Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung
Eine Art Bundespolizei-Trojaner?

Eine Art Bundespolizei-Trojaner?


Plagegeister aller Art und deren Bekämpfung: Eine Art Bundespolizei-Trojaner?

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

Antwort
Alt 09.04.2012, 01:41   #1
sandero
 
Eine Art Bundespolizei-Trojaner? - Standard

Eine Art Bundespolizei-Trojaner?


Huch, wie ist das denn passiert ? Hier dann jedenfalls die hoffentlich komplette Datei:

Code:
ATTFilter
13:38:02.0156 3780	TDSS rootkit removing tool 2.7.23.0 Mar 26 2012 13:40:18
13:38:02.0343 3780	============================================================
13:38:02.0343 3780	Current date / time: 2012/03/31 13:38:02.0343
13:38:02.0343 3780	SystemInfo:
13:38:02.0343 3780	
13:38:02.0343 3780	OS Version: 5.1.2600 ServicePack: 3.0
13:38:02.0343 3780	Product type: Workstation
13:38:02.0343 3780	ComputerName: ***
13:38:02.0343 3780	UserName: ***
13:38:02.0343 3780	Windows directory: C:\WINDOWS
13:38:02.0343 3780	System windows directory: C:\WINDOWS
13:38:02.0343 3780	Processor architecture: Intel x86
13:38:02.0343 3780	Number of processors: 2
13:38:02.0343 3780	Page size: 0x1000
13:38:02.0343 3780	Boot type: Normal boot
13:38:02.0343 3780	============================================================
13:38:03.0406 3780	Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000058
13:38:03.0406 3780	Drive \Device\Harddisk1\DR3 - Size: 0x7AF00000 (1.92 Gb), SectorSize: 0x200, Cylinders: 0xFA, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
13:38:03.0406 3780	Drive \Device\Harddisk2\DR4 - Size: 0xFB000000 (3.92 Gb), SectorSize: 0x200, Cylinders: 0x1FF, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
13:38:03.0406 3780	\Device\Harddisk0\DR0:
13:38:03.0406 3780	MBR used
13:38:03.0406 3780	\Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0xAFC6752
13:38:03.0406 3780	\Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0xAFC6800, BlocksNum 0x121FEDD5
13:38:03.0406 3780	\Device\Harddisk1\DR3:
13:38:03.0421 3780	MBR used
13:38:03.0421 3780	\Device\Harddisk1\DR3\Partition0: MBR, Type 0xE, StartLBA 0x20, BlocksNum 0x3D77E0
13:38:03.0421 3780	\Device\Harddisk2\DR4:
13:38:03.0421 3780	MBR used
13:38:03.0515 3780	Initialize success
13:38:03.0515 3780	============================================================
13:40:55.0500 2124	============================================================
13:40:55.0500 2124	Scan started
13:40:55.0500 2124	Mode: Manual; SigCheck; TDLFS; 
13:40:55.0500 2124	============================================================
13:40:55.0640 2124	Abiosdsk - ok
13:40:55.0656 2124	abp480n5 - ok
13:40:55.0718 2124	ACPI            (ac407f1a62c3a300b4f2b5a9f1d55b2c) C:\WINDOWS\system32\DRIVERS\ACPI.sys
13:40:56.0750 2124	ACPI - ok
13:40:56.0828 2124	ACPIEC          (9e1ca3160dafb159ca14f83b1e317f75) C:\WINDOWS\system32\drivers\ACPIEC.sys
13:40:56.0937 2124	ACPIEC - ok
13:40:57.0015 2124	Adobe LM Service (6ef096317e127aecf4cb61081d88ad0b) C:\Programme\Gemeinsame Dateien\Adobe Systems Shared\Service\Adobelmsvc.exe
13:40:57.0031 2124	Adobe LM Service ( UnsignedFile.Multi.Generic ) - warning
13:40:57.0031 2124	Adobe LM Service - detected UnsignedFile.Multi.Generic (1)
13:40:57.0171 2124	AdobeFlashPlayerUpdateSvc (0d4c486a24a711a45fd83acdf4d18506) C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
13:40:57.0187 2124	AdobeFlashPlayerUpdateSvc - ok
13:40:57.0203 2124	adpu160m - ok
13:40:57.0265 2124	aec             (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
13:40:57.0375 2124	aec - ok
13:40:57.0437 2124	AFD             (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys
13:40:57.0484 2124	AFD - ok
13:40:57.0562 2124	Aha154x - ok
13:40:57.0578 2124	aic78u2 - ok
13:40:57.0578 2124	aic78xx - ok
13:40:57.0625 2124	Alerter         (738d80cc01d7bc7584be917b7f544394) C:\WINDOWS\system32\alrsvc.dll
13:40:57.0718 2124	Alerter - ok
13:40:57.0765 2124	ALG             (190cd73d4984f94d823f9444980513e5) C:\WINDOWS\System32\alg.exe
13:40:57.0875 2124	ALG - ok
13:40:57.0875 2124	AliIde - ok
13:40:58.0015 2124	AmdK8           (58be3c2f1aa041ea56f7305a6463035c) C:\WINDOWS\system32\DRIVERS\AmdK8.sys
13:40:58.0062 2124	AmdK8 - ok
13:40:58.0062 2124	amsint - ok
13:40:58.0187 2124	AntiVirSchedulerService (c27d46b06d340293670450fce9dfb166) C:\Programme\Avira\AntiVir Desktop\sched.exe
13:40:58.0203 2124	AntiVirSchedulerService - ok
13:40:58.0218 2124	AntiVirService  (72d90e56563165984224493069c69ed4) C:\Programme\Avira\AntiVir Desktop\avguard.exe
13:40:58.0218 2124	AntiVirService - ok
13:40:58.0296 2124	AppMgmt - ok
13:40:58.0343 2124	Asapi           (1e0eeb62964513f4f1e18fee3c69c43d) C:\WINDOWS\system32\drivers\Asapi.sys
13:40:58.0359 2124	Asapi ( UnsignedFile.Multi.Generic ) - warning
13:40:58.0359 2124	Asapi - detected UnsignedFile.Multi.Generic (1)
13:40:58.0375 2124	asc - ok
13:40:58.0375 2124	asc3350p - ok
13:40:58.0390 2124	asc3550 - ok
13:40:58.0468 2124	aspnet_state    (0e5e4957549056e2bf2c49f4f6b601ad) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
13:40:58.0484 2124	aspnet_state - ok
13:40:58.0578 2124	AsyncMac        (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
13:40:58.0687 2124	AsyncMac - ok
13:40:58.0718 2124	atapi           (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
13:40:58.0828 2124	atapi - ok
13:40:58.0859 2124	Atdisk - ok
13:40:58.0890 2124	Atmarpc         (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
13:40:58.0984 2124	Atmarpc - ok
13:40:59.0078 2124	AudioSrv        (58ed0d5452df7be732193e7999c6b9a4) C:\WINDOWS\System32\audiosrv.dll
13:40:59.0187 2124	AudioSrv - ok
13:40:59.0250 2124	audstub         (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
13:40:59.0375 2124	audstub - ok
13:40:59.0500 2124	avgio           (0b497c79824f8e1bf22fa6aacd3de3a0) C:\Programme\Avira\AntiVir Desktop\avgio.sys
13:40:59.0515 2124	avgio - ok
13:40:59.0578 2124	avgntflt        (1e4114685de1ffa9675e09c6a1fb3f4b) C:\WINDOWS\system32\DRIVERS\avgntflt.sys
13:40:59.0593 2124	avgntflt - ok
13:40:59.0625 2124	avipbb          (0f78d3dae6dedd99ae54c9491c62adf2) C:\WINDOWS\system32\DRIVERS\avipbb.sys
13:40:59.0640 2124	avipbb - ok
13:40:59.0703 2124	Beep            (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
13:40:59.0843 2124	Beep - ok
13:40:59.0875 2124	BITS            (d6f603772a789bb3228f310d650b8bd1) C:\WINDOWS\system32\qmgr.dll
13:40:59.0984 2124	BITS - ok
13:41:00.0078 2124	Browser         (b42057f06bbb98b31876c0b3f2b54e33) C:\WINDOWS\System32\browser.dll
13:41:00.0187 2124	Browser - ok
13:41:00.0359 2124	catchme - ok
13:41:00.0437 2124	cbidf2k         (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
13:41:00.0562 2124	cbidf2k - ok
13:41:00.0562 2124	cd20xrnt - ok
13:41:00.0625 2124	Cdaudio         (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
13:41:00.0718 2124	Cdaudio - ok
13:41:00.0765 2124	Cdfs            (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
13:41:00.0859 2124	Cdfs - ok
13:41:00.0921 2124	Cdrom           (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
13:41:01.0015 2124	Cdrom - ok
13:41:01.0046 2124	Changer - ok
13:41:01.0093 2124	CiSvc           (28e3040d1f1ca2008cd6b29dfebc9a5e) C:\WINDOWS\system32\cisvc.exe
13:41:01.0187 2124	CiSvc - ok
13:41:01.0187 2124	ClipSrv         (778a30ed3c134eb7e406afc407e9997d) C:\WINDOWS\system32\clipsrv.exe
13:41:01.0281 2124	ClipSrv - ok
13:41:01.0375 2124	clr_optimization_v2.0.50727_32 (d87acaed61e417bba546ced5e7e36d9c) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
13:41:01.0390 2124	clr_optimization_v2.0.50727_32 - ok
13:41:01.0453 2124	clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
13:41:01.0468 2124	clr_optimization_v4.0.30319_32 - ok
13:41:01.0515 2124	CmdIde - ok
13:41:01.0531 2124	COMSysApp - ok
13:41:01.0531 2124	Cpqarray - ok
13:41:01.0593 2124	CryptSvc        (611f824e5c703a5a899f84c5f1699e4d) C:\WINDOWS\System32\cryptsvc.dll
13:41:01.0687 2124	CryptSvc - ok
13:41:01.0687 2124	dac2w2k - ok
13:41:01.0703 2124	dac960nt - ok
13:41:01.0750 2124	DcomLaunch      (3127afbf2c1ed0ab14a1bbb7aaecb85b) C:\WINDOWS\system32\rpcss.dll
13:41:01.0828 2124	DcomLaunch - ok
13:41:01.0953 2124	Dhcp            (c29a1c9b75ba38fa37f8c44405dec360) C:\WINDOWS\System32\dhcpcsvc.dll
13:41:02.0046 2124	Dhcp - ok
13:41:02.0125 2124	Disk            (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
13:41:02.0218 2124	Disk - ok
13:41:02.0218 2124	dmadmin - ok
13:41:02.0296 2124	dmboot          (0dcfc8395a99fecbb1ef771cec7fe4ea) C:\WINDOWS\system32\drivers\dmboot.sys
13:41:02.0421 2124	dmboot - ok
13:41:02.0531 2124	dmio            (53720ab12b48719d00e327da470a619a) C:\WINDOWS\system32\drivers\dmio.sys
13:41:02.0640 2124	dmio - ok
13:41:02.0671 2124	dmload          (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
13:41:02.0781 2124	dmload - ok
13:41:02.0812 2124	dmserver        (25c83ffbba13b554eb6d59a9b2e2ee78) C:\WINDOWS\System32\dmserver.dll
13:41:02.0906 2124	dmserver - ok
13:41:02.0984 2124	DMusic          (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
13:41:03.0093 2124	DMusic - ok
13:41:03.0140 2124	Dnscache        (407f3227ac618fd1ca54b335b083de07) C:\WINDOWS\System32\dnsrslvr.dll
13:41:03.0234 2124	Dnscache - ok
13:41:03.0312 2124	Dot3svc         (676e36c4ff5bcea1900f44182b9723e6) C:\WINDOWS\System32\dot3svc.dll
13:41:03.0406 2124	Dot3svc - ok
13:41:03.0453 2124	dpti2o - ok
13:41:03.0500 2124	drmkaud         (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
13:41:03.0609 2124	drmkaud - ok
13:41:03.0656 2124	EapHost         (4e4f2fddab0a0736d7671134dcce91fb) C:\WINDOWS\System32\eapsvc.dll
13:41:03.0734 2124	EapHost - ok
13:41:03.0796 2124	ERSvc           (877c18558d70587aa7823a1a308ac96b) C:\WINDOWS\System32\ersvc.dll
13:41:03.0890 2124	ERSvc - ok
13:41:03.0968 2124	Eventlog        (a3edbe9053889fb24ab22492472b39dc) C:\WINDOWS\system32\services.exe
13:41:04.0015 2124	Eventlog - ok
13:41:04.0109 2124	EventSystem     (af4f6b5739d18ca7972ab53e091cbc74) C:\WINDOWS\system32\es.dll
13:41:04.0156 2124	EventSystem - ok
13:41:04.0265 2124	Fastfat         (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
13:41:04.0375 2124	Fastfat - ok
13:41:04.0421 2124	FastUserSwitchingCompatibility (2db7d303c36ddd055215052f118e8e75) C:\WINDOWS\System32\shsvcs.dll
13:41:04.0468 2124	FastUserSwitchingCompatibility - ok
13:41:04.0578 2124	Fdc             (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\drivers\Fdc.sys
13:41:04.0656 2124	Fdc - ok
13:41:04.0687 2124	Fips            (b0678a548587c5f1967b0d70bacad6c1) C:\WINDOWS\system32\drivers\Fips.sys
13:41:04.0796 2124	Fips - ok
13:41:04.0796 2124	Flpydisk        (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\drivers\Flpydisk.sys
13:41:04.0890 2124	Flpydisk - ok
13:41:04.0937 2124	FltMgr          (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
13:41:05.0015 2124	FltMgr - ok
13:41:05.0093 2124	FontCache3.0.0.0 (8ba7c024070f2b7fdd98ed8a4ba41789) c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
13:41:05.0093 2124	FontCache3.0.0.0 - ok
13:41:05.0203 2124	Fs_Rec          (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
13:41:05.0328 2124	Fs_Rec - ok
13:41:05.0359 2124	Ftdisk          (8f1955ce42e1484714b542f341647778) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
13:41:05.0453 2124	Ftdisk - ok
13:41:05.0500 2124	Gpc             (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
13:41:05.0578 2124	Gpc - ok
13:41:05.0703 2124	gupdate         (f02a533f517eb38333cb12a9e8963773) C:\Programme\Google\Update\GoogleUpdate.exe
13:41:05.0718 2124	gupdate - ok
13:41:05.0718 2124	gupdatem        (f02a533f517eb38333cb12a9e8963773) C:\Programme\Google\Update\GoogleUpdate.exe
13:41:05.0734 2124	gupdatem - ok
13:41:05.0859 2124	HDAudBus        (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
13:41:05.0968 2124	HDAudBus - ok
13:41:06.0031 2124	helpsvc         (cb66bf85bf599befd6c6a57c2e20357f) C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
13:41:06.0140 2124	helpsvc - ok
13:41:06.0140 2124	HidServ - ok
13:41:06.0218 2124	hkmsvc          (ed29f14101523a6e0e808107405d452c) C:\WINDOWS\System32\kmsvc.dll
13:41:06.0296 2124	hkmsvc - ok
13:41:06.0328 2124	hpn - ok
13:41:06.0375 2124	HTTP            (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
13:41:06.0406 2124	HTTP - ok
13:41:06.0484 2124	HTTPFilter      (9e4adb854cebcfb81a4b36718feecd16) C:\WINDOWS\System32\w3ssl.dll
13:41:06.0578 2124	HTTPFilter - ok
13:41:06.0609 2124	i2omgmt - ok
13:41:06.0609 2124	i2omp - ok
13:41:06.0656 2124	i8042prt        (e283b97cfbeb86c1d86baed5f7846a92) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
13:41:06.0765 2124	i8042prt - ok
13:41:06.0890 2124	idsvc           (c01ac32dc5c03076cfb852cb5da5229c) C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
13:41:06.0937 2124	idsvc - ok
13:41:07.0031 2124	Imapi           (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
13:41:07.0140 2124	Imapi - ok
13:41:07.0187 2124	ImapiService    (d4b413aa210c21e46aedd2ba5b68d38e) C:\WINDOWS\system32\imapi.exe
13:41:07.0281 2124	ImapiService - ok
13:41:07.0296 2124	ini910u - ok
13:41:07.0468 2124	IntcAzAudAddService (19d3781892a3794672cd1962f3d8d3b8) C:\WINDOWS\system32\drivers\RtkHDAud.sys
13:41:07.0640 2124	IntcAzAudAddService - ok
13:41:07.0718 2124	IntelIde - ok
13:41:07.0750 2124	Ip6Fw           (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
13:41:07.0843 2124	Ip6Fw - ok
13:41:07.0890 2124	IpFilterDriver  (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
13:41:08.0000 2124	IpFilterDriver - ok
13:41:08.0015 2124	IpInIp          (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
13:41:08.0109 2124	IpInIp - ok
13:41:08.0218 2124	IpNat           (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
13:41:08.0328 2124	IpNat - ok
13:41:08.0359 2124	IPSec           (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
13:41:08.0453 2124	IPSec - ok
13:41:08.0468 2124	IRENUM          (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
13:41:08.0578 2124	IRENUM - ok
13:41:08.0671 2124	isapnp          (6dfb88f64135c525433e87648bda30de) C:\WINDOWS\system32\DRIVERS\isapnp.sys
13:41:08.0781 2124	isapnp - ok
13:41:08.0906 2124	JavaQuickStarterService (381b25dc8e958d905b33130d500bbf29) C:\Programme\Java\jre6\bin\jqs.exe
13:41:08.0906 2124	JavaQuickStarterService - ok
13:41:09.0015 2124	Kbdclass        (1704d8c4c8807b889e43c649b478a452) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
13:41:09.0125 2124	Kbdclass - ok
13:41:09.0156 2124	kmixer          (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
13:41:09.0265 2124	kmixer - ok
13:41:09.0296 2124	KSecDD          (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
13:41:09.0359 2124	KSecDD - ok
13:41:09.0468 2124	lanmanserver    (2bbdcb79900990f0716dfcb714e72de7) C:\WINDOWS\System32\srvsvc.dll
13:41:09.0500 2124	lanmanserver - ok
13:41:09.0546 2124	lanmanworkstation (1869b14b06b44b44af70548e1ea3303f) C:\WINDOWS\System32\wkssvc.dll
13:41:09.0609 2124	lanmanworkstation - ok
13:41:09.0625 2124	lbrtfdc - ok
13:41:09.0671 2124	LmHosts         (636714b7d43c8d0c80449123fd266920) C:\WINDOWS\System32\lmhsvc.dll
13:41:09.0781 2124	LmHosts - ok
13:41:09.0796 2124	Messenger       (b7550a7107281d170ce85524b1488c98) C:\WINDOWS\System32\msgsvc.dll
13:41:09.0890 2124	Messenger - ok
13:41:09.0937 2124	mnmdd           (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
13:41:10.0046 2124	mnmdd - ok
13:41:10.0093 2124	mnmsrvc         (c2f1d365fd96791b037ee504868065d3) C:\WINDOWS\system32\mnmsrvc.exe
13:41:10.0187 2124	mnmsrvc - ok
13:41:10.0281 2124	Modem           (6fb74ebd4ec57a6f1781de3852cc3362) C:\WINDOWS\system32\drivers\Modem.sys
13:41:10.0375 2124	Modem - ok
13:41:10.0406 2124	Mouclass        (b24ce8005deab254c0251e15cb71d802) C:\WINDOWS\system32\DRIVERS\mouclass.sys
13:41:10.0500 2124	Mouclass - ok
13:41:10.0531 2124	MountMgr        (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
13:41:10.0625 2124	MountMgr - ok
13:41:10.0687 2124	mraid35x - ok
13:41:10.0718 2124	MRxDAV          (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
13:41:10.0812 2124	MRxDAV - ok
13:41:10.0875 2124	MRxSmb          (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
13:41:10.0937 2124	MRxSmb - ok
13:41:11.0031 2124	MSDTC           (35a031af38c55f92d28aa03ee9f12cc9) C:\WINDOWS\system32\msdtc.exe
13:41:11.0109 2124	MSDTC - ok
13:41:11.0171 2124	Msfs            (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
13:41:11.0250 2124	Msfs - ok
13:41:11.0250 2124	MSIServer - ok
13:41:11.0281 2124	MSKSSRV         (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
13:41:11.0375 2124	MSKSSRV - ok
13:41:11.0390 2124	MSPCLOCK        (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
13:41:11.0484 2124	MSPCLOCK - ok
13:41:11.0484 2124	MSPQM           (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
13:41:11.0578 2124	MSPQM - ok
13:41:11.0687 2124	mssmbios        (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
13:41:11.0765 2124	mssmbios - ok
13:41:11.0812 2124	Mup             (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
13:41:11.0843 2124	Mup - ok
13:41:11.0906 2124	napagent        (46bb15ae2ac7d025d6d2567b876817bd) C:\WINDOWS\System32\qagentrt.dll
13:41:12.0015 2124	napagent - ok
13:41:12.0125 2124	NDIS            (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
13:41:12.0218 2124	NDIS - ok
13:41:12.0265 2124	NdisTapi        (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
13:41:12.0296 2124	NdisTapi - ok
13:41:12.0328 2124	Ndisuio         (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
13:41:12.0421 2124	Ndisuio - ok
13:41:12.0515 2124	NdisWan         (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
13:41:12.0609 2124	NdisWan - ok
13:41:12.0640 2124	NDProxy         (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
13:41:12.0703 2124	NDProxy - ok
13:41:12.0718 2124	NetBIOS         (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
13:41:12.0812 2124	NetBIOS - ok
13:41:12.0921 2124	NetBT           (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
13:41:13.0015 2124	NetBT - ok
13:41:13.0046 2124	NetDDE          (8ace4251bffd09ce75679fe940e996cc) C:\WINDOWS\system32\netdde.exe
13:41:13.0156 2124	NetDDE - ok
13:41:13.0156 2124	NetDDEdsdm      (8ace4251bffd09ce75679fe940e996cc) C:\WINDOWS\system32\netdde.exe
13:41:13.0234 2124	NetDDEdsdm - ok
13:41:13.0281 2124	Netlogon        (afb8261b56cba0d86aeb6df682af9785) C:\WINDOWS\system32\lsass.exe
13:41:13.0359 2124	Netlogon - ok
13:41:13.0437 2124	Netman          (e6d88f1f6745bf00b57e7855a2ab696c) C:\WINDOWS\System32\netman.dll
13:41:13.0531 2124	Netman - ok
13:41:13.0609 2124	NetTcpPortSharing (d34612c5d02d026535b3095d620626ae) C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
13:41:13.0625 2124	NetTcpPortSharing - ok
13:41:13.0687 2124	Nla             (f1b67b6b0751ae0e6e964b02821206a3) C:\WINDOWS\System32\mswsock.dll
13:41:13.0734 2124	Nla - ok
13:41:13.0828 2124	Npfs            (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
13:41:13.0906 2124	Npfs - ok
13:41:13.0921 2124	Ntfs            (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
13:41:14.0046 2124	Ntfs - ok
13:41:14.0093 2124	NtLmSsp         (afb8261b56cba0d86aeb6df682af9785) C:\WINDOWS\system32\lsass.exe
13:41:14.0171 2124	NtLmSsp - ok
13:41:14.0250 2124	NtmsSvc         (56af4064996fa5bac9c449b1514b4770) C:\WINDOWS\system32\ntmssvc.dll
13:41:14.0343 2124	NtmsSvc - ok
13:41:14.0468 2124	Null            (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
13:41:14.0593 2124	Null - ok
13:41:14.0796 2124	nv              (8e72e452b9cc1e455d19e3c9fa964d37) C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
13:41:15.0109 2124	nv - ok
13:41:15.0218 2124	NVENETFD        (70217a23470f4bb4c8fb4abe06813081) C:\WINDOWS\system32\DRIVERS\NVENETFD.sys
13:41:15.0250 2124	NVENETFD - ok
13:41:15.0281 2124	nvgts           (a117466b0acb13288deee4f2e936e67f) C:\WINDOWS\system32\DRIVERS\nvgts.sys
13:41:15.0312 2124	nvgts - ok
13:41:15.0375 2124	nvnetbus        (be8513730653384939a4d2d977c81027) C:\WINDOWS\system32\DRIVERS\nvnetbus.sys
13:41:15.0421 2124	nvnetbus - ok
13:41:15.0531 2124	NVSvc           (934833b3cd462a6f8a96f64d024c8b20) C:\WINDOWS\system32\nvsvc32.exe
13:41:15.0546 2124	NVSvc - ok
13:41:15.0640 2124	NwlnkFlt        (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
13:41:15.0734 2124	NwlnkFlt - ok
13:41:15.0781 2124	NwlnkFwd        (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
13:41:15.0890 2124	NwlnkFwd - ok
13:41:15.0937 2124	Parport         (f84785660305b9b903fb3bca8ba29837) C:\WINDOWS\system32\DRIVERS\parport.sys
13:41:16.0046 2124	Parport - ok
13:41:16.0093 2124	PartMgr         (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
13:41:16.0187 2124	PartMgr - ok
13:41:16.0234 2124	ParVdm          (c2bf987829099a3eaa2ca6a0a90ecb4f) C:\WINDOWS\system32\drivers\ParVdm.sys
13:41:16.0359 2124	ParVdm - ok
13:41:16.0406 2124	PCI             (387e8dedc343aa2d1efbc30580273acd) C:\WINDOWS\system32\DRIVERS\pci.sys
13:41:16.0500 2124	PCI - ok
13:41:16.0515 2124	PCIDump - ok
13:41:16.0531 2124	PCIIde          (59ba86d9a61cbcf4df8e598c331f5b82) C:\WINDOWS\system32\DRIVERS\pciide.sys
13:41:16.0640 2124	PCIIde - ok
13:41:16.0718 2124	Pcmcia          (a2a966b77d61847d61a3051df87c8c97) C:\WINDOWS\system32\drivers\Pcmcia.sys
13:41:16.0812 2124	Pcmcia - ok
13:41:16.0859 2124	PDCOMP - ok
13:41:16.0921 2124	PDDSLADP        (ab6f9ee08b82a46f2b4f0ab909f1fad9) C:\WINDOWS\system32\DRIVERS\PDDSLADP.SYS
13:41:16.0937 2124	PDDSLADP ( UnsignedFile.Multi.Generic ) - warning
13:41:16.0937 2124	PDDSLADP - detected UnsignedFile.Multi.Generic (1)
13:41:16.0968 2124	PDDSLHND        (49e3fa74798f192d4a6b299ee0b8e5f3) C:\WINDOWS\system32\drivers\PDDSLHND.sys
13:41:17.0000 2124	PDDSLHND ( UnsignedFile.Multi.Generic ) - warning
13:41:17.0000 2124	PDDSLHND - detected UnsignedFile.Multi.Generic (1)
13:41:17.0000 2124	PDFRAME - ok
13:41:17.0015 2124	PDRELI - ok
13:41:17.0015 2124	PDRFRAME - ok
13:41:17.0031 2124	perc2 - ok
13:41:17.0031 2124	perc2hib - ok
13:41:17.0093 2124	PlugPlay        (a3edbe9053889fb24ab22492472b39dc) C:\WINDOWS\system32\services.exe
13:41:17.0125 2124	PlugPlay - ok
13:41:17.0187 2124	PolicyAgent     (afb8261b56cba0d86aeb6df682af9785) C:\WINDOWS\system32\lsass.exe
13:41:17.0265 2124	PolicyAgent - ok
13:41:17.0343 2124	PptpMiniport    (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
13:41:17.0437 2124	PptpMiniport - ok
13:41:17.0468 2124	Processor       (2cb55427c58679f49ad600fccba76360) C:\WINDOWS\system32\DRIVERS\processr.sys
13:41:17.0578 2124	Processor - ok
13:41:17.0609 2124	ProtectedStorage (afb8261b56cba0d86aeb6df682af9785) C:\WINDOWS\system32\lsass.exe
13:41:17.0687 2124	ProtectedStorage - ok
13:41:17.0703 2124	PSched          (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
13:41:17.0796 2124	PSched - ok
13:41:17.0921 2124	PSI             (d24dfd16a1e2a76034df5aa18125c35d) C:\WINDOWS\system32\DRIVERS\psi_mf.sys
13:41:17.0921 2124	PSI - ok
13:41:17.0937 2124	Ptilink         (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
13:41:18.0062 2124	Ptilink - ok
13:41:18.0109 2124	PxHelp20        (153d02480a0a2f45785522e814c634b6) C:\WINDOWS\system32\Drivers\PxHelp20.sys
13:41:18.0109 2124	PxHelp20 - ok
13:41:18.0125 2124	ql1080 - ok
13:41:18.0125 2124	Ql10wnt - ok
13:41:18.0140 2124	ql12160 - ok
13:41:18.0140 2124	ql1240 - ok
13:41:18.0156 2124	ql1280 - ok
13:41:18.0187 2124	RasAcd          (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
13:41:18.0296 2124	RasAcd - ok
13:41:18.0343 2124	RasAuto         (f5ba6caccdb66c8f048e867563203246) C:\WINDOWS\System32\rasauto.dll
13:41:18.0437 2124	RasAuto - ok
13:41:18.0500 2124	Rasl2tp         (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
13:41:18.0593 2124	Rasl2tp - ok
13:41:18.0671 2124	RasMan          (f9a7b66ea345726edb5862a46b1eccd5) C:\WINDOWS\System32\rasmans.dll
13:41:18.0765 2124	RasMan - ok
13:41:18.0781 2124	RasPppoe        (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
13:41:18.0875 2124	RasPppoe - ok
13:41:18.0921 2124	Raspti          (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
13:41:19.0031 2124	Raspti - ok
13:41:19.0062 2124	Rdbss           (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
13:41:19.0140 2124	Rdbss - ok
13:41:19.0156 2124	RDPCDD          (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
13:41:19.0296 2124	RDPCDD - ok
13:41:19.0328 2124	RDPWD           (5b3055daa788bd688594d2f5981f2a83) C:\WINDOWS\system32\drivers\RDPWD.sys
13:41:19.0359 2124	RDPWD - ok
13:41:19.0468 2124	RDSessMgr       (263af18af0f3db99f574c95f284ccec9) C:\WINDOWS\system32\sessmgr.exe
13:41:19.0562 2124	RDSessMgr - ok
13:41:19.0609 2124	redbook         (ed761d453856f795a7fe056e42c36365) C:\WINDOWS\system32\DRIVERS\redbook.sys
13:41:19.0703 2124	redbook - ok
13:41:19.0750 2124	RemoteAccess    (0e97ec96d6942ceec2d188cc2eb69a01) C:\WINDOWS\System32\mprdim.dll
13:41:19.0843 2124	RemoteAccess - ok
13:41:19.0953 2124	RpcLocator      (2a02e21867497df20b8fc95631395169) C:\WINDOWS\system32\locator.exe
13:41:20.0046 2124	RpcLocator - ok
13:41:20.0078 2124	RpcSs           (3127afbf2c1ed0ab14a1bbb7aaecb85b) C:\WINDOWS\System32\rpcss.dll
13:41:20.0156 2124	RpcSs - ok
13:41:20.0171 2124	RSVP            (4bdd71b4b521521499dfd14735c4f398) C:\WINDOWS\system32\rsvp.exe
13:41:20.0281 2124	RSVP - ok
13:41:20.0375 2124	SamSs           (afb8261b56cba0d86aeb6df682af9785) C:\WINDOWS\system32\lsass.exe
13:41:20.0453 2124	SamSs - ok
13:41:20.0500 2124	SCardSvr        (dcec079fad95d36c8dd5cb6d779dfe32) C:\WINDOWS\System32\SCardSvr.exe
13:41:20.0593 2124	SCardSvr - ok
13:41:20.0640 2124	Schedule        (a050194a44d7fa8d7186ed2f4e8367ae) C:\WINDOWS\system32\schedsvc.dll
13:41:20.0734 2124	Schedule - ok
13:41:20.0828 2124	Secdrv          (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
13:41:20.0906 2124	Secdrv - ok
13:41:20.0937 2124	seclogon        (bee4cfd1d48c23b44cf4b974b0b79b2b) C:\WINDOWS\System32\seclogon.dll
13:41:21.0015 2124	seclogon - ok
13:41:21.0078 2124	Secunia PSI Agent - ok
13:41:21.0093 2124	Secunia Update Agent - ok
13:41:21.0140 2124	SENS            (2aac9b6ed9eddffb721d6452e34d67e3) C:\WINDOWS\system32\sens.dll
13:41:21.0234 2124	SENS - ok
13:41:21.0328 2124	serenum         (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
13:41:21.0437 2124	serenum - ok
13:41:21.0437 2124	Serial          (cf24eb4f0412c82bcd1f4f35a025e31d) C:\WINDOWS\system32\DRIVERS\serial.sys
13:41:21.0515 2124	Serial - ok
13:41:21.0609 2124	Sfloppy         (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
13:41:21.0703 2124	Sfloppy - ok
13:41:21.0812 2124	SharedAccess    (cad058d5f8b889a87ca3eb3cf624dcef) C:\WINDOWS\System32\ipnathlp.dll
13:41:21.0906 2124	SharedAccess - ok
13:41:21.0953 2124	ShellHWDetection (2db7d303c36ddd055215052f118e8e75) C:\WINDOWS\System32\shsvcs.dll
13:41:22.0000 2124	ShellHWDetection - ok
13:41:22.0015 2124	Simbad - ok
13:41:22.0093 2124	Sparrow - ok
13:41:22.0140 2124	splitter        (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
13:41:22.0234 2124	splitter - ok
13:41:22.0281 2124	Spooler         (60784f891563fb1b767f70117fc2428f) C:\WINDOWS\system32\spoolsv.exe
13:41:22.0343 2124	Spooler - ok
13:41:22.0453 2124	sr              (50fa898f8c032796d3b1b9951bb5a90f) C:\WINDOWS\system32\DRIVERS\sr.sys
13:41:22.0546 2124	sr - ok
13:41:22.0593 2124	srservice       (fe77a85495065f3ad59c5c65b6c54182) C:\WINDOWS\system32\srsvc.dll
13:41:22.0687 2124	srservice - ok
13:41:22.0734 2124	Srv             (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
13:41:22.0796 2124	Srv - ok
13:41:22.0906 2124	SSDPSRV         (4df5b05dfaec29e13e1ed6f6ee12c500) C:\WINDOWS\System32\ssdpsrv.dll
13:41:22.0984 2124	SSDPSRV - ok
13:41:23.0062 2124	ssmdrv          (a36ee93698802cd899f98bfd553d8185) C:\WINDOWS\system32\DRIVERS\ssmdrv.sys
13:41:23.0078 2124	ssmdrv - ok
13:41:23.0093 2124	stisvc          (bc2c5985611c5356b24aeb370953ded9) C:\WINDOWS\system32\wiaservc.dll
13:41:23.0218 2124	stisvc - ok
13:41:23.0312 2124	swenum          (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
13:41:23.0421 2124	swenum - ok
13:41:23.0437 2124	swmidi          (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
13:41:23.0546 2124	swmidi - ok
13:41:23.0546 2124	SwPrv - ok
13:41:23.0562 2124	symc810 - ok
13:41:23.0578 2124	symc8xx - ok
13:41:23.0578 2124	sym_hi - ok
13:41:23.0593 2124	sym_u3 - ok
13:41:23.0625 2124	sysaudio        (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
13:41:23.0718 2124	sysaudio - ok
13:41:23.0781 2124	SysmonLog       (2903fffa2523926d6219428040dce6b9) C:\WINDOWS\system32\smlogsvc.exe
13:41:23.0875 2124	SysmonLog - ok
13:41:23.0953 2124	TapiSrv         (05903cac4b98908d55ea5774775b382e) C:\WINDOWS\System32\tapisrv.dll
13:41:24.0046 2124	TapiSrv - ok
13:41:24.0093 2124	Tcpip           (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
13:41:24.0171 2124	Tcpip - ok
13:41:24.0203 2124	TDPIPE          (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
13:41:24.0281 2124	TDPIPE - ok
13:41:24.0359 2124	TDTCP           (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
13:41:24.0453 2124	TDTCP - ok
13:41:24.0484 2124	TermDD          (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
13:41:24.0578 2124	TermDD - ok
13:41:24.0609 2124	TermService     (b7de02c863d8f5a005a7bf375375a6a4) C:\WINDOWS\System32\termsrv.dll
13:41:24.0703 2124	TermService - ok
13:41:24.0828 2124	Themes          (2db7d303c36ddd055215052f118e8e75) C:\WINDOWS\System32\shsvcs.dll
13:41:24.0828 2124	Themes - ok
13:41:24.0859 2124	TosIde - ok
13:41:24.0906 2124	TrkWks          (626504572b175867f30f3215c04b3e2f) C:\WINDOWS\system32\trkwks.dll
13:41:25.0015 2124	TrkWks - ok
13:41:25.0046 2124	Udfs            (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
13:41:25.0140 2124	Udfs - ok
13:41:25.0203 2124	ultra - ok
13:41:25.0234 2124	UMWdf           (c81b8635dee0d3ef5f64b3dd643023a5) C:\WINDOWS\system32\wdfmgr.exe
13:41:25.0281 2124	UMWdf - ok
13:41:25.0328 2124	Update          (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
13:41:25.0437 2124	Update - ok
13:41:25.0546 2124	upnphost        (1dfd8975d8c89214b98d9387c1125b49) C:\WINDOWS\System32\upnphost.dll
13:41:25.0671 2124	upnphost - ok
13:41:25.0703 2124	UPS             (9b11e6118958e63e1fef129466e2bda7) C:\WINDOWS\System32\ups.exe
13:41:25.0796 2124	UPS - ok
13:41:25.0859 2124	usbccgp         (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
13:41:25.0937 2124	usbccgp - ok
13:41:26.0046 2124	usbehci         (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
13:41:26.0140 2124	usbehci - ok
13:41:26.0171 2124	usbhub          (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
13:41:26.0265 2124	usbhub - ok
13:41:26.0312 2124	usbohci         (0daecce65366ea32b162f85f07c6753b) C:\WINDOWS\system32\DRIVERS\usbohci.sys
13:41:26.0390 2124	usbohci - ok
13:41:26.0421 2124	usbprint        (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys
13:41:26.0500 2124	usbprint - ok
13:41:26.0562 2124	usbscan         (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
13:41:26.0640 2124	usbscan - ok
13:41:26.0671 2124	USBSTOR         (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
13:41:26.0765 2124	USBSTOR - ok
13:41:26.0812 2124	VgaSave         (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
13:41:26.0906 2124	VgaSave - ok
13:41:26.0906 2124	ViaIde - ok
13:41:26.0937 2124	VolSnap         (a5a712f4e880874a477af790b5186e1d) C:\WINDOWS\system32\drivers\VolSnap.sys
13:41:27.0031 2124	VolSnap - ok
13:41:27.0140 2124	VSS             (68f106273be29e7b7ef8266977268e78) C:\WINDOWS\System32\vssvc.exe
13:41:27.0218 2124	VSS - ok
13:41:27.0250 2124	W32Time         (7b353059e665f8b7ad2bbeaef597cf45) C:\WINDOWS\system32\w32time.dll
13:41:27.0343 2124	W32Time - ok
13:41:27.0421 2124	Wanarp          (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
13:41:27.0515 2124	Wanarp - ok
13:41:27.0515 2124	WDICA - ok
13:41:27.0562 2124	wdmaud          (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
13:41:27.0687 2124	wdmaud - ok
13:41:27.0718 2124	WebClient       (81727c9873e3905a2ffc1ebd07265002) C:\WINDOWS\System32\webclnt.dll
13:41:27.0812 2124	WebClient - ok
13:41:27.0937 2124	winmgmt         (6f3f3973d97714cc5f906a19fe883729) C:\WINDOWS\system32\wbem\WMIsvc.dll
13:41:28.0031 2124	winmgmt - ok
13:41:28.0078 2124	WmdmPmSN        (a477391b7a8b0a0daabadb17cf533a4b) C:\WINDOWS\system32\mspmsnsv.dll
13:41:28.0125 2124	WmdmPmSN - ok
13:41:28.0156 2124	WmiApSrv        (93908111ba57a6e60ec2fa2de202105c) C:\WINDOWS\system32\wbem\wmiapsrv.exe
13:41:28.0250 2124	WmiApSrv - ok
13:41:28.0484 2124	WPFFontCache_v0400 (dcf3e3edf5109ee8bc02fe6e1f045795) C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
13:41:28.0500 2124	WPFFontCache_v0400 - ok
13:41:28.0593 2124	wscsvc          (300b3e84faf1a5c1f791c159ba28035d) C:\WINDOWS\system32\wscsvc.dll
13:41:28.0687 2124	wscsvc - ok
13:41:28.0734 2124	wuauserv        (7b4fe05202aa6bf9f4dfd0e6a0d8a085) C:\WINDOWS\system32\wuauserv.dll
13:41:28.0843 2124	wuauserv - ok
13:41:28.0890 2124	WZCSVC          (c4f109c005f6725162d2d12ca751e4a7) C:\WINDOWS\System32\wzcsvc.dll
13:41:29.0015 2124	WZCSVC - ok
13:41:29.0093 2124	xmlprov         (0ada34871a2e1cd2caafed1237a47750) C:\WINDOWS\System32\xmlprov.dll
13:41:29.0187 2124	xmlprov - ok
13:41:29.0218 2124	MBR (0x1B8)     (72b8ce41af0de751c946802b3ed844b4) \Device\Harddisk0\DR0
13:41:29.0250 2124	\Device\Harddisk0\DR0 ( Rootkit.Boot.Sinowal.b ) - infected
13:41:29.0250 2124	\Device\Harddisk0\DR0 - detected Rootkit.Boot.Sinowal.b (0)
13:41:29.0281 2124	MBR (0x1B8)     (671b81004fdd1588fa9ed1331c9ceca9) \Device\Harddisk1\DR3
13:41:40.0500 2124	\Device\Harddisk1\DR3 - ok
13:41:40.0515 2124	MBR (0x1B8)     (5f0c182b562b3e23431a346295e19b32) \Device\Harddisk2\DR4
13:41:41.0015 2124	\Device\Harddisk2\DR4 - ok
13:41:41.0031 2124	Boot (0x1200)   (83c2ad04c403d21c5fb18c3a9a6534b9) \Device\Harddisk0\DR0\Partition0
13:41:41.0031 2124	\Device\Harddisk0\DR0\Partition0 - ok
13:41:41.0046 2124	Boot (0x1200)   (63107a0dfc5a95a0a18d33084b699e2c) \Device\Harddisk0\DR0\Partition1
13:41:41.0046 2124	\Device\Harddisk0\DR0\Partition1 - ok
13:41:41.0046 2124	Boot (0x1200)   (575159508634dc095068102423bb2eae) \Device\Harddisk1\DR3\Partition0
13:41:41.0046 2124	\Device\Harddisk1\DR3\Partition0 - ok
13:41:41.0046 2124	============================================================
13:41:41.0046 2124	Scan finished
13:41:41.0046 2124	============================================================
13:41:41.0156 3608	Detected object count: 5
13:41:41.0156 3608	Actual detected object count: 5
19:38:09.0828 3608	Adobe LM Service ( UnsignedFile.Multi.Generic ) - skipped by user
19:38:09.0828 3608	Adobe LM Service ( UnsignedFile.Multi.Generic ) - User select action: Skip 
19:38:09.0828 3608	Asapi ( UnsignedFile.Multi.Generic ) - skipped by user
19:38:09.0828 3608	Asapi ( UnsignedFile.Multi.Generic ) - User select action: Skip 
19:38:09.0828 3608	PDDSLADP ( UnsignedFile.Multi.Generic ) - skipped by user
19:38:09.0828 3608	PDDSLADP ( UnsignedFile.Multi.Generic ) - User select action: Skip 
19:38:09.0828 3608	PDDSLHND ( UnsignedFile.Multi.Generic ) - skipped by user
19:38:09.0828 3608	PDDSLHND ( UnsignedFile.Multi.Generic ) - User select action: Skip 
19:38:10.0187 3608	\Device\Harddisk0\DR0\# - copied to quarantine
19:38:10.0187 3608	\Device\Harddisk0\DR0 - copied to quarantine
19:38:10.0218 3608	\Device\Harddisk0\DR0 ( Rootkit.Boot.Sinowal.b ) - will be cured on reboot
19:38:10.0234 3608	\Device\Harddisk0\DR0 - ok
19:38:10.0234 3608	\Device\Harddisk0\DR0 ( Rootkit.Boot.Sinowal.b ) - User select action: Cure 
19:38:42.0625 3784	Deinitialize success

Antwort

Themen zu Eine Art Bundespolizei-Trojaner?
bundespolizei trojaner, bundespolizei-trojaner, datei, durchlauf, funde, gemeldet, minute, minuten, neustart, sporadisch, update, verlangt


« Verschicke Spam-Emails | Trojaner / Malware ? Mail Account hat Spam Mails verschickt »


Ähnliche Themen: Eine Art Bundespolizei-Trojaner?


  1. Bundespolizei Virus - Ist Formatierung eine sichere Lösung?
    Plagegeister aller Art und deren Bekämpfung - 28.01.2013 (5)
  2. BundesPolizei Trojaner
    Plagegeister aller Art und deren Bekämpfung - 25.11.2012 (13)
  3. Bundespolizei Trojaner
    Plagegeister aller Art und deren Bekämpfung - 28.08.2012 (13)
  4. BundesPolizei Trojaner auf dem PC
    Log-Analyse und Auswertung - 21.08.2012 (2)
  5. Bundespolizei-Trojaner
    Log-Analyse und Auswertung - 02.08.2012 (14)
  6. Bundespolizei Virus eine neue Art? Wie bekomme ich ihn platt gemacht ?
    Plagegeister aller Art und deren Bekämpfung - 13.06.2012 (1)
  7. Bundespolizei Trojaner
    Plagegeister aller Art und deren Bekämpfung - 23.04.2012 (14)
  8. Bundespolizei Trojaner 1.09
    Plagegeister aller Art und deren Bekämpfung - 20.04.2012 (17)
  9. Bundespolizei Trojaner
    Plagegeister aller Art und deren Bekämpfung - 13.03.2012 (37)
  10. Bundespolizei-Trojaner
    Plagegeister aller Art und deren Bekämpfung - 12.03.2012 (25)
  11. Bundespolizei Trojaner
    Plagegeister aller Art und deren Bekämpfung - 31.01.2012 (13)
  12. Bundespolizei Trojaner XP
    Plagegeister aller Art und deren Bekämpfung - 10.08.2011 (3)
  13. Bundespolizei 100 EUR Trojaner
    Plagegeister aller Art und deren Bekämpfung - 09.08.2011 (5)
  14. Bundespolizei Trojaner
    Log-Analyse und Auswertung - 09.08.2011 (24)
  15. Bundespolizei-Trojaner
    Log-Analyse und Auswertung - 08.08.2011 (1)
  16. Bundespolizei-Trojaner
    Log-Analyse und Auswertung - 07.08.2011 (1)
  17. Trojaner in .exe-Dateien eine Gefahr für den Mac oder eine Ubuntu Live CD?
    Mülltonne - 03.04.2011 (1)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema Eine Art Bundespolizei-Trojaner? - Huch, wie ist das denn passiert ? Hier dann jedenfalls die hoffentlich komplette Datei: Code: Alles auswählen Aufklappen ATTFilter 13:38:02.0156 3780 TDSS rootkit removing tool 2.7.23.0 Mar 26 2012 13:40:18 - Eine Art Bundespolizei-Trojaner?...
Archiv
Du betrachtest: Eine Art Bundespolizei-Trojaner? auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131