| |
| |||||||
Log-Analyse und Auswertung: System von TR/ATRAPS.Gen, TR/ATRAPS.Gen2 befallenWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
 |
15.07.2012, 13:24
| #1 |
| |  System von TR/ATRAPS.Gen, TR/ATRAPS.Gen2 befallen Hallo, auch mein PC ist seit gestern von den oben genannten Viren befallen. Alle paar Minuten kommt Avira Free Antivirus mit einer Warnmeldung, dass das System infiziert sei. Hier der OTL-Scan: Code:
ATTFilter OTL logfile created on: 15.07.2012 13:59:44 - Run 1 OTL by OldTimer - Version 3.2.54.0 Folder = C:\Users\Kai\Desktop 64bit- Professional (Version = 6.1.7600) - Type = NTWorkstation Internet Explorer (Version = 8.0.7600.16385) Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy 4,00 Gb Total Physical Memory | 1,33 Gb Available Physical Memory | 33,32% Memory free 8,00 Gb Paging File | 5,21 Gb Available in Paging File | 65,19% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86) Drive C: | 29,43 Gb Total Space | 2,57 Gb Free Space | 8,72% Space Free | Partition Type: NTFS Drive D: | 203,35 Gb Total Space | 120,12 Gb Free Space | 59,07% Space Free | Partition Type: NTFS Unable to calculate disk information. Drive F: | 1863,01 Gb Total Space | 1320,90 Gb Free Space | 70,90% Space Free | Partition Type: NTFS Drive J: | 931,51 Gb Total Space | 264,56 Gb Free Space | 28,40% Space Free | Partition Type: NTFS Computer Name: KAI-PC | User Name: Kai | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Processes (SafeList) ========== PRC - C:\Users\Kai\Desktop\OTL.exe (OldTimer Tools) PRC - C:\Users\Kai\rasPlayS.exe (gyns xybapv bison lpg) PRC - D:\Programme\Internet\Opera\opera.exe (Opera Software) PRC - D:\Programme\Internet\Opera\pluginwrapper\opera_plugin_wrapper.exe (Opera Software) PRC - D:\Programme\Internet\Avira\AntiVir Desktop\sched.exe (Avira Operations GmbH & Co. KG) PRC - D:\Programme\Internet\Avira\AntiVir Desktop\avguard.exe (Avira Operations GmbH & Co. KG) PRC - D:\Programme\Internet\Avira\AntiVir Desktop\avgnt.exe (Avira Operations GmbH & Co. KG) PRC - D:\Programme\Internet\devolo\dlan\devolonetsvc.exe (devolo AG) PRC - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe (Adobe Systems Incorporated) PRC - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated) PRC - D:\Programme\Verwaltung\Acronis\OSS\reinstall_svc.exe () PRC - D:\Programme\Verwaltung\Seagate\Sync\MaxSync.exe (Seagate Technology LLC) PRC - D:\Programme\Verwaltung\Seagate\Sync\FreeAgentService.exe (Seagate Technology LLC) PRC - D:\Programme\Verwaltung\Seagate\FreeAgent Status\stxmenumgr.exe (Seagate LLC) PRC - C:\Program Files (x86)\Panda USB Vaccine\USBVaccine.exe (Panda Security) PRC - C:\Windows\SysWOW64\ipconfig.exe (Microsoft Corporation) ========== Modules (No Company Name) ========== MOD - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_3_300_262.dll () MOD - D:\Programme\Internet\Opera\gstreamer\plugins\gstwebmdec.dll () MOD - D:\Programme\Internet\Opera\gstreamer\plugins\gstautodetect.dll () MOD - D:\Programme\Internet\Opera\gstreamer\plugins\gstwaveform.dll () MOD - D:\Programme\Internet\Opera\gstreamer\gstreamer.dll () MOD - D:\Programme\Internet\Opera\gstreamer\plugins\gstoggdec.dll () MOD - D:\Programme\Internet\Opera\gstreamer\plugins\gstffmpegcolorspace.dll () MOD - D:\Programme\Internet\Opera\gstreamer\plugins\gstcoreplugins.dll () MOD - D:\Programme\Internet\Opera\gstreamer\plugins\gstaudioresample.dll () MOD - D:\Programme\Internet\Opera\gstreamer\plugins\gstaudioconvert.dll () MOD - D:\Programme\Internet\Opera\gstreamer\plugins\gstwavparse.dll () MOD - D:\Programme\Internet\Opera\gstreamer\plugins\gstdirectsound.dll () MOD - D:\Programme\Internet\Opera\gstreamer\plugins\gstdecodebin2.dll () MOD - D:\Programme\Internet\Opera\gstreamer\plugins\gsttypefindfunctions.dll () MOD - C:\Users\Kai\AppData\Local\Adobe\Acrobat\10.0\Cache\RdLang_weblink.DEU () MOD - C:\Users\Kai\AppData\Local\Adobe\Acrobat\10.0\Cache\RdLang_EScript.DEU () MOD - C:\Users\Kai\AppData\Local\Adobe\Acrobat\10.0\Cache\RdLang_rdlang32.deu () MOD - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\sqlite.dll () ========== Win32 Services (SafeList) ========== SRV:64bit: - (UxTuneUp) -- C:\Windows\SysNative\uxtuneup.dll (TuneUp Software) SRV:64bit: - (AppMgmt) -- C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation) SRV - (SkypeUpdate) -- D:\Programme\Internet\Skype\Updater\Updater.exe (Skype Technologies) SRV - (Hamachi2Svc) -- D:\Programme\Internet\Hamachi\hamachi-2.exe (LogMeIn Inc.) SRV - (FLEXnet Licensing Service 64) -- C:\Programme\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe (Flexera Software, Inc.) SRV - (Steam Client Service) -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe (Valve Corporation) SRV - (AntiVirSchedulerService) -- D:\Programme\Internet\Avira\AntiVir Desktop\sched.exe (Avira Operations GmbH & Co. KG) SRV - (AntiVirService) -- D:\Programme\Internet\Avira\AntiVir Desktop\avguard.exe (Avira Operations GmbH & Co. KG) SRV - (DevoloNetworkService) -- D:\Programme\Internet\devolo\dlan\devolonetsvc.exe (devolo AG) SRV - (TunngleService) -- D:\Programme\Internet\Tunngle\TnglCtrl.exe (Tunngle.net GmbH) SRV - (AdobeARMservice) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated) SRV - (TuneUp.UtilitiesSvc) -- D:\Programme\Verwaltung\TuneUp\TuneUpUtilitiesService64.exe (TuneUp Software) SRV - (UxTuneUp) -- C:\Windows\SysWOW64\uxtuneup.dll (TuneUp Software) SRV - (OS Selector) -- D:\Programme\Verwaltung\Acronis\OSS\reinstall_svc.exe () SRV - (clr_optimization_v4.0.30319_32) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Corporation) SRV - (FreeAgentGoNext Service) -- D:\Programme\Verwaltung\Seagate\Sync\FreeAgentService.exe (Seagate Technology LLC) SRV - (HPSLPSVC) -- C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL (Hewlett-Packard Co.) SRV - (clr_optimization_v2.0.50727_32) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (Microsoft Corporation) SRV - (Microsoft Office Groove Audit Service) -- D:\Programme\Verwaltung\Office\Office12\GrooveAuditService.exe (Microsoft Corporation) ========== Driver Services (SafeList) ========== DRV:64bit: - (avkmgr) -- C:\Windows\SysNative\drivers\avkmgr.sys (Avira GmbH) DRV:64bit: - (avipbb) -- C:\Windows\SysNative\drivers\avipbb.sys (Avira GmbH) DRV:64bit: - (avgntflt) -- C:\Windows\SysNative\drivers\avgntflt.sys (Avira GmbH) DRV:64bit: - (Fs_Rec) -- C:\Windows\SysNative\drivers\fs_rec.sys (Microsoft Corporation) DRV:64bit: - (USBAAPL64) -- C:\Windows\SysNative\drivers\usbaapl64.sys (Apple, Inc.) DRV:64bit: - (TrojanKillerDriver) -- C:\Windows\SysNative\drivers\gtkdrv.sys (Windows (R) Win 7 DDK provider) DRV:64bit: - (dtsoftbus01) -- C:\Windows\SysNative\drivers\dtsoftbus01.sys (DT Soft Ltd) DRV:64bit: - (amdsata) -- C:\Windows\SysNative\drivers\amdsata.sys (Advanced Micro Devices) DRV:64bit: - (amdxata) -- C:\Windows\SysNative\drivers\amdxata.sys (Advanced Micro Devices) DRV:64bit: - (snapman) -- C:\Windows\SysNative\drivers\snapman.sys (Acronis) DRV:64bit: - (pcouffin) -- C:\Windows\SysNative\drivers\pcouffin.sys (VSO Software) DRV:64bit: - (RTL8167) -- C:\Windows\SysNative\drivers\Rt64win7.sys (Realtek ) DRV:64bit: - (acedrv11) -- C:\Windows\SysNative\drivers\acedrv11.sys (Protect Software GmbH) DRV:64bit: - (tap0901t) TAP-Win32 Adapter V9 (Tunngle) -- C:\Windows\SysNative\drivers\tap0901t.sys (Tunngle.net) DRV:64bit: - (SCDEmu) -- C:\Windows\SysNative\drivers\scdemu.sys (PowerISO Computing, Inc.) DRV:64bit: - (amdsbs) -- C:\Windows\SysNative\drivers\amdsbs.sys (AMD Technologies Inc.) DRV:64bit: - (LSI_SAS2) -- C:\Windows\SysNative\drivers\lsi_sas2.sys (LSI Corporation) DRV:64bit: - (HpSAMD) -- C:\Windows\SysNative\drivers\HpSAMD.sys (Hewlett-Packard Company) DRV:64bit: - (stexstor) -- C:\Windows\SysNative\drivers\stexstor.sys (Promise Technology) DRV:64bit: - (RMCAST) -- C:\Windows\SysNative\drivers\rmcast.sys (Microsoft Corporation) DRV:64bit: - (ebdrv) -- C:\Windows\SysNative\drivers\evbda.sys (Broadcom Corporation) DRV:64bit: - (b06bdrv) -- C:\Windows\SysNative\drivers\bxvbda.sys (Broadcom Corporation) DRV:64bit: - (b57nd60a) -- C:\Windows\SysNative\drivers\b57nd60a.sys (Broadcom Corporation) DRV:64bit: - (hcw85cir) -- C:\Windows\SysNative\drivers\hcw85cir.sys (Hauppauge Computer Works, Inc.) DRV:64bit: - (GEARAspiWDM) -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys (GEAR Software Inc.) DRV:64bit: - (hamachi) -- C:\Windows\SysNative\drivers\hamachi.sys (LogMeIn, Inc.) DRV - (NPF_devolo) NetGroup Packet Filter Driver (devolo) -- C:\Windows\SysWOW64\drivers\npf_devolo.sys (CACE Technologies) DRV - (DrvAgent64) -- C:\Windows\SysWOW64\drivers\DrvAgent64.SYS (Phoenix Technologies) DRV - (gdrv) -- C:\Windows\gdrv.sys (Windows (R) Server 2003 DDK provider) DRV - (TuneUpUtilitiesDrv) -- D:\Programme\Verwaltung\TuneUp\TuneUpUtilitiesDriver64.sys (TuneUp Software) DRV - (WIMMount) -- C:\Windows\SysWOW64\drivers\wimmount.sys (Microsoft Corporation) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC IE - HKLM\..\SearchScopes,DefaultScope = {afdbddaa-5d3f-42ee-b79c-185a7020515b} IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC IE - HKLM\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2269050 IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://search.conduit.com?SearchSource=10&ctid=CT2269050 IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = ED 09 AC 0B 4B 5E CB 01 [binary data] IE - HKCU\..\URLSearchHook: - No CLSID value found IE - HKCU\..\SearchScopes,DefaultScope = {afdbddaa-5d3f-42ee-b79c-185a7020515b} IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC IE - HKCU\..\SearchScopes\{0FEF7EB7-CCBB-4A89-9BDD-F1FBEC7BAF1D}: "URL" = hxxp://websearch.ask.com/redirect?client=ie&tb=SPC2&o=15000&src=crm&q={searchTerms}&locale=&apn_ptnrs=PV&apn_dtid=YYYYYYYYDE&apn_uid=564BA9E9-CE3C-4B79-A52E-537B79AE04CF&apn_sauid=B1341CF6-6C79-4FE5-B591-8721FF7E2C6E& IE - HKCU\..\SearchScopes\{6552C7DD-90A4-4387-B795-F8F96747DE19}: "URL" = hxxp://search.icq.com/search/results.php?q={searchTerms}&ch_id=osd IE - HKCU\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2269050 IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local ========== FireFox ========== FF - prefs.js..browser.search.defaultengine: "Ask.com" FF - prefs.js..browser.search.defaultenginename: "Ask.com" FF - prefs.js..browser.search.order.1: "Ask.com" FF - prefs.js..browser.search.selectedEngine: "Google" FF - prefs.js..browser.search.update: false FF - prefs.js..browser.search.useDBForOrder: true FF - prefs.js..browser.startup.homepage: "about:home" FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22 FF - prefs.js..extensions.enabledItems: {800b5000-a755-47e1-992b-48a1c1357f07}:1.1.7 FF - prefs.js..extensions.enabledItems: {ACAA314B-EEBA-48e4-AD47-84E31C44796C}:1.0.1 FF - prefs.js..extensions.enabledItems: {872b5b88-9db5-4310-bdd0-ac189557e5f5}:2.7.2.0 FF - prefs.js..extensions.enabledItems: wrc@avast.com:20110101 FF - prefs.js..extensions.enabledItems: smartwebprinting@hp.com:4.51 FF - prefs.js..keyword.URL: "hxxp://search.icq.com/search/afe_results.php?ch_id=afex&tb_ver=1.3.1&q=" FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_3_300_262.dll File not found FF:64bit: - HKLM\Software\MozillaPlugins\@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf: File not found FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.) FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_3_300_262.dll () FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: D:\Programme\MediaPlayer\iTunes\Mozilla Plugins\npitunes.dll () FF - HKLM\Software\MozillaPlugins\@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf: File not found FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google) FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: D:\Programme\Internet\Java\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.) FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll File not found FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=1.1.11: D:\Programme\MediaPlayer\VLC\npvlc.dll (the VideoLAN Team) FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF - HKCU\Software\MozillaPlugins\@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf: File not found FF - HKCU\Software\MozillaPlugins\@protectdisc.com/NPPDLicenseHelper: C:\Users\Kai\AppData\Roaming\ProtectDisc\License Helper v2\NPPDLicenseHelper.dll ( ) FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\smartwebprinting@hp.com: C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2011.10.23 23:35:52 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.6.13\extensions\\Components: D:\Programme\Internet\Firefox\components [2012.03.22 03:35:28 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.6.13\extensions\\Plugins: D:\Programme\Internet\Firefox\plugins [2011.11.01 19:04:16 | 000,000,000 | ---D | M] FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\smartwebprinting@hp.com: C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2011.10.23 23:35:52 | 000,000,000 | ---D | M] FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\{184AA5E6-741D-464a-820E-94B3ABC2F3B4}: C:\Users\Kai\AppData\Roaming\01024 [2012.04.08 23:30:42 | 000,000,000 | ---D | M] FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 11.0\extensions\\Components: D:\Programme\Internet\Firefox\components [2012.03.22 03:35:28 | 000,000,000 | ---D | M] FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 11.0\extensions\\Plugins: D:\Programme\Internet\Firefox\plugins [2011.11.01 19:04:16 | 000,000,000 | ---D | M] [2011.03.25 22:28:50 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Kai\AppData\Roaming\mozilla\Extensions [2010.11.14 00:06:01 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Kai\AppData\Roaming\mozilla\Extensions\{3550f703-e582-4d05-9a08-453d09bdfdc6} [2011.03.25 22:28:50 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Kai\AppData\Roaming\mozilla\Extensions\songbird@songbirdnest.com [2012.03.30 14:41:45 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Kai\AppData\Roaming\mozilla\Firefox\Profiles\29yzrrbu.default\extensions [2012.02.15 00:29:50 | 000,000,000 | ---D | M] (DVDVideoSoftTB Community Toolbar) -- C:\Users\Kai\AppData\Roaming\mozilla\Firefox\Profiles\29yzrrbu.default\extensions\{872b5b88-9db5-4310-bdd0-ac189557e5f5} [2011.01.12 19:17:07 | 000,000,000 | ---D | M] ("DVDVideoSoft Menu") -- C:\Users\Kai\AppData\Roaming\mozilla\Firefox\Profiles\29yzrrbu.default\extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C} [2012.03.30 14:41:45 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Users\Kai\AppData\Roaming\mozilla\Firefox\Profiles\29yzrrbu.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} [2011.05.11 02:55:38 | 000,000,000 | ---D | M] (Conduit Engine) -- C:\Users\Kai\AppData\Roaming\mozilla\Firefox\Profiles\29yzrrbu.default\extensions\engine@conduit.com [2011.10.12 14:43:33 | 000,002,401 | ---- | M] () -- C:\Users\Kai\AppData\Roaming\Mozilla\Firefox\Profiles\29yzrrbu.default\searchplugins\askcom.xml [2012.04.04 19:22:16 | 000,000,950 | ---- | M] () -- C:\Users\Kai\AppData\Roaming\Mozilla\Firefox\Profiles\29yzrrbu.default\searchplugins\icqplugin-1.xml [2011.03.06 22:41:58 | 000,000,950 | ---- | M] () -- C:\Users\Kai\AppData\Roaming\Mozilla\Firefox\Profiles\29yzrrbu.default\searchplugins\icqplugin-2.xml [2011.03.24 13:44:26 | 000,000,950 | ---- | M] () -- C:\Users\Kai\AppData\Roaming\Mozilla\Firefox\Profiles\29yzrrbu.default\searchplugins\icqplugin-3.xml [2011.04.29 18:33:06 | 000,000,950 | ---- | M] () -- C:\Users\Kai\AppData\Roaming\Mozilla\Firefox\Profiles\29yzrrbu.default\searchplugins\icqplugin-4.xml [2011.05.08 16:03:59 | 000,000,950 | ---- | M] () -- C:\Users\Kai\AppData\Roaming\Mozilla\Firefox\Profiles\29yzrrbu.default\searchplugins\icqplugin-5.xml [2011.06.27 21:45:01 | 000,000,950 | ---- | M] () -- C:\Users\Kai\AppData\Roaming\Mozilla\Firefox\Profiles\29yzrrbu.default\searchplugins\icqplugin-6.xml [2011.09.30 12:46:56 | 000,000,950 | ---- | M] () -- C:\Users\Kai\AppData\Roaming\Mozilla\Firefox\Profiles\29yzrrbu.default\searchplugins\icqplugin-7.xml [2011.02.27 21:35:48 | 000,001,056 | ---- | M] () -- C:\Users\Kai\AppData\Roaming\Mozilla\Firefox\Profiles\29yzrrbu.default\searchplugins\icqplugin.xml ========== Chrome ========== O1 HOSTS File: ([2009.06.10 23:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts O2:64bit: - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programme\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.) O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - D:\Programme\Verwaltung\Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation) O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - D:\Programme\Internet\Java\bin\jp2ssv.dll (Sun Microsystems, Inc.) O4:64bit: - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor) O4 - HKLM..\Run: [APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.) O4 - HKLM..\Run: [avast5] "D:\Programme\Internet\Avast\avastUI.exe" /nogui File not found O4 - HKLM..\Run: [avgnt] D:\Programme\Internet\Avira\AntiVir Desktop\avgnt.exe (Avira Operations GmbH & Co. KG) O4 - HKLM..\Run: [GrooveMonitor] D:\Programme\Verwaltung\Office\Office12\GrooveMonitor.exe (Microsoft Corporation) O4 - HKLM..\Run: [MaxMenuMgr] D:\Programme\Verwaltung\Seagate\FreeAgent Status\StxMenuMgr.exe (Seagate LLC) O4 - HKCU..\Run: [{B451BBF9-9553-2F70-8DAE-418E8E61B4C6}] C:\Users\Kai\AppData\Roaming\Iqymeg\uhnuitt.exe File not found O4 - HKCU..\Run: [Acronis] C:\Users\Kai\AppData\Roaming\8EA0F1.exe (Simon Tatham) O4 - HKCU..\Run: [Macromedia] C:\Users\Kai\AppData\Roaming\EA85AF.exe (Simon Tatham) O4 - HKCU..\Run: [QUU2NEE3NUIyRTg0NEIyQj] C:\Users\Kai\rasPlayS.exe (gyns xybapv bison lpg) F3:64bit: - HKCU WinNT: Load - (C:\Users\Kai\rasPlayS.exe) - C:\Users\Kai\rasPlayS.exe (gyns xybapv bison lpg) F3 - HKCU WinNT: Load - (C:\Users\Kai\rasPlayS.exe) - C:\Users\Kai\rasPlayS.exe (gyns xybapv bison lpg) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: = O8:64bit: - Extra context menu item: Free YouTube to MP3 Converter - C:\Users\Kai\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm () O8:64bit: - Extra context menu item: Nach Microsoft E&xel exportieren - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000 File not found O8 - Extra context menu item: Free YouTube to MP3 Converter - C:\Users\Kai\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm () O8 - Extra context menu item: Nach Microsoft E&xel exportieren - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000 File not found O9 - Extra Button: An OneNote senden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\Programme\Verwaltung\Office\Office12\ONBttnIE.dll (Microsoft Corporation) O9 - Extra 'Tools' menuitem : An OneNote s&enden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\Programme\Verwaltung\Office\Office12\ONBttnIE.dll (Microsoft Corporation) O9 - Extra Button: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - D:\Programme\Internet\ICQ\ICQ7.2\ICQ.exe (ICQ, LLC.) O9 - Extra 'Tools' menuitem : ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - D:\Programme\Internet\ICQ\ICQ7.2\ICQ.exe (ICQ, LLC.) O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - D:\Programme\Verwaltung\Office\Office12\REFIEBAR.DLL (Microsoft Corporation) O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000007 [] - C:\Programme\Bonjour\mdnsNSP.dll (Apple Inc.) O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.) O1364bit: - gopher Prefix: missing O13 - gopher Prefix: missing O16:64bit: - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.6.0_31) O16:64bit: - DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.6.0_31) O16:64bit: - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.6.0_31) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22) O16 - DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22) O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/pub/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{9E4396E7-C8EA-409C-AF53-3805408544E3}: DhcpNameServer = 192.168.0.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{E2731AA8-44FC-4A8B-A1C6-1B216716A196}: DhcpNameServer = 7.254.254.254 O18:64bit: - Protocol\Handler\grooveLocalGWS - No CLSID value found O18:64bit: - Protocol\Handler\ms-help - No CLSID value found O18:64bit: - Protocol\Handler\skype4com - No CLSID value found O18 - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - D:\Programme\Verwaltung\Office\Office12\GrooveSystemServices.dll (Microsoft Corporation) O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies) O18:64bit: - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Programme\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation) O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation) O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation) O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation) O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation) O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation) O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O22:64bit: - SharedTaskScheduler: {1984DD45-52CF-49cd-AB77-18F378FEA264} - FencesShellExt - D:\Programme\Verwaltung\Stardock\Stardock\Fences\FencesMenu64.dll (Stardock) O27:64bit: - HKLM IFEO\hpwucli.exe: Debugger - D:\Programme\Verwaltung\TuneUp\TUAutoReactivator64.exe (TuneUp Software) O27 - HKLM IFEO\hpwucli.exe: Debugger - D:\Programme\Verwaltung\TuneUp\TUAutoReactivator64.exe (TuneUp Software) O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - D:\Programme\Verwaltung\Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation) O32 - HKLM CDRom: AutoRun - 1 O32 - Unable to obtain root file information for disk J:\ O33 - MountPoints2\{809bf32e-0c63-11e1-92cc-001d7d9a76f0}\Shell - "" = AutoRun O33 - MountPoints2\{809bf32e-0c63-11e1-92cc-001d7d9a76f0}\Shell\AutoRun\command - "" = I:\SETUP.EXE O34 - HKLM BootExecute: (autocheck autochk *) O35:64bit: - HKLM\..comfile [open] -- "%1" %* O35:64bit: - HKLM\..exefile [open] -- "%1" %* O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %* O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2) O38 - SubSystems\\Windows: (ServerDll=sxssrv,4) ========== Files/Folders - Created Within 30 Days ========== [2012.07.15 13:58:00 | 000,596,480 | ---- | C] (OldTimer Tools) -- C:\Users\Kai\Desktop\OTL.exe [2012.07.15 13:47:56 | 000,000,000 | ---D | C] -- C:\ProgramData\Panda Security [2012.07.15 13:47:35 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Panda USB Vaccine [2012.07.15 13:47:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Panda Security [2012.07.15 13:44:27 | 000,848,856 | ---- | C] (Panda Security ) -- C:\Users\Kai\Desktop\USBVaccine1014Setup.exe [2012.07.15 01:05:07 | 000,491,520 | ---- | C] (Microsoft) -- C:\Users\Kai\AppData\Roaming\hnvjtm.exe [2012.07.15 00:25:37 | 000,279,040 | RHS- | C] (gyns xybapv bison lpg) -- C:\Users\Kai\rasPlayS.exe [2012.07.14 23:48:19 | 000,000,000 | ---D | C] -- C:\Users\Kai\AppData\Roaming\Avira [2012.07.14 23:45:14 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira [2012.07.14 23:45:06 | 000,132,832 | ---- | C] (Avira GmbH) -- C:\Windows\SysNative\drivers\avipbb.sys [2012.07.14 23:45:06 | 000,098,848 | ---- | C] (Avira GmbH) -- C:\Windows\SysNative\drivers\avgntflt.sys [2012.07.14 23:45:06 | 000,027,760 | ---- | C] (Avira GmbH) -- C:\Windows\SysNative\drivers\avkmgr.sys [2012.07.14 23:45:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Avira [2012.07.14 23:20:07 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Earthworm Jim [2012.07.14 23:14:58 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GridinSoft [2012.07.13 16:07:11 | 000,000,000 | ---D | C] -- C:\Users\Kai\AppData\Roaming\Yqi [2012.07.13 16:07:11 | 000,000,000 | ---D | C] -- C:\Users\Kai\AppData\Roaming\Iqymeg [2012.07.11 21:54:00 | 000,307,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ncrypt.dll [2012.07.07 13:35:26 | 001,024,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmpmde.dll [2012.07.07 13:35:26 | 000,738,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmpmde.dll [2012.07.06 15:59:23 | 000,000,000 | ---D | C] -- C:\Users\Kai\Desktop\Pils Daddy [2012.07.06 14:58:09 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Windows Media Player [2012.07.06 14:58:09 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Games [2012.06.30 23:11:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\devolo [2012.06.30 23:11:47 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Adobe AIR [2012.06.29 13:35:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AudibleManager [2012.06.29 13:35:06 | 000,000,000 | ---D | C] -- D:\Kai\Documents\Audible [2012.06.28 12:00:58 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi [2012.06.21 14:46:07 | 000,057,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuauclt.exe [2012.06.21 14:46:07 | 000,044,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wups2.dll [2012.06.21 14:46:06 | 002,622,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wucltux.dll [2012.06.21 14:45:58 | 000,701,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuapi.dll [2012.06.21 14:45:58 | 000,099,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wudriver.dll [2012.06.21 14:45:58 | 000,038,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wups.dll [2012.06.21 14:45:50 | 000,186,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuwebv.dll [2012.06.21 14:45:50 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuapp.exe [2010.11.14 17:08:25 | 000,082,816 | ---- | C] (VSO Software) -- C:\Users\Kai\AppData\Roaming\pcouffin.sys [2009.07.14 02:20:27 | 000,086,016 | -HS- | C] (Simon Tatham) -- C:\Users\Kai\AppData\Roaming\EA85AF.exe [2009.07.14 02:20:27 | 000,086,016 | -HS- | C] (Simon Tatham) -- C:\Users\Kai\AppData\Roaming\8EA0F1.exe [2 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ] [1 C:\Users\Kai\AppData\Roaming\*.tmp files -> C:\Users\Kai\AppData\Roaming\*.tmp -> ] ========== Files - Modified Within 30 Days ========== [2012.07.15 14:01:22 | 002,115,791 | ---- | M] () -- C:\Users\Kai\Desktop\tdsskiller.zip [2012.07.15 13:59:00 | 000,596,480 | ---- | M] (OldTimer Tools) -- C:\Users\Kai\Desktop\OTL.exe [2012.07.15 13:44:27 | 000,848,856 | ---- | M] (Panda Security ) -- C:\Users\Kai\Desktop\USBVaccine1014Setup.exe [2012.07.15 13:11:35 | 000,014,752 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [2012.07.15 13:11:35 | 000,014,752 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [2012.07.15 13:03:19 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2012.07.15 01:05:10 | 000,491,520 | ---- | M] (Microsoft) -- C:\Users\Kai\AppData\Roaming\hnvjtm.exe [2012.07.15 00:25:37 | 000,279,040 | RHS- | M] (gyns xybapv bison lpg) -- C:\Users\Kai\rasPlayS.exe [2012.07.14 23:45:14 | 000,001,018 | ---- | M] () -- C:\Users\Public\Desktop\Avira Control Center.lnk [2012.07.14 23:37:18 | 099,308,192 | ---- | M] () -- C:\Users\Kai\Desktop\avira_free_antivirus_de12001125.exe [2012.07.14 23:27:28 | 000,000,867 | ---- | M] () -- C:\Users\Public\Desktop\Trojan Killer.lnk [2012.07.14 23:20:07 | 000,000,832 | ---- | M] () -- C:\Users\Kai\Desktop\Earthworm Jim.lnk [2012.07.14 23:20:07 | 000,000,529 | ---- | M] () -- C:\Users\Kai\Desktop\Earthworm Jim on the Gamefabrique.lnk [2012.07.14 19:18:59 | 000,426,184 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe [2012.07.14 19:18:59 | 000,070,344 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl [2012.07.14 17:45:19 | 089,192,389 | ---- | M] () -- C:\Users\Kai\Desktop\EP² Tape.rar [2012.07.14 17:43:16 | 040,521,701 | ---- | M] () -- C:\Users\Kai\Desktop\Zenit - Weit weg.zip [2012.07.13 18:33:38 | 001,650,820 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI [2012.07.13 18:33:38 | 000,710,826 | ---- | M] () -- C:\Windows\SysNative\perfh007.dat [2012.07.13 18:33:38 | 000,663,838 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat [2012.07.13 18:33:38 | 000,153,918 | ---- | M] () -- C:\Windows\SysNative\perfc007.dat [2012.07.13 18:33:38 | 000,125,968 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat [2012.07.13 18:27:11 | 147,824,928 | ---- | M] () -- C:\Users\Kai\Desktop\Oliver_Schories-My_Summer_2012_(Mixtape_June_2012).mp3 [2012.07.13 18:27:05 | 056,244,050 | ---- | M] () -- C:\Users\Kai\Desktop\Stress_und_Trauma_-_Bald_is_wieder_Gestern.zip [2012.07.13 02:20:18 | 055,084,792 | ---- | M] () -- C:\Users\Kai\Desktop\bellini-boyz.zip [2012.07.12 16:25:40 | 118,103,787 | ---- | M] () -- C:\Users\Kai\Desktop\AZEALIA BANKS - FANTASEA.zip [2012.07.12 14:15:06 | 000,453,344 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT [2012.07.11 22:00:51 | 077,737,905 | ---- | M] () -- C:\Users\Kai\Desktop\Gavlyn_-_Habit_That_You_Blame_%282009%29_%5BMP3%5D_CR_3970148.rar [2012.07.10 12:01:32 | 000,000,000 | ---- | M] () -- C:\Windows\SysWow64\config.nt [2012.07.03 18:21:18 | 000,285,328 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\aswBoot.exe [2012.07.02 01:59:58 | 000,061,201 | ---- | M] () -- C:\Users\Kai\Desktop\praktikumsordnung_2001.pdf [2012.07.01 23:06:06 | 142,838,755 | ---- | M] () -- C:\Users\Kai\Desktop\01 - PWA #04 - Evergreens sind immer da.mp3 [2012.06.30 23:12:02 | 000,000,978 | ---- | M] () -- C:\Users\Public\Desktop\devolo dLAN Cockpit.lnk [2012.06.25 09:09:34 | 062,163,890 | ---- | M] () -- C:\Users\Kai\Desktop\DynamiK - Wir ham da mal was Vorbereitet EP.zip [2012.06.16 17:18:13 | 096,043,118 | ---- | M] () -- C:\Users\Kai\Desktop\Twist89&Kool4Rymes_Kool4Rymes Mixtape.rar [2 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ] [1 C:\Users\Kai\AppData\Roaming\*.tmp files -> C:\Users\Kai\AppData\Roaming\*.tmp -> ] ========== Files Created - No Company Name ========== [2012.07.15 14:04:12 | 000,022,016 | ---- | C] () -- C:\Windows\Installer\{2731b7aa-dfc0-40cc-ec99-7f853a80c869}\U\800000cb.@ [2012.07.15 14:04:12 | 000,016,896 | ---- | C] () -- C:\Windows\Installer\{2731b7aa-dfc0-40cc-ec99-7f853a80c869}\U\80000000.@ [2012.07.15 14:01:21 | 002,115,791 | ---- | C] () -- C:\Users\Kai\Desktop\tdsskiller.zip [2012.07.15 00:09:10 | 000,001,696 | ---- | C] () -- C:\Windows\Installer\{2731b7aa-dfc0-40cc-ec99-7f853a80c869}\U\00000001.@ [2012.07.14 23:45:14 | 000,001,018 | ---- | C] () -- C:\Users\Public\Desktop\Avira Control Center.lnk [2012.07.14 23:36:39 | 099,308,192 | ---- | C] () -- C:\Users\Kai\Desktop\avira_free_antivirus_de12001125.exe [2012.07.14 23:27:28 | 000,000,867 | ---- | C] () -- C:\Users\Public\Desktop\Trojan Killer.lnk [2012.07.14 23:20:07 | 000,000,832 | ---- | C] () -- C:\Users\Kai\Desktop\Earthworm Jim.lnk [2012.07.14 23:20:07 | 000,000,529 | ---- | C] () -- C:\Users\Kai\Desktop\Earthworm Jim on the Gamefabrique.lnk [2012.07.14 17:43:20 | 089,192,389 | ---- | C] () -- C:\Users\Kai\Desktop\EP² Tape.rar [2012.07.14 17:43:00 | 040,521,701 | ---- | C] () -- C:\Users\Kai\Desktop\Zenit - Weit weg.zip [2012.07.13 18:26:17 | 056,244,050 | ---- | C] () -- C:\Users\Kai\Desktop\Stress_und_Trauma_-_Bald_is_wieder_Gestern.zip [2012.07.13 18:24:48 | 147,824,928 | ---- | C] () -- C:\Users\Kai\Desktop\Oliver_Schories-My_Summer_2012_(Mixtape_June_2012).mp3 [2012.07.13 02:20:02 | 055,084,792 | ---- | C] () -- C:\Users\Kai\Desktop\bellini-boyz.zip [2012.07.12 16:25:02 | 118,103,787 | ---- | C] () -- C:\Users\Kai\Desktop\AZEALIA BANKS - FANTASEA.zip [2012.07.11 21:21:27 | 077,737,905 | ---- | C] () -- C:\Users\Kai\Desktop\Gavlyn_-_Habit_That_You_Blame_%282009%29_%5BMP3%5D_CR_3970148.rar [2012.07.02 01:59:57 | 000,061,201 | ---- | C] () -- C:\Users\Kai\Desktop\praktikumsordnung_2001.pdf [2012.07.01 23:05:26 | 142,838,755 | ---- | C] () -- C:\Users\Kai\Desktop\01 - PWA #04 - Evergreens sind immer da.mp3 [2012.06.30 23:12:02 | 000,000,978 | ---- | C] () -- C:\Users\Public\Desktop\devolo dLAN Cockpit.lnk [2012.06.25 09:08:47 | 062,163,890 | ---- | C] () -- C:\Users\Kai\Desktop\DynamiK - Wir ham da mal was Vorbereitet EP.zip [2012.06.16 17:16:25 | 096,043,118 | ---- | C] () -- C:\Users\Kai\Desktop\Twist89&Kool4Rymes_Kool4Rymes Mixtape.rar [2012.06.09 00:25:05 | 000,000,153 | ---- | C] () -- C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc [2012.04.13 23:11:44 | 000,034,753 | ---- | C] () -- C:\Windows\scunin.dat [2012.04.08 23:32:20 | 000,040,960 | R--- | C] () -- C:\Windows\SysWow64\psfind.dll [2012.04.08 23:30:35 | 000,000,016 | ---- | C] () -- C:\Users\Kai\AppData\Roaming\blckdom.res [2012.01.11 10:01:43 | 000,002,048 | -HS- | C] () -- C:\Windows\Installer\{2731b7aa-dfc0-40cc-ec99-7f853a80c869}\@ [2012.01.11 10:01:43 | 000,002,048 | -HS- | C] () -- C:\Users\Kai\AppData\Local\{2731b7aa-dfc0-40cc-ec99-7f853a80c869}\@ [2011.10.23 23:32:01 | 000,226,792 | ---- | C] () -- C:\Windows\hpoins18.dat [2011.10.23 23:32:01 | 000,005,355 | ---- | C] () -- C:\Windows\hpomdl18.dat [2011.08.17 01:35:55 | 000,000,000 | ---- | C] () -- C:\Windows\SysWow64\Access.dat [2011.07.12 12:43:51 | 000,000,091 | ---- | C] () -- C:\Users\Kai\AppData\Local\fusioncache.dat [2010.12.31 00:03:37 | 000,000,289 | ---- | C] () -- C:\Windows\game.ini [2010.12.01 21:46:44 | 000,000,011 | ---- | C] () -- C:\Windows\BRVIDEO.INI [2010.12.01 21:46:44 | 000,000,000 | ---- | C] () -- C:\Windows\brmx2001.ini [2010.12.01 21:46:39 | 000,000,416 | ---- | C] () -- C:\Windows\BRWMARK.INI [2010.12.01 21:45:50 | 000,000,334 | ---- | C] () -- C:\Windows\Brownie.ini [2010.11.14 17:08:25 | 000,099,384 | ---- | C] () -- C:\Users\Kai\AppData\Roaming\inst.exe [2010.11.14 17:08:25 | 000,007,859 | ---- | C] () -- C:\Users\Kai\AppData\Roaming\pcouffin.cat [2010.11.14 17:08:25 | 000,001,167 | ---- | C] () -- C:\Users\Kai\AppData\Roaming\pcouffin.inf [2010.11.14 00:06:01 | 000,000,000 | ---- | C] () -- C:\Windows\nsreg.dat [2010.11.13 14:37:33 | 001,627,778 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI [2010.11.05 18:49:46 | 000,000,010 | ---- | C] () -- C:\Windows\GSetup.ini < End of report > |
|
15.07.2012, 13:28
| #2 |
| | System von TR/ATRAPS.Gen, TR/ATRAPS.Gen2 befallen Hier der TDSSKiller-Scan:
__________________Code:
ATTFilter 14:01:36.0987 6108 TDSS rootkit removing tool 2.7.45.0 Jul 9 2012 12:46:35
14:01:37.0173 6108 ============================================================
14:01:37.0173 6108 Current date / time: 2012/07/15 14:01:37.0173
14:01:37.0173 6108 SystemInfo:
14:01:37.0173 6108
14:01:37.0173 6108 OS Version: 6.1.7600 ServicePack: 0.0
14:01:37.0173 6108 Product type: Workstation
14:01:37.0173 6108 ComputerName: KAI-PC
14:01:37.0173 6108 UserName: Kai
14:01:37.0173 6108 Windows directory: C:\Windows
14:01:37.0173 6108 System windows directory: C:\Windows
14:01:37.0173 6108 Running under WOW64
14:01:37.0173 6108 Processor architecture: Intel x64
14:01:37.0173 6108 Number of processors: 4
14:01:37.0173 6108 Page size: 0x1000
14:01:37.0173 6108 Boot type: Normal boot
14:01:37.0173 6108 ============================================================
14:01:38.0789 6108 Drive \Device\Harddisk1\DR1 - Size: 0x1D1C100DE00 (1863.02 Gb), SectorSize: 0x200, Cylinders: 0x3B601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
14:01:38.0802 6108 Drive \Device\Harddisk0\DR0 - Size: 0x3A38A25E00 (232.88 Gb), SectorSize: 0x200, Cylinders: 0x7E2D, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000040
14:01:38.0820 6108 Drive \Device\Harddisk2\DR2 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
14:01:47.0260 6108 ============================================================
14:01:47.0260 6108 \Device\Harddisk1\DR1:
14:01:47.0260 6108 MBR partitions:
14:01:47.0260 6108 \Device\Harddisk1\DR1\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0xE8E07000
14:01:47.0260 6108 \Device\Harddisk0\DR0:
14:01:47.0279 6108 MBR partitions:
14:01:47.0279 6108 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
14:01:47.0279 6108 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x3ADE000
14:01:47.0279 6108 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x3B10800, BlocksNum 0x196B4000
14:01:47.0279 6108 \Device\Harddisk2\DR2:
14:01:47.0281 6108 MBR partitions:
14:01:47.0281 6108 \Device\Harddisk2\DR2\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x74705982
14:01:47.0281 6108 ============================================================
14:01:47.0301 6108 C: <-> \Device\Harddisk0\DR0\Partition1
14:01:47.0373 6108 D: <-> \Device\Harddisk0\DR0\Partition2
14:01:47.0425 6108 J: <-> \Device\Harddisk2\DR2\Partition0
14:01:47.0460 6108 F: <-> \Device\Harddisk1\DR1\Partition0
14:01:47.0461 6108 ============================================================
14:01:47.0461 6108 Initialize success
14:01:47.0461 6108 ============================================================
14:02:28.0045 5164 ============================================================
14:02:28.0045 5164 Scan started
14:02:28.0045 5164 Mode: Manual; SigCheck; TDLFS;
14:02:28.0045 5164 ============================================================
14:02:28.0908 5164 1394ohci (1b00662092f9f9568b995902f0cc40d5) C:\Windows\system32\DRIVERS\1394ohci.sys
14:02:29.0033 5164 1394ohci - ok
14:02:29.0153 5164 acedrv11 (a3769020f7e8a70fd3e824c050f33306) C:\Windows\system32\drivers\acedrv11.sys
14:02:29.0218 5164 acedrv11 - ok
14:02:29.0353 5164 ACPI (6f11e88748cdefd2f76aa215f97ddfe5) C:\Windows\system32\DRIVERS\ACPI.sys
14:02:29.0392 5164 ACPI - ok
14:02:29.0436 5164 AcpiPmi (63b05a0420ce4bf0e4af6dcc7cada254) C:\Windows\system32\DRIVERS\acpipmi.sys
14:02:29.0583 5164 AcpiPmi - ok
14:02:29.0844 5164 AdobeARMservice (11a52cf7b265631deeb24c6149309eff) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
14:02:29.0859 5164 AdobeARMservice - ok
14:02:30.0026 5164 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
14:02:30.0055 5164 adp94xx - ok
14:02:30.0148 5164 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
14:02:30.0177 5164 adpahci - ok
14:02:30.0248 5164 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
14:02:30.0269 5164 adpu320 - ok
14:02:30.0318 5164 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
14:02:30.0751 5164 AeLookupSvc - ok
14:02:30.0961 5164 AFD (db9d6c6b2cd95a9ca414d045b627422e) C:\Windows\system32\drivers\afd.sys
14:02:31.0036 5164 AFD - ok
14:02:31.0124 5164 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\DRIVERS\agp440.sys
14:02:31.0147 5164 agp440 - ok
14:02:31.0198 5164 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
14:02:31.0230 5164 ALG - ok
14:02:31.0262 5164 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\DRIVERS\aliide.sys
14:02:31.0279 5164 aliide - ok
14:02:31.0303 5164 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\DRIVERS\amdide.sys
14:02:31.0320 5164 amdide - ok
14:02:31.0441 5164 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
14:02:31.0470 5164 AmdK8 - ok
14:02:31.0498 5164 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
14:02:31.0558 5164 AmdPPM - ok
14:02:31.0622 5164 amdsata (ec7ebab00a4d8448bab68d1e49b4beb9) C:\Windows\system32\drivers\amdsata.sys
14:02:31.0640 5164 amdsata - ok
14:02:31.0732 5164 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
14:02:31.0764 5164 amdsbs - ok
14:02:31.0798 5164 amdxata (db27766102c7bf7e95140a2aa81d042e) C:\Windows\system32\drivers\amdxata.sys
14:02:31.0821 5164 amdxata - ok
14:02:32.0375 5164 AntiVirSchedulerService (466a0d95960dad3222c896d2cea99993) D:\Programme\Internet\Avira\AntiVir Desktop\sched.exe
14:02:32.0406 5164 AntiVirSchedulerService - ok
14:02:32.0508 5164 AntiVirService (a489be6bb0aa1ff406b488b60542314b) D:\Programme\Internet\Avira\AntiVir Desktop\avguard.exe
14:02:32.0521 5164 AntiVirService - ok
14:02:32.0801 5164 AppID (42fd751b27fa0e9c69bb39f39e409594) C:\Windows\system32\drivers\appid.sys
14:02:32.0847 5164 AppID - ok
14:02:32.0872 5164 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
14:02:32.0935 5164 AppIDSvc - ok
14:02:32.0964 5164 Appinfo (d065be66822847b7f127d1f90158376e) C:\Windows\System32\appinfo.dll
14:02:33.0011 5164 Appinfo - ok
14:02:33.0186 5164 Apple Mobile Device (f401929ee0cc92bfe7f15161ca535383) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
14:02:33.0202 5164 Apple Mobile Device - ok
14:02:33.0294 5164 AppMgmt (4aba3e75a76195a3e38ed2766c962899) C:\Windows\System32\appmgmts.dll
14:02:33.0325 5164 AppMgmt - ok
14:02:33.0410 5164 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
14:02:33.0428 5164 arc - ok
14:02:33.0494 5164 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
14:02:33.0512 5164 arcsas - ok
14:02:33.0802 5164 aspnet_state (9217d874131ae6ff8f642f124f00a555) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
14:02:33.0845 5164 aspnet_state - ok
14:02:33.0903 5164 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
14:02:34.0000 5164 AsyncMac - ok
14:02:34.0040 5164 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\DRIVERS\atapi.sys
14:02:34.0058 5164 atapi - ok
14:02:34.0267 5164 AudioEndpointBuilder (07721a77180edd4d39ccb865bf63c7fd) C:\Windows\System32\Audiosrv.dll
14:02:34.0356 5164 AudioEndpointBuilder - ok
14:02:34.0365 5164 AudioSrv (07721a77180edd4d39ccb865bf63c7fd) C:\Windows\System32\Audiosrv.dll
14:02:34.0431 5164 AudioSrv - ok
14:02:34.0492 5164 avgntflt (26e38b5a58c6c55fafbc563eeddb0867) C:\Windows\system32\DRIVERS\avgntflt.sys
14:02:34.0508 5164 avgntflt - ok
14:02:34.0542 5164 avipbb (9d1f00beff84cbbf46d7f052bc7e0565) C:\Windows\system32\DRIVERS\avipbb.sys
14:02:34.0560 5164 avipbb - ok
14:02:34.0582 5164 avkmgr (248db59fc86de44d2779f4c7fb1a567d) C:\Windows\system32\DRIVERS\avkmgr.sys
14:02:34.0596 5164 avkmgr - ok
14:02:34.0674 5164 AxInstSV (b20b5fa5ca050e9926e4d1db81501b32) C:\Windows\System32\AxInstSV.dll
14:02:34.0852 5164 AxInstSV - ok
14:02:35.0061 5164 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
14:02:35.0115 5164 b06bdrv - ok
14:02:35.0283 5164 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
14:02:35.0334 5164 b57nd60a - ok
14:02:35.0442 5164 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
14:02:35.0500 5164 BDESVC - ok
14:02:35.0553 5164 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
14:02:35.0633 5164 Beep - ok
14:02:35.0974 5164 BITS (7f0c323fe3da28aa4aa1bda3f575707f) C:\Windows\System32\qmgr.dll
14:02:36.0062 5164 BITS - ok
14:02:36.0100 5164 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
14:02:36.0132 5164 blbdrive - ok
14:02:36.0272 5164 Bonjour Service (ebbcd5dfbb1de70e8f4af8fa59e401fd) C:\Program Files\Bonjour\mDNSResponder.exe
14:02:36.0294 5164 Bonjour Service - ok
14:02:36.0332 5164 bowser (19d20159708e152267e53b66677a4995) C:\Windows\system32\DRIVERS\bowser.sys
14:02:36.0384 5164 bowser - ok
14:02:36.0423 5164 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
14:02:36.0456 5164 BrFiltLo - ok
14:02:36.0483 5164 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
14:02:36.0505 5164 BrFiltUp - ok
14:02:36.0549 5164 Browser (94fbc06f294d58d02361918418f996e3) C:\Windows\System32\browser.dll
14:02:36.0611 5164 Browser - ok
14:02:36.0660 5164 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
14:02:36.0688 5164 Brserid - ok
14:02:36.0710 5164 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
14:02:36.0758 5164 BrSerWdm - ok
14:02:36.0788 5164 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
14:02:36.0825 5164 BrUsbMdm - ok
14:02:36.0831 5164 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
14:02:36.0863 5164 BrUsbSer - ok
14:02:36.0885 5164 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
14:02:36.0928 5164 BTHMODEM - ok
14:02:37.0002 5164 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
14:02:37.0063 5164 bthserv - ok
14:02:37.0122 5164 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
14:02:37.0189 5164 cdfs - ok
14:02:37.0243 5164 cdrom (83d2d75e1efb81b3450c18131443f7db) C:\Windows\system32\DRIVERS\cdrom.sys
14:02:37.0277 5164 cdrom - ok
14:02:37.0332 5164 CertPropSvc (312e2f82af11e79906898ac3e3d58a1f) C:\Windows\System32\certprop.dll
14:02:37.0388 5164 CertPropSvc - ok
14:02:37.0431 5164 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
14:02:37.0465 5164 circlass - ok
14:02:37.0514 5164 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
14:02:37.0545 5164 CLFS - ok
14:02:37.0636 5164 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
14:02:37.0653 5164 clr_optimization_v2.0.50727_32 - ok
14:02:37.0753 5164 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
14:02:37.0769 5164 clr_optimization_v2.0.50727_64 - ok
14:02:37.0891 5164 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
14:02:38.0030 5164 clr_optimization_v4.0.30319_32 - ok
14:02:38.0108 5164 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
14:02:38.0125 5164 clr_optimization_v4.0.30319_64 - ok
14:02:38.0162 5164 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
14:02:38.0195 5164 CmBatt - ok
14:02:38.0242 5164 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\DRIVERS\cmdide.sys
14:02:38.0260 5164 cmdide - ok
14:02:38.0338 5164 CNG (ca7720b73446fddec5c69519c1174c98) C:\Windows\system32\Drivers\cng.sys
14:02:38.0395 5164 CNG - ok
14:02:38.0409 5164 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
14:02:38.0428 5164 Compbatt - ok
14:02:38.0451 5164 CompositeBus (f26b3a86f6fa87ca360b879581ab4123) C:\Windows\system32\DRIVERS\CompositeBus.sys
14:02:38.0486 5164 CompositeBus - ok
14:02:38.0499 5164 COMSysApp - ok
14:02:38.0538 5164 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
14:02:38.0556 5164 crcdisk - ok
14:02:38.0653 5164 CryptSvc (f02786b66375292e58c8777082d4396d) C:\Windows\system32\cryptsvc.dll
14:02:38.0715 5164 CryptSvc - ok
14:02:38.0820 5164 CSC (4a6173c2279b498cd8f57cae504564cb) C:\Windows\system32\drivers\csc.sys
14:02:38.0870 5164 CSC - ok
14:02:38.0942 5164 CscService (873fbf927c06e5cee04dec617502f8fd) C:\Windows\System32\cscsvc.dll
14:02:39.0000 5164 CscService - ok
14:02:39.0090 5164 DcomLaunch (7266972e86890e2b30c0c322e906b027) C:\Windows\system32\rpcss.dll
14:02:39.0170 5164 DcomLaunch - ok
14:02:39.0257 5164 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
14:02:39.0325 5164 defragsvc - ok
14:02:39.0877 5164 DevoloNetworkService (141673e69cfdcf0b1531616343223ee4) D:\Programme\Internet\devolo\dlan\devolonetsvc.exe
14:02:39.0997 5164 DevoloNetworkService - ok
14:02:40.0117 5164 DfsC (9c253ce7311ca60fc11c774692a13208) C:\Windows\system32\Drivers\dfsc.sys
14:02:40.0164 5164 DfsC - ok
14:02:40.0247 5164 Dhcp (ce3b9562d997f69b330d181a8875960f) C:\Windows\system32\dhcpcore.dll
14:02:40.0384 5164 Dhcp - ok
14:02:40.0402 5164 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
14:02:40.0471 5164 discache - ok
14:02:40.0499 5164 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
14:02:40.0520 5164 Disk - ok
14:02:40.0557 5164 Dnscache (85cf424c74a1d5ec33533e1dbff9920a) C:\Windows\System32\dnsrslvr.dll
14:02:40.0590 5164 Dnscache - ok
14:02:40.0649 5164 dot3svc (14452acdb09b70964c8c21bf80a13acb) C:\Windows\System32\dot3svc.dll
14:02:40.0727 5164 dot3svc - ok
14:02:40.0820 5164 Dot4 (b42ed0320c6e41102fde0005154849bb) C:\Windows\system32\DRIVERS\Dot4.sys
14:02:40.0853 5164 Dot4 - ok
14:02:40.0889 5164 Dot4Print (85135ad27e79b689335c08167d917cde) C:\Windows\system32\DRIVERS\Dot4Prt.sys
14:02:40.0924 5164 Dot4Print - ok
14:02:40.0955 5164 dot4usb (fd05a02b0370bc3000f402e543ca5814) C:\Windows\system32\DRIVERS\dot4usb.sys
14:02:40.0986 5164 dot4usb - ok
14:02:41.0039 5164 DPS (8c2ba6bea949ee6e68385f5692bafb94) C:\Windows\system32\dps.dll
14:02:41.0107 5164 DPS - ok
14:02:41.0137 5164 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
14:02:41.0164 5164 drmkaud - ok
14:02:41.0273 5164 DrvAgent64 (1ed08a6264c5c92099d6d1dae5e8f530) C:\Windows\SysWOW64\Drivers\DrvAgent64.SYS
14:02:41.0290 5164 DrvAgent64 - ok
14:02:41.0351 5164 dtsoftbus01 (d3d64cf7b2bceaa34a270f45a3fffb36) C:\Windows\system32\DRIVERS\dtsoftbus01.sys
14:02:41.0382 5164 dtsoftbus01 - ok
14:02:41.0485 5164 DXGKrnl (1633b9abf52784a1331476397a48cbef) C:\Windows\System32\drivers\dxgkrnl.sys
14:02:41.0525 5164 DXGKrnl - ok
14:02:41.0555 5164 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
14:02:41.0621 5164 EapHost - ok
14:02:41.0835 5164 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
14:02:41.0927 5164 ebdrv - ok
14:02:42.0044 5164 EFS (156f6159457d0aa7e59b62681b56eb90) C:\Windows\System32\lsass.exe
14:02:42.0090 5164 EFS - ok
14:02:42.0210 5164 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
14:02:42.0239 5164 elxstor - ok
14:02:42.0260 5164 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\DRIVERS\errdev.sys
14:02:42.0278 5164 ErrDev - ok
14:02:42.0393 5164 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
14:02:42.0475 5164 EventSystem - ok
14:02:42.0500 5164 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
14:02:42.0563 5164 exfat - ok
14:02:42.0590 5164 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
14:02:42.0671 5164 fastfat - ok
14:02:42.0744 5164 Fax (d607b2f1bee3992aa6c2c92c0a2f0855) C:\Windows\system32\fxssvc.exe
14:02:42.0789 5164 Fax - ok
14:02:42.0815 5164 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
14:02:42.0844 5164 fdc - ok
14:02:42.0857 5164 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
14:02:42.0918 5164 fdPHost - ok
14:02:42.0937 5164 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
14:02:42.0991 5164 FDResPub - ok
14:02:43.0014 5164 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
14:02:43.0034 5164 FileInfo - ok
14:02:43.0064 5164 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
14:02:43.0128 5164 Filetrace - ok
14:02:43.0311 5164 FLEXnet Licensing Service 64 (64ab6f28047744b9b19c97459c2ab31b) C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
14:02:43.0364 5164 FLEXnet Licensing Service 64 - ok
14:02:43.0479 5164 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
14:02:43.0511 5164 flpydisk - ok
14:02:43.0550 5164 FltMgr (f7866af72abbaf84b1fa5aa195378c59) C:\Windows\system32\drivers\fltmgr.sys
14:02:43.0574 5164 FltMgr - ok
14:02:43.0684 5164 FontCache (cb5e4b9c319e3c6bb363eb7e58a4a051) C:\Windows\system32\FntCache.dll
14:02:43.0734 5164 FontCache - ok
14:02:43.0896 5164 FontCache3.0.0.0 (8d89e3131c27fdd6932189cb785e1b7a) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
14:02:43.0911 5164 FontCache3.0.0.0 - ok
14:02:44.0290 5164 FreeAgentGoNext Service (9513b437b7adb1e6065b7f0d83d11ecf) D:\Programme\Verwaltung\Seagate\Sync\FreeAgentService.exe
14:02:44.0308 5164 FreeAgentGoNext Service - ok
14:02:44.0380 5164 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
14:02:44.0399 5164 FsDepends - ok
14:02:44.0424 5164 Fs_Rec (d3e3f93d67821a2db2b3d9fac2dc2064) C:\Windows\system32\drivers\Fs_Rec.sys
14:02:44.0442 5164 Fs_Rec - ok
14:02:44.0506 5164 fvevol (ae87ba80d0ec3b57126ed2cdc15b24ed) C:\Windows\system32\DRIVERS\fvevol.sys
14:02:44.0535 5164 fvevol - ok
14:02:44.0581 5164 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
14:02:44.0601 5164 gagp30kx - ok
14:02:44.0671 5164 gdrv (5ea3b256225d79a4b07a2cac6276b23d) C:\Windows\gdrv.sys
14:02:44.0692 5164 gdrv - ok
14:02:44.0765 5164 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
14:02:44.0778 5164 GEARAspiWDM - ok
14:02:44.0876 5164 gpsvc (fe5ab4525bc2ec68b9119a6e5d40128b) C:\Windows\System32\gpsvc.dll
14:02:44.0942 5164 gpsvc - ok
14:02:44.0977 5164 hamachi (1e6438d4ea6e1174a3b3b1edc4de660b) C:\Windows\system32\DRIVERS\hamachi.sys
14:02:44.0993 5164 hamachi - ok
14:02:45.0146 5164 Hamachi2Svc - ok
14:02:45.0172 5164 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
14:02:45.0209 5164 hcw85cir - ok
14:02:45.0312 5164 HdAudAddService (6410f6f415b2a5a9037224c41da8bf12) C:\Windows\system32\drivers\HdAudio.sys
14:02:45.0350 5164 HdAudAddService - ok
14:02:45.0370 5164 HDAudBus (0a49913402747a0b67de940fb42cbdbb) C:\Windows\system32\DRIVERS\HDAudBus.sys
14:02:45.0411 5164 HDAudBus - ok
14:02:45.0433 5164 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
14:02:45.0468 5164 HidBatt - ok
14:02:45.0505 5164 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
14:02:45.0535 5164 HidBth - ok
14:02:45.0557 5164 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
14:02:45.0580 5164 HidIr - ok
14:02:45.0611 5164 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\system32\hidserv.dll
14:02:45.0668 5164 hidserv - ok
14:02:45.0708 5164 HidUsb (b3bf6b5b50006def50b66306d99fcf6f) C:\Windows\system32\DRIVERS\hidusb.sys
14:02:45.0740 5164 HidUsb - ok
14:02:45.0767 5164 hkmsvc (efa58ede58dd74388ffd04cb32681518) C:\Windows\system32\kmsvc.dll
14:02:45.0825 5164 hkmsvc - ok
14:02:45.0841 5164 HomeGroupListener (046b2673767ca626e2cfb7fdf735e9e8) C:\Windows\system32\ListSvc.dll
14:02:45.0876 5164 HomeGroupListener - ok
14:02:45.0911 5164 HomeGroupProvider (06a7422224d9865a5613710a089987df) C:\Windows\system32\provsvc.dll
14:02:45.0964 5164 HomeGroupProvider - ok
14:02:46.0086 5164 hpqcxs08 (1dae5c46d42b02a6d5862e1482efb390) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
14:02:46.0108 5164 hpqcxs08 ( UnsignedFile.Multi.Generic ) - warning
14:02:46.0108 5164 hpqcxs08 - detected UnsignedFile.Multi.Generic (1)
14:02:46.0153 5164 hpqddsvc (99e8eef42fe2f4af29b08c3355dd7685) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
14:02:46.0172 5164 hpqddsvc ( UnsignedFile.Multi.Generic ) - warning
14:02:46.0172 5164 hpqddsvc - detected UnsignedFile.Multi.Generic (1)
14:02:46.0198 5164 HpSAMD (0886d440058f203eba0e1825e4355914) C:\Windows\system32\DRIVERS\HpSAMD.sys
14:02:46.0217 5164 HpSAMD - ok
14:02:46.0346 5164 HPSLPSVC (7f57926169c1b8aba9274ea7d4b70f18) C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL
14:02:46.0374 5164 HPSLPSVC ( UnsignedFile.Multi.Generic ) - warning
14:02:46.0375 5164 HPSLPSVC - detected UnsignedFile.Multi.Generic (1)
14:02:46.0440 5164 HTTP (cee049cac4efa7f4e1e4ad014414a5d4) C:\Windows\system32\drivers\HTTP.sys
14:02:46.0533 5164 HTTP - ok
14:02:46.0557 5164 hwpolicy (f17766a19145f111856378df337a5d79) C:\Windows\system32\drivers\hwpolicy.sys
14:02:46.0576 5164 hwpolicy - ok
14:02:46.0667 5164 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\DRIVERS\i8042prt.sys
14:02:46.0689 5164 i8042prt - ok
14:02:46.0759 5164 iaStorV (b75e45c564e944a2657167d197ab29da) C:\Windows\system32\drivers\iaStorV.sys
14:02:46.0787 5164 iaStorV - ok
14:02:46.0908 5164 idsvc (2f2be70d3e02b6fa877921ab9516d43c) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
14:02:46.0955 5164 idsvc - ok
14:02:46.0993 5164 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
14:02:47.0012 5164 iirsp - ok
14:02:47.0117 5164 IKEEXT (c5b4683680df085b57bc53e5ef34861f) C:\Windows\System32\ikeext.dll
14:02:47.0189 5164 IKEEXT - ok
14:02:47.0469 5164 IntcAzAudAddService (a0c2c3d4c03c4fb896cfc53873784178) C:\Windows\system32\drivers\RTKVHD64.sys
14:02:47.0552 5164 IntcAzAudAddService - ok
14:02:47.0675 5164 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\DRIVERS\intelide.sys
14:02:47.0691 5164 intelide - ok
14:02:47.0750 5164 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
14:02:47.0784 5164 intelppm - ok
14:02:47.0857 5164 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
14:02:47.0919 5164 IPBusEnum - ok
14:02:47.0946 5164 IpFilterDriver (722dd294df62483cecaae6e094b4d695) C:\Windows\system32\DRIVERS\ipfltdrv.sys
14:02:48.0019 5164 IpFilterDriver - ok
14:02:48.0038 5164 IPMIDRV (e2b4a4494db7cb9b89b55ca268c337c5) C:\Windows\system32\DRIVERS\IPMIDrv.sys
14:02:48.0080 5164 IPMIDRV - ok
14:02:48.0130 5164 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
14:02:48.0196 5164 IPNAT - ok
14:02:48.0340 5164 iPod Service (a9ab99ee7d39725eafec82732d2b3271) C:\Program Files\iPod\bin\iPodService.exe
14:02:48.0372 5164 iPod Service - ok
14:02:48.0404 5164 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
14:02:48.0430 5164 IRENUM - ok
14:02:48.0447 5164 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\DRIVERS\isapnp.sys
14:02:48.0464 5164 isapnp - ok
14:02:48.0507 5164 iScsiPrt (fa4d2557de56d45b0a346f93564be6e1) C:\Windows\system32\DRIVERS\msiscsi.sys
14:02:48.0528 5164 iScsiPrt - ok
14:02:48.0563 5164 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
14:02:48.0581 5164 kbdclass - ok
14:02:48.0615 5164 kbdhid (6def98f8541e1b5dceb2c822a11f7323) C:\Windows\system32\DRIVERS\kbdhid.sys
14:02:48.0645 5164 kbdhid - ok
14:02:48.0695 5164 KeyIso (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
14:02:48.0715 5164 KeyIso - ok
14:02:48.0750 5164 KSecDD (4f4b5fde429416877de7143044582eb5) C:\Windows\system32\Drivers\ksecdd.sys
14:02:48.0768 5164 KSecDD - ok
14:02:48.0801 5164 KSecPkg (6f40465a44ecdc1731befafec5bdd03c) C:\Windows\system32\Drivers\ksecpkg.sys
14:02:48.0821 5164 KSecPkg - ok
14:02:48.0867 5164 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
14:02:48.0938 5164 ksthunk - ok
14:02:49.0027 5164 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
14:02:49.0104 5164 KtmRm - ok
14:02:49.0383 5164 LanmanServer (81f1d04d4d0e433099365127375fd501) C:\Windows\system32\srvsvc.dll
14:02:49.0422 5164 LanmanServer - ok
14:02:49.0467 5164 LanmanWorkstation (27026eac8818e8a6c00a1cad2f11d29a) C:\Windows\System32\wkssvc.dll
14:02:49.0544 5164 LanmanWorkstation - ok
14:02:49.0585 5164 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
14:02:49.0646 5164 lltdio - ok
14:02:49.0716 5164 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
14:02:49.0794 5164 lltdsvc - ok
14:02:49.0817 5164 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
14:02:49.0868 5164 lmhosts - ok
14:02:49.0895 5164 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
14:02:49.0915 5164 LSI_FC - ok
14:02:49.0949 5164 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
14:02:49.0969 5164 LSI_SAS - ok
14:02:49.0986 5164 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
14:02:50.0005 5164 LSI_SAS2 - ok
14:02:50.0031 5164 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
14:02:50.0050 5164 LSI_SCSI - ok
14:02:50.0077 5164 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
14:02:50.0137 5164 luafv - ok
14:02:50.0164 5164 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
14:02:50.0183 5164 megasas - ok
14:02:50.0224 5164 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
14:02:50.0247 5164 MegaSR - ok
14:02:50.0453 5164 Microsoft Office Groove Audit Service (fafe367d032ed82e9332b4c741a20216) D:\Programme\Verwaltung\Office\Office12\GrooveAuditService.exe
14:02:50.0468 5164 Microsoft Office Groove Audit Service - ok
14:02:50.0494 5164 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
14:02:50.0561 5164 MMCSS - ok
14:02:50.0590 5164 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
14:02:50.0648 5164 Modem - ok
14:02:50.0678 5164 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
14:02:50.0707 5164 monitor - ok
14:02:50.0732 5164 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
14:02:50.0752 5164 mouclass - ok
14:02:50.0769 5164 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
14:02:50.0794 5164 mouhid - ok
14:02:50.0818 5164 mountmgr (791af66c4d0e7c90a3646066386fb571) C:\Windows\system32\drivers\mountmgr.sys
14:02:50.0839 5164 mountmgr - ok
14:02:50.0868 5164 mpio (609d1d87649ecc19796f4d76d4c15cea) C:\Windows\system32\DRIVERS\mpio.sys
14:02:50.0888 5164 mpio - ok
14:02:50.0912 5164 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
14:02:50.0965 5164 mpsdrv - ok
14:02:51.0011 5164 MRxDAV (30524261bb51d96d6fcbac20c810183c) C:\Windows\system32\drivers\mrxdav.sys
14:02:51.0051 5164 MRxDAV - ok
14:02:51.0090 5164 mrxsmb (040d62a9d8ad28922632137acdd984f2) C:\Windows\system32\DRIVERS\mrxsmb.sys
14:02:51.0124 5164 mrxsmb - ok
14:02:51.0175 5164 mrxsmb10 (f0067552f8f9b33d7c59403ab808a3cb) C:\Windows\system32\DRIVERS\mrxsmb10.sys
14:02:51.0198 5164 mrxsmb10 - ok
14:02:51.0232 5164 mrxsmb20 (3c142d31de9f2f193218a53fe2632051) C:\Windows\system32\DRIVERS\mrxsmb20.sys
14:02:51.0261 5164 mrxsmb20 - ok
14:02:51.0308 5164 msahci (5c37497276e3b3a5488b23a326a754b7) C:\Windows\system32\DRIVERS\msahci.sys
14:02:51.0328 5164 msahci - ok
14:02:51.0351 5164 msdsm (8d27b597229aed79430fb9db3bcbfbd0) C:\Windows\system32\DRIVERS\msdsm.sys
14:02:51.0372 5164 msdsm - ok
14:02:51.0419 5164 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
14:02:51.0453 5164 MSDTC - ok
14:02:51.0493 5164 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
14:02:51.0544 5164 Msfs - ok
14:02:51.0577 5164 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
14:02:51.0638 5164 mshidkmdf - ok
14:02:51.0651 5164 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\DRIVERS\msisadrv.sys
14:02:51.0673 5164 msisadrv - ok
14:02:51.0707 5164 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
14:02:51.0782 5164 MSiSCSI - ok
14:02:51.0789 5164 msiserver - ok
14:02:51.0812 5164 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
14:02:51.0874 5164 MSKSSRV - ok
14:02:51.0883 5164 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
14:02:51.0952 5164 MSPCLOCK - ok
14:02:51.0969 5164 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
14:02:52.0036 5164 MSPQM - ok
14:02:52.0069 5164 MsRPC (89cb141aa8616d8c6a4610fa26c60964) C:\Windows\system32\drivers\MsRPC.sys
14:02:52.0098 5164 MsRPC - ok
14:02:52.0115 5164 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\DRIVERS\mssmbios.sys
14:02:52.0134 5164 mssmbios - ok
14:02:52.0149 5164 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
14:02:52.0221 5164 MSTEE - ok
14:02:52.0236 5164 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
14:02:52.0267 5164 MTConfig - ok
14:02:52.0282 5164 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
14:02:52.0301 5164 Mup - ok
14:02:52.0361 5164 napagent (4987e079a4530fa737a128be54b63b12) C:\Windows\system32\qagentRT.dll
14:02:52.0438 5164 napagent - ok
14:02:52.0488 5164 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
14:02:52.0532 5164 NativeWifiP - ok
14:02:52.0611 5164 NDIS (cad515dbd07d082bb317d9928ce8962c) C:\Windows\system32\drivers\ndis.sys
14:02:52.0657 5164 NDIS - ok
14:02:52.0689 5164 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
14:02:52.0752 5164 NdisCap - ok
14:02:52.0775 5164 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
14:02:52.0843 5164 NdisTapi - ok
14:02:52.0870 5164 Ndisuio (f105ba1e22bf1f2ee8f005d4305e4bec) C:\Windows\system32\DRIVERS\ndisuio.sys
14:02:52.0930 5164 Ndisuio - ok
14:02:52.0978 5164 NdisWan (557dfab9ca1fcb036ac77564c010dad3) C:\Windows\system32\DRIVERS\ndiswan.sys
14:02:53.0033 5164 NdisWan - ok
14:02:53.0083 5164 NDProxy (659b74fb74b86228d6338d643cd3e3cf) C:\Windows\system32\drivers\NDProxy.sys
14:02:53.0150 5164 NDProxy - ok
14:02:53.0200 5164 Net Driver HPZ12 (d5ac41ae382738483faffbd7e373d49a) C:\Windows\system32\HPZinw12.dll
14:02:53.0225 5164 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
14:02:53.0225 5164 Net Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
14:02:53.0274 5164 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
14:02:53.0343 5164 NetBIOS - ok
14:02:53.0452 5164 NetBT (9162b273a44ab9dce5b44362731d062a) C:\Windows\system32\DRIVERS\netbt.sys
14:02:53.0521 5164 NetBT - ok
14:02:53.0588 5164 Netlogon (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
14:02:53.0613 5164 Netlogon - ok
14:02:53.0884 5164 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
14:02:53.0956 5164 Netman - ok
14:02:54.0205 5164 NetMsmqActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
14:02:54.0240 5164 NetMsmqActivator - ok
14:02:54.0262 5164 NetPipeActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
14:02:54.0278 5164 NetPipeActivator - ok
14:02:54.0750 5164 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
14:02:54.0848 5164 netprofm - ok
14:02:54.0892 5164 NetTcpActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
14:02:54.0908 5164 NetTcpActivator - ok
14:02:54.0912 5164 NetTcpPortSharing (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
14:02:54.0928 5164 NetTcpPortSharing - ok
14:02:55.0049 5164 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
14:02:55.0070 5164 nfrd960 - ok
14:02:55.0201 5164 NlaSvc (d9a0ce66046d6efa0c61baa885cba0a8) C:\Windows\System32\nlasvc.dll
14:02:55.0268 5164 NlaSvc - ok
14:02:55.0325 5164 NLNdisMP - ok
14:02:55.0348 5164 NLNdisPT - ok
14:02:55.0408 5164 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
14:02:55.0476 5164 Npfs - ok
14:02:55.0775 5164 NPF_devolo (49697c2c761acb5c0de99cc8fe93e95b) C:\Windows\sysWOW64\drivers\npf_devolo.sys
14:02:55.0788 5164 NPF_devolo - ok
14:02:55.0856 5164 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
14:02:55.0926 5164 nsi - ok
14:02:55.0956 5164 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
14:02:56.0017 5164 nsiproxy - ok
14:02:56.0294 5164 Ntfs (378e0e0dfea67d98ae6ea53adbbd76bc) C:\Windows\system32\drivers\Ntfs.sys
14:02:56.0354 5164 Ntfs - ok
14:02:56.0718 5164 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
14:02:56.0767 5164 Null - ok
14:02:59.0604 5164 nvlddmkm (f12c5f17d48d9f5c70e4408b3ccb5443) C:\Windows\system32\DRIVERS\nvlddmkm.sys
14:03:00.0036 5164 nvlddmkm - ok
14:03:00.0162 5164 nvraid (a4d9c9a608a97f59307c2f2600edc6a4) C:\Windows\system32\drivers\nvraid.sys
14:03:00.0182 5164 nvraid - ok
14:03:00.0210 5164 nvstor (6c1d5f70e7a6a3fd1c90d840edc048b9) C:\Windows\system32\drivers\nvstor.sys
14:03:00.0230 5164 nvstor - ok
14:03:00.0333 5164 NVSvc (8a55543c379b0582f0c33db447d1c892) C:\Windows\system32\nvvsvc.exe
14:03:00.0372 5164 NVSvc - ok
14:03:00.0427 5164 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\DRIVERS\nv_agp.sys
14:03:00.0446 5164 nv_agp - ok
14:03:00.0616 5164 odserv (84de1dd996b48b05ace31ad015fa108a) C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
14:03:00.0645 5164 odserv - ok
14:03:00.0671 5164 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\DRIVERS\ohci1394.sys
14:03:00.0700 5164 ohci1394 - ok
14:03:00.0969 5164 OS Selector (fd85186c9f1abe012ddf44c233552129) D:\Programme\Verwaltung\Acronis\OSS\reinstall_svc.exe
14:03:01.0045 5164 OS Selector - ok
14:03:01.0120 5164 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
14:03:01.0136 5164 ose - ok
14:03:01.0186 5164 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
14:03:01.0225 5164 p2pimsvc - ok
14:03:01.0279 5164 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
14:03:01.0309 5164 p2psvc - ok
14:03:01.0376 5164 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
14:03:01.0396 5164 Parport - ok
14:03:01.0423 5164 partmgr (90061b1acfe8ccaa5345750ffe08d8b8) C:\Windows\system32\drivers\partmgr.sys
14:03:01.0442 5164 partmgr - ok
14:03:01.0499 5164 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
14:03:01.0536 5164 PcaSvc - ok
14:03:01.0669 5164 pci (f36f6504009f2fb0dfd1b17a116ad74b) C:\Windows\system32\DRIVERS\pci.sys
14:03:01.0693 5164 pci - ok
14:03:01.0705 5164 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\DRIVERS\pciide.sys
14:03:01.0722 5164 pciide - ok
14:03:01.0754 5164 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
14:03:01.0774 5164 pcmcia - ok
14:03:01.0812 5164 pcouffin (af7ce12c4f3dc8cb2b07685c916bbcfe) C:\Windows\system32\Drivers\pcouffin.sys
14:03:01.0834 5164 pcouffin - ok
14:03:01.0854 5164 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
14:03:01.0876 5164 pcw - ok
14:03:01.0924 5164 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
14:03:02.0002 5164 PEAUTH - ok
14:03:02.0288 5164 PeerDistSvc (b9b0a4299dd2d76a4243f75fd54dc680) C:\Windows\system32\peerdistsvc.dll
14:03:02.0419 5164 PeerDistSvc - ok
14:03:02.0591 5164 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
14:03:02.0625 5164 PerfHost - ok
14:03:02.0810 5164 pla (557e9a86f65f0de18c9b6751dfe9d3f1) C:\Windows\system32\pla.dll
14:03:02.0901 5164 pla - ok
14:03:02.0957 5164 PlugPlay (98b1721b8718164293b9701b98c52d77) C:\Windows\system32\umpnpmgr.dll
14:03:03.0002 5164 PlugPlay - ok
14:03:03.0058 5164 Pml Driver HPZ12 (37f6046cdc630442d7dc087501ff6fc6) C:\Windows\system32\HPZipm12.dll
14:03:03.0071 5164 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
14:03:03.0071 5164 Pml Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
14:03:03.0093 5164 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
14:03:03.0119 5164 PNRPAutoReg - ok
14:03:03.0156 5164 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
14:03:03.0179 5164 PNRPsvc - ok
14:03:03.0241 5164 PolicyAgent (166eb40d1f5b47e615de3d0fffe5f243) C:\Windows\System32\ipsecsvc.dll
14:03:03.0321 5164 PolicyAgent - ok
14:03:03.0353 5164 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
14:03:03.0420 5164 Power - ok
14:03:03.0483 5164 PptpMiniport (27cc19e81ba5e3403c48302127bda717) C:\Windows\system32\DRIVERS\raspptp.sys
14:03:03.0544 5164 PptpMiniport - ok
14:03:03.0563 5164 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
14:03:03.0601 5164 Processor - ok
14:03:03.0639 5164 ProfSvc (97293447431311c06703368ad0f6c4be) C:\Windows\system32\profsvc.dll
14:03:03.0664 5164 ProfSvc - ok
14:03:03.0691 5164 ProtectedStorage (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
14:03:03.0710 5164 ProtectedStorage - ok
14:03:03.0746 5164 Psched (ee992183bd8eaefd9973f352e587a299) C:\Windows\system32\DRIVERS\pacer.sys
14:03:03.0823 5164 Psched - ok
14:03:03.0921 5164 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
14:03:03.0976 5164 ql2300 - ok
14:03:04.0107 5164 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
14:03:04.0128 5164 ql40xx - ok
14:03:04.0167 5164 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
14:03:04.0208 5164 QWAVE - ok
14:03:04.0223 5164 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
14:03:04.0262 5164 QWAVEdrv - ok
14:03:04.0279 5164 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
14:03:04.0341 5164 RasAcd - ok
14:03:04.0386 5164 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
14:03:04.0453 5164 RasAgileVpn - ok
14:03:04.0481 5164 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
14:03:04.0548 5164 RasAuto - ok
14:03:04.0580 5164 Rasl2tp (87a6e852a22991580d6d39adc4790463) C:\Windows\system32\DRIVERS\rasl2tp.sys
14:03:04.0645 5164 Rasl2tp - ok
14:03:04.0691 5164 RasMan (47394ed3d16d053f5906efe5ab51cc83) C:\Windows\System32\rasmans.dll
14:03:04.0767 5164 RasMan - ok
14:03:04.0861 5164 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
14:03:04.0929 5164 RasPppoe - ok
14:03:05.0011 5164 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
14:03:05.0107 5164 RasSstp - ok
14:03:05.0150 5164 rdbss (3bac8142102c15d59a87757c1d41dce5) C:\Windows\system32\DRIVERS\rdbss.sys
14:03:05.0228 5164 rdbss - ok
14:03:05.0260 5164 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
14:03:05.0289 5164 rdpbus - ok
14:03:05.0307 5164 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
14:03:05.0366 5164 RDPCDD - ok
14:03:05.0396 5164 RDPDR (9706b84dbabfc4b4ca46c5a82b14dfa3) C:\Windows\system32\drivers\rdpdr.sys
14:03:05.0421 5164 RDPDR - ok
14:03:05.0468 5164 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
14:03:05.0534 5164 RDPENCDD - ok
14:03:05.0552 5164 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
14:03:05.0639 5164 RDPREFMP - ok
14:03:05.0696 5164 RDPWD (447de7e3dea39d422c1504f245b668b1) C:\Windows\system32\drivers\RDPWD.sys
14:03:05.0731 5164 RDPWD - ok
14:03:05.0787 5164 rdyboost (634b9a2181d98f15941236886164ec8b) C:\Windows\system32\drivers\rdyboost.sys
14:03:05.0808 5164 rdyboost - ok
14:03:05.0860 5164 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
14:03:05.0928 5164 RemoteAccess - ok
14:03:05.0961 5164 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
14:03:06.0028 5164 RemoteRegistry - ok
14:03:06.0067 5164 RMCAST (77b3b747eb2413072b8e4306018d0c9b) C:\Windows\system32\DRIVERS\RMCAST.sys
14:03:06.0132 5164 RMCAST - ok
14:03:06.0157 5164 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
14:03:06.0236 5164 RpcEptMapper - ok
14:03:06.0263 5164 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
14:03:06.0294 5164 RpcLocator - ok
14:03:06.0344 5164 RpcSs (7266972e86890e2b30c0c322e906b027) C:\Windows\system32\rpcss.dll
14:03:06.0413 5164 RpcSs - ok
14:03:06.0443 5164 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
14:03:06.0512 5164 rspndr - ok
14:03:06.0570 5164 RTL8167 (4b42bc58294e83a6a92ec8b88c14c4a3) C:\Windows\system32\DRIVERS\Rt64win7.sys
14:03:06.0593 5164 RTL8167 - ok
14:03:06.0615 5164 s3cap (88af6e02ab19df7fd07ecdf9c91e9af6) C:\Windows\system32\DRIVERS\vms3cap.sys
14:03:06.0645 5164 s3cap - ok
14:03:06.0676 5164 SamSs (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
14:03:06.0695 5164 SamSs - ok
14:03:06.0721 5164 sbp2port (e3bbb89983daf5622c1d50cf49f28227) C:\Windows\system32\DRIVERS\sbp2port.sys
14:03:06.0740 5164 sbp2port - ok
14:03:06.0778 5164 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
14:03:06.0848 5164 SCardSvr - ok
14:03:06.0888 5164 SCDEmu (46942b6980b35ffda6afa40a8328938c) C:\Windows\system32\drivers\SCDEmu.sys
14:03:06.0904 5164 SCDEmu - ok
14:03:06.0929 5164 scfilter (c94da20c7e3ba1dca269bc8460d98387) C:\Windows\system32\DRIVERS\scfilter.sys
14:03:06.0992 5164 scfilter - ok
14:03:07.0084 5164 Schedule (624d0f5ff99428bb90a5b8a4123e918e) C:\Windows\system32\schedsvc.dll
14:03:07.0141 5164 Schedule - ok
14:03:07.0173 5164 SCPolicySvc (312e2f82af11e79906898ac3e3d58a1f) C:\Windows\System32\certprop.dll
14:03:07.0236 5164 SCPolicySvc - ok
14:03:07.0266 5164 SDRSVC (765a27c3279ce11d14cb9e4f5869fca5) C:\Windows\System32\SDRSVC.dll
14:03:07.0298 5164 SDRSVC - ok
14:03:07.0351 5164 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
14:03:07.0424 5164 secdrv - ok
14:03:07.0438 5164 seclogon (463b386ebc70f98da5dff85f7e654346) C:\Windows\system32\seclogon.dll
14:03:07.0504 5164 seclogon - ok
14:03:07.0525 5164 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\System32\sens.dll
14:03:07.0590 5164 SENS - ok
14:03:07.0609 5164 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
14:03:07.0648 5164 SensrSvc - ok
14:03:07.0687 5164 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
14:03:07.0709 5164 Serenum - ok
14:03:07.0739 5164 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
14:03:07.0763 5164 Serial - ok
14:03:07.0779 5164 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
14:03:07.0817 5164 sermouse - ok
14:03:07.0847 5164 SessionEnv (c3bc61ce47ff6f4e88ab8a3b429a36af) C:\Windows\system32\sessenv.dll
14:03:07.0905 5164 SessionEnv - ok
14:03:07.0927 5164 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\DRIVERS\sffdisk.sys
14:03:07.0955 5164 sffdisk - ok
14:03:07.0973 5164 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\DRIVERS\sffp_mmc.sys
14:03:08.0007 5164 sffp_mmc - ok
14:03:08.0184 5164 sffp_sd (5588b8c6193eb1522490c122eb94dffa) C:\Windows\system32\DRIVERS\sffp_sd.sys
14:03:08.0226 5164 sffp_sd - ok
14:03:08.0243 5164 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
14:03:08.0270 5164 sfloppy - ok
14:03:08.0312 5164 ShellHWDetection (0298ac45d0efffb2db4baa7dd186e7bf) C:\Windows\System32\shsvcs.dll
14:03:08.0355 5164 ShellHWDetection - ok
14:03:08.0401 5164 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
14:03:08.0419 5164 SiSRaid2 - ok
14:03:08.0443 5164 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
14:03:08.0461 5164 SiSRaid4 - ok
14:03:08.0601 5164 SkypeUpdate (ea396139541706b4b433641d62ea53ce) D:\Programme\Internet\Skype\Updater\Updater.exe
14:03:08.0621 5164 SkypeUpdate - ok
14:03:08.0660 5164 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
14:03:08.0733 5164 Smb - ok
14:03:08.0844 5164 snapman (b2aa7562ba5858633fcdcd246e8d6730) C:\Windows\system32\DRIVERS\snapman.sys
14:03:08.0863 5164 snapman - ok
14:03:08.0891 5164 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
14:03:08.0913 5164 SNMPTRAP - ok
14:03:08.0937 5164 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
14:03:08.0954 5164 spldr - ok
14:03:09.0013 5164 Spooler (f8e1fa03cb70d54a9892ac88b91d1e7b) C:\Windows\System32\spoolsv.exe
14:03:09.0055 5164 Spooler - ok
14:03:09.0336 5164 sppsvc (913d843498553a1bc8f8dbad6358e49f) C:\Windows\system32\sppsvc.exe
14:03:09.0460 5164 sppsvc - ok
14:03:09.0558 5164 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
14:03:09.0626 5164 sppuinotify - ok
14:03:09.0724 5164 srv (2408c0366d96bcdf63e8f1c78e4a29c5) C:\Windows\system32\DRIVERS\srv.sys
14:03:09.0777 5164 srv - ok
14:03:09.0803 5164 srv2 (76548f7b818881b47d8d1ae1be9c11f8) C:\Windows\system32\DRIVERS\srv2.sys
14:03:09.0842 5164 srv2 - ok
14:03:09.0855 5164 srvnet (0af6e19d39c70844c5caa8fb0183c36e) C:\Windows\system32\DRIVERS\srvnet.sys
14:03:09.0907 5164 srvnet - ok
14:03:09.0941 5164 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
14:03:10.0017 5164 SSDPSRV - ok
14:03:10.0038 5164 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
14:03:10.0116 5164 SstpSvc - ok
14:03:10.0174 5164 Steam Client Service - ok
14:03:10.0204 5164 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
14:03:10.0222 5164 stexstor - ok
14:03:10.0296 5164 stisvc (52d0e33b681bd0f33fdc08812fee4f7d) C:\Windows\System32\wiaservc.dll
14:03:10.0346 5164 stisvc - ok
14:03:10.0377 5164 storflt (ffd7a6f15b14234b5b0e5d49e7961895) C:\Windows\system32\DRIVERS\vmstorfl.sys
14:03:10.0394 5164 storflt - ok
14:03:10.0419 5164 StorSvc (c40841817ef57d491f22eb103da587cc) C:\Windows\system32\storsvc.dll
14:03:10.0448 5164 StorSvc - ok
14:03:10.0474 5164 storvsc (8fccbefc5c440b3c23454656e551b09a) C:\Windows\system32\DRIVERS\storvsc.sys
14:03:10.0491 5164 storvsc - ok
14:03:10.0509 5164 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\DRIVERS\swenum.sys
14:03:10.0526 5164 swenum - ok
14:03:10.0578 5164 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
14:03:10.0661 5164 swprv - ok
14:03:10.0778 5164 SysMain (3c1284516a62078fb68f768de4f1a7be) C:\Windows\system32\sysmain.dll
14:03:10.0872 5164 SysMain - ok
14:03:10.0977 5164 TabletInputService (238935c3cf2854886dc7cbb2a0e2cc66) C:\Windows\System32\TabSvc.dll
14:03:11.0017 5164 TabletInputService - ok
14:03:11.0068 5164 tap0901t (b08740047145b9bce15bf75ca0f9718a) C:\Windows\system32\DRIVERS\tap0901t.sys
14:03:11.0109 5164 tap0901t - ok
14:03:11.0195 5164 TapiSrv (884264ac597b690c5707c89723bb8e7b) C:\Windows\System32\tapisrv.dll
14:03:11.0276 5164 TapiSrv - ok
14:03:11.0425 5164 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
14:03:11.0492 5164 TBS - ok
14:03:11.0664 5164 Tcpip (624c5b3aa4c99b3184bb922d9ece3ff0) C:\Windows\system32\drivers\tcpip.sys
14:03:11.0739 5164 Tcpip - ok
14:03:12.0074 5164 TCPIP6 (624c5b3aa4c99b3184bb922d9ece3ff0) C:\Windows\system32\DRIVERS\tcpip.sys
14:03:12.0129 5164 TCPIP6 - ok
14:03:12.0282 5164 tcpipreg (76d078af6f587b162d50210f761eb9ed) C:\Windows\system32\drivers\tcpipreg.sys
14:03:12.0351 5164 tcpipreg - ok
14:03:12.0389 5164 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
14:03:12.0425 5164 TDPIPE - ok
14:03:12.0451 5164 TDTCP (7518f7bcfd4b308abc9192bacaf6c970) C:\Windows\system32\drivers\tdtcp.sys
14:03:12.0474 5164 TDTCP - ok
14:03:12.0490 5164 tdx (079125c4b17b01fcaeebce0bcb290c0f) C:\Windows\system32\DRIVERS\tdx.sys
14:03:12.0555 5164 tdx - ok
14:03:12.0579 5164 TermDD (c448651339196c0e869a355171875522) C:\Windows\system32\DRIVERS\termdd.sys
14:03:12.0597 5164 TermDD - ok
14:03:12.0686 5164 TermService (0f05ec2887bfe197ad82a13287d2f404) C:\Windows\System32\termsrv.dll
14:03:12.0763 5164 TermService - ok
14:03:12.0778 5164 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
14:03:12.0827 5164 Themes - ok
14:03:12.0864 5164 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
14:03:12.0915 5164 THREADORDER - ok
14:03:12.0944 5164 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
14:03:13.0005 5164 TrkWks - ok
14:03:13.0032 5164 TrojanKillerDriver (9bf9e809fbb2d5d0403b32b15abe5f30) C:\Windows\system32\DRIVERS\gtkdrv.sys
14:03:13.0046 5164 TrojanKillerDriver - ok
14:03:13.0092 5164 TrustedInstaller (840f7fb849f5887a49ba18c13b2da920) C:\Windows\servicing\TrustedInstaller.exe
14:03:13.0130 5164 TrustedInstaller - ok
14:03:13.0148 5164 tssecsrv (61b96c26131e37b24e93327a0bd1fb95) C:\Windows\system32\DRIVERS\tssecsrv.sys
14:03:13.0212 5164 tssecsrv - ok
14:03:13.0533 5164 TuneUp.UtilitiesSvc (cdba816242f5e2dda788342f4282f132) D:\Programme\Verwaltung\TuneUp\TuneUpUtilitiesService64.exe
14:03:13.0618 5164 TuneUp.UtilitiesSvc - ok
14:03:13.0679 5164 TuneUpUtilitiesDrv (dcc94c51d27c7ec0dadeca8f64c94fcf) D:\Programme\Verwaltung\TuneUp\TuneUpUtilitiesDriver64.sys
14:03:13.0706 5164 TuneUpUtilitiesDrv - ok
14:03:13.0743 5164 tunnel (3836171a2cdf3af8ef10856db9835a70) C:\Windows\system32\DRIVERS\tunnel.sys
14:03:13.0804 5164 tunnel - ok
14:03:14.0020 5164 TunngleService (7a34128510eeb13cf8583531c8fb081c) D:\Programme\Internet\Tunngle\TnglCtrl.exe
14:03:14.0046 5164 TunngleService - ok
14:03:14.0073 5164 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
14:03:14.0091 5164 uagp35 - ok
14:03:14.0122 5164 udfs (d47baead86c65d4f4069d7ce0a4edceb) C:\Windows\system32\DRIVERS\udfs.sys
14:03:14.0196 5164 udfs - ok
14:03:14.0225 5164 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
14:03:14.0264 5164 UI0Detect - ok
14:03:14.0291 5164 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\DRIVERS\uliagpkx.sys
14:03:14.0308 5164 uliagpkx - ok
14:03:14.0328 5164 umbus (eab6c35e62b1b0db0d1b48b671d3a117) C:\Windows\system32\DRIVERS\umbus.sys
14:03:14.0359 5164 umbus - ok
14:03:14.0382 5164 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
14:03:14.0400 5164 UmPass - ok
14:03:14.0445 5164 UmRdpService (af0ac98ee5077eb844413eb54287fde3) C:\Windows\System32\umrdp.dll
14:03:14.0482 5164 UmRdpService - ok
14:03:14.0540 5164 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
14:03:14.0608 5164 upnphost - ok
14:03:14.0640 5164 USBAAPL64 (fb251567f41bc61988b26731dec19e4b) C:\Windows\system32\Drivers\usbaapl64.sys
14:03:14.0662 5164 USBAAPL64 - ok
14:03:14.0692 5164 usbccgp (7b6a127c93ee590e4d79a5f2a76fe46f) C:\Windows\system32\DRIVERS\usbccgp.sys
14:03:14.0723 5164 usbccgp - ok
14:03:14.0751 5164 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\DRIVERS\usbcir.sys
14:03:14.0780 5164 usbcir - ok
14:03:14.0853 5164 usbehci (92969ba5ac44e229c55a332864f79677) C:\Windows\system32\drivers\usbehci.sys
14:03:14.0872 5164 usbehci - ok
14:03:14.0924 5164 usbhub (e7df1cfd28ca86b35ef5add0735ceef3) C:\Windows\system32\DRIVERS\usbhub.sys
14:03:14.0949 5164 usbhub - ok
14:03:14.0979 5164 usbohci (f1bb1e55f1e7a65c5839ccc7b36d773e) C:\Windows\system32\drivers\usbohci.sys
14:03:14.0996 5164 usbohci - ok
14:03:15.0017 5164 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
14:03:15.0039 5164 usbprint - ok
14:03:15.0066 5164 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys
14:03:15.0091 5164 usbscan - ok
14:03:15.0123 5164 USBSTOR (f39983647bc1f3e6100778ddfe9dce29) C:\Windows\system32\DRIVERS\USBSTOR.SYS
14:03:15.0142 5164 USBSTOR - ok
14:03:15.0164 5164 usbuhci (bc3070350a491d84b518d7cca9abd36f) C:\Windows\system32\drivers\usbuhci.sys
14:03:15.0194 5164 usbuhci - ok
14:03:15.0243 5164 usbvideo (7cb8c573c6e4a2714402cc0a36eab4fe) C:\Windows\System32\Drivers\usbvideo.sys
14:03:15.0263 5164 usbvideo - ok
14:03:15.0292 5164 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
14:03:15.0355 5164 UxSms - ok
14:03:15.0382 5164 UxTuneUp (7984fcab128476584fbf135ad9b9097e) C:\Windows\System32\uxtuneup.dll
14:03:15.0397 5164 UxTuneUp - ok
14:03:15.0419 5164 VaultSvc (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
14:03:15.0439 5164 VaultSvc - ok
14:03:15.0466 5164 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\DRIVERS\vdrvroot.sys
14:03:15.0484 5164 vdrvroot - ok
14:03:15.0547 5164 vds (44d73e0bbc1d3c8981304ba15135c2f2) C:\Windows\System32\vds.exe
14:03:15.0598 5164 vds - ok
14:03:15.0625 5164 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
14:03:15.0646 5164 vga - ok
14:03:15.0669 5164 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
14:03:15.0727 5164 VgaSave - ok
14:03:15.0758 5164 vhdmp (c82e748660f62a242b2dfac1442f22a4) C:\Windows\system32\DRIVERS\vhdmp.sys
14:03:15.0779 5164 vhdmp - ok
14:03:15.0794 5164 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\DRIVERS\viaide.sys
14:03:15.0812 5164 viaide - ok
14:03:15.0842 5164 vmbus (1501699d7eda984abc4155a7da5738d1) C:\Windows\system32\DRIVERS\vmbus.sys
14:03:15.0864 5164 vmbus - ok
14:03:15.0881 5164 VMBusHID (ae10c35761889e65a6f7176937c5592c) C:\Windows\system32\DRIVERS\VMBusHID.sys
14:03:15.0911 5164 VMBusHID - ok
14:03:15.0936 5164 volmgr (2b1a3dae2b4e70dbba822b7a03fbd4a3) C:\Windows\system32\DRIVERS\volmgr.sys
14:03:15.0954 5164 volmgr - ok
14:03:15.0986 5164 volmgrx (99b0cbb569ca79acaed8c91461d765fb) C:\Windows\system32\drivers\volmgrx.sys
14:03:16.0018 5164 volmgrx - ok
14:03:16.0039 5164 volsnap (58f82eed8ca24b461441f9c3e4f0bf5c) C:\Windows\system32\DRIVERS\volsnap.sys
14:03:16.0066 5164 volsnap - ok
14:03:16.0102 5164 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
14:03:16.0124 5164 vsmraid - ok
14:03:16.0231 5164 VSS (787898bf9fb6d7bd87a36e2d95c899ba) C:\Windows\system32\vssvc.exe
14:03:16.0313 5164 VSS - ok
14:03:16.0428 5164 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\System32\drivers\vwifibus.sys
14:03:16.0457 5164 vwifibus - ok
14:03:16.0504 5164 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
14:03:16.0568 5164 W32Time - ok
14:03:16.0585 5164 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
14:03:16.0613 5164 WacomPen - ok
14:03:16.0649 5164 WANARP (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys
14:03:16.0713 5164 WANARP - ok
14:03:16.0719 5164 Wanarpv6 (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys
14:03:16.0787 5164 Wanarpv6 - ok
14:03:16.0897 5164 wbengine (5ab1bb85bd8b5089cc5d64200dedae68) C:\Windows\system32\wbengine.exe
14:03:16.0963 5164 wbengine - ok
14:03:17.0142 5164 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
14:03:17.0183 5164 WbioSrvc - ok
14:03:17.0232 5164 wcncsvc (dd1bae8ebfc653824d29ccf8c9054d68) C:\Windows\System32\wcncsvc.dll
14:03:17.0310 5164 wcncsvc - ok
14:03:17.0338 5164 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
14:03:17.0361 5164 WcsPlugInService - ok
14:03:17.0437 5164 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
14:03:17.0454 5164 Wd - ok
14:03:17.0608 5164 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
14:03:17.0644 5164 Wdf01000 - ok
14:03:17.0676 5164 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
14:03:17.0764 5164 WdiServiceHost - ok
14:03:17.0768 5164 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
14:03:17.0797 5164 WdiSystemHost - ok
14:03:17.0873 5164 WebClient (733006127f235be7c35354ebee7b9a7b) C:\Windows\System32\webclnt.dll
14:03:17.0913 5164 WebClient - ok
14:03:17.0998 5164 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
14:03:18.0079 5164 Wecsvc - ok
14:03:18.0098 5164 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
14:03:18.0174 5164 wercplsupport - ok
14:03:18.0223 5164 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
14:03:18.0278 5164 WerSvc - ok
14:03:18.0378 5164 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
14:03:18.0431 5164 WfpLwf - ok
14:03:18.0481 5164 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
14:03:18.0498 5164 WIMMount - ok
14:03:18.0508 5164 WinHttpAutoProxySvc - ok
14:03:18.0568 5164 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
14:03:18.0622 5164 Winmgmt - ok
14:03:18.0841 5164 WinRM (41fbb751936b387f9179e7f03a74fe29) C:\Windows\system32\WsmSvc.dll
14:03:18.0947 5164 WinRM - ok
14:03:19.0580 5164 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
14:03:19.0642 5164 Wlansvc - ok
14:03:19.0701 5164 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\DRIVERS\wmiacpi.sys
14:03:19.0732 5164 WmiAcpi - ok
14:03:19.0965 5164 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
14:03:20.0009 5164 wmiApSrv - ok
14:03:20.0122 5164 WMPNetworkSvc - ok
14:03:20.0162 5164 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
14:03:20.0183 5164 WPCSvc - ok
14:03:20.0218 5164 WPDBusEnum (2e57ddf2880a7e52e76f41c7e96d327b) C:\Windows\system32\wpdbusenum.dll
14:03:20.0258 5164 WPDBusEnum - ok
14:03:20.0313 5164 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
14:03:20.0393 5164 ws2ifsl - ok
14:03:20.0401 5164 WSearch - ok
14:03:20.0910 5164 wuauserv (d9ef901dca379cfe914e9fa13b73b4c4) C:\Windows\system32\wuaueng.dll
14:03:21.0015 5164 wuauserv - ok
14:03:21.0301 5164 WudfPf (7cadc74271dd6461c452c271b30bd378) C:\Windows\system32\drivers\WudfPf.sys
14:03:21.0363 5164 WudfPf - ok
14:03:21.0453 5164 WUDFRd (3b197af0fff08aa66b6b2241ca538d64) C:\Windows\system32\DRIVERS\WUDFRd.sys
14:03:21.0506 5164 WUDFRd - ok
14:03:21.0562 5164 wudfsvc (b551d6637aa0e132c18ac6e504f7b79b) C:\Windows\System32\WUDFSvc.dll
14:03:21.0625 5164 wudfsvc - ok
14:03:21.0705 5164 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
14:03:21.0776 5164 WwanSvc - ok
14:03:21.0815 5164 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk1\DR1
14:03:21.0933 5164 \Device\Harddisk1\DR1 - ok
14:03:21.0948 5164 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
14:03:22.0618 5164 \Device\Harddisk0\DR0 - ok
14:03:22.0635 5164 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk2\DR2
14:03:22.0780 5164 \Device\Harddisk2\DR2 - ok
14:03:22.0795 5164 Boot (0x1200) (4725cb4e24fff98632eafb1bc0742103) \Device\Harddisk1\DR1\Partition0
14:03:22.0797 5164 \Device\Harddisk1\DR1\Partition0 - ok
14:03:22.0811 5164 Boot (0x1200) (6c08d42d1bfb622888823ae6adacfd61) \Device\Harddisk0\DR0\Partition0
14:03:22.0830 5164 \Device\Harddisk0\DR0\Partition0 - ok
14:03:22.0855 5164 Boot (0x1200) (102b5f30d17c187fd0ddd2628cda32f6) \Device\Harddisk0\DR0\Partition1
14:03:22.0857 5164 \Device\Harddisk0\DR0\Partition1 - ok
14:03:22.0868 5164 Boot (0x1200) (f695a5c16d9ad6f81cfc82f73bf2e6a6) \Device\Harddisk0\DR0\Partition2
14:03:22.0880 5164 \Device\Harddisk0\DR0\Partition2 - ok
14:03:22.0884 5164 Boot (0x1200) (3e162a04be5039b1a9470a8aea235950) \Device\Harddisk2\DR2\Partition0
14:03:22.0888 5164 \Device\Harddisk2\DR2\Partition0 - ok
14:03:22.0888 5164 ============================================================
14:03:22.0888 5164 Scan finished
14:03:22.0888 5164 ============================================================
14:03:22.0902 4856 Detected object count: 5
14:03:22.0903 4856 Actual detected object count: 5
14:04:47.0470 4856 hpqcxs08 ( UnsignedFile.Multi.Generic ) - skipped by user
14:04:47.0470 4856 hpqcxs08 ( UnsignedFile.Multi.Generic ) - User select action: Skip
14:04:47.0470 4856 hpqddsvc ( UnsignedFile.Multi.Generic ) - skipped by user
14:04:47.0471 4856 hpqddsvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
14:04:47.0473 4856 HPSLPSVC ( UnsignedFile.Multi.Generic ) - skipped by user
14:04:47.0473 4856 HPSLPSVC ( UnsignedFile.Multi.Generic ) - User select action: Skip
14:04:47.0475 4856 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user
14:04:47.0475 4856 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip
14:04:47.0476 4856 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user
14:04:47.0476 4856 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip
14:06:02.0792 4480 ============================================================
14:06:02.0793 4480 Scan started
14:06:02.0793 4480 Mode: Manual; SigCheck; TDLFS;
14:06:02.0793 4480 ============================================================
14:06:03.0210 4480 1394ohci (1b00662092f9f9568b995902f0cc40d5) C:\Windows\system32\DRIVERS\1394ohci.sys
14:06:03.0244 4480 1394ohci - ok
14:06:03.0291 4480 acedrv11 (a3769020f7e8a70fd3e824c050f33306) C:\Windows\system32\drivers\acedrv11.sys
14:06:03.0323 4480 acedrv11 - ok
14:06:03.0365 4480 ACPI (6f11e88748cdefd2f76aa215f97ddfe5) C:\Windows\system32\DRIVERS\ACPI.sys
14:06:03.0404 4480 ACPI - ok
14:06:03.0431 4480 AcpiPmi (63b05a0420ce4bf0e4af6dcc7cada254) C:\Windows\system32\DRIVERS\acpipmi.sys
14:06:03.0471 4480 AcpiPmi - ok
14:06:03.0574 4480 AdobeARMservice (11a52cf7b265631deeb24c6149309eff) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
14:06:03.0588 4480 AdobeARMservice - ok
14:06:03.0683 4480 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
14:06:03.0709 4480 adp94xx - ok
14:06:03.0746 4480 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
14:06:03.0769 4480 adpahci - ok
14:06:03.0818 4480 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
14:06:03.0840 4480 adpu320 - ok
14:06:03.0869 4480 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
14:06:03.0945 4480 AeLookupSvc - ok
14:06:04.0017 4480 AFD (db9d6c6b2cd95a9ca414d045b627422e) C:\Windows\system32\drivers\afd.sys
14:06:04.0048 4480 AFD - ok
14:06:04.0085 4480 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\DRIVERS\agp440.sys
14:06:04.0104 4480 agp440 - ok
14:06:04.0166 4480 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
14:06:04.0187 4480 ALG - ok
14:06:04.0205 4480 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\DRIVERS\aliide.sys
14:06:04.0230 4480 aliide - ok
14:06:04.0256 4480 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\DRIVERS\amdide.sys
14:06:04.0273 4480 amdide - ok
14:06:04.0297 4480 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
14:06:04.0316 4480 AmdK8 - ok
14:06:04.0336 4480 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
14:06:04.0356 4480 AmdPPM - ok
14:06:04.0373 4480 amdsata (ec7ebab00a4d8448bab68d1e49b4beb9) C:\Windows\system32\drivers\amdsata.sys
14:06:04.0393 4480 amdsata - ok
14:06:04.0420 4480 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
14:06:04.0450 4480 amdsbs - ok
14:06:04.0468 4480 amdxata (db27766102c7bf7e95140a2aa81d042e) C:\Windows\system32\drivers\amdxata.sys
14:06:04.0485 4480 amdxata - ok
14:06:04.0792 4480 AntiVirSchedulerService (466a0d95960dad3222c896d2cea99993) D:\Programme\Internet\Avira\AntiVir Desktop\sched.exe
14:06:04.0808 4480 AntiVirSchedulerService - ok
14:06:04.0880 4480 AntiVirService (a489be6bb0aa1ff406b488b60542314b) D:\Programme\Internet\Avira\AntiVir Desktop\avguard.exe
14:06:04.0901 4480 AntiVirService - ok
14:06:04.0942 4480 AppID (42fd751b27fa0e9c69bb39f39e409594) C:\Windows\system32\drivers\appid.sys
14:06:04.0967 4480 AppID - ok
14:06:05.0002 4480 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
14:06:05.0053 4480 AppIDSvc - ok
14:06:05.0102 4480 Appinfo (d065be66822847b7f127d1f90158376e) C:\Windows\System32\appinfo.dll
14:06:05.0123 4480 Appinfo - ok
14:06:05.0282 4480 Apple Mobile Device (f401929ee0cc92bfe7f15161ca535383) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
14:06:05.0298 4480 Apple Mobile Device - ok
14:06:05.0348 4480 AppMgmt (4aba3e75a76195a3e38ed2766c962899) C:\Windows\System32\appmgmts.dll
14:06:05.0388 4480 AppMgmt - ok
14:06:05.0405 4480 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
14:06:05.0425 4480 arc - ok
14:06:05.0463 4480 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
14:06:05.0485 4480 arcsas - ok
14:06:05.0617 4480 aspnet_state (9217d874131ae6ff8f642f124f00a555) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
14:06:05.0640 4480 aspnet_state - ok
14:06:05.0660 4480 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
14:06:05.0716 4480 AsyncMac - ok
14:06:05.0749 4480 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\DRIVERS\atapi.sys
14:06:05.0779 4480 atapi - ok
14:06:05.0878 4480 AudioEndpointBuilder (07721a77180edd4d39ccb865bf63c7fd) C:\Windows\System32\Audiosrv.dll
14:06:05.0965 4480 AudioEndpointBuilder - ok
14:06:05.0974 4480 AudioSrv (07721a77180edd4d39ccb865bf63c7fd) C:\Windows\System32\Audiosrv.dll
14:06:06.0050 4480 AudioSrv - ok
14:06:06.0084 4480 avgntflt (26e38b5a58c6c55fafbc563eeddb0867) C:\Windows\system32\DRIVERS\avgntflt.sys
14:06:06.0104 4480 avgntflt - ok
14:06:06.0142 4480 avipbb (9d1f00beff84cbbf46d7f052bc7e0565) C:\Windows\system32\DRIVERS\avipbb.sys
14:06:06.0168 4480 avipbb - ok
14:06:06.0192 4480 avkmgr (248db59fc86de44d2779f4c7fb1a567d) C:\Windows\system32\DRIVERS\avkmgr.sys
14:06:06.0207 4480 avkmgr - ok
14:06:06.0265 4480 AxInstSV (b20b5fa5ca050e9926e4d1db81501b32) C:\Windows\System32\AxInstSV.dll
14:06:06.0298 4480 AxInstSV - ok
14:06:06.0386 4480 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
14:06:06.0426 4480 b06bdrv - ok
14:06:06.0488 4480 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
14:06:06.0511 4480 b57nd60a - ok
14:06:06.0576 4480 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
14:06:06.0631 4480 BDESVC - ok
14:06:06.0670 4480 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
14:06:06.0752 4480 Beep - ok
14:06:06.0907 4480 BITS (7f0c323fe3da28aa4aa1bda3f575707f) C:\Windows\System32\qmgr.dll
14:06:07.0027 4480 BITS - ok
14:06:07.0045 4480 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
14:06:07.0072 4480 blbdrive - ok
14:06:07.0213 4480 Bonjour Service (ebbcd5dfbb1de70e8f4af8fa59e401fd) C:\Program Files\Bonjour\mDNSResponder.exe
14:06:07.0237 4480 Bonjour Service - ok
14:06:07.0290 4480 bowser (19d20159708e152267e53b66677a4995) C:\Windows\system32\DRIVERS\bowser.sys
14:06:07.0325 4480 bowser - ok
14:06:07.0352 4480 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
14:06:07.0376 4480 BrFiltLo - ok
14:06:07.0395 4480 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
14:06:07.0420 4480 BrFiltUp - ok
14:06:07.0475 4480 Browser (94fbc06f294d58d02361918418f996e3) C:\Windows\System32\browser.dll
14:06:07.0548 4480 Browser - ok
14:06:07.0592 4480 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
14:06:07.0641 4480 Brserid - ok
14:06:07.0657 4480 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
14:06:07.0696 4480 BrSerWdm - ok
14:06:07.0709 4480 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
14:06:07.0736 4480 BrUsbMdm - ok
14:06:07.0748 4480 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
14:06:07.0769 4480 BrUsbSer - ok
14:06:07.0819 4480 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
14:06:07.0851 4480 BTHMODEM - ok
14:06:07.0895 4480 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
14:06:07.0992 4480 bthserv - ok
14:06:08.0073 4480 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
14:06:08.0138 4480 cdfs - ok
14:06:08.0163 4480 cdrom (83d2d75e1efb81b3450c18131443f7db) C:\Windows\system32\DRIVERS\cdrom.sys
14:06:08.0186 4480 cdrom - ok
14:06:08.0242 4480 CertPropSvc (312e2f82af11e79906898ac3e3d58a1f) C:\Windows\System32\certprop.dll
14:06:08.0316 4480 CertPropSvc - ok
14:06:08.0359 4480 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
14:06:08.0408 4480 circlass - ok
14:06:08.0494 4480 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
14:06:08.0534 4480 CLFS - ok
14:06:08.0650 4480 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
14:06:08.0687 4480 clr_optimization_v2.0.50727_32 - ok
14:06:08.0782 4480 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
14:06:08.0798 4480 clr_optimization_v2.0.50727_64 - ok
14:06:08.0977 4480 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
14:06:09.0003 4480 clr_optimization_v4.0.30319_32 - ok
14:06:09.0094 4480 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
14:06:09.0127 4480 clr_optimization_v4.0.30319_64 - ok
14:06:09.0164 4480 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
14:06:09.0192 4480 CmBatt - ok
14:06:09.0220 4480 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\DRIVERS\cmdide.sys
14:06:09.0237 4480 cmdide - ok
14:06:09.0385 4480 CNG (ca7720b73446fddec5c69519c1174c98) C:\Windows\system32\Drivers\cng.sys
14:06:09.0444 4480 CNG - ok
14:06:09.0469 4480 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
14:06:09.0504 4480 Compbatt - ok
14:06:09.0556 4480 CompositeBus (f26b3a86f6fa87ca360b879581ab4123) C:\Windows\system32\DRIVERS\CompositeBus.sys
14:06:09.0598 4480 CompositeBus - ok
14:06:09.0602 4480 COMSysApp - ok
14:06:09.0670 4480 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
14:06:09.0691 4480 crcdisk - ok
14:06:09.0751 4480 CryptSvc (f02786b66375292e58c8777082d4396d) C:\Windows\system32\cryptsvc.dll
14:06:09.0787 4480 CryptSvc - ok
14:06:09.0904 4480 CSC (4a6173c2279b498cd8f57cae504564cb) C:\Windows\system32\drivers\csc.sys
14:06:09.0942 4480 CSC - ok
14:06:10.0025 4480 CscService (873fbf927c06e5cee04dec617502f8fd) C:\Windows\System32\cscsvc.dll
14:06:10.0070 4480 CscService - ok
14:06:10.0188 4480 DcomLaunch (7266972e86890e2b30c0c322e906b027) C:\Windows\system32\rpcss.dll
14:06:10.0281 4480 DcomLaunch - ok
14:06:10.0317 4480 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
14:06:10.0405 4480 defragsvc - ok
14:06:10.0841 4480 DevoloNetworkService (141673e69cfdcf0b1531616343223ee4) D:\Programme\Internet\devolo\dlan\devolonetsvc.exe
14:06:11.0016 4480 DevoloNetworkService - ok
14:06:11.0086 4480 DfsC (9c253ce7311ca60fc11c774692a13208) C:\Windows\system32\Drivers\dfsc.sys
14:06:11.0118 4480 DfsC - ok
14:06:11.0179 4480 Dhcp (ce3b9562d997f69b330d181a8875960f) C:\Windows\system32\dhcpcore.dll
14:06:11.0221 4480 Dhcp - ok
14:06:11.0262 4480 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
14:06:11.0359 4480 discache - ok
14:06:11.0426 4480 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
14:06:11.0444 4480 Disk - ok
14:06:11.0481 4480 Dnscache (85cf424c74a1d5ec33533e1dbff9920a) C:\Windows\System32\dnsrslvr.dll
14:06:11.0516 4480 Dnscache - ok
14:06:11.0568 4480 dot3svc (14452acdb09b70964c8c21bf80a13acb) C:\Windows\System32\dot3svc.dll
14:06:11.0687 4480 dot3svc - ok
14:06:11.0731 4480 Dot4 (b42ed0320c6e41102fde0005154849bb) C:\Windows\system32\DRIVERS\Dot4.sys
14:06:11.0760 4480 Dot4 - ok
14:06:11.0805 4480 Dot4Print (85135ad27e79b689335c08167d917cde) C:\Windows\system32\DRIVERS\Dot4Prt.sys
14:06:11.0831 4480 Dot4Print - ok
14:06:11.0901 4480 dot4usb (fd05a02b0370bc3000f402e543ca5814) C:\Windows\system32\DRIVERS\dot4usb.sys
14:06:11.0937 4480 dot4usb - ok
14:06:11.0986 4480 DPS (8c2ba6bea949ee6e68385f5692bafb94) C:\Windows\system32\dps.dll
14:06:12.0073 4480 DPS - ok
14:06:12.0097 4480 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
14:06:12.0125 4480 drmkaud - ok
14:06:12.0234 4480 DrvAgent64 (1ed08a6264c5c92099d6d1dae5e8f530) C:\Windows\SysWOW64\Drivers\DrvAgent64.SYS
14:06:12.0251 4480 DrvAgent64 - ok
14:06:12.0293 4480 dtsoftbus01 (d3d64cf7b2bceaa34a270f45a3fffb36) C:\Windows\system32\DRIVERS\dtsoftbus01.sys
14:06:12.0320 4480 dtsoftbus01 - ok
14:06:12.0463 4480 DXGKrnl (1633b9abf52784a1331476397a48cbef) C:\Windows\System32\drivers\dxgkrnl.sys
14:06:12.0513 4480 DXGKrnl - ok
14:06:12.0556 4480 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
14:06:12.0633 4480 EapHost - ok
14:06:13.0102 4480 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
14:06:13.0259 4480 ebdrv - ok
14:06:13.0477 4480 EFS (156f6159457d0aa7e59b62681b56eb90) C:\Windows\System32\lsass.exe
14:06:13.0529 4480 EFS - ok
14:06:13.0702 4480 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
14:06:13.0738 4480 elxstor - ok
14:06:13.0751 4480 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\DRIVERS\errdev.sys
14:06:13.0776 4480 ErrDev - ok
14:06:13.0862 4480 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
14:06:13.0961 4480 EventSystem - ok
14:06:14.0019 4480 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
14:06:14.0102 4480 exfat - ok
14:06:14.0155 4480 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
14:06:14.0246 4480 fastfat - ok
14:06:14.0343 4480 Fax (d607b2f1bee3992aa6c2c92c0a2f0855) C:\Windows\system32\fxssvc.exe
14:06:14.0398 4480 Fax - ok
14:06:14.0430 4480 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
14:06:14.0452 4480 fdc - ok
14:06:14.0473 4480 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
14:06:14.0543 4480 fdPHost - ok
14:06:14.0564 4480 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
14:06:14.0706 4480 FDResPub - ok
14:06:14.0752 4480 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
14:06:14.0774 4480 FileInfo - ok
14:06:14.0788 4480 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
14:06:14.0858 4480 Filetrace - ok
14:06:15.0090 4480 FLEXnet Licensing Service 64 (64ab6f28047744b9b19c97459c2ab31b) C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
14:06:15.0171 4480 FLEXnet Licensing Service 64 - ok
14:06:15.0427 4480 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
14:06:15.0451 4480 flpydisk - ok
14:06:15.0506 4480 FltMgr (f7866af72abbaf84b1fa5aa195378c59) C:\Windows\system32\drivers\fltmgr.sys
14:06:15.0549 4480 FltMgr - ok
14:06:15.0717 4480 FontCache (cb5e4b9c319e3c6bb363eb7e58a4a051) C:\Windows\system32\FntCache.dll
14:06:15.0806 4480 FontCache - ok
14:06:15.0922 4480 FontCache3.0.0.0 (8d89e3131c27fdd6932189cb785e1b7a) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
14:06:15.0937 4480 FontCache3.0.0.0 - ok
14:06:16.0264 4480 FreeAgentGoNext Service (9513b437b7adb1e6065b7f0d83d11ecf) D:\Programme\Verwaltung\Seagate\Sync\FreeAgentService.exe
14:06:16.0291 4480 FreeAgentGoNext Service - ok
14:06:16.0352 4480 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
14:06:16.0373 4480 FsDepends - ok
14:06:16.0397 4480 Fs_Rec (d3e3f93d67821a2db2b3d9fac2dc2064) C:\Windows\system32\drivers\Fs_Rec.sys
14:06:16.0421 4480 Fs_Rec - ok
14:06:16.0463 4480 fvevol (ae87ba80d0ec3b57126ed2cdc15b24ed) C:\Windows\system32\DRIVERS\fvevol.sys
14:06:16.0520 4480 fvevol - ok
14:06:16.0567 4480 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
14:06:16.0596 4480 gagp30kx - ok
14:06:16.0649 4480 gdrv (5ea3b256225d79a4b07a2cac6276b23d) C:\Windows\gdrv.sys
14:06:16.0672 4480 gdrv - ok
14:06:16.0695 4480 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
14:06:16.0709 4480 GEARAspiWDM - ok
14:06:16.0788 4480 gpsvc (fe5ab4525bc2ec68b9119a6e5d40128b) C:\Windows\System32\gpsvc.dll
14:06:16.0870 4480 gpsvc - ok
14:06:16.0908 4480 hamachi (1e6438d4ea6e1174a3b3b1edc4de660b) C:\Windows\system32\DRIVERS\hamachi.sys
14:06:16.0936 4480 hamachi - ok
14:06:17.0083 4480 Hamachi2Svc - ok
14:06:17.0173 4480 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
14:06:17.0214 4480 hcw85cir - ok
14:06:17.0324 4480 HdAudAddService (6410f6f415b2a5a9037224c41da8bf12) C:\Windows\system32\drivers\HdAudio.sys
14:06:17.0378 4480 HdAudAddService - ok
14:06:17.0399 4480 HDAudBus (0a49913402747a0b67de940fb42cbdbb) C:\Windows\system32\DRIVERS\HDAudBus.sys
14:06:17.0426 4480 HDAudBus - ok
14:06:17.0465 4480 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
14:06:17.0484 4480 HidBatt - ok
14:06:17.0534 4480 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
14:06:17.0577 4480 HidBth - ok
14:06:17.0603 4480 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
14:06:17.0638 4480 HidIr - ok
14:06:17.0696 4480 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\system32\hidserv.dll
14:06:17.0799 4480 hidserv - ok
14:06:17.0823 4480 HidUsb (b3bf6b5b50006def50b66306d99fcf6f) C:\Windows\system32\DRIVERS\hidusb.sys
14:06:17.0852 4480 HidUsb - ok
14:06:17.0885 4480 hkmsvc (efa58ede58dd74388ffd04cb32681518) C:\Windows\system32\kmsvc.dll
14:06:17.0984 4480 hkmsvc - ok
14:06:18.0033 4480 HomeGroupListener (046b2673767ca626e2cfb7fdf735e9e8) C:\Windows\system32\ListSvc.dll
14:06:18.0081 4480 HomeGroupListener - ok
14:06:18.0144 4480 HomeGroupProvider (06a7422224d9865a5613710a089987df) C:\Windows\system32\provsvc.dll
14:06:18.0173 4480 HomeGroupProvider - ok
14:06:18.0276 4480 hpqcxs08 (1dae5c46d42b02a6d5862e1482efb390) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
14:06:18.0289 4480 hpqcxs08 ( UnsignedFile.Multi.Generic ) - warning
14:06:18.0289 4480 hpqcxs08 - detected UnsignedFile.Multi.Generic (1)
14:06:18.0319 4480 hpqddsvc (99e8eef42fe2f4af29b08c3355dd7685) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
14:06:18.0328 4480 hpqddsvc ( UnsignedFile.Multi.Generic ) - warning
14:06:18.0328 4480 hpqddsvc - detected UnsignedFile.Multi.Generic (1)
14:06:18.0364 4480 HpSAMD (0886d440058f203eba0e1825e4355914) C:\Windows\system32\DRIVERS\HpSAMD.sys
14:06:18.0387 4480 HpSAMD - ok
14:06:18.0505 4480 HPSLPSVC (7f57926169c1b8aba9274ea7d4b70f18) C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL
14:06:18.0549 4480 HPSLPSVC ( UnsignedFile.Multi.Generic ) - warning
14:06:18.0549 4480 HPSLPSVC - detected UnsignedFile.Multi.Generic (1)
14:06:18.0619 4480 HTTP (cee049cac4efa7f4e1e4ad014414a5d4) C:\Windows\system32\drivers\HTTP.sys
14:06:18.0747 4480 HTTP - ok
14:06:18.0771 4480 hwpolicy (f17766a19145f111856378df337a5d79) C:\Windows\system32\drivers\hwpolicy.sys
14:06:18.0802 4480 hwpolicy - ok
14:06:18.0823 4480 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\DRIVERS\i8042prt.sys
14:06:18.0860 4480 i8042prt - ok
14:06:18.0943 4480 iaStorV (b75e45c564e944a2657167d197ab29da) C:\Windows\system32\drivers\iaStorV.sys
14:06:18.0979 4480 iaStorV - ok
14:06:19.0129 4480 idsvc (2f2be70d3e02b6fa877921ab9516d43c) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
14:06:19.0198 4480 idsvc - ok
14:06:19.0228 4480 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
14:06:19.0250 4480 iirsp - ok
14:06:19.0347 4480 IKEEXT (c5b4683680df085b57bc53e5ef34861f) C:\Windows\System32\ikeext.dll
14:06:19.0475 4480 IKEEXT - ok
14:06:19.0844 4480 IntcAzAudAddService (a0c2c3d4c03c4fb896cfc53873784178) C:\Windows\system32\drivers\RTKVHD64.sys
14:06:20.0000 4480 IntcAzAudAddService - ok
14:06:20.0241 4480 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\DRIVERS\intelide.sys
14:06:20.0268 4480 intelide - ok
14:06:20.0286 4480 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
14:06:20.0312 4480 intelppm - ok
14:06:20.0351 4480 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
14:06:20.0442 4480 IPBusEnum - ok
14:06:20.0475 4480 IpFilterDriver (722dd294df62483cecaae6e094b4d695) C:\Windows\system32\DRIVERS\ipfltdrv.sys
14:06:20.0562 4480 IpFilterDriver - ok
14:06:20.0588 4480 IPMIDRV (e2b4a4494db7cb9b89b55ca268c337c5) C:\Windows\system32\DRIVERS\IPMIDrv.sys
14:06:20.0620 4480 IPMIDRV - ok
14:06:20.0644 4480 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
14:06:20.0712 4480 IPNAT - ok
14:06:20.0854 4480 iPod Service (a9ab99ee7d39725eafec82732d2b3271) C:\Program Files\iPod\bin\iPodService.exe
14:06:20.0921 4480 iPod Service - ok
14:06:20.0958 4480 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
14:06:20.0991 4480 IRENUM - ok
14:06:21.0020 4480 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\DRIVERS\isapnp.sys
14:06:21.0041 4480 isapnp - ok
14:06:21.0088 4480 iScsiPrt (fa4d2557de56d45b0a346f93564be6e1) C:\Windows\system32\DRIVERS\msiscsi.sys
14:06:21.0121 4480 iScsiPrt - ok
14:06:21.0164 4480 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
14:06:21.0192 4480 kbdclass - ok
14:06:21.0217 4480 kbdhid (6def98f8541e1b5dceb2c822a11f7323) C:\Windows\system32\DRIVERS\kbdhid.sys
14:06:21.0243 4480 kbdhid - ok
14:06:21.0284 4480 KeyIso (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
14:06:21.0324 4480 KeyIso - ok
14:06:21.0353 4480 KSecDD (4f4b5fde429416877de7143044582eb5) C:\Windows\system32\Drivers\ksecdd.sys
14:06:21.0373 4480 KSecDD - ok
14:06:21.0447 4480 KSecPkg (6f40465a44ecdc1731befafec5bdd03c) C:\Windows\system32\Drivers\ksecpkg.sys
14:06:21.0476 4480 KSecPkg - ok
14:06:21.0553 4480 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
14:06:21.0681 4480 ksthunk - ok
14:06:21.0734 4480 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
14:06:21.0844 4480 KtmRm - ok
14:06:21.0949 4480 LanmanServer (81f1d04d4d0e433099365127375fd501) C:\Windows\system32\srvsvc.dll
14:06:21.0981 4480 LanmanServer - ok
14:06:22.0020 4480 LanmanWorkstation (27026eac8818e8a6c00a1cad2f11d29a) C:\Windows\System32\wkssvc.dll
14:06:22.0096 4480 LanmanWorkstation - ok
14:06:22.0137 4480 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
14:06:22.0223 4480 lltdio - ok
14:06:22.0341 4480 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
14:06:22.0430 4480 lltdsvc - ok
14:06:22.0451 4480 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
14:06:22.0529 4480 lmhosts - ok
14:06:22.0555 4480 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
14:06:22.0580 4480 LSI_FC - ok
14:06:22.0608 4480 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
14:06:22.0640 4480 LSI_SAS - ok
14:06:22.0664 4480 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
14:06:22.0705 4480 LSI_SAS2 - ok
14:06:22.0735 4480 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
14:06:22.0789 4480 LSI_SCSI - ok
14:06:22.0826 4480 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
14:06:22.0922 4480 luafv - ok
14:06:22.0940 4480 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
14:06:22.0962 4480 megasas - ok
14:06:23.0005 4480 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
14:06:23.0030 4480 MegaSR - ok
14:06:23.0206 4480 Microsoft Office Groove Audit Service (fafe367d032ed82e9332b4c741a20216) D:\Programme\Verwaltung\Office\Office12\GrooveAuditService.exe
14:06:23.0234 4480 Microsoft Office Groove Audit Service - ok
14:06:23.0271 4480 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
14:06:23.0359 4480 MMCSS - ok
14:06:23.0399 4480 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
14:06:23.0484 4480 Modem - ok
14:06:23.0504 4480 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
14:06:23.0543 4480 monitor - ok
14:06:23.0566 4480 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
14:06:23.0586 4480 mouclass - ok
14:06:23.0602 4480 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
14:06:23.0642 4480 mouhid - ok
14:06:23.0683 4480 mountmgr (791af66c4d0e7c90a3646066386fb571) C:\Windows\system32\drivers\mountmgr.sys
14:06:23.0704 4480 mountmgr - ok
14:06:23.0747 4480 mpio (609d1d87649ecc19796f4d76d4c15cea) C:\Windows\system32\DRIVERS\mpio.sys
14:06:23.0774 4480 mpio - ok
14:06:23.0796 4480 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
14:06:23.0884 4480 mpsdrv - ok
14:06:23.0906 4480 MRxDAV (30524261bb51d96d6fcbac20c810183c) C:\Windows\system32\drivers\mrxdav.sys
14:06:23.0957 4480 MRxDAV - ok
14:06:23.0979 4480 mrxsmb (040d62a9d8ad28922632137acdd984f2) C:\Windows\system32\DRIVERS\mrxsmb.sys
14:06:24.0025 4480 mrxsmb - ok
14:06:24.0093 4480 mrxsmb10 (f0067552f8f9b33d7c59403ab808a3cb) C:\Windows\system32\DRIVERS\mrxsmb10.sys
14:06:24.0130 4480 mrxsmb10 - ok
14:06:24.0142 4480 mrxsmb20 (3c142d31de9f2f193218a53fe2632051) C:\Windows\system32\DRIVERS\mrxsmb20.sys
14:06:24.0164 4480 mrxsmb20 - ok
14:06:24.0232 4480 msahci (5c37497276e3b3a5488b23a326a754b7) C:\Windows\system32\DRIVERS\msahci.sys
14:06:24.0279 4480 msahci - ok
14:06:24.0331 4480 msdsm (8d27b597229aed79430fb9db3bcbfbd0) C:\Windows\system32\DRIVERS\msdsm.sys
14:06:24.0353 4480 msdsm - ok
14:06:24.0401 4480 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
14:06:24.0429 4480 MSDTC - ok
14:06:24.0453 4480 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
14:06:24.0556 4480 Msfs - ok
14:06:24.0578 4480 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
14:06:24.0655 4480 mshidkmdf - ok
14:06:24.0677 4480 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\DRIVERS\msisadrv.sys
14:06:24.0698 4480 msisadrv - ok
14:06:24.0733 4480 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
14:06:24.0833 4480 MSiSCSI - ok
14:06:24.0838 4480 msiserver - ok
14:06:24.0894 4480 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
14:06:24.0979 4480 MSKSSRV - ok
14:06:24.0993 4480 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
14:06:25.0080 4480 MSPCLOCK - ok
14:06:25.0095 4480 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
14:06:25.0177 4480 MSPQM - ok
14:06:25.0249 4480 MsRPC (89cb141aa8616d8c6a4610fa26c60964) C:\Windows\system32\drivers\MsRPC.sys
14:06:25.0284 4480 MsRPC - ok
14:06:25.0308 4480 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\DRIVERS\mssmbios.sys
14:06:25.0327 4480 mssmbios - ok
14:06:25.0342 4480 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
14:06:25.0395 4480 MSTEE - ok
14:06:25.0419 4480 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
14:06:25.0443 4480 MTConfig - ok
14:06:25.0458 4480 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
14:06:25.0490 4480 Mup - ok
14:06:25.0552 4480 napagent (4987e079a4530fa737a128be54b63b12) C:\Windows\system32\qagentRT.dll
14:06:25.0651 4480 napagent - ok
14:06:25.0703 4480 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
14:06:25.0760 4480 NativeWifiP - ok
14:06:25.0896 4480 NDIS (cad515dbd07d082bb317d9928ce8962c) C:\Windows\system32\drivers\ndis.sys
14:06:25.0941 4480 NDIS - ok
14:06:25.0956 4480 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
14:06:26.0064 4480 NdisCap - ok
14:06:26.0084 4480 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
14:06:26.0161 4480 NdisTapi - ok
14:06:26.0206 4480 Ndisuio (f105ba1e22bf1f2ee8f005d4305e4bec) C:\Windows\system32\DRIVERS\ndisuio.sys
14:06:26.0285 4480 Ndisuio - ok
14:06:26.0325 4480 NdisWan (557dfab9ca1fcb036ac77564c010dad3) C:\Windows\system32\DRIVERS\ndiswan.sys
14:06:26.0438 4480 NdisWan - ok
14:06:26.0463 4480 NDProxy (659b74fb74b86228d6338d643cd3e3cf) C:\Windows\system32\drivers\NDProxy.sys
14:06:26.0555 4480 NDProxy - ok
14:06:26.0585 4480 Net Driver HPZ12 (d5ac41ae382738483faffbd7e373d49a) C:\Windows\system32\HPZinw12.dll
14:06:26.0603 4480 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
14:06:26.0603 4480 Net Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
14:06:26.0616 4480 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
14:06:26.0705 4480 NetBIOS - ok
14:06:26.0755 4480 NetBT (9162b273a44ab9dce5b44362731d062a) C:\Windows\system32\DRIVERS\netbt.sys
14:06:26.0869 4480 NetBT - ok
14:06:26.0896 4480 Netlogon (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
14:06:26.0917 4480 Netlogon - ok
14:06:26.0971 4480 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
14:06:27.0066 4480 Netman - ok
14:06:27.0177 4480 NetMsmqActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
14:06:27.0193 4480 NetMsmqActivator - ok
14:06:27.0197 4480 NetPipeActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
14:06:27.0213 4480 NetPipeActivator - ok
14:06:27.0281 4480 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
14:06:27.0361 4480 netprofm - ok
14:06:27.0366 4480 NetTcpActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
14:06:27.0384 4480 NetTcpActivator - ok
14:06:27.0389 4480 NetTcpPortSharing (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
14:06:27.0407 4480 NetTcpPortSharing - ok
14:06:27.0485 4480 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
14:06:27.0513 4480 nfrd960 - ok
14:06:27.0610 4480 NlaSvc (d9a0ce66046d6efa0c61baa885cba0a8) C:\Windows\System32\nlasvc.dll
14:06:27.0741 4480 NlaSvc - ok
14:06:27.0751 4480 NLNdisMP - ok
14:06:27.0759 4480 NLNdisPT - ok
14:06:27.0796 4480 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
14:06:27.0874 4480 Npfs - ok
14:06:28.0044 4480 NPF_devolo (49697c2c761acb5c0de99cc8fe93e95b) C:\Windows\sysWOW64\drivers\npf_devolo.sys
14:06:28.0067 4480 NPF_devolo - ok
14:06:28.0114 4480 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
14:06:28.0205 4480 nsi - ok
14:06:28.0225 4480 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
14:06:28.0299 4480 nsiproxy - ok
14:06:28.0485 4480 Ntfs (378e0e0dfea67d98ae6ea53adbbd76bc) C:\Windows\system32\drivers\Ntfs.sys
14:06:28.0590 4480 Ntfs - ok
14:06:28.0834 4480 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
14:06:28.0915 4480 Null - ok
14:06:30.0755 4480 nvlddmkm (f12c5f17d48d9f5c70e4408b3ccb5443) C:\Windows\system32\DRIVERS\nvlddmkm.sys
14:06:31.0486 4480 nvlddmkm - ok
14:06:31.0699 4480 nvraid (a4d9c9a608a97f59307c2f2600edc6a4) C:\Windows\system32\drivers\nvraid.sys
14:06:31.0729 4480 nvraid - ok
14:06:31.0786 4480 nvstor (6c1d5f70e7a6a3fd1c90d840edc048b9) C:\Windows\system32\drivers\nvstor.sys
14:06:31.0831 4480 nvstor - ok
14:06:31.0960 4480 NVSvc (8a55543c379b0582f0c33db447d1c892) C:\Windows\system32\nvvsvc.exe
14:06:32.0017 4480 NVSvc - ok
14:06:32.0105 4480 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\DRIVERS\nv_agp.sys
14:06:32.0139 4480 nv_agp - ok
14:06:32.0277 4480 odserv (84de1dd996b48b05ace31ad015fa108a) C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
14:06:32.0323 4480 odserv - ok
14:06:32.0361 4480 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\DRIVERS\ohci1394.sys
14:06:32.0382 4480 ohci1394 - ok
14:06:32.0743 4480 OS Selector (fd85186c9f1abe012ddf44c233552129) D:\Programme\Verwaltung\Acronis\OSS\reinstall_svc.exe
14:06:32.0880 4480 OS Selector - ok
14:06:32.0936 4480 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
14:06:32.0972 4480 ose - ok
14:06:33.0054 4480 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
14:06:33.0112 4480 p2pimsvc - ok
14:06:33.0230 4480 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
14:06:33.0292 4480 p2psvc - ok
14:06:33.0339 4480 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
14:06:33.0373 4480 Parport - ok
14:06:33.0412 4480 partmgr (90061b1acfe8ccaa5345750ffe08d8b8) C:\Windows\system32\drivers\partmgr.sys
14:06:33.0437 4480 partmgr - ok
14:06:33.0480 4480 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
14:06:33.0514 4480 PcaSvc - ok
14:06:33.0581 4480 pci (f36f6504009f2fb0dfd1b17a116ad74b) C:\Windows\system32\DRIVERS\pci.sys
14:06:33.0606 4480 pci - ok
14:06:33.0631 4480 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\DRIVERS\pciide.sys
14:06:33.0650 4480 pciide - ok
14:06:33.0741 4480 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
14:06:33.0782 4480 pcmcia - ok
14:06:33.0836 4480 pcouffin (af7ce12c4f3dc8cb2b07685c916bbcfe) C:\Windows\system32\Drivers\pcouffin.sys
14:06:33.0879 4480 pcouffin - ok
14:06:33.0893 4480 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
14:06:33.0912 4480 pcw - ok
14:06:33.0989 4480 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
14:06:34.0096 4480 PEAUTH - ok
14:06:34.0321 4480 PeerDistSvc (b9b0a4299dd2d76a4243f75fd54dc680) C:\Windows\system32\peerdistsvc.dll
14:06:34.0427 4480 PeerDistSvc - ok
14:06:34.0537 4480 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
14:06:34.0560 4480 PerfHost - ok
14:06:34.0813 4480 pla (557e9a86f65f0de18c9b6751dfe9d3f1) C:\Windows\system32\pla.dll
14:06:34.0959 4480 pla - ok
14:06:35.0052 4480 PlugPlay (98b1721b8718164293b9701b98c52d77) C:\Windows\system32\umpnpmgr.dll
14:06:35.0110 4480 PlugPlay - ok
14:06:35.0139 4480 Pml Driver HPZ12 (37f6046cdc630442d7dc087501ff6fc6) C:\Windows\system32\HPZipm12.dll
14:06:35.0157 4480 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
14:06:35.0157 4480 Pml Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
14:06:35.0190 4480 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
14:06:35.0229 4480 PNRPAutoReg - ok
14:06:35.0272 4480 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
14:06:35.0307 4480 PNRPsvc - ok
14:06:35.0377 4480 PolicyAgent (166eb40d1f5b47e615de3d0fffe5f243) C:\Windows\System32\ipsecsvc.dll
14:06:35.0465 4480 PolicyAgent - ok
14:06:35.0509 4480 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
14:06:35.0628 4480 Power - ok
14:06:35.0706 4480 PptpMiniport (27cc19e81ba5e3403c48302127bda717) C:\Windows\system32\DRIVERS\raspptp.sys
14:06:35.0766 4480 PptpMiniport - ok
14:06:35.0784 4480 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
14:06:35.0816 4480 Processor - ok
14:06:35.0862 4480 ProfSvc (97293447431311c06703368ad0f6c4be) C:\Windows\system32\profsvc.dll
14:06:35.0922 4480 ProfSvc - ok
14:06:35.0953 4480 ProtectedStorage (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
14:06:35.0977 4480 ProtectedStorage - ok
14:06:36.0014 4480 Psched (ee992183bd8eaefd9973f352e587a299) C:\Windows\system32\DRIVERS\pacer.sys
14:06:36.0096 4480 Psched - ok
14:06:36.0225 4480 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
14:06:36.0310 4480 ql2300 - ok
14:06:36.0554 4480 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
14:06:36.0576 4480 ql40xx - ok
14:06:36.0614 4480 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
14:06:36.0665 4480 QWAVE - ok
14:06:36.0684 4480 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
14:06:36.0727 4480 QWAVEdrv - ok
14:06:36.0759 4480 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
14:06:36.0882 4480 RasAcd - ok
14:06:36.0915 4480 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
14:06:37.0044 4480 RasAgileVpn - ok
14:06:37.0083 4480 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
14:06:37.0157 4480 RasAuto - ok
14:06:37.0190 4480 Rasl2tp (87a6e852a22991580d6d39adc4790463) C:\Windows\system32\DRIVERS\rasl2tp.sys
14:06:37.0288 4480 Rasl2tp - ok
14:06:37.0331 4480 RasMan (47394ed3d16d053f5906efe5ab51cc83) C:\Windows\System32\rasmans.dll
14:06:37.0419 4480 RasMan - ok
14:06:37.0444 4480 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
14:06:37.0536 4480 RasPppoe - ok
14:06:37.0562 4480 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
14:06:37.0646 4480 RasSstp - ok
14:06:37.0718 4480 rdbss (3bac8142102c15d59a87757c1d41dce5) C:\Windows\system32\DRIVERS\rdbss.sys
14:06:37.0809 4480 rdbss - ok
14:06:37.0830 4480 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
14:06:37.0862 4480 rdpbus - ok
14:06:37.0877 4480 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
14:06:37.0941 4480 RDPCDD - ok
14:06:37.0982 4480 RDPDR (9706b84dbabfc4b4ca46c5a82b14dfa3) C:\Windows\system32\drivers\rdpdr.sys
14:06:38.0031 4480 RDPDR - ok
14:06:38.0046 4480 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
14:06:38.0105 4480 RDPENCDD - ok
14:06:38.0142 4480 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
14:06:38.0235 4480 RDPREFMP - ok
14:06:38.0282 4480 RDPWD (447de7e3dea39d422c1504f245b668b1) C:\Windows\system32\drivers\RDPWD.sys
14:06:38.0315 4480 RDPWD - ok
14:06:38.0377 4480 rdyboost (634b9a2181d98f15941236886164ec8b) C:\Windows\system32\drivers\rdyboost.sys
14:06:38.0408 4480 rdyboost - ok
14:06:38.0449 4480 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
14:06:38.0524 4480 RemoteAccess - ok
14:06:38.0583 4480 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
14:06:38.0691 4480 RemoteRegistry - ok
14:06:38.0735 4480 RMCAST (77b3b747eb2413072b8e4306018d0c9b) C:\Windows\system32\DRIVERS\RMCAST.sys
14:06:38.0832 4480 RMCAST - ok
14:06:38.0875 4480 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
14:06:38.0961 4480 RpcEptMapper - ok
14:06:38.0990 4480 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
14:06:39.0014 4480 RpcLocator - ok
14:06:39.0084 4480 RpcSs (7266972e86890e2b30c0c322e906b027) C:\Windows\system32\rpcss.dll
14:06:39.0177 4480 RpcSs - ok
14:06:39.0212 4480 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
14:06:39.0315 4480 rspndr - ok
14:06:39.0404 4480 RTL8167 (4b42bc58294e83a6a92ec8b88c14c4a3) C:\Windows\system32\DRIVERS\Rt64win7.sys
14:06:39.0460 4480 RTL8167 - ok
14:06:39.0483 4480 s3cap (88af6e02ab19df7fd07ecdf9c91e9af6) C:\Windows\system32\DRIVERS\vms3cap.sys
14:06:39.0515 4480 s3cap - ok
14:06:39.0552 4480 SamSs (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
14:06:39.0574 4480 SamSs - ok
14:06:39.0616 4480 sbp2port (e3bbb89983daf5622c1d50cf49f28227) C:\Windows\system32\DRIVERS\sbp2port.sys
14:06:39.0637 4480 sbp2port - ok
14:06:39.0679 4480 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
14:06:39.0762 4480 SCardSvr - ok
14:06:39.0811 4480 SCDEmu (46942b6980b35ffda6afa40a8328938c) C:\Windows\system32\drivers\SCDEmu.sys
14:06:39.0830 4480 SCDEmu - ok
14:06:39.0874 4480 scfilter (c94da20c7e3ba1dca269bc8460d98387) C:\Windows\system32\DRIVERS\scfilter.sys
14:06:39.0985 4480 scfilter - ok
14:06:40.0094 4480 Schedule (624d0f5ff99428bb90a5b8a4123e918e) C:\Windows\system32\schedsvc.dll
14:06:40.0173 4480 Schedule - ok
14:06:40.0235 4480 SCPolicySvc (312e2f82af11e79906898ac3e3d58a1f) C:\Windows\System32\certprop.dll
14:06:40.0312 4480 SCPolicySvc - ok
14:06:40.0357 4480 SDRSVC (765a27c3279ce11d14cb9e4f5869fca5) C:\Windows\System32\SDRSVC.dll
14:06:40.0395 4480 SDRSVC - ok
14:06:40.0471 4480 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
14:06:40.0569 4480 secdrv - ok
14:06:40.0588 4480 seclogon (463b386ebc70f98da5dff85f7e654346) C:\Windows\system32\seclogon.dll
14:06:40.0665 4480 seclogon - ok
14:06:40.0695 4480 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\System32\sens.dll
14:06:40.0792 4480 SENS - ok
14:06:40.0812 4480 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
14:06:40.0854 4480 SensrSvc - ok
14:06:40.0867 4480 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
14:06:40.0895 4480 Serenum - ok
14:06:40.0962 4480 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
14:06:41.0010 4480 Serial - ok
14:06:41.0029 4480 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
14:06:41.0053 4480 sermouse - ok
14:06:41.0089 4480 SessionEnv (c3bc61ce47ff6f4e88ab8a3b429a36af) C:\Windows\system32\sessenv.dll
14:06:41.0189 4480 SessionEnv - ok
14:06:41.0218 4480 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\DRIVERS\sffdisk.sys
14:06:41.0262 4480 sffdisk - ok
14:06:41.0289 4480 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\DRIVERS\sffp_mmc.sys
14:06:41.0311 4480 sffp_mmc - ok
14:06:41.0337 4480 sffp_sd (5588b8c6193eb1522490c122eb94dffa) C:\Windows\system32\DRIVERS\sffp_sd.sys
14:06:41.0361 4480 sffp_sd - ok
14:06:41.0399 4480 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
14:06:41.0418 4480 sfloppy - ok
14:06:41.0488 4480 ShellHWDetection (0298ac45d0efffb2db4baa7dd186e7bf) C:\Windows\System32\shsvcs.dll
14:06:41.0539 4480 ShellHWDetection - ok
14:06:41.0600 4480 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
14:06:41.0626 4480 SiSRaid2 - ok
14:06:41.0650 4480 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
14:06:41.0669 4480 SiSRaid4 - ok
14:06:41.0911 4480 SkypeUpdate (ea396139541706b4b433641d62ea53ce) D:\Programme\Internet\Skype\Updater\Updater.exe
14:06:41.0936 4480 SkypeUpdate - ok
14:06:41.0976 4480 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
14:06:42.0069 4480 Smb - ok
14:06:42.0133 4480 snapman (b2aa7562ba5858633fcdcd246e8d6730) C:\Windows\system32\DRIVERS\snapman.sys
14:06:42.0156 4480 snapman - ok
14:06:42.0193 4480 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
14:06:42.0239 4480 SNMPTRAP - ok
14:06:42.0296 4480 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
14:06:42.0313 4480 spldr - ok
14:06:42.0390 4480 Spooler (f8e1fa03cb70d54a9892ac88b91d1e7b) C:\Windows\System32\spoolsv.exe
14:06:42.0450 4480 Spooler - ok
14:06:42.0823 4480 sppsvc (913d843498553a1bc8f8dbad6358e49f) C:\Windows\system32\sppsvc.exe
14:06:43.0032 4480 sppsvc - ok
14:06:43.0166 4480 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
14:06:43.0271 4480 sppuinotify - ok
14:06:43.0372 4480 srv (2408c0366d96bcdf63e8f1c78e4a29c5) C:\Windows\system32\DRIVERS\srv.sys
14:06:43.0413 4480 srv - ok
14:06:43.0439 4480 srv2 (76548f7b818881b47d8d1ae1be9c11f8) C:\Windows\system32\DRIVERS\srv2.sys
14:06:43.0482 4480 srv2 - ok
14:06:43.0508 4480 srvnet (0af6e19d39c70844c5caa8fb0183c36e) C:\Windows\system32\DRIVERS\srvnet.sys
14:06:43.0543 4480 srvnet - ok
14:06:43.0627 4480 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
14:06:43.0720 4480 SSDPSRV - ok
14:06:43.0736 4480 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
14:06:43.0818 4480 SstpSvc - ok
14:06:43.0881 4480 Steam Client Service - ok
14:06:43.0918 4480 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
14:06:43.0935 4480 stexstor - ok
14:06:44.0024 4480 stisvc (52d0e33b681bd0f33fdc08812fee4f7d) C:\Windows\System32\wiaservc.dll
14:06:44.0099 4480 stisvc - ok
14:06:44.0142 4480 storflt (ffd7a6f15b14234b5b0e5d49e7961895) C:\Windows\system32\DRIVERS\vmstorfl.sys
14:06:44.0164 4480 storflt - ok
14:06:44.0206 4480 StorSvc (c40841817ef57d491f22eb103da587cc) C:\Windows\system32\storsvc.dll
14:06:44.0237 4480 StorSvc - ok
14:06:44.0254 4480 storvsc (8fccbefc5c440b3c23454656e551b09a) C:\Windows\system32\DRIVERS\storvsc.sys
14:06:44.0273 4480 storvsc - ok
14:06:44.0318 4480 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\DRIVERS\swenum.sys
14:06:44.0341 4480 swenum - ok
14:06:44.0462 4480 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
14:06:44.0557 4480 swprv - ok
14:06:44.0835 4480 SysMain (3c1284516a62078fb68f768de4f1a7be) C:\Windows\system32\sysmain.dll
14:06:44.0990 4480 SysMain - ok
14:06:45.0130 4480 TabletInputService (238935c3cf2854886dc7cbb2a0e2cc66) C:\Windows\System32\TabSvc.dll
14:06:45.0178 4480 TabletInputService - ok
14:06:45.0269 4480 tap0901t (b08740047145b9bce15bf75ca0f9718a) C:\Windows\system32\DRIVERS\tap0901t.sys
14:06:45.0296 4480 tap0901t - ok
14:06:45.0346 4480 TapiSrv (884264ac597b690c5707c89723bb8e7b) C:\Windows\System32\tapisrv.dll
14:06:45.0461 4480 TapiSrv - ok
14:06:45.0487 4480 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
14:06:45.0570 4480 TBS - ok
14:06:46.0014 4480 Tcpip (624c5b3aa4c99b3184bb922d9ece3ff0) C:\Windows\system32\drivers\tcpip.sys
14:06:46.0144 4480 Tcpip - ok
14:06:46.0473 4480 TCPIP6 (624c5b3aa4c99b3184bb922d9ece3ff0) C:\Windows\system32\DRIVERS\tcpip.sys
14:06:46.0582 4480 TCPIP6 - ok
14:06:46.0753 4480 tcpipreg (76d078af6f587b162d50210f761eb9ed) C:\Windows\system32\drivers\tcpipreg.sys
14:06:46.0813 4480 tcpipreg - ok
14:06:46.0860 4480 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
14:06:46.0907 4480 TDPIPE - ok
14:06:46.0953 4480 TDTCP (7518f7bcfd4b308abc9192bacaf6c970) C:\Windows\system32\drivers\tdtcp.sys
14:06:46.0971 4480 TDTCP - ok
14:06:47.0001 4480 tdx (079125c4b17b01fcaeebce0bcb290c0f) C:\Windows\system32\DRIVERS\tdx.sys
14:06:47.0098 4480 tdx - ok
14:06:47.0145 4480 TermDD (c448651339196c0e869a355171875522) C:\Windows\system32\DRIVERS\termdd.sys
14:06:47.0166 4480 TermDD - ok
14:06:47.0275 4480 TermService (0f05ec2887bfe197ad82a13287d2f404) C:\Windows\System32\termsrv.dll
14:06:47.0407 4480 TermService - ok
14:06:47.0431 4480 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
14:06:47.0464 4480 Themes - ok
14:06:47.0507 4480 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
14:06:47.0595 4480 THREADORDER - ok
14:06:47.0645 4480 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
14:06:47.0751 4480 TrkWks - ok
14:06:47.0783 4480 TrojanKillerDriver (9bf9e809fbb2d5d0403b32b15abe5f30) C:\Windows\system32\DRIVERS\gtkdrv.sys
14:06:47.0800 4480 TrojanKillerDriver - ok
14:06:47.0868 4480 TrustedInstaller (840f7fb849f5887a49ba18c13b2da920) C:\Windows\servicing\TrustedInstaller.exe
14:06:47.0897 4480 TrustedInstaller - ok
14:06:47.0933 4480 tssecsrv (61b96c26131e37b24e93327a0bd1fb95) C:\Windows\system32\DRIVERS\tssecsrv.sys
14:06:48.0007 4480 tssecsrv - ok
14:06:48.0371 4480 TuneUp.UtilitiesSvc (cdba816242f5e2dda788342f4282f132) D:\Programme\Verwaltung\TuneUp\TuneUpUtilitiesService64.exe
14:06:48.0486 4480 TuneUp.UtilitiesSvc - ok
14:06:48.0517 4480 TuneUpUtilitiesDrv (dcc94c51d27c7ec0dadeca8f64c94fcf) D:\Programme\Verwaltung\TuneUp\TuneUpUtilitiesDriver64.sys
14:06:48.0531 4480 TuneUpUtilitiesDrv - ok
14:06:48.0573 4480 tunnel (3836171a2cdf3af8ef10856db9835a70) C:\Windows\system32\DRIVERS\tunnel.sys
14:06:48.0671 4480 tunnel - ok
14:06:48.0856 4480 TunngleService (7a34128510eeb13cf8583531c8fb081c) D:\Programme\Internet\Tunngle\TnglCtrl.exe
14:06:48.0903 4480 TunngleService - ok
14:06:48.0931 4480 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
14:06:48.0955 4480 uagp35 - ok
14:06:48.0995 4480 udfs (d47baead86c65d4f4069d7ce0a4edceb) C:\Windows\system32\DRIVERS\udfs.sys
14:06:49.0086 4480 udfs - ok
14:06:49.0135 4480 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
14:06:49.0180 4480 UI0Detect - ok
14:06:49.0339 4480 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\DRIVERS\uliagpkx.sys
14:06:49.0360 4480 uliagpkx - ok
14:06:49.0405 4480 umbus (eab6c35e62b1b0db0d1b48b671d3a117) C:\Windows\system32\DRIVERS\umbus.sys
14:06:49.0460 4480 umbus - ok
14:06:49.0472 4480 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
14:06:49.0519 4480 UmPass - ok
14:06:49.0577 4480 UmRdpService (af0ac98ee5077eb844413eb54287fde3) C:\Windows\System32\umrdp.dll
14:06:49.0643 4480 UmRdpService - ok
14:06:49.0714 4480 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
14:06:49.0803 4480 upnphost - ok
14:06:49.0865 4480 USBAAPL64 (fb251567f41bc61988b26731dec19e4b) C:\Windows\system32\Drivers\usbaapl64.sys
14:06:49.0902 4480 USBAAPL64 - ok
14:06:49.0956 4480 usbccgp (7b6a127c93ee590e4d79a5f2a76fe46f) C:\Windows\system32\DRIVERS\usbccgp.sys
14:06:50.0024 4480 usbccgp - ok
14:06:50.0060 4480 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\DRIVERS\usbcir.sys
14:06:50.0083 4480 usbcir - ok
14:06:50.0150 4480 usbehci (92969ba5ac44e229c55a332864f79677) C:\Windows\system32\drivers\usbehci.sys
14:06:50.0188 4480 usbehci - ok
14:06:50.0266 4480 usbhub (e7df1cfd28ca86b35ef5add0735ceef3) C:\Windows\system32\DRIVERS\usbhub.sys
14:06:50.0305 4480 usbhub - ok
14:06:50.0336 4480 usbohci (f1bb1e55f1e7a65c5839ccc7b36d773e) C:\Windows\system32\drivers\usbohci.sys
14:06:50.0359 4480 usbohci - ok
14:06:50.0390 4480 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
14:06:50.0442 4480 usbprint - ok
14:06:50.0480 4480 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys
14:06:50.0504 4480 usbscan - ok
14:06:50.0582 4480 USBSTOR (f39983647bc1f3e6100778ddfe9dce29) C:\Windows\system32\DRIVERS\USBSTOR.SYS
14:06:50.0610 4480 USBSTOR - ok
14:06:50.0633 4480 usbuhci (bc3070350a491d84b518d7cca9abd36f) C:\Windows\system32\drivers\usbuhci.sys
14:06:50.0658 4480 usbuhci - ok
14:06:50.0691 4480 usbvideo (7cb8c573c6e4a2714402cc0a36eab4fe) C:\Windows\System32\Drivers\usbvideo.sys
14:06:50.0724 4480 usbvideo - ok
14:06:50.0784 4480 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
14:06:50.0916 4480 UxSms - ok
14:06:50.0993 4480 UxTuneUp (7984fcab128476584fbf135ad9b9097e) C:\Windows\System32\uxtuneup.dll
14:06:51.0025 4480 UxTuneUp - ok
14:06:51.0090 4480 VaultSvc (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
14:06:51.0113 4480 VaultSvc - ok
14:06:51.0138 4480 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\DRIVERS\vdrvroot.sys
14:06:51.0165 4480 vdrvroot - ok
14:06:51.0239 4480 vds (44d73e0bbc1d3c8981304ba15135c2f2) C:\Windows\System32\vds.exe
14:06:51.0324 4480 vds - ok
14:06:51.0337 4480 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
14:06:51.0366 4480 vga - ok
14:06:51.0382 4480 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
14:06:51.0454 4480 VgaSave - ok
14:06:51.0587 4480 vhdmp (c82e748660f62a242b2dfac1442f22a4) C:\Windows\system32\DRIVERS\vhdmp.sys
14:06:51.0630 4480 vhdmp - ok
14:06:51.0690 4480 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\DRIVERS\viaide.sys
14:06:51.0707 4480 viaide - ok
14:06:51.0735 4480 vmbus (1501699d7eda984abc4155a7da5738d1) C:\Windows\system32\DRIVERS\vmbus.sys
14:06:51.0759 4480 vmbus - ok
14:06:51.0776 4480 VMBusHID (ae10c35761889e65a6f7176937c5592c) C:\Windows\system32\DRIVERS\VMBusHID.sys
14:06:51.0809 4480 VMBusHID - ok
14:06:51.0850 4480 volmgr (2b1a3dae2b4e70dbba822b7a03fbd4a3) C:\Windows\system32\DRIVERS\volmgr.sys
14:06:51.0878 4480 volmgr - ok
14:06:51.0942 4480 volmgrx (99b0cbb569ca79acaed8c91461d765fb) C:\Windows\system32\drivers\volmgrx.sys
14:06:51.0975 4480 volmgrx - ok
14:06:52.0001 4480 volsnap (58f82eed8ca24b461441f9c3e4f0bf5c) C:\Windows\system32\DRIVERS\volsnap.sys
14:06:52.0027 4480 volsnap - ok
14:06:52.0081 4480 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
14:06:52.0107 4480 vsmraid - ok
14:06:52.0339 4480 VSS (787898bf9fb6d7bd87a36e2d95c899ba) C:\Windows\system32\vssvc.exe
14:06:52.0442 4480 VSS - ok
14:06:52.0652 4480 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\System32\drivers\vwifibus.sys
14:06:52.0687 4480 vwifibus - ok
14:06:52.0731 4480 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
14:06:52.0834 4480 W32Time - ok
14:06:52.0875 4480 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
14:06:52.0913 4480 WacomPen - ok
14:06:52.0971 4480 WANARP (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys
14:06:53.0096 4480 WANARP - ok
14:06:53.0101 4480 Wanarpv6 (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys
14:06:53.0200 4480 Wanarpv6 - ok
14:06:53.0445 4480 wbengine (5ab1bb85bd8b5089cc5d64200dedae68) C:\Windows\system32\wbengine.exe
14:06:53.0582 4480 wbengine - ok
14:06:53.0748 4480 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
14:06:53.0793 4480 WbioSrvc - ok
14:06:53.0870 4480 wcncsvc (dd1bae8ebfc653824d29ccf8c9054d68) C:\Windows\System32\wcncsvc.dll
14:06:53.0936 4480 wcncsvc - ok
14:06:53.0979 4480 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
14:06:54.0016 4480 WcsPlugInService - ok
14:06:54.0075 4480 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
14:06:54.0106 4480 Wd - ok
14:06:54.0169 4480 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
14:06:54.0204 4480 Wdf01000 - ok
14:06:54.0257 4480 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
14:06:54.0323 4480 WdiServiceHost - ok
14:06:54.0327 4480 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
14:06:54.0360 4480 WdiSystemHost - ok
14:06:54.0428 4480 WebClient (733006127f235be7c35354ebee7b9a7b) C:\Windows\System32\webclnt.dll
14:06:54.0490 4480 WebClient - ok
14:06:54.0552 4480 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
14:06:54.0632 4480 Wecsvc - ok
14:06:54.0669 4480 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
14:06:54.0761 4480 wercplsupport - ok
14:06:54.0784 4480 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
14:06:54.0899 4480 WerSvc - ok
14:06:54.0972 4480 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
14:06:55.0043 4480 WfpLwf - ok
14:06:55.0054 4480 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
14:06:55.0072 4480 WIMMount - ok
14:06:55.0080 4480 WinHttpAutoProxySvc - ok
14:06:55.0142 4480 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
14:06:55.0212 4480 Winmgmt - ok
14:06:55.0437 4480 WinRM (41fbb751936b387f9179e7f03a74fe29) C:\Windows\system32\WsmSvc.dll
14:06:55.0574 4480 WinRM - ok
14:06:56.0464 4480 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
14:06:56.0597 4480 Wlansvc - ok
14:06:56.0681 4480 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\DRIVERS\wmiacpi.sys
14:06:56.0708 4480 WmiAcpi - ok
14:06:56.0790 4480 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
14:06:56.0826 4480 wmiApSrv - ok
14:06:56.0873 4480 WMPNetworkSvc - ok
14:06:56.0917 4480 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
14:06:56.0970 4480 WPCSvc - ok
14:06:57.0019 4480 WPDBusEnum (2e57ddf2880a7e52e76f41c7e96d327b) C:\Windows\system32\wpdbusenum.dll
14:06:57.0080 4480 WPDBusEnum - ok
14:06:57.0119 4480 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
14:06:57.0193 4480 ws2ifsl - ok
14:06:57.0198 4480 WSearch - ok
14:06:57.0517 4480 wuauserv (d9ef901dca379cfe914e9fa13b73b4c4) C:\Windows\system32\wuaueng.dll
14:06:57.0762 4480 wuauserv - ok
14:06:57.0949 4480 WudfPf (7cadc74271dd6461c452c271b30bd378) C:\Windows\system32\drivers\WudfPf.sys
14:06:58.0010 4480 WudfPf - ok
14:06:58.0044 4480 WUDFRd (3b197af0fff08aa66b6b2241ca538d64) C:\Windows\system32\DRIVERS\WUDFRd.sys
14:06:58.0118 4480 WUDFRd - ok
14:06:58.0150 4480 wudfsvc (b551d6637aa0e132c18ac6e504f7b79b) C:\Windows\System32\WUDFSvc.dll
14:06:58.0210 4480 wudfsvc - ok
14:06:58.0260 4480 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
14:06:58.0312 4480 WwanSvc - ok
14:06:58.0328 4480 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk1\DR1
14:06:58.0408 4480 \Device\Harddisk1\DR1 - ok
14:06:58.0422 4480 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
14:06:59.0922 4480 \Device\Harddisk0\DR0 - ok
14:07:08.0367 4480 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk2\DR2
14:07:08.0508 4480 \Device\Harddisk2\DR2 - ok
14:07:08.0512 4480 Boot (0x1200) (4725cb4e24fff98632eafb1bc0742103) \Device\Harddisk1\DR1\Partition0
14:07:08.0515 4480 \Device\Harddisk1\DR1\Partition0 - ok
14:07:08.0526 4480 Boot (0x1200) (6c08d42d1bfb622888823ae6adacfd61) \Device\Harddisk0\DR0\Partition0
14:07:08.0541 4480 \Device\Harddisk0\DR0\Partition0 - ok
14:07:08.0552 4480 Boot (0x1200) (102b5f30d17c187fd0ddd2628cda32f6) \Device\Harddisk0\DR0\Partition1
14:07:08.0554 4480 \Device\Harddisk0\DR0\Partition1 - ok
14:07:08.0566 4480 Boot (0x1200) (f695a5c16d9ad6f81cfc82f73bf2e6a6) \Device\Harddisk0\DR0\Partition2
14:07:08.0575 4480 \Device\Harddisk0\DR0\Partition2 - ok
14:07:08.0581 4480 Boot (0x1200) (3e162a04be5039b1a9470a8aea235950) \Device\Harddisk2\DR2\Partition0
14:07:08.0584 4480 \Device\Harddisk2\DR2\Partition0 - ok
14:07:08.0585 4480 ============================================================
14:07:08.0585 4480 Scan finished
14:07:08.0585 4480 ============================================================
14:07:08.0596 5688 Detected object count: 5
14:07:08.0596 5688 Actual detected object count: 5
14:07:21.0830 5688 hpqcxs08 ( UnsignedFile.Multi.Generic ) - skipped by user
14:07:21.0830 5688 hpqcxs08 ( UnsignedFile.Multi.Generic ) - User select action: Skip
14:07:21.0834 5688 hpqddsvc ( UnsignedFile.Multi.Generic ) - skipped by user
14:07:21.0835 5688 hpqddsvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
14:07:21.0840 5688 HPSLPSVC ( UnsignedFile.Multi.Generic ) - skipped by user
14:07:21.0840 5688 HPSLPSVC ( UnsignedFile.Multi.Generic ) - User select action: Skip
14:07:21.0842 5688 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user
14:07:21.0843 5688 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip
14:07:21.0845 5688 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user
14:07:21.0845 5688 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip
Wenn ihr wollt, kann ich noch den Report von Avira posten. Einfach Bescheid sagen. Gruß billie_joe Hab grade gemerkt, dass ich im falschen Thread gepostet habe... wollte eigentlich zu "Plagegeister aller Art und deren Bekämpfung" Sorry! Kann das jemand verschieben? Gruß billie_joe |
|
16.07.2012, 16:56
| #3 |
| /// Malware-holic   | System von TR/ATRAPS.Gen, TR/ATRAPS.Gen2 befallen hi
__________________poste die fundmeldungen bitte, und zwar komplett mit pfadangabe
__________________ |
|
| Themen zu System von TR/ATRAPS.Gen, TR/ATRAPS.Gen2 befallen |
| .dll, adobe, antivirus, application/pdf:, autorun, avira, bho, bonjour, converter, explorer, firefox, format, google, google earth, langs, logfile, mp3, object, panda usb vaccine, plug-in, poweriso, realtek, registry, searchscopes, security, senden, server, software, system, usb, viren, windows, wrapper |
Linear-Darstellung
