Trojaner-Board
Seite 1 von 3 1 23
100 Beiträge dieses Themas auf einer Seite anzeigen

Trojaner-Board (https://www.trojaner-board.de/)
-   Plagegeister aller Art und deren Bekämpfung (https://www.trojaner-board.de/plagegeister-aller-art-deren-bekaempfung/)
-   -   (thbcn.exe) Computer hängt sich dauernt auf. (https://www.trojaner-board.de/126148-thbcn-exe-computer-haengt-dauernt.html)

Wyatt 26.10.2012 12:08
(thbcn.exe) Computer hängt sich dauernt auf.
 
Hallo,

seit ca einer Woche hängt sich mein PC immer wieder auf. Am Anfang war es nur 3-4 mal am Tag. Doch jetzt ist es schon so gut wie jede Minute. Manchmal läuft er auch etwas länger. Jedes Mal wenn es passiert macht mein Computer ein pieps Geräuch und danach macht er nichts mehr und wenn ich irgendwo was klicke funktioniert es nicht. Es wird nur alles hell und ich muss warten bis es wieder normal ist. Leider passiert das sehr häufig seit gestern. Es ist auch egal ob ich Internet etwas mache oder ganz normal am Computer bin.

Ich weiß nicht was es sein könnte, aber im Task-Manager finde ich thbcn.exe und weiß nicht was es sein soll. Hab das vor letzter Woche auch noch nicht gesehen.

cosinus 26.10.2012 13:54
Schon irgendwelche Scans gemacht? Wenn ja => http://www.trojaner-board.de/125889-...tml#post941520

Bitte keine neuen Virenscans machen sondern erst nur schon vorhandene Logs posten!

Wyatt 26.10.2012 14:06
Ich hatte vor ein paar Tagen einen Scan gemacht und dies kam dabei heraus.

Code:
Secondary action....................: Ignore
Scan master boot sector.............: on
Scan boot sector....................: on
Boot sectors........................: C:,
Process scan........................: on
Extended process scan...............: on
Scan registry.......................: on
Search for rootkits.................: on
Integrity checking of system files..: off
Scan all files......................: All files
Scan archives.......................: on
Recursion depth.....................: 20
Smart extensions....................: on
Macro heuristic.....................: on
File heuristic......................: extended

Start of the scan: Sonntag, 21. Oktober 2012  12:49

Starting master boot sector scan:
Master boot sector HD0
    [INFO]      No virus was found!

Start scanning boot sectors:
Boot sector 'C:\'
    [INFO]      No virus was found!

Starting search for hidden objects.

The scan of running processes will be started
Scan process 'svchost.exe' - '30' Module(s) have been scanned
Scan process 'vssvc.exe' - '48' Module(s) have been scanned
Scan process 'avscan.exe' - '83' Module(s) have been scanned
Scan process 'avscan.exe' - '29' Module(s) have been scanned
Scan process 'avcenter.exe' - '71' Module(s) have been scanned
Scan process 'mbam.exe' - '56' Module(s) have been scanned
Scan process 'symlcsvc.exe' - '35' Module(s) have been scanned
Scan process 'CLI.exe' - '56' Module(s) have been scanned
Scan process 'CLI.exe' - '80' Module(s) have been scanned
Scan process 'COCIManager.exe' - '56' Module(s) have been scanned
Scan process 'wuauclt.exe' - '35' Module(s) have been scanned
Scan process 'tbhcn.exe' - '20' Module(s) have been scanned
Scan process 'Communications_Helper.exe' - '62' Module(s) have been scanned
Scan process 'CLI.EXE' - '128' Module(s) have been scanned
Scan process 'avgnt.exe' - '72' Module(s) have been scanned
Scan process 'RtHDVCpl.exe' - '50' Module(s) have been scanned
Scan process 'taskeng.exe' - '80' Module(s) have been scanned
Scan process 'Explorer.EXE' - '123' Module(s) have been scanned
Scan process 'Dwm.exe' - '32' Module(s) have been scanned
Scan process 'LVComSer.exe' - '38' Module(s) have been scanned
Scan process 'mbamgui.exe' - '39' Module(s) have been scanned
Scan process 'avshadow.exe' - '33' Module(s) have been scanned
Scan process 'taskeng.exe' - '48' Module(s) have been scanned
Scan process 'SearchIndexer.exe' - '60' Module(s) have been scanned
Scan process 'svchost.exe' - '9' Module(s) have been scanned
Scan process 'ExtensionUpdaterService.exe' - '19' Module(s) have been scanned
Scan process 'svchost.exe' - '44' Module(s) have been scanned
Scan process 'svchost.exe' - '39' Module(s) have been scanned
Scan process 'mbamservice.exe' - '43' Module(s) have been scanned
Scan process 'mbamscheduler.exe' - '32' Module(s) have been scanned
Scan process 'LVComSer.exe' - '44' Module(s) have been scanned
Scan process 'WlanNetService.exe' - '35' Module(s) have been scanned
Scan process 'ALUSchedulerSvc.exe' - '40' Module(s) have been scanned
Scan process 'avguard.exe' - '59' Module(s) have been scanned
Scan process 'svchost.exe' - '56' Module(s) have been scanned
Scan process 'sched.exe' - '52' Module(s) have been scanned
Scan process 'spoolsv.exe' - '78' Module(s) have been scanned
Scan process 'AppSvc32.exe' - '75' Module(s) have been scanned
Scan process 'ccSvcHst.exe' - '106' Module(s) have been scanned
Scan process 'svchost.exe' - '87' Module(s) have been scanned
Scan process 'svchost.exe' - '84' Module(s) have been scanned
Scan process 'nvvsvc.exe' - '52' Module(s) have been scanned
Scan process 'nvxdsync.exe' - '48' Module(s) have been scanned
Scan process 'SLsvc.exe' - '26' Module(s) have been scanned
Scan process 'svchost.exe' - '153' Module(s) have been scanned
Scan process 'LVPrcSrv.exe' - '24' Module(s) have been scanned
Scan process 'svchost.exe' - '98' Module(s) have been scanned
Scan process 'svchost.exe' - '61' Module(s) have been scanned
Scan process 'Ati2evxx.exe' - '26' Module(s) have been scanned
Scan process 'svchost.exe' - '44' Module(s) have been scanned
Scan process 'nvvsvc.exe' - '38' Module(s) have been scanned
Scan process 'svchost.exe' - '41' Module(s) have been scanned
Scan process 'svchost.exe' - '44' Module(s) have been scanned
Scan process 'winlogon.exe' - '30' Module(s) have been scanned
Scan process 'lsm.exe' - '22' Module(s) have been scanned
Scan process 'lsass.exe' - '60' Module(s) have been scanned
Scan process 'services.exe' - '33' Module(s) have been scanned
Scan process 'wininit.exe' - '26' Module(s) have been scanned
Scan process 'csrss.exe' - '14' Module(s) have been scanned
Scan process 'csrss.exe' - '14' Module(s) have been scanned
Scan process 'smss.exe' - '2' Module(s) have been scanned

Starting to scan executable files (registry).
The registry was scanned ( '5118' files ).


Starting the file scan:

Begin scan in 'C:\' <HDD>
C:\Program Files\AOL 9.0 VR\Jiti\viewpoint.exe
  [WARNING]  Unsupported archive version
C:\Users\Pc\Downloads\AVSDiscCreator5(1).exe.part
  [WARNING]  Invalid end of file
C:\Users\Pc\Downloads\AVSDiscCreator5.exe.part
  [WARNING]  Invalid end of file
C:\Users\Pc\Downloads\X16-32967.exe
  [WARNING]  No further files can be extracted from this archive. The archive will be closed
C:\Users\Pc\Music\Neuer Ordner (2)\16400ab015fd6e12506ee04c228bc453
  [WARNING]  Invalid end of file
C:\Users\Pc\Music\Neuer Ordner (2)\1a2624d5b9e84060ddbd9f75a7b4ce96
  [WARNING]  Error no files to extract
C:\Users\Pc\Music\Neuer Ordner (2)\1E970d01
  [WARNING]  Error no files to extract
C:\Users\Pc\Music\Neuer Ordner (2)\1f80b4acb694deadb950d44db4694a4d
  [WARNING]  Invalid end of file
C:\Users\Pc\Music\Neuer Ordner (2)\41871DF5-0000006E.eml
  [WARNING]  Invalid compressed data
C:\Users\Pc\Music\Neuer Ordner (2)\4ae2930449c20e1a889f9a7eb9c19655
  [WARNING]  Invalid end of file
C:\Users\Pc\Music\Neuer Ordner (2)\5918b2ed754a0dfe3d352902cfdc4f6b
  [WARNING]  Invalid end of file
C:\Users\Pc\Music\Neuer Ordner (2)\7022Ed01
  [WARNING]  Error no files to extract
C:\Users\Pc\Music\Neuer Ordner (2)\7A41Ed01
  [WARNING]  Error no files to extract
C:\Users\Pc\Music\Neuer Ordner (2)\84E22d01
  [WARNING]  No further files can be extracted from this archive. The archive will be closed
C:\Users\Pc\Music\Neuer Ordner (2)\850EEd01
  [WARNING]  Invalid end of file
C:\Users\Pc\Music\Neuer Ordner (2)\8A5A5d01
  [WARNING]  Invalid end of file
C:\Users\Pc\Music\Neuer Ordner (2)\a22cff2f280851bec97d8e82a78a8000
  [WARNING]  Invalid end of file
C:\Users\Pc\Music\Neuer Ordner (2)\B6A4Bm01
  [WARNING]  Error no files to extract
C:\Users\Pc\Music\Neuer Ordner (2)\CCC_4.js
  [WARNING]  Invalid end of file
C:\Users\Pc\Music\Neuer Ordner (2)\CoreHistoryPaletteRC_4.dll
  [WARNING]  Invalid end of file
C:\Users\Pc\Music\Neuer Ordner (2)\Corel_06_018.PspGradient
  [WARNING]  Invalid end of file
C:\Users\Pc\Music\Neuer Ordner (2)\Corel_10_018.PspTube
  [WARNING]  Invalid end of file
C:\Users\Pc\Music\Neuer Ordner (2)\damonteam_10.png
  [WARNING]  Error no files to extract
C:\Users\Pc\Music\Neuer Ordner (2)\DB119m01
  [WARNING]  Invalid end of file
C:\Users\Pc\Music\Neuer Ordner (2)\DSC00015_4.JPG
  [WARNING]  Invalid compressed data
C:\Users\Pc\Music\Neuer Ordner (2)\DSC03203_1.JPG
  [WARNING]  Invalid end of file
C:\Users\Pc\Music\Neuer Ordner (2)\EAF2Dd01
  [WARNING]  Invalid end of file
C:\Users\Pc\Music\Neuer Ordner (2)\Getinte grijswaarden.PspScript
  [WARNING]  Invalid end of file
C:\Users\Pc\Music\Neuer Ordner (2)\Headlines.tpl
  [WARNING]  Invalid end of file
C:\Users\Pc\Music\Neuer Ordner (2)\index_newpm_3.tpl
  [WARNING]  Invalid compressed data
C:\Users\Pc\Music\Neuer Ordner (2)\index_welcome_8.tpl
  [WARNING]  Error no files to extract
C:\Users\Pc\Music\Neuer Ordner (2)\jd-mask4.zip
  [WARNING]  Error no files to extract
C:\Users\Pc\Music\Neuer Ordner (2)\Julian_McMahon_in_NipTuck_TV_Series_Wallpaper_2_1280.jpg
  [WARNING]  Invalid end of file
C:\Users\Pc\Music\Neuer Ordner (2)\Kieselsteine.PspTube
  [WARNING]  Invalid end of file
C:\Users\Pc\Music\Neuer Ordner (2)\lektion14_Ebenensortieren.pspimage
  [WARNING]  Invalid end of file
C:\Users\Pc\Music\Neuer Ordner (2)\login_9.tpl
  [WARNING]  Invalid end of file
C:\Users\Pc\Music\Neuer Ordner (2)\logo_21.gif
  [WARNING]  Invalid end of file
C:\Users\Pc\Music\Neuer Ordner (2)\NN Alien Queen 30102007.pspimage
  [WARNING]  Invalid end of file
C:\Users\Pc\Music\Neuer Ordner (2)\Organized
  [WARNING]  Invalid end of file
C:\Users\Pc\Music\Neuer Ordner (2)\Preset_ChalkTool_Vierkante punt groot.PspScript
  [WARNING]  Invalid end of file
C:\Users\Pc\Music\Neuer Ordner (2)\Preset_Fur_Coutures transparentes.PspScript
  [WARNING]  No further files can be extracted from this archive. The archive will be closed
C:\Users\Pc\Music\Neuer Ordner (2)\Preset_GreyWorld_Sunlight_1.PspScript
  [WARNING]  Invalid end of file
C:\Users\Pc\Music\Neuer Ordner (2)\Preset_HorizontalCylinder_Faible.PspScript
  [WARNING]  Invalid end of file
C:\Users\Pc\Music\Neuer Ordner (2)\Preset_MagnifyingLens_Cilindrica orizzontale.PspScript
  [WARNING]  Invalid end of file
C:\Users\Pc\Music\Neuer Ordner (2)\Preset_OuterBevel_Réglages usine.PspScript
  [WARNING]  Invalid end of file
C:\Users\Pc\Music\Neuer Ordner (2)\Preset_VerticalPerspective_Negro.PspScript
  [WARNING]  No further files can be extracted from this archive. The archive will be closed
C:\Users\Pc\Music\Neuer Ordner (2)\progress_ani.gif
  [WARNING]  Invalid end of file
C:\Users\Pc\Music\Neuer Ordner (2)\progress_ani_stop_5.gif
  [WARNING]  Invalid end of file
C:\Users\Pc\Music\Neuer Ordner (2)\report_16.gif
  [WARNING]  Error no files to extract
C:\Users\Pc\Music\Neuer Ordner (2)\stellachantextur001_1.jpg
  [WARNING]  Invalid end of file
C:\Users\Pc\Music\Neuer Ordner (2)\surgery.8bf
  [DETECTION] Contains recognition pattern of the DR/FakePic.Gen dropper
C:\Users\Pc\Music\Neuer Ordner (2)\Tag 1 108.jpg
  [WARNING]  Invalid end of file
C:\Users\Pc\Music\Neuer Ordner (2)\torwizhelp_1.dtd
  [WARNING]  Invalid end of file
C:\Users\Pc\Music\Neuer Ordner (2)\Windows Mail emails.zip
  [WARNING]  Invalid compressed data
C:\Users\Pc\Music\Neuer Ordner (2)\x86_netfx-aspnet_personalization_sql_b03f5f7f11d50a3a_6.0.6001.18111_none_48aafd82e870d66c.manifest
  [WARNING]  Invalid end of file
C:\Windows\SoftwareDistribution\Download\69b46b1a59279f48b2601c35581831a7\BIT19C8.tmp
  [WARNING]  Invalid compressed data

Beginning disinfection:
C:\Users\Pc\Music\Neuer Ordner (2)\surgery.8bf
  [DETECTION] Contains recognition pattern of the DR/FakePic.Gen dropper
  [NOTE]      The file was moved to the quarantine directory under the name '55cfad77.qua'.


End of the scan: Sonntag, 21. Oktober 2012  16:37
Used time:  2:42:37 Hour(s)

The scan has been done completely.

  27807 Scanned directories
 817929 Files were scanned
      1 Viruses and/or unwanted programs were found
      0 Files were classified as suspicious
      0 Files were deleted
      0 Viruses and unwanted programs were repaired
      1 Files were moved to quarantine
      0 Files were renamed
      0 Files cannot be scanned
 817928 Files not concerned
  7980 Archives were scanned
    55 Warnings
      1 Notes
 561519 Objects were scanned with ro

cosinus 26.10.2012 14:22
Log bitte vollständig posten

Wyatt 26.10.2012 14:25
Das war alles.. Muss was vergessen haben. Bei den Logdaten von Maleware ist es nicht drine.

cosinus 26.10.2012 14:39
Bitte nun (im normalen Windows-Modus) dieses Tool von Kaspersky (TDSS-Killer) ausführen und das Log posten Anleitung und Downloadlink hier => http://www.trojaner-board.de/82358-t...entfernen.html

Hinweis: Bitte den Virenscanner abstellen bevor du den TDSS-Killer ausführst, denn v.a. Avira meldet im TDSS-Tool oft einen Fehalalrm!

Das Tool so einstellen wie unten im Bild angegeben - klick auf change parameters und setze die Haken wie im folgenden Screenshot abgebildet,
Dann auf Start Scan klicken und wenn es durch ist auf den Button Report klicken um das Log anzuzeigen. Dieses bitte komplett posten.

Wenn du das Log nicht findest oder den Inhalt kopieren und in dein Posting übertragen kannst, dann schau bitte direkt auf deiner Windows-Systempartition ( meistens Laufwerk C: ) nach, da speichert der TDSS-Killer seine Logs.

Hinweis: Bitte nichts voreilig mit dem TDSS-Killer löschen! Falls Objekte vom TDSS-Killer bemängelt werden, alle mit der Aktion "skip" behandeln und hier nur das Log posten!

http://saved.im/mtg4nzy0ywy5/settings_2012-09-04.png

Wyatt 03.11.2012 17:09
Code:
17:06:46.0361 1000  TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
17:06:46.0490 1000  ============================================================
17:06:46.0490 1000  Current date / time: 2012/11/03 17:06:46.0490
17:06:46.0490 1000  SystemInfo:
17:06:46.0490 1000 
17:06:46.0490 1000  OS Version: 6.0.6000 ServicePack: 0.0
17:06:46.0490 1000  Product type: Workstation
17:06:46.0490 1000  ComputerName: PC-PC
17:06:46.0491 1000  UserName: Pc
17:06:46.0491 1000  Windows directory: C:\Windows
17:06:46.0491 1000  System windows directory: C:\Windows
17:06:46.0491 1000  Processor architecture: Intel x86
17:06:46.0491 1000  Number of processors: 2
17:06:46.0491 1000  Page size: 0x1000
17:06:46.0491 1000  Boot type: Normal boot
17:06:46.0491 1000  ============================================================
17:06:47.0912 1000  Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
17:06:47.0957 1000  ============================================================
17:06:47.0957 1000  \Device\Harddisk0\DR0:
17:06:47.0958 1000  MBR partitions:
17:06:47.0958 1000  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1000800, BlocksNum 0x39385000
17:06:47.0958 1000  ============================================================
17:06:47.0982 1000  C: <-> \Device\Harddisk0\DR0\Partition1
17:06:47.0982 1000  ============================================================
17:06:47.0982 1000  Initialize success
17:06:47.0982 1000  ============================================================
17:06:52.0115 1220  ============================================================
17:06:52.0115 1220  Scan started
17:06:52.0115 1220  Mode: Manual;
17:06:52.0115 1220  ============================================================
17:06:52.0705 1220  ================ Scan system memory ========================
17:06:52.0705 1220  System memory - ok
17:06:52.0705 1220  ================ Scan services =============================
17:06:52.0815 1220  [ 192BDBD1540645C4A2AA69F24CCE197F ] ACPI            C:\Windows\system32\drivers\acpi.sys
17:06:52.0815 1220  ACPI - ok
17:06:52.0875 1220  [ 2EDC5BBAC6C651ECE337BDE8ED97C9FB ] adp94xx        C:\Windows\system32\drivers\adp94xx.sys
17:06:53.0005 1220  adp94xx - ok
17:06:53.0035 1220  [ B84088CA3CDCA97DA44A984C6CE1CCAD ] adpahci        C:\Windows\system32\drivers\adpahci.sys
17:06:53.0055 1220  adpahci - ok
17:06:53.0075 1220  [ 7880C67BCCC27C86FD05AA2AFB5EA469 ] adpu160m        C:\Windows\system32\drivers\adpu160m.sys
17:06:53.0095 1220  adpu160m - ok
17:06:53.0125 1220  [ 9AE713F8E30EFC2ABCCD84904333DF4D ] adpu320        C:\Windows\system32\drivers\adpu320.sys
17:06:53.0145 1220  adpu320 - ok
17:06:53.0175 1220  [ 9D1FDA9E086BA64E3C93C9DE32461BCF ] AeLookupSvc    C:\Windows\System32\aelupsvc.dll
17:06:53.0175 1220  AeLookupSvc - ok
17:06:53.0195 1220  [ 5D24CAF8EFD924A875698FF28384DB8B ] AFD            C:\Windows\system32\drivers\afd.sys
17:06:53.0225 1220  AFD - ok
17:06:53.0245 1220  [ EF23439CDD587F64C2C1B8825CEAD7D8 ] agp440          C:\Windows\system32\drivers\agp440.sys
17:06:53.0265 1220  agp440 - ok
17:06:53.0285 1220  [ AE1FDF7BF7BB6C6A70F67699D880592A ] aic78xx        C:\Windows\system32\drivers\djsvs.sys
17:06:53.0305 1220  aic78xx - ok
17:06:53.0315 1220  [ E69FB0E3112C40FDC0EF7D21A52DC951 ] ALG            C:\Windows\System32\alg.exe
17:06:53.0315 1220  ALG - ok
17:06:53.0335 1220  [ 90395B64600EBB4552E26E178C94B2E4 ] aliide          C:\Windows\system32\drivers\aliide.sys
17:06:53.0355 1220  aliide - ok
17:06:53.0385 1220  [ 2B13E304C9DFDFA5EB582F6A149FA2C7 ] amdagp          C:\Windows\system32\drivers\amdagp.sys
17:06:53.0405 1220  amdagp - ok
17:06:53.0425 1220  [ 0577DF1D323FE75A739C787893D300EA ] amdide          C:\Windows\system32\drivers\amdide.sys
17:06:53.0445 1220  amdide - ok
17:06:53.0455 1220  [ DC487885BCEF9F28EECE6FAC0E5DDFC5 ] AmdK7          C:\Windows\system32\drivers\amdk7.sys
17:06:53.0475 1220  AmdK7 - ok
17:06:53.0495 1220  [ 0CA0071DA4315B00FC1328CA86B425DA ] AmdK8          C:\Windows\system32\DRIVERS\amdk8.sys
17:06:53.0495 1220  AmdK8 - ok
17:06:53.0555 1220  [ 0A1CC583E8147004E4AD4625D7FBF88C ] AntiVirSchedulerService C:\Program Files\Avira\AntiVir Desktop\sched.exe
17:06:53.0555 1220  AntiVirSchedulerService - ok
17:06:53.0575 1220  [ C9A36EF935ACED86AEDF93E97E606911 ] AntiVirService  C:\Program Files\Avira\AntiVir Desktop\avguard.exe
17:06:53.0575 1220  AntiVirService - ok
17:06:53.0605 1220  [ CFA455816879F06F1C4E5BBF9E8AEF7D ] Appinfo        C:\Windows\System32\appinfo.dll
17:06:53.0605 1220  Appinfo - ok
17:06:53.0635 1220  [ 5F673180268BB1FDB69C99B6619FE379 ] arc            C:\Windows\system32\drivers\arc.sys
17:06:53.0675 1220  arc - ok
17:06:53.0725 1220  [ 957F7540B5E7F602E44648C7DE5A1C05 ] arcsas          C:\Windows\system32\drivers\arcsas.sys
17:06:53.0745 1220  arcsas - ok
17:06:53.0775 1220  [ E86CF7CE67D5DE898F27EF884DC357D8 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
17:06:53.0785 1220  AsyncMac - ok
17:06:53.0795 1220  [ 4F4FCB8B6EA06784FB6D475B7EC7300F ] atapi          C:\Windows\system32\drivers\atapi.sys
17:06:53.0795 1220  atapi - ok
17:06:53.0825 1220  [ F8A2A11291A994B1A1F0867CFFAA6E18 ] Ati External Event Utility C:\Windows\system32\Ati2evxx.exe
17:06:53.0835 1220  Ati External Event Utility - ok
17:06:53.0865 1220  [ E760FC1BD68F7F6F1B17EB4E8D9480B0 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
17:06:53.0865 1220  AudioEndpointBuilder - ok
17:06:53.0875 1220  [ E760FC1BD68F7F6F1B17EB4E8D9480B0 ] Audiosrv        C:\Windows\System32\Audiosrv.dll
17:06:53.0875 1220  Audiosrv - ok
17:06:53.0925 1220  [ 018FE8992FE4D70B69AE866EA0D83F0D ] Automatisches LiveUpdate - Scheduler C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
17:06:53.0925 1220  Automatisches LiveUpdate - Scheduler - ok
17:06:53.0945 1220  [ D5541F0AFB767E85FC412FC609D96A74 ] avgntflt        C:\Windows\system32\DRIVERS\avgntflt.sys
17:06:53.0955 1220  avgntflt - ok
17:06:53.0985 1220  [ 7D967A682D4694DF7FA57D63A2DB01FE ] avipbb          C:\Windows\system32\DRIVERS\avipbb.sys
17:06:53.0995 1220  avipbb - ok
17:06:54.0015 1220  [ 271CFD1A989209B1964E24D969552BF7 ] avkmgr          C:\Windows\system32\DRIVERS\avkmgr.sys
17:06:54.0025 1220  avkmgr - ok
17:06:54.0105 1220  [ C6F4C466B654C1BE98AF31418BB5AC30 ] AVM WLAN Connection Service C:\Program Files\avmwlanstick\WlanNetService.exe
17:06:54.0115 1220  AVM WLAN Connection Service - ok
17:06:54.0125 1220  [ 263CF9D248FD5E020A1333ED4F7EAA88 ] avmeject        C:\Windows\system32\drivers\avmeject.sys
17:06:54.0135 1220  avmeject - ok
17:06:54.0165 1220  [ AC3DD1708B22761EBD7CBE14DCC3B5D7 ] Beep            C:\Windows\system32\drivers\Beep.sys
17:06:54.0175 1220  Beep - ok
17:06:54.0195 1220  [ 98EBDFFB824A7C265337D68DD480E45C ] BFE            C:\Windows\System32\bfe.dll
17:06:54.0205 1220  BFE - ok
17:06:54.0265 1220  [ DA551697E34D2B9943C8B1C8EAFFE89A ] BITS            C:\Windows\System32\qmgr.dll
17:06:54.0275 1220  BITS - ok
17:06:54.0275 1220  blbdrive - ok
17:06:54.0295 1220  [ 913CD06FBE9105CE6077E90FD4418561 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
17:06:54.0315 1220  bowser - ok
17:06:54.0335 1220  [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo        C:\Windows\system32\drivers\brfiltlo.sys
17:06:54.0345 1220  BrFiltLo - ok
17:06:54.0365 1220  [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp        C:\Windows\system32\drivers\brfiltup.sys
17:06:54.0375 1220  BrFiltUp - ok
17:06:54.0395 1220  [ BEB6470532B7461D7BB426E3FACB424F ] Browser        C:\Windows\System32\browser.dll
17:06:54.0395 1220  Browser - ok
17:06:54.0415 1220  [ B304E75CFF293029EDDF094246747113 ] Brserid        C:\Windows\system32\drivers\brserid.sys
17:06:54.0435 1220  Brserid - ok
17:06:54.0445 1220  [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm        C:\Windows\system32\drivers\brserwdm.sys
17:06:54.0465 1220  BrSerWdm - ok
17:06:54.0475 1220  [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm        C:\Windows\system32\drivers\brusbmdm.sys
17:06:54.0495 1220  BrUsbMdm - ok
17:06:54.0505 1220  [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer        C:\Windows\system32\drivers\brusbser.sys
17:06:54.0515 1220  BrUsbSer - ok
17:06:54.0525 1220  [ AD07C1EC6665B8B35741AB91200C6B68 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
17:06:54.0545 1220  BTHMODEM - ok
17:06:54.0585 1220  [ E7AAB1A32AC2EEA4C4B735B8D034C802 ] ccEvtMgr        C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
17:06:54.0585 1220  ccEvtMgr - ok
17:06:54.0595 1220  [ E7AAB1A32AC2EEA4C4B735B8D034C802 ] ccSetMgr        C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
17:06:54.0595 1220  ccSetMgr - ok
17:06:54.0615 1220  [ 6C3A437FC873C6F6A4FC620B6888CB86 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
17:06:54.0625 1220  cdfs - ok
17:06:54.0635 1220  [ 8D1866E61AF096AE8B582454F5E4D303 ] cdrom          C:\Windows\system32\DRIVERS\cdrom.sys
17:06:54.0655 1220  cdrom - ok
17:06:54.0685 1220  [ 0600E04315FE543802A379D5D23C8BE0 ] CertPropSvc    C:\Windows\System32\certprop.dll
17:06:54.0695 1220  CertPropSvc - ok
17:06:54.0715 1220  [ DA8E0AFC7BAA226C538EF53AC2F90897 ] circlass        C:\Windows\system32\drivers\circlass.sys
17:06:54.0735 1220  circlass - ok
17:06:54.0765 1220  [ 1B84FD0937D3B99AF9BA38DDFF3DAF54 ] CLFS            C:\Windows\system32\CLFS.sys
17:06:54.0795 1220  CLFS - ok
17:06:54.0855 1220  [ 234B1BC2796483E1F5C3F26649FB3388 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
17:06:54.0885 1220  clr_optimization_v2.0.50727_32 - ok
17:06:54.0955 1220  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
17:06:54.0955 1220  clr_optimization_v4.0.30319_32 - ok
17:06:54.0975 1220  [ E7AAB1A32AC2EEA4C4B735B8D034C802 ] CLTNetCnService C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
17:06:54.0975 1220  CLTNetCnService - ok
17:06:54.0995 1220  [ 45201046C776FFDAF3FC8A0029C581C8 ] cmdide          C:\Windows\system32\drivers\cmdide.sys
17:06:55.0015 1220  cmdide - ok
17:06:55.0065 1220  [ 7CE352882828C12DD7632B172253A02C ] comHost        C:\Program Files\Common Files\Symantec Shared\VAScanner\comHost.exe
17:06:55.0085 1220  comHost - ok
17:06:55.0115 1220  [ 82B8C91D327CFECF76CB58716F7D4997 ] Compbatt        C:\Windows\system32\drivers\compbatt.sys
17:06:55.0125 1220  Compbatt - ok
17:06:55.0135 1220  COMSysApp - ok
17:06:55.0155 1220  [ 2A213AE086BBEC5E937553C7D9A2B22C ] crcdisk        C:\Windows\system32\drivers\crcdisk.sys
17:06:55.0175 1220  crcdisk - ok
17:06:55.0195 1220  [ 22A7F883508176489F559EE745B5BF5D ] Crusoe          C:\Windows\system32\drivers\crusoe.sys
17:06:55.0215 1220  Crusoe - ok
17:06:55.0245 1220  [ 1C26FB097170A2A91066D1E3A24366E3 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
17:06:55.0245 1220  CryptSvc - ok
17:06:55.0305 1220  [ 7B981222A257D076885BFFB66F19B7CE ] DcomLaunch      C:\Windows\system32\rpcss.dll
17:06:55.0305 1220  DcomLaunch - ok
17:06:55.0315 1220  [ A7179DE59AE269AB70345527894CCD7C ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
17:06:55.0335 1220  DfsC - ok
17:06:55.0415 1220  [ E0D584AA76C7D845BA9F3A788260528F ] DFSR            C:\Windows\system32\DFSR.exe
17:06:55.0475 1220  DFSR - ok
17:06:55.0525 1220  [ 17210D8064EC116A3FC6B5E45E577D43 ] Dhcp            C:\Windows\System32\dhcpcsvc.dll
17:06:55.0525 1220  Dhcp - ok
17:06:55.0535 1220  [ 841AF4C4D41D3E3B2F244E976B0F7963 ] disk            C:\Windows\system32\drivers\disk.sys
17:06:55.0555 1220  disk - ok
17:06:55.0595 1220  [ EECBA1DD142BF8693C476BE8F32FE253 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
17:06:55.0595 1220  Dnscache - ok
17:06:55.0645 1220  [ 1F795D214820E496BF1124434A6DB546 ] dot3svc        C:\Windows\System32\dot3svc.dll
17:06:55.0665 1220  dot3svc - ok
17:06:55.0675 1220  [ 8EF243E3BAF1AB4F6202EDEB8890319B ] DPS            C:\Windows\system32\dps.dll
17:06:55.0675 1220  DPS - ok
17:06:55.0715 1220  [ EE472CD2C01F6F8E8AA1FA06FFEF61B6 ] drmkaud        C:\Windows\system32\drivers\drmkaud.sys
17:06:55.0725 1220  drmkaud - ok
17:06:55.0745 1220  [ F032A2F91287A0B800891C7BEF9CA7A8 ] DXGKrnl        C:\Windows\System32\drivers\dxgkrnl.sys
17:06:55.0755 1220  DXGKrnl - ok
17:06:55.0785 1220  [ F88FB26547FD2CE6D0A5AF2985892C48 ] E1G60          C:\Windows\system32\DRIVERS\E1G60I32.sys
17:06:55.0805 1220  E1G60 - ok
17:06:55.0805 1220  EagleXNt - ok
17:06:55.0835 1220  [ 90A0A875642E18618010645311B4E89E ] EapHost        C:\Windows\System32\eapsvc.dll
17:06:55.0835 1220  EapHost - ok
17:06:55.0855 1220  [ 0EFC7531B936EE57FDB4E837664C509F ] Ecache          C:\Windows\system32\drivers\ecache.sys
17:06:55.0885 1220  Ecache - ok
17:06:55.0915 1220  [ FB069D8270853023F6E315745B5BBAD4 ] eeCtrl          C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys
17:06:55.0955 1220  eeCtrl - ok
17:06:56.0005 1220  [ B4580122B0A7B263B6EE9ACBA69C8013 ] ehRecvr        C:\Windows\ehome\ehRecvr.exe
17:06:56.0035 1220  ehRecvr - ok
17:06:56.0045 1220  [ AD1870C8E5D6DD340C829E6074BF3C3F ] ehSched        C:\Windows\ehome\ehsched.exe
17:06:56.0075 1220  ehSched - ok
17:06:56.0085 1220  [ C27C4EE8926E74AA72EFCAB24C5242C3 ] ehstart        C:\Windows\ehome\ehstart.dll
17:06:56.0085 1220  ehstart - ok
17:06:56.0115 1220  [ E8F3F21A71720C84BCF423B80028359F ] elxstor        C:\Windows\system32\drivers\elxstor.sys
17:06:56.0135 1220  elxstor - ok
17:06:56.0185 1220  [ 3226FDA08988526E819E364E8CCE4CEE ] EMDMgmt        C:\Windows\system32\emdmgmt.dll
17:06:56.0195 1220  EMDMgmt - ok
17:06:56.0245 1220  [ 7B4971C3D43525175A4EA0D143E0412E ] EventSystem    C:\Windows\system32\es.dll
17:06:56.0245 1220  EventSystem - ok
17:06:56.0265 1220  [ 84A317CB0B3954D3768CDCD018DBF670 ] fastfat        C:\Windows\system32\drivers\fastfat.sys
17:06:56.0285 1220  fastfat - ok
17:06:56.0305 1220  [ 63BDADA84951B9C03E641800E176898A ] fdc            C:\Windows\system32\DRIVERS\fdc.sys
17:06:56.0325 1220  fdc - ok
17:06:56.0325 1220  [ E43BCE1A77D6FD4ED5F8E0482B9E7DF1 ] fdPHost        C:\Windows\system32\fdPHost.dll
17:06:56.0335 1220  fdPHost - ok
17:06:56.0345 1220  [ 89ED56DCE8E47AF40892778A5BD31FD2 ] FDResPub        C:\Windows\system32\fdrespub.dll
17:06:56.0345 1220  FDResPub - ok
17:06:56.0375 1220  [ 65773D6115C037FFD7EF8280AE85EB9D ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
17:06:56.0395 1220  FileInfo - ok
17:06:56.0415 1220  [ C226DD0DE060745F3E042F58DCF78402 ] Filetrace      C:\Windows\system32\drivers\filetrace.sys
17:06:56.0425 1220  Filetrace - ok
17:06:56.0455 1220  [ 6603957EFF5EC62D25075EA8AC27DE68 ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
17:06:56.0465 1220  flpydisk - ok
17:06:56.0485 1220  [ A6A8DA7AE4D53394AB22AC3AB6D3F5D3 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
17:06:56.0505 1220  FltMgr - ok
17:06:56.0555 1220  [ 993883524AA9CF1C90E1545411A9AC9C ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
17:06:56.0565 1220  FontCache3.0.0.0 - ok
17:06:56.0595 1220  [ 66A078591208BAA210C7634B11EB392C ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
17:06:56.0605 1220  Fs_Rec - ok
17:06:56.0635 1220  [ FF12FA487265DA2AC7DE4BE53F72FF1A ] FWLANUSB        C:\Windows\system32\DRIVERS\fwlanusb.sys
17:06:56.0655 1220  FWLANUSB - ok
17:06:56.0685 1220  [ 4E1CD0A45C50A8882616CAE5BF82F3C5 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
17:06:56.0705 1220  gagp30kx - ok
17:06:56.0735 1220  [ BCF6589C42D8F6A20F33EF133FFE0524 ] gpsvc          C:\Windows\System32\gpsvc.dll
17:06:56.0745 1220  gpsvc - ok
17:06:56.0795 1220  [ CB04C744BE0A61B1D648FAED182C3B59 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
17:06:56.0815 1220  HdAudAddService - ok
17:06:56.0835 1220  [ 5FD053F305B77EBE97F284B20D89DC1C ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
17:06:56.0835 1220  HDAudBus - ok
17:06:56.0855 1220  [ 1338520E78D90154ED6BE8F84DE5FCEB ] HidBth          C:\Windows\system32\drivers\hidbth.sys
17:06:56.0875 1220  HidBth - ok
17:06:56.0905 1220  [ FF3160C3A2445128C5A6D9B076DA519E ] HidIr          C:\Windows\system32\drivers\hidir.sys
17:06:56.0915 1220  HidIr - ok
17:06:56.0935 1220  [ 8FA640195279ACE21BEA91396A0054FC ] hidserv        C:\Windows\system32\hidserv.dll
17:06:56.0935 1220  hidserv - ok
17:06:56.0945 1220  [ 3C64042B95E583B366BA4E5D2450235E ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
17:06:56.0955 1220  HidUsb - ok
17:06:56.0975 1220  [ D40AA05E29BF6ED29B139F044B461E9B ] hkmsvc          C:\Windows\system32\kmsvc.dll
17:06:56.0975 1220  hkmsvc - ok
17:06:56.0995 1220  [ DF353B401001246853763C4B7AAA6F50 ] HpCISSs        C:\Windows\system32\drivers\hpcisss.sys
17:06:57.0015 1220  HpCISSs - ok
17:06:57.0055 1220  [ EA24FE637D974A8A31BC650F478E3533 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
17:06:57.0085 1220  HTTP - ok
17:06:57.0105 1220  [ 324C2152FF2C61ABAE92D09F3CCA4D63 ] i2omp          C:\Windows\system32\drivers\i2omp.sys
17:06:57.0125 1220  i2omp - ok
17:06:57.0185 1220  [ 1C9EE072BAA3ABB460B91D7EE9152660 ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
17:06:57.0205 1220  i8042prt - ok
17:06:57.0225 1220  [ C957BF4B5D80B46C5017BF0101E6C906 ] iaStorV        C:\Windows\system32\drivers\iastorv.sys
17:06:57.0245 1220  iaStorV - ok
17:06:57.0295 1220  [ 6F95324909B502E2651442C1548AB12F ] IDriverT        C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
17:06:57.0315 1220  IDriverT - ok
17:06:57.0375 1220  [ E7CC3AEAED9893A88876744CD439F76C ] idsvc          C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
17:06:57.0425 1220  idsvc - ok
17:06:57.0505 1220  [ 78432A57D085328CF8BAF125985425D2 ] IDSvix86        C:\PROGRA~2\Symantec\DEFINI~1\SymcData\idsdefs\20061025.029\IDSvix86.sys
17:06:57.0525 1220  IDSvix86 - ok
17:06:57.0545 1220  [ 2D077BF86E843F901D8DB709C95B49A5 ] iirsp          C:\Windows\system32\drivers\iirsp.sys
17:06:57.0555 1220  iirsp - ok
17:06:57.0585 1220  [ 35662FE4D8622F667AA5A5568F7F1B40 ] IKEEXT          C:\Windows\System32\ikeext.dll
17:06:57.0595 1220  IKEEXT - ok
17:06:57.0655 1220  [ A47B2875680AD67B35C6150BD0203056 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
17:06:57.0735 1220  IntcAzAudAddService - ok
17:06:57.0755 1220  [ 97469037714070E45194ED318D636401 ] intelide        C:\Windows\system32\drivers\intelide.sys
17:06:57.0775 1220  intelide - ok
17:06:57.0805 1220  [ CE44CC04262F28216DD4341E9E36A16F ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
17:06:57.0815 1220  intelppm - ok
17:06:57.0835 1220  [ 88CF5281ED9880D74DC9011CF8B5262D ] IPBusEnum      C:\Windows\system32\ipbusenum.dll
17:06:57.0835 1220  IPBusEnum - ok
17:06:57.0855 1220  [ 880C6F86CC3F551B8FEA2C11141268C0 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
17:06:57.0875 1220  IpFilterDriver - ok
17:06:57.0915 1220  [ ECC9AD72CFC4AB41CF6A9BCC11F9FEF6 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
17:06:57.0915 1220  iphlpsvc - ok
17:06:57.0925 1220  IpInIp - ok
17:06:57.0945 1220  [ 40F34F8ABA2A015D780E4B09138B6C17 ] IPMIDRV        C:\Windows\system32\drivers\ipmidrv.sys
17:06:57.0965 1220  IPMIDRV - ok
17:06:57.0995 1220  [ 10077C35845101548037DF04FD1A420B ] IPNAT          C:\Windows\system32\DRIVERS\ipnat.sys
17:06:58.0035 1220  IPNAT - ok
17:06:58.0055 1220  [ A82F328F4792304184642D6D397BB1E3 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
17:06:58.0075 1220  IRENUM - ok
17:06:58.0085 1220  [ 350FCA7E73CF65BCEF43FAE1E4E91293 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
17:06:58.0115 1220  isapnp - ok
17:06:58.0135 1220  [ 4DCA456D4D5723F8FA9C6760D240B0DF ] iScsiPrt        C:\Windows\system32\DRIVERS\msiscsi.sys
17:06:58.0135 1220  iScsiPrt - ok
17:06:58.0185 1220  [ 36474FDE02F8422B8B1A52EAD9894DBC ] ISPwdSvc        C:\Program Files\Norton Internet Security\isPwdSvc.exe
17:06:58.0205 1220  ISPwdSvc - ok
17:06:58.0225 1220  [ BCED60D16156E428F8DF8CF27B0DF150 ] iteatapi        C:\Windows\system32\drivers\iteatapi.sys
17:06:58.0235 1220  iteatapi - ok
17:06:58.0275 1220  [ 06FA654504A498C30ADCA8BEC4E87E7E ] iteraid        C:\Windows\system32\drivers\iteraid.sys
17:06:58.0285 1220  iteraid - ok
17:06:58.0325 1220  [ B076B2AB806B3F696DAB21375389101C ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
17:06:58.0335 1220  kbdclass - ok
17:06:58.0385 1220  [ ED61DBC6603F612B7338283EDBACBC4B ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
17:06:58.0395 1220  kbdhid - ok
17:06:58.0435 1220  [ C731B1FE449D4E9CEA358C9D55B69BE9 ] KeyIso          C:\Windows\system32\lsass.exe
17:06:58.0445 1220  KeyIso - ok
17:06:58.0475 1220  [ 0A829977B078DEA11641FC2AF87CEADE ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
17:06:58.0525 1220  KSecDD - ok
17:06:58.0545 1220  [ 45C537FE5DDE9A0146AEFF76E615737D ] KtmRm          C:\Windows\system32\msdtckrm.dll
17:06:58.0555 1220  KtmRm - ok
17:06:58.0575 1220  [ 53D1482FC1AA36AC015A85E6CF2146BD ] LanmanServer    C:\Windows\system32\srvsvc.dll
17:06:58.0575 1220  LanmanServer - ok
17:06:58.0615 1220  [ 435F0F6DC87A4B5DA78F1FA309884189 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
17:06:58.0625 1220  LanmanWorkstation - ok
17:06:58.0695 1220  [ 3C7FCBBC35E0A52CE9B12E9CC4F5B991 ] LiveUpdate      C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
17:06:58.0795 1220  LiveUpdate - ok
17:06:58.0825 1220  [ FD015B4F95DAA2B712F0E372A116FBAD ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
17:06:58.0845 1220  lltdio - ok
17:06:58.0855 1220  [ 7450DBCF754391DD6363FFFD5EF0E789 ] lltdsvc        C:\Windows\System32\lltdsvc.dll
17:06:58.0885 1220  lltdsvc - ok
17:06:58.0895 1220  [ 35D40113E4A5B961B6CE5C5857702518 ] lmhosts        C:\Windows\System32\lmhsvc.dll
17:06:58.0905 1220  lmhosts - ok
17:06:58.0935 1220  [ A2262FB9F28935E862B4DB46438C80D2 ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
17:06:58.0955 1220  LSI_FC - ok
17:06:58.0965 1220  [ 30D73327D390F72A62F32C103DAF1D6D ] LSI_SAS        C:\Windows\system32\drivers\lsi_sas.sys
17:06:58.0985 1220  LSI_SAS - ok
17:06:58.0995 1220  [ E1E36FEFD45849A95F1AB81DE0159FE3 ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
17:06:59.0015 1220  LSI_SCSI - ok
17:06:59.0045 1220  [ 42885BB44B6E065B8575A8DD6C430C52 ] luafv          C:\Windows\system32\drivers\luafv.sys
17:06:59.0065 1220  luafv - ok
17:06:59.0135 1220  [ 8113133EC42DD6C566908008CE913EDD ] LVcKap          C:\Windows\system32\DRIVERS\LVcKap.sys
17:06:59.0205 1220  LVcKap - ok
17:06:59.0235 1220  [ 9E41266C68C11D7101A2D18CD1F7553E ] LVCOMSer        C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
17:06:59.0235 1220  LVCOMSer - ok
17:06:59.0295 1220  [ 0DD5B8AF4917A2821047450195C511B3 ] LVMVDrv        C:\Windows\system32\DRIVERS\LVMVDrv.sys
17:06:59.0385 1220  LVMVDrv - ok
17:06:59.0405 1220  [ 406B1D186F75B4B4832D6237859E1B00 ] LVPr2Mon        C:\Windows\system32\DRIVERS\LVPr2Mon.sys
17:06:59.0415 1220  LVPr2Mon - ok
17:06:59.0435 1220  [ 85C2E84BC1224C75A20B5560D5A15DB9 ] LVPrcSrv        C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
17:06:59.0435 1220  LVPrcSrv - ok
17:06:59.0495 1220  [ 656180E9C0C5199520972426C44BC2F0 ] LVSrvLauncher  C:\Program Files\Common Files\LogiShrd\SrvLnch\SrvLnch.exe
17:06:59.0525 1220  LVSrvLauncher - ok
17:06:59.0575 1220  [ BE5E104BE263921D6842C555DB6A5C23 ] LVUSBSta        C:\Windows\system32\drivers\LVUSBSta.sys
17:06:59.0595 1220  LVUSBSta - ok
17:06:59.0625 1220  [ 500D089CE760D83DA2B6CBA681AA9949 ] MBAMProtector  C:\Windows\system32\drivers\mbam.sys
17:06:59.0635 1220  MBAMProtector - ok
17:06:59.0695 1220  [ 85B16A92B117A5A800032ECD904B86DB ] MBAMScheduler  C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
17:06:59.0695 1220  MBAMScheduler - ok
17:06:59.0715 1220  [ 20E2469DB709FC675E655CEAA11BE312 ] MBAMService    C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
17:06:59.0725 1220  MBAMService - ok
17:06:59.0765 1220  [ E93C1AD58E88A0846EAEE10671C2A8F3 ] Mcx2Svc        C:\Windows\system32\Mcx2Svc.dll
17:06:59.0775 1220  Mcx2Svc - ok
17:06:59.0835 1220  [ D153B14FC6598EAE8422A2037553ADCE ] megasas        C:\Windows\system32\drivers\megasas.sys
17:06:59.0845 1220  megasas - ok
17:06:59.0875 1220  [ 9DFA3A459AF0954AA85B4F7622AD87BB ] MMCSS          C:\Windows\system32\mmcss.dll
17:06:59.0875 1220  MMCSS - ok
17:06:59.0905 1220  [ 21755967298A46FB6ADFEC9DB6012211 ] Modem          C:\Windows\system32\drivers\modem.sys
17:06:59.0915 1220  Modem - ok
17:06:59.0945 1220  [ EC839BA91E45CCE6EADAFC418FFF8206 ] monitor        C:\Windows\system32\DRIVERS\monitor.sys
17:06:59.0945 1220  monitor - ok
17:06:59.0985 1220  [ 5FBA13C1A1841B0885D316ED3589489D ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
17:07:00.0005 1220  mouclass - ok
17:07:00.0015 1220  [ B569B5C5D3BDE545DF3A6AF512CCCDBA ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
17:07:00.0035 1220  mouhid - ok
17:07:00.0045 1220  [ 01F1E5A3E4877C931CBB31613FEC16A6 ] MountMgr        C:\Windows\system32\drivers\mountmgr.sys
17:07:00.0065 1220  MountMgr - ok
17:07:00.0115 1220  [ 8BE15F71DE6FF33FC56DCDE7B2B9EFE8 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
17:07:00.0145 1220  MozillaMaintenance - ok
17:07:00.0165 1220  [ 583A41F26278D9E0EA548163D6139397 ] mpio            C:\Windows\system32\drivers\mpio.sys
17:07:00.0195 1220  mpio - ok
17:07:00.0225 1220  [ 6E7A7F0C1193EE5648443FE2D4B789EC ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
17:07:00.0235 1220  mpsdrv - ok
17:07:00.0255 1220  [ 563ED845885C6A7C09A7715D8BD0585C ] MpsSvc          C:\Windows\system32\mpssvc.dll
17:07:00.0265 1220  MpsSvc - ok
17:07:00.0285 1220  [ 4FBBB70D30FD20EC51F80061703B001E ] Mraid35x        C:\Windows\system32\drivers\mraid35x.sys
17:07:00.0305 1220  Mraid35x - ok
17:07:00.0345 1220  [ 1D8828B98EE309D65E006F0829E280E5 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
17:07:00.0365 1220  MRxDAV - ok
17:07:00.0375 1220  [ 8AF705CE1BB907932157FAB821170F27 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
17:07:00.0395 1220  mrxsmb - ok
17:07:00.0425 1220  [ 47E13AB23371BE3279EEF22BBFA2C1BE ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
17:07:00.0455 1220  mrxsmb10 - ok
17:07:00.0465 1220  [ 90B3FC7BD6B3D7EE7635DEBBA2187F66 ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
17:07:00.0475 1220  mrxsmb20 - ok
17:07:00.0495 1220  [ 742AED7939E734C36B7E8D6228CE26B7 ] msahci          C:\Windows\system32\drivers\msahci.sys
17:07:00.0515 1220  msahci - ok
17:07:00.0535 1220  [ 3FC82A2AE4CC149165A94699183D3028 ] msdsm          C:\Windows\system32\drivers\msdsm.sys
17:07:00.0555 1220  msdsm - ok
17:07:00.0585 1220  [ BC64A92D821EFEA8BAB8E8CAF1B668BC ] MSDTC          C:\Windows\System32\msdtc.exe
17:07:00.0605 1220  MSDTC - ok
17:07:00.0625 1220  [ 729EAFEFD4E7417165F353A18DBE947D ] Msfs            C:\Windows\system32\drivers\Msfs.sys
17:07:00.0635 1220  Msfs - ok
17:07:00.0655 1220  [ 5F454A16A5146CD91A176D70F0CFA3EC ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
17:07:00.0665 1220  msisadrv - ok
17:07:00.0695 1220  [ 8ACF956D9154E893E789881430C12632 ] MSiSCSI        C:\Windows\system32\iscsiexe.dll
17:07:00.0715 1220  MSiSCSI - ok
17:07:00.0715 1220  msiserver - ok
17:07:00.0745 1220  [ 892CEDEFA7E0FFE7BE8DA651B651D047 ] MSKSSRV        C:\Windows\system32\drivers\MSKSSRV.sys
17:07:00.0755 1220  MSKSSRV - ok
17:07:00.0775 1220  [ AE2CB1DA69B2676B4CEE2A501AF5871C ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
17:07:00.0785 1220  MSPCLOCK - ok
17:07:00.0795 1220  [ F910DA84FA90C44A3ADDB7CD874463FD ] MSPQM          C:\Windows\system32\drivers\MSPQM.sys
17:07:00.0805 1220  MSPQM - ok
17:07:00.0825 1220  [ 84571C0AE07647BA38D493F5F0015DF7 ] MsRPC          C:\Windows\system32\drivers\MsRPC.sys
17:07:00.0845 1220  MsRPC - ok
17:07:00.0865 1220  [ 4385C80EDE885E25492D408CAD91BD6F ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
17:07:00.0865 1220  mssmbios - ok
17:07:00.0875 1220  [ C826DD1373F38AFD9CA46EC3C436A14E ] MSTEE          C:\Windows\system32\drivers\MSTEE.sys
17:07:00.0885 1220  MSTEE - ok
17:07:00.0905 1220  [ FA7AA70050CF5E2D15DE00941E5665E5 ] Mup            C:\Windows\system32\Drivers\mup.sys
17:07:00.0925 1220  Mup - ok
17:07:00.0945 1220  [ 1CDBB5D002FE2BC5300AA20550D8A52E ] napagent        C:\Windows\system32\qagentRT.dll
17:07:00.0955 1220  napagent - ok
17:07:00.0975 1220  [ 497DE786240303EE67AB01F5690C24C2 ] NativeWifiP    C:\Windows\system32\DRIVERS\nwifi.sys
17:07:00.0995 1220  NativeWifiP - ok
17:07:01.0035 1220  [ EF04748A7A7266EDBDBE02B161A0685D ] NAVENG          C:\PROGRA~2\Symantec\DEFINI~1\VIRUSD~1\20061106.064\NAVENG.SYS
17:07:01.0055 1220  NAVENG - ok
17:07:01.0085 1220  [ 09F3BFDC47718459B42D696CB671F65F ] NAVEX15        C:\PROGRA~2\Symantec\DEFINI~1\VIRUSD~1\20061106.064\NAVEX15.SYS
17:07:01.0115 1220  NAVEX15 - ok
17:07:01.0145 1220  [ 227C11E1E7CF6EF8AFB2A238D209760C ] NDIS            C:\Windows\system32\drivers\ndis.sys
17:07:01.0155 1220  NDIS - ok
17:07:01.0155 1220  [ 7584F1794B23B83D63CC124A8C56D103 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
17:07:01.0175 1220  NdisTapi - ok
17:07:01.0185 1220  [ 5DE5EE546BF40838EBE0E01CB629DF64 ] Ndisuio        C:\Windows\system32\DRIVERS\ndisuio.sys
17:07:01.0195 1220  Ndisuio - ok
17:07:01.0215 1220  [ 397402ADCBB8946223A1950101F6CD94 ] NdisWan        C:\Windows\system32\DRIVERS\ndiswan.sys
17:07:01.0235 1220  NdisWan - ok
17:07:01.0245 1220  [ 874C12E3AD1431CABC854697D302C563 ] NDProxy        C:\Windows\system32\drivers\NDProxy.sys
17:07:01.0255 1220  NDProxy - ok
17:07:01.0265 1220  [ 356DBB9F98E8DC1028DD3092FCEEB877 ] NetBIOS        C:\Windows\system32\DRIVERS\netbios.sys
17:07:01.0285 1220  NetBIOS - ok
17:07:01.0315 1220  [ E3A168912E7EEFC3BD3B814720D68B41 ] netbt          C:\Windows\system32\DRIVERS\netbt.sys
17:07:01.0335 1220  netbt - ok
17:07:01.0345 1220  [ C731B1FE449D4E9CEA358C9D55B69BE9 ] Netlogon        C:\Windows\system32\lsass.exe
17:07:01.0345 1220  Netlogon - ok
17:07:01.0385 1220  [ 90A4DAE28B94497F83BEA0F2A3B77092 ] Netman          C:\Windows\System32\netman.dll
17:07:01.0385 1220  Netman - ok
17:07:01.0405 1220  [ 7C5C3D9CEEE838856B828AB6F98A2857 ] netprofm        C:\Windows\System32\netprofm.dll
17:07:01.0415 1220  netprofm - ok
17:07:01.0455 1220  [ 91D44AA2A61006136DA32118A179BF12 ] netr73          C:\Windows\system32\DRIVERS\netr73.sys
17:07:01.0475 1220  netr73 - ok
17:07:01.0515 1220  [ F9102685F97F9BA85F4A70AFCF722CFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
17:07:01.0545 1220  NetTcpPortSharing - ok
17:07:01.0555 1220  [ 2E7FB731D4790A1BC6270ACCEFACB36E ] nfrd960        C:\Windows\system32\drivers\nfrd960.sys
17:07:01.0575 1220  nfrd960 - ok
17:07:01.0595 1220  [ C424117A562F2DE37A42266894C79AEB ] NlaSvc          C:\Windows\System32\nlasvc.dll
17:07:01.0595 1220  NlaSvc - ok
17:07:01.0625 1220  [ 4F9832BEB9FAFD8CEB0E541F1323B26E ] Npfs            C:\Windows\system32\drivers\Npfs.sys
17:07:01.0635 1220  Npfs - ok
17:07:01.0645 1220  [ 23B8201A363DE0E649FC75EE9874DEE2 ] nsi            C:\Windows\system32\nsisvc.dll
17:07:01.0645 1220  nsi - ok
17:07:01.0665 1220  [ B488DFEC274DE1FC9D653870EF2587BE ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
17:07:01.0675 1220  nsiproxy - ok
17:07:01.0705 1220  [ 3F379380A4A2637F559444E338CF1B51 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
17:07:01.0745 1220  Ntfs - ok
17:07:01.0755 1220  [ E875C093AEC0C978A90F30C9E0DFBB72 ] ntrigdigi      C:\Windows\system32\drivers\ntrigdigi.sys
17:07:01.0775 1220  ntrigdigi - ok
17:07:01.0785 1220  [ EC5EFB3C60F1B624648344A328BCE596 ] Null            C:\Windows\system32\drivers\Null.sys
17:07:01.0795 1220  Null - ok
17:07:01.0835 1220  [ A1108084B0D2FC43DCC401735770E2A3 ] NVENETFD        C:\Windows\system32\DRIVERS\nvmfdx32.sys
17:07:01.0875 1220  NVENETFD - ok
17:07:02.0085 1220  [ 66B4BF606FCC7F0622D4A21BB1461089 ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys
17:07:02.0235 1220  nvlddmkm - ok
17:07:02.0255 1220  [ E69E946F80C1C31C53003BFBF50CBB7C ] nvraid          C:\Windows\system32\drivers\nvraid.sys
17:07:02.0275 1220  nvraid - ok
17:07:02.0285 1220  [ 9E0BA19A28C498A6D323D065DB76DFFC ] nvstor          C:\Windows\system32\drivers\nvstor.sys
17:07:02.0305 1220  nvstor - ok
17:07:02.0355 1220  [ D122F7C5F79C68868F5DC28CEFEB2ECF ] nvsvc          C:\Windows\system32\nvvsvc.exe
17:07:02.0375 1220  nvsvc - ok
17:07:02.0395 1220  [ 07C186427EB8FCC3D8D7927187F260F7 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
17:07:02.0415 1220  nv_agp - ok
17:07:02.0425 1220  NwlnkFlt - ok
17:07:02.0435 1220  NwlnkFwd - ok
17:07:02.0465 1220  [ BE32DA025A0BE1878F0EE8D6D9386CD5 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
17:07:02.0485 1220  ohci1394 - ok
17:07:02.0525 1220  [ 016D01D3B8FB976A193C7434BED8DCCF ] p2pimsvc        C:\Windows\system32\p2psvc.dll
17:07:02.0535 1220  p2pimsvc - ok
17:07:02.0555 1220  [ 016D01D3B8FB976A193C7434BED8DCCF ] p2psvc          C:\Windows\system32\p2psvc.dll
17:07:02.0565 1220  p2psvc - ok
17:07:02.0575 1220  [ 0FA9B5055484649D63C303FE404E5F4D ] Parport        C:\Windows\system32\DRIVERS\parport.sys
17:07:02.0595 1220  Parport - ok
17:07:02.0605 1220  [ 555A5B2C8022983BC7467BC925B222EE ] partmgr        C:\Windows\system32\drivers\partmgr.sys
17:07:02.0625 1220  partmgr - ok
17:07:02.0645 1220  [ 4F9A6A8A31413180D0FCB279AD5D8112 ] Parvdm          C:\Windows\system32\DRIVERS\parvdm.sys
17:07:02.0655 1220  Parvdm - ok
17:07:02.0665 1220  [ D8C5C215C932233A4F1D7F368F4E4E65 ] PcaSvc          C:\Windows\System32\pcasvc.dll
17:07:02.0665 1220  PcaSvc - ok
17:07:02.0685 1220  [ 1085D75657807E0E8B32F9E19A1647C3 ] pci            C:\Windows\system32\drivers\pci.sys
17:07:02.0695 1220  pci - ok
17:07:02.0715 1220  [ 3B1901E401473E03EB8C874271E50C26 ] pciide          C:\Windows\system32\drivers\pciide.sys
17:07:02.0735 1220  pciide - ok
17:07:02.0755 1220  [ E6F3FB1B86AA519E7698AD05E58B04E5 ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
17:07:02.0785 1220  pcmcia - ok
17:07:02.0825 1220  [ 6349F6ED9C623B44B52EA3C63C831A92 ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
17:07:02.0875 1220  PEAUTH - ok
17:07:02.0925 1220  [ D2D2FA02B722336960EEAE0AE7107891 ] PID_0928        C:\Windows\system32\DRIVERS\LV561AV.SYS
17:07:02.0965 1220  PID_0928 - ok
17:07:03.0015 1220  [ CD05A38D166BEADE18030BAFC0C0A939 ] pla            C:\Windows\system32\pla.dll
17:07:03.0025 1220  pla - ok
17:07:03.0075 1220  [ 747BB4C31F3B6E8D1B5ED0AD61518CB5 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
17:07:03.0075 1220  PlugPlay - ok
17:07:03.0105 1220  [ 016D01D3B8FB976A193C7434BED8DCCF ] PNRPAutoReg    C:\Windows\system32\p2psvc.dll
17:07:03.0115 1220  PNRPAutoReg - ok
17:07:03.0175 1220  [ 016D01D3B8FB976A193C7434BED8DCCF ] PNRPsvc        C:\Windows\system32\p2psvc.dll
17:07:03.0175 1220  PNRPsvc - ok
17:07:03.0255 1220  [ 04DF0452FBEDEDF9297FD2E5440CB3C9 ] Point32        C:\Windows\system32\DRIVERS\point32k.sys
17:07:03.0285 1220  Point32 - ok
17:07:03.0335 1220  [ 5EBDEC613BD377CE9A85382BE5C6B83B ] PolicyAgent    C:\Windows\System32\ipsecsvc.dll
17:07:03.0345 1220  PolicyAgent - ok
17:07:03.0375 1220  [ 6C359AC71D7B550A0D41F9DB4563CE05 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
17:07:03.0405 1220  PptpMiniport - ok
17:07:03.0435 1220  [ 0E3CEF5D28B40CF273281D620C50700A ] Processor      C:\Windows\system32\drivers\processr.sys
17:07:03.0445 1220  Processor - ok
17:07:03.0485 1220  [ 213112E152E68F0E4705E36F052A2880 ] ProfSvc        C:\Windows\system32\profsvc.dll
17:07:03.0485 1220  ProfSvc - ok
17:07:03.0495 1220  [ C731B1FE449D4E9CEA358C9D55B69BE9 ] ProtectedStorage C:\Windows\system32\lsass.exe
17:07:03.0495 1220  ProtectedStorage - ok
17:07:03.0515 1220  [ B74EDF14453C9987E99E66535047EBEE ] PSched          C:\Windows\system32\DRIVERS\pacer.sys
17:07:03.0535 1220  PSched - ok
17:07:03.0585 1220  [ CCDAC889326317792480C0A67156A1EC ] ql2300          C:\Windows\system32\drivers\ql2300.sys
17:07:03.0615 1220  ql2300 - ok
17:07:03.0635 1220  [ 81A7E5C076E59995D54BC1ED3A16E60B ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
17:07:03.0655 1220  ql40xx - ok
17:07:03.0675 1220  [ CA61BDFD3713A7CE75F2812AFC431594 ] QWAVE          C:\Windows\system32\qwave.dll
17:07:03.0675 1220  QWAVE - ok
17:07:03.0695 1220  [ D2B3E2B7426DC23E185FBC73C8936C12 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
17:07:03.0705 1220  QWAVEdrv - ok
17:07:03.0775 1220  [ A6201FD4D96F7FA7DB3AD609BE60FF5C ] R300            C:\Windows\system32\DRIVERS\atikmdag.sys
17:07:03.0835 1220  R300 - ok
17:07:03.0855 1220  [ BD7B30F55B3649506DD8B3D38F571D2A ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
17:07:03.0875 1220  RasAcd - ok
17:07:03.0885 1220  [ F14F4AAB9F54D099FE99192BDB100AC9 ] RasAuto        C:\Windows\System32\rasauto.dll
17:07:03.0905 1220  RasAuto - ok
17:07:03.0915 1220  [ 88587DD843E2059848995B407B67F6CF ] Rasl2tp        C:\Windows\system32\DRIVERS\rasl2tp.sys
17:07:03.0935 1220  Rasl2tp - ok
17:07:03.0945 1220  [ 11D65E29BC9D1E4114D18FE68194394C ] RasMan          C:\Windows\System32\rasmans.dll
17:07:03.0945 1220  RasMan - ok
17:07:03.0955 1220  [ CCF4E9C6CBBAC81437F88CB2AE0B6C96 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
17:07:03.0965 1220  RasPppoe - ok
17:07:03.0985 1220  [ 54129C5D9581BBEC8BD1EBD3BA813F47 ] rdbss          C:\Windows\system32\DRIVERS\rdbss.sys
17:07:04.0005 1220  rdbss - ok
17:07:04.0015 1220  [ 794585276B5D7FCA9F3FC15543F9F0B9 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
17:07:04.0025 1220  RDPCDD - ok
17:07:04.0045 1220  [ E8BD98D46F2ED77132BA927FCCB47D8B ] rdpdr          C:\Windows\system32\drivers\rdpdr.sys
17:07:04.0065 1220  rdpdr - ok
17:07:04.0075 1220  [ 980B56E2E273E19D3A9D72D5C420F008 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
17:07:04.0085 1220  RDPENCDD - ok
17:07:04.0115 1220  [ 8830E790A74A96605FABA74F9665BB3C ] RDPWD          C:\Windows\system32\drivers\RDPWD.sys
17:07:04.0135 1220  RDPWD - ok
17:07:04.0175 1220  [ 6C1A43C589EE8011A1EBFD51C01B77CE ] RemoteAccess    C:\Windows\System32\mprdim.dll
17:07:04.0175 1220  RemoteAccess - ok
17:07:04.0205 1220  [ 9A043808667C8C1893DA7275AF373F0E ] RemoteRegistry  C:\Windows\system32\regsvc.dll
17:07:04.0205 1220  RemoteRegistry - ok
17:07:04.0215 1220  [ 5123F83CBC4349D065534EEB6BBDC42B ] RpcLocator      C:\Windows\system32\locator.exe
17:07:04.0225 1220  RpcLocator - ok
17:07:04.0245 1220  [ 7B981222A257D076885BFFB66F19B7CE ] RpcSs          C:\Windows\system32\rpcss.dll
17:07:04.0255 1220  RpcSs - ok
17:07:04.0275 1220  [ 97E939D2128FEC5D5A3E6E79B290A2F4 ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
17:07:04.0295 1220  rspndr - ok
17:07:04.0315 1220  [ 959EF612D2CCFDB6D9E443F8E3655013 ] RTL8023xp      C:\Windows\system32\DRIVERS\Rtnicxp.sys
17:07:04.0335 1220  RTL8023xp - ok
17:07:04.0345 1220  [ C731B1FE449D4E9CEA358C9D55B69BE9 ] SamSs          C:\Windows\system32\lsass.exe
17:07:04.0345 1220  SamSs - ok
17:07:04.0365 1220  [ 3CE8F073A557E172B330109436984E30 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
17:07:04.0385 1220  sbp2port - ok
17:07:04.0425 1220  [ 565B4B9E5AD2F2F18A4F8AAFA6C06BBB ] SCardSvr        C:\Windows\System32\SCardSvr.dll
17:07:04.0425 1220  SCardSvr - ok
17:07:04.0475 1220  [ 886CEC884B5BE29AB9828B8AB46B11F7 ] Schedule        C:\Windows\system32\schedsvc.dll
17:07:04.0475 1220  Schedule - ok
17:07:04.0495 1220  [ 0600E04315FE543802A379D5D23C8BE0 ] SCPolicySvc    C:\Windows\System32\certprop.dll
17:07:04.0495 1220  SCPolicySvc - ok
17:07:04.0505 1220  [ F7B6BF02240D0A764ADF8C8966735552 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
17:07:04.0525 1220  SDRSVC - ok
17:07:04.0545 1220  [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
17:07:04.0555 1220  secdrv - ok
17:07:04.0575 1220  [ 8388C4133DDBE62AD7BC3EC9F14271ED ] seclogon        C:\Windows\system32\seclogon.dll
17:07:04.0575 1220  seclogon - ok
17:07:04.0595 1220  [ 34350AE2C1D33D21C7305F861BD8DAD8 ] SENS            C:\Windows\System32\sens.dll
17:07:04.0595 1220  SENS - ok
17:07:04.0615 1220  [ 68E44E331D46F0FB38F0863A84CD1A31 ] Serenum        C:\Windows\system32\DRIVERS\serenum.sys
17:07:04.0625 1220  Serenum - ok
17:07:04.0645 1220  [ C70D69A918B178D3C3B06339B40C2E1B ] Serial          C:\Windows\system32\DRIVERS\serial.sys
17:07:04.0665 1220  Serial - ok
17:07:04.0675 1220  [ 450ACCD77EC5CEA720C1CDB9E26B953B ] sermouse        C:\Windows\system32\drivers\sermouse.sys
17:07:04.0685 1220  sermouse - ok
17:07:04.0725 1220  [ 78878235DA4DF0D116E86837A0A21DF8 ] SessionEnv      C:\Windows\system32\sessenv.dll
17:07:04.0735 1220  SessionEnv - ok
17:07:04.0755 1220  [ 103B79418DA647736EE95645F305F68A ] sffdisk        C:\Windows\system32\drivers\sffdisk.sys
17:07:04.0765 1220  sffdisk - ok
17:07:04.0785 1220  [ 8FD08A310645FE872EEEC6E08C6BF3EE ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
17:07:04.0795 1220  sffp_mmc - ok
17:07:04.0815 1220  [ 9CFA05FCFCB7124E69CFC812B72F9614 ] sffp_sd        C:\Windows\system32\drivers\sffp_sd.sys
17:07:04.0825 1220  sffp_sd - ok
17:07:04.0835 1220  [ 46ED8E91793B2E6F848015445A0AC188 ] sfloppy        C:\Windows\system32\drivers\sfloppy.sys
17:07:04.0855 1220  sfloppy - ok
17:07:04.0875 1220  [ 11AAC56C04D26195D21C4F5229DB4726 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
17:07:04.0885 1220  SharedAccess - ok
17:07:04.0895 1220  [ B264DFA21677728613267FE63802B332 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
17:07:04.0905 1220  ShellHWDetection - ok
17:07:04.0925 1220  [ D2A595D6EEBEEAF4334F8E50EFBC9931 ] sisagp          C:\Windows\system32\drivers\sisagp.sys
17:07:04.0945 1220  sisagp - ok
17:07:04.0965 1220  [ CEDD6F4E7D84E9F98B34B3FE988373AA ] SiSRaid2        C:\Windows\system32\drivers\sisraid2.sys
17:07:04.0975 1220  SiSRaid2 - ok
17:07:04.0995 1220  [ DF843C528C4F69D12CE41CE462E973A7 ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
17:07:05.0015 1220  SiSRaid4 - ok
17:07:05.0065 1220  [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate    C:\Program Files\Skype\Updater\Updater.exe
17:07:05.0065 1220  SkypeUpdate - ok
17:07:05.0125 1220  [ 7610645679BB5994210D21A347E0C479 ] slsvc          C:\Windows\system32\SLsvc.exe
17:07:05.0175 1220  slsvc - ok
17:07:05.0195 1220  [ 49670F3E42A0178A0AB425AE15D88E7C ] SLUINotify      C:\Windows\system32\SLUINotify.dll
17:07:05.0215 1220  SLUINotify - ok
17:07:05.0235 1220  [ AC0D90738ADB51A6FD12FF00874A2162 ] Smb            C:\Windows\system32\DRIVERS\smb.sys
17:07:05.0255 1220  Smb - ok
17:07:05.0275 1220  [ 2A146A055B4401C16EE62D18B8E2A032 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
17:07:05.0295 1220  SNMPTRAP - ok
17:07:05.0335 1220  [ 905782BCF15B6E5AF9905B77923C7FA2 ] SPBBCDrv        C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys
17:07:05.0365 1220  SPBBCDrv - ok
17:07:05.0385 1220  [ 426F9B029AA9162CECCF65369457D046 ] spldr          C:\Windows\system32\drivers\spldr.sys
17:07:05.0405 1220  spldr - ok
17:07:05.0425 1220  [ DA612EF2556776DF2630B68BF2D48935 ] Spooler        C:\Windows\System32\spoolsv.exe
17:07:05.0425 1220  Spooler - ok
17:07:05.0435 1220  [ 15E29EB26DD53EB6385629F4622B5519 ] SRTSP          C:\Windows\system32\Drivers\SRTSP.SYS
17:07:05.0465 1220  SRTSP - ok
17:07:05.0485 1220  [ FD0C0333FAE09DBD1170E0D607ECA5C8 ] SRTSPL          C:\Windows\system32\Drivers\SRTSPL.SYS
17:07:05.0515 1220  SRTSPL - ok
17:07:05.0545 1220  [ 7E60A4A4035BE470F47C6806DA57DB99 ] SRTSPX          C:\Windows\system32\Drivers\SRTSPX.SYS
17:07:05.0555 1220  SRTSPX - ok
17:07:05.0605 1220  [ 038579C35F7CAD4A4BBF735DBF83277D ] srv            C:\Windows\system32\DRIVERS\srv.sys
17:07:05.0635 1220  srv - ok
17:07:05.0665 1220  [ 6971A757AF8CB5E2CBCBB76CC530DB6C ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
17:07:05.0685 1220  srv2 - ok
17:07:05.0715 1220  [ 9E1A4603B874EEBCE0298113951ABEFB ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
17:07:05.0735 1220  srvnet - ok
17:07:05.0755 1220  [ 8D3E4BAFF8B3997138C38EB1B600519A ] SSDPSRV        C:\Windows\System32\ssdpsrv.dll
17:07:05.0765 1220  SSDPSRV - ok
17:07:05.0775 1220  [ A36EE93698802CD899F98BFD553D8185 ] ssmdrv          C:\Windows\system32\DRIVERS\ssmdrv.sys
17:07:05.0785 1220  ssmdrv - ok
17:07:05.0825 1220  [ A941E099EF46E3CC12F898CBE1C39910 ] stisvc          C:\Windows\System32\wiaservc.dll
17:07:05.0835 1220  stisvc - ok
17:07:05.0845 1220  stllssvr - ok
17:07:05.0875 1220  [ 1379BDB336F8158C176A465E30759F57 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
17:07:05.0885 1220  swenum - ok
17:07:05.0965 1220  [ F577910A133A592234EBAAD3F3AFA258 ] SwitchBoard    C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
17:07:06.0005 1220  SwitchBoard - ok
17:07:06.0035 1220  [ 749ADA8D6C18A08ADFEDE69CBF5DB2E0 ] swprv          C:\Windows\System32\swprv.dll
17:07:06.0035 1220  swprv - ok
17:07:06.0105 1220  [ 2698CD77F4D73EA7988F0BC63DE8E3D6 ] Symantec Core LC C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
17:07:06.0115 1220  Symantec Core LC - ok
17:07:06.0125 1220  [ 2FE779B1A07747FED8074C433C3C4604 ] SymAppCore      C:\Program Files\Common Files\Symantec Shared\AppCore\AppSvc32.exe
17:07:06.0135 1220  SymAppCore - ok
17:07:06.0155 1220  [ 192AA3AC01DF071B541094F251DEED10 ] Symc8xx        C:\Windows\system32\drivers\symc8xx.sys
17:07:06.0165 1220  Symc8xx - ok
17:07:06.0205 1220  [ 9D98270B5F10A4C84E8DA417C30756E1 ] SymEvent        C:\Windows\system32\Drivers\SYMEVENT.SYS
17:07:06.0225 1220  SymEvent - ok
17:07:06.0255 1220  [ 7F4011A719BF30E3DBD84D3A0A45C91C ] SYMREDRV        C:\Windows\System32\Drivers\SYMREDRV.SYS
17:07:06.0275 1220  SYMREDRV - ok
17:07:06.0295 1220  [ 2F03CBDB0F22278D05D5D616C993AB58 ] SYMTDI          C:\Windows\System32\Drivers\SYMTDI.SYS
17:07:06.0325 1220  SYMTDI - ok
17:07:06.0345 1220  [ 8C8EB8C76736EBAF3B13B633B2E64125 ] Sym_hi          C:\Windows\system32\drivers\sym_hi.sys
17:07:06.0365 1220  Sym_hi - ok
17:07:06.0385 1220  [ 8072AF52B5FD103BBBA387A1E49F62CB ] Sym_u3          C:\Windows\system32\drivers\sym_u3.sys
17:07:06.0395 1220  Sym_u3 - ok
17:07:06.0445 1220  [ C1FDFF9AFD8C6C905485981B41DCFB40 ] SysMain        C:\Windows\system32\sysmain.dll
17:07:06.0455 1220  SysMain - ok
17:07:06.0465 1220  [ 2DCA225EAE15F42C0933E998EE0231C3 ] TabletInputService C:\Windows\System32\TabSvc.dll
17:07:06.0465 1220  TabletInputService - ok
17:07:06.0485 1220  [ EF3DD33C740FC2F82E7E4622F1C49289 ] TapiSrv        C:\Windows\System32\tapisrv.dll
17:07:06.0485 1220  TapiSrv - ok
17:07:06.0495 1220  [ 68FA52794AE9ACC61BDE16FE0956B414 ] TBS            C:\Windows\System32\tbssvc.dll
17:07:06.0505 1220  TBS - ok
17:07:06.0565 1220  [ 4A82FA8F0DF67AA354580C3FAAF8BDE3 ] Tcpip          C:\Windows\system32\drivers\tcpip.sys
17:07:06.0605 1220  Tcpip - ok
17:07:06.0625 1220  [ 4A82FA8F0DF67AA354580C3FAAF8BDE3 ] Tcpip6          C:\Windows\system32\DRIVERS\tcpip.sys
17:07:06.0635 1220  Tcpip6 - ok
17:07:06.0645 1220  [ 5CE0C4A7B12D0067DAD527D72B68C726 ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
17:07:06.0655 1220  tcpipreg - ok
17:07:06.0675 1220  [ 964248AEF49C31FA6A93201A73FFAF50 ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
17:07:06.0685 1220  TDPIPE - ok
17:07:06.0705 1220  [ 7D2C1AE1648A60FCE4AA0F7982E419D3 ] TDTCP          C:\Windows\system32\drivers\tdtcp.sys
17:07:06.0725 1220  TDTCP - ok
17:07:06.0755 1220  [ AB4FDE8AF4A0270A46A001C08CBCE1C2 ] tdx            C:\Windows\system32\DRIVERS\tdx.sys
17:07:06.0765 1220  tdx - ok
17:07:06.0775 1220  [ 2C549BD9DD091FBFAA0A2A48E82EC2FB ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
17:07:06.0795 1220  TermDD - ok
17:07:06.0815 1220  [ FAD71C1E8E4047B154E899AE31EB8CAA ] TermService    C:\Windows\System32\termsrv.dll
17:07:06.0825 1220  TermService - ok
17:07:06.0835 1220  [ B264DFA21677728613267FE63802B332 ] Themes          C:\Windows\system32\shsvcs.dll
17:07:06.0845 1220  Themes - ok
17:07:06.0865 1220  [ 9DFA3A459AF0954AA85B4F7622AD87BB ] THREADORDER    C:\Windows\system32\mmcss.dll
17:07:06.0865 1220  THREADORDER - ok
17:07:06.0875 1220  [ 6BBA0582C0025D43729A1112D3B57897 ] TrkWks          C:\Windows\System32\trkwks.dll
17:07:06.0885 1220  TrkWks - ok
17:07:06.0935 1220  [ 34E388A395FEDBA1D0511ED39BBF4074 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
17:07:06.0935 1220  TrustedInstaller - ok
17:07:06.0965 1220  [ 29F0ECA726F0D51F7E048BDB0B372F29 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
17:07:06.0975 1220  tssecsrv - ok
17:07:06.0995 1220  [ 65E953BC0084D44498B51F59784D2A82 ] tunmp          C:\Windows\system32\DRIVERS\tunmp.sys
17:07:07.0005 1220  tunmp - ok
17:07:07.0015 1220  [ 4A39BDA5E0FD30BDF4884F9D33AE6105 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
17:07:07.0035 1220  tunnel - ok
17:07:07.0055 1220  [ C3ADE15414120033A36C0F293D4A4121 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
17:07:07.0085 1220  uagp35 - ok
17:07:07.0105 1220  [ 6348DA98707CEDA8A0DFB05820E17732 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
17:07:07.0135 1220  udfs - ok
17:07:07.0165 1220  [ 24A333F4F14DCFB6FF6D5A1B9E5D79DD ] UI0Detect      C:\Windows\system32\UI0Detect.exe
17:07:07.0185 1220  UI0Detect - ok
17:07:07.0205 1220  [ 75E6890EBFCE0841D3291B02E7A8BDB0 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
17:07:07.0225 1220  uliagpkx - ok
17:07:07.0255 1220  [ 3CD4EA35A6221B85DCC25DAA46313F8D ] uliahci        C:\Windows\system32\drivers\uliahci.sys
17:07:07.0275 1220  uliahci - ok
17:07:07.0295 1220  [ 8514D0E5CD0534467C5FC61BE94A569F ] UlSata          C:\Windows\system32\drivers\ulsata.sys
17:07:07.0315 1220  UlSata - ok
17:07:07.0355 1220  [ 38C3C6E62B157A6BC46594FADA45C62B ] ulsata2        C:\Windows\system32\drivers\ulsata2.sys
17:07:07.0375 1220  ulsata2 - ok
17:07:07.0395 1220  [ 3FB78F1D1DD86D87BECECD9DFFA24DD9 ] umbus          C:\Windows\system32\DRIVERS\umbus.sys
17:07:07.0415 1220  umbus - ok
17:07:07.0435 1220  [ 8EB871A3DEB6B3D5A85EB6DDFC390B59 ] upnphost        C:\Windows\System32\upnphost.dll
17:07:07.0435 1220  upnphost - ok
17:07:07.0495 1220  [ F6BF998AE33E3FB6C7D27F0560F1173F ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
17:07:07.0505 1220  usbaudio - ok
17:07:07.0535 1220  [ 8BD3AE150D97BA4E633C6C5C51B41AE1 ] usbccgp        C:\Windows\system32\DRIVERS\usbccgp.sys
17:07:07.0565 1220  usbccgp - ok
17:07:07.0595 1220  [ E9476E6C486E76BC4898074768FB7131 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
17:07:07.0625 1220  usbcir - ok
17:07:07.0645 1220  [ 63FE924D8A1113C3BA6750693FBEC7D3 ] usbehci        C:\Windows\system32\DRIVERS\usbehci.sys
17:07:07.0665 1220  usbehci - ok
17:07:07.0675 1220  [ 5EDEC5510592C905E91817707DCE62A2 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
17:07:07.0705 1220  usbhub - ok
17:07:07.0715 1220  [ 38DBC7DD6CC5A72011F187425384388B ] usbohci        C:\Windows\system32\DRIVERS\usbohci.sys
17:07:07.0725 1220  usbohci - ok
17:07:07.0735 1220  [ B51E52ACF758BE00EF3A58EA452FE360 ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
17:07:07.0745 1220  usbprint - ok
17:07:07.0765 1220  [ FDBAABF07244C60B0F4E0A6E71A107C6 ] USBSTOR        C:\Windows\system32\DRIVERS\USBSTOR.SYS
17:07:07.0775 1220  USBSTOR - ok
17:07:07.0785 1220  [ 325DBBACB8A36AF9988CCF40EAC228CC ] usbuhci        C:\Windows\system32\DRIVERS\usbuhci.sys
17:07:07.0805 1220  usbuhci - ok
17:07:07.0825 1220  [ F79D0D7C9004474CB42746D9B2C30A2B ] UxSms          C:\Windows\System32\uxsms.dll
17:07:07.0825 1220  UxSms - ok
17:07:07.0845 1220  [ C9D0BAFEE0D0A2681F048CA61BC0DA96 ] vds            C:\Windows\System32\vds.exe
17:07:07.0875 1220  vds - ok
17:07:07.0915 1220  [ 7D92BE0028ECDEDEC74617009084B5EF ] vga            C:\Windows\system32\DRIVERS\vgapnp.sys
17:07:07.0925 1220  vga - ok
17:07:07.0945 1220  [ 17A8F877314E4067F8C8172CC6D9101C ] VgaSave        C:\Windows\System32\drivers\vga.sys
17:07:07.0955 1220  VgaSave - ok
17:07:07.0985 1220  [ 045D9961E591CF0674A920B6BA3BA5CB ] viaagp          C:\Windows\system32\drivers\viaagp.sys
17:07:07.0995 1220  viaagp - ok
17:07:08.0005 1220  [ 56A4DE5F02F2E88182B0981119B4DD98 ] ViaC7          C:\Windows\system32\drivers\viac7.sys
17:07:08.0025 1220  ViaC7 - ok
17:07:08.0055 1220  [ FD2E3175FCADA350C7AB4521DCA187EC ] viaide          C:\Windows\system32\drivers\viaide.sys
17:07:08.0065 1220  viaide - ok
17:07:08.0085 1220  [ 103E84C95832D0ED93507997CC7B54E8 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
17:07:08.0095 1220  volmgr - ok
17:07:08.0115 1220  [ 294DA8D3F965F6A8DB934A83C7B461FF ] volmgrx        C:\Windows\system32\drivers\volmgrx.sys
17:07:08.0145 1220  volmgrx - ok
17:07:08.0155 1220  [ 11EF6C1CAEF76B685233450A126125D6 ] volsnap        C:\Windows\system32\drivers\volsnap.sys
17:07:08.0175 1220  volsnap - ok
17:07:08.0195 1220  [ D984439746D42B30FC65A4C3546C6829 ] vsmraid        C:\Windows\system32\drivers\vsmraid.sys
17:07:08.0215 1220  vsmraid - ok
17:07:08.0255 1220  [ E0E29D9EF2524ABD11749C7C2FD7F607 ] VSS            C:\Windows\system32\vssvc.exe
17:07:08.0415 1220  VSS - ok
17:07:08.0425 1220  [ 62B0D0F6F5580D9D0DFA5E0B466FF2ED ] W32Time        C:\Windows\system32\w32time.dll
17:07:08.0435 1220  W32Time - ok
17:07:08.0455 1220  [ 48DFEE8F1AF7C8235D4E626F0C4FE031 ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
17:07:08.0465 1220  WacomPen - ok
17:07:08.0475 1220  [ 6E1A5BE9A0605F3D932FF35FBA2B22B3 ] Wanarp          C:\Windows\system32\DRIVERS\wanarp.sys
17:07:08.0495 1220  Wanarp - ok
17:07:08.0505 1220  [ 6E1A5BE9A0605F3D932FF35FBA2B22B3 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
17:07:08.0505 1220  Wanarpv6 - ok
17:07:08.0555 1220  [ 0A716C08CB13C3A8F4F51E882DBF7416 ] wanatw          C:\Windows\system32\DRIVERS\wanatw4.sys
17:07:08.0565 1220  wanatw - ok
17:07:08.0595 1220  [ C1B19162E0509CEAB4CDF664E139D956 ] wcncsvc        C:\Windows\System32\wcncsvc.dll
17:07:08.0605 1220  wcncsvc - ok
17:07:08.0615 1220  [ 11BCB7AFCDD7AADACB5746F544D3A9C7 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
17:07:08.0625 1220  WcsPlugInService - ok
17:07:08.0645 1220  [ AFC5AD65B991C1E205CF25CFDBF7A6F4 ] Wd              C:\Windows\system32\drivers\wd.sys
17:07:08.0655 1220  Wd - ok
17:07:08.0705 1220  [ 9950E3D0F08141C7E89E64456AE7DC73 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
17:07:08.0735 1220  Wdf01000 - ok
17:07:08.0745 1220  [ 2A424B89B14EF17A3D06BCB5A8F79601 ] WdiServiceHost  C:\Windows\system32\wdi.dll
17:07:08.0755 1220  WdiServiceHost - ok
17:07:08.0755 1220  [ 2A424B89B14EF17A3D06BCB5A8F79601 ] WdiSystemHost  C:\Windows\system32\wdi.dll
17:07:08.0765 1220  WdiSystemHost - ok
17:07:08.0785 1220  [ B1EC8C9300C58CE5E90990F71EEA644C ] Web Assistant Updater C:\Program Files\Web Assistant\ExtensionUpdaterService.exe
17:07:08.0785 1220  Web Assistant Updater - ok
17:07:08.0815 1220  [ 01E41C264EEDCB827820A1909162579F ] WebClient      C:\Windows\System32\webclnt.dll
17:07:08.0825 1220  WebClient - ok
17:07:08.0835 1220  [ 9CF67FF7F8D34CBF115D0C278B9F74AA ] Wecsvc          C:\Windows\system32\wecsvc.dll
17:07:08.0845 1220  Wecsvc - ok
17:07:08.0855 1220  [ B68CAB45DB1DAB59D92ACADFAD6364A8 ] wercplsupport  C:\Windows\System32\wercplsupport.dll
17:07:08.0855 1220  wercplsupport - ok
17:07:08.0875 1220  [ 36BA0707680EF4236FD752BEE982CC25 ] WerSvc          C:\Windows\System32\WerSvc.dll
17:07:08.0875 1220  WerSvc - ok
17:07:08.0905 1220  [ EC0180032C6D201EF26FAD1A0C14E674 ] WinDefend      C:\Program Files\Windows Defender\mpsvc.dll
17:07:08.0905 1220  WinDefend - ok
17:07:08.0915 1220  WinHttpAutoProxySvc - ok
17:07:08.0955 1220  [ 38A7B89DE4E3417C122317949667FDD8 ] Winmgmt        C:\Windows\system32\wbem\WMIsvc.dll
17:07:08.0965 1220  Winmgmt - ok
17:07:08.0985 1220  [ 3F6823040030C3E4DA1CF11CD40B7534 ] WinRM          C:\Windows\system32\WsmSvc.dll
17:07:08.0995 1220  WinRM - ok
17:07:09.0045 1220  [ 7640ACEA41348BFEF34B76E245501261 ] Wlansvc        C:\Windows\System32\wlansvc.dll
17:07:09.0055 1220  Wlansvc - ok
17:07:09.0075 1220  [ 701A9F884A294327E9141D73746EE279 ] WmiAcpi        C:\Windows\system32\DRIVERS\wmiacpi.sys
17:07:09.0075 1220  WmiAcpi - ok
17:07:09.0095 1220  [ A279323BEE5FFFAFDA222910BCE92132 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
17:07:09.0095 1220  wmiApSrv - ok
17:07:09.0145 1220  [ ACB2E63D50157E3EA7140F29D9E76A48 ] WMPNetworkSvc  C:\Program Files\Windows Media Player\wmpnetwk.exe
17:07:09.0195 1220  WMPNetworkSvc - ok
17:07:09.0215 1220  [ 3D3B3B80C12ABE506F56930C46422C28 ] WPCSvc          C:\Windows\System32\wpcsvc.dll
17:07:09.0245 1220  WPCSvc - ok
17:07:09.0255 1220  [ C24844A1D0D9528B19D5BC266B8CD572 ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
17:07:09.0255 1220  WPDBusEnum - ok
17:07:09.0295 1220  [ 2D27171B16A577EF14C1273668753485 ] WpdUsb          C:\Windows\system32\DRIVERS\wpdusb.sys
17:07:09.0315 1220  WpdUsb - ok
17:07:09.0435 1220  [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
17:07:09.0455 1220  WPFFontCache_v0400 - ok
17:07:09.0485 1220  [ 84620AECDCFD2A7A14E6263927D8C0ED ] ws2ifsl        C:\Windows\system32\drivers\ws2ifsl.sys
17:07:09.0495 1220  ws2ifsl - ok
17:07:09.0515 1220  [ F97CBB919AF6D0A6643D1A59C15014D1 ] wscsvc          C:\Windows\System32\wscsvc.dll
17:07:09.0515 1220  wscsvc - ok
17:07:09.0525 1220  WSearch - ok
17:07:09.0585 1220  [ 6298277B73C77FA99106B271A7525163 ] wuauserv        C:\Windows\system32\wuaueng.dll
17:07:09.0605 1220  wuauserv - ok
17:07:09.0615 1220  [ A2AAFCC8A204736296D937C7C545B53F ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
17:07:09.0615 1220  WUDFRd - ok
17:07:09.0635 1220  [ DB5BF5AAB72B1B99B5331231D09EBB26 ] wudfsvc        C:\Windows\System32\WUDFSvc.dll
17:07:09.0635 1220  wudfsvc - ok
17:07:09.0665 1220  ================ Scan global ===============================
17:07:09.0695 1220  [ 8CD98A8EC9CADAF4E051CDCAC15C96C4 ] C:\Windows\system32\basesrv.dll
17:07:09.0745 1220  [ E3F137ADC0A9D7F3A2E4F557272FE6B3 ] C:\Windows\system32\winsrv.dll
17:07:09.0755 1220  [ E3F137ADC0A9D7F3A2E4F557272FE6B3 ] C:\Windows\system32\winsrv.dll
17:07:09.0785 1220  [ 329CF3C97CE4C19375C8ABCABAE258B0 ] C:\Windows\system32\services.exe
17:07:09.0795 1220  [Global] - ok
17:07:09.0795 1220  ================ Scan MBR ==================================
17:07:09.0805 1220  [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
17:07:10.0005 1220  \Device\Harddisk0\DR0 - ok
17:07:10.0005 1220  ================ Scan VBR ==================================
17:07:10.0015 1220  [ B0542D59127DF6D4C6FF55B90A0C69D0 ] \Device\Harddisk0\DR0\Partition1
17:07:10.0015 1220  \Device\Harddisk0\DR0\Partition1 - ok
17:07:10.0015 1220  ============================================================
17:07:10.0015 1220  Scan finished
17:07:10.0015 1220  ============================================================
17:07:10.0035 6104  Detected object count: 0
17:07:10.0035 6104  Actual detected object count: 0
17:07:42.0335 4144  ============================================================
17:07:42.0335 4144  Scan started
17:07:42.0335 4144  Mode: Manual; SigCheck; TDLFS;
17:07:42.0335 4144  ============================================================
17:07:42.0555 4144  ================ Scan system memory ========================
17:07:42.0555 4144  System memory - ok
17:07:42.0555 4144  ================ Scan services =============================
17:07:42.0655 4144  [ 192BDBD1540645C4A2AA69F24CCE197F ] ACPI            C:\Windows\system32\drivers\acpi.sys
17:07:42.0785 4144  ACPI - ok
17:07:42.0815 4144  [ 2EDC5BBAC6C651ECE337BDE8ED97C9FB ] adp94xx        C:\Windows\system32\drivers\adp94xx.sys
17:07:42.0845 4144  adp94xx - ok
17:07:42.0885 4144  [ B84088CA3CDCA97DA44A984C6CE1CCAD ] adpahci        C:\Windows\system32\drivers\adpahci.sys
17:07:42.0905 4144  adpahci - ok
17:07:42.0925 4144  [ 7880C67BCCC27C86FD05AA2AFB5EA469 ] adpu160m        C:\Windows\system32\drivers\adpu160m.sys
17:07:42.0945 4144  adpu160m - ok
17:07:42.0975 4144  [ 9AE713F8E30EFC2ABCCD84904333DF4D ] adpu320        C:\Windows\system32\drivers\adpu320.sys
17:07:42.0995 4144  adpu320 - ok
17:07:43.0025 4144  [ 9D1FDA9E086BA64E3C93C9DE32461BCF ] AeLookupSvc    C:\Windows\System32\aelupsvc.dll
17:07:43.0155 4144  AeLookupSvc - ok
17:07:43.0185 4144  [ 5D24CAF8EFD924A875698FF28384DB8B ] AFD            C:\Windows\system32\drivers\afd.sys
17:07:43.0265 4144  AFD - ok
17:07:43.0295 4144  [ EF23439CDD587F64C2C1B8825CEAD7D8 ] agp440          C:\Windows\system32\drivers\agp440.sys
17:07:43.0315 4144  agp440 - ok
17:07:43.0345 4144  [ AE1FDF7BF7BB6C6A70F67699D880592A ] aic78xx        C:\Windows\system32\drivers\djsvs.sys
17:07:43.0365 4144  aic78xx - ok
17:07:43.0375 4144  [ E69FB0E3112C40FDC0EF7D21A52DC951 ] ALG            C:\Windows\System32\alg.exe
17:07:43.0425 4144  ALG - ok
17:07:43.0455 4144  [ 90395B64600EBB4552E26E178C94B2E4 ] aliide          C:\Windows\system32\drivers\aliide.sys
17:07:43.0465 4144  aliide - ok
17:07:43.0495 4144  [ 2B13E304C9DFDFA5EB582F6A149FA2C7 ] amdagp          C:\Windows\system32\drivers\amdagp.sys
17:07:43.0515 4144  amdagp - ok
17:07:43.0535 4144  [ 0577DF1D323FE75A739C787893D300EA ] amdide          C:\Windows\system32\drivers\amdide.sys
17:07:43.0545 4144  amdide - ok
17:07:43.0565 4144  [ DC487885BCEF9F28EECE6FAC0E5DDFC5 ] AmdK7          C:\Windows\system32\drivers\amdk7.sys
17:07:43.0635 4144  AmdK7 - ok
17:07:43.0645 4144  [ 0CA0071DA4315B00FC1328CA86B425DA ] AmdK8          C:\Windows\system32\DRIVERS\amdk8.sys
17:07:43.0715 4144  AmdK8 - ok
17:07:43.0765 4144  [ 0A1CC583E8147004E4AD4625D7FBF88C ] AntiVirSchedulerService C:\Program Files\Avira\AntiVir Desktop\sched.exe
17:07:43.0795 4144  AntiVirSchedulerService - ok
17:07:43.0805 4144  [ C9A36EF935ACED86AEDF93E97E606911 ] AntiVirService  C:\Program Files\Avira\AntiVir Desktop\avguard.exe
17:07:43.0825 4144  AntiVirService - ok
17:07:43.0845 4144  [ CFA455816879F06F1C4E5BBF9E8AEF7D ] Appinfo        C:\Windows\System32\appinfo.dll
17:07:43.0915 4144  Appinfo - ok
17:07:43.0935 4144  [ 5F673180268BB1FDB69C99B6619FE379 ] arc            C:\Windows\system32\drivers\arc.sys
17:07:43.0955 4144  arc - ok
17:07:43.0985 4144  [ 957F7540B5E7F602E44648C7DE5A1C05 ] arcsas          C:\Windows\system32\drivers\arcsas.sys
17:07:44.0005 4144  arcsas - ok
17:07:44.0035 4144  [ E86CF7CE67D5DE898F27EF884DC357D8 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
17:07:44.0095 4144  AsyncMac - ok
17:07:44.0115 4144  [ 4F4FCB8B6EA06784FB6D475B7EC7300F ] atapi          C:\Windows\system32\drivers\atapi.sys
17:07:44.0125 4144  atapi - ok
17:07:44.0145 4144  [ F8A2A11291A994B1A1F0867CFFAA6E18 ] Ati External Event Utility C:\Windows\system32\Ati2evxx.exe
17:07:44.0215 4144  Ati External Event Utility - ok
17:07:44.0265 4144  [ E760FC1BD68F7F6F1B17EB4E8D9480B0 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
17:07:44.0325 4144  AudioEndpointBuilder - ok
17:07:44.0335 4144  [ E760FC1BD68F7F6F1B17EB4E8D9480B0 ] Audiosrv        C:\Windows\System32\Audiosrv.dll
17:07:44.0405 4144  Audiosrv - ok
17:07:44.0455 4144  [ 018FE8992FE4D70B69AE866EA0D83F0D ] Automatisches LiveUpdate - Scheduler C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
17:07:44.0475 4144  Automatisches LiveUpdate - Scheduler - ok
17:07:44.0485 4144  [ D5541F0AFB767E85FC412FC609D96A74 ] avgntflt        C:\Windows\system32\DRIVERS\avgntflt.sys
17:07:44.0555 4144  avgntflt - ok
17:07:44.0575 4144  [ 7D967A682D4694DF7FA57D63A2DB01FE ] avipbb          C:\Windows\system32\DRIVERS\avipbb.sys
17:07:44.0595 4144  avipbb - ok
17:07:44.0605 4144  [ 271CFD1A989209B1964E24D969552BF7 ] avkmgr          C:\Windows\system32\DRIVERS\avkmgr.sys
17:07:44.0625 4144  avkmgr - ok
17:07:44.0695 4144  [ C6F4C466B654C1BE98AF31418BB5AC30 ] AVM WLAN Connection Service C:\Program Files\avmwlanstick\WlanNetService.exe
17:07:44.0735 4144  AVM WLAN Connection Service ( UnsignedFile.Multi.Generic ) - warning
17:07:44.0735 4144  AVM WLAN Connection Service - detected UnsignedFile.Multi.Generic (1)
17:07:44.0755 4144  [ 263CF9D248FD5E020A1333ED4F7EAA88 ] avmeject        C:\Windows\system32\drivers\avmeject.sys
17:07:44.0785 4144  avmeject ( UnsignedFile.Multi.Generic ) - warning
17:07:44.0785 4144  avmeject - detected UnsignedFile.Multi.Generic (1)
17:07:44.0815 4144  [ AC3DD1708B22761EBD7CBE14DCC3B5D7 ] Beep            C:\Windows\system32\drivers\Beep.sys
17:07:44.0875 4144  Beep - ok
17:07:44.0895 4144  [ 98EBDFFB824A7C265337D68DD480E45C ] BFE            C:\Windows\System32\bfe.dll
17:07:44.0965 4144  BFE - ok
17:07:45.0005 4144  [ DA551697E34D2B9943C8B1C8EAFFE89A ] BITS            C:\Windows\System32\qmgr.dll
17:07:45.0075 4144  BITS - ok
17:07:45.0085 4144  blbdrive - ok
17:07:45.0105 4144  [ 913CD06FBE9105CE6077E90FD4418561 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
17:07:45.0175 4144  bowser - ok
17:07:45.0185 4144  [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo        C:\Windows\system32\drivers\brfiltlo.sys
17:07:45.0235 4144  BrFiltLo - ok
17:07:45.0255 4144  [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp        C:\Windows\system32\drivers\brfiltup.sys
17:07:45.0295 4144  BrFiltUp - ok
17:07:45.0325 4144  [ BEB6470532B7461D7BB426E3FACB424F ] Browser        C:\Windows\System32\browser.dll
17:07:45.0385 4144  Browser - ok
17:07:45.0405 4144  [ B304E75CFF293029EDDF094246747113 ] Brserid        C:\Windows\system32\drivers\brserid.sys
17:07:45.0475 4144  Brserid - ok
17:07:45.0495 4144  [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm        C:\Windows\system32\drivers\brserwdm.sys
17:07:45.0565 4144  BrSerWdm - ok
17:07:45.0585 4144  [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm        C:\Windows\system32\drivers\brusbmdm.sys
17:07:45.0635 4144  BrUsbMdm - ok
17:07:45.0645 4144  [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer        C:\Windows\system32\drivers\brusbser.sys
17:07:45.0705 4144  BrUsbSer - ok
17:07:45.0705 4144  [ AD07C1EC6665B8B35741AB91200C6B68 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
17:07:45.0765 4144  BTHMODEM - ok
17:07:45.0815 4144  [ E7AAB1A32AC2EEA4C4B735B8D034C802 ] ccEvtMgr        C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
17:07:45.0835 4144  ccEvtMgr - ok
17:07:45.0845 4144  [ E7AAB1A32AC2EEA4C4B735B8D034C802 ] ccSetMgr        C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
17:07:45.0855 4144  ccSetMgr - ok
17:07:45.0865 4144  [ 6C3A437FC873C6F6A4FC620B6888CB86 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
17:07:45.0925 4144  cdfs - ok
17:07:45.0935 4144  [ 8D1866E61AF096AE8B582454F5E4D303 ] cdrom          C:\Windows\system32\DRIVERS\cdrom.sys
17:07:45.0985 4144  cdrom - ok
17:07:46.0015 4144  [ 0600E04315FE543802A379D5D23C8BE0 ] CertPropSvc    C:\Windows\System32\certprop.dll
17:07:46.0075 4144  CertPropSvc - ok
17:07:46.0095 4144  [ DA8E0AFC7BAA226C538EF53AC2F90897 ] circlass        C:\Windows\system32\drivers\circlass.sys
17:07:46.0155 4144  circlass - ok
17:07:46.0195 4144  [ 1B84FD0937D3B99AF9BA38DDFF3DAF54 ] CLFS            C:\Windows\system32\CLFS.sys
17:07:46.0215 4144  CLFS - ok
17:07:46.0285 4144  [ 234B1BC2796483E1F5C3F26649FB3388 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
17:07:46.0305 4144  clr_optimization_v2.0.50727_32 - ok
17:07:46.0385 4144  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
17:07:46.0405 4144  clr_optimization_v4.0.30319_32 - ok
17:07:46.0415 4144  [ E7AAB1A32AC2EEA4C4B735B8D034C802 ] CLTNetCnService C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
17:07:46.0435 4144  CLTNetCnService - ok
17:07:46.0465 4144  [ 45201046C776FFDAF3FC8A0029C581C8 ] cmdide          C:\Windows\system32\drivers\cmdide.sys
17:07:46.0475 4144  cmdide - ok
17:07:46.0515 4144  [ 7CE352882828C12DD7632B172253A02C ] comHost        C:\Program Files\Common Files\Symantec Shared\VAScanner\comHost.exe
17:07:46.0545 4144  comHost - ok
17:07:46.0565 4144  [ 82B8C91D327CFECF76CB58716F7D4997 ] Compbatt        C:\Windows\system32\drivers\compbatt.sys
17:07:46.0585 4144  Compbatt - ok
17:07:46.0595 4144  COMSysApp - ok
17:07:46.0605 4144  [ 2A213AE086BBEC5E937553C7D9A2B22C ] crcdisk        C:\Windows\system32\drivers\crcdisk.sys
17:07:46.0625 4144  crcdisk - ok
17:07:46.0655 4144  [ 22A7F883508176489F559EE745B5BF5D ] Crusoe          C:\Windows\system32\drivers\crusoe.sys
17:07:46.0715 4144  Crusoe - ok
17:07:46.0745 4144  [ 1C26FB097170A2A91066D1E3A24366E3 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
17:07:46.0795 4144  CryptSvc - ok
17:07:46.0845 4144  [ 7B981222A257D076885BFFB66F19B7CE ] DcomLaunch      C:\Windows\system32\rpcss.dll
17:07:46.0925 4144  DcomLaunch - ok
17:07:46.0935 4144  [ A7179DE59AE269AB70345527894CCD7C ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
17:07:47.0005 4144  DfsC - ok
17:07:47.0095 4144  [ E0D584AA76C7D845BA9F3A788260528F ] DFSR            C:\Windows\system32\DFSR.exe
17:07:47.0185 4144  DFSR - ok
17:07:47.0205 4144  [ 17210D8064EC116A3FC6B5E45E577D43 ] Dhcp            C:\Windows\System32\dhcpcsvc.dll
17:07:47.0265 4144  Dhcp - ok
17:07:47.0285 4144  [ 841AF4C4D41D3E3B2F244E976B0F7963 ] disk            C:\Windows\system32\drivers\disk.sys
17:07:47.0305 4144  disk - ok
17:07:47.0385 4144  [ EECBA1DD142BF8693C476BE8F32FE253 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
17:07:47.0425 4144  Dnscache - ok
17:07:47.0445 4144  [ 1F795D214820E496BF1124434A6DB546 ] dot3svc        C:\Windows\System32\dot3svc.dll
17:07:47.0515 4144  dot3svc - ok
17:07:47.0525 4144  [ 8EF243E3BAF1AB4F6202EDEB8890319B ] DPS            C:\Windows\system32\dps.dll
17:07:47.0585 4144  DPS - ok
17:07:47.0605 4144  [ EE472CD2C01F6F8E8AA1FA06FFEF61B6 ] drmkaud        C:\Windows\system32\drivers\drmkaud.sys
17:07:47.0685 4144  drmkaud - ok
17:07:47.0765 4144  [ F032A2F91287A0B800891C7BEF9CA7A8 ] DXGKrnl        C:\Windows\System32\drivers\dxgkrnl.sys
17:07:47.0865 4144  DXGKrnl - ok
17:07:47.0885 4144  [ F88FB26547FD2CE6D0A5AF2985892C48 ] E1G60          C:\Windows\system32\DRIVERS\E1G60I32.sys
17:07:47.0965 4144  E1G60 - ok
17:07:47.0975 4144  EagleXNt - ok
17:07:47.0995 4144  [ 90A0A875642E18618010645311B4E89E ] EapHost        C:\Windows\System32\eapsvc.dll
17:07:48.0055 4144  EapHost - ok
17:07:48.0075 4144  [ 0EFC7531B936EE57FDB4E837664C509F ] Ecache          C:\Windows\system32\drivers\ecache.sys
17:07:48.0105 4144  Ecache - ok
17:07:48.0135 4144  [ FB069D8270853023F6E315745B5BBAD4 ] eeCtrl          C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys
17:07:48.0155 4144  eeCtrl - ok
17:07:48.0215 4144  [ B4580122B0A7B263B6EE9ACBA69C8013 ] ehRecvr        C:\Windows\ehome\ehRecvr.exe
17:07:48.0265 4144  ehRecvr - ok
17:07:48.0285 4144  [ AD1870C8E5D6DD340C829E6074BF3C3F ] ehSched        C:\Windows\ehome\ehsched.exe
17:07:48.0315 4144  ehSched - ok
17:07:48.0335 4144  [ C27C4EE8926E74AA72EFCAB24C5242C3 ] ehstart        C:\Windows\ehome\ehstart.dll
17:07:48.0345 4144  ehstart - ok
17:07:48.0375 4144  [ E8F3F21A71720C84BCF423B80028359F ] elxstor        C:\Windows\system32\drivers\elxstor.sys
17:07:48.0395 4144  elxstor - ok
17:07:48.0445 4144  [ 3226FDA08988526E819E364E8CCE4CEE ] EMDMgmt        C:\Windows\system32\emdmgmt.dll
17:07:48.0525 4144  EMDMgmt - ok
17:07:48.0565 4144  [ 7B4971C3D43525175A4EA0D143E0412E ] EventSystem    C:\Windows\system32\es.dll
17:07:48.0615 4144  EventSystem - ok
17:07:48.0625 4144  [ 84A317CB0B3954D3768CDCD018DBF670 ] fastfat        C:\Windows\system32\drivers\fastfat.sys
17:07:48.0695 4144  fastfat - ok
17:07:48.0725 4144  [ 63BDADA84951B9C03E641800E176898A ] fdc            C:\Windows\system32\DRIVERS\fdc.sys
17:07:48.0785 4144  fdc - ok
17:07:48.0805 4144  [ E43BCE1A77D6FD4ED5F8E0482B9E7DF1 ] fdPHost        C:\Windows\system32\fdPHost.dll
17:07:48.0865 4144  fdPHost - ok
17:07:48.0875 4144  [ 89ED56DCE8E47AF40892778A5BD31FD2 ] FDResPub        C:\Windows\system32\fdrespub.dll
17:07:48.0935 4144  FDResPub - ok
17:07:48.0955 4144  [ 65773D6115C037FFD7EF8280AE85EB9D ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
17:07:48.0965 4144  FileInfo - ok
17:07:48.0995 4144  [ C226DD0DE060745F3E042F58DCF78402 ] Filetrace      C:\Windows\system32\drivers\filetrace.sys
17:07:49.0045 4144  Filetrace - ok
17:07:49.0055 4144  [ 6603957EFF5EC62D25075EA8AC27DE68 ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
17:07:49.0125 4144  flpydisk - ok
17:07:49.0125 4144  [ A6A8DA7AE4D53394AB22AC3AB6D3F5D3 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
17:07:49.0145 4144  FltMgr - ok
17:07:49.0205 4144  [ 993883524AA9CF1C90E1545411A9AC9C ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
17:07:49.0265 4144  FontCache3.0.0.0 - ok
17:07:49.0295 4144  [ 66A078591208BAA210C7634B11EB392C ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
17:07:49.0335 4144  Fs_Rec - ok
17:07:49.0355 4144  [ FF12FA487265DA2AC7DE4BE53F72FF1A ] FWLANUSB        C:\Windows\system32\DRIVERS\fwlanusb.sys
17:07:49.0415 4144  FWLANUSB - ok
17:07:49.0435 4144  [ 4E1CD0A45C50A8882616CAE5BF82F3C5 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
17:07:49.0445 4144  gagp30kx - ok
17:07:49.0485 4144  [ BCF6589C42D8F6A20F33EF133FFE0524 ] gpsvc          C:\Windows\System32\gpsvc.dll
17:07:49.0525 4144  gpsvc - ok
17:07:49.0565 4144  [ CB04C744BE0A61B1D648FAED182C3B59 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
17:07:49.0645 4144  HdAudAddService - ok
17:07:49.0655 4144  [ 5FD053F305B77EBE97F284B20D89DC1C ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
17:07:49.0725 4144  HDAudBus - ok
17:07:49.0745 4144  [ 1338520E78D90154ED6BE8F84DE5FCEB ] HidBth          C:\Windows\system32\drivers\hidbth.sys
17:07:49.0815 4144  HidBth - ok
17:07:49.0835 4144  [ FF3160C3A2445128C5A6D9B076DA519E ] HidIr          C:\Windows\system32\drivers\hidir.sys
17:07:49.0885 4144  HidIr - ok
17:07:49.0905 4144  [ 8FA640195279ACE21BEA91396A0054FC ] hidserv        C:\Windows\system32\hidserv.dll
17:07:49.0955 4144  hidserv - ok
17:07:49.0965 4144  [ 3C64042B95E583B366BA4E5D2450235E ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
17:07:50.0025 4144  HidUsb - ok
17:07:50.0035 4144  [ D40AA05E29BF6ED29B139F044B461E9B ] hkmsvc          C:\Windows\system32\kmsvc.dll
17:07:50.0095 4144  hkmsvc - ok
17:07:50.0105 4144  [ DF353B401001246853763C4B7AAA6F50 ] HpCISSs        C:\Windows\system32\drivers\hpcisss.sys
17:07:50.0125 4144  HpCISSs - ok
17:07:50.0165 4144  [ EA24FE637D974A8A31BC650F478E3533 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
17:07:50.0205 4144  HTTP - ok
17:07:50.0235 4144  [ 324C2152FF2C61ABAE92D09F3CCA4D63 ] i2omp          C:\Windows\system32\drivers\i2omp.sys
17:07:50.0245 4144  i2omp - ok
17:07:50.0275 4144  [ 1C9EE072BAA3ABB460B91D7EE9152660 ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
17:07:50.0305 4144  i8042prt - ok
17:07:50.0335 4144  [ C957BF4B5D80B46C5017BF0101E6C906 ] iaStorV        C:\Windows\system32\drivers\iastorv.sys
17:07:50.0355 4144  iaStorV - ok
17:07:50.0405 4144  [ 6F95324909B502E2651442C1548AB12F ] IDriverT        C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
17:07:50.0435 4144  IDriverT ( UnsignedFile.Multi.Generic ) - warning
17:07:50.0435 4144  IDriverT - detected UnsignedFile.Multi.Generic (1)
17:07:50.0485 4144  [ E7CC3AEAED9893A88876744CD439F76C ] idsvc          C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
17:07:50.0545 4144  idsvc - ok
17:07:50.0615 4144  [ 78432A57D085328CF8BAF125985425D2 ] IDSvix86        C:\PROGRA~2\Symantec\DEFINI~1\SymcData\idsdefs\20061025.029\IDSvix86.sys
17:07:50.0635 4144  IDSvix86 - ok
17:07:50.0645 4144  [ 2D077BF86E843F901D8DB709C95B49A5 ] iirsp          C:\Windows\system32\drivers\iirsp.sys
17:07:50.0665 4144  iirsp - ok
17:07:50.0695 4144  [ 35662FE4D8622F667AA5A5568F7F1B40 ] IKEEXT          C:\Windows\System32\ikeext.dll
17:07:50.0785 4144  IKEEXT - ok
17:07:50.0855 4144  [ A47B2875680AD67B35C6150BD0203056 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
17:07:50.0925 4144  IntcAzAudAddService - ok
17:07:50.0955 4144  [ 97469037714070E45194ED318D636401 ] intelide        C:\Windows\system32\drivers\intelide.sys
17:07:50.0965 4144  intelide - ok
17:07:51.0005 4144  [ CE44CC04262F28216DD4341E9E36A16F ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
17:07:51.0085 4144  intelppm - ok
17:07:51.0135 4144  [ 88CF5281ED9880D74DC9011CF8B5262D ] IPBusEnum      C:\Windows\system32\ipbusenum.dll
17:07:51.0205 4144  IPBusEnum - ok
17:07:51.0225 4144  [ 880C6F86CC3F551B8FEA2C11141268C0 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
17:07:51.0295 4144  IpFilterDriver - ok
17:07:51.0335 4144  [ ECC9AD72CFC4AB41CF6A9BCC11F9FEF6 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
17:07:51.0385 4144  iphlpsvc - ok
17:07:51.0395 4144  IpInIp - ok
17:07:51.0435 4144  [ 40F34F8ABA2A015D780E4B09138B6C17 ] IPMIDRV        C:\Windows\system32\drivers\ipmidrv.sys
17:07:51.0495 4144  IPMIDRV - ok
17:07:51.0525 4144  [ 10077C35845101548037DF04FD1A420B ] IPNAT          C:\Windows\system32\DRIVERS\ipnat.sys
17:07:51.0595 4144  IPNAT - ok
17:07:51.0605 4144  [ A82F328F4792304184642D6D397BB1E3 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
17:07:51.0675 4144  IRENUM - ok
17:07:51.0685 4144  [ 350FCA7E73CF65BCEF43FAE1E4E91293 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
17:07:51.0705 4144  isapnp - ok
17:07:51.0725 4144  [ 4DCA456D4D5723F8FA9C6760D240B0DF ] iScsiPrt        C:\Windows\system32\DRIVERS\msiscsi.sys
17:07:51.0745 4144  iScsiPrt - ok
17:07:51.0785 4144  [ 36474FDE02F8422B8B1A52EAD9894DBC ] ISPwdSvc        C:\Program Files\Norton Internet Security\isPwdSvc.exe
17:07:51.0805 4144  ISPwdSvc - ok
17:07:51.0815 4144  [ BCED60D16156E428F8DF8CF27B0DF150 ] iteatapi        C:\Windows\system32\drivers\iteatapi.sys
17:07:51.0825 4144  iteatapi - ok
17:07:51.0845 4144  [ 06FA654504A498C30ADCA8BEC4E87E7E ] iteraid        C:\Windows\system32\drivers\iteraid.sys
17:07:51.0855 4144  iteraid - ok
17:07:51.0875 4144  [ B076B2AB806B3F696DAB21375389101C ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
17:07:51.0885 4144  kbdclass - ok
17:07:51.0925 4144  [ ED61DBC6603F612B7338283EDBACBC4B ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
17:07:51.0955 4144  kbdhid - ok
17:07:51.0995 4144  [ C731B1FE449D4E9CEA358C9D55B69BE9 ] KeyIso          C:\Windows\system32\lsass.exe
17:07:52.0035 4144  KeyIso - ok
17:07:52.0055 4144  [ 0A829977B078DEA11641FC2AF87CEADE ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
17:07:52.0095 4144  KSecDD - ok
17:07:52.0125 4144  [ 45C537FE5DDE9A0146AEFF76E615737D ] KtmRm          C:\Windows\system32\msdtckrm.dll
17:07:52.0195 4144  KtmRm - ok
17:07:52.0225 4144  [ 53D1482FC1AA36AC015A85E6CF2146BD ] LanmanServer    C:\Windows\system32\srvsvc.dll
17:07:52.0285 4144  LanmanServer - ok
17:07:52.0315 4144  [ 435F0F6DC87A4B5DA78F1FA309884189 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
17:07:52.0365 4144  LanmanWorkstation - ok
17:07:52.0435 4144  [ 3C7FCBBC35E0A52CE9B12E9CC4F5B991 ] LiveUpdate      C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
17:07:52.0605 4144  LiveUpdate - ok
17:07:52.0655 4144  [ FD015B4F95DAA2B712F0E372A116FBAD ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
17:07:52.0715 4144  lltdio - ok
17:07:52.0725 4144  [ 7450DBCF754391DD6363FFFD5EF0E789 ] lltdsvc        C:\Windows\System32\lltdsvc.dll
17:07:52.0795 4144  lltdsvc - ok
17:07:52.0815 4144  [ 35D40113E4A5B961B6CE5C5857702518 ] lmhosts        C:\Windows\System32\lmhsvc.dll
17:07:52.0865 4144  lmhosts - ok
17:07:52.0885 4144  [ A2262FB9F28935E862B4DB46438C80D2 ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
17:07:52.0905 4144  LSI_FC - ok
17:07:52.0915 4144  [ 30D73327D390F72A62F32C103DAF1D6D ] LSI_SAS        C:\Windows\system32\drivers\lsi_sas.sys
17:07:52.0935 4144  LSI_SAS - ok
17:07:52.0955 4144  [ E1E36FEFD45849A95F1AB81DE0159FE3 ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
17:07:52.0965 4144  LSI_SCSI - ok
17:07:52.0985 4144  [ 42885BB44B6E065B8575A8DD6C430C52 ] luafv          C:\Windows\system32\drivers\luafv.sys
17:07:53.0045 4144  luafv - ok
17:07:53.0115 4144  [ 8113133EC42DD6C566908008CE913EDD ] LVcKap          C:\Windows\system32\DRIVERS\LVcKap.sys
17:07:53.0195 4144  LVcKap - ok
17:07:53.0255 4144  [ 9E41266C68C11D7101A2D18CD1F7553E ] LVCOMSer        C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
17:07:53.0275 4144  LVCOMSer - ok
17:07:53.0345 4144  [ 0DD5B8AF4917A2821047450195C511B3 ] LVMVDrv        C:\Windows\system32\DRIVERS\LVMVDrv.sys
17:07:53.0495 4144  LVMVDrv - ok
17:07:53.0525 4144  [ 406B1D186F75B4B4832D6237859E1B00 ] LVPr2Mon        C:\Windows\system32\DRIVERS\LVPr2Mon.sys
17:07:53.0545 4144  LVPr2Mon - ok
17:07:53.0595 4144  [ 85C2E84BC1224C75A20B5560D5A15DB9 ] LVPrcSrv        C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
17:07:53.0625 4144  LVPrcSrv - ok
17:07:53.0635 4144  [ 656180E9C0C5199520972426C44BC2F0 ] LVSrvLauncher  C:\Program Files\Common Files\LogiShrd\SrvLnch\SrvLnch.exe
17:07:53.0685 4144  LVSrvLauncher - ok
17:07:53.0705 4144  [ BE5E104BE263921D6842C555DB6A5C23 ] LVUSBSta        C:\Windows\system32\drivers\LVUSBSta.sys
17:07:53.0725 4144  LVUSBSta - ok
17:07:53.0745 4144  [ 500D089CE760D83DA2B6CBA681AA9949 ] MBAMProtector  C:\Windows\system32\drivers\mbam.sys
17:07:53.0765 4144  MBAMProtector - ok
17:07:53.0815 4144  [ 85B16A92B117A5A800032ECD904B86DB ] MBAMScheduler  C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
17:07:53.0855 4144  MBAMScheduler - ok
17:07:53.0905 4144  [ 20E2469DB709FC675E655CEAA11BE312 ] MBAMService    C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
17:07:53.0955 4144  MBAMService - ok
17:07:54.0005 4144  [ E93C1AD58E88A0846EAEE10671C2A8F3 ] Mcx2Svc        C:\Windows\system32\Mcx2Svc.dll
17:07:54.0035 4144  Mcx2Svc - ok
17:07:54.0095 4144  [ D153B14FC6598EAE8422A2037553ADCE ] megasas        C:\Windows\system32\drivers\megasas.sys
17:07:54.0105 4144  megasas - ok
17:07:54.0135 4144  [ 9DFA3A459AF0954AA85B4F7622AD87BB ] MMCSS          C:\Windows\system32\mmcss.dll
17:07:54.0195 4144  MMCSS - ok
17:07:54.0225 4144  [ 21755967298A46FB6ADFEC9DB6012211 ] Modem          C:\Windows\system32\drivers\modem.sys
17:07:54.0295 4144  Modem - ok
17:07:54.0305 4144  [ EC839BA91E45CCE6EADAFC418FFF8206 ] monitor        C:\Windows\system32\DRIVERS\monitor.sys
17:07:54.0375 4144  monitor - ok
17:07:54.0415 4144  [ 5FBA13C1A1841B0885D316ED3589489D ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
17:07:54.0435 4144  mouclass - ok
17:07:54.0445 4144  [ B569B5C5D3BDE545DF3A6AF512CCCDBA ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
17:07:54.0475 4144  mouhid - ok
17:07:54.0505 4144  [ 01F1E5A3E4877C931CBB31613FEC16A6 ] MountMgr        C:\Windows\system32\drivers\mountmgr.sys
17:07:54.0525 4144  MountMgr - ok
17:07:54.0565 4144  [ 8BE15F71DE6FF33FC56DCDE7B2B9EFE8 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
17:07:54.0595 4144  MozillaMaintenance - ok
17:07:54.0625 4144  [ 583A41F26278D9E0EA548163D6139397 ] mpio            C:\Windows\system32\drivers\mpio.sys
17:07:54.0645 4144  mpio - ok
17:07:54.0675 4144  [ 6E7A7F0C1193EE5648443FE2D4B789EC ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
17:07:54.0725 4144  mpsdrv - ok
17:07:54.0765 4144  [ 563ED845885C6A7C09A7715D8BD0585C ] MpsSvc          C:\Windows\system32\mpssvc.dll
17:07:54.0855 4144  MpsSvc - ok
17:07:54.0885 4144  [ 4FBBB70D30FD20EC51F80061703B001E ] Mraid35x        C:\Windows\system32\drivers\mraid35x.sys
17:07:54.0915 4144  Mraid35x - ok
17:07:54.0955 4144  [ 1D8828B98EE309D65E006F0829E280E5 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
17:07:55.0015 4144  MRxDAV - ok
17:07:55.0015 4144  [ 8AF705CE1BB907932157FAB821170F27 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
17:07:55.0055 4144  mrxsmb - ok
17:07:55.0075 4144  [ 47E13AB23371BE3279EEF22BBFA2C1BE ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
17:07:55.0105 4144  mrxsmb10 - ok
17:07:55.0115 4144  [ 90B3FC7BD6B3D7EE7635DEBBA2187F66 ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
17:07:55.0135 4144  mrxsmb20 - ok
17:07:55.0155 4144  [ 742AED7939E734C36B7E8D6228CE26B7 ] msahci          C:\Windows\system32\drivers\msahci.sys
17:07:55.0165 4144  msahci - ok
17:07:55.0195 4144  [ 3FC82A2AE4CC149165A94699183D3028 ] msdsm          C:\Windows\system32\drivers\msdsm.sys
17:07:55.0205 4144  msdsm - ok
17:07:55.0245 4144  [ BC64A92D821EFEA8BAB8E8CAF1B668BC ] MSDTC          C:\Windows\System32\msdtc.exe
17:07:55.0275 4144  MSDTC - ok
17:07:55.0305 4144  [ 729EAFEFD4E7417165F353A18DBE947D ] Msfs            C:\Windows\system32\drivers\Msfs.sys
17:07:55.0375 4144  Msfs - ok
17:07:55.0385 4144  [ 5F454A16A5146CD91A176D70F0CFA3EC ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
17:07:55.0405 4144  msisadrv - ok
17:07:55.0425 4144  [ 8ACF956D9154E893E789881430C12632 ] MSiSCSI        C:\Windows\system32\iscsiexe.dll
17:07:55.0475 4144  MSiSCSI - ok
17:07:55.0485 4144  msiserver - ok
17:07:55.0525 4144  [ 892CEDEFA7E0FFE7BE8DA651B651D047 ] MSKSSRV        C:\Windows\system32\drivers\MSKSSRV.sys
17:07:55.0575 4144  MSKSSRV - ok
17:07:55.0585 4144  [ AE2CB1DA69B2676B4CEE2A501AF5871C ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
17:07:55.0635 4144  MSPCLOCK - ok
17:07:55.0655 4144  [ F910DA84FA90C44A3ADDB7CD874463FD ] MSPQM          C:\Windows\system32\drivers\MSPQM.sys
17:07:55.0705 4144  MSPQM - ok
17:07:55.0715 4144  [ 84571C0AE07647BA38D493F5F0015DF7 ] MsRPC          C:\Windows\system32\drivers\MsRPC.sys
17:07:55.0735 4144  MsRPC - ok
17:07:55.0745 4144  [ 4385C80EDE885E25492D408CAD91BD6F ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
17:07:55.0765 4144  mssmbios - ok
17:07:55.0785 4144  [ C826DD1373F38AFD9CA46EC3C436A14E ] MSTEE          C:\Windows\system32\drivers\MSTEE.sys
17:07:55.0845 4144  MSTEE - ok
17:07:55.0855 4144  [ FA7AA70050CF5E2D15DE00941E5665E5 ] Mup            C:\Windows\system32\Drivers\mup.sys
17:07:55.0875 4144  Mup - ok
17:07:55.0895 4144  [ 1CDBB5D002FE2BC5300AA20550D8A52E ] napagent        C:\Windows\system32\qagentRT.dll
17:07:55.0965 4144  napagent - ok
17:07:55.0985 4144  [ 497DE786240303EE67AB01F5690C24C2 ] NativeWifiP    C:\Windows\system32\DRIVERS\nwifi.sys
17:07:56.0015 4144  NativeWifiP - ok
17:07:56.0055 4144  [ EF04748A7A7266EDBDBE02B161A0685D ] NAVENG          C:\PROGRA~2\Symantec\DEFINI~1\VIRUSD~1\20061106.064\NAVENG.SYS
17:07:56.0075 4144  NAVENG - ok
17:07:56.0105 4144  [ 09F3BFDC47718459B42D696CB671F65F ] NAVEX15        C:\PROGRA~2\Symantec\DEFINI~1\VIRUSD~1\20061106.064\NAVEX15.SYS
17:07:56.0155 4144  NAVEX15 - ok
17:07:56.0185 4144  [ 227C11E1E7CF6EF8AFB2A238D209760C ] NDIS            C:\Windows\system32\drivers\ndis.sys
17:07:56.0225 4144  NDIS - ok
17:07:56.0245 4144  [ 7584F1794B23B83D63CC124A8C56D103 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
17:07:56.0315 4144  NdisTapi - ok
17:07:56.0335 4144  [ 5DE5EE546BF40838EBE0E01CB629DF64 ] Ndisuio        C:\Windows\system32\DRIVERS\ndisuio.sys
17:07:56.0395 4144  Ndisuio - ok
17:07:56.0415 4144  [ 397402ADCBB8946223A1950101F6CD94 ] NdisWan        C:\Windows\system32\DRIVERS\ndiswan.sys
17:07:56.0495 4144  NdisWan - ok
17:07:56.0495 4144  [ 874C12E3AD1431CABC854697D302C563 ] NDProxy        C:\Windows\system32\drivers\NDProxy.sys
17:07:56.0575 4144  NDProxy - ok
17:07:56.0595 4144  [ 356DBB9F98E8DC1028DD3092FCEEB877 ] NetBIOS        C:\Windows\system32\DRIVERS\netbios.sys
17:07:56.0655 4144  NetBIOS - ok
17:07:56.0675 4144  [ E3A168912E7EEFC3BD3B814720D68B41 ] netbt          C:\Windows\system32\DRIVERS\netbt.sys
17:07:56.0735 4144  netbt - ok
17:07:56.0745 4144  [ C731B1FE449D4E9CEA358C9D55B69BE9 ] Netlogon        C:\Windows\system32\lsass.exe
17:07:56.0765 4144  Netlogon - ok
17:07:56.0795 4144  [ 90A4DAE28B94497F83BEA0F2A3B77092 ] Netman          C:\Windows\System32\netman.dll
17:07:56.0855 4144  Netman - ok
17:07:56.0875 4144  [ 7C5C3D9CEEE838856B828AB6F98A2857 ] netprofm        C:\Windows\System32\netprofm.dll
17:07:56.0935 4144  netprofm - ok
17:07:56.0975 4144  [ 91D44AA2A61006136DA32118A179BF12 ] netr73          C:\Windows\system32\DRIVERS\netr73.sys
17:07:57.0035 4144  netr73 - ok
17:07:57.0075 4144  [ F9102685F97F9BA85F4A70AFCF722CFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
17:07:57.0095 4144  NetTcpPortSharing - ok
17:07:57.0145 4144  [ 2E7FB731D4790A1BC6270ACCEFACB36E ] nfrd960        C:\Windows\system32\drivers\nfrd960.sys
17:07:57.0155 4144  nfrd960 - ok
17:07:57.0175 4144  [ C424117A562F2DE37A42266894C79AEB ] NlaSvc          C:\Windows\System32\nlasvc.dll
17:07:57.0235 4144  NlaSvc - ok
17:07:57.0265 4144  [ 4F9832BEB9FAFD8CEB0E541F1323B26E ] Npfs            C:\Windows\system32\drivers\Npfs.sys
17:07:57.0325 4144  Npfs - ok
17:07:57.0345 4144  [ 23B8201A363DE0E649FC75EE9874DEE2 ] nsi            C:\Windows\system32\nsisvc.dll
17:07:57.0415 4144  nsi - ok
17:07:57.0425 4144  [ B488DFEC274DE1FC9D653870EF2587BE ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
17:07:57.0485 4144  nsiproxy - ok
17:07:57.0525 4144  [ 3F379380A4A2637F559444E338CF1B51 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
17:07:57.0565 4144  Ntfs - ok
17:07:57.0595 4144  [ E875C093AEC0C978A90F30C9E0DFBB72 ] ntrigdigi      C:\Windows\system32\drivers\ntrigdigi.sys
17:07:57.0655 4144  ntrigdigi - ok
17:07:57.0675 4144  [ EC5EFB3C60F1B624648344A328BCE596 ] Null            C:\Windows\system32\drivers\Null.sys
17:07:57.0735 4144  Null - ok
17:07:57.0765 4144  [ A1108084B0D2FC43DCC401735770E2A3 ] NVENETFD        C:\Windows\system32\DRIVERS\nvmfdx32.sys
17:07:57.0845 4144  NVENETFD - ok
17:07:58.0045 4144  [ 66B4BF606FCC7F0622D4A21BB1461089 ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys
17:07:58.0405 4144  nvlddmkm - ok
17:07:58.0435 4144  [ E69E946F80C1C31C53003BFBF50CBB7C ] nvraid          C:\Windows\system32\drivers\nvraid.sys
17:07:58.0455 4144  nvraid - ok
17:07:58.0475 4144  [ 9E0BA19A28C498A6D323D065DB76DFFC ] nvstor          C:\Windows\system32\drivers\nvstor.sys
17:07:58.0485 4144  nvstor - ok
17:07:58.0545 4144  [ D122F7C5F79C68868F5DC28CEFEB2ECF ] nvsvc          C:\Windows\system32\nvvsvc.exe
17:07:58.0635 4144  nvsvc - ok
17:07:58.0645 4144  [ 07C186427EB8FCC3D8D7927187F260F7 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
17:07:58.0665 4144  nv_agp - ok
17:07:58.0675 4144  NwlnkFlt - ok
17:07:58.0675 4144  NwlnkFwd - ok
17:07:58.0695 4144  [ BE32DA025A0BE1878F0EE8D6D9386CD5 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
17:07:58.0765 4144  ohci1394 - ok
17:07:58.0795 4144  [ 016D01D3B8FB976A193C7434BED8DCCF ] p2pimsvc        C:\Windows\system32\p2psvc.dll
17:07:58.0865 4144  p2pimsvc - ok
17:07:58.0875 4144  [ 016D01D3B8FB976A193C7434BED8DCCF ] p2psvc          C:\Windows\system32\p2psvc.dll
17:07:58.0925 4144  p2psvc - ok
17:07:58.0935 4144  [ 0FA9B5055484649D63C303FE404E5F4D ] Parport        C:\Windows\system32\DRIVERS\parport.sys
17:07:58.0995 4144  Parport - ok
17:07:59.0045 4144  [ 555A5B2C8022983BC7467BC925B222EE ] partmgr        C:\Windows\system32\drivers\partmgr.sys
17:07:59.0065 4144  partmgr - ok
17:07:59.0075 4144  [ 4F9A6A8A31413180D0FCB279AD5D8112 ] Parvdm          C:\Windows\system32\DRIVERS\parvdm.sys
17:07:59.0125 4144  Parvdm - ok
17:07:59.0135 4144  [ D8C5C215C932233A4F1D7F368F4E4E65 ] PcaSvc          C:\Windows\System32\pcasvc.dll
17:07:59.0165 4144  PcaSvc - ok
17:07:59.0185 4144  [ 1085D75657807E0E8B32F9E19A1647C3 ] pci            C:\Windows\system32\drivers\pci.sys
17:07:59.0205 4144  pci - ok
17:07:59.0215 4144  [ 3B1901E401473E03EB8C874271E50C26 ] pciide          C:\Windows\system32\drivers\pciide.sys
17:07:59.0235 4144  pciide - ok
17:07:59.0245 4144  [ E6F3FB1B86AA519E7698AD05E58B04E5 ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
17:07:59.0265 4144  pcmcia - ok
17:07:59.0295 4144  [ 6349F6ED9C623B44B52EA3C63C831A92 ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
17:07:59.0385 4144  PEAUTH - ok
17:07:59.0445 4144  [ D2D2FA02B722336960EEAE0AE7107891 ] PID_0928        C:\Windows\system32\DRIVERS\LV561AV.SYS
17:07:59.0485 4144  PID_0928 - ok
17:07:59.0535 4144  [ CD05A38D166BEADE18030BAFC0C0A939 ] pla            C:\Windows\system32\pla.dll
17:07:59.0645 4144  pla - ok
17:07:59.0695 4144  [ 747BB4C31F3B6E8D1B5ED0AD61518CB5 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
17:07:59.0725 4144  PlugPlay - ok
17:07:59.0745 4144  [ 016D01D3B8FB976A193C7434BED8DCCF ] PNRPAutoReg    C:\Windows\system32\p2psvc.dll
17:07:59.0775 4144  PNRPAutoReg - ok
17:07:59.0795 4144  [ 016D01D3B8FB976A193C7434BED8DCCF ] PNRPsvc        C:\Windows\system32\p2psvc.dll
17:07:59.0825 4144  PNRPsvc - ok
17:07:59.0875 4144  [ 04DF0452FBEDEDF9297FD2E5440CB3C9 ] Point32        C:\Windows\system32\DRIVERS\point32k.sys
17:07:59.0895 4144  Point32 - ok
17:07:59.0935 4144  [ 5EBDEC613BD377CE9A85382BE5C6B83B ] PolicyAgent    C:\Windows\System32\ipsecsvc.dll
17:07:59.0965 4144  PolicyAgent - ok
17:07:59.0995 4144  [ 6C359AC71D7B550A0D41F9DB4563CE05 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
17:08:00.0045 4144  PptpMiniport - ok
17:08:00.0065 4144  [ 0E3CEF5D28B40CF273281D620C50700A ] Processor      C:\Windows\system32\drivers\processr.sys
17:08:00.0125 4144  Processor - ok
17:08:00.0155 4144  [ 213112E152E68F0E4705E36F052A2880 ] ProfSvc        C:\Windows\system32\profsvc.dll
17:08:00.0215 4144  ProfSvc - ok
17:08:00.0215 4144  [ C731B1FE449D4E9CEA358C9D55B69BE9 ] ProtectedStorage C:\Windows\system32\lsass.exe
17:08:00.0245 4144  ProtectedStorage - ok
17:08:00.0255 4144  [ B74EDF14453C9987E99E66535047EBEE ] PSched          C:\Windows\system32\DRIVERS\pacer.sys
17:08:00.0315 4144  PSched - ok
17:08:00.0355 4144  [ CCDAC889326317792480C0A67156A1EC ] ql2300          C:\Windows\system32\drivers\ql2300.sys
17:08:00.0395 4144  ql2300 - ok
17:08:00.0425 4144  [ 81A7E5C076E59995D54BC1ED3A16E60B ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
17:08:00.0445 4144  ql40xx - ok
17:08:00.0485 4144  [ CA61BDFD3713A7CE75F2812AFC431594 ] QWAVE          C:\Windows\system32\qwave.dll
17:08:00.0505 4144  QWAVE - ok
17:08:00.0515 4144  [ D2B3E2B7426DC23E185FBC73C8936C12 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
17:08:00.0545 4144  QWAVEdrv - ok
17:08:00.0615 4144  [ A6201FD4D96F7FA7DB3AD609BE60FF5C ] R300            C:\Windows\system32\DRIVERS\atikmdag.sys
17:08:00.0685 4144  R300 - ok
17:08:00.0705 4144  [ BD7B30F55B3649506DD8B3D38F571D2A ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
17:08:00.0775 4144  RasAcd - ok
17:08:00.0825 4144  [ F14F4AAB9F54D099FE99192BDB100AC9 ] RasAuto        C:\Windows\System32\rasauto.dll
17:08:00.0885 4144  RasAuto - ok
17:08:00.0905 4144  [ 88587DD843E2059848995B407B67F6CF ] Rasl2tp        C:\Windows\system32\DRIVERS\rasl2tp.sys
17:08:00.0955 4144  Rasl2tp - ok
17:08:00.0975 4144  [ 11D65E29BC9D1E4114D18FE68194394C ] RasMan          C:\Windows\System32\rasmans.dll
17:08:01.0055 4144  RasMan - ok
17:08:01.0075 4144  [ CCF4E9C6CBBAC81437F88CB2AE0B6C96 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
17:08:01.0135 4144  RasPppoe - ok
17:08:01.0155 4144  [ 54129C5D9581BBEC8BD1EBD3BA813F47 ] rdbss          C:\Windows\system32\DRIVERS\rdbss.sys
17:08:01.0205 4144  rdbss - ok
17:08:01.0215 4144  [ 794585276B5D7FCA9F3FC15543F9F0B9 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
17:08:01.0265 4144  RDPCDD - ok
17:08:01.0285 4144  [ E8BD98D46F2ED77132BA927FCCB47D8B ] rdpdr          C:\Windows\system32\drivers\rdpdr.sys
17:08:01.0345 4144  rdpdr - ok
17:08:01.0345 4144  [ 980B56E2E273E19D3A9D72D5C420F008 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
17:08:01.0405 4144  RDPENCDD - ok
17:08:01.0435 4144  [ 8830E790A74A96605FABA74F9665BB3C ] RDPWD          C:\Windows\system32\drivers\RDPWD.sys
17:08:01.0505 4144  RDPWD - ok
17:08:01.0525 4144  [ 6C1A43C589EE8011A1EBFD51C01B77CE ] RemoteAccess    C:\Windows\System32\mprdim.dll
17:08:01.0575 4144  RemoteAccess - ok
17:08:01.0595 4144  [ 9A043808667C8C1893DA7275AF373F0E ] RemoteRegistry  C:\Windows\system32\regsvc.dll
17:08:01.0655 4144  RemoteRegistry - ok
17:08:01.0665 4144  [ 5123F83CBC4349D065534EEB6BBDC42B ] RpcLocator      C:\Windows\system32\locator.exe
17:08:01.0685 4144  RpcLocator - ok
17:08:01.0705 4144  [ 7B981222A257D076885BFFB66F19B7CE ] RpcSs          C:\Windows\system32\rpcss.dll
17:08:01.0745 4144  RpcSs - ok
17:08:01.0775 4144  [ 97E939D2128FEC5D5A3E6E79B290A2F4 ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
17:08:01.0835 4144  rspndr - ok
17:08:01.0845 4144  [ 959EF612D2CCFDB6D9E443F8E3655013 ] RTL8023xp      C:\Windows\system32\DRIVERS\Rtnicxp.sys
17:08:01.0915 4144  RTL8023xp - ok
17:08:01.0935 4144  [ C731B1FE449D4E9CEA358C9D55B69BE9 ] SamSs          C:\Windows\system32\lsass.exe
17:08:01.0955 4144  SamSs - ok
17:08:01.0975 4144  [ 3CE8F073A557E172B330109436984E30 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
17:08:01.0995 4144  sbp2port - ok
17:08:02.0015 4144  [ 565B4B9E5AD2F2F18A4F8AAFA6C06BBB ] SCardSvr        C:\Windows\System32\SCardSvr.dll
17:08:02.0075 4144  SCardSvr - ok
17:08:02.0125 4144  [ 886CEC884B5BE29AB9828B8AB46B11F7 ] Schedule        C:\Windows\system32\schedsvc.dll
17:08:02.0205 4144  Schedule - ok
17:08:02.0255 4144  [ 0600E04315FE543802A379D5D23C8BE0 ] SCPolicySvc    C:\Windows\System32\certprop.dll
17:08:02.0315 4144  SCPolicySvc - ok
17:08:02.0325 4144  [ F7B6BF02240D0A764ADF8C8966735552 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
17:08:02.0375 4144  SDRSVC - ok
17:08:02.0395 4144  [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
17:08:02.0455 4144  secdrv - ok
17:08:02.0465 4144  [ 8388C4133DDBE62AD7BC3EC9F14271ED ] seclogon        C:\Windows\system32\seclogon.dll
17:08:02.0535 4144  seclogon - ok
17:08:02.0545 4144  [ 34350AE2C1D33D21C7305F861BD8DAD8 ] SENS            C:\Windows\System32\sens.dll
17:08:02.0615 4144  SENS - ok
17:08:02.0625 4144  [ 68E44E331D46F0FB38F0863A84CD1A31 ] Serenum        C:\Windows\system32\DRIVERS\serenum.sys
17:08:02.0685 4144  Serenum - ok
17:08:02.0695 4144  [ C70D69A918B178D3C3B06339B40C2E1B ] Serial          C:\Windows\system32\DRIVERS\serial.sys
17:08:02.0745 4144  Serial - ok
17:08:02.0765 4144  [ 450ACCD77EC5CEA720C1CDB9E26B953B ] sermouse        C:\Windows\system32\drivers\sermouse.sys
17:08:02.0795 4144  sermouse - ok
17:08:02.0815 4144  [ 78878235DA4DF0D116E86837A0A21DF8 ] SessionEnv      C:\Windows\system32\sessenv.dll
17:08:02.0865 4144  SessionEnv - ok
17:08:02.0885 4144  [ 103B79418DA647736EE95645F305F68A ] sffdisk        C:\Windows\system32\drivers\sffdisk.sys
17:08:02.0935 4144  sffdisk - ok
17:08:02.0935 4144  [ 8FD08A310645FE872EEEC6E08C6BF3EE ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
17:08:02.0995 4144  sffp_mmc - ok
17:08:03.0015 4144  [ 9CFA05FCFCB7124E69CFC812B72F9614 ] sffp_sd        C:\Windows\system32\drivers\sffp_sd.sys
17:08:03.0085 4144  sffp_sd - ok
17:08:03.0105 4144  [ 46ED8E91793B2E6F848015445A0AC188 ] sfloppy        C:\Windows\system32\drivers\sfloppy.sys
17:08:03.0155 4144  sfloppy - ok
17:08:03.0185 4144  [ 11AAC56C04D26195D21C4F5229DB4726 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
17:08:03.0245 4144  SharedAccess - ok
17:08:03.0275 4144  [ B264DFA21677728613267FE63802B332 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
17:08:03.0305 4144  ShellHWDetection - ok
17:08:03.0325 4144  [ D2A595D6EEBEEAF4334F8E50EFBC9931 ] sisagp          C:\Windows\system32\drivers\sisagp.sys
17:08:03.0345 4144  sisagp - ok
17:08:03.0355 4144  [ CEDD6F4E7D84E9F98B34B3FE988373AA ] SiSRaid2        C:\Windows\system32\drivers\sisraid2.sys
17:08:03.0365 4144  SiSRaid2 - ok
17:08:03.0385 4144  [ DF843C528C4F69D12CE41CE462E973A7 ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
17:08:03.0405 4144  SiSRaid4 - ok
17:08:03.0455 4144  [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate    C:\Program Files\Skype\Updater\Updater.exe
17:08:03.0485 4144  SkypeUpdate - ok
17:08:03.0555 4144  [ 7610645679BB5994210D21A347E0C479 ] slsvc          C:\Windows\system32\SLsvc.exe
17:08:03.0775 4144  slsvc - ok
17:08:03.0815 4144  [ 49670F3E42A0178A0AB425AE15D88E7C ] SLUINotify      C:\Windows\system32\SLUINotify.dll
17:08:03.0875 4144  SLUINotify - ok
17:08:03.0905 4144  [ AC0D90738ADB51A6FD12FF00874A2162 ] Smb            C:\Windows\system32\DRIVERS\smb.sys
17:08:03.0965 4144  Smb - ok
17:08:03.0985 4144  [ 2A146A055B4401C16EE62D18B8E2A032 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
17:08:04.0005 4144  SNMPTRAP - ok
17:08:04.0035 4144  [ 905782BCF15B6E5AF9905B77923C7FA2 ] SPBBCDrv        C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys
17:08:04.0065 4144  SPBBCDrv - ok
17:08:04.0095 4144  [ 426F9B029AA9162CECCF65369457D046 ] spldr          C:\Windows\system32\drivers\spldr.sys
17:08:04.0105 4144  spldr - ok
17:08:04.0115 4144  [ DA612EF2556776DF2630B68BF2D48935 ] Spooler        C:\Windows\System32\spoolsv.exe
17:08:04.0155 4144  Spooler - ok
17:08:04.0165 4144  [ 15E29EB26DD53EB6385629F4622B5519 ] SRTSP          C:\Windows\system32\Drivers\SRTSP.SYS
17:08:04.0185 4144  SRTSP - ok
17:08:04.0215 4144  [ FD0C0333FAE09DBD1170E0D607ECA5C8 ] SRTSPL          C:\Windows\system32\Drivers\SRTSPL.SYS
17:08:04.0235 4144  SRTSPL - ok
17:08:04.0255 4144  [ 7E60A4A4035BE470F47C6806DA57DB99 ] SRTSPX          C:\Windows\system32\Drivers\SRTSPX.SYS
17:08:04.0265 4144  SRTSPX - ok
17:08:04.0305 4144  [ 038579C35F7CAD4A4BBF735DBF83277D ] srv            C:\Windows\system32\DRIVERS\srv.sys
17:08:04.0345 4144  srv - ok
17:08:04.0365 4144  [ 6971A757AF8CB5E2CBCBB76CC530DB6C ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
17:08:04.0395 4144  srv2 - ok
17:08:04.0415 4144  [ 9E1A4603B874EEBCE0298113951ABEFB ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
17:08:04.0435 4144  srvnet - ok
17:08:04.0455 4144  [ 8D3E4BAFF8B3997138C38EB1B600519A ] SSDPSRV        C:\Windows\System32\ssdpsrv.dll
17:08:04.0515 4144  SSDPSRV - ok
17:08:04.0525 4144  [ A36EE93698802CD899F98BFD553D8185 ] ssmdrv          C:\Windows\system32\DRIVERS\ssmdrv.sys
17:08:04.0545 4144  ssmdrv - ok
17:08:04.0565 4144  [ A941E099EF46E3CC12F898CBE1C39910 ] stisvc          C:\Windows\System32\wiaservc.dll
17:08:04.0615 4144  stisvc - ok
17:08:04.0615 4144  stllssvr - ok
17:08:04.0665 4144  [ 1379BDB336F8158C176A465E30759F57 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
17:08:04.0675 4144  swenum - ok
17:08:04.0755 4144  [ F577910A133A592234EBAAD3F3AFA258 ] SwitchBoard    C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
17:08:04.0815 4144  SwitchBoard ( UnsignedFile.Multi.Generic ) - warning
17:08:04.0815 4144  SwitchBoard - detected UnsignedFile.Multi.Generic (1)
17:08:04.0835 4144  [ 749ADA8D6C18A08ADFEDE69CBF5DB2E0 ] swprv          C:\Windows\System32\swprv.dll
17:08:04.0905 4144  swprv - ok
17:08:04.0955 4144  [ 2698CD77F4D73EA7988F0BC63DE8E3D6 ] Symantec Core LC C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
17:08:05.0015 4144  Symantec Core LC - ok
17:08:05.0045 4144  [ 2FE779B1A07747FED8074C433C3C4604 ] SymAppCore      C:\Program Files\Common Files\Symantec Shared\AppCore\AppSvc32.exe
17:08:05.0065 4144  SymAppCore - ok
17:08:05.0085 4144  [ 192AA3AC01DF071B541094F251DEED10 ] Symc8xx        C:\Windows\system32\drivers\symc8xx.sys
17:08:05.0095 4144  Symc8xx - ok
17:08:05.0125 4144  [ 9D98270B5F10A4C84E8DA417C30756E1 ] SymEvent        C:\Windows\system32\Drivers\SYMEVENT.SYS
17:08:05.0145 4144  SymEvent - ok
17:08:05.0165 4144  [ 7F4011A719BF30E3DBD84D3A0A45C91C ] SYMREDRV        C:\Windows\System32\Drivers\SYMREDRV.SYS
17:08:05.0175 4144  SYMREDRV - ok
17:08:05.0185 4144  [ 2F03CBDB0F22278D05D5D616C993AB58 ] SYMTDI          C:\Windows\System32\Drivers\SYMTDI.SYS
17:08:05.0205 4144  SYMTDI - ok
17:08:05.0225 4144  [ 8C8EB8C76736EBAF3B13B633B2E64125 ] Sym_hi          C:\Windows\system32\drivers\sym_hi.sys
17:08:05.0235 4144  Sym_hi - ok
17:08:05.0255 4144  [ 8072AF52B5FD103BBBA387A1E49F62CB ] Sym_u3          C:\Windows\system32\drivers\sym_u3.sys
17:08:05.0265 4144  Sym_u3 - ok
17:08:05.0305 4144  [ C1FDFF9AFD8C6C905485981B41DCFB40 ] SysMain        C:\Windows\system32\sysmain.dll
17:08:05.0385 4144  SysMain - ok
17:08:05.0405 4144  [ 2DCA225EAE15F42C0933E998EE0231C3 ] TabletInputService C:\Windows\System32\TabSvc.dll
17:08:05.0445 4144  TabletInputService - ok
17:08:05.0465 4144  [ EF3DD33C740FC2F82E7E4622F1C49289 ] TapiSrv        C:\Windows\System32\tapisrv.dll
17:08:05.0525 4144  TapiSrv - ok
17:08:05.0535 4144  [ 68FA52794AE9ACC61BDE16FE0956B414 ] TBS            C:\Windows\System32\tbssvc.dll
17:08:05.0595 4144  TBS - ok
17:08:05.0645 4144  [ 4A82FA8F0DF67AA354580C3FAAF8BDE3 ] Tcpip          C:\Windows\system32\drivers\tcpip.sys
17:08:05.0695 4144  Tcpip - ok
17:08:05.0715 4144  [ 4A82FA8F0DF67AA354580C3FAAF8BDE3 ] Tcpip6          C:\Windows\system32\DRIVERS\tcpip.sys
17:08:05.0755 4144  Tcpip6 - ok
17:08:05.0795 4144  [ 5CE0C4A7B12D0067DAD527D72B68C726 ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
17:08:05.0865 4144  tcpipreg - ok
17:08:05.0885 4144  [ 964248AEF49C31FA6A93201A73FFAF50 ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
17:08:05.0955 4144  TDPIPE - ok
17:08:05.0985 4144  [ 7D2C1AE1648A60FCE4AA0F7982E419D3 ] TDTCP          C:\Windows\system32\drivers\tdtcp.sys
17:08:06.0055 4144  TDTCP - ok
17:08:06.0075 4144  [ AB4FDE8AF4A0270A46A001C08CBCE1C2 ] tdx            C:\Windows\system32\DRIVERS\tdx.sys
17:08:06.0135 4144  tdx - ok
17:08:06.0145 4144  [ 2C549BD9DD091FBFAA0A2A48E82EC2FB ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
17:08:06.0165 4144  TermDD - ok
17:08:06.0185 4144  [ FAD71C1E8E4047B154E899AE31EB8CAA ] TermService    C:\Windows\System32\termsrv.dll
17:08:06.0275 4144  TermService - ok
17:08:06.0305 4144  [ B264DFA21677728613267FE63802B332 ] Themes          C:\Windows\system32\shsvcs.dll
17:08:06.0335 4144  Themes - ok
17:08:06.0345 4144  [ 9DFA3A459AF0954AA85B4F7622AD87BB ] THREADORDER    C:\Windows\system32\mmcss.dll
17:08:06.0405 4144  THREADORDER - ok
17:08:06.0415 4144  [ 6BBA0582C0025D43729A1112D3B57897 ] TrkWks          C:\Windows\System32\trkwks.dll
17:08:06.0485 4144  TrkWks - ok
17:08:06.0535 4144  [ 34E388A395FEDBA1D0511ED39BBF4074 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
17:08:06.0565 4144  TrustedInstaller - ok
17:08:06.0585 4144  [ 29F0ECA726F0D51F7E048BDB0B372F29 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
17:08:06.0645 4144  tssecsrv - ok
17:08:06.0655 4144  [ 65E953BC0084D44498B51F59784D2A82 ] tunmp          C:\Windows\system32\DRIVERS\tunmp.sys
17:08:06.0675 4144  tunmp - ok
17:08:06.0685 4144  [ 4A39BDA5E0FD30BDF4884F9D33AE6105 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
17:08:06.0705 4144  tunnel - ok
17:08:06.0735 4144  [ C3ADE15414120033A36C0F293D4A4121 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
17:08:06.0755 4144  uagp35 - ok
17:08:06.0775 4144  [ 6348DA98707CEDA8A0DFB05820E17732 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
17:08:06.0835 4144  udfs - ok
17:08:06.0865 4144  [ 24A333F4F14DCFB6FF6D5A1B9E5D79DD ] UI0Detect      C:\Windows\system32\UI0Detect.exe
17:08:06.0885 4144  UI0Detect - ok
17:08:06.0905 4144  [ 75E6890EBFCE0841D3291B02E7A8BDB0 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
17:08:06.0915 4144  uliagpkx - ok
17:08:06.0945 4144  [ 3CD4EA35A6221B85DCC25DAA46313F8D ] uliahci        C:\Windows\system32\drivers\uliahci.sys
17:08:06.0965 4144  uliahci - ok
17:08:06.0975 4144  [ 8514D0E5CD0534467C5FC61BE94A569F ] UlSata          C:\Windows\system32\drivers\ulsata.sys
17:08:06.0985 4144  UlSata - ok
17:08:07.0005 4144  [ 38C3C6E62B157A6BC46594FADA45C62B ] ulsata2        C:\Windows\system32\drivers\ulsata2.sys
17:08:07.0015 4144  ulsata2 - ok
17:08:07.0035 4144  [ 3FB78F1D1DD86D87BECECD9DFFA24DD9 ] umbus          C:\Windows\system32\DRIVERS\umbus.sys
17:08:07.0105 4144  umbus - ok
17:08:07.0125 4144  [ 8EB871A3DEB6B3D5A85EB6DDFC390B59 ] upnphost        C:\Windows\System32\upnphost.dll
17:08:07.0185 4144  upnphost - ok
17:08:07.0225 4144  [ F6BF998AE33E3FB6C7D27F0560F1173F ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
17:08:07.0285 4144  usbaudio - ok
17:08:07.0305 4144  [ 8BD3AE150D97BA4E633C6C5C51B41AE1 ] usbccgp        C:\Windows\system32\DRIVERS\usbccgp.sys
17:08:07.0375 4144  usbccgp - ok
17:08:07.0395 4144  [ E9476E6C486E76BC4898074768FB7131 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
17:08:07.0455 4144  usbcir - ok
17:08:07.0465 4144  [ 63FE924D8A1113C3BA6750693FBEC7D3 ] usbehci        C:\Windows\system32\DRIVERS\usbehci.sys
17:08:07.0515 4144  usbehci - ok
17:08:07.0525 4144  [ 5EDEC5510592C905E91817707DCE62A2 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
17:08:07.0575 4144  usbhub - ok
17:08:07.0595 4144  [ 38DBC7DD6CC5A72011F187425384388B ] usbohci        C:\Windows\system32\DRIVERS\usbohci.sys
17:08:07.0645 4144  usbohci - ok
17:08:07.0665 4144  [ B51E52ACF758BE00EF3A58EA452FE360 ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
17:08:07.0715 4144  usbprint - ok
17:08:07.0725 4144  [ FDBAABF07244C60B0F4E0A6E71A107C6 ] USBSTOR        C:\Windows\system32\DRIVERS\USBSTOR.SYS
17:08:07.0775 4144  USBSTOR - ok
17:08:07.0795 4144  [ 325DBBACB8A36AF9988CCF40EAC228CC ] usbuhci        C:\Windows\system32\DRIVERS\usbuhci.sys
17:08:07.0845 4144  usbuhci - ok
17:08:07.0865 4144  [ F79D0D7C9004474CB42746D9B2C30A2B ] UxSms          C:\Windows\System32\uxsms.dll
17:08:07.0915 4144  UxSms - ok
17:08:07.0935 4144  [ C9D0BAFEE0D0A2681F048CA61BC0DA96 ] vds            C:\Windows\System32\vds.exe
17:08:07.0965 4144  vds - ok
17:08:07.0995 4144  [ 7D92BE0028ECDEDEC74617009084B5EF ] vga            C:\Windows\system32\DRIVERS\vgapnp.sys
17:08:08.0045 4144  vga - ok
17:08:08.0065 4144  [ 17A8F877314E4067F8C8172CC6D9101C ] VgaSave        C:\Windows\System32\drivers\vga.sys
17:08:08.0125 4144  VgaSave - ok
17:08:08.0145 4144  [ 045D9961E591CF0674A920B6BA3BA5CB ] viaagp          C:\Windows\system32\drivers\viaagp.sys
17:08:08.0165 4144  viaagp - ok
17:08:08.0175 4144  [ 56A4DE5F02F2E88182B0981119B4DD98 ] ViaC7          C:\Windows\system32\drivers\viac7.sys
17:08:08.0235 4144  ViaC7 - ok
17:08:08.0255 4144  [ FD2E3175FCADA350C7AB4521DCA187EC ] viaide          C:\Windows\system32\drivers\viaide.sys
17:08:08.0265 4144  viaide - ok
17:08:08.0285 4144  [ 103E84C95832D0ED93507997CC7B54E8 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
17:08:08.0305 4144  volmgr - ok
17:08:08.0315 4144  [ 294DA8D3F965F6A8DB934A83C7B461FF ] volmgrx        C:\Windows\system32\drivers\volmgrx.sys
17:08:08.0335 4144  volmgrx - ok
17:08:08.0345 4144  [ 11EF6C1CAEF76B685233450A126125D6 ] volsnap        C:\Windows\system32\drivers\volsnap.sys
17:08:08.0365 4144  volsnap - ok
17:08:08.0385 4144  [ D984439746D42B30FC65A4C3546C6829 ] vsmraid        C:\Windows\system32\drivers\vsmraid.sys
17:08:08.0405 4144  vsmraid - ok
17:08:08.0445 4144  [ E0E29D9EF2524ABD11749C7C2FD7F607 ] VSS            C:\Windows\system32\vssvc.exe
17:08:08.0525 4144  VSS - ok
17:08:08.0545 4144  [ 62B0D0F6F5580D9D0DFA5E0B466FF2ED ] W32Time        C:\Windows\system32\w32time.dll
17:08:08.0615 4144  W32Time - ok
17:08:08.0635 4144  [ 48DFEE8F1AF7C8235D4E626F0C4FE031 ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
17:08:08.0685 4144  WacomPen - ok
17:08:08.0695 4144  [ 6E1A5BE9A0605F3D932FF35FBA2B22B3 ] Wanarp          C:\Windows\system32\DRIVERS\wanarp.sys
17:08:08.0755 4144  Wanarp - ok
17:08:08.0755 4144  [ 6E1A5BE9A0605F3D932FF35FBA2B22B3 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
17:08:08.0805 4144  Wanarpv6 - ok
17:08:08.0835 4144  [ 0A716C08CB13C3A8F4F51E882DBF7416 ] wanatw          C:\Windows\system32\DRIVERS\wanatw4.sys
17:08:08.0875 4144  wanatw - ok
17:08:08.0905 4144  [ C1B19162E0509CEAB4CDF664E139D956 ] wcncsvc        C:\Windows\System32\wcncsvc.dll
17:08:08.0925 4144  wcncsvc - ok
17:08:08.0945 4144  [ 11BCB7AFCDD7AADACB5746F544D3A9C7 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
17:08:08.0985 4144  WcsPlugInService - ok
17:08:08.0985 4144  [ AFC5AD65B991C1E205CF25CFDBF7A6F4 ] Wd              C:\Windows\system32\drivers\wd.sys
17:08:09.0005 4144  Wd - ok
17:08:09.0055 4144  [ 9950E3D0F08141C7E89E64456AE7DC73 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
17:08:09.0095 4144  Wdf01000 - ok
17:08:09.0115 4144  [ 2A424B89B14EF17A3D06BCB5A8F79601 ] WdiServiceHost  C:\Windows\system32\wdi.dll
17:08:09.0135 4144  WdiServiceHost - ok
17:08:09.0155 4144  [ 2A424B89B14EF17A3D06BCB5A8F79601 ] WdiSystemHost  C:\Windows\system32\wdi.dll
17:08:09.0175 4144  WdiSystemHost - ok
17:08:09.0245 4144  [ B1EC8C9300C58CE5E90990F71EEA644C ] Web Assistant Updater C:\Program Files\Web Assistant\ExtensionUpdaterService.exe
17:08:09.0275 4144  Web Assistant Updater ( UnsignedFile.Multi.Generic ) - warning
17:08:09.0275 4144  Web Assistant Updater - detected UnsignedFile.Multi.Generic (1)
17:08:09.0315 4144  [ 01E41C264EEDCB827820A1909162579F ] WebClient      C:\Windows\System32\webclnt.dll
17:08:09.0345 4144  WebClient - ok
17:08:09.0385 4144  [ 9CF67FF7F8D34CBF115D0C278B9F74AA ] Wecsvc          C:\Windows\system32\wecsvc.dll
17:08:09.0455 4144  Wecsvc - ok
17:08:09.0465 4144  [ B68CAB45DB1DAB59D92ACADFAD6364A8 ] wercplsupport  C:\Windows\System32\wercplsupport.dll
17:08:09.0525 4144  wercplsupport - ok
17:08:09.0545 4144  [ 36BA0707680EF4236FD752BEE982CC25 ] WerSvc          C:\Windows\System32\WerSvc.dll
17:08:09.0615 4144  WerSvc - ok
17:08:09.0635 4144  [ EC0180032C6D201EF26FAD1A0C14E674 ] WinDefend      C:\Program Files\Windows Defender\mpsvc.dll
17:08:09.0655 4144  WinDefend - ok
17:08:09.0665 4144  WinHttpAutoProxySvc - ok
17:08:09.0695 4144  [ 38A7B89DE4E3417C122317949667FDD8 ] Winmgmt        C:\Windows\system32\wbem\WMIsvc.dll
17:08:09.0765 4144  Winmgmt - ok
17:08:09.0775 4144  [ 3F6823040030C3E4DA1CF11CD40B7534 ] WinRM          C:\Windows\system32\WsmSvc.dll
17:08:09.0865 4144  WinRM - ok
17:08:09.0905 4144  [ 7640ACEA41348BFEF34B76E245501261 ] Wlansvc        C:\Windows\System32\wlansvc.dll
17:08:09.0955 4144  Wlansvc - ok
17:08:09.0985 4144  [ 701A9F884A294327E9141D73746EE279 ] WmiAcpi        C:\Windows\system32\DRIVERS\wmiacpi.sys
17:08:10.0035 4144  WmiAcpi - ok
17:08:10.0065 4144  [ A279323BEE5FFFAFDA222910BCE92132 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
17:08:10.0085 4144  wmiApSrv - ok
17:08:10.0135 4144  [ ACB2E63D50157E3EA7140F29D9E76A48 ] WMPNetworkSvc  C:\Program Files\Windows Media Player\wmpnetwk.exe
17:08:10.0205 4144  WMPNetworkSvc - ok
17:08:10.0225 4144  [ 3D3B3B80C12ABE506F56930C46422C28 ] WPCSvc          C:\Windows\System32\wpcsvc.dll
17:08:10.0265 4144  WPCSvc - ok
17:08:10.0275 4144  [ C24844A1D0D9528B19D5BC266B8CD572 ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
17:08:10.0325 4144  WPDBusEnum - ok
17:08:10.0355 4144  [ 2D27171B16A577EF14C1273668753485 ] WpdUsb          C:\Windows\system32\DRIVERS\wpdusb.sys
17:08:10.0425 4144  WpdUsb - ok
17:08:10.0545 4144  [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
17:08:10.0585 4144  WPFFontCache_v0400 - ok
17:08:10.0605 4144  [ 84620AECDCFD2A7A14E6263927D8C0ED ] ws2ifsl        C:\Windows\system32\drivers\ws2ifsl.sys
17:08:10.0675 4144  ws2ifsl - ok
17:08:10.0695 4144  [ F97CBB919AF6D0A6643D1A59C15014D1 ] wscsvc          C:\Windows\System32\wscsvc.dll
17:08:10.0715 4144  wscsvc - ok
17:08:10.0725 4144  WSearch - ok
17:08:10.0775 4144  [ 6298277B73C77FA99106B271A7525163 ] wuauserv        C:\Windows\system32\wuaueng.dll
17:08:10.0865 4144  wuauserv - ok
17:08:10.0905 4144  [ A2AAFCC8A204736296D937C7C545B53F ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
17:08:10.0965 4144  WUDFRd - ok
17:08:10.0975 4144  [ DB5BF5AAB72B1B99B5331231D09EBB26 ] wudfsvc        C:\Windows\System32\WUDFSvc.dll
17:08:11.0035 4144  wudfsvc - ok
17:08:11.0055 4144  ================ Scan global ===============================
17:08:11.0085 4144  [ 8CD98A8EC9CADAF4E051CDCAC15C96C4 ] C:\Windows\system32\basesrv.dll
17:08:11.0125 4144  [ E3F137ADC0A9D7F3A2E4F557272FE6B3 ] C:\Windows\system32\winsrv.dll
17:08:11.0145 4144  [ E3F137ADC0A9D7F3A2E4F557272FE6B3 ] C:\Windows\system32\winsrv.dll
17:08:11.0165 4144  [ 329CF3C97CE4C19375C8ABCABAE258B0 ] C:\Windows\system32\services.exe
17:08:11.0175 4144  [Global] - ok
17:08:11.0175 4144  ================ Scan MBR ==================================
17:08:11.0185 4144  [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
17:08:11.0415 4144  \Device\Harddisk0\DR0 - ok
17:08:11.0415 4144  ================ Scan VBR ==================================
17:08:11.0415 4144  [ B0542D59127DF6D4C6FF55B90A0C69D0 ] \Device\Harddisk0\DR0\Partition1
17:08:11.0415 4144  \Device\Harddisk0\DR0\Partition1 - ok
17:08:11.0425 4144  ============================================================
17:08:11.0425 4144  Scan finished
17:08:11.0425 4144  ============================================================
17:08:11.0435 5128  Detected object count: 5
17:08:11.0435 5128  Actual detected object count: 5
17:08:37.0035 5128  AVM WLAN Connection Service ( UnsignedFile.Multi.Generic ) - skipped by user
17:08:37.0035 5128  AVM WLAN Connection Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
17:08:37.0045 5128  avmeject ( UnsignedFile.Multi.Generic ) - skipped by user
17:08:37.0045 5128  avmeject ( UnsignedFile.Multi.Generic ) - User select action: Skip
17:08:37.0045 5128  IDriverT ( UnsignedFile.Multi.Generic ) - skipped by user
17:08:37.0045 5128  IDriverT ( UnsignedFile.Multi.Generic ) - User select action: Skip
17:08:37.0055 5128  SwitchBoard ( UnsignedFile.Multi.Generic ) - skipped by user
17:08:37.0055 5128  SwitchBoard ( UnsignedFile.Multi.Generic ) - User select action: Skip
17:08:37.0065 5128  Web Assistant Updater ( UnsignedFile.Multi.Generic ) - skipped by user
17:08:37.0065 5128  Web Assistant Updater ( UnsignedFile.Multi.Generic ) - User select action: Skip

cosinus 03.11.2012 17:29
Downloade dir bitte aswMBR.exe und speichere die Datei auf deinem Desktop.

Hinweis: Bitte den Virenscanner abstellen bevor du aswMBR ausführst, denn v.a. Avira meldet darin oft einen Fehalalrm!
  • Starte die aswMBR.exe Vista und Win7 User aswMBR per Rechtsklick "als Administrator ausführen"
  • Das Tool wird dich fragen, ob Du mit der aktuellen Virendefinition von AVAST! dein System scannen willst. Beantworte diese Frage bitte mit Ja. (Sollte deine Firewall fragen, bitte den Zugriff auf das Internet zulassen) Der Download der Definitionen kann je nach Verbindung eine Weile dauern.
  • Klicke auf Scan.
  • Warte bitte bis Scan finished successfully im DOS Fenster steht.
  • Drücke auf Save Log und speichere diese auf dem Desktop.
Poste mir die aswMBR.txt in deiner nächsten Antwort. Wichtig: Drücke keinesfalls einen der Fix Buttons ohne Anweisung Hinweis: Sollte der Scan Button ausgeblendet sein, schließe das Tool und starte es erneut. Sollte es erneut nicht klappen teile mir das bitte mit.

Noch ein Hinweis: Sollte aswMBR abstürzen und es kommt eine Meldung wie "aswMBR.exe funktioniert nicht mehr, dann mach Folgendes:
Starte aswMBR neu, wähle unten links im Drop-Down-Menü (unten links im Fenster von aswMBR) bei "AV scan" (none) aus und klick nochmal auf den Scan-Button.

Wyatt 03.11.2012 18:25
Code:
aswMBR version 0.9.9.1665 Copyright(c) 2011 AVAST Software
Run date: 2012-11-03 17:49:52
-----------------------------
17:49:52.660    OS Version: Windows 6.0.6000
17:49:52.660    Number of processors: 2 586 0x4B02
17:49:52.661    ComputerName: PC-PC  UserName: Pc
17:50:08.145    Initialize success
18:00:16.573    AVAST engine defs: 12110300
18:00:22.425    Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP2T0L0-2
18:00:22.432    Disk 0 Vendor: ST3500418AS CC38 Size: 476940MB BusType: 3
18:00:22.487    Disk 0 MBR read successfully
18:00:22.492    Disk 0 MBR scan
18:00:22.527    Disk 0 Windows VISTA default MBR code
18:00:22.534    Disk 0 Partition 1 00    27 Hidden NTFS WinRE NTFS        8192 MB offset 2048
18:00:22.599    Disk 0 Partition 2 80 (A) 07    HPFS/NTFS NTFS      468746 MB offset 16779264
18:00:22.659    Disk 0 scanning sectors +976771072
18:00:22.790    Disk 0 scanning C:\Windows\system32\drivers
18:00:41.579    Service scanning
18:01:14.347    Modules scanning
18:01:19.189    Disk 0 trace - called modules:
18:01:19.206    ntkrnlpa.exe CLASSPNP.SYS disk.sys acpi.sys hal.dll ataport.SYS pciide.sys PCIIDEX.SYS atapi.sys
18:01:19.216    1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x85bad0d0]
18:01:19.217    3 ntkrnlpa.exe[824b07e2] -> nt!IofCallDriver -> [0x85172268]
18:01:19.217    5 acpi.sys[804d632a] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP2T0L0-2[0x8479bbb0]
18:01:23.441    AVAST engine scan C:\Windows
18:01:28.103    AVAST engine scan C:\Windows\system32
18:07:20.565    AVAST engine scan C:\Windows\system32\drivers
18:07:47.514    AVAST engine scan C:\Users\Pc
18:25:22.039    Disk 0 MBR has been saved successfully to "C:\Users\Pc\Desktop\MBR.dat"
18:25:22.057    The log file has been saved successfully to "C:\Users\Pc\Desktop\ölö.txt"

cosinus 03.11.2012 19:00
Ok, offensichtlich noch keine Rootkits zu sehen
Dann bitte jetzt CF ausführen:

ComboFix

Ein Leitfaden und Tutorium zur Nutzung von ComboFix
  • Schliesse alle Programme, vor allem dein Antivirenprogramm und andere Hintergrundwächter sowie deinen Internetbrowser.
  • Starte combofix.exe von deinem Desktop aus, bestätige die Warnmeldungen, führe die Updates durch (falls vorgeschlagen), installiere die Wiederherstellungskonsole (falls vorgeschlagen) und lass dein System durchsuchen.
    Vermeide es auch während Combofix läuft die Maus und Tastatur zu benutzen.
  • Im Anschluss öffnet sich automatisch eine combofix.txt, diesen Inhalt bitte kopieren ([Strg]a, [Strg]c) und in deinen Beitrag einfügen ([Strg]v). Die Datei findest du außerdem unter: C:\ComboFix.txt.
Wichtiger Hinweis:
Combofix darf ausschließlich ausgeführt werden, wenn ein Kompetenzler dies ausdrücklich empfohlen hat!

Es sollte nie auf eigene Initiative hin ausgeführt werden! Eine falsche Benutzung kann ernsthafte Computerprobleme nach sich ziehen und eine Bereinigung der Infektion noch erschweren.

Solltest du nach der Ausführung von Combofix Probleme beim Starten von Anwendungen haben und Meldungen erhalten wie

Zitat:
Es wurde versucht, einen Registrierungsschlüssel einem ungültigen Vorgang zu unterziehen, der zum Löschen markiert wurde.
startest du Windows dann manuell neu und die Fehlermeldungen sollten nicht mehr auftauchen.

Wyatt 03.11.2012 20:17
Code:
ComboFix 12-11-03.02 - Pc 03.11.2012  19:58:47.1.2 - x86
Microsoft® Windows Vista™ Home Premium  6.0.6000.0.1252.49.1031.18.2815.1768 [GMT 1:00]
ausgeführt von:: c:\users\Pc\Desktop\ComboFix.exe
.
.
((((((((((((((((((((((((((((((((((((  Weitere Löschungen  ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
C:\Install.exe
c:\program files\BrowserCompanion
c:\program files\BrowserCompanion\blabbers-ch.crx
c:\program files\BrowserCompanion\blabbers-ff-full.xpi
c:\program files\BrowserCompanion\logo.ico
c:\program files\BrowserCompanion\tdataprotocol.dll
c:\program files\BrowserCompanion\terms.lnk.url
c:\program files\BrowserCompanion\toolbar.dll
c:\program files\BrowserCompanion\uninstall.exe
c:\program files\BrowserCompanion\updatebhoWin32.dll
c:\program files\BrowserCompanion\updater.ini
c:\program files\BrowserCompanion\widgetserv.exe
c:\program files\Web Assistant\ExTEnsion32.dll
c:\users\Pc\Music\Neuer Ordner (2)\desktop_1.ini
c:\users\Pc\Music\Neuer Ordner (2)\desktop_2.ini
c:\users\Pc\uninstall.exe
c:\windows\system32\roboot.exe
c:\windows\system32\URTTemp
c:\windows\system32\URTTemp\regtlib.exe
.
.
(((((((((((((((((((((((  Dateien erstellt von 2012-10-03 bis 2012-11-03  ))))))))))))))))))))))))))))))
.
.
2012-11-03 19:11 . 2012-11-03 19:11        --------        d-----w-        c:\users\Pc\AppData\Local\temp
2012-11-03 19:11 . 2012-11-03 19:11        --------        d-----w-        c:\users\Default\AppData\Local\temp
2012-11-03 18:17 . 2012-10-30 22:51        21256        ----a-w-        c:\windows\system32\drivers\aswFsBlk.sys
2012-11-03 18:17 . 2012-10-30 22:51        361032        ----a-w-        c:\windows\system32\drivers\aswSP.sys
2012-11-03 18:17 . 2012-11-03 18:17        --------        d-----w-        c:\windows\LastGood
2012-11-03 18:17 . 2012-10-30 22:51        35928        ----a-w-        c:\windows\system32\drivers\aswRdr.sys
2012-11-03 18:17 . 2012-10-30 22:51        54232        ----a-w-        c:\windows\system32\drivers\aswTdi.sys
2012-11-03 18:17 . 2012-10-30 22:51        738504        ----a-w-        c:\windows\system32\drivers\aswSnx.sys
2012-11-03 18:17 . 2012-10-30 22:51        58680        ----a-w-        c:\windows\system32\drivers\aswMonFlt.sys
2012-11-03 18:16 . 2012-10-30 22:51        41224        ----a-w-        c:\windows\avastSS.scr
2012-11-03 18:16 . 2012-10-30 22:50        227648        ----a-w-        c:\windows\system32\aswBoot.exe
2012-11-03 18:15 . 2012-11-03 18:15        42760        ----a-w-        c:\windows\system32\certsentry.dll
2012-11-03 18:15 . 2012-11-03 18:15        --------        d-----w-        c:\programdata\AVAST Software
2012-11-03 18:15 . 2012-11-03 18:15        --------        d-----w-        c:\program files\AVAST Software
2012-11-03 18:13 . 2012-11-03 18:13        --------        d-----w-        c:\programdata\Comodo
2012-11-03 18:12 . 2012-11-03 18:12        --------        d-----w-        c:\users\Pc\AppData\Local\Comodo
2012-11-03 18:12 . 2012-11-03 18:13        --------        d-----w-        c:\program files\Comodo
2012-11-03 17:38 . 2012-11-03 17:38        --------        d-----w-        c:\programdata\CheckPoint
2012-11-02 14:09 . 2012-10-17 00:32        6918632        ----a-w-        c:\programdata\Microsoft\Windows Defender\Definition Updates\{818B4FD5-C9DF-44D7-9788-4007A5E2528D}\mpengine.dll
2012-10-27 12:21 . 2012-10-27 12:21        --------        d-----w-        c:\program files\CPUID
2012-10-26 09:37 . 2012-10-26 09:40        --------        d-----w-        c:\users\Gast
2012-10-22 19:53 . 2012-11-03 15:57        --------        d-----w-        c:\users\Pc\.rainlendar2
2012-10-22 19:52 . 2012-10-22 19:52        --------        d-----w-        c:\program files\Rainlendar2
2012-10-05 00:32 . 2012-10-05 00:32        82952        ----a-w-        c:\windows\system32\drivers\inspect.sys
2012-10-05 00:32 . 2012-10-05 00:32        42776        ----a-w-        c:\windows\system32\drivers\cmdhlp.sys
2012-10-05 00:32 . 2012-10-05 00:32        494416        ----a-w-        c:\windows\system32\drivers\cmdGuard.sys
2012-10-05 00:32 . 2012-10-05 00:32        19632        ----a-w-        c:\windows\system32\drivers\cmderd.sys
2012-10-05 00:32 . 2012-10-05 00:32        34024        ----a-w-        c:\windows\system32\cmdcsr.dll
2012-10-05 00:32 . 2012-10-05 00:32        301264        ----a-w-        c:\windows\system32\guard32.dll
.
.
.
((((((((((((((((((((((((((((((((((((  Find3M Bericht  ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-09-29 17:54 . 2012-01-03 21:26        22856        ----a-w-        c:\windows\system32\drivers\mbam.sys
2012-10-27 20:23 . 2012-10-27 20:23        261600        ----a-w-        c:\program files\mozilla firefox\components\browsercomps.dll
.
.
((((((((((((((((((((((((((((  Autostartpunkte der Registrierung  ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2012-10-30 22:50        121528        ----a-w-        c:\program files\AVAST Software\Avast\ashShell.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Rainlendar2"="c:\program files\Rainlendar2\Rainlendar2.exe" [2012-07-02 2498048]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="RtHDVCpl.exe" [2006-11-09 3784704]
"ATICCC"="c:\program files\ATI Technologies\ATI.ACE\CLIStart.exe" [2006-07-11 90112]
"avgnt"="c:\program files\Avira\AntiVir Desktop\avgnt.exe" [2012-08-10 348664]
"AdobeAAMUpdater-1.0"="c:\program files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2012-04-04 446392]
"AdobeCS6ServiceManager"="c:\program files\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" [2012-03-09 1073312]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2012-01-17 252296]
"APSDaemon"="c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2012-02-20 59240]
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2012-04-18 421888]
"LogitechQuickCamRibbon"="c:\program files\Logitech\QuickCam\Quickcam.exe" [2007-10-25 2178832]
"LogitechCommunicationsManager"="c:\program files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe" [2007-10-25 563984]
"COMODO"="c:\program files\COMODO\COMODO GeekBuddy\CLPSLA.exe" [2011-11-23 208184]
"CPA"="c:\program files\COMODO\COMODO GeekBuddy\VALA.exe" [2011-11-23 182584]
"COMODO Internet Security"="c:\program files\COMODO\COMODO Internet Security\cfp.exe" [2012-10-05 6756048]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2012-10-30 4297136]
.
c:\users\Pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
tbhcn.lnk - c:\users\Pc\AppData\Roaming\BrowserCompanion\tbhcn.exe [2012-7-2 695448]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\windows\System32\guard32.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux2"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CLPSLS]
@="Service"
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]
"DisableMonitoring"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
"DisableMonitoring"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
"DisableMonitoring"=dword:00000001
.
--- Andere Dienste/Treiber im Speicher ---
.
*NewlyCreated* - 13129354
*NewlyCreated* - ASWFSBLK
*NewlyCreated* - ASWMBR
*NewlyCreated* - ASWMONFLT
*NewlyCreated* - ASWRDR
*NewlyCreated* - ASWSNX
*NewlyCreated* - ASWSP
*NewlyCreated* - ASWTDI
*NewlyCreated* - COMHOST
*NewlyCreated* - INSPECT
*Deregistered* - 13129354
*Deregistered* - aswMBR
.
Inhalt des "geplante Tasks" Ordners
.
.
------- Zusätzlicher Suchlauf -------
.
uStart Page = hxxp://www.searchplusnetwork.com/?sp=vit4
IE: {{7644E42D-B096-457F-8B5B-901238FC81AE} - c:\program files\ICQ7.6\ICQ.exe
TCP: DhcpNameServer = 192.168.0.1
FF - ProfilePath - c:\users\Pc\AppData\Roaming\Mozilla\Firefox\Profiles\rcnr80y1.default\
FF - prefs.js: browser.search.selectedEngine - Plus! Network
FF - prefs.js: browser.startup.homepage - google.de
FF - prefs.js: keyword.URL - hxxp://www.searchplusnetwork.com/?sp=vit4&q=
FF - user.js: network.cookie.cookieBehavior - 0
FF - user.js: privacy.clearOnShutdown.cookies - false
FF - user.js: security.warn_viewing_mixed - false
FF - user.js: security.warn_viewing_mixed.show_once - false
FF - user.js: security.warn_submit_insecure - false
FF - user.js: security.warn_submit_insecure.show_once - false
FF - user.js: extensions.incredibar_i.newTab - false
FF - user.js: extensions.incredibar_i.tlbrSrchUrl - hxxp://mystart.Incredibar.com/?a=6PQfPJPC0A&loc=IB_TB&i=26&search=
FF - user.js: extensions.incredibar_i.id - bac7fcca000000000000001c4afe466d
FF - user.js: extensions.incredibar_i.instlDay - 15488
FF - user.js: extensions.incredibar_i.vrsn - 1.5.11.14
FF - user.js: extensions.incredibar_i.vrsni - 1.5.11.14
FF - user.js: extensions.incredibar_i.vrsnTs - 1.5.11.1423:08
FF - user.js: extensions.incredibar_i.prtnrId - Incredibar
FF - user.js: extensions.incredibar_i.prdct - incredibar
FF - user.js: extensions.incredibar_i.aflt - orgnl
FF - user.js: extensions.incredibar_i.smplGrp - none
FF - user.js: extensions.incredibar_i.tlbrId - base
FF - user.js: extensions.incredibar_i.instlRef -
FF - user.js: extensions.incredibar_i.dfltLng -
FF - user.js: extensions.incredibar_i.excTlbr - false
FF - user.js: extensions.incredibar_i.ms_url_id -
FF - user.js: extensions.incredibar_i.upn2 - 6PQfPJPC0A
FF - user.js: extensions.incredibar_i.upn2n - 92541888025477972
FF - user.js: extensions.incredibar_i.productid - 26
FF - user.js: extensions.incredibar_i.installerproductid - 26
FF - user.js: extensions.incredibar_i.did - 10643
FF - user.js: extensions.incredibar_i.ppd - 1
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
URLSearchHooks-{d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0} - (no file)
URLSearchHooks-{1392b8d2-5c05-419f-a8f6-b9f15a596612} - (no file)
WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
WebBrowser-{D40B90B4-D3B1-4D6B-A5D7-DC041C1B76C0} - (no file)
HKLM-Run-Freecorder FLV Service - c:\program files\Freecorder\FLVSrvc.exe
AddRemove-BrowserCompanion - c:\program files\BrowserCompanion\uninstall.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, hxxp://www.gmer.net
Rootkit scan 2012-11-03 20:11
Windows 6.0.6000  NTFS
.
Scanne versteckte Prozesse...
.
Scanne versteckte Autostarteinträge...
.
Scanne versteckte Dateien...
.
Scan erfolgreich abgeschlossen
versteckte Dateien: 0
.
**************************************************************************
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_USERS\S-1-5-21-446868349-3723851372-2455889026-1002\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.*Lß]
@Class="Shell"
.
[HKEY_USERS\S-1-5-21-446868349-3723851372-2455889026-1002\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.*Lß\OpenWithList]
@Class="Shell"
"a"="vlc.exe"
"MRUList"="a"
.
Zeit der Fertigstellung: 2012-11-03  20:15:09
ComboFix-quarantined-files.txt  2012-11-03 19:15
.
Vor Suchlauf: 9 Verzeichnis(se), 365.204.070.400 Bytes frei
Nach Suchlauf: 11 Verzeichnis(se), 365.277.982.720 Bytes frei
.
- - End Of File - - D425770B3089603F2D345C06DDBE24F4

cosinus 04.11.2012 16:29
Code:
"COMODO Internet Security"="c:\program files\COMODO\COMODO Internet Security\cfp.exe" [2012-10-05 6756048]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2012-10-30 4297136]
Wieso läuft bei dir Avast und Comodo?!
Das ist kontraproduktiv, zwei solcher Programme installiert man nie gleichzeitig, ich empfehle dir Comodo zu deinstallieren. Die Windows-Firewall erledigt den Job des Paketfilters genauso gut.

Wyatt 04.11.2012 22:31
Hatte das Programm erst vor 2 Tagen drauf gemacht.. Habs jetzt wieder gelöscht. Soll ich den letzten Teil nochmal machen.

cosinus 05.11.2012 13:33
Combofix - Scripten

1. Starte das Notepad (Start / Ausführen / notepad[Enter])

2. Jetzt füge mit copy/paste den ganzen Inhalt der untenstehenden Codebox in das Notepad Fenster ein.

Code:
File::
c:\users\Pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\tbhcn.lnk

Folder::
c:\users\Pc\AppData\Roaming\BrowserCompanion

Firefox::
FF - ProfilePath - c:\users\Pc\AppData\Roaming\Mozilla\Firefox\Profiles\rcnr80y1.default\
FF - user.js: extensions.incredibar_i.newTab - false
FF - user.js: extensions.incredibar_i.tlbrSrchUrl - hxxp://mystart.Incredibar.com/?a=6PQfPJPC0A&loc=IB_TB&i=26&search=
FF - user.js: extensions.incredibar_i.id - bac7fcca000000000000001c4afe466d
FF - user.js: extensions.incredibar_i.instlDay - 15488
FF - user.js: extensions.incredibar_i.vrsn - 1.5.11.14
FF - user.js: extensions.incredibar_i.vrsni - 1.5.11.14
FF - user.js: extensions.incredibar_i.vrsnTs - 1.5.11.1423:08
FF - user.js: extensions.incredibar_i.prtnrId - Incredibar
FF - user.js: extensions.incredibar_i.prdct - incredibar
FF - user.js: extensions.incredibar_i.aflt - orgnl
FF - user.js: extensions.incredibar_i.smplGrp - none
FF - user.js: extensions.incredibar_i.tlbrId - base
FF - user.js: extensions.incredibar_i.instlRef -
FF - user.js: extensions.incredibar_i.dfltLng -
FF - user.js: extensions.incredibar_i.excTlbr - false
FF - user.js: extensions.incredibar_i.ms_url_id -
FF - user.js: extensions.incredibar_i.upn2 - 6PQfPJPC0A
FF - user.js: extensions.incredibar_i.upn2n - 92541888025477972
FF - user.js: extensions.incredibar_i.productid - 26
FF - user.js: extensions.incredibar_i.installerproductid - 26
FF - user.js: extensions.incredibar_i.did - 10643
FF - user.js: extensions.incredibar_i.ppd - 1
3. Speichere im Notepad als CFScript.txt auf dem Desktop.

4. Deaktivere den Guard Deines Antivirenprogramms und eine eventuell vorhandene Software Firewall.
(Auch Guards von Ad-, Spyware Programmen und den Tea Timer (wenn vorhanden) !)

5. Dann ziehe die CFScript.txt auf die cofi.exe, so wie es im unteren Bild zu sehen ist. Damit wird Combofix neu gestartet.

http://users.pandora.be/bluepatchy/m...s/CFScript.gif

6. Nach dem Neustart (es wird gefragt ob Du neustarten willst), poste bitte die folgenden Log Dateien:
Combofix.txt

Hinweis: Das obige Script ist nur für diesen einen User in dieser Situtation erstellt worden. Es ist auf keinen anderen Rechner portierbar und darf nicht anderweitig verwandt werden, da es das System nachhaltig schädigen kann!

Wyatt 05.11.2012 14:11
Code:
ComboFix 12-11-04.01 - Pc 05.11.2012  13:50:33.2.2 - x86
Microsoft® Windows Vista™ Home Premium  6.0.6000.0.1252.49.1031.18.2815.1739 [GMT 1:00]
ausgeführt von:: c:\users\Pc\Desktop\ComboFix.exe
Benutzte Befehlsschalter :: c:\users\Pc\Desktop\CFScript.txt
.
FILE ::
"c:\users\Pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\tbhcn.lnk"
.
.
((((((((((((((((((((((((((((((((((((  Weitere Löschungen  ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\Pc\AppData\Roaming\BrowserCompanion
c:\users\Pc\AppData\Roaming\BrowserCompanion\tbhcn.exe
c:\users\Pc\AppData\Roaming\BrowserCompanion\valuese.xml
.
.
(((((((((((((((((((((((  Dateien erstellt von 2012-10-05 bis 2012-11-05  ))))))))))))))))))))))))))))))
.
.
2012-11-05 12:58 . 2012-11-05 12:58        --------        d-----w-        c:\users\Pc\AppData\Local\temp
2012-11-05 12:58 . 2012-11-05 12:58        --------        d-----w-        c:\users\Default\AppData\Local\temp
2012-11-03 20:52 . 2012-11-03 20:52        --------        d-----w-        c:\programdata\CPA_VA
2012-11-03 18:15 . 2012-11-04 21:09        --------        d-----w-        c:\programdata\AVAST Software
2012-11-03 18:15 . 2012-11-03 18:15        --------        d-----w-        c:\program files\AVAST Software
2012-11-03 18:13 . 2012-11-04 21:25        --------        d-----w-        c:\programdata\Comodo
2012-11-03 17:38 . 2012-11-03 17:38        --------        d-----w-        c:\programdata\CheckPoint
2012-11-02 14:09 . 2012-10-17 00:32        6918632        ----a-w-        c:\programdata\Microsoft\Windows Defender\Definition Updates\{818B4FD5-C9DF-44D7-9788-4007A5E2528D}\mpengine.dll
2012-10-26 09:37 . 2012-10-26 09:40        --------        d-----w-        c:\users\Gast
2012-10-22 19:53 . 2012-11-05 12:13        --------        d-----w-        c:\users\Pc\.rainlendar2
2012-10-22 19:52 . 2012-10-22 19:52        --------        d-----w-        c:\program files\Rainlendar2
.
.
.
((((((((((((((((((((((((((((((((((((  Find3M Bericht  ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-09-29 17:54 . 2012-01-03 21:26        22856        ----a-w-        c:\windows\system32\drivers\mbam.sys
2012-10-27 20:23 . 2012-10-27 20:23        261600        ----a-w-        c:\program files\mozilla firefox\components\browsercomps.dll
.
.
((((((((((((((((((((((((((((  Autostartpunkte der Registrierung  ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Rainlendar2"="c:\program files\Rainlendar2\Rainlendar2.exe" [2012-07-02 2498048]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="RtHDVCpl.exe" [2006-11-09 3784704]
"ATICCC"="c:\program files\ATI Technologies\ATI.ACE\CLIStart.exe" [2006-07-11 90112]
"avgnt"="c:\program files\Avira\AntiVir Desktop\avgnt.exe" [2012-08-10 348664]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux2"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]
"DisableMonitoring"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
"DisableMonitoring"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
"DisableMonitoring"=dword:00000001
.
--- Andere Dienste/Treiber im Speicher ---
.
*NewlyCreated* - COMHOST
.
.
------- Zusätzlicher Suchlauf -------
.
uStart Page = hxxp://www.searchplusnetwork.com/?sp=vit4
IE: {{7644E42D-B096-457F-8B5B-901238FC81AE} - c:\program files\ICQ7.6\ICQ.exe
TCP: DhcpNameServer = 192.168.0.1
FF - ProfilePath - c:\users\Pc\AppData\Roaming\Mozilla\Firefox\Profiles\rcnr80y1.default\
FF - prefs.js: browser.search.selectedEngine - Plus! Network
FF - prefs.js: browser.startup.homepage - google.de
FF - prefs.js: keyword.URL - hxxp://www.searchplusnetwork.com/?sp=vit4&q=
FF - user.js: network.cookie.cookieBehavior - 0
FF - user.js: privacy.clearOnShutdown.cookies - false
FF - user.js: security.warn_viewing_mixed - false
FF - user.js: security.warn_viewing_mixed.show_once - false
FF - user.js: security.warn_submit_insecure - false
FF - user.js: security.warn_submit_insecure.show_once - false
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, hxxp://www.gmer.net
Rootkit scan 2012-11-05 13:58
Windows 6.0.6000  NTFS
.
Scanne versteckte Prozesse...
.
Scanne versteckte Autostarteinträge...
.
Scanne versteckte Dateien...
.
Scan erfolgreich abgeschlossen
versteckte Dateien: 0
.
**************************************************************************
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_USERS\S-1-5-21-446868349-3723851372-2455889026-1002\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.*Lß]
@Class="Shell"
.
[HKEY_USERS\S-1-5-21-446868349-3723851372-2455889026-1002\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.*Lß\OpenWithList]
@Class="Shell"
"a"="vlc.exe"
"MRUList"="a"
.
Zeit der Fertigstellung: 2012-11-05  14:00:17
ComboFix-quarantined-files.txt  2012-11-05 13:00
ComboFix2.txt  2012-11-03 19:15
.
Vor Suchlauf: 10 Verzeichnis(se), 356.752.183.296 Bytes frei
Nach Suchlauf: 11 Verzeichnis(se), 356.824.252.416 Bytes frei
.
- - End Of File - - 006A45DC4982429B65D37FEFB637D08E


Alle Zeitangaben in WEZ +1. Es ist jetzt 08:55 Uhr.
Seite 1 von 3 1 23
100 Beiträge dieses Themas auf einer Seite anzeigen

Copyright ©2000-2025, Trojaner-Board


Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131