| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Ucash VirusWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
27.10.2012, 15:07
| #1 |
| |  Ucash Virus Seit ca 3 Tagen macht mir ein Virus zu schaffen den ich mir durch ein Pop-up-Fenster zugezogen habe. Anfangs konnte ich den Computer noch problemlos starten jedoch wurde nach ca 5 sec der Bildschirm von einer Nachricht der "Österreichischen Behörden" blockiert in der ich beschuldigt wurde Kinderpornographie angesehen und illegale Kopien erstellt zu haben. Um den Schaden zu begleichen solle ich 100€ zahlen. Nach einem Tag lies sich der computer nichtmehr starten und zeigte einen Bluescreen nur um sich wieder neu zu starten. Im abgesichertem Modus habe ich das System auf ein früheres Datum zurückgesetzt, danach gelang es mir den Computer normal einzuschalten ohne dass das Display verdeckt wurde und ein Virusscan mit Avira hat einen Fund ergeben. Nachdem sich der Computer aber wieder nur alle 10 male einschalten lässt (immer dann erscheint ein ladevorgang der aus 3 kleineren Ladevorgängen besteht und der Computer kommt dann zur "Willkommen"-Anzeige) habe ich mir im Internet den "Trojan remover" heruntergeladen der zwar auch was fand aber den computer trotzdem nicht zum Hochfahren bringt. Ich würde gerne wissen was ich machen muss um den Virus vollständig entfernen und den Computer wieder normal benutzen zu können. System: Windows xp Ps: könnte schnell Hilfe gebrauchen, für den jetzigen Start benötigte der PC ca 30 Anläufe.. DANKE  Malwarebytes Anti-Malware 1.65.1.1000 www.malwarebytes.org Datenbank Version: v2012.10.27.05 Windows XP Service Pack 3 x86 NTFS Internet Explorer 8.0.6001.18702 test :: HOME [Administrator] 27.10.2012 17:01:22 mbam-log-2012-10-27 (17-01-22).txt Art des Suchlaufs: Quick-Scan Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM Deaktivierte Suchlaufeinstellungen: P2P Durchsuchte Objekte: 215757 Laufzeit: 29 Minute(n), 22 Sekunde(n) Infizierte Speicherprozesse: 0 (Keine bösartigen Objekte gefunden) Infizierte Speichermodule: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungsschlüssel: 7 HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{DAED9266-8C28-4C1C-8B58-5C66EFF1D302} (Search.Hijacker) -> Erfolgreich gelöscht und in Quarantäne gestellt. HKCR\videoPl.chl (Trojan.Zlob) -> Erfolgreich gelöscht und in Quarantäne gestellt. HKCU\SOFTWARE\F5JMWNZTHI (Trojan.FakeAlert) -> Erfolgreich gelöscht und in Quarantäne gestellt. HKCU\SOFTWARE\ROUA3O12PW (Trojan.FakeAlert) -> Erfolgreich gelöscht und in Quarantäne gestellt. HKCU\SOFTWARE\XML (Trojan.FakeAlert) -> Erfolgreich gelöscht und in Quarantäne gestellt. HKCU\SOFTWARE\Microsoft\Handle (Malware.Trace) -> Erfolgreich gelöscht und in Quarantäne gestellt. HKLM\System\CurrentControlSet\Services\SSHNAS (Trojan.Renos) -> Erfolgreich gelöscht und in Quarantäne gestellt. Infizierte Registrierungswerte: 2 HKCU\SOFTWARE\Microsoft\Internet Explorer\Extensions\CmdMapping\{9034A523-D068-4BE8-A284-9DF278BE776E} (Trojan.Zlob) -> Daten: -> Erfolgreich gelöscht und in Quarantäne gestellt. HKCU\SOFTWARE\Microsoft\Internet Explorer\Extensions\CmdMapping|{9034A523-D068-4BE8-A284-9DF278BE776E} (Trojan.Zlob) -> Daten: 8197 -> Erfolgreich gelöscht und in Quarantäne gestellt. Infizierte Dateiobjekte der Registrierung: 0 (Keine bösartigen Objekte gefunden) Infizierte Verzeichnisse: 1 C:\Dokumente und Einstellungen\test\Anwendungsdaten\hellomoto (Trojan.Ransom.FGen) -> Erfolgreich gelöscht und in Quarantäne gestellt. Infizierte Dateien: 3 C:\WINDOWS\Tasks\{66BA574B-1E11-49b8-909C-8CC9E0E8E015}.job (Trojan.Downloader) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Dokumente und Einstellungen\test\Anwendungsdaten\hellomoto\TujP.dat (Trojan.Ransom.FGen) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Dokumente und Einstellungen\test\Anwendungsdaten\hellomoto\BukF.dat (Trojan.Ransom.FGen) -> Erfolgreich gelöscht und in Quarantäne gestellt. (Ende) |
|
27.10.2012, 21:14
| #2 |
| /// Winkelfunktion /// TB-Süch-Tiger™   | Ucash Virus Gibt es noch weitere Logs von Malwarebytes? => http://www.trojaner-board.de/125889-...tml#post941520
__________________Bitte alles nach Möglichkeit hier in CODE-Tags posten. Wird so gemacht: [code] hier steht das Log [/code] Und das ganze sieht dann so aus: Code:
ATTFilter hier steht das Log
__________________ |
|
27.10.2012, 22:11
| #3 |
| | Logdatei nochmal Habe nur einen Durchlauf gestartet also ja.
__________________Hier nochmal die Logdatei: Code:
ATTFilter Malwarebytes Anti-Malware 1.65.1.1000 www.malwarebytes.org Datenbank Version: v2012.10.27.05 Windows XP Service Pack 3 x86 NTFS Internet Explorer 8.0.6001.18702 test :: HOME [Administrator] 27.10.2012 17:01:22 mbam-log-2012-10-27 (17-01-22).txt Art des Suchlaufs: Quick-Scan Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM Deaktivierte Suchlaufeinstellungen: P2P Durchsuchte Objekte: 215757 Laufzeit: 29 Minute(n), 22 Sekunde(n) Infizierte Speicherprozesse: 0 (Keine bösartigen Objekte gefunden) Infizierte Speichermodule: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungsschlüssel: 7 HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{DAED9266-8C28-4C1C-8B58-5C66EFF1D302} (Search.Hijacker) -> Erfolgreich gelöscht und in Quarantäne gestellt. HKCR\videoPl.chl (Trojan.Zlob) -> Erfolgreich gelöscht und in Quarantäne gestellt. HKCU\SOFTWARE\F5JMWNZTHI (Trojan.FakeAlert) -> Erfolgreich gelöscht und in Quarantäne gestellt. HKCU\SOFTWARE\ROUA3O12PW (Trojan.FakeAlert) -> Erfolgreich gelöscht und in Quarantäne gestellt. HKCU\SOFTWARE\XML (Trojan.FakeAlert) -> Erfolgreich gelöscht und in Quarantäne gestellt. HKCU\SOFTWARE\Microsoft\Handle (Malware.Trace) -> Erfolgreich gelöscht und in Quarantäne gestellt. HKLM\System\CurrentControlSet\Services\SSHNAS (Trojan.Renos) -> Erfolgreich gelöscht und in Quarantäne gestellt. Infizierte Registrierungswerte: 2 HKCU\SOFTWARE\Microsoft\Internet Explorer\Extensions\CmdMapping\{9034A523-D068-4BE8-A284-9DF278BE776E} (Trojan.Zlob) -> Daten: -> Erfolgreich gelöscht und in Quarantäne gestellt. HKCU\SOFTWARE\Microsoft\Internet Explorer\Extensions\CmdMapping|{9034A523-D068-4BE8-A284-9DF278BE776E} (Trojan.Zlob) -> Daten: 8197 -> Erfolgreich gelöscht und in Quarantäne gestellt. Infizierte Dateiobjekte der Registrierung: 0 (Keine bösartigen Objekte gefunden) Infizierte Verzeichnisse: 1 C:\Dokumente und Einstellungen\test\Anwendungsdaten\hellomoto (Trojan.Ransom.FGen) -> Erfolgreich gelöscht und in Quarantäne gestellt. Infizierte Dateien: 3 C:\WINDOWS\Tasks\{66BA574B-1E11-49b8-909C-8CC9E0E8E015}.job (Trojan.Downloader) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Dokumente und Einstellungen\test\Anwendungsdaten\hellomoto\TujP.dat (Trojan.Ransom.FGen) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Dokumente und Einstellungen\test\Anwendungsdaten\hellomoto\BukF.dat (Trojan.Ransom.FGen) -> Erfolgreich gelöscht und in Quarantäne gestellt. (Ende) Code:
ATTFilter Exportierte Ereignisse:
25.10.2012 21:45 [System Scanner] Malware gefunden
Die Datei 'C:\System Volume
Information\_restore{99CF484C-7A65-4C3B-9DE4-91451AB2CB0A}\RP621\A0191022.exe'
enthielt einen Virus oder unerwünschtes Programm 'TR/Rogue.kdv.769511' [trojan].
Durchgeführte Aktion(en):
Die Datei wurde ins Quarantäneverzeichnis unter dem Namen '536933a0.qua'
verschoben!
|
|
27.10.2012, 23:06
| #4 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Ucash Virus Wieso postest du das Log nochmal? Ich wollte weitere/andere Logs sehen, nicht nochmal dasselbe Bitte nun Logs mit GMER (<<< klick für Anleitung) und dem TDSS-Killer (Anleitung etwas weiter unten) erstellen und posten. GMER stürzt häufiger ab, wenn das Tool auch beim zweiten Mal nicht will, lass es einfach weg und führ nur TDSS-Killer aus. Kaspersky (TDSS-Killer) Anleitung und Downloadlink hier => http://www.trojaner-board.de/82358-t...entfernen.html Hinweis: Bitte den Virenscanner abstellen bevor du den TDSS-Killer ausführst, denn v.a. Avira meldet im TDSS-Tool oft einen Fehlalarm! Das Tool so einstellen wie unten im Bild angegeben - klick auf change parameters und setze die Haken wie im folgenden Screenshot abgebildet, Dann auf Start Scan klicken und wenn es durch ist auf den Button Report klicken um das Log anzuzeigen. Dieses bitte komplett posten. Wenn du das Log nicht findest oder den Inhalt kopieren und in dein Posting übertragen kannst, dann schau bitte direkt auf deiner Windows-Systempartition ( meistens Laufwerk C: ) nach, da speichert der TDSS-Killer seine Logs. Hinweis: Bitte nichts voreilig mit dem TDSS-Killer löschen! Falls Objekte vom TDSS-Killer bemängelt werden, alle mit der Aktion "skip" behandeln und hier nur das Log posten! 
__________________ Logfiles bitte immer in CODE-Tags posten |
|
28.10.2012, 11:28
| #5 |
| | Ucash Virus Gmer ist leider mittendrin abgestürzt (2mal), aber hier das logfile zu TDSS-Killer Code:
ATTFilter 11:22:53.0078 3164 TDSS rootkit removing tool 2.8.13.0 Oct 12 2012 17:26:47
11:22:53.0203 3164 ============================================================
11:22:53.0203 3164 Current date / time: 2012/10/28 11:22:53.0203
11:22:53.0203 3164 SystemInfo:
11:22:53.0203 3164
11:22:53.0203 3164 OS Version: 5.1.2600 ServicePack: 3.0
11:22:53.0203 3164 Product type: Workstation
11:22:53.0203 3164 ComputerName: HOME
11:22:53.0203 3164 UserName: test
11:22:53.0203 3164 Windows directory: C:\WINDOWS
11:22:53.0203 3164 System windows directory: C:\WINDOWS
11:22:53.0203 3164 Processor architecture: Intel x86
11:22:53.0203 3164 Number of processors: 1
11:22:53.0203 3164 Page size: 0x1000
11:22:53.0203 3164 Boot type: Normal boot
11:22:53.0203 3164 ============================================================
11:22:56.0156 3164 Drive \Device\Harddisk0\DR0 - Size: 0x1BF2976000 (111.79 Gb), SectorSize: 0x200, Cylinders: 0x3901, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
11:22:56.0156 3164 ============================================================
11:22:56.0156 3164 \Device\Harddisk0\DR0:
11:22:56.0156 3164 MBR partitions:
11:22:56.0156 3164 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0xDF8F8C1
11:22:56.0156 3164 ============================================================
11:22:56.0171 3164 C: <-> \Device\Harddisk0\DR0\Partition1
11:22:56.0171 3164 ============================================================
11:22:56.0171 3164 Initialize success
11:22:56.0171 3164 ============================================================
11:23:05.0328 2916 ============================================================
11:23:05.0328 2916 Scan started
11:23:05.0328 2916 Mode: Manual;
11:23:05.0328 2916 ============================================================
11:23:06.0093 2916 ================ Scan system memory ========================
11:23:06.0109 2916 System memory - ok
11:23:06.0109 2916 ================ Scan services =============================
11:23:06.0625 2916 Abiosdsk - ok
11:23:06.0656 2916 abp480n5 - ok
11:23:06.0812 2916 [ AC407F1A62C3A300B4F2B5A9F1D55B2C ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
11:23:06.0812 2916 ACPI - ok
11:23:06.0890 2916 [ 9E1CA3160DAFB159CA14F83B1E317F75 ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
11:23:06.0890 2916 ACPIEC - ok
11:23:06.0921 2916 adpu160m - ok
11:23:07.0031 2916 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys
11:23:07.0156 2916 aec - ok
11:23:07.0281 2916 [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD C:\WINDOWS\System32\drivers\afd.sys
11:23:07.0375 2916 AFD - ok
11:23:07.0453 2916 [ 08FD04AA961BDC77FB983F328334E3D7 ] agp440 C:\WINDOWS\system32\DRIVERS\agp440.sys
11:23:07.0515 2916 agp440 - ok
11:23:07.0531 2916 Aha154x - ok
11:23:07.0546 2916 aic78u2 - ok
11:23:07.0578 2916 aic78xx - ok
11:23:07.0656 2916 [ 738D80CC01D7BC7584BE917B7F544394 ] Alerter C:\WINDOWS\system32\alrsvc.dll
11:23:07.0687 2916 Alerter - ok
11:23:07.0750 2916 [ 190CD73D4984F94D823F9444980513E5 ] ALG C:\WINDOWS\System32\alg.exe
11:23:07.0750 2916 ALG - ok
11:23:07.0765 2916 AliIde - ok
11:23:07.0796 2916 amsint - ok
11:23:08.0031 2916 [ 466A0D95960DAD3222C896D2CEA99993 ] AntiVirSchedulerService C:\Programme\Avira\AntiVir Desktop\sched.exe
11:23:08.0093 2916 AntiVirSchedulerService - ok
11:23:08.0203 2916 [ A489BE6BB0AA1FF406B488B60542314B ] AntiVirService C:\Programme\Avira\AntiVir Desktop\avguard.exe
11:23:08.0218 2916 AntiVirService - ok
11:23:08.0250 2916 AppMgmt - ok
11:23:08.0328 2916 [ B5B8A80875C1DEDEDA8B02765642C32F ] Arp1394 C:\WINDOWS\system32\DRIVERS\arp1394.sys
11:23:08.0390 2916 Arp1394 - ok
11:23:08.0406 2916 asc - ok
11:23:08.0437 2916 asc3350p - ok
11:23:08.0453 2916 asc3550 - ok
11:23:08.0546 2916 [ B979979AB8027F7F53FB16EC4229B7DB ] Aspi32 C:\WINDOWS\system32\drivers\Aspi32.sys
11:23:08.0578 2916 Aspi32 - ok
11:23:10.0828 2916 [ 0E5E4957549056E2BF2C49F4F6B601AD ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
11:23:11.0125 2916 aspnet_state - ok
11:23:11.0156 2916 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
11:23:11.0187 2916 AsyncMac - ok
11:23:11.0265 2916 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
11:23:11.0265 2916 atapi - ok
11:23:11.0281 2916 Atdisk - ok
11:23:11.0343 2916 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
11:23:11.0921 2916 Atmarpc - ok
11:23:12.0406 2916 [ 58ED0D5452DF7BE732193E7999C6B9A4 ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
11:23:12.0859 2916 AudioSrv - ok
11:23:12.0921 2916 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
11:23:12.0984 2916 audstub - ok
11:23:13.0156 2916 [ D5541F0AFB767E85FC412FC609D96A74 ] avgntflt C:\WINDOWS\system32\DRIVERS\avgntflt.sys
11:23:13.0281 2916 avgntflt - ok
11:23:13.0437 2916 [ 7D967A682D4694DF7FA57D63A2DB01FE ] avipbb C:\WINDOWS\system32\DRIVERS\avipbb.sys
11:23:13.0671 2916 avipbb - ok
11:23:13.0796 2916 [ 271CFD1A989209B1964E24D969552BF7 ] avkmgr C:\WINDOWS\system32\DRIVERS\avkmgr.sys
11:23:13.0859 2916 avkmgr - ok
11:23:13.0953 2916 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
11:23:14.0000 2916 Beep - ok
11:23:14.0203 2916 [ D6F603772A789BB3228F310D650B8BD1 ] BITS C:\WINDOWS\system32\qmgr.dll
11:23:14.0421 2916 BITS - ok
11:23:14.0500 2916 [ B71549F23736ADF83A571061C47777FD ] Browser C:\WINDOWS\System32\browser.dll
11:23:14.0765 2916 Browser - ok
11:23:14.0859 2916 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
11:23:14.0921 2916 cbidf2k - ok
11:23:14.0953 2916 [ 0BE5AEF125BE881C4F854C554F2B025C ] CCDECODE C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
11:23:15.0031 2916 CCDECODE - ok
11:23:15.0046 2916 cd20xrnt - ok
11:23:15.0078 2916 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
11:23:15.0156 2916 Cdaudio - ok
11:23:15.0234 2916 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
11:23:15.0390 2916 Cdfs - ok
11:23:15.0453 2916 [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
11:23:15.0484 2916 Cdrom - ok
11:23:15.0500 2916 Changer - ok
11:23:15.0562 2916 [ 28E3040D1F1CA2008CD6B29DFEBC9A5E ] cisvc C:\WINDOWS\System32\cisvc.exe
11:23:15.0578 2916 cisvc - ok
11:23:15.0656 2916 [ 778A30ED3C134EB7E406AFC407E9997D ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
11:23:15.0828 2916 ClipSrv - ok
11:23:15.0906 2916 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
11:23:16.0171 2916 clr_optimization_v2.0.50727_32 - ok
11:23:16.0203 2916 CmdIde - ok
11:23:16.0375 2916 [ 9120C9CAAC11A6149B6B1EB1598733B6 ] cmpci C:\WINDOWS\system32\drivers\cmaudio.sys
11:23:16.0750 2916 cmpci - ok
11:23:16.0796 2916 COMSysApp - ok
11:23:16.0859 2916 Cpqarray - ok
11:23:16.0937 2916 [ 611F824E5C703A5A899F84C5F1699E4D ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
11:23:17.0031 2916 CryptSvc - ok
11:23:17.0046 2916 Scan interrupted by user!
11:23:17.0046 2916 ================ Scan global ===============================
11:23:17.0046 2916 Scan interrupted by user!
11:23:17.0046 2916 ================ Scan MBR ==================================
11:23:17.0078 2916 Scan interrupted by user!
11:23:17.0078 2916 ================ Scan VBR ==================================
11:23:17.0078 2916 Scan interrupted by user!
11:23:17.0078 2916 ============================================================
11:23:17.0078 2916 Scan finished
11:23:17.0078 2916 ============================================================
11:23:17.0109 0380 Detected object count: 0
11:23:17.0109 0380 Actual detected object count: 0
11:23:46.0156 3508 ============================================================
11:23:46.0156 3508 Scan started
11:23:46.0156 3508 Mode: Manual;
11:23:46.0156 3508 ============================================================
11:23:46.0312 3508 ================ Scan services =============================
11:23:46.0625 3508 Abiosdsk - ok
11:23:46.0640 3508 abp480n5 - ok
11:23:46.0796 3508 [ AC407F1A62C3A300B4F2B5A9F1D55B2C ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
11:23:46.0812 3508 ACPI - ok
11:23:46.0859 3508 [ 9E1CA3160DAFB159CA14F83B1E317F75 ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
11:23:46.0859 3508 ACPIEC - ok
11:23:46.0859 3508 adpu160m - ok
11:23:46.0937 3508 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys
11:23:46.0937 3508 aec - ok
11:23:47.0031 3508 [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD C:\WINDOWS\System32\drivers\afd.sys
11:23:47.0031 3508 AFD - ok
11:23:47.0093 3508 [ 08FD04AA961BDC77FB983F328334E3D7 ] agp440 C:\WINDOWS\system32\DRIVERS\agp440.sys
11:23:47.0093 3508 agp440 - ok
11:23:47.0109 3508 Aha154x - ok
11:23:47.0109 3508 aic78u2 - ok
11:23:47.0125 3508 aic78xx - ok
11:23:47.0187 3508 [ 738D80CC01D7BC7584BE917B7F544394 ] Alerter C:\WINDOWS\system32\alrsvc.dll
11:23:47.0187 3508 Alerter - ok
11:23:47.0218 3508 [ 190CD73D4984F94D823F9444980513E5 ] ALG C:\WINDOWS\System32\alg.exe
11:23:47.0234 3508 ALG - ok
11:23:47.0234 3508 AliIde - ok
11:23:47.0250 3508 amsint - ok
11:23:47.0406 3508 [ 466A0D95960DAD3222C896D2CEA99993 ] AntiVirSchedulerService C:\Programme\Avira\AntiVir Desktop\sched.exe
11:23:47.0406 3508 AntiVirSchedulerService - ok
11:23:47.0500 3508 [ A489BE6BB0AA1FF406B488B60542314B ] AntiVirService C:\Programme\Avira\AntiVir Desktop\avguard.exe
11:23:47.0500 3508 AntiVirService - ok
11:23:47.0515 3508 AppMgmt - ok
11:23:47.0546 3508 [ B5B8A80875C1DEDEDA8B02765642C32F ] Arp1394 C:\WINDOWS\system32\DRIVERS\arp1394.sys
11:23:47.0562 3508 Arp1394 - ok
11:23:47.0562 3508 asc - ok
11:23:47.0578 3508 asc3350p - ok
11:23:47.0593 3508 asc3550 - ok
11:23:47.0656 3508 [ B979979AB8027F7F53FB16EC4229B7DB ] Aspi32 C:\WINDOWS\system32\drivers\Aspi32.sys
11:23:47.0656 3508 Aspi32 - ok
11:23:47.0828 3508 [ 0E5E4957549056E2BF2C49F4F6B601AD ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
11:23:47.0843 3508 aspnet_state - ok
11:23:47.0859 3508 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
11:23:47.0859 3508 AsyncMac - ok
11:23:47.0921 3508 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
11:23:47.0921 3508 atapi - ok
11:23:47.0937 3508 Atdisk - ok
11:23:47.0968 3508 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
11:23:47.0968 3508 Atmarpc - ok
11:23:48.0046 3508 [ 58ED0D5452DF7BE732193E7999C6B9A4 ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
11:23:48.0046 3508 AudioSrv - ok
11:23:48.0093 3508 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
11:23:48.0093 3508 audstub - ok
11:23:48.0171 3508 [ D5541F0AFB767E85FC412FC609D96A74 ] avgntflt C:\WINDOWS\system32\DRIVERS\avgntflt.sys
11:23:48.0171 3508 avgntflt - ok
11:23:48.0234 3508 [ 7D967A682D4694DF7FA57D63A2DB01FE ] avipbb C:\WINDOWS\system32\DRIVERS\avipbb.sys
11:23:48.0234 3508 avipbb - ok
11:23:48.0265 3508 [ 271CFD1A989209B1964E24D969552BF7 ] avkmgr C:\WINDOWS\system32\DRIVERS\avkmgr.sys
11:23:48.0265 3508 avkmgr - ok
11:23:48.0328 3508 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
11:23:48.0328 3508 Beep - ok
11:23:48.0468 3508 [ D6F603772A789BB3228F310D650B8BD1 ] BITS C:\WINDOWS\system32\qmgr.dll
11:23:48.0484 3508 BITS - ok
11:23:48.0546 3508 [ B71549F23736ADF83A571061C47777FD ] Browser C:\WINDOWS\System32\browser.dll
11:23:48.0546 3508 Browser - ok
11:23:48.0593 3508 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
11:23:48.0593 3508 cbidf2k - ok
11:23:48.0640 3508 [ 0BE5AEF125BE881C4F854C554F2B025C ] CCDECODE C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
11:23:48.0640 3508 CCDECODE - ok
11:23:48.0656 3508 cd20xrnt - ok
11:23:48.0671 3508 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
11:23:48.0671 3508 Cdaudio - ok
11:23:48.0703 3508 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
11:23:48.0718 3508 Cdfs - ok
11:23:48.0765 3508 [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
11:23:48.0765 3508 Cdrom - ok
11:23:48.0765 3508 Changer - ok
11:23:48.0828 3508 [ 28E3040D1F1CA2008CD6B29DFEBC9A5E ] cisvc C:\WINDOWS\System32\cisvc.exe
11:23:48.0828 3508 cisvc - ok
11:23:48.0859 3508 [ 778A30ED3C134EB7E406AFC407E9997D ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
11:23:48.0859 3508 ClipSrv - ok
11:23:48.0921 3508 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
11:23:48.0937 3508 clr_optimization_v2.0.50727_32 - ok
11:23:48.0937 3508 CmdIde - ok
11:23:49.0109 3508 [ 9120C9CAAC11A6149B6B1EB1598733B6 ] cmpci C:\WINDOWS\system32\drivers\cmaudio.sys
11:23:49.0109 3508 cmpci - ok
11:23:49.0125 3508 COMSysApp - ok
11:23:49.0140 3508 Cpqarray - ok
11:23:49.0203 3508 [ 611F824E5C703A5A899F84C5F1699E4D ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
11:23:49.0218 3508 CryptSvc - ok
11:23:49.0218 3508 dac2w2k - ok
11:23:49.0234 3508 dac960nt - ok
11:23:49.0390 3508 [ 3127AFBF2C1ED0AB14A1BBB7AAECB85B ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
11:23:49.0406 3508 DcomLaunch - ok
11:23:49.0468 3508 [ C29A1C9B75BA38FA37F8C44405DEC360 ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
11:23:49.0484 3508 Dhcp - ok
11:23:49.0500 3508 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
11:23:49.0578 3508 Disk - ok
11:23:49.0593 3508 dmadmin - ok
11:23:49.0890 3508 [ 0DCFC8395A99FECBB1EF771CEC7FE4EA ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
11:23:50.0171 3508 dmboot - ok
11:23:50.0234 3508 [ 53720AB12B48719D00E327DA470A619A ] dmio C:\WINDOWS\system32\drivers\dmio.sys
11:23:50.0296 3508 dmio - ok
11:23:50.0328 3508 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
11:23:50.0343 3508 dmload - ok
11:23:50.0406 3508 [ 25C83FFBBA13B554EB6D59A9B2E2EE78 ] dmserver C:\WINDOWS\System32\dmserver.dll
11:23:50.0421 3508 dmserver - ok
11:23:50.0468 3508 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
11:23:50.0484 3508 DMusic - ok
11:23:50.0578 3508 [ 407F3227AC618FD1CA54B335B083DE07 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
11:23:50.0593 3508 Dnscache - ok
11:23:50.0718 3508 [ 676E36C4FF5BCEA1900F44182B9723E6 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
11:23:50.0796 3508 Dot3svc - ok
11:23:50.0812 3508 dpti2o - ok
11:23:50.0843 3508 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
11:23:50.0859 3508 drmkaud - ok
11:23:50.0875 3508 EagleNT - ok
11:23:50.0921 3508 [ 4E4F2FDDAB0A0736D7671134DCCE91FB ] EapHost C:\WINDOWS\System32\eapsvc.dll
11:23:50.0953 3508 EapHost - ok
11:23:51.0015 3508 [ 877C18558D70587AA7823A1A308AC96B ] ERSvc C:\WINDOWS\System32\ersvc.dll
11:23:51.0031 3508 ERSvc - ok
11:23:51.0125 3508 [ A3EDBE9053889FB24AB22492472B39DC ] Eventlog C:\WINDOWS\system32\services.exe
11:23:51.0171 3508 Eventlog - ok
11:23:51.0312 3508 [ AF4F6B5739D18CA7972AB53E091CBC74 ] EventSystem C:\WINDOWS\System32\es.dll
11:23:51.0406 3508 EventSystem - ok
11:23:51.0484 3508 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
11:23:51.0531 3508 Fastfat - ok
11:23:51.0640 3508 [ 2DB7D303C36DDD055215052F118E8E75 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
11:23:51.0703 3508 FastUserSwitchingCompatibility - ok
11:23:51.0750 3508 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\DRIVERS\fdc.sys
11:23:51.0765 3508 Fdc - ok
11:23:51.0796 3508 [ B0678A548587C5F1967B0D70BACAD6C1 ] Fips C:\WINDOWS\system32\drivers\Fips.sys
11:23:51.0828 3508 Fips - ok
11:23:51.0859 3508 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\DRIVERS\flpydisk.sys
11:23:51.0875 3508 Flpydisk - ok
11:23:51.0968 3508 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
11:23:52.0015 3508 FltMgr - ok
11:23:52.0140 3508 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
11:23:52.0187 3508 FontCache3.0.0.0 - ok
11:23:52.0218 3508 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
11:23:52.0218 3508 Fs_Rec - ok
11:23:52.0281 3508 [ 8F1955CE42E1484714B542F341647778 ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
11:23:52.0343 3508 Ftdisk - ok
11:23:52.0359 3508 [ 065639773D8B03F33577F6CDAEA21063 ] gameenum C:\WINDOWS\system32\DRIVERS\gameenum.sys
11:23:52.0375 3508 gameenum - ok
11:23:52.0406 3508 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
11:23:52.0421 3508 Gpc - ok
11:23:52.0593 3508 [ 7B92BBAE5574F0774D57DF1F3EFE88A9 ] ham50 C:\WINDOWS\system32\DRIVERS\CTXH51.sys
11:23:52.0781 3508 ham50 - ok
11:23:52.0875 3508 [ CB66BF85BF599BEFD6C6A57C2E20357F ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
11:23:52.0890 3508 helpsvc - ok
11:23:52.0968 3508 [ B35DA85E60C0103F2E4104532DA2F12B ] HidServ C:\WINDOWS\System32\hidserv.dll
11:23:52.0984 3508 HidServ - ok
11:23:53.0000 3508 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] HidUsb C:\WINDOWS\system32\DRIVERS\hidusb.sys
11:23:53.0015 3508 HidUsb - ok
11:23:53.0093 3508 [ ED29F14101523A6E0E808107405D452C ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
11:23:53.0156 3508 hkmsvc - ok
11:23:53.0171 3508 hpn - ok
11:23:53.0187 3508 hpt3xx - ok
11:23:53.0328 3508 [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
11:23:53.0343 3508 HTTP - ok
11:23:53.0406 3508 [ 9E4ADB854CEBCFB81A4B36718FEECD16 ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
11:23:53.0406 3508 HTTPFilter - ok
11:23:53.0421 3508 i2omgmt - ok
11:23:53.0453 3508 i2omp - ok
11:23:53.0484 3508 [ E283B97CFBEB86C1D86BAED5F7846A92 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
11:23:53.0500 3508 i8042prt - ok
11:23:53.0875 3508 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
11:23:54.0187 3508 idsvc - ok
11:23:54.0234 3508 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
11:23:54.0250 3508 Imapi - ok
11:23:54.0312 3508 [ D4B413AA210C21E46AEDD2BA5B68D38E ] ImapiService C:\WINDOWS\System32\imapi.exe
11:23:54.0359 3508 ImapiService - ok
11:23:54.0390 3508 ini910u - ok
11:23:54.0421 3508 [ 69C4E3C9E67A1F103B94E14FDD5F3213 ] IntelIde C:\WINDOWS\system32\DRIVERS\intelide.sys
11:23:54.0453 3508 IntelIde - ok
11:23:54.0531 3508 [ 3BB22519A194418D5FEC05D800A19AD0 ] ip6fw C:\WINDOWS\system32\drivers\ip6fw.sys
11:23:54.0546 3508 ip6fw - ok
11:23:54.0593 3508 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
11:23:54.0609 3508 IpFilterDriver - ok
11:23:54.0640 3508 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
11:23:54.0656 3508 IpInIp - ok
11:23:54.0750 3508 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
11:23:54.0765 3508 IpNat - ok
11:23:54.0828 3508 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
11:23:54.0859 3508 IPSec - ok
11:23:54.0890 3508 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
11:23:54.0906 3508 IRENUM - ok
11:23:54.0953 3508 [ 6DFB88F64135C525433E87648BDA30DE ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
11:23:54.0984 3508 isapnp - ok
11:23:55.0156 3508 [ 1834C96FB1F9280BCF6DDFA6DE8338BF ] JavaQuickStarterService C:\Programme\Java\jre6\bin\jqs.exe
11:23:55.0234 3508 JavaQuickStarterService - ok
11:23:55.0281 3508 [ 1704D8C4C8807B889E43C649B478A452 ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
11:23:55.0296 3508 Kbdclass - ok
11:23:55.0359 3508 [ B6D6C117D771C98130497265F26D1882 ] kbdhid C:\WINDOWS\system32\DRIVERS\kbdhid.sys
11:23:55.0375 3508 kbdhid - ok
11:23:55.0453 3508 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
11:23:55.0531 3508 kmixer - ok
11:23:55.0593 3508 [ 72C55C745D804D62162144EBFD6390B8 ] KMWDFilter C:\WINDOWS\System32\Drivers\KMWDFilter.SYS
11:23:55.0609 3508 KMWDFilter - ok
11:23:55.0734 3508 [ 0000A08BED0D9DCAB5DD619602C19B98 ] KMWDSERVICE C:\Programme\Keyboard & Mouse Driver\KMWDSrv.exe
11:23:55.0828 3508 KMWDSERVICE - ok
11:23:55.0875 3508 [ B467646C54CC746128904E1654C750C1 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
11:23:55.0921 3508 KSecDD - ok
11:23:55.0984 3508 [ 2BBDCB79900990F0716DFCB714E72DE7 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
11:23:56.0046 3508 lanmanserver - ok
11:23:56.0140 3508 [ 1869B14B06B44B44AF70548E1EA3303F ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
11:23:56.0203 3508 lanmanworkstation - ok
11:23:56.0218 3508 lbrtfdc - ok
11:23:56.0281 3508 [ 636714B7D43C8D0C80449123FD266920 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
11:23:56.0281 3508 LmHosts - ok
11:23:57.0000 3508 [ FB548FF809634BFA866312B37D8A18AE ] LVcKap C:\WINDOWS\system32\DRIVERS\LVcKap.sys
11:23:57.0734 3508 LVcKap - ok
11:23:57.0843 3508 [ 14E4CC4D46169759D874F57604EA6BE5 ] LVCOMSer C:\Programme\Gemeinsame Dateien\LogiShrd\LVCOMSER\LVComSer.exe
11:23:57.0843 3508 LVCOMSer - ok
11:23:58.0718 3508 [ FE3FB994F8702D9E37648927819B74B8 ] LVMVDrv C:\WINDOWS\system32\DRIVERS\LVMVDrv.sys
11:23:59.0625 3508 LVMVDrv - ok
11:23:59.0687 3508 [ C7EA51F1AB10B0B2B443F4D5589FC1A5 ] LVPr2Mon C:\WINDOWS\system32\DRIVERS\LVPr2Mon.sys
11:23:59.0718 3508 LVPr2Mon - ok
11:23:59.0796 3508 [ B2D04E813BA12AB179DAF0B9FDECBA3D ] LVPrcSrv C:\Programme\Gemeinsame Dateien\LogiShrd\LVMVFM\LVPrcSrv.exe
11:23:59.0875 3508 LVPrcSrv - ok
11:23:59.0984 3508 [ 87ECCE893D8AEC5A9337B917742D339C ] LVRS C:\WINDOWS\system32\DRIVERS\lvrs.sys
11:24:00.0109 3508 LVRS - ok
11:24:00.0156 3508 [ A7A2EF5000007CA361DA1E2B99DF8C57 ] LVSrvLauncher C:\Programme\Gemeinsame Dateien\LogiShrd\SrvLnch\SrvLnch.exe
11:24:00.0234 3508 LVSrvLauncher - ok
11:24:00.0312 3508 [ CAEF4C05BA2C1ACAD4EBCAA4261CD55D ] LVUSBSta C:\WINDOWS\system32\drivers\LVUSBSta.sys
11:24:00.0359 3508 LVUSBSta - ok
11:24:00.0406 3508 [ B7550A7107281D170CE85524B1488C98 ] Messenger C:\WINDOWS\System32\msgsvc.dll
11:24:00.0453 3508 Messenger - ok
11:24:00.0562 3508 [ D0D2D2BD6F20D4244D10ED5E9B426560 ] MMRTKRNL C:\WINDOWS\system32\drivers\mmrtkrnl.sys
11:24:00.0718 3508 MMRTKRNL - ok
11:24:00.0781 3508 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
11:24:00.0781 3508 mnmdd - ok
11:24:00.0859 3508 [ C2F1D365FD96791B037EE504868065D3 ] mnmsrvc C:\WINDOWS\System32\mnmsrvc.exe
11:24:00.0906 3508 mnmsrvc - ok
11:24:00.0984 3508 [ 6FB74EBD4EC57A6F1781DE3852CC3362 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
11:24:00.0984 3508 Modem - ok
11:24:01.0000 3508 [ B24CE8005DEAB254C0251E15CB71D802 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
11:24:01.0015 3508 Mouclass - ok
11:24:01.0062 3508 [ 66A6F73C74E1791464160A7065CE711A ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys
11:24:01.0078 3508 mouhid - ok
11:24:01.0093 3508 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
11:24:01.0125 3508 MountMgr - ok
11:24:01.0203 3508 [ 8BE15F71DE6FF33FC56DCDE7B2B9EFE8 ] MozillaMaintenance C:\Programme\Mozilla Maintenance Service\maintenanceservice.exe
11:24:01.0328 3508 MozillaMaintenance - ok
11:24:01.0375 3508 mraid35x - ok
11:24:01.0468 3508 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
11:24:01.0562 3508 MRxDAV - ok
11:24:01.0796 3508 [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
11:24:02.0093 3508 MRxSmb - ok
11:24:02.0125 3508 [ 35A031AF38C55F92D28AA03EE9F12CC9 ] MSDTC C:\WINDOWS\System32\msdtc.exe
11:24:02.0140 3508 MSDTC - ok
11:24:02.0171 3508 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
11:24:02.0187 3508 Msfs - ok
11:24:02.0203 3508 MSIServer - ok
11:24:02.0234 3508 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
11:24:02.0250 3508 MSKSSRV - ok
11:24:02.0265 3508 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
11:24:02.0281 3508 MSPCLOCK - ok
11:24:02.0296 3508 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
11:24:02.0312 3508 MSPQM - ok
11:24:02.0328 3508 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
11:24:02.0328 3508 mssmbios - ok
11:24:02.0343 3508 [ E53736A9E30C45FA9E7B5EAC55056D1D ] MSTEE C:\WINDOWS\system32\drivers\MSTEE.sys
11:24:02.0359 3508 MSTEE - ok
11:24:02.0406 3508 [ CA3E22598F411199ADC2DFEE76CD0AE0 ] ms_mpu401 C:\WINDOWS\system32\drivers\msmpu401.sys
11:24:02.0406 3508 ms_mpu401 - ok
11:24:02.0484 3508 [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
11:24:02.0531 3508 Mup - ok
11:24:02.0578 3508 [ 5B50F1B2A2ED47D560577B221DA734DB ] NABTSFEC C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
11:24:02.0625 3508 NABTSFEC - ok
11:24:02.0750 3508 [ 46BB15AE2AC7D025D6D2567B876817BD ] napagent C:\WINDOWS\System32\qagentrt.dll
11:24:03.0281 3508 napagent - ok
11:24:03.0375 3508 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
11:24:03.0484 3508 NDIS - ok
11:24:03.0515 3508 [ 7FF1F1FD8609C149AA432F95A8163D97 ] NdisIP C:\WINDOWS\system32\DRIVERS\NdisIP.sys
11:24:03.0515 3508 NdisIP - ok
11:24:03.0578 3508 [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
11:24:03.0578 3508 NdisTapi - ok
11:24:03.0703 3508 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
11:24:03.0859 3508 Ndisuio - ok
11:24:03.0906 3508 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
11:24:03.0953 3508 NdisWan - ok
11:24:04.0015 3508 [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
11:24:04.0031 3508 NDProxy - ok
11:24:04.0062 3508 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
11:24:04.0078 3508 NetBIOS - ok
11:24:04.0156 3508 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
11:24:04.0531 3508 NetBT - ok
11:24:04.0609 3508 [ 8ACE4251BFFD09CE75679FE940E996CC ] NetDDE C:\WINDOWS\system32\netdde.exe
11:24:04.0734 3508 NetDDE - ok
11:24:04.0781 3508 [ 8ACE4251BFFD09CE75679FE940E996CC ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
11:24:04.0781 3508 NetDDEdsdm - ok
11:24:04.0812 3508 [ AFB8261B56CBA0D86AEB6DF682AF9785 ] Netlogon C:\WINDOWS\System32\lsass.exe
11:24:04.0843 3508 Netlogon - ok
11:24:04.0953 3508 [ E6D88F1F6745BF00B57E7855A2AB696C ] Netman C:\WINDOWS\System32\netman.dll
11:24:05.0000 3508 Netman - ok
11:24:05.0078 3508 [ D34612C5D02D026535B3095D620626AE ] NetTcpPortSharing c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
11:24:05.0140 3508 NetTcpPortSharing - ok
11:24:05.0171 3508 [ E9E47CFB2D461FA0FC75B7A74C6383EA ] NIC1394 C:\WINDOWS\system32\DRIVERS\nic1394.sys
11:24:05.0171 3508 NIC1394 - ok
11:24:05.0312 3508 [ F1B67B6B0751AE0E6E964B02821206A3 ] Nla C:\WINDOWS\System32\mswsock.dll
11:24:05.0312 3508 Nla - ok
11:24:05.0343 3508 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
11:24:05.0375 3508 Npfs - ok
11:24:05.0562 3508 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
11:24:06.0203 3508 Ntfs - ok
11:24:06.0218 3508 [ AFB8261B56CBA0D86AEB6DF682AF9785 ] NtLmSsp C:\WINDOWS\System32\lsass.exe
11:24:06.0218 3508 NtLmSsp - ok
11:24:06.0406 3508 [ 56AF4064996FA5BAC9C449B1514B4770 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
11:24:06.0609 3508 NtmsSvc - ok
11:24:06.0640 3508 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
11:24:06.0656 3508 Null - ok
11:24:08.0312 3508 [ BA1B732C1A70CFEA0C1B64F2850BF44F ] nv C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
11:24:09.0656 3508 nv - ok
11:24:09.0734 3508 [ 0FEBE37DB6650FAA5965C00545009D1D ] NVSvc C:\WINDOWS\system32\nvsvc32.exe
11:24:09.0796 3508 NVSvc - ok
11:24:09.0828 3508 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
11:24:09.0843 3508 NwlnkFlt - ok
11:24:09.0859 3508 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
11:24:09.0890 3508 NwlnkFwd - ok
11:24:09.0953 3508 [ CA33832DF41AFB202EE7AEB05145922F ] ohci1394 C:\WINDOWS\system32\DRIVERS\ohci1394.sys
11:24:09.0968 3508 ohci1394 - ok
11:24:10.0046 3508 [ 7A56CF3E3F12E8AF599963B16F50FB6A ] ose C:\Programme\Gemeinsame Dateien\Microsoft Shared\Source Engine\OSE.EXE
11:24:10.0093 3508 ose - ok
11:24:10.0140 3508 [ F84785660305B9B903FB3BCA8BA29837 ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
11:24:10.0187 3508 Parport - ok
11:24:10.0203 3508 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
11:24:10.0218 3508 PartMgr - ok
11:24:10.0265 3508 [ C2BF987829099A3EAA2CA6A0A90ECB4F ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
11:24:10.0265 3508 ParVdm - ok
11:24:10.0296 3508 [ 387E8DEDC343AA2D1EFBC30580273ACD ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
11:24:10.0343 3508 PCI - ok
11:24:10.0343 3508 PCIDump - ok
11:24:10.0359 3508 PCIIde - ok
11:24:10.0421 3508 [ A2A966B77D61847D61A3051DF87C8C97 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
11:24:10.0484 3508 Pcmcia - ok
11:24:10.0484 3508 PDCOMP - ok
11:24:10.0515 3508 PDFRAME - ok
11:24:10.0531 3508 PDRELI - ok
11:24:10.0531 3508 PDRFRAME - ok
11:24:10.0562 3508 [ B20F958B207E6AAAC5F70D04DD2C30D8 ] pepifilter C:\WINDOWS\system32\DRIVERS\lv302af.sys
11:24:10.0593 3508 pepifilter - ok
11:24:10.0609 3508 perc2 - ok
11:24:10.0609 3508 perc2hib - ok
11:24:10.0671 3508 [ 957B82EC80AD7EAD64E5E47DF6B0DC40 ] pfc C:\WINDOWS\system32\drivers\pfc.sys
11:24:10.0687 3508 pfc - ok
11:24:11.0843 3508 [ DD184D9ADFE2A8A21741DBDFE9E22F5C ] PID_PEPI C:\WINDOWS\system32\DRIVERS\LV302V32.SYS
11:24:12.0906 3508 PID_PEPI - ok
11:24:12.0953 3508 [ A3EDBE9053889FB24AB22492472B39DC ] PlugPlay C:\WINDOWS\system32\services.exe
11:24:12.0953 3508 PlugPlay - ok
11:24:12.0968 3508 [ AFB8261B56CBA0D86AEB6DF682AF9785 ] PolicyAgent C:\WINDOWS\System32\lsass.exe
11:24:12.0984 3508 PolicyAgent - ok
11:24:13.0000 3508 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
11:24:13.0046 3508 PptpMiniport - ok
11:24:13.0062 3508 [ AFB8261B56CBA0D86AEB6DF682AF9785 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
11:24:13.0062 3508 ProtectedStorage - ok
11:24:13.0093 3508 [ 09298EC810B07E5D582CB3A3F9255424 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
11:24:13.0140 3508 PSched - ok
11:24:13.0171 3508 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
11:24:13.0171 3508 Ptilink - ok
11:24:13.0234 3508 [ E42E3433DBB4CFFE8FDD91EAB29AEA8E ] PxHelp20 C:\WINDOWS\system32\Drivers\PxHelp20.sys
11:24:13.0250 3508 PxHelp20 - ok
11:24:13.0265 3508 ql1080 - ok
11:24:13.0281 3508 Ql10wnt - ok
11:24:13.0281 3508 ql12160 - ok
11:24:13.0296 3508 ql1240 - ok
11:24:13.0312 3508 ql1280 - ok
11:24:13.0328 3508 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
11:24:13.0343 3508 RasAcd - ok
11:24:13.0421 3508 [ F5BA6CACCDB66C8F048E867563203246 ] RasAuto C:\WINDOWS\System32\rasauto.dll
11:24:13.0453 3508 RasAuto - ok
11:24:13.0500 3508 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
11:24:13.0515 3508 Rasl2tp - ok
11:24:13.0625 3508 [ F9A7B66EA345726EDB5862A46B1ECCD5 ] RasMan C:\WINDOWS\System32\rasmans.dll
11:24:13.0703 3508 RasMan - ok
11:24:13.0718 3508 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
11:24:13.0750 3508 RasPppoe - ok
11:24:13.0765 3508 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
11:24:13.0781 3508 Raspti - ok
11:24:13.0859 3508 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
11:24:13.0921 3508 Rdbss - ok
11:24:13.0937 3508 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
11:24:13.0953 3508 RDPCDD - ok
11:24:14.0046 3508 [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
11:24:14.0093 3508 RDPWD - ok
11:24:14.0156 3508 [ 263AF18AF0F3DB99F574C95F284CCEC9 ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
11:24:14.0218 3508 RDSessMgr - ok
11:24:14.0250 3508 [ ED761D453856F795A7FE056E42C36365 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
11:24:14.0281 3508 redbook - ok
11:24:14.0328 3508 [ 0E97EC96D6942CEEC2D188CC2EB69A01 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
11:24:14.0359 3508 RemoteAccess - ok
11:24:14.0406 3508 [ 2A02E21867497DF20B8FC95631395169 ] RpcLocator C:\WINDOWS\System32\locator.exe
11:24:14.0437 3508 RpcLocator - ok
11:24:14.0578 3508 [ 3127AFBF2C1ED0AB14A1BBB7AAECB85B ] RpcSs C:\WINDOWS\system32\rpcss.dll
11:24:14.0578 3508 RpcSs - ok
11:24:14.0656 3508 [ 4BDD71B4B521521499DFD14735C4F398 ] RSVP C:\WINDOWS\System32\rsvp.exe
11:24:14.0734 3508 RSVP - ok
11:24:14.0765 3508 [ D507C1400284176573224903819FFDA3 ] rtl8139 C:\WINDOWS\system32\DRIVERS\RTL8139.SYS
11:24:14.0781 3508 rtl8139 - ok
11:24:14.0828 3508 [ AFB8261B56CBA0D86AEB6DF682AF9785 ] SamSs C:\WINDOWS\system32\lsass.exe
11:24:14.0843 3508 SamSs - ok
11:24:14.0890 3508 [ DCEC079FAD95D36C8DD5CB6D779DFE32 ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
11:24:14.0953 3508 SCardSvr - ok
11:24:15.0046 3508 [ A050194A44D7FA8D7186ED2F4E8367AE ] Schedule C:\WINDOWS\system32\schedsvc.dll
11:24:15.0140 3508 Schedule - ok
11:24:15.0187 3508 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
11:24:15.0203 3508 Secdrv - ok
11:24:15.0234 3508 [ BEE4CFD1D48C23B44CF4B974B0B79B2B ] seclogon C:\WINDOWS\System32\seclogon.dll
11:24:15.0265 3508 seclogon - ok
11:24:15.0296 3508 [ 2AAC9B6ED9EDDFFB721D6452E34D67E3 ] SENS C:\WINDOWS\system32\sens.dll
11:24:15.0296 3508 SENS - ok
11:24:15.0328 3508 [ 0F29512CCD6BEAD730039FB4BD2C85CE ] serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
11:24:15.0343 3508 serenum - ok
11:24:15.0390 3508 [ CF24EB4F0412C82BCD1F4F35A025E31D ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
11:24:15.0421 3508 Serial - ok
11:24:15.0484 3508 [ 0F066EE7A67CBFD8EDABC4DE408221E0 ] SerialKeys C:\WINDOWS\system32\skeys.exe
11:24:15.0546 3508 SerialKeys - ok
11:24:16.0093 3508 [ 3EC8DE67B1C78C31E54C0F030E6BD7D5 ] ServiceLayer C:\Programme\PC Connectivity Solution\ServiceLayer.exe
11:24:16.0468 3508 ServiceLayer - ok
11:24:16.0500 3508 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
11:24:16.0515 3508 Sfloppy - ok
11:24:16.0656 3508 [ CAD058D5F8B889A87CA3EB3CF624DCEF ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
11:24:16.0703 3508 SharedAccess - ok
11:24:16.0781 3508 [ 2DB7D303C36DDD055215052F118E8E75 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
11:24:16.0781 3508 ShellHWDetection - ok
11:24:16.0781 3508 Simbad - ok
11:24:16.0921 3508 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Programme\Skype\Updater\Updater.exe
11:24:17.0296 3508 SkypeUpdate - ok
11:24:17.0328 3508 [ 866D538EBE33709A5C9F5C62B73B7D14 ] SLIP C:\WINDOWS\system32\DRIVERS\SLIP.sys
11:24:17.0343 3508 SLIP - ok
11:24:17.0359 3508 Sparrow - ok
11:24:17.0375 3508 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
11:24:17.0406 3508 splitter - ok
11:24:17.0468 3508 [ 60784F891563FB1B767F70117FC2428F ] Spooler C:\WINDOWS\system32\spoolsv.exe
11:24:17.0500 3508 Spooler - ok
11:24:17.0546 3508 [ 50FA898F8C032796D3B1B9951BB5A90F ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
11:24:17.0578 3508 sr - ok
11:24:17.0671 3508 [ FE77A85495065F3AD59C5C65B6C54182 ] srservice C:\WINDOWS\System32\srsvc.dll
11:24:17.0750 3508 srservice - ok
11:24:17.0890 3508 [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
11:24:18.0031 3508 Srv - ok
11:24:18.0062 3508 [ 4DF5B05DFAEC29E13E1ED6F6EE12C500 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
11:24:18.0078 3508 SSDPSRV - ok
11:24:18.0140 3508 [ A36EE93698802CD899F98BFD553D8185 ] ssmdrv C:\WINDOWS\system32\DRIVERS\ssmdrv.sys
11:24:18.0156 3508 ssmdrv - ok
11:24:18.0218 3508 [ 306521935042FC0A6988D528643619B3 ] StarOpen C:\WINDOWS\system32\drivers\StarOpen.sys
11:24:18.0218 3508 StarOpen - ok
11:24:18.0265 3508 [ E4EBF293D1F612BDA19B646C36715B20 ] STEC3 C:\WINDOWS\system32\STEC3.sys
11:24:18.0281 3508 STEC3 - ok
11:24:18.0421 3508 [ BC2C5985611C5356B24AEB370953DED9 ] stisvc C:\WINDOWS\system32\wiaservc.dll
11:24:18.0546 3508 stisvc - ok
11:24:18.0593 3508 [ 77813007BA6265C4B6098187E6ED79D2 ] streamip C:\WINDOWS\system32\DRIVERS\StreamIP.sys
11:24:18.0593 3508 streamip - ok
11:24:18.0625 3508 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
11:24:18.0625 3508 swenum - ok
11:24:18.0671 3508 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
11:24:18.0703 3508 swmidi - ok
11:24:18.0703 3508 SwPrv - ok
11:24:18.0718 3508 symc810 - ok
11:24:18.0734 3508 symc8xx - ok
11:24:18.0750 3508 sym_hi - ok
11:24:18.0750 3508 sym_u3 - ok
11:24:18.0812 3508 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
11:24:18.0828 3508 sysaudio - ok
11:24:18.0906 3508 [ 2903FFFA2523926D6219428040DCE6B9 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
11:24:18.0953 3508 SysmonLog - ok
11:24:19.0046 3508 [ 05903CAC4B98908D55EA5774775B382E ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
11:24:19.0093 3508 TapiSrv - ok
11:24:19.0250 3508 [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
11:24:19.0375 3508 Tcpip - ok
11:24:19.0406 3508 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
11:24:19.0421 3508 TDPIPE - ok
11:24:19.0453 3508 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
11:24:19.0468 3508 TDTCP - ok
11:24:19.0500 3508 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
11:24:19.0546 3508 TermDD - ok
11:24:19.0656 3508 [ B7DE02C863D8F5A005A7BF375375A6A4 ] TermService C:\WINDOWS\System32\termsrv.dll
11:24:19.0781 3508 TermService - ok
11:24:19.0843 3508 [ 2DB7D303C36DDD055215052F118E8E75 ] Themes C:\WINDOWS\System32\shsvcs.dll
11:24:19.0859 3508 Themes - ok
11:24:19.0859 3508 TosIde - ok
11:24:19.0921 3508 [ 626504572B175867F30F3215C04B3E2F ] TrkWks C:\WINDOWS\system32\trkwks.dll
11:24:19.0953 3508 TrkWks - ok
11:24:20.0000 3508 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
11:24:20.0031 3508 Udfs - ok
11:24:20.0046 3508 ultra - ok
11:24:20.0203 3508 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
11:24:20.0375 3508 Update - ok
11:24:20.0453 3508 [ 1DFD8975D8C89214B98D9387C1125B49 ] upnphost C:\WINDOWS\System32\upnphost.dll
11:24:20.0531 3508 upnphost - ok
11:24:20.0546 3508 upperdev - ok
11:24:20.0562 3508 [ 9B11E6118958E63E1FEF129466E2BDA7 ] UPS C:\WINDOWS\System32\ups.exe
11:24:20.0593 3508 UPS - ok
11:24:20.0656 3508 [ E919708DB44ED8543A7C017953148330 ] usbaudio C:\WINDOWS\system32\drivers\usbaudio.sys
11:24:20.0750 3508 usbaudio - ok
11:24:21.0312 3508 [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
11:24:21.0359 3508 usbccgp - ok
11:24:21.0562 3508 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
11:24:21.0843 3508 usbhub - ok
11:24:22.0031 3508 [ A717C8721046828520C9EDF31288FC00 ] usbprint C:\WINDOWS\system32\DRIVERS\usbprint.sys
11:24:22.0078 3508 usbprint - ok
11:24:22.0546 3508 [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
11:24:22.0562 3508 usbscan - ok
11:24:23.0031 3508 [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
11:24:23.0078 3508 USBSTOR - ok
11:24:23.0250 3508 [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
11:24:23.0312 3508 usbuhci - ok
11:24:23.0734 3508 [ 94D73B62E458FB56C9CE60AA96D914F9 ] VClone C:\WINDOWS\system32\DRIVERS\VClone.sys
11:24:23.0796 3508 VClone - ok
11:24:24.0046 3508 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
11:24:24.0109 3508 VgaSave - ok
11:24:24.0125 3508 ViaIde - ok
11:24:24.0453 3508 [ A5A712F4E880874A477AF790B5186E1D ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
11:24:24.0484 3508 VolSnap - ok
11:24:25.0015 3508 [ 68F106273BE29E7B7EF8266977268E78 ] VSS C:\WINDOWS\System32\vssvc.exe
11:24:25.0234 3508 VSS - ok
11:24:25.0640 3508 [ 7B353059E665F8B7AD2BBEAEF597CF45 ] W32Time C:\WINDOWS\System32\w32time.dll
11:24:25.0875 3508 W32Time - ok
11:24:25.0953 3508 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
11:24:25.0984 3508 Wanarp - ok
11:24:26.0484 3508 [ BBCFEAB7E871CDDAC2D397EE7FA91FDC ] Wdf01000 C:\WINDOWS\system32\Drivers\wdf01000.sys
11:24:26.0781 3508 Wdf01000 - ok
11:24:26.0781 3508 WDICA - ok
11:24:26.0890 3508 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
11:24:26.0890 3508 wdmaud - ok
11:24:27.0109 3508 [ 81727C9873E3905A2FFC1EBD07265002 ] WebClient C:\WINDOWS\System32\webclnt.dll
11:24:27.0171 3508 WebClient - ok
11:24:28.0390 3508 [ 6F3F3973D97714CC5F906A19FE883729 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
11:24:28.0515 3508 winmgmt - ok
11:24:28.0812 3508 [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN C:\WINDOWS\system32\MsPMSNSv.dll
11:24:28.0875 3508 WmdmPmSN - ok
11:24:28.0968 3508 [ 93908111BA57A6E60EC2FA2DE202105C ] WmiApSrv C:\WINDOWS\System32\wbem\wmiapsrv.exe
11:24:29.0109 3508 WmiApSrv - ok
11:24:31.0390 3508 [ BF05650BB7DF5E9EBDD25974E22403BB ] WMPNetworkSvc C:\Programme\Windows Media Player\WMPNetwk.exe
11:24:32.0046 3508 WMPNetworkSvc - ok
11:24:32.0593 3508 [ CF4DEF1BF66F06964DC0D91844239104 ] WpdUsb C:\WINDOWS\system32\DRIVERS\wpdusb.sys
11:24:32.0609 3508 WpdUsb - ok
11:24:33.0093 3508 [ 300B3E84FAF1A5C1F791C159BA28035D ] wscsvc C:\WINDOWS\system32\wscsvc.dll
11:24:33.0171 3508 wscsvc - ok
11:24:33.0312 3508 [ C98B39829C2BBD34E454150633C62C78 ] WSTCODEC C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
11:24:33.0312 3508 WSTCODEC - ok
11:24:33.0546 3508 [ 7B4FE05202AA6BF9F4DFD0E6A0D8A085 ] wuauserv C:\WINDOWS\system32\wuauserv.dll
11:24:33.0640 3508 wuauserv - ok
11:24:34.0296 3508 [ 50EB9E21963B4F06FD010D007D54351B ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
11:24:34.0296 3508 WudfPf - ok
11:24:34.0453 3508 [ 6E209664BDEA8A15B5E8E480D6C607C2 ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
11:24:34.0453 3508 WudfRd - ok
11:24:34.0609 3508 [ AE93084D2D236887BA56467AE42B4955 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
11:24:34.0781 3508 WudfSvc - ok
11:24:35.0546 3508 [ C4F109C005F6725162D2D12CA751E4A7 ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
11:24:35.0843 3508 WZCSVC - ok
11:24:36.0437 3508 [ 0ADA34871A2E1CD2CAAFED1237A47750 ] xmlprov C:\WINDOWS\System32\xmlprov.dll
11:24:37.0046 3508 xmlprov - ok
11:24:37.0062 3508 ================ Scan global ===============================
11:24:37.0656 3508 [ 2C60091CA5F67C3032EAB3B30390C27F ] C:\WINDOWS\system32\basesrv.dll
11:24:38.0875 3508 [ A28CE25B59C90E12743001A1F2AE3613 ] C:\WINDOWS\system32\winsrv.dll
11:24:40.0515 3508 [ A28CE25B59C90E12743001A1F2AE3613 ] C:\WINDOWS\system32\winsrv.dll
11:24:41.0203 3508 [ A3EDBE9053889FB24AB22492472B39DC ] C:\WINDOWS\system32\services.exe
11:24:41.0203 3508 [Global] - ok
11:24:41.0281 3508 ================ Scan MBR ==================================
11:24:41.0609 3508 [ 72B8CE41AF0DE751C946802B3ED844B4 ] \Device\Harddisk0\DR0
11:24:46.0781 3508 \Device\Harddisk0\DR0 - ok
11:24:46.0796 3508 ================ Scan VBR ==================================
11:24:46.0812 3508 [ 857D9C0BF8A489DC65D5671E22834D10 ] \Device\Harddisk0\DR0\Partition1
11:24:46.0812 3508 \Device\Harddisk0\DR0\Partition1 - ok
11:24:46.0812 3508 ============================================================
11:24:46.0812 3508 Scan finished
11:24:46.0812 3508 ============================================================
11:24:46.0843 0148 Detected object count: 0
11:24:46.0843 0148 Actual detected object count: 0
11:24:47.0421 0968 ============================================================
11:24:47.0421 0968 Scan started
11:24:47.0421 0968 Mode: Manual;
11:24:47.0437 0968 ============================================================
11:24:49.0781 0968 ================ Scan services =============================
11:24:49.0781 0968 Scan interrupted by user!
11:24:49.0781 0968 ================ Scan global ===============================
11:24:49.0781 0968 Scan interrupted by user!
11:24:49.0781 0968 ================ Scan MBR ==================================
11:24:49.0781 0968 Scan interrupted by user!
11:24:49.0781 0968 ================ Scan VBR ==================================
11:24:49.0781 0968 Scan interrupted by user!
11:24:49.0781 0968 ============================================================
11:24:49.0781 0968 Scan finished
11:24:49.0781 0968 ============================================================
11:24:49.0812 0124 Detected object count: 0
11:24:49.0812 0124 Actual detected object count: 0
11:25:03.0421 1816 ============================================================
11:25:03.0421 1816 Scan started
11:25:03.0421 1816 Mode: Manual; SigCheck; TDLFS;
11:25:03.0421 1816 ============================================================
11:25:03.0531 1816 ================ Scan system memory ========================
11:25:03.0531 1816 System memory - ok
11:25:03.0546 1816 ================ Scan services =============================
11:25:03.0875 1816 Abiosdsk - ok
11:25:03.0890 1816 abp480n5 - ok
11:25:04.0000 1816 [ AC407F1A62C3A300B4F2B5A9F1D55B2C ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
11:25:04.0718 1816 ACPI - ok
11:25:04.0765 1816 [ 9E1CA3160DAFB159CA14F83B1E317F75 ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
11:25:04.0984 1816 ACPIEC - ok
11:25:05.0000 1816 adpu160m - ok
11:25:05.0078 1816 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys
11:25:05.0312 1816 aec - ok
11:25:05.0421 1816 [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD C:\WINDOWS\System32\drivers\afd.sys
11:25:05.0515 1816 AFD - ok
11:25:05.0578 1816 [ 08FD04AA961BDC77FB983F328334E3D7 ] agp440 C:\WINDOWS\system32\DRIVERS\agp440.sys
11:25:05.0812 1816 agp440 - ok
11:25:05.0828 1816 Aha154x - ok
11:25:05.0843 1816 aic78u2 - ok
11:25:05.0859 1816 aic78xx - ok
11:25:05.0921 1816 [ 738D80CC01D7BC7584BE917B7F544394 ] Alerter C:\WINDOWS\system32\alrsvc.dll
11:25:06.0187 1816 Alerter - ok
11:25:06.0234 1816 [ 190CD73D4984F94D823F9444980513E5 ] ALG C:\WINDOWS\System32\alg.exe
11:25:06.0343 1816 ALG - ok
11:25:06.0359 1816 AliIde - ok
11:25:06.0375 1816 amsint - ok
11:25:06.0531 1816 [ 466A0D95960DAD3222C896D2CEA99993 ] AntiVirSchedulerService C:\Programme\Avira\AntiVir Desktop\sched.exe
11:25:06.0562 1816 AntiVirSchedulerService - ok
11:25:06.0656 1816 [ A489BE6BB0AA1FF406B488B60542314B ] AntiVirService C:\Programme\Avira\AntiVir Desktop\avguard.exe
11:25:06.0671 1816 AntiVirService - ok
11:25:06.0703 1816 AppMgmt - ok
11:25:06.0765 1816 [ B5B8A80875C1DEDEDA8B02765642C32F ] Arp1394 C:\WINDOWS\system32\DRIVERS\arp1394.sys
11:25:06.0984 1816 Arp1394 - ok
11:25:07.0000 1816 asc - ok
11:25:07.0031 1816 asc3350p - ok
11:25:07.0046 1816 asc3550 - ok
11:25:07.0125 1816 [ B979979AB8027F7F53FB16EC4229B7DB ] Aspi32 C:\WINDOWS\system32\drivers\Aspi32.sys
11:25:07.0140 1816 Aspi32 ( UnsignedFile.Multi.Generic ) - warning
11:25:07.0140 1816 Aspi32 - detected UnsignedFile.Multi.Generic (1)
11:25:07.0312 1816 [ 0E5E4957549056E2BF2C49F4F6B601AD ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
11:25:07.0343 1816 aspnet_state - ok
11:25:07.0390 1816 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
11:25:07.0640 1816 AsyncMac - ok
11:25:07.0687 1816 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
11:25:07.0984 1816 atapi - ok
11:25:07.0984 1816 Atdisk - ok
11:25:08.0062 1816 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
11:25:08.0296 1816 Atmarpc - ok
11:25:08.0359 1816 [ 58ED0D5452DF7BE732193E7999C6B9A4 ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
11:25:08.0625 1816 AudioSrv - ok
11:25:08.0656 1816 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
11:25:08.0875 1816 audstub - ok
11:25:08.0968 1816 [ D5541F0AFB767E85FC412FC609D96A74 ] avgntflt C:\WINDOWS\system32\DRIVERS\avgntflt.sys
11:25:09.0093 1816 avgntflt - ok
11:25:09.0203 1816 [ 7D967A682D4694DF7FA57D63A2DB01FE ] avipbb C:\WINDOWS\system32\DRIVERS\avipbb.sys
11:25:09.0218 1816 avipbb - ok
11:25:09.0250 1816 [ 271CFD1A989209B1964E24D969552BF7 ] avkmgr C:\WINDOWS\system32\DRIVERS\avkmgr.sys
11:25:09.0281 1816 avkmgr - ok
11:25:09.0343 1816 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
11:25:09.0593 1816 Beep - ok
11:25:09.0781 1816 [ D6F603772A789BB3228F310D650B8BD1 ] BITS C:\WINDOWS\system32\qmgr.dll
11:25:10.0140 1816 BITS - ok
11:25:10.0203 1816 [ B71549F23736ADF83A571061C47777FD ] Browser C:\WINDOWS\System32\browser.dll
11:25:10.0281 1816 Browser - ok
11:25:10.0328 1816 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
11:25:10.0593 1816 cbidf2k - ok
11:25:10.0609 1816 [ 0BE5AEF125BE881C4F854C554F2B025C ] CCDECODE C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
11:25:10.0875 1816 CCDECODE - ok
11:25:10.0875 1816 cd20xrnt - ok
11:25:10.0906 1816 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
11:25:11.0171 1816 Cdaudio - ok
11:25:11.0234 1816 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
11:25:11.0484 1816 Cdfs - ok
11:25:11.0515 1816 [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
11:25:11.0781 1816 Cdrom - ok
11:25:11.0796 1816 Changer - ok
11:25:11.0843 1816 [ 28E3040D1F1CA2008CD6B29DFEBC9A5E ] cisvc C:\WINDOWS\System32\cisvc.exe
11:25:12.0093 1816 cisvc - ok
11:25:12.0125 1816 [ 778A30ED3C134EB7E406AFC407E9997D ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
11:25:12.0406 1816 ClipSrv - ok
11:25:12.0468 1816 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
11:25:12.0500 1816 clr_optimization_v2.0.50727_32 - ok
11:25:12.0515 1816 CmdIde - ok
11:25:12.0671 1816 [ 9120C9CAAC11A6149B6B1EB1598733B6 ] cmpci C:\WINDOWS\system32\drivers\cmaudio.sys
11:25:12.0828 1816 cmpci - ok
11:25:12.0843 1816 COMSysApp - ok
11:25:12.0875 1816 Cpqarray - ok
11:25:12.0953 1816 [ 611F824E5C703A5A899F84C5F1699E4D ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
11:25:13.0203 1816 CryptSvc - ok
11:25:13.0218 1816 dac2w2k - ok
11:25:13.0234 1816 dac960nt - ok
11:25:13.0390 1816 [ 3127AFBF2C1ED0AB14A1BBB7AAECB85B ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
11:25:13.0562 1816 DcomLaunch - ok
11:25:13.0640 1816 [ C29A1C9B75BA38FA37F8C44405DEC360 ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
11:25:13.0890 1816 Dhcp - ok
11:25:13.0953 1816 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
11:25:14.0218 1816 Disk - ok
11:25:14.0234 1816 dmadmin - ok
11:25:14.0515 1816 [ 0DCFC8395A99FECBB1EF771CEC7FE4EA ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
11:25:14.0890 1816 dmboot - ok
11:25:14.0953 1816 [ 53720AB12B48719D00E327DA470A619A ] dmio C:\WINDOWS\system32\drivers\dmio.sys
11:25:15.0250 1816 dmio - ok
11:25:15.0281 1816 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
11:25:15.0515 1816 dmload - ok
11:25:15.0578 1816 [ 25C83FFBBA13B554EB6D59A9B2E2EE78 ] dmserver C:\WINDOWS\System32\dmserver.dll
11:25:15.0843 1816 dmserver - ok
11:25:15.0890 1816 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
11:25:16.0171 1816 DMusic - ok
11:25:16.0234 1816 [ 407F3227AC618FD1CA54B335B083DE07 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
11:25:16.0359 1816 Dnscache - ok
11:25:16.0437 1816 [ 676E36C4FF5BCEA1900F44182B9723E6 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
11:25:16.0687 1816 Dot3svc - ok
11:25:16.0703 1816 dpti2o - ok
11:25:16.0734 1816 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
11:25:16.0984 1816 drmkaud - ok
11:25:17.0000 1816 EagleNT - ok
11:25:17.0062 1816 [ 4E4F2FDDAB0A0736D7671134DCCE91FB ] EapHost C:\WINDOWS\System32\eapsvc.dll
11:25:17.0312 1816 EapHost - ok
11:25:17.0390 1816 [ 877C18558D70587AA7823A1A308AC96B ] ERSvc C:\WINDOWS\System32\ersvc.dll
11:25:17.0640 1816 ERSvc - ok
11:25:17.0734 1816 [ A3EDBE9053889FB24AB22492472B39DC ] Eventlog C:\WINDOWS\system32\services.exe
11:25:17.0781 1816 Eventlog - ok
11:25:18.0250 1816 [ AF4F6B5739D18CA7972AB53E091CBC74 ] EventSystem C:\WINDOWS\System32\es.dll
11:25:18.0312 1816 EventSystem - ok
11:25:18.0406 1816 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
11:25:18.0625 1816 Fastfat - ok
11:25:18.0718 1816 [ 2DB7D303C36DDD055215052F118E8E75 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
11:25:18.0812 1816 FastUserSwitchingCompatibility - ok
11:25:18.0875 1816 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\DRIVERS\fdc.sys
11:25:19.0156 1816 Fdc - ok
11:25:19.0203 1816 [ B0678A548587C5F1967B0D70BACAD6C1 ] Fips C:\WINDOWS\system32\drivers\Fips.sys
11:25:19.0468 1816 Fips - ok
11:25:19.0500 1816 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\DRIVERS\flpydisk.sys
11:25:19.0765 1816 Flpydisk - ok
11:25:19.0859 1816 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
11:25:20.0125 1816 FltMgr - ok
11:25:20.0234 1816 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
11:25:20.0265 1816 FontCache3.0.0.0 - ok
11:25:20.0281 1816 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
11:25:20.0546 1816 Fs_Rec - ok
11:25:20.0593 1816 [ 8F1955CE42E1484714B542F341647778 ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
11:25:20.0812 1816 Ftdisk - ok
11:25:20.0828 1816 [ 065639773D8B03F33577F6CDAEA21063 ] gameenum C:\WINDOWS\system32\DRIVERS\gameenum.sys
11:25:21.0109 1816 gameenum - ok
11:25:21.0140 1816 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
11:25:21.0406 1816 Gpc - ok
11:25:21.0562 1816 [ 7B92BBAE5574F0774D57DF1F3EFE88A9 ] ham50 C:\WINDOWS\system32\DRIVERS\CTXH51.sys
11:25:21.0703 1816 ham50 - ok
11:25:21.0812 1816 [ CB66BF85BF599BEFD6C6A57C2E20357F ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
11:25:22.0078 1816 helpsvc - ok
11:25:22.0125 1816 [ B35DA85E60C0103F2E4104532DA2F12B ] HidServ C:\WINDOWS\System32\hidserv.dll
11:25:22.0359 1816 HidServ - ok
11:25:22.0390 1816 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] HidUsb C:\WINDOWS\system32\DRIVERS\hidusb.sys
11:25:22.0625 1816 HidUsb - ok
11:25:22.0703 1816 [ ED29F14101523A6E0E808107405D452C ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
11:25:22.0953 1816 hkmsvc - ok
11:25:22.0968 1816 hpn - ok
11:25:22.0984 1816 hpt3xx - ok
11:25:23.0140 1816 [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
11:25:23.0218 1816 HTTP - ok
11:25:23.0265 1816 [ 9E4ADB854CEBCFB81A4B36718FEECD16 ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
11:25:23.0500 1816 HTTPFilter - ok
11:25:23.0515 1816 i2omgmt - ok
11:25:23.0531 1816 i2omp - ok
11:25:23.0578 1816 [ E283B97CFBEB86C1D86BAED5F7846A92 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
11:25:23.0812 1816 i8042prt - ok
11:25:24.0187 1816 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
11:25:24.0453 1816 idsvc - ok
11:25:24.0484 1816 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
11:25:24.0750 1816 Imapi - ok
11:25:24.0843 1816 [ D4B413AA210C21E46AEDD2BA5B68D38E ] ImapiService C:\WINDOWS\System32\imapi.exe
11:25:25.0078 1816 ImapiService - ok
11:25:25.0109 1816 ini910u - ok
11:25:25.0156 1816 [ 69C4E3C9E67A1F103B94E14FDD5F3213 ] IntelIde C:\WINDOWS\system32\DRIVERS\intelide.sys
11:25:25.0390 1816 IntelIde - ok
11:25:25.0437 1816 [ 3BB22519A194418D5FEC05D800A19AD0 ] ip6fw C:\WINDOWS\system32\drivers\ip6fw.sys
11:25:25.0703 1816 ip6fw - ok
11:25:25.0734 1816 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
11:25:25.0968 1816 IpFilterDriver - ok
11:25:26.0000 1816 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
11:25:26.0250 1816 IpInIp - ok
11:25:26.0328 1816 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
11:25:26.0546 1816 IpNat - ok
11:25:26.0593 1816 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
11:25:26.0843 1816 IPSec - ok
11:25:26.0875 1816 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
11:25:26.0968 1816 IRENUM - ok
11:25:27.0031 1816 [ 6DFB88F64135C525433E87648BDA30DE ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
11:25:27.0296 1816 isapnp - ok
11:25:27.0468 1816 [ 1834C96FB1F9280BCF6DDFA6DE8338BF ] JavaQuickStarterService C:\Programme\Java\jre6\bin\jqs.exe
11:25:27.0515 1816 JavaQuickStarterService - ok
11:25:27.0562 1816 [ 1704D8C4C8807B889E43C649B478A452 ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
11:25:27.0828 1816 Kbdclass - ok
11:25:27.0875 1816 [ B6D6C117D771C98130497265F26D1882 ] kbdhid C:\WINDOWS\system32\DRIVERS\kbdhid.sys
11:25:28.0140 1816 kbdhid - ok
11:25:28.0234 1816 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
11:25:28.0468 1816 kmixer - ok
11:25:28.0531 1816 [ 72C55C745D804D62162144EBFD6390B8 ] KMWDFilter C:\WINDOWS\System32\Drivers\KMWDFilter.SYS
11:25:28.0578 1816 KMWDFilter ( UnsignedFile.Multi.Generic ) - warning
11:25:28.0578 1816 KMWDFilter - detected UnsignedFile.Multi.Generic (1)
11:25:28.0734 1816 [ 0000A08BED0D9DCAB5DD619602C19B98 ] KMWDSERVICE C:\Programme\Keyboard & Mouse Driver\KMWDSrv.exe
11:25:28.0750 1816 KMWDSERVICE ( UnsignedFile.Multi.Generic ) - warning
11:25:28.0750 1816 KMWDSERVICE - detected UnsignedFile.Multi.Generic (1)
11:25:28.0828 1816 [ B467646C54CC746128904E1654C750C1 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
11:25:28.0937 1816 KSecDD - ok
11:25:29.0015 1816 [ 2BBDCB79900990F0716DFCB714E72DE7 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
11:25:29.0109 1816 lanmanserver - ok
11:25:29.0171 1816 [ 1869B14B06B44B44AF70548E1EA3303F ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
11:25:29.0234 1816 lanmanworkstation - ok
11:25:29.0265 1816 lbrtfdc - ok
11:25:29.0328 1816 [ 636714B7D43C8D0C80449123FD266920 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
11:25:29.0531 1816 LmHosts - ok
11:25:30.0281 1816 [ FB548FF809634BFA866312B37D8A18AE ] LVcKap C:\WINDOWS\system32\DRIVERS\LVcKap.sys
11:25:30.0875 1816 LVcKap - ok
11:25:31.0015 1816 [ 14E4CC4D46169759D874F57604EA6BE5 ] LVCOMSer C:\Programme\Gemeinsame Dateien\LogiShrd\LVCOMSER\LVComSer.exe
11:25:31.0062 1816 LVCOMSer - ok
11:25:31.0750 1816 [ FE3FB994F8702D9E37648927819B74B8 ] LVMVDrv C:\WINDOWS\system32\DRIVERS\LVMVDrv.sys
11:25:32.0343 1816 LVMVDrv - ok
11:25:32.0359 1816 [ C7EA51F1AB10B0B2B443F4D5589FC1A5 ] LVPr2Mon C:\WINDOWS\system32\DRIVERS\LVPr2Mon.sys
11:25:32.0390 1816 LVPr2Mon - ok
11:25:32.0750 1816 [ B2D04E813BA12AB179DAF0B9FDECBA3D ] LVPrcSrv C:\Programme\Gemeinsame Dateien\LogiShrd\LVMVFM\LVPrcSrv.exe
11:25:32.0765 1816 LVPrcSrv - ok
11:25:32.0906 1816 [ 87ECCE893D8AEC5A9337B917742D339C ] LVRS C:\WINDOWS\system32\DRIVERS\lvrs.sys
11:25:32.0937 1816 LVRS - ok
11:25:33.0015 1816 [ A7A2EF5000007CA361DA1E2B99DF8C57 ] LVSrvLauncher C:\Programme\Gemeinsame Dateien\LogiShrd\SrvLnch\SrvLnch.exe
11:25:33.0031 1816 LVSrvLauncher - ok
11:25:33.0093 1816 [ CAEF4C05BA2C1ACAD4EBCAA4261CD55D ] LVUSBSta C:\WINDOWS\system32\drivers\LVUSBSta.sys
11:25:33.0125 1816 LVUSBSta - ok
11:25:33.0156 1816 [ B7550A7107281D170CE85524B1488C98 ] Messenger C:\WINDOWS\System32\msgsvc.dll
11:25:33.0421 1816 Messenger - ok
11:25:33.0515 1816 [ D0D2D2BD6F20D4244D10ED5E9B426560 ] MMRTKRNL C:\WINDOWS\system32\drivers\mmrtkrnl.sys
11:25:33.0531 1816 MMRTKRNL ( UnsignedFile.Multi.Generic ) - warning
11:25:33.0531 1816 MMRTKRNL - detected UnsignedFile.Multi.Generic (1)
11:25:33.0593 1816 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
11:25:33.0796 1816 mnmdd - ok
11:25:33.0859 1816 [ C2F1D365FD96791B037EE504868065D3 ] mnmsrvc C:\WINDOWS\System32\mnmsrvc.exe
11:25:34.0140 1816 mnmsrvc - ok
11:25:34.0187 1816 [ 6FB74EBD4EC57A6F1781DE3852CC3362 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
11:25:34.0421 1816 Modem - ok
11:25:34.0468 1816 [ B24CE8005DEAB254C0251E15CB71D802 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
11:25:34.0718 1816 Mouclass - ok
11:25:34.0750 1816 [ 66A6F73C74E1791464160A7065CE711A ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys
11:25:35.0000 1816 mouhid - ok
11:25:35.0015 1816 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
11:25:35.0296 1816 MountMgr - ok
11:25:35.0390 1816 [ 8BE15F71DE6FF33FC56DCDE7B2B9EFE8 ] MozillaMaintenance C:\Programme\Mozilla Maintenance Service\maintenanceservice.exe
11:25:35.0437 1816 MozillaMaintenance - ok
11:25:35.0453 1816 mraid35x - ok
11:25:35.0531 1816 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
11:25:35.0781 1816 MRxDAV - ok
11:25:35.0984 1816 [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
11:25:36.0156 1816 MRxSmb - ok
11:25:36.0218 1816 [ 35A031AF38C55F92D28AA03EE9F12CC9 ] MSDTC C:\WINDOWS\System32\msdtc.exe
11:25:36.0421 1816 MSDTC - ok
11:25:36.0453 1816 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
11:25:36.0671 1816 Msfs - ok
11:25:36.0687 1816 MSIServer - ok
11:25:36.0718 1816 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
11:25:36.0937 1816 MSKSSRV - ok
11:25:36.0968 1816 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
11:25:37.0218 1816 MSPCLOCK - ok
11:25:37.0250 1816 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
11:25:37.0484 1816 MSPQM - ok
11:25:37.0500 1816 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
11:25:37.0765 1816 mssmbios - ok
11:25:37.0828 1816 [ E53736A9E30C45FA9E7B5EAC55056D1D ] MSTEE C:\WINDOWS\system32\drivers\MSTEE.sys
11:25:38.0062 1816 MSTEE - ok
11:25:38.0109 1816 [ CA3E22598F411199ADC2DFEE76CD0AE0 ] ms_mpu401 C:\WINDOWS\system32\drivers\msmpu401.sys
11:25:38.0343 1816 ms_mpu401 - ok
11:25:38.0406 1816 [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
11:25:38.0453 1816 Mup - ok
11:25:38.0531 1816 [ 5B50F1B2A2ED47D560577B221DA734DB ] NABTSFEC C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
11:25:38.0812 1816 NABTSFEC - ok
11:25:38.0921 1816 [ 46BB15AE2AC7D025D6D2567B876817BD ] napagent C:\WINDOWS\System32\qagentrt.dll
11:25:39.0187 1816 napagent - ok
11:25:39.0265 1816 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
11:25:39.0515 1816 NDIS - ok
11:25:39.0546 1816 [ 7FF1F1FD8609C149AA432F95A8163D97 ] NdisIP C:\WINDOWS\system32\DRIVERS\NdisIP.sys
11:25:39.0781 1816 NdisIP - ok
11:25:39.0843 1816 [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
11:25:39.0906 1816 NdisTapi - ok
11:25:39.0937 1816 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
11:25:40.0171 1816 Ndisuio - ok
11:25:40.0218 1816 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
11:25:40.0734 1816 NdisWan - ok
11:25:40.0796 1816 [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
11:25:40.0843 1816 NDProxy - ok
11:25:40.0875 1816 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
11:25:41.0140 1816 NetBIOS - ok
11:25:41.0218 1816 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
11:25:41.0421 1816 NetBT - ok
11:25:41.0500 1816 [ 8ACE4251BFFD09CE75679FE940E996CC ] NetDDE C:\WINDOWS\system32\netdde.exe
11:25:41.0765 1816 NetDDE - ok
11:25:41.0828 1816 [ 8ACE4251BFFD09CE75679FE940E996CC ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
11:25:42.0078 1816 NetDDEdsdm - ok
11:25:42.0109 1816 [ AFB8261B56CBA0D86AEB6DF682AF9785 ] Netlogon C:\WINDOWS\System32\lsass.exe
11:25:42.0359 1816 Netlogon - ok
11:25:42.0437 1816 [ E6D88F1F6745BF00B57E7855A2AB696C ] Netman C:\WINDOWS\System32\netman.dll
11:25:42.0671 1816 Netman - ok
11:25:42.0750 1816 [ D34612C5D02D026535B3095D620626AE ] NetTcpPortSharing c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
11:25:42.0781 1816 NetTcpPortSharing - ok
11:25:42.0812 1816 [ E9E47CFB2D461FA0FC75B7A74C6383EA ] NIC1394 C:\WINDOWS\system32\DRIVERS\nic1394.sys
11:25:43.0125 1816 NIC1394 - ok
11:25:43.0234 1816 [ F1B67B6B0751AE0E6E964B02821206A3 ] Nla C:\WINDOWS\System32\mswsock.dll
11:25:43.0265 1816 Nla - ok
11:25:43.0281 1816 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
11:25:43.0500 1816 Npfs - ok
11:25:43.0703 1816 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
11:25:44.0031 1816 Ntfs - ok
11:25:44.0062 1816 [ AFB8261B56CBA0D86AEB6DF682AF9785 ] NtLmSsp C:\WINDOWS\System32\lsass.exe
11:25:44.0281 1816 NtLmSsp - ok
11:25:44.0453 1816 [ 56AF4064996FA5BAC9C449B1514B4770 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
11:25:44.0734 1816 NtmsSvc - ok
11:25:44.0765 1816 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
11:25:44.0984 1816 Null - ok
11:25:46.0328 1816 [ BA1B732C1A70CFEA0C1B64F2850BF44F ] nv C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
11:25:47.0515 1816 nv - ok
11:25:47.0625 1816 [ 0FEBE37DB6650FAA5965C00545009D1D ] NVSvc C:\WINDOWS\system32\nvsvc32.exe
11:25:47.0687 1816 NVSvc - ok
11:25:47.0734 1816 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
11:25:47.0984 1816 NwlnkFlt - ok
11:25:48.0031 1816 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
11:25:48.0296 1816 NwlnkFwd - ok
11:25:48.0375 1816 [ CA33832DF41AFB202EE7AEB05145922F ] ohci1394 C:\WINDOWS\system32\DRIVERS\ohci1394.sys
11:25:48.0656 1816 ohci1394 - ok
11:25:48.0765 1816 [ 7A56CF3E3F12E8AF599963B16F50FB6A ] ose C:\Programme\Gemeinsame Dateien\Microsoft Shared\Source Engine\OSE.EXE
11:25:48.0796 1816 ose - ok
11:25:48.0843 1816 [ F84785660305B9B903FB3BCA8BA29837 ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
11:25:49.0140 1816 Parport - ok
11:25:49.0187 1816 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
11:25:49.0468 1816 PartMgr - ok
11:25:49.0531 1816 [ C2BF987829099A3EAA2CA6A0A90ECB4F ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
11:25:49.0781 1816 ParVdm - ok
11:25:49.0859 1816 [ 387E8DEDC343AA2D1EFBC30580273ACD ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
11:25:50.0203 1816 PCI - ok
11:25:50.0234 1816 PCIDump - ok
11:25:50.0250 1816 PCIIde - ok
11:25:50.0312 1816 [ A2A966B77D61847D61A3051DF87C8C97 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
11:25:50.0578 1816 Pcmcia - ok
11:25:50.0593 1816 PDCOMP - ok
11:25:50.0609 1816 PDFRAME - ok
11:25:50.0625 1816 PDRELI - ok
11:25:50.0656 1816 PDRFRAME - ok
11:25:50.0703 1816 [ B20F958B207E6AAAC5F70D04DD2C30D8 ] pepifilter C:\WINDOWS\system32\DRIVERS\lv302af.sys
11:25:50.0718 1816 pepifilter - ok
11:25:50.0734 1816 perc2 - ok
11:25:50.0765 1816 perc2hib - ok
11:25:50.0875 1816 [ 957B82EC80AD7EAD64E5E47DF6B0DC40 ] pfc C:\WINDOWS\system32\drivers\pfc.sys
11:25:50.0921 1816 pfc ( UnsignedFile.Multi.Generic ) - warning
11:25:50.0921 1816 pfc - detected UnsignedFile.Multi.Generic (1)
11:25:51.0968 1816 [ DD184D9ADFE2A8A21741DBDFE9E22F5C ] PID_PEPI C:\WINDOWS\system32\DRIVERS\LV302V32.SYS
11:25:52.0812 1816 PID_PEPI - ok
11:25:52.0875 1816 [ A3EDBE9053889FB24AB22492472B39DC ] PlugPlay C:\WINDOWS\system32\services.exe
11:25:52.0921 1816 PlugPlay - ok
11:25:52.0968 1816 [ AFB8261B56CBA0D86AEB6DF682AF9785 ] PolicyAgent C:\WINDOWS\System32\lsass.exe
11:25:53.0218 1816 PolicyAgent - ok
11:25:53.0312 1816 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
11:25:53.0609 1816 PptpMiniport - ok
11:25:53.0625 1816 [ AFB8261B56CBA0D86AEB6DF682AF9785 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
11:25:53.0859 1816 ProtectedStorage - ok
11:25:53.0906 1816 [ 09298EC810B07E5D582CB3A3F9255424 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
11:25:54.0203 1816 PSched - ok
11:25:54.0250 1816 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
11:25:54.0515 1816 Ptilink - ok
11:25:54.0578 1816 [ E42E3433DBB4CFFE8FDD91EAB29AEA8E ] PxHelp20 C:\WINDOWS\system32\Drivers\PxHelp20.sys
11:25:54.0609 1816 PxHelp20 - ok
11:25:54.0625 1816 ql1080 - ok
11:25:54.0640 1816 Ql10wnt - ok
11:25:54.0656 1816 ql12160 - ok
11:25:54.0687 1816 ql1240 - ok
11:25:54.0703 1816 ql1280 - ok
11:25:54.0781 1816 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
11:25:55.0046 1816 RasAcd - ok
11:25:55.0140 1816 [ F5BA6CACCDB66C8F048E867563203246 ] RasAuto C:\WINDOWS\System32\rasauto.dll
11:25:55.0421 1816 RasAuto - ok
11:25:55.0468 1816 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
11:25:55.0734 1816 Rasl2tp - ok
11:25:55.0859 1816 [ F9A7B66EA345726EDB5862A46B1ECCD5 ] RasMan C:\WINDOWS\System32\rasmans.dll
11:25:56.0140 1816 RasMan - ok
11:25:56.0171 1816 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
11:25:56.0453 1816 RasPppoe - ok
11:25:56.0484 1816 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
11:25:56.0750 1816 Raspti - ok
11:25:56.0843 1816 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
11:25:57.0156 1816 Rdbss - ok
11:25:57.0171 1816 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
11:25:57.0421 1816 RDPCDD - ok
11:25:57.0546 1816 [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
11:25:57.0687 1816 RDPWD - ok
11:25:57.0796 1816 [ 263AF18AF0F3DB99F574C95F284CCEC9 ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
11:25:58.0125 1816 RDSessMgr - ok
11:25:58.0203 1816 [ ED761D453856F795A7FE056E42C36365 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
11:25:58.0468 1816 redbook - ok
11:25:58.0531 1816 [ 0E97EC96D6942CEEC2D188CC2EB69A01 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
11:25:58.0812 1816 RemoteAccess - ok
11:25:58.0875 1816 [ 2A02E21867497DF20B8FC95631395169 ] RpcLocator C:\WINDOWS\System32\locator.exe
11:25:59.0171 1816 RpcLocator - ok
11:25:59.0328 1816 [ 3127AFBF2C1ED0AB14A1BBB7AAECB85B ] RpcSs C:\WINDOWS\system32\rpcss.dll
11:25:59.0468 1816 RpcSs - ok
11:25:59.0593 1816 [ 4BDD71B4B521521499DFD14735C4F398 ] RSVP C:\WINDOWS\System32\rsvp.exe
11:25:59.0828 1816 RSVP - ok
11:25:59.0890 1816 [ D507C1400284176573224903819FFDA3 ] rtl8139 C:\WINDOWS\system32\DRIVERS\RTL8139.SYS
11:26:00.0187 1816 rtl8139 - ok
11:26:00.0234 1816 [ AFB8261B56CBA0D86AEB6DF682AF9785 ] SamSs C:\WINDOWS\system32\lsass.exe
11:26:00.0468 1816 SamSs - ok
11:26:00.0531 1816 [ DCEC079FAD95D36C8DD5CB6D779DFE32 ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
11:26:00.0796 1816 SCardSvr - ok
11:26:00.0921 1816 [ A050194A44D7FA8D7186ED2F4E8367AE ] Schedule C:\WINDOWS\system32\schedsvc.dll
11:26:01.0234 1816 Schedule - ok
11:26:01.0296 1816 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
11:26:01.0406 1816 Secdrv - ok
11:26:01.0468 1816 [ BEE4CFD1D48C23B44CF4B974B0B79B2B ] seclogon C:\WINDOWS\System32\seclogon.dll
11:26:01.0718 1816 seclogon - ok
11:26:01.0765 1816 [ 2AAC9B6ED9EDDFFB721D6452E34D67E3 ] SENS C:\WINDOWS\system32\sens.dll
11:26:02.0046 1816 SENS - ok
11:26:02.0171 1816 [ 0F29512CCD6BEAD730039FB4BD2C85CE ] serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
11:26:02.0406 1816 serenum - ok
11:26:02.0484 1816 [ CF24EB4F0412C82BCD1F4F35A025E31D ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
11:26:02.0750 1816 Serial - ok
11:26:02.0812 1816 [ 0F066EE7A67CBFD8EDABC4DE408221E0 ] SerialKeys C:\WINDOWS\system32\skeys.exe
11:26:03.0046 1816 SerialKeys - ok
11:26:03.0421 1816 [ 3EC8DE67B1C78C31E54C0F030E6BD7D5 ] ServiceLayer C:\Programme\PC Connectivity Solution\ServiceLayer.exe
11:26:03.0687 1816 ServiceLayer ( UnsignedFile.Multi.Generic ) - warning
11:26:03.0687 1816 ServiceLayer - detected UnsignedFile.Multi.Generic (1)
11:26:03.0765 1816 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
11:26:04.0046 1816 Sfloppy - ok
11:26:04.0250 1816 [ CAD058D5F8B889A87CA3EB3CF624DCEF ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
11:26:04.0578 1816 SharedAccess - ok
11:26:04.0656 1816 [ 2DB7D303C36DDD055215052F118E8E75 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
11:26:04.0718 1816 ShellHWDetection - ok
11:26:04.0718 1816 Simbad - ok
11:26:04.0921 1816 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Programme\Skype\Updater\Updater.exe
11:26:04.0937 1816 SkypeUpdate - ok
11:26:05.0000 1816 [ 866D538EBE33709A5C9F5C62B73B7D14 ] SLIP C:\WINDOWS\system32\DRIVERS\SLIP.sys
11:26:05.0312 1816 SLIP - ok
11:26:05.0343 1816 Sparrow - ok
11:26:05.0390 1816 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
11:26:05.0625 1816 splitter - ok
11:26:05.0703 1816 [ 60784F891563FB1B767F70117FC2428F ] Spooler C:\WINDOWS\system32\spoolsv.exe
11:26:05.0796 1816 Spooler - ok
11:26:05.0859 1816 [ 50FA898F8C032796D3B1B9951BB5A90F ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
11:26:05.0984 1816 sr - ok
11:26:06.0156 1816 [ FE77A85495065F3AD59C5C65B6C54182 ] srservice C:\WINDOWS\System32\srsvc.dll
11:26:06.0296 1816 srservice - ok
11:26:06.0468 1816 [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
11:26:06.0640 1816 Srv - ok
11:26:06.0703 1816 [ 4DF5B05DFAEC29E13E1ED6F6EE12C500 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
11:26:06.0828 1816 SSDPSRV - ok
11:26:06.0890 1816 [ A36EE93698802CD899F98BFD553D8185 ] ssmdrv C:\WINDOWS\system32\DRIVERS\ssmdrv.sys
11:26:06.0906 1816 ssmdrv - ok
11:26:06.0968 1816 [ 306521935042FC0A6988D528643619B3 ] StarOpen C:\WINDOWS\system32\drivers\StarOpen.sys
11:26:07.0015 1816 StarOpen ( UnsignedFile.Multi.Generic ) - warning
11:26:07.0015 1816 StarOpen - detected UnsignedFile.Multi.Generic (1)
11:26:07.0125 1816 [ E4EBF293D1F612BDA19B646C36715B20 ] STEC3 C:\WINDOWS\system32\STEC3.sys
11:26:07.0171 1816 STEC3 ( UnsignedFile.Multi.Generic ) - warning
11:26:07.0171 1816 STEC3 - detected UnsignedFile.Multi.Generic (1)
11:26:07.0328 1816 [ BC2C5985611C5356B24AEB370953DED9 ] stisvc C:\WINDOWS\system32\wiaservc.dll
11:26:07.0750 1816 stisvc - ok
11:26:07.0812 1816 [ 77813007BA6265C4B6098187E6ED79D2 ] streamip C:\WINDOWS\system32\DRIVERS\StreamIP.sys
11:26:08.0062 1816 streamip - ok
11:26:08.0140 1816 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
11:26:08.0375 1816 swenum - ok
11:26:08.0421 1816 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
11:26:08.0828 1816 swmidi - ok
11:26:08.0843 1816 SwPrv - ok
11:26:08.0859 1816 symc810 - ok
11:26:08.0890 1816 symc8xx - ok
11:26:08.0906 1816 sym_hi - ok
11:26:08.0921 1816 sym_u3 - ok
11:26:08.0968 1816 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
11:26:09.0265 1816 sysaudio - ok
11:26:09.0359 1816 [ 2903FFFA2523926D6219428040DCE6B9 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
11:26:09.0625 1816 SysmonLog - ok
11:26:09.0890 1816 [ 05903CAC4B98908D55EA5774775B382E ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
11:26:10.0500 1816 TapiSrv - ok
11:26:10.0640 1816 [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
11:26:11.0015 1816 Tcpip - ok
11:26:11.0046 1816 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
11:26:11.0671 1816 TDPIPE - ok
11:26:11.0718 1816 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
11:26:12.0453 1816 TDTCP - ok
11:26:12.0531 1816 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
11:26:13.0281 1816 TermDD - ok
11:26:13.0406 1816 [ B7DE02C863D8F5A005A7BF375375A6A4 ] TermService C:\WINDOWS\System32\termsrv.dll
11:26:14.0031 1816 TermService - ok
11:26:14.0187 1816 [ 2DB7D303C36DDD055215052F118E8E75 ] Themes C:\WINDOWS\System32\shsvcs.dll
11:26:14.0406 1816 Themes - ok
11:26:14.0406 1816 TosIde - ok
11:26:14.0531 1816 [ 626504572B175867F30F3215C04B3E2F ] TrkWks C:\WINDOWS\system32\trkwks.dll
11:26:15.0250 1816 TrkWks - ok
11:26:15.0312 1816 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
11:26:15.0843 1816 Udfs - ok
11:26:15.0843 1816 ultra - ok
11:26:16.0281 1816 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
11:26:16.0890 1816 Update - ok
11:26:16.0953 1816 [ 1DFD8975D8C89214B98D9387C1125B49 ] upnphost C:\WINDOWS\System32\upnphost.dll
11:26:17.0531 1816 upnphost - ok
11:26:17.0531 1816 upperdev - ok
11:26:17.0609 1816 [ 9B11E6118958E63E1FEF129466E2BDA7 ] UPS C:\WINDOWS\System32\ups.exe
11:26:18.0093 1816 UPS - ok
11:26:18.0187 1816 [ E919708DB44ED8543A7C017953148330 ] usbaudio C:\WINDOWS\system32\drivers\usbaudio.sys
11:26:18.0875 1816 usbaudio - ok
11:26:18.0921 1816 [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
11:26:19.0546 1816 usbccgp - ok
11:26:19.0593 1816 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
11:26:20.0234 1816 usbhub - ok
11:26:20.0250 1816 [ A717C8721046828520C9EDF31288FC00 ] usbprint C:\WINDOWS\system32\DRIVERS\usbprint.sys
11:26:20.0812 1816 usbprint - ok
11:26:20.0875 1816 [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
11:26:21.0406 1816 usbscan - ok
11:26:21.0484 1816 [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
11:26:22.0062 1816 USBSTOR - ok
11:26:22.0093 1816 [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
11:26:22.0578 1816 usbuhci - ok
11:26:22.0656 1816 [ 94D73B62E458FB56C9CE60AA96D914F9 ] VClone C:\WINDOWS\system32\DRIVERS\VClone.sys
11:26:22.0734 1816 VClone ( UnsignedFile.Multi.Generic ) - warning
11:26:22.0734 1816 VClone - detected UnsignedFile.Multi.Generic (1)
11:26:22.0796 1816 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
11:26:23.0375 1816 VgaSave - ok
11:26:23.0390 1816 ViaIde - ok
11:26:23.0468 1816 [ A5A712F4E880874A477AF790B5186E1D ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
11:26:23.0703 1816 VolSnap - ok
11:26:23.0828 1816 [ 68F106273BE29E7B7EF8266977268E78 ] VSS C:\WINDOWS\System32\vssvc.exe
11:26:23.0953 1816 VSS - ok
11:26:24.0031 1816 [ 7B353059E665F8B7AD2BBEAEF597CF45 ] W32Time C:\WINDOWS\System32\w32time.dll
11:26:24.0250 1816 W32Time - ok
11:26:24.0328 1816 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
11:26:24.0578 1816 Wanarp - ok
11:26:24.0765 1816 [ BBCFEAB7E871CDDAC2D397EE7FA91FDC ] Wdf01000 C:\WINDOWS\system32\Drivers\wdf01000.sys
11:26:24.0890 1816 Wdf01000 - ok
11:26:24.0906 1816 WDICA - ok
11:26:24.0984 1816 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
11:26:25.0218 1816 wdmaud - ok
11:26:25.0250 1816 [ 81727C9873E3905A2FFC1EBD07265002 ] WebClient C:\WINDOWS\System32\webclnt.dll
11:26:25.0515 1816 WebClient - ok
11:26:25.0640 1816 [ 6F3F3973D97714CC5F906A19FE883729 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
11:26:25.0859 1816 winmgmt - ok
11:26:25.0937 1816 [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN C:\WINDOWS\system32\MsPMSNSv.dll
11:26:26.0031 1816 WmdmPmSN - ok
11:26:26.0109 1816 [ 93908111BA57A6E60EC2FA2DE202105C ] WmiApSrv C:\WINDOWS\System32\wbem\wmiapsrv.exe
11:26:26.0375 1816 WmiApSrv - ok
11:26:26.0781 1816 [ BF05650BB7DF5E9EBDD25974E22403BB ] WMPNetworkSvc C:\Programme\Windows Media Player\WMPNetwk.exe
11:26:27.0046 1816 WMPNetworkSvc - ok
11:26:27.0078 1816 [ CF4DEF1BF66F06964DC0D91844239104 ] WpdUsb C:\WINDOWS\system32\DRIVERS\wpdusb.sys
11:26:27.0109 1816 WpdUsb - ok
11:26:27.0187 1816 [ 300B3E84FAF1A5C1F791C159BA28035D ] wscsvc C:\WINDOWS\system32\wscsvc.dll
11:26:27.0453 1816 wscsvc - ok
11:26:27.0515 1816 [ C98B39829C2BBD34E454150633C62C78 ] WSTCODEC C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
11:26:27.0750 1816 WSTCODEC - ok
11:26:27.0765 1816 [ 7B4FE05202AA6BF9F4DFD0E6A0D8A085 ] wuauserv C:\WINDOWS\system32\wuauserv.dll
11:26:28.0078 1816 wuauserv - ok
11:26:28.0171 1816 [ 50EB9E21963B4F06FD010D007D54351B ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
11:26:28.0359 1816 WudfPf - ok
11:26:28.0390 1816 [ 6E209664BDEA8A15B5E8E480D6C607C2 ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
11:26:28.0437 1816 WudfRd - ok
11:26:28.0484 1816 [ AE93084D2D236887BA56467AE42B4955 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
11:26:28.0531 1816 WudfSvc - ok
11:26:28.0781 1816 [ C4F109C005F6725162D2D12CA751E4A7 ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
11:26:29.0156 1816 WZCSVC - ok
11:26:29.0234 1816 [ 0ADA34871A2E1CD2CAAFED1237A47750 ] xmlprov C:\WINDOWS\System32\xmlprov.dll
11:26:29.0531 1816 xmlprov - ok
11:26:29.0562 1816 ================ Scan global ===============================
11:26:29.0625 1816 [ 2C60091CA5F67C3032EAB3B30390C27F ] C:\WINDOWS\system32\basesrv.dll
11:26:29.0765 1816 [ A28CE25B59C90E12743001A1F2AE3613 ] C:\WINDOWS\system32\winsrv.dll
11:26:29.0875 1816 [ A28CE25B59C90E12743001A1F2AE3613 ] C:\WINDOWS\system32\winsrv.dll
11:26:29.0937 1816 [ A3EDBE9053889FB24AB22492472B39DC ] C:\WINDOWS\system32\services.exe
11:26:29.0937 1816 [Global] - ok
11:26:29.0937 1816 ================ Scan MBR ==================================
11:26:29.0968 1816 [ 72B8CE41AF0DE751C946802B3ED844B4 ] \Device\Harddisk0\DR0
11:26:30.0531 1816 \Device\Harddisk0\DR0 - ok
11:26:30.0531 1816 ================ Scan VBR ==================================
11:26:30.0546 1816 [ 857D9C0BF8A489DC65D5671E22834D10 ] \Device\Harddisk0\DR0\Partition1
11:26:30.0546 1816 \Device\Harddisk0\DR0\Partition1 - ok
11:26:30.0546 1816 ============================================================
11:26:30.0546 1816 Scan finished
11:26:30.0546 1816 ============================================================
11:26:30.0671 3572 Detected object count: 9
11:26:30.0671 3572 Actual detected object count: 9
11:26:40.0343 3572 Aspi32 ( UnsignedFile.Multi.Generic ) - skipped by user
11:26:40.0343 3572 Aspi32 ( UnsignedFile.Multi.Generic ) - User select action: Skip
11:26:40.0343 3572 KMWDFilter ( UnsignedFile.Multi.Generic ) - skipped by user
11:26:40.0343 3572 KMWDFilter ( UnsignedFile.Multi.Generic ) - User select action: Skip
11:26:40.0343 3572 KMWDSERVICE ( UnsignedFile.Multi.Generic ) - skipped by user
11:26:40.0343 3572 KMWDSERVICE ( UnsignedFile.Multi.Generic ) - User select action: Skip
11:26:40.0343 3572 MMRTKRNL ( UnsignedFile.Multi.Generic ) - skipped by user
11:26:40.0343 3572 MMRTKRNL ( UnsignedFile.Multi.Generic ) - User select action: Skip
11:26:40.0359 3572 pfc ( UnsignedFile.Multi.Generic ) - skipped by user
11:26:40.0359 3572 pfc ( UnsignedFile.Multi.Generic ) - User select action: Skip
11:26:40.0359 3572 ServiceLayer ( UnsignedFile.Multi.Generic ) - skipped by user
11:26:40.0359 3572 ServiceLayer ( UnsignedFile.Multi.Generic ) - User select action: Skip
11:26:40.0359 3572 StarOpen ( UnsignedFile.Multi.Generic ) - skipped by user
11:26:40.0359 3572 StarOpen ( UnsignedFile.Multi.Generic ) - User select action: Skip
11:26:40.0359 3572 STEC3 ( UnsignedFile.Multi.Generic ) - skipped by user
11:26:40.0359 3572 STEC3 ( UnsignedFile.Multi.Generic ) - User select action: Skip
11:26:40.0359 3572 VClone ( UnsignedFile.Multi.Generic ) - skipped by user
11:26:40.0359 3572 VClone ( UnsignedFile.Multi.Generic ) - User select action: Skip
|
|
28.10.2012, 12:27
| #6 | |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Ucash Virus Bitte mach ein Log mit CF: ComboFix Ein Leitfaden und Tutorium zur Nutzung von ComboFix
Combofix darf ausschließlich ausgeführt werden, wenn ein Kompetenzler dies ausdrücklich empfohlen hat! Solltest du nach der Ausführung von Combofix Probleme beim Starten von Anwendungen haben und Meldungen erhalten wie Zitat:
__________________ --> Ucash Virus |
Linear-Darstellung
