|
Log-Analyse und Auswertung: Alle Internetbrowser sehr langsam!Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
12.11.2012, 11:15 | #1 | ||
| Alle Internetbrowser sehr langsam! Hallo Community, von jetzt auf gleich sind alle Browser (Mozilla, IE und Chrome) stark verlangsamt. Seitenaufbau lag vorher bei ca. 3 Sekunden und nun bei über einer Minute. Alle anderen Programm haben keine Probleme, nur die Internetbrowser. Anbei die Logfiles. Zitat:
Zitat:
Gruß excQ |
12.11.2012, 13:23 | #2 |
/// Malware-holic | Alle Internetbrowser sehr langsam! hi
__________________sehe erst mal nur adware, schaun wir mal weiter. download tdss killer: http://www.trojaner-board.de/82358-t...entfernen.html Klicke auf Change parameters • Setze die Haken bei Verify driver digital signatures und Detect TDLFS file system • Klick auf OK und anschließend auf Start scan - bei funden erst mal immer skip wählen, log posten
__________________ |
12.11.2012, 14:00 | #3 |
| Alle Internetbrowser sehr langsam! 13:48:35.0953 1916 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
__________________13:48:37.0953 1916 ============================================================ 13:48:37.0953 1916 Current date / time: 2012/11/12 13:48:37.0953 13:48:37.0953 1916 SystemInfo: 13:48:37.0953 1916 13:48:37.0953 1916 OS Version: 5.1.2600 ServicePack: 3.0 13:48:37.0953 1916 Product type: Workstation 13:48:37.0953 1916 ComputerName: LZEKG 13:48:37.0953 1916 UserName: Administrator 13:48:37.0953 1916 Windows directory: C:\WINDOWS 13:48:37.0953 1916 System windows directory: C:\WINDOWS 13:48:37.0953 1916 Processor architecture: Intel x86 13:48:37.0953 1916 Number of processors: 2 13:48:37.0953 1916 Page size: 0x1000 13:48:37.0953 1916 Boot type: Normal boot 13:48:37.0953 1916 ============================================================ 13:48:40.0437 1916 Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054 13:48:40.0546 1916 ============================================================ 13:48:40.0546 1916 \Device\Harddisk0\DR0: 13:48:40.0546 1916 MBR partitions: 13:48:40.0546 1916 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x1160E866 13:48:40.0546 1916 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1160E8E4, BlocksNum 0x140A1DD 13:48:40.0546 1916 ============================================================ 13:48:40.0578 1916 C: <-> \Device\Harddisk0\DR0\Partition1 13:48:40.0609 1916 D: <-> \Device\Harddisk0\DR0\Partition2 13:48:40.0609 1916 ============================================================ 13:48:40.0609 1916 Initialize success 13:48:40.0609 1916 ============================================================ 13:49:14.0390 1956 ============================================================ 13:49:14.0390 1956 Scan started 13:49:14.0390 1956 Mode: Manual; SigCheck; TDLFS; 13:49:14.0390 1956 ============================================================ 13:49:15.0781 1956 ================ Scan system memory ======================== 13:49:18.0890 1956 System memory - ok 13:49:18.0890 1956 ================ Scan services ============================= 13:49:19.0015 1956 Abiosdsk - ok 13:49:19.0015 1956 abp480n5 - ok 13:49:19.0046 1956 [ 0F2D66D5F08EBE2F77BB904288DCF6F0 ] ac97intc C:\WINDOWS\system32\drivers\ac97intc.sys 13:49:20.0218 1956 ac97intc - ok 13:49:20.0218 1956 Scan interrupted by user! 13:49:20.0218 1956 ================ Scan global =============================== 13:49:20.0218 1956 Scan interrupted by user! 13:49:20.0218 1956 ================ Scan MBR ================================== 13:49:20.0218 1956 Scan interrupted by user! 13:49:20.0218 1956 ================ Scan VBR ================================== 13:49:20.0218 1956 Scan interrupted by user! 13:49:20.0218 1956 ============================================================ 13:49:20.0218 1956 Scan finished 13:49:20.0218 1956 ============================================================ 13:49:20.0328 2404 Detected object count: 0 13:49:20.0328 2404 Actual detected object count: 0 13:49:24.0250 2672 ============================================================ 13:49:24.0250 2672 Scan started 13:49:24.0250 2672 Mode: Manual; SigCheck; TDLFS; 13:49:24.0250 2672 ============================================================ 13:49:25.0234 2672 ================ Scan system memory ======================== 13:49:26.0640 2672 System memory - ok 13:49:26.0640 2672 ================ Scan services ============================= 13:49:26.0859 2672 Abiosdsk - ok 13:49:26.0859 2672 abp480n5 - ok 13:49:26.0890 2672 [ 0F2D66D5F08EBE2F77BB904288DCF6F0 ] ac97intc C:\WINDOWS\system32\drivers\ac97intc.sys 13:49:27.0015 2672 ac97intc - ok 13:49:27.0062 2672 [ AC407F1A62C3A300B4F2B5A9F1D55B2C ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys 13:49:27.0203 2672 ACPI - ok 13:49:27.0218 2672 [ 9E1CA3160DAFB159CA14F83B1E317F75 ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys 13:49:27.0406 2672 ACPIEC - ok 13:49:27.0468 2672 [ 44C00A385CA9DBC1D5CF3781F8C26AEA ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe 13:49:27.0531 2672 AdobeFlashPlayerUpdateSvc - ok 13:49:27.0562 2672 [ 9A11864873DA202C996558B2106B0BBC ] adpu160m C:\WINDOWS\system32\DRIVERS\adpu160m.sys 13:49:27.0671 2672 adpu160m - ok 13:49:27.0687 2672 [ 0EA9B1F0C6C90A509C8603775366ADB7 ] adpu320 C:\WINDOWS\system32\DRIVERS\adpu320.sys 13:49:27.0718 2672 adpu320 ( UnsignedFile.Multi.Generic ) - warning 13:49:27.0718 2672 adpu320 - detected UnsignedFile.Multi.Generic (1) 13:49:27.0765 2672 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys 13:49:27.0890 2672 aec - ok 13:49:27.0921 2672 [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD C:\WINDOWS\System32\drivers\afd.sys 13:49:27.0984 2672 AFD - ok 13:49:28.0000 2672 Aha154x - ok 13:49:28.0000 2672 [ 19DD0FB48B0C18892F70E2E7D61A1529 ] aic78u2 C:\WINDOWS\system32\DRIVERS\aic78u2.sys 13:49:28.0125 2672 aic78u2 - ok 13:49:28.0140 2672 [ B7FE594A7468AA0132DEB03FB8E34326 ] aic78xx C:\WINDOWS\system32\DRIVERS\aic78xx.sys 13:49:28.0265 2672 aic78xx - ok 13:49:28.0296 2672 [ 45F65F2F7AE28E5E56AB64E3AC61BD52 ] aksfridge C:\WINDOWS\system32\DRIVERS\aksfridge.sys 13:49:28.0421 2672 aksfridge - ok 13:49:28.0468 2672 [ 64FC197D24A2B240598F29CE0A6660C0 ] akshasp C:\WINDOWS\system32\DRIVERS\akshasp.sys 13:49:28.0515 2672 akshasp - ok 13:49:28.0531 2672 [ 147B61B81BE1FFC38939EA47E5CFB51F ] akshhl C:\WINDOWS\system32\DRIVERS\akshhl.sys 13:49:28.0562 2672 akshhl - ok 13:49:28.0593 2672 [ CCE6C56F18D214DE8D66F3F2A774CD5B ] aksusb C:\WINDOWS\system32\DRIVERS\aksusb.sys 13:49:28.0640 2672 aksusb - ok 13:49:28.0671 2672 [ 738D80CC01D7BC7584BE917B7F544394 ] Alerter C:\WINDOWS\system32\alrsvc.dll 13:49:28.0781 2672 Alerter - ok 13:49:28.0796 2672 [ 190CD73D4984F94D823F9444980513E5 ] ALG C:\WINDOWS\System32\alg.exe 13:49:28.0984 2672 ALG - ok 13:49:28.0984 2672 AliIde - ok 13:49:29.0000 2672 amsint - ok 13:49:29.0078 2672 [ F401929EE0CC92BFE7F15161CA535383 ] Apple Mobile Device C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\AppleMobileDeviceService.exe 13:49:29.0125 2672 Apple Mobile Device - ok 13:49:29.0156 2672 [ D45960BE52C3C610D361977057F98C54 ] AppMgmt C:\WINDOWS\System32\appmgmts.dll 13:49:29.0281 2672 AppMgmt - ok 13:49:29.0296 2672 asc - ok 13:49:29.0296 2672 asc3350p - ok 13:49:29.0296 2672 asc3550 - ok 13:49:29.0406 2672 [ 0E5E4957549056E2BF2C49F4F6B601AD ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe 13:49:29.0500 2672 aspnet_state - ok 13:49:29.0531 2672 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys 13:49:29.0656 2672 AsyncMac - ok 13:49:29.0671 2672 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys 13:49:29.0812 2672 atapi - ok 13:49:29.0812 2672 Atdisk - ok 13:49:29.0843 2672 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys 13:49:29.0968 2672 Atmarpc - ok 13:49:30.0000 2672 [ 58ED0D5452DF7BE732193E7999C6B9A4 ] AudioSrv C:\WINDOWS\System32\audiosrv.dll 13:49:30.0125 2672 AudioSrv - ok 13:49:30.0156 2672 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys 13:49:30.0265 2672 audstub - ok 13:49:30.0328 2672 [ 6163664C7E9CD110AF70180C126C3FDC ] BcmSqlStartupSvc C:\Programme\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe 13:49:30.0359 2672 BcmSqlStartupSvc - ok 13:49:30.0390 2672 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys 13:49:30.0515 2672 Beep - ok 13:49:30.0546 2672 [ D6F603772A789BB3228F310D650B8BD1 ] BITS C:\WINDOWS\system32\qmgr.dll 13:49:30.0781 2672 BITS - ok 13:49:30.0859 2672 [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] Bonjour Service C:\Programme\Bonjour\mDNSResponder.exe 13:49:30.0906 2672 Bonjour Service - ok 13:49:30.0937 2672 [ B71549F23736ADF83A571061C47777FD ] Browser C:\WINDOWS\System32\browser.dll 13:49:31.0000 2672 Browser - ok 13:49:31.0015 2672 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys 13:49:31.0140 2672 cbidf2k - ok 13:49:31.0171 2672 [ 0BE5AEF125BE881C4F854C554F2B025C ] CCDECODE C:\WINDOWS\system32\DRIVERS\CCDECODE.sys 13:49:31.0296 2672 CCDECODE - ok 13:49:31.0359 2672 [ 27D036FB3D22CA8A6662FE960D1A937D ] ccEvtMgr C:\Programme\Gemeinsame Dateien\Symantec Shared\ccSvcHst.exe 13:49:31.0390 2672 ccEvtMgr - ok 13:49:31.0390 2672 [ 27D036FB3D22CA8A6662FE960D1A937D ] ccSetMgr C:\Programme\Gemeinsame Dateien\Symantec Shared\ccSvcHst.exe 13:49:31.0421 2672 ccSetMgr - ok 13:49:31.0421 2672 cd20xrnt - ok 13:49:31.0453 2672 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys 13:49:31.0593 2672 Cdaudio - ok 13:49:31.0625 2672 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys 13:49:31.0734 2672 Cdfs - ok 13:49:31.0750 2672 [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys 13:49:32.0015 2672 Cdrom - ok 13:49:32.0015 2672 Changer - ok 13:49:32.0046 2672 [ 28E3040D1F1CA2008CD6B29DFEBC9A5E ] CiSvc C:\WINDOWS\system32\cisvc.exe 13:49:32.0171 2672 CiSvc - ok 13:49:32.0218 2672 [ 778A30ED3C134EB7E406AFC407E9997D ] ClipSrv C:\WINDOWS\system32\clipsrv.exe 13:49:32.0343 2672 ClipSrv - ok 13:49:32.0375 2672 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe 13:49:32.0453 2672 clr_optimization_v2.0.50727_32 - ok 13:49:32.0468 2672 CmdIde - ok 13:49:32.0500 2672 [ C586875ECE5318C6309ED1AB79D0E55F ] COH_Mon C:\WINDOWS\system32\Drivers\COH_Mon.sys 13:49:32.0515 2672 COH_Mon - ok 13:49:32.0515 2672 COMSysApp - ok 13:49:32.0531 2672 Cpqarray - ok 13:49:32.0562 2672 [ 611F824E5C703A5A899F84C5F1699E4D ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll 13:49:32.0687 2672 CryptSvc - ok 13:49:32.0687 2672 dac2w2k - ok 13:49:32.0703 2672 dac960nt - ok 13:49:32.0734 2672 [ 3127AFBF2C1ED0AB14A1BBB7AAECB85B ] DcomLaunch C:\WINDOWS\system32\rpcss.dll 13:49:32.0812 2672 DcomLaunch - ok 13:49:32.0859 2672 [ C29A1C9B75BA38FA37F8C44405DEC360 ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll 13:49:32.0968 2672 Dhcp - ok 13:49:33.0000 2672 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys 13:49:33.0109 2672 Disk - ok 13:49:33.0156 2672 [ A53723176D0002FEB486EFF8E17812F2 ] DLABMFSM C:\WINDOWS\system32\DLA\DLABMFSM.SYS 13:49:33.0203 2672 DLABMFSM - ok 13:49:33.0218 2672 [ D4587063ACEA776699251E177D719586 ] DLABOIOM C:\WINDOWS\system32\DLA\DLABOIOM.SYS 13:49:33.0234 2672 DLABOIOM - ok 13:49:33.0250 2672 [ 5230CDB7E715F3A3B4A882E254CDD35D ] DLACDBHM C:\WINDOWS\system32\Drivers\DLACDBHM.SYS 13:49:33.0265 2672 DLACDBHM - ok 13:49:33.0281 2672 [ 1CC77BF6481567B617F7D204932A10E4 ] DLADResM C:\WINDOWS\system32\DLA\DLADResM.SYS 13:49:33.0312 2672 DLADResM - ok 13:49:33.0328 2672 [ 24400137E387A24410C52A591F3CFB4D ] DLAIFS_M C:\WINDOWS\system32\DLA\DLAIFS_M.SYS 13:49:33.0343 2672 DLAIFS_M - ok 13:49:33.0375 2672 [ 29A303FECEB28641ECEBDAE89EB71C63 ] DLAOPIOM C:\WINDOWS\system32\DLA\DLAOPIOM.SYS 13:49:33.0406 2672 DLAOPIOM - ok 13:49:33.0437 2672 [ C93E33A22A1AE0C5508F3FB1F6D0A50C ] DLAPoolM C:\WINDOWS\system32\DLA\DLAPoolM.SYS 13:49:33.0453 2672 DLAPoolM - ok 13:49:33.0453 2672 [ 77FE51F0F8D86804CB81F6EF6BFB86DD ] DLARTL_M C:\WINDOWS\system32\Drivers\DLARTL_M.SYS 13:49:33.0484 2672 DLARTL_M - ok 13:49:33.0484 2672 [ B953498C35A31E5AC98F49ADBCF3E627 ] DLAUDFAM C:\WINDOWS\system32\DLA\DLAUDFAM.SYS 13:49:33.0515 2672 DLAUDFAM - ok 13:49:33.0515 2672 [ 4897704C093C1F59CE58FC65E1E1EF1E ] DLAUDF_M C:\WINDOWS\system32\DLA\DLAUDF_M.SYS 13:49:33.0546 2672 DLAUDF_M - ok 13:49:33.0546 2672 dmadmin - ok 13:49:33.0578 2672 [ 0DCFC8395A99FECBB1EF771CEC7FE4EA ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys 13:49:33.0734 2672 dmboot - ok 13:49:33.0734 2672 [ 53720AB12B48719D00E327DA470A619A ] dmio C:\WINDOWS\system32\drivers\dmio.sys 13:49:33.0890 2672 dmio - ok 13:49:33.0906 2672 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys 13:49:34.0015 2672 dmload - ok 13:49:34.0046 2672 [ 25C83FFBBA13B554EB6D59A9B2E2EE78 ] dmserver C:\WINDOWS\System32\dmserver.dll 13:49:34.0265 2672 dmserver - ok 13:49:34.0296 2672 [ D274E85D405037D56C5F26C01BD48D93 ] DMSUSBHS3A C:\WINDOWS\system32\drivers\DMSUSBHS3A.sys 13:49:34.0312 2672 DMSUSBHS3A - ok 13:49:34.0343 2672 [ B233549645B81453ADDD4D883CA8AD5F ] DMSUSBLoader_H C:\WINDOWS\system32\drivers\DMSUSBLoader_H.sys 13:49:34.0359 2672 DMSUSBLoader_H - ok 13:49:34.0375 2672 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys 13:49:34.0515 2672 DMusic - ok 13:49:34.0531 2672 [ 407F3227AC618FD1CA54B335B083DE07 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll 13:49:34.0625 2672 Dnscache - ok 13:49:34.0656 2672 [ 676E36C4FF5BCEA1900F44182B9723E6 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll 13:49:34.0796 2672 Dot3svc - ok 13:49:34.0812 2672 [ 40F3B93B4E5B0126F2F5C0A7A5E22660 ] dpti2o C:\WINDOWS\system32\DRIVERS\dpti2o.sys 13:49:34.0968 2672 dpti2o - ok 13:49:34.0984 2672 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys 13:49:35.0109 2672 drmkaud - ok 13:49:35.0140 2672 [ C00440385CF9F3D142917C63F989E244 ] DRVMCDB C:\WINDOWS\system32\Drivers\DRVMCDB.SYS 13:49:35.0156 2672 DRVMCDB - ok 13:49:35.0171 2672 [ FFC371525AA55D1BAE18715EBCB8797C ] DRVNDDM C:\WINDOWS\system32\Drivers\DRVNDDM.SYS 13:49:35.0187 2672 DRVNDDM - ok 13:49:35.0218 2672 [ 5C940A174DFB2C42B9F6BA6EDC2BAA0B ] E100B C:\WINDOWS\system32\DRIVERS\e100b325.sys 13:49:35.0250 2672 E100B - ok 13:49:35.0281 2672 [ 4E4F2FDDAB0A0736D7671134DCCE91FB ] EapHost C:\WINDOWS\System32\eapsvc.dll 13:49:35.0406 2672 EapHost - ok 13:49:35.0468 2672 [ 85B8B4032A895A746D46A288A9B30DED ] eeCtrl C:\Programme\Gemeinsame Dateien\Symantec Shared\EENGINE\eeCtrl.sys 13:49:35.0484 2672 eeCtrl - ok 13:49:35.0515 2672 [ B5A8A04A6E5B4E86B95B1553AA918F5F ] EraserUtilRebootDrv C:\Programme\Gemeinsame Dateien\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys 13:49:35.0546 2672 EraserUtilRebootDrv - ok 13:49:35.0578 2672 [ 877C18558D70587AA7823A1A308AC96B ] ERSvc C:\WINDOWS\System32\ersvc.dll 13:49:35.0703 2672 ERSvc - ok 13:49:35.0734 2672 [ A3EDBE9053889FB24AB22492472B39DC ] Eventlog C:\WINDOWS\system32\services.exe 13:49:35.0812 2672 Eventlog - ok 13:49:35.0843 2672 [ AF4F6B5739D18CA7972AB53E091CBC74 ] EventSystem C:\WINDOWS\system32\es.dll 13:49:35.0921 2672 EventSystem - ok 13:49:35.0953 2672 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys 13:49:36.0156 2672 Fastfat - ok 13:49:36.0187 2672 [ 2DB7D303C36DDD055215052F118E8E75 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll 13:49:36.0328 2672 FastUserSwitchingCompatibility - ok 13:49:36.0343 2672 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\DRIVERS\fdc.sys 13:49:36.0453 2672 Fdc - ok 13:49:36.0468 2672 [ B0678A548587C5F1967B0D70BACAD6C1 ] Fips C:\WINDOWS\system32\drivers\Fips.sys 13:49:36.0593 2672 Fips - ok 13:49:36.0625 2672 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\DRIVERS\flpydisk.sys 13:49:36.0750 2672 Flpydisk - ok 13:49:36.0781 2672 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys 13:49:36.0984 2672 FltMgr - ok 13:49:37.0062 2672 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe 13:49:37.0078 2672 FontCache3.0.0.0 - ok 13:49:37.0109 2672 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys 13:49:37.0234 2672 Fs_Rec - ok 13:49:37.0265 2672 [ 8F1955CE42E1484714B542F341647778 ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys 13:49:37.0406 2672 Ftdisk - ok 13:49:37.0437 2672 [ 8182FF89C65E4D38B2DE4BB0FB18564E ] GEARAspiWDM C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys 13:49:37.0453 2672 GEARAspiWDM - ok 13:49:37.0484 2672 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys 13:49:37.0656 2672 Gpc - ok 13:49:37.0718 2672 H2DatabaseService - ok 13:49:37.0781 2672 [ 995178A443B07FA9EEAEA041D7B4B5CA ] hardlock C:\WINDOWS\system32\drivers\hardlock.sys 13:49:37.0828 2672 hardlock - ok 13:49:37.0843 2672 hasplms - ok 13:49:37.0875 2672 [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus C:\WINDOWS\system32\DRIVERS\HDAudBus.sys 13:49:38.0000 2672 HDAudBus - ok 13:49:38.0078 2672 [ CB66BF85BF599BEFD6C6A57C2E20357F ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll 13:49:38.0203 2672 helpsvc - ok 13:49:38.0203 2672 HidServ - ok 13:49:38.0234 2672 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] HidUsb C:\WINDOWS\system32\DRIVERS\hidusb.sys 13:49:38.0390 2672 HidUsb - ok 13:49:38.0421 2672 [ ED29F14101523A6E0E808107405D452C ] hkmsvc C:\WINDOWS\System32\kmsvc.dll 13:49:38.0562 2672 hkmsvc - ok 13:49:38.0578 2672 hpn - ok 13:49:38.0609 2672 [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys 13:49:38.0687 2672 HTTP - ok 13:49:38.0718 2672 [ 9E4ADB854CEBCFB81A4B36718FEECD16 ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll 13:49:38.0843 2672 HTTPFilter - ok 13:49:38.0843 2672 i2omgmt - ok 13:49:38.0859 2672 i2omp - ok 13:49:38.0890 2672 [ E283B97CFBEB86C1D86BAED5F7846A92 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys 13:49:39.0218 2672 i8042prt - ok 13:49:39.0250 2672 [ 06B7EF73BA5F302EECC294CDF7E19702 ] i81x C:\WINDOWS\system32\DRIVERS\i81xnt5.sys 13:49:39.0375 2672 i81x - ok 13:49:39.0406 2672 [ 7B5B44EFE5EB9DADFB8EE29700885D23 ] iAimFP0 C:\WINDOWS\system32\DRIVERS\wADV01nt.sys 13:49:39.0531 2672 iAimFP0 - ok 13:49:39.0546 2672 [ EB1F6BAB6C22EDE0BA551B527475F7E9 ] iAimFP1 C:\WINDOWS\system32\DRIVERS\wADV02NT.sys 13:49:39.0703 2672 iAimFP1 - ok 13:49:39.0718 2672 [ 03CE989D846C1AA81145CB22FCB86D06 ] iAimFP2 C:\WINDOWS\system32\DRIVERS\wADV05NT.sys 13:49:39.0859 2672 iAimFP2 - ok 13:49:39.0875 2672 [ 525849B4469DE021D5D61B4DB9BE3A9D ] iAimFP3 C:\WINDOWS\system32\DRIVERS\wSiINTxx.sys 13:49:39.0984 2672 iAimFP3 - ok 13:49:40.0015 2672 [ 589C2BCDB5BD602BF7B63D210407EF8C ] iAimFP4 C:\WINDOWS\system32\DRIVERS\wVchNTxx.sys 13:49:40.0125 2672 iAimFP4 - ok 13:49:40.0140 2672 [ 0308AEF61941E4AF478FA1A0F83812F5 ] iAimFP5 C:\WINDOWS\system32\DRIVERS\wADV07nt.sys 13:49:40.0468 2672 iAimFP5 - ok 13:49:40.0500 2672 [ 714038A8AA5DE08E12062202CD7EAEB5 ] iAimFP6 C:\WINDOWS\system32\DRIVERS\wADV08nt.sys 13:49:40.0781 2672 iAimFP6 - ok 13:49:40.0812 2672 [ 7BB3AA595E4507A788DE1CDC63F4C8C4 ] iAimFP7 C:\WINDOWS\system32\DRIVERS\wADV09nt.sys 13:49:40.0921 2672 iAimFP7 - ok 13:49:40.0937 2672 [ D83BDD5C059667A2F647A6BE5703A4D2 ] iAimTV0 C:\WINDOWS\system32\DRIVERS\wATV01nt.sys 13:49:41.0046 2672 iAimTV0 - ok 13:49:41.0078 2672 [ ED968D23354DAA0D7C621580C012A1F6 ] iAimTV1 C:\WINDOWS\system32\DRIVERS\wATV02NT.sys 13:49:41.0187 2672 iAimTV1 - ok 13:49:41.0203 2672 [ D738273F218A224C1DDAC04203F27A84 ] iAimTV3 C:\WINDOWS\system32\DRIVERS\wATV04nt.sys 13:49:41.0312 2672 iAimTV3 - ok 13:49:41.0343 2672 [ 0052D118995CBAB152DAABE6106D1442 ] iAimTV4 C:\WINDOWS\system32\DRIVERS\wCh7xxNT.sys 13:49:41.0437 2672 iAimTV4 - ok 13:49:41.0437 2672 [ 791CC45DE6E50445BE72E8AD6401FF45 ] iAimTV5 C:\WINDOWS\system32\DRIVERS\wATV10nt.sys 13:49:41.0593 2672 iAimTV5 - ok 13:49:41.0625 2672 [ 352FA0E98BC461CE1CE5D41F64DB558D ] iAimTV6 C:\WINDOWS\system32\DRIVERS\wATV06nt.sys 13:49:41.0734 2672 iAimTV6 - ok 13:49:41.0781 2672 [ 85D42B7F0DD406ADF5E3EC7659A279EC ] ialm C:\WINDOWS\system32\DRIVERS\igxpmp32.sys 13:49:41.0875 2672 ialm - ok 13:49:41.0984 2672 [ 6F95324909B502E2651442C1548AB12F ] IDriverT C:\Programme\Roxio\Roxio MyDVD Basic v9\InstallShield\Driver\1050\Intel 32\IDriverT.exe 13:49:42.0015 2672 IDriverT ( UnsignedFile.Multi.Generic ) - warning 13:49:42.0015 2672 IDriverT - detected UnsignedFile.Multi.Generic (1) 13:49:42.0078 2672 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe 13:49:42.0281 2672 idsvc - ok 13:49:42.0312 2672 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys 13:49:42.0468 2672 Imapi - ok 13:49:42.0500 2672 [ D4B413AA210C21E46AEDD2BA5B68D38E ] ImapiService C:\WINDOWS\system32\imapi.exe 13:49:42.0625 2672 ImapiService - ok 13:49:42.0640 2672 InCDFs - ok 13:49:42.0640 2672 InCDPass - ok 13:49:42.0656 2672 InCDRm - ok 13:49:42.0656 2672 ini910u - ok 13:49:42.0796 2672 [ B29781B9A90CD55FC5D859C0B1C243BC ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RtkHDAud.sys 13:49:43.0125 2672 IntcAzAudAddService - ok 13:49:43.0140 2672 [ 69C4E3C9E67A1F103B94E14FDD5F3213 ] IntelIde C:\WINDOWS\system32\DRIVERS\intelide.sys 13:49:43.0265 2672 IntelIde - ok 13:49:43.0296 2672 [ 4C7D2750158ED6E7AD642D97BFFAE351 ] intelppm C:\WINDOWS\system32\DRIVERS\intelppm.sys 13:49:43.0468 2672 intelppm - ok 13:49:43.0500 2672 [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw C:\WINDOWS\system32\drivers\ip6fw.sys 13:49:43.0625 2672 Ip6Fw - ok 13:49:43.0656 2672 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys 13:49:43.0796 2672 IpFilterDriver - ok 13:49:43.0812 2672 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys 13:49:43.0937 2672 IpInIp - ok 13:49:43.0953 2672 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys 13:49:44.0218 2672 IpNat - ok 13:49:44.0296 2672 [ E6BE7A41A28D8F2DB174957454D32448 ] iPod Service C:\Programme\iPod\bin\iPodService.exe 13:49:44.0343 2672 iPod Service - ok 13:49:44.0359 2672 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys 13:49:44.0515 2672 IPSec - ok 13:49:44.0546 2672 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys 13:49:44.0671 2672 IRENUM - ok 13:49:44.0703 2672 [ 6DFB88F64135C525433E87648BDA30DE ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys 13:49:44.0812 2672 isapnp - ok 13:49:44.0843 2672 [ 213822072085B5BBAD9AF30AB577D817 ] IviRegMgr C:\Programme\Gemeinsame Dateien\InterVideo\RegMgr\iviRegMgr.exe 13:49:44.0875 2672 IviRegMgr - ok 13:49:44.0906 2672 [ 1704D8C4C8807B889E43C649B478A452 ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys 13:49:45.0046 2672 Kbdclass - ok 13:49:45.0078 2672 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys 13:49:45.0296 2672 kmixer - ok 13:49:45.0343 2672 [ B467646C54CC746128904E1654C750C1 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys 13:49:45.0437 2672 KSecDD - ok 13:49:45.0468 2672 [ 2BBDCB79900990F0716DFCB714E72DE7 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll 13:49:45.0515 2672 lanmanserver - ok 13:49:45.0546 2672 [ 1869B14B06B44B44AF70548E1EA3303F ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll 13:49:45.0609 2672 lanmanworkstation - ok 13:49:45.0625 2672 lbrtfdc - ok 13:49:45.0687 2672 [ 98D884ADC0B8C0FEBCC9D7BEE6D86F90 ] LightScribeService C:\Programme\Gemeinsame Dateien\LightScribe\LSSrvc.exe 13:49:45.0718 2672 LightScribeService - ok 13:49:45.0875 2672 [ E34152D03CAAAAA81DD66D803F392522 ] LiveUpdate C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE 13:49:46.0296 2672 LiveUpdate - ok 13:49:46.0343 2672 [ 636714B7D43C8D0C80449123FD266920 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll 13:49:46.0515 2672 LmHosts - ok 13:49:46.0546 2672 [ C4FD8055F421A8E6F49259A0BF59C40D ] LVRS C:\WINDOWS\system32\DRIVERS\lvrs.sys 13:49:46.0578 2672 LVRS - ok 13:49:46.0703 2672 [ BAB6DBA71DEFBC9D147AFC15CDC9563F ] LVUVC C:\WINDOWS\system32\DRIVERS\lvuvc.sys 13:49:46.0968 2672 LVUVC - ok 13:49:47.0015 2672 [ B7550A7107281D170CE85524B1488C98 ] Messenger C:\WINDOWS\System32\msgsvc.dll 13:49:47.0140 2672 Messenger - ok 13:49:47.0203 2672 Microsoft SharePoint Workspace Audit Service - ok 13:49:47.0234 2672 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys 13:49:47.0421 2672 mnmdd - ok 13:49:47.0453 2672 [ C2F1D365FD96791B037EE504868065D3 ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe 13:49:47.0578 2672 mnmsrvc - ok 13:49:47.0609 2672 [ 6FB74EBD4EC57A6F1781DE3852CC3362 ] Modem C:\WINDOWS\system32\drivers\Modem.sys 13:49:47.0734 2672 Modem - ok 13:49:47.0750 2672 [ B24CE8005DEAB254C0251E15CB71D802 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys 13:49:47.0875 2672 Mouclass - ok 13:49:47.0906 2672 [ 66A6F73C74E1791464160A7065CE711A ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys 13:49:48.0046 2672 mouhid - ok 13:49:48.0062 2672 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys 13:49:48.0187 2672 MountMgr - ok 13:49:48.0296 2672 [ 8BE15F71DE6FF33FC56DCDE7B2B9EFE8 ] MozillaMaintenance C:\Programme\Mozilla Maintenance Service\maintenanceservice.exe 13:49:48.0375 2672 MozillaMaintenance - ok 13:49:48.0375 2672 mraid35x - ok 13:49:48.0390 2672 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys 13:49:48.0515 2672 MRxDAV - ok 13:49:48.0562 2672 [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys 13:49:48.0687 2672 MRxSmb - ok 13:49:48.0718 2672 [ 35A031AF38C55F92D28AA03EE9F12CC9 ] MSDTC C:\WINDOWS\system32\msdtc.exe 13:49:48.0890 2672 MSDTC - ok 13:49:48.0906 2672 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys 13:49:49.0031 2672 Msfs - ok 13:49:49.0031 2672 MSIServer - ok 13:49:49.0078 2672 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys 13:49:49.0328 2672 MSKSSRV - ok 13:49:49.0343 2672 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys 13:49:49.0453 2672 MSPCLOCK - ok 13:49:49.0484 2672 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys 13:49:49.0593 2672 MSPQM - ok 13:49:49.0625 2672 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys 13:49:49.0734 2672 mssmbios - ok 13:49:49.0765 2672 [ E53736A9E30C45FA9E7B5EAC55056D1D ] MSTEE C:\WINDOWS\system32\drivers\MSTEE.sys 13:49:49.0875 2672 MSTEE - ok 13:49:49.0906 2672 [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup C:\WINDOWS\system32\drivers\Mup.sys 13:49:49.0968 2672 Mup - ok 13:49:49.0984 2672 [ 5B50F1B2A2ED47D560577B221DA734DB ] NABTSFEC C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys 13:49:50.0125 2672 NABTSFEC - ok 13:49:50.0171 2672 [ 46BB15AE2AC7D025D6D2567B876817BD ] napagent C:\WINDOWS\System32\qagentrt.dll 13:49:50.0312 2672 napagent - ok 13:49:50.0375 2672 [ 8E4C77AD9BB279900C00F870CC0C674B ] NAVENG C:\PROGRA~1\GEMEIN~1\SYMANT~1\VIRUSD~1\20121111.008\NAVENG.SYS 13:49:50.0421 2672 NAVENG - ok 13:49:50.0468 2672 [ 826F699B69E88A3920C70F344DD42D88 ] NAVEX15 C:\PROGRA~1\GEMEIN~1\SYMANT~1\VIRUSD~1\20121111.008\NAVEX15.SYS 13:49:50.0609 2672 NAVEX15 - ok 13:49:50.0656 2672 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys 13:49:50.0859 2672 NDIS - ok 13:49:50.0875 2672 [ 7FF1F1FD8609C149AA432F95A8163D97 ] NdisIP C:\WINDOWS\system32\DRIVERS\NdisIP.sys 13:49:51.0046 2672 NdisIP - ok 13:49:51.0078 2672 [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys 13:49:51.0140 2672 NdisTapi - ok 13:49:51.0156 2672 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys 13:49:51.0328 2672 Ndisuio - ok 13:49:51.0359 2672 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys 13:49:51.0531 2672 NdisWan - ok 13:49:51.0546 2672 [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys 13:49:51.0609 2672 NDProxy - ok 13:49:51.0640 2672 [ 80B7A96F908DA13617E7E6832C5C6A64 ] Net Driver HPZ12 C:\WINDOWS\system32\HPZinw12.dll 13:49:51.0656 2672 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning 13:49:51.0656 2672 Net Driver HPZ12 - detected UnsignedFile.Multi.Generic (1) 13:49:51.0687 2672 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys 13:49:51.0812 2672 NetBIOS - ok 13:49:51.0843 2672 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys 13:49:52.0046 2672 NetBT - ok 13:49:52.0093 2672 [ 8ACE4251BFFD09CE75679FE940E996CC ] NetDDE C:\WINDOWS\system32\netdde.exe 13:49:52.0312 2672 NetDDE - ok 13:49:52.0312 2672 [ 8ACE4251BFFD09CE75679FE940E996CC ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe 13:49:52.0421 2672 NetDDEdsdm - ok 13:49:52.0453 2672 [ AFB8261B56CBA0D86AEB6DF682AF9785 ] Netlogon C:\WINDOWS\system32\lsass.exe 13:49:52.0578 2672 Netlogon - ok 13:49:52.0609 2672 [ E6D88F1F6745BF00B57E7855A2AB696C ] Netman C:\WINDOWS\System32\netman.dll 13:49:52.0734 2672 Netman - ok 13:49:52.0765 2672 [ D34612C5D02D026535B3095D620626AE ] NetTcpPortSharing c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe 13:49:52.0859 2672 NetTcpPortSharing - ok 13:49:52.0875 2672 [ F1B67B6B0751AE0E6E964B02821206A3 ] Nla C:\WINDOWS\System32\mswsock.dll 13:49:52.0953 2672 Nla - ok 13:49:52.0984 2672 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys 13:49:53.0093 2672 Npfs - ok 13:49:53.0109 2672 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys 13:49:53.0234 2672 Ntfs - ok 13:49:53.0265 2672 [ AFB8261B56CBA0D86AEB6DF682AF9785 ] NtLmSsp C:\WINDOWS\system32\lsass.exe 13:49:53.0359 2672 NtLmSsp - ok 13:49:53.0406 2672 [ 56AF4064996FA5BAC9C449B1514B4770 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll 13:49:53.0546 2672 NtmsSvc - ok 13:49:53.0578 2672 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys 13:49:53.0687 2672 Null - ok 13:49:54.0062 2672 [ 8B2C874897EA498DA012284E12F9DB2B ] nv C:\WINDOWS\system32\DRIVERS\nv4_mini.sys 13:49:54.0859 2672 nv - ok 13:49:54.0890 2672 [ 32F7DEC3729B3BAE66EEBCAB7B03B18F ] NVSvc C:\WINDOWS\system32\nvsvc32.exe 13:49:54.0984 2672 NVSvc - ok 13:49:55.0125 2672 [ 2CC4E45B0EB4C48392CEC9C83B5B8E3B ] nvUpdatusService C:\Programme\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe 13:49:55.0281 2672 nvUpdatusService - ok 13:49:55.0312 2672 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys 13:49:55.0484 2672 NwlnkFlt - ok 13:49:55.0515 2672 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys 13:49:55.0687 2672 NwlnkFwd - ok 13:49:55.0750 2672 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Programme\Gemeinsame Dateien\Microsoft Shared\Source Engine\OSE.EXE 13:49:55.0796 2672 ose - ok 13:49:55.0968 2672 [ 358A9CCA612C68EB2F07DDAD4CE1D8D7 ] osppsvc C:\Programme\Gemeinsame Dateien\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE 13:49:56.0218 2672 osppsvc - ok 13:49:56.0265 2672 [ A7AF0C0860F1C43FC6581BA8A99EABEF ] P3 C:\WINDOWS\system32\DRIVERS\p3.sys 13:49:56.0437 2672 P3 - ok 13:49:56.0453 2672 [ F84785660305B9B903FB3BCA8BA29837 ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys 13:49:56.0578 2672 Parport - ok 13:49:56.0609 2672 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys 13:49:56.0718 2672 PartMgr - ok 13:49:56.0750 2672 [ C2BF987829099A3EAA2CA6A0A90ECB4F ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys 13:49:56.0875 2672 ParVdm - ok 13:49:56.0937 2672 [ 2A42DDAEAAE7743C55A3FA68A7AD9538 ] PCA C:\WINDOWS\SMINST\PCAngel.exe 13:49:57.0000 2672 PCA ( UnsignedFile.Multi.Generic ) - warning 13:49:57.0000 2672 PCA - detected UnsignedFile.Multi.Generic (1) 13:49:57.0015 2672 [ 387E8DEDC343AA2D1EFBC30580273ACD ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys 13:49:57.0234 2672 PCI - ok 13:49:57.0250 2672 PCIDump - ok 13:49:57.0250 2672 [ 59BA86D9A61CBCF4DF8E598C331F5B82 ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys 13:49:57.0375 2672 PCIIde - ok 13:49:57.0406 2672 [ A2A966B77D61847D61A3051DF87C8C97 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys 13:49:57.0515 2672 Pcmcia - ok 13:49:57.0531 2672 PDCOMP - ok 13:49:57.0546 2672 pdfcDispatcher - ok 13:49:57.0562 2672 PDFRAME - ok 13:49:57.0562 2672 PDRELI - ok 13:49:57.0562 2672 PDRFRAME - ok 13:49:57.0578 2672 perc2 - ok 13:49:57.0578 2672 perc2hib - ok 13:49:57.0625 2672 [ A3EDBE9053889FB24AB22492472B39DC ] PlugPlay C:\WINDOWS\system32\services.exe 13:49:57.0671 2672 PlugPlay - ok 13:49:57.0687 2672 [ 0C155C5D8942B3CBCF9506A9D376B9AD ] Pml Driver HPZ12 C:\WINDOWS\system32\HPZipm12.dll 13:49:57.0750 2672 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning 13:49:57.0750 2672 Pml Driver HPZ12 - detected UnsignedFile.Multi.Generic (1) 13:49:57.0765 2672 [ AFB8261B56CBA0D86AEB6DF682AF9785 ] PolicyAgent C:\WINDOWS\system32\lsass.exe 13:49:57.0875 2672 PolicyAgent - ok 13:49:57.0906 2672 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys 13:49:58.0078 2672 PptpMiniport - ok 13:49:58.0093 2672 [ AFB8261B56CBA0D86AEB6DF682AF9785 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe 13:49:58.0187 2672 ProtectedStorage - ok 13:49:58.0218 2672 [ 09298EC810B07E5D582CB3A3F9255424 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys 13:49:58.0421 2672 PSched - ok 13:49:58.0453 2672 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys 13:49:58.0578 2672 Ptilink - ok 13:49:58.0609 2672 [ FEFFCFDC528764A04C8ED63D5FA6E711 ] PxHelp20 C:\WINDOWS\system32\Drivers\PxHelp20.sys 13:49:58.0625 2672 PxHelp20 ( UnsignedFile.Multi.Generic ) - warning 13:49:58.0625 2672 PxHelp20 - detected UnsignedFile.Multi.Generic (1) 13:49:58.0625 2672 ql1080 - ok 13:49:58.0625 2672 Ql10wnt - ok 13:49:58.0640 2672 ql12160 - ok 13:49:58.0640 2672 ql1240 - ok 13:49:58.0656 2672 ql1280 - ok 13:49:58.0671 2672 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys 13:49:58.0796 2672 RasAcd - ok 13:49:58.0843 2672 [ F5BA6CACCDB66C8F048E867563203246 ] RasAuto C:\WINDOWS\System32\rasauto.dll 13:49:58.0953 2672 RasAuto - ok 13:49:58.0984 2672 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys 13:49:59.0109 2672 Rasl2tp - ok 13:49:59.0125 2672 [ F9A7B66EA345726EDB5862A46B1ECCD5 ] RasMan C:\WINDOWS\System32\rasmans.dll 13:49:59.0265 2672 RasMan - ok 13:49:59.0281 2672 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys 13:49:59.0421 2672 RasPppoe - ok 13:49:59.0468 2672 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys 13:49:59.0593 2672 Raspti - ok 13:49:59.0625 2672 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys 13:49:59.0750 2672 Rdbss - ok 13:49:59.0781 2672 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys 13:49:59.0906 2672 RDPCDD - ok 13:49:59.0937 2672 [ 15CABD0F7C00C47C70124907916AF3F1 ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys 13:50:00.0078 2672 rdpdr - ok 13:50:00.0125 2672 [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys 13:50:00.0281 2672 RDPWD - ok 13:50:00.0312 2672 [ 263AF18AF0F3DB99F574C95F284CCEC9 ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe 13:50:00.0437 2672 RDSessMgr - ok 13:50:00.0468 2672 [ ED761D453856F795A7FE056E42C36365 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys 13:50:00.0765 2672 redbook - ok 13:50:00.0796 2672 [ 0E97EC96D6942CEEC2D188CC2EB69A01 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll 13:50:00.0968 2672 RemoteAccess - ok 13:50:01.0000 2672 [ E4CD1F3D84E1C2CA0B8CF7501E201593 ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll 13:50:01.0156 2672 RemoteRegistry - ok 13:50:01.0296 2672 [ 4F4A4C09CC5BE58A76CAC1C337E004E6 ] RimUsb C:\WINDOWS\system32\Drivers\RimUsb.sys 13:50:01.0406 2672 RimUsb - ok 13:50:01.0453 2672 [ 3A5633AD615E2B15291BD0B1B97CCD8A ] RimVSerPort C:\WINDOWS\system32\DRIVERS\RimSerial.sys 13:50:01.0484 2672 RimVSerPort - ok 13:50:01.0500 2672 [ D8B0B4ADE32574B2D9C5CC34DC0DBBE7 ] ROOTMODEM C:\WINDOWS\system32\Drivers\RootMdm.sys 13:50:01.0625 2672 ROOTMODEM - ok 13:50:01.0718 2672 [ AD1411A7EA50F2F97A73A3F51153066E ] RoxMediaDB9 C:\Programme\Gemeinsame Dateien\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe 13:50:01.0828 2672 RoxMediaDB9 - ok 13:50:01.0875 2672 [ 2A02E21867497DF20B8FC95631395169 ] RpcLocator C:\WINDOWS\system32\locator.exe 13:50:02.0046 2672 RpcLocator - ok 13:50:02.0078 2672 [ 3127AFBF2C1ED0AB14A1BBB7AAECB85B ] RpcSs C:\WINDOWS\system32\rpcss.dll 13:50:02.0125 2672 RpcSs - ok 13:50:02.0234 2672 [ 4BDD71B4B521521499DFD14735C4F398 ] RSVP C:\WINDOWS\system32\rsvp.exe 13:50:02.0359 2672 RSVP - ok 13:50:02.0390 2672 [ AFB8261B56CBA0D86AEB6DF682AF9785 ] SamSs C:\WINDOWS\system32\lsass.exe 13:50:02.0500 2672 SamSs - ok 13:50:02.0531 2672 [ DCEC079FAD95D36C8DD5CB6D779DFE32 ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe 13:50:02.0656 2672 SCardSvr - ok 13:50:02.0687 2672 [ A050194A44D7FA8D7186ED2F4E8367AE ] Schedule C:\WINDOWS\system32\schedsvc.dll 13:50:02.0812 2672 Schedule - ok 13:50:02.0843 2672 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys 13:50:02.0953 2672 Secdrv - ok 13:50:02.0984 2672 [ BEE4CFD1D48C23B44CF4B974B0B79B2B ] seclogon C:\WINDOWS\System32\seclogon.dll 13:50:03.0093 2672 seclogon - ok 13:50:03.0203 2672 [ 2AAC9B6ED9EDDFFB721D6452E34D67E3 ] SENS C:\WINDOWS\system32\sens.dll 13:50:03.0390 2672 SENS - ok 13:50:03.0437 2672 [ A2CC81C30BEF6AC9F27055490EEF6DE3 ] Sentinel C:\WINDOWS\System32\Drivers\SENTINEL.SYS 13:50:03.0453 2672 Sentinel - ok 13:50:03.0515 2672 [ E11D5A8852A383D4BE26356B87BFAB55 ] SentinelKeysServer C:\Programme\Gemeinsame Dateien\SafeNet Sentinel\Sentinel Keys Server\sntlkeyssrvr.exe 13:50:03.0546 2672 SentinelKeysServer - ok 13:50:03.0703 2672 [ 6C364354B9342A26755093E880300F73 ] SentinelProtectionServer C:\Programme\Gemeinsame Dateien\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe 13:50:03.0796 2672 SentinelProtectionServer - ok 13:50:03.0828 2672 [ 84A7514061F62744FEF0201BC9507C41 ] SentinelSecurityRuntime C:\Programme\Gemeinsame Dateien\SafeNet Sentinel\Sentinel Security Runtime\sntlsrtsrvr.exe 13:50:03.0859 2672 SentinelSecurityRuntime - ok 13:50:03.0890 2672 [ 0F29512CCD6BEAD730039FB4BD2C85CE ] serenum C:\WINDOWS\system32\DRIVERS\serenum.sys 13:50:04.0093 2672 serenum - ok 13:50:04.0234 2672 [ CF24EB4F0412C82BCD1F4F35A025E31D ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys 13:50:04.0406 2672 Serial - ok 13:50:04.0437 2672 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys 13:50:04.0562 2672 Sfloppy - ok 13:50:04.0593 2672 [ CAD058D5F8B889A87CA3EB3CF624DCEF ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll 13:50:04.0718 2672 SharedAccess - ok 13:50:04.0734 2672 [ 2DB7D303C36DDD055215052F118E8E75 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll 13:50:04.0765 2672 ShellHWDetection - ok 13:50:04.0781 2672 [ 3EAD8E1668CE42A0AFE41D56E7157BCF ] silabenm C:\WINDOWS\system32\DRIVERS\silabenm.sys 13:50:04.0890 2672 silabenm - ok 13:50:04.0906 2672 [ 177D3EBF3E236A272D769C14F73ECC3E ] silabser C:\WINDOWS\system32\DRIVERS\silabser.sys 13:50:04.0953 2672 silabser - ok 13:50:04.0953 2672 Simbad - ok 13:50:04.0968 2672 [ 866D538EBE33709A5C9F5C62B73B7D14 ] SLIP C:\WINDOWS\system32\DRIVERS\SLIP.sys 13:50:05.0093 2672 SLIP - ok 13:50:05.0203 2672 [ F86F007485B08B0F3F04F9053777C066 ] SmcService C:\Programme\Symantec\Symantec Endpoint Protection\Smc.exe 13:50:05.0343 2672 SmcService - ok 13:50:05.0375 2672 [ 74915B775116238CFF936896D019C79D ] SNAC C:\Programme\Symantec\Symantec Endpoint Protection\SNAC.EXE 13:50:05.0421 2672 SNAC - ok 13:50:05.0453 2672 [ 928310CFD08FA17F6AD8D63E53B395AD ] SNTNLUSB C:\WINDOWS\system32\DRIVERS\SNTNLUSB.SYS 13:50:05.0484 2672 SNTNLUSB - ok 13:50:05.0484 2672 Sparrow - ok 13:50:05.0546 2672 [ E621BB5839CF45FA477F48092EDD2B40 ] SPBBCDrv C:\Programme\Gemeinsame Dateien\Symantec Shared\SPBBC\SPBBCDrv.sys 13:50:05.0578 2672 SPBBCDrv - ok 13:50:05.0593 2672 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINDOWS\system32\drivers\splitter.sys 13:50:05.0750 2672 splitter - ok 13:50:05.0796 2672 [ 60784F891563FB1B767F70117FC2428F ] Spooler C:\WINDOWS\system32\spoolsv.exe 13:50:05.0843 2672 Spooler - ok 13:50:05.0875 2672 [ CDDDEC541BC3C96F91ECB48759673505 ] sptd C:\WINDOWS\system32\Drivers\sptd.sys 13:50:05.0875 2672 Suspicious file (NoAccess): C:\WINDOWS\system32\Drivers\sptd.sys. md5: CDDDEC541BC3C96F91ECB48759673505 13:50:05.0875 2672 sptd ( LockedFile.Multi.Generic ) - warning 13:50:05.0875 2672 sptd - detected LockedFile.Multi.Generic (1) 13:50:05.0906 2672 [ 50FA898F8C032796D3B1B9951BB5A90F ] sr C:\WINDOWS\system32\DRIVERS\sr.sys 13:50:06.0031 2672 sr - ok 13:50:06.0046 2672 [ FE77A85495065F3AD59C5C65B6C54182 ] srservice C:\WINDOWS\system32\srsvc.dll 13:50:06.0187 2672 srservice - ok 13:50:06.0218 2672 [ 2ABF82C8452AB0B9FFC74A2D5DA91989 ] SRTSP C:\WINDOWS\system32\Drivers\SRTSP.SYS 13:50:06.0250 2672 SRTSP - ok 13:50:06.0281 2672 [ E2F9E5887BEA5BD8784D337E06EDA31B ] SRTSPL C:\WINDOWS\system32\Drivers\SRTSPL.SYS 13:50:06.0312 2672 SRTSPL - ok 13:50:06.0343 2672 [ 3B974C158FABD910186F98DF8D3E23F3 ] SRTSPX C:\WINDOWS\system32\Drivers\SRTSPX.SYS 13:50:06.0375 2672 SRTSPX - ok 13:50:06.0390 2672 [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys 13:50:06.0453 2672 Srv - ok 13:50:06.0468 2672 [ 4DF5B05DFAEC29E13E1ED6F6EE12C500 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll 13:50:06.0593 2672 SSDPSRV - ok 13:50:06.0640 2672 [ BC2C5985611C5356B24AEB370953DED9 ] stisvc C:\WINDOWS\system32\wiaservc.dll 13:50:06.0765 2672 stisvc - ok 13:50:06.0812 2672 [ B254B1434208F280EDF3785613DCC41B ] stllssvr C:\Programme\Gemeinsame Dateien\SureThing Shared\stllssvr.exe 13:50:06.0828 2672 stllssvr ( UnsignedFile.Multi.Generic ) - warning 13:50:06.0828 2672 stllssvr - detected UnsignedFile.Multi.Generic (1) 13:50:06.0859 2672 [ 77813007BA6265C4B6098187E6ED79D2 ] streamip C:\WINDOWS\system32\DRIVERS\StreamIP.sys 13:50:06.0984 2672 streamip - ok 13:50:07.0015 2672 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys 13:50:07.0125 2672 swenum - ok 13:50:07.0218 2672 [ F577910A133A592234EBAAD3F3AFA258 ] SwitchBoard C:\Programme\Gemeinsame Dateien\Adobe\SwitchBoard\SwitchBoard.exe 13:50:07.0328 2672 SwitchBoard ( UnsignedFile.Multi.Generic ) - warning 13:50:07.0328 2672 SwitchBoard - detected UnsignedFile.Multi.Generic (1) 13:50:07.0359 2672 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys 13:50:07.0484 2672 swmidi - ok 13:50:07.0484 2672 SwPrv - ok 13:50:07.0562 2672 [ B9B3B38A852F13D6F61ACB3994872EDA ] Symantec AntiVirus C:\Programme\Symantec\Symantec Endpoint Protection\Rtvscan.exe 13:50:07.0703 2672 Symantec AntiVirus - ok 13:50:07.0734 2672 [ 1FF3217614018630D0A6758630FC698C ] symc810 C:\WINDOWS\system32\DRIVERS\symc810.sys 13:50:07.0890 2672 symc810 - ok 13:50:07.0906 2672 [ 070E001D95CF725186EF8B20335F933C ] symc8xx C:\WINDOWS\system32\DRIVERS\symc8xx.sys 13:50:08.0046 2672 symc8xx - ok 13:50:08.0078 2672 [ A54FF04BD6E75DC4D8CB6F3E352635E0 ] SymEvent C:\WINDOWS\system32\Drivers\SYMEVENT.SYS 13:50:08.0093 2672 SymEvent - ok 13:50:08.0187 2672 [ F2B7E8416F508368AC6730E2AE1C614F ] Symmpi C:\WINDOWS\system32\DRIVERS\symmpi.sys 13:50:08.0203 2672 Symmpi ( UnsignedFile.Multi.Generic ) - warning 13:50:08.0203 2672 Symmpi - detected UnsignedFile.Multi.Generic (1) 13:50:08.0218 2672 [ 80AC1C4ABBE2DF3B738BF15517A51F2C ] sym_hi C:\WINDOWS\system32\DRIVERS\sym_hi.sys 13:50:08.0343 2672 sym_hi - ok 13:50:08.0359 2672 [ BF4FAB949A382A8E105F46EBB4937058 ] sym_u3 C:\WINDOWS\system32\DRIVERS\sym_u3.sys 13:50:08.0468 2672 sym_u3 - ok 13:50:08.0484 2672 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys 13:50:08.0609 2672 sysaudio - ok 13:50:08.0640 2672 [ 2903FFFA2523926D6219428040DCE6B9 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe 13:50:08.0765 2672 SysmonLog - ok 13:50:08.0796 2672 [ 05903CAC4B98908D55EA5774775B382E ] TapiSrv C:\WINDOWS\System32\tapisrv.dll 13:50:08.0984 2672 TapiSrv - ok 13:50:09.0031 2672 [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys 13:50:09.0093 2672 Tcpip - ok 13:50:09.0125 2672 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys 13:50:09.0250 2672 TDPIPE - ok 13:50:09.0265 2672 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys 13:50:09.0390 2672 TDTCP - ok 13:50:09.0437 2672 [ 1DE2E1357552A79F39BFF003A11C533E ] Teefer2 C:\WINDOWS\system32\DRIVERS\teefer2.sys 13:50:09.0453 2672 Teefer2 - ok 13:50:09.0484 2672 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys 13:50:09.0625 2672 TermDD - ok 13:50:09.0656 2672 [ B7DE02C863D8F5A005A7BF375375A6A4 ] TermService C:\WINDOWS\System32\termsrv.dll 13:50:09.0843 2672 TermService - ok 13:50:09.0875 2672 [ 2DB7D303C36DDD055215052F118E8E75 ] Themes C:\WINDOWS\System32\shsvcs.dll 13:50:09.0890 2672 Themes - ok 13:50:09.0921 2672 [ 03681A1CE77F51586903869A5AB1DEAB ] TlntSvr C:\WINDOWS\system32\tlntsvr.exe 13:50:10.0062 2672 TlntSvr - ok 13:50:10.0062 2672 TosIde - ok 13:50:10.0171 2672 [ 626504572B175867F30F3215C04B3E2F ] TrkWks C:\WINDOWS\system32\trkwks.dll 13:50:10.0265 2672 TrkWks - ok 13:50:10.0296 2672 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys 13:50:10.0406 2672 Udfs - ok 13:50:10.0421 2672 ultra - ok 13:50:10.0484 2672 [ 5B27BAC376642259825A6131879D760B ] UMVPFSrv C:\Programme\Gemeinsame Dateien\logishrd\LVMVFM\UMVPFSrv.exe 13:50:10.0546 2672 UMVPFSrv - ok 13:50:10.0578 2672 [ AB0A7CA90D9E3D6A193905DC1715DED0 ] UMWdf C:\WINDOWS\system32\wdfmgr.exe 13:50:10.0656 2672 UMWdf - ok 13:50:10.0687 2672 [ 1DFD8975D8C89214B98D9387C1125B49 ] upnphost C:\WINDOWS\System32\upnphost.dll 13:50:10.0828 2672 upnphost - ok 13:50:10.0843 2672 [ 9B11E6118958E63E1FEF129466E2BDA7 ] UPS C:\WINDOWS\System32\ups.exe 13:50:10.0968 2672 UPS - ok 13:50:11.0000 2672 [ EAFE1E00739AFE6C51487A050E772E17 ] USBAAPL C:\WINDOWS\system32\Drivers\usbaapl.sys 13:50:11.0078 2672 USBAAPL - ok 13:50:11.0187 2672 [ E919708DB44ED8543A7C017953148330 ] usbaudio C:\WINDOWS\system32\drivers\usbaudio.sys 13:50:11.0312 2672 usbaudio - ok 13:50:11.0328 2672 [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys 13:50:11.0453 2672 usbccgp - ok 13:50:11.0484 2672 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys 13:50:11.0609 2672 usbehci - ok 13:50:11.0640 2672 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys 13:50:11.0796 2672 usbhub - ok 13:50:11.0828 2672 [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys 13:50:11.0937 2672 usbscan - ok 13:50:11.0968 2672 [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS 13:50:12.0093 2672 USBSTOR - ok 13:50:12.0171 2672 [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys 13:50:12.0281 2672 usbuhci - ok 13:50:12.0296 2672 [ 63BBFCA7F390F4C49ED4B96BFB1633E0 ] usbvideo C:\WINDOWS\system32\Drivers\usbvideo.sys 13:50:12.0437 2672 usbvideo - ok 13:50:12.0453 2672 [ B6CC50279D6CD28E090A5D33244ADC9A ] usb_rndisx C:\WINDOWS\system32\DRIVERS\usb8023x.sys 13:50:12.0562 2672 usb_rndisx - ok 13:50:12.0578 2672 [ 2AC3EC0AAF2329F4012A625FD29DB678 ] VBoxDrv C:\WINDOWS\system32\DRIVERS\VBoxDrv.sys 13:50:12.0609 2672 VBoxDrv - ok 13:50:12.0640 2672 [ C75785CB32F683924088040904CB544D ] VBoxNetFlt C:\WINDOWS\system32\DRIVERS\VBoxNetFlt.sys 13:50:12.0656 2672 VBoxNetFlt - ok 13:50:12.0687 2672 [ 80F6738AD80A1D7DC8D890CE156DC4AD ] VBoxUSBMon C:\WINDOWS\system32\DRIVERS\VBoxUSBMon.sys 13:50:12.0718 2672 VBoxUSBMon - ok 13:50:12.0734 2672 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys 13:50:12.0859 2672 VgaSave - ok 13:50:12.0875 2672 [ 3B3EFCDA263B8AC14FDF9CBDD0791B2E ] ViaIde C:\WINDOWS\system32\DRIVERS\viaide.sys 13:50:12.0984 2672 ViaIde - ok 13:50:13.0000 2672 vmci - ok 13:50:13.0000 2672 VMnetAdapter - ok 13:50:13.0031 2672 [ A5A712F4E880874A477AF790B5186E1D ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys 13:50:13.0156 2672 VolSnap - ok 13:50:13.0203 2672 [ 68F106273BE29E7B7EF8266977268E78 ] VSS C:\WINDOWS\System32\vssvc.exe 13:50:13.0343 2672 VSS - ok 13:50:13.0390 2672 [ 7B353059E665F8B7AD2BBEAEF597CF45 ] W32Time C:\WINDOWS\system32\w32time.dll 13:50:13.0500 2672 W32Time - ok 13:50:13.0531 2672 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys 13:50:13.0640 2672 Wanarp - ok 13:50:13.0687 2672 [ D918617B46457B9AC28027722E30F647 ] Wdf01000 C:\WINDOWS\system32\Drivers\wdf01000.sys 13:50:13.0718 2672 Wdf01000 - ok 13:50:13.0734 2672 WDICA - ok 13:50:13.0875 2672 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys 13:50:14.0000 2672 wdmaud - ok 13:50:14.0031 2672 [ 81727C9873E3905A2FFC1EBD07265002 ] WebClient C:\WINDOWS\System32\webclnt.dll 13:50:14.0156 2672 WebClient - ok 13:50:14.0218 2672 [ 6F3F3973D97714CC5F906A19FE883729 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll 13:50:14.0343 2672 winmgmt - ok 13:50:14.0375 2672 [ 140EF97B64F560FD78643CAE2CDAD838 ] WmdmPmSN C:\WINDOWS\system32\mspmsnsv.dll 13:50:14.0437 2672 WmdmPmSN - ok 13:50:14.0468 2672 [ FFA4D901D46D07A5BAB2D8307FBB51A6 ] Wmi C:\WINDOWS\System32\advapi32.dll 13:50:14.0546 2672 Wmi - ok 13:50:14.0593 2672 [ 93908111BA57A6E60EC2FA2DE202105C ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe 13:50:14.0703 2672 WmiApSrv - ok 13:50:14.0718 2672 [ 1385E5AA9C9821790D33A9563B8D2DD0 ] WpdUsb C:\WINDOWS\system32\Drivers\wpdusb.sys 13:50:14.0765 2672 WpdUsb - ok 13:50:14.0781 2672 [ C24CFB097547DD4DD9040EC9757F0DCA ] WPS C:\WINDOWS\system32\drivers\wpsdrvnt.sys 13:50:14.0812 2672 WPS - ok 13:50:14.0828 2672 [ C306D2037EC147C7C663994F12B87F1E ] WpsHelper C:\WINDOWS\system32\drivers\WpsHelper.sys 13:50:14.0859 2672 WpsHelper - ok 13:50:14.0875 2672 [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] WS2IFSL C:\WINDOWS\System32\drivers\ws2ifsl.sys 13:50:15.0000 2672 WS2IFSL - ok 13:50:15.0031 2672 [ 300B3E84FAF1A5C1F791C159BA28035D ] wscsvc C:\WINDOWS\system32\wscsvc.dll 13:50:15.0156 2672 wscsvc - ok 13:50:15.0265 2672 [ C98B39829C2BBD34E454150633C62C78 ] WSTCODEC C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS 13:50:15.0359 2672 WSTCODEC - ok 13:50:15.0406 2672 [ 7B4FE05202AA6BF9F4DFD0E6A0D8A085 ] wuauserv C:\WINDOWS\system32\wuauserv.dll 13:50:15.0515 2672 wuauserv - ok 13:50:15.0562 2672 [ C4F109C005F6725162D2D12CA751E4A7 ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll 13:50:15.0687 2672 WZCSVC - ok 13:50:15.0734 2672 [ 0ADA34871A2E1CD2CAAFED1237A47750 ] xmlprov C:\WINDOWS\System32\xmlprov.dll 13:50:15.0859 2672 xmlprov - ok 13:50:15.0859 2672 ================ Scan global =============================== 13:50:15.0890 2672 [ 2C60091CA5F67C3032EAB3B30390C27F ] C:\WINDOWS\system32\basesrv.dll 13:50:15.0921 2672 [ A28CE25B59C90E12743001A1F2AE3613 ] C:\WINDOWS\system32\winsrv.dll 13:50:15.0953 2672 [ A28CE25B59C90E12743001A1F2AE3613 ] C:\WINDOWS\system32\winsrv.dll 13:50:15.0984 2672 [ A3EDBE9053889FB24AB22492472B39DC ] C:\WINDOWS\system32\services.exe 13:50:15.0984 2672 [Global] - ok 13:50:15.0984 2672 ================ Scan MBR ================================== 13:50:16.0000 2672 [ 4F02A8D4048A138C450ED7F867EB0144 ] \Device\Harddisk0\DR0 13:50:16.0281 2672 \Device\Harddisk0\DR0 - ok 13:50:16.0281 2672 ================ Scan VBR ================================== 13:50:16.0281 2672 [ 9B2C863074D558DDD49952D2AFAA2E0A ] \Device\Harddisk0\DR0\Partition1 13:50:16.0281 2672 \Device\Harddisk0\DR0\Partition1 - ok 13:50:16.0296 2672 [ 29B02761BA31D37A1CBAD88EB16C4606 ] \Device\Harddisk0\DR0\Partition2 13:50:16.0296 2672 \Device\Harddisk0\DR0\Partition2 - ok 13:50:16.0296 2672 ============================================================ 13:50:16.0296 2672 Scan finished 13:50:16.0296 2672 ============================================================ 13:50:16.0312 3940 Detected object count: 10 13:50:16.0312 3940 Actual detected object count: 10 13:50:26.0890 3940 adpu320 ( UnsignedFile.Multi.Generic ) - skipped by user 13:50:26.0890 3940 adpu320 ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:50:26.0906 3940 IDriverT ( UnsignedFile.Multi.Generic ) - skipped by user 13:50:26.0906 3940 IDriverT ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:50:26.0906 3940 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user 13:50:26.0906 3940 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:50:26.0906 3940 PCA ( UnsignedFile.Multi.Generic ) - skipped by user 13:50:26.0906 3940 PCA ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:50:26.0906 3940 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user 13:50:26.0906 3940 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:50:26.0906 3940 PxHelp20 ( UnsignedFile.Multi.Generic ) - skipped by user 13:50:26.0906 3940 PxHelp20 ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:50:26.0906 3940 sptd ( LockedFile.Multi.Generic ) - skipped by user 13:50:26.0906 3940 sptd ( LockedFile.Multi.Generic ) - User select action: Skip 13:50:26.0906 3940 stllssvr ( UnsignedFile.Multi.Generic ) - skipped by user 13:50:26.0906 3940 stllssvr ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:50:26.0906 3940 SwitchBoard ( UnsignedFile.Multi.Generic ) - skipped by user 13:50:26.0906 3940 SwitchBoard ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:50:26.0921 3940 Symmpi ( UnsignedFile.Multi.Generic ) - skipped by user 13:50:26.0921 3940 Symmpi ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:52:29.0328 2880 ============================================================ 13:52:29.0328 2880 Scan started 13:52:29.0328 2880 Mode: Manual; SigCheck; TDLFS; 13:52:29.0328 2880 ============================================================ 13:52:30.0328 2880 ================ Scan system memory ======================== 13:52:31.0718 2880 System memory - ok 13:52:31.0718 2880 ================ Scan services ============================= 13:52:31.0843 2880 Abiosdsk - ok 13:52:31.0843 2880 abp480n5 - ok 13:52:31.0875 2880 [ 0F2D66D5F08EBE2F77BB904288DCF6F0 ] ac97intc C:\WINDOWS\system32\drivers\ac97intc.sys 13:52:32.0078 2880 ac97intc - ok 13:52:32.0125 2880 [ AC407F1A62C3A300B4F2B5A9F1D55B2C ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys 13:52:32.0250 2880 ACPI - ok 13:52:32.0265 2880 [ 9E1CA3160DAFB159CA14F83B1E317F75 ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys 13:52:32.0406 2880 ACPIEC - ok 13:52:32.0468 2880 [ 44C00A385CA9DBC1D5CF3781F8C26AEA ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe 13:52:32.0531 2880 AdobeFlashPlayerUpdateSvc - ok 13:52:32.0546 2880 [ 9A11864873DA202C996558B2106B0BBC ] adpu160m C:\WINDOWS\system32\DRIVERS\adpu160m.sys 13:52:32.0671 2880 adpu160m - ok 13:52:32.0687 2880 [ 0EA9B1F0C6C90A509C8603775366ADB7 ] adpu320 C:\WINDOWS\system32\DRIVERS\adpu320.sys 13:52:32.0718 2880 adpu320 ( UnsignedFile.Multi.Generic ) - warning 13:52:32.0718 2880 adpu320 - detected UnsignedFile.Multi.Generic (1) 13:52:32.0765 2880 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys 13:52:32.0875 2880 aec - ok 13:52:32.0890 2880 [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD C:\WINDOWS\System32\drivers\afd.sys 13:52:32.0937 2880 AFD - ok 13:52:32.0953 2880 Aha154x - ok 13:52:32.0953 2880 [ 19DD0FB48B0C18892F70E2E7D61A1529 ] aic78u2 C:\WINDOWS\system32\DRIVERS\aic78u2.sys 13:52:33.0078 2880 aic78u2 - ok 13:52:33.0078 2880 [ B7FE594A7468AA0132DEB03FB8E34326 ] aic78xx C:\WINDOWS\system32\DRIVERS\aic78xx.sys 13:52:33.0187 2880 aic78xx - ok 13:52:33.0234 2880 [ 45F65F2F7AE28E5E56AB64E3AC61BD52 ] aksfridge C:\WINDOWS\system32\DRIVERS\aksfridge.sys 13:52:33.0281 2880 aksfridge - ok 13:52:33.0312 2880 [ 64FC197D24A2B240598F29CE0A6660C0 ] akshasp C:\WINDOWS\system32\DRIVERS\akshasp.sys 13:52:33.0359 2880 akshasp - ok 13:52:33.0390 2880 [ 147B61B81BE1FFC38939EA47E5CFB51F ] akshhl C:\WINDOWS\system32\DRIVERS\akshhl.sys 13:52:33.0406 2880 akshhl - ok 13:52:33.0437 2880 [ CCE6C56F18D214DE8D66F3F2A774CD5B ] aksusb C:\WINDOWS\system32\DRIVERS\aksusb.sys 13:52:33.0468 2880 aksusb - ok 13:52:33.0500 2880 [ 738D80CC01D7BC7584BE917B7F544394 ] Alerter C:\WINDOWS\system32\alrsvc.dll 13:52:33.0609 2880 Alerter - ok 13:52:33.0625 2880 [ 190CD73D4984F94D823F9444980513E5 ] ALG C:\WINDOWS\System32\alg.exe 13:52:33.0734 2880 ALG - ok 13:52:33.0734 2880 AliIde - ok 13:52:33.0750 2880 amsint - ok 13:52:33.0859 2880 [ F401929EE0CC92BFE7F15161CA535383 ] Apple Mobile Device C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\AppleMobileDeviceService.exe 13:52:33.0890 2880 Apple Mobile Device - ok 13:52:33.0937 2880 [ D45960BE52C3C610D361977057F98C54 ] AppMgmt C:\WINDOWS\System32\appmgmts.dll 13:52:34.0046 2880 AppMgmt - ok 13:52:34.0062 2880 asc - ok 13:52:34.0062 2880 asc3350p - ok 13:52:34.0078 2880 asc3550 - ok 13:52:34.0171 2880 [ 0E5E4957549056E2BF2C49F4F6B601AD ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe 13:52:34.0234 2880 aspnet_state - ok 13:52:34.0250 2880 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys 13:52:34.0375 2880 AsyncMac - ok 13:52:34.0406 2880 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys 13:52:34.0531 2880 atapi - ok 13:52:34.0546 2880 Atdisk - ok 13:52:34.0562 2880 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys 13:52:34.0687 2880 Atmarpc - ok 13:52:34.0718 2880 [ 58ED0D5452DF7BE732193E7999C6B9A4 ] AudioSrv C:\WINDOWS\System32\audiosrv.dll 13:52:34.0843 2880 AudioSrv - ok 13:52:34.0859 2880 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys 13:52:34.0968 2880 audstub - ok 13:52:35.0031 2880 [ 6163664C7E9CD110AF70180C126C3FDC ] BcmSqlStartupSvc C:\Programme\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe 13:52:35.0062 2880 BcmSqlStartupSvc - ok 13:52:35.0078 2880 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys 13:52:35.0203 2880 Beep - ok 13:52:35.0250 2880 [ D6F603772A789BB3228F310D650B8BD1 ] BITS C:\WINDOWS\system32\qmgr.dll 13:52:35.0359 2880 BITS - ok 13:52:35.0421 2880 [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] Bonjour Service C:\Programme\Bonjour\mDNSResponder.exe 13:52:35.0484 2880 Bonjour Service - ok 13:52:35.0515 2880 [ B71549F23736ADF83A571061C47777FD ] Browser C:\WINDOWS\System32\browser.dll 13:52:35.0546 2880 Browser - ok 13:52:35.0578 2880 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys 13:52:35.0703 2880 cbidf2k - ok 13:52:35.0734 2880 [ 0BE5AEF125BE881C4F854C554F2B025C ] CCDECODE C:\WINDOWS\system32\DRIVERS\CCDECODE.sys 13:52:35.0843 2880 CCDECODE - ok 13:52:35.0906 2880 [ 27D036FB3D22CA8A6662FE960D1A937D ] ccEvtMgr C:\Programme\Gemeinsame Dateien\Symantec Shared\ccSvcHst.exe 13:52:35.0921 2880 ccEvtMgr - ok 13:52:35.0937 2880 [ 27D036FB3D22CA8A6662FE960D1A937D ] ccSetMgr C:\Programme\Gemeinsame Dateien\Symantec Shared\ccSvcHst.exe 13:52:35.0968 2880 ccSetMgr - ok 13:52:35.0968 2880 cd20xrnt - ok 13:52:36.0000 2880 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys 13:52:36.0125 2880 Cdaudio - ok 13:52:36.0171 2880 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys 13:52:36.0265 2880 Cdfs - ok 13:52:36.0296 2880 [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys 13:52:36.0406 2880 Cdrom - ok 13:52:36.0406 2880 Changer - ok 13:52:36.0437 2880 [ 28E3040D1F1CA2008CD6B29DFEBC9A5E ] CiSvc C:\WINDOWS\system32\cisvc.exe 13:52:36.0562 2880 CiSvc - ok 13:52:36.0578 2880 [ 778A30ED3C134EB7E406AFC407E9997D ] ClipSrv C:\WINDOWS\system32\clipsrv.exe 13:52:36.0703 2880 ClipSrv - ok 13:52:36.0750 2880 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe 13:52:36.0796 2880 clr_optimization_v2.0.50727_32 - ok 13:52:36.0796 2880 CmdIde - ok 13:52:36.0828 2880 [ C586875ECE5318C6309ED1AB79D0E55F ] COH_Mon C:\WINDOWS\system32\Drivers\COH_Mon.sys 13:52:36.0843 2880 COH_Mon - ok 13:52:36.0859 2880 COMSysApp - ok 13:52:36.0875 2880 Cpqarray - ok 13:52:36.0906 2880 [ 611F824E5C703A5A899F84C5F1699E4D ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll 13:52:37.0015 2880 CryptSvc - ok 13:52:37.0015 2880 dac2w2k - ok 13:52:37.0031 2880 dac960nt - ok 13:52:37.0062 2880 [ 3127AFBF2C1ED0AB14A1BBB7AAECB85B ] DcomLaunch C:\WINDOWS\system32\rpcss.dll 13:52:37.0140 2880 DcomLaunch - ok 13:52:37.0171 2880 [ C29A1C9B75BA38FA37F8C44405DEC360 ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll 13:52:37.0296 2880 Dhcp - ok 13:52:37.0328 2880 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys 13:52:37.0437 2880 Disk - ok 13:52:37.0468 2880 [ A53723176D0002FEB486EFF8E17812F2 ] DLABMFSM C:\WINDOWS\system32\DLA\DLABMFSM.SYS 13:52:37.0484 2880 DLABMFSM - ok 13:52:37.0500 2880 [ D4587063ACEA776699251E177D719586 ] DLABOIOM C:\WINDOWS\system32\DLA\DLABOIOM.SYS 13:52:37.0515 2880 DLABOIOM - ok 13:52:37.0531 2880 [ 5230CDB7E715F3A3B4A882E254CDD35D ] DLACDBHM C:\WINDOWS\system32\Drivers\DLACDBHM.SYS 13:52:37.0546 2880 DLACDBHM - ok 13:52:37.0578 2880 [ 1CC77BF6481567B617F7D204932A10E4 ] DLADResM C:\WINDOWS\system32\DLA\DLADResM.SYS 13:52:37.0593 2880 DLADResM - ok 13:52:37.0625 2880 [ 24400137E387A24410C52A591F3CFB4D ] DLAIFS_M C:\WINDOWS\system32\DLA\DLAIFS_M.SYS 13:52:37.0640 2880 DLAIFS_M - ok 13:52:37.0656 2880 [ 29A303FECEB28641ECEBDAE89EB71C63 ] DLAOPIOM C:\WINDOWS\system32\DLA\DLAOPIOM.SYS 13:52:37.0687 2880 DLAOPIOM - ok 13:52:37.0703 2880 [ C93E33A22A1AE0C5508F3FB1F6D0A50C ] DLAPoolM C:\WINDOWS\system32\DLA\DLAPoolM.SYS 13:52:37.0718 2880 DLAPoolM - ok 13:52:37.0718 2880 [ 77FE51F0F8D86804CB81F6EF6BFB86DD ] DLARTL_M C:\WINDOWS\system32\Drivers\DLARTL_M.SYS 13:52:37.0750 2880 DLARTL_M - ok 13:52:37.0750 2880 [ B953498C35A31E5AC98F49ADBCF3E627 ] DLAUDFAM C:\WINDOWS\system32\DLA\DLAUDFAM.SYS 13:52:37.0765 2880 DLAUDFAM - ok 13:52:37.0781 2880 [ 4897704C093C1F59CE58FC65E1E1EF1E ] DLAUDF_M C:\WINDOWS\system32\DLA\DLAUDF_M.SYS 13:52:37.0796 2880 DLAUDF_M - ok 13:52:37.0812 2880 dmadmin - ok 13:52:37.0843 2880 [ 0DCFC8395A99FECBB1EF771CEC7FE4EA ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys 13:52:37.0968 2880 dmboot - ok 13:52:38.0000 2880 [ 53720AB12B48719D00E327DA470A619A ] dmio C:\WINDOWS\system32\drivers\dmio.sys 13:52:38.0109 2880 dmio - ok 13:52:38.0140 2880 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys 13:52:38.0250 2880 dmload - ok 13:52:38.0281 2880 [ 25C83FFBBA13B554EB6D59A9B2E2EE78 ] dmserver C:\WINDOWS\System32\dmserver.dll 13:52:38.0390 2880 dmserver - ok 13:52:38.0421 2880 [ D274E85D405037D56C5F26C01BD48D93 ] DMSUSBHS3A C:\WINDOWS\system32\drivers\DMSUSBHS3A.sys 13:52:38.0437 2880 DMSUSBHS3A - ok 13:52:38.0468 2880 [ B233549645B81453ADDD4D883CA8AD5F ] DMSUSBLoader_H C:\WINDOWS\system32\drivers\DMSUSBLoader_H.sys 13:52:38.0484 2880 DMSUSBLoader_H - ok 13:52:38.0500 2880 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys 13:52:38.0625 2880 DMusic - ok 13:52:38.0671 2880 [ 407F3227AC618FD1CA54B335B083DE07 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll 13:52:38.0718 2880 Dnscache - ok 13:52:38.0765 2880 [ 676E36C4FF5BCEA1900F44182B9723E6 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll 13:52:38.0890 2880 Dot3svc - ok 13:52:38.0906 2880 [ 40F3B93B4E5B0126F2F5C0A7A5E22660 ] dpti2o C:\WINDOWS\system32\DRIVERS\dpti2o.sys 13:52:39.0031 2880 dpti2o - ok 13:52:39.0062 2880 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys 13:52:39.0171 2880 drmkaud - ok 13:52:39.0203 2880 [ C00440385CF9F3D142917C63F989E244 ] DRVMCDB C:\WINDOWS\system32\Drivers\DRVMCDB.SYS 13:52:39.0234 2880 DRVMCDB - ok 13:52:39.0234 2880 [ FFC371525AA55D1BAE18715EBCB8797C ] DRVNDDM C:\WINDOWS\system32\Drivers\DRVNDDM.SYS 13:52:39.0250 2880 DRVNDDM - ok 13:52:39.0281 2880 [ 5C940A174DFB2C42B9F6BA6EDC2BAA0B ] E100B C:\WINDOWS\system32\DRIVERS\e100b325.sys 13:52:39.0296 2880 E100B - ok 13:52:39.0343 2880 [ 4E4F2FDDAB0A0736D7671134DCCE91FB ] EapHost C:\WINDOWS\System32\eapsvc.dll 13:52:39.0453 2880 EapHost - ok 13:52:39.0500 2880 [ 85B8B4032A895A746D46A288A9B30DED ] eeCtrl C:\Programme\Gemeinsame Dateien\Symantec Shared\EENGINE\eeCtrl.sys 13:52:39.0531 2880 eeCtrl - ok 13:52:39.0562 2880 [ B5A8A04A6E5B4E86B95B1553AA918F5F ] EraserUtilRebootDrv C:\Programme\Gemeinsame Dateien\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys 13:52:39.0593 2880 EraserUtilRebootDrv - ok 13:52:39.0625 2880 [ 877C18558D70587AA7823A1A308AC96B ] ERSvc C:\WINDOWS\System32\ersvc.dll 13:52:39.0734 2880 ERSvc - ok 13:52:39.0765 2880 [ A3EDBE9053889FB24AB22492472B39DC ] Eventlog C:\WINDOWS\system32\services.exe 13:52:39.0843 2880 Eventlog - ok 13:52:39.0875 2880 [ AF4F6B5739D18CA7972AB53E091CBC74 ] EventSystem C:\WINDOWS\system32\es.dll 13:52:39.0906 2880 EventSystem - ok 13:52:39.0937 2880 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys 13:52:40.0078 2880 Fastfat - ok 13:52:40.0093 2880 [ 2DB7D303C36DDD055215052F118E8E75 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll 13:52:40.0125 2880 FastUserSwitchingCompatibility - ok 13:52:40.0140 2880 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\DRIVERS\fdc.sys 13:52:40.0250 2880 Fdc - ok 13:52:40.0265 2880 [ B0678A548587C5F1967B0D70BACAD6C1 ] Fips C:\WINDOWS\system32\drivers\Fips.sys 13:52:40.0406 2880 Fips - ok 13:52:40.0437 2880 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\DRIVERS\flpydisk.sys 13:52:40.0562 2880 Flpydisk - ok 13:52:40.0593 2880 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys 13:52:40.0718 2880 FltMgr - ok 13:52:40.0796 2880 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe 13:52:40.0828 2880 FontCache3.0.0.0 - ok 13:52:40.0843 2880 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys 13:52:40.0968 2880 Fs_Rec - ok 13:52:40.0984 2880 [ 8F1955CE42E1484714B542F341647778 ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys 13:52:41.0093 2880 Ftdisk - ok 13:52:41.0125 2880 [ 8182FF89C65E4D38B2DE4BB0FB18564E ] GEARAspiWDM C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys 13:52:41.0156 2880 GEARAspiWDM - ok 13:52:41.0187 2880 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys 13:52:41.0312 2880 Gpc - ok 13:52:41.0390 2880 H2DatabaseService - ok 13:52:41.0437 2880 [ 995178A443B07FA9EEAEA041D7B4B5CA ] hardlock C:\WINDOWS\system32\drivers\hardlock.sys 13:52:41.0500 2880 hardlock - ok 13:52:41.0500 2880 hasplms - ok 13:52:41.0531 2880 [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus C:\WINDOWS\system32\DRIVERS\HDAudBus.sys 13:52:41.0656 2880 HDAudBus - ok 13:52:41.0718 2880 [ CB66BF85BF599BEFD6C6A57C2E20357F ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll 13:52:41.0859 2880 helpsvc - ok 13:52:41.0859 2880 HidServ - ok 13:52:41.0890 2880 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] HidUsb C:\WINDOWS\system32\DRIVERS\hidusb.sys 13:52:42.0046 2880 HidUsb - ok 13:52:42.0078 2880 [ ED29F14101523A6E0E808107405D452C ] hkmsvc C:\WINDOWS\System32\kmsvc.dll 13:52:42.0187 2880 hkmsvc - ok 13:52:42.0187 2880 hpn - ok 13:52:42.0234 2880 [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys 13:52:42.0265 2880 HTTP - ok 13:52:42.0296 2880 [ 9E4ADB854CEBCFB81A4B36718FEECD16 ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll 13:52:42.0437 2880 HTTPFilter - ok 13:52:42.0437 2880 i2omgmt - ok 13:52:42.0437 2880 i2omp - ok 13:52:42.0484 2880 [ E283B97CFBEB86C1D86BAED5F7846A92 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys 13:52:42.0609 2880 i8042prt - ok 13:52:42.0656 2880 [ 06B7EF73BA5F302EECC294CDF7E19702 ] i81x C:\WINDOWS\system32\DRIVERS\i81xnt5.sys 13:52:42.0750 2880 i81x - ok 13:52:42.0781 2880 [ 7B5B44EFE5EB9DADFB8EE29700885D23 ] iAimFP0 C:\WINDOWS\system32\DRIVERS\wADV01nt.sys 13:52:42.0890 2880 iAimFP0 - ok 13:52:42.0906 2880 [ EB1F6BAB6C22EDE0BA551B527475F7E9 ] iAimFP1 C:\WINDOWS\system32\DRIVERS\wADV02NT.sys 13:52:43.0015 2880 iAimFP1 - ok 13:52:43.0046 2880 [ 03CE989D846C1AA81145CB22FCB86D06 ] iAimFP2 C:\WINDOWS\system32\DRIVERS\wADV05NT.sys 13:52:43.0140 2880 iAimFP2 - ok 13:52:43.0156 2880 [ 525849B4469DE021D5D61B4DB9BE3A9D ] iAimFP3 C:\WINDOWS\system32\DRIVERS\wSiINTxx.sys 13:52:43.0265 2880 iAimFP3 - ok 13:52:43.0281 2880 [ 589C2BCDB5BD602BF7B63D210407EF8C ] iAimFP4 C:\WINDOWS\system32\DRIVERS\wVchNTxx.sys 13:52:43.0421 2880 iAimFP4 - ok 13:52:43.0437 2880 [ 0308AEF61941E4AF478FA1A0F83812F5 ] iAimFP5 C:\WINDOWS\system32\DRIVERS\wADV07nt.sys 13:52:43.0546 2880 iAimFP5 - ok 13:52:43.0578 2880 [ 714038A8AA5DE08E12062202CD7EAEB5 ] iAimFP6 C:\WINDOWS\system32\DRIVERS\wADV08nt.sys 13:52:43.0687 2880 iAimFP6 - ok 13:52:43.0703 2880 [ 7BB3AA595E4507A788DE1CDC63F4C8C4 ] iAimFP7 C:\WINDOWS\system32\DRIVERS\wADV09nt.sys 13:52:43.0812 2880 iAimFP7 - ok 13:52:43.0828 2880 [ D83BDD5C059667A2F647A6BE5703A4D2 ] iAimTV0 C:\WINDOWS\system32\DRIVERS\wATV01nt.sys 13:52:43.0937 2880 iAimTV0 - ok 13:52:43.0953 2880 [ ED968D23354DAA0D7C621580C012A1F6 ] iAimTV1 C:\WINDOWS\system32\DRIVERS\wATV02NT.sys 13:52:44.0062 2880 iAimTV1 - ok 13:52:44.0078 2880 [ D738273F218A224C1DDAC04203F27A84 ] iAimTV3 C:\WINDOWS\system32\DRIVERS\wATV04nt.sys 13:52:44.0171 2880 iAimTV3 - ok 13:52:44.0203 2880 [ 0052D118995CBAB152DAABE6106D1442 ] iAimTV4 C:\WINDOWS\system32\DRIVERS\wCh7xxNT.sys 13:52:44.0296 2880 iAimTV4 - ok 13:52:44.0296 2880 [ 791CC45DE6E50445BE72E8AD6401FF45 ] iAimTV5 C:\WINDOWS\system32\DRIVERS\wATV10nt.sys 13:52:44.0421 2880 iAimTV5 - ok 13:52:44.0437 2880 [ 352FA0E98BC461CE1CE5D41F64DB558D ] iAimTV6 C:\WINDOWS\system32\DRIVERS\wATV06nt.sys 13:52:44.0546 2880 iAimTV6 - ok 13:52:44.0593 2880 [ 85D42B7F0DD406ADF5E3EC7659A279EC ] ialm C:\WINDOWS\system32\DRIVERS\igxpmp32.sys 13:52:44.0671 2880 ialm - ok 13:52:44.0750 2880 [ 6F95324909B502E2651442C1548AB12F ] IDriverT C:\Programme\Roxio\Roxio MyDVD Basic v9\InstallShield\Driver\1050\Intel 32\IDriverT.exe 13:52:44.0796 2880 IDriverT ( UnsignedFile.Multi.Generic ) - warning 13:52:44.0796 2880 IDriverT - detected UnsignedFile.Multi.Generic (1) 13:52:44.0859 2880 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe 13:52:44.0921 2880 idsvc - ok 13:52:44.0953 2880 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys 13:52:45.0062 2880 Imapi - ok 13:52:45.0093 2880 [ D4B413AA210C21E46AEDD2BA5B68D38E ] ImapiService C:\WINDOWS\system32\imapi.exe 13:52:45.0218 2880 ImapiService - ok 13:52:45.0234 2880 InCDFs - ok 13:52:45.0234 2880 InCDPass - ok 13:52:45.0250 2880 InCDRm - ok 13:52:45.0250 2880 ini910u - ok 13:52:45.0390 2880 [ B29781B9A90CD55FC5D859C0B1C243BC ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RtkHDAud.sys 13:52:45.0625 2880 IntcAzAudAddService - ok 13:52:45.0640 2880 [ 69C4E3C9E67A1F103B94E14FDD5F3213 ] IntelIde C:\WINDOWS\system32\DRIVERS\intelide.sys 13:52:45.0750 2880 IntelIde - ok 13:52:45.0781 2880 [ 4C7D2750158ED6E7AD642D97BFFAE351 ] intelppm C:\WINDOWS\system32\DRIVERS\intelppm.sys 13:52:45.0953 2880 intelppm - ok 13:52:46.0000 2880 [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw C:\WINDOWS\system32\drivers\ip6fw.sys 13:52:46.0093 2880 Ip6Fw - ok 13:52:46.0140 2880 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys 13:52:46.0265 2880 IpFilterDriver - ok 13:52:46.0281 2880 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys 13:52:46.0406 2880 IpInIp - ok 13:52:46.0437 2880 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys 13:52:46.0562 2880 IpNat - ok 13:52:46.0625 2880 [ E6BE7A41A28D8F2DB174957454D32448 ] iPod Service C:\Programme\iPod\bin\iPodService.exe 13:52:46.0671 2880 iPod Service - ok 13:52:46.0703 2880 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys 13:52:46.0812 2880 IPSec - ok 13:52:46.0843 2880 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys 13:52:46.0968 2880 IRENUM - ok 13:52:46.0984 2880 [ 6DFB88F64135C525433E87648BDA30DE ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys 13:52:47.0093 2880 isapnp - ok 13:52:47.0125 2880 [ 213822072085B5BBAD9AF30AB577D817 ] IviRegMgr C:\Programme\Gemeinsame Dateien\InterVideo\RegMgr\iviRegMgr.exe 13:52:47.0156 2880 IviRegMgr - ok 13:52:47.0187 2880 [ 1704D8C4C8807B889E43C649B478A452 ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys 13:52:47.0296 2880 Kbdclass - ok 13:52:47.0312 2880 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys 13:52:47.0453 2880 kmixer - ok 13:52:47.0468 2880 [ B467646C54CC746128904E1654C750C1 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys 13:52:47.0515 2880 KSecDD - ok 13:52:47.0546 2880 [ 2BBDCB79900990F0716DFCB714E72DE7 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll 13:52:47.0578 2880 lanmanserver - ok 13:52:47.0609 2880 [ 1869B14B06B44B44AF70548E1EA3303F ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll 13:52:47.0640 2880 lanmanworkstation - ok 13:52:47.0656 2880 lbrtfdc - ok 13:52:47.0718 2880 [ 98D884ADC0B8C0FEBCC9D7BEE6D86F90 ] LightScribeService C:\Programme\Gemeinsame Dateien\LightScribe\LSSrvc.exe 13:52:47.0750 2880 LightScribeService - ok 13:52:47.0875 2880 [ E34152D03CAAAAA81DD66D803F392522 ] LiveUpdate C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE 13:52:48.0062 2880 LiveUpdate - ok 13:52:48.0093 2880 [ 636714B7D43C8D0C80449123FD266920 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll 13:52:48.0250 2880 LmHosts - ok 13:52:48.0296 2880 [ C4FD8055F421A8E6F49259A0BF59C40D ] LVRS C:\WINDOWS\system32\DRIVERS\lvrs.sys 13:52:48.0312 2880 LVRS - ok 13:52:48.0453 2880 [ BAB6DBA71DEFBC9D147AFC15CDC9563F ] LVUVC C:\WINDOWS\system32\DRIVERS\lvuvc.sys 13:52:48.0625 2880 LVUVC - ok 13:52:48.0640 2880 [ B7550A7107281D170CE85524B1488C98 ] Messenger C:\WINDOWS\System32\msgsvc.dll 13:52:48.0765 2880 Messenger - ok 13:52:48.0812 2880 Microsoft SharePoint Workspace Audit Service - ok 13:52:48.0859 2880 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys 13:52:48.0984 2880 mnmdd - ok 13:52:49.0015 2880 [ C2F1D365FD96791B037EE504868065D3 ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe 13:52:49.0125 2880 mnmsrvc - ok 13:52:49.0171 2880 [ 6FB74EBD4EC57A6F1781DE3852CC3362 ] Modem C:\WINDOWS\system32\drivers\Modem.sys 13:52:49.0281 2880 Modem - ok 13:52:49.0296 2880 [ B24CE8005DEAB254C0251E15CB71D802 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys 13:52:49.0421 2880 Mouclass - ok 13:52:49.0453 2880 [ 66A6F73C74E1791464160A7065CE711A ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys 13:52:49.0578 2880 mouhid - ok 13:52:49.0593 2880 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys 13:52:49.0718 2880 MountMgr - ok 13:52:49.0750 2880 [ 8BE15F71DE6FF33FC56DCDE7B2B9EFE8 ] MozillaMaintenance C:\Programme\Mozilla Maintenance Service\maintenanceservice.exe 13:52:49.0796 2880 MozillaMaintenance - ok 13:52:49.0796 2880 mraid35x - ok 13:52:49.0828 2880 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys 13:52:49.0937 2880 MRxDAV - ok 13:52:49.0984 2880 [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys 13:52:50.0031 2880 MRxSmb - ok 13:52:50.0078 2880 [ 35A031AF38C55F92D28AA03EE9F12CC9 ] MSDTC C:\WINDOWS\system32\msdtc.exe 13:52:50.0187 2880 MSDTC - ok 13:52:50.0218 2880 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys 13:52:50.0328 2880 Msfs - ok 13:52:50.0343 2880 MSIServer - ok 13:52:50.0375 2880 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys 13:52:50.0500 2880 MSKSSRV - ok 13:52:50.0515 2880 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys 13:52:50.0625 2880 MSPCLOCK - ok 13:52:50.0640 2880 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys 13:52:50.0828 2880 MSPQM - ok 13:52:50.0843 2880 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys 13:52:50.0953 2880 mssmbios - ok 13:52:50.0984 2880 [ E53736A9E30C45FA9E7B5EAC55056D1D ] MSTEE C:\WINDOWS\system32\drivers\MSTEE.sys 13:52:51.0109 2880 MSTEE - ok 13:52:51.0140 2880 [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup C:\WINDOWS\system32\drivers\Mup.sys 13:52:51.0171 2880 Mup - ok 13:52:51.0203 2880 [ 5B50F1B2A2ED47D560577B221DA734DB ] NABTSFEC C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys 13:52:51.0312 2880 NABTSFEC - ok 13:52:51.0359 2880 [ 46BB15AE2AC7D025D6D2567B876817BD ] napagent C:\WINDOWS\System32\qagentrt.dll 13:52:51.0484 2880 napagent - ok 13:52:51.0562 2880 [ 8E4C77AD9BB279900C00F870CC0C674B ] NAVENG C:\PROGRA~1\GEMEIN~1\SYMANT~1\VIRUSD~1\20121111.008\NAVENG.SYS 13:52:51.0578 2880 NAVENG - ok 13:52:51.0640 2880 [ 826F699B69E88A3920C70F344DD42D88 ] NAVEX15 C:\PROGRA~1\GEMEIN~1\SYMANT~1\VIRUSD~1\20121111.008\NAVEX15.SYS 13:52:51.0718 2880 NAVEX15 - ok 13:52:51.0765 2880 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys 13:52:51.0890 2880 NDIS - ok 13:52:51.0921 2880 [ 7FF1F1FD8609C149AA432F95A8163D97 ] NdisIP C:\WINDOWS\system32\DRIVERS\NdisIP.sys 13:52:52.0046 2880 NdisIP - ok 13:52:52.0078 2880 [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys 13:52:52.0109 2880 NdisTapi - ok 13:52:52.0140 2880 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys 13:52:52.0265 2880 Ndisuio - ok 13:52:52.0281 2880 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys 13:52:52.0406 2880 NdisWan - ok 13:52:52.0437 2880 [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys 13:52:52.0468 2880 NDProxy - ok 13:52:52.0500 2880 [ 80B7A96F908DA13617E7E6832C5C6A64 ] Net Driver HPZ12 C:\WINDOWS\system32\HPZinw12.dll 13:52:52.0500 2880 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning 13:52:52.0500 2880 Net Driver HPZ12 - detected UnsignedFile.Multi.Generic (1) 13:52:52.0546 2880 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys 13:52:52.0671 2880 NetBIOS - ok 13:52:52.0687 2880 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys 13:52:52.0828 2880 NetBT - ok 13:52:52.0859 2880 [ 8ACE4251BFFD09CE75679FE940E996CC ] NetDDE C:\WINDOWS\system32\netdde.exe 13:52:53.0000 2880 NetDDE - ok 13:52:53.0000 2880 [ 8ACE4251BFFD09CE75679FE940E996CC ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe 13:52:53.0109 2880 NetDDEdsdm - ok 13:52:53.0140 2880 [ AFB8261B56CBA0D86AEB6DF682AF9785 ] Netlogon C:\WINDOWS\system32\lsass.exe 13:52:53.0265 2880 Netlogon - ok 13:52:53.0296 2880 [ E6D88F1F6745BF00B57E7855A2AB696C ] Netman C:\WINDOWS\System32\netman.dll 13:52:53.0421 2880 Netman - ok 13:52:53.0453 2880 [ D34612C5D02D026535B3095D620626AE ] NetTcpPortSharing c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe 13:52:53.0484 2880 NetTcpPortSharing - ok 13:52:53.0515 2880 [ F1B67B6B0751AE0E6E964B02821206A3 ] Nla C:\WINDOWS\System32\mswsock.dll 13:52:53.0578 2880 Nla - ok 13:52:53.0609 2880 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys 13:52:53.0703 2880 Npfs - ok 13:52:53.0734 2880 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys 13:52:53.0859 2880 Ntfs - ok 13:52:53.0890 2880 [ AFB8261B56CBA0D86AEB6DF682AF9785 ] NtLmSsp C:\WINDOWS\system32\lsass.exe 13:52:54.0000 2880 NtLmSsp - ok 13:52:54.0140 2880 [ 56AF4064996FA5BAC9C449B1514B4770 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll 13:52:54.0281 2880 NtmsSvc - ok 13:52:54.0296 2880 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys 13:52:54.0406 2880 Null - ok 13:52:54.0781 2880 [ 8B2C874897EA498DA012284E12F9DB2B ] nv C:\WINDOWS\system32\DRIVERS\nv4_mini.sys 13:52:55.0265 2880 nv - ok 13:52:55.0296 2880 [ 32F7DEC3729B3BAE66EEBCAB7B03B18F ] NVSvc C:\WINDOWS\system32\nvsvc32.exe 13:52:55.0343 2880 NVSvc - ok 13:52:55.0484 2880 [ 2CC4E45B0EB4C48392CEC9C83B5B8E3B ] nvUpdatusService C:\Programme\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe 13:52:55.0625 2880 nvUpdatusService - ok 13:52:55.0703 2880 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys 13:52:55.0937 2880 NwlnkFlt - ok 13:52:55.0968 2880 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys 13:52:56.0093 2880 NwlnkFwd - ok 13:52:56.0156 2880 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Programme\Gemeinsame Dateien\Microsoft Shared\Source Engine\OSE.EXE 13:52:56.0203 2880 ose - ok 13:52:56.0390 2880 [ 358A9CCA612C68EB2F07DDAD4CE1D8D7 ] osppsvc C:\Programme\Gemeinsame Dateien\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE 13:52:56.0609 2880 osppsvc - ok 13:52:56.0640 2880 [ A7AF0C0860F1C43FC6581BA8A99EABEF ] P3 C:\WINDOWS\system32\DRIVERS\p3.sys 13:52:56.0812 2880 P3 - ok 13:52:56.0828 2880 [ F84785660305B9B903FB3BCA8BA29837 ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys 13:52:56.0953 2880 Parport - ok 13:52:56.0984 2880 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys 13:52:57.0093 2880 PartMgr - ok 13:52:57.0125 2880 [ C2BF987829099A3EAA2CA6A0A90ECB4F ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys 13:52:57.0250 2880 ParVdm - ok 13:52:57.0328 2880 [ 2A42DDAEAAE7743C55A3FA68A7AD9538 ] PCA C:\WINDOWS\SMINST\PCAngel.exe 13:52:57.0359 2880 PCA ( UnsignedFile.Multi.Generic ) - warning 13:52:57.0359 2880 PCA - detected UnsignedFile.Multi.Generic (1) 13:52:57.0375 2880 [ 387E8DEDC343AA2D1EFBC30580273ACD ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys 13:52:57.0500 2880 PCI - ok 13:52:57.0500 2880 PCIDump - ok 13:52:57.0515 2880 [ 59BA86D9A61CBCF4DF8E598C331F5B82 ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys 13:52:57.0640 2880 PCIIde - ok 13:52:57.0718 2880 [ A2A966B77D61847D61A3051DF87C8C97 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys 13:52:57.0828 2880 Pcmcia - ok 13:52:57.0843 2880 PDCOMP - ok 13:52:57.0875 2880 pdfcDispatcher - ok 13:52:57.0875 2880 PDFRAME - ok 13:52:57.0875 2880 PDRELI - ok 13:52:57.0890 2880 PDRFRAME - ok 13:52:57.0890 2880 perc2 - ok 13:52:57.0906 2880 perc2hib - ok 13:52:57.0937 2880 [ A3EDBE9053889FB24AB22492472B39DC ] PlugPlay C:\WINDOWS\system32\services.exe 13:52:57.0984 2880 PlugPlay - ok 13:52:58.0015 2880 [ 0C155C5D8942B3CBCF9506A9D376B9AD ] Pml Driver HPZ12 C:\WINDOWS\system32\HPZipm12.dll 13:52:58.0046 2880 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning 13:52:58.0046 2880 Pml Driver HPZ12 - detected UnsignedFile.Multi.Generic (1) 13:52:58.0062 2880 [ AFB8261B56CBA0D86AEB6DF682AF9785 ] PolicyAgent C:\WINDOWS\system32\lsass.exe 13:52:58.0171 2880 PolicyAgent - ok 13:52:58.0203 2880 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys 13:52:58.0328 2880 PptpMiniport - ok 13:52:58.0343 2880 [ AFB8261B56CBA0D86AEB6DF682AF9785 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe 13:52:58.0437 2880 ProtectedStorage - ok 13:52:58.0453 2880 [ 09298EC810B07E5D582CB3A3F9255424 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys 13:52:58.0562 2880 PSched - ok 13:52:58.0578 2880 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys 13:52:58.0703 2880 Ptilink - ok 13:52:58.0734 2880 [ FEFFCFDC528764A04C8ED63D5FA6E711 ] PxHelp20 C:\WINDOWS\system32\Drivers\PxHelp20.sys 13:52:58.0750 2880 PxHelp20 ( UnsignedFile.Multi.Generic ) - warning 13:52:58.0750 2880 PxHelp20 - detected UnsignedFile.Multi.Generic (1) 13:52:58.0750 2880 ql1080 - ok 13:52:58.0750 2880 Ql10wnt - ok 13:52:58.0765 2880 ql12160 - ok 13:52:58.0765 2880 ql1240 - ok 13:52:58.0781 2880 ql1280 - ok 13:52:58.0796 2880 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys 13:52:58.0921 2880 RasAcd - ok 13:52:58.0953 2880 [ F5BA6CACCDB66C8F048E867563203246 ] RasAuto C:\WINDOWS\System32\rasauto.dll 13:52:59.0078 2880 RasAuto - ok 13:52:59.0093 2880 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys 13:52:59.0218 2880 Rasl2tp - ok 13:52:59.0250 2880 [ F9A7B66EA345726EDB5862A46B1ECCD5 ] RasMan C:\WINDOWS\System32\rasmans.dll 13:52:59.0375 2880 RasMan - ok 13:52:59.0406 2880 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys 13:52:59.0515 2880 RasPppoe - ok 13:52:59.0531 2880 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys 13:52:59.0656 2880 Raspti - ok 13:52:59.0687 2880 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys 13:52:59.0812 2880 Rdbss - ok 13:52:59.0843 2880 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys 13:52:59.0968 2880 RDPCDD - ok 13:53:00.0000 2880 [ 15CABD0F7C00C47C70124907916AF3F1 ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys 13:53:00.0125 2880 rdpdr - ok 13:53:00.0156 2880 [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys 13:53:00.0203 2880 RDPWD - ok 13:53:00.0234 2880 [ 263AF18AF0F3DB99F574C95F284CCEC9 ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe 13:53:00.0359 2880 RDSessMgr - ok 13:53:00.0390 2880 [ ED761D453856F795A7FE056E42C36365 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys 13:53:00.0500 2880 redbook - ok 13:53:00.0531 2880 [ 0E97EC96D6942CEEC2D188CC2EB69A01 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll 13:53:00.0656 2880 RemoteAccess - ok 13:53:00.0687 2880 [ E4CD1F3D84E1C2CA0B8CF7501E201593 ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll 13:53:00.0796 2880 RemoteRegistry - ok 13:53:00.0828 2880 [ 4F4A4C09CC5BE58A76CAC1C337E004E6 ] RimUsb C:\WINDOWS\system32\Drivers\RimUsb.sys 13:53:00.0875 2880 RimUsb - ok 13:53:00.0906 2880 [ 3A5633AD615E2B15291BD0B1B97CCD8A ] RimVSerPort C:\WINDOWS\system32\DRIVERS\RimSerial.sys 13:53:00.0937 2880 RimVSerPort - ok 13:53:00.0968 2880 [ D8B0B4ADE32574B2D9C5CC34DC0DBBE7 ] ROOTMODEM C:\WINDOWS\system32\Drivers\RootMdm.sys 13:53:01.0078 2880 ROOTMODEM - ok 13:53:01.0187 2880 [ AD1411A7EA50F2F97A73A3F51153066E ] RoxMediaDB9 C:\Programme\Gemeinsame Dateien\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe 13:53:01.0234 2880 RoxMediaDB9 - ok 13:53:01.0281 2880 [ 2A02E21867497DF20B8FC95631395169 ] RpcLocator C:\WINDOWS\system32\locator.exe 13:53:01.0406 2880 RpcLocator - ok 13:53:01.0437 2880 [ 3127AFBF2C1ED0AB14A1BBB7AAECB85B ] RpcSs C:\WINDOWS\system32\rpcss.dll 13:53:01.0484 2880 RpcSs - ok 13:53:01.0531 2880 [ 4BDD71B4B521521499DFD14735C4F398 ] RSVP C:\WINDOWS\system32\rsvp.exe 13:53:01.0671 2880 RSVP - ok 13:53:01.0687 2880 [ AFB8261B56CBA0D86AEB6DF682AF9785 ] SamSs C:\WINDOWS\system32\lsass.exe 13:53:01.0781 2880 SamSs - ok 13:53:01.0890 2880 [ DCEC079FAD95D36C8DD5CB6D779DFE32 ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe 13:53:02.0015 2880 SCardSvr - ok 13:53:02.0046 2880 [ A050194A44D7FA8D7186ED2F4E8367AE ] Schedule C:\WINDOWS\system32\schedsvc.dll 13:53:02.0171 2880 Schedule - ok 13:53:02.0203 2880 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys 13:53:02.0296 2880 Secdrv - ok 13:53:02.0328 2880 [ BEE4CFD1D48C23B44CF4B974B0B79B2B ] seclogon C:\WINDOWS\System32\seclogon.dll 13:53:02.0453 2880 seclogon - ok 13:53:02.0484 2880 [ 2AAC9B6ED9EDDFFB721D6452E34D67E3 ] SENS C:\WINDOWS\system32\sens.dll 13:53:02.0609 2880 SENS - ok 13:53:02.0640 2880 [ A2CC81C30BEF6AC9F27055490EEF6DE3 ] Sentinel C:\WINDOWS\System32\Drivers\SENTINEL.SYS 13:53:02.0671 2880 Sentinel - ok 13:53:02.0734 2880 [ E11D5A8852A383D4BE26356B87BFAB55 ] SentinelKeysServer C:\Programme\Gemeinsame Dateien\SafeNet Sentinel\Sentinel Keys Server\sntlkeyssrvr.exe 13:53:02.0765 2880 SentinelKeysServer - ok 13:53:02.0828 2880 [ 6C364354B9342A26755093E880300F73 ] SentinelProtectionServer C:\Programme\Gemeinsame Dateien\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe 13:53:02.0906 2880 SentinelProtectionServer - ok 13:53:02.0937 2880 [ 84A7514061F62744FEF0201BC9507C41 ] SentinelSecurityRuntime C:\Programme\Gemeinsame Dateien\SafeNet Sentinel\Sentinel Security Runtime\sntlsrtsrvr.exe 13:53:02.0968 2880 SentinelSecurityRuntime - ok 13:53:03.0000 2880 [ 0F29512CCD6BEAD730039FB4BD2C85CE ] serenum C:\WINDOWS\system32\DRIVERS\serenum.sys 13:53:03.0125 2880 serenum - ok 13:53:03.0156 2880 [ CF24EB4F0412C82BCD1F4F35A025E31D ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys 13:53:03.0281 2880 Serial - ok 13:53:03.0312 2880 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys 13:53:03.0421 2880 Sfloppy - ok 13:53:03.0453 2880 [ CAD058D5F8B889A87CA3EB3CF624DCEF ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll 13:53:03.0578 2880 SharedAccess - ok 13:53:03.0609 2880 [ 2DB7D303C36DDD055215052F118E8E75 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll 13:53:03.0625 2880 ShellHWDetection - ok 13:53:03.0765 2880 [ 3EAD8E1668CE42A0AFE41D56E7157BCF ] silabenm C:\WINDOWS\system32\DRIVERS\silabenm.sys 13:53:03.0812 2880 silabenm - ok 13:53:03.0828 2880 [ 177D3EBF3E236A272D769C14F73ECC3E ] silabser C:\WINDOWS\system32\DRIVERS\silabser.sys 13:53:03.0875 2880 silabser - ok 13:53:03.0875 2880 Simbad - ok 13:53:03.0906 2880 [ 866D538EBE33709A5C9F5C62B73B7D14 ] SLIP C:\WINDOWS\system32\DRIVERS\SLIP.sys 13:53:04.0031 2880 SLIP - ok 13:53:04.0125 2880 [ F86F007485B08B0F3F04F9053777C066 ] SmcService C:\Programme\Symantec\Symantec Endpoint Protection\Smc.exe 13:53:04.0265 2880 SmcService - ok 13:53:04.0296 2880 [ 74915B775116238CFF936896D019C79D ] SNAC C:\Programme\Symantec\Symantec Endpoint Protection\SNAC.EXE 13:53:04.0359 2880 SNAC - ok 13:53:04.0390 2880 [ 928310CFD08FA17F6AD8D63E53B395AD ] SNTNLUSB C:\WINDOWS\system32\DRIVERS\SNTNLUSB.SYS 13:53:04.0421 2880 SNTNLUSB - ok 13:53:04.0421 2880 Sparrow - ok 13:53:04.0500 2880 [ E621BB5839CF45FA477F48092EDD2B40 ] SPBBCDrv C:\Programme\Gemeinsame Dateien\Symantec Shared\SPBBC\SPBBCDrv.sys 13:53:04.0546 2880 SPBBCDrv - ok 13:53:04.0562 2880 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINDOWS\system32\drivers\splitter.sys 13:53:04.0734 2880 splitter - ok 13:53:04.0765 2880 [ 60784F891563FB1B767F70117FC2428F ] Spooler C:\WINDOWS\system32\spoolsv.exe 13:53:04.0812 2880 Spooler - ok 13:53:04.0859 2880 [ CDDDEC541BC3C96F91ECB48759673505 ] sptd C:\WINDOWS\system32\Drivers\sptd.sys 13:53:04.0859 2880 Suspicious file (NoAccess): C:\WINDOWS\system32\Drivers\sptd.sys. md5: CDDDEC541BC3C96F91ECB48759673505 13:53:04.0859 2880 sptd ( LockedFile.Multi.Generic ) - warning 13:53:04.0859 2880 sptd - detected LockedFile.Multi.Generic (1) 13:53:04.0890 2880 [ 50FA898F8C032796D3B1B9951BB5A90F ] sr C:\WINDOWS\system32\DRIVERS\sr.sys 13:53:05.0046 2880 sr - ok 13:53:05.0078 2880 [ FE77A85495065F3AD59C5C65B6C54182 ] srservice C:\WINDOWS\system32\srsvc.dll 13:53:05.0203 2880 srservice - ok 13:53:05.0234 2880 [ 2ABF82C8452AB0B9FFC74A2D5DA91989 ] SRTSP C:\WINDOWS\system32\Drivers\SRTSP.SYS 13:53:05.0265 2880 SRTSP - ok 13:53:05.0296 2880 [ E2F9E5887BEA5BD8784D337E06EDA31B ] SRTSPL C:\WINDOWS\system32\Drivers\SRTSPL.SYS 13:53:05.0328 2880 SRTSPL - ok 13:53:05.0375 2880 [ 3B974C158FABD910186F98DF8D3E23F3 ] SRTSPX C:\WINDOWS\system32\Drivers\SRTSPX.SYS 13:53:05.0390 2880 SRTSPX - ok 13:53:05.0437 2880 [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys 13:53:05.0468 2880 Srv - ok 13:53:05.0562 2880 [ 4DF5B05DFAEC29E13E1ED6F6EE12C500 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll 13:53:05.0687 2880 SSDPSRV - ok 13:53:05.0718 2880 [ BC2C5985611C5356B24AEB370953DED9 ] stisvc C:\WINDOWS\system32\wiaservc.dll 13:53:05.0859 2880 stisvc - ok 13:53:05.0890 2880 [ B254B1434208F280EDF3785613DCC41B ] stllssvr C:\Programme\Gemeinsame Dateien\SureThing Shared\stllssvr.exe 13:53:05.0921 2880 stllssvr ( UnsignedFile.Multi.Generic ) - warning 13:53:05.0921 2880 stllssvr - detected UnsignedFile.Multi.Generic (1) 13:53:05.0937 2880 [ 77813007BA6265C4B6098187E6ED79D2 ] streamip C:\WINDOWS\system32\DRIVERS\StreamIP.sys 13:53:06.0109 2880 streamip - ok 13:53:06.0140 2880 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys 13:53:06.0250 2880 swenum - ok 13:53:06.0343 2880 [ F577910A133A592234EBAAD3F3AFA258 ] SwitchBoard C:\Programme\Gemeinsame Dateien\Adobe\SwitchBoard\SwitchBoard.exe 13:53:06.0406 2880 SwitchBoard ( UnsignedFile.Multi.Generic ) - warning 13:53:06.0406 2880 SwitchBoard - detected UnsignedFile.Multi.Generic (1) 13:53:06.0437 2880 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys 13:53:06.0531 2880 swmidi - ok 13:53:06.0546 2880 SwPrv - ok 13:53:06.0609 2880 [ B9B3B38A852F13D6F61ACB3994872EDA ] Symantec AntiVirus C:\Programme\Symantec\Symantec Endpoint Protection\Rtvscan.exe 13:53:06.0734 2880 Symantec AntiVirus - ok 13:53:06.0781 2880 [ 1FF3217614018630D0A6758630FC698C ] symc810 C:\WINDOWS\system32\DRIVERS\symc810.sys 13:53:06.0890 2880 symc810 - ok 13:53:06.0906 2880 [ 070E001D95CF725186EF8B20335F933C ] symc8xx C:\WINDOWS\system32\DRIVERS\symc8xx.sys 13:53:07.0015 2880 symc8xx - ok 13:53:07.0062 2880 [ A54FF04BD6E75DC4D8CB6F3E352635E0 ] SymEvent C:\WINDOWS\system32\Drivers\SYMEVENT.SYS 13:53:07.0078 2880 SymEvent - ok 13:53:07.0109 2880 [ F2B7E8416F508368AC6730E2AE1C614F ] Symmpi C:\WINDOWS\system32\DRIVERS\symmpi.sys 13:53:07.0109 2880 Symmpi ( UnsignedFile.Multi.Generic ) - warning 13:53:07.0109 2880 Symmpi - detected UnsignedFile.Multi.Generic (1) 13:53:07.0140 2880 [ 80AC1C4ABBE2DF3B738BF15517A51F2C ] sym_hi C:\WINDOWS\system32\DRIVERS\sym_hi.sys 13:53:07.0281 2880 sym_hi - ok 13:53:07.0296 2880 [ BF4FAB949A382A8E105F46EBB4937058 ] sym_u3 C:\WINDOWS\system32\DRIVERS\sym_u3.sys 13:53:07.0406 2880 sym_u3 - ok 13:53:07.0421 2880 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys 13:53:07.0546 2880 sysaudio - ok 13:53:07.0578 2880 [ 2903FFFA2523926D6219428040DCE6B9 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe 13:53:07.0703 2880 SysmonLog - ok 13:53:07.0750 2880 [ 05903CAC4B98908D55EA5774775B382E ] TapiSrv C:\WINDOWS\System32\tapisrv.dll 13:53:07.0875 2880 TapiSrv - ok 13:53:07.0906 2880 [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys 13:53:07.0984 2880 Tcpip - ok 13:53:08.0015 2880 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys 13:53:08.0125 2880 TDPIPE - ok 13:53:08.0156 2880 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys 13:53:08.0281 2880 TDTCP - ok 13:53:08.0312 2880 [ 1DE2E1357552A79F39BFF003A11C533E ] Teefer2 C:\WINDOWS\system32\DRIVERS\teefer2.sys 13:53:08.0328 2880 Teefer2 - ok 13:53:08.0359 2880 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys 13:53:08.0484 2880 TermDD - ok 13:53:08.0515 2880 [ B7DE02C863D8F5A005A7BF375375A6A4 ] TermService C:\WINDOWS\System32\termsrv.dll 13:53:08.0656 2880 TermService - ok 13:53:08.0671 2880 [ 2DB7D303C36DDD055215052F118E8E75 ] Themes C:\WINDOWS\System32\shsvcs.dll 13:53:08.0703 2880 Themes - ok 13:53:08.0796 2880 [ 03681A1CE77F51586903869A5AB1DEAB ] TlntSvr C:\WINDOWS\system32\tlntsvr.exe 13:53:08.0921 2880 TlntSvr - ok 13:53:08.0937 2880 TosIde - ok 13:53:08.0968 2880 [ 626504572B175867F30F3215C04B3E2F ] TrkWks C:\WINDOWS\system32\trkwks.dll 13:53:09.0078 2880 TrkWks - ok 13:53:09.0093 2880 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys 13:53:09.0218 2880 Udfs - ok 13:53:09.0218 2880 ultra - ok 13:53:09.0296 2880 [ 5B27BAC376642259825A6131879D760B ] UMVPFSrv C:\Programme\Gemeinsame Dateien\logishrd\LVMVFM\UMVPFSrv.exe 13:53:09.0359 2880 UMVPFSrv - ok 13:53:09.0390 2880 [ AB0A7CA90D9E3D6A193905DC1715DED0 ] UMWdf C:\WINDOWS\system32\wdfmgr.exe 13:53:09.0421 2880 UMWdf - ok 13:53:09.0453 2880 [ 1DFD8975D8C89214B98D9387C1125B49 ] upnphost C:\WINDOWS\System32\upnphost.dll 13:53:09.0593 2880 upnphost - ok 13:53:09.0609 2880 [ 9B11E6118958E63E1FEF129466E2BDA7 ] UPS C:\WINDOWS\System32\ups.exe 13:53:09.0734 2880 UPS - ok 13:53:09.0765 2880 [ EAFE1E00739AFE6C51487A050E772E17 ] USBAAPL C:\WINDOWS\system32\Drivers\usbaapl.sys 13:53:09.0796 2880 USBAAPL - ok 13:53:09.0843 2880 [ E919708DB44ED8543A7C017953148330 ] usbaudio C:\WINDOWS\system32\drivers\usbaudio.sys 13:53:09.0968 2880 usbaudio - ok 13:53:09.0984 2880 [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys 13:53:10.0109 2880 usbccgp - ok 13:53:10.0140 2880 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys 13:53:10.0265 2880 usbehci - ok 13:53:10.0281 2880 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys 13:53:10.0406 2880 usbhub - ok 13:53:10.0437 2880 [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys 13:53:10.0546 2880 usbscan - ok 13:53:10.0578 2880 [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS 13:53:10.0703 2880 USBSTOR - ok 13:53:10.0718 2880 [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys 13:53:10.0828 2880 usbuhci - ok 13:53:10.0843 2880 [ 63BBFCA7F390F4C49ED4B96BFB1633E0 ] usbvideo C:\WINDOWS\system32\Drivers\usbvideo.sys 13:53:10.0968 2880 usbvideo - ok 13:53:10.0984 2880 [ B6CC50279D6CD28E090A5D33244ADC9A ] usb_rndisx C:\WINDOWS\system32\DRIVERS\usb8023x.sys 13:53:11.0093 2880 usb_rndisx - ok 13:53:11.0125 2880 [ 2AC3EC0AAF2329F4012A625FD29DB678 ] VBoxDrv C:\WINDOWS\system32\DRIVERS\VBoxDrv.sys 13:53:11.0156 2880 VBoxDrv - ok 13:53:11.0171 2880 [ C75785CB32F683924088040904CB544D ] VBoxNetFlt C:\WINDOWS\system32\DRIVERS\VBoxNetFlt.sys 13:53:11.0203 2880 VBoxNetFlt - ok 13:53:11.0234 2880 [ 80F6738AD80A1D7DC8D890CE156DC4AD ] VBoxUSBMon C:\WINDOWS\system32\DRIVERS\VBoxUSBMon.sys 13:53:11.0265 2880 VBoxUSBMon - ok 13:53:11.0281 2880 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys 13:53:11.0406 2880 VgaSave - ok 13:53:11.0437 2880 [ 3B3EFCDA263B8AC14FDF9CBDD0791B2E ] ViaIde C:\WINDOWS\system32\DRIVERS\viaide.sys 13:53:11.0546 2880 ViaIde - ok 13:53:11.0546 2880 vmci - ok 13:53:11.0546 2880 VMnetAdapter - ok 13:53:11.0578 2880 [ A5A712F4E880874A477AF790B5186E1D ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys 13:53:11.0703 2880 VolSnap - ok 13:53:11.0828 2880 [ 68F106273BE29E7B7EF8266977268E78 ] VSS C:\WINDOWS\System32\vssvc.exe 13:53:11.0953 2880 VSS - ok 13:53:12.0015 2880 [ 7B353059E665F8B7AD2BBEAEF597CF45 ] W32Time C:\WINDOWS\system32\w32time.dll 13:53:12.0140 2880 W32Time - ok 13:53:12.0156 2880 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys 13:53:12.0281 2880 Wanarp - ok 13:53:12.0328 2880 [ D918617B46457B9AC28027722E30F647 ] Wdf01000 C:\WINDOWS\system32\Drivers\wdf01000.sys 13:53:12.0359 2880 Wdf01000 - ok 13:53:12.0375 2880 WDICA - ok 13:53:12.0406 2880 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys 13:53:12.0531 2880 wdmaud - ok 13:53:12.0562 2880 [ 81727C9873E3905A2FFC1EBD07265002 ] WebClient C:\WINDOWS\System32\webclnt.dll 13:53:12.0687 2880 WebClient - ok 13:53:12.0750 2880 [ 6F3F3973D97714CC5F906A19FE883729 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll 13:53:12.0875 2880 winmgmt - ok 13:53:12.0906 2880 [ 140EF97B64F560FD78643CAE2CDAD838 ] WmdmPmSN C:\WINDOWS\system32\mspmsnsv.dll 13:53:12.0953 2880 WmdmPmSN - ok 13:53:12.0984 2880 [ FFA4D901D46D07A5BAB2D8307FBB51A6 ] Wmi C:\WINDOWS\System32\advapi32.dll 13:53:13.0046 2880 Wmi - ok 13:53:13.0078 2880 [ 93908111BA57A6E60EC2FA2DE202105C ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe 13:53:13.0203 2880 WmiApSrv - ok 13:53:13.0218 2880 [ 1385E5AA9C9821790D33A9563B8D2DD0 ] WpdUsb C:\WINDOWS\system32\Drivers\wpdusb.sys 13:53:13.0250 2880 WpdUsb - ok 13:53:13.0281 2880 [ C24CFB097547DD4DD9040EC9757F0DCA ] WPS C:\WINDOWS\system32\drivers\wpsdrvnt.sys 13:53:13.0296 2880 WPS - ok 13:53:13.0328 2880 [ C306D2037EC147C7C663994F12B87F1E ] WpsHelper C:\WINDOWS\system32\drivers\WpsHelper.sys 13:53:13.0343 2880 WpsHelper - ok 13:53:13.0359 2880 [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] WS2IFSL C:\WINDOWS\System32\drivers\ws2ifsl.sys 13:53:13.0484 2880 WS2IFSL - ok 13:53:13.0515 2880 [ 300B3E84FAF1A5C1F791C159BA28035D ] wscsvc C:\WINDOWS\system32\wscsvc.dll 13:53:13.0640 2880 wscsvc - ok 13:53:13.0750 2880 [ C98B39829C2BBD34E454150633C62C78 ] WSTCODEC C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS 13:53:13.0843 2880 WSTCODEC - ok 13:53:13.0875 2880 [ 7B4FE05202AA6BF9F4DFD0E6A0D8A085 ] wuauserv C:\WINDOWS\system32\wuauserv.dll 13:53:14.0000 2880 wuauserv - ok 13:53:14.0031 2880 [ C4F109C005F6725162D2D12CA751E4A7 ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll 13:53:14.0171 2880 WZCSVC - ok 13:53:14.0234 2880 [ 0ADA34871A2E1CD2CAAFED1237A47750 ] xmlprov C:\WINDOWS\System32\xmlprov.dll 13:53:14.0359 2880 xmlprov - ok 13:53:14.0359 2880 ================ Scan global =============================== 13:53:14.0421 2880 [ 2C60091CA5F67C3032EAB3B30390C27F ] C:\WINDOWS\system32\basesrv.dll 13:53:14.0515 2880 [ A28CE25B59C90E12743001A1F2AE3613 ] C:\WINDOWS\system32\winsrv.dll 13:53:14.0609 2880 [ A28CE25B59C90E12743001A1F2AE3613 ] C:\WINDOWS\system32\winsrv.dll 13:53:14.0640 2880 [ A3EDBE9053889FB24AB22492472B39DC ] C:\WINDOWS\system32\services.exe 13:53:14.0656 2880 [Global] - ok 13:53:14.0656 2880 ================ Scan MBR ================================== 13:53:14.0687 2880 [ 4F02A8D4048A138C450ED7F867EB0144 ] \Device\Harddisk0\DR0 13:53:15.0531 2880 \Device\Harddisk0\DR0 - ok 13:53:15.0531 2880 ================ Scan VBR ================================== 13:53:15.0531 2880 [ 9B2C863074D558DDD49952D2AFAA2E0A ] \Device\Harddisk0\DR0\Partition1 13:53:15.0531 2880 \Device\Harddisk0\DR0\Partition1 - ok 13:53:15.0546 2880 [ 29B02761BA31D37A1CBAD88EB16C4606 ] \Device\Harddisk0\DR0\Partition2 13:53:15.0546 2880 \Device\Harddisk0\DR0\Partition2 - ok 13:53:15.0546 2880 ============================================================ 13:53:15.0546 2880 Scan finished 13:53:15.0546 2880 ============================================================ 13:53:15.0562 1576 Detected object count: 10 13:53:15.0562 1576 Actual detected object count: 10 13:53:48.0156 1576 adpu320 ( UnsignedFile.Multi.Generic ) - skipped by user 13:53:48.0156 1576 adpu320 ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:53:48.0156 1576 IDriverT ( UnsignedFile.Multi.Generic ) - skipped by user 13:53:48.0156 1576 IDriverT ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:53:48.0156 1576 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user 13:53:48.0156 1576 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:53:48.0171 1576 PCA ( UnsignedFile.Multi.Generic ) - skipped by user 13:53:48.0171 1576 PCA ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:53:48.0171 1576 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user 13:53:48.0171 1576 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:53:48.0171 1576 PxHelp20 ( UnsignedFile.Multi.Generic ) - skipped by user 13:53:48.0171 1576 PxHelp20 ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:53:48.0171 1576 sptd ( LockedFile.Multi.Generic ) - skipped by user 13:53:48.0171 1576 sptd ( LockedFile.Multi.Generic ) - User select action: Skip 13:53:48.0171 1576 stllssvr ( UnsignedFile.Multi.Generic ) - skipped by user 13:53:48.0171 1576 stllssvr ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:53:48.0171 1576 SwitchBoard ( UnsignedFile.Multi.Generic ) - skipped by user 13:53:48.0171 1576 SwitchBoard ( UnsignedFile.Multi.Generic ) - User select action: Skip 13:53:48.0187 1576 Symmpi ( UnsignedFile.Multi.Generic ) - skipped by user 13:53:48.0187 1576 Symmpi ( UnsignedFile.Multi.Generic ) - User select action: Skip |
12.11.2012, 14:02 | #4 | |
/// Malware-holic | Alle Internetbrowser sehr langsam! ok Combofix darf ausschließlich ausgeführt werden, wenn dies von einem Team Mitglied angewiesen wurde!Downloade dir bitte Combofix von einem dieser Downloadspiegel Link 1 Link 2 WICHTIG - Speichere Combofix auf deinem Desktop
Wenn Combofix fertig ist, wird es eine Logfile erstellen. Bitte poste die C:\Combofix.txt in deiner nächsten Antwort. Hinweis: Solltest du nach dem Neustart folgende Fehlermeldung erhalten Zitat:
__________________ -Verdächtige mails bitte an uns zur Analyse weiterleiten: markusg.trojaner-board@web.de Weiterleiten Anleitung: http://markusg.trojaner-board.de Mails bitte vorerst nach obiger Anleitung an markusg.trojaner-board@web.de Weiterleiten Wenn Ihr uns unterstützen möchtet |
12.11.2012, 15:05 | #5 |
| Alle Internetbrowser sehr langsam! Combofix Logfile: Code:
ATTFilter ComboFix 12-11-12.02 - Administrator 12.11.2012 14:29:52.1.2 - x86 Microsoft Windows XP Professional 5.1.2600.3.1252.49.1031.18.1014.393 [GMT 1:00] ausgeführt von:: c:\dokumente und einstellungen\Administrator\Desktop\ComboFix.exe AV: Symantec Endpoint Protection *Disabled/Updated* {FB06448E-52B8-493A-90F3-E43226D3305C} FW: Symantec Endpoint Protection *Disabled* {BE898FE3-CD0B-4014-85A9-03DB9923DDB6} . . (((((((((((((((((((((((((((((((((((( Weitere Löschungen )))))))))))))))))))))))))))))))))))))))))))))))) . . c:\dokumente und einstellungen\Administrator\Anwendungsdaten\facemoods.com c:\dokumente und einstellungen\All Users\Anwendungsdaten\TEMP c:\dokumente und einstellungen\User\Anwendungsdaten\facemoods.com C:\Install.exe c:\windows\IsUn0407.exe c:\windows\system32\URTTemp c:\windows\system32\URTTemp\fusion.dll c:\windows\system32\URTTemp\mscoree.dll c:\windows\system32\URTTemp\mscoree.dll.local c:\windows\system32\URTTemp\mscorsn.dll c:\windows\system32\URTTemp\mscorwks.dll c:\windows\system32\URTTemp\msvcr71.dll c:\windows\system32\URTTemp\regtlib.exe . . ((((((((((((((((((((((( Dateien erstellt von 2012-10-12 bis 2012-11-12 )))))))))))))))))))))))))))))) . . 2012-11-08 09:09 . 2012-11-08 09:09 -------- d-----w- c:\dokumente und einstellungen\NetworkService\Anwendungsdaten\Apple Computer 2012-11-08 07:43 . 2012-11-08 07:43 -------- d-----w- c:\windows\system32\wbem\Repository 2012-11-06 10:34 . 2012-11-08 07:42 -------- d-----w- C:\CardioVision4 2012-10-22 09:24 . 2012-11-12 07:18 -------- d-----w- C:\VALID . . . (((((((((((((((((((((((((((((((((((( Find3M Bericht )))))))))))))))))))))))))))))))))))))))))))))))))))))) . 2012-10-09 08:40 . 2012-08-29 05:44 696760 ----a-w- c:\windows\system32\FlashPlayerApp.exe 2012-10-09 08:40 . 2011-07-19 10:58 73656 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl 2012-10-09 08:40 . 2012-10-09 08:40 10220472 ----a-w- c:\windows\system32\FlashPlayerInstaller.exe 2012-10-05 00:33 . 2010-12-30 07:39 174056 ----a-w- c:\windows\system32\drivers\WpsHelper.sys 2012-08-28 15:05 . 2004-08-04 02:00 916992 ----a-w- c:\windows\system32\wininet.dll 2012-08-28 15:05 . 2004-08-04 02:00 43520 ------w- c:\windows\system32\licmgr10.dll 2012-08-28 15:05 . 2004-08-04 02:00 1469440 ------w- c:\windows\system32\inetcpl.cpl 2012-08-28 12:07 . 2004-08-04 02:00 385024 ------w- c:\windows\system32\html.iec 2012-08-24 13:53 . 2004-08-04 02:00 177664 ----a-w- c:\windows\system32\wintrust.dll 2012-08-23 06:26 . 2004-08-04 02:00 2151424 ----a-w- c:\windows\system32\ntoskrnl.exe 2012-08-23 06:26 . 2004-08-04 02:00 2030080 ----a-w- c:\windows\system32\ntkrnlpa.exe 2012-10-29 11:32 . 2012-10-29 11:32 261600 ----a-w- c:\programme\mozilla firefox\components\browsercomps.dll . . (((((((((((((((((((((((((((( Autostartpunkte der Registrierung )))))))))))))))))))))))))))))))))))))))) . . *Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt. REGEDIT4 . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1] @="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}" [HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}] 2012-02-14 22:58 94208 ----a-w- c:\dokumente und einstellungen\Administrator\Anwendungsdaten\Dropbox\bin\DropboxExt.14.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2] @="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}" [HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}] 2012-02-14 22:58 94208 ----a-w- c:\dokumente und einstellungen\Administrator\Anwendungsdaten\Dropbox\bin\DropboxExt.14.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3] @="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}" [HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}] 2012-02-14 22:58 94208 ----a-w- c:\dokumente und einstellungen\Administrator\Anwendungsdaten\Dropbox\bin\DropboxExt.14.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4] @="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}" [HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}] 2012-02-14 22:58 94208 ----a-w- c:\dokumente und einstellungen\Administrator\Anwendungsdaten\Dropbox\bin\DropboxExt.14.dll . [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "OfficeSyncProcess"="c:\programme\Microsoft Office\Office14\MSOSYNC.EXE" [2012-01-20 719672] "H/PC Connection Agent"="c:\programme\Microsoft ActiveSync\Wcescomm.exe" [2006-11-13 1289000] . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "IgfxTray"="c:\windows\system32\igfxtray.exe" [2006-09-25 98304] "HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2006-09-25 114688] "Persistence"="c:\windows\system32\igfxpers.exe" [2006-09-25 94208] "SetRefresh"="c:\programme\Compaq\SetRefresh\SetRefresh.exe" [2003-11-20 525824] "Recguard"="c:\windows\Sminst\Recguard.exe" [2006-05-12 1138688] "Reminder"="c:\windows\Creator\Remind_XP.exe" [2006-03-31 761856] "Scheduler"="c:\windows\SMINST\Scheduler.exe" [2006-07-10 872448] "RoxioDragToDisc"="c:\programme\Roxio\Drag-to-Disc\DrgToDsc.exe" [2006-10-30 1116920] "ccApp"="c:\programme\Gemeinsame Dateien\Symantec Shared\ccApp.exe" [2010-12-30 115560] "NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2011-05-21 13895272] "NvMediaCenter"="NvMCTray.dll" [2011-05-21 111208] "nwiz"="c:\programme\NVIDIA Corporation\nView\nwiz.exe" [2011-05-04 1632360] "PDFPrint"="c:\programme\PDF24\pdf24.exe" [2011-12-07 220744] "BCSSync"="c:\programme\Microsoft Office\Office14\BCSSync.exe" [2010-03-13 91520] "Adobe Reader Speed Launcher"="c:\programme\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2012-01-03 37296] "Adobe ARM"="c:\programme\Gemeinsame Dateien\Adobe\ARM\1.0\AdobeARM.exe" [2012-01-02 843712] "AdobeAAMUpdater-1.0"="c:\programme\Gemeinsame Dateien\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2011-03-15 499608] "AdobeCS5.5ServiceManager"="c:\programme\Gemeinsame Dateien\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe" [2011-01-12 1523360] "SwitchBoard"="c:\programme\Gemeinsame Dateien\Adobe\SwitchBoard\SwitchBoard.exe" [2010-02-19 517096] "RIMBBLaunchAgent.exe"="c:\programme\Gemeinsame Dateien\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe" [2011-09-01 90448] "APSDaemon"="c:\programme\Gemeinsame Dateien\Apple\Apple Application Support\APSDaemon.exe" [2012-05-30 59280] "iTunesHelper"="c:\programme\iTunes\iTunesHelper.exe" [2012-06-07 421776] . [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360] . c:\dokumente und einstellungen\Administrator\Startmenü\Programme\Autostart\ Dropbox.lnk - c:\dokumente und einstellungen\Administrator\Anwendungsdaten\Dropbox\bin\Dropbox.exe [2012-5-24 27112840] . c:\dokumente und einstellungen\Administrator\Startmenü\Programme\Autostart\Verknüpfung mit Wechseldatenträger (H) target.lnk - H:\ [N/A] . c:\dokumente und einstellungen\Administrator\Startmenü\Programme\Autostart\ Dropbox.lnk - c:\dokumente und einstellungen\Administrator\Anwendungsdaten\Dropbox\bin\Dropbox.exe [2012-5-24 27112840] . c:\dokumente und einstellungen\Administrator\Startmenü\Programme\Autostart\Verknüpfung mit Wechseldatenträger (H) target.lnk - H:\ [N/A] . c:\dokumente und einstellungen\All Users\Startmenü\Programme\Autostart\ WinZip Quick Pick.lnk - c:\programme\WinZip\WZQKPICK32.EXE [2012-4-27 603536] . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ccEvtMgr] @="Service" . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ccSetMgr] @="Service" . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Symantec Antivirus] @="Service" . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys] @="Driver" . [HKLM\~\startupfolder\C:^Dokumente und Einstellungen^Administrator^Startmenü^Programme^Autostart^Logitech . Produktregistrierung.lnk] path=c:\dokumente und einstellungen\Administrator\Startmenü\Programme\Autostart\Logitech . Produktregistrierung.lnk backup=c:\windows\pss\Logitech . Produktregistrierung.lnkStartup . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BCSSync] 2010-03-13 12:54 91520 ----a-w- c:\programme\Microsoft Office\Office14\BCSSync.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] 2005-10-28 14:25 94208 ----a-w- c:\programme\Gemeinsame Dateien\Ahead\Lib\NMBgMonitor.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LightScribe Control Panel] 2007-06-20 11:49 451872 ----a-w- c:\programme\Gemeinsame Dateien\LightScribe\LightScribeControlPanel.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Logitech Vid] 2011-01-13 02:01 6129496 ----a-w- c:\programme\Logitech\Vid HD\Vid.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LWS] 2011-03-01 21:14 190808 ----a-w- c:\programme\Logitech\LWS\Webcam Software\LWS.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck] 2001-07-09 08:50 155648 ----a-w- c:\windows\system32\NeroCheck.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PDF Complete] 2007-08-07 09:59 331288 ----a-w- c:\programme\PDF Complete\pdfsty.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task] 2010-11-04 08:18 421888 ----a-w- c:\programme\QuickTime\QTTask.exe . [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus] "DisableMonitoring"=dword:00000001 . [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile] "EnableFirewall"= 0 (0x0) . [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"= "c:\\WINDOWS\\SMINST\\Scheduler.exe"= "%windir%\\Network Diagnostic\\xpnetdiag.exe"= "c:\\Programme\\Opera\\opera.exe"= "c:\\Programme\\Microsoft Office\\Office14\\GROOVE.EXE"= "c:\\Programme\\Microsoft Office\\Office14\\ONENOTE.EXE"= "c:\\Programme\\Microsoft Office\\Office14\\OUTLOOK.EXE"= "c:\\Programme\\Symantec\\Symantec Endpoint Protection\\Smc.exe"= "c:\\Programme\\Symantec\\Symantec Endpoint Protection\\SNAC.EXE"= "c:\\Programme\\Gemeinsame Dateien\\Symantec Shared\\ccApp.exe"= "c:\\WINDOWS\\system32\\hasplms.exe"= "c:\\Programme\\Logitech\\Vid HD\\Vid.exe"= "c:\\Programme\\Java\\jre1.6.0_01\\bin\\javaw.exe"= "c:\\Dokumente und Einstellungen\\Administrator\\Lokale Einstellungen\\Anwendungsdaten\\Google\\Google Talk Plugin\\googletalkplugin.exe"= "c:\\Programme\\NVIDIA Corporation\\NVIDIA Updatus\\daemonu.exe"= "c:\\Programme\\Gemeinsame Dateien\\SafeNet Sentinel\\Sentinel Protection Server\\WinNT\\spnsrvnt.exe"= "c:\\Programme\\Gemeinsame Dateien\\SafeNet Sentinel\\Sentinel Keys Server\\sntlkeyssrvr.exe"= "c:\programme\Microsoft ActiveSync\rapimgr.exe"= c:\programme\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager "c:\programme\Microsoft ActiveSync\wcescomm.exe"= c:\programme\Microsoft ActiveSync\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager "c:\programme\Microsoft ActiveSync\WCESMgr.exe"= c:\programme\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application "c:\\Dokumente und Einstellungen\\Administrator\\Anwendungsdaten\\Dropbox\\bin\\Dropbox.exe"= "c:\\Programme\\Research In Motion\\BlackBerry Desktop\\Rim.Desktop.exe"= "c:\\Programme\\Gemeinsame Dateien\\Apple\\Apple Application Support\\WebKit2WebProcess.exe"= "c:\\Programme\\Bonjour\\mDNSResponder.exe"= "c:\\Programme\\iTunes\\iTunes.exe"= . [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List] "26675:TCP"= 26675:TCP:169.254.2.0/255.255.255.0:Enabled:ActiveSync Service . R0 sptd;sptd;c:\windows\system32\drivers\sptd.sys [28.06.2012 10:21 691696] R1 VBoxDrv;VirtualBox Service;c:\windows\system32\drivers\VBoxDrv.sys [14.09.2011 10:37 158512] R1 VBoxUSBMon;VirtualBox USB Monitor Driver;c:\windows\system32\drivers\VBoxUSBMon.sys [14.09.2011 10:37 90928] R2 hasplms;Sentinel HASP License Manager;c:\windows\system32\hasplms.exe -run --> c:\windows\system32\hasplms.exe -run [?] R2 pdfcDispatcher;PDF Document Manager;c:\programme\PDF Complete\pdfsvc.exe [04.12.2007 14:31 540184] R2 SentinelKeysServer;Sentinel Keys Server;c:\programme\Gemeinsame Dateien\SafeNet Sentinel\Sentinel Keys Server\sntlkeyssrvr.exe [27.05.2011 01:03 374304] R2 SentinelSecurityRuntime;Sentinel Security Runtime;c:\programme\Gemeinsame Dateien\SafeNet Sentinel\Sentinel Security Runtime\sntlsrtsrvr.exe [27.05.2011 01:00 292384] R2 UMVPFSrv;UMVPFSrv;c:\programme\Gemeinsame Dateien\LogiShrd\LVMVFM\UMVPFSrv.exe [26.05.2011 05:05 442656] R3 COH_Mon;COH_Mon;c:\windows\system32\drivers\COH_Mon.sys [30.12.2010 08:39 23888] R3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\programme\Gemeinsame Dateien\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [04.10.2012 06:46 106656] R3 VBoxNetFlt;VirtualBox Bridged Networking Service;c:\windows\system32\drivers\VBoxNetFlt.sys [15.08.2011 14:06 116016] S0 vmci;VMware VMCI Bus Driver;c:\windows\system32\DRIVERS\vmci.sys --> c:\windows\system32\DRIVERS\vmci.sys [?] S2 H2DatabaseService;H2 Database Engine Service;c:\programme\HMS\H2-DatabaseServer\wrapper.exe -s c:\programme\HMS\H2-DatabaseServer\wrapper.conf --> c:\programme\HMS\H2-DatabaseServer\wrapper.exe -s c:\programme\HMS\H2-DatabaseServer\wrapper.conf [?] S3 DMSUSBHS3A;DMSUSBHS3A;c:\windows\system32\drivers\DMSUSBHS3A.sys [07.03.2012 08:38 19000] S3 DMSUSBLoader_H;DMSUSBLoader_H;c:\windows\system32\drivers\DMSUSBLoader_H.sys [07.03.2012 08:38 21840] S3 silabenm;Silicon Labs CP210x USB to UART Bridge Serial Port Enumerator Driver;c:\windows\system32\drivers\silabenm.sys [27.01.2011 19:18 47176] S3 silabser;Silicon Labs CP210x USB to UART Bridge Driver;c:\windows\system32\drivers\silabser.sys [27.01.2011 19:18 58496] S3 SwitchBoard;SwitchBoard;c:\programme\Gemeinsame Dateien\Adobe\SwitchBoard\SwitchBoard.exe [19.02.2010 13:37 517096] . --- Andere Dienste/Treiber im Speicher --- . *NewlyCreated* - 77699150 *Deregistered* - 77699150 . [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost] HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12 . [HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}] 2007-06-20 11:47 451872 ----a-w- c:\programme\Gemeinsame Dateien\LightScribe\LSRunOnce.exe . Inhalt des "geplante Tasks" Ordners . 2012-11-12 c:\windows\Tasks\Adobe Flash Player Updater.job - c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-08-29 08:40] . 2012-11-12 c:\windows\Tasks\AdobeAAMUpdater-1.0-LZEKG-Administrator.job - c:\programme\Gemeinsame Dateien\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe [2012-03-15 16:42] . 2012-11-12 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1035076636-285161862-2495949682-500Core.job - c:\dokumente und einstellungen\Administrator\Lokale Einstellungen\Anwendungsdaten\Google\Update\GoogleUpdate.exe [2011-08-03 12:23] . 2012-11-12 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1035076636-285161862-2495949682-500UA.job - c:\dokumente und einstellungen\Administrator\Lokale Einstellungen\Anwendungsdaten\Google\Update\GoogleUpdate.exe [2011-08-03 12:23] . . ------- Zusätzlicher Suchlauf ------- . uStart Page = hxxp://www.symantec.com/de/de/enterprise/security_response/ uInternet Settings,ProxyOverride = *.local IE: An OneNote s&enden - c:\progra~1\MICROS~2\Office14\ONBttnIE.dll/105 IE: Nach Microsoft E&xcel exportieren - c:\progra~1\MICROS~2\Office14\EXCEL.EXE/3000 TCP: Interfaces\{A0DEC09E-D3B0-4AC4-95F6-B199BA4E51D3}: NameServer = 192.168.10.30 DPF: Microsoft XML Parser for Java - file:///C:/WINDOWS/Java/classes/xmldso.cab FF - ProfilePath - c:\dokumente und einstellungen\Administrator\Anwendungsdaten\Mozilla\Firefox\Profiles\fifp3u1p.default\ FF - prefs.js: browser.search.selectedEngine - Google FF - prefs.js: browser.startup.homepage - hxxp://www.google.de/ . - - - - Entfernte verwaiste Registrierungseinträge - - - - . Notify-NavLogon - (no file) SafeBoot-Symantec Antvirus AddRemove-HS Auftragsbearbeitung - c:\windows\IsUn0407.exe . . . ************************************************************************** . catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, GMER - Rootkit Detector and Remover Rootkit scan 2012-11-12 14:53 Windows 5.1.2600 Service Pack 3 NTFS . Scanne versteckte Prozesse... . Scanne versteckte Autostarteinträge... . Scanne versteckte Dateien... . Scan erfolgreich abgeschlossen versteckte Dateien: 0 . ************************************************************************** . [HKEY_LOCAL_MACHINE\System\ControlSet001\Services\pdfcDispatcher] "ImagePath"="c:\programme\PDF Complete\pdfsvc.exe /startedbyscm:66B66708-40E2BE4D-pdfcService" . --------------------- Gesperrte Registrierungsschluessel --------------------- . [HKEY_USERS\S-1-5-21-1035076636-285161862-2495949682-500\Software\Microsoft\Internet Explorer\User Preferences] @Denied: (2) (Administrator) "88D7D0879DAB32E14DE5B3A805A34F98AFF34F5977"=hex:01,00,00,00,d0,8c,9d,df,01,15, d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,a0,22,b6,83,75,58,86,45,b3,51,02,\ "2D53CFFC5C1A3DD2E97B7979AC2A92BD59BC839E81"=hex:01,00,00,00,d0,8c,9d,df,01,15, d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,a0,22,b6,83,75,58,86,45,b3,51,02,\ "6256FFB019F8FDFBD36745B06F4540E9AEAF222A25"=hex:01,00,00,00,d0,8c,9d,df,01,15, d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,a0,22,b6,83,75,58,86,45,b3,51,02,\ . [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}] @Denied: (A 2) (Everyone) @="FlashBroker" "LocalizedString"="@c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil32_11_4_402_287_ActiveX.exe,-101" . [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation] "Enabled"=dword:00000001 . [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32] @="c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil32_11_4_402_287_ActiveX.exe" . [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" . [HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}] @Denied: (A 2) (Everyone) @="IFlashBroker5" . [HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32] @="{00020424-0000-0000-C000-000000000046}" . [HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" "Version"="1.0" . Zeit der Fertigstellung: 2012-11-12 14:59:23 ComboFix-quarantined-files.txt 2012-11-12 13:59 . Vor Suchlauf: 26 Verzeichnis(se), 67.931.656.192 Bytes frei Nach Suchlauf: 30 Verzeichnis(se), 69.224.640.512 Bytes frei . WindowsXP-KB310994-SP2-Pro-BootDisk-DEU.exe [boot loader] timeout=2 default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS [operating systems] c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons UnsupportedDebug="do not select this" /debug multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional" /noexecute=optin /fastdetect . - - End Of File - - 524319A24B0BA3EE09936439ACCD03AC |
13.11.2012, 19:18 | #6 |
/// Malware-holic | Alle Internetbrowser sehr langsam! hi download tdss killer: http://www.trojaner-board.de/82358-t...entfernen.html Klicke auf Change parameters • Setze die Haken bei Verify driver digital signatures und Detect TDLFS file system • Klick auf OK und anschließend auf Start scan - bei funden erst mal immer skip wählen, log posten
__________________ --> Alle Internetbrowser sehr langsam! |
Themen zu Alle Internetbrowser sehr langsam! |
32 bit, antivirus, audiograbber, bho, bonjour, browser, cracker, document, email, error, fehlercode 1, firefox, flash player, fontcache, google, installation, internet, internet browser, langsam, lws.exe, microsoft office 2003, mozilla, msiinstaller, nvidia update, object, office 2007, plug-in, problembehandlung, programm, realtek, refresh, registry, required, scan, security, sehr langsam, sekunden, senden, software, symantec, updates, usb, virtualbox, win32k.sys, windows internet |