| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Windows Firewall und Windows Update Fehlermeldung 0x80070424Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
06.06.2012, 12:08
| #16 |
| /// Winkelfunktion /// TB-Süch-Tiger™   |  Windows Firewall und Windows Update Fehlermeldung 0x80070424 Starte Windows neu, lösch die alte combofix.exe, lade CF neu runter und probier es bitte nochmal.
__________________ Logfiles bitte immer in CODE-Tags posten  |
|
06.06.2012, 21:54
| #17 |
 | Windows Firewall und Windows Update Fehlermeldung 0x80070424 Genau das selbe Problem.
__________________ |
|
07.06.2012, 14:45
| #18 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Windows Firewall und Windows Update Fehlermeldung 0x80070424 Bitte nun Logs mit GMER und OSAM erstellen und posten.
__________________GMER stürzt häufiger ab, wenn das Tool auch beim 2. Mal nicht will, lass es einfach weg und führ nur OSAM aus - die Online-Abfrage durch OSAM bitte überspringen. Bei OSAM bitte darauf auch achten, dass Du das Log auch als *.log und nicht *.html oder so abspeicherst. Hinweis: Zum Entpacken von OSAM bitte WinRAR oder 7zip verwenden! Stell auch unbedingt den Virenscanner ab, besonders der Scanner von McAfee meldet oft einen Fehalarm in OSAM! Downloade dir bitte  aswMBR.exe und speichere die Datei auf deinem Desktop.
Wichtig: Drücke keinesfalls einen der Fix Buttons ohne Anweisung Hinweis: Sollte der Scan Button ausgeblendet sein, schließe das Tool und starte es erneut. Sollte der Scan abbrechen und das Programm abstürzen, dann teile mir das mit und wähle unter AV Scan die Einstellung (none). Noch ein Hinweis: Sollte aswMBR abstürzen und es kommt eine Meldung wie "aswMBR.exe funktioniert nicht mehr, dann mach Folgendes: Starte aswMBR neu, wähle unten links im Drop-Down-Menü (unten links im Fenster von aswMBR) bei "AV scan" (none) aus und klick nochmal auf den Scan-Button.
__________________ |
|
07.06.2012, 15:46
| #19 |
| | Windows Firewall und Windows Update Fehlermeldung 0x80070424 Hier ist der GMER-Log: Code:
ATTFilter GMER 1.0.15.15641 - hxxp://www.gmer.net Rootkit scan 2012-06-07 16:31:49 Windows 6.1.7601 Service Pack 1 Running: novkvsdz.exe ---- Services - GMER 1.0.15 ---- Service .NET CLR Data Service .NET CLR Networking Service .NET CLR Networking 4.0.0.0 Service .NET Data Provider for Oracle Service .NET Data Provider for SqlServer Service .NET Memory Cache 4.0 Service .NETFramework Service system32\drivers\1394ohci.sys (1394 OpenHCI Driver/Microsoft Corporation) [MANUAL] 1394ohci Service C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe (ArcSoft Connect Service/ArcSoft Inc.) [MANUAL] ACDaemon Service system32\drivers\ACPI.sys (ACPI-Treiber für NT/Microsoft Corporation) [BOOT] ACPI Service system32\drivers\acpipmi.sys (ACPI Power Metering Driver/Microsoft Corporation) [MANUAL] AcpiPmi Service C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Acrobat Update Service/Adobe Systems Incorporated) [AUTO] AdobeARMservice Service C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe® Flash® Player Update Service 11.2 r202/Adobe Systems Incorporated) [MANUAL] AdobeFlashPlayerUpdateSvc Service system32\drivers\adp94xx.sys (Adaptec Windows SAS/SATA Storport Driver/Adaptec, Inc.) [MANUAL] adp94xx Service system32\drivers\adpahci.sys (Adaptec Windows SATA Storport Driver/Adaptec, Inc.) [MANUAL] adpahci Service system32\drivers\adpu320.sys (Adaptec StorPort Ultra320 SCSI Driver (X64)/Adaptec, Inc.) [MANUAL] adpu320 Service adsi Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] AeLookupSvc Service system32\drivers\afd.sys (Ancillary Function Driver for WinSock/Microsoft Corporation) [SYSTEM] AFD Service system32\drivers\agp440.sys (440 NT AGP-Filter/Microsoft Corporation) [MANUAL] agp440 Service C:\Windows\System32\alg.exe (Gatewaydienst auf Anwendungsebene/Microsoft Corporation) [MANUAL] ALG Service system32\drivers\aliide.sys (ALi mini IDE Driver/Acer Laboratories Inc.) [MANUAL] aliide Service system32\drivers\amdide.sys (AMD-IDE-Treiber/Microsoft Corporation) [MANUAL] amdide Service system32\drivers\amdk8.sys (Processor Device Driver/Microsoft Corporation) [MANUAL] AmdK8 Service system32\drivers\amdppm.sys (Processor Device Driver/Microsoft Corporation) [MANUAL] AmdPPM Service system32\drivers\amdsata.sys (AHCI 1.2 Device Driver/Advanced Micro Devices) [MANUAL] amdsata Service system32\drivers\amdsbs.sys (AMD Technology AHCI Compatible Controller Driver for Windows - AMD64 platform/AMD Technologies Inc.) [MANUAL] amdsbs Service system32\drivers\amdxata.sys (Storage Filter Driver/Advanced Micro Devices) [BOOT] amdxata Service system32\DRIVERS\Apfiltr.sys (Alps Touch Pad Driver/Alps Electric Co., Ltd.) [MANUAL] ApfiltrService Service system32\drivers\appid.sys (AppID Driver/Microsoft Corporation) [MANUAL] AppID Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] AppIDSvc Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] Appinfo Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) AppMgmt Service system32\drivers\arc.sys (Adaptec RAID Storport Driver/Adaptec, Inc.) [MANUAL] arc Service system32\drivers\arcsas.sys (Adaptec SAS RAID WS03 Driver/Adaptec, Inc.) [MANUAL] arcsas Service system32\DRIVERS\ArcSoftKsUFilter.sys (For X64/ArcSoft, Inc.) [MANUAL] ArcSoftKsUFilter Service ASP.NET Service ASP.NET_4.0.30319 Service C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe (Microsoft ASP.NET State Server/Microsoft Corporation) [MANUAL] aspnet_state Service system32\DRIVERS\asyncmac.sys (MS Remote Access serial network driver/Microsoft Corporation) [MANUAL] AsyncMac Service system32\drivers\atapi.sys (ATAPI IDE Miniport Driver/Microsoft Corporation) [MANUAL] atapi Service system32\DRIVERS\btath_flt.sys (Atheros FILTER driver/Atheros) [MANUAL] AthBTPort Service System32\Drivers\AthDfu.sys (BulkUsb Driver/Windows (R) Win 7 DDK provider) [MANUAL] ATHDFU Service C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe (Atheros Coex Service Application/Atheros) [AUTO] Atheros Bt&Wlan Coex Agent Service C:\Program Files (x86)\Bluetooth Suite\adminservice.exe (AdminService Application/Atheros Commnucations) [AUTO] AtherosSvc Service system32\DRIVERS\athrx.sys (Atheros Extensible Wireless LAN device driver/Atheros Communications, Inc.) [MANUAL] athr Service C:\Windows\System32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [AUTO] AudioEndpointBuilder Service C:\Windows\System32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [AUTO] AudioSrv Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] AxInstSV Service system32\drivers\bxvbda.sys (Broadcom NetXtreme II GigE VBD/Broadcom Corporation) [MANUAL] b06bdrv Service system32\DRIVERS\b57nd60a.sys (Broadcom NetXtreme Gigabit Ethernet NDIS6.x Unified Driver./Broadcom Corporation) [MANUAL] b57nd60a Service (Battery Class Driver/Microsoft Corporation) BattC Service C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE (BingBar Service/Microsoft Corporation.) [MANUAL] BBSvc Service C:\Windows\System32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] BDESVC Service (BEEP Driver/Microsoft Corporation) [SYSTEM] Beep Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [AUTO] BFE Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [AUTO] BITS Service system32\drivers\blbdrive.sys (BLB Drive Driver/Microsoft Corporation) [SYSTEM] blbdrive Service system32\DRIVERS\bowser.sys (NT Lan Manager Datagram Receiver Driver/Microsoft Corporation) [MANUAL] bowser Service system32\drivers\BrFiltLo.sys (Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver/Brother Industries, Ltd.) [MANUAL] BrFiltLo Service system32\drivers\BrFiltUp.sys (Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver/Brother Industries, Ltd.) [MANUAL] BrFiltUp Service system32\DRIVERS\bridge.sys (MAC Bridge Driver/Microsoft Corporation) [MANUAL] BridgeMP Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] Browser Service System32\Drivers\Brserid.sys (Brother Schnittstellentreiber (WDM) (seriell)/Brother Industries Ltd.) [MANUAL] Brserid Service System32\Drivers\BrSerWdm.sys (Brother Serial driver (WDM version)/Brother Industries Ltd.) [MANUAL] BrSerWdm Service System32\Drivers\BrUsbMdm.sys (Brother USB MDM Driver /Brother Industries Ltd.) [MANUAL] BrUsbMdm Service System32\Drivers\BrUsbSer.sys (Brother USB Serial Driver/Brother Industries Ltd.) [MANUAL] BrUsbSer Service system32\drivers\btath_a2dp.sys (Atheros A2DP driver/Atheros) [MANUAL] BTATH_A2DP Service system32\drivers\btath_avdt.sys (Atheros Bluetooth AVDT driver/Atheros) [MANUAL] btath_avdt Service system32\drivers\btath_bus.sys (Atheros BUS driver/Atheros) [MANUAL] BTATH_BUS Service system32\drivers\btath_hcrp.sys (Atheros HCRP driver/Atheros) [MANUAL] BTATH_HCRP Service system32\DRIVERS\btath_lwflt.sys (Atheros FILTER driver/Atheros) [MANUAL] BTATH_LWFLT Service system32\drivers\btath_rcp.sys (Atheros AVRCP driver/Atheros) [MANUAL] BTATH_RCP Service BTATH_SCO Service system32\DRIVERS\btfilter.sys (BtFilter Driver/Atheros) [MANUAL] BtFilter Service system32\drivers\BthEnum.sys (Bluetooth-Bus-Extender/Microsoft Corporation) [MANUAL] BthEnum Service system32\drivers\bthmodem.sys (Bluetooth Communications Driver/Microsoft Corporation) [MANUAL] BTHMODEM Service system32\DRIVERS\bthpan.sys (Bluetooth Personal Area Networking/Microsoft Corporation) [MANUAL] BthPan Service System32\Drivers\BTHport.sys (Bluetooth-Bustreiber/Microsoft Corporation) [MANUAL] BTHPORT Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] bthserv Service System32\Drivers\BTHUSB.sys (Bluetooth-Miniporttreiber/Microsoft Corporation) [MANUAL] BTHUSB Service system32\DRIVERS\cdfs.sys (CD-ROM File System Driver/Microsoft Corporation) [DISABLED] cdfs Service system32\drivers\cdrom.sys (SCSI CD-ROM Driver/Microsoft Corporation) [SYSTEM] cdrom Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] CertPropSvc Service system32\drivers\circlass.sys (Consumer IR Class Driver for eHome/Microsoft Corporation) [MANUAL] circlass Service System32\CLFS.sys [BOOT] CLFS Service C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (.NET Runtime Optimization Service/Microsoft Corporation) [DISABLED] clr_optimization_v2.0.50727_32 Service C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe (.NET Runtime Optimization Service/Microsoft Corporation) [DISABLED] clr_optimization_v2.0.50727_64 Service C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (.NET Runtime Optimization Service/Microsoft Corporation) [AUTO] clr_optimization_v4.0.30319_32 Service C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe (.NET Runtime Optimization Service/Microsoft Corporation) [AUTO] clr_optimization_v4.0.30319_64 Service system32\drivers\CmBatt.sys [MANUAL] CmBatt Service system32\drivers\cmdide.sys [MANUAL] cmdide Service System32\Drivers\cng.sys [BOOT] CNG Service system32\drivers\CHDRT64.sys [MANUAL] CnxtHdAudService Service system32\drivers\compbatt.sys [BOOT] Compbatt Service system32\drivers\CompositeBus.sys [MANUAL] CompositeBus Service C:\Windows\system32\dllhost.exe (COM Surrogate/Microsoft Corporation) [MANUAL] COMSysApp Service system32\drivers\crcdisk.sys [DISABLED] crcdisk Service crypt32 Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [AUTO] CryptSvc Service C:\Program Files\Sony\VAIO Smart Network\WFDA\DCDhcpService.exe (Atheros DirectConnect DHCP Service/Atheros Communication Inc.) [MANUAL] DCDhcpService Service DCLocator Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [AUTO] DcomLaunch Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] defragsvc Service System32\Drivers\dfsc.sys [SYSTEM] DfsC Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [AUTO] Dhcp Service System32\drivers\discache.sys [SYSTEM] discache Service system32\drivers\disk.sys [BOOT] Disk Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [AUTO] Dnscache Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] dot3svc Service C:\Windows\System32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [AUTO] DPS Service system32\drivers\drmkaud.sys [MANUAL] drmkaud Service System32\drivers\dxgkrnl.sys [MANUAL] DXGKrnl Service system32\DRIVERS\e1y60x64.sys [MANUAL] e1yexpress Service C:\Windows\System32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] EapHost Service system32\drivers\evbda.sys [MANUAL] ebdrv Service C:\Windows\System32\lsass.exe (Local Security Authority Process/Microsoft Corporation) [MANUAL] EFS Service C:\Windows\ehome\ehRecvr.exe (Windows Media Center-Empfängerdienst/Microsoft Corporation) [MANUAL] ehRecvr Service C:\Windows\ehome\ehsched.exe (Windows Media Center-Planerdienst/Microsoft Corporation) [MANUAL] ehSched Service system32\drivers\elxstor.sys [MANUAL] elxstor Service system32\drivers\errdev.sys [MANUAL] ErrDev Service ESENT Service C:\Windows\System32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [AUTO] eventlog Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [AUTO] EventSystem Service [MANUAL] exfat Service C:\SystemRoot\System32\Drivers\f03f375b4aa00e1d.sys (*** hidden *** ) [BOOT] f03f375b4aa00e1d <-- ROOTKIT !!! Service [MANUAL] fastfat Service C:\Windows\system32\fxssvc.exe (Fax Service/Microsoft Corporation) [MANUAL] Fax Service system32\drivers\fdc.sys [MANUAL] fdc Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] fdPHost Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [AUTO] FDResPub Service system32\drivers\fileinfo.sys [BOOT] FileInfo Service system32\drivers\filetrace.sys [MANUAL] Filetrace Service system32\drivers\flpydisk.sys [MANUAL] flpydisk Service system32\drivers\fltmgr.sys [BOOT] FltMgr Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [AUTO] FontCache Service C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe (PresentationFontCache.exe/Microsoft Corporation) [MANUAL] FontCache3.0.0.0 Service System32\drivers\FsDepends.sys [MANUAL] FsDepends Service [BOOT] Fs_Rec Service System32\DRIVERS\fvevol.sys [BOOT] fvevol Service system32\drivers\gagp30kx.sys [MANUAL] gagp30kx Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [AUTO] gpsvc Service system32\drivers\hcw85cir.sys [MANUAL] hcw85cir Service system32\drivers\HdAudio.sys [MANUAL] HdAudAddService Service system32\drivers\HDAudBus.sys [MANUAL] HDAudBus Service system32\drivers\HidBatt.sys [MANUAL] HidBatt Service system32\drivers\hidbth.sys [MANUAL] HidBth Service system32\drivers\hidir.sys [MANUAL] HidIr Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] hidserv Service system32\DRIVERS\hidusb.sys [MANUAL] HidUsb Service C:\Windows\System32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] hkmsvc Service C:\Windows\System32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] HomeGroupListener Service C:\Windows\System32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] HomeGroupProvider Service system32\drivers\HpSAMD.sys [MANUAL] HpSAMD Service system32\drivers\HTTP.sys [MANUAL] HTTP Service System32\drivers\hwpolicy.sys [BOOT] hwpolicy Service system32\DRIVERS\i8042prt.sys [MANUAL] i8042prt Service ialm Service system32\drivers\iaStor.sys [BOOT] iaStor Service C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (IAStorDataSvc/Intel Corporation) [AUTO] IAStorDataMgrSvc Service system32\drivers\iaStorV.sys [MANUAL] iaStorV Service C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe (Realtek Card Reader Icon Tool./Realsil Microelectronics Inc.) [AUTO] IconMan_R Service C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe (Windows CardSpace/Microsoft Corporation) [MANUAL] idsvc Service system32\DRIVERS\igdkmd64.sys [MANUAL] igfx Service system32\drivers\iirsp.sys [MANUAL] iirsp Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [AUTO] IKEEXT Service inetaccs Service system32\DRIVERS\IntcDAud.sys [MANUAL] IntcDAud Service system32\drivers\intelide.sys [MANUAL] intelide Service system32\drivers\intelppm.sys [MANUAL] intelppm Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] IPBusEnum Service system32\DRIVERS\ipfltdrv.sys [MANUAL] IpFilterDriver Service C:\Windows\System32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [AUTO] iphlpsvc Service system32\drivers\IPMIDrv.sys [MANUAL] IPMIDRV Service System32\drivers\ipnat.sys [MANUAL] IPNAT Service system32\drivers\irenum.sys [MANUAL] IRENUM Service system32\drivers\isapnp.sys [MANUAL] isapnp Service system32\drivers\msiscsi.sys [MANUAL] iScsiPrt Service system32\drivers\kbdclass.sys [MANUAL] kbdclass Service system32\drivers\kbdhid.sys [MANUAL] kbdhid Service C:\Windows\system32\lsass.exe (Local Security Authority Process/Microsoft Corporation) [MANUAL] KeyIso Service System32\Drivers\ksecdd.sys [BOOT] KSecDD Service System32\Drivers\ksecpkg.sys [BOOT] KSecPkg Service system32\drivers\ksthunk.sys [MANUAL] ksthunk Service C:\Windows\System32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] KtmRm Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [AUTO] LanmanServer Service C:\Windows\System32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [AUTO] LanmanWorkstation Service ldap Service system32\DRIVERS\lltdio.sys [AUTO] lltdio Service C:\Windows\System32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] lltdsvc Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [AUTO] lmhosts Service C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Local Manageability Service/Intel Corporation) [AUTO] LMS Service Lsa Service system32\drivers\lsi_fc.sys [MANUAL] LSI_FC Service system32\drivers\lsi_sas.sys [MANUAL] LSI_SAS Service system32\drivers\lsi_sas2.sys [MANUAL] LSI_SAS2 Service system32\drivers\lsi_scsi.sys [MANUAL] LSI_SCSI Service system32\drivers\luafv.sys [AUTO] luafv Service C:\Windows\system32\drivers\mbam.sys ( Malwarebytes Anti-Malware /Malwarebytes Corporation) [MANUAL] MBAMProtector Service C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe ( Malwarebytes Anti-Malware /Malwarebytes Corporation) [AUTO] MBAMService Service C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe [AUTO] McMPFSvc Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [DISABLED] Mcx2Svc Service system32\drivers\megasas.sys [MANUAL] megasas Service system32\drivers\MegaSR.sys [MANUAL] MegaSR Service system32\drivers\HECIx64.sys [MANUAL] MEIx64 Service C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe (Groove Audit Service/Microsoft Corporation) [MANUAL] Microsoft Office Groove Audit Service Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [AUTO] MMCSS Service system32\drivers\modem.sys [MANUAL] Modem Service system32\DRIVERS\monitor.sys [MANUAL] monitor Service system32\DRIVERS\mouclass.sys [MANUAL] mouclass Service system32\DRIVERS\mouhid.sys [MANUAL] mouhid Service System32\drivers\mountmgr.sys [BOOT] mountmgr Service C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe (Mozilla Foundation) [MANUAL] MozillaMaintenance Service system32\drivers\mpio.sys [MANUAL] mpio Service C:\Windows\system32\drivers\mpotpyrk.sys [SYSTEM] mpotpyrk Service System32\drivers\mpsdrv.sys [MANUAL] mpsdrv Service system32\drivers\mrxdav.sys [MANUAL] MRxDAV Service system32\DRIVERS\mrxsmb.sys [MANUAL] mrxsmb Service system32\DRIVERS\mrxsmb10.sys [MANUAL] mrxsmb10 Service system32\DRIVERS\mrxsmb20.sys [MANUAL] mrxsmb20 Service system32\drivers\msahci.sys [MANUAL] msahci Service system32\drivers\msdsm.sys [MANUAL] msdsm Service C:\Windows\System32\msdtc.exe (Microsoft Distributed Transaction Coordinator-Dienst/Microsoft Corporation) [MANUAL] MSDTC Service MSDTC Bridge 3.0.0.0 Service MSDTC Bridge 4.0.0.0 Service [SYSTEM] Msfs Service System32\drivers\mshidkmdf.sys [MANUAL] mshidkmdf Service system32\drivers\msisadrv.sys [BOOT] msisadrv Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] MSiSCSI Service C:\Windows\system32\msiexec.exe (Windows® Installer/Microsoft Corporation) [MANUAL] msiserver Service system32\drivers\MSKSSRV.sys [MANUAL] MSKSSRV Service system32\drivers\MSPCLOCK.sys [MANUAL] MSPCLOCK Service system32\drivers\MSPQM.sys [MANUAL] MSPQM Service [MANUAL] MsRPC Service MSSCNTRS Service system32\drivers\mssmbios.sys [SYSTEM] mssmbios Service system32\drivers\MSTEE.sys [MANUAL] MSTEE Service system32\drivers\MTConfig.sys [MANUAL] MTConfig Service System32\Drivers\mup.sys [BOOT] Mup Service C:\Windows\System32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] napagent Service system32\DRIVERS\nwifi.sys [MANUAL] NativeWifiP Service system32\drivers\ndis.sys [BOOT] NDIS Service system32\DRIVERS\ndiscap.sys [MANUAL] NdisCap Service system32\DRIVERS\ndistapi.sys [MANUAL] NdisTapi Service system32\DRIVERS\ndisuio.sys [MANUAL] Ndisuio Service system32\DRIVERS\ndiswan.sys [MANUAL] NdisWan Service [MANUAL] NDProxy Service system32\DRIVERS\netbios.sys [SYSTEM] NetBIOS Service System32\DRIVERS\netbt.sys [SYSTEM] NetBT Service C:\Windows\system32\lsass.exe (Local Security Authority Process/Microsoft Corporation) [MANUAL] Netlogon Service C:\Windows\System32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] Netman Service C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe (SMSvcHost.exe/Microsoft Corporation) [DISABLED] NetMsmqActivator Service C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe (SMSvcHost.exe/Microsoft Corporation) [DISABLED] NetPipeActivator Service C:\Windows\System32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] netprofm Service C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe (SMSvcHost.exe/Microsoft Corporation) [DISABLED] NetTcpActivator Service C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe (SMSvcHost.exe/Microsoft Corporation) [DISABLED] NetTcpPortSharing Service system32\drivers\nfrd960.sys [MANUAL] nfrd960 Service C:\Windows\System32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [AUTO] NlaSvc Service [SYSTEM] Npfs Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [AUTO] nsi Service system32\drivers\nsiproxy.sys [SYSTEM] nsiproxy Service NTDS Service [MANUAL] Ntfs Service [SYSTEM] Null Service system32\DRIVERS\nvlddmkm.sys [MANUAL] nvlddmkm Service system32\drivers\nvraid.sys [MANUAL] nvraid Service system32\drivers\nvstor.sys [MANUAL] nvstor Service system32\drivers\nv_agp.sys [MANUAL] nv_agp Service C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE (Microsoft Office Diagnostics/Microsoft Corporation) [MANUAL] odserv Service system32\drivers\ohci1394.sys [MANUAL] ohci1394 Service C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE (Office Source Engine/Microsoft Corporation) [MANUAL] ose Service Outlook Service C:\Windows\System32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] p2pimsvc Service C:\Windows\System32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] p2psvc Service system32\drivers\parport.sys [MANUAL] Parport Service System32\drivers\partmgr.sys [BOOT] partmgr Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [AUTO] PcaSvc Service system32\drivers\pci.sys [BOOT] pci Service system32\drivers\pciide.sys [MANUAL] pciide Service system32\drivers\pcmcia.sys [MANUAL] pcmcia Service System32\drivers\pcw.sys [BOOT] pcw Service system32\drivers\peauth.sys [AUTO] PEAUTH Service PerfDisk Service C:\Windows\SysWow64\perfhost.exe (x86-Leistungsindikatorhost/Microsoft Corporation) [MANUAL] PerfHost Service PerfNet Service PerfOS Service PerfProc Service C:\Windows\System32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] pla Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [AUTO] PlugPlay Service C:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe (Device Information Provider/Sony Corporation) [AUTO] PMBDeviceInfoProvider Service C:\Windows\System32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] PNRPAutoReg Service C:\Windows\System32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] PNRPsvc Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] PolicyAgent Service PortProxy Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [AUTO] Power Service system32\DRIVERS\raspptp.sys [MANUAL] PptpMiniport Service system32\drivers\processr.sys [MANUAL] Processor Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [AUTO] ProfSvc Service C:\Windows\system32\lsass.exe (Local Security Authority Process/Microsoft Corporation) [MANUAL] ProtectedStorage Service system32\DRIVERS\pacer.sys [SYSTEM] Psched Service system32\drivers\ql2300.sys [MANUAL] ql2300 Service system32\drivers\ql40xx.sys [MANUAL] ql40xx Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] QWAVE Service system32\drivers\qwavedrv.sys [MANUAL] QWAVEdrv Service System32\DRIVERS\rasacd.sys [MANUAL] RasAcd Service system32\DRIVERS\AgileVpn.sys [MANUAL] RasAgileVpn Service C:\Windows\System32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] RasAuto Service system32\DRIVERS\rasl2tp.sys [MANUAL] Rasl2tp Service C:\Windows\System32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] RasMan Service system32\DRIVERS\raspppoe.sys [MANUAL] RasPppoe Service system32\DRIVERS\rassstp.sys [MANUAL] RasSstp Service system32\DRIVERS\rdbss.sys [SYSTEM] rdbss Service system32\drivers\rdpbus.sys [MANUAL] rdpbus Service System32\DRIVERS\RDPCDD.sys [SYSTEM] RDPCDD Service RDPDD Service system32\drivers\rdpencdd.sys [SYSTEM] RDPENCDD Service RDPNP Service system32\drivers\rdprefmp.sys [SYSTEM] RDPREFMP Service [MANUAL] RDPWD Service System32\drivers\rdyboost.sys [BOOT] rdyboost Service C:\Windows\System32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [DISABLED] RemoteAccess Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [DISABLED] RemoteRegistry Service system32\DRIVERS\rfcomm.sys [MANUAL] RFCOMM Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [AUTO] RpcEptMapper Service C:\Windows\system32\locator.exe (Rpc Locator/Microsoft Corporation) [MANUAL] RpcLocator Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [AUTO] RpcSs Service system32\DRIVERS\RtsPStor.sys [MANUAL] RSPCIESTOR Service system32\DRIVERS\rspndr.sys [AUTO] rspndr Service system32\DRIVERS\Rt64win7.sys [MANUAL] RTL8167 Service C:\Program Files\Sony\VAIO Care\VCPerfService.exe (VAIO Care Performance Service/Sony Corporation) [AUTO] SampleCollector Service C:\Windows\system32\lsass.exe (Local Security Authority Process/Microsoft Corporation) [AUTO] SamSs Service system32\drivers\sbp2port.sys [MANUAL] sbp2port Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] SCardSvr Service System32\DRIVERS\scfilter.sys [MANUAL] scfilter Service C:\Windows\System32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [AUTO] Schedule Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] SCPolicySvc Service system32\DRIVERS\sdbus.sys [MANUAL] sdbus Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] SDRSVC Service C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE (Microsoft SeaPort Search Enhancement Broker/Microsoft Corporation) [AUTO] SeaPort Service [AUTO] secdrv Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] seclogon Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [AUTO] SENS Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] SensrSvc Service system32\drivers\serenum.sys [MANUAL] Serenum Service system32\drivers\serial.sys [MANUAL] Serial Service system32\drivers\sermouse.sys [MANUAL] sermouse Service ServiceModelEndpoint 3.0.0.0 Service ServiceModelOperation 3.0.0.0 Service ServiceModelService 3.0.0.0 Service C:\Windows\System32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] SessionEnv Service system32\drivers\SFEP.sys [MANUAL] SFEP Service system32\drivers\sffdisk.sys [MANUAL] sffdisk Service system32\drivers\sffp_mmc.sys [MANUAL] sffp_mmc Service system32\drivers\sffp_sd.sys [MANUAL] sffp_sd Service system32\drivers\sfloppy.sys [MANUAL] sfloppy Service SharedAccess Service C:\Windows\System32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [AUTO] ShellHWDetection Service system32\drivers\SiSRaid2.sys [MANUAL] SiSRaid2 Service system32\drivers\sisraid4.sys [MANUAL] SiSRaid4 Service system32\DRIVERS\smb.sys [MANUAL] Smb Service SMSvcHost 3.0.0.0 Service SMSvcHost 4.0.0.0 Service C:\Windows\System32\snmptrap.exe (SNMP-Trap/Microsoft Corporation) [MANUAL] SNMPTRAP Service C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe (VAIO Content Importer/Sony Corporation) [MANUAL] SOHCImp Service C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe (VAIO Device Searcher/Sony Corporation) [MANUAL] SOHDs Service C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\SPF\SpfService64.exe (VAIO Entertainment Common Service/Sony Corporation) [MANUAL] SpfService Service [BOOT] spldr Service C:\Windows\System32\spoolsv.exe (Spoolersubsystem-Anwendung/Microsoft Corporation) [AUTO] Spooler Service C:\Windows\system32\sppsvc.exe (Softwareschutzplattform-Dienst von Microsoft/Microsoft Corporation) [AUTO] sppsvc Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] sppuinotify Service System32\DRIVERS\srv.sys [MANUAL] srv Service System32\DRIVERS\srv2.sys [MANUAL] srv2 Service System32\DRIVERS\srvnet.sys [MANUAL] srvnet Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] SSDPSRV Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] SstpSvc Service system32\drivers\stexstor.sys [MANUAL] stexstor Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [AUTO] stisvc Service system32\drivers\swenum.sys [MANUAL] swenum Service C:\Windows\System32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] swprv Service C:\Windows\Installer\{59C14EBC-E371-A8AB-3464-EE33142DE6C5}\syshost.exe (*** hidden *** ) [AUTO] syshost32 <-- ROOTKIT !!! Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [AUTO] SysMain Service C:\Windows\System32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] TabletInputService Service C:\Windows\System32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] TapiSrv Service C:\Windows\System32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] TBS Service System32\drivers\tcpip.sys [BOOT] Tcpip Service system32\DRIVERS\tcpip.sys [MANUAL] TCPIP6 Service TCPIP6TUNNEL Service System32\drivers\tcpipreg.sys [AUTO] tcpipreg Service TCPIPTUNNEL Service system32\drivers\tdpipe.sys [MANUAL] TDPIPE Service system32\drivers\tdtcp.sys [MANUAL] TDTCP Service system32\DRIVERS\tdx.sys [SYSTEM] tdx Service system32\drivers\termdd.sys [SYSTEM] TermDD Service C:\Windows\System32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] TermService Service C:\Windows\System32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [AUTO] Themes Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] THREADORDER Service C:\Windows\System32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [AUTO] TrkWks Service C:\Windows\servicing\TrustedInstaller.exe (Windows Modules Installer/Microsoft Corporation) [MANUAL] TrustedInstaller Service TSDDD Service System32\DRIVERS\tssecsrv.sys [MANUAL] tssecsrv Service system32\drivers\tsusbflt.sys [MANUAL] TsUsbFlt Service system32\drivers\TsUsbGD.sys [MANUAL] TsUsbGD Service C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesService64.exe (TuneUp Utilities Service/TuneUp Software) [AUTO] TuneUp.UtilitiesSvc Service C:\??\C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesDriver64.sys [MANUAL] TuneUpUtilitiesDrv Service system32\DRIVERS\tunnel.sys [MANUAL] tunnel Service system32\drivers\uagp35.sys [MANUAL] uagp35 Service C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe (MgiSvr/ArcSoft, Inc.) [AUTO] uCamMonitor Service system32\DRIVERS\udfs.sys [DISABLED] udfs Service UGatherer Service UGTHRSVC Service C:\Windows\system32\UI0Detect.exe (Erkennung interaktiver Dienste/Microsoft Corporation) [MANUAL] UI0Detect Service system32\drivers\uliagpkx.sys [MANUAL] uliagpkx Service system32\DRIVERS\umbus.sys [MANUAL] umbus Service system32\drivers\umpass.sys [MANUAL] UmPass Service C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (User Notification Service/Intel Corporation) [AUTO] UNS Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] upnphost Service system32\DRIVERS\usbccgp.sys [MANUAL] usbccgp Service system32\drivers\usbcir.sys [MANUAL] usbcir Service system32\drivers\usbehci.sys [MANUAL] usbehci Service system32\drivers\usbhub.sys [MANUAL] usbhub Service system32\drivers\usbohci.sys [MANUAL] usbohci Service system32\DRIVERS\usbprint.sys [MANUAL] usbprint Service system32\DRIVERS\usbscan.sys [MANUAL] usbscan Service system32\DRIVERS\USBSTOR.SYS [MANUAL] USBSTOR Service system32\drivers\usbuhci.sys [MANUAL] usbuhci Service System32\Drivers\usbvideo.sys [MANUAL] usbvideo Service C:\Windows\System32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [AUTO] UxSms Service C:\Windows\System32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [AUTO] UxTuneUp Service C:\Program Files (x86)\Sony\VAIO Event Service\VESMgr.exe (VAIO Event Service (Service Module)/Sony Corporation) [AUTO] VAIO Event Service Service C:\Windows\system32\lsass.exe (Local Security Authority Process/Microsoft Corporation) [MANUAL] VaultSvc Service C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe (VAIO Content Folder Watcher/Sony Corporation) [MANUAL] VCFw Service C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe (VCM Intelligent Analyzing Manager/Sony Corporation) [MANUAL] VcmIAlzMgr Service C:\Program Files\Sony\VCM Intelligent Network Service Manager\VcmINSMgr.exe (VCM Intelligent Network Service Manager/Sony Corporation) [MANUAL] VcmINSMgr Service C:\Program Files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper64.exe (VcmXml Helper Interface/Sony Corporation) [MANUAL] VcmXmlIfHelper Service C:\Program Files\Sony\VAIO Care\VCService.exe (VAIOCare/Sony Corporation) [MANUAL] VCService Service system32\drivers\vdrvroot.sys [BOOT] vdrvroot Service C:\Windows\System32\vds.exe (Virtueller Datenträgerdienst/Microsoft Corporation) [MANUAL] vds Service system32\DRIVERS\vgapnp.sys [MANUAL] vga Service System32\drivers\vga.sys [SYSTEM] VgaSave Service system32\drivers\vhdmp.sys [MANUAL] vhdmp Service system32\drivers\viaide.sys [MANUAL] viaide Service system32\drivers\volmgr.sys [BOOT] volmgr Service System32\drivers\volmgrx.sys [BOOT] volmgrx Service system32\drivers\volsnap.sys [BOOT] volsnap Service system32\drivers\vsmraid.sys [MANUAL] vsmraid Service C:\Program Files\Sony\VAIO Smart Network\VSNService.exe (VAIO Smart Network Service/Sony Corporation) [AUTO] VSNService Service C:\Windows\system32\vssvc.exe (Microsoft® Volumeschattenkopie-Dienst/Microsoft Corporation) [MANUAL] VSS Service C:\Program Files\Sony\VAIO Update Common\VUAgent.exe (VUAgent.exe/Sony Corporation) [MANUAL] VUAgent Service system32\DRIVERS\vwifibus.sys [MANUAL] vwifibus Service system32\DRIVERS\vwififlt.sys [SYSTEM] vwififlt Service system32\DRIVERS\vwifimp.sys [MANUAL] vwifimp Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] W32Time Service W3SVC Service system32\drivers\wacompen.sys [MANUAL] WacomPen Service system32\DRIVERS\wanarp.sys [MANUAL] WANARP Service system32\DRIVERS\wanarp.sys [SYSTEM] Wanarpv6 Service C:\Windows\system32\wbengine.exe (EXE-Datei für Microsoft®-Blockebenen-Sicherungsmodul/Microsoft Corporation) [MANUAL] wbengine Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] WbioSrvc Service C:\Windows\System32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] wcncsvc Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] WcsPlugInService Service system32\drivers\wd.sys [BOOT] Wd Service system32\drivers\Wdf01000.sys [BOOT] Wdf01000 Service C:\Windows\System32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] WdiServiceHost Service C:\Windows\System32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] WdiSystemHost Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] WebClient Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] Wecsvc Service C:\Windows\System32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] wercplsupport Service C:\Windows\System32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] WerSvc Service system32\DRIVERS\wfplwf.sys [SYSTEM] WfpLwf Service C:\Windows\system32\drivers\wimmount.sys [MANUAL] WIMMount Service C:\Windows\System32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [AUTO] WinDefend Service Windows Workflow Foundation 3.0.0.0 Service Windows Workflow Foundation 4.0.0.0 Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] WinHttpAutoProxySvc Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [AUTO] Winmgmt Service C:\Windows\System32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] WinRM Service [MANUAL] Winsock Service WinSock2 Service system32\DRIVERS\WinUsb.sys [MANUAL] WinUsb Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [AUTO] Wlansvc Service C:\Program Files\Windows Live\Mesh\wlcrasvc.exe (Windows Live Mesh Remote Desktop Service/Microsoft Corporation) [DISABLED] wlcrasvc Service C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (Microsoft® Windows Live ID Service/Microsoft Corp.) [AUTO] wlidsvc Service system32\drivers\wmiacpi.sys [MANUAL] WmiAcpi Service WmiApRpl Service C:\Windows\system32\wbem\WmiApSrv.exe (Adapter für den WMI-Leistungsreverseadapter/Microsoft Corporation) [MANUAL] wmiApSrv Service C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe [AUTO] WMPNetworkSvc Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] WPCSvc Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] WPDBusEnum Service system32\drivers\ws2ifsl.sys [SYSTEM] ws2ifsl Service C:\Windows\System32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [AUTO] wscsvc Service C:\Windows\system32\SearchIndexer.exe (Microsoft Windows Search-Indexerstellung/Microsoft Corporation) [AUTO] WSearch Service WSearchIdxPi Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [AUTO] wuauserv Service system32\drivers\WudfPf.sys [MANUAL] WudfPf Service system32\DRIVERS\WUDFRd.sys [MANUAL] WUDFRd Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [AUTO] wudfsvc Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] WwanSvc Service xmlprov Service {60B00061-33FB-47DE-B7D3-A6BB4B04C0FE} Service {6500FF66-A527-483E-BAEE-E230BB665EE8} Service {8DCAEEEC-A5DF-40AE-B6AF-0BEB9899454C} Service {CEFBB5C8-6FE5-4302-8842-C771B9ABBC85} Service {D26F3AA9-54BE-4CFD-AFD3-17761165EE1A} ---- EOF - GMER 1.0.15 ---- Code:
ATTFilter Report of OSAM: Autorun Manager v5.0.11926.0 hxxp://www.online-solutions.ru/en/ Saved at 16:37:44 on 07.06.2012 OS: Windows 7 Home Premium Edition Service Pack 1 (Build 7601), 64-bit Default Browser: Mozilla Corporation Firefox 12.0 Scanner Settings [x] Rootkits detection (hidden registry) [x] Rootkits detection (hidden files) [x] Retrieve files information [x] Check Microsoft signatures Filters [ ] Trusted entries [ ] Empty entries [x] Hidden registry entries (rootkit activity) [x] Exclusively opened files [x] Not found files [x] Files without detailed information [x] Existing files [ ] Non-startable services [ ] Non-startable drivers [x] Active entries [x] Disabled entries [Control Panel Objects] -----( HKLM\Software\Microsoft\Windows\CurrentVersion\Control Panel\Cpls )----- "mlcfg32.cpl" - "Microsoft Corporation" - C:\PROGRA~2\MICROS~4\Office12\MLCFG32.CPL [Drivers] -----( HKLM\SYSTEM\CurrentControlSet\Services )----- "%TsUsbGD.DeviceDesc.Generic%" (TsUsbGD) - ? - C:\Windows\system32\drivers\TsUsbGD.sys (File not found) "@%systemroot%\system32\appidsvc.dll,-102" (AppID) - ? - C:\Windows\system32\drivers\appid.sys (File not found) "@%SystemRoot%\system32\bridgeres.dll,-1" (BridgeMP) - ? - C:\Windows\System32\DRIVERS\bridge.sys (File not found) "@%systemroot%\system32\browser.dll,-102" (bowser) - ? - C:\Windows\System32\DRIVERS\bowser.sys (File not found) "@%SystemRoot%\system32\clfs.sys,-100" (CLFS) - ? - C:\Windows\System32\CLFS.sys (File not found) "@%systemroot%\system32\drivers\afd.sys,-1000" (AFD) - ? - C:\Windows\system32\drivers\afd.sys (File not found) "@%systemroot%\system32\drivers\dfsc.sys,-101" (DfsC) - ? - C:\Windows\System32\Drivers\dfsc.sys (File not found) "@%systemroot%\system32\drivers\discache.sys,-102" (discache) - ? - C:\Windows\System32\drivers\discache.sys (File not found) "@%SystemRoot%\system32\drivers\fileinfo.sys,-100" (FileInfo) - ? - C:\Windows\System32\drivers\fileinfo.sys (File not found) "@%SystemRoot%\system32\drivers\filetrace.sys,-10001" (Filetrace) - ? - C:\Windows\System32\drivers\filetrace.sys (File not found) "@%SystemRoot%\system32\drivers\fltmgr.sys,-10001" (FltMgr) - ? - C:\Windows\System32\drivers\fltmgr.sys (File not found) "@%SystemRoot%\system32\drivers\fsdepends.sys,-10001" (FsDepends) - ? - C:\Windows\System32\drivers\FsDepends.sys (File not found) "@%SystemRoot%\system32\drivers\fvevol.sys,-100" (fvevol) - ? - C:\Windows\System32\DRIVERS\fvevol.sys (File not found) "@%SystemRoot%\system32\drivers\http.sys,-1" (HTTP) - ? - C:\Windows\System32\drivers\HTTP.sys (File not found) "@%systemroot%\system32\drivers\hwpolicy.sys,-101" (hwpolicy) - ? - C:\Windows\System32\drivers\hwpolicy.sys (File not found) "@%SystemRoot%\system32\drivers\irenum.sys,-100" (IRENUM) - ? - C:\Windows\System32\drivers\irenum.sys (File not found) "@%systemroot%\system32\drivers\luafv.sys,-100" (luafv) - ? - C:\Windows\system32\drivers\luafv.sys (File not found) "@%SystemRoot%\system32\drivers\mountmgr.sys,-100" (mountmgr) - ? - C:\Windows\System32\drivers\mountmgr.sys (File not found) "@%SystemRoot%\system32\drivers\mshidkmdf.sys,-100" (mshidkmdf) - ? - C:\Windows\System32\drivers\mshidkmdf.sys (File not found) "@%systemroot%\system32\drivers\mup.sys,-101" (Mup) - ? - C:\Windows\System32\Drivers\mup.sys (File not found) "@%SystemRoot%\system32\drivers\ndis.sys,-200" (NDIS) - ? - C:\Windows\System32\drivers\ndis.sys (File not found) "@%SystemRoot%\system32\drivers\netbt.sys,-2" (NetBT) - ? - C:\Windows\System32\DRIVERS\netbt.sys (File not found) "@%SystemRoot%\system32\drivers\nsiproxy.sys,-2" (nsiproxy) - ? - C:\Windows\System32\drivers\nsiproxy.sys (File not found) "@%SystemRoot%\System32\drivers\pacer.sys,-101" (Psched) - ? - C:\Windows\System32\DRIVERS\pacer.sys (File not found) "@%SystemRoot%\system32\drivers\partmgr.sys,-100" (partmgr) - ? - C:\Windows\System32\drivers\partmgr.sys (File not found) "@%SystemRoot%\system32\drivers\qwavedrv.sys,-1" (QWAVEdrv) - ? - C:\Windows\system32\drivers\qwavedrv.sys (File not found) "@%systemroot%\system32\DRIVERS\RDPCDD.sys,-100" (RDPCDD) - ? - C:\Windows\System32\DRIVERS\RDPCDD.sys (File not found) "@%systemroot%\system32\drivers\RDPENCDD.sys,-101" (RDPENCDD) - ? - C:\Windows\System32\drivers\rdpencdd.sys (File not found) "@%systemroot%\system32\drivers\RdpRefMp.sys,-101" (RDPREFMP) - ? - C:\Windows\System32\drivers\rdprefmp.sys (File not found) "@%SystemRoot%\System32\drivers\scfilter.sys,-11" (scfilter) - ? - C:\Windows\System32\DRIVERS\scfilter.sys (File not found) "@%SystemRoot%\System32\DRIVERS\tssecsrv.sys,-101" (tssecsrv) - ? - C:\Windows\System32\DRIVERS\tssecsrv.sys (File not found) "@%SystemRoot%\system32\drivers\tsusbflt.sys,-1000" (TsUsbFlt) - ? - C:\Windows\System32\drivers\tsusbflt.sys (File not found) "@%SystemRoot%\system32\drivers\volmgrx.sys,-100" (volmgrx) - ? - C:\Windows\System32\drivers\volmgrx.sys (File not found) "@%systemroot%\System32\drivers\ws2ifsl.sys,-1000" (ws2ifsl) - ? - C:\Windows\system32\drivers\ws2ifsl.sys (File not found) "@%SystemRoot%\system32\FirewallAPI.dll,-23092" (mpsdrv) - ? - C:\Windows\System32\drivers\mpsdrv.sys (File not found) "@%systemroot%\system32\rascfg.dll,-32000" (AsyncMac) - ? - C:\Windows\System32\DRIVERS\asyncmac.sys (File not found) "@%systemroot%\system32\rascfg.dll,-32001" (NdisTapi) - ? - C:\Windows\System32\DRIVERS\ndistapi.sys (File not found) "@%systemroot%\system32\rascfg.dll,-32002" (NdisWan) - ? - C:\Windows\System32\DRIVERS\ndiswan.sys (File not found) "@%systemroot%\system32\rascfg.dll,-32005" (Rasl2tp) - ? - C:\Windows\System32\DRIVERS\rasl2tp.sys (File not found) "@%systemroot%\system32\rascfg.dll,-32006" (PptpMiniport) - ? - C:\Windows\System32\DRIVERS\raspptp.sys (File not found) "@%systemroot%\system32\rascfg.dll,-32007" (RasPppoe) - ? - C:\Windows\System32\DRIVERS\raspppoe.sys (File not found) "@%systemroot%\system32\rascfg.dll,-32011" (WANARP) - ? - C:\Windows\System32\DRIVERS\wanarp.sys (File not found) "@%systemroot%\system32\rascfg.dll,-32012" (Wanarpv6) - ? - C:\Windows\System32\DRIVERS\wanarp.sys (File not found) "@%systemroot%\system32\rascfg.dll,-32013" (IpFilterDriver) - ? - C:\Windows\System32\DRIVERS\ipfltdrv.sys (File not found) "@%systemroot%\system32\srvsvc.dll,-102" (srv) - ? - C:\Windows\System32\DRIVERS\srv.sys (File not found) "@%systemroot%\system32\srvsvc.dll,-104" (srv2) - ? - C:\Windows\System32\DRIVERS\srv2.sys (File not found) "@%systemroot%\system32\sstpsvc.dll,-202" (RasSstp) - ? - C:\Windows\System32\DRIVERS\rassstp.sys (File not found) "@%SystemRoot%\system32\tcpipcfg.dll,-50003" (Tcpip) - ? - C:\Windows\System32\drivers\tcpip.sys (File not found) "@%SystemRoot%\system32\tcpipcfg.dll,-50004" (tdx) - ? - C:\Windows\System32\DRIVERS\tdx.sys (File not found) "@%SystemRoot%\system32\tcpipcfg.dll,-50005" (Smb) - ? - C:\Windows\System32\DRIVERS\smb.sys (File not found) "@%systemroot%\system32\webclnt.dll,-104" (MRxDAV) - ? - C:\Windows\system32\drivers\mrxdav.sys (File not found) "@%systemroot%\system32\wkssvc.dll,-1000" (rdbss) - ? - C:\Windows\System32\DRIVERS\rdbss.sys (File not found) "@%systemroot%\system32\wkssvc.dll,-1002" (mrxsmb) - ? - C:\Windows\System32\DRIVERS\mrxsmb.sys (File not found) "@%systemroot%\system32\wkssvc.dll,-1004" (mrxsmb10) - ? - C:\Windows\System32\DRIVERS\mrxsmb10.sys (File not found) "@%systemroot%\system32\wkssvc.dll,-1006" (mrxsmb20) - ? - C:\Windows\System32\DRIVERS\mrxsmb20.sys (File not found) "ACPI-Energieanzeigetreiber" (AcpiPmi) - ? - C:\Windows\system32\drivers\acpipmi.sys (File not found) "adp94xx" (adp94xx) - ? - C:\Windows\system32\drivers\adp94xx.sys (File not found) "adpahci" (adpahci) - ? - C:\Windows\system32\drivers\adpahci.sys (File not found) "adpu320" (adpu320) - ? - C:\Windows\system32\drivers\adpu320.sys (File not found) "aliide" (aliide) - ? - C:\Windows\system32\drivers\aliide.sys (File not found) "Alps Pointing-device Filter Driver" (ApfiltrService) - ? - C:\Windows\System32\DRIVERS\Apfiltr.sys (File not found) "AMD K8-Prozessortreiber" (AmdK8) - ? - C:\Windows\system32\drivers\amdk8.sys (File not found) "AMD-Prozessortreiber" (AmdPPM) - ? - C:\Windows\system32\drivers\amdppm.sys (File not found) "amdide" (amdide) - ? - C:\Windows\system32\drivers\amdide.sys (File not found) "amdsata" (amdsata) - ? - C:\Windows\system32\drivers\amdsata.sys (File not found) "amdsbs" (amdsbs) - ? - C:\Windows\system32\drivers\amdsbs.sys (File not found) "amdxata" (amdxata) - ? - C:\Windows\System32\drivers\amdxata.sys (File not found) "Anwenderinfrarotgeräte" (circlass) - ? - C:\Windows\system32\drivers\circlass.sys (File not found) "arc" (arc) - ? - C:\Windows\system32\drivers\arc.sys (File not found) "arcsas" (arcsas) - ? - C:\Windows\system32\drivers\arcsas.sys (File not found) "ArcSoft Magic-I Visual Effect" (ArcSoftKsUFilter) - ? - C:\Windows\System32\DRIVERS\ArcSoftKsUFilter.sys (File not found) "atapi" (atapi) - ? - C:\Windows\system32\drivers\atapi.sys (File not found) "Atheros Bluetooth AVDT Service" (btath_avdt) - ? - C:\Windows\System32\drivers\btath_avdt.sys (File not found) "Atheros Bluetooth Bus" (BTATH_BUS) - ? - C:\Windows\system32\drivers\btath_bus.sys (File not found) "Atheros Extensible Wireless LAN device driver" (athr) - ? - C:\Windows\System32\DRIVERS\athrx.sys (File not found) "Atheros Valkyrie USB BootROM" (ATHDFU) - ? - C:\Windows\System32\Drivers\AthDfu.sys (File not found) "Atheros Virtual Bluetooth Class" (AthBTPort) - ? - C:\Windows\System32\DRIVERS\btath_flt.sys (File not found) "Beep" (Beep) - ? - C:\Windows\system32\drivers\Beep.sys (File not found) "blbdrive" (blbdrive) - ? - C:\Windows\system32\drivers\blbdrive.sys (File not found) "Bluetooth A2DP Audio Driver" (BTATH_A2DP) - ? - C:\Windows\System32\drivers\btath_a2dp.sys (File not found) "Bluetooth AVRCP Device" (BTATH_RCP) - ? - C:\Windows\system32\drivers\btath_rcp.sys (File not found) "Bluetooth HCRP Server driver" (BTATH_HCRP) - ? - C:\Windows\system32\drivers\btath_hcrp.sys (File not found) "Bluetooth LWFLT Device" (BTATH_LWFLT) - ? - C:\Windows\System32\DRIVERS\btath_lwflt.sys (File not found) "Bluetooth-Anforderungsblocktreiber" (BthEnum) - ? - C:\Windows\system32\drivers\BthEnum.sys (File not found) "Bluetooth-Gerät (PAN)" (BthPan) - ? - C:\Windows\System32\DRIVERS\bthpan.sys (File not found) "Bluetooth-Gerät (RFCOMM-Protokoll-TDI)" (RFCOMM) - ? - C:\Windows\System32\DRIVERS\rfcomm.sys (File not found) "Bluetooth-Porttreiber" (BTHPORT) - ? - C:\Windows\System32\Drivers\BTHport.sys (File not found) "Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0" (b57nd60a) - ? - C:\Windows\System32\DRIVERS\b57nd60a.sys (File not found) "Broadcom NetXtreme II 10 GigE VBD" (ebdrv) - ? - C:\Windows\system32\drivers\evbda.sys (File not found) "Broadcom NetXtreme II VBD" (b06bdrv) - ? - C:\Windows\system32\drivers\bxvbda.sys (File not found) "Brother MFC-nur-Fax-Modem (USB)" (BrUsbMdm) - ? - C:\Windows\System32\Drivers\BrUsbMdm.sys (File not found) "Brother MFC-Seriellschnittstellentreiber (WDM)" (Brserid) - ? - C:\Windows\System32\Drivers\Brserid.sys (File not found) "Brother MFC-WDM-Treiber (USB,seriell)" (BrUsbSer) - ? - C:\Windows\System32\Drivers\BrUsbSer.sys (File not found) "Brother USB-Massenspeichertreiber für oberen Filter" (BrFiltUp) - ? - C:\Windows\system32\drivers\BrFiltUp.sys (File not found) "Brother USB-Massenspeichertreiber für unteren Filter" (BrFiltLo) - ? - C:\Windows\system32\drivers\BrFiltLo.sys (File not found) "Brother WDM-Treiber (seriell)" (BrSerWdm) - ? - C:\Windows\System32\Drivers\BrSerWdm.sys (File not found) "BtFilter" (BtFilter) - ? - C:\Windows\System32\DRIVERS\btfilter.sys (File not found) "Busenumeratortreiber für Verbundgeräte" (CompositeBus) - ? - C:\Windows\system32\drivers\CompositeBus.sys (File not found) "CD-ROM-Laufwerktreiber" (cdrom) - ? - C:\Windows\system32\drivers\cdrom.sys (File not found) "cmdide" (cmdide) - ? - C:\Windows\system32\drivers\cmdide.sys (File not found) "CNG" (CNG) - ? - C:\Windows\System32\Drivers\cng.sys (File not found) "Conexant UAA Function Driver for High Definition Audio Service" (CnxtHdAudService) - ? - C:\Windows\System32\drivers\CHDRT64.sys (File not found) "Diskettencontrollertreiber" (fdc) - ? - C:\Windows\system32\drivers\fdc.sys (File not found) "Diskettenlaufwerktreiber" (flpydisk) - ? - C:\Windows\system32\drivers\flpydisk.sys (File not found) "eHome-Infrarotempfänger (USBCIR)" (usbcir) - ? - C:\Windows\system32\drivers\usbcir.sys (File not found) "elxstor" (elxstor) - ? - C:\Windows\system32\drivers\elxstor.sys (File not found) "Enumerator-Treiber für Microsoft Virtual Drive" (vdrvroot) - ? - C:\Windows\System32\drivers\vdrvroot.sys (File not found) "exFAT File System Driver" (exfat) - ? - C:\Windows\system32\drivers\exfat.sys (File not found) "FAT12/16/32 File System Driver" (fastfat) - ? - C:\Windows\system32\drivers\fastfat.sys (File not found) "Fs_Rec" (Fs_Rec) - ? - C:\Windows\system32\drivers\Fs_Rec.sys (File not found) "Hauppauge Consumer Infrared Receiver" (hcw85cir) - ? - C:\Windows\system32\drivers\hcw85cir.sys (File not found) "HID-USV-Akkutreiber" (HidBatt) - ? - C:\Windows\system32\drivers\HidBatt.sys (File not found) "High-Capacity-Diskettenlaufwerk" (sfloppy) - ? - C:\Windows\system32\drivers\sfloppy.sys (File not found) "HpSAMD" (HpSAMD) - ? - C:\Windows\system32\drivers\HpSAMD.sys (File not found) "i8042-Tastatur- und PS/2-Mausanschluss-Treiber" (i8042prt) - ? - C:\Windows\System32\DRIVERS\i8042prt.sys (File not found) "iaStorV" (iaStorV) - ? - C:\Windows\system32\drivers\iaStorV.sys (File not found) "igfx" (igfx) - ? - C:\Windows\System32\DRIVERS\igdkmd64.sys (File not found) "iirsp" (iirsp) - ? - C:\Windows\system32\drivers\iirsp.sys (File not found) "Intel AGP-Bus-Filter" (agp440) - ? - C:\Windows\system32\drivers\agp440.sys (File not found) "Intel AHCI Controller" (iaStor) - ? - C:\Windows\System32\drivers\iaStor.sys (File not found) "Intel(R) Display-Audio" (IntcDAud) - ? - C:\Windows\System32\DRIVERS\IntcDAud.sys (File not found) "Intel(R) Gigabit Network Connections Driver" (e1yexpress) - ? - C:\Windows\System32\DRIVERS\e1y60x64.sys (File not found) "Intel(R) Management Engine Interface" (MEIx64) - ? - C:\Windows\system32\drivers\HECIx64.sys (File not found) "Intel-Prozessortreiber" (intelppm) - ? - C:\Windows\system32\drivers\intelppm.sys (File not found) "intelide" (intelide) - ? - C:\Windows\system32\drivers\intelide.sys (File not found) "IP Network Address Translator" (IPNAT) - ? - C:\Windows\System32\drivers\ipnat.sys (File not found) "IPMIDRV" (IPMIDRV) - ? - C:\Windows\system32\drivers\IPMIDrv.sys (File not found) "isapnp" (isapnp) - ? - C:\Windows\system32\drivers\isapnp.sys (File not found) "iScsiPort-Treiber" (iScsiPrt) - ? - C:\Windows\system32\drivers\msiscsi.sys (File not found) "Kernel Mode Driver Frameworks service" (Wdf01000) - ? - C:\Windows\System32\drivers\Wdf01000.sys (File not found) "Kernel Streaming Thunks" (ksthunk) - ? - C:\Windows\system32\drivers\ksthunk.sys (File not found) "KSecDD" (KSecDD) - ? - C:\Windows\System32\Drivers\ksecdd.sys (File not found) "KSecPkg" (KSecPkg) - ? - C:\Windows\System32\Drivers\ksecpkg.sys (File not found) "Laufwerktreiber" (Disk) - ? - C:\Windows\System32\drivers\disk.sys (File not found) "LDDM Graphics Subsystem" (DXGKrnl) - ? - C:\Windows\System32\drivers\dxgkrnl.sys (File not found) "Link-Layer Topology Discovery Mapper I/O Driver" (lltdio) - ? - C:\Windows\System32\DRIVERS\lltdio.sys (File not found) "Link-Layer Topology Discovery Responder" (rspndr) - ? - C:\Windows\System32\DRIVERS\rspndr.sys (File not found) "LSI_FC" (LSI_FC) - ? - C:\Windows\system32\drivers\lsi_fc.sys (File not found) "LSI_SAS" (LSI_SAS) - ? - C:\Windows\system32\drivers\lsi_sas.sys (File not found) "LSI_SAS2" (LSI_SAS2) - ? - C:\Windows\system32\drivers\lsi_sas2.sys (File not found) "LSI_SCSI" (LSI_SCSI) - ? - C:\Windows\system32\drivers\lsi_scsi.sys (File not found) "Maus-HID-Treiber" (mouhid) - ? - C:\Windows\System32\DRIVERS\mouhid.sys (File not found) "Mausklassentreiber" (mouclass) - ? - C:\Windows\System32\DRIVERS\mouclass.sys (File not found) "MBAMProtector" (MBAMProtector) - "Malwarebytes Corporation" - C:\Windows\system32\drivers\mbam.sys "megasas" (megasas) - ? - C:\Windows\system32\drivers\megasas.sys (File not found) "MegaSR" (MegaSR) - ? - C:\Windows\system32\drivers\MegaSR.sys (File not found) "Microsoft 1.1 UAA-Funktionstreiber für High Definition Audio-Dienst" (HdAudAddService) - ? - C:\Windows\System32\drivers\HdAudio.sys (File not found) "Microsoft ACPI-Treiber" (ACPI) - ? - C:\Windows\System32\drivers\ACPI.sys (File not found) "Microsoft AGPv3.5-Filter" (uagp35) - ? - C:\Windows\system32\drivers\uagp35.sys (File not found) "Microsoft Allgemeiner AGPv3.0-Filter für K8-Prozessorplattformen" (gagp30kx) - ? - C:\Windows\system32\drivers\gagp30kx.sys (File not found) "Microsoft Bluetooth-HID-Miniport" (HidBth) - ? - C:\Windows\system32\drivers\hidbth.sys (File not found) "Microsoft Composite Battery-Treiber" (Compbatt) - ? - C:\Windows\System32\drivers\compbatt.sys (File not found) "Microsoft HID Class-Treiber" (HidUsb) - ? - C:\Windows\System32\DRIVERS\hidusb.sys (File not found) "Microsoft Infrarot-HID-Treiber" (HidIr) - ? - C:\Windows\system32\drivers\hidir.sys (File not found) "Microsoft Input Configuration Driver" (MTConfig) - ? - C:\Windows\system32\drivers\MTConfig.sys (File not found) "Microsoft IPv6 Protocol Driver" (TCPIP6) - ? - C:\Windows\System32\DRIVERS\tcpip.sys (File not found) "Microsoft Monitor-Klassenfunktionstreiber-Dienst" (monitor) - ? - C:\Windows\System32\DRIVERS\monitor.sys (File not found) "Microsoft Proxy für Streaming Clock" (MSPCLOCK) - ? - C:\Windows\System32\drivers\MSPCLOCK.sys (File not found) "Microsoft Proxy für Streaming Quality Manager" (MSPQM) - ? - C:\Windows\System32\drivers\MSPQM.sys (File not found) "Microsoft Standard-USB-Haupttreiber" (usbccgp) - ? - C:\Windows\System32\DRIVERS\usbccgp.sys (File not found) "Microsoft Streaming Service Proxy" (MSKSSRV) - ? - C:\Windows\System32\drivers\MSKSSRV.sys (File not found) "Microsoft Streaming Tee/Sink-to-Sink-Konvertierung" (MSTEE) - ? - C:\Windows\System32\drivers\MSTEE.sys (File not found) "Microsoft Trusted Audio Drivers" (drmkaud) - ? - C:\Windows\System32\drivers\drmkaud.sys (File not found) "Microsoft USB-Druckerklasse" (usbprint) - ? - C:\Windows\System32\DRIVERS\usbprint.sys (File not found) "Microsoft USB-Standardhubtreiber" (usbhub) - ? - C:\Windows\system32\drivers\usbhub.sys (File not found) "Microsoft Virtual WiFi Miniport Service" (vwifimp) - ? - C:\Windows\System32\DRIVERS\vwifimp.sys (File not found) "Microsoft Windows Management Interface for ACPI" (WmiAcpi) - ? - C:\Windows\system32\drivers\wmiacpi.sys (File not found) "Microsoft-Hardwarefehler-Gerätetreiber" (ErrDev) - ? - C:\Windows\system32\drivers\errdev.sys (File not found) "Microsoft-Systemverwaltungs-BIOS-Treiber" (mssmbios) - ? - C:\Windows\system32\drivers\mssmbios.sys (File not found) "Microsoft-Tunnelminiport-Adaptertreiber" (tunnel) - ? - C:\Windows\System32\DRIVERS\tunnel.sys (File not found) "Microsoft-UAA-Bustreiber für High Definition Audio" (HDAudBus) - ? - C:\Windows\system32\drivers\HDAudBus.sys (File not found) "Microsoft-UMPass-Treiber" (UmPass) - ? - C:\Windows\system32\drivers\umpass.sys (File not found) "Miniporttreiber für erweiterten Microsoft USB 2.0-Hostcontroller" (usbehci) - ? - C:\Windows\system32\drivers\usbehci.sys (File not found) "Miniporttreiber für Microsoft USB Open Host-Controller" (usbohci) - ? - C:\Windows\system32\drivers\usbohci.sys (File not found) "Miniporttreiber für universellen Microsoft USB-Hostcontroller" (usbuhci) - ? - C:\Windows\system32\drivers\usbuhci.sys (File not found) "Modem" (Modem) - ? - C:\Windows\System32\drivers\modem.sys (File not found) "mpio" (mpio) - ? - C:\Windows\system32\drivers\mpio.sys (File not found) "mpotpyrk" (mpotpyrk) - ? - C:\Windows\system32\drivers\mpotpyrk.sys (File not found) "msahci" (msahci) - ? - C:\Windows\system32\drivers\msahci.sys (File not found) "msdsm" (msdsm) - ? - C:\Windows\system32\drivers\msdsm.sys (File not found) "Msfs" (Msfs) - ? - C:\Windows\system32\drivers\Msfs.sys (File not found) "msisadrv" (msisadrv) - ? - C:\Windows\System32\drivers\msisadrv.sys (File not found) "MsRPC" (MsRPC) - ? - C:\Windows\system32\drivers\MsRPC.sys (File not found) "NativeWiFi Filter" (NativeWifiP) - ? - C:\Windows\System32\DRIVERS\nwifi.sys (File not found) "NDIS Capture LightWeight Filter" (NdisCap) - ? - C:\Windows\System32\DRIVERS\ndiscap.sys (File not found) "NDIS Usermode I/O Protocol" (Ndisuio) - ? - C:\Windows\System32\DRIVERS\ndisuio.sys (File not found) "NDProxy" (NDProxy) - ? - C:\Windows\system32\drivers\NDProxy.sys (File not found) "NetBIOS Interface" (NetBIOS) - ? - C:\Windows\System32\DRIVERS\netbios.sys (File not found) "nfrd960" (nfrd960) - ? - C:\Windows\system32\drivers\nfrd960.sys (File not found) "Npfs" (Npfs) - ? - C:\Windows\system32\drivers\Npfs.sys (File not found) "Ntfs" (Ntfs) - ? - C:\Windows\system32\drivers\Ntfs.sys (File not found) "Null" (Null) - ? - C:\Windows\system32\drivers\Null.sys (File not found) "NVIDIA nForce AGP-Busfilter" (nv_agp) - ? - C:\Windows\system32\drivers\nv_agp.sys (File not found) "nvlddmkm" (nvlddmkm) - ? - C:\Windows\System32\DRIVERS\nvlddmkm.sys (File not found) "nvraid" (nvraid) - ? - C:\Windows\system32\drivers\nvraid.sys (File not found) "nvstor" (nvstor) - ? - C:\Windows\system32\drivers\nvstor.sys (File not found) "OHCI-konformer 1394-Hostcontroller" (1394ohci) - ? - C:\Windows\system32\drivers\1394ohci.sys (File not found) "OHCI-konformer 1394-Hostcontroller (alt)" (ohci1394) - ? - C:\Windows\system32\drivers\ohci1394.sys (File not found) "PCI-Bus-Treiber" (pci) - ? - C:\Windows\System32\drivers\pci.sys (File not found) "pciide" (pciide) - ? - C:\Windows\system32\drivers\pciide.sys (File not found) "pcmcia" (pcmcia) - ? - C:\Windows\system32\drivers\pcmcia.sys (File not found) "PEAUTH" (PEAUTH) - ? - C:\Windows\System32\drivers\peauth.sys (File not found) "Performance Counters for Windows Driver" (pcw) - ? - C:\Windows\System32\drivers\pcw.sys (File not found) "Prozessortreiber" (Processor) - ? - C:\Windows\system32\drivers\processr.sys (File not found) "ql2300" (ql2300) - ? - C:\Windows\system32\drivers\ql2300.sys (File not found) "ql40xx" (ql40xx) - ? - C:\Windows\system32\drivers\ql40xx.sys (File not found) "RDP Winstation Driver" (RDPWD) - ? - C:\Windows\system32\drivers\RDPWD.sys (File not found) "ReadyBoost" (rdyboost) - ? - C:\Windows\System32\drivers\rdyboost.sys (File not found) "Realtek 8167 NT Driver" (RTL8167) - ? - C:\Windows\System32\DRIVERS\Rt64win7.sys (File not found) "Realtek PCIE CardReader Driver" (RSPCIESTOR) - ? - C:\Windows\System32\DRIVERS\RtsPStor.sys (File not found) "Remote Access Auto Connection Driver" (RasAcd) - ? - C:\Windows\System32\DRIVERS\rasacd.sys (File not found) "Remote Desktop Device Redirector Bus Driver" (rdpbus) - ? - C:\Windows\system32\drivers\rdpbus.sys (File not found) "sbp2port" (sbp2port) - ? - C:\Windows\system32\drivers\sbp2port.sys (File not found) "sdbus" (sdbus) - ? - C:\Windows\System32\DRIVERS\sdbus.sys (File not found) "Security Driver" (secdrv) - ? - C:\Windows\system32\drivers\secdrv.sys (File not found) "Security Processor Loader Driver" (spldr) - ? - C:\Windows\system32\drivers\spldr.sys (File not found) "Serenum-Filtertreiber" (Serenum) - ? - C:\Windows\system32\drivers\serenum.sys (File not found) "Serial" (Serial) - ? - C:\Windows\system32\drivers\serial.sys (File not found) "Serieller Kommunikationstreiber für Bluetooth" (BTHMODEM) - ? - C:\Windows\system32\drivers\bthmodem.sys (File not found) "Serieller Maustreiber" (sermouse) - ? - C:\Windows\system32\drivers\sermouse.sys (File not found) "SFF-Speicherklassentreiber" (sffdisk) - ? - C:\Windows\system32\drivers\sffdisk.sys (File not found) "SFF-Speicherprotokolltreiber für MMC" (sffp_mmc) - ? - C:\Windows\system32\drivers\sffp_mmc.sys (File not found) "SFF-Speicherprotokolltreiber für SDBus" (sffp_sd) - ? - C:\Windows\system32\drivers\sffp_sd.sys (File not found) "SiSRaid2" (SiSRaid2) - ? - C:\Windows\system32\drivers\SiSRaid2.sys (File not found) "SiSRaid4" (SiSRaid4) - ? - C:\Windows\system32\drivers\sisraid4.sys (File not found) "Software-Bus-Treiber" (swenum) - ? - C:\Windows\system32\drivers\swenum.sys (File not found) "Sony Firmware Extension Parser" (SFEP) - ? - C:\Windows\system32\drivers\SFEP.sys (File not found) "Speichervolumes" (volsnap) - ? - C:\Windows\System32\drivers\volsnap.sys (File not found) "srvnet" (srvnet) - ? - C:\Windows\System32\DRIVERS\srvnet.sys (File not found) "stexstor" (stexstor) - ? - C:\Windows\system32\drivers\stexstor.sys (File not found) "syshost.exe" (f03f375b4aa00e1d) - ? - C:\Windows\System32\Drivers\f03f375b4aa00e1d.sys (Hidden registry entry, rootkit activity | File not found) "Tastatur-HID-Treiber" (kbdhid) - ? - C:\Windows\system32\drivers\kbdhid.sys (File not found) "Tastaturklassentreiber" (kbdclass) - ? - C:\Windows\system32\drivers\kbdclass.sys (File not found) "TCP/IP Registry Compatibility" (tcpipreg) - ? - C:\Windows\System32\drivers\tcpipreg.sys (File not found) "TDPIPE" (TDPIPE) - ? - C:\Windows\System32\drivers\tdpipe.sys (File not found) "TDTCP" (TDTCP) - ? - C:\Windows\System32\drivers\tdtcp.sys (File not found) "Terminal-Gerätetreiber" (TermDD) - ? - C:\Windows\system32\drivers\termdd.sys (File not found) "Treiber für Microsoft-ACPI-Kontrollmethodenkompatiblen Akku" (CmBatt) - ? - C:\Windows\system32\drivers\CmBatt.sys (File not found) "Treiber für Microsoft-Überwachungszeitgeber" (Wd) - ? - C:\Windows\System32\drivers\wd.sys (File not found) "Treiber für parallelen Anschluss" (Parport) - ? - C:\Windows\system32\drivers\parport.sys (File not found) "Treiber für Volume-Manager" (volmgr) - ? - C:\Windows\System32\drivers\volmgr.sys (File not found) "TuneUpUtilitiesDrv" (TuneUpUtilitiesDrv) - "TuneUp Software" - C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesDriver64.sys "Uli AGP-Bus-Filter" (uliagpkx) - ? - C:\Windows\system32\drivers\uliagpkx.sys (File not found) "UMBusenumerator-Treiber" (umbus) - ? - C:\Windows\System32\DRIVERS\umbus.sys (File not found) "USB-Massenspeichertreiber" (USBSTOR) - ? - C:\Windows\System32\DRIVERS\USBSTOR.SYS (File not found) "USB-Scannertreiber" (usbscan) - ? - C:\Windows\System32\DRIVERS\usbscan.sys (File not found) "USB-Treiber für Bluetooth-Funkgerät" (BTHUSB) - ? - C:\Windows\System32\Drivers\BTHUSB.sys (File not found) "USB-Videogerät (WDM)" (usbvideo) - ? - C:\Windows\System32\Drivers\usbvideo.sys (File not found) "User Mode Driver Frameworks Platform Driver" (WudfPf) - ? - C:\Windows\System32\drivers\WudfPf.sys (File not found) "vga" (vga) - ? - C:\Windows\System32\DRIVERS\vgapnp.sys (File not found) "VgaSave" (VgaSave) - ? - C:\Windows\System32\drivers\vga.sys (File not found) "vhdmp" (vhdmp) - ? - C:\Windows\system32\drivers\vhdmp.sys (File not found) "viaide" (viaide) - ? - C:\Windows\system32\drivers\viaide.sys (File not found) "Virtual WiFi Filter Driver" (vwififlt) - ? - C:\Windows\System32\DRIVERS\vwififlt.sys (File not found) "Virtueller WiFi-Bustreiber" (vwifibus) - ? - C:\Windows\System32\DRIVERS\vwifibus.sys (File not found) "vsmraid" (vsmraid) - ? - C:\Windows\system32\drivers\vsmraid.sys (File not found) "Wacom HID-Treiber für seriellen Stift" (WacomPen) - ? - C:\Windows\system32\drivers\wacompen.sys (File not found) "WAN Miniport (IKEv2)" (RasAgileVpn) - ? - C:\Windows\System32\DRIVERS\AgileVpn.sys (File not found) "WFP Lightweight Filter" (WfpLwf) - ? - C:\Windows\System32\DRIVERS\wfplwf.sys (File not found) "WIMMount" (WIMMount) - ? - C:\Windows\System32\drivers\wimmount.sys (File not found) "WinUsb" (WinUsb) - ? - C:\Windows\System32\DRIVERS\WinUsb.sys (File not found) "WUDFRd" (WUDFRd) - ? - C:\Windows\System32\DRIVERS\WUDFRd.sys (File not found) [Explorer] -----( HKLM\Software\Classes\Folder\shellex\ColumnHandlers )----- {F9DB5320-233E-11D1-9F84-707F02C10627} "PDF Shell Extension" - "Adobe Systems, Inc." - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\PDFShell.dll -----( HKLM\Software\Classes\Protocols\Filter )----- {807563E5-5146-11D5-A672-00B0D022E945} "Microsoft Office InfoPath XML Mime Filter" - "Microsoft Corporation" - C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL -----( HKLM\Software\Classes\Protocols\Handler )----- {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} "Album Download IE Asynchronous Pluggable Protocol Interface" - "Microsoft Corporation" - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll {314111c7-a502-11d2-bbca-00c04f8ec294} "HxProtocol Class" - "Microsoft Corporation" - C:\Program Files (x86)\Common Files\Microsoft Shared\Help\hxds.dll {828030A1-22C1-4009-854F-8E305202313F} "livecall" - "Microsoft Corporation" - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll {88FED34C-F0CA-4636-A375-3CB6248B04CD} "Local Groove Web Services Protocol" - "Microsoft Corporation" - C:\PROGRA~2\MICROS~4\Office12\GRA32A~1.DLL {828030A1-22C1-4009-854F-8E305202313F} "msnim" - "Microsoft Corporation" - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll {03C514A3-1EFB-4856-9F99-10D7BE1653C0} "Windows Live Mail HTML Asynchronous Pluggable Protocol Handler" - "Microsoft Corporation" - C:\Program Files (x86)\Windows Live\Mail\mailcomm.dll -----( HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks )----- {B5A7F190-DDA6-4420-B3BA-52453494E6CD} "Groove GFS Stub Execution Hook" - "Microsoft Corporation" - C:\PROGRA~2\MICROS~4\Office12\GR469A~1.DLL -----( HKLM\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved )----- {99FD978C-D287-4F50-827F-B2C658EDA8E7} "Groove Explorer Icon Overlay 1 (GFS Unread Stub)" - "Microsoft Corporation" - C:\PROGRA~2\MICROS~4\Office12\GR469A~1.DLL {AB5C5600-7E6E-4B06-9197-9ECEF74D31CC} "Groove Explorer Icon Overlay 2 (GFS Stub)" - "Microsoft Corporation" - C:\PROGRA~2\MICROS~4\Office12\GR469A~1.DLL {920E6DB1-9907-4370-B3A0-BAFC03D81399} "Groove Explorer Icon Overlay 2.5 (GFS Unread Folder)" - "Microsoft Corporation" - C:\PROGRA~2\MICROS~4\Office12\GR469A~1.DLL {16F3DD56-1AF5-4347-846D-7C10C4192619} "Groove Explorer Icon Overlay 3 (GFS Folder)" - "Microsoft Corporation" - C:\PROGRA~2\MICROS~4\Office12\GR469A~1.DLL {2916C86E-86A6-43FE-8112-43ABE6BF8DCC} "Groove Explorer Icon Overlay 4 (GFS Unread Mark)" - "Microsoft Corporation" - C:\PROGRA~2\MICROS~4\Office12\GR469A~1.DLL {2A541AE1-5BF6-4665-A8A3-CFA9672E4291} "Groove Folder Synchronization" - "Microsoft Corporation" - C:\PROGRA~2\MICROS~4\Office12\GR469A~1.DLL {72853161-30C5-4D22-B7F9-0BBC1D38A37E} "Groove GFS Browser Helper" - "Microsoft Corporation" - C:\PROGRA~2\MICROS~4\Office12\GR469A~1.DLL {6C467336-8281-4E60-8204-430CED96822D} "Groove GFS Context Menu Handler" - "Microsoft Corporation" - C:\PROGRA~2\MICROS~4\Office12\GR469A~1.DLL {B5A7F190-DDA6-4420-B3BA-52453494E6CD} "Groove GFS Stub Execution Hook" - "Microsoft Corporation" - C:\PROGRA~2\MICROS~4\Office12\GR469A~1.DLL {A449600E-1DC6-4232-B948-9BD794D62056} "Groove GFS Stub Icon Handler" - "Microsoft Corporation" - C:\PROGRA~2\MICROS~4\Office12\GR469A~1.DLL {387E725D-DC16-4D76-B310-2C93ED4752A0} "Groove XML Icon Handler" - "Microsoft Corporation" - C:\PROGRA~2\MICROS~4\Office12\GR469A~1.DLL {42042206-2D85-11D3-8CFF-005004838597} "Microsoft Office HTML Icon Handler" - "Microsoft Corporation" - C:\Program Files (x86)\Microsoft Office\Office12\msohevi.dll {5858A72C-C2B4-4dd7-B2BF-B76DB1BD9F6C} "Microsoft Office OneNote Namespace Extension for Windows Desktop Search" - "Microsoft Corporation" - C:\PROGRA~2\MICROS~4\Office12\ONFILTER.DLL {00020D75-0000-0000-C000-000000000046} "Microsoft Office Outlook" - "Microsoft Corporation" - C:\PROGRA~2\MICROS~4\Office12\MLSHEXT.DLL {0006F045-0000-0000-C000-000000000046} "Outlook File Icon Extension" - "Microsoft Corporation" - C:\PROGRA~2\MICROS~4\Office12\OLKFSTUB.DLL {4838CD50-7E5D-4811-9B17-C47A85539F28} "TuneUp Disk Space Explorer Shell Extension" - "TuneUp Software" - C:\Program Files (x86)\TuneUp Utilities 2012\DseShExt-x86.dll {4858E7D9-8E12-45a3-B6A3-1CD128C9D403} "TuneUp Shredder Shell Extension" - "TuneUp Software" - C:\Program Files (x86)\TuneUp Utilities 2012\SDShelEx-win32.dll {E6FB5E20-DE35-11CF-9C87-00AA005127ED} "WebCheck" - ? - (File not found | COM-object registry key not found) {2BE99FD4-A181-4996-BFA9-58C5FFD11F6C} "Windows Live Photo Gallery Autoplay Drop Target" - "Microsoft Corporation" - C:\Program Files (x86)\Windows Live\Photo Gallery\WLXPhotoGallery.exe {00F30F64-AC33-42F5-8FD1-5DC2D3FDE06C} "Windows Live Photo Gallery Editor Drop Target" - "Microsoft Corporation" - C:\Program Files (x86)\Windows Live\Photo Gallery\WLXPhotoGallery.exe {00F3712A-CA79-45B4-9E4D-D7891E7F8B9D} "Windows Live Photo Gallery Editor Shim" - "Microsoft Corporation" - C:\Program Files (x86)\Windows Live\Photo Gallery\PhotoViewerShim.dll {00F30F90-3E96-453B-AFCD-D71989ECC2C7} "Windows Live Photo Gallery Viewer Autoplay Shim" - "Microsoft Corporation" - C:\Program Files (x86)\Windows Live\Photo Gallery\PhotoViewerShim.dll {00F33137-EE26-412F-8D71-F84E4C2C6625} "Windows Live Photo Gallery Viewer Autoplay Shim" - "Microsoft Corporation" - C:\Program Files (x86)\Windows Live\Photo Gallery\PhotoViewerShim.dll {00F374B7-B390-4884-B372-2FC349F2172B} "Windows Live Photo Gallery Viewer Drop Target" - "Microsoft Corporation" - C:\Program Files (x86)\Windows Live\Photo Gallery\WLXPhotoGallery.exe {00F346CB-35A4-465B-8B8F-65A29DBAB1F6} "Windows Live Photo Gallery Viewer Shim" - "Microsoft Corporation" - C:\Program Files (x86)\Windows Live\Photo Gallery\PhotoViewerShim.dll {0563DB41-F538-4B37-A92D-4659049B7766} "WLMD Message Handler" - ? - (File not found | COM-object registry key not found) {06A2568A-CED6-4187-BB20-400B8C02BE5A} "{06A2568A-CED6-4187-BB20-400B8C02BE5A}" - "Microsoft Corporation" - C:\Program Files (x86)\Windows Live\Photo Gallery\WLXPhotoAcquireWizard.exe -----( HKLM\Software\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad )----- {E6FB5E20-DE35-11CF-9C87-00AA005127ED} "WebCheck" - ? - (File not found | COM-object registry key not found) [Internet Explorer] -----( HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser )----- ITBar7Height "ITBar7Height" - ? - (File not found | COM-object registry key not found) ITBar7Height64 "ITBar7Height64" - ? - (File not found | COM-object registry key not found) <binary data> "ITBar7Layout" - ? - (File not found | COM-object registry key not found) <binary data> "ITBar7Layout64" - ? - (File not found | COM-object registry key not found) -----( HKLM\SOFTWARE\Microsoft\Code Store Database\Distribution Units )----- {8AD9C840-044E-11D1-B3E9-00805F499D93} "Java Plug-in 1.6.0_22" - "Sun Microsystems, Inc." - C:\Program Files (x86)\Java\jre6\bin\jp2iexp.dll / hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} "Java Plug-in 1.6.0_22" - "Sun Microsystems, Inc." - C:\Program Files (x86)\Java\jre6\bin\jp2iexp.dll / hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} "Java Plug-in 1.6.0_22" - "Sun Microsystems, Inc." - C:\Program Files (x86)\Java\jre6\bin\npjpi160_22.dll / hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab {C3F79A2B-B9B4-4A66-B012-3EE46475B072} "MessengerStatsClient Class" - "Microsoft Corporation" - C:\Windows\Downloaded Program Files\MessengerStatsPAClient.dll / hxxp://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab {5D6F45B3-9043-443D-A792-115447494D24} "UnoCtrl Class" - "Microsoft" - C:\Windows\Downloaded Program Files\GAME_UNO1.dll / hxxp://messenger.zone.msn.com/MessengerGamesContent/GameContent/de/uno1/GAME_UNO1.cab -----( HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions )----- {5F7B1267-94A9-47F5-98DB-E99415F33AEC} "@C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004" - "Microsoft Corporation" - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll {48E73304-E1D6-4330-914C-F5F514E3486C} "An OneNote senden" - "Microsoft Corporation" - C:\PROGRA~2\MICROS~4\Office12\ONBttnIE.dll {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} "ClsidExtension" - "Atheros Commnucations" - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll {FF059E31-CC5A-4E2E-BF3B-96E929D65503} "Research" - "Microsoft Corporation" - C:\PROGRA~2\MICROS~4\Office12\REFIEBAR.DLL -----( HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar )----- {8dcb7100-df86-4384-8842-8fa844297b3f} "Bing Bar" - "Microsoft Corporation." - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll -----( HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects )----- {18DF081C-E8AD-4283-A596-FA578C2EBDC3} "Adobe PDF Link Helper" - "Adobe Systems Incorporated" - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} "CIESpeechBHO Class" - "Atheros Commnucations" - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll {72853161-30C5-4D22-B7F9-0BBC1D38A37E} "Groove GFS Browser Helper" - "Microsoft Corporation" - C:\PROGRA~2\MICROS~4\Office12\GR469A~1.DLL {DBC80044-A445-435b-BC74-9C25C1C588A9} "Java(tm) Plug-In 2 SSV Helper" - "Sun Microsystems, Inc." - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll {9030D464-4C02-4ABF-8ECC-5164760863C6} "Windows Live ID-Anmelde-Hilfsprogramm" - "Microsoft Corp." - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [LSA Providers] -----( HKLM\SYSTEM\CurrentControlSet\Control\Lsa )----- "Security Packages" - "Microsoft Corp." - C:\Windows\system32\livessp.dll [Logon] -----( HKLM\SYSTEM\CurrentControlSet\Control\Terminal Server\Wds\rdpwd )----- "StartupPrograms" - ? - rdpclip (File not found) -----( HKLM\Software\Microsoft\Windows\CurrentVersion\Run )----- "GrooveMonitor" - "Microsoft Corporation" - "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe" "IAStorIcon" - "Intel Corporation" - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe "PMBVolumeWatcher" - "Sony Corporation" - C:\Program Files (x86)\Sony\PMB\PMBVolumeWatcher.exe [Services] -----( HKLM\SYSTEM\CurrentControlSet\Services )----- "@%ProgramFiles%\Windows Defender\MsMpRes.dll,-103" (WinDefend) - ? - C:\Program Files (x86)\Windows Defender\mpsvc.dll (File not found) "@%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101" (WMPNetworkSvc) - ? - "C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe" (File not found) "@%SystemRoot%\System32\uxtuneup.dll,-4096" (UxTuneUp) - "TuneUp Software" - C:\Windows\System32\uxtuneup.dll "Adobe Acrobat Update Service" (AdobeARMservice) - "Adobe Systems Incorporated" - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe "Adobe Flash Player Update Service" (AdobeFlashPlayerUpdateSvc) - "Adobe Systems Incorporated" - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe "ArcSoft Connect Daemon" (ACDaemon) - "ArcSoft Inc." - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe "ASP.NET-Zustandsdienst" (aspnet_state) - "Microsoft Corporation" - C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe "Atheros Bt&Wlan Coex Agent" (Atheros Bt&Wlan Coex Agent) - "Atheros" - C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe "AtherosSvc" (AtherosSvc) - "Atheros Commnucations" - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe "Bing Bar Update Service" (BBSvc) - "Microsoft Corporation." - C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE "CamMonitor" (uCamMonitor) - "ArcSoft, Inc." - C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe "DCDhcpService" (DCDhcpService) - "Atheros Communication Inc." - C:\Program Files\Sony\VAIO Smart Network\WFDA\DCDhcpService.exe "IconMan_R" (IconMan_R) - "Realsil Microelectronics Inc." - C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe "Intel(R) Management and Security Application Local Management Service" (LMS) - "Intel Corporation" - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe "Intel(R) Management and Security Application User Notification Service" (UNS) - "Intel Corporation" - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe "Intel(R) Rapid Storage Technology" (IAStorDataMgrSvc) - "Intel Corporation" - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe "MBAMService" (MBAMService) - "Malwarebytes Corporation" - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe "McAfee Personal Firewall Service" (McMPFSvc) - ? - "C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe" /McCoreSvc (File not found) "Microsoft .NET Framework NGEN v4.0.30319_X64" (clr_optimization_v4.0.30319_64) - "Microsoft Corporation" - C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe "Microsoft .NET Framework NGEN v4.0.30319_X86" (clr_optimization_v4.0.30319_32) - "Microsoft Corporation" - C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe "Microsoft Office Diagnostics Service" (odserv) - "Microsoft Corporation" - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE "Microsoft Office Groove Audit Service" (Microsoft Office Groove Audit Service) - "Microsoft Corporation" - C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe "Mozilla Maintenance Service" (MozillaMaintenance) - "Mozilla Foundation" - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe "Office Source Engine" (ose) - "Microsoft Corporation" - C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE "PMBDeviceInfoProvider" (PMBDeviceInfoProvider) - "Sony Corporation" - C:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe "SeaPort" (SeaPort) - "Microsoft Corporation" - C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE "syshost32" (syshost32) - ? - C:\Windows\Installer\{59C14EBC-E371-A8AB-3464-EE33142DE6C5}\syshost.exe (Hidden registry entry, rootkit activity | File not found) "TuneUp Utilities Service" (TuneUp.UtilitiesSvc) - "TuneUp Software" - C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesService64.exe "VAIO Care Performance Service" (SampleCollector) - "Sony Corporation" - C:\Program Files\Sony\VAIO Care\VCPerfService.exe "VAIO Content Folder Watcher" (VCFw) - "Sony Corporation" - C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe "VAIO Content Importer" (SOHCImp) - "Sony Corporation" - C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe "VAIO Content Metadata Intelligent Analyzing Manager" (VcmIAlzMgr) - "Sony Corporation" - C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe "VAIO Content Metadata Intelligent Network Service Manager" (VcmINSMgr) - "Sony Corporation" - C:\Program Files\Sony\VCM Intelligent Network Service Manager\VcmINSMgr.exe "VAIO Content Metadata XML Interface" (VcmXmlIfHelper) - "Sony Corporation" - C:\Program Files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper64.exe "VAIO Device Searcher" (SOHDs) - "Sony Corporation" - C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe "VAIO Entertainment Common Service" (SpfService) - "Sony Corporation" - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\SPF\SpfService64.exe "VAIO Event Service" (VAIO Event Service) - "Sony Corporation" - C:\Program Files (x86)\Sony\VAIO Event Service\VESMgr.exe "VCService" (VCService) - "Sony Corporation" - C:\Program Files\Sony\VAIO Care\VCService.exe "VSNService" (VSNService) - "Sony Corporation" - C:\Program Files\Sony\VAIO Smart Network\VSNService.exe "VUAgent" (VUAgent) - "Sony Corporation" - C:\Program Files\Sony\VAIO Update Common\VUAgent.exe "Windows Live ID Sign-in Assistant" (wlidsvc) - "Microsoft Corp." - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [Winsock Providers] -----( HKLM\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries )----- "WindowsLive Local NSP" - "Microsoft Corp." - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL "WindowsLive NSP" - "Microsoft Corp." - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL ===[ Logfile end ]=========================================[ Logfile end ]=== If You have questions or want to get some help, You can visit hxxp://forum.online-solutions.ru Code:
ATTFilter aswMBR version 0.9.9.1665 Copyright(c) 2011 AVAST Software
Run date: 2012-06-07 16:44:37
-----------------------------
16:44:37.785 OS Version: Windows x64 6.1.7601 Service Pack 1
16:44:37.785 Number of processors: 4 586 0x2A07
16:44:37.785 ComputerName: ANNA-VAIO UserName: Anna
16:44:37.863 Initialze error C0000001 - driver not loaded
16:44:42.169 AVAST engine defs: 12060700
16:44:46.693 Service scanning
16:44:47.567 Modules scanning
16:44:47.567 Disk 0 trace - called modules:
16:44:47.567
16:44:47.613 AVAST engine scan C:\Windows
16:44:47.660 AVAST engine scan C:\Windows\system32
16:44:47.738 AVAST engine scan C:\Windows\system32\drivers
16:44:47.785 AVAST engine scan C:\Users\Anna
16:44:47.832 AVAST engine scan C:\ProgramData
16:44:47.832 Scan finished successfully
16:45:09.719 The log file has been saved successfully to "C:\Users\Anna\Desktop\aswMBR (1).txt"
|
|
07.06.2012, 15:48
| #20 |
| | Windows Firewall und Windows Update Fehlermeldung 0x80070424 Hier ist der GMER-Log: Code:
ATTFilter GMER 1.0.15.15641 - hxxp://www.gmer.net Rootkit scan 2012-06-07 16:31:49 Windows 6.1.7601 Service Pack 1 Running: novkvsdz.exe ---- Services - GMER 1.0.15 ---- Service .NET CLR Data Service .NET CLR Networking Service .NET CLR Networking 4.0.0.0 Service .NET Data Provider for Oracle Service .NET Data Provider for SqlServer Service .NET Memory Cache 4.0 Service .NETFramework Service system32\drivers\1394ohci.sys (1394 OpenHCI Driver/Microsoft Corporation) [MANUAL] 1394ohci Service C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe (ArcSoft Connect Service/ArcSoft Inc.) [MANUAL] ACDaemon Service system32\drivers\ACPI.sys (ACPI-Treiber für NT/Microsoft Corporation) [BOOT] ACPI Service system32\drivers\acpipmi.sys (ACPI Power Metering Driver/Microsoft Corporation) [MANUAL] AcpiPmi Service C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Acrobat Update Service/Adobe Systems Incorporated) [AUTO] AdobeARMservice Service C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe® Flash® Player Update Service 11.2 r202/Adobe Systems Incorporated) [MANUAL] AdobeFlashPlayerUpdateSvc Service system32\drivers\adp94xx.sys (Adaptec Windows SAS/SATA Storport Driver/Adaptec, Inc.) [MANUAL] adp94xx Service system32\drivers\adpahci.sys (Adaptec Windows SATA Storport Driver/Adaptec, Inc.) [MANUAL] adpahci Service system32\drivers\adpu320.sys (Adaptec StorPort Ultra320 SCSI Driver (X64)/Adaptec, Inc.) [MANUAL] adpu320 Service adsi Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] AeLookupSvc Service system32\drivers\afd.sys (Ancillary Function Driver for WinSock/Microsoft Corporation) [SYSTEM] AFD Service system32\drivers\agp440.sys (440 NT AGP-Filter/Microsoft Corporation) [MANUAL] agp440 Service C:\Windows\System32\alg.exe (Gatewaydienst auf Anwendungsebene/Microsoft Corporation) [MANUAL] ALG Service system32\drivers\aliide.sys (ALi mini IDE Driver/Acer Laboratories Inc.) [MANUAL] aliide Service system32\drivers\amdide.sys (AMD-IDE-Treiber/Microsoft Corporation) [MANUAL] amdide Service system32\drivers\amdk8.sys (Processor Device Driver/Microsoft Corporation) [MANUAL] AmdK8 Service system32\drivers\amdppm.sys (Processor Device Driver/Microsoft Corporation) [MANUAL] AmdPPM Service system32\drivers\amdsata.sys (AHCI 1.2 Device Driver/Advanced Micro Devices) [MANUAL] amdsata Service system32\drivers\amdsbs.sys (AMD Technology AHCI Compatible Controller Driver for Windows - AMD64 platform/AMD Technologies Inc.) [MANUAL] amdsbs Service system32\drivers\amdxata.sys (Storage Filter Driver/Advanced Micro Devices) [BOOT] amdxata Service system32\DRIVERS\Apfiltr.sys (Alps Touch Pad Driver/Alps Electric Co., Ltd.) [MANUAL] ApfiltrService Service system32\drivers\appid.sys (AppID Driver/Microsoft Corporation) [MANUAL] AppID Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] AppIDSvc Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] Appinfo Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) AppMgmt Service system32\drivers\arc.sys (Adaptec RAID Storport Driver/Adaptec, Inc.) [MANUAL] arc Service system32\drivers\arcsas.sys (Adaptec SAS RAID WS03 Driver/Adaptec, Inc.) [MANUAL] arcsas Service system32\DRIVERS\ArcSoftKsUFilter.sys (For X64/ArcSoft, Inc.) [MANUAL] ArcSoftKsUFilter Service ASP.NET Service ASP.NET_4.0.30319 Service C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe (Microsoft ASP.NET State Server/Microsoft Corporation) [MANUAL] aspnet_state Service system32\DRIVERS\asyncmac.sys (MS Remote Access serial network driver/Microsoft Corporation) [MANUAL] AsyncMac Service system32\drivers\atapi.sys (ATAPI IDE Miniport Driver/Microsoft Corporation) [MANUAL] atapi Service system32\DRIVERS\btath_flt.sys (Atheros FILTER driver/Atheros) [MANUAL] AthBTPort Service System32\Drivers\AthDfu.sys (BulkUsb Driver/Windows (R) Win 7 DDK provider) [MANUAL] ATHDFU Service C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe (Atheros Coex Service Application/Atheros) [AUTO] Atheros Bt&Wlan Coex Agent Service C:\Program Files (x86)\Bluetooth Suite\adminservice.exe (AdminService Application/Atheros Commnucations) [AUTO] AtherosSvc Service system32\DRIVERS\athrx.sys (Atheros Extensible Wireless LAN device driver/Atheros Communications, Inc.) [MANUAL] athr Service C:\Windows\System32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [AUTO] AudioEndpointBuilder Service C:\Windows\System32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [AUTO] AudioSrv Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] AxInstSV Service system32\drivers\bxvbda.sys (Broadcom NetXtreme II GigE VBD/Broadcom Corporation) [MANUAL] b06bdrv Service system32\DRIVERS\b57nd60a.sys (Broadcom NetXtreme Gigabit Ethernet NDIS6.x Unified Driver./Broadcom Corporation) [MANUAL] b57nd60a Service (Battery Class Driver/Microsoft Corporation) BattC Service C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE (BingBar Service/Microsoft Corporation.) [MANUAL] BBSvc Service C:\Windows\System32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] BDESVC Service (BEEP Driver/Microsoft Corporation) [SYSTEM] Beep Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [AUTO] BFE Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [AUTO] BITS Service system32\drivers\blbdrive.sys (BLB Drive Driver/Microsoft Corporation) [SYSTEM] blbdrive Service system32\DRIVERS\bowser.sys (NT Lan Manager Datagram Receiver Driver/Microsoft Corporation) [MANUAL] bowser Service system32\drivers\BrFiltLo.sys (Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver/Brother Industries, Ltd.) [MANUAL] BrFiltLo Service system32\drivers\BrFiltUp.sys (Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver/Brother Industries, Ltd.) [MANUAL] BrFiltUp Service system32\DRIVERS\bridge.sys (MAC Bridge Driver/Microsoft Corporation) [MANUAL] BridgeMP Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] Browser Service System32\Drivers\Brserid.sys (Brother Schnittstellentreiber (WDM) (seriell)/Brother Industries Ltd.) [MANUAL] Brserid Service System32\Drivers\BrSerWdm.sys (Brother Serial driver (WDM version)/Brother Industries Ltd.) [MANUAL] BrSerWdm Service System32\Drivers\BrUsbMdm.sys (Brother USB MDM Driver /Brother Industries Ltd.) [MANUAL] BrUsbMdm Service System32\Drivers\BrUsbSer.sys (Brother USB Serial Driver/Brother Industries Ltd.) [MANUAL] BrUsbSer Service system32\drivers\btath_a2dp.sys (Atheros A2DP driver/Atheros) [MANUAL] BTATH_A2DP Service system32\drivers\btath_avdt.sys (Atheros Bluetooth AVDT driver/Atheros) [MANUAL] btath_avdt Service system32\drivers\btath_bus.sys (Atheros BUS driver/Atheros) [MANUAL] BTATH_BUS Service system32\drivers\btath_hcrp.sys (Atheros HCRP driver/Atheros) [MANUAL] BTATH_HCRP Service system32\DRIVERS\btath_lwflt.sys (Atheros FILTER driver/Atheros) [MANUAL] BTATH_LWFLT Service system32\drivers\btath_rcp.sys (Atheros AVRCP driver/Atheros) [MANUAL] BTATH_RCP Service BTATH_SCO Service system32\DRIVERS\btfilter.sys (BtFilter Driver/Atheros) [MANUAL] BtFilter Service system32\drivers\BthEnum.sys (Bluetooth-Bus-Extender/Microsoft Corporation) [MANUAL] BthEnum Service system32\drivers\bthmodem.sys (Bluetooth Communications Driver/Microsoft Corporation) [MANUAL] BTHMODEM Service system32\DRIVERS\bthpan.sys (Bluetooth Personal Area Networking/Microsoft Corporation) [MANUAL] BthPan Service System32\Drivers\BTHport.sys (Bluetooth-Bustreiber/Microsoft Corporation) [MANUAL] BTHPORT Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] bthserv Service System32\Drivers\BTHUSB.sys (Bluetooth-Miniporttreiber/Microsoft Corporation) [MANUAL] BTHUSB Service system32\DRIVERS\cdfs.sys (CD-ROM File System Driver/Microsoft Corporation) [DISABLED] cdfs Service system32\drivers\cdrom.sys (SCSI CD-ROM Driver/Microsoft Corporation) [SYSTEM] cdrom Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] CertPropSvc Service system32\drivers\circlass.sys (Consumer IR Class Driver for eHome/Microsoft Corporation) [MANUAL] circlass Service System32\CLFS.sys [BOOT] CLFS Service C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (.NET Runtime Optimization Service/Microsoft Corporation) [DISABLED] clr_optimization_v2.0.50727_32 Service C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe (.NET Runtime Optimization Service/Microsoft Corporation) [DISABLED] clr_optimization_v2.0.50727_64 Service C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (.NET Runtime Optimization Service/Microsoft Corporation) [AUTO] clr_optimization_v4.0.30319_32 Service C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe (.NET Runtime Optimization Service/Microsoft Corporation) [AUTO] clr_optimization_v4.0.30319_64 Service system32\drivers\CmBatt.sys [MANUAL] CmBatt Service system32\drivers\cmdide.sys [MANUAL] cmdide Service System32\Drivers\cng.sys [BOOT] CNG Service system32\drivers\CHDRT64.sys [MANUAL] CnxtHdAudService Service system32\drivers\compbatt.sys [BOOT] Compbatt Service system32\drivers\CompositeBus.sys [MANUAL] CompositeBus Service C:\Windows\system32\dllhost.exe (COM Surrogate/Microsoft Corporation) [MANUAL] COMSysApp Service system32\drivers\crcdisk.sys [DISABLED] crcdisk Service crypt32 Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [AUTO] CryptSvc Service C:\Program Files\Sony\VAIO Smart Network\WFDA\DCDhcpService.exe (Atheros DirectConnect DHCP Service/Atheros Communication Inc.) [MANUAL] DCDhcpService Service DCLocator Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [AUTO] DcomLaunch Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] defragsvc Service System32\Drivers\dfsc.sys [SYSTEM] DfsC Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [AUTO] Dhcp Service System32\drivers\discache.sys [SYSTEM] discache Service system32\drivers\disk.sys [BOOT] Disk Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [AUTO] Dnscache Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] dot3svc Service C:\Windows\System32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [AUTO] DPS Service system32\drivers\drmkaud.sys [MANUAL] drmkaud Service System32\drivers\dxgkrnl.sys [MANUAL] DXGKrnl Service system32\DRIVERS\e1y60x64.sys [MANUAL] e1yexpress Service C:\Windows\System32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] EapHost Service system32\drivers\evbda.sys [MANUAL] ebdrv Service C:\Windows\System32\lsass.exe (Local Security Authority Process/Microsoft Corporation) [MANUAL] EFS Service C:\Windows\ehome\ehRecvr.exe (Windows Media Center-Empfängerdienst/Microsoft Corporation) [MANUAL] ehRecvr Service C:\Windows\ehome\ehsched.exe (Windows Media Center-Planerdienst/Microsoft Corporation) [MANUAL] ehSched Service system32\drivers\elxstor.sys [MANUAL] elxstor Service system32\drivers\errdev.sys [MANUAL] ErrDev Service ESENT Service C:\Windows\System32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [AUTO] eventlog Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [AUTO] EventSystem Service [MANUAL] exfat Service C:\SystemRoot\System32\Drivers\f03f375b4aa00e1d.sys (*** hidden *** ) [BOOT] f03f375b4aa00e1d <-- ROOTKIT !!! Service [MANUAL] fastfat Service C:\Windows\system32\fxssvc.exe (Fax Service/Microsoft Corporation) [MANUAL] Fax Service system32\drivers\fdc.sys [MANUAL] fdc Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] fdPHost Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [AUTO] FDResPub Service system32\drivers\fileinfo.sys [BOOT] FileInfo Service system32\drivers\filetrace.sys [MANUAL] Filetrace Service system32\drivers\flpydisk.sys [MANUAL] flpydisk Service system32\drivers\fltmgr.sys [BOOT] FltMgr Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [AUTO] FontCache Service C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe (PresentationFontCache.exe/Microsoft Corporation) [MANUAL] FontCache3.0.0.0 Service System32\drivers\FsDepends.sys [MANUAL] FsDepends Service [BOOT] Fs_Rec Service System32\DRIVERS\fvevol.sys [BOOT] fvevol Service system32\drivers\gagp30kx.sys [MANUAL] gagp30kx Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [AUTO] gpsvc Service system32\drivers\hcw85cir.sys [MANUAL] hcw85cir Service system32\drivers\HdAudio.sys [MANUAL] HdAudAddService Service system32\drivers\HDAudBus.sys [MANUAL] HDAudBus Service system32\drivers\HidBatt.sys [MANUAL] HidBatt Service system32\drivers\hidbth.sys [MANUAL] HidBth Service system32\drivers\hidir.sys [MANUAL] HidIr Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] hidserv Service system32\DRIVERS\hidusb.sys [MANUAL] HidUsb Service C:\Windows\System32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] hkmsvc Service C:\Windows\System32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] HomeGroupListener Service C:\Windows\System32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] HomeGroupProvider Service system32\drivers\HpSAMD.sys [MANUAL] HpSAMD Service system32\drivers\HTTP.sys [MANUAL] HTTP Service System32\drivers\hwpolicy.sys [BOOT] hwpolicy Service system32\DRIVERS\i8042prt.sys [MANUAL] i8042prt Service ialm Service system32\drivers\iaStor.sys [BOOT] iaStor Service C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (IAStorDataSvc/Intel Corporation) [AUTO] IAStorDataMgrSvc Service system32\drivers\iaStorV.sys [MANUAL] iaStorV Service C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe (Realtek Card Reader Icon Tool./Realsil Microelectronics Inc.) [AUTO] IconMan_R Service C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe (Windows CardSpace/Microsoft Corporation) [MANUAL] idsvc Service system32\DRIVERS\igdkmd64.sys [MANUAL] igfx Service system32\drivers\iirsp.sys [MANUAL] iirsp Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [AUTO] IKEEXT Service inetaccs Service system32\DRIVERS\IntcDAud.sys [MANUAL] IntcDAud Service system32\drivers\intelide.sys [MANUAL] intelide Service system32\drivers\intelppm.sys [MANUAL] intelppm Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] IPBusEnum Service system32\DRIVERS\ipfltdrv.sys [MANUAL] IpFilterDriver Service C:\Windows\System32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [AUTO] iphlpsvc Service system32\drivers\IPMIDrv.sys [MANUAL] IPMIDRV Service System32\drivers\ipnat.sys [MANUAL] IPNAT Service system32\drivers\irenum.sys [MANUAL] IRENUM Service system32\drivers\isapnp.sys [MANUAL] isapnp Service system32\drivers\msiscsi.sys [MANUAL] iScsiPrt Service system32\drivers\kbdclass.sys [MANUAL] kbdclass Service system32\drivers\kbdhid.sys [MANUAL] kbdhid Service C:\Windows\system32\lsass.exe (Local Security Authority Process/Microsoft Corporation) [MANUAL] KeyIso Service System32\Drivers\ksecdd.sys [BOOT] KSecDD Service System32\Drivers\ksecpkg.sys [BOOT] KSecPkg Service system32\drivers\ksthunk.sys [MANUAL] ksthunk Service C:\Windows\System32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] KtmRm Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [AUTO] LanmanServer Service C:\Windows\System32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [AUTO] LanmanWorkstation Service ldap Service system32\DRIVERS\lltdio.sys [AUTO] lltdio Service C:\Windows\System32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] lltdsvc Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [AUTO] lmhosts Service C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Local Manageability Service/Intel Corporation) [AUTO] LMS Service Lsa Service system32\drivers\lsi_fc.sys [MANUAL] LSI_FC Service system32\drivers\lsi_sas.sys [MANUAL] LSI_SAS Service system32\drivers\lsi_sas2.sys [MANUAL] LSI_SAS2 Service system32\drivers\lsi_scsi.sys [MANUAL] LSI_SCSI Service system32\drivers\luafv.sys [AUTO] luafv Service C:\Windows\system32\drivers\mbam.sys ( Malwarebytes Anti-Malware /Malwarebytes Corporation) [MANUAL] MBAMProtector Service C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe ( Malwarebytes Anti-Malware /Malwarebytes Corporation) [AUTO] MBAMService Service C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe [AUTO] McMPFSvc Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [DISABLED] Mcx2Svc Service system32\drivers\megasas.sys [MANUAL] megasas Service system32\drivers\MegaSR.sys [MANUAL] MegaSR Service system32\drivers\HECIx64.sys [MANUAL] MEIx64 Service C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe (Groove Audit Service/Microsoft Corporation) [MANUAL] Microsoft Office Groove Audit Service Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [AUTO] MMCSS Service system32\drivers\modem.sys [MANUAL] Modem Service system32\DRIVERS\monitor.sys [MANUAL] monitor Service system32\DRIVERS\mouclass.sys [MANUAL] mouclass Service system32\DRIVERS\mouhid.sys [MANUAL] mouhid Service System32\drivers\mountmgr.sys [BOOT] mountmgr Service C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe (Mozilla Foundation) [MANUAL] MozillaMaintenance Service system32\drivers\mpio.sys [MANUAL] mpio Service C:\Windows\system32\drivers\mpotpyrk.sys [SYSTEM] mpotpyrk Service System32\drivers\mpsdrv.sys [MANUAL] mpsdrv Service system32\drivers\mrxdav.sys [MANUAL] MRxDAV Service system32\DRIVERS\mrxsmb.sys [MANUAL] mrxsmb Service system32\DRIVERS\mrxsmb10.sys [MANUAL] mrxsmb10 Service system32\DRIVERS\mrxsmb20.sys [MANUAL] mrxsmb20 Service system32\drivers\msahci.sys [MANUAL] msahci Service system32\drivers\msdsm.sys [MANUAL] msdsm Service C:\Windows\System32\msdtc.exe (Microsoft Distributed Transaction Coordinator-Dienst/Microsoft Corporation) [MANUAL] MSDTC Service MSDTC Bridge 3.0.0.0 Service MSDTC Bridge 4.0.0.0 Service [SYSTEM] Msfs Service System32\drivers\mshidkmdf.sys [MANUAL] mshidkmdf Service system32\drivers\msisadrv.sys [BOOT] msisadrv Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] MSiSCSI Service C:\Windows\system32\msiexec.exe (Windows® Installer/Microsoft Corporation) [MANUAL] msiserver Service system32\drivers\MSKSSRV.sys [MANUAL] MSKSSRV Service system32\drivers\MSPCLOCK.sys [MANUAL] MSPCLOCK Service system32\drivers\MSPQM.sys [MANUAL] MSPQM Service [MANUAL] MsRPC Service MSSCNTRS Service system32\drivers\mssmbios.sys [SYSTEM] mssmbios Service system32\drivers\MSTEE.sys [MANUAL] MSTEE Service system32\drivers\MTConfig.sys [MANUAL] MTConfig Service System32\Drivers\mup.sys [BOOT] Mup Service C:\Windows\System32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] napagent Service system32\DRIVERS\nwifi.sys [MANUAL] NativeWifiP Service system32\drivers\ndis.sys [BOOT] NDIS Service system32\DRIVERS\ndiscap.sys [MANUAL] NdisCap Service system32\DRIVERS\ndistapi.sys [MANUAL] NdisTapi Service system32\DRIVERS\ndisuio.sys [MANUAL] Ndisuio Service system32\DRIVERS\ndiswan.sys [MANUAL] NdisWan Service [MANUAL] NDProxy Service system32\DRIVERS\netbios.sys [SYSTEM] NetBIOS Service System32\DRIVERS\netbt.sys [SYSTEM] NetBT Service C:\Windows\system32\lsass.exe (Local Security Authority Process/Microsoft Corporation) [MANUAL] Netlogon Service C:\Windows\System32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] Netman Service C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe (SMSvcHost.exe/Microsoft Corporation) [DISABLED] NetMsmqActivator Service C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe (SMSvcHost.exe/Microsoft Corporation) [DISABLED] NetPipeActivator Service C:\Windows\System32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] netprofm Service C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe (SMSvcHost.exe/Microsoft Corporation) [DISABLED] NetTcpActivator Service C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe (SMSvcHost.exe/Microsoft Corporation) [DISABLED] NetTcpPortSharing Service system32\drivers\nfrd960.sys [MANUAL] nfrd960 Service C:\Windows\System32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [AUTO] NlaSvc Service [SYSTEM] Npfs Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [AUTO] nsi Service system32\drivers\nsiproxy.sys [SYSTEM] nsiproxy Service NTDS Service [MANUAL] Ntfs Service [SYSTEM] Null Service system32\DRIVERS\nvlddmkm.sys [MANUAL] nvlddmkm Service system32\drivers\nvraid.sys [MANUAL] nvraid Service system32\drivers\nvstor.sys [MANUAL] nvstor Service system32\drivers\nv_agp.sys [MANUAL] nv_agp Service C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE (Microsoft Office Diagnostics/Microsoft Corporation) [MANUAL] odserv Service system32\drivers\ohci1394.sys [MANUAL] ohci1394 Service C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE (Office Source Engine/Microsoft Corporation) [MANUAL] ose Service Outlook Service C:\Windows\System32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] p2pimsvc Service C:\Windows\System32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] p2psvc Service system32\drivers\parport.sys [MANUAL] Parport Service System32\drivers\partmgr.sys [BOOT] partmgr Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [AUTO] PcaSvc Service system32\drivers\pci.sys [BOOT] pci Service system32\drivers\pciide.sys [MANUAL] pciide Service system32\drivers\pcmcia.sys [MANUAL] pcmcia Service System32\drivers\pcw.sys [BOOT] pcw Service system32\drivers\peauth.sys [AUTO] PEAUTH Service PerfDisk Service C:\Windows\SysWow64\perfhost.exe (x86-Leistungsindikatorhost/Microsoft Corporation) [MANUAL] PerfHost Service PerfNet Service PerfOS Service PerfProc Service C:\Windows\System32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] pla Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [AUTO] PlugPlay Service C:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe (Device Information Provider/Sony Corporation) [AUTO] PMBDeviceInfoProvider Service C:\Windows\System32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] PNRPAutoReg Service C:\Windows\System32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] PNRPsvc Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] PolicyAgent Service PortProxy Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [AUTO] Power Service system32\DRIVERS\raspptp.sys [MANUAL] PptpMiniport Service system32\drivers\processr.sys [MANUAL] Processor Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [AUTO] ProfSvc Service C:\Windows\system32\lsass.exe (Local Security Authority Process/Microsoft Corporation) [MANUAL] ProtectedStorage Service system32\DRIVERS\pacer.sys [SYSTEM] Psched Service system32\drivers\ql2300.sys [MANUAL] ql2300 Service system32\drivers\ql40xx.sys [MANUAL] ql40xx Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] QWAVE Service system32\drivers\qwavedrv.sys [MANUAL] QWAVEdrv Service System32\DRIVERS\rasacd.sys [MANUAL] RasAcd Service system32\DRIVERS\AgileVpn.sys [MANUAL] RasAgileVpn Service C:\Windows\System32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] RasAuto Service system32\DRIVERS\rasl2tp.sys [MANUAL] Rasl2tp Service C:\Windows\System32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] RasMan Service system32\DRIVERS\raspppoe.sys [MANUAL] RasPppoe Service system32\DRIVERS\rassstp.sys [MANUAL] RasSstp Service system32\DRIVERS\rdbss.sys [SYSTEM] rdbss Service system32\drivers\rdpbus.sys [MANUAL] rdpbus Service System32\DRIVERS\RDPCDD.sys [SYSTEM] RDPCDD Service RDPDD Service system32\drivers\rdpencdd.sys [SYSTEM] RDPENCDD Service RDPNP Service system32\drivers\rdprefmp.sys [SYSTEM] RDPREFMP Service [MANUAL] RDPWD Service System32\drivers\rdyboost.sys [BOOT] rdyboost Service C:\Windows\System32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [DISABLED] RemoteAccess Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [DISABLED] RemoteRegistry Service system32\DRIVERS\rfcomm.sys [MANUAL] RFCOMM Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [AUTO] RpcEptMapper Service C:\Windows\system32\locator.exe (Rpc Locator/Microsoft Corporation) [MANUAL] RpcLocator Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [AUTO] RpcSs Service system32\DRIVERS\RtsPStor.sys [MANUAL] RSPCIESTOR Service system32\DRIVERS\rspndr.sys [AUTO] rspndr Service system32\DRIVERS\Rt64win7.sys [MANUAL] RTL8167 Service C:\Program Files\Sony\VAIO Care\VCPerfService.exe (VAIO Care Performance Service/Sony Corporation) [AUTO] SampleCollector Service C:\Windows\system32\lsass.exe (Local Security Authority Process/Microsoft Corporation) [AUTO] SamSs Service system32\drivers\sbp2port.sys [MANUAL] sbp2port Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] SCardSvr Service System32\DRIVERS\scfilter.sys [MANUAL] scfilter Service C:\Windows\System32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [AUTO] Schedule Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] SCPolicySvc Service system32\DRIVERS\sdbus.sys [MANUAL] sdbus Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] SDRSVC Service C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE (Microsoft SeaPort Search Enhancement Broker/Microsoft Corporation) [AUTO] SeaPort Service [AUTO] secdrv Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] seclogon Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [AUTO] SENS Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] SensrSvc Service system32\drivers\serenum.sys [MANUAL] Serenum Service system32\drivers\serial.sys [MANUAL] Serial Service system32\drivers\sermouse.sys [MANUAL] sermouse Service ServiceModelEndpoint 3.0.0.0 Service ServiceModelOperation 3.0.0.0 Service ServiceModelService 3.0.0.0 Service C:\Windows\System32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] SessionEnv Service system32\drivers\SFEP.sys [MANUAL] SFEP Service system32\drivers\sffdisk.sys [MANUAL] sffdisk Service system32\drivers\sffp_mmc.sys [MANUAL] sffp_mmc Service system32\drivers\sffp_sd.sys [MANUAL] sffp_sd Service system32\drivers\sfloppy.sys [MANUAL] sfloppy Service SharedAccess Service C:\Windows\System32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [AUTO] ShellHWDetection Service system32\drivers\SiSRaid2.sys [MANUAL] SiSRaid2 Service system32\drivers\sisraid4.sys [MANUAL] SiSRaid4 Service system32\DRIVERS\smb.sys [MANUAL] Smb Service SMSvcHost 3.0.0.0 Service SMSvcHost 4.0.0.0 Service C:\Windows\System32\snmptrap.exe (SNMP-Trap/Microsoft Corporation) [MANUAL] SNMPTRAP Service C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe (VAIO Content Importer/Sony Corporation) [MANUAL] SOHCImp Service C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe (VAIO Device Searcher/Sony Corporation) [MANUAL] SOHDs Service C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\SPF\SpfService64.exe (VAIO Entertainment Common Service/Sony Corporation) [MANUAL] SpfService Service [BOOT] spldr Service C:\Windows\System32\spoolsv.exe (Spoolersubsystem-Anwendung/Microsoft Corporation) [AUTO] Spooler Service C:\Windows\system32\sppsvc.exe (Softwareschutzplattform-Dienst von Microsoft/Microsoft Corporation) [AUTO] sppsvc Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] sppuinotify Service System32\DRIVERS\srv.sys [MANUAL] srv Service System32\DRIVERS\srv2.sys [MANUAL] srv2 Service System32\DRIVERS\srvnet.sys [MANUAL] srvnet Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] SSDPSRV Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] SstpSvc Service system32\drivers\stexstor.sys [MANUAL] stexstor Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [AUTO] stisvc Service system32\drivers\swenum.sys [MANUAL] swenum Service C:\Windows\System32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] swprv Service C:\Windows\Installer\{59C14EBC-E371-A8AB-3464-EE33142DE6C5}\syshost.exe (*** hidden *** ) [AUTO] syshost32 <-- ROOTKIT !!! Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [AUTO] SysMain Service C:\Windows\System32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] TabletInputService Service C:\Windows\System32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] TapiSrv Service C:\Windows\System32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] TBS Service System32\drivers\tcpip.sys [BOOT] Tcpip Service system32\DRIVERS\tcpip.sys [MANUAL] TCPIP6 Service TCPIP6TUNNEL Service System32\drivers\tcpipreg.sys [AUTO] tcpipreg Service TCPIPTUNNEL Service system32\drivers\tdpipe.sys [MANUAL] TDPIPE Service system32\drivers\tdtcp.sys [MANUAL] TDTCP Service system32\DRIVERS\tdx.sys [SYSTEM] tdx Service system32\drivers\termdd.sys [SYSTEM] TermDD Service C:\Windows\System32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] TermService Service C:\Windows\System32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [AUTO] Themes Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] THREADORDER Service C:\Windows\System32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [AUTO] TrkWks Service C:\Windows\servicing\TrustedInstaller.exe (Windows Modules Installer/Microsoft Corporation) [MANUAL] TrustedInstaller Service TSDDD Service System32\DRIVERS\tssecsrv.sys [MANUAL] tssecsrv Service system32\drivers\tsusbflt.sys [MANUAL] TsUsbFlt Service system32\drivers\TsUsbGD.sys [MANUAL] TsUsbGD Service C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesService64.exe (TuneUp Utilities Service/TuneUp Software) [AUTO] TuneUp.UtilitiesSvc Service C:\??\C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesDriver64.sys [MANUAL] TuneUpUtilitiesDrv Service system32\DRIVERS\tunnel.sys [MANUAL] tunnel Service system32\drivers\uagp35.sys [MANUAL] uagp35 Service C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe (MgiSvr/ArcSoft, Inc.) [AUTO] uCamMonitor Service system32\DRIVERS\udfs.sys [DISABLED] udfs Service UGatherer Service UGTHRSVC Service C:\Windows\system32\UI0Detect.exe (Erkennung interaktiver Dienste/Microsoft Corporation) [MANUAL] UI0Detect Service system32\drivers\uliagpkx.sys [MANUAL] uliagpkx Service system32\DRIVERS\umbus.sys [MANUAL] umbus Service system32\drivers\umpass.sys [MANUAL] UmPass Service C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (User Notification Service/Intel Corporation) [AUTO] UNS Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] upnphost Service system32\DRIVERS\usbccgp.sys [MANUAL] usbccgp Service system32\drivers\usbcir.sys [MANUAL] usbcir Service system32\drivers\usbehci.sys [MANUAL] usbehci Service system32\drivers\usbhub.sys [MANUAL] usbhub Service system32\drivers\usbohci.sys [MANUAL] usbohci Service system32\DRIVERS\usbprint.sys [MANUAL] usbprint Service system32\DRIVERS\usbscan.sys [MANUAL] usbscan Service system32\DRIVERS\USBSTOR.SYS [MANUAL] USBSTOR Service system32\drivers\usbuhci.sys [MANUAL] usbuhci Service System32\Drivers\usbvideo.sys [MANUAL] usbvideo Service C:\Windows\System32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [AUTO] UxSms Service C:\Windows\System32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [AUTO] UxTuneUp Service C:\Program Files (x86)\Sony\VAIO Event Service\VESMgr.exe (VAIO Event Service (Service Module)/Sony Corporation) [AUTO] VAIO Event Service Service C:\Windows\system32\lsass.exe (Local Security Authority Process/Microsoft Corporation) [MANUAL] VaultSvc Service C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe (VAIO Content Folder Watcher/Sony Corporation) [MANUAL] VCFw Service C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe (VCM Intelligent Analyzing Manager/Sony Corporation) [MANUAL] VcmIAlzMgr Service C:\Program Files\Sony\VCM Intelligent Network Service Manager\VcmINSMgr.exe (VCM Intelligent Network Service Manager/Sony Corporation) [MANUAL] VcmINSMgr Service C:\Program Files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper64.exe (VcmXml Helper Interface/Sony Corporation) [MANUAL] VcmXmlIfHelper Service C:\Program Files\Sony\VAIO Care\VCService.exe (VAIOCare/Sony Corporation) [MANUAL] VCService Service system32\drivers\vdrvroot.sys [BOOT] vdrvroot Service C:\Windows\System32\vds.exe (Virtueller Datenträgerdienst/Microsoft Corporation) [MANUAL] vds Service system32\DRIVERS\vgapnp.sys [MANUAL] vga Service System32\drivers\vga.sys [SYSTEM] VgaSave Service system32\drivers\vhdmp.sys [MANUAL] vhdmp Service system32\drivers\viaide.sys [MANUAL] viaide Service system32\drivers\volmgr.sys [BOOT] volmgr Service System32\drivers\volmgrx.sys [BOOT] volmgrx Service system32\drivers\volsnap.sys [BOOT] volsnap Service system32\drivers\vsmraid.sys [MANUAL] vsmraid Service C:\Program Files\Sony\VAIO Smart Network\VSNService.exe (VAIO Smart Network Service/Sony Corporation) [AUTO] VSNService Service C:\Windows\system32\vssvc.exe (Microsoft® Volumeschattenkopie-Dienst/Microsoft Corporation) [MANUAL] VSS Service C:\Program Files\Sony\VAIO Update Common\VUAgent.exe (VUAgent.exe/Sony Corporation) [MANUAL] VUAgent Service system32\DRIVERS\vwifibus.sys [MANUAL] vwifibus Service system32\DRIVERS\vwififlt.sys [SYSTEM] vwififlt Service system32\DRIVERS\vwifimp.sys [MANUAL] vwifimp Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] W32Time Service W3SVC Service system32\drivers\wacompen.sys [MANUAL] WacomPen Service system32\DRIVERS\wanarp.sys [MANUAL] WANARP Service system32\DRIVERS\wanarp.sys [SYSTEM] Wanarpv6 Service C:\Windows\system32\wbengine.exe (EXE-Datei für Microsoft®-Blockebenen-Sicherungsmodul/Microsoft Corporation) [MANUAL] wbengine Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] WbioSrvc Service C:\Windows\System32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] wcncsvc Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] WcsPlugInService Service system32\drivers\wd.sys [BOOT] Wd Service system32\drivers\Wdf01000.sys [BOOT] Wdf01000 Service C:\Windows\System32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] WdiServiceHost Service C:\Windows\System32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] WdiSystemHost Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] WebClient Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] Wecsvc Service C:\Windows\System32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] wercplsupport Service C:\Windows\System32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] WerSvc Service system32\DRIVERS\wfplwf.sys [SYSTEM] WfpLwf Service C:\Windows\system32\drivers\wimmount.sys [MANUAL] WIMMount Service C:\Windows\System32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [AUTO] WinDefend Service Windows Workflow Foundation 3.0.0.0 Service Windows Workflow Foundation 4.0.0.0 Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] WinHttpAutoProxySvc Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [AUTO] Winmgmt Service C:\Windows\System32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] WinRM Service [MANUAL] Winsock Service WinSock2 Service system32\DRIVERS\WinUsb.sys [MANUAL] WinUsb Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [AUTO] Wlansvc Service C:\Program Files\Windows Live\Mesh\wlcrasvc.exe (Windows Live Mesh Remote Desktop Service/Microsoft Corporation) [DISABLED] wlcrasvc Service C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (Microsoft® Windows Live ID Service/Microsoft Corp.) [AUTO] wlidsvc Service system32\drivers\wmiacpi.sys [MANUAL] WmiAcpi Service WmiApRpl Service C:\Windows\system32\wbem\WmiApSrv.exe (Adapter für den WMI-Leistungsreverseadapter/Microsoft Corporation) [MANUAL] wmiApSrv Service C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe [AUTO] WMPNetworkSvc Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] WPCSvc Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] WPDBusEnum Service system32\drivers\ws2ifsl.sys [SYSTEM] ws2ifsl Service C:\Windows\System32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [AUTO] wscsvc Service C:\Windows\system32\SearchIndexer.exe (Microsoft Windows Search-Indexerstellung/Microsoft Corporation) [AUTO] WSearch Service WSearchIdxPi Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [AUTO] wuauserv Service system32\drivers\WudfPf.sys [MANUAL] WudfPf Service system32\DRIVERS\WUDFRd.sys [MANUAL] WUDFRd Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [AUTO] wudfsvc Service C:\Windows\system32\svchost.exe (Hostprozess für Windows-Dienste/Microsoft Corporation) [MANUAL] WwanSvc Service xmlprov Service {60B00061-33FB-47DE-B7D3-A6BB4B04C0FE} Service {6500FF66-A527-483E-BAEE-E230BB665EE8} Service {8DCAEEEC-A5DF-40AE-B6AF-0BEB9899454C} Service {CEFBB5C8-6FE5-4302-8842-C771B9ABBC85} Service {D26F3AA9-54BE-4CFD-AFD3-17761165EE1A} ---- EOF - GMER 1.0.15 ---- Code:
ATTFilter Report of OSAM: Autorun Manager v5.0.11926.0 hxxp://www.online-solutions.ru/en/ Saved at 16:37:44 on 07.06.2012 OS: Windows 7 Home Premium Edition Service Pack 1 (Build 7601), 64-bit Default Browser: Mozilla Corporation Firefox 12.0 Scanner Settings [x] Rootkits detection (hidden registry) [x] Rootkits detection (hidden files) [x] Retrieve files information [x] Check Microsoft signatures Filters [ ] Trusted entries [ ] Empty entries [x] Hidden registry entries (rootkit activity) [x] Exclusively opened files [x] Not found files [x] Files without detailed information [x] Existing files [ ] Non-startable services [ ] Non-startable drivers [x] Active entries [x] Disabled entries [Control Panel Objects] -----( HKLM\Software\Microsoft\Windows\CurrentVersion\Control Panel\Cpls )----- "mlcfg32.cpl" - "Microsoft Corporation" - C:\PROGRA~2\MICROS~4\Office12\MLCFG32.CPL [Drivers] -----( HKLM\SYSTEM\CurrentControlSet\Services )----- "%TsUsbGD.DeviceDesc.Generic%" (TsUsbGD) - ? - C:\Windows\system32\drivers\TsUsbGD.sys (File not found) "@%systemroot%\system32\appidsvc.dll,-102" (AppID) - ? - C:\Windows\system32\drivers\appid.sys (File not found) "@%SystemRoot%\system32\bridgeres.dll,-1" (BridgeMP) - ? - C:\Windows\System32\DRIVERS\bridge.sys (File not found) "@%systemroot%\system32\browser.dll,-102" (bowser) - ? - C:\Windows\System32\DRIVERS\bowser.sys (File not found) "@%SystemRoot%\system32\clfs.sys,-100" (CLFS) - ? - C:\Windows\System32\CLFS.sys (File not found) "@%systemroot%\system32\drivers\afd.sys,-1000" (AFD) - ? - C:\Windows\system32\drivers\afd.sys (File not found) "@%systemroot%\system32\drivers\dfsc.sys,-101" (DfsC) - ? - C:\Windows\System32\Drivers\dfsc.sys (File not found) "@%systemroot%\system32\drivers\discache.sys,-102" (discache) - ? - C:\Windows\System32\drivers\discache.sys (File not found) "@%SystemRoot%\system32\drivers\fileinfo.sys,-100" (FileInfo) - ? - C:\Windows\System32\drivers\fileinfo.sys (File not found) "@%SystemRoot%\system32\drivers\filetrace.sys,-10001" (Filetrace) - ? - C:\Windows\System32\drivers\filetrace.sys (File not found) "@%SystemRoot%\system32\drivers\fltmgr.sys,-10001" (FltMgr) - ? - C:\Windows\System32\drivers\fltmgr.sys (File not found) "@%SystemRoot%\system32\drivers\fsdepends.sys,-10001" (FsDepends) - ? - C:\Windows\System32\drivers\FsDepends.sys (File not found) "@%SystemRoot%\system32\drivers\fvevol.sys,-100" (fvevol) - ? - C:\Windows\System32\DRIVERS\fvevol.sys (File not found) "@%SystemRoot%\system32\drivers\http.sys,-1" (HTTP) - ? - C:\Windows\System32\drivers\HTTP.sys (File not found) "@%systemroot%\system32\drivers\hwpolicy.sys,-101" (hwpolicy) - ? - C:\Windows\System32\drivers\hwpolicy.sys (File not found) "@%SystemRoot%\system32\drivers\irenum.sys,-100" (IRENUM) - ? - C:\Windows\System32\drivers\irenum.sys (File not found) "@%systemroot%\system32\drivers\luafv.sys,-100" (luafv) - ? - C:\Windows\system32\drivers\luafv.sys (File not found) "@%SystemRoot%\system32\drivers\mountmgr.sys,-100" (mountmgr) - ? - C:\Windows\System32\drivers\mountmgr.sys (File not found) "@%SystemRoot%\system32\drivers\mshidkmdf.sys,-100" (mshidkmdf) - ? - C:\Windows\System32\drivers\mshidkmdf.sys (File not found) "@%systemroot%\system32\drivers\mup.sys,-101" (Mup) - ? - C:\Windows\System32\Drivers\mup.sys (File not found) "@%SystemRoot%\system32\drivers\ndis.sys,-200" (NDIS) - ? - C:\Windows\System32\drivers\ndis.sys (File not found) "@%SystemRoot%\system32\drivers\netbt.sys,-2" (NetBT) - ? - C:\Windows\System32\DRIVERS\netbt.sys (File not found) "@%SystemRoot%\system32\drivers\nsiproxy.sys,-2" (nsiproxy) - ? - C:\Windows\System32\drivers\nsiproxy.sys (File not found) "@%SystemRoot%\System32\drivers\pacer.sys,-101" (Psched) - ? - C:\Windows\System32\DRIVERS\pacer.sys (File not found) "@%SystemRoot%\system32\drivers\partmgr.sys,-100" (partmgr) - ? - C:\Windows\System32\drivers\partmgr.sys (File not found) "@%SystemRoot%\system32\drivers\qwavedrv.sys,-1" (QWAVEdrv) - ? - C:\Windows\system32\drivers\qwavedrv.sys (File not found) "@%systemroot%\system32\DRIVERS\RDPCDD.sys,-100" (RDPCDD) - ? - C:\Windows\System32\DRIVERS\RDPCDD.sys (File not found) "@%systemroot%\system32\drivers\RDPENCDD.sys,-101" (RDPENCDD) - ? - C:\Windows\System32\drivers\rdpencdd.sys (File not found) "@%systemroot%\system32\drivers\RdpRefMp.sys,-101" (RDPREFMP) - ? - C:\Windows\System32\drivers\rdprefmp.sys (File not found) "@%SystemRoot%\System32\drivers\scfilter.sys,-11" (scfilter) - ? - C:\Windows\System32\DRIVERS\scfilter.sys (File not found) "@%SystemRoot%\System32\DRIVERS\tssecsrv.sys,-101" (tssecsrv) - ? - C:\Windows\System32\DRIVERS\tssecsrv.sys (File not found) "@%SystemRoot%\system32\drivers\tsusbflt.sys,-1000" (TsUsbFlt) - ? - C:\Windows\System32\drivers\tsusbflt.sys (File not found) "@%SystemRoot%\system32\drivers\volmgrx.sys,-100" (volmgrx) - ? - C:\Windows\System32\drivers\volmgrx.sys (File not found) "@%systemroot%\System32\drivers\ws2ifsl.sys,-1000" (ws2ifsl) - ? - C:\Windows\system32\drivers\ws2ifsl.sys (File not found) "@%SystemRoot%\system32\FirewallAPI.dll,-23092" (mpsdrv) - ? - C:\Windows\System32\drivers\mpsdrv.sys (File not found) "@%systemroot%\system32\rascfg.dll,-32000" (AsyncMac) - ? - C:\Windows\System32\DRIVERS\asyncmac.sys (File not found) "@%systemroot%\system32\rascfg.dll,-32001" (NdisTapi) - ? - C:\Windows\System32\DRIVERS\ndistapi.sys (File not found) "@%systemroot%\system32\rascfg.dll,-32002" (NdisWan) - ? - C:\Windows\System32\DRIVERS\ndiswan.sys (File not found) "@%systemroot%\system32\rascfg.dll,-32005" (Rasl2tp) - ? - C:\Windows\System32\DRIVERS\rasl2tp.sys (File not found) "@%systemroot%\system32\rascfg.dll,-32006" (PptpMiniport) - ? - C:\Windows\System32\DRIVERS\raspptp.sys (File not found) "@%systemroot%\system32\rascfg.dll,-32007" (RasPppoe) - ? - C:\Windows\System32\DRIVERS\raspppoe.sys (File not found) "@%systemroot%\system32\rascfg.dll,-32011" (WANARP) - ? - C:\Windows\System32\DRIVERS\wanarp.sys (File not found) "@%systemroot%\system32\rascfg.dll,-32012" (Wanarpv6) - ? - C:\Windows\System32\DRIVERS\wanarp.sys (File not found) "@%systemroot%\system32\rascfg.dll,-32013" (IpFilterDriver) - ? - C:\Windows\System32\DRIVERS\ipfltdrv.sys (File not found) "@%systemroot%\system32\srvsvc.dll,-102" (srv) - ? - C:\Windows\System32\DRIVERS\srv.sys (File not found) "@%systemroot%\system32\srvsvc.dll,-104" (srv2) - ? - C:\Windows\System32\DRIVERS\srv2.sys (File not found) "@%systemroot%\system32\sstpsvc.dll,-202" (RasSstp) - ? - C:\Windows\System32\DRIVERS\rassstp.sys (File not found) "@%SystemRoot%\system32\tcpipcfg.dll,-50003" (Tcpip) - ? - C:\Windows\System32\drivers\tcpip.sys (File not found) "@%SystemRoot%\system32\tcpipcfg.dll,-50004" (tdx) - ? - C:\Windows\System32\DRIVERS\tdx.sys (File not found) "@%SystemRoot%\system32\tcpipcfg.dll,-50005" (Smb) - ? - C:\Windows\System32\DRIVERS\smb.sys (File not found) "@%systemroot%\system32\webclnt.dll,-104" (MRxDAV) - ? - C:\Windows\system32\drivers\mrxdav.sys (File not found) "@%systemroot%\system32\wkssvc.dll,-1000" (rdbss) - ? - C:\Windows\System32\DRIVERS\rdbss.sys (File not found) "@%systemroot%\system32\wkssvc.dll,-1002" (mrxsmb) - ? - C:\Windows\System32\DRIVERS\mrxsmb.sys (File not found) "@%systemroot%\system32\wkssvc.dll,-1004" (mrxsmb10) - ? - C:\Windows\System32\DRIVERS\mrxsmb10.sys (File not found) "@%systemroot%\system32\wkssvc.dll,-1006" (mrxsmb20) - ? - C:\Windows\System32\DRIVERS\mrxsmb20.sys (File not found) "ACPI-Energieanzeigetreiber" (AcpiPmi) - ? - C:\Windows\system32\drivers\acpipmi.sys (File not found) "adp94xx" (adp94xx) - ? - C:\Windows\system32\drivers\adp94xx.sys (File not found) "adpahci" (adpahci) - ? - C:\Windows\system32\drivers\adpahci.sys (File not found) "adpu320" (adpu320) - ? - C:\Windows\system32\drivers\adpu320.sys (File not found) "aliide" (aliide) - ? - C:\Windows\system32\drivers\aliide.sys (File not found) "Alps Pointing-device Filter Driver" (ApfiltrService) - ? - C:\Windows\System32\DRIVERS\Apfiltr.sys (File not found) "AMD K8-Prozessortreiber" (AmdK8) - ? - C:\Windows\system32\drivers\amdk8.sys (File not found) "AMD-Prozessortreiber" (AmdPPM) - ? - C:\Windows\system32\drivers\amdppm.sys (File not found) "amdide" (amdide) - ? - C:\Windows\system32\drivers\amdide.sys (File not found) "amdsata" (amdsata) - ? - C:\Windows\system32\drivers\amdsata.sys (File not found) "amdsbs" (amdsbs) - ? - C:\Windows\system32\drivers\amdsbs.sys (File not found) "amdxata" (amdxata) - ? - C:\Windows\System32\drivers\amdxata.sys (File not found) "Anwenderinfrarotgeräte" (circlass) - ? - C:\Windows\system32\drivers\circlass.sys (File not found) "arc" (arc) - ? - C:\Windows\system32\drivers\arc.sys (File not found) "arcsas" (arcsas) - ? - C:\Windows\system32\drivers\arcsas.sys (File not found) "ArcSoft Magic-I Visual Effect" (ArcSoftKsUFilter) - ? - C:\Windows\System32\DRIVERS\ArcSoftKsUFilter.sys (File not found) "atapi" (atapi) - ? - C:\Windows\system32\drivers\atapi.sys (File not found) "Atheros Bluetooth AVDT Service" (btath_avdt) - ? - C:\Windows\System32\drivers\btath_avdt.sys (File not found) "Atheros Bluetooth Bus" (BTATH_BUS) - ? - C:\Windows\system32\drivers\btath_bus.sys (File not found) "Atheros Extensible Wireless LAN device driver" (athr) - ? - C:\Windows\System32\DRIVERS\athrx.sys (File not found) "Atheros Valkyrie USB BootROM" (ATHDFU) - ? - C:\Windows\System32\Drivers\AthDfu.sys (File not found) "Atheros Virtual Bluetooth Class" (AthBTPort) - ? - C:\Windows\System32\DRIVERS\btath_flt.sys (File not found) "Beep" (Beep) - ? - C:\Windows\system32\drivers\Beep.sys (File not found) "blbdrive" (blbdrive) - ? - C:\Windows\system32\drivers\blbdrive.sys (File not found) "Bluetooth A2DP Audio Driver" (BTATH_A2DP) - ? - C:\Windows\System32\drivers\btath_a2dp.sys (File not found) "Bluetooth AVRCP Device" (BTATH_RCP) - ? - C:\Windows\system32\drivers\btath_rcp.sys (File not found) "Bluetooth HCRP Server driver" (BTATH_HCRP) - ? - C:\Windows\system32\drivers\btath_hcrp.sys (File not found) "Bluetooth LWFLT Device" (BTATH_LWFLT) - ? - C:\Windows\System32\DRIVERS\btath_lwflt.sys (File not found) "Bluetooth-Anforderungsblocktreiber" (BthEnum) - ? - C:\Windows\system32\drivers\BthEnum.sys (File not found) "Bluetooth-Gerät (PAN)" (BthPan) - ? - C:\Windows\System32\DRIVERS\bthpan.sys (File not found) "Bluetooth-Gerät (RFCOMM-Protokoll-TDI)" (RFCOMM) - ? - C:\Windows\System32\DRIVERS\rfcomm.sys (File not found) "Bluetooth-Porttreiber" (BTHPORT) - ? - C:\Windows\System32\Drivers\BTHport.sys (File not found) "Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0" (b57nd60a) - ? - C:\Windows\System32\DRIVERS\b57nd60a.sys (File not found) "Broadcom NetXtreme II 10 GigE VBD" (ebdrv) - ? - C:\Windows\system32\drivers\evbda.sys (File not found) "Broadcom NetXtreme II VBD" (b06bdrv) - ? - C:\Windows\system32\drivers\bxvbda.sys (File not found) "Brother MFC-nur-Fax-Modem (USB)" (BrUsbMdm) - ? - C:\Windows\System32\Drivers\BrUsbMdm.sys (File not found) "Brother MFC-Seriellschnittstellentreiber (WDM)" (Brserid) - ? - C:\Windows\System32\Drivers\Brserid.sys (File not found) "Brother MFC-WDM-Treiber (USB,seriell)" (BrUsbSer) - ? - C:\Windows\System32\Drivers\BrUsbSer.sys (File not found) "Brother USB-Massenspeichertreiber für oberen Filter" (BrFiltUp) - ? - C:\Windows\system32\drivers\BrFiltUp.sys (File not found) "Brother USB-Massenspeichertreiber für unteren Filter" (BrFiltLo) - ? - C:\Windows\system32\drivers\BrFiltLo.sys (File not found) "Brother WDM-Treiber (seriell)" (BrSerWdm) - ? - C:\Windows\System32\Drivers\BrSerWdm.sys (File not found) "BtFilter" (BtFilter) - ? - C:\Windows\System32\DRIVERS\btfilter.sys (File not found) "Busenumeratortreiber für Verbundgeräte" (CompositeBus) - ? - C:\Windows\system32\drivers\CompositeBus.sys (File not found) "CD-ROM-Laufwerktreiber" (cdrom) - ? - C:\Windows\system32\drivers\cdrom.sys (File not found) "cmdide" (cmdide) - ? - C:\Windows\system32\drivers\cmdide.sys (File not found) "CNG" (CNG) - ? - C:\Windows\System32\Drivers\cng.sys (File not found) "Conexant UAA Function Driver for High Definition Audio Service" (CnxtHdAudService) - ? - C:\Windows\System32\drivers\CHDRT64.sys (File not found) "Diskettencontrollertreiber" (fdc) - ? - C:\Windows\system32\drivers\fdc.sys (File not found) "Diskettenlaufwerktreiber" (flpydisk) - ? - C:\Windows\system32\drivers\flpydisk.sys (File not found) "eHome-Infrarotempfänger (USBCIR)" (usbcir) - ? - C:\Windows\system32\drivers\usbcir.sys (File not found) "elxstor" (elxstor) - ? - C:\Windows\system32\drivers\elxstor.sys (File not found) "Enumerator-Treiber für Microsoft Virtual Drive" (vdrvroot) - ? - C:\Windows\System32\drivers\vdrvroot.sys (File not found) "exFAT File System Driver" (exfat) - ? - C:\Windows\system32\drivers\exfat.sys (File not found) "FAT12/16/32 File System Driver" (fastfat) - ? - C:\Windows\system32\drivers\fastfat.sys (File not found) "Fs_Rec" (Fs_Rec) - ? - C:\Windows\system32\drivers\Fs_Rec.sys (File not found) "Hauppauge Consumer Infrared Receiver" (hcw85cir) - ? - C:\Windows\system32\drivers\hcw85cir.sys (File not found) "HID-USV-Akkutreiber" (HidBatt) - ? - C:\Windows\system32\drivers\HidBatt.sys (File not found) "High-Capacity-Diskettenlaufwerk" (sfloppy) - ? - C:\Windows\system32\drivers\sfloppy.sys (File not found) "HpSAMD" (HpSAMD) - ? - C:\Windows\system32\drivers\HpSAMD.sys (File not found) "i8042-Tastatur- und PS/2-Mausanschluss-Treiber" (i8042prt) - ? - C:\Windows\System32\DRIVERS\i8042prt.sys (File not found) "iaStorV" (iaStorV) - ? - C:\Windows\system32\drivers\iaStorV.sys (File not found) "igfx" (igfx) - ? - C:\Windows\System32\DRIVERS\igdkmd64.sys (File not found) "iirsp" (iirsp) - ? - C:\Windows\system32\drivers\iirsp.sys (File not found) "Intel AGP-Bus-Filter" (agp440) - ? - C:\Windows\system32\drivers\agp440.sys (File not found) "Intel AHCI Controller" (iaStor) - ? - C:\Windows\System32\drivers\iaStor.sys (File not found) "Intel(R) Display-Audio" (IntcDAud) - ? - C:\Windows\System32\DRIVERS\IntcDAud.sys (File not found) "Intel(R) Gigabit Network Connections Driver" (e1yexpress) - ? - C:\Windows\System32\DRIVERS\e1y60x64.sys (File not found) "Intel(R) Management Engine Interface" (MEIx64) - ? - C:\Windows\system32\drivers\HECIx64.sys (File not found) "Intel-Prozessortreiber" (intelppm) - ? - C:\Windows\system32\drivers\intelppm.sys (File not found) "intelide" (intelide) - ? - C:\Windows\system32\drivers\intelide.sys (File not found) "IP Network Address Translator" (IPNAT) - ? - C:\Windows\System32\drivers\ipnat.sys (File not found) "IPMIDRV" (IPMIDRV) - ? - C:\Windows\system32\drivers\IPMIDrv.sys (File not found) "isapnp" (isapnp) - ? - C:\Windows\system32\drivers\isapnp.sys (File not found) "iScsiPort-Treiber" (iScsiPrt) - ? - C:\Windows\system32\drivers\msiscsi.sys (File not found) "Kernel Mode Driver Frameworks service" (Wdf01000) - ? - C:\Windows\System32\drivers\Wdf01000.sys (File not found) "Kernel Streaming Thunks" (ksthunk) - ? - C:\Windows\system32\drivers\ksthunk.sys (File not found) "KSecDD" (KSecDD) - ? - C:\Windows\System32\Drivers\ksecdd.sys (File not found) "KSecPkg" (KSecPkg) - ? - C:\Windows\System32\Drivers\ksecpkg.sys (File not found) "Laufwerktreiber" (Disk) - ? - C:\Windows\System32\drivers\disk.sys (File not found) "LDDM Graphics Subsystem" (DXGKrnl) - ? - C:\Windows\System32\drivers\dxgkrnl.sys (File not found) "Link-Layer Topology Discovery Mapper I/O Driver" (lltdio) - ? - C:\Windows\System32\DRIVERS\lltdio.sys (File not found) "Link-Layer Topology Discovery Responder" (rspndr) - ? - C:\Windows\System32\DRIVERS\rspndr.sys (File not found) "LSI_FC" (LSI_FC) - ? - C:\Windows\system32\drivers\lsi_fc.sys (File not found) "LSI_SAS" (LSI_SAS) - ? - C:\Windows\system32\drivers\lsi_sas.sys (File not found) "LSI_SAS2" (LSI_SAS2) - ? - C:\Windows\system32\drivers\lsi_sas2.sys (File not found) "LSI_SCSI" (LSI_SCSI) - ? - C:\Windows\system32\drivers\lsi_scsi.sys (File not found) "Maus-HID-Treiber" (mouhid) - ? - C:\Windows\System32\DRIVERS\mouhid.sys (File not found) "Mausklassentreiber" (mouclass) - ? - C:\Windows\System32\DRIVERS\mouclass.sys (File not found) "MBAMProtector" (MBAMProtector) - "Malwarebytes Corporation" - C:\Windows\system32\drivers\mbam.sys "megasas" (megasas) - ? - C:\Windows\system32\drivers\megasas.sys (File not found) "MegaSR" (MegaSR) - ? - C:\Windows\system32\drivers\MegaSR.sys (File not found) "Microsoft 1.1 UAA-Funktionstreiber für High Definition Audio-Dienst" (HdAudAddService) - ? - C:\Windows\System32\drivers\HdAudio.sys (File not found) "Microsoft ACPI-Treiber" (ACPI) - ? - C:\Windows\System32\drivers\ACPI.sys (File not found) "Microsoft AGPv3.5-Filter" (uagp35) - ? - C:\Windows\system32\drivers\uagp35.sys (File not found) "Microsoft Allgemeiner AGPv3.0-Filter für K8-Prozessorplattformen" (gagp30kx) - ? - C:\Windows\system32\drivers\gagp30kx.sys (File not found) "Microsoft Bluetooth-HID-Miniport" (HidBth) - ? - C:\Windows\system32\drivers\hidbth.sys (File not found) "Microsoft Composite Battery-Treiber" (Compbatt) - ? - C:\Windows\System32\drivers\compbatt.sys (File not found) "Microsoft HID Class-Treiber" (HidUsb) - ? - C:\Windows\System32\DRIVERS\hidusb.sys (File not found) "Microsoft Infrarot-HID-Treiber" (HidIr) - ? - C:\Windows\system32\drivers\hidir.sys (File not found) "Microsoft Input Configuration Driver" (MTConfig) - ? - C:\Windows\system32\drivers\MTConfig.sys (File not found) "Microsoft IPv6 Protocol Driver" (TCPIP6) - ? - C:\Windows\System32\DRIVERS\tcpip.sys (File not found) "Microsoft Monitor-Klassenfunktionstreiber-Dienst" (monitor) - ? - C:\Windows\System32\DRIVERS\monitor.sys (File not found) "Microsoft Proxy für Streaming Clock" (MSPCLOCK) - ? - C:\Windows\System32\drivers\MSPCLOCK.sys (File not found) "Microsoft Proxy für Streaming Quality Manager" (MSPQM) - ? - C:\Windows\System32\drivers\MSPQM.sys (File not found) "Microsoft Standard-USB-Haupttreiber" (usbccgp) - ? - C:\Windows\System32\DRIVERS\usbccgp.sys (File not found) "Microsoft Streaming Service Proxy" (MSKSSRV) - ? - C:\Windows\System32\drivers\MSKSSRV.sys (File not found) "Microsoft Streaming Tee/Sink-to-Sink-Konvertierung" (MSTEE) - ? - C:\Windows\System32\drivers\MSTEE.sys (File not found) "Microsoft Trusted Audio Drivers" (drmkaud) - ? - C:\Windows\System32\drivers\drmkaud.sys (File not found) "Microsoft USB-Druckerklasse" (usbprint) - ? - C:\Windows\System32\DRIVERS\usbprint.sys (File not found) "Microsoft USB-Standardhubtreiber" (usbhub) - ? - C:\Windows\system32\drivers\usbhub.sys (File not found) "Microsoft Virtual WiFi Miniport Service" (vwifimp) - ? - C:\Windows\System32\DRIVERS\vwifimp.sys (File not found) "Microsoft Windows Management Interface for ACPI" (WmiAcpi) - ? - C:\Windows\system32\drivers\wmiacpi.sys (File not found) "Microsoft-Hardwarefehler-Gerätetreiber" (ErrDev) - ? - C:\Windows\system32\drivers\errdev.sys (File not found) "Microsoft-Systemverwaltungs-BIOS-Treiber" (mssmbios) - ? - C:\Windows\system32\drivers\mssmbios.sys (File not found) "Microsoft-Tunnelminiport-Adaptertreiber" (tunnel) - ? - C:\Windows\System32\DRIVERS\tunnel.sys (File not found) "Microsoft-UAA-Bustreiber für High Definition Audio" (HDAudBus) - ? - C:\Windows\system32\drivers\HDAudBus.sys (File not found) "Microsoft-UMPass-Treiber" (UmPass) - ? - C:\Windows\system32\drivers\umpass.sys (File not found) "Miniporttreiber für erweiterten Microsoft USB 2.0-Hostcontroller" (usbehci) - ? - C:\Windows\system32\drivers\usbehci.sys (File not found) "Miniporttreiber für Microsoft USB Open Host-Controller" (usbohci) - ? - C:\Windows\system32\drivers\usbohci.sys (File not found) "Miniporttreiber für universellen Microsoft USB-Hostcontroller" (usbuhci) - ? - C:\Windows\system32\drivers\usbuhci.sys (File not found) "Modem" (Modem) - ? - C:\Windows\System32\drivers\modem.sys (File not found) "mpio" (mpio) - ? - C:\Windows\system32\drivers\mpio.sys (File not found) "mpotpyrk" (mpotpyrk) - ? - C:\Windows\system32\drivers\mpotpyrk.sys (File not found) "msahci" (msahci) - ? - C:\Windows\system32\drivers\msahci.sys (File not found) "msdsm" (msdsm) - ? - C:\Windows\system32\drivers\msdsm.sys (File not found) "Msfs" (Msfs) - ? - C:\Windows\system32\drivers\Msfs.sys (File not found) "msisadrv" (msisadrv) - ? - C:\Windows\System32\drivers\msisadrv.sys (File not found) "MsRPC" (MsRPC) - ? - C:\Windows\system32\drivers\MsRPC.sys (File not found) "NativeWiFi Filter" (NativeWifiP) - ? - C:\Windows\System32\DRIVERS\nwifi.sys (File not found) "NDIS Capture LightWeight Filter" (NdisCap) - ? - C:\Windows\System32\DRIVERS\ndiscap.sys (File not found) "NDIS Usermode I/O Protocol" (Ndisuio) - ? - C:\Windows\System32\DRIVERS\ndisuio.sys (File not found) "NDProxy" (NDProxy) - ? - C:\Windows\system32\drivers\NDProxy.sys (File not found) "NetBIOS Interface" (NetBIOS) - ? - C:\Windows\System32\DRIVERS\netbios.sys (File not found) "nfrd960" (nfrd960) - ? - C:\Windows\system32\drivers\nfrd960.sys (File not found) "Npfs" (Npfs) - ? - C:\Windows\system32\drivers\Npfs.sys (File not found) "Ntfs" (Ntfs) - ? - C:\Windows\system32\drivers\Ntfs.sys (File not found) "Null" (Null) - ? - C:\Windows\system32\drivers\Null.sys (File not found) "NVIDIA nForce AGP-Busfilter" (nv_agp) - ? - C:\Windows\system32\drivers\nv_agp.sys (File not found) "nvlddmkm" (nvlddmkm) - ? - C:\Windows\System32\DRIVERS\nvlddmkm.sys (File not found) "nvraid" (nvraid) - ? - C:\Windows\system32\drivers\nvraid.sys (File not found) "nvstor" (nvstor) - ? - C:\Windows\system32\drivers\nvstor.sys (File not found) "OHCI-konformer 1394-Hostcontroller" (1394ohci) - ? - C:\Windows\system32\drivers\1394ohci.sys (File not found) "OHCI-konformer 1394-Hostcontroller (alt)" (ohci1394) - ? - C:\Windows\system32\drivers\ohci1394.sys (File not found) "PCI-Bus-Treiber" (pci) - ? - C:\Windows\System32\drivers\pci.sys (File not found) "pciide" (pciide) - ? - C:\Windows\system32\drivers\pciide.sys (File not found) "pcmcia" (pcmcia) - ? - C:\Windows\system32\drivers\pcmcia.sys (File not found) "PEAUTH" (PEAUTH) - ? - C:\Windows\System32\drivers\peauth.sys (File not found) "Performance Counters for Windows Driver" (pcw) - ? - C:\Windows\System32\drivers\pcw.sys (File not found) "Prozessortreiber" (Processor) - ? - C:\Windows\system32\drivers\processr.sys (File not found) "ql2300" (ql2300) - ? - C:\Windows\system32\drivers\ql2300.sys (File not found) "ql40xx" (ql40xx) - ? - C:\Windows\system32\drivers\ql40xx.sys (File not found) "RDP Winstation Driver" (RDPWD) - ? - C:\Windows\system32\drivers\RDPWD.sys (File not found) "ReadyBoost" (rdyboost) - ? - C:\Windows\System32\drivers\rdyboost.sys (File not found) "Realtek 8167 NT Driver" (RTL8167) - ? - C:\Windows\System32\DRIVERS\Rt64win7.sys (File not found) "Realtek PCIE CardReader Driver" (RSPCIESTOR) - ? - C:\Windows\System32\DRIVERS\RtsPStor.sys (File not found) "Remote Access Auto Connection Driver" (RasAcd) - ? - C:\Windows\System32\DRIVERS\rasacd.sys (File not found) "Remote Desktop Device Redirector Bus Driver" (rdpbus) - ? - C:\Windows\system32\drivers\rdpbus.sys (File not found) "sbp2port" (sbp2port) - ? - C:\Windows\system32\drivers\sbp2port.sys (File not found) "sdbus" (sdbus) - ? - C:\Windows\System32\DRIVERS\sdbus.sys (File not found) "Security Driver" (secdrv) - ? - C:\Windows\system32\drivers\secdrv.sys (File not found) "Security Processor Loader Driver" (spldr) - ? - C:\Windows\system32\drivers\spldr.sys (File not found) "Serenum-Filtertreiber" (Serenum) - ? - C:\Windows\system32\drivers\serenum.sys (File not found) "Serial" (Serial) - ? - C:\Windows\system32\drivers\serial.sys (File not found) "Serieller Kommunikationstreiber für Bluetooth" (BTHMODEM) - ? - C:\Windows\system32\drivers\bthmodem.sys (File not found) "Serieller Maustreiber" (sermouse) - ? - C:\Windows\system32\drivers\sermouse.sys (File not found) "SFF-Speicherklassentreiber" (sffdisk) - ? - C:\Windows\system32\drivers\sffdisk.sys (File not found) "SFF-Speicherprotokolltreiber für MMC" (sffp_mmc) - ? - C:\Windows\system32\drivers\sffp_mmc.sys (File not found) "SFF-Speicherprotokolltreiber für SDBus" (sffp_sd) - ? - C:\Windows\system32\drivers\sffp_sd.sys (File not found) "SiSRaid2" (SiSRaid2) - ? - C:\Windows\system32\drivers\SiSRaid2.sys (File not found) "SiSRaid4" (SiSRaid4) - ? - C:\Windows\system32\drivers\sisraid4.sys (File not found) "Software-Bus-Treiber" (swenum) - ? - C:\Windows\system32\drivers\swenum.sys (File not found) "Sony Firmware Extension Parser" (SFEP) - ? - C:\Windows\system32\drivers\SFEP.sys (File not found) "Speichervolumes" (volsnap) - ? - C:\Windows\System32\drivers\volsnap.sys (File not found) "srvnet" (srvnet) - ? - C:\Windows\System32\DRIVERS\srvnet.sys (File not found) "stexstor" (stexstor) - ? - C:\Windows\system32\drivers\stexstor.sys (File not found) "syshost.exe" (f03f375b4aa00e1d) - ? - C:\Windows\System32\Drivers\f03f375b4aa00e1d.sys (Hidden registry entry, rootkit activity | File not found) "Tastatur-HID-Treiber" (kbdhid) - ? - C:\Windows\system32\drivers\kbdhid.sys (File not found) "Tastaturklassentreiber" (kbdclass) - ? - C:\Windows\system32\drivers\kbdclass.sys (File not found) "TCP/IP Registry Compatibility" (tcpipreg) - ? - C:\Windows\System32\drivers\tcpipreg.sys (File not found) "TDPIPE" (TDPIPE) - ? - C:\Windows\System32\drivers\tdpipe.sys (File not found) "TDTCP" (TDTCP) - ? - C:\Windows\System32\drivers\tdtcp.sys (File not found) "Terminal-Gerätetreiber" (TermDD) - ? - C:\Windows\system32\drivers\termdd.sys (File not found) "Treiber für Microsoft-ACPI-Kontrollmethodenkompatiblen Akku" (CmBatt) - ? - C:\Windows\system32\drivers\CmBatt.sys (File not found) "Treiber für Microsoft-Überwachungszeitgeber" (Wd) - ? - C:\Windows\System32\drivers\wd.sys (File not found) "Treiber für parallelen Anschluss" (Parport) - ? - C:\Windows\system32\drivers\parport.sys (File not found) "Treiber für Volume-Manager" (volmgr) - ? - C:\Windows\System32\drivers\volmgr.sys (File not found) "TuneUpUtilitiesDrv" (TuneUpUtilitiesDrv) - "TuneUp Software" - C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesDriver64.sys "Uli AGP-Bus-Filter" (uliagpkx) - ? - C:\Windows\system32\drivers\uliagpkx.sys (File not found) "UMBusenumerator-Treiber" (umbus) - ? - C:\Windows\System32\DRIVERS\umbus.sys (File not found) "USB-Massenspeichertreiber" (USBSTOR) - ? - C:\Windows\System32\DRIVERS\USBSTOR.SYS (File not found) "USB-Scannertreiber" (usbscan) - ? - C:\Windows\System32\DRIVERS\usbscan.sys (File not found) "USB-Treiber für Bluetooth-Funkgerät" (BTHUSB) - ? - C:\Windows\System32\Drivers\BTHUSB.sys (File not found) "USB-Videogerät (WDM)" (usbvideo) - ? - C:\Windows\System32\Drivers\usbvideo.sys (File not found) "User Mode Driver Frameworks Platform Driver" (WudfPf) - ? - C:\Windows\System32\drivers\WudfPf.sys (File not found) "vga" (vga) - ? - C:\Windows\System32\DRIVERS\vgapnp.sys (File not found) "VgaSave" (VgaSave) - ? - C:\Windows\System32\drivers\vga.sys (File not found) "vhdmp" (vhdmp) - ? - C:\Windows\system32\drivers\vhdmp.sys (File not found) "viaide" (viaide) - ? - C:\Windows\system32\drivers\viaide.sys (File not found) "Virtual WiFi Filter Driver" (vwififlt) - ? - C:\Windows\System32\DRIVERS\vwififlt.sys (File not found) "Virtueller WiFi-Bustreiber" (vwifibus) - ? - C:\Windows\System32\DRIVERS\vwifibus.sys (File not found) "vsmraid" (vsmraid) - ? - C:\Windows\system32\drivers\vsmraid.sys (File not found) "Wacom HID-Treiber für seriellen Stift" (WacomPen) - ? - C:\Windows\system32\drivers\wacompen.sys (File not found) "WAN Miniport (IKEv2)" (RasAgileVpn) - ? - C:\Windows\System32\DRIVERS\AgileVpn.sys (File not found) "WFP Lightweight Filter" (WfpLwf) - ? - C:\Windows\System32\DRIVERS\wfplwf.sys (File not found) "WIMMount" (WIMMount) - ? - C:\Windows\System32\drivers\wimmount.sys (File not found) "WinUsb" (WinUsb) - ? - C:\Windows\System32\DRIVERS\WinUsb.sys (File not found) "WUDFRd" (WUDFRd) - ? - C:\Windows\System32\DRIVERS\WUDFRd.sys (File not found) [Explorer] -----( HKLM\Software\Classes\Folder\shellex\ColumnHandlers )----- {F9DB5320-233E-11D1-9F84-707F02C10627} "PDF Shell Extension" - "Adobe Systems, Inc." - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\PDFShell.dll -----( HKLM\Software\Classes\Protocols\Filter )----- {807563E5-5146-11D5-A672-00B0D022E945} "Microsoft Office InfoPath XML Mime Filter" - "Microsoft Corporation" - C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL -----( HKLM\Software\Classes\Protocols\Handler )----- {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} "Album Download IE Asynchronous Pluggable Protocol Interface" - "Microsoft Corporation" - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll {314111c7-a502-11d2-bbca-00c04f8ec294} "HxProtocol Class" - "Microsoft Corporation" - C:\Program Files (x86)\Common Files\Microsoft Shared\Help\hxds.dll {828030A1-22C1-4009-854F-8E305202313F} "livecall" - "Microsoft Corporation" - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll {88FED34C-F0CA-4636-A375-3CB6248B04CD} "Local Groove Web Services Protocol" - "Microsoft Corporation" - C:\PROGRA~2\MICROS~4\Office12\GRA32A~1.DLL {828030A1-22C1-4009-854F-8E305202313F} "msnim" - "Microsoft Corporation" - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll {03C514A3-1EFB-4856-9F99-10D7BE1653C0} "Windows Live Mail HTML Asynchronous Pluggable Protocol Handler" - "Microsoft Corporation" - C:\Program Files (x86)\Windows Live\Mail\mailcomm.dll -----( HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks )----- {B5A7F190-DDA6-4420-B3BA-52453494E6CD} "Groove GFS Stub Execution Hook" - "Microsoft Corporation" - C:\PROGRA~2\MICROS~4\Office12\GR469A~1.DLL -----( HKLM\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved )----- {99FD978C-D287-4F50-827F-B2C658EDA8E7} "Groove Explorer Icon Overlay 1 (GFS Unread Stub)" - "Microsoft Corporation" - C:\PROGRA~2\MICROS~4\Office12\GR469A~1.DLL {AB5C5600-7E6E-4B06-9197-9ECEF74D31CC} "Groove Explorer Icon Overlay 2 (GFS Stub)" - "Microsoft Corporation" - C:\PROGRA~2\MICROS~4\Office12\GR469A~1.DLL {920E6DB1-9907-4370-B3A0-BAFC03D81399} "Groove Explorer Icon Overlay 2.5 (GFS Unread Folder)" - "Microsoft Corporation" - C:\PROGRA~2\MICROS~4\Office12\GR469A~1.DLL {16F3DD56-1AF5-4347-846D-7C10C4192619} "Groove Explorer Icon Overlay 3 (GFS Folder)" - "Microsoft Corporation" - C:\PROGRA~2\MICROS~4\Office12\GR469A~1.DLL {2916C86E-86A6-43FE-8112-43ABE6BF8DCC} "Groove Explorer Icon Overlay 4 (GFS Unread Mark)" - "Microsoft Corporation" - C:\PROGRA~2\MICROS~4\Office12\GR469A~1.DLL {2A541AE1-5BF6-4665-A8A3-CFA9672E4291} "Groove Folder Synchronization" - "Microsoft Corporation" - C:\PROGRA~2\MICROS~4\Office12\GR469A~1.DLL {72853161-30C5-4D22-B7F9-0BBC1D38A37E} "Groove GFS Browser Helper" - "Microsoft Corporation" - C:\PROGRA~2\MICROS~4\Office12\GR469A~1.DLL {6C467336-8281-4E60-8204-430CED96822D} "Groove GFS Context Menu Handler" - "Microsoft Corporation" - C:\PROGRA~2\MICROS~4\Office12\GR469A~1.DLL {B5A7F190-DDA6-4420-B3BA-52453494E6CD} "Groove GFS Stub Execution Hook" - "Microsoft Corporation" - C:\PROGRA~2\MICROS~4\Office12\GR469A~1.DLL {A449600E-1DC6-4232-B948-9BD794D62056} "Groove GFS Stub Icon Handler" - "Microsoft Corporation" - C:\PROGRA~2\MICROS~4\Office12\GR469A~1.DLL {387E725D-DC16-4D76-B310-2C93ED4752A0} "Groove XML Icon Handler" - "Microsoft Corporation" - C:\PROGRA~2\MICROS~4\Office12\GR469A~1.DLL {42042206-2D85-11D3-8CFF-005004838597} "Microsoft Office HTML Icon Handler" - "Microsoft Corporation" - C:\Program Files (x86)\Microsoft Office\Office12\msohevi.dll {5858A72C-C2B4-4dd7-B2BF-B76DB1BD9F6C} "Microsoft Office OneNote Namespace Extension for Windows Desktop Search" - "Microsoft Corporation" - C:\PROGRA~2\MICROS~4\Office12\ONFILTER.DLL {00020D75-0000-0000-C000-000000000046} "Microsoft Office Outlook" - "Microsoft Corporation" - C:\PROGRA~2\MICROS~4\Office12\MLSHEXT.DLL {0006F045-0000-0000-C000-000000000046} "Outlook File Icon Extension" - "Microsoft Corporation" - C:\PROGRA~2\MICROS~4\Office12\OLKFSTUB.DLL {4838CD50-7E5D-4811-9B17-C47A85539F28} "TuneUp Disk Space Explorer Shell Extension" - "TuneUp Software" - C:\Program Files (x86)\TuneUp Utilities 2012\DseShExt-x86.dll {4858E7D9-8E12-45a3-B6A3-1CD128C9D403} "TuneUp Shredder Shell Extension" - "TuneUp Software" - C:\Program Files (x86)\TuneUp Utilities 2012\SDShelEx-win32.dll {E6FB5E20-DE35-11CF-9C87-00AA005127ED} "WebCheck" - ? - (File not found | COM-object registry key not found) {2BE99FD4-A181-4996-BFA9-58C5FFD11F6C} "Windows Live Photo Gallery Autoplay Drop Target" - "Microsoft Corporation" - C:\Program Files (x86)\Windows Live\Photo Gallery\WLXPhotoGallery.exe {00F30F64-AC33-42F5-8FD1-5DC2D3FDE06C} "Windows Live Photo Gallery Editor Drop Target" - "Microsoft Corporation" - C:\Program Files (x86)\Windows Live\Photo Gallery\WLXPhotoGallery.exe {00F3712A-CA79-45B4-9E4D-D7891E7F8B9D} "Windows Live Photo Gallery Editor Shim" - "Microsoft Corporation" - C:\Program Files (x86)\Windows Live\Photo Gallery\PhotoViewerShim.dll {00F30F90-3E96-453B-AFCD-D71989ECC2C7} "Windows Live Photo Gallery Viewer Autoplay Shim" - "Microsoft Corporation" - C:\Program Files (x86)\Windows Live\Photo Gallery\PhotoViewerShim.dll {00F33137-EE26-412F-8D71-F84E4C2C6625} "Windows Live Photo Gallery Viewer Autoplay Shim" - "Microsoft Corporation" - C:\Program Files (x86)\Windows Live\Photo Gallery\PhotoViewerShim.dll {00F374B7-B390-4884-B372-2FC349F2172B} "Windows Live Photo Gallery Viewer Drop Target" - "Microsoft Corporation" - C:\Program Files (x86)\Windows Live\Photo Gallery\WLXPhotoGallery.exe {00F346CB-35A4-465B-8B8F-65A29DBAB1F6} "Windows Live Photo Gallery Viewer Shim" - "Microsoft Corporation" - C:\Program Files (x86)\Windows Live\Photo Gallery\PhotoViewerShim.dll {0563DB41-F538-4B37-A92D-4659049B7766} "WLMD Message Handler" - ? - (File not found | COM-object registry key not found) {06A2568A-CED6-4187-BB20-400B8C02BE5A} "{06A2568A-CED6-4187-BB20-400B8C02BE5A}" - "Microsoft Corporation" - C:\Program Files (x86)\Windows Live\Photo Gallery\WLXPhotoAcquireWizard.exe -----( HKLM\Software\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad )----- {E6FB5E20-DE35-11CF-9C87-00AA005127ED} "WebCheck" - ? - (File not found | COM-object registry key not found) [Internet Explorer] -----( HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser )----- ITBar7Height "ITBar7Height" - ? - (File not found | COM-object registry key not found) ITBar7Height64 "ITBar7Height64" - ? - (File not found | COM-object registry key not found) <binary data> "ITBar7Layout" - ? - (File not found | COM-object registry key not found) <binary data> "ITBar7Layout64" - ? - (File not found | COM-object registry key not found) -----( HKLM\SOFTWARE\Microsoft\Code Store Database\Distribution Units )----- {8AD9C840-044E-11D1-B3E9-00805F499D93} "Java Plug-in 1.6.0_22" - "Sun Microsystems, Inc." - C:\Program Files (x86)\Java\jre6\bin\jp2iexp.dll / hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} "Java Plug-in 1.6.0_22" - "Sun Microsystems, Inc." - C:\Program Files (x86)\Java\jre6\bin\jp2iexp.dll / hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} "Java Plug-in 1.6.0_22" - "Sun Microsystems, Inc." - C:\Program Files (x86)\Java\jre6\bin\npjpi160_22.dll / hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab {C3F79A2B-B9B4-4A66-B012-3EE46475B072} "MessengerStatsClient Class" - "Microsoft Corporation" - C:\Windows\Downloaded Program Files\MessengerStatsPAClient.dll / hxxp://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab {5D6F45B3-9043-443D-A792-115447494D24} "UnoCtrl Class" - "Microsoft" - C:\Windows\Downloaded Program Files\GAME_UNO1.dll / hxxp://messenger.zone.msn.com/MessengerGamesContent/GameContent/de/uno1/GAME_UNO1.cab -----( HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions )----- {5F7B1267-94A9-47F5-98DB-E99415F33AEC} "@C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004" - "Microsoft Corporation" - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll {48E73304-E1D6-4330-914C-F5F514E3486C} "An OneNote senden" - "Microsoft Corporation" - C:\PROGRA~2\MICROS~4\Office12\ONBttnIE.dll {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} "ClsidExtension" - "Atheros Commnucations" - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll {FF059E31-CC5A-4E2E-BF3B-96E929D65503} "Research" - "Microsoft Corporation" - C:\PROGRA~2\MICROS~4\Office12\REFIEBAR.DLL -----( HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar )----- {8dcb7100-df86-4384-8842-8fa844297b3f} "Bing Bar" - "Microsoft Corporation." - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll -----( HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects )----- {18DF081C-E8AD-4283-A596-FA578C2EBDC3} "Adobe PDF Link Helper" - "Adobe Systems Incorporated" - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} "CIESpeechBHO Class" - "Atheros Commnucations" - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll {72853161-30C5-4D22-B7F9-0BBC1D38A37E} "Groove GFS Browser Helper" - "Microsoft Corporation" - C:\PROGRA~2\MICROS~4\Office12\GR469A~1.DLL {DBC80044-A445-435b-BC74-9C25C1C588A9} "Java(tm) Plug-In 2 SSV Helper" - "Sun Microsystems, Inc." - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll {9030D464-4C02-4ABF-8ECC-5164760863C6} "Windows Live ID-Anmelde-Hilfsprogramm" - "Microsoft Corp." - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [LSA Providers] -----( HKLM\SYSTEM\CurrentControlSet\Control\Lsa )----- "Security Packages" - "Microsoft Corp." - C:\Windows\system32\livessp.dll [Logon] -----( HKLM\SYSTEM\CurrentControlSet\Control\Terminal Server\Wds\rdpwd )----- "StartupPrograms" - ? - rdpclip (File not found) -----( HKLM\Software\Microsoft\Windows\CurrentVersion\Run )----- "GrooveMonitor" - "Microsoft Corporation" - "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe" "IAStorIcon" - "Intel Corporation" - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe "PMBVolumeWatcher" - "Sony Corporation" - C:\Program Files (x86)\Sony\PMB\PMBVolumeWatcher.exe [Services] -----( HKLM\SYSTEM\CurrentControlSet\Services )----- "@%ProgramFiles%\Windows Defender\MsMpRes.dll,-103" (WinDefend) - ? - C:\Program Files (x86)\Windows Defender\mpsvc.dll (File not found) "@%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101" (WMPNetworkSvc) - ? - "C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe" (File not found) "@%SystemRoot%\System32\uxtuneup.dll,-4096" (UxTuneUp) - "TuneUp Software" - C:\Windows\System32\uxtuneup.dll "Adobe Acrobat Update Service" (AdobeARMservice) - "Adobe Systems Incorporated" - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe "Adobe Flash Player Update Service" (AdobeFlashPlayerUpdateSvc) - "Adobe Systems Incorporated" - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe "ArcSoft Connect Daemon" (ACDaemon) - "ArcSoft Inc." - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe "ASP.NET-Zustandsdienst" (aspnet_state) - "Microsoft Corporation" - C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe "Atheros Bt&Wlan Coex Agent" (Atheros Bt&Wlan Coex Agent) - "Atheros" - C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe "AtherosSvc" (AtherosSvc) - "Atheros Commnucations" - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe "Bing Bar Update Service" (BBSvc) - "Microsoft Corporation." - C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE "CamMonitor" (uCamMonitor) - "ArcSoft, Inc." - C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe "DCDhcpService" (DCDhcpService) - "Atheros Communication Inc." - C:\Program Files\Sony\VAIO Smart Network\WFDA\DCDhcpService.exe "IconMan_R" (IconMan_R) - "Realsil Microelectronics Inc." - C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe "Intel(R) Management and Security Application Local Management Service" (LMS) - "Intel Corporation" - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe "Intel(R) Management and Security Application User Notification Service" (UNS) - "Intel Corporation" - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe "Intel(R) Rapid Storage Technology" (IAStorDataMgrSvc) - "Intel Corporation" - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe "MBAMService" (MBAMService) - "Malwarebytes Corporation" - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe "McAfee Personal Firewall Service" (McMPFSvc) - ? - "C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe" /McCoreSvc (File not found) "Microsoft .NET Framework NGEN v4.0.30319_X64" (clr_optimization_v4.0.30319_64) - "Microsoft Corporation" - C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe "Microsoft .NET Framework NGEN v4.0.30319_X86" (clr_optimization_v4.0.30319_32) - "Microsoft Corporation" - C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe "Microsoft Office Diagnostics Service" (odserv) - "Microsoft Corporation" - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE "Microsoft Office Groove Audit Service" (Microsoft Office Groove Audit Service) - "Microsoft Corporation" - C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe "Mozilla Maintenance Service" (MozillaMaintenance) - "Mozilla Foundation" - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe "Office Source Engine" (ose) - "Microsoft Corporation" - C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE "PMBDeviceInfoProvider" (PMBDeviceInfoProvider) - "Sony Corporation" - C:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe "SeaPort" (SeaPort) - "Microsoft Corporation" - C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE "syshost32" (syshost32) - ? - C:\Windows\Installer\{59C14EBC-E371-A8AB-3464-EE33142DE6C5}\syshost.exe (Hidden registry entry, rootkit activity | File not found) "TuneUp Utilities Service" (TuneUp.UtilitiesSvc) - "TuneUp Software" - C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesService64.exe "VAIO Care Performance Service" (SampleCollector) - "Sony Corporation" - C:\Program Files\Sony\VAIO Care\VCPerfService.exe "VAIO Content Folder Watcher" (VCFw) - "Sony Corporation" - C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe "VAIO Content Importer" (SOHCImp) - "Sony Corporation" - C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe "VAIO Content Metadata Intelligent Analyzing Manager" (VcmIAlzMgr) - "Sony Corporation" - C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe "VAIO Content Metadata Intelligent Network Service Manager" (VcmINSMgr) - "Sony Corporation" - C:\Program Files\Sony\VCM Intelligent Network Service Manager\VcmINSMgr.exe "VAIO Content Metadata XML Interface" (VcmXmlIfHelper) - "Sony Corporation" - C:\Program Files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper64.exe "VAIO Device Searcher" (SOHDs) - "Sony Corporation" - C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe "VAIO Entertainment Common Service" (SpfService) - "Sony Corporation" - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\SPF\SpfService64.exe "VAIO Event Service" (VAIO Event Service) - "Sony Corporation" - C:\Program Files (x86)\Sony\VAIO Event Service\VESMgr.exe "VCService" (VCService) - "Sony Corporation" - C:\Program Files\Sony\VAIO Care\VCService.exe "VSNService" (VSNService) - "Sony Corporation" - C:\Program Files\Sony\VAIO Smart Network\VSNService.exe "VUAgent" (VUAgent) - "Sony Corporation" - C:\Program Files\Sony\VAIO Update Common\VUAgent.exe "Windows Live ID Sign-in Assistant" (wlidsvc) - "Microsoft Corp." - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [Winsock Providers] -----( HKLM\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries )----- "WindowsLive Local NSP" - "Microsoft Corp." - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL "WindowsLive NSP" - "Microsoft Corp." - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL ===[ Logfile end ]=========================================[ Logfile end ]=== If You have questions or want to get some help, You can visit hxxp://forum.online-solutions.ru Code:
ATTFilter aswMBR version 0.9.9.1665 Copyright(c) 2011 AVAST Software
Run date: 2012-06-07 16:44:37
-----------------------------
16:44:37.785 OS Version: Windows x64 6.1.7601 Service Pack 1
16:44:37.785 Number of processors: 4 586 0x2A07
16:44:37.785 ComputerName: ANNA-VAIO UserName: Anna
16:44:37.863 Initialze error C0000001 - driver not loaded
16:44:42.169 AVAST engine defs: 12060700
16:44:46.693 Service scanning
16:44:47.567 Modules scanning
16:44:47.567 Disk 0 trace - called modules:
16:44:47.567
16:44:47.613 AVAST engine scan C:\Windows
16:44:47.660 AVAST engine scan C:\Windows\system32
16:44:47.738 AVAST engine scan C:\Windows\system32\drivers
16:44:47.785 AVAST engine scan C:\Users\Anna
16:44:47.832 AVAST engine scan C:\ProgramData
16:44:47.832 Scan finished successfully
16:45:09.719 The log file has been saved successfully to "C:\Users\Anna\Desktop\aswMBR (1).txt"
|
|
07.06.2012, 15:52
| #21 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Windows Firewall und Windows Update Fehlermeldung 0x80070424 aswMBR bitte nochmal richtig machen, da ging was schief
__________________ --> Windows Firewall und Windows Update Fehlermeldung 0x80070424 |
|
07.06.2012, 21:40
| #22 |
| | Windows Firewall und Windows Update Fehlermeldung 0x80070424 Nochmal - hier der aswMBR-Log: Code:
ATTFilter aswMBR version 0.9.9.1665 Copyright(c) 2011 AVAST Software
Run date: 2012-06-07 22:41:10
-----------------------------
22:41:10.105 OS Version: Windows x64 6.1.7601 Service Pack 1
22:41:10.105 Number of processors: 4 586 0x2A07
22:41:10.105 ComputerName: ANNA-VAIO UserName: Anna
22:41:11.587 Initialze error C0000001 - driver not loaded
22:41:16.080 AVAST engine defs: 12060700
22:41:31.727 Service scanning
22:41:40.213 Service f03f375b4aa00e1d C:\Windows\System32\Drivers\f03f375b4aa00e1d.sys **HIDDEN**
22:41:54.206 Service syshost32 C:\Windows\Installer\{59C14EBC-E371-A8AB-3464-EE33142DE6C5}\syshost.exe **HIDDEN**
22:42:01.772 Modules scanning
22:42:01.772 Disk 0 trace - called modules:
22:42:01.788
22:42:03.629 AVAST engine scan C:\Windows
22:42:06.811 AVAST engine scan C:\Windows\system32
22:45:26.164 AVAST engine scan C:\Windows\system32\drivers
22:45:43.729 AVAST engine scan C:\Users\Anna
22:46:19.251 File: C:\Users\Anna\AppData\Local\{02bfc888-64ea-37ed-3762-28cbf0f1a9fc}\n **INFECTED** Win64:Sirefef-F [Rtk]
22:48:04.176 AVAST engine scan C:\ProgramData
22:49:08.542 Scan finished successfully
22:49:29.243 The log file has been saved successfully to "C:\Users\Anna\Desktop\aswMBR.txt"
Geändert von Annschie (07.06.2012 um 21:50 Uhr) |
|
07.06.2012, 22:06
| #23 | |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Windows Firewall und Windows Update Fehlermeldung 0x80070424Zitat:
 Startest du aswMBR auch per rechtsklick als admin?
__________________ Logfiles bitte immer in CODE-Tags posten |
|
10.06.2012, 22:07
| #24 |
| | Windows Firewall und Windows Update Fehlermeldung 0x80070424 Ja, alles wie in der Anleitung.. Hab's eben nochmal gemacht, kommt aber wieder das gleiche: Code:
ATTFilter aswMBR version 0.9.9.1665 Copyright(c) 2011 AVAST Software
Run date: 2012-06-10 22:56:49
-----------------------------
22:56:49.261 OS Version: Windows x64 6.1.7601 Service Pack 1
22:56:49.261 Number of processors: 4 586 0x2A07
22:56:49.261 ComputerName: ANNA-VAIO UserName: Anna
22:56:50.774 Initialze error C0000001 - driver not loaded
22:57:38.184 AVAST engine defs: 12061001
22:58:06.607 Service scanning
22:58:14.283 Service f03f375b4aa00e1d C:\Windows\System32\Drivers\f03f375b4aa00e1d.sys **HIDDEN**
22:58:27.636 Service syshost32 C:\Windows\Installer\{59C14EBC-E371-A8AB-3464-EE33142DE6C5}\syshost.exe **HIDDEN**
22:58:35.233 Modules scanning
22:58:35.233 Disk 0 trace - called modules:
22:58:35.249
22:58:36.497 AVAST engine scan C:\Windows
22:58:39.071 AVAST engine scan C:\Windows\system32
23:02:00.500 AVAST engine scan C:\Windows\system32\drivers
23:02:17.208 AVAST engine scan C:\Users\Anna
23:02:53.431 File: C:\Users\Anna\AppData\Local\{02bfc888-64ea-37ed-3762-28cbf0f1a9fc}\n **INFECTED** Win64:Sirefef-F [Rtk]
23:04:47.005 AVAST engine scan C:\ProgramData
23:05:49.421 Scan finished successfully
23:06:00.497 The log file has been saved successfully to "C:\Users\Anna\Desktop\aswMBR.txt"
|
|
11.06.2012, 10:09
| #25 | |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Windows Firewall und Windows Update Fehlermeldung 0x80070424 Kein Wunder, da ist ja auch noch was im System  Mach einen OTL-Fix, beende alle evtl. geöffneten Programme, auch Virenscanner deaktivieren (!), starte OTL und kopiere folgenden Text in die "Custom Scan/Fixes" Box (unten in OTL): Code:
ATTFilter :Files
C:\Windows\System32\Drivers\f03f375b4aa00e1d.sys
C:\Users\Anna\AppData\Local\{02bfc888-64ea-37ed-3762-28cbf0f1a9fc}\n
C:\Windows\Installer\{59C14EBC-E371-A8AB-3464-EE33142DE6C5}\syshost.exe
:Commands
[purity]
[emptytemp]
[emptyflash]
[resethosts]
Schau danach mal bitte mit OSAM nach, ob dieser Eintrag vorhanden ist Zitat:
Klick dann oben links auf den Button Fix! Das Logfile müsste geöffnet werden, wenn Du nach dem Fixen auf ok klickst, poste das bitte. Evtl. wird der Rechner neu gestartet. Die mit diesem Script gefixten Einträge, Dateien und Ordner werden zur Sicherheit nicht vollständig gelöscht, es wird eine Sicherheitskopie auf der Systempartition im Ordner "_OTL" erstellt. Hinweis: Das obige Script ist nur für diesen einen User in dieser Situtation erstellt worden. Es ist auf keinen anderen Rechner portierbar und darf nicht anderweitig verwandt werden, da es das System nachhaltig schädigen kann!
__________________ Logfiles bitte immer in CODE-Tags posten |
|
| Themen zu Windows Firewall und Windows Update Fehlermeldung 0x80070424 |
| 0x8007042, 0x80070424, administrator, anti-malware, appdata, autostart, computer, dateien, dateisystem, explorer, fehlermeldung, firewall, heuristiks/extra, heuristiks/shuriken, hilfe!, log, löschen, neu, problem, scan, speicher, spyware.agent, syshost.exe, systemsteuerung, temp, update, updates, windows, windows firewall, windows update, windows updates |
Linear-Darstellung
