| |
| |||||||
Log-Analyse und Auswertung: Laptop Windows 7 , nach Hochfahren weißer BildschirmWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML |
 |
13.05.2013, 17:56
| #16 |
| /// Malware-holic   |  Laptop Windows 7 , nach Hochfahren weißer Bildschirm auf deinem zweiten pc gehe auf start, programme zubehör editor, kopiere dort rein: Code:
ATTFilter :OTL
O20 - HKU\PamDom_ON_D Winlogon: Shell - (C:\Users\PamDom\AppData\Roaming\skype.dat) - D:\Users\PamDom\AppData\Roaming\skype.dat ()
[2013/05/13 09:29:04 | 000,000,004 | ---- | M] () -- D:\Users\PamDom\AppData\Roaming\skype.ini
:Files
C:\Users\PamDom\AppData\Roaming\skype.dat
:Commands
[EMPTYFLASH]
[emptytemp]
dieses speicherst du auf nem usb stick als fix.txt nutze nun wieder OTLPENet.exe (starte also von der erstellten cd) und hake alles an, wie es bereits im post zu OTLPENet.exe beschrieben ist. • Klicke nun bitte auf den Fix Button. es sollte nun eine meldung ähnlich dieser: "load fix from file" erscheinen, lade also die fix.txt von deinem stick. wenn dies nicht funktioniert, bitte den fix manuell eintragen. dann klicke erneut den fix buton. pc startet . neu. gehe ins bios, ändere den Modus wieder.wenn ja, nimm die cd aus dem laufwerk, windows sollte nun normal starten und die otl.txt öffnen, log posten bitte. falls du keine symbole hast, dann rechtsklick, ansicht, desktop symbole einblenden Hinweis: Die Datei bitte wie in der Anleitung zum UpChannel angegeben auch da hochladen. Bitte NICHT die ZIP-Datei hier als Anhang in den Thread posten! Drücke bitte die  + E Taste.
 falls du keine symbole hast, dann rechtsklick, ansicht, desktop symbole einblenden Hinweis: Die Datei bitte wie in der Anleitung zum UpChannel angegeben auch da hochladen. Bitte NICHT die ZIP-Datei hier als Anhang in den Thread posten! Drücke bitte die + E Taste.
__________________ -Verdächtige mails bitte an uns zur Analyse weiterleiten: markusg.trojaner-board@web.de Weiterleiten Anleitung: http://markusg.trojaner-board.de Mails bitte vorerst nach obiger Anleitung an markusg.trojaner-board@web.de Weiterleiten Wenn Ihr uns unterstützen möchtet |
|
13.05.2013, 20:05
| #17 |
 | Laptop Windows 7 , nach Hochfahren weißer Bildschirm Alles klar. Hat alles wie beschrieben funktioniert und die ZIP-Datei habe ich unter dem Link hochgeladen. Erst einmal vielen Dank das ich meinen Desktop wieder sehen kann ... Muss noch etwas getan werden oder ist mein PC wieder befreit ?
__________________ |
|
13.05.2013, 20:09
| #18 |
| /// Malware-holic | Laptop Windows 7 , nach Hochfahren weißer Bildschirm Wir schaun mal weiter.
__________________Downloade dir bitte  TDSSKiller.exe und speichere diese Datei auf dem Desktop
__________________ |
|
13.05.2013, 20:17
| #19 |
| | Laptop Windows 7 , nach Hochfahren weißer Bildschirm 01:13:35.0382 5488 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42 01:13:35.0601 5488 ============================================================ 01:13:35.0601 5488 Current date / time: 2013/05/14 01:13:35.0601 01:13:35.0601 5488 SystemInfo: 01:13:35.0601 5488 01:13:35.0601 5488 OS Version: 6.1.7601 ServicePack: 1.0 01:13:35.0601 5488 Product type: Workstation 01:13:35.0601 5488 ComputerName: PAMDOM-PC 01:13:35.0601 5488 UserName: PamDom 01:13:35.0601 5488 Windows directory: C:\Windows 01:13:35.0601 5488 System windows directory: C:\Windows 01:13:35.0601 5488 Running under WOW64 01:13:35.0601 5488 Processor architecture: Intel x64 01:13:35.0601 5488 Number of processors: 4 01:13:35.0601 5488 Page size: 0x1000 01:13:35.0601 5488 Boot type: Normal boot 01:13:35.0601 5488 ============================================================ 01:13:36.0334 5488 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040 01:13:36.0350 5488 ============================================================ 01:13:36.0350 5488 \Device\Harddisk0\DR0: 01:13:36.0350 5488 MBR partitions: 01:13:36.0350 5488 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x14000, BlocksNum 0x178000 01:13:36.0350 5488 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x18C000, BlocksNum 0x3A1F8000 01:13:36.0350 5488 ============================================================ 01:13:36.0381 5488 C: <-> \Device\Harddisk0\DR0\Partition2 01:13:36.0381 5488 ============================================================ 01:13:36.0381 5488 Initialize success 01:13:36.0381 5488 ============================================================ 01:14:26.0145 2012 ============================================================ 01:14:26.0145 2012 Scan started 01:14:26.0145 2012 Mode: Manual; SigCheck; TDLFS; 01:14:26.0145 2012 ============================================================ 01:14:26.0426 2012 ================ Scan system memory ======================== 01:14:26.0426 2012 System memory - ok 01:14:26.0426 2012 ================ Scan services ============================= 01:14:26.0613 2012 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\DRIVERS\1394ohci.sys 01:14:26.0800 2012 1394ohci - ok 01:14:26.0831 2012 [ 1575A815C27789061F34B4F55AE0B5C3 ] Acceler C:\Windows\system32\DRIVERS\accelern.sys 01:14:26.0878 2012 Acceler - ok 01:14:26.0909 2012 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys 01:14:26.0956 2012 ACPI - ok 01:14:26.0987 2012 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys 01:14:27.0034 2012 AcpiPmi - ok 01:14:27.0190 2012 [ 3927397AC60D943DAF8808AFFED582B7 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe 01:14:27.0221 2012 AdobeARMservice - ok 01:14:27.0346 2012 [ EA856F4A46320389D1899B2CAA7BF40F ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe 01:14:27.0377 2012 AdobeFlashPlayerUpdateSvc - ok 01:14:27.0424 2012 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys 01:14:27.0486 2012 adp94xx - ok 01:14:27.0518 2012 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\drivers\adpahci.sys 01:14:27.0518 2012 adpahci - ok 01:14:27.0533 2012 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\drivers\adpu320.sys 01:14:27.0549 2012 adpu320 - ok 01:14:27.0580 2012 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll 01:14:27.0689 2012 AeLookupSvc - ok 01:14:27.0783 2012 [ A6FB9DB8F1A86861D955FD6975977AE0 ] AESTFilters C:\Program Files\IDT\WDM\AESTSr64.exe 01:14:27.0845 2012 AESTFilters - ok 01:14:27.0939 2012 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys 01:14:28.0001 2012 AFD - ok 01:14:28.0048 2012 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys 01:14:28.0079 2012 agp440 - ok 01:14:28.0142 2012 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe 01:14:28.0157 2012 ALG - ok 01:14:28.0173 2012 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys 01:14:28.0188 2012 aliide - ok 01:14:28.0235 2012 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys 01:14:28.0266 2012 amdide - ok 01:14:28.0282 2012 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys 01:14:28.0329 2012 AmdK8 - ok 01:14:28.0344 2012 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys 01:14:28.0407 2012 AmdPPM - ok 01:14:28.0438 2012 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys 01:14:28.0469 2012 amdsata - ok 01:14:28.0485 2012 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\drivers\amdsbs.sys 01:14:28.0532 2012 amdsbs - ok 01:14:28.0547 2012 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys 01:14:28.0578 2012 amdxata - ok 01:14:28.0625 2012 [ 6D4CB1F46A0AC05326F834FD6B822479 ] ApfiltrService C:\Windows\system32\DRIVERS\Apfiltr.sys 01:14:28.0672 2012 ApfiltrService - ok 01:14:28.0719 2012 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys 01:14:28.0828 2012 AppID - ok 01:14:28.0844 2012 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll 01:14:28.0906 2012 AppIDSvc - ok 01:14:28.0922 2012 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll 01:14:28.0984 2012 Appinfo - ok 01:14:29.0046 2012 [ 4FE5C6D40664AE07BE5105874357D2ED ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe 01:14:29.0078 2012 Apple Mobile Device - ok 01:14:29.0140 2012 [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt C:\Windows\System32\appmgmts.dll 01:14:29.0171 2012 AppMgmt - ok 01:14:29.0218 2012 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\drivers\arc.sys 01:14:29.0234 2012 arc - ok 01:14:29.0265 2012 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\drivers\arcsas.sys 01:14:29.0280 2012 arcsas - ok 01:14:29.0374 2012 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe 01:14:29.0421 2012 aspnet_state - ok 01:14:29.0436 2012 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys 01:14:29.0546 2012 AsyncMac - ok 01:14:29.0577 2012 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys 01:14:29.0592 2012 atapi - ok 01:14:29.0717 2012 [ E604F606D37B153B32BDDECECB024F81 ] ATService C:\Program Files\Fingerprint Sensor\ATService.exe 01:14:30.0138 2012 ATService - ok 01:14:30.0185 2012 [ 688A10829B67B44337D29548A3FC623A ] ATSwpWDF C:\Windows\system32\Drivers\ATSwpWDF.sys 01:14:30.0185 2012 ATSwpWDF - ok 01:14:30.0248 2012 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll 01:14:30.0388 2012 AudioEndpointBuilder - ok 01:14:30.0419 2012 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll 01:14:30.0435 2012 AudioSrv - ok 01:14:30.0482 2012 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll 01:14:30.0544 2012 AxInstSV - ok 01:14:30.0575 2012 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys 01:14:30.0591 2012 b06bdrv - ok 01:14:30.0638 2012 [ 00E4FD35CE3E817F19D6BC2B6F97FD90 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys 01:14:30.0684 2012 b57nd60a - ok 01:14:30.0731 2012 [ C3D8920A5AAF10A72CEDB57D3339280A ] BCM42RLY C:\Windows\system32\drivers\BCM42RLY.sys 01:14:30.0747 2012 BCM42RLY - ok 01:14:30.0918 2012 [ D20EE58C13FF343B90550861EBCD9DDD ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl664.sys 01:14:30.0965 2012 BCM43XX - ok 01:14:31.0012 2012 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll 01:14:31.0043 2012 BDESVC - ok 01:14:31.0090 2012 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys 01:14:31.0168 2012 Beep - ok 01:14:31.0199 2012 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll 01:14:31.0308 2012 BFE - ok 01:14:31.0355 2012 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll 01:14:31.0464 2012 BITS - ok 01:14:31.0496 2012 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys 01:14:31.0511 2012 blbdrive - ok 01:14:31.0542 2012 [ 228086F7ED08E8F1F8622E8F0DED7B6E ] Blfp C:\Windows\system32\DRIVERS\basp.sys 01:14:31.0574 2012 Blfp - ok 01:14:31.0620 2012 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe 01:14:31.0667 2012 Bonjour Service - ok 01:14:31.0714 2012 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys 01:14:31.0761 2012 bowser - ok 01:14:31.0823 2012 [ 96AFB6D33247FE90421A5B2E76F4ED59 ] BrcmMgmtAgent C:\Program Files\Broadcom\MgmtAgent\BrcmMgmtAgent.exe 01:14:31.0901 2012 BrcmMgmtAgent ( UnsignedFile.Multi.Generic ) - warning 01:14:31.0901 2012 BrcmMgmtAgent - detected UnsignedFile.Multi.Generic (1) 01:14:31.0932 2012 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys 01:14:31.0979 2012 BrFiltLo - ok 01:14:31.0979 2012 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys 01:14:31.0995 2012 BrFiltUp - ok 01:14:32.0026 2012 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll 01:14:32.0057 2012 Browser - ok 01:14:32.0073 2012 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys 01:14:32.0135 2012 Brserid - ok 01:14:32.0166 2012 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys 01:14:32.0213 2012 BrSerWdm - ok 01:14:32.0244 2012 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys 01:14:32.0291 2012 BrUsbMdm - ok 01:14:32.0291 2012 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys 01:14:32.0338 2012 BrUsbSer - ok 01:14:32.0385 2012 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys 01:14:32.0416 2012 BthEnum - ok 01:14:32.0432 2012 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys 01:14:32.0494 2012 BTHMODEM - ok 01:14:32.0541 2012 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys 01:14:32.0588 2012 BthPan - ok 01:14:32.0619 2012 [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys 01:14:32.0712 2012 BTHPORT - ok 01:14:32.0744 2012 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll 01:14:32.0837 2012 bthserv - ok 01:14:32.0853 2012 [ F188B7394D81010767B6DF3178519A37 ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys 01:14:32.0868 2012 BTHUSB - ok 01:14:32.0931 2012 [ A0DFB69ADE3444C78B17636FCF28E898 ] BTWAMPFL C:\Windows\system32\DRIVERS\btwampfl.sys 01:14:32.0978 2012 BTWAMPFL - ok 01:14:33.0024 2012 [ 7CF028CE78696882B327FF13D2DFA534 ] btwaudio C:\Windows\system32\drivers\btwaudio.sys 01:14:33.0040 2012 btwaudio - ok 01:14:33.0071 2012 [ 3DEF2370E414B4E299673558BA171A51 ] btwavdt C:\Windows\system32\drivers\btwavdt.sys 01:14:33.0102 2012 btwavdt - ok 01:14:33.0196 2012 [ CC9DAE7759AC2C0D19111C0D38DDD232 ] btwdins C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe 01:14:33.0274 2012 btwdins - ok 01:14:33.0290 2012 [ 9AD0FA253ED531D39FB2D74FE12A5FA9 ] btwl2cap C:\Windows\system32\DRIVERS\btwl2cap.sys 01:14:33.0305 2012 btwl2cap - ok 01:14:33.0321 2012 [ 9937E0E4DFC0030560A6DFE9D3A94B39 ] btwrchid C:\Windows\system32\DRIVERS\btwrchid.sys 01:14:33.0336 2012 btwrchid - ok 01:14:33.0368 2012 [ D1787E11C6A0078DDEAF8CF3EE2AB293 ] CAXHWAZL C:\Windows\system32\DRIVERS\CAXHWAZL.sys 01:14:33.0414 2012 CAXHWAZL - ok 01:14:33.0446 2012 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys 01:14:33.0555 2012 cdfs - ok 01:14:33.0602 2012 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys 01:14:33.0617 2012 cdrom - ok 01:14:33.0664 2012 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll 01:14:33.0758 2012 CertPropSvc - ok 01:14:33.0804 2012 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\drivers\circlass.sys 01:14:33.0851 2012 circlass - ok 01:14:33.0882 2012 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys 01:14:33.0898 2012 CLFS - ok 01:14:33.0945 2012 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe 01:14:33.0960 2012 clr_optimization_v2.0.50727_32 - ok 01:14:34.0007 2012 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe 01:14:34.0023 2012 clr_optimization_v2.0.50727_64 - ok 01:14:34.0085 2012 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe 01:14:34.0116 2012 clr_optimization_v4.0.30319_32 - ok 01:14:34.0132 2012 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe 01:14:34.0163 2012 clr_optimization_v4.0.30319_64 - ok 01:14:34.0194 2012 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys 01:14:34.0226 2012 CmBatt - ok 01:14:34.0257 2012 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys 01:14:34.0272 2012 cmdide - ok 01:14:34.0319 2012 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys 01:14:34.0397 2012 CNG - ok 01:14:34.0428 2012 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys 01:14:34.0428 2012 Compbatt - ok 01:14:34.0475 2012 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys 01:14:34.0522 2012 CompositeBus - ok 01:14:34.0553 2012 COMSysApp - ok 01:14:34.0584 2012 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys 01:14:34.0600 2012 crcdisk - ok 01:14:34.0662 2012 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll 01:14:34.0725 2012 CryptSvc - ok 01:14:34.0772 2012 [ 54DA3DFD29ED9F1619B6F53F3CE55E49 ] CSC C:\Windows\system32\drivers\csc.sys 01:14:34.0850 2012 CSC - ok 01:14:34.0881 2012 [ 3AB183AB4D2C79DCF459CD2C1266B043 ] CscService C:\Windows\System32\cscsvc.dll 01:14:34.0959 2012 CscService - ok 01:14:35.0021 2012 [ 8CE04A5BDD2CE6E62CE02A1C27093104 ] CtClsFlt C:\Windows\system32\DRIVERS\CtClsFlt.sys 01:14:35.0068 2012 CtClsFlt - ok 01:14:35.0130 2012 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll 01:14:35.0240 2012 DcomLaunch - ok 01:14:35.0286 2012 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll 01:14:35.0396 2012 defragsvc - ok 01:14:35.0427 2012 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys 01:14:35.0489 2012 DfsC - ok 01:14:35.0520 2012 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll 01:14:35.0583 2012 Dhcp - ok 01:14:35.0614 2012 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys 01:14:35.0708 2012 discache - ok 01:14:35.0754 2012 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\drivers\disk.sys 01:14:35.0770 2012 Disk - ok 01:14:35.0801 2012 [ 5DB085A8A6600BE6401F2B24EECB5415 ] dmvsc C:\Windows\system32\drivers\dmvsc.sys 01:14:35.0848 2012 dmvsc - ok 01:14:35.0879 2012 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll 01:14:35.0926 2012 Dnscache - ok 01:14:35.0973 2012 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll 01:14:36.0082 2012 dot3svc - ok 01:14:36.0098 2012 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll 01:14:36.0129 2012 DPS - ok 01:14:36.0176 2012 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys 01:14:36.0238 2012 drmkaud - ok 01:14:36.0300 2012 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys 01:14:36.0363 2012 DXGKrnl - ok 01:14:36.0378 2012 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll 01:14:36.0425 2012 EapHost - ok 01:14:36.0534 2012 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\drivers\evbda.sys 01:14:36.0722 2012 ebdrv - ok 01:14:36.0753 2012 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe 01:14:36.0800 2012 EFS - ok 01:14:36.0862 2012 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe 01:14:36.0940 2012 ehRecvr - ok 01:14:36.0956 2012 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe 01:14:37.0002 2012 ehSched - ok 01:14:37.0049 2012 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\drivers\elxstor.sys 01:14:37.0096 2012 elxstor - ok 01:14:37.0096 2012 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys 01:14:37.0112 2012 ErrDev - ok 01:14:37.0143 2012 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll 01:14:37.0268 2012 EventSystem - ok 01:14:37.0283 2012 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys 01:14:37.0377 2012 exfat - ok 01:14:37.0424 2012 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys 01:14:37.0486 2012 fastfat - ok 01:14:37.0533 2012 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe 01:14:37.0611 2012 Fax - ok 01:14:37.0642 2012 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\drivers\fdc.sys 01:14:37.0673 2012 fdc - ok 01:14:37.0704 2012 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll 01:14:37.0767 2012 fdPHost - ok 01:14:37.0782 2012 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll 01:14:37.0814 2012 FDResPub - ok 01:14:37.0829 2012 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys 01:14:37.0845 2012 FileInfo - ok 01:14:37.0860 2012 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys 01:14:37.0938 2012 Filetrace - ok 01:14:37.0985 2012 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\drivers\flpydisk.sys 01:14:38.0001 2012 flpydisk - ok 01:14:38.0016 2012 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys 01:14:38.0063 2012 FltMgr - ok 01:14:38.0126 2012 [ C4C183E6551084039EC862DA1C945E3D ] FontCache C:\Windows\system32\FntCache.dll 01:14:38.0219 2012 FontCache - ok 01:14:38.0250 2012 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe 01:14:38.0266 2012 FontCache3.0.0.0 - ok 01:14:38.0297 2012 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys 01:14:38.0313 2012 FsDepends - ok 01:14:38.0360 2012 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys 01:14:38.0375 2012 Fs_Rec - ok 01:14:38.0438 2012 [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys 01:14:38.0484 2012 fvevol - ok 01:14:38.0500 2012 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys 01:14:38.0531 2012 gagp30kx - ok 01:14:38.0578 2012 [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys 01:14:38.0594 2012 GEARAspiWDM - ok 01:14:38.0640 2012 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll 01:14:38.0765 2012 gpsvc - ok 01:14:38.0828 2012 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe 01:14:38.0843 2012 gupdate - ok 01:14:38.0859 2012 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe 01:14:38.0874 2012 gupdatem - ok 01:14:38.0921 2012 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe 01:14:38.0952 2012 gusvc - ok 01:14:38.0999 2012 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys 01:14:39.0030 2012 hcw85cir - ok 01:14:39.0062 2012 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys 01:14:39.0124 2012 HDAudBus - ok 01:14:39.0140 2012 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\drivers\HidBatt.sys 01:14:39.0186 2012 HidBatt - ok 01:14:39.0202 2012 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\drivers\hidbth.sys 01:14:39.0233 2012 HidBth - ok 01:14:39.0249 2012 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\drivers\hidir.sys 01:14:39.0264 2012 HidIr - ok 01:14:39.0296 2012 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll 01:14:39.0327 2012 hidserv - ok 01:14:39.0342 2012 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys 01:14:39.0358 2012 HidUsb - ok 01:14:39.0389 2012 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll 01:14:39.0452 2012 hkmsvc - ok 01:14:39.0467 2012 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll 01:14:39.0514 2012 HomeGroupListener - ok 01:14:39.0545 2012 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll 01:14:39.0592 2012 HomeGroupProvider - ok 01:14:39.0623 2012 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys 01:14:39.0639 2012 HpSAMD - ok 01:14:39.0732 2012 [ 447256D1C026654C5CD3CC17E7B20631 ] HsfXAudioService C:\Windows\SysWOW64\XAudio64.dll 01:14:39.0795 2012 HsfXAudioService - ok 01:14:39.0857 2012 [ 26C5D00321937E49B6BC91029947D094 ] HSF_DPV C:\Windows\system32\DRIVERS\CAX_DPV.sys 01:14:39.0951 2012 HSF_DPV - ok 01:14:39.0998 2012 [ F47CEC45FB85791D4AB237563AD0FA8F ] HTCAND64 C:\Windows\system32\Drivers\ANDROIDUSB.sys 01:14:39.0998 2012 HTCAND64 - ok 01:14:40.0044 2012 [ B8B1B284362E1D8135112573395D5DA5 ] htcnprot C:\Windows\system32\DRIVERS\htcnprot.sys 01:14:40.0076 2012 htcnprot - ok 01:14:40.0122 2012 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys 01:14:40.0263 2012 HTTP - ok 01:14:40.0294 2012 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys 01:14:40.0310 2012 hwpolicy - ok 01:14:40.0356 2012 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys 01:14:40.0388 2012 i8042prt - ok 01:14:40.0434 2012 [ D7921D5A870B11CC1ADAB198A519D50A ] iaStor C:\Windows\system32\drivers\iaStor.sys 01:14:40.0466 2012 iaStor - ok 01:14:40.0512 2012 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys 01:14:40.0559 2012 iaStorV - ok 01:14:40.0606 2012 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe 01:14:40.0668 2012 idsvc - ok 01:14:40.0965 2012 [ 9937600A1584FF00565D5379EB4C9EDB ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys 01:14:41.0261 2012 igfx - ok 01:14:41.0292 2012 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\drivers\iirsp.sys 01:14:41.0308 2012 iirsp - ok 01:14:41.0339 2012 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll 01:14:41.0480 2012 IKEEXT - ok 01:14:41.0526 2012 [ DD587A55390ED2295BCE6D36AD567DA9 ] Impcd C:\Windows\system32\drivers\Impcd.sys 01:14:41.0558 2012 Impcd - ok 01:14:41.0589 2012 [ FC727061C0F47C8059E88E05D5C8E381 ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys 01:14:41.0636 2012 IntcDAud - ok 01:14:41.0667 2012 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys 01:14:41.0667 2012 intelide - ok 01:14:41.0698 2012 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys 01:14:41.0698 2012 intelppm - ok 01:14:41.0729 2012 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll 01:14:41.0807 2012 IPBusEnum - ok 01:14:41.0854 2012 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys 01:14:41.0932 2012 IpFilterDriver - ok 01:14:41.0994 2012 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll 01:14:42.0010 2012 iphlpsvc - ok 01:14:42.0026 2012 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys 01:14:42.0072 2012 IPMIDRV - ok 01:14:42.0104 2012 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys 01:14:42.0197 2012 IPNAT - ok 01:14:42.0291 2012 [ 4EFFC8FF6D349E971E94B1C670C0C66A ] iPod Service C:\Program Files\iPod\bin\iPodService.exe 01:14:42.0353 2012 iPod Service - ok 01:14:42.0400 2012 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys 01:14:42.0416 2012 IRENUM - ok 01:14:42.0431 2012 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys 01:14:42.0447 2012 isapnp - ok 01:14:42.0462 2012 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys 01:14:42.0494 2012 iScsiPrt - ok 01:14:42.0556 2012 [ 6C85719A21B3F62C2C76280F4BD36C7B ] jhi_service C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe 01:14:42.0650 2012 jhi_service - ok 01:14:42.0681 2012 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys 01:14:42.0696 2012 kbdclass - ok 01:14:42.0728 2012 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys 01:14:42.0774 2012 kbdhid - ok 01:14:42.0790 2012 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe 01:14:42.0821 2012 KeyIso - ok 01:14:42.0852 2012 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys 01:14:42.0884 2012 KSecDD - ok 01:14:42.0899 2012 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys 01:14:42.0930 2012 KSecPkg - ok 01:14:42.0962 2012 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys 01:14:43.0071 2012 ksthunk - ok 01:14:43.0102 2012 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll 01:14:43.0227 2012 KtmRm - ok 01:14:43.0242 2012 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll 01:14:43.0289 2012 LanmanServer - ok 01:14:43.0320 2012 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll 01:14:43.0367 2012 LanmanWorkstation - ok 01:14:43.0398 2012 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys 01:14:43.0508 2012 lltdio - ok 01:14:43.0539 2012 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll 01:14:43.0601 2012 lltdsvc - ok 01:14:43.0648 2012 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll 01:14:43.0757 2012 lmhosts - ok 01:14:43.0804 2012 [ 5F5899711DF18A02162B6D518C17B0D7 ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe 01:14:43.0851 2012 LMS - ok 01:14:43.0882 2012 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys 01:14:43.0913 2012 LSI_FC - ok 01:14:43.0929 2012 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys 01:14:43.0944 2012 LSI_SAS - ok 01:14:43.0976 2012 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys 01:14:44.0007 2012 LSI_SAS2 - ok 01:14:44.0022 2012 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys 01:14:44.0054 2012 LSI_SCSI - ok 01:14:44.0069 2012 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys 01:14:44.0163 2012 luafv - ok 01:14:44.0194 2012 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll 01:14:44.0210 2012 Mcx2Svc - ok 01:14:44.0225 2012 [ E4F44EC214B3E381E1FC844A02926666 ] mdmxsdk C:\Windows\system32\DRIVERS\mdmxsdk.sys 01:14:44.0256 2012 mdmxsdk - ok 01:14:44.0256 2012 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\drivers\megasas.sys 01:14:44.0288 2012 megasas - ok 01:14:44.0303 2012 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys 01:14:44.0319 2012 MegaSR - ok 01:14:44.0350 2012 [ A6518DCC42F7A6E999BB3BEA8FD87567 ] MEIx64 C:\Windows\system32\DRIVERS\HECIx64.sys 01:14:44.0366 2012 MEIx64 - ok 01:14:44.0397 2012 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll 01:14:44.0506 2012 MMCSS - ok 01:14:44.0537 2012 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys 01:14:44.0568 2012 Modem - ok 01:14:44.0584 2012 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys 01:14:44.0615 2012 monitor - ok 01:14:44.0662 2012 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys 01:14:44.0693 2012 mouclass - ok 01:14:44.0724 2012 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys 01:14:44.0740 2012 mouhid - ok 01:14:44.0771 2012 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys 01:14:44.0802 2012 mountmgr - ok 01:14:44.0865 2012 [ F8A10560B35C66F9DE212F03DAD5BFA7 ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys 01:14:44.0912 2012 MpFilter - ok 01:14:44.0927 2012 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys 01:14:44.0974 2012 mpio - ok 01:14:44.0990 2012 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys 01:14:45.0036 2012 mpsdrv - ok 01:14:45.0068 2012 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll 01:14:45.0146 2012 MpsSvc - ok 01:14:45.0161 2012 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys 01:14:45.0177 2012 MRxDAV - ok 01:14:45.0208 2012 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys 01:14:45.0239 2012 mrxsmb - ok 01:14:45.0270 2012 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys 01:14:45.0302 2012 mrxsmb10 - ok 01:14:45.0317 2012 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys 01:14:45.0348 2012 mrxsmb20 - ok 01:14:45.0380 2012 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys 01:14:45.0395 2012 msahci - ok 01:14:45.0426 2012 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys 01:14:45.0458 2012 msdsm - ok 01:14:45.0473 2012 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe 01:14:45.0520 2012 MSDTC - ok 01:14:45.0551 2012 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys 01:14:45.0645 2012 Msfs - ok 01:14:45.0660 2012 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys 01:14:45.0738 2012 mshidkmdf - ok 01:14:45.0770 2012 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys 01:14:45.0770 2012 msisadrv - ok 01:14:45.0801 2012 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll 01:14:45.0863 2012 MSiSCSI - ok 01:14:45.0879 2012 msiserver - ok 01:14:45.0910 2012 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys 01:14:45.0988 2012 MSKSSRV - ok 01:14:46.0050 2012 [ E07DEC52FF801841BA9B6878A60304FB ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe 01:14:46.0066 2012 MsMpSvc - ok 01:14:46.0097 2012 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys 01:14:46.0160 2012 MSPCLOCK - ok 01:14:46.0191 2012 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys 01:14:46.0284 2012 MSPQM - ok 01:14:46.0300 2012 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys 01:14:46.0316 2012 MsRPC - ok 01:14:46.0316 2012 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys 01:14:46.0331 2012 mssmbios - ok 01:14:46.0347 2012 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys 01:14:46.0378 2012 MSTEE - ok 01:14:46.0378 2012 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\drivers\MTConfig.sys 01:14:46.0394 2012 MTConfig - ok 01:14:46.0409 2012 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys 01:14:46.0425 2012 Mup - ok 01:14:46.0456 2012 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll 01:14:46.0581 2012 napagent - ok 01:14:46.0628 2012 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys 01:14:46.0690 2012 NativeWifiP - ok 01:14:46.0752 2012 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys 01:14:46.0815 2012 NDIS - ok 01:14:46.0830 2012 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys 01:14:46.0862 2012 NdisCap - ok 01:14:46.0877 2012 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys 01:14:46.0893 2012 NdisTapi - ok 01:14:46.0908 2012 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys 01:14:46.0940 2012 Ndisuio - ok 01:14:46.0955 2012 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys 01:14:46.0986 2012 NdisWan - ok 01:14:47.0018 2012 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys 01:14:47.0049 2012 NDProxy - ok 01:14:47.0111 2012 [ 6F4607E2333FE21E9E3FF8133A88B35B ] Netaapl C:\Windows\system32\DRIVERS\netaapl64.sys 01:14:47.0142 2012 Netaapl - ok 01:14:47.0174 2012 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys 01:14:47.0236 2012 NetBIOS - ok 01:14:47.0267 2012 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys 01:14:47.0298 2012 NetBT - ok 01:14:47.0314 2012 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe 01:14:47.0314 2012 Netlogon - ok 01:14:47.0361 2012 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll 01:14:47.0486 2012 Netman - ok 01:14:47.0532 2012 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe 01:14:47.0532 2012 NetMsmqActivator - ok 01:14:47.0548 2012 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe 01:14:47.0564 2012 NetPipeActivator - ok 01:14:47.0595 2012 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll 01:14:47.0720 2012 netprofm - ok 01:14:47.0720 2012 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe 01:14:47.0735 2012 NetTcpActivator - ok 01:14:47.0735 2012 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe 01:14:47.0735 2012 NetTcpPortSharing - ok 01:14:47.0782 2012 [ 73CE12B8BDD747B0063CB0A7EF44CEA7 ] netvsc C:\Windows\system32\DRIVERS\netvsc60.sys 01:14:47.0829 2012 netvsc - ok 01:14:47.0860 2012 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys 01:14:47.0876 2012 nfrd960 - ok 01:14:47.0938 2012 [ 162100E0BC8377710F9D170631921C03 ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys 01:14:47.0969 2012 NisDrv - ok 01:14:48.0000 2012 [ C6E15F2F95F9C0A6098D43510B604E52 ] NisSrv c:\Program Files\Microsoft Security Client\NisSrv.exe 01:14:48.0016 2012 NisSrv - ok 01:14:48.0047 2012 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll 01:14:48.0094 2012 NlaSvc - ok 01:14:48.0125 2012 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys 01:14:48.0219 2012 Npfs - ok 01:14:48.0250 2012 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll 01:14:48.0328 2012 nsi - ok 01:14:48.0344 2012 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys 01:14:48.0375 2012 nsiproxy - ok 01:14:48.0453 2012 [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys 01:14:48.0562 2012 Ntfs - ok 01:14:48.0593 2012 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys 01:14:48.0624 2012 Null - ok 01:14:48.0718 2012 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys 01:14:48.0749 2012 nvraid - ok 01:14:48.0874 2012 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys 01:14:48.0905 2012 nvstor - ok 01:14:48.0968 2012 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys 01:14:48.0999 2012 nv_agp - ok 01:14:49.0077 2012 [ 4E37455DB16AEC75862B1D0BC35B589E ] O2FLASH C:\Windows\system32\DRIVERS\o2flash.exe 01:14:49.0092 2012 O2FLASH - ok 01:14:49.0139 2012 [ 6172DB160FC566CF24307941C0E94D8E ] O2MDFRDR C:\Windows\system32\drivers\O2MDFw7x64.sys 01:14:49.0170 2012 O2MDFRDR - ok 01:14:49.0202 2012 [ 8ED738ABA394BBF6D7802698BE453112 ] O2MDRRDR C:\Windows\system32\DRIVERS\O2MDRw7x64.sys 01:14:49.0217 2012 O2MDRRDR - ok 01:14:49.0264 2012 [ 4635935FC972C582632BF45C26BFCB0E ] O2SDIOAssist c:\Windows\SysWOW64\srvany.exe 01:14:49.0264 2012 O2SDIOAssist ( UnsignedFile.Multi.Generic ) - warning 01:14:49.0264 2012 O2SDIOAssist - detected UnsignedFile.Multi.Generic (1) 01:14:49.0295 2012 [ A9C1E6B7C134FAD124338B7944FA996D ] O2SDJRDR C:\Windows\system32\DRIVERS\o2sdjw7x64.sys 01:14:49.0326 2012 O2SDJRDR - ok 01:14:49.0358 2012 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys 01:14:49.0404 2012 ohci1394 - ok 01:14:49.0482 2012 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE 01:14:49.0498 2012 ose - ok 01:14:49.0685 2012 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE 01:14:49.0982 2012 osppsvc - ok 01:14:50.0028 2012 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll 01:14:50.0075 2012 p2pimsvc - ok 01:14:50.0106 2012 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll 01:14:50.0169 2012 p2psvc - ok 01:14:50.0216 2012 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys 01:14:50.0262 2012 Parport - ok 01:14:50.0294 2012 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys 01:14:50.0325 2012 partmgr - ok 01:14:50.0387 2012 [ AFADA8B97BE3C9398DC6C770409C3544 ] PassThru Service C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe 01:14:50.0481 2012 PassThru Service ( UnsignedFile.Multi.Generic ) - warning 01:14:50.0481 2012 PassThru Service - detected UnsignedFile.Multi.Generic (1) 01:14:50.0496 2012 [ 363B3F857ABEE85767E01E3044C539CD ] PBADRV C:\Windows\system32\DRIVERS\PBADRV.sys 01:14:50.0512 2012 PBADRV - ok 01:14:50.0528 2012 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll 01:14:50.0574 2012 PcaSvc - ok 01:14:50.0606 2012 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys 01:14:50.0637 2012 pci - ok 01:14:50.0652 2012 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys 01:14:50.0684 2012 pciide - ok 01:14:50.0715 2012 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\drivers\pcmcia.sys 01:14:50.0746 2012 pcmcia - ok 01:14:50.0762 2012 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys 01:14:50.0777 2012 pcw - ok 01:14:50.0793 2012 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys 01:14:50.0855 2012 PEAUTH - ok 01:14:50.0933 2012 [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll 01:14:51.0027 2012 PeerDistSvc - ok 01:14:51.0058 2012 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe 01:14:51.0074 2012 PerfHost - ok 01:14:51.0136 2012 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll 01:14:51.0323 2012 pla - ok 01:14:51.0354 2012 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll 01:14:51.0370 2012 PlugPlay - ok 01:14:51.0386 2012 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll 01:14:51.0432 2012 PNRPAutoReg - ok 01:14:51.0464 2012 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll 01:14:51.0495 2012 PNRPsvc - ok 01:14:51.0542 2012 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll 01:14:51.0666 2012 PolicyAgent - ok 01:14:51.0698 2012 [ A2CCA4FB273E6050F17A0A416CFF2FCD ] Power C:\Windows\system32\umpo.dll 01:14:51.0729 2012 Power - ok 01:14:51.0744 2012 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys 01:14:51.0822 2012 PptpMiniport - ok 01:14:51.0838 2012 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\drivers\processr.sys 01:14:51.0869 2012 Processor - ok 01:14:51.0900 2012 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll 01:14:51.0932 2012 ProfSvc - ok 01:14:51.0963 2012 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe 01:14:51.0994 2012 ProtectedStorage - ok 01:14:52.0010 2012 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys 01:14:52.0103 2012 Psched - ok 01:14:52.0134 2012 [ 87B04878A6D59D6C79251DC960C674C1 ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys 01:14:52.0134 2012 PxHlpa64 - ok 01:14:52.0197 2012 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\drivers\ql2300.sys 01:14:52.0322 2012 ql2300 - ok 01:14:52.0337 2012 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys 01:14:52.0337 2012 ql40xx - ok 01:14:52.0368 2012 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll 01:14:52.0384 2012 QWAVE - ok 01:14:52.0415 2012 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys 01:14:52.0462 2012 QWAVEdrv - ok 01:14:52.0478 2012 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys 01:14:52.0524 2012 RasAcd - ok 01:14:52.0540 2012 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys 01:14:52.0571 2012 RasAgileVpn - ok 01:14:52.0602 2012 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll 01:14:52.0649 2012 RasAuto - ok 01:14:52.0665 2012 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys 01:14:52.0758 2012 Rasl2tp - ok 01:14:52.0790 2012 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll 01:14:52.0852 2012 RasMan - ok 01:14:52.0868 2012 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys 01:14:52.0899 2012 RasPppoe - ok 01:14:52.0914 2012 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys 01:14:52.0961 2012 RasSstp - ok 01:14:52.0977 2012 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys 01:14:52.0992 2012 rdbss - ok 01:14:53.0024 2012 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys 01:14:53.0024 2012 rdpbus - ok 01:14:53.0039 2012 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys 01:14:53.0117 2012 RDPCDD - ok 01:14:53.0148 2012 [ 1B6163C503398B23FF8B939C67747683 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys 01:14:53.0164 2012 RDPDR - ok 01:14:53.0180 2012 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys 01:14:53.0289 2012 RDPENCDD - ok 01:14:53.0320 2012 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys 01:14:53.0336 2012 RDPREFMP - ok 01:14:53.0367 2012 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys 01:14:53.0382 2012 RDPWD - ok 01:14:53.0414 2012 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys 01:14:53.0445 2012 rdyboost - ok 01:14:53.0476 2012 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll 01:14:53.0507 2012 RemoteAccess - ok 01:14:53.0523 2012 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll 01:14:53.0554 2012 RemoteRegistry - ok 01:14:53.0601 2012 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys 01:14:53.0648 2012 RFCOMM - ok 01:14:53.0772 2012 [ 3C957189B31C34D3AD21967B12B6AED7 ] RoxMediaDB12OEM C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe 01:14:53.0850 2012 RoxMediaDB12OEM - ok 01:14:53.0882 2012 [ 2B73088CC2CA757A172B425C9398E5BC ] RoxWatch12 C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe 01:14:53.0913 2012 RoxWatch12 - ok 01:14:53.0944 2012 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll 01:14:54.0053 2012 RpcEptMapper - ok 01:14:54.0069 2012 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe 01:14:54.0100 2012 RpcLocator - ok 01:14:54.0131 2012 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll 01:14:54.0209 2012 RpcSs - ok 01:14:54.0240 2012 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys 01:14:54.0318 2012 rspndr - ok 01:14:54.0334 2012 [ E60C0A09F997826C7627B244195AB581 ] s3cap C:\Windows\system32\drivers\vms3cap.sys 01:14:54.0350 2012 s3cap - ok 01:14:54.0365 2012 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe 01:14:54.0381 2012 SamSs - ok 01:14:54.0412 2012 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys 01:14:54.0443 2012 sbp2port - ok 01:14:54.0459 2012 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll 01:14:54.0568 2012 SCardSvr - ok 01:14:54.0584 2012 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys 01:14:54.0662 2012 scfilter - ok 01:14:54.0693 2012 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll 01:14:54.0864 2012 Schedule - ok 01:14:54.0896 2012 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll 01:14:54.0911 2012 SCPolicySvc - ok 01:14:54.0927 2012 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll 01:14:54.0958 2012 SDRSVC - ok 01:14:55.0005 2012 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys 01:14:55.0098 2012 secdrv - ok 01:14:55.0130 2012 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll 01:14:55.0208 2012 seclogon - ok 01:14:55.0348 2012 [ 8365191D0FE7DF5972B889821ADBE62B ] SecureStorageService C:\Program Files\Dell\Dell Data Protection\Access\Advanced\Wave\Secure Storage Manager\SecureStorageService.exe 01:14:55.0551 2012 SecureStorageService - ok 01:14:55.0598 2012 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll 01:14:55.0691 2012 SENS - ok 01:14:55.0722 2012 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll 01:14:55.0754 2012 SensrSvc - ok 01:14:55.0785 2012 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\drivers\serenum.sys 01:14:55.0832 2012 Serenum - ok 01:14:55.0847 2012 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\drivers\serial.sys 01:14:55.0894 2012 Serial - ok 01:14:55.0925 2012 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\drivers\sermouse.sys 01:14:55.0956 2012 sermouse - ok 01:14:56.0003 2012 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll 01:14:56.0066 2012 SessionEnv - ok 01:14:56.0097 2012 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys 01:14:56.0112 2012 sffdisk - ok 01:14:56.0112 2012 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys 01:14:56.0128 2012 sffp_mmc - ok 01:14:56.0144 2012 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys 01:14:56.0159 2012 sffp_sd - ok 01:14:56.0175 2012 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys 01:14:56.0222 2012 sfloppy - ok 01:14:56.0253 2012 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll 01:14:56.0378 2012 SharedAccess - ok 01:14:56.0409 2012 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll 01:14:56.0534 2012 ShellHWDetection - ok 01:14:56.0565 2012 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys 01:14:56.0580 2012 SiSRaid2 - ok 01:14:56.0580 2012 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys 01:14:56.0596 2012 SiSRaid4 - ok 01:14:56.0643 2012 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys 01:14:56.0752 2012 Smb - ok 01:14:56.0799 2012 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe 01:14:56.0846 2012 SNMPTRAP - ok 01:14:56.0861 2012 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys 01:14:56.0877 2012 spldr - ok 01:14:56.0908 2012 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe 01:14:56.0939 2012 Spooler - ok 01:14:57.0033 2012 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe 01:14:57.0173 2012 sppsvc - ok 01:14:57.0204 2012 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll 01:14:57.0220 2012 sppuinotify - ok 01:14:57.0251 2012 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys 01:14:57.0267 2012 srv - ok 01:14:57.0298 2012 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys 01:14:57.0314 2012 srv2 - ok 01:14:57.0329 2012 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys 01:14:57.0376 2012 srvnet - ok 01:14:57.0423 2012 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll 01:14:57.0501 2012 SSDPSRV - ok 01:14:57.0516 2012 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll 01:14:57.0532 2012 SstpSvc - ok 01:14:57.0626 2012 [ B2D8B364A831427A5741F6C408FA8AE3 ] STacSV C:\Program Files\IDT\WDM\STacSV64.exe 01:14:57.0672 2012 STacSV - ok 01:14:57.0719 2012 [ E4EA2412FB1B8AEE33667A9CC6D456A4 ] stdcfltn C:\Windows\system32\DRIVERS\stdcfltn.sys 01:14:57.0735 2012 stdcfltn - ok 01:14:57.0782 2012 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\drivers\stexstor.sys 01:14:57.0797 2012 stexstor - ok 01:14:57.0844 2012 [ EF5ACDE92BA3F691BBFEF781CB063501 ] STHDA C:\Windows\system32\DRIVERS\stwrt64.sys 01:14:57.0906 2012 STHDA - ok 01:14:57.0938 2012 [ DECACB6921DED1A38642642685D77DAC ] StillCam C:\Windows\system32\DRIVERS\serscan.sys 01:14:58.0016 2012 StillCam - ok 01:14:58.0062 2012 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll 01:14:58.0156 2012 stisvc - ok 01:14:58.0187 2012 [ 7731F46EC0D687A931CBA063E8F90EF0 ] stllssvr C:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe 01:14:58.0218 2012 stllssvr - ok 01:14:58.0234 2012 [ C40841817EF57D491F22EB103DA587CC ] StorSvc C:\Windows\system32\storsvc.dll 01:14:58.0281 2012 StorSvc - ok 01:14:58.0328 2012 [ D34E4943D5AC096C8EDEEBFD80D76E23 ] storvsc C:\Windows\system32\drivers\storvsc.sys 01:14:58.0343 2012 storvsc - ok 01:14:58.0374 2012 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys 01:14:58.0390 2012 swenum - ok 01:14:58.0452 2012 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll 01:14:58.0562 2012 swprv - ok 01:14:58.0593 2012 [ 4CDD7DF58730D23BA9CB5829A6E2ECEA ] SynthVid C:\Windows\system32\DRIVERS\VMBusVideoM.sys 01:14:58.0593 2012 SynthVid - ok 01:14:58.0655 2012 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll 01:14:58.0764 2012 SysMain - ok 01:14:58.0780 2012 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll 01:14:58.0796 2012 TabletInputService - ok 01:14:58.0811 2012 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll 01:14:58.0889 2012 TapiSrv - ok 01:14:58.0905 2012 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll 01:14:58.0936 2012 TBS - ok 01:14:59.0014 2012 [ B62A953F2BF3922C8764A29C34A22899 ] Tcpip C:\Windows\system32\drivers\tcpip.sys 01:14:59.0123 2012 Tcpip - ok 01:14:59.0170 2012 [ B62A953F2BF3922C8764A29C34A22899 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys 01:14:59.0248 2012 TCPIP6 - ok 01:14:59.0264 2012 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys 01:14:59.0279 2012 tcpipreg - ok 01:14:59.0373 2012 [ 3D52B206D9F6F3ECFDB5D676614E47B6 ] tcsd_win32.exe C:\Program Files (x86)\NTRU Cryptosystems\NTRU TCG Software Stack\bin\tcsd_win32.exe 01:14:59.0732 2012 tcsd_win32.exe ( UnsignedFile.Multi.Generic ) - warning 01:14:59.0732 2012 tcsd_win32.exe - detected UnsignedFile.Multi.Generic (1) 01:14:59.0872 2012 [ E2F626E4A23E12DE31D8820FF143A456 ] TdmService C:\Program Files\Dell\Dell Data Protection\Access\Advanced\Wave\Trusted Drive Manager\TdmService.exe 01:15:00.0044 2012 TdmService - ok 01:15:00.0059 2012 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys 01:15:00.0090 2012 TDPIPE - ok 01:15:00.0106 2012 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys 01:15:00.0122 2012 TDTCP - ok 01:15:00.0137 2012 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys 01:15:00.0231 2012 tdx - ok 01:15:00.0246 2012 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys 01:15:00.0262 2012 TermDD - ok 01:15:00.0293 2012 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll 01:15:00.0418 2012 TermService - ok 01:15:00.0434 2012 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll 01:15:00.0496 2012 Themes - ok 01:15:00.0527 2012 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll 01:15:00.0605 2012 THREADORDER - ok 01:15:00.0621 2012 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll 01:15:00.0730 2012 TrkWks - ok 01:15:00.0777 2012 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe 01:15:00.0808 2012 TrustedInstaller - ok 01:15:00.0855 2012 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys 01:15:00.0917 2012 tssecsrv - ok 01:15:00.0933 2012 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys 01:15:00.0948 2012 TsUsbFlt - ok 01:15:00.0964 2012 [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys 01:15:01.0011 2012 TsUsbGD - ok 01:15:01.0042 2012 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys 01:15:01.0120 2012 tunnel - ok 01:15:01.0136 2012 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\drivers\uagp35.sys 01:15:01.0151 2012 uagp35 - ok 01:15:01.0167 2012 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys 01:15:01.0198 2012 udfs - ok 01:15:01.0229 2012 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe 01:15:01.0260 2012 UI0Detect - ok 01:15:01.0276 2012 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys 01:15:01.0307 2012 uliagpkx - ok 01:15:01.0323 2012 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys 01:15:01.0354 2012 umbus - ok 01:15:01.0370 2012 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\drivers\umpass.sys 01:15:01.0416 2012 UmPass - ok 01:15:01.0448 2012 [ A293DCD756D04D8492A750D03B9A297C ] UmRdpService C:\Windows\System32\umrdp.dll 01:15:01.0494 2012 UmRdpService - ok 01:15:01.0619 2012 [ F7A1F83F28B125AA3737BC06EABB0CD5 ] UNS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe 01:15:01.0697 2012 UNS - ok 01:15:01.0744 2012 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll 01:15:01.0822 2012 upnphost - ok 01:15:01.0884 2012 [ 43228F8EDD1B0BCDD3145AD246E63D39 ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys 01:15:01.0931 2012 USBAAPL64 ( UnsignedFile.Multi.Generic ) - warning 01:15:01.0931 2012 USBAAPL64 - detected UnsignedFile.Multi.Generic (1) 01:15:01.0962 2012 [ 19AD7990C0B67E48DAC5B26F99628223 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys 01:15:02.0009 2012 usbccgp - ok 01:15:02.0040 2012 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys 01:15:02.0072 2012 usbcir - ok 01:15:02.0103 2012 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys 01:15:02.0134 2012 usbehci - ok 01:15:02.0196 2012 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys 01:15:02.0243 2012 usbhub - ok 01:15:02.0274 2012 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys 01:15:02.0306 2012 usbohci - ok 01:15:02.0352 2012 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys 01:15:02.0399 2012 usbprint - ok 01:15:02.0430 2012 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys 01:15:02.0477 2012 usbscan - ok 01:15:02.0477 2012 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS 01:15:02.0540 2012 USBSTOR - ok 01:15:02.0555 2012 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys 01:15:02.0571 2012 usbuhci - ok 01:15:02.0618 2012 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys 01:15:02.0664 2012 usbvideo - ok 01:15:02.0727 2012 [ 7B28E2FBE75115660FAB31079C0A9F29 ] usb_rndisx C:\Windows\system32\DRIVERS\usb8023x.sys 01:15:02.0789 2012 usb_rndisx - ok 01:15:02.0805 2012 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll 01:15:02.0898 2012 UxSms - ok 01:15:02.0914 2012 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe 01:15:02.0914 2012 VaultSvc - ok 01:15:02.0961 2012 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys 01:15:02.0976 2012 vdrvroot - ok 01:15:03.0039 2012 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe 01:15:03.0148 2012 vds - ok 01:15:03.0164 2012 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys 01:15:03.0164 2012 vga - ok 01:15:03.0195 2012 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys 01:15:03.0226 2012 VgaSave - ok 01:15:03.0242 2012 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys 01:15:03.0257 2012 vhdmp - ok 01:15:03.0257 2012 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys 01:15:03.0273 2012 viaide - ok 01:15:03.0288 2012 [ 7DE90B48F210D29649380545DB45A187 ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys 01:15:03.0320 2012 VMBusHID - ok 01:15:03.0351 2012 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys 01:15:03.0382 2012 volmgr - ok 01:15:03.0398 2012 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys 01:15:03.0444 2012 volmgrx - ok 01:15:03.0460 2012 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys 01:15:03.0507 2012 volsnap - ok 01:15:03.0522 2012 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys 01:15:03.0538 2012 vsmraid - ok 01:15:03.0600 2012 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe 01:15:03.0756 2012 VSS - ok 01:15:03.0788 2012 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys 01:15:03.0834 2012 vwifibus - ok 01:15:03.0866 2012 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys 01:15:03.0928 2012 vwififlt - ok 01:15:03.0944 2012 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys 01:15:04.0006 2012 vwifimp - ok 01:15:04.0037 2012 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll 01:15:04.0162 2012 W32Time - ok 01:15:04.0178 2012 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\drivers\wacompen.sys 01:15:04.0193 2012 WacomPen - ok 01:15:04.0224 2012 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys 01:15:04.0287 2012 WANARP - ok 01:15:04.0302 2012 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys 01:15:04.0334 2012 Wanarpv6 - ok 01:15:04.0427 2012 [ E45BCE01F15EEB240FE9DB83B9D86BE3 ] Wave Authentication Manager Service C:\Program Files\Dell\Dell Data Protection\Access\Advanced\Wave\Authentication Manager\WaveAMService.exe 01:15:04.0692 2012 Wave Authentication Manager Service ( UnsignedFile.Multi.Generic ) - warning 01:15:04.0692 2012 Wave Authentication Manager Service - detected UnsignedFile.Multi.Generic (1) 01:15:04.0755 2012 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe 01:15:04.0864 2012 wbengine - ok 01:15:04.0895 2012 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll 01:15:04.0942 2012 WbioSrvc - ok 01:15:04.0958 2012 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll 01:15:04.0973 2012 wcncsvc - ok 01:15:04.0989 2012 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll 01:15:05.0020 2012 WcsPlugInService - ok 01:15:05.0051 2012 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\drivers\wd.sys 01:15:05.0083 2012 Wd - ok 01:15:05.0129 2012 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys 01:15:05.0207 2012 Wdf01000 - ok 01:15:05.0223 2012 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll 01:15:05.0254 2012 WdiServiceHost - ok 01:15:05.0254 2012 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll 01:15:05.0270 2012 WdiSystemHost - ok 01:15:05.0301 2012 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll 01:15:05.0363 2012 WebClient - ok 01:15:05.0395 2012 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll 01:15:05.0488 2012 Wecsvc - ok 01:15:05.0504 2012 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll 01:15:05.0535 2012 wercplsupport - ok 01:15:05.0566 2012 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll 01:15:05.0597 2012 WerSvc - ok 01:15:05.0613 2012 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys 01:15:05.0644 2012 WfpLwf - ok 01:15:05.0660 2012 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys 01:15:05.0660 2012 WIMMount - ok 01:15:05.0707 2012 [ A6EA7A3FC4B00F48535B506DB1E86EFD ] winachsf C:\Windows\system32\DRIVERS\CAX_CNXT.sys 01:15:05.0769 2012 winachsf - ok 01:15:05.0785 2012 WinDefend - ok 01:15:05.0800 2012 WinHttpAutoProxySvc - ok 01:15:05.0878 2012 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll 01:15:05.0956 2012 Winmgmt - ok 01:15:06.0019 2012 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll 01:15:06.0159 2012 WinRM - ok 01:15:06.0190 2012 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys 01:15:06.0237 2012 WinUsb - ok 01:15:06.0284 2012 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll 01:15:06.0377 2012 Wlansvc - ok 01:15:06.0424 2012 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe 01:15:06.0440 2012 wlcrasvc - ok 01:15:06.0549 2012 [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE 01:15:06.0689 2012 wlidsvc - ok 01:15:06.0721 2012 [ 55DBB16FDC57808615323389241FDC99 ] wltrysvc C:\Program Files\Dell\DW WLAN Card\WLTRYSVC.EXE 01:15:06.0752 2012 wltrysvc ( UnsignedFile.Multi.Generic ) - warning 01:15:06.0752 2012 wltrysvc - detected UnsignedFile.Multi.Generic (1) 01:15:06.0783 2012 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys 01:15:06.0830 2012 WmiAcpi - ok 01:15:06.0861 2012 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe 01:15:06.0908 2012 wmiApSrv - ok 01:15:06.0939 2012 WMPNetworkSvc - ok 01:15:06.0970 2012 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll 01:15:07.0001 2012 WPCSvc - ok 01:15:07.0033 2012 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll 01:15:07.0064 2012 WPDBusEnum - ok 01:15:07.0095 2012 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys 01:15:07.0111 2012 ws2ifsl - ok 01:15:07.0126 2012 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll 01:15:07.0157 2012 wscsvc - ok 01:15:07.0157 2012 WSearch - ok 01:15:07.0251 2012 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll 01:15:07.0360 2012 wuauserv - ok 01:15:07.0376 2012 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys 01:15:07.0391 2012 WudfPf - ok 01:15:07.0423 2012 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys 01:15:07.0438 2012 WUDFRd - ok 01:15:07.0469 2012 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll 01:15:07.0516 2012 wudfsvc - ok 01:15:07.0547 2012 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll 01:15:07.0610 2012 WwanSvc - ok 01:15:07.0641 2012 [ E8F3FA126A06F8E7088F63757112A186 ] XAudio C:\Windows\system32\DRIVERS\XAudio64.sys 01:15:07.0688 2012 XAudio - ok 01:15:07.0750 2012 ================ Scan global =============================== 01:15:07.0766 2012 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll 01:15:07.0813 2012 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll 01:15:07.0828 2012 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll 01:15:07.0859 2012 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll 01:15:07.0891 2012 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe 01:15:07.0906 2012 [Global] - ok 01:15:07.0906 2012 ================ Scan MBR ================================== 01:15:07.0922 2012 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0 01:15:08.0359 2012 \Device\Harddisk0\DR0 - ok 01:15:08.0359 2012 ================ Scan VBR ================================== 01:15:08.0390 2012 [ C05402777225FF4E2189CE7E900C1D80 ] \Device\Harddisk0\DR0\Partition1 01:15:08.0390 2012 \Device\Harddisk0\DR0\Partition1 - ok 01:15:08.0405 2012 [ 0CDE42143D69F89E0951086D33C80791 ] \Device\Harddisk0\DR0\Partition2 01:15:08.0405 2012 \Device\Harddisk0\DR0\Partition2 - ok 01:15:08.0405 2012 ============================================================ 01:15:08.0405 2012 Scan finished 01:15:08.0405 2012 ============================================================ 01:15:08.0437 5104 Detected object count: 7 01:15:08.0437 5104 Actual detected object count: 7 01:15:21.0712 5104 BrcmMgmtAgent ( UnsignedFile.Multi.Generic ) - skipped by user 01:15:21.0712 5104 BrcmMgmtAgent ( UnsignedFile.Multi.Generic ) - User select action: Skip 01:15:21.0712 5104 O2SDIOAssist ( UnsignedFile.Multi.Generic ) - skipped by user 01:15:21.0712 5104 O2SDIOAssist ( UnsignedFile.Multi.Generic ) - User select action: Skip 01:15:21.0712 5104 PassThru Service ( UnsignedFile.Multi.Generic ) - skipped by user 01:15:21.0712 5104 PassThru Service ( UnsignedFile.Multi.Generic ) - User select action: Skip 01:15:21.0712 5104 tcsd_win32.exe ( UnsignedFile.Multi.Generic ) - skipped by user 01:15:21.0712 5104 tcsd_win32.exe ( UnsignedFile.Multi.Generic ) - User select action: Skip 01:15:21.0728 5104 USBAAPL64 ( UnsignedFile.Multi.Generic ) - skipped by user 01:15:21.0728 5104 USBAAPL64 ( UnsignedFile.Multi.Generic ) - User select action: Skip 01:15:21.0728 5104 Wave Authentication Manager Service ( UnsignedFile.Multi.Generic ) - skipped by user 01:15:21.0728 5104 Wave Authentication Manager Service ( UnsignedFile.Multi.Generic ) - User select action: Skip 01:15:21.0728 5104 wltrysvc ( UnsignedFile.Multi.Generic ) - skipped by user 01:15:21.0728 5104 wltrysvc ( UnsignedFile.Multi.Generic ) - User select action: Skip Es scheinen noch ein paar Sachen auf dem PC zu sein die dahin nicht gehören. Hast du eventuell noch einen Tipp wie ich diese los werden kann? |
|
13.05.2013, 20:41
| #20 |
| /// Malware-holic | Laptop Windows 7 , nach Hochfahren weißer Bildschirm Nein das ist alles ok. Scan mit Combofix
__________________ -Verdächtige mails bitte an uns zur Analyse weiterleiten: markusg.trojaner-board@web.de Weiterleiten Anleitung: http://markusg.trojaner-board.de Mails bitte vorerst nach obiger Anleitung an markusg.trojaner-board@web.de Weiterleiten Wenn Ihr uns unterstützen möchtet |
|
14.05.2013, 13:11
| #21 |
| | Laptop Windows 7 , nach Hochfahren weißer Bildschirm Hallo habe nun alle Schritte befolgt und als das Programm fertig war, wurde der PC neu gestartet. Nun habe ih ein Problem. Wenn ich mein Passwort zur Anmeldung eingebe kommt folgende Meldung: Die Anforderung wird nicht unterstützt. Was soll ich nun machen ? |
|
14.05.2013, 13:13
| #22 |
| /// Malware-holic | Laptop Windows 7 , nach Hochfahren weißer Bildschirm versuch mal überf8, bei neustart, letzte bekannte funktionierene Konfig laden, bzw fals das nicht geht pc reparieren
__________________ -Verdächtige mails bitte an uns zur Analyse weiterleiten: markusg.trojaner-board@web.de Weiterleiten Anleitung: http://markusg.trojaner-board.de Mails bitte vorerst nach obiger Anleitung an markusg.trojaner-board@web.de Weiterleiten Wenn Ihr uns unterstützen möchtet |
|
14.05.2013, 13:19
| #23 |
| | Laptop Windows 7 , nach Hochfahren weißer Bildschirm Danke das hat funktioniert. Soll ich es dabei belassen oder weitermachen ? Combo Fix Meldung: Bereite Logdatei vor. Starte keine anderen Programme, bevor Combofix fertig ist. Es passiert allerdings nichts. |
|
14.05.2013, 13:22
| #24 |
| /// Malware-holic | Laptop Windows 7 , nach Hochfahren weißer Bildschirm das kann evtl. dauern, mal n bissel Geduld
__________________ -Verdächtige mails bitte an uns zur Analyse weiterleiten: markusg.trojaner-board@web.de Weiterleiten Anleitung: http://markusg.trojaner-board.de Mails bitte vorerst nach obiger Anleitung an markusg.trojaner-board@web.de Weiterleiten Wenn Ihr uns unterstützen möchtet |
|
14.05.2013, 13:38
| #25 |
| | Laptop Windows 7 , nach Hochfahren weißer Bildschirm Combofix Logfile: Code:
ATTFilter ComboFix 13-05-13.01 - PamDom 14.05.2013 17:53:00.1.4 - x64
Microsoft Windows 7 Professional 6.1.7601.1.1252.49.1031.18.3993.2455 [GMT 2:00]
ausgeführt von:: c:\users\PamDom\Desktop\ComboFix.exe
AV: Microsoft Security Essentials *Enabled/Updated* {3F839487-C7A2-C958-E30C-E2825BA31FB5}
SP: Microsoft Security Essentials *Enabled/Updated* {84E27563-E198-C6D6-D9BC-D9F020245508}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((((((((((((( Weitere Löschungen ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\SysWow64\instsrv.exe
.
.
((((((((((((((((((((((( Dateien erstellt von 2013-04-14 bis 2013-05-14 ))))))))))))))))))))))))))))))
.
.
2013-05-14 04:53 . 2013-05-13 22:58 -------- d-----w- C:\_OTL
2013-05-13 23:09 . 2013-04-10 03:46 9317456 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{07A49E8D-A505-4FF9-9A23-17BEA26382EB}\mpengine.dll
2013-05-12 13:21 . 2013-04-10 03:46 9317456 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2013-05-07 10:56 . 2013-05-07 10:56 -------- d-----w- c:\programdata\HP Photo Creations
2013-05-07 10:56 . 2013-05-07 10:56 -------- d-----w- c:\program files (x86)\HP Photo Creations
2013-05-07 10:56 . 2013-05-07 10:56 -------- d-----w- c:\programdata\Visan
2013-04-24 13:50 . 2013-04-24 13:49 905296 ------w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{0320E05E-08EE-4565-A6EE-BE49C6A4940F}\gapaengine.dll
2013-04-24 13:32 . 2013-04-12 14:45 1656680 ----a-w- c:\windows\system32\drivers\ntfs.sys
.
.
.
(((((((((((((((((((((((((((((((((((( Find3M Bericht ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-05-02 15:29 . 2010-11-21 03:27 278800 ------w- c:\windows\system32\MpSigStub.exe
2013-04-12 01:02 . 2012-04-02 17:32 72702784 ----a-w- c:\windows\system32\MRT.exe
2013-03-19 06:04 . 2013-04-11 22:13 5550424 ----a-w- c:\windows\system32\ntoskrnl.exe
2013-03-19 05:46 . 2013-04-11 22:13 43520 ----a-w- c:\windows\system32\csrsrv.dll
2013-03-19 05:04 . 2013-04-11 22:13 3968856 ----a-w- c:\windows\SysWow64\ntkrnlpa.exe
2013-03-19 05:04 . 2013-04-11 22:13 3913560 ----a-w- c:\windows\SysWow64\ntoskrnl.exe
2013-03-19 04:47 . 2013-04-11 22:13 6656 ----a-w- c:\windows\SysWow64\apisetschema.dll
2013-03-19 03:06 . 2013-04-11 22:13 112640 ----a-w- c:\windows\system32\smss.exe
2013-03-15 02:02 . 2013-03-15 02:02 226304 ----a-w- c:\windows\system32\elshyph.dll
2013-03-15 02:02 . 2013-03-15 02:02 185344 ----a-w- c:\windows\SysWow64\elshyph.dll
2013-03-15 02:02 . 2013-03-15 02:02 158720 ----a-w- c:\windows\SysWow64\msls31.dll
2013-03-15 02:02 . 2013-03-15 02:02 1054720 ----a-w- c:\windows\system32\MsSpellCheckingFacility.exe
2013-03-15 02:01 . 2013-03-15 02:01 73728 ----a-w- c:\windows\SysWow64\SetIEInstalledDate.exe
2013-03-15 02:01 . 2013-03-15 02:01 719360 ----a-w- c:\windows\SysWow64\mshtmlmedia.dll
2013-03-15 02:01 . 2013-03-15 02:01 61952 ----a-w- c:\windows\SysWow64\tdc.ocx
2013-03-15 02:01 . 2013-03-15 02:01 523264 ----a-w- c:\windows\SysWow64\vbscript.dll
2013-03-15 02:01 . 2013-03-15 02:01 48640 ----a-w- c:\windows\SysWow64\mshtmler.dll
2013-03-15 02:01 . 2013-03-15 02:01 38400 ----a-w- c:\windows\SysWow64\imgutil.dll
2013-03-15 02:01 . 2013-03-15 02:01 361984 ----a-w- c:\windows\SysWow64\html.iec
2013-03-15 02:01 . 2013-03-15 02:01 23040 ----a-w- c:\windows\SysWow64\licmgr10.dll
2013-03-15 02:01 . 2013-03-15 02:01 150528 ----a-w- c:\windows\SysWow64\iexpress.exe
2013-03-15 02:01 . 2013-03-15 02:01 1441280 ----a-w- c:\windows\SysWow64\inetcpl.cpl
2013-03-15 02:01 . 2013-03-15 02:01 138752 ----a-w- c:\windows\SysWow64\wextract.exe
2013-03-15 02:01 . 2013-03-15 02:01 137216 ----a-w- c:\windows\SysWow64\ieUnatt.exe
2013-03-15 02:01 . 2013-03-15 02:01 12800 ----a-w- c:\windows\SysWow64\mshta.exe
2013-03-15 02:01 . 2013-03-15 02:01 110592 ----a-w- c:\windows\SysWow64\IEAdvpack.dll
2013-03-15 02:01 . 2013-03-15 02:01 905728 ----a-w- c:\windows\system32\mshtmlmedia.dll
2013-03-15 02:01 . 2013-03-15 02:01 81408 ----a-w- c:\windows\system32\icardie.dll
2013-03-15 02:01 . 2013-03-15 02:01 762368 ----a-w- c:\windows\system32\ieapfltr.dll
2013-03-15 02:01 . 2013-03-15 02:01 452096 ----a-w- c:\windows\system32\dxtmsft.dll
2013-03-15 02:01 . 2013-03-15 02:01 441856 ----a-w- c:\windows\system32\html.iec
2013-03-15 02:01 . 2013-03-15 02:01 281600 ----a-w- c:\windows\system32\dxtrans.dll
2013-03-15 02:01 . 2013-03-15 02:01 270848 ----a-w- c:\windows\system32\iedkcs32.dll
2013-03-15 02:01 . 2013-03-15 02:01 235008 ----a-w- c:\windows\system32\url.dll
2013-03-15 02:01 . 2013-03-15 02:01 216064 ----a-w- c:\windows\system32\msls31.dll
2013-03-15 02:01 . 2013-03-15 02:01 197120 ----a-w- c:\windows\system32\msrating.dll
2013-03-15 02:01 . 2013-03-15 02:01 1400416 ----a-w- c:\windows\system32\ieapfltr.dat
2013-03-15 02:01 . 2013-03-15 02:01 97280 ----a-w- c:\windows\system32\mshtmled.dll
2013-03-15 02:01 . 2013-03-15 02:01 92160 ----a-w- c:\windows\system32\SetIEInstalledDate.exe
2013-03-15 02:01 . 2013-03-15 02:01 77312 ----a-w- c:\windows\system32\tdc.ocx
2013-03-15 02:01 . 2013-03-15 02:01 62976 ----a-w- c:\windows\system32\pngfilt.dll
2013-03-15 02:01 . 2013-03-15 02:01 599552 ----a-w- c:\windows\system32\vbscript.dll
2013-03-15 02:01 . 2013-03-15 02:01 52224 ----a-w- c:\windows\system32\msfeedsbs.dll
2013-03-15 02:01 . 2013-03-15 02:01 51200 ----a-w- c:\windows\system32\imgutil.dll
2013-03-15 02:01 . 2013-03-15 02:01 48640 ----a-w- c:\windows\system32\mshtmler.dll
2013-03-15 02:01 . 2013-03-15 02:01 27648 ----a-w- c:\windows\system32\licmgr10.dll
2013-03-15 02:01 . 2013-03-15 02:01 247296 ----a-w- c:\windows\system32\webcheck.dll
2013-03-15 02:01 . 2013-03-15 02:01 173568 ----a-w- c:\windows\system32\ieUnatt.exe
2013-03-15 02:01 . 2013-03-15 02:01 167424 ----a-w- c:\windows\system32\iexpress.exe
2013-03-15 02:01 . 2013-03-15 02:01 1509376 ----a-w- c:\windows\system32\inetcpl.cpl
2013-03-15 02:01 . 2013-03-15 02:01 149504 ----a-w- c:\windows\system32\occache.dll
2013-03-15 02:01 . 2013-03-15 02:01 144896 ----a-w- c:\windows\system32\wextract.exe
2013-03-15 02:01 . 2013-03-15 02:01 13824 ----a-w- c:\windows\system32\mshta.exe
2013-03-15 02:01 . 2013-03-15 02:01 136192 ----a-w- c:\windows\system32\iepeers.dll
2013-03-15 02:01 . 2013-03-15 02:01 135680 ----a-w- c:\windows\system32\IEAdvpack.dll
2013-03-15 02:01 . 2013-03-15 02:01 12800 ----a-w- c:\windows\system32\msfeedssync.exe
2013-03-15 02:01 . 2013-03-15 02:01 102912 ----a-w- c:\windows\system32\inseng.dll
2013-03-13 07:51 . 2012-04-14 19:29 693976 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2013-03-13 07:51 . 2012-03-23 14:55 73432 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-03-01 03:36 . 2013-04-11 22:13 3153408 ----a-w- c:\windows\system32\win32k.sys
2013-02-21 10:30 . 2013-04-12 01:01 1766912 ----a-w- c:\windows\SysWow64\wininet.dll
2013-02-21 10:29 . 2013-04-12 01:01 2877440 ----a-w- c:\windows\SysWow64\jscript9.dll
2013-02-21 10:29 . 2013-04-12 01:01 61440 ----a-w- c:\windows\SysWow64\iesetup.dll
2013-02-21 10:29 . 2013-04-12 01:01 109056 ----a-w- c:\windows\SysWow64\iesysprep.dll
2013-02-21 10:15 . 2013-04-12 01:01 51712 ----a-w- c:\windows\system32\ie4uinit.exe
2013-02-21 10:15 . 2013-04-12 01:01 2240512 ----a-w- c:\windows\system32\wininet.dll
2013-02-21 10:14 . 2013-04-12 01:01 1365504 ----a-w- c:\windows\system32\urlmon.dll
2013-02-21 10:14 . 2013-04-12 01:01 19230208 ----a-w- c:\windows\system32\mshtml.dll
2013-02-21 10:14 . 2013-04-12 01:01 603136 ----a-w- c:\windows\system32\msfeeds.dll
2013-02-21 10:14 . 2013-04-12 01:01 3958784 ----a-w- c:\windows\system32\jscript9.dll
2013-02-21 10:14 . 2013-04-12 01:01 53248 ----a-w- c:\windows\system32\jsproxy.dll
2013-02-21 10:14 . 2013-04-12 01:01 855552 ----a-w- c:\windows\system32\jscript.dll
2013-02-21 10:14 . 2013-04-12 01:01 526336 ----a-w- c:\windows\system32\ieui.dll
2013-02-21 10:14 . 2013-04-12 01:01 67072 ----a-w- c:\windows\system32\iesetup.dll
2013-02-21 10:14 . 2013-04-12 01:01 136704 ----a-w- c:\windows\system32\iesysprep.dll
2013-02-21 10:14 . 2013-04-12 01:01 2647040 ----a-w- c:\windows\system32\iertutil.dll
2013-02-21 10:14 . 2013-04-12 01:01 39936 ----a-w- c:\windows\system32\iernonce.dll
2013-02-21 10:14 . 2013-04-12 01:01 15404544 ----a-w- c:\windows\system32\ieframe.dll
2013-02-19 12:01 . 2013-04-12 01:01 2706432 ----a-w- c:\windows\SysWow64\mshtml.tlb
2013-02-19 11:42 . 2013-04-12 01:01 2706432 ----a-w- c:\windows\system32\mshtml.tlb
2013-02-19 11:10 . 2013-04-12 01:01 71680 ----a-w- c:\windows\SysWow64\RegisterIEPKEYs.exe
2013-02-19 10:51 . 2013-04-12 01:01 89600 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe
2013-02-15 06:08 . 2013-04-11 22:13 44032 ----a-w- c:\windows\system32\tsgqec.dll
2013-02-15 06:06 . 2013-04-11 22:13 3717632 ----a-w- c:\windows\system32\mstscax.dll
2013-02-15 06:02 . 2013-04-11 22:13 158720 ----a-w- c:\windows\system32\aaclient.dll
2013-02-15 04:37 . 2013-04-11 22:13 3217408 ----a-w- c:\windows\SysWow64\mstscax.dll
2013-02-15 04:34 . 2013-04-11 22:13 131584 ----a-w- c:\windows\SysWow64\aaclient.dll
2013-02-15 03:25 . 2013-04-11 22:13 36864 ----a-w- c:\windows\SysWow64\tsgqec.dll
.
.
(((((((((((((((((((((((((((( Autostartpunkte der Registrierung ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"HP Officejet 6600 (NET)"="c:\program files\HP\HP Officejet 6600\Bin\ScanToPCActivationApp.exe" [2011-09-09 2676584]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"Dell Webcam Central"="c:\program files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe" [2010-03-12 462993]
"RemoteControl9"="c:\program files (x86)\CyberLink\PowerDVD9\PDVD9Serv.exe" [2010-10-01 87336]
"PDVD9LanguageShortcut"="c:\program files (x86)\CyberLink\PowerDVD9\Language\Language.exe" [2010-09-17 50472]
"RoxWatchTray"="c:\program files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatchTray12OEM.exe" [2010-11-25 240112]
"Desktop Disc Tool"="c:\program files (x86)\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe" [2010-11-17 514544]
"APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2013-01-28 59720]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-12-03 946352]
"iTunesHelper"="c:\program files (x86)\iTunes\iTunesHelper.exe" [2013-02-20 152392]
"HP Software Update"="c:\program files (x86)\Hp\HP Software Update\HPWuSchd2.exe" [2011-03-24 49208]
"HTC Sync Loader"="c:\program files (x86)\HTC\HTC Sync 3.0\htcUPCTLoader.exe" [2012-04-17 651264]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2011-2-8 1136928]
Digital Line Detect.lnk - c:\program files (x86)\Digital Line Detect\DLG.exe [2012-3-23 50688]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"DisableCAD"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"mixer2"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 RoxWatch12;Roxio Hard Drive Watcher 12;c:\program files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe [2010-11-25 219632]
R3 BTWAMPFL;BTWAMPFL;c:\windows\system32\DRIVERS\btwampfl.sys [2012-03-23 349736]
R3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys [2012-03-23 39464]
R3 dmvsc;dmvsc;c:\windows\system32\drivers\dmvsc.sys [2010-11-21 71168]
R3 HTCAND64;HTC Device Driver;c:\windows\system32\Drivers\ANDROIDUSB.sys [2009-11-02 33736]
R3 htcnprot;HTC NDIS Protocol Driver;c:\windows\system32\DRIVERS\htcnprot.sys [2010-06-25 36928]
R3 Impcd;Impcd;c:\windows\system32\drivers\Impcd.sys [2010-02-27 158976]
R3 Netaapl;Apple Mobile Device Ethernet Service;c:\windows\system32\DRIVERS\netaapl64.sys [2011-08-02 22528]
R3 netvsc;netvsc;c:\windows\system32\DRIVERS\netvsc60.sys [2010-11-21 168448]
R3 O2MDFRDR;O2MDFRDR;c:\windows\system32\drivers\O2MDFw7x64.sys [2011-01-03 72808]
R3 RoxMediaDB12OEM;RoxMediaDB12OEM;c:\program files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe [2010-11-25 1116656]
R3 SynthVid;SynthVid;c:\windows\system32\DRIVERS\VMBusVideoM.sys [2010-11-21 22528]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys [2012-09-28 53760]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 57184]
S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys [2010-03-19 55856]
S0 stdcfltn;Disk Class Filter Driver for Accelerometer;c:\windows\system32\DRIVERS\stdcfltn.sys [2011-07-15 22128]
S2 AESTFilters;Andrea ST Filters Service;c:\program files\IDT\WDM\AESTSr64.exe [2009-03-03 89600]
S2 ATService;AuthenTec Fingerprint Service;c:\program files\Fingerprint Sensor\ATService.exe [2010-05-10 2683712]
S2 BrcmMgmtAgent;Broadcom Management Agent;c:\program files\Broadcom\MgmtAgent\BrcmMgmtAgent.exe [2010-06-29 158720]
S2 HsfXAudioService;HsfXAudioService;c:\windows\system32\svchost.exe [2009-07-14 27136]
S2 jhi_service;Intel(R) Identity Protection Technology Host Interface Service;c:\program files (x86)\Intel\Services\IPT\jhi_service.exe [2011-02-24 212944]
S2 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys [2013-01-20 130008]
S2 O2SDIOAssist;O2SDIOAssist;c:\windows\SysWOW64\srvany.exe [2003-04-19 8192]
S2 PassThru Service;Internet Pass-Through Service;c:\program files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [2012-03-23 87040]
S2 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-12-03 2656280]
S2 Wave Authentication Manager Service;Wave Authentication Manager Service;c:\program files\Dell\Dell Data Protection\Access\Advanced\Wave\Authentication Manager\WaveAMService.exe [2011-07-01 1600000]
S3 Acceler;Accelerometer Service;c:\windows\system32\DRIVERS\accelern.sys [2011-07-22 27760]
S3 ATSwpWDF;AuthenTec TruePrint USB WDF Driver;c:\windows\system32\Drivers\ATSwpWDF.sys [2009-05-16 616960]
S3 CAXHWAZL;CAXHWAZL;c:\windows\system32\DRIVERS\CAXHWAZL.sys [2009-02-13 292864]
S3 CtClsFlt;Creative Camera Class Upper Filter Driver;c:\windows\system32\DRIVERS\CtClsFlt.sys [2009-09-16 172960]
S3 IntcDAud;Intel(R) Display-Audio;c:\windows\system32\DRIVERS\IntcDAud.sys [2010-10-15 317440]
S3 NisSrv;Microsoft-Netzwerkinspektion;c:\program files\Microsoft Security Client\NisSrv.exe [2013-01-27 379360]
S3 O2MDRRDR;O2MDRRDR;c:\windows\system32\DRIVERS\O2MDRw7x64.sys [2011-01-03 74984]
S3 O2SDJRDR;O2SDJRDR;c:\windows\system32\DRIVERS\o2sdjw7x64.sys [2011-03-23 83560]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2013-04-11 22:10 1642448 ----a-w- c:\program files (x86)\Google\Chrome\Application\26.0.1410.64\Installer\chrmstp.exe
.
Inhalt des "geplante Tasks" Ordners
.
2013-05-14 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-14 07:51]
.
2013-05-14 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-06-14 23:07]
.
2013-05-14 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-06-14 23:07]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\EnabledUnlockedFDEIconOverlay]
@="{30D3C2AF-9709-4D05-9CF4-13335F3C1E4A}"
[HKEY_CLASSES_ROOT\CLSID\{30D3C2AF-9709-4D05-9CF4-13335F3C1E4A}]
2011-05-27 22:46 139128 ----a-w- c:\program files\Dell\Dell Data Protection\Access\Advanced\Wave\Trusted Drive Manager\TdmIconOverlay.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\UninitializedFdeIconOverlay]
@="{CF08DA3E-C97D-4891-A66B-E39B28DD270F}"
[HKEY_CLASSES_ROOT\CLSID\{CF08DA3E-C97D-4891-A66B-E39B28DD270F}]
2011-05-27 22:46 139128 ----a-w- c:\program files\Dell\Dell Data Protection\Access\Advanced\Wave\Trusted Drive Manager\TdmIconOverlay.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Apoint"="c:\program files\DellTPad\Apoint.exe" [2011-07-20 611192]
"SysTrayApp"="c:\program files\IDT\WDM\sttray64.exe" [2011-01-25 525312]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2011-06-28 167704]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2011-06-28 392472]
"Persistence"="c:\windows\system32\igfxpers.exe" [2011-06-28 416024]
"Broadcom Wireless Manager UI"="c:\program files\Dell\DW WLAN Card\WLTRAY.exe" [2011-01-15 6492672]
"FreeFallProtection"="c:\program files (x86)\STMicroelectronics\AccelerometerP11\FF_Protection.exe" [2011-07-25 686704]
"TdmNotify"="c:\program files\Dell\Dell Data Protection\Access\Advanced\Wave\Trusted Drive Manager\TdmNotify.exe" [2011-05-27 257392]
"CanonSolutionMenu"="c:\program files (x86)\Canon\SolutionMenu\CNSLMAIN.exe" [2008-03-10 689488]
"CanonMyPrinter"="c:\program files\Canon\MyPrinter\BJMyPrt.exe" [2008-03-17 2114376]
"MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2013-01-27 1281512]
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - LocalService
FontCache
.
------- Zusätzlicher Suchlauf -------
.
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride = *.local
IE: An OneNote s&enden - c:\progra~2\MICROS~4\Office14\ONBttnIE.dll/105
IE: Bild an &Bluetooth-Gerät senden... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
IE: Free YouTube to MP3 Converter - c:\users\PamDom\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm
IE: Nach Microsoft E&xcel exportieren - c:\progra~2\MICROS~4\Office14\EXCEL.EXE/3000
IE: Seite an &Bluetooth-Gerät senden... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
TCP: DhcpNameServer = 192.168.178.1
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
Toolbar-Locked - (no file)
Wow6432Node-HKLM-Run-<NO NAME> - (no file)
HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start
Toolbar-Locked - (no file)
WebBrowser-{977AE9CC-AF83-45E8-9E03-E2798216E2D5} - (no file)
.
.
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_6_602_180_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_6_602_180_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_6_602_180_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_6_602_180_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_6_602_180.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_6_602_180.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_6_602_180.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_6_602_180.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Weitere laufende Prozesse ------------------------
.
c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\program files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
c:\windows\system32\DRIVERS\o2flash.exe
c:\windows\sysWOW64\SDIOAssist.exe
c:\program files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
.
**************************************************************************
.
Zeit der Fertigstellung: 2013-05-14 18:22:17 - PC wurde neu gestartet
ComboFix-quarantined-files.txt 2013-05-14 16:22
.
Vor Suchlauf: 15 Verzeichnis(se), 335.980.822.528 Bytes frei
Nach Suchlauf: 19 Verzeichnis(se), 336.181.637.120 Bytes frei
.
- - End Of File - - E55E8FB3D43C9568172D27CE5AE5697A
|
|
14.05.2013, 13:58
| #26 |
| /// Malware-holic | Laptop Windows 7 , nach Hochfahren weißer Bildschirm Hi, malwarebytes: Downloade Dir bitte Malwarebytes
__________________ -Verdächtige mails bitte an uns zur Analyse weiterleiten: markusg.trojaner-board@web.de Weiterleiten Anleitung: http://markusg.trojaner-board.de Mails bitte vorerst nach obiger Anleitung an markusg.trojaner-board@web.de Weiterleiten Wenn Ihr uns unterstützen möchtet |
|
15.05.2013, 13:50
| #27 |
| | Laptop Windows 7 , nach Hochfahren weißer Bildschirm Erldeigt. Die Trojaner Datei wurde gefunden und ich habe diese gelöscht. Hier der Report: Malwarebytes Anti-Malware 1.75.0.1300 Malwarebytes : Free Anti-Malware download Datenbank Version: v2013.05.15.06 Windows 7 Service Pack 1 x64 NTFS Internet Explorer 10.0.9200.16540 PamDom :: PAMDOM-PC [Administrator] 15.05.2013 17:39:45 mbam-log-2013-05-15 (17-39-45).txt Art des Suchlaufs: Vollständiger Suchlauf (C:\|) Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM Deaktivierte Suchlaufeinstellungen: P2P Durchsuchte Objekte: 367420 Laufzeit: 1 Stunde(n), 5 Minute(n), 4 Sekunde(n) Infizierte Speicherprozesse: 0 (Keine bösartigen Objekte gefunden) Infizierte Speichermodule: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungsschlüssel: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungswerte: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateiobjekte der Registrierung: 0 (Keine bösartigen Objekte gefunden) Infizierte Verzeichnisse: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateien: 1 C:\_OTL\MovedFiles.zip (Trojan.Zbot.ED) -> Erfolgreich gelöscht und in Quarantäne gestellt. (Ende) |
|
15.05.2013, 13:55
| #28 |
| /// Malware-holic | Laptop Windows 7 , nach Hochfahren weißer Bildschirm Hi, lade den CCleaner standard: CCleaner - Download - Filepony falls der CCleaner bereits instaliert, überspringen. öffnen, Tools (extras),uninstall Llist, als txt speichern. öffnen. hinter, jedes von dir benötigte programm, schreibe notwendig. hinter, jedes, von dir nicht benötigte, unnötig. hinter, dir unbekannte, unbekannt. liste posten.
__________________ -Verdächtige mails bitte an uns zur Analyse weiterleiten: markusg.trojaner-board@web.de Weiterleiten Anleitung: http://markusg.trojaner-board.de Mails bitte vorerst nach obiger Anleitung an markusg.trojaner-board@web.de Weiterleiten Wenn Ihr uns unterstützen möchtet |
|
15.05.2013, 14:55
| #29 |
| | Laptop Windows 7 , nach Hochfahren weißer Bildschirm AccelerometerP11 STMicroelectronics 23.03.2012 2.00.10.33 [unbekannt] Adobe AIR Adobe Systems Incorporated 25.04.2013 3.2.0.2070 [unbekannt] Adobe Flash Player 11 ActiveX Adobe Systems Incorporated 15.05.2013 6,00MB 11.7.700.202 [notwendig] Adobe Reader X (10.1.6) - Deutsch Adobe Systems Incorporated 26.02.2013 122MB 10.1.6 [notwendig] Apple Application Support Apple Inc. 05.04.2013 62,7MB 2.3.3 [unnötig] Apple Mobile Device Support Apple Inc. 05.04.2013 25,2MB 6.1.0.13 [unnötig] Apple Software Update Apple Inc. 02.04.2012 2,38MB 2.1.3.127 [unnötig] Bonjour Apple Inc. 02.04.2012 2,04MB 3.0.0.10 [unnötig] Broadcom NetXtreme-I Netlink Driver and Management Installer Broadcom Corporation 23.03.2012 14.4.6.2 [unbekannt] Canon MP Navigator EX 2.0 12.06.2012 [notwendig] Canon MP630 series Benutzerregistrierung 12.06.2012 [notwendig] Canon MP630 series MP Drivers 12.06.2012 [notwendig] Canon Utilities Easy-PhotoPrint EX 12.06.2012 [unnötig] Canon Utilities My Printer 12.06.2012 [notwenidg] Canon Utilities Solution Menu 12.06.2012 [notwendig] CCleaner Piriform 23.04.2013 4.01 [notwenidg] CD-LabelPrint 12.06.2012 [unnötig] Conexant HDA D330 MDC V.92 Modem Conexant 23.03.2012 7.80.4.0 [unbekannt] CyberLink PowerDVD 9.5 CyberLink Corp. 23.03.2012 9.5.1.4418 [unbekannt] Dell Client System Update Dell Inc. 23.03.2012 22,4MB 1.2.1 [notwenidg] Dell Data Protection | Access Dell Inc. 23.03.2012 2.1.00001.002 [notwendig] Dell Data Protection | Access | Drivers Dell Inc. 23.03.2012 2.01.018 [notwendig] Dell Data Protection | Access | Middleware Dell Inc. 23.03.2012 2.01.010 [notwendig] Dell Touchpad ALPS ELECTRIC CO., LTD. 23.03.2012 7.1208.101.125[notwendig] Dell Webcam Central Creative Technology Ltd 23.03.2012 1.40.28 [notwendig] Digital Line Detect BVRP Software, Inc 23.03.2012 1.21 [unbekannt] DW WLAN Card Utility Dell Inc. 23.03.2012 5.100.235.13 [notwendig] ElsterFormular Landesfinanzdirektion Thüringen 17.02.2013 187MB 14.0.0.10960 [notwendig] Free YouTube to MP3 Converter version 3.12.1.320 DVDVideoSoft Ltd. 05.04.2013 76,3MB 3.12.1.320 [unnötig] Gemalto 23.03.2012 [unbekannt] Google Chrome Google Inc. 16.06.2012 26.0.1410.64 [unnötig] Google Toolbar for Internet Explorer Google Inc. 18.01.2013 7.4.3607.2246 [unnötig] HP FWUpdateEDO2 Hewlett-Packard 07.05.2013 1,53MB 1.2.0.0 [unbekannt] HP Officejet 6600 - Grundlegende Software für das Gerät Hewlett-Packard Co. 08.04.2013 180MB 25.0.619.0 [notwendig] HP Officejet 6600 Hilfe Hewlett Packard 08.04.2013 17,6MB 140.0.2.2 [notwendig] HP Photo Creations HP 07.05.2013 14,6MB 1.0.0.9572 [unnötig] HP Update Hewlett-Packard 08.04.2013 3,98MB 5.003.000.004 [unnötig] HTC BMP USB Driver HTC 25.09.2012 284KB 1.0.5375[unnötig] HTC Driver Installer HTC Corporation 25.04.2013 2,16MB 3.0.0.021 [unnötig] HTC Sync HTC Corporation 25.04.2013 46,3MB 3.2.20 [unnötig] I.R.I.S. OCR HP 08.04.2013 68,9MB 12.3.4.0 [unbekannt] Intel(R) Identity Protection Technology 1.1.2.0 Intel Corporation 23.03.2012 1,13MB 1.1.2.0 [notwendig] Intel(R) Management Engine Components Intel Corporation 23.03.2012 7.0.0.1144 [notwendig] Intel(R) Processor Graphics Intel Corporation 23.03.2012 8.15.10.2418 [notwendig] iTunes Apple Inc. 05.04.2013 187MB 11.0.2.26 [notwendig] Java(TM) 7 Update 1 Oracle 23.03.2012 98,9MB 7.0.10 [unnötig] Java(TM) 7 Update 1 (64-bit) Oracle 23.03.2012 93,3MB 7.0.10 [unnötig] Malwarebytes Anti-Malware Version 1.75.0.1300 Malwarebytes Corporation 15.05.2013 19,2MB 1.75.0.1300 [notwendig] Microsoft .NET Framework 4 Client Profile Microsoft Corporation 11.02.2011 38,8MB 4.0.30319 [unbekannt] Microsoft .NET Framework 4 Extended Microsoft Corporation 11.02.2011 51,9MB 4.0.30319 [unbekannt] Microsoft Office Home and Student 2010 Microsoft Corporation 17.04.2012 14.0.6029.1000 [benötigt] Microsoft Security Essentials Microsoft Corporation 27.02.2013 4.2.223.1 [benötigt] Microsoft Silverlight Microsoft Corporation 14.03.2013 50,6MB 5.1.20125.0 [unbekannt] Microsoft SQL Server 2005 Compact Edition [ENU] Microsoft Corporation 23.03.2012 1,69MB 3.1.0000 [unbekannt] Microsoft Visual C++ 2005 Redistributable Microsoft Corporation 14.04.2012 298KB 8.0.61001 [unbekannt] Microsoft Visual C++ 2005 Redistributable (x64) Microsoft Corporation 23.03.2012 620KB 8.0.61000 [unbekannt] Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 Microsoft Corporation 23.03.2012 788KB 9.0.30729 [unbekannt] Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 Microsoft Corporation 15.04.2012 788KB 9.0.30729.6161 [unbekannt] Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Corporation 23.03.2012 596KB 9.0.30729 [unbekannt] Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Corporation 15.04.2012 600KB 9.0.30729.6161 [unbekannt] Modem Diagnostic Tool Dell 23.03.2012 1.0.28.0 [benötigt] MSXML 4.0 SP2 (KB954430) Microsoft Corporation 02.04.2012 1,27MB 4.20.9870.0 [unbekannt] MSXML 4.0 SP2 (KB973688) Microsoft Corporation 02.04.2012 1,33MB 4.20.9876.0[unbekannt] MSXML 4.0 SP3 Parser Microsoft Corporation 25.09.2012 1,47MB 4.30.2100.0[unbekannt] MSXML 4.0 SP3 Parser (KB2721691) Microsoft Corporation 29.09.2012 1,53MB 4.30.2114.0[unbekannt] MSXML 4.0 SP3 Parser (KB2758694) Microsoft Corporation 11.01.2013 1,54MB 4.30.2117.0[unbekannt] Netwaiting BVRP Software, Inc 23.03.2012 2.5.59[unbekannt] O2Micro Flash Memory Card Windows Driver O2Micro International LTD. 23.03.2012 4,99MB 3.0.07.23 [notwendig] O2Micro OZ776 SCR Driver O2Micro 23.03.2012 2.1.4.210GS [notwendig] PhotoScape 15.06.2012 [unnötig] Roxio Creator Starter Roxio 23.03.2012 1,63GB 12.1.77.0 [unbekannt] WIDCOMM Bluetooth Software Broadcom Corporation 23.03.2012 184MB 6.3.0.7900 [notwendig] Windows Live Essentials Microsoft Corporation 23.03.2012 15.4.3508.1109 [unbekannt] Windows Live Mesh ActiveX control for remote connections Microsoft Corporation 23.03.2012 5,57MB 15.4.5722.2[unbekannt] Windows-Treiberpaket - Dell Inc. PBADRV System (09/11/2009 1.0.1.6) Dell Inc. 23.03.2012 09/11/2009 1.0.1.6[unbekannt] |
|
15.05.2013, 15:04
| #30 |
| /// Malware-holic | Laptop Windows 7 , nach Hochfahren weißer Bildschirm bdeinstaliere: Adobe Flash Player alle Adobe - Adobe Flash Player installieren neueste version laden, instalieren. adobe reader: Adobe - Adobe Reader herunterladen - Alle Versionen haken bei mcafee security scan raus nehmen bitte auch mal den adobe reader wie folgt konfigurieren: adobe reader öffnen, bearbeiten, voreinstellungen. allgemein: nur zertifizierte zusatz module verwenden, anhaken. Sicherheit (erweitert) Erweiterte Sicherheit anhaken und alle Dateien auswählen. internet: hier sollte alles deaktiviert werden, es ist sehr unsicher pdfs automatisch zu öffnen, zu downloaden etc. es ist immer besser diese direkt abzuspeichern da man nur so die kontrolle hat was auf dem pc vor geht. bei javascript den haken bei java script verwenden raus nehmen bei updater, automatisch instalieren wählen. übernehmen /ok deinstaliere: CD-LabelPrint Free YouTube Google : beide Java: alle downloade Java jre: Java-Downloads für alle Betriebssysteme klicke: Download der Java-Software für Windows Offline laden, und instalieren deinstaliere: PhotoScape Windows Live : alle für dich unnötigen Öffne CCleaner, analysieren, starten. Downloade Dir bitte  AdwCleaner auf deinen Desktop.
__________________ -Verdächtige mails bitte an uns zur Analyse weiterleiten: markusg.trojaner-board@web.de Weiterleiten Anleitung: http://markusg.trojaner-board.de Mails bitte vorerst nach obiger Anleitung an markusg.trojaner-board@web.de Weiterleiten Wenn Ihr uns unterstützen möchtet |
|
| Themen zu Laptop Windows 7 , nach Hochfahren weißer Bildschirm |
| auf einmal, bildschirm, folge, folgendes, gesurft, heute, hochfahren, inter, interne, internet, komplett, laptop, leute, neustarts, nichts, strg, weißer, weißer bildschirm, windows, windows 7 |
WARNUNG an die MITLESER: 
Linear-Darstellung
