| |
| |||||||
Log-Analyse und Auswertung: Smart HDD Stecke fest nach Punkt 1 in Eurer Anleitung: Vorgehen beim Verschlüsselungs-TrojanerWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
 |
28.09.2012, 11:02
| #31 |
 |  Smart HDD Stecke fest nach Punkt 1 in Eurer Anleitung: Vorgehen beim Verschlüsselungs-Trojaner Cool das hat geklappt. Hier Log: Code:
ATTFilter 11:53:21.0218 4012 TDSS rootkit removing tool 2.8.10.0 Sep 17 2012 19:23:24
11:53:21.0234 4012 ============================================================
11:53:21.0234 4012 Current date / time: 2012/09/28 11:53:21.0234
11:53:21.0234 4012 SystemInfo:
11:53:21.0234 4012
11:53:21.0234 4012 OS Version: 5.1.2600 ServicePack: 2.0
11:53:21.0234 4012 Product type: Workstation
11:53:21.0234 4012 ComputerName: IBM-67B32170FAC
11:53:21.0234 4012 UserName: Administrator
11:53:21.0234 4012 Windows directory: C:\WINDOWS
11:53:21.0234 4012 System windows directory: C:\WINDOWS
11:53:21.0234 4012 Processor architecture: Intel x86
11:53:21.0234 4012 Number of processors: 1
11:53:21.0234 4012 Page size: 0x1000
11:53:21.0234 4012 Boot type: Normal boot
11:53:21.0234 4012 ============================================================
11:53:22.0828 4012 Drive \Device\Harddisk0\DR0 - Size: 0x950A60000 (37.26 Gb), SectorSize: 0x200, Cylinders: 0x1430, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000054
11:53:22.0828 4012 ============================================================
11:53:22.0828 4012 \Device\Harddisk0\DR0:
11:53:22.0828 4012 MBR partitions:
11:53:22.0828 4012 \Device\Harddisk0\DR0\Partition1: MBR, Type 0xC, StartLBA 0x3F, BlocksNum 0x4129731
11:53:22.0828 4012 ============================================================
11:53:22.0828 4012 C: <-> \Device\Harddisk0\DR0\Partition1
11:53:22.0828 4012 ============================================================
11:53:22.0828 4012 Initialize success
11:53:22.0828 4012 ============================================================
11:54:10.0531 3900 ============================================================
11:54:10.0531 3900 Scan started
11:54:10.0531 3900 Mode: Manual; SigCheck; TDLFS;
11:54:10.0531 3900 ============================================================
11:54:10.0750 3900 ================ Scan system memory ========================
11:54:10.0765 3900 System memory - ok
11:54:10.0765 3900 ================ Scan services =============================
11:54:10.0859 3900 Abiosdsk - ok
11:54:10.0906 3900 [ 6ABB91494FE6C59089B9336452AB2EA3 ] abp480n5 C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS
11:54:11.0984 3900 abp480n5 - ok
11:54:12.0015 3900 [ 0F2D66D5F08EBE2F77BB904288DCF6F0 ] ac97intc C:\WINDOWS\system32\drivers\ac97intc.sys
11:54:12.0125 3900 ac97intc - ok
11:54:12.0171 3900 [ 94B4741D2CF9ED38140B831293D1601A ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
11:54:12.0281 3900 ACPI - ok
11:54:12.0296 3900 [ 9E1CA3160DAFB159CA14F83B1E317F75 ] ACPIEC C:\WINDOWS\system32\DRIVERS\ACPIEC.sys
11:54:12.0390 3900 ACPIEC - ok
11:54:12.0437 3900 [ 9A11864873DA202C996558B2106B0BBC ] adpu160m C:\WINDOWS\system32\DRIVERS\adpu160m.sys
11:54:12.0546 3900 adpu160m - ok
11:54:12.0578 3900 [ CDE1F62FE63631B932ACE2249FB11DA0 ] aeaudio C:\WINDOWS\system32\drivers\aeaudio.sys
11:54:12.0609 3900 aeaudio - ok
11:54:12.0656 3900 [ 841F385C6CFAF66B58FBD898722BB4F0 ] aec C:\WINDOWS\system32\drivers\aec.sys
11:54:12.0765 3900 aec - ok
11:54:12.0781 3900 [ F498FD605C08404B20A48954C722FF74 ] AegisP C:\WINDOWS\system32\DRIVERS\AegisP.sys
11:54:12.0796 3900 AegisP ( UnsignedFile.Multi.Generic ) - warning
11:54:12.0796 3900 AegisP - detected UnsignedFile.Multi.Generic (1)
11:54:12.0812 3900 [ 5AC495F4CB807B2B98AD2AD591E6D92E ] AFD C:\WINDOWS\System32\drivers\afd.sys
11:54:12.0906 3900 AFD - ok
11:54:12.0968 3900 [ 2C428FA0C3E3A01ED93C9B2A27D8D4BB ] agp440 C:\WINDOWS\system32\DRIVERS\agp440.sys
11:54:13.0062 3900 agp440 - ok
11:54:13.0078 3900 [ 67288B07D6ABA6C1267B626E67BC56FD ] agpCPQ C:\WINDOWS\system32\DRIVERS\agpCPQ.sys
11:54:13.0171 3900 agpCPQ - ok
11:54:13.0187 3900 [ C23EA9B5F46C7F7910DB3EAB648FF013 ] Aha154x C:\WINDOWS\system32\DRIVERS\aha154x.sys
11:54:13.0250 3900 Aha154x - ok
11:54:13.0265 3900 [ 19DD0FB48B0C18892F70E2E7D61A1529 ] aic78u2 C:\WINDOWS\system32\DRIVERS\aic78u2.sys
11:54:13.0375 3900 aic78u2 - ok
11:54:13.0390 3900 [ B7FE594A7468AA0132DEB03FB8E34326 ] aic78xx C:\WINDOWS\system32\DRIVERS\aic78xx.sys
11:54:13.0484 3900 aic78xx - ok
11:54:13.0546 3900 [ 1AAB6C5F8376357CB9B16C38C42C4076 ] Alerter C:\WINDOWS\system32\alrsvc.dll
11:54:13.0656 3900 Alerter - ok
11:54:13.0703 3900 [ 6596DD260FFDE1BDC994C1DF236307BB ] ALG C:\WINDOWS\System32\alg.exe
11:54:13.0781 3900 ALG - ok
11:54:13.0796 3900 [ 1140AB9938809700B46BB88E46D72A96 ] AliIde C:\WINDOWS\system32\DRIVERS\aliide.sys
11:54:13.0906 3900 AliIde - ok
11:54:13.0921 3900 [ F312B7CEF21EFF52FA23056B9D815FAD ] alim1541 C:\WINDOWS\system32\DRIVERS\alim1541.sys
11:54:14.0031 3900 alim1541 - ok
11:54:14.0046 3900 [ 675C16A3C1F8482F85EE4A97FC0DDE3D ] amdagp C:\WINDOWS\system32\DRIVERS\amdagp.sys
11:54:14.0140 3900 amdagp - ok
11:54:14.0140 3900 [ 79F5ADD8D24BD6893F2903A3E2F3FAD6 ] amsint C:\WINDOWS\system32\DRIVERS\amsint.sys
11:54:14.0203 3900 amsint - ok
11:54:14.0312 3900 [ 9015BC03F62940527EC92D45EE89E46F ] AntiVirSchedulerService C:\Programme\Avira\AntiVir Desktop\sched.exe
11:54:14.0343 3900 AntiVirSchedulerService ( UnsignedFile.Multi.Generic ) - warning
11:54:14.0343 3900 AntiVirSchedulerService - detected UnsignedFile.Multi.Generic (1)
11:54:14.0390 3900 [ B8720A787C1223492E6F319465E996CE ] AntiVirService C:\Programme\Avira\AntiVir Desktop\avguard.exe
11:54:14.0390 3900 AntiVirService ( UnsignedFile.Multi.Generic ) - warning
11:54:14.0390 3900 AntiVirService - detected UnsignedFile.Multi.Generic (1)
11:54:14.0453 3900 [ 7E94E567C1AA5ABE6174032B3DAB6C23 ] Apple Mobile Device C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
11:54:14.0484 3900 Apple Mobile Device - ok
11:54:14.0500 3900 [ BECD5328E7869807D6557BE4FE60C72F ] AppMgmt C:\WINDOWS\System32\appmgmts.dll
11:54:14.0593 3900 AppMgmt - ok
11:54:14.0609 3900 [ 62D318E9A0C8FC9B780008E724283707 ] asc C:\WINDOWS\system32\DRIVERS\asc.sys
11:54:14.0718 3900 asc - ok
11:54:14.0734 3900 [ 69EB0CC7714B32896CCBFD5EDCBEA447 ] asc3350p C:\WINDOWS\system32\DRIVERS\asc3350p.sys
11:54:14.0828 3900 asc3350p - ok
11:54:14.0843 3900 [ 5D8DE112AA0254B907861E9E9C31D597 ] asc3550 C:\WINDOWS\system32\DRIVERS\asc3550.sys
11:54:14.0984 3900 asc3550 - ok
11:54:15.0109 3900 [ E1A1206A4FB19B675E947B29CCD25FBA ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\aspnet_state.exe
11:54:15.0140 3900 aspnet_state ( UnsignedFile.Multi.Generic ) - warning
11:54:15.0140 3900 aspnet_state - detected UnsignedFile.Multi.Generic (1)
11:54:15.0156 3900 [ 02000ABF34AF4C218C35D257024807D6 ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
11:54:15.0296 3900 AsyncMac - ok
11:54:15.0328 3900 [ CDFE4411A69C224BD1D11B2DA92DAC51 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
11:54:15.0453 3900 atapi - ok
11:54:15.0468 3900 Atdisk - ok
11:54:15.0578 3900 [ EC88DA854AB7D7752EC8BE11A741BB7F ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
11:54:15.0718 3900 Atmarpc - ok
11:54:15.0765 3900 [ E98B8250398F6637B335A76BA8DFB602 ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
11:54:15.0906 3900 AudioSrv - ok
11:54:15.0937 3900 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
11:54:16.0093 3900 audstub - ok
11:54:16.0109 3900 [ 0B497C79824F8E1BF22FA6AACD3DE3A0 ] avgio C:\Programme\Avira\AntiVir Desktop\avgio.sys
11:54:16.0140 3900 avgio - ok
11:54:16.0140 3900 [ 14FE36D8F2C6A2435275338D061A0B66 ] avgntflt C:\WINDOWS\system32\DRIVERS\avgntflt.sys
11:54:16.0187 3900 avgntflt - ok
11:54:16.0234 3900 [ 6D52060B59E7D79CD2A044B6ADD1F1EF ] avipbb C:\WINDOWS\system32\DRIVERS\avipbb.sys
11:54:16.0250 3900 avipbb - ok
11:54:16.0265 3900 [ 241474D01380E9ED41D4C07F4F5FD401 ] b57w2k C:\WINDOWS\system32\DRIVERS\b57xp32.sys
11:54:16.0312 3900 b57w2k - ok
11:54:16.0343 3900 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
11:54:16.0531 3900 Beep - ok
11:54:16.0640 3900 [ 3A5E54A9AB96EF2D273B58136FB58EFE ] BITS C:\WINDOWS\system32\qmgr.dll
11:54:16.0875 3900 BITS - ok
11:54:16.0984 3900 [ 3F56903E124E820AEECE6D471583C6C1 ] Bonjour Service C:\Programme\Bonjour\mDNSResponder.exe
11:54:17.0031 3900 Bonjour Service - ok
11:54:17.0078 3900 [ D8653DCD80CF2EBB333FC4FCC43A7DEF ] Browser C:\WINDOWS\System32\browser.dll
11:54:17.0296 3900 Browser - ok
11:54:17.0343 3900 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf C:\WINDOWS\system32\DRIVERS\cbidf2k.sys
11:54:17.0453 3900 cbidf - ok
11:54:17.0453 3900 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
11:54:17.0562 3900 cbidf2k - ok
11:54:17.0687 3900 [ D0BC82FC5177A14B685D80FF4C364E6D ] ccEvtMgr C:\Programme\Gemeinsame Dateien\Symantec Shared\ccEvtMgr.exe
11:54:17.0703 3900 ccEvtMgr - ok
11:54:17.0734 3900 [ 7BFD6BEF3F808CFA8DC2358930BDA147 ] ccPwdSvc C:\Programme\Gemeinsame Dateien\Symantec Shared\ccPwdSvc.exe
11:54:17.0750 3900 ccPwdSvc - ok
11:54:17.0781 3900 [ 06B072A2C9C035E6ED8696B9B361069F ] ccSetMgr C:\Programme\Gemeinsame Dateien\Symantec Shared\ccSetMgr.exe
11:54:17.0781 3900 ccSetMgr - ok
11:54:17.0796 3900 [ F3EC03299634490E97BBCE94CD2954C7 ] cd20xrnt C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys
11:54:17.0843 3900 cd20xrnt - ok
11:54:17.0859 3900 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
11:54:17.0984 3900 Cdaudio - ok
11:54:18.0000 3900 [ CD7D5152DF32B47F4E36F710B35AAE02 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
11:54:18.0125 3900 Cdfs - ok
11:54:18.0156 3900 [ AF9C19B3100FE010496B1A27181FBF72 ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
11:54:18.0296 3900 Cdrom - ok
11:54:18.0312 3900 Changer - ok
11:54:18.0343 3900 [ 234D52C63C67A8CF4AF9BECCE43BFB4A ] CiSvc C:\WINDOWS\system32\cisvc.exe
11:54:18.0453 3900 CiSvc - ok
11:54:18.0484 3900 [ 0461868578D29DC18FB1C79933C5158A ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
11:54:18.0593 3900 ClipSrv - ok
11:54:18.0609 3900 [ 4266BE808F85826AEDF3C64C1E240203 ] CmBatt C:\WINDOWS\system32\DRIVERS\CmBatt.sys
11:54:18.0703 3900 CmBatt - ok
11:54:18.0703 3900 [ C687F81290303D90099B027A6474F99F ] CmdIde C:\WINDOWS\system32\DRIVERS\cmdide.sys
11:54:18.0812 3900 CmdIde - ok
11:54:18.0812 3900 [ DF1B1A24BF52D0EBC01ED4ECE8979F50 ] Compbatt C:\WINDOWS\system32\DRIVERS\compbatt.sys
11:54:18.0906 3900 Compbatt - ok
11:54:18.0953 3900 COMSysApp - ok
11:54:18.0968 3900 [ 3EE529119EED34CD212A215E8C40D4B6 ] Cpqarray C:\WINDOWS\system32\DRIVERS\cpqarray.sys
11:54:19.0093 3900 Cpqarray - ok
11:54:19.0140 3900 [ 1A5F9DB98DF7955B4C7CBDBF2C638238 ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
11:54:19.0265 3900 CryptSvc - ok
11:54:19.0312 3900 [ E550E7418984B65A78299D248F0A7F36 ] dac2w2k C:\WINDOWS\system32\DRIVERS\dac2w2k.sys
11:54:19.0421 3900 dac2w2k - ok
11:54:19.0453 3900 [ 683789CAA3864EB46125AE86FF677D34 ] dac960nt C:\WINDOWS\system32\DRIVERS\dac960nt.sys
11:54:19.0546 3900 dac960nt - ok
11:54:19.0609 3900 [ 9F28FF58D6D67B123272869D89D14004 ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
11:54:19.0750 3900 DcomLaunch - ok
11:54:19.0781 3900 [ 69F986B2688BA95A0D9362B0E233D5FF ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
11:54:19.0890 3900 Dhcp - ok
11:54:19.0906 3900 [ 00CA44E4534865F8A3B64F7C0984BFF0 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
11:54:20.0000 3900 Disk - ok
11:54:20.0015 3900 dmadmin - ok
11:54:20.0078 3900 [ 5789B83BA87FC84C3568CF86CACEF8CE ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
11:54:20.0218 3900 dmboot - ok
11:54:20.0234 3900 [ 084EB0A50A4F7B4705C8A57F234E5291 ] dmio C:\WINDOWS\system32\drivers\dmio.sys
11:54:20.0343 3900 dmio - ok
11:54:20.0343 3900 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
11:54:20.0437 3900 dmload - ok
11:54:20.0468 3900 [ FA2D9D1A9F6B5A88D01E1685CE2378BA ] dmserver C:\WINDOWS\System32\dmserver.dll
11:54:20.0562 3900 dmserver - ok
11:54:20.0578 3900 [ A6F881284AC1150E37D9AE47FF601267 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
11:54:20.0687 3900 DMusic - ok
11:54:20.0718 3900 [ D1F5B71BBAEEE07B78980DBD878C0BC7 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
11:54:20.0828 3900 Dnscache - ok
11:54:20.0875 3900 [ 40F3B93B4E5B0126F2F5C0A7A5E22660 ] dpti2o C:\WINDOWS\system32\DRIVERS\dpti2o.sys
11:54:20.0984 3900 dpti2o - ok
11:54:21.0000 3900 [ 1ED4DBBAE9F5D558DBBA4CC450E3EB2E ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
11:54:21.0125 3900 drmkaud - ok
11:54:21.0156 3900 [ F41619AE216B51D68DDA163805EEFAA9 ] drvmcdb C:\WINDOWS\system32\drivers\drvmcdb.sys
11:54:21.0171 3900 drvmcdb ( UnsignedFile.Multi.Generic ) - warning
11:54:21.0171 3900 drvmcdb - detected UnsignedFile.Multi.Generic (1)
11:54:21.0187 3900 [ B295700E684ED1984DB1D6BE40354421 ] drvnddm C:\WINDOWS\system32\drivers\drvnddm.sys
11:54:21.0187 3900 drvnddm ( UnsignedFile.Multi.Generic ) - warning
11:54:21.0187 3900 drvnddm - detected UnsignedFile.Multi.Generic (1)
11:54:21.0203 3900 [ A6DE5342417FEC3C0AA8EFEBB899C431 ] E100B C:\WINDOWS\system32\DRIVERS\e100b325.sys
11:54:21.0312 3900 E100B - ok
11:54:21.0359 3900 [ 2D0FC676D159525F6CD74C3302C7A61C ] EGATHDRV C:\WINDOWS\SYSTEM32\EGATHDRV.SYS
11:54:21.0359 3900 EGATHDRV ( UnsignedFile.Multi.Generic ) - warning
11:54:21.0359 3900 EGATHDRV - detected UnsignedFile.Multi.Generic (1)
11:54:21.0375 3900 [ 877A4512CC9074D6954776AF47021766 ] ERSvc C:\WINDOWS\System32\ersvc.dll
11:54:21.0484 3900 ERSvc - ok
11:54:21.0546 3900 [ EDB6B81761BD60F32F740BBC40AFB676 ] Eventlog C:\WINDOWS\system32\services.exe
11:54:21.0656 3900 Eventlog - ok
11:54:21.0687 3900 [ 4E1A8645EE77CB9454FFE53C59620A25 ] EventSystem C:\WINDOWS\system32\es.dll
11:54:21.0812 3900 EventSystem - ok
11:54:21.0906 3900 [ 80AAA1C7520C86CA0641C69851E124AF ] EvtEng C:\Programme\Intel\Wireless\Bin\EvtEng.exe
11:54:21.0921 3900 EvtEng ( UnsignedFile.Multi.Generic ) - warning
11:54:21.0921 3900 EvtEng - detected UnsignedFile.Multi.Generic (1)
11:54:21.0937 3900 [ 3117F595E9615E04F05A54FC15A03B20 ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
11:54:22.0031 3900 Fastfat - ok
11:54:22.0046 3900 [ BAC5F7F0C2B8C1B9832594851E0F9914 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
11:54:22.0171 3900 FastUserSwitchingCompatibility - ok
11:54:22.0187 3900 [ CED2E8396A8838E59D8FD529C680E02C ] Fdc C:\WINDOWS\system32\DRIVERS\fdc.sys
11:54:22.0296 3900 Fdc - ok
11:54:22.0328 3900 [ 9E9AF89F9B14AA6249065C309CE73BD8 ] Fips C:\WINDOWS\system32\drivers\Fips.sys
11:54:22.0453 3900 Fips - ok
11:54:22.0468 3900 [ 0DD1DE43115B93F4D85E889D7A86F548 ] Flpydisk C:\WINDOWS\system32\DRIVERS\flpydisk.sys
11:54:22.0593 3900 Flpydisk - ok
11:54:22.0625 3900 [ 157754F0DF355A9E0A6F54721914F9C6 ] FltMgr C:\WINDOWS\system32\DRIVERS\fltMgr.sys
11:54:22.0750 3900 FltMgr - ok
11:54:22.0750 3900 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
11:54:22.0875 3900 Fs_Rec - ok
11:54:22.0906 3900 [ 8F1955CE42E1484714B542F341647778 ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
11:54:23.0000 3900 Ftdisk - ok
11:54:23.0015 3900 [ 8182FF89C65E4D38B2DE4BB0FB18564E ] GEARAspiWDM C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
11:54:23.0031 3900 GEARAspiWDM - ok
11:54:23.0031 3900 [ C0F1D4A21DE5A415DF8170616703DEBF ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
11:54:23.0156 3900 Gpc - ok
11:54:23.0187 3900 [ BA85BCF1A2BCF927C3600574173403E0 ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
11:54:23.0312 3900 helpsvc - ok
11:54:23.0328 3900 HidServ - ok
11:54:23.0359 3900 [ B028377DEA0546A5FCFBA928A8AEFAE0 ] hpn C:\WINDOWS\system32\DRIVERS\hpn.sys
11:54:23.0453 3900 hpn - ok
11:54:23.0484 3900 [ 7B555FF6647069BD1D68B4F9556A7B16 ] HSFHWICH C:\WINDOWS\system32\DRIVERS\HSFHWICH.sys
11:54:23.0531 3900 HSFHWICH - ok
11:54:23.0609 3900 [ 43B60F94718841E13B9DD8905366BDBD ] HSF_DP C:\WINDOWS\system32\DRIVERS\HSF_DP.sys
11:54:23.0703 3900 HSF_DP - ok
11:54:23.0765 3900 [ C19B522A9AE0BBC3293397F3055E80A1 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
11:54:23.0875 3900 HTTP - ok
11:54:23.0921 3900 [ 9EC7E866BBDBF3ECC0E67F4E0A838EB2 ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
11:54:24.0031 3900 HTTPFilter - ok
11:54:24.0046 3900 [ 8F09F91B5C91363B77BCD15599570F2C ] i2omgmt C:\WINDOWS\system32\drivers\i2omgmt.sys
11:54:24.0187 3900 i2omgmt - ok
11:54:24.0234 3900 [ ED6BF9E441FDEA13292A6D30A64A24C3 ] i2omp C:\WINDOWS\system32\DRIVERS\i2omp.sys
11:54:24.0375 3900 i2omp - ok
11:54:24.0390 3900 [ 7C575018D0413440D75432A78B88C899 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
11:54:24.0531 3900 i8042prt - ok
11:54:24.0671 3900 [ 4D27AFCD58AC7DB4C005C72D7634BC3F ] ialm C:\WINDOWS\system32\DRIVERS\ialmnt5.sys
11:54:24.0750 3900 ialm - ok
11:54:24.0906 3900 [ 3D81C48470BEB3D27684C4FFEC9C4955 ] IBM Rapid Restore Ultra Service C:\Programme\IBM\IBM Rapid Restore Ultra\rrpcsb.exe
11:54:24.0968 3900 IBM Rapid Restore Ultra Service ( UnsignedFile.Multi.Generic ) - warning
11:54:24.0968 3900 IBM Rapid Restore Ultra Service - detected UnsignedFile.Multi.Generic (1)
11:54:25.0000 3900 [ 67CBDD7E1D9866F83D8921829893435A ] IBMFilter C:\WINDOWS\system32\drivers\ibmfilter.sys
11:54:25.0046 3900 IBMFilter ( UnsignedFile.Multi.Generic ) - warning
11:54:25.0046 3900 IBMFilter - detected UnsignedFile.Multi.Generic (1)
11:54:25.0062 3900 [ 6207F110F2530F187BF876012EBEC664 ] IBMPMDRV C:\WINDOWS\system32\DRIVERS\ibmpmdrv.sys
11:54:25.0109 3900 IBMPMDRV - ok
11:54:25.0171 3900 [ BE5A1CAA43DD8D9BA44C516AFF001089 ] IBMPMSVC C:\WINDOWS\system32\ibmpmsvc.exe
11:54:25.0234 3900 IBMPMSVC - ok
11:54:25.0359 3900 [ DAF66902F08796F9C694901660E5A64A ] IDriverT C:\Programme\Gemeinsame Dateien\InstallShield\Driver\1150\Intel 32\IDriverT.exe
11:54:25.0390 3900 IDriverT ( UnsignedFile.Multi.Generic ) - warning
11:54:25.0390 3900 IDriverT - detected UnsignedFile.Multi.Generic (1)
11:54:25.0421 3900 [ AD5E8A6C823F24882A6826D7DBCCF4A3 ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
11:54:25.0734 3900 Imapi - ok
11:54:25.0765 3900 [ 57D7267A9ED91ECAF4336B08C9628FCA ] ImapiService C:\WINDOWS\system32\imapi.exe
11:54:26.0015 3900 ImapiService - ok
11:54:26.0031 3900 [ 4A40E045FAEE58631FD8D91AFC620719 ] ini910u C:\WINDOWS\system32\DRIVERS\ini910u.sys
11:54:26.0140 3900 ini910u - ok
11:54:26.0156 3900 [ D63C33F65F6EBC732116403D88883B2D ] IntelIde C:\WINDOWS\system32\DRIVERS\intelide.sys
11:54:26.0250 3900 IntelIde - ok
11:54:26.0281 3900 [ C1C2CC1DA79C5EE10457EF0A3B8568C7 ] intelppm C:\WINDOWS\system32\DRIVERS\intelppm.sys
11:54:26.0390 3900 intelppm - ok
11:54:26.0406 3900 [ 4448006B6BC60E6C027932CFC38D6855 ] Ip6Fw C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
11:54:26.0500 3900 Ip6Fw - ok
11:54:26.0562 3900 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
11:54:26.0671 3900 IpFilterDriver - ok
11:54:26.0671 3900 [ E1EC7F5DA720B640CD8FB8424F1B14BB ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
11:54:26.0781 3900 IpInIp - ok
11:54:26.0812 3900 [ E2168CBC7098FFE963C6F23F472A3593 ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
11:54:26.0843 3900 IpNat - ok
11:54:26.0968 3900 [ 6E0FAEA90E71C5F1B9F3BC71B4CCA2FA ] iPod Service C:\Programme\iPod\bin\iPodService.exe
11:54:27.0000 3900 iPod Service - ok
11:54:27.0031 3900 [ 64537AA5C003A6AFEEE1DF819062D0D1 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
11:54:27.0156 3900 IPSec - ok
11:54:27.0187 3900 [ 86C204836FEEC22510D434982D4221B8 ] irda C:\WINDOWS\system32\DRIVERS\irda.sys
11:54:27.0250 3900 irda - ok
11:54:27.0265 3900 [ 50708DAA1B1CBB7D6AC1CF8F56A24410 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
11:54:27.0328 3900 IRENUM - ok
11:54:27.0390 3900 [ 5AB3BAD0AAD5EBBA5359A02BCC4F80F8 ] Irmon C:\WINDOWS\System32\irmon.dll
11:54:27.0484 3900 Irmon - ok
11:54:27.0515 3900 [ CE9B7AFDF0A3D7DD8D1487262316B959 ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
11:54:27.0656 3900 isapnp - ok
11:54:27.0687 3900 [ B128FC0A5CD83F669D5DE4B58F77C7D6 ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
11:54:27.0828 3900 Kbdclass - ok
11:54:27.0937 3900 [ D93CAD07C5683DB066B0B2D2D3790EAD ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
11:54:28.0062 3900 kmixer - ok
11:54:28.0078 3900 [ EB7FFE87FD367EA8FCA0506F74A87FBB ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
11:54:28.0203 3900 KSecDD - ok
11:54:28.0234 3900 [ 2865FA4ED4471929881C053A6E5A85F6 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
11:54:28.0296 3900 lanmanserver - ok
11:54:28.0312 3900 [ 36D74668F5448D55887FA3958488DC06 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
11:54:28.0468 3900 lanmanworkstation - ok
11:54:28.0468 3900 lbrtfdc - ok
11:54:28.0500 3900 [ 4C25FADD7FE1D5BD779B20D3D0EB8D7C ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
11:54:28.0625 3900 LmHosts - ok
11:54:28.0718 3900 [ E949D673842858D458F7E6BCD46A2A5D ] MACNDIS5 C:\PROGRA~1\GEMEIN~1\MARMIK~1\MACNDIS5.SYS
11:54:28.0734 3900 MACNDIS5 ( UnsignedFile.Multi.Generic ) - warning
11:54:28.0734 3900 MACNDIS5 - detected UnsignedFile.Multi.Generic (1)
11:54:28.0734 3900 MBAMProtector - ok
11:54:28.0812 3900 [ 0DCF16B1449811EFA47AB52CAC84093C ] MBAMScheduler C:\Programme\Malwarebytes' Anti-Malware\mbamscheduler.exe
11:54:28.0859 3900 MBAMScheduler - ok
11:54:28.0906 3900 [ 9EAABA4D601004BEA4DAA6E146E19A96 ] MBAMService C:\Programme\Malwarebytes' Anti-Malware\mbamservice.exe
11:54:28.0968 3900 MBAMService - ok
11:54:29.0015 3900 [ 3C318B9CD391371BED62126581EE9961 ] mdmxsdk C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
11:54:29.0015 3900 mdmxsdk - ok
11:54:29.0062 3900 [ E5215AB942C5AC5F7EB0E54871D7A27C ] Messenger C:\WINDOWS\System32\msgsvc.dll
11:54:29.0171 3900 Messenger - ok
11:54:29.0187 3900 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
11:54:29.0359 3900 mnmdd - ok
11:54:29.0453 3900 [ BB2470D20405B272EA47CA5E18F1C58E ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
11:54:29.0640 3900 mnmsrvc - ok
11:54:29.0718 3900 [ 91A3DA4B12F6F1D760463A7F7857F748 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
11:54:29.0890 3900 Modem - ok
11:54:29.0921 3900 [ 71E15CA47FD947552054AFB28536268F ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
11:54:30.0093 3900 Mouclass - ok
11:54:30.0109 3900 [ 65653F3B4477F3C63E68A9659F85EE2E ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
11:54:30.0281 3900 MountMgr - ok
11:54:30.0390 3900 [ 46297FA8E30A6007F14118FC2B942FBC ] MozillaMaintenance C:\Programme\Mozilla Maintenance Service\maintenanceservice.exe
11:54:30.0437 3900 MozillaMaintenance - ok
11:54:30.0468 3900 [ 3F4BB95E5A44F3BE34824E8E7CAF0737 ] mraid35x C:\WINDOWS\system32\DRIVERS\mraid35x.sys
11:54:30.0656 3900 mraid35x - ok
11:54:30.0671 3900 [ 46EDCC8F2DB2F322C24F48785CB46366 ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
11:54:30.0859 3900 MRxDAV - ok
11:54:30.0937 3900 [ 5DDC9A1B2EB5A4BF010CE8C019A18C1F ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
11:54:30.0984 3900 MRxSmb - ok
11:54:31.0046 3900 [ D059F9C7752EF461476E83180DAA5C62 ] MSDTC C:\WINDOWS\system32\msdtc.exe
11:54:31.0218 3900 MSDTC - ok
11:54:31.0234 3900 [ 561B3A4333CA2DBDBA28B5B956822519 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
11:54:31.0453 3900 Msfs - ok
11:54:31.0531 3900 MSIServer - ok
11:54:31.0531 3900 [ AE431A8DD3C1D0D0610CDBAC16057AD0 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
11:54:31.0703 3900 MSKSSRV - ok
11:54:31.0718 3900 [ 13E75FEF9DFEB08EEDED9D0246E1F448 ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
11:54:31.0890 3900 MSPCLOCK - ok
11:54:31.0890 3900 [ 1988A33FF19242576C3D0EF9CE785DA7 ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
11:54:32.0000 3900 MSPQM - ok
11:54:32.0015 3900 [ 469541F8BFD2B32659D5D463A6714BCE ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
11:54:32.0109 3900 mssmbios - ok
11:54:32.0125 3900 [ 82035E0F41C2DD05AE41D27FE6CF7DE1 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
11:54:32.0218 3900 Mup - ok
11:54:32.0281 3900 [ 5F9BA398F88FC8928EA6DBD5D144CFCA ] MZCCntrl C:\Programme\Gemeinsame Dateien\Marmiko Shared\MZCCntrl.exe
11:54:32.0296 3900 MZCCntrl ( UnsignedFile.Multi.Generic ) - warning
11:54:32.0296 3900 MZCCntrl - detected UnsignedFile.Multi.Generic (1)
11:54:32.0359 3900 [ 583CD25C03674B76353063876D506B84 ] navapsvc C:\Programme\Norton AntiVirus\navapsvc.exe
11:54:32.0375 3900 navapsvc - ok
11:54:32.0453 3900 [ 904B9A1657F52147898196239487C86A ] NAVENG C:\PROGRA~1\GEMEIN~1\SYMANT~1\VIRUSD~1\20050504.016\NAVENG.Sys
11:54:32.0468 3900 NAVENG - ok
11:54:32.0515 3900 [ 80D74B829F94645E75983B58B4C8BEE2 ] NAVEX15 C:\PROGRA~1\GEMEIN~1\SYMANT~1\VIRUSD~1\20050504.016\NavEx15.Sys
11:54:32.0546 3900 NAVEX15 - ok
11:54:32.0593 3900 [ 558635D3AF1C7546D26067D5D9B6959E ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
11:54:32.0687 3900 NDIS - ok
11:54:32.0703 3900 [ 08D43BBDACDF23F34D79E44ED35C1B4C ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
11:54:32.0812 3900 NdisTapi - ok
11:54:32.0843 3900 [ 34D6CD56409DA9A7ED573E1C90A308BF ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
11:54:32.0968 3900 Ndisuio - ok
11:54:32.0984 3900 [ 0B90E255A9490166AB368CD55A529893 ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
11:54:33.0125 3900 NdisWan - ok
11:54:33.0140 3900 [ 59FC3FB44D2669BC144FD87826BB571F ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
11:54:33.0281 3900 NDProxy - ok
11:54:33.0296 3900 [ 3A2ACA8FC1D7786902CA434998D7CEB4 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
11:54:33.0421 3900 NetBIOS - ok
11:54:33.0453 3900 [ 0C80E410CD2F47134407EE7DD19CC86B ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
11:54:33.0593 3900 NetBT - ok
11:54:33.0640 3900 [ F4EFF57254F565F39B6029150414A0D5 ] NetDDE C:\WINDOWS\system32\netdde.exe
11:54:33.0781 3900 NetDDE - ok
11:54:33.0796 3900 [ F4EFF57254F565F39B6029150414A0D5 ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
11:54:33.0906 3900 NetDDEdsdm - ok
11:54:33.0937 3900 [ 183805EB05BCA5A1E4AAAED4D2BE3690 ] Netlogon C:\WINDOWS\system32\lsass.exe
11:54:34.0031 3900 Netlogon - ok
11:54:34.0062 3900 [ CDF4DA6B518105343FE9E8AFBBF8FBF4 ] Netman C:\WINDOWS\System32\netman.dll
11:54:34.0171 3900 Netman - ok
11:54:34.0203 3900 [ B36E08F680BAE4DFC5C24D00A2DFC9E7 ] Nla C:\WINDOWS\System32\mswsock.dll
11:54:34.0296 3900 Nla - ok
11:54:34.0359 3900 [ 1880A485022FF365B5FD6F92BBFE012D ] NPFMntor C:\Programme\Norton AntiVirus\IWP\NPFMntor.exe
11:54:34.0375 3900 NPFMntor - ok
11:54:34.0375 3900 [ 4F601BCB8F64EA3AC0994F98FED03F8E ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
11:54:34.0468 3900 Npfs - ok
11:54:34.0500 3900 [ 6216798D29C3BA9D0D6F40BBBAB694A5 ] NSCIRDA C:\WINDOWS\system32\DRIVERS\nscirda.sys
11:54:34.0546 3900 NSCIRDA - ok
11:54:34.0609 3900 [ B78BE402C3F63DD55521F73876951CDD ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
11:54:34.0765 3900 Ntfs - ok
11:54:34.0765 3900 [ 183805EB05BCA5A1E4AAAED4D2BE3690 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
11:54:34.0859 3900 NtLmSsp - ok
11:54:34.0937 3900 [ 428AA946A8D9F32DBB4260C8E6E13377 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
11:54:35.0093 3900 NtmsSvc - ok
11:54:35.0125 3900 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
11:54:35.0250 3900 Null - ok
11:54:35.0406 3900 [ 2B298519EDBFCF451D43E0F1E8F1006D ] nv C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
11:54:35.0703 3900 nv - ok
11:54:35.0718 3900 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
11:54:35.0843 3900 NwlnkFlt - ok
11:54:35.0890 3900 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
11:54:36.0015 3900 NwlnkFwd - ok
11:54:36.0046 3900 [ B2F17A2EDB5450E61973A037F63A595B ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
11:54:36.0203 3900 Parport - ok
11:54:36.0250 3900 [ 3334430C29DC338092F79C38EF7B4CD0 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
11:54:36.0375 3900 PartMgr - ok
11:54:36.0406 3900 [ C2BF987829099A3EAA2CA6A0A90ECB4F ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
11:54:36.0546 3900 ParVdm - ok
11:54:36.0625 3900 [ D0084A9ADE989FE703E4F22171F4E4DC ] PCANDIS5 C:\Programme\T-DSL SpeedManager\PCANDIS5.SYS
11:54:36.0640 3900 PCANDIS5 ( UnsignedFile.Multi.Generic ) - warning
11:54:36.0640 3900 PCANDIS5 - detected UnsignedFile.Multi.Generic (1)
11:54:36.0671 3900 [ 505CBA425DF3BB230F244E1C23221058 ] PcdrNdisuio C:\WINDOWS\system32\DRIVERS\pcdrndisuio.sys
11:54:36.0671 3900 PcdrNdisuio ( UnsignedFile.Multi.Generic ) - warning
11:54:36.0671 3900 PcdrNdisuio - detected UnsignedFile.Multi.Generic (1)
11:54:36.0687 3900 [ 6FB463E5B243FBD6F3D3C83F914D94FB ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
11:54:36.0828 3900 PCI - ok
11:54:36.0843 3900 PCIDump - ok
11:54:36.0843 3900 [ 59BA86D9A61CBCF4DF8E598C331F5B82 ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
11:54:36.0968 3900 PCIIde - ok
11:54:36.0984 3900 [ E2363F4C1DAFF89ABEE5F593E13D8A05 ] Pcmcia C:\WINDOWS\system32\DRIVERS\pcmcia.sys
11:54:37.0125 3900 Pcmcia - ok
11:54:37.0125 3900 PDCOMP - ok
11:54:37.0140 3900 PDFRAME - ok
11:54:37.0140 3900 PDRELI - ok
11:54:37.0156 3900 PDRFRAME - ok
11:54:37.0156 3900 [ 6C14B9C19BA84F73D3A86DBA11133101 ] perc2 C:\WINDOWS\system32\DRIVERS\perc2.sys
11:54:37.0265 3900 perc2 - ok
11:54:37.0265 3900 [ F50F7C27F131AFE7BEBA13E14A3B9416 ] perc2hib C:\WINDOWS\system32\DRIVERS\perc2hib.sys
11:54:37.0375 3900 perc2hib - ok
11:54:37.0421 3900 [ EDB6B81761BD60F32F740BBC40AFB676 ] PlugPlay C:\WINDOWS\system32\services.exe
11:54:37.0515 3900 PlugPlay - ok
11:54:37.0531 3900 [ FA292805788528C083F416E151B60AB6 ] PMEM C:\WINDOWS\SYSTEM32\Drivers\PMEMNT.SYS
11:54:37.0546 3900 PMEM ( UnsignedFile.Multi.Generic ) - warning
11:54:37.0546 3900 PMEM - detected UnsignedFile.Multi.Generic (1)
11:54:37.0562 3900 [ 183805EB05BCA5A1E4AAAED4D2BE3690 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
11:54:37.0656 3900 PolicyAgent - ok
11:54:37.0671 3900 [ 1C5CC65AAC0783C344F16353E60B72AC ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
11:54:37.0765 3900 PptpMiniport - ok
11:54:37.0781 3900 [ 3D7F196E77F986C106E9320B81A5EBBF ] Processor C:\WINDOWS\system32\DRIVERS\processr.sys
11:54:37.0890 3900 Processor - ok
11:54:37.0890 3900 [ 183805EB05BCA5A1E4AAAED4D2BE3690 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
11:54:37.0984 3900 ProtectedStorage - ok
11:54:38.0015 3900 [ 30B10051866EDE0CA089082FB4DABDEA ] psadd C:\WINDOWS\system32\Drivers\psadd.sys
11:54:38.0031 3900 psadd ( UnsignedFile.Multi.Generic ) - warning
11:54:38.0031 3900 psadd - detected UnsignedFile.Multi.Generic (1)
11:54:38.0093 3900 PsaSrv - ok
11:54:38.0109 3900 [ 48671F327553DCF1D27F6197F622A668 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
11:54:38.0218 3900 PSched - ok
11:54:38.0218 3900 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
11:54:38.0312 3900 Ptilink - ok
11:54:38.0343 3900 [ 30CBAE0A34359F1CD19D1576245149ED ] PxHelp20 C:\WINDOWS\system32\Drivers\PxHelp20.sys
11:54:38.0359 3900 PxHelp20 ( UnsignedFile.Multi.Generic ) - warning
11:54:38.0359 3900 PxHelp20 - detected UnsignedFile.Multi.Generic (1)
11:54:38.0390 3900 [ 0A63FB54039EB5662433CABA3B26DBA7 ] ql1080 C:\WINDOWS\system32\DRIVERS\ql1080.sys
11:54:38.0484 3900 ql1080 - ok
11:54:38.0500 3900 [ 6503449E1D43A0FF0201AD5CB1B8C706 ] Ql10wnt C:\WINDOWS\system32\DRIVERS\ql10wnt.sys
11:54:38.0625 3900 Ql10wnt - ok
11:54:38.0656 3900 [ 156ED0EF20C15114CA097A34A30D8A01 ] ql12160 C:\WINDOWS\system32\DRIVERS\ql12160.sys
11:54:38.0765 3900 ql12160 - ok
11:54:38.0781 3900 [ 70F016BEBDE6D29E864C1230A07CC5E6 ] ql1240 C:\WINDOWS\system32\DRIVERS\ql1240.sys
11:54:38.0921 3900 ql1240 - ok
11:54:38.0937 3900 [ 907F0AEEA6BC451011611E732BD31FCF ] ql1280 C:\WINDOWS\system32\DRIVERS\ql1280.sys
11:54:39.0062 3900 ql1280 - ok
11:54:39.0078 3900 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
11:54:39.0187 3900 RasAcd - ok
11:54:39.0218 3900 [ E3C6E87C1F84584A773D7C3DD205DBFF ] RasAuto C:\WINDOWS\System32\rasauto.dll
11:54:39.0343 3900 RasAuto - ok
11:54:39.0359 3900 [ 0207D26DDF796A193CCD9F83047BB5FC ] Rasirda C:\WINDOWS\system32\DRIVERS\rasirda.sys
11:54:39.0421 3900 Rasirda - ok
11:54:39.0437 3900 [ 98FAEB4A4DCF812BA1C6FCA4AA3E115C ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
11:54:39.0546 3900 Rasl2tp - ok
11:54:39.0609 3900 [ A5D2D745A2AEFA327DCA6DA317B5FD70 ] RasMan C:\WINDOWS\System32\rasmans.dll
11:54:39.0718 3900 RasMan - ok
11:54:39.0718 3900 [ 7306EEED8895454CBED4669BE9F79FAA ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
11:54:39.0843 3900 RasPppoe - ok
11:54:39.0859 3900 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
11:54:39.0953 3900 Raspti - ok
11:54:39.0984 3900 [ 809CA45CAA9072B3176AD44579D7F688 ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
11:54:40.0000 3900 Rdbss - ok
11:54:40.0000 3900 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
11:54:40.0125 3900 RDPCDD - ok
11:54:40.0140 3900 [ A2CAE2C60BC37E0751EF9DDA7CEAF4AD ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys
11:54:40.0250 3900 rdpdr - ok
11:54:40.0296 3900 [ D4F5643D7714EF499AE9527FDCD50894 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
11:54:40.0406 3900 RDPWD - ok
11:54:40.0406 3900 [ AA56702E230860565CB8D43680F57F33 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
11:54:40.0515 3900 redbook - ok
11:54:40.0593 3900 [ F8489639E1D60D21F63F69A0605DD667 ] RegSrvc C:\Programme\Intel\Wireless\Bin\RegSrvc.exe
11:54:40.0625 3900 RegSrvc ( UnsignedFile.Multi.Generic ) - warning
11:54:40.0625 3900 RegSrvc - detected UnsignedFile.Multi.Generic (1)
11:54:40.0656 3900 [ EBA80CDF25E02084857957E820004934 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
11:54:40.0765 3900 RemoteAccess - ok
11:54:40.0812 3900 [ AE81CF7D7CFA79CD03E8FB99788A7E09 ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
11:54:40.0921 3900 RemoteRegistry - ok
11:54:40.0984 3900 [ DA23F9F3F1B1871120F980A6879581AC ] RpcLocator C:\WINDOWS\system32\locator.exe
11:54:41.0093 3900 RpcLocator - ok
11:54:41.0156 3900 [ 9F28FF58D6D67B123272869D89D14004 ] RpcSs C:\WINDOWS\system32\rpcss.dll
11:54:41.0265 3900 RpcSs - ok
11:54:41.0281 3900 [ 4BDD71B4B521521499DFD14735C4F398 ] RSVP C:\WINDOWS\system32\rsvp.exe
11:54:41.0421 3900 RSVP - ok
11:54:41.0468 3900 [ 3962B7C74E9E335FAA419CCBF4BD1835 ] S24EventMonitor C:\Programme\Intel\Wireless\Bin\S24EvMon.exe
11:54:41.0531 3900 S24EventMonitor ( UnsignedFile.Multi.Generic ) - warning
11:54:41.0531 3900 S24EventMonitor - detected UnsignedFile.Multi.Generic (1)
11:54:41.0562 3900 [ 85A26A3BB748DFD3170CDBF45B0DD7FD ] s24trans C:\WINDOWS\system32\DRIVERS\s24trans.sys
11:54:41.0578 3900 s24trans ( UnsignedFile.Multi.Generic ) - warning
11:54:41.0578 3900 s24trans - detected UnsignedFile.Multi.Generic (1)
11:54:41.0609 3900 [ 183805EB05BCA5A1E4AAAED4D2BE3690 ] SamSs C:\WINDOWS\system32\lsass.exe
11:54:41.0718 3900 SamSs - ok
11:54:41.0796 3900 [ C5FC1F1F28E01864A903137038ACD5C2 ] SAVRT C:\Programme\Norton AntiVirus\SAVRT.SYS
11:54:41.0843 3900 SAVRT - ok
11:54:41.0843 3900 [ 956D3173171F4CCDE5820F41DE5E14BD ] SAVRTPEL C:\Programme\Norton AntiVirus\SAVRTPEL.SYS
11:54:41.0859 3900 SAVRTPEL - ok
11:54:41.0906 3900 [ CF3235D1D5BC8F1E7BEF28FC0BDBCDC9 ] SAVScan C:\Programme\Norton AntiVirus\SAVScan.exe
11:54:41.0937 3900 SAVScan - ok
11:54:42.0015 3900 [ D3C1EC3E4637AD83BD356DE3B26FAF24 ] SBService C:\PROGRA~1\GEMEIN~1\SYMANT~1\SCRIPT~1\SBServ.exe
11:54:42.0046 3900 SBService - ok
11:54:42.0093 3900 [ B4CF7B42DE6CFA6FDE7D6AF4DAA55F57 ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
11:54:42.0265 3900 SCardSvr - ok
11:54:42.0312 3900 [ D5E73842F38E24457C63FEF8CEFFBE19 ] Schedule C:\WINDOWS\system32\schedsvc.dll
11:54:42.0453 3900 Schedule - ok
11:54:42.0468 3900 [ D26E26EA516450AF9D072635C60387F4 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
11:54:42.0562 3900 Secdrv - ok
11:54:42.0578 3900 [ FED544B43903FB801B106F062110358A ] seclogon C:\WINDOWS\System32\seclogon.dll
11:54:42.0718 3900 seclogon - ok
11:54:42.0734 3900 [ AB74D986C1DD0D0C95B6AD37EC1E9F4F ] SENS C:\WINDOWS\system32\sens.dll
11:54:42.0843 3900 SENS - ok
11:54:42.0875 3900 [ A2D868AEEFF612E70E213C451A70CAFB ] serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
11:54:42.0984 3900 serenum - ok
11:54:43.0000 3900 [ CD5B9995AFCDB466C9EFC048D167E3BE ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
11:54:43.0093 3900 Serial - ok
11:54:43.0109 3900 [ 0D13B6DF6E9E101013A7AFB0CE629FE0 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
11:54:43.0218 3900 Sfloppy - ok
11:54:43.0265 3900 [ 9245420422E409A25C1410ACB4244060 ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
11:54:43.0375 3900 SharedAccess - ok
11:54:43.0406 3900 [ BAC5F7F0C2B8C1B9832594851E0F9914 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
11:54:43.0515 3900 ShellHWDetection - ok
11:54:43.0531 3900 [ 482DDB9F0F6D88F0503910E1B9728042 ] ShockMgr C:\WINDOWS\system32\drivers\ShockMgr.sys
11:54:43.0562 3900 ShockMgr ( UnsignedFile.Multi.Generic ) - warning
11:54:43.0562 3900 ShockMgr - detected UnsignedFile.Multi.Generic (1)
11:54:43.0578 3900 [ E467B7D35E5DB9BD12E138CD5C7F4368 ] Shockprf C:\WINDOWS\system32\drivers\Shockprf.sys
11:54:43.0593 3900 Shockprf ( UnsignedFile.Multi.Generic ) - warning
11:54:43.0593 3900 Shockprf - detected UnsignedFile.Multi.Generic (1)
11:54:43.0609 3900 Simbad - ok
11:54:43.0640 3900 [ 732D859B286DA692119F286B21A2A114 ] sisagp C:\WINDOWS\system32\DRIVERS\sisagp.sys
11:54:43.0750 3900 sisagp - ok
11:54:43.0750 3900 [ 26341D0DD225D19FD50E0EE3C3C77502 ] Smapint C:\WINDOWS\system32\drivers\Smapint.sys
11:54:43.0781 3900 Smapint ( UnsignedFile.Multi.Generic ) - warning
11:54:43.0781 3900 Smapint - detected UnsignedFile.Multi.Generic (1)
11:54:43.0812 3900 [ B09F23BF6E451B7A492B4A3D5EACFB24 ] smwdm C:\WINDOWS\system32\drivers\smwdm.sys
11:54:43.0828 3900 smwdm - ok
11:54:43.0875 3900 [ 4424E504DC24284194BEAA04F045B9C3 ] SNDSrvc C:\Programme\Gemeinsame Dateien\Symantec Shared\SNDSrvc.exe
11:54:43.0953 3900 SNDSrvc - ok
11:54:43.0968 3900 [ 3978F082274F723AD5A0A8058C2417DD ] SoundMAX Agent Service (default) C:\Programme\Analog Devices\SoundMAX\SMAgent.exe
11:54:43.0984 3900 SoundMAX Agent Service (default) ( UnsignedFile.Multi.Generic ) - warning
11:54:43.0984 3900 SoundMAX Agent Service (default) - detected UnsignedFile.Multi.Generic (1)
11:54:44.0015 3900 [ 83C0F71F86D3BDAF915685F3D568B20E ] Sparrow C:\WINDOWS\system32\DRIVERS\sparrow.sys
11:54:44.0062 3900 Sparrow - ok
11:54:44.0109 3900 [ 924E82D6DEC26F82036E69B8D3F04216 ] SPBBCDrv C:\Programme\Gemeinsame Dateien\Symantec Shared\SPBBC\SPBBCDrv.sys
11:54:44.0156 3900 SPBBCDrv - ok
11:54:44.0187 3900 [ 08FA56B7C13B4CBF0E5D351AECAD92B1 ] SPBBCSvc C:\Programme\Gemeinsame Dateien\Symantec Shared\SPBBC\SPBBCSvc.exe
11:54:44.0218 3900 SPBBCSvc - ok
11:54:44.0265 3900 [ 8E186B8F23295D1E42C573B82B80D548 ] splitter C:\WINDOWS\system32\drivers\splitter.sys
11:54:44.0390 3900 splitter - ok
11:54:44.0437 3900 [ 54E7113A4BD696E430919BCAF5C65E06 ] Spooler C:\WINDOWS\system32\spoolsv.exe
11:54:44.0562 3900 Spooler - ok
11:54:44.0562 3900 [ E4200CB2F418D8FC4ACDD7E38C419D6A ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
11:54:44.0656 3900 sr - ok
11:54:44.0703 3900 [ 015F302C4CF961F20C3F98F3A7CA7917 ] srservice C:\WINDOWS\system32\srsvc.dll
11:54:44.0796 3900 srservice - ok
11:54:44.0828 3900 [ 20B7E396720353E4117D64D9DCB926CA ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
11:54:44.0968 3900 Srv - ok
11:54:44.0984 3900 [ D7968049BE0ADBB6A57CEE3960320911 ] sscdbhk5 C:\WINDOWS\system32\drivers\sscdbhk5.sys
11:54:45.0000 3900 sscdbhk5 ( UnsignedFile.Multi.Generic ) - warning
11:54:45.0000 3900 sscdbhk5 - detected UnsignedFile.Multi.Generic (1)
11:54:45.0046 3900 [ 6FA03B462B2FFFE2627171B7FE73EE29 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
11:54:45.0125 3900 SSDPSRV - ok
11:54:45.0156 3900 [ 5EC550B8952882EE856B862CF648522D ] ssmdrv C:\WINDOWS\system32\DRIVERS\ssmdrv.sys
11:54:45.0171 3900 ssmdrv - ok
11:54:45.0171 3900 [ C3FFD65ABFB6441E7606CF74F1155273 ] ssrtln C:\WINDOWS\system32\drivers\ssrtln.sys
11:54:45.0187 3900 ssrtln ( UnsignedFile.Multi.Generic ) - warning
11:54:45.0187 3900 ssrtln - detected UnsignedFile.Multi.Generic (1)
11:54:45.0234 3900 [ 7E751068ADA60FC77638622E86A7CD9E ] stisvc C:\WINDOWS\system32\wiaservc.dll
11:54:45.0421 3900 stisvc - ok
11:54:45.0453 3900 [ 03C1BAE4766E2450219D20B993D6E046 ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
11:54:45.0609 3900 swenum - ok
11:54:45.0625 3900 [ 94ABC808FC4B6D7D2BBF42B85E25BB4D ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
11:54:45.0765 3900 swmidi - ok
11:54:45.0812 3900 SwPrv - ok
11:54:45.0828 3900 [ 1FF3217614018630D0A6758630FC698C ] symc810 C:\WINDOWS\system32\DRIVERS\symc810.sys
11:54:45.0921 3900 symc810 - ok
11:54:45.0953 3900 [ 070E001D95CF725186EF8B20335F933C ] symc8xx C:\WINDOWS\system32\DRIVERS\symc8xx.sys
11:54:46.0062 3900 symc8xx - ok
11:54:46.0093 3900 [ 9F69E39B58377BE1D085A66F3580E58E ] SymEvent C:\Programme\Symantec\SYMEVENT.SYS
11:54:46.0109 3900 SymEvent - ok
11:54:46.0140 3900 [ 281F3398B1FD6D9A6BC7C1AED19FCE3E ] SYMREDRV C:\WINDOWS\System32\Drivers\SYMREDRV.SYS
11:54:46.0156 3900 SYMREDRV - ok
11:54:46.0203 3900 [ 2D7B6C9DA22F54B38843E5A9F99775FC ] SYMTDI C:\WINDOWS\System32\Drivers\SYMTDI.SYS
11:54:46.0218 3900 SYMTDI - ok
11:54:46.0234 3900 [ 80AC1C4ABBE2DF3B738BF15517A51F2C ] sym_hi C:\WINDOWS\system32\DRIVERS\sym_hi.sys
11:54:46.0343 3900 sym_hi - ok
11:54:46.0343 3900 [ BF4FAB949A382A8E105F46EBB4937058 ] sym_u3 C:\WINDOWS\system32\DRIVERS\sym_u3.sys
11:54:46.0437 3900 sym_u3 - ok
11:54:46.0468 3900 [ 68775382C3B842E9CCBA64B7E13083E2 ] SynTP C:\WINDOWS\system32\DRIVERS\SynTP.sys
11:54:46.0546 3900 SynTP - ok
11:54:46.0562 3900 [ 650AD082D46BAC0E64C9C0E0928492FD ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
11:54:46.0671 3900 sysaudio - ok
11:54:46.0703 3900 [ 6D0C43DF9D3A7C5A9B4F94772CBD5DDC ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
11:54:46.0828 3900 SysmonLog - ok
11:54:46.0890 3900 [ 4584E2A5FE662AB3E7C32936E1449043 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
11:54:46.0984 3900 TapiSrv - ok
11:54:47.0031 3900 [ 4092C56967175F009DC8458DC434358E ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
11:54:47.0109 3900 Tcpip - ok
11:54:47.0140 3900 [ 38D437CF2D98965F239B0ABCD66DCB0F ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
11:54:47.0265 3900 TDPIPE - ok
11:54:47.0296 3900 [ E9512AC82FFF83808549267078B38FE5 ] TDSMAPI C:\WINDOWS\system32\drivers\TDSMAPI.SYS
11:54:47.0328 3900 TDSMAPI ( UnsignedFile.Multi.Generic ) - warning
11:54:47.0328 3900 TDSMAPI - detected UnsignedFile.Multi.Generic (1)
11:54:47.0343 3900 [ ED0580AF02502D00AD8C4C066B156BE9 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
11:54:47.0453 3900 TDTCP - ok
11:54:47.0484 3900 [ A540A99C281D933F3D69D55E48727F47 ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
11:54:47.0593 3900 TermDD - ok
11:54:47.0640 3900 [ 1850BC10DE5DCCCEDE063FC2D0F2CEDA ] TermService C:\WINDOWS\System32\termsrv.dll
11:54:47.0765 3900 TermService - ok
11:54:47.0828 3900 [ 1797F3375B4BF20E81D69AC8B11445B5 ] tfsnboio C:\WINDOWS\system32\dla\tfsnboio.sys
11:54:47.0875 3900 tfsnboio ( UnsignedFile.Multi.Generic ) - warning
11:54:47.0875 3900 tfsnboio - detected UnsignedFile.Multi.Generic (1)
11:54:47.0890 3900 [ 019BA601CB71A71143AED94F2DB26250 ] tfsncofs C:\WINDOWS\system32\dla\tfsncofs.sys
11:54:47.0906 3900 tfsncofs ( UnsignedFile.Multi.Generic ) - warning
11:54:47.0906 3900 tfsncofs - detected UnsignedFile.Multi.Generic (1)
11:54:47.0921 3900 [ 87269D7FA6DF7EF84B83BF5B0D2E031C ] tfsndrct C:\WINDOWS\system32\dla\tfsndrct.sys
11:54:47.0937 3900 tfsndrct ( UnsignedFile.Multi.Generic ) - warning
11:54:47.0937 3900 tfsndrct - detected UnsignedFile.Multi.Generic (1)
11:54:47.0953 3900 [ B4FB34F46971E56CCD8B8AC6936ADD58 ] tfsndres C:\WINDOWS\system32\dla\tfsndres.sys
11:54:47.0953 3900 tfsndres ( UnsignedFile.Multi.Generic ) - warning
11:54:47.0953 3900 tfsndres - detected UnsignedFile.Multi.Generic (1)
11:54:47.0984 3900 [ 2A144EC7557EFB9758D1C121688EBAF5 ] tfsnifs C:\WINDOWS\system32\dla\tfsnifs.sys
11:54:48.0000 3900 tfsnifs ( UnsignedFile.Multi.Generic ) - warning
11:54:48.0000 3900 tfsnifs - detected UnsignedFile.Multi.Generic (1)
11:54:48.0015 3900 [ 1AA2C61A846EFBC200703E8DC250297F ] tfsnopio C:\WINDOWS\system32\dla\tfsnopio.sys
11:54:48.0031 3900 tfsnopio ( UnsignedFile.Multi.Generic ) - warning
11:54:48.0031 3900 tfsnopio - detected UnsignedFile.Multi.Generic (1)
11:54:48.0046 3900 [ B3B0B6616CAE23AB1A4A5898CA6D5552 ] tfsnpool C:\WINDOWS\system32\dla\tfsnpool.sys
11:54:48.0062 3900 tfsnpool ( UnsignedFile.Multi.Generic ) - warning
11:54:48.0062 3900 tfsnpool - detected UnsignedFile.Multi.Generic (1)
11:54:48.0093 3900 [ 1614A1E396F296138D3FB1728F385E0B ] tfsnudf C:\WINDOWS\system32\dla\tfsnudf.sys
11:54:48.0109 3900 tfsnudf ( UnsignedFile.Multi.Generic ) - warning
11:54:48.0109 3900 tfsnudf - detected UnsignedFile.Multi.Generic (1)
11:54:48.0140 3900 [ E5D5B8DDE8C221FEDC88680631294155 ] tfsnudfa C:\WINDOWS\system32\dla\tfsnudfa.sys
11:54:48.0156 3900 tfsnudfa ( UnsignedFile.Multi.Generic ) - warning
11:54:48.0156 3900 tfsnudfa - detected UnsignedFile.Multi.Generic (1)
11:54:48.0187 3900 [ BAC5F7F0C2B8C1B9832594851E0F9914 ] Themes C:\WINDOWS\System32\shsvcs.dll
11:54:48.0296 3900 Themes - ok
11:54:48.0343 3900 [ 58708746B8267033E5CF2B29659E7F74 ] TlntSvr C:\WINDOWS\system32\tlntsvr.exe
11:54:48.0421 3900 TlntSvr - ok
11:54:48.0531 3900 [ 52AB2F2B0D2FD7CC2FDB489C449FEB8E ] TNPacket C:\Programme\T-DSL SpeedManager\TNPACKET.SYS
11:54:48.0546 3900 TNPacket ( UnsignedFile.Multi.Generic ) - warning
11:54:48.0546 3900 TNPacket - detected UnsignedFile.Multi.Generic (1)
11:54:48.0562 3900 [ D213A9247DC347F305A2D4CC9B951487 ] TosIde C:\WINDOWS\system32\DRIVERS\toside.sys
11:54:48.0687 3900 TosIde - ok
11:54:48.0687 3900 [ AC7543F9ADB2127F70DE192089DA9A1F ] TPDiskPM C:\WINDOWS\system32\drivers\TPDiskPM.sys
11:54:48.0703 3900 TPDiskPM ( UnsignedFile.Multi.Generic ) - warning
11:54:48.0703 3900 TPDiskPM - detected UnsignedFile.Multi.Generic (1)
11:54:48.0750 3900 [ F67908366F932BCF88096AF6B2CE3186 ] TPHDEXLGSVC C:\WINDOWS\system32\TPHDEXLG.EXE
11:54:48.0781 3900 TPHDEXLGSVC ( UnsignedFile.Multi.Generic ) - warning
11:54:48.0781 3900 TPHDEXLGSVC - detected UnsignedFile.Multi.Generic (1)
11:54:48.0812 3900 [ 63421F480E7CD375329ACE8588FED1AC ] TPHKDRV C:\WINDOWS\system32\drivers\TPHKDRV.sys
11:54:48.0828 3900 TPHKDRV ( UnsignedFile.Multi.Generic ) - warning
11:54:48.0828 3900 TPHKDRV - detected UnsignedFile.Multi.Generic (1)
11:54:48.0859 3900 [ F53589467C0A112BEC1835C72457A8A1 ] TPInput C:\WINDOWS\system32\DRIVERS\TPInput.sys
11:54:48.0875 3900 TPInput ( UnsignedFile.Multi.Generic ) - warning
11:54:48.0875 3900 TPInput - detected UnsignedFile.Multi.Generic (1)
11:54:48.0906 3900 [ DFB268FF0A6DCB9280015FF527F892FF ] TpKmpSVC C:\WINDOWS\system32\TpKmpSVC.exe
11:54:49.0062 3900 TpKmpSVC ( UnsignedFile.Multi.Generic ) - warning
11:54:49.0062 3900 TpKmpSVC - detected UnsignedFile.Multi.Generic (1)
11:54:49.0093 3900 [ 8DCAF6B264F8A701DE916ACE452C895D ] TPM11 C:\WINDOWS\system32\DRIVERS\nsctpm11.sys
11:54:49.0125 3900 TPM11 - ok
11:54:49.0156 3900 [ A34E894201D66E380E1FA96FE11B587E ] TrkWks C:\WINDOWS\system32\trkwks.dll
11:54:49.0343 3900 TrkWks - ok
11:54:49.0359 3900 [ F2ABA3066D7921D7FCDBD66DEA88BE11 ] TSMAPIP C:\WINDOWS\system32\drivers\TSMAPIP.SYS
11:54:49.0375 3900 TSMAPIP ( UnsignedFile.Multi.Generic ) - warning
11:54:49.0375 3900 TSMAPIP - detected UnsignedFile.Multi.Generic (1)
11:54:49.0437 3900 [ BF2236A5A39B21F694CCD7B5A6639E71 ] TSMService C:\Programme\T-DSL SpeedManager\tsmsvc.exe
11:54:49.0437 3900 TSMService ( UnsignedFile.Multi.Generic ) - warning
11:54:49.0437 3900 TSMService - detected UnsignedFile.Multi.Generic (1)
11:54:49.0500 3900 [ 12F70256F140CD7D52C58C7048FDE657 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
11:54:49.0671 3900 Udfs - ok
11:54:49.0703 3900 [ 1B698A51CD528D8DA4FFAED66DFC51B9 ] ultra C:\WINDOWS\system32\DRIVERS\ultra.sys
11:54:49.0796 3900 ultra - ok
11:54:49.0828 3900 [ C81B8635DEE0D3EF5F64B3DD643023A5 ] UMWdf C:\WINDOWS\system32\wdfmgr.exe
11:54:49.0875 3900 UMWdf - ok
11:54:49.0906 3900 [ AFF2E5045961BBC0A602BB6F95EB1345 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
11:54:50.0078 3900 Update - ok
11:54:50.0140 3900 [ 09D4A2D7C5A8ABEC227D118765FAADDF ] upnphost C:\WINDOWS\System32\upnphost.dll
11:54:50.0234 3900 upnphost - ok
11:54:50.0265 3900 [ A99F867E76CFDAA28EE305B93F70E84F ] UPS C:\WINDOWS\System32\ups.exe
11:54:50.0421 3900 UPS - ok
11:54:50.0468 3900 [ 1DF89C499BF45D878B87EBD4421D462D ] USBAAPL C:\WINDOWS\system32\Drivers\usbaapl.sys
11:54:50.0500 3900 USBAAPL - ok
11:54:50.0531 3900 [ BFFD9F120CC63BCBAA3D840F3EEF9F79 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
11:54:50.0640 3900 usbccgp - ok
11:54:50.0671 3900 [ 15E993BA2F6946B2BFBBFCD30398621E ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
11:54:50.0765 3900 usbehci - ok
11:54:50.0781 3900 [ D31E07BF822C7F2BD32714E9DDCA8BE2 ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
11:54:50.0796 3900 usbhub - ok
11:54:50.0796 3900 [ 6CD7B22193718F1D17A47A1CD6D37E75 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
11:54:50.0921 3900 USBSTOR - ok
11:54:50.0937 3900 [ F8FD1400092E23C8F2F31406EF06167B ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
11:54:51.0031 3900 usbuhci - ok
11:54:51.0031 3900 [ 8A60EDD72B4EA5AEA8202DAF0E427925 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
11:54:51.0140 3900 VgaSave - ok
11:54:51.0156 3900 [ D92E7C8A30CFD14D8E15B5F7F032151B ] viaagp C:\WINDOWS\system32\DRIVERS\viaagp.sys
11:54:51.0250 3900 viaagp - ok
11:54:51.0265 3900 [ 59CB1338AD3654417BEA49636457F65D ] ViaIde C:\WINDOWS\system32\DRIVERS\viaide.sys
11:54:51.0359 3900 ViaIde - ok
11:54:51.0390 3900 [ D6888520FF56D72A50437E371CA25FC9 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
11:54:51.0468 3900 VolSnap - ok
11:54:51.0500 3900 [ 6635ECBF0D8090DC3A452D0D072B5D5B ] VSS C:\WINDOWS\System32\vssvc.exe
11:54:51.0593 3900 VSS - ok
11:54:51.0781 3900 [ 39AC581F5B57E3074E3E5CDAB9E7DFF1 ] w29n51 C:\WINDOWS\system32\DRIVERS\w29n51.sys
11:54:52.0046 3900 w29n51 - ok
11:54:52.0171 3900 [ C6D874CD2A5B83CD11CDEBD28A638584 ] W32Time C:\WINDOWS\system32\w32time.dll
11:54:52.0359 3900 W32Time - ok
11:54:52.0390 3900 [ 984EF0B9788ABF89974CFED4BFBAACBC ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
11:54:52.0546 3900 Wanarp - ok
11:54:52.0562 3900 WDICA - ok
11:54:52.0593 3900 [ 2797F33EBF50466020C430EE4F037933 ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
11:54:52.0765 3900 wdmaud - ok
11:54:52.0796 3900 [ 1EB51FEEA9D3208EAE60604F4346C02E ] WebClient C:\WINDOWS\System32\webclnt.dll
11:54:52.0968 3900 WebClient - ok
11:54:53.0031 3900 [ C3D9C524CD25E19D212CACBFB925EE1F ] winachsf C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys
11:54:53.0125 3900 winachsf - ok
11:54:53.0171 3900 [ DA2DADB42916E59C6E4BBA593BCCDA73 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
11:54:53.0359 3900 winmgmt - ok
11:54:53.0500 3900 [ 20263DAFD033D30F151BB87568386769 ] WmcCds c:\programme\windows media connect\mswmccds.exe
11:54:53.0593 3900 WmcCds ( UnsignedFile.Multi.Generic ) - warning
11:54:53.0593 3900 WmcCds - detected UnsignedFile.Multi.Generic (1)
11:54:53.0609 3900 [ 1DD015A69235DCFAE18B5F98FB50BE23 ] WmcCdsLs C:\Programme\Windows Media Connect\mswmcls.exe
11:54:53.0640 3900 WmcCdsLs ( UnsignedFile.Multi.Generic ) - warning
11:54:53.0640 3900 WmcCdsLs - detected UnsignedFile.Multi.Generic (1)
11:54:53.0734 3900 [ A477391B7A8B0A0DAABADB17CF533A4B ] WmdmPmSN C:\WINDOWS\system32\MsPMSNSv.dll
11:54:53.0781 3900 WmdmPmSN - ok
11:54:53.0843 3900 [ 9CBB06E4438D6A0D52A46E0B44796D37 ] Wmi C:\WINDOWS\System32\advapi32.dll
11:54:53.0953 3900 Wmi - ok
11:54:53.0984 3900 [ 042A78FCD1ADFB0FBA9865D55C6F5CC1 ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
11:54:54.0109 3900 WmiApSrv - ok
11:54:54.0156 3900 [ BD3561AAE748150CF51C2CA876449EA7 ] wscsvc C:\WINDOWS\system32\wscsvc.dll
11:54:54.0296 3900 wscsvc - ok
11:54:54.0328 3900 [ 1EDDD5C0ECF3FA6EDFD8A25B2B4E7DF6 ] wuauserv C:\WINDOWS\system32\wuauserv.dll
11:54:54.0484 3900 wuauserv - ok
11:54:54.0562 3900 [ AE83ADA96575DACF533C2BCB1FC163DC ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
11:54:54.0718 3900 WZCSVC - ok
11:54:54.0781 3900 [ 8302DE1C64618D72346DD0034DBC5D9B ] xmlprov C:\WINDOWS\System32\xmlprov.dll
11:54:54.0921 3900 xmlprov - ok
11:54:54.0937 3900 ================ Scan global ===============================
11:54:54.0968 3900 [ 1B91BAC6996731EE8925F58205DCB016 ] C:\WINDOWS\system32\basesrv.dll
11:54:55.0015 3900 [ 6D4006EF6E45030BCA14CBFE8893E9B9 ] C:\WINDOWS\system32\winsrv.dll
11:54:55.0062 3900 [ 6D4006EF6E45030BCA14CBFE8893E9B9 ] C:\WINDOWS\system32\winsrv.dll
11:54:55.0093 3900 [ EDB6B81761BD60F32F740BBC40AFB676 ] C:\WINDOWS\system32\services.exe
11:54:55.0093 3900 [Global] - ok
11:54:55.0093 3900 ================ Scan MBR ==================================
11:54:55.0109 3900 [ DA4FCE06B57A382A3B0002CAE2FA1FCF ] \Device\Harddisk0\DR0
11:54:55.0109 3900 Suspicious mbr (Forged): \Device\Harddisk0\DR0
11:54:55.0156 3900 \Device\Harddisk0\DR0 ( Rootkit.Boot.SST.b ) - infected
11:54:55.0156 3900 \Device\Harddisk0\DR0 - detected Rootkit.Boot.SST.b (0)
11:54:55.0265 3900 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
11:54:55.0265 3900 \Device\Harddisk0\DR0 - detected TDSS File System (1)
11:54:55.0265 3900 ================ Scan VBR ==================================
11:54:55.0265 3900 [ 8B1106999E0C334C53698E10BBC45C1C ] \Device\Harddisk0\DR0\Partition1
11:54:55.0265 3900 \Device\Harddisk0\DR0\Partition1 - ok
11:54:55.0281 3900 ============================================================
11:54:55.0281 3900 Scan finished
11:54:55.0281 3900 ============================================================
11:54:55.0390 0324 Detected object count: 49
11:54:55.0390 0324 Actual detected object count: 49
11:56:50.0453 0324 AegisP ( UnsignedFile.Multi.Generic ) - skipped by user
11:56:50.0453 0324 AegisP ( UnsignedFile.Multi.Generic ) - User select action: Skip
11:56:50.0453 0324 AntiVirSchedulerService ( UnsignedFile.Multi.Generic ) - skipped by user
11:56:50.0453 0324 AntiVirSchedulerService ( UnsignedFile.Multi.Generic ) - User select action: Skip
11:56:50.0453 0324 AntiVirService ( UnsignedFile.Multi.Generic ) - skipped by user
11:56:50.0453 0324 AntiVirService ( UnsignedFile.Multi.Generic ) - User select action: Skip
11:56:50.0453 0324 aspnet_state ( UnsignedFile.Multi.Generic ) - skipped by user
11:56:50.0453 0324 aspnet_state ( UnsignedFile.Multi.Generic ) - User select action: Skip
11:56:50.0453 0324 drvmcdb ( UnsignedFile.Multi.Generic ) - skipped by user
11:56:50.0453 0324 drvmcdb ( UnsignedFile.Multi.Generic ) - User select action: Skip
11:56:50.0453 0324 drvnddm ( UnsignedFile.Multi.Generic ) - skipped by user
11:56:50.0453 0324 drvnddm ( UnsignedFile.Multi.Generic ) - User select action: Skip
11:56:50.0468 0324 EGATHDRV ( UnsignedFile.Multi.Generic ) - skipped by user
11:56:50.0468 0324 EGATHDRV ( UnsignedFile.Multi.Generic ) - User select action: Skip
11:56:50.0468 0324 EvtEng ( UnsignedFile.Multi.Generic ) - skipped by user
11:56:50.0468 0324 EvtEng ( UnsignedFile.Multi.Generic ) - User select action: Skip
11:56:50.0468 0324 IBM Rapid Restore Ultra Service ( UnsignedFile.Multi.Generic ) - skipped by user
11:56:50.0468 0324 IBM Rapid Restore Ultra Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
11:56:50.0468 0324 IBMFilter ( UnsignedFile.Multi.Generic ) - skipped by user
11:56:50.0468 0324 IBMFilter ( UnsignedFile.Multi.Generic ) - User select action: Skip
11:56:50.0468 0324 IDriverT ( UnsignedFile.Multi.Generic ) - skipped by user
11:56:50.0468 0324 IDriverT ( UnsignedFile.Multi.Generic ) - User select action: Skip
11:56:50.0468 0324 MACNDIS5 ( UnsignedFile.Multi.Generic ) - skipped by user
11:56:50.0468 0324 MACNDIS5 ( UnsignedFile.Multi.Generic ) - User select action: Skip
11:56:50.0468 0324 MZCCntrl ( UnsignedFile.Multi.Generic ) - skipped by user
11:56:50.0468 0324 MZCCntrl ( UnsignedFile.Multi.Generic ) - User select action: Skip
11:56:50.0468 0324 PCANDIS5 ( UnsignedFile.Multi.Generic ) - skipped by user
11:56:50.0468 0324 PCANDIS5 ( UnsignedFile.Multi.Generic ) - User select action: Skip
11:56:50.0468 0324 PcdrNdisuio ( UnsignedFile.Multi.Generic ) - skipped by user
11:56:50.0484 0324 PcdrNdisuio ( UnsignedFile.Multi.Generic ) - User select action: Skip
11:56:50.0484 0324 PMEM ( UnsignedFile.Multi.Generic ) - skipped by user
11:56:50.0484 0324 PMEM ( UnsignedFile.Multi.Generic ) - User select action: Skip
11:56:50.0484 0324 psadd ( UnsignedFile.Multi.Generic ) - skipped by user
11:56:50.0484 0324 psadd ( UnsignedFile.Multi.Generic ) - User select action: Skip
11:56:50.0484 0324 PxHelp20 ( UnsignedFile.Multi.Generic ) - skipped by user
11:56:50.0484 0324 PxHelp20 ( UnsignedFile.Multi.Generic ) - User select action: Skip
11:56:50.0484 0324 RegSrvc ( UnsignedFile.Multi.Generic ) - skipped by user
11:56:50.0484 0324 RegSrvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
11:56:50.0484 0324 S24EventMonitor ( UnsignedFile.Multi.Generic ) - skipped by user
11:56:50.0484 0324 S24EventMonitor ( UnsignedFile.Multi.Generic ) - User select action: Skip
11:56:50.0484 0324 s24trans ( UnsignedFile.Multi.Generic ) - skipped by user
11:56:50.0484 0324 s24trans ( UnsignedFile.Multi.Generic ) - User select action: Skip
11:56:50.0484 0324 ShockMgr ( UnsignedFile.Multi.Generic ) - skipped by user
11:56:50.0484 0324 ShockMgr ( UnsignedFile.Multi.Generic ) - User select action: Skip
11:56:50.0484 0324 Shockprf ( UnsignedFile.Multi.Generic ) - skipped by user
11:56:50.0484 0324 Shockprf ( UnsignedFile.Multi.Generic ) - User select action: Skip
11:56:50.0484 0324 Smapint ( UnsignedFile.Multi.Generic ) - skipped by user
11:56:50.0484 0324 Smapint ( UnsignedFile.Multi.Generic ) - User select action: Skip
11:56:50.0500 0324 SoundMAX Agent Service (default) ( UnsignedFile.Multi.Generic ) - skipped by user
11:56:50.0500 0324 SoundMAX Agent Service (default) ( UnsignedFile.Multi.Generic ) - User select action: Skip
11:56:50.0500 0324 sscdbhk5 ( UnsignedFile.Multi.Generic ) - skipped by user
11:56:50.0500 0324 sscdbhk5 ( UnsignedFile.Multi.Generic ) - User select action: Skip
11:56:50.0500 0324 ssrtln ( UnsignedFile.Multi.Generic ) - skipped by user
11:56:50.0500 0324 ssrtln ( UnsignedFile.Multi.Generic ) - User select action: Skip
11:56:50.0500 0324 TDSMAPI ( UnsignedFile.Multi.Generic ) - skipped by user
11:56:50.0500 0324 TDSMAPI ( UnsignedFile.Multi.Generic ) - User select action: Skip
11:56:50.0500 0324 tfsnboio ( UnsignedFile.Multi.Generic ) - skipped by user
11:56:50.0500 0324 tfsnboio ( UnsignedFile.Multi.Generic ) - User select action: Skip
11:56:50.0500 0324 tfsncofs ( UnsignedFile.Multi.Generic ) - skipped by user
11:56:50.0500 0324 tfsncofs ( UnsignedFile.Multi.Generic ) - User select action: Skip
11:56:50.0500 0324 tfsndrct ( UnsignedFile.Multi.Generic ) - skipped by user
11:56:50.0500 0324 tfsndrct ( UnsignedFile.Multi.Generic ) - User select action: Skip
11:56:50.0500 0324 tfsndres ( UnsignedFile.Multi.Generic ) - skipped by user
11:56:50.0500 0324 tfsndres ( UnsignedFile.Multi.Generic ) - User select action: Skip
11:56:50.0500 0324 tfsnifs ( UnsignedFile.Multi.Generic ) - skipped by user
11:56:50.0500 0324 tfsnifs ( UnsignedFile.Multi.Generic ) - User select action: Skip
11:56:50.0500 0324 tfsnopio ( UnsignedFile.Multi.Generic ) - skipped by user
11:56:50.0500 0324 tfsnopio ( UnsignedFile.Multi.Generic ) - User select action: Skip
11:56:50.0515 0324 tfsnpool ( UnsignedFile.Multi.Generic ) - skipped by user
11:56:50.0515 0324 tfsnpool ( UnsignedFile.Multi.Generic ) - User select action: Skip
11:56:50.0515 0324 tfsnudf ( UnsignedFile.Multi.Generic ) - skipped by user
11:56:50.0515 0324 tfsnudf ( UnsignedFile.Multi.Generic ) - User select action: Skip
11:56:50.0515 0324 tfsnudfa ( UnsignedFile.Multi.Generic ) - skipped by user
11:56:50.0515 0324 tfsnudfa ( UnsignedFile.Multi.Generic ) - User select action: Skip
11:56:50.0515 0324 TNPacket ( UnsignedFile.Multi.Generic ) - skipped by user
11:56:50.0515 0324 TNPacket ( UnsignedFile.Multi.Generic ) - User select action: Skip
11:56:50.0515 0324 TPDiskPM ( UnsignedFile.Multi.Generic ) - skipped by user
11:56:50.0515 0324 TPDiskPM ( UnsignedFile.Multi.Generic ) - User select action: Skip
11:56:50.0515 0324 TPHDEXLGSVC ( UnsignedFile.Multi.Generic ) - skipped by user
11:56:50.0515 0324 TPHDEXLGSVC ( UnsignedFile.Multi.Generic ) - User select action: Skip
11:56:50.0515 0324 TPHKDRV ( UnsignedFile.Multi.Generic ) - skipped by user
11:56:50.0515 0324 TPHKDRV ( UnsignedFile.Multi.Generic ) - User select action: Skip
11:56:50.0515 0324 TPInput ( UnsignedFile.Multi.Generic ) - skipped by user
11:56:50.0515 0324 TPInput ( UnsignedFile.Multi.Generic ) - User select action: Skip
11:56:50.0515 0324 TpKmpSVC ( UnsignedFile.Multi.Generic ) - skipped by user
11:56:50.0515 0324 TpKmpSVC ( UnsignedFile.Multi.Generic ) - User select action: Skip
11:56:50.0515 0324 TSMAPIP ( UnsignedFile.Multi.Generic ) - skipped by user
11:56:50.0515 0324 TSMAPIP ( UnsignedFile.Multi.Generic ) - User select action: Skip
11:56:50.0531 0324 TSMService ( UnsignedFile.Multi.Generic ) - skipped by user
11:56:50.0531 0324 TSMService ( UnsignedFile.Multi.Generic ) - User select action: Skip
11:56:50.0531 0324 WmcCds ( UnsignedFile.Multi.Generic ) - skipped by user
11:56:50.0531 0324 WmcCds ( UnsignedFile.Multi.Generic ) - User select action: Skip
11:56:50.0531 0324 WmcCdsLs ( UnsignedFile.Multi.Generic ) - skipped by user
11:56:50.0531 0324 WmcCdsLs ( UnsignedFile.Multi.Generic ) - User select action: Skip
11:56:50.0531 0324 \Device\Harddisk0\DR0 ( Rootkit.Boot.SST.b ) - skipped by user
11:56:50.0531 0324 \Device\Harddisk0\DR0 ( Rootkit.Boot.SST.b ) - User select action: Skip
11:56:50.0531 0324 \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
11:56:50.0531 0324 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip
|
|
28.09.2012, 14:18
| #32 |
| /// Winkelfunktion /// TB-Süch-Tiger™   | Smart HDD Stecke fest nach Punkt 1 in Eurer Anleitung: Vorgehen beim Verschlüsselungs-TrojanerCode:
ATTFilter \Device\Harddisk0\DR0 ( Rootkit.Boot.SST.b ) - User select action: Skip
\Device\Harddisk0\DR0 ( TDSS File System ) - skipped by use
Um das zu tun musst du den TDSS-Killer neu starten und einen neuen Scan machen. Wenn du danach die Ergebnisse siehst, stellst du bitte diese Einträge auf CURE bzw. DELETE (je nachdem was dir angeboten wird, alle anderen bitte auf SKIP lassen! ) und klickst dann unten rechts auf continue Starte Windows danach neu und mach wieder ein komplett neues Log mit dem TDSS-Killer. Wie immer wieder in CODE-Tags posten.
__________________ |
|
02.10.2012, 09:18
| #33 |
| | Smart HDD Stecke fest nach Punkt 1 in Eurer Anleitung: Vorgehen beim Verschlüsselungs-Trojaner Sorry, dass es ein paar Tage gedauert hat, ich war nicht da. Hier das neue Log.
__________________Code:
ATTFilter 10:07:55.0984 1828 TDSS rootkit removing tool 2.8.10.0 Sep 17 2012 19:23:24
10:07:56.0203 1828 ============================================================
10:07:56.0203 1828 Current date / time: 2012/10/02 10:07:56.0203
10:07:56.0203 1828 SystemInfo:
10:07:56.0203 1828
10:07:56.0203 1828 OS Version: 5.1.2600 ServicePack: 2.0
10:07:56.0203 1828 Product type: Workstation
10:07:56.0203 1828 ComputerName: IBM-67B32170FAC
10:07:56.0203 1828 UserName: Administrator
10:07:56.0203 1828 Windows directory: C:\WINDOWS
10:07:56.0203 1828 System windows directory: C:\WINDOWS
10:07:56.0203 1828 Processor architecture: Intel x86
10:07:56.0203 1828 Number of processors: 1
10:07:56.0203 1828 Page size: 0x1000
10:07:56.0203 1828 Boot type: Normal boot
10:07:56.0203 1828 ============================================================
10:07:57.0609 1828 BG loaded
10:07:58.0031 1828 Drive \Device\Harddisk0\DR0 - Size: 0x950A60000 (37.26 Gb), SectorSize: 0x200, Cylinders: 0x1430, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000054
10:07:58.0046 1828 ============================================================
10:07:58.0046 1828 \Device\Harddisk0\DR0:
10:07:58.0046 1828 MBR partitions:
10:07:58.0046 1828 \Device\Harddisk0\DR0\Partition1: MBR, Type 0xC, StartLBA 0x3F, BlocksNum 0x4129731
10:07:58.0046 1828 ============================================================
10:07:58.0109 1828 C: <-> \Device\Harddisk0\DR0\Partition1
10:07:58.0140 1828 ============================================================
10:07:58.0140 1828 Initialize success
10:07:58.0140 1828 ============================================================
10:08:56.0000 3068 ============================================================
10:08:56.0000 3068 Scan started
10:08:56.0000 3068 Mode: Manual; SigCheck; TDLFS;
10:08:56.0000 3068 ============================================================
10:08:56.0468 3068 ================ Scan system memory ========================
10:08:56.0468 3068 System memory - ok
10:08:56.0484 3068 ================ Scan services =============================
10:08:56.0671 3068 Abiosdsk - ok
10:08:56.0765 3068 [ 6ABB91494FE6C59089B9336452AB2EA3 ] abp480n5 C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS
10:09:11.0562 3068 abp480n5 - ok
10:09:11.0718 3068 [ 0F2D66D5F08EBE2F77BB904288DCF6F0 ] ac97intc C:\WINDOWS\system32\drivers\ac97intc.sys
10:09:12.0062 3068 ac97intc - ok
10:09:12.0468 3068 [ 94B4741D2CF9ED38140B831293D1601A ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
10:09:12.0640 3068 ACPI - ok
10:09:12.0656 3068 [ 9E1CA3160DAFB159CA14F83B1E317F75 ] ACPIEC C:\WINDOWS\system32\DRIVERS\ACPIEC.sys
10:09:13.0015 3068 ACPIEC - ok
10:09:13.0093 3068 [ 9A11864873DA202C996558B2106B0BBC ] adpu160m C:\WINDOWS\system32\DRIVERS\adpu160m.sys
10:09:13.0296 3068 adpu160m - ok
10:09:13.0359 3068 [ CDE1F62FE63631B932ACE2249FB11DA0 ] aeaudio C:\WINDOWS\system32\drivers\aeaudio.sys
10:09:13.0421 3068 aeaudio - ok
10:09:13.0640 3068 [ 841F385C6CFAF66B58FBD898722BB4F0 ] aec C:\WINDOWS\system32\drivers\aec.sys
10:09:13.0765 3068 aec - ok
10:09:13.0796 3068 [ F498FD605C08404B20A48954C722FF74 ] AegisP C:\WINDOWS\system32\DRIVERS\AegisP.sys
10:09:13.0828 3068 AegisP ( UnsignedFile.Multi.Generic ) - warning
10:09:13.0828 3068 AegisP - detected UnsignedFile.Multi.Generic (1)
10:09:13.0859 3068 [ 5AC495F4CB807B2B98AD2AD591E6D92E ] AFD C:\WINDOWS\System32\drivers\afd.sys
10:09:13.0953 3068 AFD - ok
10:09:14.0156 3068 [ 2C428FA0C3E3A01ED93C9B2A27D8D4BB ] agp440 C:\WINDOWS\system32\DRIVERS\agp440.sys
10:09:14.0343 3068 agp440 - ok
10:09:14.0359 3068 [ 67288B07D6ABA6C1267B626E67BC56FD ] agpCPQ C:\WINDOWS\system32\DRIVERS\agpCPQ.sys
10:09:14.0453 3068 agpCPQ - ok
10:09:14.0468 3068 [ C23EA9B5F46C7F7910DB3EAB648FF013 ] Aha154x C:\WINDOWS\system32\DRIVERS\aha154x.sys
10:09:14.0546 3068 Aha154x - ok
10:09:14.0562 3068 [ 19DD0FB48B0C18892F70E2E7D61A1529 ] aic78u2 C:\WINDOWS\system32\DRIVERS\aic78u2.sys
10:09:14.0671 3068 aic78u2 - ok
10:09:14.0687 3068 [ B7FE594A7468AA0132DEB03FB8E34326 ] aic78xx C:\WINDOWS\system32\DRIVERS\aic78xx.sys
10:09:14.0781 3068 aic78xx - ok
10:09:14.0828 3068 [ 1AAB6C5F8376357CB9B16C38C42C4076 ] Alerter C:\WINDOWS\system32\alrsvc.dll
10:09:14.0953 3068 Alerter - ok
10:09:15.0000 3068 [ 6596DD260FFDE1BDC994C1DF236307BB ] ALG C:\WINDOWS\System32\alg.exe
10:09:15.0046 3068 ALG - ok
10:09:15.0062 3068 [ 1140AB9938809700B46BB88E46D72A96 ] AliIde C:\WINDOWS\system32\DRIVERS\aliide.sys
10:09:15.0171 3068 AliIde - ok
10:09:15.0187 3068 [ F312B7CEF21EFF52FA23056B9D815FAD ] alim1541 C:\WINDOWS\system32\DRIVERS\alim1541.sys
10:09:15.0296 3068 alim1541 - ok
10:09:15.0312 3068 [ 675C16A3C1F8482F85EE4A97FC0DDE3D ] amdagp C:\WINDOWS\system32\DRIVERS\amdagp.sys
10:09:15.0421 3068 amdagp - ok
10:09:15.0437 3068 [ 79F5ADD8D24BD6893F2903A3E2F3FAD6 ] amsint C:\WINDOWS\system32\DRIVERS\amsint.sys
10:09:15.0484 3068 amsint - ok
10:09:15.0718 3068 [ 9015BC03F62940527EC92D45EE89E46F ] AntiVirSchedulerService C:\Programme\Avira\AntiVir Desktop\sched.exe
10:09:15.0781 3068 AntiVirSchedulerService ( UnsignedFile.Multi.Generic ) - warning
10:09:15.0781 3068 AntiVirSchedulerService - detected UnsignedFile.Multi.Generic (1)
10:09:15.0828 3068 [ B8720A787C1223492E6F319465E996CE ] AntiVirService C:\Programme\Avira\AntiVir Desktop\avguard.exe
10:09:15.0828 3068 AntiVirService ( UnsignedFile.Multi.Generic ) - warning
10:09:15.0828 3068 AntiVirService - detected UnsignedFile.Multi.Generic (1)
10:09:15.0890 3068 [ 7E94E567C1AA5ABE6174032B3DAB6C23 ] Apple Mobile Device C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
10:09:15.0906 3068 Apple Mobile Device - ok
10:09:15.0937 3068 [ BECD5328E7869807D6557BE4FE60C72F ] AppMgmt C:\WINDOWS\System32\appmgmts.dll
10:09:16.0015 3068 AppMgmt - ok
10:09:16.0046 3068 [ 62D318E9A0C8FC9B780008E724283707 ] asc C:\WINDOWS\system32\DRIVERS\asc.sys
10:09:16.0171 3068 asc - ok
10:09:16.0187 3068 [ 69EB0CC7714B32896CCBFD5EDCBEA447 ] asc3350p C:\WINDOWS\system32\DRIVERS\asc3350p.sys
10:09:16.0265 3068 asc3350p - ok
10:09:16.0296 3068 [ 5D8DE112AA0254B907861E9E9C31D597 ] asc3550 C:\WINDOWS\system32\DRIVERS\asc3550.sys
10:09:16.0421 3068 asc3550 - ok
10:09:16.0562 3068 [ E1A1206A4FB19B675E947B29CCD25FBA ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\aspnet_state.exe
10:09:16.0593 3068 aspnet_state ( UnsignedFile.Multi.Generic ) - warning
10:09:16.0593 3068 aspnet_state - detected UnsignedFile.Multi.Generic (1)
10:09:16.0609 3068 [ 02000ABF34AF4C218C35D257024807D6 ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
10:09:16.0734 3068 AsyncMac - ok
10:09:16.0890 3068 [ CDFE4411A69C224BD1D11B2DA92DAC51 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
10:09:17.0000 3068 atapi - ok
10:09:17.0000 3068 Atdisk - ok
10:09:17.0062 3068 [ EC88DA854AB7D7752EC8BE11A741BB7F ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
10:09:17.0187 3068 Atmarpc - ok
10:09:17.0234 3068 [ E98B8250398F6637B335A76BA8DFB602 ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
10:09:17.0343 3068 AudioSrv - ok
10:09:17.0359 3068 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
10:09:17.0484 3068 audstub - ok
10:09:17.0531 3068 [ 0B497C79824F8E1BF22FA6AACD3DE3A0 ] avgio C:\Programme\Avira\AntiVir Desktop\avgio.sys
10:09:17.0546 3068 avgio - ok
10:09:17.0578 3068 [ 14FE36D8F2C6A2435275338D061A0B66 ] avgntflt C:\WINDOWS\system32\DRIVERS\avgntflt.sys
10:09:17.0687 3068 avgntflt - ok
10:09:17.0718 3068 [ 6D52060B59E7D79CD2A044B6ADD1F1EF ] avipbb C:\WINDOWS\system32\DRIVERS\avipbb.sys
10:09:17.0734 3068 avipbb - ok
10:09:17.0781 3068 [ 241474D01380E9ED41D4C07F4F5FD401 ] b57w2k C:\WINDOWS\system32\DRIVERS\b57xp32.sys
10:09:17.0812 3068 b57w2k - ok
10:09:17.0843 3068 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
10:09:17.0984 3068 Beep - ok
10:09:18.0078 3068 [ 3A5E54A9AB96EF2D273B58136FB58EFE ] BITS C:\WINDOWS\system32\qmgr.dll
10:09:18.0234 3068 BITS - ok
10:09:19.0187 3068 [ 3F56903E124E820AEECE6D471583C6C1 ] Bonjour Service C:\Programme\Bonjour\mDNSResponder.exe
10:09:19.0218 3068 Bonjour Service - ok
10:09:19.0250 3068 [ D8653DCD80CF2EBB333FC4FCC43A7DEF ] Browser C:\WINDOWS\System32\browser.dll
10:09:19.0375 3068 Browser - ok
10:09:19.0375 3068 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf C:\WINDOWS\system32\DRIVERS\cbidf2k.sys
10:09:19.0500 3068 cbidf - ok
10:09:19.0500 3068 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
10:09:19.0593 3068 cbidf2k - ok
10:09:19.0671 3068 [ D0BC82FC5177A14B685D80FF4C364E6D ] ccEvtMgr C:\Programme\Gemeinsame Dateien\Symantec Shared\ccEvtMgr.exe
10:09:19.0687 3068 ccEvtMgr - ok
10:09:19.0765 3068 [ 7BFD6BEF3F808CFA8DC2358930BDA147 ] ccPwdSvc C:\Programme\Gemeinsame Dateien\Symantec Shared\ccPwdSvc.exe
10:09:19.0781 3068 ccPwdSvc - ok
10:09:19.0828 3068 [ 06B072A2C9C035E6ED8696B9B361069F ] ccSetMgr C:\Programme\Gemeinsame Dateien\Symantec Shared\ccSetMgr.exe
10:09:19.0843 3068 ccSetMgr - ok
10:09:19.0843 3068 [ F3EC03299634490E97BBCE94CD2954C7 ] cd20xrnt C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys
10:09:19.0921 3068 cd20xrnt - ok
10:09:19.0953 3068 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
10:09:20.0046 3068 Cdaudio - ok
10:09:20.0062 3068 [ CD7D5152DF32B47F4E36F710B35AAE02 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
10:09:20.0187 3068 Cdfs - ok
10:09:20.0218 3068 [ AF9C19B3100FE010496B1A27181FBF72 ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
10:09:20.0343 3068 Cdrom - ok
10:09:20.0343 3068 Changer - ok
10:09:20.0406 3068 [ 234D52C63C67A8CF4AF9BECCE43BFB4A ] CiSvc C:\WINDOWS\system32\cisvc.exe
10:09:20.0515 3068 CiSvc - ok
10:09:20.0562 3068 [ 0461868578D29DC18FB1C79933C5158A ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
10:09:20.0703 3068 ClipSrv - ok
10:09:20.0718 3068 [ 4266BE808F85826AEDF3C64C1E240203 ] CmBatt C:\WINDOWS\system32\DRIVERS\CmBatt.sys
10:09:20.0859 3068 CmBatt - ok
10:09:20.0890 3068 [ C687F81290303D90099B027A6474F99F ] CmdIde C:\WINDOWS\system32\DRIVERS\cmdide.sys
10:09:21.0000 3068 CmdIde - ok
10:09:21.0015 3068 [ DF1B1A24BF52D0EBC01ED4ECE8979F50 ] Compbatt C:\WINDOWS\system32\DRIVERS\compbatt.sys
10:09:21.0125 3068 Compbatt - ok
10:09:21.0171 3068 COMSysApp - ok
10:09:21.0187 3068 [ 3EE529119EED34CD212A215E8C40D4B6 ] Cpqarray C:\WINDOWS\system32\DRIVERS\cpqarray.sys
10:09:21.0312 3068 Cpqarray - ok
10:09:21.0359 3068 [ 1A5F9DB98DF7955B4C7CBDBF2C638238 ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
10:09:21.0484 3068 CryptSvc - ok
10:09:21.0531 3068 [ E550E7418984B65A78299D248F0A7F36 ] dac2w2k C:\WINDOWS\system32\DRIVERS\dac2w2k.sys
10:09:21.0671 3068 dac2w2k - ok
10:09:21.0687 3068 [ 683789CAA3864EB46125AE86FF677D34 ] dac960nt C:\WINDOWS\system32\DRIVERS\dac960nt.sys
10:09:21.0796 3068 dac960nt - ok
10:09:22.0015 3068 [ 9F28FF58D6D67B123272869D89D14004 ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
10:09:22.0125 3068 DcomLaunch - ok
10:09:22.0156 3068 [ 69F986B2688BA95A0D9362B0E233D5FF ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
10:09:22.0250 3068 Dhcp - ok
10:09:22.0281 3068 [ 00CA44E4534865F8A3B64F7C0984BFF0 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
10:09:22.0375 3068 Disk - ok
10:09:22.0390 3068 dmadmin - ok
10:09:22.0453 3068 [ 5789B83BA87FC84C3568CF86CACEF8CE ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
10:09:22.0625 3068 dmboot - ok
10:09:22.0640 3068 [ 084EB0A50A4F7B4705C8A57F234E5291 ] dmio C:\WINDOWS\system32\drivers\dmio.sys
10:09:22.0765 3068 dmio - ok
10:09:22.0781 3068 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
10:09:22.0875 3068 dmload - ok
10:09:22.0890 3068 [ FA2D9D1A9F6B5A88D01E1685CE2378BA ] dmserver C:\WINDOWS\System32\dmserver.dll
10:09:23.0000 3068 dmserver - ok
10:09:23.0015 3068 [ A6F881284AC1150E37D9AE47FF601267 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
10:09:23.0140 3068 DMusic - ok
10:09:23.0171 3068 [ D1F5B71BBAEEE07B78980DBD878C0BC7 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
10:09:23.0265 3068 Dnscache - ok
10:09:23.0312 3068 [ 40F3B93B4E5B0126F2F5C0A7A5E22660 ] dpti2o C:\WINDOWS\system32\DRIVERS\dpti2o.sys
10:09:23.0406 3068 dpti2o - ok
10:09:23.0421 3068 [ 1ED4DBBAE9F5D558DBBA4CC450E3EB2E ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
10:09:23.0515 3068 drmkaud - ok
10:09:23.0546 3068 [ F41619AE216B51D68DDA163805EEFAA9 ] drvmcdb C:\WINDOWS\system32\drivers\drvmcdb.sys
10:09:23.0578 3068 drvmcdb ( UnsignedFile.Multi.Generic ) - warning
10:09:23.0578 3068 drvmcdb - detected UnsignedFile.Multi.Generic (1)
10:09:23.0593 3068 [ B295700E684ED1984DB1D6BE40354421 ] drvnddm C:\WINDOWS\system32\drivers\drvnddm.sys
10:09:23.0593 3068 drvnddm ( UnsignedFile.Multi.Generic ) - warning
10:09:23.0593 3068 drvnddm - detected UnsignedFile.Multi.Generic (1)
10:09:23.0609 3068 [ A6DE5342417FEC3C0AA8EFEBB899C431 ] E100B C:\WINDOWS\system32\DRIVERS\e100b325.sys
10:09:23.0718 3068 E100B - ok
10:09:23.0781 3068 [ 2D0FC676D159525F6CD74C3302C7A61C ] EGATHDRV C:\WINDOWS\SYSTEM32\EGATHDRV.SYS
10:09:23.0781 3068 EGATHDRV ( UnsignedFile.Multi.Generic ) - warning
10:09:23.0781 3068 EGATHDRV - detected UnsignedFile.Multi.Generic (1)
10:09:23.0796 3068 [ 877A4512CC9074D6954776AF47021766 ] ERSvc C:\WINDOWS\System32\ersvc.dll
10:09:23.0921 3068 ERSvc - ok
10:09:23.0968 3068 [ EDB6B81761BD60F32F740BBC40AFB676 ] Eventlog C:\WINDOWS\system32\services.exe
10:09:24.0078 3068 Eventlog - ok
10:09:24.0109 3068 [ 4E1A8645EE77CB9454FFE53C59620A25 ] EventSystem C:\WINDOWS\system32\es.dll
10:09:24.0234 3068 EventSystem - ok
10:09:24.0328 3068 [ 80AAA1C7520C86CA0641C69851E124AF ] EvtEng C:\Programme\Intel\Wireless\Bin\EvtEng.exe
10:09:24.0359 3068 EvtEng ( UnsignedFile.Multi.Generic ) - warning
10:09:24.0359 3068 EvtEng - detected UnsignedFile.Multi.Generic (1)
10:09:24.0375 3068 [ 3117F595E9615E04F05A54FC15A03B20 ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
10:09:24.0515 3068 Fastfat - ok
10:09:24.0546 3068 [ BAC5F7F0C2B8C1B9832594851E0F9914 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
10:09:24.0687 3068 FastUserSwitchingCompatibility - ok
10:09:24.0718 3068 [ CED2E8396A8838E59D8FD529C680E02C ] Fdc C:\WINDOWS\system32\DRIVERS\fdc.sys
10:09:24.0859 3068 Fdc - ok
10:09:24.0890 3068 [ 9E9AF89F9B14AA6249065C309CE73BD8 ] Fips C:\WINDOWS\system32\drivers\Fips.sys
10:09:25.0000 3068 Fips - ok
10:09:25.0031 3068 [ 0DD1DE43115B93F4D85E889D7A86F548 ] Flpydisk C:\WINDOWS\system32\DRIVERS\flpydisk.sys
10:09:25.0140 3068 Flpydisk - ok
10:09:25.0171 3068 [ 157754F0DF355A9E0A6F54721914F9C6 ] FltMgr C:\WINDOWS\system32\DRIVERS\fltMgr.sys
10:09:25.0296 3068 FltMgr - ok
10:09:25.0312 3068 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
10:09:25.0437 3068 Fs_Rec - ok
10:09:25.0453 3068 [ 8F1955CE42E1484714B542F341647778 ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
10:09:25.0562 3068 Ftdisk - ok
10:09:25.0578 3068 [ 8182FF89C65E4D38B2DE4BB0FB18564E ] GEARAspiWDM C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
10:09:25.0593 3068 GEARAspiWDM - ok
10:09:25.0593 3068 [ C0F1D4A21DE5A415DF8170616703DEBF ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
10:09:25.0718 3068 Gpc - ok
10:09:25.0765 3068 [ BA85BCF1A2BCF927C3600574173403E0 ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
10:09:25.0906 3068 helpsvc - ok
10:09:25.0937 3068 HidServ - ok
10:09:25.0953 3068 [ B028377DEA0546A5FCFBA928A8AEFAE0 ] hpn C:\WINDOWS\system32\DRIVERS\hpn.sys
10:09:26.0046 3068 hpn - ok
10:09:26.0093 3068 [ 7B555FF6647069BD1D68B4F9556A7B16 ] HSFHWICH C:\WINDOWS\system32\DRIVERS\HSFHWICH.sys
10:09:26.0140 3068 HSFHWICH - ok
10:09:26.0218 3068 [ 43B60F94718841E13B9DD8905366BDBD ] HSF_DP C:\WINDOWS\system32\DRIVERS\HSF_DP.sys
10:09:26.0296 3068 HSF_DP - ok
10:09:26.0359 3068 [ C19B522A9AE0BBC3293397F3055E80A1 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
10:09:26.0500 3068 HTTP - ok
10:09:26.0593 3068 [ 9EC7E866BBDBF3ECC0E67F4E0A838EB2 ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
10:09:26.0750 3068 HTTPFilter - ok
10:09:26.0765 3068 [ 8F09F91B5C91363B77BCD15599570F2C ] i2omgmt C:\WINDOWS\system32\drivers\i2omgmt.sys
10:09:26.0937 3068 i2omgmt - ok
10:09:27.0000 3068 [ ED6BF9E441FDEA13292A6D30A64A24C3 ] i2omp C:\WINDOWS\system32\DRIVERS\i2omp.sys
10:09:27.0109 3068 i2omp - ok
10:09:27.0125 3068 [ 7C575018D0413440D75432A78B88C899 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
10:09:27.0218 3068 i8042prt - ok
10:09:27.0281 3068 [ 4D27AFCD58AC7DB4C005C72D7634BC3F ] ialm C:\WINDOWS\system32\DRIVERS\ialmnt5.sys
10:09:27.0359 3068 ialm - ok
10:09:27.0515 3068 [ 3D81C48470BEB3D27684C4FFEC9C4955 ] IBM Rapid Restore Ultra Service C:\Programme\IBM\IBM Rapid Restore Ultra\rrpcsb.exe
10:09:27.0578 3068 IBM Rapid Restore Ultra Service ( UnsignedFile.Multi.Generic ) - warning
10:09:27.0578 3068 IBM Rapid Restore Ultra Service - detected UnsignedFile.Multi.Generic (1)
10:09:27.0609 3068 [ 67CBDD7E1D9866F83D8921829893435A ] IBMFilter C:\WINDOWS\system32\drivers\ibmfilter.sys
10:09:27.0640 3068 IBMFilter ( UnsignedFile.Multi.Generic ) - warning
10:09:27.0640 3068 IBMFilter - detected UnsignedFile.Multi.Generic (1)
10:09:27.0656 3068 [ 6207F110F2530F187BF876012EBEC664 ] IBMPMDRV C:\WINDOWS\system32\DRIVERS\ibmpmdrv.sys
10:09:27.0671 3068 IBMPMDRV - ok
10:09:27.0781 3068 [ BE5A1CAA43DD8D9BA44C516AFF001089 ] IBMPMSVC C:\WINDOWS\system32\ibmpmsvc.exe
10:09:27.0843 3068 IBMPMSVC - ok
10:09:27.0968 3068 [ DAF66902F08796F9C694901660E5A64A ] IDriverT C:\Programme\Gemeinsame Dateien\InstallShield\Driver\1150\Intel 32\IDriverT.exe
10:09:28.0031 3068 IDriverT ( UnsignedFile.Multi.Generic ) - warning
10:09:28.0031 3068 IDriverT - detected UnsignedFile.Multi.Generic (1)
10:09:28.0046 3068 [ AD5E8A6C823F24882A6826D7DBCCF4A3 ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
10:09:28.0406 3068 Imapi - ok
10:09:28.0437 3068 [ 57D7267A9ED91ECAF4336B08C9628FCA ] ImapiService C:\WINDOWS\system32\imapi.exe
10:09:28.0671 3068 ImapiService - ok
10:09:28.0703 3068 [ 4A40E045FAEE58631FD8D91AFC620719 ] ini910u C:\WINDOWS\system32\DRIVERS\ini910u.sys
10:09:28.0859 3068 ini910u - ok
10:09:28.0875 3068 [ D63C33F65F6EBC732116403D88883B2D ] IntelIde C:\WINDOWS\system32\DRIVERS\intelide.sys
10:09:28.0984 3068 IntelIde - ok
10:09:29.0000 3068 [ C1C2CC1DA79C5EE10457EF0A3B8568C7 ] intelppm C:\WINDOWS\system32\DRIVERS\intelppm.sys
10:09:29.0109 3068 intelppm - ok
10:09:29.0125 3068 [ 4448006B6BC60E6C027932CFC38D6855 ] Ip6Fw C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
10:09:29.0234 3068 Ip6Fw - ok
10:09:29.0281 3068 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
10:09:29.0390 3068 IpFilterDriver - ok
10:09:29.0390 3068 [ E1EC7F5DA720B640CD8FB8424F1B14BB ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
10:09:29.0500 3068 IpInIp - ok
10:09:29.0531 3068 [ E2168CBC7098FFE963C6F23F472A3593 ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
10:09:29.0562 3068 IpNat - ok
10:09:29.0671 3068 [ 6E0FAEA90E71C5F1B9F3BC71B4CCA2FA ] iPod Service C:\Programme\iPod\bin\iPodService.exe
10:09:29.0687 3068 iPod Service - ok
10:09:29.0734 3068 [ 64537AA5C003A6AFEEE1DF819062D0D1 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
10:09:29.0875 3068 IPSec - ok
10:09:29.0906 3068 [ 86C204836FEEC22510D434982D4221B8 ] irda C:\WINDOWS\system32\DRIVERS\irda.sys
10:09:29.0968 3068 irda - ok
10:09:29.0984 3068 [ 50708DAA1B1CBB7D6AC1CF8F56A24410 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
10:09:30.0031 3068 IRENUM - ok
10:09:30.0078 3068 [ 5AB3BAD0AAD5EBBA5359A02BCC4F80F8 ] Irmon C:\WINDOWS\System32\irmon.dll
10:09:30.0171 3068 Irmon - ok
10:09:30.0203 3068 [ CE9B7AFDF0A3D7DD8D1487262316B959 ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
10:09:30.0359 3068 isapnp - ok
10:09:30.0390 3068 [ B128FC0A5CD83F669D5DE4B58F77C7D6 ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
10:09:30.0531 3068 Kbdclass - ok
10:09:30.0562 3068 [ D93CAD07C5683DB066B0B2D2D3790EAD ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
10:09:30.0703 3068 kmixer - ok
10:09:30.0718 3068 [ EB7FFE87FD367EA8FCA0506F74A87FBB ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
10:09:30.0859 3068 KSecDD - ok
10:09:30.0890 3068 [ 2865FA4ED4471929881C053A6E5A85F6 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
10:09:30.0906 3068 lanmanserver - ok
10:09:30.0921 3068 [ 36D74668F5448D55887FA3958488DC06 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
10:09:31.0046 3068 lanmanworkstation - ok
10:09:31.0046 3068 lbrtfdc - ok
10:09:31.0078 3068 [ 4C25FADD7FE1D5BD779B20D3D0EB8D7C ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
10:09:31.0203 3068 LmHosts - ok
10:09:31.0281 3068 [ E949D673842858D458F7E6BCD46A2A5D ] MACNDIS5 C:\PROGRA~1\GEMEIN~1\MARMIK~1\MACNDIS5.SYS
10:09:31.0281 3068 MACNDIS5 ( UnsignedFile.Multi.Generic ) - warning
10:09:31.0281 3068 MACNDIS5 - detected UnsignedFile.Multi.Generic (1)
10:09:31.0296 3068 MBAMProtector - ok
10:09:31.0375 3068 [ 0DCF16B1449811EFA47AB52CAC84093C ] MBAMScheduler C:\Programme\Malwarebytes' Anti-Malware\mbamscheduler.exe
10:09:31.0406 3068 MBAMScheduler - ok
10:09:31.0468 3068 [ 9EAABA4D601004BEA4DAA6E146E19A96 ] MBAMService C:\Programme\Malwarebytes' Anti-Malware\mbamservice.exe
10:09:31.0531 3068 MBAMService - ok
10:09:31.0578 3068 [ 3C318B9CD391371BED62126581EE9961 ] mdmxsdk C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
10:09:31.0593 3068 mdmxsdk - ok
10:09:31.0625 3068 [ E5215AB942C5AC5F7EB0E54871D7A27C ] Messenger C:\WINDOWS\System32\msgsvc.dll
10:09:31.0734 3068 Messenger - ok
10:09:31.0750 3068 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
10:09:31.0875 3068 mnmdd - ok
10:09:31.0921 3068 [ BB2470D20405B272EA47CA5E18F1C58E ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
10:09:32.0078 3068 mnmsrvc - ok
10:09:32.0093 3068 [ 91A3DA4B12F6F1D760463A7F7857F748 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
10:09:32.0250 3068 Modem - ok
10:09:32.0265 3068 [ 71E15CA47FD947552054AFB28536268F ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
10:09:32.0375 3068 Mouclass - ok
10:09:32.0375 3068 [ 65653F3B4477F3C63E68A9659F85EE2E ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
10:09:32.0500 3068 MountMgr - ok
10:09:32.0593 3068 [ 46297FA8E30A6007F14118FC2B942FBC ] MozillaMaintenance C:\Programme\Mozilla Maintenance Service\maintenanceservice.exe
10:09:32.0609 3068 MozillaMaintenance - ok
10:09:32.0656 3068 [ 3F4BB95E5A44F3BE34824E8E7CAF0737 ] mraid35x C:\WINDOWS\system32\DRIVERS\mraid35x.sys
10:09:32.0781 3068 mraid35x - ok
10:09:32.0796 3068 [ 46EDCC8F2DB2F322C24F48785CB46366 ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
10:09:32.0906 3068 MRxDAV - ok
10:09:32.0953 3068 [ 5DDC9A1B2EB5A4BF010CE8C019A18C1F ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
10:09:32.0984 3068 MRxSmb - ok
10:09:33.0093 3068 [ D059F9C7752EF461476E83180DAA5C62 ] MSDTC C:\WINDOWS\system32\msdtc.exe
10:09:33.0265 3068 MSDTC - ok
10:09:33.0281 3068 [ 561B3A4333CA2DBDBA28B5B956822519 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
10:09:33.0421 3068 Msfs - ok
10:09:33.0453 3068 MSIServer - ok
10:09:33.0468 3068 [ AE431A8DD3C1D0D0610CDBAC16057AD0 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
10:09:33.0609 3068 MSKSSRV - ok
10:09:33.0609 3068 [ 13E75FEF9DFEB08EEDED9D0246E1F448 ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
10:09:33.0750 3068 MSPCLOCK - ok
10:09:33.0765 3068 [ 1988A33FF19242576C3D0EF9CE785DA7 ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
10:09:33.0875 3068 MSPQM - ok
10:09:33.0890 3068 [ 469541F8BFD2B32659D5D463A6714BCE ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
10:09:33.0984 3068 mssmbios - ok
10:09:34.0000 3068 [ 82035E0F41C2DD05AE41D27FE6CF7DE1 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
10:09:34.0109 3068 Mup - ok
10:09:34.0171 3068 [ 5F9BA398F88FC8928EA6DBD5D144CFCA ] MZCCntrl C:\Programme\Gemeinsame Dateien\Marmiko Shared\MZCCntrl.exe
10:09:34.0187 3068 MZCCntrl ( UnsignedFile.Multi.Generic ) - warning
10:09:34.0187 3068 MZCCntrl - detected UnsignedFile.Multi.Generic (1)
10:09:34.0234 3068 [ 583CD25C03674B76353063876D506B84 ] navapsvc C:\Programme\Norton AntiVirus\navapsvc.exe
10:09:34.0250 3068 navapsvc - ok
10:09:34.0328 3068 [ 904B9A1657F52147898196239487C86A ] NAVENG C:\PROGRA~1\GEMEIN~1\SYMANT~1\VIRUSD~1\20050504.016\NAVENG.Sys
10:09:34.0328 3068 NAVENG - ok
10:09:34.0375 3068 [ 80D74B829F94645E75983B58B4C8BEE2 ] NAVEX15 C:\PROGRA~1\GEMEIN~1\SYMANT~1\VIRUSD~1\20050504.016\NavEx15.Sys
10:09:34.0406 3068 NAVEX15 - ok
10:09:34.0468 3068 [ 558635D3AF1C7546D26067D5D9B6959E ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
10:09:34.0578 3068 NDIS - ok
10:09:34.0593 3068 [ 08D43BBDACDF23F34D79E44ED35C1B4C ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
10:09:34.0703 3068 NdisTapi - ok
10:09:34.0734 3068 [ 34D6CD56409DA9A7ED573E1C90A308BF ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
10:09:34.0890 3068 Ndisuio - ok
10:09:34.0906 3068 [ 0B90E255A9490166AB368CD55A529893 ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
10:09:35.0046 3068 NdisWan - ok
10:09:35.0062 3068 [ 59FC3FB44D2669BC144FD87826BB571F ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
10:09:35.0187 3068 NDProxy - ok
10:09:35.0218 3068 [ 3A2ACA8FC1D7786902CA434998D7CEB4 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
10:09:35.0328 3068 NetBIOS - ok
10:09:35.0359 3068 [ 0C80E410CD2F47134407EE7DD19CC86B ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
10:09:35.0484 3068 NetBT - ok
10:09:35.0515 3068 [ F4EFF57254F565F39B6029150414A0D5 ] NetDDE C:\WINDOWS\system32\netdde.exe
10:09:35.0640 3068 NetDDE - ok
10:09:35.0656 3068 [ F4EFF57254F565F39B6029150414A0D5 ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
10:09:35.0750 3068 NetDDEdsdm - ok
10:09:35.0765 3068 [ 183805EB05BCA5A1E4AAAED4D2BE3690 ] Netlogon C:\WINDOWS\system32\lsass.exe
10:09:35.0875 3068 Netlogon - ok
10:09:35.0890 3068 [ CDF4DA6B518105343FE9E8AFBBF8FBF4 ] Netman C:\WINDOWS\System32\netman.dll
10:09:35.0984 3068 Netman - ok
10:09:36.0015 3068 [ B36E08F680BAE4DFC5C24D00A2DFC9E7 ] Nla C:\WINDOWS\System32\mswsock.dll
10:09:36.0125 3068 Nla - ok
10:09:36.0171 3068 [ 1880A485022FF365B5FD6F92BBFE012D ] NPFMntor C:\Programme\Norton AntiVirus\IWP\NPFMntor.exe
10:09:36.0203 3068 NPFMntor - ok
10:09:36.0203 3068 [ 4F601BCB8F64EA3AC0994F98FED03F8E ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
10:09:36.0312 3068 Npfs - ok
10:09:36.0328 3068 [ 6216798D29C3BA9D0D6F40BBBAB694A5 ] NSCIRDA C:\WINDOWS\system32\DRIVERS\nscirda.sys
10:09:36.0375 3068 NSCIRDA - ok
10:09:36.0437 3068 [ B78BE402C3F63DD55521F73876951CDD ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
10:09:36.0593 3068 Ntfs - ok
10:09:36.0593 3068 [ 183805EB05BCA5A1E4AAAED4D2BE3690 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
10:09:36.0687 3068 NtLmSsp - ok
10:09:36.0765 3068 [ 428AA946A8D9F32DBB4260C8E6E13377 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
10:09:36.0906 3068 NtmsSvc - ok
10:09:36.0937 3068 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
10:09:37.0046 3068 Null - ok
10:09:37.0203 3068 [ 2B298519EDBFCF451D43E0F1E8F1006D ] nv C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
10:09:37.0421 3068 nv - ok
10:09:37.0437 3068 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
10:09:37.0593 3068 NwlnkFlt - ok
10:09:37.0640 3068 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
10:09:37.0750 3068 NwlnkFwd - ok
10:09:37.0796 3068 [ B2F17A2EDB5450E61973A037F63A595B ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
10:09:37.0953 3068 Parport - ok
10:09:37.0984 3068 [ 3334430C29DC338092F79C38EF7B4CD0 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
10:09:38.0125 3068 PartMgr - ok
10:09:38.0156 3068 [ C2BF987829099A3EAA2CA6A0A90ECB4F ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
10:09:38.0296 3068 ParVdm - ok
10:09:38.0375 3068 [ D0084A9ADE989FE703E4F22171F4E4DC ] PCANDIS5 C:\Programme\T-DSL SpeedManager\PCANDIS5.SYS
10:09:38.0375 3068 PCANDIS5 ( UnsignedFile.Multi.Generic ) - warning
10:09:38.0375 3068 PCANDIS5 - detected UnsignedFile.Multi.Generic (1)
10:09:38.0406 3068 [ 505CBA425DF3BB230F244E1C23221058 ] PcdrNdisuio C:\WINDOWS\system32\DRIVERS\pcdrndisuio.sys
10:09:38.0406 3068 PcdrNdisuio ( UnsignedFile.Multi.Generic ) - warning
10:09:38.0406 3068 PcdrNdisuio - detected UnsignedFile.Multi.Generic (1)
10:09:38.0421 3068 [ 6FB463E5B243FBD6F3D3C83F914D94FB ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
10:09:38.0546 3068 PCI - ok
10:09:38.0546 3068 PCIDump - ok
10:09:38.0546 3068 [ 59BA86D9A61CBCF4DF8E598C331F5B82 ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
10:09:38.0656 3068 PCIIde - ok
10:09:38.0656 3068 [ E2363F4C1DAFF89ABEE5F593E13D8A05 ] Pcmcia C:\WINDOWS\system32\DRIVERS\pcmcia.sys
10:09:38.0765 3068 Pcmcia - ok
10:09:38.0781 3068 PDCOMP - ok
10:09:38.0781 3068 PDFRAME - ok
10:09:38.0796 3068 PDRELI - ok
10:09:38.0796 3068 PDRFRAME - ok
10:09:38.0812 3068 [ 6C14B9C19BA84F73D3A86DBA11133101 ] perc2 C:\WINDOWS\system32\DRIVERS\perc2.sys
10:09:38.0906 3068 perc2 - ok
10:09:38.0921 3068 [ F50F7C27F131AFE7BEBA13E14A3B9416 ] perc2hib C:\WINDOWS\system32\DRIVERS\perc2hib.sys
10:09:39.0015 3068 perc2hib - ok
10:09:39.0062 3068 [ EDB6B81761BD60F32F740BBC40AFB676 ] PlugPlay C:\WINDOWS\system32\services.exe
10:09:39.0156 3068 PlugPlay - ok
10:09:39.0187 3068 [ FA292805788528C083F416E151B60AB6 ] PMEM C:\WINDOWS\SYSTEM32\Drivers\PMEMNT.SYS
10:09:39.0187 3068 PMEM ( UnsignedFile.Multi.Generic ) - warning
10:09:39.0187 3068 PMEM - detected UnsignedFile.Multi.Generic (1)
10:09:39.0203 3068 [ 183805EB05BCA5A1E4AAAED4D2BE3690 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
10:09:39.0296 3068 PolicyAgent - ok
10:09:39.0312 3068 [ 1C5CC65AAC0783C344F16353E60B72AC ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
10:09:39.0406 3068 PptpMiniport - ok
10:09:39.0421 3068 [ 3D7F196E77F986C106E9320B81A5EBBF ] Processor C:\WINDOWS\system32\DRIVERS\processr.sys
10:09:39.0531 3068 Processor - ok
10:09:39.0531 3068 [ 183805EB05BCA5A1E4AAAED4D2BE3690 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
10:09:39.0625 3068 ProtectedStorage - ok
10:09:39.0656 3068 [ 30B10051866EDE0CA089082FB4DABDEA ] psadd C:\WINDOWS\system32\Drivers\psadd.sys
10:09:39.0671 3068 psadd ( UnsignedFile.Multi.Generic ) - warning
10:09:39.0671 3068 psadd - detected UnsignedFile.Multi.Generic (1)
10:09:39.0734 3068 PsaSrv - ok
10:09:39.0750 3068 [ 48671F327553DCF1D27F6197F622A668 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
10:09:39.0859 3068 PSched - ok
10:09:39.0875 3068 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
10:09:39.0968 3068 Ptilink - ok
10:09:40.0000 3068 [ 30CBAE0A34359F1CD19D1576245149ED ] PxHelp20 C:\WINDOWS\system32\Drivers\PxHelp20.sys
10:09:40.0015 3068 PxHelp20 ( UnsignedFile.Multi.Generic ) - warning
10:09:40.0015 3068 PxHelp20 - detected UnsignedFile.Multi.Generic (1)
10:09:40.0031 3068 [ 0A63FB54039EB5662433CABA3B26DBA7 ] ql1080 C:\WINDOWS\system32\DRIVERS\ql1080.sys
10:09:40.0125 3068 ql1080 - ok
10:09:40.0140 3068 [ 6503449E1D43A0FF0201AD5CB1B8C706 ] Ql10wnt C:\WINDOWS\system32\DRIVERS\ql10wnt.sys
10:09:40.0234 3068 Ql10wnt - ok
10:09:40.0250 3068 [ 156ED0EF20C15114CA097A34A30D8A01 ] ql12160 C:\WINDOWS\system32\DRIVERS\ql12160.sys
10:09:40.0359 3068 ql12160 - ok
10:09:40.0375 3068 [ 70F016BEBDE6D29E864C1230A07CC5E6 ] ql1240 C:\WINDOWS\system32\DRIVERS\ql1240.sys
10:09:40.0484 3068 ql1240 - ok
10:09:40.0500 3068 [ 907F0AEEA6BC451011611E732BD31FCF ] ql1280 C:\WINDOWS\system32\DRIVERS\ql1280.sys
10:09:40.0609 3068 ql1280 - ok
10:09:40.0640 3068 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
10:09:40.0734 3068 RasAcd - ok
10:09:40.0750 3068 [ E3C6E87C1F84584A773D7C3DD205DBFF ] RasAuto C:\WINDOWS\System32\rasauto.dll
10:09:40.0875 3068 RasAuto - ok
10:09:40.0906 3068 [ 0207D26DDF796A193CCD9F83047BB5FC ] Rasirda C:\WINDOWS\system32\DRIVERS\rasirda.sys
10:09:40.0953 3068 Rasirda - ok
10:09:40.0953 3068 [ 98FAEB4A4DCF812BA1C6FCA4AA3E115C ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
10:09:41.0062 3068 Rasl2tp - ok
10:09:41.0109 3068 [ A5D2D745A2AEFA327DCA6DA317B5FD70 ] RasMan C:\WINDOWS\System32\rasmans.dll
10:09:41.0203 3068 RasMan - ok
10:09:41.0218 3068 [ 7306EEED8895454CBED4669BE9F79FAA ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
10:09:41.0312 3068 RasPppoe - ok
10:09:41.0343 3068 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
10:09:41.0453 3068 Raspti - ok
10:09:41.0484 3068 [ 809CA45CAA9072B3176AD44579D7F688 ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
10:09:41.0500 3068 Rdbss - ok
10:09:41.0515 3068 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
10:09:41.0625 3068 RDPCDD - ok
10:09:41.0656 3068 [ A2CAE2C60BC37E0751EF9DDA7CEAF4AD ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys
10:09:41.0781 3068 rdpdr - ok
10:09:41.0828 3068 [ D4F5643D7714EF499AE9527FDCD50894 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
10:09:41.0937 3068 RDPWD - ok
10:09:41.0953 3068 [ AA56702E230860565CB8D43680F57F33 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
10:09:42.0046 3068 redbook - ok
10:09:42.0140 3068 [ F8489639E1D60D21F63F69A0605DD667 ] RegSrvc C:\Programme\Intel\Wireless\Bin\RegSrvc.exe
10:09:42.0171 3068 RegSrvc ( UnsignedFile.Multi.Generic ) - warning
10:09:42.0171 3068 RegSrvc - detected UnsignedFile.Multi.Generic (1)
10:09:42.0218 3068 [ EBA80CDF25E02084857957E820004934 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
10:09:42.0312 3068 RemoteAccess - ok
10:09:42.0343 3068 [ AE81CF7D7CFA79CD03E8FB99788A7E09 ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
10:09:42.0453 3068 RemoteRegistry - ok
10:09:42.0500 3068 [ DA23F9F3F1B1871120F980A6879581AC ] RpcLocator C:\WINDOWS\system32\locator.exe
10:09:42.0609 3068 RpcLocator - ok
10:09:42.0671 3068 [ 9F28FF58D6D67B123272869D89D14004 ] RpcSs C:\WINDOWS\system32\rpcss.dll
10:09:42.0781 3068 RpcSs - ok
10:09:42.0796 3068 [ 4BDD71B4B521521499DFD14735C4F398 ] RSVP C:\WINDOWS\system32\rsvp.exe
10:09:42.0937 3068 RSVP - ok
10:09:42.0984 3068 [ 3962B7C74E9E335FAA419CCBF4BD1835 ] S24EventMonitor C:\Programme\Intel\Wireless\Bin\S24EvMon.exe
10:09:43.0046 3068 S24EventMonitor ( UnsignedFile.Multi.Generic ) - warning
10:09:43.0046 3068 S24EventMonitor - detected UnsignedFile.Multi.Generic (1)
10:09:43.0062 3068 [ 85A26A3BB748DFD3170CDBF45B0DD7FD ] s24trans C:\WINDOWS\system32\DRIVERS\s24trans.sys
10:09:43.0093 3068 s24trans ( UnsignedFile.Multi.Generic ) - warning
10:09:43.0093 3068 s24trans - detected UnsignedFile.Multi.Generic (1)
10:09:43.0125 3068 [ 183805EB05BCA5A1E4AAAED4D2BE3690 ] SamSs C:\WINDOWS\system32\lsass.exe
10:09:43.0203 3068 SamSs - ok
10:09:43.0296 3068 [ C5FC1F1F28E01864A903137038ACD5C2 ] SAVRT C:\Programme\Norton AntiVirus\SAVRT.SYS
10:09:43.0312 3068 SAVRT - ok
10:09:43.0328 3068 [ 956D3173171F4CCDE5820F41DE5E14BD ] SAVRTPEL C:\Programme\Norton AntiVirus\SAVRTPEL.SYS
10:09:43.0328 3068 SAVRTPEL - ok
10:09:43.0375 3068 [ CF3235D1D5BC8F1E7BEF28FC0BDBCDC9 ] SAVScan C:\Programme\Norton AntiVirus\SAVScan.exe
10:09:43.0406 3068 SAVScan - ok
10:09:43.0484 3068 [ D3C1EC3E4637AD83BD356DE3B26FAF24 ] SBService C:\PROGRA~1\GEMEIN~1\SYMANT~1\SCRIPT~1\SBServ.exe
10:09:43.0515 3068 SBService - ok
10:09:43.0578 3068 [ B4CF7B42DE6CFA6FDE7D6AF4DAA55F57 ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
10:09:43.0765 3068 SCardSvr - ok
10:09:43.0812 3068 [ D5E73842F38E24457C63FEF8CEFFBE19 ] Schedule C:\WINDOWS\system32\schedsvc.dll
10:09:43.0984 3068 Schedule - ok
10:09:44.0015 3068 [ D26E26EA516450AF9D072635C60387F4 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
10:09:44.0109 3068 Secdrv - ok
10:09:44.0140 3068 [ FED544B43903FB801B106F062110358A ] seclogon C:\WINDOWS\System32\seclogon.dll
10:09:44.0296 3068 seclogon - ok
10:09:44.0312 3068 [ AB74D986C1DD0D0C95B6AD37EC1E9F4F ] SENS C:\WINDOWS\system32\sens.dll
10:09:44.0437 3068 SENS - ok
10:09:44.0453 3068 [ A2D868AEEFF612E70E213C451A70CAFB ] serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
10:09:44.0562 3068 serenum - ok
10:09:44.0578 3068 [ CD5B9995AFCDB466C9EFC048D167E3BE ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
10:09:44.0671 3068 Serial - ok
10:09:44.0703 3068 [ 0D13B6DF6E9E101013A7AFB0CE629FE0 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
10:09:44.0812 3068 Sfloppy - ok
10:09:44.0859 3068 [ 9245420422E409A25C1410ACB4244060 ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
10:09:44.0953 3068 SharedAccess - ok
10:09:44.0984 3068 [ BAC5F7F0C2B8C1B9832594851E0F9914 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
10:09:45.0078 3068 ShellHWDetection - ok
10:09:45.0093 3068 [ 482DDB9F0F6D88F0503910E1B9728042 ] ShockMgr C:\WINDOWS\system32\drivers\ShockMgr.sys
10:09:45.0109 3068 ShockMgr ( UnsignedFile.Multi.Generic ) - warning
10:09:45.0109 3068 ShockMgr - detected UnsignedFile.Multi.Generic (1)
10:09:45.0140 3068 [ E467B7D35E5DB9BD12E138CD5C7F4368 ] Shockprf C:\WINDOWS\system32\drivers\Shockprf.sys
10:09:45.0156 3068 Shockprf ( UnsignedFile.Multi.Generic ) - warning
10:09:45.0156 3068 Shockprf - detected UnsignedFile.Multi.Generic (1)
10:09:45.0171 3068 Simbad - ok
10:09:45.0218 3068 [ 732D859B286DA692119F286B21A2A114 ] sisagp C:\WINDOWS\system32\DRIVERS\sisagp.sys
10:09:45.0312 3068 sisagp - ok
10:09:45.0328 3068 [ 26341D0DD225D19FD50E0EE3C3C77502 ] Smapint C:\WINDOWS\system32\drivers\Smapint.sys
10:09:45.0343 3068 Smapint ( UnsignedFile.Multi.Generic ) - warning
10:09:45.0343 3068 Smapint - detected UnsignedFile.Multi.Generic (1)
10:09:45.0390 3068 [ B09F23BF6E451B7A492B4A3D5EACFB24 ] smwdm C:\WINDOWS\system32\drivers\smwdm.sys
10:09:45.0406 3068 smwdm - ok
10:09:45.0453 3068 [ 4424E504DC24284194BEAA04F045B9C3 ] SNDSrvc C:\Programme\Gemeinsame Dateien\Symantec Shared\SNDSrvc.exe
10:09:45.0515 3068 SNDSrvc - ok
10:09:45.0531 3068 [ 3978F082274F723AD5A0A8058C2417DD ] SoundMAX Agent Service (default) C:\Programme\Analog Devices\SoundMAX\SMAgent.exe
10:09:45.0546 3068 SoundMAX Agent Service (default) ( UnsignedFile.Multi.Generic ) - warning
10:09:45.0546 3068 SoundMAX Agent Service (default) - detected UnsignedFile.Multi.Generic (1)
10:09:45.0578 3068 [ 83C0F71F86D3BDAF915685F3D568B20E ] Sparrow C:\WINDOWS\system32\DRIVERS\sparrow.sys
10:09:45.0625 3068 Sparrow - ok
10:09:45.0671 3068 [ 924E82D6DEC26F82036E69B8D3F04216 ] SPBBCDrv C:\Programme\Gemeinsame Dateien\Symantec Shared\SPBBC\SPBBCDrv.sys
10:09:45.0703 3068 SPBBCDrv - ok
10:09:45.0734 3068 [ 08FA56B7C13B4CBF0E5D351AECAD92B1 ] SPBBCSvc C:\Programme\Gemeinsame Dateien\Symantec Shared\SPBBC\SPBBCSvc.exe
10:09:45.0765 3068 SPBBCSvc - ok
10:09:45.0812 3068 [ 8E186B8F23295D1E42C573B82B80D548 ] splitter C:\WINDOWS\system32\drivers\splitter.sys
10:09:45.0921 3068 splitter - ok
10:09:45.0953 3068 [ 54E7113A4BD696E430919BCAF5C65E06 ] Spooler C:\WINDOWS\system32\spoolsv.exe
10:09:46.0078 3068 Spooler - ok
10:09:46.0093 3068 [ E4200CB2F418D8FC4ACDD7E38C419D6A ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
10:09:46.0171 3068 sr - ok
10:09:46.0234 3068 [ 015F302C4CF961F20C3F98F3A7CA7917 ] srservice C:\WINDOWS\system32\srsvc.dll
10:09:46.0296 3068 srservice - ok
10:09:46.0328 3068 [ 20B7E396720353E4117D64D9DCB926CA ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
10:09:46.0468 3068 Srv - ok
10:09:46.0468 3068 [ D7968049BE0ADBB6A57CEE3960320911 ] sscdbhk5 C:\WINDOWS\system32\drivers\sscdbhk5.sys
10:09:46.0500 3068 sscdbhk5 ( UnsignedFile.Multi.Generic ) - warning
10:09:46.0500 3068 sscdbhk5 - detected UnsignedFile.Multi.Generic (1)
10:09:46.0546 3068 [ 6FA03B462B2FFFE2627171B7FE73EE29 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
10:09:46.0609 3068 SSDPSRV - ok
10:09:46.0640 3068 [ 5EC550B8952882EE856B862CF648522D ] ssmdrv C:\WINDOWS\system32\DRIVERS\ssmdrv.sys
10:09:46.0656 3068 ssmdrv - ok
10:09:46.0671 3068 [ C3FFD65ABFB6441E7606CF74F1155273 ] ssrtln C:\WINDOWS\system32\drivers\ssrtln.sys
10:09:46.0671 3068 ssrtln ( UnsignedFile.Multi.Generic ) - warning
10:09:46.0671 3068 ssrtln - detected UnsignedFile.Multi.Generic (1)
10:09:46.0734 3068 [ 7E751068ADA60FC77638622E86A7CD9E ] stisvc C:\WINDOWS\system32\wiaservc.dll
10:09:46.0890 3068 stisvc - ok
10:09:46.0921 3068 [ 03C1BAE4766E2450219D20B993D6E046 ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
10:09:47.0046 3068 swenum - ok
10:09:47.0062 3068 [ 94ABC808FC4B6D7D2BBF42B85E25BB4D ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
10:09:47.0203 3068 swmidi - ok
10:09:47.0265 3068 SwPrv - ok
10:09:47.0265 3068 [ 1FF3217614018630D0A6758630FC698C ] symc810 C:\WINDOWS\system32\DRIVERS\symc810.sys
10:09:47.0359 3068 symc810 - ok
10:09:47.0406 3068 [ 070E001D95CF725186EF8B20335F933C ] symc8xx C:\WINDOWS\system32\DRIVERS\symc8xx.sys
10:09:47.0500 3068 symc8xx - ok
10:09:47.0531 3068 [ 9F69E39B58377BE1D085A66F3580E58E ] SymEvent C:\Programme\Symantec\SYMEVENT.SYS
10:09:47.0546 3068 SymEvent - ok
10:09:47.0593 3068 [ 281F3398B1FD6D9A6BC7C1AED19FCE3E ] SYMREDRV C:\WINDOWS\System32\Drivers\SYMREDRV.SYS
10:09:47.0593 3068 SYMREDRV - ok
10:09:47.0640 3068 [ 2D7B6C9DA22F54B38843E5A9F99775FC ] SYMTDI C:\WINDOWS\System32\Drivers\SYMTDI.SYS
10:09:47.0656 3068 SYMTDI - ok
10:09:47.0671 3068 [ 80AC1C4ABBE2DF3B738BF15517A51F2C ] sym_hi C:\WINDOWS\system32\DRIVERS\sym_hi.sys
10:09:47.0781 3068 sym_hi - ok
10:09:47.0796 3068 [ BF4FAB949A382A8E105F46EBB4937058 ] sym_u3 C:\WINDOWS\system32\DRIVERS\sym_u3.sys
10:09:47.0890 3068 sym_u3 - ok
10:09:47.0937 3068 [ 68775382C3B842E9CCBA64B7E13083E2 ] SynTP C:\WINDOWS\system32\DRIVERS\SynTP.sys
10:09:48.0000 3068 SynTP - ok
10:09:48.0015 3068 [ 650AD082D46BAC0E64C9C0E0928492FD ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
10:09:48.0140 3068 sysaudio - ok
10:09:48.0187 3068 [ 6D0C43DF9D3A7C5A9B4F94772CBD5DDC ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
10:09:48.0328 3068 SysmonLog - ok
10:09:48.0390 3068 [ 4584E2A5FE662AB3E7C32936E1449043 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
10:09:48.0515 3068 TapiSrv - ok
10:09:48.0562 3068 [ 4092C56967175F009DC8458DC434358E ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
10:09:48.0625 3068 Tcpip - ok
10:09:48.0656 3068 [ 38D437CF2D98965F239B0ABCD66DCB0F ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
10:09:48.0781 3068 TDPIPE - ok
10:09:48.0812 3068 [ E9512AC82FFF83808549267078B38FE5 ] TDSMAPI C:\WINDOWS\system32\drivers\TDSMAPI.SYS
10:09:48.0828 3068 TDSMAPI ( UnsignedFile.Multi.Generic ) - warning
10:09:48.0828 3068 TDSMAPI - detected UnsignedFile.Multi.Generic (1)
10:09:48.0843 3068 [ ED0580AF02502D00AD8C4C066B156BE9 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
10:09:48.0953 3068 TDTCP - ok
10:09:48.0968 3068 [ A540A99C281D933F3D69D55E48727F47 ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
10:09:49.0078 3068 TermDD - ok
10:09:49.0125 3068 [ 1850BC10DE5DCCCEDE063FC2D0F2CEDA ] TermService C:\WINDOWS\System32\termsrv.dll
10:09:49.0250 3068 TermService - ok
10:09:49.0312 3068 [ 1797F3375B4BF20E81D69AC8B11445B5 ] tfsnboio C:\WINDOWS\system32\dla\tfsnboio.sys
10:09:49.0343 3068 tfsnboio ( UnsignedFile.Multi.Generic ) - warning
10:09:49.0343 3068 tfsnboio - detected UnsignedFile.Multi.Generic (1)
10:09:49.0359 3068 [ 019BA601CB71A71143AED94F2DB26250 ] tfsncofs C:\WINDOWS\system32\dla\tfsncofs.sys
10:09:49.0375 3068 tfsncofs ( UnsignedFile.Multi.Generic ) - warning
10:09:49.0375 3068 tfsncofs - detected UnsignedFile.Multi.Generic (1)
10:09:49.0390 3068 [ 87269D7FA6DF7EF84B83BF5B0D2E031C ] tfsndrct C:\WINDOWS\system32\dla\tfsndrct.sys
10:09:49.0406 3068 tfsndrct ( UnsignedFile.Multi.Generic ) - warning
10:09:49.0406 3068 tfsndrct - detected UnsignedFile.Multi.Generic (1)
10:09:49.0421 3068 [ B4FB34F46971E56CCD8B8AC6936ADD58 ] tfsndres C:\WINDOWS\system32\dla\tfsndres.sys
10:09:49.0437 3068 tfsndres ( UnsignedFile.Multi.Generic ) - warning
10:09:49.0437 3068 tfsndres - detected UnsignedFile.Multi.Generic (1)
10:09:49.0453 3068 [ 2A144EC7557EFB9758D1C121688EBAF5 ] tfsnifs C:\WINDOWS\system32\dla\tfsnifs.sys
10:09:49.0468 3068 tfsnifs ( UnsignedFile.Multi.Generic ) - warning
10:09:49.0468 3068 tfsnifs - detected UnsignedFile.Multi.Generic (1)
10:09:49.0500 3068 [ 1AA2C61A846EFBC200703E8DC250297F ] tfsnopio C:\WINDOWS\system32\dla\tfsnopio.sys
10:09:49.0500 3068 tfsnopio ( UnsignedFile.Multi.Generic ) - warning
10:09:49.0500 3068 tfsnopio - detected UnsignedFile.Multi.Generic (1)
10:09:49.0515 3068 [ B3B0B6616CAE23AB1A4A5898CA6D5552 ] tfsnpool C:\WINDOWS\system32\dla\tfsnpool.sys
10:09:49.0531 3068 tfsnpool ( UnsignedFile.Multi.Generic ) - warning
10:09:49.0531 3068 tfsnpool - detected UnsignedFile.Multi.Generic (1)
10:09:49.0562 3068 [ 1614A1E396F296138D3FB1728F385E0B ] tfsnudf C:\WINDOWS\system32\dla\tfsnudf.sys
10:09:49.0578 3068 tfsnudf ( UnsignedFile.Multi.Generic ) - warning
10:09:49.0578 3068 tfsnudf - detected UnsignedFile.Multi.Generic (1)
10:09:49.0593 3068 [ E5D5B8DDE8C221FEDC88680631294155 ] tfsnudfa C:\WINDOWS\system32\dla\tfsnudfa.sys
10:09:49.0609 3068 tfsnudfa ( UnsignedFile.Multi.Generic ) - warning
10:09:49.0609 3068 tfsnudfa - detected UnsignedFile.Multi.Generic (1)
10:09:49.0640 3068 [ BAC5F7F0C2B8C1B9832594851E0F9914 ] Themes C:\WINDOWS\System32\shsvcs.dll
10:09:49.0750 3068 Themes - ok
10:09:49.0796 3068 [ 58708746B8267033E5CF2B29659E7F74 ] TlntSvr C:\WINDOWS\system32\tlntsvr.exe
10:09:49.0875 3068 TlntSvr - ok
10:09:49.0984 3068 [ 52AB2F2B0D2FD7CC2FDB489C449FEB8E ] TNPacket C:\Programme\T-DSL SpeedManager\TNPACKET.SYS
10:09:50.0000 3068 TNPacket ( UnsignedFile.Multi.Generic ) - warning
10:09:50.0000 3068 TNPacket - detected UnsignedFile.Multi.Generic (1)
10:09:50.0015 3068 [ D213A9247DC347F305A2D4CC9B951487 ] TosIde C:\WINDOWS\system32\DRIVERS\toside.sys
10:09:50.0125 3068 TosIde - ok
10:09:50.0156 3068 [ AC7543F9ADB2127F70DE192089DA9A1F ] TPDiskPM C:\WINDOWS\system32\drivers\TPDiskPM.sys
10:09:50.0156 3068 TPDiskPM ( UnsignedFile.Multi.Generic ) - warning
10:09:50.0156 3068 TPDiskPM - detected UnsignedFile.Multi.Generic (1)
10:09:50.0203 3068 [ F67908366F932BCF88096AF6B2CE3186 ] TPHDEXLGSVC C:\WINDOWS\system32\TPHDEXLG.EXE
10:09:50.0250 3068 TPHDEXLGSVC ( UnsignedFile.Multi.Generic ) - warning
10:09:50.0250 3068 TPHDEXLGSVC - detected UnsignedFile.Multi.Generic (1)
10:09:50.0265 3068 [ 63421F480E7CD375329ACE8588FED1AC ] TPHKDRV C:\WINDOWS\system32\drivers\TPHKDRV.sys
10:09:50.0281 3068 TPHKDRV ( UnsignedFile.Multi.Generic ) - warning
10:09:50.0281 3068 TPHKDRV - detected UnsignedFile.Multi.Generic (1)
10:09:50.0281 3068 [ F53589467C0A112BEC1835C72457A8A1 ] TPInput C:\WINDOWS\system32\DRIVERS\TPInput.sys
10:09:50.0312 3068 TPInput ( UnsignedFile.Multi.Generic ) - warning
10:09:50.0312 3068 TPInput - detected UnsignedFile.Multi.Generic (1)
10:09:50.0328 3068 [ DFB268FF0A6DCB9280015FF527F892FF ] TpKmpSVC C:\WINDOWS\system32\TpKmpSVC.exe
10:09:50.0437 3068 TpKmpSVC ( UnsignedFile.Multi.Generic ) - warning
10:09:50.0437 3068 TpKmpSVC - detected UnsignedFile.Multi.Generic (1)
10:09:50.0468 3068 [ 8DCAF6B264F8A701DE916ACE452C895D ] TPM11 C:\WINDOWS\system32\DRIVERS\nsctpm11.sys
10:09:50.0484 3068 TPM11 - ok
10:09:50.0515 3068 [ A34E894201D66E380E1FA96FE11B587E ] TrkWks C:\WINDOWS\system32\trkwks.dll
10:09:50.0671 3068 TrkWks - ok
10:09:50.0687 3068 [ F2ABA3066D7921D7FCDBD66DEA88BE11 ] TSMAPIP C:\WINDOWS\system32\drivers\TSMAPIP.SYS
10:09:50.0703 3068 TSMAPIP ( UnsignedFile.Multi.Generic ) - warning
10:09:50.0703 3068 TSMAPIP - detected UnsignedFile.Multi.Generic (1)
10:09:50.0750 3068 [ BF2236A5A39B21F694CCD7B5A6639E71 ] TSMService C:\Programme\T-DSL SpeedManager\tsmsvc.exe
10:09:50.0750 3068 TSMService ( UnsignedFile.Multi.Generic ) - warning
10:09:50.0750 3068 TSMService - detected UnsignedFile.Multi.Generic (1)
10:09:50.0796 3068 [ 12F70256F140CD7D52C58C7048FDE657 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
10:09:50.0953 3068 Udfs - ok
10:09:50.0984 3068 [ 1B698A51CD528D8DA4FFAED66DFC51B9 ] ultra C:\WINDOWS\system32\DRIVERS\ultra.sys
10:09:51.0062 3068 ultra - ok
10:09:51.0078 3068 [ C81B8635DEE0D3EF5F64B3DD643023A5 ] UMWdf C:\WINDOWS\system32\wdfmgr.exe
10:09:51.0140 3068 UMWdf - ok
10:09:51.0171 3068 [ AFF2E5045961BBC0A602BB6F95EB1345 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
10:09:51.0312 3068 Update - ok
10:09:51.0359 3068 [ 09D4A2D7C5A8ABEC227D118765FAADDF ] upnphost C:\WINDOWS\System32\upnphost.dll
10:09:51.0437 3068 upnphost - ok
10:09:51.0468 3068 [ A99F867E76CFDAA28EE305B93F70E84F ] UPS C:\WINDOWS\System32\ups.exe
10:09:51.0609 3068 UPS - ok
10:09:51.0656 3068 [ 1DF89C499BF45D878B87EBD4421D462D ] USBAAPL C:\WINDOWS\system32\Drivers\usbaapl.sys
10:09:51.0718 3068 USBAAPL - ok
10:09:51.0750 3068 [ BFFD9F120CC63BCBAA3D840F3EEF9F79 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
10:09:51.0906 3068 usbccgp - ok
10:09:51.0937 3068 [ 15E993BA2F6946B2BFBBFCD30398621E ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
10:09:52.0062 3068 usbehci - ok
10:09:52.0078 3068 [ D31E07BF822C7F2BD32714E9DDCA8BE2 ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
10:09:52.0093 3068 usbhub - ok
10:09:52.0109 3068 [ 6CD7B22193718F1D17A47A1CD6D37E75 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
10:09:52.0265 3068 USBSTOR - ok
10:09:52.0265 3068 [ F8FD1400092E23C8F2F31406EF06167B ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
10:09:52.0406 3068 usbuhci - ok
10:09:52.0421 3068 [ 8A60EDD72B4EA5AEA8202DAF0E427925 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
10:09:52.0531 3068 VgaSave - ok
10:09:52.0531 3068 [ D92E7C8A30CFD14D8E15B5F7F032151B ] viaagp C:\WINDOWS\system32\DRIVERS\viaagp.sys
10:09:52.0625 3068 viaagp - ok
10:09:52.0656 3068 [ 59CB1338AD3654417BEA49636457F65D ] ViaIde C:\WINDOWS\system32\DRIVERS\viaide.sys
10:09:52.0750 3068 ViaIde - ok
10:09:52.0781 3068 [ D6888520FF56D72A50437E371CA25FC9 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
10:09:52.0875 3068 VolSnap - ok
10:09:52.0906 3068 [ 6635ECBF0D8090DC3A452D0D072B5D5B ] VSS C:\WINDOWS\System32\vssvc.exe
10:09:52.0984 3068 VSS - ok
10:09:53.0187 3068 [ 39AC581F5B57E3074E3E5CDAB9E7DFF1 ] w29n51 C:\WINDOWS\system32\DRIVERS\w29n51.sys
10:09:53.0359 3068 w29n51 - ok
10:09:53.0453 3068 [ C6D874CD2A5B83CD11CDEBD28A638584 ] W32Time C:\WINDOWS\system32\w32time.dll
10:09:53.0562 3068 W32Time - ok
10:09:53.0593 3068 [ 984EF0B9788ABF89974CFED4BFBAACBC ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
10:09:53.0765 3068 Wanarp - ok
10:09:53.0781 3068 WDICA - ok
10:09:53.0812 3068 [ 2797F33EBF50466020C430EE4F037933 ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
10:09:53.0984 3068 wdmaud - ok
10:09:54.0000 3068 [ 1EB51FEEA9D3208EAE60604F4346C02E ] WebClient C:\WINDOWS\System32\webclnt.dll
10:09:54.0109 3068 WebClient - ok
10:09:54.0187 3068 [ C3D9C524CD25E19D212CACBFB925EE1F ] winachsf C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys
10:09:54.0250 3068 winachsf - ok
10:09:54.0312 3068 [ DA2DADB42916E59C6E4BBA593BCCDA73 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
10:09:54.0421 3068 winmgmt - ok
10:09:54.0562 3068 [ 20263DAFD033D30F151BB87568386769 ] WmcCds c:\programme\windows media connect\mswmccds.exe
10:09:54.0625 3068 WmcCds ( UnsignedFile.Multi.Generic ) - warning
10:09:54.0625 3068 WmcCds - detected UnsignedFile.Multi.Generic (1)
10:09:54.0640 3068 [ 1DD015A69235DCFAE18B5F98FB50BE23 ] WmcCdsLs C:\Programme\Windows Media Connect\mswmcls.exe
10:09:54.0656 3068 WmcCdsLs ( UnsignedFile.Multi.Generic ) - warning
10:09:54.0656 3068 WmcCdsLs - detected UnsignedFile.Multi.Generic (1)
10:09:54.0765 3068 [ A477391B7A8B0A0DAABADB17CF533A4B ] WmdmPmSN C:\WINDOWS\system32\MsPMSNSv.dll
10:09:54.0812 3068 WmdmPmSN - ok
10:09:54.0890 3068 [ 9CBB06E4438D6A0D52A46E0B44796D37 ] Wmi C:\WINDOWS\System32\advapi32.dll
10:09:55.0062 3068 Wmi - ok
10:09:55.0093 3068 [ 042A78FCD1ADFB0FBA9865D55C6F5CC1 ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
10:09:55.0296 3068 WmiApSrv - ok
10:09:55.0359 3068 [ BD3561AAE748150CF51C2CA876449EA7 ] wscsvc C:\WINDOWS\system32\wscsvc.dll
10:09:55.0468 3068 wscsvc - ok
10:09:55.0500 3068 [ 1EDDD5C0ECF3FA6EDFD8A25B2B4E7DF6 ] wuauserv C:\WINDOWS\system32\wuauserv.dll
10:09:55.0609 3068 wuauserv - ok
10:09:55.0671 3068 [ AE83ADA96575DACF533C2BCB1FC163DC ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
10:09:55.0781 3068 WZCSVC - ok
10:09:55.0828 3068 [ 8302DE1C64618D72346DD0034DBC5D9B ] xmlprov C:\WINDOWS\System32\xmlprov.dll
10:09:55.0937 3068 xmlprov - ok
10:09:55.0937 3068 ================ Scan global ===============================
10:09:55.0968 3068 [ 1B91BAC6996731EE8925F58205DCB016 ] C:\WINDOWS\system32\basesrv.dll
10:09:56.0015 3068 [ 6D4006EF6E45030BCA14CBFE8893E9B9 ] C:\WINDOWS\system32\winsrv.dll
10:09:56.0046 3068 [ 6D4006EF6E45030BCA14CBFE8893E9B9 ] C:\WINDOWS\system32\winsrv.dll
10:09:56.0062 3068 [ EDB6B81761BD60F32F740BBC40AFB676 ] C:\WINDOWS\system32\services.exe
10:09:56.0062 3068 [Global] - ok
10:09:56.0078 3068 ================ Scan MBR ==================================
10:09:56.0093 3068 [ DA4FCE06B57A382A3B0002CAE2FA1FCF ] \Device\Harddisk0\DR0
10:09:56.0328 3068 \Device\Harddisk0\DR0 - ok
10:09:56.0328 3068 ================ Scan VBR ==================================
10:09:56.0328 3068 [ 614876AA73807A6A0C65C03337272666 ] \Device\Harddisk0\DR0\Partition1
10:09:56.0328 3068 \Device\Harddisk0\DR0\Partition1 - ok
10:09:56.0328 3068 ============================================================
10:09:56.0328 3068 Scan finished
10:09:56.0328 3068 ============================================================
10:09:56.0437 3060 Detected object count: 47
10:09:56.0437 3060 Actual detected object count: 47
10:10:08.0312 3060 AegisP ( UnsignedFile.Multi.Generic ) - skipped by user
10:10:08.0312 3060 AegisP ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:10:08.0328 3060 AntiVirSchedulerService ( UnsignedFile.Multi.Generic ) - skipped by user
10:10:08.0328 3060 AntiVirSchedulerService ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:10:08.0328 3060 AntiVirService ( UnsignedFile.Multi.Generic ) - skipped by user
10:10:08.0328 3060 AntiVirService ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:10:08.0328 3060 aspnet_state ( UnsignedFile.Multi.Generic ) - skipped by user
10:10:08.0328 3060 aspnet_state ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:10:08.0328 3060 drvmcdb ( UnsignedFile.Multi.Generic ) - skipped by user
10:10:08.0328 3060 drvmcdb ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:10:08.0343 3060 drvnddm ( UnsignedFile.Multi.Generic ) - skipped by user
10:10:08.0343 3060 drvnddm ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:10:08.0343 3060 EGATHDRV ( UnsignedFile.Multi.Generic ) - skipped by user
10:10:08.0343 3060 EGATHDRV ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:10:08.0343 3060 EvtEng ( UnsignedFile.Multi.Generic ) - skipped by user
10:10:08.0343 3060 EvtEng ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:10:08.0343 3060 IBM Rapid Restore Ultra Service ( UnsignedFile.Multi.Generic ) - skipped by user
10:10:08.0343 3060 IBM Rapid Restore Ultra Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:10:08.0359 3060 IBMFilter ( UnsignedFile.Multi.Generic ) - skipped by user
10:10:08.0359 3060 IBMFilter ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:10:08.0359 3060 IDriverT ( UnsignedFile.Multi.Generic ) - skipped by user
10:10:08.0359 3060 IDriverT ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:10:08.0359 3060 MACNDIS5 ( UnsignedFile.Multi.Generic ) - skipped by user
10:10:08.0359 3060 MACNDIS5 ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:10:08.0359 3060 MZCCntrl ( UnsignedFile.Multi.Generic ) - skipped by user
10:10:08.0375 3060 MZCCntrl ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:10:08.0375 3060 PCANDIS5 ( UnsignedFile.Multi.Generic ) - skipped by user
10:10:08.0375 3060 PCANDIS5 ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:10:08.0375 3060 PcdrNdisuio ( UnsignedFile.Multi.Generic ) - skipped by user
10:10:08.0375 3060 PcdrNdisuio ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:10:08.0375 3060 PMEM ( UnsignedFile.Multi.Generic ) - skipped by user
10:10:08.0375 3060 PMEM ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:10:08.0375 3060 psadd ( UnsignedFile.Multi.Generic ) - skipped by user
10:10:08.0375 3060 psadd ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:10:08.0390 3060 PxHelp20 ( UnsignedFile.Multi.Generic ) - skipped by user
10:10:08.0390 3060 PxHelp20 ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:10:08.0390 3060 RegSrvc ( UnsignedFile.Multi.Generic ) - skipped by user
10:10:08.0390 3060 RegSrvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:10:08.0390 3060 S24EventMonitor ( UnsignedFile.Multi.Generic ) - skipped by user
10:10:08.0390 3060 S24EventMonitor ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:10:08.0390 3060 s24trans ( UnsignedFile.Multi.Generic ) - skipped by user
10:10:08.0390 3060 s24trans ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:10:08.0406 3060 ShockMgr ( UnsignedFile.Multi.Generic ) - skipped by user
10:10:08.0406 3060 ShockMgr ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:10:08.0406 3060 Shockprf ( UnsignedFile.Multi.Generic ) - skipped by user
10:10:08.0406 3060 Shockprf ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:10:08.0406 3060 Smapint ( UnsignedFile.Multi.Generic ) - skipped by user
10:10:08.0406 3060 Smapint ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:10:08.0406 3060 SoundMAX Agent Service (default) ( UnsignedFile.Multi.Generic ) - skipped by user
10:10:08.0406 3060 SoundMAX Agent Service (default) ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:10:08.0406 3060 sscdbhk5 ( UnsignedFile.Multi.Generic ) - skipped by user
10:10:08.0421 3060 sscdbhk5 ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:10:08.0421 3060 ssrtln ( UnsignedFile.Multi.Generic ) - skipped by user
10:10:08.0421 3060 ssrtln ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:10:08.0421 3060 TDSMAPI ( UnsignedFile.Multi.Generic ) - skipped by user
10:10:08.0421 3060 TDSMAPI ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:10:08.0421 3060 tfsnboio ( UnsignedFile.Multi.Generic ) - skipped by user
10:10:08.0421 3060 tfsnboio ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:10:08.0421 3060 tfsncofs ( UnsignedFile.Multi.Generic ) - skipped by user
10:10:08.0421 3060 tfsncofs ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:10:08.0437 3060 tfsndrct ( UnsignedFile.Multi.Generic ) - skipped by user
10:10:08.0437 3060 tfsndrct ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:10:08.0437 3060 tfsndres ( UnsignedFile.Multi.Generic ) - skipped by user
10:10:08.0437 3060 tfsndres ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:10:08.0437 3060 tfsnifs ( UnsignedFile.Multi.Generic ) - skipped by user
10:10:08.0437 3060 tfsnifs ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:10:08.0437 3060 tfsnopio ( UnsignedFile.Multi.Generic ) - skipped by user
10:10:08.0437 3060 tfsnopio ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:10:08.0453 3060 tfsnpool ( UnsignedFile.Multi.Generic ) - skipped by user
10:10:08.0453 3060 tfsnpool ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:10:08.0453 3060 tfsnudf ( UnsignedFile.Multi.Generic ) - skipped by user
10:10:08.0453 3060 tfsnudf ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:10:08.0453 3060 tfsnudfa ( UnsignedFile.Multi.Generic ) - skipped by user
10:10:08.0453 3060 tfsnudfa ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:10:08.0453 3060 TNPacket ( UnsignedFile.Multi.Generic ) - skipped by user
10:10:08.0453 3060 TNPacket ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:10:08.0453 3060 TPDiskPM ( UnsignedFile.Multi.Generic ) - skipped by user
10:10:08.0453 3060 TPDiskPM ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:10:08.0468 3060 TPHDEXLGSVC ( UnsignedFile.Multi.Generic ) - skipped by user
10:10:08.0468 3060 TPHDEXLGSVC ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:10:08.0468 3060 TPHKDRV ( UnsignedFile.Multi.Generic ) - skipped by user
10:10:08.0468 3060 TPHKDRV ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:10:08.0468 3060 TPInput ( UnsignedFile.Multi.Generic ) - skipped by user
10:10:08.0468 3060 TPInput ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:10:08.0468 3060 TpKmpSVC ( UnsignedFile.Multi.Generic ) - skipped by user
10:10:08.0468 3060 TpKmpSVC ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:10:08.0484 3060 TSMAPIP ( UnsignedFile.Multi.Generic ) - skipped by user
10:10:08.0484 3060 TSMAPIP ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:10:08.0484 3060 TSMService ( UnsignedFile.Multi.Generic ) - skipped by user
10:10:08.0484 3060 TSMService ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:10:08.0484 3060 WmcCds ( UnsignedFile.Multi.Generic ) - skipped by user
10:10:08.0484 3060 WmcCds ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:10:08.0484 3060 WmcCdsLs ( UnsignedFile.Multi.Generic ) - skipped by user
10:10:08.0484 3060 WmcCdsLs ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:10:11.0671 1436 Deinitialize success
|
|
02.10.2012, 15:06
| #34 | |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Smart HDD Stecke fest nach Punkt 1 in Eurer Anleitung: Vorgehen beim Verschlüsselungs-Trojaner Dann bitte jetzt CF ausführen: ComboFix Ein Leitfaden und Tutorium zur Nutzung von ComboFix
Combofix darf ausschließlich ausgeführt werden, wenn ein Kompetenzler dies ausdrücklich empfohlen hat! Solltest du nach der Ausführung von Combofix Probleme beim Starten von Anwendungen haben und Meldungen erhalten wie Zitat:
__________________ Logfiles bitte immer in CODE-Tags posten  |
|
10.10.2012, 13:12
| #35 |
| | Smart HDD Stecke fest nach Punkt 1 in Eurer Anleitung: Vorgehen beim Verschlüsselungs-Trojaner Hallo, ich habe Deine Anweisungen so ausgeführt, wie es oben steht Auf meinem Bildschirm ist ein Fenster, in dem steht untereinander Fertiggestellt Stufe_1 bis Fertiggestellt Stufe_50 Lösche Dateien verschiedene Dateien stehen da Lösche Ordner C:/WINDOWS/system32/URTT emp Seitdem passiert nichts mehr (ca. 30 Minuten) und es öffnet sich auch nichts. Ist das normal? Da in der Anleitung steht, man solle auch nicht Maus und Tastatur benutzen, schreibe ich diese Nachricht von meiner Nachbarin aus. Die Shlashs sind eigentlich backslashs, aber ich finde diese Taste nicht, es ist ein Mac. Was soll ich nun tun? |
|
10.10.2012, 14:43
| #36 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Smart HDD Stecke fest nach Punkt 1 in Eurer Anleitung: Vorgehen beim Verschlüsselungs-Trojaner Starte Windows neu, lösch die alte combofix.exe, lade CF neu runter und probier es bitte nochmal.
__________________ --> Smart HDD Stecke fest nach Punkt 1 in Eurer Anleitung: Vorgehen beim Verschlüsselungs-Trojaner |
|
10.10.2012, 15:04
| #37 |
| | Smart HDD Stecke fest nach Punkt 1 in Eurer Anleitung: Vorgehen beim Verschlüsselungs-Trojaner Gleiches Ergebnis, unter Lösche Dateien standen zwar dieses Mal nur drei Dateien, aber das Ende ist wieder Lösche Ordner etc., dann passiert nichts mehr... Ich versuch es einfach nochmal... Wieder das gleiche Ergebnis... |
|
10.10.2012, 15:32
| #38 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Smart HDD Stecke fest nach Punkt 1 in Eurer Anleitung: Vorgehen beim Verschlüsselungs-Trojaner Letzter Versuch: combofix im abgesicherten Modus mit Netzwerktreibern
__________________ Logfiles bitte immer in CODE-Tags posten |
|
10.10.2012, 16:19
| #39 |
| | Smart HDD Stecke fest nach Punkt 1 in Eurer Anleitung: Vorgehen beim Verschlüsselungs-Trojaner Jetzt habe ich ein anderes Problem, im abgesicherten Modus sagt combofix, Avira Antivir wäre immer noch aktiv und ich soll das vorher deaktivieren, sonst.... Ich habe abgebrochen, bin auf start, systemsteuerung, sicherheitscenter, dann auf antivir destop,dann einen hacken in das feld Expertenmodus, dann auf allgemeines und und den hacken aus dem feld alle aktivieren raus, Änderungen übernommen. Anschließend habe ich combofix wieder gestartet, aber es hat wieder gemeint, der Scanner von Avira sei noch aktiv. Was mache ich denn zur Hölle da nur wieder falsch, ich kapier es einfach nicht, sorry, dass ich so gar nicht vorwärts komme... |
|
10.10.2012, 16:51
| #40 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Smart HDD Stecke fest nach Punkt 1 in Eurer Anleitung: Vorgehen beim Verschlüsselungs-Trojaner Das ist nur ein Bug, ignorier das
__________________ Logfiles bitte immer in CODE-Tags posten |
|
10.10.2012, 17:10
| #41 |
| | Smart HDD Stecke fest nach Punkt 1 in Eurer Anleitung: Vorgehen beim Verschlüsselungs-Trojaner ok, danke. Ich habs ignoriert. Das Ergebnis ist wieder das Gleiche, allerdings kam zwischen Fertiggestellt 6 und 6A die Meldung C...NIRCMD.exe ist keine zulässige WIN32 Anwendung. Dann machte er weiter bis zu dem Lösche Ordner, wie die letzten Male... |
|
10.10.2012, 20:35
| #42 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Smart HDD Stecke fest nach Punkt 1 in Eurer Anleitung: Vorgehen beim Verschlüsselungs-Trojaner Dann müssen wir CF sein lassen, läuft nicht immer Bitte nun Logs mit GMER und OSAM erstellen und posten. GMER stürzt häufiger ab, wenn das Tool auch beim 2. Mal nicht will, lass es einfach weg und führ nur OSAM aus - die Online-Abfrage durch OSAM bitte überspringen. Bei OSAM bitte darauf auch achten, dass Du das Log auch als *.log und nicht *.html oder so abspeicherst. Hinweis: Zum Entpacken von OSAM bitte WinRAR oder 7zip verwenden! Stell auch unbedingt den Virenscanner ab, besonders der Scanner von McAfee meldet oft einen Fehalarm in OSAM! Downloade dir bitte  aswMBR.exe und speichere die Datei auf deinem Desktop.
Wichtig: Drücke keinesfalls einen der Fix Buttons ohne Anweisung Hinweis: Sollte der Scan Button ausgeblendet sein, schließe das Tool und starte es erneut. Sollte der Scan abbrechen und das Programm abstürzen, dann teile mir das mit und wähle unter AV Scan die Einstellung (none). Noch ein Hinweis: Sollte aswMBR abstürzen und es kommt eine Meldung wie "aswMBR.exe funktioniert nicht mehr, dann mach Folgendes: Starte aswMBR neu, wähle unten links im Drop-Down-Menü (unten links im Fenster von aswMBR) bei "AV scan" (none) aus und klick nochmal auf den Scan-Button.
__________________ Logfiles bitte immer in CODE-Tags posten |
|
| Themen zu Smart HDD Stecke fest nach Punkt 1 in Eurer Anleitung: Vorgehen beim Verschlüsselungs-Trojaner |
| anleitung, anti-malware, compu, computer, dateien, entfernt, funde, gen, inter, interne, internet, laden, leitung, lenovo, löschen, malwarebytes, möglichkeit, national, nicht möglich, nichts, ntdll.dll, plug-in, punkt, quarantäne, scan, smart, starte, vollständige, vorgehen, weiterhelfen |
Linear-Darstellung
