Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung

Plagegeister aller Art und deren Bekämpfung: Online Smile v13.4.24 lässt sich nicht entfernen.

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

Antwort
Alt 13.06.2013, 15:52   #1
buddhavs
 
Online Smile v13.4.24 lässt sich nicht entfernen. - Standard

Online Smile v13.4.24 lässt sich nicht entfernen.



Guten Tag zusammen,

ein kollege hat mir mal bei Facebook geschrieben und unter seinem Text befand sich ein Link mit einem Smiley.
Auf den hab ich geklickt und seitdem kommt immer wenn ich mit jemandem schreibe unter meinem Text derselbe link...

Ich kann dies deaktivieren (Google Chrome Add-On). Aber bei jedem Start von Google Chrome wird das Add-On wieder aktiviert. Habe probiert das Add-on zu löschen, was jedch erfolglos war. Seitdem läuft mein Notebook nicht mehr so flott.

Wäre erfreut über eine Antwort

mfg
buddha

Alt 13.06.2013, 15:59   #2
markusg
/// Malware-holic
 
Online Smile v13.4.24 lässt sich nicht entfernen. - Standard

Online Smile v13.4.24 lässt sich nicht entfernen.



hi,

Falls noch nicht vorhanden, lade Dir bitte OTL von Oldtimer herunter und speichere es auf Deinem Desktop
  • Starte bitte die
    OTL.exe
    .
    Vista und Win7 User mit Rechtsklick "als Administrator starten"
  • Kopiere nun den Inhalt in die
    Textbox.
Code:
ATTFilter
activex
netsvcs
msconfig
%SYSTEMDRIVE%\*.
%PROGRAMFILES%\*.exe
%LOCALAPPDATA%\*.exe
%systemroot%\*. /mp /s
C:\Windows\system32\*.tsp
/md5start
userinit.exe
eventlog.dll
scecli.dll
netlogon.dll
cngaudit.dll
ws2ifsl.sys
sceclt.dll
ntelogon.dll
winlogon.exe
logevent.dll
user32.DLL
explorer.exe
iaStor.sys
nvstor.sys
atapi.sys
IdeChnDr.sys
viasraid.sys
AGP440.sys
vaxscsi.sys
nvatabus.sys
viamraid.sys
nvata.sys
nvgts.sys
iastorv.sys
ViPrt.sys
eNetHook.dll
ahcix86.sys
KR10N.sys
nvstor32.sys
ahcix86s.sys
/md5stop
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
%USERPROFILE%\*.*
%USERPROFILE%\Local Settings\Temp\*.exe
%USERPROFILE%\Local Settings\Temp\*.dll
%USERPROFILE%\Application Data\*.exe
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\SubSystems|Windows /rs
CREATERESTOREPOINT
         
  • Schliesse bitte nun alle Programme. (Wichtig)
  • Klicke nun bitte auf den Quick Scan Button.
  • Kopiere
    nun den Inhalt aus OTL.txt und Extra.txt hier in Deinen Thread
__________________

__________________

Alt 13.06.2013, 16:46   #3
buddhavs
 
Online Smile v13.4.24 lässt sich nicht entfernen. - Standard

Online Smile v13.4.24 lässt sich nicht entfernen.



Logs im Anhang, da zu viele Zeichen

Habe noch eine zusätzliche Frage...
An was kann es liegen wenn bei meinem Notebook die Internetverbindung nach ca. 4-5 Stunden nicht mehr funktioniert?
Unabhängig an welchem Netz ich bin.

Bei Google Chrome steht dann Website nicht verfügbar.

Nur nach einem Neustart geht es wieder für 4-5 Stunden.

mfg
buddha
__________________

Alt 13.06.2013, 18:38   #4
markusg
/// Malware-holic
 
Online Smile v13.4.24 lässt sich nicht entfernen. - Standard

Online Smile v13.4.24 lässt sich nicht entfernen.



Hi treiber aktuell, mainboard, Graka, netzwerk etc?
Downloade dir bitte TDSSKiller TDSSKiller.exe und speichere diese Datei auf dem Desktop
  • Starte die TDSSKiller.exe - Einstellen wie in der Anleitung zu TDSSKiller beschrieben.
  • Drücke Start Scan
  • Sollten infizierte Objekte gefunden werden, wähle keinesfalls Cure. Wähle Skip und klicke auf Continue.
    TDSSKiller wird eine Logfile auf deinem Systemlaufwerk speichern (Meistens C:\)
    Als Beispiel: C:\TDSSKiller.<Version_Datum_Uhrzeit>log.txt
Poste den Inhalt bitte in jedem Fall hier in deinen Thread.
__________________
-Verdächtige mails bitte an uns zur Analyse weiterleiten:
markusg.trojaner-board@web.de
Weiterleiten
Anleitung:
http://markusg.trojaner-board.de
Mails bitte vorerst nach obiger Anleitung an
markusg.trojaner-board@web.de
Weiterleiten
Wenn Ihr uns unterstützen möchtet

Alt 13.06.2013, 20:06   #5
buddhavs
 
Online Smile v13.4.24 lässt sich nicht entfernen. - Standard

Online Smile v13.4.24 lässt sich nicht entfernen.



Hi,

ich schätze mal schon das Treiber aktuell sind.
Habe das Notebook seid knapp einem Jahr.
Wie kann ich den prüfen ob sie noch aktuell sind?

Code:
ATTFilter
21:02:42.0065 8152  TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
21:02:42.0188 8152  ============================================================
21:02:42.0188 8152  Current date / time: 2013/06/13 21:02:42.0188
21:02:42.0188 8152  SystemInfo:
21:02:42.0188 8152  
21:02:42.0188 8152  OS Version: 6.1.7601 ServicePack: 1.0
21:02:42.0188 8152  Product type: Workstation
21:02:42.0189 8152  ComputerName: EUGEN-PC
21:02:42.0189 8152  UserName: Eugen
21:02:42.0189 8152  Windows directory: C:\windows
21:02:42.0189 8152  System windows directory: C:\windows
21:02:42.0189 8152  Running under WOW64
21:02:42.0189 8152  Processor architecture: Intel x64
21:02:42.0189 8152  Number of processors: 4
21:02:42.0189 8152  Page size: 0x1000
21:02:42.0189 8152  Boot type: Normal boot
21:02:42.0189 8152  ============================================================
21:02:42.0750 8152  Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
21:02:42.0761 8152  ============================================================
21:02:42.0761 8152  \Device\Harddisk0\DR0:
21:02:42.0761 8152  MBR partitions:
21:02:42.0761 8152  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
21:02:42.0762 8152  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x71557000
21:02:42.0762 8152  ============================================================
21:02:42.0785 8152  C: <-> \Device\Harddisk0\DR0\Partition2
21:02:42.0786 8152  ============================================================
21:02:42.0786 8152  Initialize success
21:02:42.0786 8152  ============================================================
21:03:15.0030 5504  ============================================================
21:03:15.0030 5504  Scan started
21:03:15.0030 5504  Mode: Manual; SigCheck; TDLFS; 
21:03:15.0030 5504  ============================================================
21:03:15.0709 5504  ================ Scan system memory ========================
21:03:15.0709 5504  System memory - ok
21:03:15.0710 5504  ================ Scan services =============================
21:03:16.0147 5504  [ A87D604AEA360176311474C87A63BB88 ] 1394ohci        C:\windows\system32\drivers\1394ohci.sys
21:03:16.0239 5504  1394ohci - ok
21:03:16.0281 5504  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI            C:\windows\system32\drivers\ACPI.sys
21:03:16.0299 5504  ACPI - ok
21:03:16.0340 5504  [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi         C:\windows\system32\drivers\acpipmi.sys
21:03:16.0358 5504  AcpiPmi - ok
21:03:16.0544 5504  [ 9D90344179ED6A05959DE40FC934A022 ] Ad-Aware Service C:\Program Files (x86)\Ad-Aware Antivirus\AdAwareService.exe
21:03:16.0837 5504  Ad-Aware Service - ok
21:03:17.0010 5504  [ ADDA5E1951B90D3D23C56D3CF0622ADC ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
21:03:17.0028 5504  AdobeARMservice - ok
21:03:17.0161 5504  [ 9915504F602D277EE47FD843A677FD15 ] AdobeFlashPlayerUpdateSvc C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
21:03:17.0182 5504  AdobeFlashPlayerUpdateSvc - ok
21:03:17.0277 5504  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx         C:\windows\system32\drivers\adp94xx.sys
21:03:17.0310 5504  adp94xx - ok
21:03:17.0350 5504  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci         C:\windows\system32\drivers\adpahci.sys
21:03:17.0377 5504  adpahci - ok
21:03:17.0463 5504  [ E109549C90F62FB570B9540C4B148E54 ] adpu320         C:\windows\system32\drivers\adpu320.sys
21:03:17.0486 5504  adpu320 - ok
21:03:17.0527 5504  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc     C:\windows\System32\aelupsvc.dll
21:03:17.0587 5504  AeLookupSvc - ok
21:03:17.0650 5504  [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD             C:\windows\system32\drivers\afd.sys
21:03:17.0681 5504  AFD - ok
21:03:17.0741 5504  [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440          C:\windows\system32\drivers\agp440.sys
21:03:17.0760 5504  agp440 - ok
21:03:17.0785 5504  [ 3290D6946B5E30E70414990574883DDB ] ALG             C:\windows\System32\alg.exe
21:03:17.0811 5504  ALG - ok
21:03:17.0887 5504  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\windows\system32\drivers\aliide.sys
21:03:17.0905 5504  aliide - ok
21:03:17.0913 5504  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\windows\system32\drivers\amdide.sys
21:03:17.0931 5504  amdide - ok
21:03:17.0956 5504  [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8           C:\windows\system32\drivers\amdk8.sys
21:03:17.0979 5504  AmdK8 - ok
21:03:18.0005 5504  [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM          C:\windows\system32\drivers\amdppm.sys
21:03:18.0028 5504  AmdPPM - ok
21:03:18.0107 5504  [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata         C:\windows\system32\drivers\amdsata.sys
21:03:18.0129 5504  amdsata - ok
21:03:18.0210 5504  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\windows\system32\drivers\amdsbs.sys
21:03:18.0234 5504  amdsbs - ok
21:03:18.0281 5504  [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata         C:\windows\system32\drivers\amdxata.sys
21:03:18.0300 5504  amdxata - ok
21:03:18.0342 5504  [ 449D90F1FB6402773C2F1ECCEAE15F74 ] AMPPAL          C:\windows\system32\DRIVERS\AMPPAL.sys
21:03:18.0378 5504  AMPPAL - ok
21:03:18.0489 5504  [ 449D90F1FB6402773C2F1ECCEAE15F74 ] AMPPALP         C:\windows\system32\DRIVERS\amppal.sys
21:03:18.0509 5504  AMPPALP - ok
21:03:18.0681 5504  [ AB6E5B9333101E414D8F04BC570064F1 ] AMPPALR3        C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
21:03:18.0723 5504  AMPPALR3 - ok
21:03:18.0758 5504  [ 4DE0D5D747A73797C95A97DCCE5018B5 ] androidusb      C:\windows\system32\Drivers\ssadadb.sys
21:03:18.0783 5504  androidusb - ok
21:03:18.0866 5504  [ 4FC6E2C2FC50445450651F42E90CC0BD ] Apowersoft_AudioDevice C:\windows\system32\drivers\Apowersoft_AudioDevice.sys
21:03:18.0885 5504  Apowersoft_AudioDevice - ok
21:03:18.0921 5504  [ 89A69C3F2F319B43379399547526D952 ] AppID           C:\windows\system32\drivers\appid.sys
21:03:18.0979 5504  AppID - ok
21:03:19.0015 5504  [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc        C:\windows\System32\appidsvc.dll
21:03:19.0065 5504  AppIDSvc - ok
21:03:19.0178 5504  [ 9D2A2369AB4B08A4905FE72DB104498F ] Appinfo         C:\windows\System32\appinfo.dll
21:03:19.0205 5504  Appinfo - ok
21:03:19.0256 5504  [ C484F8CEB1717C540242531DB7845C4E ] arc             C:\windows\system32\drivers\arc.sys
21:03:19.0277 5504  arc - ok
21:03:19.0301 5504  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\windows\system32\drivers\arcsas.sys
21:03:19.0321 5504  arcsas - ok
21:03:19.0447 5504  [ 108FB6DDB69E537A2EA53F425363FAE5 ] aspnet_state    C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
21:03:19.0470 5504  aspnet_state - ok
21:03:19.0520 5504  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\windows\system32\DRIVERS\asyncmac.sys
21:03:19.0573 5504  AsyncMac - ok
21:03:19.0596 5504  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi           C:\windows\system32\drivers\atapi.sys
21:03:19.0616 5504  atapi - ok
21:03:19.0663 5504  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\windows\System32\Audiosrv.dll
21:03:19.0725 5504  AudioEndpointBuilder - ok
21:03:19.0737 5504  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv        C:\windows\System32\Audiosrv.dll
21:03:19.0787 5504  AudioSrv - ok
21:03:19.0900 5504  [ 587EFD6A3A30A35A27904D21AE1FB882 ] AVP             C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe
21:03:19.0926 5504  AVP - ok
21:03:19.0949 5504  [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV        C:\windows\System32\AxInstSV.dll
21:03:19.0972 5504  AxInstSV - ok
21:03:20.0044 5504  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv         C:\windows\system32\drivers\bxvbda.sys
21:03:20.0133 5504  b06bdrv - ok
21:03:20.0173 5504  [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a        C:\windows\system32\DRIVERS\b57nd60a.sys
21:03:20.0204 5504  b57nd60a - ok
21:03:20.0314 5504  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\windows\System32\bdesvc.dll
21:03:20.0339 5504  BDESVC - ok
21:03:20.0368 5504  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\windows\system32\drivers\Beep.sys
21:03:20.0428 5504  Beep - ok
21:03:20.0485 5504  [ 82974D6A2FD19445CC5171FC378668A4 ] BFE             C:\windows\System32\bfe.dll
21:03:20.0554 5504  BFE - ok
21:03:20.0624 5504  [ 1EA7969E3271CBC59E1730697DC74682 ] BITS            C:\windows\System32\qmgr.dll
21:03:20.0710 5504  BITS - ok
21:03:20.0726 5504  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\windows\system32\DRIVERS\blbdrive.sys
21:03:20.0747 5504  blbdrive - ok
21:03:20.0887 5504  [ A52EA1D8C2900055323C93DDB252A3DA ] Bluetooth Device Monitor C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
21:03:20.0920 5504  Bluetooth Device Monitor - ok
21:03:20.0964 5504  [ 091210450CA7CED08F360D9D7FEC5D11 ] Bluetooth Media Service C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
21:03:21.0650 5504  Bluetooth Media Service - ok
21:03:21.0744 5504  [ 392450754E17FF778CBC5B9D20583AD1 ] Bluetooth OBEX Service C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
21:03:22.0210 5504  Bluetooth OBEX Service - ok
21:03:22.0275 5504  [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser          C:\windows\system32\DRIVERS\bowser.sys
21:03:22.0298 5504  bowser - ok
21:03:22.0337 5504  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\windows\system32\drivers\BrFiltLo.sys
21:03:22.0363 5504  BrFiltLo - ok
21:03:22.0398 5504  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\windows\system32\drivers\BrFiltUp.sys
21:03:22.0424 5504  BrFiltUp - ok
21:03:22.0476 5504  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser         C:\windows\System32\browser.dll
21:03:22.0503 5504  Browser - ok
21:03:22.0522 5504  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid         C:\windows\System32\Drivers\Brserid.sys
21:03:22.0549 5504  Brserid - ok
21:03:22.0571 5504  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\windows\System32\Drivers\BrSerWdm.sys
21:03:22.0596 5504  BrSerWdm - ok
21:03:22.0615 5504  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\windows\System32\Drivers\BrUsbMdm.sys
21:03:22.0684 5504  BrUsbMdm - ok
21:03:22.0706 5504  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\windows\System32\Drivers\BrUsbSer.sys
21:03:22.0737 5504  BrUsbSer - ok
21:03:22.0821 5504  [ A9C4AEE6AC10D41BB815468D2E734045 ] BstHdAndroidSvc C:\Program Files (x86)\BlueStacks\HD-Service.exe
21:03:22.0850 5504  BstHdAndroidSvc - ok
21:03:22.0936 5504  [ EAE75499461AE856330EBDB3489DB1E9 ] BstHdDrv        C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys
21:03:22.0955 5504  BstHdDrv - ok
21:03:22.0970 5504  [ CD96992A52B454CDBB77E56F9F7FA151 ] BstHdLogRotatorSvc C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe
21:03:22.0993 5504  BstHdLogRotatorSvc - ok
21:03:23.0039 5504  [ CF98190A94F62E405C8CB255018B2315 ] BthEnum         C:\windows\system32\drivers\BthEnum.sys
21:03:23.0061 5504  BthEnum - ok
21:03:23.0086 5504  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\windows\system32\drivers\bthmodem.sys
21:03:23.0113 5504  BTHMODEM - ok
21:03:23.0176 5504  [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan          C:\windows\system32\DRIVERS\bthpan.sys
21:03:23.0204 5504  BthPan - ok
21:03:23.0246 5504  [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT         C:\windows\System32\Drivers\BTHport.sys
21:03:23.0293 5504  BTHPORT - ok
21:03:23.0342 5504  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv         C:\windows\system32\bthserv.dll
21:03:23.0393 5504  bthserv - ok
21:03:23.0410 5504  [ 588762F716C2B7A2054AFBC3D58E5C21 ] BTHSSecurityMgr C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
21:03:23.0423 5504  BTHSSecurityMgr - ok
21:03:23.0474 5504  [ F188B7394D81010767B6DF3178519A37 ] BTHUSB          C:\windows\System32\Drivers\BTHUSB.sys
21:03:23.0563 5504  BTHUSB - ok
21:03:23.0598 5504  [ 988CC6CC49303665D3B2435C51505C3F ] btmaux          C:\windows\system32\DRIVERS\btmaux.sys
21:03:23.0620 5504  btmaux - ok
21:03:23.0669 5504  [ 2B4B508AFAC2A563931AF1FE875A5B16 ] btmhsf          C:\windows\system32\DRIVERS\btmhsf.sys
21:03:23.0704 5504  btmhsf - ok
21:03:23.0761 5504  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\windows\system32\DRIVERS\cdfs.sys
21:03:23.0822 5504  cdfs - ok
21:03:23.0867 5504  [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom           C:\windows\system32\DRIVERS\cdrom.sys
21:03:23.0891 5504  cdrom - ok
21:03:23.0948 5504  [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc     C:\windows\System32\certprop.dll
21:03:23.0996 5504  CertPropSvc - ok
21:03:24.0024 5504  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\windows\system32\drivers\circlass.sys
21:03:24.0052 5504  circlass - ok
21:03:24.0113 5504  [ FE1EC06F2253F691FE36217C592A0206 ] CLFS            C:\windows\system32\CLFS.sys
21:03:24.0138 5504  CLFS - ok
21:03:24.0197 5504  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
21:03:24.0217 5504  clr_optimization_v2.0.50727_32 - ok
21:03:24.0262 5504  [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
21:03:24.0279 5504  clr_optimization_v2.0.50727_64 - ok
21:03:24.0359 5504  [ 6D7C8A951AF6AD6835C029B3CB88D333 ] clr_optimization_v4.0.30319_32 C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
21:03:24.0382 5504  clr_optimization_v4.0.30319_32 - ok
21:03:24.0400 5504  [ 86329C35FF23CFEF0FB6C0023BA06BCE ] clr_optimization_v4.0.30319_64 C:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
21:03:24.0420 5504  clr_optimization_v4.0.30319_64 - ok
21:03:24.0461 5504  [ E13A438F9E51DD034730678E33B73290 ] clwvd           C:\windows\system32\DRIVERS\clwvd.sys
21:03:24.0478 5504  clwvd - ok
21:03:24.0499 5504  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\windows\system32\DRIVERS\CmBatt.sys
21:03:24.0534 5504  CmBatt - ok
21:03:24.0566 5504  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\windows\system32\drivers\cmdide.sys
21:03:24.0584 5504  cmdide - ok
21:03:24.0626 5504  [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG             C:\windows\system32\Drivers\cng.sys
21:03:24.0700 5504  CNG - ok
21:03:24.0742 5504  [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt        C:\windows\system32\DRIVERS\compbatt.sys
21:03:24.0771 5504  Compbatt - ok
21:03:24.0829 5504  [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus    C:\windows\system32\DRIVERS\CompositeBus.sys
21:03:24.0856 5504  CompositeBus - ok
21:03:24.0866 5504  COMSysApp - ok
21:03:24.0963 5504  [ 6625A43592D123EE9AF0AB42B27B2384 ] cphs            C:\windows\SysWow64\IntelCpHeciSvc.exe
21:03:24.0990 5504  cphs - ok
21:03:25.0036 5504  [ 1C827878A998C18847245FE1F34EE597 ] crcdisk         C:\windows\system32\drivers\crcdisk.sys
21:03:25.0056 5504  crcdisk - ok
21:03:25.0121 5504  [ D8129C49798CBBFB2E4351D4B7B8EF9C ] CryptSvc        C:\windows\system32\cryptsvc.dll
21:03:25.0161 5504  CryptSvc - ok
21:03:25.0228 5504  [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch      C:\windows\system32\rpcss.dll
21:03:25.0284 5504  DcomLaunch - ok
21:03:25.0313 5504  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc       C:\windows\System32\defragsvc.dll
21:03:25.0354 5504  defragsvc - ok
21:03:25.0386 5504  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC            C:\windows\system32\Drivers\dfsc.sys
21:03:25.0445 5504  DfsC - ok
21:03:25.0479 5504  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp            C:\windows\system32\dhcpcore.dll
21:03:25.0498 5504  Dhcp - ok
21:03:25.0527 5504  [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache        C:\windows\system32\drivers\discache.sys
21:03:25.0561 5504  discache - ok
21:03:25.0634 5504  [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk            C:\windows\system32\drivers\disk.sys
21:03:25.0656 5504  Disk - ok
21:03:25.0687 5504  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache        C:\windows\System32\dnsrslvr.dll
21:03:25.0725 5504  Dnscache - ok
21:03:25.0755 5504  [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc         C:\windows\System32\dot3svc.dll
21:03:25.0815 5504  dot3svc - ok
21:03:25.0839 5504  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS             C:\windows\system32\dps.dll
21:03:25.0916 5504  DPS - ok
21:03:25.0967 5504  [ 9B19F34400D24DF84C858A421C205754 ] drmkaud         C:\windows\system32\drivers\drmkaud.sys
21:03:26.0014 5504  drmkaud - ok
21:03:26.0059 5504  [ AF2E16242AA723F68F461B6EAE2EAD3D ] DXGKrnl         C:\windows\System32\drivers\dxgkrnl.sys
21:03:26.0103 5504  DXGKrnl - ok
21:03:26.0236 5504  EagleX64 - ok
21:03:26.0263 5504  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost         C:\windows\System32\eapsvc.dll
21:03:26.0321 5504  EapHost - ok
21:03:26.0410 5504  [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv           C:\windows\system32\drivers\evbda.sys
21:03:26.0517 5504  ebdrv - ok
21:03:26.0614 5504  [ C118A82CD78818C29AB228366EBF81C3 ] EFS             C:\windows\System32\lsass.exe
21:03:26.0640 5504  EFS - ok
21:03:26.0694 5504  [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr         C:\windows\ehome\ehRecvr.exe
21:03:26.0734 5504  ehRecvr - ok
21:03:26.0750 5504  [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched         C:\windows\ehome\ehsched.exe
21:03:26.0774 5504  ehSched - ok
21:03:26.0821 5504  [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor         C:\windows\system32\drivers\elxstor.sys
21:03:26.0852 5504  elxstor - ok
21:03:26.0865 5504  [ 34A3C54752046E79A126E15C51DB409B ] ErrDev          C:\windows\system32\drivers\errdev.sys
21:03:26.0879 5504  ErrDev - ok
21:03:26.0931 5504  [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem     C:\windows\system32\es.dll
21:03:26.0987 5504  EventSystem - ok
21:03:27.0092 5504  [ 64D25284A4E9D11CA0722AF3F30FD970 ] EvtEng          C:\Program Files\Intel\WiFi\bin\EvtEng.exe
21:03:27.0125 5504  EvtEng - ok
21:03:27.0167 5504  [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat           C:\windows\system32\drivers\exfat.sys
21:03:27.0224 5504  exfat - ok
21:03:27.0234 5504  [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat         C:\windows\system32\drivers\fastfat.sys
21:03:27.0272 5504  fastfat - ok
21:03:27.0317 5504  [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax             C:\windows\system32\fxssvc.exe
21:03:27.0360 5504  Fax - ok
21:03:27.0398 5504  [ D765D19CD8EF61F650C384F62FAC00AB ] fdc             C:\windows\system32\drivers\fdc.sys
21:03:27.0411 5504  fdc - ok
21:03:27.0475 5504  [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost         C:\windows\system32\fdPHost.dll
21:03:27.0513 5504  fdPHost - ok
21:03:27.0549 5504  [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub        C:\windows\system32\fdrespub.dll
21:03:27.0608 5504  FDResPub - ok
21:03:27.0653 5504  [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo        C:\windows\system32\drivers\fileinfo.sys
21:03:27.0674 5504  FileInfo - ok
21:03:27.0760 5504  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace       C:\windows\system32\drivers\filetrace.sys
21:03:27.0818 5504  Filetrace - ok
21:03:27.0831 5504  [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk        C:\windows\system32\drivers\flpydisk.sys
21:03:27.0852 5504  flpydisk - ok
21:03:27.0876 5504  [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr          C:\windows\system32\drivers\fltmgr.sys
21:03:27.0903 5504  FltMgr - ok
21:03:27.0967 5504  [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache       C:\windows\system32\FntCache.dll
21:03:28.0010 5504  FontCache - ok
21:03:28.0112 5504  [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
21:03:28.0130 5504  FontCache3.0.0.0 - ok
21:03:28.0152 5504  [ D43703496149971890703B4B1B723EAC ] FsDepends       C:\windows\system32\drivers\FsDepends.sys
21:03:28.0171 5504  FsDepends - ok
21:03:28.0223 5504  [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec          C:\windows\system32\drivers\Fs_Rec.sys
21:03:28.0253 5504  Fs_Rec - ok
21:03:28.0322 5504  [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol          C:\windows\system32\DRIVERS\fvevol.sys
21:03:28.0351 5504  fvevol - ok
21:03:28.0411 5504  [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx        C:\windows\system32\drivers\gagp30kx.sys
21:03:28.0431 5504  gagp30kx - ok
21:03:28.0575 5504  [ 521A469CAF61F00E1DE081CC2099C1D6 ] GameConsoleService C:\Program Files (x86)\WildGames\Game Console - WildGames\GameConsoleService.exe
21:03:28.0600 5504  GameConsoleService - ok
21:03:28.0690 5504  [ 9F5E8645FECD68C0ECC374F5A4AE068A ] gfiark          C:\windows\system32\drivers\gfiark.sys
21:03:28.0708 5504  gfiark - ok
21:03:28.0783 5504  [ 14908F4F9005C29DE8F5587E271390EE ] gfibto          C:\windows\system32\drivers\gfibto.sys
21:03:28.0807 5504  gfibto - ok
21:03:28.0854 5504  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc           C:\windows\System32\gpsvc.dll
21:03:28.0941 5504  gpsvc - ok
21:03:29.0093 5504  [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
21:03:29.0110 5504  gupdate - ok
21:03:29.0116 5504  [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
21:03:29.0131 5504  gupdatem - ok
21:03:29.0181 5504  [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir        C:\windows\system32\drivers\hcw85cir.sys
21:03:29.0203 5504  hcw85cir - ok
21:03:29.0256 5504  [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\windows\system32\drivers\HdAudio.sys
21:03:29.0289 5504  HdAudAddService - ok
21:03:29.0308 5504  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus        C:\windows\system32\DRIVERS\HDAudBus.sys
21:03:29.0336 5504  HDAudBus - ok
21:03:29.0356 5504  [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt         C:\windows\system32\drivers\HidBatt.sys
21:03:29.0379 5504  HidBatt - ok
21:03:29.0401 5504  [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth          C:\windows\system32\drivers\hidbth.sys
21:03:29.0445 5504  HidBth - ok
21:03:29.0521 5504  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr           C:\windows\system32\drivers\hidir.sys
21:03:29.0547 5504  HidIr - ok
21:03:29.0591 5504  [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv         C:\windows\system32\hidserv.dll
21:03:29.0706 5504  hidserv - ok
21:03:29.0756 5504  [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb          C:\windows\system32\DRIVERS\hidusb.sys
21:03:29.0791 5504  HidUsb - ok
21:03:29.0817 5504  [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc          C:\windows\system32\kmsvc.dll
21:03:29.0873 5504  hkmsvc - ok
21:03:29.0905 5504  [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\windows\system32\ListSvc.dll
21:03:29.0930 5504  HomeGroupListener - ok
21:03:29.0965 5504  [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\windows\system32\provsvc.dll
21:03:30.0016 5504  HomeGroupProvider - ok
21:03:30.0089 5504  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD          C:\windows\system32\drivers\HpSAMD.sys
21:03:30.0109 5504  HpSAMD - ok
21:03:30.0147 5504  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP            C:\windows\system32\drivers\HTTP.sys
21:03:30.0215 5504  HTTP - ok
21:03:30.0259 5504  [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy        C:\windows\system32\drivers\hwpolicy.sys
21:03:30.0276 5504  hwpolicy - ok
21:03:30.0344 5504  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt        C:\windows\system32\DRIVERS\i8042prt.sys
21:03:30.0368 5504  i8042prt - ok
21:03:30.0447 5504  [ C224331A54571C8C9162F7714400BBBD ] iaStor          C:\windows\system32\DRIVERS\iaStor.sys
21:03:30.0474 5504  iaStor - ok
21:03:30.0554 5504  [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV         C:\windows\system32\drivers\iaStorV.sys
21:03:30.0585 5504  iaStorV - ok
21:03:30.0623 5504  [ 60CC7AE9AEDB4D1E7923BD053B176D97 ] ibtfltcoex      C:\windows\system32\DRIVERS\iBtFltCoex.sys
21:03:30.0642 5504  ibtfltcoex - ok
21:03:30.0715 5504  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc           C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
21:03:30.0753 5504  idsvc - ok
21:03:31.0029 5504  [ 54E37A4E66B2CA1C38E9728FAD5F9822 ] igfx            C:\windows\system32\DRIVERS\igdkmd64.sys
21:03:31.0353 5504  igfx - ok
21:03:31.0392 5504  [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp           C:\windows\system32\drivers\iirsp.sys
21:03:31.0404 5504  iirsp - ok
21:03:31.0492 5504  [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT          C:\windows\System32\ikeext.dll
21:03:31.0560 5504  IKEEXT - ok
21:03:31.0612 5504  [ CADDF0927DAC63EDAE48F5C35A61D87D ] intaud_WaveExtensible C:\windows\system32\drivers\intelaud.sys
21:03:31.0627 5504  intaud_WaveExtensible - ok
21:03:31.0813 5504  [ 6EF96DF5184DDB95A12107B8D7531FB7 ] IntcAzAudAddService C:\windows\system32\drivers\RTKVHD64.sys
21:03:32.0048 5504  IntcAzAudAddService - ok
21:03:32.0093 5504  [ 6C9FFFECA9FED31347D211C5D1FFBD2D ] IntcDAud        C:\windows\system32\DRIVERS\IntcDAud.sys
21:03:32.0111 5504  IntcDAud - ok
21:03:32.0203 5504  [ 832CE330DD987227B7DEA8C03F22AEFA ] Intel(R) Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
21:03:32.0234 5504  Intel(R) Capability Licensing Service Interface - ok
21:03:32.0354 5504  [ 9571D8BDB56EBC52280E8020574508E6 ] Intel(R) ME Service C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
21:03:32.0433 5504  Intel(R) ME Service - ok
21:03:32.0451 5504  [ F00F20E70C6EC3AA366910083A0518AA ] intelide        C:\windows\system32\drivers\intelide.sys
21:03:32.0469 5504  intelide - ok
21:03:32.0536 5504  [ ADA036632C664CAA754079041CF1F8C1 ] intelppm        C:\windows\system32\DRIVERS\intelppm.sys
21:03:32.0560 5504  intelppm - ok
21:03:32.0597 5504  [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum       C:\windows\system32\ipbusenum.dll
21:03:32.0654 5504  IPBusEnum - ok
21:03:32.0683 5504  [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver  C:\windows\system32\DRIVERS\ipfltdrv.sys
21:03:32.0751 5504  IpFilterDriver - ok
21:03:32.0792 5504  [ 08C2957BB30058E663720C5606885653 ] iphlpsvc        C:\windows\System32\iphlpsvc.dll
21:03:32.0836 5504  iphlpsvc - ok
21:03:32.0867 5504  [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV         C:\windows\system32\drivers\IPMIDrv.sys
21:03:32.0942 5504  IPMIDRV - ok
21:03:32.0981 5504  [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT           C:\windows\system32\drivers\ipnat.sys
21:03:33.0043 5504  IPNAT - ok
21:03:33.0128 5504  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM          C:\windows\system32\drivers\irenum.sys
21:03:33.0157 5504  IRENUM - ok
21:03:33.0223 5504  [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp          C:\windows\system32\drivers\isapnp.sys
21:03:33.0242 5504  isapnp - ok
21:03:33.0297 5504  [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt        C:\windows\system32\drivers\msiscsi.sys
21:03:33.0323 5504  iScsiPrt - ok
21:03:33.0368 5504  [ 8E4577C6E0D3114170509159DE658907 ] iusb3hcs        C:\windows\system32\DRIVERS\iusb3hcs.sys
21:03:33.0391 5504  iusb3hcs - ok
21:03:33.0421 5504  [ FE76346E9B57DA575BD1B3BD0CCAD7FF ] iusb3hub        C:\windows\system32\DRIVERS\iusb3hub.sys
21:03:33.0453 5504  iusb3hub - ok
21:03:33.0498 5504  [ 1008CD90DA2198FFD250298DEB9DF160 ] iusb3xhc        C:\windows\system32\DRIVERS\iusb3xhc.sys
21:03:33.0538 5504  iusb3xhc - ok
21:03:33.0589 5504  [ 716F66336F10885D935B08174DC54242 ] iwdbus          C:\windows\system32\DRIVERS\iwdbus.sys
21:03:33.0605 5504  iwdbus - ok
21:03:33.0686 5504  [ DBD76BC1D498FE368F2C8CB76C3E00A4 ] jhi_service     C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
21:03:33.0706 5504  jhi_service - ok
21:03:33.0731 5504  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass        C:\windows\system32\DRIVERS\kbdclass.sys
21:03:33.0751 5504  kbdclass - ok
21:03:33.0778 5504  [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid          C:\windows\system32\drivers\kbdhid.sys
21:03:33.0801 5504  kbdhid - ok
21:03:33.0825 5504  [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso          C:\windows\system32\lsass.exe
21:03:33.0844 5504  KeyIso - ok
21:03:33.0907 5504  [ 8B5219318DF5895ABD230C373F2DF18A ] kl1             C:\windows\system32\DRIVERS\kl1.sys
21:03:33.0946 5504  kl1 - ok
21:03:34.0011 5504  [ 2CBD248370721DCAD632DB70D09C5A6D ] KLIF            C:\windows\system32\DRIVERS\klif.sys
21:03:34.0062 5504  KLIF - ok
21:03:34.0146 5504  [ 9BD99E1AB3F664120AB95C35F9EC1EB0 ] KLIM6           C:\windows\system32\DRIVERS\klim6.sys
21:03:34.0173 5504  KLIM6 - ok
21:03:34.0200 5504  [ 2C43FD500522EF3B8C283A5846B7FC41 ] klkbdflt        C:\windows\system32\DRIVERS\klkbdflt.sys
21:03:34.0217 5504  klkbdflt - ok
21:03:34.0225 5504  [ 70A6D2E292017EC47949696F51ABE18D ] klmouflt        C:\windows\system32\DRIVERS\klmouflt.sys
21:03:34.0252 5504  klmouflt - ok
21:03:34.0267 5504  [ 982974975E679276F0FA39EFA331A268 ] kltdi           C:\windows\system32\DRIVERS\kltdi.sys
21:03:34.0284 5504  kltdi - ok
21:03:34.0317 5504  [ 1FCB657B581CC4DF17FD6571F93602DE ] kneps           C:\windows\system32\DRIVERS\kneps.sys
21:03:34.0351 5504  kneps - ok
21:03:34.0387 5504  [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD          C:\windows\system32\Drivers\ksecdd.sys
21:03:34.0409 5504  KSecDD - ok
21:03:34.0419 5504  [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg         C:\windows\system32\Drivers\ksecpkg.sys
21:03:34.0454 5504  KSecPkg - ok
21:03:34.0475 5504  [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk         C:\windows\system32\drivers\ksthunk.sys
21:03:34.0541 5504  ksthunk - ok
21:03:34.0577 5504  [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm           C:\windows\system32\msdtckrm.dll
21:03:34.0675 5504  KtmRm - ok
21:03:34.0724 5504  [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer    C:\windows\system32\srvsvc.dll
21:03:34.0785 5504  LanmanServer - ok
21:03:34.0810 5504  [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\windows\System32\wkssvc.dll
21:03:34.0868 5504  LanmanWorkstation - ok
21:03:34.0907 5504  [ 1538831CF8AD2979A04C423779465827 ] lltdio          C:\windows\system32\DRIVERS\lltdio.sys
21:03:34.0964 5504  lltdio - ok
21:03:35.0033 5504  [ C1185803384AB3FEED115F79F109427F ] lltdsvc         C:\windows\System32\lltdsvc.dll
21:03:35.0099 5504  lltdsvc - ok
21:03:35.0130 5504  [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts         C:\windows\System32\lmhsvc.dll
21:03:35.0199 5504  lmhosts - ok
21:03:35.0233 5504  [ 86E4CC39C953D11EF57CF54C4DC78238 ] LMS             C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
21:03:35.0257 5504  LMS - ok
21:03:35.0283 5504  [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC          C:\windows\system32\drivers\lsi_fc.sys
21:03:35.0302 5504  LSI_FC - ok
21:03:35.0333 5504  [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS         C:\windows\system32\drivers\lsi_sas.sys
21:03:35.0353 5504  LSI_SAS - ok
21:03:35.0367 5504  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2        C:\windows\system32\drivers\lsi_sas2.sys
21:03:35.0385 5504  LSI_SAS2 - ok
21:03:35.0408 5504  [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI        C:\windows\system32\drivers\lsi_scsi.sys
21:03:35.0427 5504  LSI_SCSI - ok
21:03:35.0474 5504  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv           C:\windows\system32\drivers\luafv.sys
21:03:35.0533 5504  luafv - ok
21:03:35.0668 5504  [ 0BB97D43299910CBFBA59C461B99B910 ] MBAMProtector   C:\windows\system32\drivers\mbam.sys
21:03:35.0686 5504  MBAMProtector - ok
21:03:35.0842 5504  [ 65085456FD9A74D7F1A999520C299ECB ] MBAMScheduler   C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
21:03:35.0869 5504  MBAMScheduler - ok
21:03:35.0924 5504  [ E0D7732F2D2E24B2DB3F67B6750295B8 ] MBAMService     C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
21:03:35.0957 5504  MBAMService - ok
21:03:36.0046 5504  [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc         C:\windows\system32\Mcx2Svc.dll
21:03:36.0085 5504  Mcx2Svc - ok
21:03:36.0136 5504  [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas         C:\windows\system32\drivers\megasas.sys
21:03:36.0156 5504  megasas - ok
21:03:36.0186 5504  [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR          C:\windows\system32\drivers\MegaSR.sys
21:03:36.0212 5504  MegaSR - ok
21:03:36.0273 5504  [ 6B01B7414A105B9E51652089A03027CF ] MEIx64          C:\windows\system32\DRIVERS\HECIx64.sys
21:03:36.0290 5504  MEIx64 - ok
21:03:36.0334 5504  [ E40E80D0304A73E8D269F7141D77250B ] MMCSS           C:\windows\system32\mmcss.dll
21:03:36.0394 5504  MMCSS - ok
21:03:36.0408 5504  [ 800BA92F7010378B09F9ED9270F07137 ] Modem           C:\windows\system32\drivers\modem.sys
21:03:36.0461 5504  Modem - ok
21:03:36.0568 5504  [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor         C:\windows\system32\DRIVERS\monitor.sys
21:03:36.0596 5504  monitor - ok
21:03:36.0643 5504  [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass        C:\windows\system32\DRIVERS\mouclass.sys
21:03:36.0671 5504  mouclass - ok
21:03:36.0710 5504  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid          C:\windows\system32\DRIVERS\mouhid.sys
21:03:36.0730 5504  mouhid - ok
21:03:36.0793 5504  [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr        C:\windows\system32\drivers\mountmgr.sys
21:03:36.0809 5504  mountmgr - ok
21:03:36.0859 5504  [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio            C:\windows\system32\drivers\mpio.sys
21:03:36.0898 5504  mpio - ok
21:03:36.0936 5504  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv          C:\windows\system32\drivers\mpsdrv.sys
21:03:36.0986 5504  mpsdrv - ok
21:03:37.0021 5504  [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc          C:\windows\system32\mpssvc.dll
21:03:37.0104 5504  MpsSvc - ok
21:03:37.0130 5504  [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV          C:\windows\system32\drivers\mrxdav.sys
21:03:37.0169 5504  MRxDAV - ok
21:03:37.0225 5504  [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb          C:\windows\system32\DRIVERS\mrxsmb.sys
21:03:37.0250 5504  mrxsmb - ok
21:03:37.0283 5504  [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10        C:\windows\system32\DRIVERS\mrxsmb10.sys
21:03:37.0308 5504  mrxsmb10 - ok
21:03:37.0330 5504  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20        C:\windows\system32\DRIVERS\mrxsmb20.sys
21:03:37.0353 5504  mrxsmb20 - ok
21:03:37.0379 5504  [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci          C:\windows\system32\drivers\msahci.sys
21:03:37.0408 5504  msahci - ok
21:03:37.0428 5504  [ DB801A638D011B9633829EB6F663C900 ] msdsm           C:\windows\system32\drivers\msdsm.sys
21:03:37.0449 5504  msdsm - ok
21:03:37.0470 5504  [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC           C:\windows\System32\msdtc.exe
21:03:37.0496 5504  MSDTC - ok
21:03:37.0526 5504  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs            C:\windows\system32\drivers\Msfs.sys
21:03:37.0583 5504  Msfs - ok
21:03:37.0656 5504  [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf       C:\windows\System32\drivers\mshidkmdf.sys
21:03:37.0770 5504  mshidkmdf - ok
21:03:37.0783 5504  [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv        C:\windows\system32\drivers\msisadrv.sys
21:03:37.0801 5504  msisadrv - ok
21:03:37.0821 5504  [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI         C:\windows\system32\iscsiexe.dll
21:03:37.0927 5504  MSiSCSI - ok
21:03:37.0932 5504  msiserver - ok
21:03:37.0999 5504  [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV         C:\windows\system32\drivers\MSKSSRV.sys
21:03:38.0056 5504  MSKSSRV - ok
21:03:38.0070 5504  [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK        C:\windows\system32\drivers\MSPCLOCK.sys
21:03:38.0126 5504  MSPCLOCK - ok
21:03:38.0139 5504  [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM           C:\windows\system32\drivers\MSPQM.sys
21:03:38.0196 5504  MSPQM - ok
21:03:38.0223 5504  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC           C:\windows\system32\drivers\MsRPC.sys
21:03:38.0255 5504  MsRPC - ok
21:03:38.0292 5504  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios        C:\windows\system32\DRIVERS\mssmbios.sys
21:03:38.0311 5504  mssmbios - ok
21:03:38.0326 5504  [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE           C:\windows\system32\drivers\MSTEE.sys
21:03:38.0381 5504  MSTEE - ok
21:03:38.0407 5504  [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig        C:\windows\system32\drivers\MTConfig.sys
21:03:38.0420 5504  MTConfig - ok
21:03:38.0469 5504  [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup             C:\windows\system32\Drivers\mup.sys
21:03:38.0490 5504  Mup - ok
21:03:38.0566 5504  [ E3B58E3011B207C5289D11173B30E298 ] MyWiFiDHCPDNS   C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
21:03:38.0610 5504  MyWiFiDHCPDNS - ok
21:03:38.0684 5504  [ 582AC6D9873E31DFA28A4547270862DD ] napagent        C:\windows\system32\qagentRT.dll
21:03:38.0829 5504  napagent - ok
21:03:38.0864 5504  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP     C:\windows\system32\DRIVERS\nwifi.sys
21:03:38.0913 5504  NativeWifiP - ok
21:03:38.0978 5504  [ 760E38053BF56E501D562B70AD796B88 ] NDIS            C:\windows\system32\drivers\ndis.sys
21:03:39.0018 5504  NDIS - ok
21:03:39.0035 5504  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap         C:\windows\system32\DRIVERS\ndiscap.sys
21:03:39.0091 5504  NdisCap - ok
21:03:39.0145 5504  [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi        C:\windows\system32\DRIVERS\ndistapi.sys
21:03:39.0211 5504  NdisTapi - ok
21:03:39.0242 5504  [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio         C:\windows\system32\DRIVERS\ndisuio.sys
21:03:39.0297 5504  Ndisuio - ok
21:03:39.0310 5504  [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan         C:\windows\system32\DRIVERS\ndiswan.sys
21:03:39.0366 5504  NdisWan - ok
21:03:39.0385 5504  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy         C:\windows\system32\drivers\NDProxy.sys
21:03:39.0451 5504  NDProxy - ok
21:03:39.0484 5504  [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS         C:\windows\system32\DRIVERS\netbios.sys
21:03:39.0578 5504  NetBIOS - ok
21:03:39.0610 5504  [ 09594D1089C523423B32A4229263F068 ] NetBT           C:\windows\system32\DRIVERS\netbt.sys
21:03:39.0669 5504  NetBT - ok
21:03:39.0683 5504  [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon        C:\windows\system32\lsass.exe
21:03:39.0701 5504  Netlogon - ok
21:03:39.0746 5504  [ 847D3AE376C0817161A14A82C8922A9E ] Netman          C:\windows\System32\netman.dll
21:03:39.0808 5504  Netman - ok
21:03:39.0955 5504  [ 5243CFC2E7161C91C2B355240035B9E4 ] NetMsmqActivator C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:03:39.0978 5504  NetMsmqActivator - ok
21:03:39.0983 5504  [ 5243CFC2E7161C91C2B355240035B9E4 ] NetPipeActivator C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:03:40.0005 5504  NetPipeActivator - ok
21:03:40.0032 5504  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm        C:\windows\System32\netprofm.dll
21:03:40.0095 5504  netprofm - ok
21:03:40.0101 5504  [ 5243CFC2E7161C91C2B355240035B9E4 ] NetTcpActivator C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:03:40.0122 5504  NetTcpActivator - ok
21:03:40.0128 5504  [ 5243CFC2E7161C91C2B355240035B9E4 ] NetTcpPortSharing C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:03:40.0149 5504  NetTcpPortSharing - ok
21:03:40.0424 5504  [ B51E9AD4F4E4F8DBE0AB882756BC5DAB ] NETwNs64        C:\windows\system32\DRIVERS\NETwNs64.sys
21:03:40.0720 5504  NETwNs64 - ok
21:03:40.0759 5504  [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960         C:\windows\system32\drivers\nfrd960.sys
21:03:40.0776 5504  nfrd960 - ok
21:03:40.0852 5504  [ 8AD77806D336673F270DB31645267293 ] NlaSvc          C:\windows\System32\nlasvc.dll
21:03:40.0879 5504  NlaSvc - ok
21:03:40.0891 5504  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs            C:\windows\system32\drivers\Npfs.sys
21:03:40.0961 5504  Npfs - ok
21:03:40.0971 5504  [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi             C:\windows\system32\nsisvc.dll
21:03:41.0028 5504  nsi - ok
21:03:41.0045 5504  [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy        C:\windows\system32\drivers\nsiproxy.sys
21:03:41.0099 5504  nsiproxy - ok
21:03:41.0176 5504  [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs            C:\windows\system32\drivers\Ntfs.sys
21:03:41.0241 5504  Ntfs - ok
21:03:41.0265 5504  [ 9899284589F75FA8724FF3D16AED75C1 ] Null            C:\windows\system32\drivers\Null.sys
21:03:41.0331 5504  Null - ok
21:03:41.0776 5504  [ 12E18E5F438AAD55DAF77E127C0EA25B ] nvlddmkm        C:\windows\system32\DRIVERS\nvlddmkm.sys
21:03:42.0241 5504  nvlddmkm - ok
21:03:42.0254 5504  [ 186290C63FEB79C199A620E36705F9EE ] nvpciflt        C:\windows\system32\DRIVERS\nvpciflt.sys
21:03:42.0264 5504  nvpciflt - ok
21:03:42.0286 5504  [ 0A92CB65770442ED0DC44834632F66AD ] nvraid          C:\windows\system32\drivers\nvraid.sys
21:03:42.0299 5504  nvraid - ok
21:03:42.0385 5504  [ DAB0E87525C10052BF65F06152F37E4A ] nvstor          C:\windows\system32\drivers\nvstor.sys
21:03:42.0406 5504  nvstor - ok
21:03:42.0454 5504  [ 33A2052D60D4EA6599CEE1D6853D0A42 ] nvsvc           C:\windows\system32\nvvsvc.exe
21:03:42.0492 5504  nvsvc - ok
21:03:42.0584 5504  [ FD6F5B42DB429FD1AE1A4483DB4DD2E0 ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
21:03:42.0663 5504  nvUpdatusService - ok
21:03:42.0688 5504  [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp          C:\windows\system32\drivers\nv_agp.sys
21:03:42.0711 5504  nv_agp - ok
21:03:42.0724 5504  [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394        C:\windows\system32\drivers\ohci1394.sys
21:03:42.0746 5504  ohci1394 - ok
21:03:42.0875 5504  [ 4965B005492CBA7719E82B71E3245495 ] ose64           C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
21:03:42.0896 5504  ose64 - ok
21:03:43.0115 5504  [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
21:03:43.0290 5504  osppsvc - ok
21:03:43.0390 5504  [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc        C:\windows\system32\pnrpsvc.dll
21:03:43.0421 5504  p2pimsvc - ok
21:03:43.0446 5504  [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc          C:\windows\system32\p2psvc.dll
21:03:43.0475 5504  p2psvc - ok
21:03:43.0582 5504  [ 0086431C29C35BE1DBC43F52CC273887 ] Parport         C:\windows\system32\drivers\parport.sys
21:03:43.0606 5504  Parport - ok
21:03:43.0653 5504  [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr         C:\windows\system32\drivers\partmgr.sys
21:03:43.0685 5504  partmgr - ok
21:03:43.0719 5504  [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc          C:\windows\System32\pcasvc.dll
21:03:43.0847 5504  PcaSvc - ok
21:03:43.0895 5504  [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci             C:\windows\system32\drivers\pci.sys
21:03:43.0920 5504  pci - ok
21:03:43.0946 5504  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide          C:\windows\system32\drivers\pciide.sys
21:03:43.0965 5504  pciide - ok
21:03:44.0004 5504  [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia          C:\windows\system32\drivers\pcmcia.sys
21:03:44.0030 5504  pcmcia - ok
21:03:44.0088 5504  [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw             C:\windows\system32\drivers\pcw.sys
21:03:44.0109 5504  pcw - ok
21:03:44.0127 5504  [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH          C:\windows\system32\drivers\peauth.sys
21:03:44.0197 5504  PEAUTH - ok
21:03:44.0322 5504  [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost        C:\windows\SysWow64\perfhost.exe
21:03:44.0346 5504  PerfHost - ok
21:03:44.0403 5504  [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla             C:\windows\system32\pla.dll
21:03:44.0475 5504  pla - ok
21:03:44.0562 5504  [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay        C:\windows\system32\umpnpmgr.dll
21:03:44.0593 5504  PlugPlay - ok
21:03:44.0635 5504  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg     C:\windows\system32\pnrpauto.dll
21:03:44.0654 5504  PNRPAutoReg - ok
21:03:44.0676 5504  [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc         C:\windows\system32\pnrpsvc.dll
21:03:44.0698 5504  PNRPsvc - ok
21:03:44.0760 5504  [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent     C:\windows\System32\ipsecsvc.dll
21:03:44.0887 5504  PolicyAgent - ok
21:03:44.0922 5504  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power           C:\windows\system32\umpo.dll
21:03:44.0981 5504  Power - ok
21:03:45.0007 5504  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport    C:\windows\system32\DRIVERS\raspptp.sys
21:03:45.0060 5504  PptpMiniport - ok
21:03:45.0102 5504  [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor       C:\windows\system32\drivers\processr.sys
21:03:45.0169 5504  Processor - ok
21:03:45.0259 5504  [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc         C:\windows\system32\profsvc.dll
21:03:45.0286 5504  ProfSvc - ok
21:03:45.0296 5504  [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\windows\system32\lsass.exe
21:03:45.0315 5504  ProtectedStorage - ok
21:03:45.0344 5504  [ 0557CF5A2556BD58E26384169D72438D ] Psched          C:\windows\system32\DRIVERS\pacer.sys
21:03:45.0396 5504  Psched - ok
21:03:45.0456 5504  [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300          C:\windows\system32\drivers\ql2300.sys
21:03:45.0513 5504  ql2300 - ok
21:03:45.0530 5504  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx          C:\windows\system32\drivers\ql40xx.sys
21:03:45.0551 5504  ql40xx - ok
21:03:45.0577 5504  [ 906191634E99AEA92C4816150BDA3732 ] QWAVE           C:\windows\system32\qwave.dll
21:03:45.0609 5504  QWAVE - ok
21:03:45.0631 5504  [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv        C:\windows\system32\drivers\qwavedrv.sys
21:03:45.0647 5504  QWAVEdrv - ok
21:03:45.0664 5504  [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd          C:\windows\system32\DRIVERS\rasacd.sys
21:03:45.0698 5504  RasAcd - ok
21:03:45.0733 5504  [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn     C:\windows\system32\DRIVERS\AgileVpn.sys
21:03:45.0777 5504  RasAgileVpn - ok
21:03:45.0799 5504  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto         C:\windows\System32\rasauto.dll
21:03:45.0886 5504  RasAuto - ok
21:03:45.0916 5504  [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp         C:\windows\system32\DRIVERS\rasl2tp.sys
21:03:45.0979 5504  Rasl2tp - ok
21:03:46.0081 5504  [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan          C:\windows\System32\rasmans.dll
21:03:46.0143 5504  RasMan - ok
21:03:46.0183 5504  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe        C:\windows\system32\DRIVERS\raspppoe.sys
21:03:46.0240 5504  RasPppoe - ok
21:03:46.0310 5504  [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp         C:\windows\system32\DRIVERS\rassstp.sys
21:03:46.0381 5504  RasSstp - ok
21:03:46.0399 5504  [ 77F665941019A1594D887A74F301FA2F ] rdbss           C:\windows\system32\DRIVERS\rdbss.sys
21:03:46.0459 5504  rdbss - ok
21:03:46.0487 5504  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus          C:\windows\system32\drivers\rdpbus.sys
21:03:46.0511 5504  rdpbus - ok
21:03:46.0533 5504  [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD          C:\windows\system32\DRIVERS\RDPCDD.sys
21:03:46.0586 5504  RDPCDD - ok
21:03:46.0598 5504  [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD        C:\windows\system32\drivers\rdpencdd.sys
21:03:46.0650 5504  RDPENCDD - ok
21:03:46.0659 5504  [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP        C:\windows\system32\drivers\rdprefmp.sys
21:03:46.0711 5504  RDPREFMP - ok
21:03:46.0746 5504  [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD           C:\windows\system32\drivers\RDPWD.sys
21:03:46.0773 5504  RDPWD - ok
21:03:46.0833 5504  [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost        C:\windows\system32\drivers\rdyboost.sys
21:03:46.0858 5504  rdyboost - ok
21:03:46.0913 5504  [ F3AF2B43F35DBB3A0EB9FEEEC7D62217 ] RegSrvc         C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
21:03:46.0924 5504  RegSrvc - ok
21:03:46.0944 5504  [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess    C:\windows\System32\mprdim.dll
21:03:46.0979 5504  RemoteAccess - ok
21:03:47.0002 5504  [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry  C:\windows\system32\regsvc.dll
21:03:47.0052 5504  RemoteRegistry - ok
21:03:47.0086 5504  [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM          C:\windows\system32\DRIVERS\rfcomm.sys
21:03:47.0125 5504  RFCOMM - ok
21:03:47.0214 5504  [ F12A68ED55053940CADD59CA5E3468DD ] RichVideo       C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
21:03:47.0231 5504  RichVideo ( UnsignedFile.Multi.Generic ) - warning
21:03:47.0232 5504  RichVideo - detected UnsignedFile.Multi.Generic (1)
21:03:47.0258 5504  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper    C:\windows\System32\RpcEpMap.dll
21:03:47.0351 5504  RpcEptMapper - ok
21:03:47.0410 5504  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator      C:\windows\system32\locator.exe
21:03:47.0432 5504  RpcLocator - ok
21:03:47.0459 5504  [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs           C:\windows\system32\rpcss.dll
21:03:47.0519 5504  RpcSs - ok
21:03:47.0565 5504  [ DDC86E4F8E7456261E637E3552E804FF ] rspndr          C:\windows\system32\DRIVERS\rspndr.sys
21:03:47.0623 5504  rspndr - ok
21:03:47.0653 5504  [ 6CF9DB101A75360E98659F823852E540 ] RTL8167         C:\windows\system32\DRIVERS\Rt64win7.sys
21:03:47.0704 5504  RTL8167 - ok
21:03:47.0750 5504  [ 62DB6CC4B0818F1B5F3441241B098F12 ] SABI            C:\windows\system32\Drivers\SABI.sys
21:03:47.0773 5504  SABI - ok
21:03:47.0792 5504  [ C118A82CD78818C29AB228366EBF81C3 ] SamSs           C:\windows\system32\lsass.exe
21:03:47.0811 5504  SamSs - ok
21:03:47.0876 5504  [ 5E66ABD041D76C46CBF55AEF910FCA56 ] SamsungDeviceConfigurationWinService C:\Program Files (x86)\Samsung\Easy Settings\SamsungDeviceConfiguration.exe
21:03:47.0890 5504  SamsungDeviceConfigurationWinService - ok
21:03:48.0056 5504  [ 99FC1599F89A80216E41175B8CA44D89 ] SBAMSvc         C:\Program Files (x86)\Ad-Aware Antivirus\SBAMSvc.exe
21:03:48.0164 5504  SBAMSvc - ok
21:03:48.0216 5504  [ 8F19D62B04081C0BFF1E8D6F26220A28 ] sbapifs         C:\windows\system32\DRIVERS\sbapifs.sys
21:03:48.0233 5504  sbapifs - ok
21:03:48.0329 5504  [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port        C:\windows\system32\drivers\sbp2port.sys
21:03:48.0351 5504  sbp2port - ok
21:03:48.0383 5504  [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr        C:\windows\System32\SCardSvr.dll
21:03:48.0436 5504  SCardSvr - ok
21:03:48.0450 5504  [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter        C:\windows\system32\DRIVERS\scfilter.sys
21:03:48.0482 5504  scfilter - ok
21:03:48.0516 5504  [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule        C:\windows\system32\schedsvc.dll
21:03:48.0602 5504  Schedule - ok
21:03:48.0631 5504  [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc     C:\windows\System32\certprop.dll
21:03:48.0685 5504  SCPolicySvc - ok
21:03:48.0706 5504  [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC          C:\windows\System32\SDRSVC.dll
21:03:48.0732 5504  SDRSVC - ok
21:03:48.0773 5504  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\windows\system32\drivers\secdrv.sys
21:03:48.0838 5504  secdrv - ok
21:03:48.0854 5504  [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon        C:\windows\system32\seclogon.dll
21:03:48.0909 5504  seclogon - ok
21:03:48.0934 5504  [ C32AB8FA018EF34C0F113BD501436D21 ] SENS            C:\windows\System32\sens.dll
21:03:48.0999 5504  SENS - ok
21:03:49.0055 5504  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc        C:\windows\system32\sensrsvc.dll
21:03:49.0080 5504  SensrSvc - ok
21:03:49.0124 5504  [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum         C:\windows\system32\drivers\serenum.sys
21:03:49.0184 5504  Serenum - ok
21:03:49.0261 5504  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial          C:\windows\system32\drivers\serial.sys
21:03:49.0301 5504  Serial - ok
21:03:49.0359 5504  [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse        C:\windows\system32\drivers\sermouse.sys
21:03:49.0379 5504  sermouse - ok
21:03:49.0431 5504  [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv      C:\windows\system32\sessenv.dll
21:03:49.0488 5504  SessionEnv - ok
21:03:49.0492 5504  [ A554811BCD09279536440C964AE35BBF ] sffdisk         C:\windows\system32\drivers\sffdisk.sys
21:03:49.0516 5504  sffdisk - ok
21:03:49.0521 5504  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc        C:\windows\system32\drivers\sffp_mmc.sys
21:03:49.0546 5504  sffp_mmc - ok
21:03:49.0550 5504  [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd         C:\windows\system32\drivers\sffp_sd.sys
21:03:49.0574 5504  sffp_sd - ok
21:03:49.0649 5504  [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy         C:\windows\system32\drivers\sfloppy.sys
21:03:49.0670 5504  sfloppy - ok
21:03:49.0719 5504  [ 2FE1CD3AA602414841DB10AD96C95A5E ] SGDrv           C:\windows\system32\DRIVERS\SGdrv64.sys
21:03:49.0738 5504  SGDrv - ok
21:03:49.0795 5504  [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess    C:\windows\System32\ipnathlp.dll
21:03:49.0859 5504  SharedAccess - ok
21:03:49.0915 5504  [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\windows\System32\shsvcs.dll
21:03:49.0977 5504  ShellHWDetection - ok
21:03:49.0994 5504  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2        C:\windows\system32\drivers\SiSRaid2.sys
21:03:50.0013 5504  SiSRaid2 - ok
21:03:50.0025 5504  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4        C:\windows\system32\drivers\sisraid4.sys
21:03:50.0045 5504  SiSRaid4 - ok
21:03:50.0192 5504  [ 388AE59FE75F1B959DFA0900923C61BB ] Skype C2C Service C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
21:03:50.0540 5504  Skype C2C Service - ok
21:03:50.0602 5504  [ 7C15061CD0372487903B07B9BB03AFAD ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
21:03:50.0621 5504  SkypeUpdate - ok
21:03:50.0695 5504  [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb             C:\windows\system32\DRIVERS\smb.sys
21:03:50.0752 5504  Smb - ok
21:03:50.0791 5504  [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP        C:\windows\System32\snmptrap.exe
21:03:50.0816 5504  SNMPTRAP - ok
21:03:50.0855 5504  [ B9E31E5CACDFE584F34F730A677803F9 ] spldr           C:\windows\system32\drivers\spldr.sys
21:03:50.0866 5504  spldr - ok
21:03:50.0914 5504  [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler         C:\windows\System32\spoolsv.exe
21:03:50.0966 5504  Spooler - ok
21:03:51.0060 5504  [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc          C:\windows\system32\sppsvc.exe
21:03:51.0151 5504  sppsvc - ok
21:03:51.0172 5504  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify     C:\windows\system32\sppuinotify.dll
21:03:51.0206 5504  sppuinotify - ok
21:03:51.0245 5504  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv             C:\windows\system32\DRIVERS\srv.sys
21:03:51.0326 5504  srv - ok
21:03:51.0350 5504  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2            C:\windows\system32\DRIVERS\srv2.sys
21:03:51.0380 5504  srv2 - ok
21:03:51.0417 5504  [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet          C:\windows\system32\DRIVERS\srvnet.sys
21:03:51.0491 5504  srvnet - ok
21:03:51.0532 5504  [ 8F8324ED1DE63FFC7B1A02CD2D963C72 ] ssadbus         C:\windows\system32\DRIVERS\ssadbus.sys
21:03:51.0557 5504  ssadbus - ok
21:03:51.0605 5504  [ 58221EFCB74167B73667F0024C661CE0 ] ssadmdfl        C:\windows\system32\DRIVERS\ssadmdfl.sys
21:03:51.0627 5504  ssadmdfl - ok
21:03:51.0670 5504  [ 4DA7C71BFAC5AD71255B7E4CAB980163 ] ssadmdm         C:\windows\system32\DRIVERS\ssadmdm.sys
21:03:51.0697 5504  ssadmdm - ok
21:03:51.0761 5504  [ D33D1BD3EC0E766211A234F56A12726D ] ssadserd        C:\windows\system32\DRIVERS\ssadserd.sys
21:03:51.0845 5504  ssadserd - ok
21:03:51.0887 5504  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV         C:\windows\System32\ssdpsrv.dll
21:03:51.0952 5504  SSDPSRV - ok
21:03:51.0971 5504  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc         C:\windows\system32\sstpsvc.dll
21:03:52.0032 5504  SstpSvc - ok
21:03:52.0051 5504  StarOpen - ok
21:03:52.0101 5504  Steam Client Service - ok
21:03:52.0130 5504  [ F3817967ED533D08327DC73BC4D5542A ] stexstor        C:\windows\system32\drivers\stexstor.sys
21:03:52.0148 5504  stexstor - ok
21:03:52.0212 5504  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc          C:\windows\System32\wiaservc.dll
21:03:52.0252 5504  stisvc - ok
21:03:52.0271 5504  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum          C:\windows\system32\DRIVERS\swenum.sys
21:03:52.0298 5504  swenum - ok
21:03:52.0338 5504  [ E08E46FDD841B7184194011CA1955A0B ] swprv           C:\windows\System32\swprv.dll
21:03:52.0397 5504  swprv - ok
21:03:52.0438 5504  [ 7E488378004FF5F9DCD1711522B1241A ] SynTP           C:\windows\system32\DRIVERS\SynTP.sys
21:03:52.0463 5504  SynTP - ok
21:03:52.0527 5504  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain         C:\windows\system32\sysmain.dll
21:03:52.0654 5504  SysMain - ok
21:03:52.0688 5504  [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\windows\System32\TabSvc.dll
21:03:52.0720 5504  TabletInputService - ok
21:03:52.0738 5504  [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv         C:\windows\System32\tapisrv.dll
21:03:52.0799 5504  TapiSrv - ok
21:03:52.0819 5504  [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS             C:\windows\System32\tbssvc.dll
21:03:52.0881 5504  TBS - ok
21:03:52.0958 5504  [ 9849EA3843A2ADBDD1497E97A85D8CAE ] Tcpip           C:\windows\system32\drivers\tcpip.sys
21:03:53.0002 5504  Tcpip - ok
21:03:53.0076 5504  [ 9849EA3843A2ADBDD1497E97A85D8CAE ] TCPIP6          C:\windows\system32\DRIVERS\tcpip.sys
21:03:53.0119 5504  TCPIP6 - ok
21:03:53.0141 5504  [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg        C:\windows\system32\drivers\tcpipreg.sys
21:03:53.0154 5504  tcpipreg - ok
21:03:53.0203 5504  [ 3371D21011695B16333A3934340C4E7C ] TDPIPE          C:\windows\system32\drivers\tdpipe.sys
21:03:53.0238 5504  TDPIPE - ok
21:03:53.0265 5504  [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP           C:\windows\system32\drivers\tdtcp.sys
21:03:53.0280 5504  TDTCP - ok
21:03:53.0311 5504  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx             C:\windows\system32\DRIVERS\tdx.sys
21:03:53.0366 5504  tdx - ok
21:03:54.0219 5504  [ 7C8DD5576695B3362202EF09B20C425E ] TeamViewer8     C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
21:03:55.0630 5504  TeamViewer8 - ok
21:03:55.0663 5504  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD          C:\windows\system32\DRIVERS\termdd.sys
21:03:55.0681 5504  TermDD - ok
21:03:55.0713 5504  [ 2E648163254233755035B46DD7B89123 ] TermService     C:\windows\System32\termsrv.dll
21:03:55.0792 5504  TermService - ok
21:03:55.0807 5504  [ F0344071948D1A1FA732231785A0664C ] Themes          C:\windows\system32\themeservice.dll
21:03:55.0837 5504  Themes - ok
21:03:55.0868 5504  [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER     C:\windows\system32\mmcss.dll
21:03:55.0924 5504  THREADORDER - ok
21:03:55.0950 5504  [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks          C:\windows\System32\trkwks.dll
21:03:56.0003 5504  TrkWks - ok
21:03:56.0055 5504  [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\windows\servicing\TrustedInstaller.exe
21:03:56.0111 5504  TrustedInstaller - ok
21:03:56.0125 5504  [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv        C:\windows\system32\DRIVERS\tssecsrv.sys
21:03:56.0161 5504  tssecsrv - ok
21:03:56.0188 5504  [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt        C:\windows\system32\drivers\tsusbflt.sys
21:03:56.0202 5504  TsUsbFlt - ok
21:03:56.0254 5504  [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD         C:\windows\system32\drivers\TsUsbGD.sys
21:03:56.0286 5504  TsUsbGD - ok
21:03:56.0323 5504  [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel          C:\windows\system32\DRIVERS\tunnel.sys
21:03:56.0385 5504  tunnel - ok
21:03:56.0426 5504  [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35          C:\windows\system32\drivers\uagp35.sys
21:03:56.0438 5504  uagp35 - ok
21:03:56.0458 5504  [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs            C:\windows\system32\DRIVERS\udfs.sys
21:03:56.0509 5504  udfs - ok
21:03:56.0537 5504  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect       C:\windows\system32\UI0Detect.exe
21:03:56.0554 5504  UI0Detect - ok
21:03:56.0566 5504  [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx        C:\windows\system32\drivers\uliagpkx.sys
21:03:56.0580 5504  uliagpkx - ok
21:03:56.0607 5504  [ DC54A574663A895C8763AF0FA1FF7561 ] umbus           C:\windows\system32\DRIVERS\umbus.sys
21:03:56.0623 5504  umbus - ok
21:03:56.0656 5504  [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass          C:\windows\system32\drivers\umpass.sys
21:03:56.0672 5504  UmPass - ok
21:03:56.0821 5504  [ D80B1075B69B57A3AB78F750CE463ECE ] UNS             C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
21:03:56.0849 5504  UNS - ok
21:03:56.0910 5504  [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost        C:\windows\System32\upnphost.dll
21:03:56.0973 5504  upnphost - ok
21:03:57.0014 5504  [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp         C:\windows\system32\DRIVERS\usbccgp.sys
21:03:57.0038 5504  usbccgp - ok
21:03:57.0117 5504  [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir          C:\windows\system32\drivers\usbcir.sys
21:03:57.0146 5504  usbcir - ok
21:03:57.0168 5504  [ C025055FE7B87701EB042095DF1A2D7B ] usbehci         C:\windows\system32\drivers\usbehci.sys
21:03:57.0252 5504  usbehci - ok
21:03:57.0326 5504  [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub          C:\windows\system32\DRIVERS\usbhub.sys
21:03:57.0356 5504  usbhub - ok
21:03:57.0419 5504  [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci         C:\windows\system32\drivers\usbohci.sys
21:03:57.0448 5504  usbohci - ok
21:03:57.0463 5504  [ 73188F58FB384E75C4063D29413CEE3D ] usbprint        C:\windows\system32\drivers\usbprint.sys
21:03:57.0489 5504  usbprint - ok
21:03:57.0505 5504  [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR         C:\windows\system32\DRIVERS\USBSTOR.SYS
21:03:57.0527 5504  USBSTOR - ok
21:03:57.0574 5504  [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci         C:\windows\system32\drivers\usbuhci.sys
21:03:57.0594 5504  usbuhci - ok
21:03:57.0637 5504  [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo        C:\windows\system32\Drivers\usbvideo.sys
21:03:57.0667 5504  usbvideo - ok
21:03:57.0690 5504  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms           C:\windows\System32\uxsms.dll
21:03:57.0747 5504  UxSms - ok
21:03:57.0774 5504  [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc        C:\windows\system32\lsass.exe
21:03:57.0793 5504  VaultSvc - ok
21:03:57.0872 5504  [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot        C:\windows\system32\drivers\vdrvroot.sys
21:03:57.0891 5504  vdrvroot - ok
21:03:57.0916 5504  [ 8D6B481601D01A456E75C3210F1830BE ] vds             C:\windows\System32\vds.exe
21:03:57.0979 5504  vds - ok
21:03:58.0000 5504  [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga             C:\windows\system32\DRIVERS\vgapnp.sys
21:03:58.0024 5504  vga - ok
21:03:58.0039 5504  [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave         C:\windows\System32\drivers\vga.sys
21:03:58.0114 5504  VgaSave - ok
21:03:58.0138 5504  [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp           C:\windows\system32\drivers\vhdmp.sys
21:03:58.0161 5504  vhdmp - ok
21:03:58.0189 5504  [ E5689D93FFE4E5D66C0178761240DD54 ] viaide          C:\windows\system32\drivers\viaide.sys
21:03:58.0207 5504  viaide - ok
21:03:58.0221 5504  [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr          C:\windows\system32\drivers\volmgr.sys
21:03:58.0241 5504  volmgr - ok
21:03:58.0261 5504  [ A255814907C89BE58B79EF2F189B843B ] volmgrx         C:\windows\system32\drivers\volmgrx.sys
21:03:58.0284 5504  volmgrx - ok
21:03:58.0306 5504  [ DF8126BD41180351A093A3AD2FC8903B ] volsnap         C:\windows\system32\drivers\volsnap.sys
21:03:58.0346 5504  volsnap - ok
21:03:58.0377 5504  [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid         C:\windows\system32\drivers\vsmraid.sys
21:03:58.0399 5504  vsmraid - ok
21:03:58.0458 5504  [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS             C:\windows\system32\vssvc.exe
21:03:58.0559 5504  VSS - ok
21:03:58.0574 5504  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus        C:\windows\system32\DRIVERS\vwifibus.sys
21:03:58.0594 5504  vwifibus - ok
21:03:58.0638 5504  [ 13A0DECD1794DE60A8427862C8669D27 ] VWiFiFlt        C:\windows\system32\DRIVERS\vwififlt.sys
21:03:58.0669 5504  VWiFiFlt - ok
21:03:58.0704 5504  [ 49003B357D101CDC474937437ECF5ABC ] vwifimp         C:\windows\system32\DRIVERS\vwifimp.sys
21:03:58.0723 5504  vwifimp - ok
21:03:58.0753 5504  [ 1C9D80CC3849B3788048078C26486E1A ] W32Time         C:\windows\system32\w32time.dll
21:03:58.0816 5504  W32Time - ok
21:03:58.0851 5504  [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen        C:\windows\system32\drivers\wacompen.sys
21:03:58.0872 5504  WacomPen - ok
21:03:58.0934 5504  [ 356AFD78A6ED4457169241AC3965230C ] WANARP          C:\windows\system32\DRIVERS\wanarp.sys
21:03:58.0989 5504  WANARP - ok
21:03:58.0999 5504  [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6        C:\windows\system32\DRIVERS\wanarp.sys
21:03:59.0052 5504  Wanarpv6 - ok
21:03:59.0109 5504  [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine        C:\windows\system32\wbengine.exe
21:03:59.0152 5504  wbengine - ok
21:03:59.0173 5504  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc        C:\windows\System32\wbiosrvc.dll
21:03:59.0196 5504  WbioSrvc - ok
21:03:59.0216 5504  [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc         C:\windows\System32\wcncsvc.dll
21:03:59.0239 5504  wcncsvc - ok
21:03:59.0257 5504  [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\windows\System32\WcsPlugInService.dll
21:03:59.0272 5504  WcsPlugInService - ok
21:03:59.0306 5504  [ 72889E16FF12BA0F235467D6091B17DC ] Wd              C:\windows\system32\drivers\wd.sys
21:03:59.0317 5504  Wd - ok
21:03:59.0423 5504  [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000        C:\windows\system32\drivers\Wdf01000.sys
21:03:59.0468 5504  Wdf01000 - ok
21:03:59.0486 5504  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost  C:\windows\system32\wdi.dll
21:03:59.0513 5504  WdiServiceHost - ok
21:03:59.0517 5504  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost   C:\windows\system32\wdi.dll
21:03:59.0539 5504  WdiSystemHost - ok
21:03:59.0562 5504  [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient       C:\windows\System32\webclnt.dll
21:03:59.0588 5504  WebClient - ok
21:03:59.0617 5504  [ C749025A679C5103E575E3B48E092C43 ] Wecsvc          C:\windows\system32\wecsvc.dll
21:03:59.0666 5504  Wecsvc - ok
21:03:59.0696 5504  [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport   C:\windows\System32\wercplsupport.dll
21:03:59.0754 5504  wercplsupport - ok
21:03:59.0786 5504  [ 6D137963730144698CBD10F202E9F251 ] WerSvc          C:\windows\System32\WerSvc.dll
21:03:59.0834 5504  WerSvc - ok
21:03:59.0864 5504  [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf          C:\windows\system32\DRIVERS\wfplwf.sys
21:03:59.0912 5504  WfpLwf - ok
21:03:59.0938 5504  [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount        C:\windows\system32\drivers\wimmount.sys
21:03:59.0950 5504  WIMMount - ok
21:04:00.0033 5504  WinDefend - ok
21:04:00.0050 5504  WinHttpAutoProxySvc - ok
21:04:00.0110 5504  [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt         C:\windows\system32\wbem\WMIsvc.dll
21:04:00.0175 5504  Winmgmt - ok
21:04:00.0260 5504  [ BCB1310604AA415C4508708975B3931E ] WinRM           C:\windows\system32\WsmSvc.dll
21:04:00.0336 5504  WinRM - ok
21:04:00.0416 5504  [ FE88B288356E7B47B74B13372ADD906D ] WinUsb          C:\windows\system32\DRIVERS\WinUsb.sys
21:04:00.0441 5504  WinUsb - ok
21:04:00.0485 5504  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc         C:\windows\System32\wlansvc.dll
21:04:00.0543 5504  Wlansvc - ok
21:04:00.0609 5504  [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc        C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
21:04:00.0627 5504  wlcrasvc - ok
21:04:00.0751 5504  [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
21:04:00.0802 5504  wlidsvc - ok
21:04:00.0956 5504  [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi         C:\windows\system32\DRIVERS\wmiacpi.sys
21:04:00.0977 5504  WmiAcpi - ok
21:04:01.0184 5504  [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv        C:\windows\system32\wbem\WmiApSrv.exe
21:04:01.0232 5504  wmiApSrv - ok
21:04:01.0496 5504  WMPNetworkSvc - ok
21:04:01.0562 5504  [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc          C:\windows\System32\wpcsvc.dll
21:04:01.0592 5504  WPCSvc - ok
21:04:01.0637 5504  [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum      C:\windows\system32\wpdbusenum.dll
21:04:01.0666 5504  WPDBusEnum - ok
21:04:01.0700 5504  [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl         C:\windows\system32\drivers\ws2ifsl.sys
21:04:01.0754 5504  ws2ifsl - ok
21:04:01.0776 5504  [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc          C:\windows\System32\wscsvc.dll
21:04:01.0802 5504  wscsvc - ok
21:04:01.0806 5504  WSearch - ok
21:04:02.0208 5504  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv        C:\windows\system32\wuaueng.dll
21:04:02.0393 5504  wuauserv - ok
21:04:02.0445 5504  [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf          C:\windows\system32\drivers\WudfPf.sys
21:04:02.0538 5504  WudfPf - ok
21:04:02.0597 5504  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd          C:\windows\system32\DRIVERS\WUDFRd.sys
21:04:02.0637 5504  WUDFRd - ok
21:04:02.0676 5504  [ B20F051B03A966392364C83F009F7D17 ] wudfsvc         C:\windows\System32\WUDFSvc.dll
21:04:02.0711 5504  wudfsvc - ok
21:04:02.0833 5504  [ FE90B750AB808FB9DD8FBB428B5FF83B ] WwanSvc         C:\windows\System32\wwansvc.dll
21:04:02.0875 5504  WwanSvc - ok
21:04:03.0063 5504  [ 74713CB32792F9C7632DAA7DA22CA974 ] ZeroConfigService C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
21:04:03.0093 5504  ZeroConfigService - ok
21:04:03.0217 5504  ================ Scan global ===============================
21:04:03.0236 5504  [ BA0CD8C393E8C9F83354106093832C7B ] C:\windows\system32\basesrv.dll
21:04:03.0280 5504  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\windows\system32\winsrv.dll
21:04:03.0294 5504  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\windows\system32\winsrv.dll
21:04:03.0322 5504  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\windows\system32\sxssrv.dll
21:04:03.0396 5504  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\windows\system32\services.exe
21:04:03.0402 5504  [Global] - ok
21:04:03.0403 5504  ================ Scan MBR ==================================
21:04:03.0420 5504  [ 2E5DEBB2116B3417023E0D6562D7ED07 ] \Device\Harddisk0\DR0
21:04:03.0735 5504  \Device\Harddisk0\DR0 - ok
21:04:03.0736 5504  ================ Scan VBR ==================================
21:04:03.0739 5504  [ 19003AA414E7B47AA06AF4A5C1D6BDC8 ] \Device\Harddisk0\DR0\Partition1
21:04:03.0741 5504  \Device\Harddisk0\DR0\Partition1 - ok
21:04:03.0778 5504  [ D2F38A16034B907E4966BCCD8CF380DA ] \Device\Harddisk0\DR0\Partition2
21:04:03.0781 5504  \Device\Harddisk0\DR0\Partition2 - ok
21:04:03.0782 5504  ============================================================
21:04:03.0782 5504  Scan finished
21:04:03.0782 5504  ============================================================
21:04:03.0797 8160  Detected object count: 1
21:04:03.0797 8160  Actual detected object count: 1
21:04:29.0716 8160  RichVideo ( UnsignedFile.Multi.Generic ) - skipped by user
21:04:29.0716 8160  RichVideo ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:04:37.0439 5484  Deinitialize success
         


Alt 13.06.2013, 20:08   #6
markusg
/// Malware-holic
 
Online Smile v13.4.24 lässt sich nicht entfernen. - Standard

Online Smile v13.4.24 lässt sich nicht entfernen.



was sollen wir mit ner schätzung anfangen, prüfe es bitte :-)
__________________
--> Online Smile v13.4.24 lässt sich nicht entfernen.

Alt 13.06.2013, 21:13   #7
buddhavs
 
Online Smile v13.4.24 lässt sich nicht entfernen. - Standard

Online Smile v13.4.24 lässt sich nicht entfernen.



Zitat:
Wie kann ich den prüfen ob sie noch aktuell sind?
...

Alt 13.06.2013, 21:41   #8
markusg
/// Malware-holic
 
Online Smile v13.4.24 lässt sich nicht entfernen. - Standard

Online Smile v13.4.24 lässt sich nicht entfernen.



auf den herstellerseiten der komponennten oder, wenn es ein fertig pc ist dann auf der herstellerseite
__________________
-Verdächtige mails bitte an uns zur Analyse weiterleiten:
markusg.trojaner-board@web.de
Weiterleiten
Anleitung:
http://markusg.trojaner-board.de
Mails bitte vorerst nach obiger Anleitung an
markusg.trojaner-board@web.de
Weiterleiten
Wenn Ihr uns unterstützen möchtet

Alt 13.06.2013, 22:20   #9
buddhavs
 
Online Smile v13.4.24 lässt sich nicht entfernen. - Standard

Online Smile v13.4.24 lässt sich nicht entfernen.



Also Treiber sind nun aktuell.
Wie gehts jetzt weiter.

Alt 14.06.2013, 13:00   #10
markusg
/// Malware-holic
 
Online Smile v13.4.24 lässt sich nicht entfernen. - Standard

Online Smile v13.4.24 lässt sich nicht entfernen.



hi,
Scan mit Combofix
WARNUNG an die MITLESER:
Combofix sollte ausschließlich ausgeführt werden, wenn dies von einem Teammitglied angewiesen wurde!

Downloade dir bitte Combofix vom folgenden Downloadspiegel: Link
  • WICHTIG: Speichere Combofix auf deinem Desktop.
  • Deaktiviere bitte alle deine Antivirensoftware sowie Malware/Spyware Scanner. Diese können Combofix bei der Arbeit stören. Combofix meckert auch manchmal trotzdem noch, das kannst du dann ignorieren, mir aber bitte mitteilen.
  • Starte die Combofix.exe und folge den Anweisungen auf dem Bildschirm.
  • Während Combofix läuft bitte nicht am Computer arbeiten, die Maus bewegen oder ins Combofixfenster klicken!
  • Wenn Combofix fertig ist, wird es ein Logfile erstellen.
  • Bitte poste die C:\Combofix.txt in deiner nächsten Antwort (möglichst in CODE-Tags).
Hinweis: Solltest du nach dem Neustart folgende Fehlermeldung erhalten
Es wurde versucht, einen Registrierungsschlüssel einem ungültigen Vorgang zu unterziehen, der zum Löschen markiert wurde.
starte den Rechner einfach neu. Dies sollte das Problem beheben.

__________________
-Verdächtige mails bitte an uns zur Analyse weiterleiten:
markusg.trojaner-board@web.de
Weiterleiten
Anleitung:
http://markusg.trojaner-board.de
Mails bitte vorerst nach obiger Anleitung an
markusg.trojaner-board@web.de
Weiterleiten
Wenn Ihr uns unterstützen möchtet

Alt 14.06.2013, 21:27   #11
buddhavs
 
Online Smile v13.4.24 lässt sich nicht entfernen. - Standard

Online Smile v13.4.24 lässt sich nicht entfernen.



Combofix:

Code:
ATTFilter
ComboFix 13-06-13.01 - Eugen 14.06.2013  19:38:10.1.4 - x64
Microsoft Windows 7 Home Premium   6.1.7601.1.1252.49.1031.18.8089.6138 [GMT 2:00]
ausgeführt von:: c:\allgemein\Trojan\ComboFix.exe
AV: Kaspersky Internet Security *Enabled/Updated* {C3113FBF-4BCB-4461-D78D-6EDFEC9593E5}
AV: Lavasoft Ad-Aware *Disabled/Updated* {E0D97DD4-42BA-B3F2-A5A7-22E9ACE81FC7}
FW: Kaspersky Internet Security *Enabled* {FB2ABE9A-01A4-4539-FCD2-C7EA1246D49E}
FW: Lavasoft Ad-Aware *Disabled* {D8E2FCF1-08D5-B2AA-8EF8-8BDC523B58BC}
SP: Kaspersky Internet Security *Enabled/Updated* {7870DE5B-6DF1-4BEF-ED3D-55AD9712D958}
SP: Lavasoft Ad-Aware *Disabled/Updated* {5BB89C30-6480-BC7C-9F17-199BD76F557A}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((   Weitere Löschungen   ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\programdata\Roaming
.
.
(((((((((((((((((((((((   Dateien erstellt von 2013-05-14 bis 2013-06-14  ))))))))))))))))))))))))))))))
.
.
2013-06-14 17:47 . 2013-06-14 17:47	--------	d-----w-	c:\users\Default\AppData\Local\temp
2013-06-14 17:47 . 2013-06-14 17:47	--------	d-----w-	c:\users\Administrator\AppData\Local\temp
2013-06-14 11:08 . 2013-04-17 07:02	1230336	----a-w-	c:\windows\SysWow64\WindowsCodecs.dll
2013-06-14 11:08 . 2013-04-17 06:24	1424384	----a-w-	c:\windows\system32\WindowsCodecs.dll
2013-06-13 21:15 . 2012-08-24 18:13	154480	----a-w-	c:\windows\system32\drivers\ksecpkg.sys
2013-06-13 21:15 . 2012-08-24 18:09	458712	----a-w-	c:\windows\system32\drivers\cng.sys
2013-06-13 21:15 . 2012-08-24 18:05	340992	----a-w-	c:\windows\system32\schannel.dll
2013-06-13 21:15 . 2012-08-24 18:03	1448448	----a-w-	c:\windows\system32\lsasrv.dll
2013-06-13 21:15 . 2012-08-24 16:57	247808	----a-w-	c:\windows\SysWow64\schannel.dll
2013-06-13 21:15 . 2012-08-24 16:57	22016	----a-w-	c:\windows\SysWow64\secur32.dll
2013-06-13 21:15 . 2012-08-24 16:53	96768	----a-w-	c:\windows\SysWow64\sspicli.dll
2013-06-13 21:15 . 2012-05-04 11:00	366592	----a-w-	c:\windows\system32\qdvd.dll
2013-06-13 21:15 . 2012-05-04 09:59	514560	----a-w-	c:\windows\SysWow64\qdvd.dll
2013-06-13 21:04 . 2013-06-13 21:05	--------	d-----w-	c:\windows\SysWow64\NV
2013-06-13 21:04 . 2013-06-13 21:04	--------	d-----w-	c:\windows\system32\NV
2013-06-13 21:01 . 2000-01-01 00:00	62784	----a-w-	c:\windows\system32\drivers\HECIx64.sys
2013-06-13 20:59 . 2013-06-13 20:59	--------	d-----w-	c:\windows\system32\SRSLabs
2013-06-13 20:53 . 2013-06-13 20:53	--------	d-----w-	C:\Intel
2013-06-13 20:52 . 2000-01-01 00:00	175104	----a-w-	c:\windows\system32\gfxSrvc.dll
2013-06-13 20:49 . 2013-06-13 21:04	--------	d-----w-	c:\programdata\NVIDIA
2013-06-13 20:49 . 2013-06-13 20:49	--------	d-----w-	c:\users\UpdatusUser.Eugen-PC
2013-06-13 20:49 . 2013-06-13 20:49	--------	d-----w-	c:\program files (x86)\AGEIA Technologies
2013-06-13 20:48 . 2013-03-15 04:16	3477280	----a-w-	c:\windows\system32\nvsvc64.dll
2013-06-13 20:48 . 2013-03-15 04:16	6398240	----a-w-	c:\windows\system32\nvcpl.dll
2013-06-13 20:48 . 2013-03-15 04:16	877856	----a-w-	c:\windows\system32\nvvsvc.exe
2013-06-13 20:48 . 2013-03-15 04:16	76064	----a-w-	c:\windows\system32\nv3dappshextr.dll
2013-06-13 20:48 . 2013-03-15 04:16	63776	----a-w-	c:\windows\system32\nvshext.dll
2013-06-13 20:48 . 2013-03-15 04:16	2555680	----a-w-	c:\windows\system32\nvsvcr.dll
2013-06-13 20:48 . 2013-03-15 04:16	237856	----a-w-	c:\windows\system32\nvmctray.dll
2013-06-13 20:48 . 2013-03-15 04:16	1016096	----a-w-	c:\windows\system32\nv3dappshext.dll
2013-06-13 20:48 . 2013-03-13 16:24	3065455	----a-w-	c:\windows\system32\nvcoproc.bin
2013-06-13 20:46 . 2013-06-13 20:46	--------	d-----w-	c:\programdata\NVIDIA Corporation
2013-06-13 20:25 . 2013-06-14 15:08	16152	----a-w-	c:\windows\system32\drivers\SWDUMon.sys
2013-06-13 20:25 . 2013-06-13 20:25	--------	d-----w-	c:\users\Eugen\AppData\Local\SlimWare Utilities Inc
2013-06-13 20:25 . 2013-06-13 20:25	--------	d-----w-	c:\program files (x86)\SlimDrivers
2013-06-13 17:33 . 2013-06-13 17:33	9728	---ha-w-	c:\windows\SysWow64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-06-13 16:47 . 2013-02-12 04:12	19968	----a-w-	c:\windows\system32\drivers\usb8023.sys
2013-06-13 16:47 . 2013-04-10 03:30	3153920	----a-w-	c:\windows\system32\win32k.sys
2013-06-13 16:47 . 2013-03-19 05:53	48640	----a-w-	c:\windows\system32\wwanprotdim.dll
2013-06-13 16:47 . 2013-03-19 05:53	230400	----a-w-	c:\windows\system32\wwansvc.dll
2013-06-13 16:47 . 2013-02-27 05:52	14172672	----a-w-	c:\windows\system32\shell32.dll
2013-06-13 16:47 . 2013-02-27 05:52	197120	----a-w-	c:\windows\system32\shdocvw.dll
2013-06-13 16:47 . 2013-02-27 05:48	1930752	----a-w-	c:\windows\system32\authui.dll
2013-06-13 16:47 . 2013-02-27 06:02	111448	----a-w-	c:\windows\system32\consent.exe
2013-06-13 16:47 . 2013-02-27 05:47	70144	----a-w-	c:\windows\system32\appinfo.dll
2013-06-13 16:47 . 2013-02-27 04:49	1796096	----a-w-	c:\windows\SysWow64\authui.dll
2013-06-11 10:45 . 2013-06-11 10:45	51496	----a-w-	c:\windows\system32\drivers\stflt.sys
2013-06-11 10:45 . 2013-06-13 16:06	--------	d-----w-	c:\program files (x86)\Spyware Terminator
2013-06-06 18:15 . 2013-06-06 18:19	--------	d-----w-	c:\programdata\NFS Underground
2013-05-31 13:19 . 2013-05-31 13:19	--------	d-----w-	c:\users\Eugen\AppData\Roaming\OpenOffice.org
2013-05-31 13:16 . 2013-05-31 13:16	--------	d-----w-	c:\program files (x86)\OpenOffice.org 3
2013-05-31 08:55 . 2013-05-31 08:56	--------	d-----w-	c:\program files (x86)\Google
2013-05-29 22:38 . 2013-05-29 22:38	--------	d-----w-	c:\windows\SysWow64\SysInfo
2013-05-23 15:22 . 2013-05-23 15:22	--------	d-----w-	c:\program files (x86)\Common Files\Skype
2013-05-23 14:33 . 2013-05-23 14:33	--------	d-----w-	c:\program files (x86)\TeamViewer
2013-05-16 20:20 . 2013-05-16 20:20	--------	d-----w-	c:\users\Eugen\neu music
2013-05-16 17:52 . 2013-05-16 17:52	--------	d-----w-	C:\Programs
.
.
.
((((((((((((((((((((((((((((((((((((   Find3M Bericht   ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-06-11 19:21 . 2012-12-27 12:13	71048	----a-w-	c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-06-11 19:21 . 2012-12-27 12:13	692104	----a-w-	c:\windows\SysWow64\FlashPlayerApp.exe
2013-06-11 19:21 . 2013-05-15 17:21	8610696	----a-w-	c:\windows\SysWow64\FlashPlayerInstaller.exe
2013-06-02 15:11 . 2012-10-03 16:32	75825640	----a-w-	c:\windows\system32\MRT.exe
2013-05-14 11:26 . 2013-05-14 11:27	95648	----a-w-	c:\windows\SysWow64\WindowsAccessBridge-32.dll
2013-05-14 11:26 . 2012-10-09 16:13	866720	----a-w-	c:\windows\SysWow64\npDeployJava1.dll
2013-05-14 11:26 . 2012-10-09 16:13	788896	----a-w-	c:\windows\SysWow64\deployJava1.dll
2013-05-10 17:35 . 2011-03-28 09:36	22240	----a-w-	c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2013-04-24 11:23 . 2012-11-23 14:24	620128	----a-w-	c:\windows\system32\drivers\klif.sys
2013-04-24 11:23 . 2012-08-13 15:49	178448	----a-w-	c:\windows\system32\drivers\kneps.sys
2013-04-24 11:23 . 2012-06-08 10:38	55056	----a-w-	c:\windows\system32\drivers\kltdi.sys
2013-04-24 11:23 . 2012-11-23 14:24	90208	----a-w-	c:\windows\system32\drivers\klflt.sys
2013-04-13 05:49 . 2013-06-13 16:46	135168	----a-w-	c:\windows\apppatch\AppPatch64\AcXtrnal.dll
2013-04-13 05:49 . 2013-06-13 16:46	350208	----a-w-	c:\windows\apppatch\AppPatch64\AcLayers.dll
2013-04-13 05:49 . 2013-06-13 16:46	308736	----a-w-	c:\windows\apppatch\AppPatch64\AcGenral.dll
2013-04-13 05:49 . 2013-06-13 16:46	111104	----a-w-	c:\windows\apppatch\AppPatch64\acspecfc.dll
2013-04-13 04:45 . 2013-06-13 16:46	474624	----a-w-	c:\windows\apppatch\AcSpecfc.dll
2013-04-13 04:45 . 2013-06-13 16:46	2176512	----a-w-	c:\windows\apppatch\AcGenral.dll
2013-04-11 15:03 . 2013-04-11 14:05	963488	----a-w-	c:\windows\system32\deployJava1.dll
2013-04-11 15:03 . 2013-04-11 14:05	1085344	----a-w-	c:\windows\system32\npDeployJava1.dll
2013-04-11 09:06 . 2013-04-08 21:12	39504	----a-w-	c:\windows\system32\drivers\gfiark.sys
2013-04-08 18:54 . 2013-04-08 18:54	14456	----a-w-	c:\windows\system32\drivers\gfibto.sys
2013-04-04 12:50 . 2013-04-09 15:27	25928	----a-w-	c:\windows\system32\drivers\mbam.sys
2013-03-19 06:04 . 2013-04-11 12:02	5550424	----a-w-	c:\windows\system32\ntoskrnl.exe
2013-03-19 05:46 . 2013-04-11 12:02	43520	----a-w-	c:\windows\system32\csrsrv.dll
2013-03-19 05:04 . 2013-04-11 12:02	3968856	----a-w-	c:\windows\SysWow64\ntkrnlpa.exe
2013-03-19 05:04 . 2013-04-11 12:02	3913560	----a-w-	c:\windows\SysWow64\ntoskrnl.exe
2013-03-19 04:47 . 2013-04-11 12:02	6656	----a-w-	c:\windows\SysWow64\apisetschema.dll
2013-03-19 03:06 . 2013-04-11 12:02	112640	----a-w-	c:\windows\system32\smss.exe
.
.
((((((((((((((((((((((((((((   Autostartpunkte der Registrierung   ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt. 
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\~\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}]
2013-01-28 14:49	281760	----a-w-	c:\program files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2012-11-13 23:32	129272	----a-w-	c:\users\Eugen\AppData\Roaming\Dropbox\bin\DropboxExt.17.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2012-11-13 23:32	129272	----a-w-	c:\users\Eugen\AppData\Roaming\Dropbox\bin\DropboxExt.17.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2012-11-13 23:32	129272	----a-w-	c:\users\Eugen\AppData\Roaming\Dropbox\bin\DropboxExt.17.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"AVP"="c:\program files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe" [2012-11-23 356376]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2013-03-12 253816]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
"EnableSecureUIAPath"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
"AppInit_DLLs"=c:\windows\SysWOW64\nvinit.dll c:\windows\SysWOW64\nvinit.dll
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute	REG_MULTI_SZ   	\0
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ad-Aware Service]
@="Ad-Aware Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MSIServer]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SBAMSvc]
@="Service"
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe"
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus]
"DisableMonitoring"=dword:00000001
.
R2 BstHdAndroidSvc;BlueStacks Android Service;c:\program files (x86)\BlueStacks\HD-Service.exe BstHdAndroidSvc Android;c:\program files (x86)\BlueStacks\HD-Service.exe BstHdAndroidSvc Android [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 ZeroConfigService;Intel(R) PROSet/Wireless Zero Configuration Service;c:\program files\Intel\WiFi\bin\ZeroConfigService.exe;c:\program files\Intel\WiFi\bin\ZeroConfigService.exe [x]
R3 AMPPALP;Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed Protocol;c:\windows\system32\DRIVERS\amppal.sys;c:\windows\SYSNATIVE\DRIVERS\amppal.sys [x]
R3 androidusb;SAMSUNG Android Composite ADB Interface Driver;c:\windows\system32\Drivers\ssadadb.sys;c:\windows\SYSNATIVE\Drivers\ssadadb.sys [x]
R3 EagleX64;EagleX64;c:\windows\system32\drivers\EagleX64.sys;c:\windows\SYSNATIVE\drivers\EagleX64.sys [x]
R3 gfiark;gfiark;c:\windows\system32\drivers\gfiark.sys;c:\windows\SYSNATIVE\drivers\gfiark.sys [x]
R3 intaud_WaveExtensible;Intel WiDi Audio Device;c:\windows\system32\drivers\intelaud.sys;c:\windows\SYSNATIVE\drivers\intelaud.sys [x]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys;c:\windows\SYSNATIVE\drivers\mbam.sys [x]
R3 MyWiFiDHCPDNS;Wireless PAN DHCP Server;c:\program files\Intel\WiFi\bin\PanDhcpDns.exe;c:\program files\Intel\WiFi\bin\PanDhcpDns.exe [x]
R3 ose64;Office 64 Source Engine;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM);c:\windows\system32\DRIVERS\ssadbus.sys;c:\windows\SYSNATIVE\DRIVERS\ssadbus.sys [x]
R3 ssadmdfl;SAMSUNG Android USB Modem (Filter);c:\windows\system32\DRIVERS\ssadmdfl.sys;c:\windows\SYSNATIVE\DRIVERS\ssadmdfl.sys [x]
R3 ssadmdm;SAMSUNG Android USB Modem Drivers;c:\windows\system32\DRIVERS\ssadmdm.sys;c:\windows\SYSNATIVE\DRIVERS\ssadmdm.sys [x]
R3 ssadserd;SAMSUNG Android USB Diagnostic Serial Port (WDM);c:\windows\system32\DRIVERS\ssadserd.sys;c:\windows\SYSNATIVE\DRIVERS\ssadserd.sys [x]
R3 SWDUMon;SWDUMon;c:\windows\system32\DRIVERS\SWDUMon.sys;c:\windows\SYSNATIVE\DRIVERS\SWDUMon.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
R4 MBAMScheduler;MBAMScheduler;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [x]
R4 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [x]
R4 SBAMSvc;Ad-Aware;c:\program files (x86)\Ad-Aware Antivirus\SBAMSvc.exe;c:\program files (x86)\Ad-Aware Antivirus\SBAMSvc.exe [x]
R4 Skype C2C Service;Skype C2C Service;c:\programdata\Skype\Toolbars\Skype C2C Service\c2c_service.exe;c:\programdata\Skype\Toolbars\Skype C2C Service\c2c_service.exe [x]
R4 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R4 TeamViewer8;TeamViewer 8;c:\program files (x86)\TeamViewer\Version8\TeamViewer_Service.exe;c:\program files (x86)\TeamViewer\Version8\TeamViewer_Service.exe [x]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe;c:\program files\Windows Live\Mesh\wlcrasvc.exe [x]
S0 gfibto;gfibto;c:\windows\system32\drivers\gfibto.sys;c:\windows\SYSNATIVE\drivers\gfibto.sys [x]
S0 iusb3hcs;Intel(R) USB 3.0 Host Controller Switch Driver;c:\windows\system32\DRIVERS\iusb3hcs.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3hcs.sys [x]
S0 nvpciflt;nvpciflt;c:\windows\system32\DRIVERS\nvpciflt.sys;c:\windows\SYSNATIVE\DRIVERS\nvpciflt.sys [x]
S1 KLIM6;Kaspersky Anti-Virus NDIS 6 Filter;c:\windows\system32\DRIVERS\klim6.sys;c:\windows\SYSNATIVE\DRIVERS\klim6.sys [x]
S1 kltdi;kltdi;c:\windows\system32\DRIVERS\kltdi.sys;c:\windows\SYSNATIVE\DRIVERS\kltdi.sys [x]
S1 kneps;kneps;c:\windows\system32\DRIVERS\kneps.sys;c:\windows\SYSNATIVE\DRIVERS\kneps.sys [x]
S1 SABI;SAMSUNG Kernel Driver For Windows 7;c:\windows\system32\Drivers\SABI.sys;c:\windows\SYSNATIVE\Drivers\SABI.sys [x]
S2 Ad-Aware Service;Ad-Aware Service;c:\program files (x86)\Ad-Aware Antivirus\AdAwareService.exe;c:\program files (x86)\Ad-Aware Antivirus\AdAwareService.exe [x]
S2 AMPPALR3;Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed Service;c:\program files\Intel\BluetoothHS\BTHSAmpPalService.exe;c:\program files\Intel\BluetoothHS\BTHSAmpPalService.exe [x]
S2 Bluetooth Device Monitor;Bluetooth Device Monitor;c:\program files (x86)\Intel\Bluetooth\devmonsrv.exe;c:\program files (x86)\Intel\Bluetooth\devmonsrv.exe [x]
S2 Bluetooth OBEX Service;Bluetooth OBEX Service;c:\program files (x86)\Intel\Bluetooth\obexsrv.exe;c:\program files (x86)\Intel\Bluetooth\obexsrv.exe [x]
S2 BstHdDrv;BlueStacks Hypervisor;c:\program files (x86)\BlueStacks\HD-Hypervisor-amd64.sys;c:\program files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [x]
S2 BstHdLogRotatorSvc;BlueStacks Log Rotator Service;c:\program files (x86)\BlueStacks\HD-LogRotatorService.exe;c:\program files (x86)\BlueStacks\HD-LogRotatorService.exe [x]
S2 BTHSSecurityMgr;Intel(R) Centrino(R) Wireless Bluetooth(R) 3.0 + High Speed Security Service;c:\program files\Intel\BluetoothHS\BTHSSecurityMgr.exe;c:\program files\Intel\BluetoothHS\BTHSSecurityMgr.exe [x]
S2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;c:\program files\Intel\iCLS Client\HeciServer.exe;c:\program files\Intel\iCLS Client\HeciServer.exe [x]
S2 Intel(R) ME Service;Intel(R) ME Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [x]
S2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [x]
S2 SamsungDeviceConfigurationWinService;SamsungDeviceConfiguration;c:\program files (x86)\Samsung\Easy Settings\SamsungDeviceConfiguration.exe;c:\program files (x86)\Samsung\Easy Settings\SamsungDeviceConfiguration.exe [x]
S2 sbapifs;sbapifs;c:\windows\system32\DRIVERS\sbapifs.sys;c:\windows\SYSNATIVE\DRIVERS\sbapifs.sys [x]
S2 SGDrv;SGDrv;c:\windows\system32\DRIVERS\SGdrv64.sys;c:\windows\SYSNATIVE\DRIVERS\SGdrv64.sys [x]
S2 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [x]
S3 AMPPAL;Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed Virtual Adapter;c:\windows\system32\DRIVERS\AMPPAL.sys;c:\windows\SYSNATIVE\DRIVERS\AMPPAL.sys [x]
S3 Apowersoft_AudioDevice;Apowersoft_AudioDevice;c:\windows\system32\drivers\Apowersoft_AudioDevice.sys;c:\windows\SYSNATIVE\drivers\Apowersoft_AudioDevice.sys [x]
S3 Bluetooth Media Service;Bluetooth Media Service;c:\program files (x86)\Intel\Bluetooth\mediasrv.exe;c:\program files (x86)\Intel\Bluetooth\mediasrv.exe [x]
S3 btmaux;Intel Bluetooth Auxiliary Service;c:\windows\system32\DRIVERS\btmaux.sys;c:\windows\SYSNATIVE\DRIVERS\btmaux.sys [x]
S3 btmhsf;btmhsf;c:\windows\system32\DRIVERS\btmhsf.sys;c:\windows\SYSNATIVE\DRIVERS\btmhsf.sys [x]
S3 clwvd;CyberLink WebCam Virtual Driver;c:\windows\system32\DRIVERS\clwvd.sys;c:\windows\SYSNATIVE\DRIVERS\clwvd.sys [x]
S3 ibtfltcoex;ibtfltcoex;c:\windows\system32\DRIVERS\iBtFltCoex.sys;c:\windows\SYSNATIVE\DRIVERS\iBtFltCoex.sys [x]
S3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS;c:\program files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe;c:\program files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [x]
S3 IntcDAud;Intel(R) Display-Audio;c:\windows\system32\DRIVERS\IntcDAud.sys;c:\windows\SYSNATIVE\DRIVERS\IntcDAud.sys [x]
S3 iusb3hub;Intel(R) USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\iusb3hub.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3hub.sys [x]
S3 iusb3xhc;Intel(R) USB 3.0 eXtensible Host Controller Driver;c:\windows\system32\DRIVERS\iusb3xhc.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3xhc.sys [x]
S3 iwdbus;IWD Bus Enumerator;c:\windows\system32\DRIVERS\iwdbus.sys;c:\windows\SYSNATIVE\DRIVERS\iwdbus.sys [x]
S3 klkbdflt;Kaspersky Lab KLKBDFLT;c:\windows\system32\DRIVERS\klkbdflt.sys;c:\windows\SYSNATIVE\DRIVERS\klkbdflt.sys [x]
S3 klmouflt;Kaspersky Lab KLMOUFLT;c:\windows\system32\DRIVERS\klmouflt.sys;c:\windows\SYSNATIVE\DRIVERS\klmouflt.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
.
.
Inhalt des "geplante Tasks" Ordners
.
2013-06-14 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-12-27 19:21]
.
2013-06-13 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1236569144-611998795-838250545-1001Core.job
- c:\users\Eugen\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-10-12 20:05]
.
2013-06-14 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1236569144-611998795-838250545-1001UA.job
- c:\users\Eugen\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-10-12 20:05]
.
2013-06-14 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-05-31 08:55]
.
2013-06-14 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-05-31 08:55]
.
2013-06-14 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1236569144-611998795-838250545-1001Core.job
- c:\users\Eugen\AppData\Local\Google\Update\GoogleUpdate.exe [2013-04-09 14:40]
.
2013-06-14 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1236569144-611998795-838250545-1001UA.job
- c:\users\Eugen\AppData\Local\Google\Update\GoogleUpdate.exe [2013-04-09 14:40]
.
2012-09-30 c:\windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job
- c:\program files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [2011-11-25 04:41]
.
2013-06-14 c:\windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job
- c:\program files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [2011-11-25 04:41]
.
2013-06-14 c:\windows\Tasks\SlimDrivers Startup.job
- c:\program files (x86)\SlimDrivers\SlimDrivers.exe [2013-06-07 07:01]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}]
2013-01-28 14:49	342176	----a-w-	c:\program files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2012-11-13 23:32	162552	----a-w-	c:\users\Eugen\AppData\Roaming\Dropbox\bin\DropboxExt64.17.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2012-11-13 23:32	162552	----a-w-	c:\users\Eugen\AppData\Roaming\Dropbox\bin\DropboxExt64.17.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2012-11-13 23:32	162552	----a-w-	c:\users\Eugen\AppData\Roaming\Dropbox\bin\DropboxExt64.17.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4]
@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
2012-11-13 23:32	162552	----a-w-	c:\users\Eugen\AppData\Roaming\Dropbox\bin\DropboxExt64.17.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2000-01-01 13260944]
"BTMTrayAgent"="c:\program files (x86)\Intel\Bluetooth\btmshell.dll" [2012-02-21 11406608]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2000-01-01 172016]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2000-01-01 399856]
"Persistence"="c:\windows\system32\igfxpers.exe" [2000-01-01 441840]
"RtHDVBg"="c:\program files\Realtek\Audio\HDA\RAVBg64.exe" [2000-01-01 1253520]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=c:\windows\System32\nvinitx.dll
.
------- Zusätzlicher Suchlauf -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = about:blank
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride = <local>
IE: An OneNote s&enden - c:\progra~1\MICROS~2\Office14\ONBttnIE.dll/105
IE: Free YouTube Download - c:\program files (x86)\Common Files\DVDVideoSoft\plugins\freeytvdownloader.htm
IE: Free YouTube to MP3 Converter - c:\program files (x86)\Common Files\DVDVideoSoft\plugins\freeytmp3downloader.htm
IE: Nach Microsoft E&xcel exportieren - c:\progra~1\MICROS~2\Office14\EXCEL.EXE/3000
IE: {{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - c:\program files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll
TCP: DhcpNameServer = 129.143.2.1 129.143.2.4
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
URLSearchHooks-{0027da2d-c9f2-4b0b-ae05-e2cd1bdb6cff} - (no file)
Toolbar-Locked - (no file)
HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start
Toolbar-Locked - (no file)
HKLM-Run-SynTPEnh - c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe
AddRemove-adawaretb - c:\program files (x86)\adawaretb\uninstall.exe
AddRemove-bwincomPoker - c:\programs\bwincom\bwincomPoker\Uninstall\Setup.exe
AddRemove-TDM-GCC - c:\mingw32\__installer\tdm-gcc-4.7.1-2
.
.
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\BlueStacks]
"SymbolicLinkValue"=hex(6):5c,00,52,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
   00,5c,00,4d,00,61,00,63,00,68,00,69,00,6e,00,65,00,5c,00,53,00,6f,00,66,00,\
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_224_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_224_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_224_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_224_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Nico Mak Computing\WinZip]
"SymbolicLinkValue"=hex(6):5c,00,52,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
   00,5c,00,4d,00,41,00,43,00,48,00,49,00,4e,00,45,00,5c,00,53,00,6f,00,66,00,\
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Zeit der Fertigstellung: 2013-06-14  19:58:10
ComboFix-quarantined-files.txt  2013-06-14 17:58
.
Vor Suchlauf: 16 Verzeichnis(se), 851.057.655.808 Bytes frei
Nach Suchlauf: 21 Verzeichnis(se), 852.302.241.792 Bytes frei
.
- - End Of File - - 513BAD1BD4C276F2A6D0BBD6C7C729C2
D41D8CD98F00B204E9800998ECF8427E
         
P.S.
Das mit den Treibern hat geholfen.
Nun keine Internetprobleme.
Klasse Danke ;-)

Alt 15.06.2013, 13:31   #12
markusg
/// Malware-holic
 
Online Smile v13.4.24 lässt sich nicht entfernen. - Standard

Online Smile v13.4.24 lässt sich nicht entfernen.



hi, poste mal alle Malwarebytes logs mit funden, danach Programm updaten, vollständiger Scan und Log posten.
http://www.trojaner-board.de/125889-...en-posten.html
__________________
-Verdächtige mails bitte an uns zur Analyse weiterleiten:
markusg.trojaner-board@web.de
Weiterleiten
Anleitung:
http://markusg.trojaner-board.de
Mails bitte vorerst nach obiger Anleitung an
markusg.trojaner-board@web.de
Weiterleiten
Wenn Ihr uns unterstützen möchtet

Alt 15.06.2013, 15:31   #13
buddhavs
 
Online Smile v13.4.24 lässt sich nicht entfernen. - Standard

Online Smile v13.4.24 lässt sich nicht entfernen.



Es sind 19 logs....
Soll ich sie als Anhang oder jeden einzelnen log als code posten?

Alt 15.06.2013, 15:32   #14
markusg
/// Malware-holic
 
Online Smile v13.4.24 lässt sich nicht entfernen. - Standard

Online Smile v13.4.24 lässt sich nicht entfernen.



die mit funden posten, also reinkopieren
__________________
-Verdächtige mails bitte an uns zur Analyse weiterleiten:
markusg.trojaner-board@web.de
Weiterleiten
Anleitung:
http://markusg.trojaner-board.de
Mails bitte vorerst nach obiger Anleitung an
markusg.trojaner-board@web.de
Weiterleiten
Wenn Ihr uns unterstützen möchtet

Alt 15.06.2013, 16:51   #15
buddhavs
 
Online Smile v13.4.24 lässt sich nicht entfernen. - Standard

Online Smile v13.4.24 lässt sich nicht entfernen.



Code:
ATTFilter
Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Datenbank Version: v2013.04.23.02

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Eugen :: EUGEN-PC [Administrator]

24.04.2013 12:44:16
mbam-log-2013-04-24 (12-44-16).txt

Art des Suchlaufs: Quick-Scan
Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM
Deaktivierte Suchlaufeinstellungen: P2P
Durchsuchte Objekte: 260761
Laufzeit: 9 Minute(n), 33 Sekunde(n)

Infizierte Speicherprozesse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungswerte: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateiobjekte der Registrierung: 0
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateien: 1
C:\Users\Eugen\Downloads\ConnectifyHotspotInstaller.exe (Trojan.Agent.ED) -> Erfolgreich gelöscht und in Quarantäne gestellt.

(Ende)
         
Code:
ATTFilter
2013/04/09 17:28:17 +0200	EUGEN-PC	Eugen	MESSAGE	Executing scheduled update:  Daily
2013/04/09 17:28:22 +0200	EUGEN-PC	Eugen	MESSAGE	Starting protection
2013/04/09 17:28:22 +0200	EUGEN-PC	Eugen	MESSAGE	Protection started successfully
2013/04/09 17:28:22 +0200	EUGEN-PC	Eugen	MESSAGE	Starting IP protection
2013/04/09 17:28:24 +0200	EUGEN-PC	Eugen	MESSAGE	IP Protection started successfully
2013/04/09 17:28:28 +0200	EUGEN-PC	Eugen	MESSAGE	Starting database refresh
2013/04/09 17:28:28 +0200	EUGEN-PC	Eugen	MESSAGE	Scheduled update executed successfully:  database updated from version v2012.12.14.11 to version v2013.04.09.06
2013/04/09 17:28:28 +0200	EUGEN-PC	Eugen	MESSAGE	Stopping IP protection
2013/04/09 17:28:29 +0200	EUGEN-PC	Eugen	MESSAGE	IP Protection stopped successfully
2013/04/09 17:28:32 +0200	EUGEN-PC	Eugen	MESSAGE	Database refreshed successfully
2013/04/09 17:28:32 +0200	EUGEN-PC	Eugen	MESSAGE	Starting IP protection
2013/04/09 17:28:43 +0200	EUGEN-PC	Eugen	MESSAGE	IP Protection started successfully
2013/04/09 17:51:56 +0200	EUGEN-PC	Eugen	MESSAGE	Stopping protection
2013/04/09 17:51:56 +0200	EUGEN-PC	Eugen	MESSAGE	Protection stopped successfully
2013/04/09 17:51:56 +0200	EUGEN-PC	Eugen	MESSAGE	Stopping IP protection
2013/04/09 17:51:59 +0200	EUGEN-PC	Eugen	MESSAGE	IP Protection stopped successfully
2013/04/09 17:51:59 +0200	EUGEN-PC	Eugen	MESSAGE	Protection stopped
2013/04/09 22:21:22 +0200	EUGEN-PC	Eugen	MESSAGE	Starting protection
2013/04/09 22:21:22 +0200	EUGEN-PC	Eugen	MESSAGE	Protection started successfully
2013/04/09 22:21:22 +0200	EUGEN-PC	Eugen	MESSAGE	Starting IP protection
2013/04/09 22:22:01 +0200	EUGEN-PC	Eugen	MESSAGE	IP Protection started successfully
2013/04/09 22:30:07 +0200	EUGEN-PC	Eugen	IP-BLOCK	109.163.227.110 (Type: outgoing, Port: 50781, Process: avp.exe)
2013/04/09 23:00:27 +0200	EUGEN-PC	Eugen	IP-BLOCK	109.163.229.158 (Type: outgoing, Port: 54962, Process: avp.exe)
2013/04/09 23:00:43 +0200	EUGEN-PC	Eugen	IP-BLOCK	199.80.55.135 (Type: outgoing, Port: 55024, Process: avp.exe)
2013/04/09 23:00:43 +0200	EUGEN-PC	Eugen	IP-BLOCK	199.80.55.134 (Type: outgoing, Port: 55026, Process: avp.exe)
2013/04/09 23:00:43 +0200	EUGEN-PC	Eugen	IP-BLOCK	199.80.55.138 (Type: outgoing, Port: 55028, Process: avp.exe)
2013/04/09 23:04:45 +0200	EUGEN-PC	Eugen	MESSAGE	Starting protection
2013/04/09 23:04:45 +0200	EUGEN-PC	Eugen	MESSAGE	Protection started successfully
2013/04/09 23:04:45 +0200	EUGEN-PC	Eugen	MESSAGE	Starting IP protection
2013/04/09 23:05:21 +0200	EUGEN-PC	Eugen	MESSAGE	IP Protection started successfully
2013/04/09 23:12:27 +0200	EUGEN-PC	Eugen	IP-BLOCK	37.221.167.111 (Type: outgoing, Port: 50151, Process: avp.exe)
2013/04/09 23:12:27 +0200	EUGEN-PC	Eugen	IP-BLOCK	37.221.167.111 (Type: outgoing, Port: 50153, Process: avp.exe)
2013/04/09 23:12:27 +0200	EUGEN-PC	Eugen	IP-BLOCK	37.221.161.135 (Type: outgoing, Port: 50158, Process: avp.exe)
2013/04/09 23:12:27 +0200	EUGEN-PC	Eugen	IP-BLOCK	37.221.161.135 (Type: outgoing, Port: 50161, Process: avp.exe)
2013/04/09 23:13:08 +0200	EUGEN-PC	Eugen	IP-BLOCK	109.163.229.158 (Type: outgoing, Port: 50238, Process: avp.exe)
2013/04/09 23:13:16 +0200	EUGEN-PC	Eugen	IP-BLOCK	109.163.226.248 (Type: outgoing, Port: 50253, Process: avp.exe)
2013/04/09 23:13:16 +0200	EUGEN-PC	Eugen	IP-BLOCK	109.163.226.248 (Type: outgoing, Port: 50254, Process: avp.exe)
2013/04/09 23:13:16 +0200	EUGEN-PC	Eugen	IP-BLOCK	109.163.226.240 (Type: outgoing, Port: 50261, Process: avp.exe)
2013/04/09 23:13:16 +0200	EUGEN-PC	Eugen	IP-BLOCK	109.163.226.240 (Type: outgoing, Port: 50263, Process: avp.exe)
2013/04/09 23:13:16 +0200	EUGEN-PC	Eugen	IP-BLOCK	93.114.44.134 (Type: outgoing, Port: 50273, Process: avp.exe)
2013/04/09 23:13:16 +0200	EUGEN-PC	Eugen	IP-BLOCK	93.114.44.210 (Type: outgoing, Port: 50275, Process: avp.exe)
2013/04/09 23:13:16 +0200	EUGEN-PC	Eugen	IP-BLOCK	93.114.44.251 (Type: outgoing, Port: 50282, Process: avp.exe)
2013/04/09 23:13:16 +0200	EUGEN-PC	Eugen	IP-BLOCK	93.114.44.134 (Type: outgoing, Port: 50286, Process: avp.exe)
2013/04/09 23:13:16 +0200	EUGEN-PC	Eugen	IP-BLOCK	93.114.44.134 (Type: outgoing, Port: 50288, Process: avp.exe)
2013/04/09 23:13:16 +0200	EUGEN-PC	Eugen	IP-BLOCK	93.114.44.210 (Type: outgoing, Port: 50291, Process: avp.exe)
2013/04/09 23:13:16 +0200	EUGEN-PC	Eugen	IP-BLOCK	93.114.44.134 (Type: outgoing, Port: 50295, Process: avp.exe)
2013/04/09 23:13:16 +0200	EUGEN-PC	Eugen	IP-BLOCK	93.114.44.134 (Type: outgoing, Port: 50297, Process: avp.exe)
2013/04/09 23:13:16 +0200	EUGEN-PC	Eugen	IP-BLOCK	93.114.44.210 (Type: outgoing, Port: 50299, Process: avp.exe)
2013/04/09 23:13:16 +0200	EUGEN-PC	Eugen	IP-BLOCK	93.114.44.134 (Type: outgoing, Port: 50300, Process: avp.exe)
2013/04/09 23:13:16 +0200	EUGEN-PC	Eugen	IP-BLOCK	93.114.44.210 (Type: outgoing, Port: 50302, Process: avp.exe)
2013/04/09 23:13:16 +0200	EUGEN-PC	Eugen	IP-BLOCK	93.114.44.210 (Type: outgoing, Port: 50307, Process: avp.exe)
2013/04/09 23:13:16 +0200	EUGEN-PC	Eugen	IP-BLOCK	93.114.44.210 (Type: outgoing, Port: 50310, Process: avp.exe)
2013/04/09 23:13:24 +0200	EUGEN-PC	Eugen	IP-BLOCK	109.163.226.240 (Type: outgoing, Port: 50383, Process: avp.exe)
2013/04/09 23:13:32 +0200	EUGEN-PC	Eugen	IP-BLOCK	109.163.226.240 (Type: outgoing, Port: 50403, Process: avp.exe)
2013/04/09 23:13:32 +0200	EUGEN-PC	Eugen	IP-BLOCK	109.163.226.240 (Type: outgoing, Port: 50407, Process: avp.exe)
2013/04/09 23:13:32 +0200	EUGEN-PC	Eugen	IP-BLOCK	109.163.226.240 (Type: outgoing, Port: 50412, Process: avp.exe)
2013/04/09 23:13:33 +0200	EUGEN-PC	Eugen	IP-BLOCK	109.163.226.240 (Type: outgoing, Port: 50417, Process: avp.exe)
2013/04/09 23:13:33 +0200	EUGEN-PC	Eugen	IP-BLOCK	93.114.44.134 (Type: outgoing, Port: 50428, Process: avp.exe)
2013/04/09 23:13:33 +0200	EUGEN-PC	Eugen	IP-BLOCK	93.114.44.134 (Type: outgoing, Port: 50433, Process: avp.exe)
2013/04/09 23:13:33 +0200	EUGEN-PC	Eugen	IP-BLOCK	93.114.44.134 (Type: outgoing, Port: 50435, Process: avp.exe)
2013/04/09 23:13:33 +0200	EUGEN-PC	Eugen	IP-BLOCK	93.114.44.134 (Type: outgoing, Port: 50436, Process: avp.exe)
2013/04/09 23:13:33 +0200	EUGEN-PC	Eugen	IP-BLOCK	93.114.44.251 (Type: outgoing, Port: 50437, Process: avp.exe)
2013/04/09 23:13:33 +0200	EUGEN-PC	Eugen	IP-BLOCK	93.114.44.210 (Type: outgoing, Port: 50438, Process: avp.exe)
2013/04/09 23:13:33 +0200	EUGEN-PC	Eugen	IP-BLOCK	93.114.44.210 (Type: outgoing, Port: 50444, Process: avp.exe)
2013/04/09 23:13:33 +0200	EUGEN-PC	Eugen	IP-BLOCK	93.114.44.210 (Type: outgoing, Port: 50445, Process: avp.exe)
2013/04/09 23:13:33 +0200	EUGEN-PC	Eugen	IP-BLOCK	93.114.44.210 (Type: outgoing, Port: 50446, Process: avp.exe)
2013/04/09 23:13:41 +0200	EUGEN-PC	Eugen	IP-BLOCK	109.163.226.240 (Type: outgoing, Port: 50460, Process: avp.exe)
2013/04/09 23:13:41 +0200	EUGEN-PC	Eugen	IP-BLOCK	109.163.226.240 (Type: outgoing, Port: 50467, Process: avp.exe)
2013/04/09 23:13:41 +0200	EUGEN-PC	Eugen	IP-BLOCK	93.114.44.134 (Type: outgoing, Port: 50478, Process: avp.exe)
2013/04/09 23:13:41 +0200	EUGEN-PC	Eugen	IP-BLOCK	93.114.44.134 (Type: outgoing, Port: 50480, Process: avp.exe)
2013/04/09 23:13:41 +0200	EUGEN-PC	Eugen	IP-BLOCK	93.114.44.251 (Type: outgoing, Port: 50484, Process: avp.exe)
2013/04/09 23:13:41 +0200	EUGEN-PC	Eugen	IP-BLOCK	93.114.44.210 (Type: outgoing, Port: 50487, Process: avp.exe)
2013/04/09 23:13:41 +0200	EUGEN-PC	Eugen	IP-BLOCK	93.114.44.210 (Type: outgoing, Port: 50488, Process: avp.exe)
2013/04/09 23:13:41 +0200	EUGEN-PC	Eugen	IP-BLOCK	109.163.226.240 (Type: outgoing, Port: 50501, Process: avp.exe)
2013/04/09 23:13:41 +0200	EUGEN-PC	Eugen	IP-BLOCK	109.163.226.240 (Type: outgoing, Port: 50505, Process: avp.exe)
2013/04/09 23:13:41 +0200	EUGEN-PC	Eugen	IP-BLOCK	93.114.44.251 (Type: outgoing, Port: 50513, Process: avp.exe)
2013/04/09 23:13:49 +0200	EUGEN-PC	Eugen	IP-BLOCK	109.163.226.240 (Type: outgoing, Port: 50518, Process: avp.exe)
2013/04/09 23:14:05 +0200	EUGEN-PC	Eugen	IP-BLOCK	109.163.226.240 (Type: outgoing, Port: 50601, Process: avp.exe)
2013/04/09 23:14:13 +0200	EUGEN-PC	Eugen	IP-BLOCK	93.114.44.251 (Type: outgoing, Port: 50607, Process: avp.exe)
2013/04/09 23:14:14 +0200	EUGEN-PC	Eugen	IP-BLOCK	109.163.226.240 (Type: outgoing, Port: 50609, Process: avp.exe)
2013/04/09 23:14:14 +0200	EUGEN-PC	Eugen	IP-BLOCK	109.163.226.240 (Type: outgoing, Port: 50614, Process: avp.exe)
2013/04/09 23:14:14 +0200	EUGEN-PC	Eugen	IP-BLOCK	93.114.44.251 (Type: outgoing, Port: 50620, Process: avp.exe)
2013/04/09 23:14:14 +0200	EUGEN-PC	Eugen	IP-BLOCK	109.163.226.240 (Type: outgoing, Port: 50623, Process: avp.exe)
2013/04/09 23:14:14 +0200	EUGEN-PC	Eugen	IP-BLOCK	109.163.226.240 (Type: outgoing, Port: 50628, Process: avp.exe)
2013/04/09 23:14:14 +0200	EUGEN-PC	Eugen	IP-BLOCK	93.114.44.134 (Type: outgoing, Port: 50636, Process: avp.exe)
2013/04/09 23:14:14 +0200	EUGEN-PC	Eugen	IP-BLOCK	93.114.44.251 (Type: outgoing, Port: 50637, Process: avp.exe)
2013/04/09 23:14:14 +0200	EUGEN-PC	Eugen	IP-BLOCK	93.114.44.210 (Type: outgoing, Port: 50639, Process: avp.exe)
2013/04/09 23:14:15 +0200	EUGEN-PC	Eugen	IP-BLOCK	109.163.226.240 (Type: outgoing, Port: 50645, Process: avp.exe)
2013/04/09 23:14:23 +0200	EUGEN-PC	Eugen	IP-BLOCK	109.163.226.240 (Type: outgoing, Port: 50657, Process: avp.exe)
2013/04/09 23:14:23 +0200	EUGEN-PC	Eugen	IP-BLOCK	93.114.44.251 (Type: outgoing, Port: 50663, Process: avp.exe)
2013/04/09 23:14:31 +0200	EUGEN-PC	Eugen	IP-BLOCK	109.163.226.240 (Type: outgoing, Port: 50665, Process: avp.exe)
2013/04/09 23:14:39 +0200	EUGEN-PC	Eugen	IP-BLOCK	109.163.226.240 (Type: outgoing, Port: 50733, Process: avp.exe)
2013/04/09 23:14:47 +0200	EUGEN-PC	Eugen	IP-BLOCK	93.114.44.251 (Type: outgoing, Port: 50738, Process: avp.exe)
2013/04/09 23:14:47 +0200	EUGEN-PC	Eugen	IP-BLOCK	109.163.226.240 (Type: outgoing, Port: 50741, Process: avp.exe)
2013/04/09 23:14:47 +0200	EUGEN-PC	Eugen	IP-BLOCK	109.163.226.240 (Type: outgoing, Port: 50747, Process: avp.exe)
2013/04/09 23:14:47 +0200	EUGEN-PC	Eugen	IP-BLOCK	93.114.44.251 (Type: outgoing, Port: 50758, Process: avp.exe)
2013/04/09 23:14:47 +0200	EUGEN-PC	Eugen	IP-BLOCK	109.163.226.240 (Type: outgoing, Port: 50765, Process: avp.exe)
2013/04/09 23:15:12 +0200	EUGEN-PC	Eugen	IP-BLOCK	109.163.226.240 (Type: outgoing, Port: 50803, Process: avp.exe)
2013/04/09 23:15:12 +0200	EUGEN-PC	Eugen	IP-BLOCK	93.114.44.251 (Type: outgoing, Port: 50809, Process: avp.exe)
2013/04/09 23:15:12 +0200	EUGEN-PC	Eugen	IP-BLOCK	109.163.226.240 (Type: outgoing, Port: 50814, Process: avp.exe)
2013/04/09 23:15:28 +0200	EUGEN-PC	Eugen	IP-BLOCK	37.221.167.115 (Type: outgoing, Port: 50839, Process: avp.exe)
2013/04/09 23:15:28 +0200	EUGEN-PC	Eugen	IP-BLOCK	37.221.167.115 (Type: outgoing, Port: 50841, Process: avp.exe)
2013/04/09 23:15:28 +0200	EUGEN-PC	Eugen	IP-BLOCK	37.221.161.156 (Type: outgoing, Port: 50844, Process: avp.exe)
2013/04/09 23:15:28 +0200	EUGEN-PC	Eugen	IP-BLOCK	37.221.161.156 (Type: outgoing, Port: 50846, Process: avp.exe)
2013/04/09 23:15:36 +0200	EUGEN-PC	Eugen	IP-BLOCK	109.163.226.240 (Type: outgoing, Port: 50857, Process: avp.exe)
2013/04/09 23:15:36 +0200	EUGEN-PC	Eugen	IP-BLOCK	93.114.44.251 (Type: outgoing, Port: 50910, Process: avp.exe)
2013/04/09 23:15:36 +0200	EUGEN-PC	Eugen	IP-BLOCK	109.163.226.240 (Type: outgoing, Port: 50913, Process: avp.exe)
2013/04/09 23:15:44 +0200	EUGEN-PC	Eugen	IP-BLOCK	109.163.226.240 (Type: outgoing, Port: 50928, Process: avp.exe)
2013/04/09 23:15:52 +0200	EUGEN-PC	Eugen	IP-BLOCK	93.114.44.251 (Type: outgoing, Port: 50935, Process: avp.exe)
2013/04/09 23:15:52 +0200	EUGEN-PC	Eugen	IP-BLOCK	109.163.226.240 (Type: outgoing, Port: 50937, Process: avp.exe)
2013/04/09 23:15:52 +0200	EUGEN-PC	Eugen	IP-BLOCK	109.163.229.158 (Type: outgoing, Port: 50941, Process: avp.exe)
2013/04/09 23:15:52 +0200	EUGEN-PC	Eugen	IP-BLOCK	109.163.226.240 (Type: outgoing, Port: 50948, Process: avp.exe)
2013/04/09 23:15:53 +0200	EUGEN-PC	Eugen	IP-BLOCK	93.114.44.134 (Type: outgoing, Port: 50954, Process: avp.exe)
2013/04/09 23:15:53 +0200	EUGEN-PC	Eugen	IP-BLOCK	93.114.44.210 (Type: outgoing, Port: 50956, Process: avp.exe)
2013/04/09 23:15:53 +0200	EUGEN-PC	Eugen	IP-BLOCK	93.114.44.251 (Type: outgoing, Port: 50960, Process: avp.exe)
2013/04/09 23:16:09 +0200	EUGEN-PC	Eugen	IP-BLOCK	109.163.226.240 (Type: outgoing, Port: 51032, Process: avp.exe)
2013/04/09 23:16:09 +0200	EUGEN-PC	Eugen	IP-BLOCK	93.114.44.251 (Type: outgoing, Port: 51038, Process: avp.exe)
2013/04/09 23:16:09 +0200	EUGEN-PC	Eugen	IP-BLOCK	109.163.226.240 (Type: outgoing, Port: 51044, Process: avp.exe)
2013/04/09 23:16:25 +0200	EUGEN-PC	Eugen	IP-BLOCK	109.163.226.240 (Type: outgoing, Port: 51080, Process: avp.exe)
2013/04/09 23:16:25 +0200	EUGEN-PC	Eugen	IP-BLOCK	93.114.44.251 (Type: outgoing, Port: 51086, Process: avp.exe)
2013/04/09 23:16:25 +0200	EUGEN-PC	Eugen	IP-BLOCK	109.163.226.240 (Type: outgoing, Port: 51088, Process: avp.exe)
2013/04/09 23:18:19 +0200	EUGEN-PC	Eugen	IP-BLOCK	109.163.226.240 (Type: outgoing, Port: 51271, Process: avp.exe)
2013/04/09 23:18:19 +0200	EUGEN-PC	Eugen	IP-BLOCK	109.163.226.18 (Type: outgoing, Port: 51273, Process: avp.exe)
2013/04/09 23:18:19 +0200	EUGEN-PC	Eugen	IP-BLOCK	109.163.226.248 (Type: outgoing, Port: 51275, Process: avp.exe)
2013/04/09 23:38:03 +0200	EUGEN-PC	Eugen	IP-BLOCK	93.114.44.251 (Type: outgoing, Port: 52673, Process: avp.exe)
2013/04/09 23:38:11 +0200	EUGEN-PC	Eugen	IP-BLOCK	93.114.44.251 (Type: outgoing, Port: 52690, Process: avp.exe)
2013/04/09 23:38:19 +0200	EUGEN-PC	Eugen	IP-BLOCK	93.114.44.251 (Type: outgoing, Port: 52717, Process: avp.exe)
2013/04/09 23:38:35 +0200	EUGEN-PC	Eugen	IP-BLOCK	93.114.44.251 (Type: outgoing, Port: 52788, Process: avp.exe)
2013/04/09 23:38:35 +0200	EUGEN-PC	Eugen	IP-BLOCK	109.163.229.158 (Type: outgoing, Port: 52790, Process: avp.exe)
2013/04/09 23:38:43 +0200	EUGEN-PC	Eugen	IP-BLOCK	93.114.44.251 (Type: outgoing, Port: 52806, Process: avp.exe)
2013/04/09 23:38:43 +0200	EUGEN-PC	Eugen	IP-BLOCK	93.114.44.251 (Type: outgoing, Port: 52827, Process: avp.exe)
2013/04/09 23:40:45 +0200	EUGEN-PC	Eugen	IP-BLOCK	109.163.226.248 (Type: outgoing, Port: 52989, Process: avp.exe)
2013/04/09 23:40:45 +0200	EUGEN-PC	Eugen	IP-BLOCK	109.163.226.18 (Type: outgoing, Port: 52991, Process: avp.exe)
2013/04/09 23:40:45 +0200	EUGEN-PC	Eugen	IP-BLOCK	109.163.226.240 (Type: outgoing, Port: 52993, Process: avp.exe)
2013/04/09 23:42:30 +0200	EUGEN-PC	Eugen	IP-BLOCK	109.163.226.248 (Type: outgoing, Port: 53119, Process: avp.exe)
2013/04/09 23:42:30 +0200	EUGEN-PC	Eugen	IP-BLOCK	109.163.226.18 (Type: outgoing, Port: 53121, Process: avp.exe)
2013/04/09 23:42:30 +0200	EUGEN-PC	Eugen	IP-BLOCK	109.163.226.240 (Type: outgoing, Port: 53123, Process: avp.exe)
2013/04/09 23:42:30 +0200	EUGEN-PC	Eugen	IP-BLOCK	93.114.44.251 (Type: outgoing, Port: 53182, Process: avp.exe)
2013/04/09 23:42:30 +0200	EUGEN-PC	Eugen	IP-BLOCK	109.163.226.248 (Type: outgoing, Port: 53184, Process: avp.exe)
2013/04/09 23:42:30 +0200	EUGEN-PC	Eugen	IP-BLOCK	109.163.226.18 (Type: outgoing, Port: 53186, Process: avp.exe)
2013/04/09 23:42:30 +0200	EUGEN-PC	Eugen	IP-BLOCK	109.163.226.240 (Type: outgoing, Port: 53188, Process: avp.exe)
2013/04/09 23:42:46 +0200	EUGEN-PC	Eugen	IP-BLOCK	109.163.226.248 (Type: outgoing, Port: 53229, Process: avp.exe)
2013/04/09 23:42:46 +0200	EUGEN-PC	Eugen	IP-BLOCK	109.163.226.18 (Type: outgoing, Port: 53231, Process: avp.exe)
2013/04/09 23:42:46 +0200	EUGEN-PC	Eugen	IP-BLOCK	109.163.226.240 (Type: outgoing, Port: 53233, Process: avp.exe)
2013/04/09 23:42:55 +0200	EUGEN-PC	Eugen	IP-BLOCK	93.114.44.251 (Type: outgoing, Port: 53247, Process: avp.exe)
2013/04/09 23:42:55 +0200	EUGEN-PC	Eugen	IP-BLOCK	109.163.226.248 (Type: outgoing, Port: 53250, Process: avp.exe)
2013/04/09 23:42:55 +0200	EUGEN-PC	Eugen	IP-BLOCK	109.163.226.18 (Type: outgoing, Port: 53252, Process: avp.exe)
2013/04/09 23:42:55 +0200	EUGEN-PC	Eugen	IP-BLOCK	109.163.226.240 (Type: outgoing, Port: 53254, Process: avp.exe)
2013/04/09 23:43:03 +0200	EUGEN-PC	Eugen	IP-BLOCK	109.163.226.248 (Type: outgoing, Port: 53284, Process: avp.exe)
2013/04/09 23:43:03 +0200	EUGEN-PC	Eugen	IP-BLOCK	109.163.226.18 (Type: outgoing, Port: 53286, Process: avp.exe)
2013/04/09 23:43:03 +0200	EUGEN-PC	Eugen	IP-BLOCK	109.163.226.240 (Type: outgoing, Port: 53288, Process: avp.exe)
2013/04/09 23:43:03 +0200	EUGEN-PC	Eugen	IP-BLOCK	93.114.44.251 (Type: outgoing, Port: 53294, Process: avp.exe)
2013/04/09 23:43:03 +0200	EUGEN-PC	Eugen	IP-BLOCK	109.163.226.248 (Type: outgoing, Port: 53297, Process: avp.exe)
2013/04/09 23:43:03 +0200	EUGEN-PC	Eugen	IP-BLOCK	109.163.226.18 (Type: outgoing, Port: 53299, Process: avp.exe)
2013/04/09 23:43:03 +0200	EUGEN-PC	Eugen	IP-BLOCK	109.163.226.240 (Type: outgoing, Port: 53301, Process: avp.exe)
2013/04/09 23:43:28 +0200	EUGEN-PC	Eugen	IP-BLOCK	109.163.226.248 (Type: outgoing, Port: 53369, Process: avp.exe)
2013/04/09 23:43:28 +0200	EUGEN-PC	Eugen	IP-BLOCK	109.163.226.18 (Type: outgoing, Port: 53371, Process: avp.exe)
2013/04/09 23:43:28 +0200	EUGEN-PC	Eugen	IP-BLOCK	109.163.226.240 (Type: outgoing, Port: 53373, Process: avp.exe)
2013/04/09 23:43:28 +0200	EUGEN-PC	Eugen	IP-BLOCK	93.114.44.251 (Type: outgoing, Port: 53380, Process: avp.exe)
2013/04/09 23:43:28 +0200	EUGEN-PC	Eugen	IP-BLOCK	109.163.226.248 (Type: outgoing, Port: 53383, Process: avp.exe)
2013/04/09 23:43:28 +0200	EUGEN-PC	Eugen	IP-BLOCK	109.163.226.18 (Type: outgoing, Port: 53385, Process: avp.exe)
2013/04/09 23:43:28 +0200	EUGEN-PC	Eugen	IP-BLOCK	109.163.226.240 (Type: outgoing, Port: 53387, Process: avp.exe)
2013/04/09 23:45:29 +0200	EUGEN-PC	Eugen	IP-BLOCK	109.163.226.18 (Type: outgoing, Port: 53655, Process: avp.exe)
2013/04/09 23:45:29 +0200	EUGEN-PC	Eugen	IP-BLOCK	109.163.226.248 (Type: outgoing, Port: 53657, Process: avp.exe)
2013/04/09 23:45:29 +0200	EUGEN-PC	Eugen	IP-BLOCK	109.163.226.240 (Type: outgoing, Port: 53659, Process: avp.exe)
         
Code:
ATTFilter
2013/04/10 09:03:25 +0200	EUGEN-PC	Eugen	MESSAGE	Starting protection
2013/04/10 09:03:25 +0200	EUGEN-PC	Eugen	MESSAGE	Protection started successfully
2013/04/10 09:03:25 +0200	EUGEN-PC	Eugen	MESSAGE	Starting IP protection
2013/04/10 09:04:06 +0200	EUGEN-PC	Eugen	MESSAGE	IP Protection started successfully
2013/04/10 11:57:00 +0200	EUGEN-PC	Eugen	MESSAGE	Executing scheduled update:  Daily
2013/04/10 11:57:03 +0200	EUGEN-PC	Eugen	MESSAGE	Database already up-to-date
2013/04/10 12:45:17 +0200	EUGEN-PC	Eugen	IP-BLOCK	37.221.167.111 (Type: outgoing, Port: 65186, Process: chrome.exe)
2013/04/10 12:45:18 +0200	EUGEN-PC	Eugen	IP-BLOCK	37.221.167.111 (Type: outgoing, Port: 65187, Process: chrome.exe)
2013/04/10 12:45:18 +0200	EUGEN-PC	Eugen	IP-BLOCK	37.221.161.156 (Type: outgoing, Port: 65191, Process: chrome.exe)
2013/04/10 12:45:18 +0200	EUGEN-PC	Eugen	IP-BLOCK	37.221.161.156 (Type: outgoing, Port: 65192, Process: chrome.exe)
2013/04/10 13:13:14 +0200	EUGEN-PC	Eugen	IP-BLOCK	37.221.167.102 (Type: outgoing, Port: 57988, Process: chrome.exe)
2013/04/10 13:13:14 +0200	EUGEN-PC	Eugen	IP-BLOCK	37.221.167.102 (Type: outgoing, Port: 57989, Process: chrome.exe)
2013/04/10 13:13:14 +0200	EUGEN-PC	Eugen	IP-BLOCK	37.221.161.132 (Type: outgoing, Port: 57992, Process: chrome.exe)
2013/04/10 13:13:14 +0200	EUGEN-PC	Eugen	IP-BLOCK	37.221.161.132 (Type: outgoing, Port: 57997, Process: chrome.exe)
2013/04/10 13:13:30 +0200	EUGEN-PC	Eugen	IP-BLOCK	109.163.229.158 (Type: outgoing, Port: 58207, Process: chrome.exe)
2013/04/10 13:13:54 +0200	EUGEN-PC	Eugen	IP-BLOCK	93.114.43.178 (Type: outgoing, Port: 58810, Process: chrome.exe)
2013/04/10 13:13:54 +0200	EUGEN-PC	Eugen	IP-BLOCK	93.114.43.178 (Type: outgoing, Port: 58812, Process: chrome.exe)
2013/04/10 13:13:54 +0200	EUGEN-PC	Eugen	IP-BLOCK	93.114.43.178 (Type: outgoing, Port: 58813, Process: chrome.exe)
2013/04/10 17:19:33 +0200	EUGEN-PC	(null)	MESSAGE	Starting protection
2013/04/10 17:19:33 +0200	EUGEN-PC	(null)	MESSAGE	Protection started successfully
2013/04/10 17:19:33 +0200	EUGEN-PC	(null)	MESSAGE	Starting IP protection
2013/04/10 17:19:52 +0200	EUGEN-PC	(null)	MESSAGE	IP Protection started successfully
2013/04/10 20:39:45 +0200	EUGEN-PC	Eugen	IP-BLOCK	109.163.227.110 (Type: outgoing, Port: 57441, Process: avp.exe)
2013/04/10 20:46:48 +0200	EUGEN-PC	Eugen	MESSAGE	Starting protection
2013/04/10 20:46:48 +0200	EUGEN-PC	Eugen	MESSAGE	Protection started successfully
2013/04/10 20:46:48 +0200	EUGEN-PC	Eugen	MESSAGE	Starting IP protection
2013/04/10 20:47:08 +0200	EUGEN-PC	Eugen	MESSAGE	IP Protection started successfully
2013/04/10 20:52:30 +0200	EUGEN-PC	Eugen	IP-BLOCK	80.82.64.38 (Type: outgoing, Port: 50263, Process: avp.exe)
2013/04/10 20:52:30 +0200	EUGEN-PC	Eugen	IP-BLOCK	80.82.64.38 (Type: outgoing, Port: 50283, Process: avp.exe)
2013/04/10 20:52:30 +0200	EUGEN-PC	Eugen	IP-BLOCK	80.82.64.38 (Type: outgoing, Port: 50285, Process: avp.exe)
2013/04/10 21:09:40 +0200	EUGEN-PC	Eugen	IP-BLOCK	80.82.64.38 (Type: outgoing, Port: 51702, Process: avp.exe)
2013/04/10 21:09:40 +0200	EUGEN-PC	Eugen	IP-BLOCK	80.82.64.38 (Type: outgoing, Port: 51707, Process: avp.exe)
2013/04/10 21:09:40 +0200	EUGEN-PC	Eugen	IP-BLOCK	80.82.64.38 (Type: outgoing, Port: 51708, Process: avp.exe)
2013/04/10 21:51:45 +0200	EUGEN-PC	Eugen	IP-BLOCK	80.82.64.38 (Type: outgoing, Port: 55189, Process: avp.exe)
2013/04/10 21:51:45 +0200	EUGEN-PC	Eugen	IP-BLOCK	80.82.64.38 (Type: outgoing, Port: 55193, Process: avp.exe)
2013/04/10 21:51:45 +0200	EUGEN-PC	Eugen	IP-BLOCK	193.169.104.1 (Type: outgoing, Port: 55300, Process: avp.exe)
2013/04/10 21:51:45 +0200	EUGEN-PC	Eugen	IP-BLOCK	193.169.104.1 (Type: outgoing, Port: 55301, Process: avp.exe)
2013/04/10 21:55:54 +0200	EUGEN-PC	Eugen	IP-BLOCK	80.82.64.38 (Type: outgoing, Port: 56617, Process: avp.exe)
2013/04/10 21:55:54 +0200	EUGEN-PC	Eugen	IP-BLOCK	80.82.64.38 (Type: outgoing, Port: 56620, Process: avp.exe)
2013/04/10 21:55:54 +0200	EUGEN-PC	Eugen	IP-BLOCK	193.169.104.1 (Type: outgoing, Port: 56651, Process: avp.exe)
2013/04/10 21:55:54 +0200	EUGEN-PC	Eugen	IP-BLOCK	193.169.104.1 (Type: outgoing, Port: 56654, Process: avp.exe)
2013/04/10 21:55:54 +0200	EUGEN-PC	Eugen	IP-BLOCK	193.169.104.1 (Type: outgoing, Port: 56656, Process: avp.exe)
2013/04/10 21:55:54 +0200	EUGEN-PC	Eugen	IP-BLOCK	193.169.104.1 (Type: outgoing, Port: 56715, Process: avp.exe)
2013/04/10 21:55:54 +0200	EUGEN-PC	Eugen	IP-BLOCK	193.169.104.1 (Type: outgoing, Port: 56716, Process: avp.exe)
2013/04/10 21:55:54 +0200	EUGEN-PC	Eugen	IP-BLOCK	193.169.104.1 (Type: outgoing, Port: 56718, Process: avp.exe)
         
Code:
ATTFilter
2013/04/11 13:52:53 +0200	EUGEN-PC	(null)	MESSAGE	Starting protection
2013/04/11 13:52:53 +0200	EUGEN-PC	(null)	MESSAGE	Protection started successfully
2013/04/11 13:52:53 +0200	EUGEN-PC	(null)	MESSAGE	Starting IP protection
2013/04/11 13:53:12 +0200	EUGEN-PC	(null)	MESSAGE	IP Protection started successfully
2013/04/11 14:13:50 +0200	EUGEN-PC	(null)	MESSAGE	Starting protection
2013/04/11 14:13:50 +0200	EUGEN-PC	(null)	MESSAGE	Protection started successfully
2013/04/11 14:13:50 +0200	EUGEN-PC	(null)	MESSAGE	Starting IP protection
2013/04/11 14:14:09 +0200	EUGEN-PC	(null)	MESSAGE	IP Protection started successfully
2013/04/11 14:16:38 +0200	EUGEN-PC	Eugen	MESSAGE	Stopping protection
2013/04/11 14:16:38 +0200	EUGEN-PC	Eugen	MESSAGE	Protection stopped successfully
2013/04/11 14:16:38 +0200	EUGEN-PC	Eugen	MESSAGE	Stopping IP protection
2013/04/11 14:16:39 +0200	EUGEN-PC	Eugen	MESSAGE	IP Protection stopped successfully
2013/04/11 14:16:42 +0200	EUGEN-PC	Eugen	MESSAGE	Protection stopped
2013/04/11 15:07:36 +0200	EUGEN-PC	(null)	MESSAGE	Starting protection
2013/04/11 15:07:36 +0200	EUGEN-PC	(null)	MESSAGE	Protection started successfully
2013/04/11 15:07:36 +0200	EUGEN-PC	(null)	MESSAGE	Starting IP protection
2013/04/11 15:07:57 +0200	EUGEN-PC	(null)	MESSAGE	IP Protection started successfully
2013/04/11 15:14:49 +0200	EUGEN-PC	Administrator	MESSAGE	Stopping protection
2013/04/11 15:14:49 +0200	EUGEN-PC	Administrator	MESSAGE	Protection stopped successfully
2013/04/11 15:14:49 +0200	EUGEN-PC	Administrator	MESSAGE	Stopping IP protection
2013/04/11 15:14:51 +0200	EUGEN-PC	Administrator	MESSAGE	IP Protection stopped successfully
2013/04/11 15:14:51 +0200	EUGEN-PC	Administrator	MESSAGE	Protection stopped
2013/04/11 16:36:46 +0200	EUGEN-PC	(null)	MESSAGE	Starting protection
2013/04/11 16:36:46 +0200	EUGEN-PC	(null)	MESSAGE	Protection started successfully
2013/04/11 16:36:46 +0200	EUGEN-PC	(null)	MESSAGE	Starting IP protection
2013/04/11 16:37:06 +0200	EUGEN-PC	(null)	MESSAGE	IP Protection started successfully
2013/04/11 17:12:27 +0200	EUGEN-PC	Eugen	MESSAGE	Stopping protection
2013/04/11 17:12:27 +0200	EUGEN-PC	Eugen	MESSAGE	Protection stopped successfully
2013/04/11 17:12:27 +0200	EUGEN-PC	Eugen	MESSAGE	Stopping IP protection
2013/04/11 17:12:29 +0200	EUGEN-PC	Eugen	MESSAGE	IP Protection stopped successfully
2013/04/11 17:12:29 +0200	EUGEN-PC	Eugen	MESSAGE	Protection stopped
2013/04/11 19:32:58 +0200	EUGEN-PC	Eugen	MESSAGE	Starting protection
2013/04/11 19:32:58 +0200	EUGEN-PC	Eugen	MESSAGE	Protection started successfully
2013/04/11 19:32:58 +0200	EUGEN-PC	Eugen	MESSAGE	Starting IP protection
2013/04/11 19:33:18 +0200	EUGEN-PC	Eugen	MESSAGE	IP Protection started successfully
2013/04/11 20:34:06 +0200	EUGEN-PC	Eugen	MESSAGE	Stopping IP protection
2013/04/11 20:34:08 +0200	EUGEN-PC	Eugen	MESSAGE	IP Protection stopped successfully
2013/04/11 20:34:08 +0200	EUGEN-PC	Eugen	MESSAGE	Protection stopped
2013/04/11 20:34:21 +0200	EUGEN-PC	Eugen	MESSAGE	Starting protection
2013/04/11 20:34:21 +0200	EUGEN-PC	Eugen	MESSAGE	Protection started successfully
2013/04/11 20:34:21 +0200	EUGEN-PC	Eugen	MESSAGE	Starting IP protection
2013/04/11 20:34:30 +0200	EUGEN-PC	Eugen	MESSAGE	IP Protection started successfully
2013/04/11 23:14:29 +0200	EUGEN-PC	Eugen	MESSAGE	Starting database refresh
2013/04/11 23:14:30 +0200	EUGEN-PC	Eugen	MESSAGE	Stopping IP protection
2013/04/11 23:14:31 +0200	EUGEN-PC	Eugen	MESSAGE	IP Protection stopped successfully
2013/04/11 23:14:38 +0200	EUGEN-PC	Eugen	MESSAGE	Database refreshed successfully
2013/04/11 23:14:38 +0200	EUGEN-PC	Eugen	MESSAGE	Starting IP protection
2013/04/11 23:14:49 +0200	EUGEN-PC	Eugen	MESSAGE	IP Protection started successfully
         
Code:
ATTFilter
2013/04/12 09:32:09 +0200	EUGEN-PC	(null)	MESSAGE	Starting protection
2013/04/12 09:32:09 +0200	EUGEN-PC	(null)	MESSAGE	Protection started successfully
2013/04/12 09:32:09 +0200	EUGEN-PC	(null)	MESSAGE	Starting IP protection
2013/04/12 09:32:28 +0200	EUGEN-PC	Eugen	MESSAGE	IP Protection started successfully
2013/04/12 11:59:09 +0200	EUGEN-PC	Eugen	MESSAGE	Executing scheduled update:  Daily
2013/04/12 11:59:16 +0200	EUGEN-PC	Eugen	MESSAGE	Scheduled update executed successfully:  database updated from version v2013.04.11.11 to version v2013.04.12.03
2013/04/12 11:59:16 +0200	EUGEN-PC	Eugen	MESSAGE	Starting database refresh
2013/04/12 11:59:16 +0200	EUGEN-PC	Eugen	MESSAGE	Stopping IP protection
2013/04/12 11:59:18 +0200	EUGEN-PC	Eugen	MESSAGE	IP Protection stopped successfully
2013/04/12 11:59:20 +0200	EUGEN-PC	Eugen	MESSAGE	Database refreshed successfully
2013/04/12 11:59:20 +0200	EUGEN-PC	Eugen	MESSAGE	Starting IP protection
2013/04/12 11:59:32 +0200	EUGEN-PC	Eugen	MESSAGE	IP Protection started successfully
2013/04/12 12:13:52 +0200	EUGEN-PC	Eugen	IP-BLOCK	37.221.167.115 (Type: outgoing, Port: 61168, Process: avp.exe)
2013/04/12 12:13:52 +0200	EUGEN-PC	Eugen	IP-BLOCK	37.221.167.115 (Type: outgoing, Port: 61170, Process: avp.exe)
2013/04/12 12:13:52 +0200	EUGEN-PC	Eugen	IP-BLOCK	37.221.161.179 (Type: outgoing, Port: 61174, Process: avp.exe)
2013/04/12 12:13:52 +0200	EUGEN-PC	Eugen	IP-BLOCK	37.221.161.179 (Type: outgoing, Port: 61176, Process: avp.exe)
2013/04/12 16:03:16 +0200	EUGEN-PC	(null)	MESSAGE	Starting protection
2013/04/12 16:03:16 +0200	EUGEN-PC	(null)	MESSAGE	Protection started successfully
2013/04/12 16:03:16 +0200	EUGEN-PC	(null)	MESSAGE	Starting IP protection
2013/04/12 16:03:35 +0200	EUGEN-PC	Eugen	MESSAGE	IP Protection started successfully
         
Code:
ATTFilter
2013/04/16 09:51:07 +0200	EUGEN-PC	(null)	MESSAGE	Starting protection
2013/04/16 09:51:07 +0200	EUGEN-PC	(null)	MESSAGE	Protection started successfully
2013/04/16 09:51:07 +0200	EUGEN-PC	(null)	MESSAGE	Starting IP protection
2013/04/16 09:51:27 +0200	EUGEN-PC	(null)	MESSAGE	IP Protection started successfully
2013/04/16 11:17:18 +0200	EUGEN-PC	Eugen	IP-BLOCK	37.221.167.103 (Type: outgoing, Port: 57244, Process: avp.exe)
2013/04/16 11:17:18 +0200	EUGEN-PC	Eugen	IP-BLOCK	37.221.167.103 (Type: outgoing, Port: 57246, Process: avp.exe)
2013/04/16 11:17:18 +0200	EUGEN-PC	Eugen	IP-BLOCK	37.221.161.179 (Type: outgoing, Port: 57253, Process: avp.exe)
2013/04/16 11:17:18 +0200	EUGEN-PC	Eugen	IP-BLOCK	37.221.161.179 (Type: outgoing, Port: 57255, Process: avp.exe)
2013/04/16 11:43:17 +0200	EUGEN-PC	Eugen	MESSAGE	Executing scheduled update:  Daily
2013/04/16 11:43:27 +0200	EUGEN-PC	Eugen	MESSAGE	Scheduled update executed successfully:  database updated from version v2013.04.15.04 to version v2013.04.16.05
2013/04/16 11:43:27 +0200	EUGEN-PC	Eugen	MESSAGE	Starting database refresh
2013/04/16 11:43:27 +0200	EUGEN-PC	Eugen	MESSAGE	Stopping IP protection
2013/04/16 11:43:28 +0200	EUGEN-PC	Eugen	MESSAGE	IP Protection stopped successfully
2013/04/16 11:43:31 +0200	EUGEN-PC	Eugen	MESSAGE	Database refreshed successfully
2013/04/16 11:43:31 +0200	EUGEN-PC	Eugen	MESSAGE	Starting IP protection
2013/04/16 11:43:31 +0200	EUGEN-PC	Eugen	MESSAGE	IP Protection started successfully
2013/04/16 16:32:44 +0200	EUGEN-PC	Eugen	MESSAGE	Starting protection
2013/04/16 16:32:44 +0200	EUGEN-PC	Eugen	MESSAGE	Protection started successfully
2013/04/16 16:32:44 +0200	EUGEN-PC	Eugen	MESSAGE	Starting IP protection
2013/04/16 16:32:45 +0200	EUGEN-PC	Eugen	MESSAGE	IP Protection started successfully
2013/04/16 20:54:37 +0200	EUGEN-PC	Eugen	MESSAGE	Starting protection
2013/04/16 20:54:37 +0200	EUGEN-PC	Eugen	MESSAGE	Protection started successfully
2013/04/16 20:54:37 +0200	EUGEN-PC	Eugen	MESSAGE	Starting IP protection
2013/04/16 20:54:38 +0200	EUGEN-PC	Eugen	MESSAGE	IP Protection started successfully
2013/04/16 20:57:14 +0200	EUGEN-PC	Eugen	MESSAGE	Stopping protection
2013/04/16 20:57:14 +0200	EUGEN-PC	Eugen	MESSAGE	Protection stopped successfully
2013/04/16 20:57:14 +0200	EUGEN-PC	Eugen	MESSAGE	Stopping IP protection
2013/04/16 20:57:14 +0200	EUGEN-PC	Eugen	MESSAGE	IP Protection stopped successfully
2013/04/16 20:57:15 +0200	EUGEN-PC	Eugen	MESSAGE	Protection stopped
         
Das sind die alten ohne update

Antwort

Themen zu Online Smile v13.4.24 lässt sich nicht entfernen.
add-on, chrome, deaktivieren, entferne, entfernen, erfolglos, facebook, geklickt, google, google chrome, guten, jemandem, kollege, link, lässt sich nicht entfernen, löschen, nicht mehr, notebook, online, probiert, seitdem, start, zusammen




Ähnliche Themen: Online Smile v13.4.24 lässt sich nicht entfernen.


  1. Windows7 taskmgr lässt sich nicht starten, Avira Echtzeitscanner lässt sich nicht aktivieren, USB wird nicht angenommen, ohne Meldung,
    Log-Analyse und Auswertung - 01.06.2015 (15)
  2. Conhost.exe prozess lässt sich nicht beenden & auch nicht entfernen.
    Plagegeister aller Art und deren Bekämpfung - 15.05.2015 (9)
  3. TR/Crypt.EPACK.20167 -- lässt sich nicht löschen -- Echtzeitscanner lässt sich nicht aktivieren
    Plagegeister aller Art und deren Bekämpfung - 14.01.2015 (29)
  4. Zone Alarm Antivirus wird ausgeschaltet und lässt sich nicht einschalten/ Online Games und Webseiten mit Passwort lassen sich nicht besuchen
    Log-Analyse und Auswertung - 14.11.2014 (26)
  5. Zone Alarm Antivirus wird ausgeschaltet und lässt sich nicht einschalten/ Online Games und Webseiten mit Passwort lassen sich nicht besuchen
    Plagegeister aller Art und deren Bekämpfung - 05.10.2014 (4)
  6. Laptop ruckelt nur noch, Iminent lässt sich nicht löschen und Radio schaltet sich alleine an und aus und lässt sich ebenfalls nicht löschen
    Plagegeister aller Art und deren Bekämpfung - 27.06.2014 (3)
  7. GVU Trojaner lässt sich nicht entfernen
    Plagegeister aller Art und deren Bekämpfung - 16.11.2013 (3)
  8. spigot lässt sich nicht entfernen
    Log-Analyse und Auswertung - 28.01.2011 (7)
  9. SECURITY TOOL WARNUNG öffnet sich andauernd und lässt sich nicht entfernen!
    Log-Analyse und Auswertung - 03.10.2010 (1)
  10. Security Essentials 2010 lässt sich nicht entfernen, rkill funktioniert nicht
    Plagegeister aller Art und deren Bekämpfung - 26.09.2010 (11)
  11. Win32/Kryptik.EKH Trojaner lässt sich nicht entfernen/MBAM startet nicht
    Plagegeister aller Art und deren Bekämpfung - 18.06.2010 (18)
  12. Spybot+Firefox hängen sich auf / Windows Security Alert lässt sich nicht entfernen
    Plagegeister aller Art und deren Bekämpfung - 11.05.2010 (15)
  13. Lässt sich nicht entfernen
    Log-Analyse und Auswertung - 07.05.2006 (10)
  14. Trojaner lässt sich nicht entfernen
    Plagegeister aller Art und deren Bekämpfung - 30.01.2006 (30)
  15. Startseite lässt sich nicht entfernen !!!
    Log-Analyse und Auswertung - 09.04.2005 (7)
  16. TRJ/Downloader.JH lässt sich nicht entfernen
    Plagegeister aller Art und deren Bekämpfung - 19.10.2004 (35)
  17. CWS lässt sich nicht entfernen
    Log-Analyse und Auswertung - 28.06.2004 (1)

Zum Thema Online Smile v13.4.24 lässt sich nicht entfernen. - Guten Tag zusammen, ein kollege hat mir mal bei Facebook geschrieben und unter seinem Text befand sich ein Link mit einem Smiley. Auf den hab ich geklickt und seitdem kommt - Online Smile v13.4.24 lässt sich nicht entfernen....
Archiv
Du betrachtest: Online Smile v13.4.24 lässt sich nicht entfernen. auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.