:33:35.0652 5700 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
18:33:35.0714 5700 p2psvc - ok
18:33:39.0692 5700 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
18:33:40.0831 5700 Parport - ok
18:33:41.0252 5700 partmgr (871eadac56b0a4c6512bbe32753ccf79) C:\Windows\system32\drivers\partmgr.sys
18:33:41.0252 5700 partmgr - ok
18:33:41.0658 5700 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
18:33:41.0689 5700 PcaSvc - ok
18:33:42.0563 5700 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
18:33:42.0594 5700 pci - ok
18:33:43.0015 5700 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
18:33:43.0031 5700 pciide - ok
18:33:43.0842 5700 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
18:33:43.0873 5700 pcmcia - ok
18:33:44.0138 5700 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
18:33:44.0169 5700 pcw - ok
18:33:44.0793 5700 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
18:33:44.0809 5700 PEAUTH - ok
18:33:45.0230 5700 PeerDistSvc (b9b0a4299dd2d76a4243f75fd54dc680) C:\Windows\system32\peerdistsvc.dll
18:33:45.0277 5700 PeerDistSvc - ok
18:33:45.0449 5700 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
18:33:45.0464 5700 PerfHost - ok
18:33:45.0979 5700 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll
18:33:46.0026 5700 pla - ok
18:33:46.0307 5700 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll
18:33:46.0322 5700 PlugPlay - ok
18:33:46.0431 5700 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
18:33:46.0447 5700 PNRPAutoReg - ok
18:33:46.0681 5700 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
18:33:46.0681 5700 PNRPsvc - ok
18:33:47.0196 5700 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll
18:33:47.0227 5700 PolicyAgent - ok
18:33:47.0383 5700 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
18:33:47.0399 5700 Power - ok
18:33:47.0523 5700 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
18:33:47.0617 5700 PptpMiniport - ok
18:33:47.0898 5700 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
18:33:47.0913 5700 Processor - ok
18:33:48.0038 5700 ProfSvc (5c78838b4d166d1a27db3a8a820c799a) C:\Windows\system32\profsvc.dll
18:33:48.0054 5700 ProfSvc - ok
18:33:48.0147 5700 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
18:33:48.0147 5700 ProtectedStorage - ok
18:33:48.0288 5700 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
18:33:48.0288 5700 Psched - ok
18:33:48.0491 5700 PSI_SVC_2 (543a4ef0923bf70d126625b034ef25af) c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
18:33:48.0615 5700 PSI_SVC_2 - ok
18:33:49.0489 5700 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
18:33:49.0614 5700 ql2300 - ok
18:33:50.0175 5700 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
18:33:50.0175 5700 ql40xx - ok
18:33:50.0597 5700 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
18:33:50.0643 5700 QWAVE - ok
18:33:51.0345 5700 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
18:33:51.0361 5700 QWAVEdrv - ok
18:33:51.0595 5700 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
18:33:51.0611 5700 RasAcd - ok
18:33:52.0157 5700 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
18:33:52.0157 5700 RasAgileVpn - ok
18:33:52.0297 5700 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
18:33:52.0313 5700 RasAuto - ok
18:33:52.0484 5700 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
18:33:52.0500 5700 Rasl2tp - ok
18:33:53.0061 5700 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll
18:33:53.0077 5700 RasMan - ok
18:33:53.0685 5700 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
18:33:53.0717 5700 RasPppoe - ok
18:33:53.0919 5700 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
18:33:53.0935 5700 RasSstp - ok
18:33:54.0777 5700 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
18:33:54.0793 5700 rdbss - ok
18:33:55.0308 5700 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
18:33:55.0323 5700 rdpbus - ok
18:33:55.0760 5700 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
18:33:55.0791 5700 RDPCDD - ok
18:33:56.0228 5700 RDPDR (1b6163c503398b23ff8b939c67747683) C:\Windows\system32\drivers\rdpdr.sys
18:33:56.0244 5700 RDPDR - ok
18:33:56.0462 5700 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
18:33:56.0462 5700 RDPENCDD - ok
18:33:56.0665 5700 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
18:33:56.0665 5700 RDPREFMP - ok
18:33:56.0727 5700 RdpVideoMiniport (70cba1a0c98600a2aa1863479b35cb90) C:\Windows\system32\drivers\rdpvideominiport.sys
18:33:56.0743 5700 RdpVideoMiniport - ok
18:33:56.0946 5700 RDPWD (6d76e6433574b058adcb0c50df834492) C:\Windows\system32\drivers\RDPWD.sys
18:33:56.0961 5700 RDPWD - ok
18:33:57.0024 5700 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
18:33:57.0039 5700 rdyboost - ok
18:33:57.0195 5700 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
18:33:57.0211 5700 RemoteAccess - ok
18:33:57.0367 5700 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
18:33:57.0367 5700 RemoteRegistry - ok
18:33:57.0632 5700 RFCOMM (3dd798846e2c28102b922c56e71b7932) C:\Windows\system32\DRIVERS\rfcomm.sys
18:33:57.0632 5700 RFCOMM - ok
18:33:57.0741 5700 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
18:33:57.0757 5700 RpcEptMapper - ok
18:33:57.0960 5700 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
18:33:57.0991 5700 RpcLocator - ok
18:33:58.0677 5700 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
18:33:58.0693 5700 RpcSs - ok
18:33:59.0145 5700 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
18:33:59.0161 5700 rspndr - ok
18:33:59.0457 5700 s3cap (e60c0a09f997826c7627b244195ab581) C:\Windows\system32\drivers\vms3cap.sys
18:33:59.0473 5700 s3cap - ok
18:33:59.0691 5700 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
18:33:59.0691 5700 SamSs - ok
18:33:59.0910 5700 SANDRA (5efbbfcc6adac121c8e2fe76641ed329) C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2011.SP4c\WNt500x64\Sandra.sys
18:33:59.0925 5700 SANDRA - ok
18:34:00.0003 5700 SandraAgentSrv (5a3bfc3f35d4792cd763c7593cd96495) C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2011.SP4c\RpcAgentSrv.exe
18:34:00.0003 5700 SandraAgentSrv - ok
18:34:00.0315 5700 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
18:34:00.0331 5700 sbp2port - ok
18:34:00.0643 5700 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
18:34:00.0705 5700 SCardSvr - ok
18:34:00.0986 5700 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
18:34:01.0064 5700 scfilter - ok
18:34:01.0361 5700 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll
18:34:01.0407 5700 Schedule - ok
18:34:01.0829 5700 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
18:34:01.0829 5700 SCPolicySvc - ok
18:34:02.0281 5700 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll
18:34:02.0312 5700 SDRSVC - ok
18:34:02.0531 5700 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
18:34:02.0546 5700 secdrv - ok
18:34:02.0765 5700 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll
18:34:02.0780 5700 seclogon - ok
18:34:02.0936 5700 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\system32\sens.dll
18:34:02.0967 5700 SENS - ok
18:34:03.0279 5700 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
18:34:03.0295 5700 SensrSvc - ok
18:34:03.0638 5700 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
18:34:03.0638 5700 Serenum - ok
18:34:03.0919 5700 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
18:34:03.0919 5700 Serial - ok
18:34:04.0075 5700 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
18:34:04.0091 5700 sermouse - ok
18:34:04.0215 5700 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll
18:34:04.0231 5700 SessionEnv - ok
18:34:04.0387 5700 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
18:34:04.0387 5700 sffdisk - ok
18:34:04.0434 5700 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
18:34:04.0434 5700 sffp_mmc - ok
18:34:04.0621 5700 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
18:34:04.0637 5700 sffp_sd - ok
18:34:04.0699 5700 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
18:34:04.0699 5700 sfloppy - ok
18:34:04.0808 5700 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
18:34:04.0824 5700 SharedAccess - ok
18:34:04.0964 5700 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll
18:34:04.0964 5700 ShellHWDetection - ok
18:34:05.0120 5700 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
18:34:05.0136 5700 SiSRaid2 - ok
18:34:05.0183 5700 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
18:34:05.0183 5700 SiSRaid4 - ok
18:34:05.0370 5700 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
18:34:05.0370 5700 Smb - ok
18:34:05.0479 5700 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
18:34:05.0495 5700 SNMPTRAP - ok
18:34:05.0729 5700 Sony Ericsson PCCompanion (1a623f2b69e1f182f995f963c55db935) C:\Program Files (x86)\Sony Ericsson\Sony Ericsson PC Companion\PCCService.exe
18:34:05.0744 5700 Sony Ericsson PCCompanion - ok
18:34:05.0978 5700 speedfan (12583af6cbe0050651eaf2723b3ad7b3) C:\Windows\syswow64\speedfan.sys
18:34:05.0994 5700 speedfan - ok
18:34:06.0119 5700 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
18:34:06.0119 5700 spldr - ok
18:34:06.0275 5700 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe
18:34:06.0306 5700 Spooler - ok
18:34:07.0398 5700 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe
18:34:07.0523 5700 sppsvc - ok
18:34:07.0663 5700 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
18:34:07.0679 5700 sppuinotify - ok
18:34:07.0881 5700 sptd (4c33f139236fd9bd14a920f60c1cb072) C:\Windows\system32\Drivers\sptd.sys
18:34:07.0897 5700 Suspicious file (NoAccess): C:\Windows\system32\Drivers\sptd.sys. md5: 4c33f139236fd9bd14a920f60c1cb072
18:34:07.0944 5700 sptd ( LockedFile.Multi.Generic ) - warning
18:34:07.0944 5700 sptd - detected LockedFile.Multi.Generic (1)
18:34:08.0193 5700 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
18:34:08.0209 5700 srv - ok
18:34:08.0381 5700 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
18:34:08.0396 5700 srv2 - ok
18:34:08.0552 5700 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
18:34:08.0552 5700 srvnet - ok
18:34:08.0708 5700 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
18:34:08.0708 5700 SSDPSRV - ok
18:34:08.0849 5700 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
18:34:08.0864 5700 SstpSvc - ok
18:34:09.0051 5700 StarWindServiceAE (b1691af4a072cb674d600db16dd7308e) C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
18:34:09.0067 5700 StarWindServiceAE - ok
18:34:09.0239 5700 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
18:34:09.0239 5700 stexstor - ok
18:34:09.0535 5700 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll
18:34:09.0551 5700 stisvc - ok
18:34:09.0816 5700 storflt (7785dc213270d2fc066538daf94087e7) C:\Windows\system32\drivers\vmstorfl.sys
18:34:09.0831 5700 storflt - ok
18:34:10.0019 5700 storvsc (d34e4943d5ac096c8edeebfd80d76e23) C:\Windows\system32\drivers\storvsc.sys
18:34:10.0019 5700 storvsc - ok
18:34:10.0065 5700 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
18:34:10.0065 5700 swenum - ok
18:34:10.0221 5700 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
18:34:10.0237 5700 swprv - ok
18:34:10.0455 5700 Synth3dVsc - ok
18:34:10.0533 5700 SynTP (bcf305959b53b200ceb2ad25ad22f8a7) C:\Windows\system32\DRIVERS\SynTP.sys
18:34:10.0549 5700 SynTP - ok
18:34:10.0752 5700 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll
18:34:10.0799 5700 SysMain - ok
18:34:10.0955 5700 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll
18:34:10.0970 5700 TabletInputService - ok
18:34:11.0033 5700 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll
18:34:11.0033 5700 TapiSrv - ok
18:34:11.0220 5700 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
18:34:11.0220 5700 TBS - ok
18:34:11.0516 5700 Tcpip (fc62769e7bff2896035aeed399108162) C:\Windows\system32\drivers\tcpip.sys
18:34:11.0547 5700 Tcpip - ok
18:34:11.0891 5700 TCPIP6 (fc62769e7bff2896035aeed399108162) C:\Windows\system32\DRIVERS\tcpip.sys
18:34:11.0906 5700 TCPIP6 - ok
18:34:12.0140 5700 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
18:34:12.0156 5700 tcpipreg - ok
18:34:12.0405 5700 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
18:34:12.0452 5700 TDPIPE - ok
18:34:12.0733 5700 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys
18:34:12.0733 5700 TDTCP - ok
18:34:12.0842 5700 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
18:34:12.0858 5700 tdx - ok
18:34:13.0263 5700 TeamViewer7 (74fc70ae64a7b7dabec9697ce0a1f4fa) C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
18:34:13.0357 5700 TeamViewer7 - ok
18:34:13.0747 5700 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
18:34:13.0763 5700 TermDD - ok
18:34:13.0965 5700 TermService (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll
18:34:13.0981 5700 TermService - ok
18:34:14.0137 5700 TGCM_ImportWiFiSvc (8f14de79ebe73d6d717b8455e64dda86) C:\Program Files (x86)\o2\Mobile Connection Manager\ImpWiFiSvc.exe
18:34:14.0153 5700 TGCM_ImportWiFiSvc - ok
18:34:14.0293 5700 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
18:34:14.0293 5700 Themes - ok
18:34:14.0371 5700 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
18:34:14.0371 5700 THREADORDER - ok
18:34:14.0496 5700 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
18:34:14.0511 5700 TrkWks - ok
18:34:14.0605 5700 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe
18:34:14.0605 5700 TrustedInstaller - ok
18:34:14.0823 5700 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
18:34:14.0839 5700 tssecsrv - ok
18:34:14.0948 5700 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
18:34:14.0964 5700 TsUsbFlt - ok
18:34:15.0089 5700 tsusbhub - ok
18:34:15.0245 5700 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
18:34:15.0260 5700 tunnel - ok
18:34:15.0385 5700 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
18:34:15.0401 5700 uagp35 - ok
18:34:15.0588 5700 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
18:34:15.0603 5700 udfs - ok
18:34:15.0759 5700 UI Assistant Service (ad67771ebc9c249a78bedb406d4eea64) C:\Program Files (x86)\Mobile Partner Manager\AssistantServices.exe
18:34:15.0759 5700 UI Assistant Service - ok
18:34:15.0900 5700 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
18:34:15.0931 5700 UI0Detect - ok
18:34:16.0212 5700 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
18:34:16.0227 5700 uliagpkx - ok
18:34:16.0368 5700 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\drivers\umbus.sys
18:34:16.0383 5700 umbus - ok
18:34:16.0415 5700 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
18:34:16.0446 5700 UmPass - ok
18:34:16.0571 5700 UmRdpService (a293dcd756d04d8492a750d03b9a297c) C:\Windows\System32\umrdp.dll
18:34:16.0571 5700 UmRdpService - ok
18:34:16.0680 5700 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
18:34:16.0695 5700 upnphost - ok
18:34:16.0851 5700 upperdev (f49988fbf59413b974b1380d6f743ebc) C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys
18:34:16.0851 5700 upperdev - ok
18:34:16.0945 5700 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
18:34:16.0945 5700 usbccgp - ok
18:34:17.0163 5700 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
18:34:17.0179 5700 usbcir - ok
18:34:17.0351 5700 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\drivers\usbehci.sys
18:34:17.0351 5700 usbehci - ok
18:34:17.0413 5700 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
18:34:17.0429 5700 usbhub - ok
18:34:17.0616 5700 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\drivers\usbohci.sys
18:34:17.0616 5700 usbohci - ok
18:34:17.0912 5700 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
18:34:17.0943 5700 usbprint - ok
18:34:18.0396 5700 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys
18:34:18.0458 5700 usbscan - ok
18:34:18.0739 5700 usbser (4acee387fa8fd39f83564fcd2fc234f2) C:\Windows\system32\drivers\usbser.sys
18:34:18.0739 5700 usbser - ok
18:34:18.0989 5700 UsbserFilt (0fe9e048fc762dcac087cb9ee1680079) C:\Windows\system32\DRIVERS\usbser_lowerfltx64j.sys
18:34:19.0004 5700 UsbserFilt - ok
18:34:19.0285 5700 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
18:34:19.0332 5700 USBSTOR - ok
18:34:19.0597 5700 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\drivers\usbuhci.sys
18:34:19.0613 5700 usbuhci - ok
18:34:19.0784 5700 usbvideo (454800c2bc7f3927ce030141ee4f4c50) C:\Windows\System32\Drivers\usbvideo.sys
18:34:19.0800 5700 usbvideo - ok
18:34:19.0909 5700 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
18:34:19.0940 5700 UxSms - ok
18:34:20.0221 5700 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
18:34:20.0221 5700 VaultSvc - ok
18:34:20.0502 5700 VClone (84bb306b7863883018d7f3eb0c453bd5) C:\Windows\system32\DRIVERS\VClone.sys
18:34:20.0517 5700 VClone - ok
18:34:20.0767 5700 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
18:34:20.0767 5700 vdrvroot - ok
18:34:20.0907 5700 vds (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe
18:34:20.0923 5700 vds - ok
18:34:21.0141 5700 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
18:34:21.0157 5700 vga - ok
18:34:21.0407 5700 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
18:34:21.0407 5700 VgaSave - ok
18:34:21.0563 5700 VGPU - ok
18:34:21.0656 5700 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
18:34:21.0687 5700 vhdmp - ok
18:34:21.0906 5700 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
18:34:21.0937 5700 viaide - ok
18:34:22.0171 5700 vmbus (86ea3e79ae350fea5331a1303054005f) C:\Windows\system32\drivers\vmbus.sys
18:34:22.0187 5700 vmbus - ok
18:34:22.0405 5700 VMBusHID (7de90b48f210d29649380545db45a187) C:\Windows\system32\drivers\VMBusHID.sys
18:34:22.0405 5700 VMBusHID - ok
18:34:22.0655 5700 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
18:34:22.0670 5700 volmgr - ok
18:34:22.0889 5700 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
18:34:22.0904 5700 volmgrx - ok
18:34:23.0091 5700 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
18:34:23.0107 5700 volsnap - ok
18:34:23.0372 5700 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
18:34:23.0403 5700 vsmraid - ok
18:34:23.0700 5700 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe
18:34:23.0731 5700 VSS - ok
18:34:24.0183 5700 vToolbarUpdater10.2.0 (3080f1f093869a19fb3d1f0226c73809) C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\10.2.0\ToolbarUpdater.exe
18:34:24.0230 5700 vToolbarUpdater10.2.0 - ok
18:34:24.0464 5700 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\System32\drivers\vwifibus.sys
18:34:24.0464 5700 vwifibus - ok
18:34:24.0807 5700 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
18:34:24.0823 5700 W32Time - ok
18:34:25.0135 5700 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
18:34:25.0197 5700 WacomPen - ok
18:34:25.0494 5700 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
18:34:25.0509 5700 WANARP - ok
18:34:25.0556 5700 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
18:34:25.0556 5700 Wanarpv6 - ok
18:34:26.0040 5700 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe
18:34:26.0118 5700 wbengine - ok
18:34:26.0555 5700 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
18:34:26.0570 5700 WbioSrvc - ok
18:34:26.0820 5700 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll
18:34:26.0835 5700 wcncsvc - ok
18:34:26.0913 5700 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
18:34:26.0929 5700 WcsPlugInService - ok
18:34:27.0147 5700 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
18:34:27.0147 5700 Wd - ok
18:34:27.0413 5700 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
18:34:27.0491 5700 Wdf01000 - ok
18:34:27.0678 5700 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
18:34:27.0725 5700 WdiServiceHost - ok
18:34:27.0756 5700 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
18:34:27.0756 5700 WdiSystemHost - ok
18:34:28.0052 5700 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll
18:34:28.0068 5700 WebClient - ok
18:34:28.0302 5700 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
18:34:28.0333 5700 Wecsvc - ok
18:34:28.0583 5700 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
18:34:28.0598 5700 wercplsupport - ok
18:34:28.0707 5700 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
18:34:28.0723 5700 WerSvc - ok
18:34:29.0019 5700 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
18:34:29.0097 5700 WfpLwf - ok
18:34:29.0503 5700 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
18:34:29.0519 5700 WIMMount - ok
18:34:29.0612 5700 WinDefend - ok
18:34:29.0659 5700 WinHttpAutoProxySvc - ok
18:34:30.0065 5700 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
18:34:30.0080 5700 Winmgmt - ok
18:34:30.0517 5700 WinRM (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll
18:34:30.0611 5700 WinRM - ok
18:34:30.0813 5700 WinUsb (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys
18:34:30.0813 5700 WinUsb - ok
18:34:30.0954 5700 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
18:34:30.0969 5700 Wlansvc - ok
18:34:31.0219 5700 wlcrasvc (06c8fa1cf39de6a735b54d906ba791c6) C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
18:34:31.0219 5700 wlcrasvc - ok
18:34:31.0656 5700 wlidsvc (2bacd71123f42cea603f4e205e1ae337) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
18:34:31.0781 5700 wlidsvc - ok
18:34:32.0061 5700 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
18:34:32.0093 5700 WmiAcpi - ok
18:34:32.0342 5700 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
18:34:32.0342 5700 wmiApSrv - ok
18:34:32.0451 5700 WMPNetworkSvc - ok
18:34:32.0670 5700 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
18:34:32.0685 5700 WPCSvc - ok
18:34:32.0904 5700 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll
18:34:32.0919 5700 WPDBusEnum - ok
18:34:33.0029 5700 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
18:34:33.0060 5700 ws2ifsl - ok
18:34:33.0216 5700 wscsvc (e8b1fe6669397d1772d8196df0e57a9e) C:\Windows\system32\wscsvc.dll
18:34:33.0247 5700 wscsvc - ok
18:34:33.0372 5700 WSearch - ok
18:34:33.0653 5700 wuauserv (9df12edbc698b0bc353b3ef84861e430) C:\Windows\system32\wuaueng.dll
18:34:33.0762 5700 wuauserv - ok
18:34:34.0043 5700 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
18:34:34.0105 5700 WudfPf - ok
18:34:34.0526 5700 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
18:34:34.0526 5700 WUDFRd - ok
18:34:34.0760 5700 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll
18:34:34.0791 5700 wudfsvc - ok
18:34:34.0932 5700 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
18:34:35.0103 5700 WwanSvc - ok
18:34:35.0306 5700 YahooAUService (dd0042f0c3b606a6a8b92d49afb18ad6) C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe
18:34:35.0322 5700 YahooAUService - ok
18:34:35.0696 5700 ZTEusbmdm6k (ff5a03a65b68db7e02a12880399d40d4) C:\Windows\system32\DRIVERS\ZTEusbmdm6k.sys
18:34:35.0712 5700 ZTEusbmdm6k - ok
18:34:35.0977 5700 ZTEusbnmea (ff5a03a65b68db7e02a12880399d40d4) C:\Windows\system32\DRIVERS\ZTEusbnmea.sys
18:34:35.0977 5700 ZTEusbnmea - ok
18:34:36.0258 5700 ZTEusbser6k (ff5a03a65b68db7e02a12880399d40d4) C:\Windows\system32\DRIVERS\ZTEusbser6k.sys
18:34:36.0258 5700 ZTEusbser6k - ok
18:34:36.0351 5700 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
18:34:36.0414 5700 \Device\Harddisk0\DR0 - ok
18:34:36.0445 5700 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk1\DR1
18:34:36.0445 5700 \Device\Harddisk1\DR1 - ok
18:34:36.0461 5700 Boot (0x1200) (0d8b558d6dee77d6290e0bcbbdc4c75d) \Device\Harddisk0\DR0\Partition0
18:34:36.0461 5700 \Device\Harddisk0\DR0\Partition0 - ok
18:34:36.0476 5700 Boot (0x1200) (87730ff598a9d8e32256947d362dc65b) \Device\Harddisk0\DR0\Partition1
18:34:36.0492 5700 \Device\Harddisk0\DR0\Partition1 - ok
18:34:36.0507 5700 Boot (0x1200) (233fc45270d97bb5f71fad8c1dc362da) \Device\Harddisk1\DR1\Partition0
18:34:36.0507 5700 \Device\Harddisk1\DR1\Partition0 - ok
18:34:36.0523 5700 ============================================================
18:34:36.0523 5700 Scan finished
18:34:36.0523 5700 ============================================================
18:34:36.0539 4704 Detected object count: 2
18:34:36.0539 4704 Actual detected object count: 2
18:58:43.0535 4704 c:\program files (x86)\common files\akamai/netsession_win_6c825ce.dll - copied to quarantine
18:58:43.0535 4704 Akamai ( HiddenFile.Multi.Generic ) - User select action: Quarantine
18:58:44.0190 4704 C:\Windows\system32\Drivers\sptd.sys - copied to quarantine
18:58:44.0190 4704 sptd ( LockedFile.Multi.Generic ) - User select action: Quarantine
Geändert von chaoskomet (30.03.2012 um 18:08 Uhr) Grund: report hinzugefügt |
|
30.03.2012, 18:39
| #13 |
| | Alle Browser haben verbindungsprobleme also ich habe im firefox und IE paar fenster aufgemacht, und es scheint, als ob es okay ist. die seiten laden ohne probleme. |
|
30.03.2012, 19:36
| #14 |
| /// Malware-holic | Alle Browser haben verbindungsprobleme lade den CCleaner standard: CCleaner Download - CCleaner 3.17.1689 falls der CCleaner bereits instaliert, überspringen. instalieren, öffnen, extras, liste der instalierten programme, als txt speichern. öffnen. hinter, jedes von dir benötigte programm, schreibe notwendig. hinter, jedes, von dir nicht benötigte, unnötig. hinter, dir unbekannte, unbekannt. liste posten.
__________________ -Verdächtige mails bitte an uns zur Analyse weiterleiten: markusg.trojaner-board@web.de Weiterleiten Anleitung: http://markusg.trojaner-board.de Mails bitte vorerst nach obiger Anleitung an markusg.trojaner-board@web.de Weiterleiten Wenn Ihr uns unterstützen möchtet |
|
| Themen zu Alle Browser haben verbindungsprobleme |
| acrobat update, adobe, adobe flash player, akamai, avg, avg secure search, avg security toolbar, bho, browser, explorer, firefox, firewall, flash player, hijack, hijackthis, install.exe, internet explorer, launch, log, logfile, mozilla, nvidia, object, opera, plug-in, scan, secure search, seiten, senden, software, temp, vtoolbarupdater, wlan |
Hybrid-Darstellung
