| |
| |||||||
Log-Analyse und Auswertung: Erste sucheWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
 |
16.12.2012, 15:27
| #16 |
 |  Erste suche Tschuldigung  Hier das richtige, hoff ich  Code:
ATTFilter aswMBR version 0.9.9.1707 Copyright(c) 2011 AVAST Software
Run date: 2012-12-15 12:54:47
-----------------------------
12:54:47.953 OS Version: Windows 5.1.2600 Service Pack 3
12:54:47.953 Number of processors: 2 586 0xF0D
12:54:47.968 ComputerName: FUßBODENPLAN-VO UserName: Rene Thaler
12:54:48.765 Initialize success
12:59:54.218 AVAST engine defs: 12121500
13:00:37.078 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-0
13:00:37.078 Disk 0 Vendor: ST925082 3.AD Size: 238475MB BusType: 3
13:00:37.109 Disk 0 MBR read successfully
13:00:37.109 Disk 0 MBR scan
13:00:37.203 Disk 0 Windows VISTA default MBR code
13:00:37.203 Disk 0 Partition 1 00 DE Dell Utility Dell 8.0 117 MB offset 63
13:00:37.203 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 238355 MB offset 240975
13:00:37.234 Disk 0 scanning sectors +488392065
13:00:37.296 Disk 0 scanning C:\WINDOWS\system32\drivers
13:00:49.953 Service scanning
13:01:18.359 Modules scanning
13:01:50.250 Disk 0 trace - called modules:
13:01:50.296 ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys hal.dll iaStor.sys
13:01:50.296 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x8ac69ab8]
13:01:50.296 3 CLASSPNP.SYS[ba0e8fd7] -> nt!IofCallDriver -> \Device\00000080[0x8acbe1d0]
13:01:50.296 5 ACPI.sys[b9f7e620] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-0[0x8ac61030]
13:01:50.937 AVAST engine scan C:\WINDOWS
13:01:59.359 AVAST engine scan C:\WINDOWS\system32
13:05:46.312 AVAST engine scan C:\WINDOWS\system32\drivers
13:06:05.890 AVAST engine scan C:\Dokumente und Einstellungen\Rene Thaler
13:18:18.281 AVAST engine scan C:\Dokumente und Einstellungen\All Users
13:22:52.500 Scan finished successfully
13:24:35.078 Disk 0 MBR has been saved successfully to "C:\Dokumente und Einstellungen\Rene Thaler\Desktop\MBR.dat"
13:24:35.078 The log file has been saved successfully to "C:\Dokumente und Einstellungen\Rene Thaler\Desktop\aswMBR.txt"
|
|
17.12.2012, 17:38
| #17 |
| /// Winkelfunktion /// TB-Süch-Tiger™   | Erste suche Was bitte ist mit GMER?
__________________
__________________ |
|
03.01.2013, 20:55
| #19 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Erste suche Es gibt keinen Grund ein Textdatei erstmal wieder in ein Bloat-Format wie zB das von MS-Word (doc) zu gießen... Rechtsklick auf das GMER.log => senden an => ZIP komprimierter Ordner Dann wird dir eine ZIP-Datei mit dem GMER-Log erstellt, das bitter hier anhängen. Aber nur ausnahmsweise weil das Log zu groß ist! Ansonsten die Logs immer schön direkt posten und in CODE-Tags
__________________ Logfiles bitte immer in CODE-Tags posten  |
|
04.01.2013, 07:31
| #20 |
| | Erste suche So hier ist die ZIP Datei, hoffe das ich es richtig gemacht habe. |
|
04.01.2013, 13:21
| #21 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Erste suche Malwarebytes Anti-Rootkit  Downloade dir bitte Malwarebytes Anti-Rootkit und speichere es auf deinem Desktop.
Starte keine andere Datei in diesem Ordner ohne Anweisung eines Helfers
__________________ --> Erste suche |
|
04.01.2013, 20:00
| #22 |
| | Erste suche Hallo Hier die mbar.exe. Datei Code:
ATTFilter Malwarebytes Anti-Rootkit 1.01.0.1011
www.malwarebytes.org
Database version: v2013.01.04.06
Windows XP Service Pack 3 x86 NTFS
Internet Explorer 6.0.2900.5512
Rene Thaler :: FUßBODENPLAN-VO [administrator]
04.01.2013 16:48:39
mbar-log-2013-01-04 (16-48-39).txt
Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM | P2P
Scan options disabled:
Objects scanned: 28076
Time elapsed: 21 minute(s), 41 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 0
(No malicious items detected)
(end)
|
|
04.01.2013, 21:15
| #23 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Erste suche Bitte das Log nur einmal posten. Du solltest es direkt in den Beitrag in CODE-Tags posten, NICHT als Anhang. Noch weniger hat es etwas im Anhang verloren wenn du es ohnehin schon wie verlangt direkt im Beitrag gepostet hast... Bitte nun (im normalen Windows-Modus) dieses Tool von Kaspersky (TDSS-Killer) ausführen und das Log posten Anleitung und Downloadlink hier => http://www.trojaner-board.de/82358-t...entfernen.html Hinweis: Bitte den Virenscanner abstellen bevor du den TDSS-Killer ausführst, denn v.a. Avira meldet im TDSS-Tool oft einen Fehlalarm! Das Tool so einstellen wie unten im Bild angegeben - klick auf change parameters und setze die Haken wie im folgenden Screenshot abgebildet, Dann auf Start Scan klicken und wenn es durch ist auf den Button Report klicken um das Log anzuzeigen. Dieses bitte komplett posten. Wenn du das Log nicht findest oder den Inhalt kopieren und in dein Posting übertragen kannst, dann schau bitte direkt auf deiner Windows-Systempartition ( meistens Laufwerk C: ) nach, da speichert der TDSS-Killer seine Logs. Hinweis: Bitte nichts voreilig mit dem TDSS-Killer löschen! Falls Objekte vom TDSS-Killer bemängelt werden, alle mit der Aktion "skip" behandeln und hier nur das Log posten! 
__________________ Logfiles bitte immer in CODE-Tags posten |
|
05.01.2013, 16:16
| #24 |
| | Erste suche Hier TDSS Killer Code:
ATTFilter 16:14:53.0546 5128 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
16:14:53.0671 5128 ============================================================
16:14:53.0671 5128 Current date / time: 2013/01/05 16:14:53.0671
16:14:53.0671 5128 SystemInfo:
16:14:53.0671 5128
16:14:53.0671 5128 OS Version: 5.1.2600 ServicePack: 3.0
16:14:53.0671 5128 Product type: Workstation
16:14:53.0671 5128 ComputerName: FUßBODENPLAN-VO
16:14:53.0671 5128 UserName: Rene Thaler
16:14:53.0671 5128 Windows directory: C:\WINDOWS
16:14:53.0671 5128 System windows directory: C:\WINDOWS
16:14:53.0671 5128 Processor architecture: Intel x86
16:14:53.0671 5128 Number of processors: 2
16:14:53.0671 5128 Page size: 0x1000
16:14:53.0671 5128 Boot type: Normal boot
16:14:53.0671 5128 ============================================================
16:14:53.0937 5128 Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
16:14:53.0937 5128 Drive \Device\Harddisk1\DR3 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
16:14:53.0953 5128 ============================================================
16:14:53.0953 5128 \Device\Harddisk0\DR0:
16:14:53.0953 5128 MBR partitions:
16:14:53.0968 5128 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3AD4F, BlocksNum 0x1D189832
16:14:53.0968 5128 \Device\Harddisk1\DR3:
16:14:53.0968 5128 MBR partitions:
16:14:53.0968 5128 \Device\Harddisk1\DR3\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x3A384800
16:14:53.0968 5128 ============================================================
16:14:54.0000 5128 C: <-> \Device\Harddisk0\DR0\Partition1
16:14:54.0000 5128 G: <-> \Device\Harddisk1\DR3\Partition1
16:14:54.0000 5128 ============================================================
16:14:54.0000 5128 Initialize success
16:14:54.0000 5128 ============================================================
16:15:14.0093 4944 ============================================================
16:15:14.0093 4944 Scan started
16:15:14.0093 4944 Mode: Manual; SigCheck; TDLFS;
16:15:14.0093 4944 ============================================================
16:15:14.0875 4944 ================ Scan system memory ========================
16:15:14.0890 4944 System memory - ok
16:15:14.0890 4944 ================ Scan services =============================
16:15:15.0031 4944 [ 914A9709FC3BF419AD2F85547F2A4832 ] 61883 C:\WINDOWS\system32\DRIVERS\61883.sys
16:15:21.0078 4944 61883 - ok
16:15:21.0078 4944 Abiosdsk - ok
16:15:21.0156 4944 [ 6ABB91494FE6C59089B9336452AB2EA3 ] abp480n5 C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS
16:15:21.0250 4944 abp480n5 - ok
16:15:21.0265 4944 [ AC407F1A62C3A300B4F2B5A9F1D55B2C ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
16:15:21.0359 4944 ACPI - ok
16:15:21.0359 4944 [ 9E1CA3160DAFB159CA14F83B1E317F75 ] ACPIEC C:\WINDOWS\system32\DRIVERS\ACPIEC.sys
16:15:21.0468 4944 ACPIEC - ok
16:15:21.0531 4944 [ 95CE557D16A75606CCC2D7F3B0B0BCCB ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
16:15:21.0562 4944 AdobeFlashPlayerUpdateSvc - ok
16:15:21.0609 4944 [ 9A11864873DA202C996558B2106B0BBC ] adpu160m C:\WINDOWS\system32\DRIVERS\adpu160m.sys
16:15:21.0703 4944 adpu160m - ok
16:15:21.0750 4944 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys
16:15:21.0859 4944 aec - ok
16:15:21.0906 4944 [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD C:\WINDOWS\System32\drivers\afd.sys
16:15:21.0984 4944 AFD - ok
16:15:22.0015 4944 [ 08FD04AA961BDC77FB983F328334E3D7 ] agp440 C:\WINDOWS\system32\DRIVERS\agp440.sys
16:15:22.0125 4944 agp440 - ok
16:15:22.0125 4944 [ 03A7E0922ACFE1B07D5DB2EEB0773063 ] agpCPQ C:\WINDOWS\system32\DRIVERS\agpCPQ.sys
16:15:22.0218 4944 agpCPQ - ok
16:15:22.0250 4944 [ C23EA9B5F46C7F7910DB3EAB648FF013 ] Aha154x C:\WINDOWS\system32\DRIVERS\aha154x.sys
16:15:22.0312 4944 Aha154x - ok
16:15:22.0328 4944 [ 19DD0FB48B0C18892F70E2E7D61A1529 ] aic78u2 C:\WINDOWS\system32\DRIVERS\aic78u2.sys
16:15:22.0437 4944 aic78u2 - ok
16:15:22.0437 4944 [ B7FE594A7468AA0132DEB03FB8E34326 ] aic78xx C:\WINDOWS\system32\DRIVERS\aic78xx.sys
16:15:22.0562 4944 aic78xx - ok
16:15:22.0578 4944 [ 738D80CC01D7BC7584BE917B7F544394 ] Alerter C:\WINDOWS\system32\alrsvc.dll
16:15:22.0687 4944 Alerter - ok
16:15:22.0703 4944 [ 190CD73D4984F94D823F9444980513E5 ] ALG C:\WINDOWS\System32\alg.exe
16:15:22.0750 4944 ALG - ok
16:15:22.0781 4944 [ 1140AB9938809700B46BB88E46D72A96 ] AliIde C:\WINDOWS\system32\DRIVERS\aliide.sys
16:15:22.0875 4944 AliIde - ok
16:15:22.0906 4944 [ CB08AED0DE2DD889A8A820CD8082D83C ] alim1541 C:\WINDOWS\system32\DRIVERS\alim1541.sys
16:15:23.0000 4944 alim1541 - ok
16:15:23.0031 4944 [ 95B4FB835E28AA1336CEEB07FD5B9398 ] amdagp C:\WINDOWS\system32\DRIVERS\amdagp.sys
16:15:23.0140 4944 amdagp - ok
16:15:23.0171 4944 [ 79F5ADD8D24BD6893F2903A3E2F3FAD6 ] amsint C:\WINDOWS\system32\DRIVERS\amsint.sys
16:15:23.0234 4944 amsint - ok
16:15:23.0343 4944 [ 0FA2D8304ECA29CA0AB7E3EE50FD585A ] AntiVirSchedulerService C:\Programme\Avira\AntiVir Desktop\sched.exe
16:15:23.0359 4944 AntiVirSchedulerService - ok
16:15:23.0375 4944 [ 5C69AAC8A59207DA9710FF2E42D6F80F ] AntiVirService C:\Programme\Avira\AntiVir Desktop\avguard.exe
16:15:23.0390 4944 AntiVirService - ok
16:15:23.0406 4944 [ 255527AB98293EA390352A8C53B0042A ] AntiVirWebService C:\Programme\Avira\AntiVir Desktop\AVWEBGRD.EXE
16:15:23.0437 4944 AntiVirWebService - ok
16:15:23.0484 4944 [ 350F19EB5FE4EC37A2414DF56CDE1AA8 ] ApfiltrService C:\WINDOWS\system32\DRIVERS\Apfiltr.sys
16:15:23.0609 4944 ApfiltrService - ok
16:15:23.0656 4944 [ EC94E05B76D033B74394E7B2175103CF ] APPDRV C:\WINDOWS\SYSTEM32\DRIVERS\APPDRV.SYS
16:15:23.0671 4944 APPDRV ( UnsignedFile.Multi.Generic ) - warning
16:15:23.0671 4944 APPDRV - detected UnsignedFile.Multi.Generic (1)
16:15:23.0781 4944 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\AppleMobileDeviceService.exe
16:15:23.0796 4944 Apple Mobile Device - ok
16:15:23.0828 4944 [ D45960BE52C3C610D361977057F98C54 ] AppMgmt C:\WINDOWS\System32\appmgmts.dll
16:15:23.0890 4944 AppMgmt - ok
16:15:23.0906 4944 [ B5B8A80875C1DEDEDA8B02765642C32F ] Arp1394 C:\WINDOWS\system32\DRIVERS\arp1394.sys
16:15:24.0046 4944 Arp1394 - ok
16:15:24.0046 4944 [ 62D318E9A0C8FC9B780008E724283707 ] asc C:\WINDOWS\system32\DRIVERS\asc.sys
16:15:24.0171 4944 asc - ok
16:15:24.0171 4944 [ 69EB0CC7714B32896CCBFD5EDCBEA447 ] asc3350p C:\WINDOWS\system32\DRIVERS\asc3350p.sys
16:15:24.0218 4944 asc3350p - ok
16:15:24.0234 4944 [ 5D8DE112AA0254B907861E9E9C31D597 ] asc3550 C:\WINDOWS\system32\DRIVERS\asc3550.sys
16:15:24.0328 4944 asc3550 - ok
16:15:24.0421 4944 [ 0E5E4957549056E2BF2C49F4F6B601AD ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
16:15:24.0437 4944 aspnet_state - ok
16:15:24.0468 4944 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
16:15:24.0578 4944 AsyncMac - ok
16:15:24.0609 4944 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
16:15:24.0703 4944 atapi - ok
16:15:24.0703 4944 Atdisk - ok
16:15:24.0734 4944 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
16:15:24.0843 4944 Atmarpc - ok
16:15:24.0875 4944 [ 58ED0D5452DF7BE732193E7999C6B9A4 ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
16:15:24.0968 4944 AudioSrv - ok
16:15:25.0015 4944 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
16:15:25.0109 4944 audstub - ok
16:15:25.0140 4944 [ F8E6956A614F15A0860474C5E2A7DE6B ] Avc C:\WINDOWS\system32\DRIVERS\avc.sys
16:15:25.0250 4944 Avc - ok
16:15:25.0500 4944 [ 7A0F6A3E0E41425B9BA54616B482668A ] AVGIDSAgent C:\Programme\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe
16:15:25.0750 4944 AVGIDSAgent - ok
16:15:25.0781 4944 [ 2D18221AAB3DB2D408D6C55C0F23090A ] AVGIDSDriver C:\WINDOWS\system32\DRIVERS\AVGIDSDriver.Sys
16:15:25.0843 4944 AVGIDSDriver - ok
16:15:25.0875 4944 [ 1AF676DB3F3D4CC709CFAB2571CF5FC3 ] AVGIDSEH C:\WINDOWS\system32\DRIVERS\AVGIDSEH.Sys
16:15:25.0890 4944 AVGIDSEH - ok
16:15:25.0890 4944 [ 4C51E233C87F9EC7598551DE554BC99D ] AVGIDSFilter C:\WINDOWS\system32\DRIVERS\AVGIDSFilter.Sys
16:15:25.0906 4944 AVGIDSFilter - ok
16:15:25.0937 4944 [ C3FC426E54F55C1CC3219E415B88E10C ] AVGIDSShim C:\WINDOWS\system32\DRIVERS\AVGIDSShim.Sys
16:15:25.0953 4944 AVGIDSShim - ok
16:15:26.0000 4944 [ 901EB73F900D8DD1E8862C40427B83AE ] Avgldx86 C:\WINDOWS\system32\DRIVERS\avgldx86.sys
16:15:26.0031 4944 Avgldx86 - ok
16:15:26.0062 4944 [ 5639DE66B37D02BD22DF4CF3155FBA60 ] Avgmfx86 C:\WINDOWS\system32\DRIVERS\avgmfx86.sys
16:15:26.0078 4944 Avgmfx86 - ok
16:15:26.0093 4944 [ A5C175039B1D6D85D0E79F5855828E4D ] avgntflt C:\WINDOWS\system32\DRIVERS\avgntflt.sys
16:15:26.0109 4944 avgntflt - ok
16:15:26.0109 4944 [ D1BAF652EDA0AE70896276A1FB32C2D4 ] Avgrkx86 C:\WINDOWS\system32\DRIVERS\avgrkx86.sys
16:15:26.0125 4944 Avgrkx86 - ok
16:15:26.0171 4944 [ AAF0EBCAD95F2164CFFB544E00392498 ] Avgtdix C:\WINDOWS\system32\DRIVERS\avgtdix.sys
16:15:26.0203 4944 Avgtdix - ok
16:15:26.0250 4944 [ FC2BC51120A945F7C70376495E4E7737 ] avgwd C:\Programme\AVG\AVG10\avgwdsvc.exe
16:15:26.0281 4944 avgwd - ok
16:15:26.0312 4944 [ 37B854C7D1F477E66C5B49C7700C47CC ] avipbb C:\WINDOWS\system32\DRIVERS\avipbb.sys
16:15:26.0328 4944 avipbb - ok
16:15:26.0343 4944 [ FFB78D74E1EA5F811341A6E7AC547A46 ] avkmgr C:\WINDOWS\system32\DRIVERS\avkmgr.sys
16:15:26.0359 4944 avkmgr - ok
16:15:26.0421 4944 [ 37F385A93C620CBE0F89C17E45F697A1 ] BCM43XX C:\WINDOWS\system32\DRIVERS\bcmwl5.sys
16:15:26.0515 4944 BCM43XX - ok
16:15:26.0546 4944 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
16:15:26.0640 4944 Beep - ok
16:15:26.0687 4944 [ D6F603772A789BB3228F310D650B8BD1 ] BITS C:\WINDOWS\system32\qmgr.dll
16:15:26.0796 4944 BITS - ok
16:15:26.0828 4944 [ D002033C1A37F6AF51B5F0BA6D0211BC ] BMLoad C:\WINDOWS\system32\drivers\BMLoad.sys
16:15:26.0859 4944 BMLoad ( UnsignedFile.Multi.Generic ) - warning
16:15:26.0859 4944 BMLoad - detected UnsignedFile.Multi.Generic (1)
16:15:26.0921 4944 [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] Bonjour Service C:\Programme\Bonjour\mDNSResponder.exe
16:15:26.0937 4944 Bonjour Service - ok
16:15:26.0968 4944 [ F934D1B230F84E1D19DD00AC5A7A83ED ] Bridge C:\WINDOWS\system32\DRIVERS\bridge.sys
16:15:27.0031 4944 Bridge - ok
16:15:27.0031 4944 [ F934D1B230F84E1D19DD00AC5A7A83ED ] BridgeMP C:\WINDOWS\system32\DRIVERS\bridge.sys
16:15:27.0078 4944 BridgeMP - ok
16:15:27.0125 4944 [ B71549F23736ADF83A571061C47777FD ] Browser C:\WINDOWS\System32\browser.dll
16:15:27.0156 4944 Browser - ok
16:15:27.0375 4944 [ EBBA16A88F517BFB1B7681ABF006C8B0 ] Browser Manager C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Browser Manager\2.5.976.107\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\mngr.exe
16:15:27.0437 4944 Browser Manager - ok
16:15:27.0500 4944 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf C:\WINDOWS\system32\DRIVERS\cbidf2k.sys
16:15:27.0609 4944 cbidf - ok
16:15:27.0625 4944 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
16:15:27.0718 4944 cbidf2k - ok
16:15:27.0734 4944 [ 0BE5AEF125BE881C4F854C554F2B025C ] CCDECODE C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
16:15:27.0828 4944 CCDECODE - ok
16:15:27.0875 4944 [ F3EC03299634490E97BBCE94CD2954C7 ] cd20xrnt C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys
16:15:27.0937 4944 cd20xrnt - ok
16:15:27.0968 4944 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
16:15:28.0062 4944 Cdaudio - ok
16:15:28.0093 4944 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
16:15:28.0187 4944 Cdfs - ok
16:15:28.0203 4944 [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
16:15:28.0296 4944 Cdrom - ok
16:15:28.0296 4944 Changer - ok
16:15:28.0328 4944 [ 28E3040D1F1CA2008CD6B29DFEBC9A5E ] CiSvc C:\WINDOWS\system32\cisvc.exe
16:15:28.0421 4944 CiSvc - ok
16:15:28.0453 4944 [ 778A30ED3C134EB7E406AFC407E9997D ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
16:15:28.0562 4944 ClipSrv - ok
16:15:28.0593 4944 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
16:15:28.0718 4944 clr_optimization_v2.0.50727_32 - ok
16:15:28.0750 4944 [ 0F6C187D38D98F8DF904589A5F94D411 ] CmBatt C:\WINDOWS\system32\DRIVERS\CmBatt.sys
16:15:28.0843 4944 CmBatt - ok
16:15:28.0875 4944 [ C687F81290303D90099B027A6474F99F ] CmdIde C:\WINDOWS\system32\DRIVERS\cmdide.sys
16:15:28.0984 4944 CmdIde - ok
16:15:29.0000 4944 [ 6E4C9F21F0FAE8940661144F41B13203 ] Compbatt C:\WINDOWS\system32\DRIVERS\compbatt.sys
16:15:29.0109 4944 Compbatt - ok
16:15:29.0109 4944 COMSysApp - ok
16:15:29.0125 4944 [ 3EE529119EED34CD212A215E8C40D4B6 ] Cpqarray C:\WINDOWS\system32\DRIVERS\cpqarray.sys
16:15:29.0234 4944 Cpqarray - ok
16:15:29.0312 4944 cpuz132 - ok
16:15:29.0359 4944 [ 611F824E5C703A5A899F84C5F1699E4D ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
16:15:29.0453 4944 CryptSvc - ok
16:15:29.0468 4944 [ E550E7418984B65A78299D248F0A7F36 ] dac2w2k C:\WINDOWS\system32\DRIVERS\dac2w2k.sys
16:15:29.0593 4944 dac2w2k - ok
16:15:29.0625 4944 [ 683789CAA3864EB46125AE86FF677D34 ] dac960nt C:\WINDOWS\system32\DRIVERS\dac960nt.sys
16:15:29.0718 4944 dac960nt - ok
16:15:29.0781 4944 [ 3127AFBF2C1ED0AB14A1BBB7AAECB85B ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
16:15:29.0828 4944 DcomLaunch - ok
16:15:29.0859 4944 [ C29A1C9B75BA38FA37F8C44405DEC360 ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
16:15:29.0968 4944 Dhcp - ok
16:15:30.0000 4944 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
16:15:30.0109 4944 Disk - ok
16:15:30.0125 4944 [ A0500678A33802D8954153839301D539 ] DLABMFSM C:\WINDOWS\system32\Drivers\DLABMFSM.SYS
16:15:30.0140 4944 DLABMFSM - ok
16:15:30.0140 4944 [ B8D2F68CAC54D46281399F9092644794 ] DLABOIOM C:\WINDOWS\system32\Drivers\DLABOIOM.SYS
16:15:30.0171 4944 DLABOIOM - ok
16:15:30.0171 4944 [ 0EE93AB799D1CB4EC90B36F3612FE907 ] DLACDBHM C:\WINDOWS\system32\Drivers\DLACDBHM.SYS
16:15:30.0187 4944 DLACDBHM - ok
16:15:30.0203 4944 [ F8B70D38845C4694B28ADC4768676FD0 ] DLADResM C:\WINDOWS\system32\Drivers\DLADResM.SYS
16:15:30.0218 4944 DLADResM - ok
16:15:30.0234 4944 [ 766A148235BE1C0039C974446E4C0EDC ] DLAIFS_M C:\WINDOWS\system32\Drivers\DLAIFS_M.SYS
16:15:30.0265 4944 DLAIFS_M - ok
16:15:30.0265 4944 [ 38267CCA177354F1C64450A43A4F7627 ] DLAOPIOM C:\WINDOWS\system32\Drivers\DLAOPIOM.SYS
16:15:30.0296 4944 DLAOPIOM - ok
16:15:30.0296 4944 [ FD363369FD313B46B5AEAB1A688B52E9 ] DLAPoolM C:\WINDOWS\system32\Drivers\DLAPoolM.SYS
16:15:30.0312 4944 DLAPoolM - ok
16:15:30.0328 4944 [ 336AE18F0912EF4FBE5518849E004D74 ] DLARTL_M C:\WINDOWS\system32\Drivers\DLARTL_M.SYS
16:15:30.0343 4944 DLARTL_M - ok
16:15:30.0359 4944 [ FD85F682C1CC2A7CA878C7A448E6D87E ] DLAUDFAM C:\WINDOWS\system32\Drivers\DLAUDFAM.SYS
16:15:30.0375 4944 DLAUDFAM - ok
16:15:30.0390 4944 [ AF389CE587B6BF5BBDCD6F6ABE5EABC0 ] DLAUDF_M C:\WINDOWS\system32\Drivers\DLAUDF_M.SYS
16:15:30.0406 4944 DLAUDF_M - ok
16:15:30.0406 4944 dmadmin - ok
16:15:30.0468 4944 [ 0DCFC8395A99FECBB1EF771CEC7FE4EA ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
16:15:30.0625 4944 dmboot - ok
16:15:30.0640 4944 [ 53720AB12B48719D00E327DA470A619A ] dmio C:\WINDOWS\system32\drivers\dmio.sys
16:15:30.0750 4944 dmio - ok
16:15:30.0781 4944 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
16:15:30.0890 4944 dmload - ok
16:15:30.0921 4944 [ 25C83FFBBA13B554EB6D59A9B2E2EE78 ] dmserver C:\WINDOWS\System32\dmserver.dll
16:15:31.0031 4944 dmserver - ok
16:15:31.0078 4944 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
16:15:31.0187 4944 DMusic - ok
16:15:31.0218 4944 [ 407F3227AC618FD1CA54B335B083DE07 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
16:15:31.0296 4944 Dnscache - ok
16:15:31.0312 4944 [ 676E36C4FF5BCEA1900F44182B9723E6 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
16:15:31.0437 4944 Dot3svc - ok
16:15:31.0453 4944 [ 40F3B93B4E5B0126F2F5C0A7A5E22660 ] dpti2o C:\WINDOWS\system32\DRIVERS\dpti2o.sys
16:15:31.0562 4944 dpti2o - ok
16:15:31.0593 4944 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
16:15:31.0671 4944 drmkaud - ok
16:15:31.0703 4944 [ 5D3B71BB2BB0009D65D290E2EF374BD3 ] DRVMCDB C:\WINDOWS\system32\Drivers\DRVMCDB.SYS
16:15:31.0718 4944 DRVMCDB - ok
16:15:31.0734 4944 [ C591BA9F96F40A1FD6494DAFDCD17185 ] DRVNDDM C:\WINDOWS\system32\Drivers\DRVNDDM.SYS
16:15:31.0765 4944 DRVNDDM - ok
16:15:31.0796 4944 [ 4E4F2FDDAB0A0736D7671134DCCE91FB ] EapHost C:\WINDOWS\System32\eapsvc.dll
16:15:31.0906 4944 EapHost - ok
16:15:31.0921 4944 [ 877C18558D70587AA7823A1A308AC96B ] ERSvc C:\WINDOWS\System32\ersvc.dll
16:15:32.0031 4944 ERSvc - ok
16:15:32.0078 4944 [ A3EDBE9053889FB24AB22492472B39DC ] Eventlog C:\WINDOWS\system32\services.exe
16:15:32.0109 4944 Eventlog - ok
16:15:32.0156 4944 [ AF4F6B5739D18CA7972AB53E091CBC74 ] EventSystem C:\WINDOWS\system32\es.dll
16:15:32.0203 4944 EventSystem - ok
16:15:32.0234 4944 [ 13D0F39D356E70F0A5E80D7771382245 ] ewusbnet C:\WINDOWS\system32\DRIVERS\ewusbnet.sys
16:15:32.0312 4944 ewusbnet - ok
16:15:32.0328 4944 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
16:15:32.0437 4944 Fastfat - ok
16:15:32.0468 4944 [ 2DB7D303C36DDD055215052F118E8E75 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
16:15:32.0546 4944 FastUserSwitchingCompatibility - ok
16:15:32.0578 4944 [ 08B8B302AF0D1B3B8543429BBAC8F21F ] Fax C:\WINDOWS\system32\fxssvc.exe
16:15:32.0703 4944 Fax - ok
16:15:32.0750 4944 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\drivers\Fdc.sys
16:15:32.0843 4944 Fdc - ok
16:15:32.0859 4944 [ B0678A548587C5F1967B0D70BACAD6C1 ] Fips C:\WINDOWS\system32\drivers\Fips.sys
16:15:32.0953 4944 Fips - ok
16:15:32.0953 4944 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\drivers\Flpydisk.sys
16:15:33.0078 4944 Flpydisk - ok
16:15:33.0109 4944 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\DRIVERS\fltMgr.sys
16:15:33.0218 4944 FltMgr - ok
16:15:33.0281 4944 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
16:15:33.0296 4944 FontCache3.0.0.0 - ok
16:15:33.0343 4944 [ 790A4CA68F44BE35967B3DF61F3E4675 ] FsUsbExDisk C:\WINDOWS\system32\FsUsbExDisk.SYS
16:15:33.0375 4944 FsUsbExDisk ( UnsignedFile.Multi.Generic ) - warning
16:15:33.0375 4944 FsUsbExDisk - detected UnsignedFile.Multi.Generic (1)
16:15:33.0406 4944 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
16:15:33.0515 4944 Fs_Rec - ok
16:15:33.0546 4944 [ 8F1955CE42E1484714B542F341647778 ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
16:15:33.0656 4944 Ftdisk - ok
16:15:33.0687 4944 [ B45F1DF1CCE34E2AF422F0ED78CD70EF ] FWLANUSB C:\WINDOWS\system32\DRIVERS\fwlanusb.sys
16:15:33.0765 4944 FWLANUSB - ok
16:15:33.0781 4944 [ 185ADA973B5020655CEE342059A86CBB ] GEARAspiWDM C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
16:15:33.0796 4944 GEARAspiWDM - ok
16:15:33.0828 4944 [ 007AEA2E06E7CEF7372E40C277163959 ] ggflt C:\WINDOWS\system32\DRIVERS\ggflt.sys
16:15:33.0859 4944 ggflt - ok
16:15:33.0875 4944 [ C73DE35960CA75C5AB4AE636B127C64E ] ggsemc C:\WINDOWS\system32\DRIVERS\ggsemc.sys
16:15:33.0906 4944 ggsemc - ok
16:15:34.0000 4944 [ FF0E0E6E5768B82BEAD44BFBCB9BDFE6 ] GoogleDesktopManager-010708-104812 C:\Programme\Google\Google Desktop Search\GoogleDesktop.exe
16:15:34.0031 4944 GoogleDesktopManager-010708-104812 - ok
16:15:34.0062 4944 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
16:15:34.0187 4944 Gpc - ok
16:15:34.0265 4944 [ 626A24ED1228580B9518C01930936DF9 ] gupdate1c9b87d9d58bdd2 C:\Programme\Google\Update\GoogleUpdate.exe
16:15:34.0296 4944 gupdate1c9b87d9d58bdd2 - ok
16:15:34.0312 4944 [ 626A24ED1228580B9518C01930936DF9 ] gupdatem C:\Programme\Google\Update\GoogleUpdate.exe
16:15:34.0328 4944 gupdatem - ok
16:15:34.0375 4944 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Programme\Google\Common\Google Updater\GoogleUpdaterService.exe
16:15:34.0390 4944 gusvc - ok
16:15:34.0437 4944 [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
16:15:34.0531 4944 HDAudBus - ok
16:15:34.0625 4944 [ CB66BF85BF599BEFD6C6A57C2E20357F ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
16:15:34.0718 4944 helpsvc - ok
16:15:34.0765 4944 [ B35DA85E60C0103F2E4104532DA2F12B ] HidServ C:\WINDOWS\System32\hidserv.dll
16:15:34.0875 4944 HidServ - ok
16:15:34.0890 4944 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] hidusb C:\WINDOWS\system32\DRIVERS\hidusb.sys
16:15:34.0984 4944 hidusb - ok
16:15:35.0031 4944 [ ED29F14101523A6E0E808107405D452C ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
16:15:35.0125 4944 hkmsvc - ok
16:15:35.0140 4944 [ 299683D4C8AAA3F6F5D5D226A1782A6E ] HPFXBULK C:\WINDOWS\system32\drivers\hpfxbulk.sys
16:15:35.0171 4944 HPFXBULK - ok
16:15:35.0171 4944 [ F728DB73A87231E27B6BA34D71CE2EDB ] HPFXFAX C:\WINDOWS\system32\drivers\hpfxfax.sys
16:15:35.0187 4944 HPFXFAX - ok
16:15:35.0265 4944 [ 8E6EE43CB60DD1198FDA213C33B24D9D ] HPLinkUpZeroC C:\Programme\Hewlett-Packard\HP LinkUp Sender\LinkUpZeroC.exe
16:15:35.0281 4944 HPLinkUpZeroC - ok
16:15:35.0296 4944 [ B028377DEA0546A5FCFBA928A8AEFAE0 ] hpn C:\WINDOWS\system32\DRIVERS\hpn.sys
16:15:35.0406 4944 hpn - ok
16:15:35.0515 4944 [ A0FA5AC8B360780524D7A68376BAF4E0 ] hpqcxs08 C:\Programme\HP\Digital Imaging\bin\hpqcxs08.dll
16:15:35.0531 4944 hpqcxs08 ( UnsignedFile.Multi.Generic ) - warning
16:15:35.0531 4944 hpqcxs08 - detected UnsignedFile.Multi.Generic (1)
16:15:35.0562 4944 [ 99ED733F614660EB32199BF889DFB7E2 ] hpqddsvc c:\Programme\HP\Digital Imaging\bin\hpqddsvc.dll
16:15:35.0578 4944 hpqddsvc ( UnsignedFile.Multi.Generic ) - warning
16:15:35.0578 4944 hpqddsvc - detected UnsignedFile.Multi.Generic (1)
16:15:35.0578 4944 hprg - ok
16:15:35.0593 4944 HTCAND32 - ok
16:15:35.0640 4944 [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
16:15:35.0687 4944 HTTP - ok
16:15:35.0703 4944 [ 9E4ADB854CEBCFB81A4B36718FEECD16 ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
16:15:35.0796 4944 HTTPFilter - ok
16:15:35.0843 4944 [ 8ADF5EF39E896A65BEDED878494EE2B6 ] hwdatacard C:\WINDOWS\system32\DRIVERS\ewusbmdm.sys
16:15:35.0937 4944 hwdatacard - ok
16:15:35.0953 4944 [ 83026E41D9960430491432DBD6AF969A ] hwusbfake C:\WINDOWS\system32\DRIVERS\ewusbfake.sys
16:15:36.0046 4944 hwusbfake - ok
16:15:36.0078 4944 [ 9368670BD426EBEA5E8B18A62416EC28 ] i2omgmt C:\WINDOWS\system32\drivers\i2omgmt.sys
16:15:36.0171 4944 i2omgmt - ok
16:15:36.0203 4944 [ F10863BF1CCC290BABD1A09188AE49E0 ] i2omp C:\WINDOWS\system32\DRIVERS\i2omp.sys
16:15:36.0328 4944 i2omp - ok
16:15:36.0359 4944 [ E283B97CFBEB86C1D86BAED5F7846A92 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
16:15:36.0453 4944 i8042prt - ok
16:15:36.0453 4944 Scan interrupted by user!
16:15:36.0453 4944 ================ Scan global ===============================
16:15:36.0453 4944 Scan interrupted by user!
16:15:36.0453 4944 ================ Scan MBR ==================================
16:15:36.0453 4944 Scan interrupted by user!
16:15:36.0453 4944 ================ Scan VBR ==================================
16:15:36.0453 4944 Scan interrupted by user!
16:15:36.0453 4944 ============================================================
16:15:36.0453 4944 Scan finished
16:15:36.0453 4944 ============================================================
16:15:36.0562 4260 Detected object count: 5
16:15:36.0562 4260 Actual detected object count: 5
16:15:39.0843 4260 APPDRV ( UnsignedFile.Multi.Generic ) - skipped by user
16:15:39.0843 4260 APPDRV ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:15:39.0843 4260 BMLoad ( UnsignedFile.Multi.Generic ) - skipped by user
16:15:39.0843 4260 BMLoad ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:15:39.0859 4260 FsUsbExDisk ( UnsignedFile.Multi.Generic ) - skipped by user
16:15:39.0859 4260 FsUsbExDisk ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:15:39.0859 4260 hpqcxs08 ( UnsignedFile.Multi.Generic ) - skipped by user
16:15:39.0859 4260 hpqcxs08 ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:15:39.0859 4260 hpqddsvc ( UnsignedFile.Multi.Generic ) - skipped by user
16:15:39.0859 4260 hpqddsvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:16:05.0546 5840 ============================================================
16:16:05.0546 5840 Scan started
16:16:05.0546 5840 Mode: Manual; SigCheck; TDLFS;
16:16:05.0546 5840 ============================================================
16:16:05.0750 5840 ================ Scan system memory ========================
16:16:05.0750 5840 System memory - ok
16:16:05.0750 5840 ================ Scan services =============================
16:16:05.0953 5840 [ 914A9709FC3BF419AD2F85547F2A4832 ] 61883 C:\WINDOWS\system32\DRIVERS\61883.sys
16:16:06.0078 5840 61883 - ok
16:16:06.0093 5840 Abiosdsk - ok
16:16:06.0109 5840 [ 6ABB91494FE6C59089B9336452AB2EA3 ] abp480n5 C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS
16:16:06.0156 5840 abp480n5 - ok
16:16:06.0187 5840 [ AC407F1A62C3A300B4F2B5A9F1D55B2C ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
16:16:06.0281 5840 ACPI - ok
16:16:06.0296 5840 [ 9E1CA3160DAFB159CA14F83B1E317F75 ] ACPIEC C:\WINDOWS\system32\DRIVERS\ACPIEC.sys
16:16:06.0390 5840 ACPIEC - ok
16:16:06.0468 5840 [ 95CE557D16A75606CCC2D7F3B0B0BCCB ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
16:16:06.0484 5840 AdobeFlashPlayerUpdateSvc - ok
16:16:06.0515 5840 [ 9A11864873DA202C996558B2106B0BBC ] adpu160m C:\WINDOWS\system32\DRIVERS\adpu160m.sys
16:16:06.0609 5840 adpu160m - ok
16:16:06.0656 5840 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys
16:16:06.0750 5840 aec - ok
16:16:06.0796 5840 [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD C:\WINDOWS\System32\drivers\afd.sys
16:16:06.0812 5840 AFD - ok
16:16:06.0859 5840 [ 08FD04AA961BDC77FB983F328334E3D7 ] agp440 C:\WINDOWS\system32\DRIVERS\agp440.sys
16:16:06.0937 5840 agp440 - ok
16:16:06.0953 5840 [ 03A7E0922ACFE1B07D5DB2EEB0773063 ] agpCPQ C:\WINDOWS\system32\DRIVERS\agpCPQ.sys
16:16:07.0046 5840 agpCPQ - ok
16:16:07.0078 5840 [ C23EA9B5F46C7F7910DB3EAB648FF013 ] Aha154x C:\WINDOWS\system32\DRIVERS\aha154x.sys
16:16:07.0125 5840 Aha154x - ok
16:16:07.0125 5840 [ 19DD0FB48B0C18892F70E2E7D61A1529 ] aic78u2 C:\WINDOWS\system32\DRIVERS\aic78u2.sys
16:16:07.0203 5840 aic78u2 - ok
16:16:07.0234 5840 [ B7FE594A7468AA0132DEB03FB8E34326 ] aic78xx C:\WINDOWS\system32\DRIVERS\aic78xx.sys
16:16:07.0312 5840 aic78xx - ok
16:16:07.0343 5840 [ 738D80CC01D7BC7584BE917B7F544394 ] Alerter C:\WINDOWS\system32\alrsvc.dll
16:16:07.0437 5840 Alerter - ok
16:16:07.0453 5840 [ 190CD73D4984F94D823F9444980513E5 ] ALG C:\WINDOWS\System32\alg.exe
16:16:07.0500 5840 ALG - ok
16:16:07.0531 5840 [ 1140AB9938809700B46BB88E46D72A96 ] AliIde C:\WINDOWS\system32\DRIVERS\aliide.sys
16:16:07.0609 5840 AliIde - ok
16:16:07.0640 5840 [ CB08AED0DE2DD889A8A820CD8082D83C ] alim1541 C:\WINDOWS\system32\DRIVERS\alim1541.sys
16:16:07.0718 5840 alim1541 - ok
16:16:07.0750 5840 [ 95B4FB835E28AA1336CEEB07FD5B9398 ] amdagp C:\WINDOWS\system32\DRIVERS\amdagp.sys
16:16:07.0843 5840 amdagp - ok
16:16:07.0890 5840 [ 79F5ADD8D24BD6893F2903A3E2F3FAD6 ] amsint C:\WINDOWS\system32\DRIVERS\amsint.sys
16:16:07.0937 5840 amsint - ok
16:16:08.0031 5840 [ 0FA2D8304ECA29CA0AB7E3EE50FD585A ] AntiVirSchedulerService C:\Programme\Avira\AntiVir Desktop\sched.exe
16:16:08.0046 5840 AntiVirSchedulerService - ok
16:16:08.0062 5840 [ 5C69AAC8A59207DA9710FF2E42D6F80F ] AntiVirService C:\Programme\Avira\AntiVir Desktop\avguard.exe
16:16:08.0078 5840 AntiVirService - ok
16:16:08.0109 5840 [ 255527AB98293EA390352A8C53B0042A ] AntiVirWebService C:\Programme\Avira\AntiVir Desktop\AVWEBGRD.EXE
16:16:08.0140 5840 AntiVirWebService - ok
16:16:08.0171 5840 [ 350F19EB5FE4EC37A2414DF56CDE1AA8 ] ApfiltrService C:\WINDOWS\system32\DRIVERS\Apfiltr.sys
16:16:08.0187 5840 ApfiltrService - ok
16:16:08.0234 5840 [ EC94E05B76D033B74394E7B2175103CF ] APPDRV C:\WINDOWS\SYSTEM32\DRIVERS\APPDRV.SYS
16:16:08.0234 5840 APPDRV ( UnsignedFile.Multi.Generic ) - warning
16:16:08.0234 5840 APPDRV - detected UnsignedFile.Multi.Generic (1)
16:16:08.0343 5840 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\AppleMobileDeviceService.exe
16:16:08.0359 5840 Apple Mobile Device - ok
16:16:08.0390 5840 [ D45960BE52C3C610D361977057F98C54 ] AppMgmt C:\WINDOWS\System32\appmgmts.dll
16:16:08.0437 5840 AppMgmt - ok
16:16:08.0468 5840 [ B5B8A80875C1DEDEDA8B02765642C32F ] Arp1394 C:\WINDOWS\system32\DRIVERS\arp1394.sys
16:16:08.0546 5840 Arp1394 - ok
16:16:08.0578 5840 [ 62D318E9A0C8FC9B780008E724283707 ] asc C:\WINDOWS\system32\DRIVERS\asc.sys
16:16:08.0656 5840 asc - ok
16:16:08.0671 5840 [ 69EB0CC7714B32896CCBFD5EDCBEA447 ] asc3350p C:\WINDOWS\system32\DRIVERS\asc3350p.sys
16:16:08.0718 5840 asc3350p - ok
16:16:08.0750 5840 [ 5D8DE112AA0254B907861E9E9C31D597 ] asc3550 C:\WINDOWS\system32\DRIVERS\asc3550.sys
16:16:08.0828 5840 asc3550 - ok
16:16:08.0906 5840 [ 0E5E4957549056E2BF2C49F4F6B601AD ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
16:16:08.0921 5840 aspnet_state - ok
16:16:08.0968 5840 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
16:16:09.0062 5840 AsyncMac - ok
16:16:09.0062 5840 Scan interrupted by user!
16:16:09.0062 5840 ================ Scan global ===============================
16:16:09.0062 5840 Scan interrupted by user!
16:16:09.0062 5840 ================ Scan MBR ==================================
16:16:09.0062 5840 Scan interrupted by user!
16:16:09.0062 5840 ================ Scan VBR ==================================
16:16:09.0062 5840 Scan interrupted by user!
16:16:09.0062 5840 ============================================================
16:16:09.0062 5840 Scan finished
16:16:09.0062 5840 ============================================================
16:16:09.0062 4616 Detected object count: 1
16:16:09.0062 4616 Actual detected object count: 1
16:16:10.0546 4616 APPDRV ( UnsignedFile.Multi.Generic ) - skipped by user
16:16:10.0546 4616 APPDRV ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:16:13.0703 5448 ============================================================
16:16:13.0703 5448 Scan started
16:16:13.0703 5448 Mode: Manual; SigCheck; TDLFS;
16:16:13.0703 5448 ============================================================
16:16:13.0890 5448 ================ Scan system memory ========================
16:16:13.0890 5448 System memory - ok
16:16:13.0890 5448 ================ Scan services =============================
16:16:14.0062 5448 [ 914A9709FC3BF419AD2F85547F2A4832 ] 61883 C:\WINDOWS\system32\DRIVERS\61883.sys
16:16:14.0156 5448 61883 - ok
16:16:14.0156 5448 Abiosdsk - ok
16:16:14.0187 5448 [ 6ABB91494FE6C59089B9336452AB2EA3 ] abp480n5 C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS
16:16:14.0234 5448 abp480n5 - ok
16:16:14.0250 5448 [ AC407F1A62C3A300B4F2B5A9F1D55B2C ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
16:16:14.0343 5448 ACPI - ok
16:16:14.0343 5448 [ 9E1CA3160DAFB159CA14F83B1E317F75 ] ACPIEC C:\WINDOWS\system32\DRIVERS\ACPIEC.sys
16:16:14.0437 5448 ACPIEC - ok
16:16:14.0515 5448 [ 95CE557D16A75606CCC2D7F3B0B0BCCB ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
16:16:14.0531 5448 AdobeFlashPlayerUpdateSvc - ok
16:16:14.0578 5448 [ 9A11864873DA202C996558B2106B0BBC ] adpu160m C:\WINDOWS\system32\DRIVERS\adpu160m.sys
16:16:14.0656 5448 adpu160m - ok
16:16:14.0703 5448 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys
16:16:14.0796 5448 aec - ok
16:16:14.0843 5448 [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD C:\WINDOWS\System32\drivers\afd.sys
16:16:14.0859 5448 AFD - ok
16:16:14.0906 5448 [ 08FD04AA961BDC77FB983F328334E3D7 ] agp440 C:\WINDOWS\system32\DRIVERS\agp440.sys
16:16:15.0000 5448 agp440 - ok
16:16:15.0000 5448 [ 03A7E0922ACFE1B07D5DB2EEB0773063 ] agpCPQ C:\WINDOWS\system32\DRIVERS\agpCPQ.sys
16:16:15.0093 5448 agpCPQ - ok
16:16:15.0109 5448 [ C23EA9B5F46C7F7910DB3EAB648FF013 ] Aha154x C:\WINDOWS\system32\DRIVERS\aha154x.sys
16:16:15.0156 5448 Aha154x - ok
16:16:15.0171 5448 [ 19DD0FB48B0C18892F70E2E7D61A1529 ] aic78u2 C:\WINDOWS\system32\DRIVERS\aic78u2.sys
16:16:15.0250 5448 aic78u2 - ok
16:16:15.0281 5448 [ B7FE594A7468AA0132DEB03FB8E34326 ] aic78xx C:\WINDOWS\system32\DRIVERS\aic78xx.sys
16:16:15.0375 5448 aic78xx - ok
16:16:15.0421 5448 [ 738D80CC01D7BC7584BE917B7F544394 ] Alerter C:\WINDOWS\system32\alrsvc.dll
16:16:15.0500 5448 Alerter - ok
16:16:15.0531 5448 [ 190CD73D4984F94D823F9444980513E5 ] ALG C:\WINDOWS\System32\alg.exe
16:16:15.0578 5448 ALG - ok
16:16:15.0609 5448 [ 1140AB9938809700B46BB88E46D72A96 ] AliIde C:\WINDOWS\system32\DRIVERS\aliide.sys
16:16:15.0687 5448 AliIde - ok
16:16:15.0718 5448 [ CB08AED0DE2DD889A8A820CD8082D83C ] alim1541 C:\WINDOWS\system32\DRIVERS\alim1541.sys
16:16:15.0796 5448 alim1541 - ok
16:16:15.0843 5448 [ 95B4FB835E28AA1336CEEB07FD5B9398 ] amdagp C:\WINDOWS\system32\DRIVERS\amdagp.sys
16:16:15.0921 5448 amdagp - ok
16:16:15.0953 5448 [ 79F5ADD8D24BD6893F2903A3E2F3FAD6 ] amsint C:\WINDOWS\system32\DRIVERS\amsint.sys
16:16:16.0000 5448 amsint - ok
16:16:16.0109 5448 [ 0FA2D8304ECA29CA0AB7E3EE50FD585A ] AntiVirSchedulerService C:\Programme\Avira\AntiVir Desktop\sched.exe
16:16:16.0125 5448 AntiVirSchedulerService - ok
16:16:16.0140 5448 [ 5C69AAC8A59207DA9710FF2E42D6F80F ] AntiVirService C:\Programme\Avira\AntiVir Desktop\avguard.exe
16:16:16.0171 5448 AntiVirService - ok
16:16:16.0218 5448 [ 255527AB98293EA390352A8C53B0042A ] AntiVirWebService C:\Programme\Avira\AntiVir Desktop\AVWEBGRD.EXE
16:16:16.0234 5448 AntiVirWebService - ok
16:16:16.0281 5448 [ 350F19EB5FE4EC37A2414DF56CDE1AA8 ] ApfiltrService C:\WINDOWS\system32\DRIVERS\Apfiltr.sys
16:16:16.0296 5448 ApfiltrService - ok
16:16:16.0343 5448 [ EC94E05B76D033B74394E7B2175103CF ] APPDRV C:\WINDOWS\SYSTEM32\DRIVERS\APPDRV.SYS
16:16:16.0343 5448 APPDRV ( UnsignedFile.Multi.Generic ) - warning
16:16:16.0343 5448 APPDRV - detected UnsignedFile.Multi.Generic (1)
16:16:16.0437 5448 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\AppleMobileDeviceService.exe
16:16:16.0468 5448 Apple Mobile Device - ok
16:16:16.0515 5448 [ D45960BE52C3C610D361977057F98C54 ] AppMgmt C:\WINDOWS\System32\appmgmts.dll
16:16:16.0562 5448 AppMgmt - ok
16:16:16.0593 5448 [ B5B8A80875C1DEDEDA8B02765642C32F ] Arp1394 C:\WINDOWS\system32\DRIVERS\arp1394.sys
16:16:16.0671 5448 Arp1394 - ok
16:16:16.0703 5448 [ 62D318E9A0C8FC9B780008E724283707 ] asc C:\WINDOWS\system32\DRIVERS\asc.sys
16:16:16.0796 5448 asc - ok
16:16:16.0796 5448 [ 69EB0CC7714B32896CCBFD5EDCBEA447 ] asc3350p C:\WINDOWS\system32\DRIVERS\asc3350p.sys
16:16:16.0843 5448 asc3350p - ok
16:16:16.0875 5448 [ 5D8DE112AA0254B907861E9E9C31D597 ] asc3550 C:\WINDOWS\system32\DRIVERS\asc3550.sys
16:16:16.0953 5448 asc3550 - ok
16:16:17.0046 5448 [ 0E5E4957549056E2BF2C49F4F6B601AD ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
16:16:17.0062 5448 aspnet_state - ok
16:16:17.0109 5448 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
16:16:17.0187 5448 AsyncMac - ok
16:16:17.0234 5448 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
16:16:17.0312 5448 atapi - ok
16:16:17.0312 5448 Atdisk - ok
16:16:17.0343 5448 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
16:16:17.0421 5448 Atmarpc - ok
16:16:17.0468 5448 [ 58ED0D5452DF7BE732193E7999C6B9A4 ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
16:16:17.0546 5448 AudioSrv - ok
16:16:17.0593 5448 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
16:16:17.0671 5448 audstub - ok
16:16:17.0718 5448 [ F8E6956A614F15A0860474C5E2A7DE6B ] Avc C:\WINDOWS\system32\DRIVERS\avc.sys
16:16:17.0812 5448 Avc - ok
16:16:18.0062 5448 [ 7A0F6A3E0E41425B9BA54616B482668A ] AVGIDSAgent C:\Programme\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe
16:16:18.0312 5448 AVGIDSAgent - ok
16:16:18.0343 5448 [ 2D18221AAB3DB2D408D6C55C0F23090A ] AVGIDSDriver C:\WINDOWS\system32\DRIVERS\AVGIDSDriver.Sys
16:16:18.0359 5448 AVGIDSDriver - ok
16:16:18.0390 5448 [ 1AF676DB3F3D4CC709CFAB2571CF5FC3 ] AVGIDSEH C:\WINDOWS\system32\DRIVERS\AVGIDSEH.Sys
16:16:18.0406 5448 AVGIDSEH - ok
16:16:18.0437 5448 [ 4C51E233C87F9EC7598551DE554BC99D ] AVGIDSFilter C:\WINDOWS\system32\DRIVERS\AVGIDSFilter.Sys
16:16:18.0453 5448 AVGIDSFilter - ok
16:16:18.0468 5448 [ C3FC426E54F55C1CC3219E415B88E10C ] AVGIDSShim C:\WINDOWS\system32\DRIVERS\AVGIDSShim.Sys
16:16:18.0484 5448 AVGIDSShim - ok
16:16:18.0531 5448 [ 901EB73F900D8DD1E8862C40427B83AE ] Avgldx86 C:\WINDOWS\system32\DRIVERS\avgldx86.sys
16:16:18.0546 5448 Avgldx86 - ok
16:16:18.0562 5448 [ 5639DE66B37D02BD22DF4CF3155FBA60 ] Avgmfx86 C:\WINDOWS\system32\DRIVERS\avgmfx86.sys
16:16:18.0578 5448 Avgmfx86 - ok
16:16:18.0593 5448 [ A5C175039B1D6D85D0E79F5855828E4D ] avgntflt C:\WINDOWS\system32\DRIVERS\avgntflt.sys
16:16:18.0609 5448 avgntflt - ok
16:16:18.0609 5448 [ D1BAF652EDA0AE70896276A1FB32C2D4 ] Avgrkx86 C:\WINDOWS\system32\DRIVERS\avgrkx86.sys
16:16:18.0625 5448 Avgrkx86 - ok
16:16:18.0640 5448 [ AAF0EBCAD95F2164CFFB544E00392498 ] Avgtdix C:\WINDOWS\system32\DRIVERS\avgtdix.sys
16:16:18.0656 5448 Avgtdix - ok
16:16:18.0718 5448 [ FC2BC51120A945F7C70376495E4E7737 ] avgwd C:\Programme\AVG\AVG10\avgwdsvc.exe
16:16:18.0734 5448 avgwd - ok
16:16:18.0765 5448 [ 37B854C7D1F477E66C5B49C7700C47CC ] avipbb C:\WINDOWS\system32\DRIVERS\avipbb.sys
16:16:18.0796 5448 avipbb - ok
16:16:18.0796 5448 [ FFB78D74E1EA5F811341A6E7AC547A46 ] avkmgr C:\WINDOWS\system32\DRIVERS\avkmgr.sys
16:16:18.0812 5448 avkmgr - ok
16:16:18.0875 5448 [ 37F385A93C620CBE0F89C17E45F697A1 ] BCM43XX C:\WINDOWS\system32\DRIVERS\bcmwl5.sys
16:16:18.0921 5448 BCM43XX - ok
16:16:18.0953 5448 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
16:16:19.0046 5448 Beep - ok
16:16:19.0093 5448 [ D6F603772A789BB3228F310D650B8BD1 ] BITS C:\WINDOWS\system32\qmgr.dll
16:16:19.0187 5448 BITS - ok
16:16:19.0234 5448 [ D002033C1A37F6AF51B5F0BA6D0211BC ] BMLoad C:\WINDOWS\system32\drivers\BMLoad.sys
16:16:19.0234 5448 BMLoad ( UnsignedFile.Multi.Generic ) - warning
16:16:19.0234 5448 BMLoad - detected UnsignedFile.Multi.Generic (1)
16:16:19.0296 5448 [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] Bonjour Service C:\Programme\Bonjour\mDNSResponder.exe
16:16:19.0312 5448 Bonjour Service - ok
16:16:19.0359 5448 [ F934D1B230F84E1D19DD00AC5A7A83ED ] Bridge C:\WINDOWS\system32\DRIVERS\bridge.sys
16:16:19.0406 5448 Bridge - ok
16:16:19.0406 5448 [ F934D1B230F84E1D19DD00AC5A7A83ED ] BridgeMP C:\WINDOWS\system32\DRIVERS\bridge.sys
16:16:19.0453 5448 BridgeMP - ok
16:16:19.0500 5448 [ B71549F23736ADF83A571061C47777FD ] Browser C:\WINDOWS\System32\browser.dll
16:16:19.0515 5448 Browser - ok
16:16:19.0718 5448 [ EBBA16A88F517BFB1B7681ABF006C8B0 ] Browser Manager C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Browser Manager\2.5.976.107\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\mngr.exe
16:16:19.0796 5448 Browser Manager - ok
16:16:19.0875 5448 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf C:\WINDOWS\system32\DRIVERS\cbidf2k.sys
16:16:19.0953 5448 cbidf - ok
16:16:19.0953 5448 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
16:16:20.0046 5448 cbidf2k - ok
16:16:20.0062 5448 [ 0BE5AEF125BE881C4F854C554F2B025C ] CCDECODE C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
16:16:20.0140 5448 CCDECODE - ok
16:16:20.0156 5448 [ F3EC03299634490E97BBCE94CD2954C7 ] cd20xrnt C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys
16:16:20.0203 5448 cd20xrnt - ok
16:16:20.0218 5448 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
16:16:20.0296 5448 Cdaudio - ok
16:16:20.0328 5448 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
16:16:20.0406 5448 Cdfs - ok
16:16:20.0421 5448 [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
16:16:20.0515 5448 Cdrom - ok
16:16:20.0515 5448 Changer - ok
16:16:20.0546 5448 [ 28E3040D1F1CA2008CD6B29DFEBC9A5E ] CiSvc C:\WINDOWS\system32\cisvc.exe
16:16:20.0640 5448 CiSvc - ok
16:16:20.0656 5448 [ 778A30ED3C134EB7E406AFC407E9997D ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
16:16:20.0750 5448 ClipSrv - ok
16:16:20.0781 5448 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
16:16:20.0796 5448 clr_optimization_v2.0.50727_32 - ok
16:16:20.0843 5448 [ 0F6C187D38D98F8DF904589A5F94D411 ] CmBatt C:\WINDOWS\system32\DRIVERS\CmBatt.sys
16:16:20.0921 5448 CmBatt - ok
16:16:20.0937 5448 [ C687F81290303D90099B027A6474F99F ] CmdIde C:\WINDOWS\system32\DRIVERS\cmdide.sys
16:16:21.0031 5448 CmdIde - ok
16:16:21.0062 5448 [ 6E4C9F21F0FAE8940661144F41B13203 ] Compbatt C:\WINDOWS\system32\DRIVERS\compbatt.sys
16:16:21.0140 5448 Compbatt - ok
16:16:21.0140 5448 COMSysApp - ok
16:16:21.0171 5448 [ 3EE529119EED34CD212A215E8C40D4B6 ] Cpqarray C:\WINDOWS\system32\DRIVERS\cpqarray.sys
16:16:21.0265 5448 Cpqarray - ok
16:16:21.0312 5448 cpuz132 - ok
16:16:21.0359 5448 [ 611F824E5C703A5A899F84C5F1699E4D ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
16:16:21.0437 5448 CryptSvc - ok
16:16:21.0468 5448 [ E550E7418984B65A78299D248F0A7F36 ] dac2w2k C:\WINDOWS\system32\DRIVERS\dac2w2k.sys
16:16:21.0546 5448 dac2w2k - ok
16:16:21.0578 5448 [ 683789CAA3864EB46125AE86FF677D34 ] dac960nt C:\WINDOWS\system32\DRIVERS\dac960nt.sys
16:16:21.0671 5448 dac960nt - ok
16:16:21.0718 5448 [ 3127AFBF2C1ED0AB14A1BBB7AAECB85B ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
16:16:21.0750 5448 DcomLaunch - ok
16:16:21.0812 5448 [ C29A1C9B75BA38FA37F8C44405DEC360 ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
16:16:21.0890 5448 Dhcp - ok
16:16:21.0921 5448 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
16:16:22.0015 5448 Disk - ok
16:16:22.0031 5448 [ A0500678A33802D8954153839301D539 ] DLABMFSM C:\WINDOWS\system32\Drivers\DLABMFSM.SYS
16:16:22.0046 5448 DLABMFSM - ok
16:16:22.0046 5448 [ B8D2F68CAC54D46281399F9092644794 ] DLABOIOM C:\WINDOWS\system32\Drivers\DLABOIOM.SYS
16:16:22.0078 5448 DLABOIOM - ok
16:16:22.0078 5448 [ 0EE93AB799D1CB4EC90B36F3612FE907 ] DLACDBHM C:\WINDOWS\system32\Drivers\DLACDBHM.SYS
16:16:22.0093 5448 DLACDBHM - ok
16:16:22.0093 5448 [ F8B70D38845C4694B28ADC4768676FD0 ] DLADResM C:\WINDOWS\system32\Drivers\DLADResM.SYS
16:16:22.0109 5448 DLADResM - ok
16:16:22.0125 5448 [ 766A148235BE1C0039C974446E4C0EDC ] DLAIFS_M C:\WINDOWS\system32\Drivers\DLAIFS_M.SYS
16:16:22.0140 5448 DLAIFS_M - ok
16:16:22.0156 5448 [ 38267CCA177354F1C64450A43A4F7627 ] DLAOPIOM C:\WINDOWS\system32\Drivers\DLAOPIOM.SYS
16:16:22.0171 5448 DLAOPIOM - ok
16:16:22.0171 5448 [ FD363369FD313B46B5AEAB1A688B52E9 ] DLAPoolM C:\WINDOWS\system32\Drivers\DLAPoolM.SYS
16:16:22.0187 5448 DLAPoolM - ok
16:16:22.0234 5448 [ 336AE18F0912EF4FBE5518849E004D74 ] DLARTL_M C:\WINDOWS\system32\Drivers\DLARTL_M.SYS
16:16:22.0250 5448 DLARTL_M - ok
16:16:22.0250 5448 [ FD85F682C1CC2A7CA878C7A448E6D87E ] DLAUDFAM C:\WINDOWS\system32\Drivers\DLAUDFAM.SYS
16:16:22.0265 5448 DLAUDFAM - ok
16:16:22.0281 5448 [ AF389CE587B6BF5BBDCD6F6ABE5EABC0 ] DLAUDF_M C:\WINDOWS\system32\Drivers\DLAUDF_M.SYS
16:16:22.0296 5448 DLAUDF_M - ok
16:16:22.0296 5448 dmadmin - ok
16:16:22.0343 5448 [ 0DCFC8395A99FECBB1EF771CEC7FE4EA ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
16:16:22.0437 5448 dmboot - ok
16:16:22.0453 5448 [ 53720AB12B48719D00E327DA470A619A ] dmio C:\WINDOWS\system32\drivers\dmio.sys
16:16:22.0531 5448 dmio - ok
16:16:22.0562 5448 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
16:16:22.0656 5448 dmload - ok
16:16:22.0671 5448 [ 25C83FFBBA13B554EB6D59A9B2E2EE78 ] dmserver C:\WINDOWS\System32\dmserver.dll
16:16:22.0765 5448 dmserver - ok
16:16:22.0796 5448 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
16:16:22.0890 5448 DMusic - ok
16:16:22.0921 5448 [ 407F3227AC618FD1CA54B335B083DE07 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
16:16:22.0937 5448 Dnscache - ok
16:16:22.0968 5448 [ 676E36C4FF5BCEA1900F44182B9723E6 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
16:16:23.0062 5448 Dot3svc - ok
16:16:23.0093 5448 [ 40F3B93B4E5B0126F2F5C0A7A5E22660 ] dpti2o C:\WINDOWS\system32\DRIVERS\dpti2o.sys
16:16:23.0171 5448 dpti2o - ok
16:16:23.0203 5448 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
16:16:23.0281 5448 drmkaud - ok
16:16:23.0296 5448 [ 5D3B71BB2BB0009D65D290E2EF374BD3 ] DRVMCDB C:\WINDOWS\system32\Drivers\DRVMCDB.SYS
16:16:23.0312 5448 DRVMCDB - ok
16:16:23.0328 5448 [ C591BA9F96F40A1FD6494DAFDCD17185 ] DRVNDDM C:\WINDOWS\system32\Drivers\DRVNDDM.SYS
16:16:23.0343 5448 DRVNDDM - ok
16:16:23.0375 5448 [ 4E4F2FDDAB0A0736D7671134DCCE91FB ] EapHost C:\WINDOWS\System32\eapsvc.dll
16:16:23.0453 5448 EapHost - ok
16:16:23.0468 5448 [ 877C18558D70587AA7823A1A308AC96B ] ERSvc C:\WINDOWS\System32\ersvc.dll
16:16:23.0546 5448 ERSvc - ok
16:16:23.0593 5448 [ A3EDBE9053889FB24AB22492472B39DC ] Eventlog C:\WINDOWS\system32\services.exe
16:16:23.0609 5448 Eventlog - ok
16:16:23.0640 5448 [ AF4F6B5739D18CA7972AB53E091CBC74 ] EventSystem C:\WINDOWS\system32\es.dll
16:16:23.0671 5448 EventSystem - ok
16:16:23.0703 5448 [ 13D0F39D356E70F0A5E80D7771382245 ] ewusbnet C:\WINDOWS\system32\DRIVERS\ewusbnet.sys
16:16:23.0734 5448 ewusbnet - ok
16:16:23.0765 5448 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
16:16:23.0843 5448 Fastfat - ok
16:16:23.0875 5448 [ 2DB7D303C36DDD055215052F118E8E75 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
16:16:23.0906 5448 FastUserSwitchingCompatibility - ok
16:16:23.0937 5448 [ 08B8B302AF0D1B3B8543429BBAC8F21F ] Fax C:\WINDOWS\system32\fxssvc.exe
16:16:24.0031 5448 Fax - ok
16:16:24.0078 5448 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\drivers\Fdc.sys
16:16:24.0156 5448 Fdc - ok
16:16:24.0171 5448 [ B0678A548587C5F1967B0D70BACAD6C1 ] Fips C:\WINDOWS\system32\drivers\Fips.sys
16:16:24.0250 5448 Fips - ok
16:16:24.0250 5448 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\drivers\Flpydisk.sys
16:16:24.0328 5448 Flpydisk - ok
16:16:24.0343 5448 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\DRIVERS\fltMgr.sys
16:16:24.0437 5448 FltMgr - ok
16:16:24.0515 5448 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
16:16:24.0531 5448 FontCache3.0.0.0 - ok
16:16:24.0578 5448 [ 790A4CA68F44BE35967B3DF61F3E4675 ] FsUsbExDisk C:\WINDOWS\system32\FsUsbExDisk.SYS
16:16:24.0578 5448 FsUsbExDisk ( UnsignedFile.Multi.Generic ) - warning
16:16:24.0578 5448 FsUsbExDisk - detected UnsignedFile.Multi.Generic (1)
16:16:24.0609 5448 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
16:16:24.0687 5448 Fs_Rec - ok
16:16:24.0734 5448 [ 8F1955CE42E1484714B542F341647778 ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
16:16:24.0812 5448 Ftdisk - ok
16:16:24.0843 5448 [ B45F1DF1CCE34E2AF422F0ED78CD70EF ] FWLANUSB C:\WINDOWS\system32\DRIVERS\fwlanusb.sys
16:16:24.0875 5448 FWLANUSB - ok
16:16:24.0890 5448 [ 185ADA973B5020655CEE342059A86CBB ] GEARAspiWDM C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
16:16:24.0906 5448 GEARAspiWDM - ok
16:16:24.0937 5448 [ 007AEA2E06E7CEF7372E40C277163959 ] ggflt C:\WINDOWS\system32\DRIVERS\ggflt.sys
16:16:24.0953 5448 ggflt - ok
16:16:24.0968 5448 [ C73DE35960CA75C5AB4AE636B127C64E ] ggsemc C:\WINDOWS\system32\DRIVERS\ggsemc.sys
16:16:24.0984 5448 ggsemc - ok
16:16:25.0078 5448 [ FF0E0E6E5768B82BEAD44BFBCB9BDFE6 ] GoogleDesktopManager-010708-104812 C:\Programme\Google\Google Desktop Search\GoogleDesktop.exe
16:16:25.0109 5448 GoogleDesktopManager-010708-104812 - ok
16:16:25.0125 5448 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
16:16:25.0218 5448 Gpc - ok
16:16:25.0250 5448 [ 626A24ED1228580B9518C01930936DF9 ] gupdate1c9b87d9d58bdd2 C:\Programme\Google\Update\GoogleUpdate.exe
16:16:25.0281 5448 gupdate1c9b87d9d58bdd2 - ok
16:16:25.0296 5448 [ 626A24ED1228580B9518C01930936DF9 ] gupdatem C:\Programme\Google\Update\GoogleUpdate.exe
16:16:25.0312 5448 gupdatem - ok
16:16:25.0359 5448 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Programme\Google\Common\Google Updater\GoogleUpdaterService.exe
16:16:25.0375 5448 gusvc - ok
16:16:25.0421 5448 [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
16:16:25.0500 5448 HDAudBus - ok
16:16:25.0578 5448 [ CB66BF85BF599BEFD6C6A57C2E20357F ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
16:16:25.0671 5448 helpsvc - ok
16:16:25.0703 5448 [ B35DA85E60C0103F2E4104532DA2F12B ] HidServ C:\WINDOWS\System32\hidserv.dll
16:16:25.0781 5448 HidServ - ok
16:16:25.0796 5448 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] hidusb C:\WINDOWS\system32\DRIVERS\hidusb.sys
16:16:25.0875 5448 hidusb - ok
16:16:25.0921 5448 [ ED29F14101523A6E0E808107405D452C ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
16:16:26.0015 5448 hkmsvc - ok
16:16:26.0062 5448 [ 299683D4C8AAA3F6F5D5D226A1782A6E ] HPFXBULK C:\WINDOWS\system32\drivers\hpfxbulk.sys
16:16:26.0078 5448 HPFXBULK - ok
16:16:26.0078 5448 [ F728DB73A87231E27B6BA34D71CE2EDB ] HPFXFAX C:\WINDOWS\system32\drivers\hpfxfax.sys
16:16:26.0093 5448 HPFXFAX - ok
16:16:26.0171 5448 [ 8E6EE43CB60DD1198FDA213C33B24D9D ] HPLinkUpZeroC C:\Programme\Hewlett-Packard\HP LinkUp Sender\LinkUpZeroC.exe
16:16:26.0203 5448 HPLinkUpZeroC - ok
16:16:26.0218 5448 [ B028377DEA0546A5FCFBA928A8AEFAE0 ] hpn C:\WINDOWS\system32\DRIVERS\hpn.sys
16:16:26.0296 5448 hpn - ok
16:16:26.0390 5448 [ A0FA5AC8B360780524D7A68376BAF4E0 ] hpqcxs08 C:\Programme\HP\Digital Imaging\bin\hpqcxs08.dll
16:16:26.0390 5448 hpqcxs08 ( UnsignedFile.Multi.Generic ) - warning
16:16:26.0390 5448 hpqcxs08 - detected UnsignedFile.Multi.Generic (1)
16:16:26.0437 5448 [ 99ED733F614660EB32199BF889DFB7E2 ] hpqddsvc c:\Programme\HP\Digital Imaging\bin\hpqddsvc.dll
16:16:26.0437 5448 hpqddsvc ( UnsignedFile.Multi.Generic ) - warning
16:16:26.0437 5448 hpqddsvc - detected UnsignedFile.Multi.Generic (1)
16:16:26.0437 5448 hprg - ok
16:16:26.0437 5448 HTCAND32 - ok
16:16:26.0500 5448 [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
16:16:26.0515 5448 HTTP - ok
16:16:26.0562 5448 [ 9E4ADB854CEBCFB81A4B36718FEECD16 ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
16:16:26.0640 5448 HTTPFilter - ok
16:16:26.0687 5448 [ 8ADF5EF39E896A65BEDED878494EE2B6 ] hwdatacard C:\WINDOWS\system32\DRIVERS\ewusbmdm.sys
16:16:26.0718 5448 hwdatacard - ok
16:16:26.0734 5448 [ 83026E41D9960430491432DBD6AF969A ] hwusbfake C:\WINDOWS\system32\DRIVERS\ewusbfake.sys
16:16:26.0765 5448 hwusbfake - ok
16:16:26.0781 5448 [ 9368670BD426EBEA5E8B18A62416EC28 ] i2omgmt C:\WINDOWS\system32\drivers\i2omgmt.sys
16:16:26.0859 5448 i2omgmt - ok
16:16:26.0906 5448 [ F10863BF1CCC290BABD1A09188AE49E0 ] i2omp C:\WINDOWS\system32\DRIVERS\i2omp.sys
16:16:26.0984 5448 i2omp - ok
16:16:27.0015 5448 [ E283B97CFBEB86C1D86BAED5F7846A92 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
16:16:27.0093 5448 i8042prt - ok
16:16:27.0140 5448 [ 2358C53F30CB9DCD1D3843C4E2F299B2 ] iaStor C:\WINDOWS\system32\drivers\iaStor.sys
16:16:27.0156 5448 iaStor - ok
16:16:27.0234 5448 [ 6F95324909B502E2651442C1548AB12F ] IDriverT C:\Programme\Gemeinsame Dateien\InstallShield\Driver\1050\Intel 32\IDriverT.exe
16:16:27.0234 5448 IDriverT ( UnsignedFile.Multi.Generic ) - warning
16:16:27.0234 5448 IDriverT - detected UnsignedFile.Multi.Generic (1)
16:16:27.0328 5448 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
16:16:27.0390 5448 idsvc - ok
16:16:27.0421 5448 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
16:16:27.0515 5448 Imapi - ok
16:16:27.0562 5448 [ D4B413AA210C21E46AEDD2BA5B68D38E ] ImapiService C:\WINDOWS\system32\imapi.exe
16:16:27.0671 5448 ImapiService - ok
16:16:27.0703 5448 [ 4A40E045FAEE58631FD8D91AFC620719 ] ini910u C:\WINDOWS\system32\DRIVERS\ini910u.sys
16:16:27.0796 5448 ini910u - ok
16:16:27.0953 5448 [ 613A2B00DA1D4A80DE1EC8CFB52C0D89 ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RtkHDAud.sys
16:16:28.0156 5448 IntcAzAudAddService - ok
16:16:28.0187 5448 [ 69C4E3C9E67A1F103B94E14FDD5F3213 ] IntelIde C:\WINDOWS\system32\DRIVERS\intelide.sys
16:16:28.0296 5448 IntelIde - ok
16:16:28.0312 5448 [ 4C7D2750158ED6E7AD642D97BFFAE351 ] intelppm C:\WINDOWS\system32\DRIVERS\intelppm.sys
16:16:28.0390 5448 intelppm - ok
16:16:28.0437 5448 [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
16:16:28.0531 5448 Ip6Fw - ok
16:16:28.0546 5448 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
16:16:28.0640 5448 IpFilterDriver - ok
16:16:28.0656 5448 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
16:16:28.0734 5448 IpInIp - ok
16:16:28.0765 5448 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
16:16:28.0859 5448 IpNat - ok
16:16:28.0921 5448 [ E8A39D41474BE42FD8830CED32932D6C ] iPod Service C:\Programme\iPod\bin\iPodService.exe
16:16:28.0953 5448 iPod Service - ok
16:16:29.0015 5448 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
16:16:29.0109 5448 IPSec - ok
16:16:29.0125 5448 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
16:16:29.0187 5448 IRENUM - ok
16:16:29.0234 5448 [ 6DFB88F64135C525433E87648BDA30DE ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
16:16:29.0312 5448 isapnp - ok
16:16:29.0421 5448 [ 691B9B7C0CC1653732717D292D6B305D ] JavaQuickStarterService C:\Programme\Java\jre6\bin\jqs.exe
16:16:29.0437 5448 JavaQuickStarterService - ok
16:16:29.0468 5448 [ 1704D8C4C8807B889E43C649B478A452 ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
16:16:29.0546 5448 Kbdclass - ok
16:16:29.0562 5448 [ B6D6C117D771C98130497265F26D1882 ] kbdhid C:\WINDOWS\system32\DRIVERS\kbdhid.sys
16:16:29.0640 5448 kbdhid - ok
16:16:29.0671 5448 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
16:16:29.0765 5448 kmixer - ok
16:16:29.0812 5448 [ B467646C54CC746128904E1654C750C1 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
16:16:29.0921 5448 KSecDD - ok
16:16:29.0937 5448 [ 2BBDCB79900990F0716DFCB714E72DE7 ] LanmanServer C:\WINDOWS\System32\srvsvc.dll
16:16:30.0031 5448 LanmanServer - ok
16:16:30.0078 5448 [ 1869B14B06B44B44AF70548E1EA3303F ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
16:16:30.0140 5448 lanmanworkstation - ok
16:16:30.0140 5448 lbrtfdc - ok
16:16:30.0171 5448 [ 636714B7D43C8D0C80449123FD266920 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
16:16:30.0265 5448 LmHosts - ok
16:16:30.0375 5448 [ 8665FA986641C854B1A05AD09CEF7372 ] MAGIX StartUp Analyze Service C:\Programme\MAGIX\PC_Check_Tuning_Free_2011\MXSAS.exe
16:16:30.0375 5448 MAGIX StartUp Analyze Service ( UnsignedFile.Multi.Generic ) - warning
16:16:30.0375 5448 MAGIX StartUp Analyze Service - detected UnsignedFile.Multi.Generic (1)
16:16:30.0468 5448 [ 11F714F85530A2BD134074DC30E99FCA ] MDM C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7Debug\mdm.exe
16:16:30.0484 5448 MDM - ok
16:16:30.0531 5448 [ B7550A7107281D170CE85524B1488C98 ] Messenger C:\WINDOWS\System32\msgsvc.dll
16:16:30.0625 5448 Messenger - ok
16:16:30.0656 5448 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
16:16:30.0734 5448 mnmdd - ok
16:16:30.0765 5448 [ C2F1D365FD96791B037EE504868065D3 ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
16:16:30.0859 5448 mnmsrvc - ok
16:16:30.0875 5448 [ 6FB74EBD4EC57A6F1781DE3852CC3362 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
16:16:30.0968 5448 Modem - ok
16:16:31.0000 5448 [ B24CE8005DEAB254C0251E15CB71D802 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
16:16:31.0093 5448 Mouclass - ok
16:16:31.0125 5448 [ 66A6F73C74E1791464160A7065CE711A ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys
16:16:31.0234 5448 mouhid - ok
16:16:31.0234 5448 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
16:16:31.0328 5448 MountMgr - ok
16:16:31.0359 5448 [ 8C7336950F1E69CDFD811CBBD9CF00A2 ] MozillaMaintenance C:\Programme\Mozilla Maintenance Service\maintenanceservice.exe
16:16:31.0375 5448 MozillaMaintenance - ok
16:16:31.0406 5448 [ C0F8E0C2C3C0437CF37C6781896DC3EC ] MPE C:\WINDOWS\system32\DRIVERS\MPE.sys
16:16:31.0500 5448 MPE - ok
16:16:31.0531 5448 [ 3F4BB95E5A44F3BE34824E8E7CAF0737 ] mraid35x C:\WINDOWS\system32\DRIVERS\mraid35x.sys
16:16:31.0609 5448 mraid35x - ok
16:16:31.0640 5448 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
16:16:31.0750 5448 MRxDAV - ok
16:16:31.0796 5448 [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
16:16:31.0890 5448 MRxSmb - ok
16:16:31.0937 5448 [ 35A031AF38C55F92D28AA03EE9F12CC9 ] MSDTC C:\WINDOWS\system32\msdtc.exe
16:16:32.0046 5448 MSDTC - ok
16:16:32.0078 5448 [ 1477849772712BAC69C144DCF2C9CE81 ] MSDV C:\WINDOWS\system32\DRIVERS\msdv.sys
16:16:32.0187 5448 MSDV - ok
16:16:32.0203 5448 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
16:16:32.0281 5448 Msfs - ok
16:16:32.0281 5448 MSIServer - ok
16:16:32.0296 5448 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
16:16:32.0406 5448 MSKSSRV - ok
16:16:32.0437 5448 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
16:16:32.0515 5448 MSPCLOCK - ok
16:16:32.0531 5448 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
16:16:32.0625 5448 MSPQM - ok
16:16:32.0640 5448 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
16:16:32.0734 5448 mssmbios - ok
16:16:32.0765 5448 [ E53736A9E30C45FA9E7B5EAC55056D1D ] MSTEE C:\WINDOWS\system32\drivers\MSTEE.sys
16:16:32.0859 5448 MSTEE - ok
16:16:32.0890 5448 [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
16:16:32.0953 5448 Mup - ok
16:16:33.0000 5448 [ 5B50F1B2A2ED47D560577B221DA734DB ] NABTSFEC C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
16:16:33.0093 5448 NABTSFEC - ok
16:16:33.0125 5448 [ 46BB15AE2AC7D025D6D2567B876817BD ] napagent C:\WINDOWS\System32\qagentrt.dll
16:16:33.0218 5448 napagent - ok
16:16:33.0250 5448 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
16:16:33.0343 5448 NDIS - ok
16:16:33.0359 5448 [ 7FF1F1FD8609C149AA432F95A8163D97 ] NdisIP C:\WINDOWS\system32\DRIVERS\NdisIP.sys
16:16:33.0453 5448 NdisIP - ok
16:16:33.0500 5448 [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
16:16:33.0546 5448 NdisTapi - ok
16:16:33.0578 5448 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
16:16:33.0687 5448 Ndisuio - ok
16:16:33.0687 5448 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
16:16:33.0781 5448 NdisWan - ok
16:16:33.0812 5448 [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
16:16:33.0859 5448 NDProxy - ok
16:16:33.0906 5448 [ A081CB6FB9A12668F233EB5414BE3A0E ] Net Driver HPZ12 C:\WINDOWS\system32\HPZinw12.dll
16:16:33.0906 5448 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
16:16:33.0906 5448 Net Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
16:16:33.0937 5448 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
16:16:34.0031 5448 NetBIOS - ok
16:16:34.0078 5448 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
16:16:34.0187 5448 NetBT - ok
16:16:34.0218 5448 [ 8ACE4251BFFD09CE75679FE940E996CC ] NetDDE C:\WINDOWS\system32\netdde.exe
16:16:34.0312 5448 NetDDE - ok
16:16:34.0328 5448 [ 8ACE4251BFFD09CE75679FE940E996CC ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
16:16:34.0406 5448 NetDDEdsdm - ok
16:16:34.0421 5448 NETFWDSL - ok
16:16:34.0453 5448 [ AFB8261B56CBA0D86AEB6DF682AF9785 ] Netlogon C:\WINDOWS\system32\lsass.exe
16:16:34.0546 5448 Netlogon - ok
16:16:34.0578 5448 [ E6D88F1F6745BF00B57E7855A2AB696C ] Netman C:\WINDOWS\System32\netman.dll
16:16:34.0671 5448 Netman - ok
16:16:34.0734 5448 [ D34612C5D02D026535B3095D620626AE ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
16:16:34.0750 5448 NetTcpPortSharing - ok
16:16:34.0765 5448 [ E9E47CFB2D461FA0FC75B7A74C6383EA ] NIC1394 C:\WINDOWS\system32\DRIVERS\nic1394.sys
16:16:34.0859 5448 NIC1394 - ok
16:16:34.0875 5448 [ F1B67B6B0751AE0E6E964B02821206A3 ] Nla C:\WINDOWS\System32\mswsock.dll
16:16:34.0890 5448 Nla - ok
16:16:34.0937 5448 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
16:16:35.0046 5448 Npfs - ok
16:16:35.0093 5448 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
16:16:35.0218 5448 Ntfs - ok
16:16:35.0234 5448 [ AFB8261B56CBA0D86AEB6DF682AF9785 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
16:16:35.0312 5448 NtLmSsp - ok
16:16:35.0359 5448 [ 56AF4064996FA5BAC9C449B1514B4770 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
16:16:35.0484 5448 NtmsSvc - ok
16:16:35.0500 5448 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
16:16:35.0578 5448 Null - ok
16:16:35.0750 5448 [ C116D2B008A1640C4484A1DCD1ABE12C ] nv C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
16:16:36.0093 5448 nv - ok
16:16:36.0140 5448 [ BC6F6D569A0848BA9D38158AE4734A9C ] NVSvc C:\WINDOWS\system32\nvsvc32.exe
16:16:36.0187 5448 NVSvc - ok
16:16:36.0218 5448 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
16:16:36.0328 5448 NwlnkFlt - ok
16:16:36.0343 5448 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
16:16:36.0437 5448 NwlnkFwd - ok
16:16:36.0484 5448 [ D51942F12090FC947CA8AA01736DADE2 ] O2MDRDR C:\WINDOWS\system32\DRIVERS\o2media.sys
16:16:36.0500 5448 O2MDRDR - ok
16:16:36.0500 5448 [ 602266E7D014D66ED1FC3F062CBCBCB6 ] O2SDRDR C:\WINDOWS\system32\DRIVERS\o2sd.sys
16:16:36.0515 5448 O2SDRDR - ok
16:16:36.0562 5448 [ CA33832DF41AFB202EE7AEB05145922F ] ohci1394 C:\WINDOWS\system32\DRIVERS\ohci1394.sys
16:16:36.0640 5448 ohci1394 - ok
16:16:36.0687 5448 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Programme\Gemeinsame Dateien\Microsoft Shared\Source Engine\OSE.EXE
16:16:36.0703 5448 ose - ok
16:16:36.0906 5448 [ 358A9CCA612C68EB2F07DDAD4CE1D8D7 ] osppsvc C:\Programme\Gemeinsame Dateien\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
16:16:37.0171 5448 osppsvc - ok
16:16:37.0218 5448 [ F84785660305B9B903FB3BCA8BA29837 ] Parport C:\WINDOWS\system32\drivers\Parport.sys
16:16:37.0328 5448 Parport - ok
16:16:37.0343 5448 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
16:16:37.0437 5448 PartMgr - ok
16:16:37.0453 5448 [ C2BF987829099A3EAA2CA6A0A90ECB4F ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
16:16:37.0546 5448 ParVdm - ok
16:16:37.0562 5448 pccsmcfd - ok
16:16:37.0609 5448 [ 387E8DEDC343AA2D1EFBC30580273ACD ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
16:16:37.0687 5448 PCI - ok
16:16:37.0703 5448 PCIDump - ok
16:16:37.0703 5448 [ 59BA86D9A61CBCF4DF8E598C331F5B82 ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
16:16:37.0796 5448 PCIIde - ok
16:16:37.0812 5448 [ A2A966B77D61847D61A3051DF87C8C97 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
16:16:37.0906 5448 Pcmcia - ok
16:16:37.0968 5448 [ 0AEA7303E97C02DAD9245EBDFBD4D253 ] PCToolsSSDMonitorSvc C:\Programme\Gemeinsame Dateien\PC Tools\sMonitor\StartManSvc.exe
16:16:38.0000 5448 PCToolsSSDMonitorSvc - ok
16:16:38.0000 5448 PDCOMP - ok
16:16:38.0015 5448 PDFRAME - ok
16:16:38.0015 5448 PDRELI - ok
16:16:38.0015 5448 PDRFRAME - ok
16:16:38.0093 5448 [ 6C14B9C19BA84F73D3A86DBA11133101 ] perc2 C:\WINDOWS\system32\DRIVERS\perc2.sys
16:16:38.0187 5448 perc2 - ok
16:16:38.0218 5448 [ F50F7C27F131AFE7BEBA13E14A3B9416 ] perc2hib C:\WINDOWS\system32\DRIVERS\perc2hib.sys
16:16:38.0296 5448 perc2hib - ok
16:16:38.0312 5448 [ A3EDBE9053889FB24AB22492472B39DC ] PlugPlay C:\WINDOWS\system32\services.exe
16:16:38.0343 5448 PlugPlay - ok
16:16:38.0453 5448 [ 627FA58ADC043704F9D14CA44340956F ] PMBDeviceInfoProvider C:\Programme\Sony\PMB\PMBDeviceInfoProvider.exe
16:16:38.0515 5448 PMBDeviceInfoProvider - ok
16:16:38.0562 5448 [ 65BC271F337637731D3C71455AE1F476 ] Pml Driver HPZ12 C:\WINDOWS\system32\HPZipm12.dll
16:16:38.0593 5448 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
16:16:38.0593 5448 Pml Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
16:16:38.0593 5448 [ AFB8261B56CBA0D86AEB6DF682AF9785 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
16:16:38.0671 5448 PolicyAgent - ok
16:16:38.0703 5448 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
16:16:38.0812 5448 PptpMiniport - ok
16:16:38.0828 5448 [ AFB8261B56CBA0D86AEB6DF682AF9785 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
16:16:38.0906 5448 ProtectedStorage - ok
16:16:38.0921 5448 [ 09298EC810B07E5D582CB3A3F9255424 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
16:16:39.0000 5448 PSched - ok
16:16:39.0046 5448 [ E0D0CB09AA07B22BE984E4F7EC0326F5 ] PSI_SVC_2 C:\Programme\Gemeinsame Dateien\Protexis\License Service\PsiService_2.exe
16:16:39.0062 5448 PSI_SVC_2 - ok
16:16:39.0062 5448 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
16:16:39.0171 5448 Ptilink - ok
16:16:39.0203 5448 [ 153D02480A0A2F45785522E814C634B6 ] PxHelp20 C:\WINDOWS\system32\Drivers\PxHelp20.sys
16:16:39.0218 5448 PxHelp20 - ok
16:16:39.0250 5448 [ 0A63FB54039EB5662433CABA3B26DBA7 ] ql1080 C:\WINDOWS\system32\DRIVERS\ql1080.sys
16:16:39.0375 5448 ql1080 - ok
16:16:39.0406 5448 [ 6503449E1D43A0FF0201AD5CB1B8C706 ] Ql10wnt C:\WINDOWS\system32\DRIVERS\ql10wnt.sys
16:16:39.0500 5448 Ql10wnt - ok
16:16:39.0500 5448 [ 156ED0EF20C15114CA097A34A30D8A01 ] ql12160 C:\WINDOWS\system32\DRIVERS\ql12160.sys
16:16:39.0578 5448 ql12160 - ok
16:16:39.0593 5448 [ 70F016BEBDE6D29E864C1230A07CC5E6 ] ql1240 C:\WINDOWS\system32\DRIVERS\ql1240.sys
16:16:39.0687 5448 ql1240 - ok
16:16:39.0718 5448 [ 907F0AEEA6BC451011611E732BD31FCF ] ql1280 C:\WINDOWS\system32\DRIVERS\ql1280.sys
16:16:39.0812 5448 ql1280 - ok
16:16:39.0843 5448 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
16:16:39.0921 5448 RasAcd - ok
16:16:39.0937 5448 [ F5BA6CACCDB66C8F048E867563203246 ] RasAuto C:\WINDOWS\System32\rasauto.dll
16:16:40.0031 5448 RasAuto - ok
16:16:40.0046 5448 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
16:16:40.0140 5448 Rasl2tp - ok
16:16:40.0187 5448 [ F9A7B66EA345726EDB5862A46B1ECCD5 ] RasMan C:\WINDOWS\System32\rasmans.dll
16:16:40.0281 5448 RasMan - ok
16:16:40.0296 5448 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
16:16:40.0390 5448 RasPppoe - ok
16:16:40.0406 5448 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
16:16:40.0500 5448 Raspti - ok
16:16:40.0531 5448 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
16:16:40.0625 5448 Rdbss - ok
16:16:40.0640 5448 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
16:16:40.0734 5448 RDPCDD - ok
16:16:40.0750 5448 [ 15CABD0F7C00C47C70124907916AF3F1 ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys
16:16:40.0843 5448 rdpdr - ok
16:16:40.0890 5448 [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
16:16:40.0937 5448 RDPWD - ok
16:16:40.0984 5448 [ 263AF18AF0F3DB99F574C95F284CCEC9 ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
16:16:41.0062 5448 RDSessMgr - ok
16:16:41.0093 5448 [ ED761D453856F795A7FE056E42C36365 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
16:16:41.0203 5448 redbook - ok
16:16:41.0234 5448 [ 0E97EC96D6942CEEC2D188CC2EB69A01 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
16:16:41.0343 5448 RemoteAccess - ok
16:16:41.0359 5448 [ E4CD1F3D84E1C2CA0B8CF7501E201593 ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
16:16:41.0468 5448 RemoteRegistry - ok
16:16:41.0500 5448 [ D8B0B4ADE32574B2D9C5CC34DC0DBBE7 ] ROOTMODEM C:\WINDOWS\system32\Drivers\RootMdm.sys
16:16:41.0578 5448 ROOTMODEM - ok
16:16:41.0625 5448 [ 2A02E21867497DF20B8FC95631395169 ] RpcLocator C:\WINDOWS\system32\locator.exe
16:16:41.0734 5448 RpcLocator - ok
16:16:41.0750 5448 [ 3127AFBF2C1ED0AB14A1BBB7AAECB85B ] RpcSs C:\WINDOWS\system32\rpcss.dll
16:16:41.0765 5448 RpcSs - ok
16:16:41.0812 5448 [ 4BDD71B4B521521499DFD14735C4F398 ] RSVP C:\WINDOWS\system32\rsvp.exe
16:16:41.0906 5448 RSVP - ok
16:16:41.0953 5448 [ 89619EF503F949FAE09252A8B883EE11 ] RTLE8023xp C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys
16:16:42.0000 5448 RTLE8023xp - ok
16:16:42.0031 5448 [ 1C5C2CB892553D2CF3F45A4BB323FCD6 ] s1018bus C:\WINDOWS\system32\DRIVERS\s1018bus.sys
16:16:42.0062 5448 s1018bus - ok
16:16:42.0078 5448 [ 38F5EA219593F19B6B3A1B9C169E3B61 ] s1018mdfl C:\WINDOWS\system32\DRIVERS\s1018mdfl.sys
16:16:42.0093 5448 s1018mdfl - ok
16:16:42.0109 5448 [ 666AF6B64FC7DF92D3CA4819EA91631D ] s1018mdm C:\WINDOWS\system32\DRIVERS\s1018mdm.sys
16:16:42.0125 5448 s1018mdm - ok
16:16:42.0140 5448 [ F4CEDA6E2DDFF2AF8BD745615A7CA9C0 ] s1018mgmt C:\WINDOWS\system32\DRIVERS\s1018mgmt.sys
16:16:42.0171 5448 s1018mgmt ( UnsignedFile.Multi.Generic ) - warning
16:16:42.0171 5448 s1018mgmt - detected UnsignedFile.Multi.Generic (1)
16:16:42.0171 5448 [ 3622D9FF2253DCBE885B10736609A4CA ] s1018nd5 C:\WINDOWS\system32\DRIVERS\s1018nd5.sys
16:16:42.0187 5448 s1018nd5 - ok
16:16:42.0187 5448 [ 49431EFDA842B474531C29FFAE9F5D09 ] s1018obex C:\WINDOWS\system32\DRIVERS\s1018obex.sys
16:16:42.0218 5448 s1018obex - ok
16:16:42.0218 5448 [ AC6B514CB4474F4C867D7CDC9CD54F05 ] s1018unic C:\WINDOWS\system32\DRIVERS\s1018unic.sys
16:16:42.0234 5448 s1018unic - ok
16:16:42.0250 5448 [ AFB8261B56CBA0D86AEB6DF682AF9785 ] SamSs C:\WINDOWS\system32\lsass.exe
16:16:42.0343 5448 SamSs - ok
16:16:42.0375 5448 [ DCEC079FAD95D36C8DD5CB6D779DFE32 ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
16:16:42.0484 5448 SCardSvr - ok
16:16:42.0500 5448 [ A050194A44D7FA8D7186ED2F4E8367AE ] Schedule C:\WINDOWS\system32\schedsvc.dll
16:16:42.0593 5448 Schedule - ok
16:16:42.0609 5448 [ 8D04819A3CE51B9EB47E5689B44D43C4 ] sdbus C:\WINDOWS\system32\DRIVERS\sdbus.sys
16:16:42.0687 5448 sdbus - ok
16:16:42.0796 5448 [ 0F4A80438E7286A0E623582F5F2395BD ] SearchAnonymizer C:\Dokumente und Einstellungen\Rene Thaler\Anwendungsdaten\OCS\SM\SearchAnonymizerHelper.exe
16:16:42.0812 5448 SearchAnonymizer ( UnsignedFile.Multi.Generic ) - warning
16:16:42.0812 5448 SearchAnonymizer - detected UnsignedFile.Multi.Generic (1)
16:16:42.0843 5448 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
16:16:42.0890 5448 Secdrv - ok
16:16:42.0921 5448 [ BEE4CFD1D48C23B44CF4B974B0B79B2B ] seclogon C:\WINDOWS\System32\seclogon.dll
16:16:43.0000 5448 seclogon - ok
16:16:43.0031 5448 [ E5B56569A9F79B70314FEDE6C953641E ] seehcri C:\WINDOWS\system32\DRIVERS\seehcri.sys
16:16:43.0093 5448 seehcri - ok
16:16:43.0125 5448 [ 2AAC9B6ED9EDDFFB721D6452E34D67E3 ] SENS C:\WINDOWS\system32\sens.dll
16:16:43.0218 5448 SENS - ok
16:16:43.0250 5448 [ CF24EB4F0412C82BCD1F4F35A025E31D ] Serial C:\WINDOWS\system32\drivers\Serial.sys
16:16:43.0328 5448 Serial - ok
16:16:43.0359 5448 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
16:16:43.0453 5448 Sfloppy - ok
16:16:43.0484 5448 [ CAD058D5F8B889A87CA3EB3CF624DCEF ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
16:16:43.0593 5448 SharedAccess - ok
16:16:43.0609 5448 [ 2DB7D303C36DDD055215052F118E8E75 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
16:16:43.0625 5448 ShellHWDetection - ok
16:16:43.0640 5448 Simbad - ok
16:16:43.0656 5448 [ 6B33D0EBD30DB32E27D1D78FE946A754 ] sisagp C:\WINDOWS\system32\DRIVERS\sisagp.sys
16:16:43.0750 5448 sisagp - ok
16:16:43.0843 5448 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Programme\Skype\Updater\Updater.exe
16:16:43.0859 5448 SkypeUpdate - ok
16:16:43.0875 5448 [ 866D538EBE33709A5C9F5C62B73B7D14 ] SLIP C:\WINDOWS\system32\DRIVERS\SLIP.sys
16:16:43.0968 5448 SLIP - ok
16:16:44.0000 5448 [ 83C0F71F86D3BDAF915685F3D568B20E ] Sparrow C:\WINDOWS\system32\DRIVERS\sparrow.sys
16:16:44.0078 5448 Sparrow - ok
16:16:44.0109 5448 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
16:16:44.0203 5448 splitter - ok
16:16:44.0234 5448 [ 60784F891563FB1B767F70117FC2428F ] Spooler C:\WINDOWS\system32\spoolsv.exe
16:16:44.0281 5448 Spooler - ok
16:16:44.0312 5448 [ 50FA898F8C032796D3B1B9951BB5A90F ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
16:16:44.0375 5448 sr - ok
16:16:44.0406 5448 [ FE77A85495065F3AD59C5C65B6C54182 ] srservice C:\WINDOWS\system32\srsvc.dll
16:16:44.0453 5448 srservice - ok
16:16:44.0515 5448 [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
16:16:44.0546 5448 Srv - ok
16:16:44.0593 5448 [ 4DF5B05DFAEC29E13E1ED6F6EE12C500 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
16:16:44.0656 5448 SSDPSRV - ok
16:16:44.0687 5448 [ A36EE93698802CD899F98BFD553D8185 ] ssmdrv C:\WINDOWS\system32\DRIVERS\ssmdrv.sys
16:16:44.0703 5448 ssmdrv - ok
16:16:44.0734 5448 [ 306521935042FC0A6988D528643619B3 ] StarOpen C:\WINDOWS\system32\drivers\StarOpen.sys
16:16:44.0750 5448 StarOpen ( UnsignedFile.Multi.Generic ) - warning
16:16:44.0750 5448 StarOpen - detected UnsignedFile.Multi.Generic (1)
16:16:44.0796 5448 [ BC2C5985611C5356B24AEB370953DED9 ] stisvc C:\WINDOWS\system32\wiaservc.dll
16:16:44.0921 5448 stisvc - ok
16:16:44.0984 5448 [ DE3E7A2345EBAA3CE8E6957DFB55FB15 ] stllssvr C:\Programme\Gemeinsame Dateien\SureThing Shared\stllssvr.exe
16:16:45.0000 5448 stllssvr ( UnsignedFile.Multi.Generic ) - warning
16:16:45.0000 5448 stllssvr - detected UnsignedFile.Multi.Generic (1)
16:16:45.0031 5448 [ 77813007BA6265C4B6098187E6ED79D2 ] streamip C:\WINDOWS\system32\DRIVERS\StreamIP.sys
16:16:45.0125 5448 streamip - ok
16:16:45.0140 5448 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
16:16:45.0234 5448 swenum - ok
16:16:45.0265 5448 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
16:16:45.0359 5448 swmidi - ok
16:16:45.0359 5448 SwPrv - ok
16:16:45.0390 5448 [ 1FF3217614018630D0A6758630FC698C ] symc810 C:\WINDOWS\system32\DRIVERS\symc810.sys
16:16:45.0468 5448 symc810 - ok
16:16:45.0500 5448 [ 070E001D95CF725186EF8B20335F933C ] symc8xx C:\WINDOWS\system32\DRIVERS\symc8xx.sys
16:16:45.0593 5448 symc8xx - ok
16:16:45.0593 5448 [ 80AC1C4ABBE2DF3B738BF15517A51F2C ] sym_hi C:\WINDOWS\system32\DRIVERS\sym_hi.sys
16:16:45.0687 5448 sym_hi - ok
16:16:45.0703 5448 [ BF4FAB949A382A8E105F46EBB4937058 ] sym_u3 C:\WINDOWS\system32\DRIVERS\sym_u3.sys
16:16:45.0781 5448 sym_u3 - ok
16:16:45.0796 5448 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
16:16:45.0890 5448 sysaudio - ok
16:16:45.0937 5448 [ 2903FFFA2523926D6219428040DCE6B9 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
16:16:46.0015 5448 SysmonLog - ok
16:16:46.0046 5448 [ 05903CAC4B98908D55EA5774775B382E ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
16:16:46.0156 5448 TapiSrv - ok
16:16:46.0203 5448 [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
16:16:46.0234 5448 Tcpip - ok
16:16:46.0265 5448 [ DCFEB82CA988598CEB8F83148616038E ] tcpipBM C:\WINDOWS\system32\drivers\tcpipBM.sys
16:16:46.0281 5448 tcpipBM ( UnsignedFile.Multi.Generic ) - warning
16:16:46.0281 5448 tcpipBM - detected UnsignedFile.Multi.Generic (1)
16:16:46.0296 5448 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
16:16:46.0375 5448 TDPIPE - ok
16:16:46.0390 5448 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
16:16:46.0500 5448 TDTCP - ok
16:16:46.0656 5448 [ 851C5080261DFC1FCDC21DF0E5EA3BCB ] TeamViewer8 C:\Programme\TeamViewer\Version8\TeamViewer_Service.exe
16:16:46.0765 5448 TeamViewer8 - ok
16:16:46.0781 5448 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
16:16:46.0875 5448 TermDD - ok
16:16:46.0921 5448 [ B7DE02C863D8F5A005A7BF375375A6A4 ] TermService C:\WINDOWS\System32\termsrv.dll
16:16:47.0031 5448 TermService - ok
16:16:47.0062 5448 [ 2DB7D303C36DDD055215052F118E8E75 ] Themes C:\WINDOWS\System32\shsvcs.dll
16:16:47.0093 5448 Themes - ok
16:16:47.0125 5448 [ 03681A1CE77F51586903869A5AB1DEAB ] TlntSvr C:\WINDOWS\system32\tlntsvr.exe
16:16:47.0171 5448 TlntSvr - ok
16:16:47.0250 5448 [ E319535A8124F25C1C9C5288CACF3101 ] TomTomHOMEService C:\Programme\TomTom HOME 2\TomTomHOMEService.exe
16:16:47.0265 5448 TomTomHOMEService - ok
16:16:47.0281 5448 [ D213A9247DC347F305A2D4CC9B951487 ] TosIde C:\WINDOWS\system32\DRIVERS\toside.sys
16:16:47.0359 5448 TosIde - ok
16:16:47.0390 5448 tosporte - ok
16:16:47.0390 5448 tosrfbd - ok
16:16:47.0390 5448 tosrfbnp - ok
16:16:47.0390 5448 Tosrfcom - ok
16:16:47.0390 5448 Tosrfhid - ok
16:16:47.0390 5448 tosrfnds - ok
16:16:47.0406 5448 TosRfSnd - ok
16:16:47.0406 5448 Tosrfusb - ok
16:16:47.0453 5448 [ 626504572B175867F30F3215C04B3E2F ] TrkWks C:\WINDOWS\system32\trkwks.dll
16:16:47.0546 5448 TrkWks - ok
16:16:47.0578 5448 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
16:16:47.0687 5448 Udfs - ok
16:16:47.0734 5448 [ AC426CD0AA0DB592A81C9A78A5F4B309 ] UDXTTM6010 C:\WINDOWS\system32\DRIVERS\UDXTTM6010.sys
16:16:47.0765 5448 UDXTTM6010 - ok
16:16:47.0875 5448 [ 332D341D92B933600D41953B08360DFB ] UleadBurningHelper C:\Programme\Gemeinsame Dateien\Ulead Systems\DVD\ULCDRSvr.exe
16:16:47.0890 5448 UleadBurningHelper ( UnsignedFile.Multi.Generic ) - warning
16:16:47.0890 5448 UleadBurningHelper - detected UnsignedFile.Multi.Generic (1)
16:16:47.0906 5448 [ 1B698A51CD528D8DA4FFAED66DFC51B9 ] ultra C:\WINDOWS\system32\DRIVERS\ultra.sys
16:16:47.0984 5448 ultra - ok
16:16:48.0031 5448 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
16:16:48.0125 5448 Update - ok
16:16:48.0156 5448 [ 1DFD8975D8C89214B98D9387C1125B49 ] upnphost C:\WINDOWS\System32\upnphost.dll
16:16:48.0218 5448 upnphost - ok
16:16:48.0250 5448 [ 9B11E6118958E63E1FEF129466E2BDA7 ] UPS C:\WINDOWS\System32\ups.exe
16:16:48.0328 5448 UPS - ok
16:16:48.0375 5448 [ E919708DB44ED8543A7C017953148330 ] usbaudio C:\WINDOWS\system32\drivers\usbaudio.sys
16:16:48.0468 5448 usbaudio - ok
16:16:48.0500 5448 [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
16:16:48.0593 5448 usbccgp - ok
16:16:48.0609 5448 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
16:16:48.0687 5448 usbehci - ok
16:16:48.0734 5448 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
16:16:48.0828 5448 usbhub - ok
16:16:48.0859 5448 [ A717C8721046828520C9EDF31288FC00 ] usbprint C:\WINDOWS\system32\DRIVERS\usbprint.sys
16:16:48.0937 5448 usbprint - ok
16:16:48.0984 5448 [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
16:16:49.0078 5448 usbscan - ok
16:16:49.0109 5448 [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
16:16:49.0203 5448 USBSTOR - ok
16:16:49.0250 5448 [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
16:16:49.0328 5448 usbuhci - ok
16:16:49.0359 5448 [ 63BBFCA7F390F4C49ED4B96BFB1633E0 ] usbvideo C:\WINDOWS\system32\Drivers\usbvideo.sys
16:16:49.0468 5448 usbvideo - ok
16:16:49.0484 5448 [ B6CC50279D6CD28E090A5D33244ADC9A ] usb_rndisx C:\WINDOWS\system32\DRIVERS\usb8023x.sys
16:16:49.0578 5448 usb_rndisx - ok
16:16:49.0609 5448 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
16:16:49.0687 5448 VgaSave - ok
16:16:49.0703 5448 [ 754292CE5848B3738281B4F3607EAEF4 ] viaagp C:\WINDOWS\system32\DRIVERS\viaagp.sys
16:16:49.0812 5448 viaagp - ok
16:16:49.0828 5448 [ 3B3EFCDA263B8AC14FDF9CBDD0791B2E ] ViaIde C:\WINDOWS\system32\DRIVERS\viaide.sys
16:16:49.0937 5448 ViaIde - ok
16:16:50.0015 5448 [ 1B0D441D8AB264D39C2B09130CC28045 ] VMCService C:\Programme\Vodafone\Vodafone Mobile Connect\Bin\VMCService.exe
16:16:50.0031 5448 VMCService ( UnsignedFile.Multi.Generic ) - warning
16:16:50.0031 5448 VMCService - detected UnsignedFile.Multi.Generic (1)
16:16:50.0046 5448 [ A5A712F4E880874A477AF790B5186E1D ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
16:16:50.0140 5448 VolSnap - ok
16:16:50.0187 5448 [ 68F106273BE29E7B7EF8266977268E78 ] VSS C:\WINDOWS\System32\vssvc.exe
16:16:50.0234 5448 VSS - ok
16:16:50.0265 5448 [ 7B353059E665F8B7AD2BBEAEF597CF45 ] w32time C:\WINDOWS\system32\w32time.dll
16:16:50.0375 5448 w32time - ok
16:16:50.0421 5448 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
16:16:50.0515 5448 Wanarp - ok
16:16:50.0546 5448 [ BBCFEAB7E871CDDAC2D397EE7FA91FDC ] Wdf01000 C:\WINDOWS\system32\DRIVERS\Wdf01000.sys
16:16:50.0578 5448 Wdf01000 - ok
16:16:50.0578 5448 WDICA - ok
16:16:50.0656 5448 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
16:16:50.0750 5448 wdmaud - ok
16:16:50.0781 5448 [ 81727C9873E3905A2FFC1EBD07265002 ] WebClient C:\WINDOWS\System32\webclnt.dll
16:16:50.0890 5448 WebClient - ok
16:16:50.0968 5448 [ 6F3F3973D97714CC5F906A19FE883729 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
16:16:51.0078 5448 winmgmt - ok
16:16:51.0078 5448 wltrysvc - ok
16:16:51.0109 5448 [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN C:\WINDOWS\system32\MsPMSNSv.dll
16:16:51.0187 5448 WmdmPmSN - ok
16:16:51.0234 5448 [ FFA4D901D46D07A5BAB2D8307FBB51A6 ] Wmi C:\WINDOWS\System32\advapi32.dll
16:16:51.0265 5448 Wmi - ok
16:16:51.0312 5448 [ C42584FD66CE9E17403AEBCA199F7BDB ] WmiAcpi C:\WINDOWS\system32\DRIVERS\wmiacpi.sys
16:16:51.0390 5448 WmiAcpi - ok
16:16:51.0421 5448 [ 93908111BA57A6E60EC2FA2DE202105C ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
16:16:51.0515 5448 WmiApSrv - ok
16:16:51.0625 5448 [ BF05650BB7DF5E9EBDD25974E22403BB ] WMPNetworkSvc C:\Programme\Windows Media Player\WMPNetwk.exe
16:16:51.0703 5448 WMPNetworkSvc - ok
16:16:51.0750 5448 [ CF4DEF1BF66F06964DC0D91844239104 ] WpdUsb C:\WINDOWS\system32\DRIVERS\wpdusb.sys
16:16:51.0765 5448 WpdUsb - ok
16:16:51.0781 5448 [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] WS2IFSL C:\WINDOWS\System32\drivers\ws2ifsl.sys
16:16:51.0875 5448 WS2IFSL - ok
16:16:51.0921 5448 [ 300B3E84FAF1A5C1F791C159BA28035D ] wscsvc C:\WINDOWS\system32\wscsvc.dll
16:16:52.0015 5448 wscsvc - ok
16:16:52.0046 5448 [ C98B39829C2BBD34E454150633C62C78 ] WSTCODEC C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
16:16:52.0125 5448 WSTCODEC - ok
16:16:52.0156 5448 [ 7B4FE05202AA6BF9F4DFD0E6A0D8A085 ] wuauserv C:\WINDOWS\system32\wuauserv.dll
16:16:52.0234 5448 wuauserv - ok
16:16:52.0265 5448 [ F15FEAFFFBB3644CCC80C5DA584E6311 ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
16:16:52.0312 5448 WudfPf - ok
16:16:52.0343 5448 [ 28B524262BCE6DE1F7EF9F510BA3985B ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
16:16:52.0375 5448 WudfRd - ok
16:16:52.0390 5448 [ 05231C04253C5BC30B26CBAAE680ED89 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
16:16:52.0437 5448 WudfSvc - ok
16:16:52.0484 5448 [ C4F109C005F6725162D2D12CA751E4A7 ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
16:16:52.0593 5448 WZCSVC - ok
16:16:52.0609 5448 [ 0ADA34871A2E1CD2CAAFED1237A47750 ] xmlprov C:\WINDOWS\System32\xmlprov.dll
16:16:52.0718 5448 xmlprov - ok
16:16:52.0750 5448 ================ Scan global ===============================
16:16:52.0781 5448 [ 2C60091CA5F67C3032EAB3B30390C27F ] C:\WINDOWS\system32\basesrv.dll
16:16:52.0828 5448 [ A28CE25B59C90E12743001A1F2AE3613 ] C:\WINDOWS\system32\winsrv.dll
16:16:52.0843 5448 [ A28CE25B59C90E12743001A1F2AE3613 ] C:\WINDOWS\system32\winsrv.dll
16:16:52.0859 5448 [ A3EDBE9053889FB24AB22492472B39DC ] C:\WINDOWS\system32\services.exe
16:16:52.0859 5448 [Global] - ok
16:16:52.0859 5448 ================ Scan MBR ==================================
16:16:52.0890 5448 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
16:16:53.0156 5448 \Device\Harddisk0\DR0 - ok
16:16:53.0171 5448 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR3
16:16:53.0984 5448 \Device\Harddisk1\DR3 - ok
16:16:53.0984 5448 ================ Scan VBR ==================================
16:16:54.0046 5448 [ 66B3772DD883CE924E5B9A52C9E54DF3 ] \Device\Harddisk0\DR0\Partition1
16:16:54.0046 5448 \Device\Harddisk0\DR0\Partition1 - ok
16:16:54.0046 5448 [ 95565AAE59EA867561AAB2798666209A ] \Device\Harddisk1\DR3\Partition1
16:16:54.0046 5448 \Device\Harddisk1\DR3\Partition1 - ok
16:16:54.0046 5448 ============================================================
16:16:54.0046 5448 Scan finished
16:16:54.0046 5448 ============================================================
16:16:54.0062 2412 Detected object count: 16
16:16:54.0062 2412 Actual detected object count: 16
|
|
05.01.2013, 16:23
| #25 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Erste suche Log ist leider unvollständig, die untere Zusammenfassung fehlt
__________________ Logfiles bitte immer in CODE-Tags posten |
|
05.01.2013, 19:32
| #26 |
| | Erste suche Zweiter Versuch Da es zu lange ist schick ich dir wieder einen Anhang. |
|
05.01.2013, 19:37
| #27 | |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Erste suche Dann bitte jetzt CF ausführen: ComboFix Ein Leitfaden und Tutorium zur Nutzung von ComboFix
Combofix darf ausschließlich ausgeführt werden, wenn ein Kompetenzler dies ausdrücklich empfohlen hat! Solltest du nach der Ausführung von Combofix Probleme beim Starten von Anwendungen haben und Meldungen erhalten wie Zitat:
__________________ Logfiles bitte immer in CODE-Tags posten |
|
06.01.2013, 15:41
| #28 |
| | Erste suche Hier das Ergebnis Code:
ATTFilter ComboFix 13-01-05.01 - Rene Thaler 06.01.2013 10:23:10.1.2 - x86
Microsoft Windows XP Professional 5.1.2600.3.1252.49.1031.18.3070.2531 [GMT 1:00]
ausgeführt von:: c:\dokumente und einstellungen\Rene Thaler\Desktop\ComboFix.exe
AV: AVG Anti-Virus Free Edition 2011 *Disabled/Outdated* {17DDD097-36FF-435F-9E1B-52D74245D6BF}
AV: Avira Desktop *Disabled/Updated* {AD166499-45F9-482A-A743-FDD3350758C7}
.
.
(((((((((((((((((((((((((((((((((((( Weitere Löschungen ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\dokumente und einstellungen\All Users\Anwendungsdaten\D242DBEE68.sys
c:\dokumente und einstellungen\All Users\Anwendungsdaten\DragToDiscUserNameD.txt
c:\dokumente und einstellungen\All Users\Anwendungsdaten\hpeE2.dll
c:\dokumente und einstellungen\All Users\Anwendungsdaten\PCDr\6032\AddOnDownloaded\016060e8-e1de-4d82-bd11-b667007b1f12.dll
c:\dokumente und einstellungen\All Users\Anwendungsdaten\PCDr\6032\AddOnDownloaded\08c66698-ac37-420c-8ea0-a63d0e691e3a.dll
c:\dokumente und einstellungen\All Users\Anwendungsdaten\PCDr\6032\AddOnDownloaded\1d151f53-1500-414d-85b4-ab85d24f0785.dll
c:\dokumente und einstellungen\All Users\Anwendungsdaten\PCDr\6032\AddOnDownloaded\4011a5cd-1208-467b-b149-4c0534295875.dll
c:\dokumente und einstellungen\All Users\Anwendungsdaten\PCDr\6032\AddOnDownloaded\62089595-46e8-4c4f-9d7b-48be969390bb.dll
c:\dokumente und einstellungen\All Users\Anwendungsdaten\PCDr\6032\AddOnDownloaded\788ad19e-7745-402f-a5a5-20d2ab8b5f1b.dll
c:\dokumente und einstellungen\All Users\Anwendungsdaten\PCDr\6032\AddOnDownloaded\918ee45c-eb0a-4e61-97ad-c1849c2623ee.dll
c:\dokumente und einstellungen\All Users\Anwendungsdaten\PCDr\6032\AddOnDownloaded\b0654984-096d-4244-a127-3364577b6279.dll
c:\dokumente und einstellungen\All Users\Anwendungsdaten\PCDr\6032\AddOnDownloaded\b72409f9-df97-4592-bbfd-fff1ce0a9559.dll
c:\dokumente und einstellungen\All Users\Anwendungsdaten\PCDr\6032\AddOnDownloaded\bbd4d2b0-9dc6-46d0-a352-dbcd92f63c4d.dll
c:\dokumente und einstellungen\All Users\Anwendungsdaten\TEMP
c:\dokumente und einstellungen\Rene Thaler\Anwendungsdaten\.#
c:\dokumente und einstellungen\Rene Thaler\Eigene Dateien\Downloads\PowerPointViewer.exe
c:\programme\DealPly
c:\programme\DealPly\DealPly.crx
c:\programme\DealPly\DealPly.xpi
c:\programme\DealPly\DealPlyIE.dll
c:\programme\DealPly\DealPlyUpdate.exe
c:\programme\DealPly\DealPlyUpdateRun.exe
c:\programme\DealPly\icon.ico
c:\programme\DealPly\uninst.exe
c:\windows\IsUn0407.exe
c:\windows\system32\Cache
c:\windows\system32\Cache\272512937d9e61a4.fb
c:\windows\system32\Cache\287204568329e189.fb
c:\windows\system32\Cache\28bc8f716fd76a47.fb
c:\windows\system32\Cache\2c53092c95605355.fb
c:\windows\system32\Cache\310cd921041398ea.fb
c:\windows\system32\Cache\31a0997e9a5b5eb3.fb
c:\windows\system32\Cache\32c84fe32bb74d60.fb
c:\windows\system32\Cache\3917078cb68ec657.fb
c:\windows\system32\Cache\487c178f93738929.fb
c:\windows\system32\Cache\590ba23ce359fd0c.fb
c:\windows\system32\Cache\610289e025a3ee9a.fb
c:\windows\system32\Cache\651c5d3cdbfb8bd1.fb
c:\windows\system32\Cache\66f7bf6b9b8b3fdc.fb
c:\windows\system32\Cache\6c59ac5e7e7a3ad0.fb
c:\windows\system32\Cache\6d03dad1035885d3.fb
c:\windows\system32\Cache\7289de775fa3c69c.fb
c:\windows\system32\Cache\79e0e5f630a2ce89.fb
c:\windows\system32\Cache\80ab9a4101824ca9.fb
c:\windows\system32\Cache\a129f5df163fa98d.fb
c:\windows\system32\Cache\a8556537add6dfc5.fb
c:\windows\system32\Cache\ad10a52aff5e038d.fb
c:\windows\system32\Cache\c1fa887b03019701.fb
c:\windows\system32\Cache\c4d28dca2e7648be.fb
c:\windows\system32\Cache\d201ef9910cd39de.fb
c:\windows\system32\Cache\d2e94710a5708128.fb
c:\windows\system32\Cache\d79b9dfe81484ec4.fb
c:\windows\system32\Cache\e0de16f883bea794.fb
c:\windows\system32\Cache\f998975c9cc711ee.fb
c:\windows\system32\drivers\etc\hosts.ics
c:\windows\system32\SET146.tmp
c:\windows\system32\SET14F.tmp
c:\windows\system32\SETF0.tmp
c:\windows\system32\URTTemp
c:\windows\system32\URTTemp\fusion.dll
c:\windows\system32\URTTemp\mscoree.dll
c:\windows\system32\URTTemp\mscoree.dll.local
c:\windows\system32\URTTemp\mscorsn.dll
c:\windows\system32\URTTemp\mscorwks.dll
c:\windows\system32\URTTemp\msvcr71.dll
c:\windows\system32\URTTemp\regtlib.exe
c:\windows\wininit.ini
G:\Autorun.inf
.
.
((((((((((((((((((((((( Dateien erstellt von 2012-12-06 bis 2013-01-06 ))))))))))))))))))))))))))))))
.
.
2013-01-06 09:29 . 2013-01-06 09:29 -------- d---a-w- c:\dokumente und einstellungen\All Users\Anwendungsdaten\TEMP
2013-01-03 19:17 . 2013-01-03 19:18 -------- d-----w- c:\programme\DomaIQ Uninstaller
2013-01-03 19:15 . 2013-01-03 19:16 -------- d-----w- c:\dokumente und einstellungen\Rene Thaler\Lokale Einstellungen\Anwendungsdaten\Smartbar
2013-01-03 19:14 . 2013-01-03 19:15 -------- d-----w- c:\programme\SweetIM
2013-01-03 19:14 . 2013-01-03 19:14 -------- d-----w- c:\dokumente und einstellungen\All Users\Anwendungsdaten\SweetIM
2013-01-03 19:14 . 2013-01-03 19:14 -------- d-----w- c:\programme\sweetpacks bundle uninstaller
2013-01-03 07:38 . 2013-01-03 07:38 -------- d-----w- c:\dokumente und einstellungen\All Users\Anwendungsdaten\Fighters
2013-01-03 07:24 . 2013-01-03 07:24 -------- d-----w- c:\programme\CCleaner
2013-01-02 17:10 . 2013-01-02 20:13 -------- d-----w- c:\windows\system32\drivers\AVG
2012-12-31 10:12 . 2012-12-31 10:12 -------- d-----w- c:\programme\iPod
2012-12-31 10:12 . 2012-12-31 10:13 -------- d-----w- c:\programme\iTunes
2012-12-31 10:12 . 2012-12-31 10:13 -------- d-----w- c:\dokumente und einstellungen\All Users\Anwendungsdaten\188F1432-103A-4ffb-80F1-36B633C5C9E1
2012-12-23 10:53 . 2012-12-23 10:53 -------- d-----w- c:\dokumente und einstellungen\Rene Thaler\Lokale Einstellungen\Anwendungsdaten\freecad
2012-12-22 13:25 . 2012-12-22 13:25 -------- d-----w- c:\programme\LibreCAD
2012-12-22 13:05 . 2012-12-23 10:54 -------- d-----w- c:\dokumente und einstellungen\Rene Thaler\Anwendungsdaten\FreeCAD
2012-12-22 13:05 . 2012-12-23 21:54 -------- d-----w- c:\programme\FreeCAD0.12
2012-12-12 18:52 . 2012-12-12 19:51 16363960 ----a-w- c:\windows\system32\FlashPlayerInstaller.exe
2012-12-10 19:40 . 2012-12-10 19:40 -------- d-----w- c:\dokumente und einstellungen\Rene Thaler\Anwendungsdaten\Malwarebytes
2012-12-10 19:40 . 2012-12-10 19:40 -------- d-----w- c:\dokumente und einstellungen\All Users\Anwendungsdaten\Malwarebytes
2012-12-09 12:43 . 2012-12-09 12:43 -------- d-----w- c:\dokumente und einstellungen\Rene Thaler\Anwendungsdaten\DataSync Outlook
2012-12-08 16:01 . 2012-12-09 06:49 -------- d-----w- c:\programme\McAfee Security Scan
.
.
.
(((((((((((((((((((((((((((((((((((( Find3M Bericht ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-01-05 18:35 . 2013-01-05 18:35 45378 ----a-w- C:\TDSSKiller.2.8.15.0_05.01.2013_19.16.31_log.zip
2012-12-16 12:23 . 2008-04-25 09:45 290560 ----a-w- c:\windows\system32\atmfd.dll
2012-12-12 19:51 . 2012-03-29 10:15 73656 -c--a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-12-12 19:51 . 2012-03-29 10:15 697272 -c--a-w- c:\windows\system32\FlashPlayerApp.exe
2012-12-12 18:30 . 2012-10-17 20:18 134336 ----a-w- c:\windows\system32\drivers\avipbb.sys
2012-12-12 18:30 . 2012-10-17 20:18 83944 ----a-w- c:\windows\system32\drivers\avgntflt.sys
2012-11-13 18:14 . 2012-10-17 20:18 36552 ----a-w- c:\windows\system32\drivers\avkmgr.sys
2012-11-13 11:55 . 2008-04-25 09:46 1866496 ----a-w- c:\windows\system32\win32k.sys
2012-11-12 03:47 . 2011-01-07 05:41 255968 ----a-w- c:\windows\system32\drivers\avgldx86.sys
2012-11-02 02:02 . 2008-04-25 09:45 375296 ----a-w- c:\windows\system32\dpnet.dll
2012-10-31 11:33 . 2008-04-25 09:46 672768 ----a-w- c:\windows\system32\wininet.dll
2012-10-31 11:33 . 2008-04-25 09:46 61952 ----a-w- c:\windows\system32\tdc.ocx
2012-10-31 11:33 . 2008-04-25 09:45 81920 ----a-w- c:\windows\system32\ieencode.dll
2012-10-31 11:30 . 2008-04-25 09:45 371200 ----a-w- c:\windows\system32\html.iec
2012-10-25 02:12 . 2012-10-25 02:12 94208 ----a-w- c:\windows\system32\QuickTimeVR.qtx
2012-10-25 02:12 . 2012-10-25 02:12 69632 ----a-w- c:\windows\system32\QuickTime.qts
2012-12-08 15:52 . 2012-11-04 09:15 262112 ----a-w- c:\programme\mozilla firefox\components\browsercomps.dll
.
.
------- Sigcheck -------
Note: Unsigned files aren't necessarily malware.
.
[7] 2008-04-14 . 9F3A2F5AA6875C72BF062C712CFA2674 . 96512 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\atapi.sys
[7] 2008-04-14 . 9F3A2F5AA6875C72BF062C712CFA2674 . 96512 . . [5.1.2600.5512] . . c:\windows\system32\drivers\atapi.sys
[7] 2008-04-14 . 9F3A2F5AA6875C72BF062C712CFA2674 . 96512 . . [5.1.2600.5512] . . c:\windows\system32\ReinstallBackups\0014\DriverFiles\i386\atapi.sys
.
[7] 2008-04-14 . B153AFFAC761E7F5FCFA822B9C4E97BC . 14336 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\asyncmac.sys
[7] 2008-04-14 . B153AFFAC761E7F5FCFA822B9C4E97BC . 14336 . . [5.1.2600.5512] . . c:\windows\system32\drivers\asyncmac.sys
.
[7] 2008-04-14 . DA1F27D85E0D1525F6621372E7B685E9 . 4224 . . [5.1.2600.0] . . c:\windows\system32\dllcache\beep.sys
[7] 2008-04-14 . DA1F27D85E0D1525F6621372E7B685E9 . 4224 . . [5.1.2600.0] . . c:\windows\system32\drivers\beep.sys
.
[7] 2008-04-14 . 1704D8C4C8807B889E43C649B478A452 . 25216 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\kbdclass.sys
[7] 2008-04-14 . 1704D8C4C8807B889E43C649B478A452 . 25216 . . [5.1.2600.5512] . . c:\windows\system32\drivers\kbdclass.sys
.
[7] 2008-04-14 . 1DF7F42665C94B825322FAE71721130D . 182656 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\ndis.sys
[7] 2008-04-14 . 1DF7F42665C94B825322FAE71721130D . 182656 . . [5.1.2600.5512] . . c:\windows\system32\drivers\ndis.sys
.
[7] 2008-04-14 . 78A08DD6A8D65E697C18E1DB01C5CDCA . 574976 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\ntfs.sys
[7] 2008-04-14 . 78A08DD6A8D65E697C18E1DB01C5CDCA . 574976 . . [5.1.2600.5512] . . c:\windows\system32\drivers\ntfs.sys
.
[7] 2008-04-14 . 73C1E1F395918BC2C6DD67AF7591A3AD . 2944 . . [5.1.2600.0] . . c:\windows\system32\dllcache\null.sys
[7] 2008-04-14 . 73C1E1F395918BC2C6DD67AF7591A3AD . 2944 . . [5.1.2600.0] . . c:\windows\system32\drivers\null.sys
.
[7] 2008-06-20 . AD978A1B783B5719720CFF204B666C8E . 361600 . . [5.1.2600.5625] . . c:\windows\$hf_mig$\KB2509553\SP3QFE\tcpip.sys
[7] 2008-06-20 . AD978A1B783B5719720CFF204B666C8E . 361600 . . [5.1.2600.5625] . . c:\windows\$hf_mig$\KB951748\SP3QFE\tcpip.sys
[7] 2008-06-20 . 9AEFA14BD6B182D61E3119FA5F436D3D . 361600 . . [5.1.2600.5625] . . c:\windows\system32\dllcache\tcpip.sys
[7] 2008-06-20 . 9AEFA14BD6B182D61E3119FA5F436D3D . 361600 . . [5.1.2600.5625] . . c:\windows\system32\drivers\tcpip.sys
.
[7] 2012-07-06 . B71549F23736ADF83A571061C47777FD . 78336 . . [5.1.2600.6260] . . c:\windows\system32\browser.dll
[7] 2012-07-06 . B71549F23736ADF83A571061C47777FD . 78336 . . [5.1.2600.6260] . . c:\windows\system32\dllcache\browser.dll
[7] 2012-07-06 . B2CC8D85D27BF10C5FAF5B98C335978E . 78336 . . [5.1.2600.6260] . . c:\windows\$hf_mig$\KB2705219\SP3QFE\browser.dll
[7] 2008-04-14 . B42057F06BBB98B31876C0B3F2B54E33 . 77824 . . [5.1.2600.5512] . . c:\windows\$NtUninstallKB2705219$\browser.dll
.
[7] 2008-04-14 . AFB8261B56CBA0D86AEB6DF682AF9785 . 13312 . . [5.1.2600.5512] . . c:\windows\system32\lsass.exe
.
[7] 2008-04-14 . E6D88F1F6745BF00B57E7855A2AB696C . 198144 . . [5.1.2600.5512] . . c:\windows\system32\netman.dll
.
[7] 2008-04-14 12:00 . D0DE8A2EC95184E5193BB4B3112E29DF . 846848 . . [2001.12.4414.700] . . c:\windows\system32\comres.dll
.
[7] 2008-04-14 . D6F603772A789BB3228F310D650B8BD1 . 409088 . . [6.7.2600.5512] . . c:\windows\system32\qmgr.dll
[7] 2008-04-14 . D6F603772A789BB3228F310D650B8BD1 . 409088 . . [6.7.2600.5512] . . c:\windows\system32\dllcache\qmgr.dll
.
[7] 2009-02-09 . D3D765E8455A961AE567B408F767D4F9 . 401408 . . [5.1.2600.5755] . . c:\windows\$hf_mig$\KB956572\SP3QFE\rpcss.dll
[7] 2009-02-09 . 3127AFBF2C1ED0AB14A1BBB7AAECB85B . 401408 . . [5.1.2600.5755] . . c:\windows\system32\rpcss.dll
[7] 2009-02-09 . 3127AFBF2C1ED0AB14A1BBB7AAECB85B . 401408 . . [5.1.2600.5755] . . c:\windows\system32\dllcache\rpcss.dll
.
[7] 2009-02-09 . A3EDBE9053889FB24AB22492472B39DC . 111104 . . [5.1.2600.5755] . . c:\windows\system32\services.exe
[7] 2009-02-09 . A3EDBE9053889FB24AB22492472B39DC . 111104 . . [5.1.2600.5755] . . c:\windows\system32\dllcache\services.exe
[7] 2009-02-09 . F0A7D59AF279326528715B206669B86C . 111104 . . [5.1.2600.5755] . . c:\windows\$hf_mig$\KB956572\SP3QFE\services.exe
.
[7] 2010-08-17 . 258DD5D4283FD9F9A7166BE9AE45CE73 . 58880 . . [5.1.2600.6024] . . c:\windows\$hf_mig$\KB2347290\SP3QFE\spoolsv.exe
[7] 2010-08-17 . 60784F891563FB1B767F70117FC2428F . 58880 . . [5.1.2600.6024] . . c:\windows\system32\spoolsv.exe
[7] 2010-08-17 . 60784F891563FB1B767F70117FC2428F . 58880 . . [5.1.2600.6024] . . c:\windows\system32\dllcache\spoolsv.exe
.
[7] 2008-04-14 . F09A527B422E25C478E38CAA0E44417A . 513024 . . [5.1.2600.5512] . . c:\windows\system32\winlogon.exe
.
[7] 2012-06-02 . 2E0B0A051FFAA86E358465BB0880D453 . 53784 . . [7.6.7600.256] . . c:\windows\system32\wuauclt.exe
[7] 2012-06-02 . 2E0B0A051FFAA86E358465BB0880D453 . 53784 . . [7.6.7600.256] . . c:\windows\system32\dllcache\wuauclt.exe
.
[7] 2008-04-14 . 23C74D75E36E7158768DD63D92789A91 . 75264 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\ipsec.sys
[7] 2008-04-14 . 23C74D75E36E7158768DD63D92789A91 . 75264 . . [5.1.2600.5512] . . c:\windows\system32\drivers\ipsec.sys
.
[7] 2010-08-23 . 1438703F3D9FFE111DA3869E4F3EEE73 . 617472 . . [5.82] . . c:\windows\system32\comctl32.dll
[7] 2010-08-23 . 1438703F3D9FFE111DA3869E4F3EEE73 . 617472 . . [5.82] . . c:\windows\system32\dllcache\comctl32.dll
[7] 2010-08-23 . 2B6ADE29F8D00EEFA5FA2250CBE094AD . 1054208 . . [6.0] . . c:\windows\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll
[7] 2008-04-14 . AEF3D788DBF40C7C4D204EA45EB0C505 . 921088 . . [6.0] . . c:\windows\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.0.0_x-ww_1382d70a\comctl32.dll
[7] 2008-04-14 . 3C93CE6C6985C55952B7BE6673E9FD15 . 1054208 . . [6.0] . . c:\windows\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\comctl32.dll
.
[7] 2008-04-14 . 611F824E5C703A5A899F84C5F1699E4D . 62464 . . [5.1.2600.5512] . . c:\windows\system32\cryptsvc.dll
.
[7] 2008-07-07 20:26 . AF4F6B5739D18CA7972AB53E091CBC74 . 253952 . . [2001.12.4414.706] . . c:\windows\system32\es.dll
[7] 2008-07-07 20:26 . AF4F6B5739D18CA7972AB53E091CBC74 . 253952 . . [2001.12.4414.706] . . c:\windows\system32\dllcache\es.dll
[7] 2008-07-07 20:23 . ADA7241C16F3F42C7F210539FAD5F3AA . 253952 . . [2001.12.4414.706] . . c:\windows\$hf_mig$\KB950974\SP3QFE\es.dll
.
[7] 2008-04-14 . F9954695D246B33A5BF105029A4C6AB6 . 110080 . . [5.1.2600.5512] . . c:\windows\system32\imm32.dll
.
[7] 2012-10-03 . 8214D49147FBB2CD5CF896CBE021D339 . 1063936 . . [5.1.2600.6293] . . c:\windows\system32\kernel32.dll
[7] 2012-10-03 . 8214D49147FBB2CD5CF896CBE021D339 . 1063936 . . [5.1.2600.6293] . . c:\windows\system32\dllcache\kernel32.dll
[7] 2012-10-03 . A9D5CAF09ABD70F1CA28891ECED7B9E4 . 1065472 . . [5.1.2600.6293] . . c:\windows\$hf_mig$\KB2758857\SP3QFE\kernel32.dll
[7] 2009-03-21 . B055C64AABC1A3E3DE57EC8025CAD283 . 1063424 . . [5.1.2600.5781] . . c:\windows\$NtUninstallKB2758857$\kernel32.dll
[7] 2009-03-21 . 3EB703BFC2ED26A3D8ACB8626AB2C006 . 1065472 . . [5.1.2600.5781] . . c:\windows\$hf_mig$\KB959426\SP3QFE\kernel32.dll
.
[7] 2008-04-14 . 5543A9D4A1D0F9F84092482A9373A024 . 19968 . . [5.1.2600.5512] . . c:\windows\system32\linkinfo.dll
.
[7] 2008-04-14 . F38F3C47BBFFD748C1359AB171C3A630 . 22016 . . [5.1.2600.5512] . . c:\windows\system32\lpk.dll
[7] 2008-04-14 . F38F3C47BBFFD748C1359AB171C3A630 . 22016 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\lpk.dll
.
[7] 2012-11-10 . 553AFDA9DB6ED22D1B12033E1B873DCD . 3109888 . . [6.00.2900.6315] . . c:\windows\system32\mshtml.dll
[7] 2012-11-10 . 553AFDA9DB6ED22D1B12033E1B873DCD . 3109888 . . [6.00.2900.6315] . . c:\windows\system32\dllcache\mshtml.dll
[7] 2012-11-10 . A9377B59C330CD35F0C19B234E930A55 . 3110400 . . [6.00.2900.6315] . . c:\windows\$hf_mig$\KB2761465\SP3QFE\mshtml.dll
[7] 2012-08-30 . 05FE0AFC0CF1AD80420600E8D5C58EB9 . 3109888 . . [6.00.2900.6287] . . c:\windows\$NtUninstallKB2761465$\mshtml.dll
[7] 2012-08-30 . 0D9B93526915F8F6E7342526390DCC9A . 3110400 . . [6.00.2900.6287] . . c:\windows\$hf_mig$\KB2744842\SP3QFE\mshtml.dll
.
[7] 2008-04-14 . C6A6E53A0C34EC87883137A6CB87AE5E . 343040 . . [7.0.2600.5512] . . c:\windows\system32\msvcrt.dll
[7] 2008-04-14 . 4200BE3808F6406DBE45A7B88DAE5035 . 322560 . . [7.0.2600.0] . . c:\windows\WinSxS\x86_Microsoft.Windows.CPlusPlusRuntime_6595b64144ccf1df_7.0.0.0_x-ww_2726e76a\msvcrt.dll
[7] 2008-04-14 . C536AAD8A71608FE33CD956214EDD366 . 343040 . . [7.0.2600.5512] . . c:\windows\WinSxS\x86_Microsoft.Windows.CPlusPlusRuntime_6595b64144ccf1df_7.0.2600.5512_x-ww_3fd60d63\msvcrt.dll
.
[7] 2008-06-20 . 4AA50627B01C0E9C6B4C6BD3AF648F12 . 247296 . . [5.1.2600.5625] . . c:\windows\$hf_mig$\KB2509553\SP3QFE\mswsock.dll
[7] 2008-06-20 . 4AA50627B01C0E9C6B4C6BD3AF648F12 . 247296 . . [5.1.2600.5625] . . c:\windows\$hf_mig$\KB951748\SP3QFE\mswsock.dll
[7] 2008-06-20 . F1B67B6B0751AE0E6E964B02821206A3 . 247296 . . [5.1.2600.5625] . . c:\windows\system32\mswsock.dll
[7] 2008-06-20 . F1B67B6B0751AE0E6E964B02821206A3 . 247296 . . [5.1.2600.5625] . . c:\windows\system32\dllcache\mswsock.dll
.
[7] 2008-04-14 . 0098D35F91DEAB9C127360A877F2CF84 . 407040 . . [5.1.2600.5512] . . c:\windows\system32\netlogon.dll
.
[7] 2008-04-14 . C8C0BDABC966B6C24D337DF0A0A399E1 . 17408 . . [6.00.2900.5512] . . c:\windows\system32\powrprof.dll
.
[7] 2008-04-14 . 5132443DF6FC3771A17AB4AE55DCBC28 . 187904 . . [5.1.2600.5512] . . c:\windows\system32\scecli.dll
.
[7] 2008-04-14 . 44161A59DC33AC2EA9C95438ADFFFB7F . 5120 . . [5.1.2600.5512] . . c:\windows\system32\sfc.dll
.
[7] 2008-04-14 . 4FBC75B74479C7A6F829E0CA19DF3366 . 14336 . . [5.1.2600.5512] . . c:\windows\system32\svchost.exe
.
[7] 2008-04-14 . 05903CAC4B98908D55EA5774775B382E . 249856 . . [5.1.2600.5512] . . c:\windows\system32\tapisrv.dll
.
[7] 2008-04-14 . B0050CC5340E3A0760DD8B417FF7AEBD . 580096 . . [5.1.2600.5512] . . c:\windows\system32\user32.dll
.
[7] 2008-04-14 . 788F95312E26389D596C0FA55834E106 . 26624 . . [5.1.2600.5512] . . c:\windows\system32\userinit.exe
[7] 2008-04-14 . 788F95312E26389D596C0FA55834E106 . 26624 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\userinit.exe
.
[7] 2012-10-31 . 5938516FA6CA31BA5B922D19FB4FC7A9 . 672768 . . [6.00.2900.6309] . . c:\windows\system32\wininet.dll
[7] 2012-10-31 . 5938516FA6CA31BA5B922D19FB4FC7A9 . 672768 . . [6.00.2900.6309] . . c:\windows\system32\dllcache\wininet.dll
[7] 2012-10-31 . 8B32483312A84C6410894AE44CE71A7E . 674304 . . [6.00.2900.6309] . . c:\windows\$hf_mig$\KB2761465\SP3QFE\wininet.dll
[7] 2012-08-30 . E7050D80FBB72781AA612218AFA82E01 . 672768 . . [6.00.2900.6287] . . c:\windows\$NtUninstallKB2761465$\wininet.dll
[7] 2012-08-30 . 16A11DDA0719964B2B26C366871CE790 . 674304 . . [6.00.2900.6287] . . c:\windows\$hf_mig$\KB2744842\SP3QFE\wininet.dll
[7] 2012-06-28 . 8539F8626E5C516626A1A65CFAEC8E26 . 672768 . . [6.00.2900.6254] . . c:\windows\$NtUninstallKB2744842$\wininet.dll
[7] 2012-06-28 . 251E49EA6CBF2A5B5A8E9330C35C9E65 . 674304 . . [6.00.2900.6254] . . c:\windows\$hf_mig$\KB2722913\SP3QFE\wininet.dll
[7] 2012-05-16 . 6E8F84739BA14791E7C7CD4CB7877811 . 672768 . . [6.00.2900.6228] . . c:\windows\$NtUninstallKB2722913$\wininet.dll
[7] 2012-05-16 . 830A483578BE419F4958C9B5C9582F56 . 674304 . . [6.00.2900.6228] . . c:\windows\$hf_mig$\KB2699988\SP3QFE\wininet.dll
[7] 2012-02-28 . 252ADBC04DFF0733D58837BEDB6D2BFE . 672768 . . [6.00.2900.6197] . . c:\windows\$NtUninstallKB2699988$\wininet.dll
[7] 2012-02-28 . 260420FE90C050A5A738D70F76C09A9B . 674304 . . [6.00.2900.6197] . . c:\windows\$hf_mig$\KB2675157\SP3QFE\wininet.dll
[7] 2011-12-19 . FF7F32695A4DD5ED9AA6231713ADBDBB . 672768 . . [6.00.2900.6182] . . c:\windows\$NtUninstallKB2675157$\wininet.dll
[7] 2011-12-19 . 515144C0CA9587C61D7F6FA763060574 . 674304 . . [6.00.2900.6182] . . c:\windows\$hf_mig$\KB2647516\SP3QFE\wininet.dll
[7] 2011-11-01 . B82FB47BDDA4911192DBC27A2056E216 . 672768 . . [6.00.2900.6168] . . c:\windows\$NtUninstallKB2647516$\wininet.dll
[7] 2011-11-01 . C346342087FC2DFC90082F8B9DFCA53D . 674304 . . [6.00.2900.6168] . . c:\windows\$hf_mig$\KB2618444\SP3QFE\wininet.dll
[7] 2011-09-05 . 7B9AB7AB80F0602D578197ACB0B15A54 . 672768 . . [6.00.2900.6148] . . c:\windows\$NtUninstallKB2618444$\wininet.dll
[7] 2011-09-05 . B5AC4AB48CDBFADF9878FCD1E732C89B . 674304 . . [6.00.2900.6148] . . c:\windows\$hf_mig$\KB2586448\SP3QFE\wininet.dll
[7] 2011-06-21 . 9A0A03B1FA9818B569FB2CB806F766E2 . 672768 . . [6.00.2900.6126] . . c:\windows\$NtUninstallKB2586448$\wininet.dll
[7] 2011-06-21 . D3F75779427B44927B101446BBBC7F82 . 674304 . . [6.00.2900.6126] . . c:\windows\$hf_mig$\KB2559049\SP3QFE\wininet.dll
[7] 2011-04-25 . 2FA2FD1C2AEE93315FFEEB110F242400 . 672768 . . [6.00.2900.6104] . . c:\windows\$NtUninstallKB2559049$\wininet.dll
[7] 2011-04-25 . 307F7A9B9E4165138FD278DCE18B726F . 674304 . . [6.00.2900.6104] . . c:\windows\$hf_mig$\KB2530548\SP3QFE\wininet.dll
[7] 2011-02-17 . 8B8AF0B04AD9766EA87C05FABBE8526A . 672768 . . [6.00.2900.6082] . . c:\windows\$NtUninstallKB2530548$\wininet.dll
[7] 2011-02-17 . C6F2390D635C1A14C39F259C2C8A25A9 . 674304 . . [6.00.2900.6082] . . c:\windows\$hf_mig$\KB2497640\SP3QFE\wininet.dll
[7] 2010-12-20 . 4237D0ED18B2656AE5D0298B842FA228 . 674304 . . [6.00.2900.6058] . . c:\windows\$hf_mig$\KB2482017\SP3QFE\wininet.dll
.
[7] 2008-04-14 . 6A35E2D6F5F052C84EC2CEB296389439 . 82432 . . [5.1.2600.5512] . . c:\windows\system32\ws2_32.dll
.
[7] 2008-04-14 . C7D8A0517CBF16B84F657DE87EBE9D4B . 19968 . . [5.1.2600.5512] . . c:\windows\system32\ws2help.dll
.
[7] 2008-04-14 . 418045A93CD87A352098AB7DABE1B53E . 1036800 . . [6.00.2900.5512] . . c:\windows\explorer.exe
.
[7] 2008-04-14 . AD9226BF3CED13636083BB9C76E9D2A2 . 153600 . . [5.1.2600.5512] . . c:\windows\regedit.exe
[7] 2008-04-14 . AD9226BF3CED13636083BB9C76E9D2A2 . 153600 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\regedit.exe
.
[7] 2011-11-01 . 6AD6619E7523E27B771569C26F408F0A . 1288704 . . [5.1.2600.6168] . . c:\windows\system32\ole32.dll
[7] 2011-11-01 . 6AD6619E7523E27B771569C26F408F0A . 1288704 . . [5.1.2600.6168] . . c:\windows\system32\dllcache\ole32.dll
[7] 2011-11-01 . D684C601EC79D9543D50EB2DB124FE78 . 1289216 . . [5.1.2600.6168] . . c:\windows\$hf_mig$\KB2624667\SP3QFE\ole32.dll
[7] 2010-07-16 . B28AF7976F2D8109C0DC2CF2460BEDC2 . 1288192 . . [5.1.2600.6010] . . c:\windows\$NtUninstallKB2624667$\ole32.dll
[7] 2010-07-16 . B3D7633CF83B09042A49810A7A72ADED . 1289216 . . [5.1.2600.6010] . . c:\windows\$hf_mig$\KB979687\SP3QFE\ole32.dll
.
[7] 2010-04-16 . 45954AFB7AE6E29B23C56B830C820A11 . 406016 . . [1.0420.2600.5969] . . c:\windows\system32\usp10.dll
[7] 2010-04-16 . 45954AFB7AE6E29B23C56B830C820A11 . 406016 . . [1.0420.2600.5969] . . c:\windows\system32\dllcache\usp10.dll
[7] 2010-04-16 . EB2AD9C7DADE6C63F5F933881BA2A430 . 406016 . . [1.0420.2600.5969] . . c:\windows\$hf_mig$\KB981322\SP3QFE\usp10.dll
.
[7] 2008-04-14 . 671ABB33C712B1585A5BF7ADD36AD96E . 4096 . . [5.3.2600.5512] . . c:\windows\system32\ksuser.dll
[7] 2008-04-14 . 671ABB33C712B1585A5BF7ADD36AD96E . 4096 . . [5.3.2600.5512] . . c:\windows\system32\dllcache\ksuser.dll
[7] 2008-04-14 . 671ABB33C712B1585A5BF7ADD36AD96E . 4096 . . [5.3.2600.5512] . . c:\windows\system32\ReinstallBackups\0027\DriverFiles\i386\ksuser.dll
.
[7] 2008-04-14 . 01B4E6E990B6C5EA8856D96C7FD044B2 . 15360 . . [5.1.2600.5512] . . c:\windows\system32\ctfmon.exe
.
[7] 2009-07-27 . 2DB7D303C36DDD055215052F118E8E75 . 135680 . . [6.00.2900.5853] . . c:\windows\system32\shsvcs.dll
[7] 2009-07-27 . 2DB7D303C36DDD055215052F118E8E75 . 135680 . . [6.00.2900.5853] . . c:\windows\system32\dllcache\shsvcs.dll
[7] 2009-07-27 . 927666F4228E3FBBC3D1171581DC8BDC . 135680 . . [6.00.2900.5853] . . c:\windows\$hf_mig$\KB971029\SP3QFE\shsvcs.dll
.
[7] 2008-04-14 . DC4E223F5813150073FB5CC63D13293B . 4608 . . [5.1.2600.5512] . . c:\windows\system32\msimg32.dll
.
[7] 2008-04-14 . FE77A85495065F3AD59C5C65B6C54182 . 171520 . . [5.1.2600.5512] . . c:\windows\system32\srsvc.dll
.
[7] 2008-04-14 . EDAFBE25FB6480CE68F688BA691890DC . 13824 . . [5.1.2600.5512] . . c:\windows\system32\wscntfy.exe
[7] 2008-04-14 . EDAFBE25FB6480CE68F688BA691890DC . 13824 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\wscntfy.exe
.
[7] 2008-04-14 . 0ADA34871A2E1CD2CAAFED1237A47750 . 129024 . . [5.1.2600.5512] . . c:\windows\system32\xmlprov.dll
[7] 2008-04-14 . 0ADA34871A2E1CD2CAAFED1237A47750 . 129024 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\xmlprov.dll
.
[7] 2010-12-09 . 0314B25236E38383DACD4527C40156E8 . 743936 . . [5.1.2600.6055] . . c:\windows\$hf_mig$\KB2393802\SP3QFE\ntdll.dll
[7] 2010-12-09 . E3BDD71DA7EAB0A503129D4D127AF1CB . 743936 . . [5.1.2600.6055] . . c:\windows\system32\ntdll.dll
[7] 2010-12-09 . E3BDD71DA7EAB0A503129D4D127AF1CB . 743936 . . [5.1.2600.6055] . . c:\windows\system32\dllcache\ntdll.dll
[7] 2009-02-09 . 06DA2C9091606174BFC6F46037AAFFF8 . 740864 . . [5.1.2600.5755] . . c:\windows\$hf_mig$\KB956572\SP3QFE\ntdll.dll
.
[7] 2008-04-14 . 275CAC40038A2643833B5F48FB474857 . 177152 . . [5.1.2600.5512] . . c:\windows\system32\MSCTFIME.IME
[7] 2008-04-14 . 275CAC40038A2643833B5F48FB474857 . 177152 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\msctfime.ime
.
[7] 2008-04-14 . 04955AA695448C181B367D964AF158AA . 56320 . . [5.1.2600.5512] . . c:\windows\system32\eventlog.dll
.
[7] 2008-04-14 . 5251425B86EA4A3532B8BB8D14044E61 . 1571840 . . [5.1.2600.5512] . . c:\windows\system32\sfcfiles.dll
[7] 2008-04-14 . 5251425B86EA4A3532B8BB8D14044E61 . 1571840 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\sfcfiles.dll
.
[7] 2008-04-14 . 23C74D75E36E7158768DD63D92789A91 . 75264 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\ipsec.sys
[7] 2008-04-14 . 23C74D75E36E7158768DD63D92789A91 . 75264 . . [5.1.2600.5512] . . c:\windows\system32\drivers\ipsec.sys
.
[7] 2008-04-14 . E4CD1F3D84E1C2CA0B8CF7501E201593 . 59904 . . [5.1.2600.5512] . . c:\windows\system32\regsvc.dll
[7] 2008-04-14 . E4CD1F3D84E1C2CA0B8CF7501E201593 . 59904 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\regsvc.dll
.
[7] 2008-04-14 . A050194A44D7FA8D7186ED2F4E8367AE . 193536 . . [5.1.2600.5512] . . c:\windows\system32\schedsvc.dll
.
[7] 2008-04-14 . 4DF5B05DFAEC29E13E1ED6F6EE12C500 . 71680 . . [5.1.2600.5512] . . c:\windows\system32\ssdpsrv.dll
[7] 2008-04-14 . 4DF5B05DFAEC29E13E1ED6F6EE12C500 . 71680 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\ssdpsrv.dll
.
[7] 2008-04-14 . B7DE02C863D8F5A005A7BF375375A6A4 . 297472 . . [5.1.2600.5512] . . c:\windows\system32\termsrv.dll
.
[7] 2008-04-14 . 0DAF0705D7B39C94E287913226688804 . 348672 . . [5.1.2600.5512] . . c:\windows\system32\hnetcfg.dll
.
[7] 2008-04-14 . D45960BE52C3C610D361977057F98C54 . 175616 . . [5.1.2600.5512] . . c:\windows\system32\appmgmts.dll
[7] 2008-04-14 . D45960BE52C3C610D361977057F98C54 . 175616 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\appmgmts.dll
.
[7] 2008-04-14 . 9E1CA3160DAFB159CA14F83B1E317F75 . 12160 . . [5.1.2600.0] . . c:\windows\system32\dllcache\acpiec.sys
[7] 2008-04-14 . 9E1CA3160DAFB159CA14F83B1E317F75 . 12160 . . [5.1.2600.0] . . c:\windows\system32\drivers\acpiec.sys
.
[7] 2008-04-14 10:09 . 8BED39E3C35D6A489438B8141717A557 . 142592 . . [5.1.2601.3142] . . c:\windows\system32\dllcache\aec.sys
[7] 2008-04-14 10:09 . 8BED39E3C35D6A489438B8141717A557 . 142592 . . [5.1.2601.3142] . . c:\windows\system32\drivers\aec.sys
.
[7] 2008-04-14 . 08FD04AA961BDC77FB983F328334E3D7 . 42368 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\agp440.sys
[7] 2008-04-14 . 08FD04AA961BDC77FB983F328334E3D7 . 42368 . . [5.1.2600.5512] . . c:\windows\system32\drivers\AGP440.SYS
.
[7] 2008-04-14 . 3BB22519A194418D5FEC05D800A19AD0 . 36608 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\ip6fw.sys
[7] 2008-04-14 . 3BB22519A194418D5FEC05D800A19AD0 . 36608 . . [5.1.2600.5512] . . c:\windows\system32\drivers\ip6fw.sys
.
[7] 2010-09-18 07:18 . 4891FCDAE77486BFB56999AA217651FA . 953856 . . [4.1.6151] . . c:\windows\$hf_mig$\KB2387149\SP3QFE\mfc40u.dll
[7] 2010-09-18 06:52 . 1614669828A32BCD06E1BE6F334BB888 . 953856 . . [4.1.6151] . . c:\windows\system32\mfc40u.dll
[7] 2010-09-18 06:52 . 1614669828A32BCD06E1BE6F334BB888 . 953856 . . [4.1.6151] . . c:\windows\system32\dllcache\mfc40u.dll
.
[7] 2008-04-14 . B7550A7107281D170CE85524B1488C98 . 33792 . . [5.1.2600.5512] . . c:\windows\system32\msgsvc.dll
[7] 2008-04-14 . B7550A7107281D170CE85524B1488C98 . 33792 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\msgsvc.dll
.
[7] 2008-04-14 12:00 . 6E18978B749F0696A774DE3F2CB142DD . 52736 . . [9.0.1.56] . . c:\windows\$NtUninstallWMFDist11$\mspmsnsv.dll
[7] 2006-10-18 19:47 . C51B4A5C05A5475708E3C81C7765B71D . 27136 . . [11.0.5721.5145] . . c:\windows\system32\mspmsnsv.dll
[7] 2006-10-18 19:47 . C51B4A5C05A5475708E3C81C7765B71D . 27136 . . [11.0.5721.5145] . . c:\windows\system32\dllcache\mspmsnsv.dll
.
[7] 2012-08-23 . 683CCEEF613AB24D24C9A764C79A80F2 . 2071936 . . [5.1.2600.6284] . . c:\windows\Driver Cache\i386\ntkrnlpa.exe
[7] 2012-08-23 . 683CCEEF613AB24D24C9A764C79A80F2 . 2071936 . . [5.1.2600.6284] . . c:\windows\system32\dllcache\ntkrnlpa.exe
[7] 2012-08-23 . 2A212067C4734FD67095DA9FF522B503 . 2030080 . . [5.1.2600.6284] . . c:\windows\system32\ntkrnlpa.exe
[7] 2012-08-23 . 3E6F700819774FD290FA8A79465E41DA . 2071936 . . [5.1.2600.6284] . . c:\windows\$hf_mig$\KB2724197\SP3QFE\ntkrnlpa.exe
[7] 2012-05-05 . BE4A6D3DB8E11A1B644B8675FE7D1A43 . 2029056 . . [5.1.2600.6223] . . c:\windows\$NtUninstallKB2724197$\ntkrnlpa.exe
[7] 2012-05-05 . 339D9DA45F631C9D9D7132D9F6957943 . 2071424 . . [5.1.2600.6223] . . c:\windows\$hf_mig$\KB2707511\SP3QFE\ntkrnlpa.exe
[7] 2012-04-11 . 12E964E3514BC6ECD028A792F23E1976 . 2029056 . . [5.1.2600.6206] . . c:\windows\$NtUninstallKB2707511$\ntkrnlpa.exe
[7] 2012-04-11 . C3124524EDDDA49504AE558352440F65 . 2071424 . . [5.1.2600.6206] . . c:\windows\$hf_mig$\KB2676562\SP3QFE\ntkrnlpa.exe
[7] 2011-10-26 . 07FD1B85212CB29D3D75932B8C3FD210 . 2029568 . . [5.1.2600.6165] . . c:\windows\$NtUninstallKB2676562$\ntkrnlpa.exe
[7] 2011-10-26 . ADD968B4D4A095407FD5B915F89BA8B5 . 2071680 . . [5.1.2600.6165] . . c:\windows\$hf_mig$\KB2633171\SP3QFE\ntkrnlpa.exe
[7] 2010-12-09 . 7B1CA0A6C042E4B90A18B49ED73CBA76 . 2071680 . . [5.1.2600.6055] . . c:\windows\$hf_mig$\KB2393802\SP3QFE\ntkrnlpa.exe
[7] 2010-12-09 . 56371A8F18F7D9570A11B1C54D602A2A . 2029568 . . [5.1.2600.6055] . . c:\windows\$NtUninstallKB2633171$\ntkrnlpa.exe
[7] 2010-04-28 . 4EACA49489EB3C4A2E83C5546EB5884C . 2069248 . . [5.1.2600.5973] . . c:\windows\$hf_mig$\KB981852\SP3QFE\ntkrnlpa.exe
[7] 2010-02-16 . CEE28C8C47E52F185F9F8F3A2E31880C . 2069248 . . [5.1.2600.5938] . . c:\windows\$hf_mig$\KB979683\SP3QFE\ntkrnlpa.exe
[7] 2009-12-09 . 2E72317A93EF61138E43DCF7CD423EDF . 2068480 . . [5.1.2600.5913] . . c:\windows\$hf_mig$\KB977165\SP3QFE\ntkrnlpa.exe
[7] 2009-08-04 . C50ED62BB5CDC5AD4F3985ED39C6AE87 . 2068480 . . [5.1.2600.5857] . . c:\windows\$hf_mig$\KB971486\SP3QFE\ntkrnlpa.exe
[7] 2009-02-09 . 1F9DA92672B8B5720C5FB1E87D8F249F . 2068480 . . [5.1.2600.5755] . . c:\windows\$hf_mig$\KB956572\SP3QFE\ntkrnlpa.exe
[7] 2008-08-14 . C789B5AEA9AB71C5BEF6DD568F744842 . 2068352 . . [5.1.2600.5657] . . c:\windows\$hf_mig$\KB956841\SP3QFE\ntkrnlpa.exe
.
[7] 2008-04-14 12:00 . 56AF4064996FA5BAC9C449B1514B4770 . 438272 . . [5.1.2400.5512] . . c:\windows\system32\ntmssvc.dll
[7] 2008-04-14 12:00 . 56AF4064996FA5BAC9C449B1514B4770 . 438272 . . [5.1.2400.5512] . . c:\windows\system32\dllcache\ntmssvc.dll
.
[7] 2008-04-14 . 1DFD8975D8C89214B98D9387C1125B49 . 186880 . . [5.1.2600.5512] . . c:\windows\system32\upnphost.dll
[7] 2008-04-14 . 1DFD8975D8C89214B98D9387C1125B49 . 186880 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\upnphost.dll
.
[7] 2008-04-14 . 9236E736EDB57BE7D1EF6274410E3BAC . 367616 . . [5.3.2600.5512] . . c:\windows\system32\dsound.dll
.
[7] 2008-04-14 . 36969CF86E51EC8ED202B40F2FA80AA6 . 1689088 . . [5.03.2600.5512] . . c:\windows\system32\d3d9.dll
.
[7] 2008-04-14 . 4A37188B83B00DD9CFBA049687AD0DAF . 279552 . . [5.03.2600.5512] . . c:\windows\system32\ddraw.dll
.
[7] 2008-04-14 12:00 . 5D7F5A46975D2E59A6FECB6C231D200F . 84992 . . [5.1.2600.5512] . . c:\windows\system32\olepro32.dll
.
[7] 2008-04-14 . C47FD93010649AC0D79022D9B69ADBE4 . 41984 . . [5.1.2600.5512] . . c:\windows\system32\perfctrs.dll
[7] 2008-04-14 . C47FD93010649AC0D79022D9B69ADBE4 . 41984 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\perfctrs.dll
.
[7] 2008-04-14 . F86000634319F71535BCE6B06995EE99 . 18944 . . [5.1.2600.5512] . . c:\windows\system32\version.dll
.
[7] 2008-04-14 . 3BFE49B4CDFAC83B0F3C79412895A179 . 93184 . . [6.00.2900.5512] . . c:\windows\system32\dllcache\iexplore.exe
.
.
[7] 2012-08-23 . 777AC14497340CDCFC12438904528E67 . 2195200 . . [5.1.2600.6284] . . c:\windows\Driver Cache\i386\ntoskrnl.exe
[7] 2012-08-23 . 777AC14497340CDCFC12438904528E67 . 2195200 . . [5.1.2600.6284] . . c:\windows\system32\dllcache\ntoskrnl.exe
[7] 2012-08-23 . 36E49FA67679847C40F452219D871163 . 2151424 . . [5.1.2600.6284] . . c:\windows\system32\ntoskrnl.exe
[7] 2012-08-23 . DEF6103237BB417D4082DB5077837853 . 2195328 . . [5.1.2600.6284] . . c:\windows\$hf_mig$\KB2724197\SP3QFE\ntoskrnl.exe
[7] 2012-05-05 . 916B2FD262DDD2DD31EB5B80B5645516 . 2150912 . . [5.1.2600.6223] . . c:\windows\$NtUninstallKB2724197$\ntoskrnl.exe
[7] 2012-05-05 . C11516E90F6D8C45329A070429392A04 . 2194944 . . [5.1.2600.6223] . . c:\windows\$hf_mig$\KB2707511\SP3QFE\ntoskrnl.exe
[7] 2012-04-11 . 1055CB3C62F7007EBD5ECB1E5CC8069E . 2150912 . . [5.1.2600.6206] . . c:\windows\$NtUninstallKB2707511$\ntoskrnl.exe
[7] 2012-04-11 . 35BEC26067274CCFE4BE16CA22E54557 . 2194944 . . [5.1.2600.6206] . . c:\windows\$hf_mig$\KB2676562\SP3QFE\ntoskrnl.exe
[7] 2011-10-26 . 63907C9E2D9EEA3ADA8263F0A8D79797 . 2151424 . . [5.1.2600.6165] . . c:\windows\$NtUninstallKB2676562$\ntoskrnl.exe
[7] 2011-10-26 . 43BA9F58FD87BBF57F958C06241F2C9C . 2195072 . . [5.1.2600.6165] . . c:\windows\$hf_mig$\KB2633171\SP3QFE\ntoskrnl.exe
[7] 2010-12-09 . 2A5A8BE47E1F8E55520FB4031E21D129 . 2195072 . . [5.1.2600.6055] . . c:\windows\$hf_mig$\KB2393802\SP3QFE\ntoskrnl.exe
[7] 2010-12-09 . DAC0BE266F11618A2B9A6EC4D1F255ED . 2151424 . . [5.1.2600.6055] . . c:\windows\$NtUninstallKB2633171$\ntoskrnl.exe
[7] 2010-04-28 . 6AF2E8CEB03F7CB3B8183359563DBB87 . 2192384 . . [5.1.2600.5973] . . c:\windows\$hf_mig$\KB981852\SP3QFE\ntoskrnl.exe
[7] 2010-02-16 . 4456016C2FF1A8CCCAC8309C9B76E2F5 . 2192384 . . [5.1.2600.5938] . . c:\windows\$hf_mig$\KB979683\SP3QFE\ntoskrnl.exe
[7] 2009-12-09 . A97847B2D30F4A299B35239D26BAD948 . 2191616 . . [5.1.2600.5913] . . c:\windows\$hf_mig$\KB977165\SP3QFE\ntoskrnl.exe
[7] 2009-08-04 . 4B86421F2D85D9A4ECB06885C40B8EEB . 2191616 . . [5.1.2600.5857] . . c:\windows\$hf_mig$\KB971486\SP3QFE\ntoskrnl.exe
[7] 2009-02-10 . D3453310FC92736E674FFDC6E3F455B7 . 2191488 . . [5.1.2600.5755] . . c:\windows\$hf_mig$\KB956572\SP3QFE\ntoskrnl.exe
[7] 2008-08-14 . 59282EFE7147C011530E51FF92BA86AC . 2191488 . . [5.1.2600.5657] . . c:\windows\$hf_mig$\KB956841\SP3QFE\ntoskrnl.exe
.
[7] 2008-04-14 . FE77A85495065F3AD59C5C65B6C54182 . 171520 . . [5.1.2600.5512] . . c:\windows\system32\srsvc.dll
.
[7] 2008-04-14 . 7B353059E665F8B7AD2BBEAEF597CF45 . 177152 . . [5.1.2600.5512] . . c:\windows\system32\w32time.dll
.
[7] 2008-04-14 . BC2C5985611C5356B24AEB370953DED9 . 334336 . . [5.1.2600.5512] . . c:\windows\system32\wiaservc.dll
[7] 2008-04-14 . BC2C5985611C5356B24AEB370953DED9 . 334336 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\wiaservc.dll
.
[7] 2008-04-14 . 2CF969B9BF1EF069075DCDCE309FAAE1 . 18944 . . [5.1.2600.5512] . . c:\windows\system32\midimap.dll
.
[7] 2008-04-14 . 469FED8597896DB77B49384BE90E2E0A . 7680 . . [5.1.2600.5512] . . c:\windows\system32\rasadhlp.dll
.
[7] 2008-04-14 . 02AF8A799D173C2D0C71F399C03AC9E1 . 19456 . . [5.1.2600.5512] . . c:\windows\system32\wshtcpip.dll
.
(((((((((((((((((((((((((((( Autostartpunkte der Registrierung ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt.
REGEDIT4
.
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{00000000-6E41-4FD3-8538-502F5495E5FC}"= "c:\programme\Ask.com\GenericAskToolbar.dll" [2012-10-19 1521872]
.
[HKEY_CLASSES_ROOT\clsid\{00000000-6e41-4fd3-8538-502f5495e5fc}]
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"swg"="c:\programme\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2008-10-08 68856]
"Skype"="c:\programme\Skype\Phone\Skype.exe" [2012-07-13 17418928]
"ISUSPM"="c:\programme\Gemeinsame Dateien\InstallShield\UpdateService\ISUSPM.exe" [2007-08-30 205480]
"ModemOnHold"="c:\programme\NetWaiting\netWaiting.exe" [2007-05-10 26144]
"Browser Infrastructure Helper"="c:\dokumente und einstellungen\Rene Thaler\Lokale Einstellungen\Anwendungsdaten\Smartbar\Application\QuickShare.exe" [2012-12-31 13824]
"Akamai NetSession Interface"="c:\dokumente und einstellungen\Rene Thaler\Lokale Einstellungen\Anwendungsdaten\Akamai\netsession_win.exe" [2012-10-09 4441920]
"ctfmon.exe"="c:\windows\system32\ctfmon.exe" [2008-04-14 15360]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"PDVDDXSrv"="c:\programme\CyberLink\PowerDVD DX\PDVDDXSrv.exe" [2009-09-11 128232]
"nwiz"="nwiz.exe" [2008-06-30 1630208]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2008-06-30 86016]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2008-06-30 13537280]
"Dell QuickSet"="c:\programme\Dell\QuickSet\Quickset.exe" [2008-02-22 1245184]
"Apoint"="c:\programme\DellTPad\Apoint.exe" [2008-02-21 159744]
"Ocs_SM"="c:\dokumente und einstellungen\Rene Thaler\Anwendungsdaten\OCS\SM\SearchAnonymizer.exe" [2011-12-26 106496]
"RMAlert"="c:\programme\PC Tools Registry Mechanic\Alert.exe" [2012-03-21 1318872]
"Adobe ARM"="c:\programme\Gemeinsame Dateien\Adobe\ARM\1.0\AdobeARM.exe" [2012-07-11 919008]
"RTHDCPL"="RTHDCPL.EXE" [2007-11-06 16855552]
"Broadcom Wireless Manager UI"="c:\windows\system32\WLTRAY.exe" [2008-11-26 2289664]
"ApnUpdater"="c:\programme\Ask.com\Updater\Updater.exe" [2012-10-19 1573584]
"avgnt"="c:\programme\Avira\AntiVir Desktop\avgnt.exe" [2012-12-12 384800]
"SunJavaUpdateSched"="c:\programme\Gemeinsame Dateien\Java\Java Update\jusched.exe" [2012-09-17 254896]
"QuickTime Task"="c:\programme\QuickTime\QTTask.exe" [2012-10-25 421888]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
[HKLM\~\startupfolder\C:^Dokumente und Einstellungen^All Users^Startmenü^Programme^Autostart^Bluetooth Manager.lnk]
path=c:\dokumente und einstellungen\All Users\Startmenü\Programme\Autostart\Bluetooth Manager.lnk
backup=c:\windows\pss\Bluetooth Manager.lnkCommon Startup
.
[HKLM\~\startupfolder\C:^Dokumente und Einstellungen^Rene Thaler^Startmenü^Programme^Autostart^OneNote 2010 Bildschirmausschnitt- und Startprogramm.lnk]
path=c:\dokumente und einstellungen\Rene Thaler\Startmenü\Programme\Autostart\OneNote 2010 Bildschirmausschnitt- und Startprogramm.lnk
backup=c:\windows\pss\OneNote 2010 Bildschirmausschnitt- und Startprogramm.lnkStartup
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
2012-07-11 19:00 919008 ----a-w- c:\programme\Gemeinsame Dateien\Adobe\ARM\1.0\AdobeARM.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
2012-07-31 11:20 38872 ----a-w- c:\programme\Adobe\Reader 9.0\Reader\reader_sl.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AppleSyncNotifier]
2011-11-02 06:51 59240 -c--a-w- c:\programme\Gemeinsame Dateien\Apple\Mobile Device Support\AppleSyncNotifier.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\APSDaemon]
2012-11-28 13:13 59280 ----a-w- c:\programme\Gemeinsame Dateien\Apple\Apple Application Support\APSDaemon.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AVG_TRAY]
2012-08-01 03:48 2345592 ----a-w- c:\programme\AVG\AVG10\avgtray.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DivXUpdate]
2011-07-28 23:08 1259376 ----a-w- c:\programme\DivX\DivX Update\DivXUpdate.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Desktop Search]
2008-10-08 10:13 29744 -c--a-w- c:\programme\Google\Google Desktop Search\GoogleDesktop.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update]
2011-05-10 01:41 49208 ----a-w- c:\programme\HP\HP Software Update\hpwuschd2.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
2012-12-12 12:57 152544 ----a-w- c:\programme\iTunes\iTunesHelper.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MobileConnect]
2009-09-11 10:34 2403840 -c--a-w- c:\programme\Vodafone\Vodafone Mobile Connect\Bin\MobileConnect.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PDFPrint]
2011-12-16 11:54 220744 -c--a-w- c:\programme\PDF24\pdf24.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PMBVolumeWatcher]
2010-03-24 13:42 599328 -c--a-w- c:\programme\Sony\PMB\PMBVolumeWatcher.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SweetIM]
2012-10-04 15:34 115032 ----a-r- c:\programme\SweetIM\Messenger\SweetIM.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TomTomHOME.exe]
2012-07-26 12:16 247768 ----a-w- c:\programme\TomTom HOME 2\TomTomHOMERunner.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"VMCService"=2 (0x2)
"TomTomHOMEService"=2 (0x2)
"PMBDeviceInfoProvider"=2 (0x2)
"MAGIX StartUp Analyze Service"=2 (0x2)
"iPod Service"=3 (0x3)
"de_serv"=3 (0x3)
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"PcSync"=c:\programme\Nokia\Nokia PC Suite 6\PcSync2.exe /NoDialog
"Remote Control Editor"="c:\programme\Gemeinsame Dateien\TerraTec\Remote\TTTVRC.exe"
"CTFMON.EXE"=c:\windows\system32\ctfmon.exe
"TomTomHOME.exe"="c:\programme\TomTom HOME 2\TomTomHOMERunner.exe"
"swg"="c:\programme\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
"IncrediMail"=c:\programme\IncrediMail\bin\IncMail.exe /c
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"PCSuiteTrayApplication"=c:\progra~1\Nokia\NOKIAP~1\LAUNCH~1.EXE -startup
"ECenter"=c:\dell\E-Center\EULALauncher.exe
"SunJavaUpdateSched"="c:\programme\Java\jre6\bin\jusched.exe"
"ToolBoxFX"="c:\programme\HP\ToolBoxFX\bin\HPTLBXFX.exe" /enum:on /alerts:on /notifications:on /fl:on /fr:on /appData:on /tmcp:on
"Alcmtr"=ALCMTR.EXE
"HP Software Update"=c:\programme\HP\HP Software Update\HPWuSchd2.exe
"NVHotkey"=rundll32.exe nvHotkey.dll,Start
"iTunesHelper"="c:\programme\iTunes\iTunesHelper.exe"
"Broadcom Wireless Manager UI"=c:\windows\system32\WLTRAY.exe
"vProt"="c:\programme\AVG Secure Search\vprot.exe"
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusOverride"=dword:00000001
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"c:\\Programme\\TerraTec\\TerraTec Home Cinema\\tvtvSetup\\tvtv_Wizard.exe"=
"c:\\Programme\\TerraTec\\TerraTec Home Cinema\\CinergyDvr.exe"=
"c:\\Programme\\TerraTec\\TerraTec Home Cinema\\InstTool.exe"=
"c:\\Programme\\TerraTec\\TerraTec Home Cinema\\VersionCheck\\VersionCheck.exe"=
"c:\\Programme\\Mozilla Firefox\\firefox.exe"=
"c:\\hp_LJM1522_full_solution_AM_EMEA1\\setup\\hppniprint01.exe"=
"c:\\hp_LJM1522_full_solution_AM_EMEA1\\setup\\hppniprint64.exe"=
"c:\\hp_LJM1522_full_solution_AM_EMEA1\\setup\\hppnicifs01.exe"=
"c:\\hp_LJM1522_full_solution_AM_EMEA1\\setup\\LaunchApp.exe"=
"c:\\Programme\\HP\\hp laserjet m1522\\hppfaxnc1.exe"=
"c:\\BauFaktura\\HuonkerAktualisierung.exe"=
"c:\\Programme\\Google\\Google Earth\\client\\googleearth.exe"=
"c:\\Programme\\Hewlett-Packard\\HP LinkUp Sender\\LinkUpZeroC.exe"=
"c:\\Programme\\Hewlett-Packard\\HP LinkUp Sender\\LinkUpFTSender.exe"=
"c:\\Programme\\HP\\Digital Imaging\\bin\\hppscan6.exe"=
"c:\\Programme\\Microsoft Office\\Office14\\ONENOTE.EXE"=
"c:\\Programme\\Microsoft Office\\Office14\\OUTLOOK.EXE"=
"c:\\Programme\\Skype\\Phone\\Skype.exe"=
"c:\\Programme\\Bonjour\\mDNSResponder.exe"=
"c:\\Dokumente und Einstellungen\\Rene Thaler\\Lokale Einstellungen\\Anwendungsdaten\\Akamai\\netsession_win.exe"=
"c:\\Programme\\TeamViewer\\Version8\\TeamViewer.exe"=
"c:\\Programme\\TeamViewer\\Version8\\TeamViewer_Service.exe"=
"c:\\Programme\\Gemeinsame Dateien\\Apple\\Apple Application Support\\WebKit2WebProcess.exe"=
"c:\\Programme\\iTunes\\iTunes.exe"=
"c:\\Programme\\AVG\\AVG10\\avgmfapx.exe"=
"c:\\Programme\\AVG\\AVG10\\avgnsx.exe"=
"c:\\Programme\\AVG\\AVG10\\avgemcx.exe"=
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"45999:TCP"= 45999:TCP:LinkUpFTSender.exe
"1066:TCP"= 1066:TCP:Akamai NetSession Interface
"5000:UDP"= 5000:UDP:Akamai NetSession Interface
.
R0 AVGIDSEH;AVGIDSEH;c:\windows\system32\drivers\AVGIDSEH.sys [22.02.2011 08:13 22992]
R0 Avgrkx86;AVG Anti-Rootkit Driver;c:\windows\system32\drivers\avgrkx86.sys [16.03.2011 16:03 32592]
R1 Avgldx86;AVG AVI Loader Driver;c:\windows\system32\drivers\avgldx86.sys [07.01.2011 06:41 255968]
R1 Avgtdix;AVG TDI Driver;c:\windows\system32\drivers\avgtdix.sys [05.04.2011 00:59 297168]
R1 avkmgr;avkmgr;c:\windows\system32\drivers\avkmgr.sys [17.10.2012 21:18 36552]
R2 AntiVirSchedulerService;Avira Planer;c:\programme\Avira\AntiVir Desktop\sched.exe [17.10.2012 21:18 85280]
R2 AntiVirWebService;Avira Browser-Schutz;c:\programme\Avira\AntiVir Desktop\avwebgrd.exe [17.10.2012 21:18 565024]
R2 avgwd;AVG WatchDog;c:\programme\AVG\AVG10\avgwdsvc.exe [08.02.2011 05:33 269520]
R2 Browser Manager;Browser Manager;c:\dokumente und einstellungen\All Users\Anwendungsdaten\Browser Manager\2.5.976.107\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\mngr.exe [06.12.2012 19:50 2403352]
R2 PCToolsSSDMonitorSvc;PC Tools Startup and Shutdown Monitor service;c:\programme\Gemeinsame Dateien\PC Tools\sMonitor\StartManSvc.exe [06.07.2012 17:51 793048]
R2 SearchAnonymizer;SearchAnonymizer;c:\dokumente und einstellungen\Rene Thaler\Anwendungsdaten\OCS\SM\SearchAnonymizerHelper.exe [26.12.2011 08:28 40960]
R2 TeamViewer8;TeamViewer 8;c:\programme\TeamViewer\Version8\TeamViewer_Service.exe [15.12.2012 12:12 3463080]
R3 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\drivers\AVGIDSDriver.sys [14.04.2011 21:28 134480]
R3 AVGIDSFilter;AVGIDSFilter;c:\windows\system32\drivers\AVGIDSFilter.sys [10.02.2011 07:53 24144]
R3 AVGIDSShim;AVGIDSShim;c:\windows\system32\drivers\AVGIDSShim.sys [10.02.2011 07:53 27216]
R3 HPFXFAX;HPFXFAX;c:\windows\system32\drivers\hpfxfax.sys [17.07.2007 05:29 20504]
R3 O2MDRDR;O2MDRDR;c:\windows\system32\drivers\o2media.sys [08.10.2008 19:58 48472]
R3 O2SDRDR;O2SDRDR;c:\windows\system32\drivers\o2sd.sys [08.10.2008 19:58 43480]
R3 seehcri;Sony Ericsson seehcri Device Driver;c:\windows\system32\drivers\seehcri.sys [18.08.2009 20:18 27632]
S2 AVGIDSAgent;AVGIDSAgent;c:\programme\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe [31.01.2012 15:02 7391072]
S2 gupdate1c9b87d9d58bdd2;Google Update Service (gupdate1c9b87d9d58bdd2);c:\programme\Google\Update\GoogleUpdate.exe [08.04.2009 20:09 133104]
S2 HPLinkUpZeroC;HP LinkUp Auto Discovery Service;c:\programme\Hewlett-Packard\HP LinkUp Sender\LinkUpZeroC.exe [04.10.2011 17:48 258616]
S2 SkypeUpdate;Skype Updater;c:\programme\Skype\Updater\Updater.exe [13.07.2012 12:28 160944]
S3 ewusbnet;HUAWEI USB-NDIS miniport;c:\windows\system32\drivers\ewusbnet.sys [29.05.2010 14:22 112640]
S3 FsUsbExDisk;FsUsbExDisk;c:\windows\system32\FsUsbExDisk.Sys [07.07.2011 20:11 36608]
S3 FWLANUSB;AVM FRITZ!WLAN;c:\windows\system32\drivers\fwlanusb.sys [26.10.2008 18:12 264704]
S3 ggflt;SEMC USB Flash Driver Filter;c:\windows\system32\drivers\ggflt.sys [18.08.2009 20:29 13224]
S3 hprg;hprg;c:\windows\system32\DRIVERS\hprg.sys --> c:\windows\system32\DRIVERS\hprg.sys [?]
S3 HTCAND32;HTC Device Driver;c:\windows\system32\Drivers\ANDROIDUSB.sys --> c:\windows\system32\Drivers\ANDROIDUSB.sys [?]
S3 hwusbfake;Huawei DataCard USB Fake;c:\windows\system32\drivers\ewusbfake.sys [29.05.2010 14:31 102656]
S3 NETFWDSL;AVM FRITZ!web DSL PPP;c:\windows\system32\DRIVERS\NETFWDSL.SYS --> c:\windows\system32\DRIVERS\NETFWDSL.SYS [?]
S3 s1018bus;Sony Ericsson Device 1018 driver (WDM);c:\windows\system32\drivers\s1018bus.sys [18.08.2009 20:18 86824]
S3 s1018mdfl;Sony Ericsson Device 1018 USB WMC Modem Filter;c:\windows\system32\drivers\s1018mdfl.sys [18.08.2009 20:18 15016]
S3 s1018mdm;Sony Ericsson Device 1018 USB WMC Modem Driver;c:\windows\system32\drivers\s1018mdm.sys [18.08.2009 20:18 114728]
S3 s1018mgmt;Sony Ericsson Device 1018 USB WMC Device Management Drivers (WDM);c:\windows\system32\drivers\s1018mgmt.sys [18.08.2009 20:18 106208]
S3 s1018nd5;Sony Ericsson Device 1018 USB Ethernet Emulation (NDIS);c:\windows\system32\drivers\s1018nd5.sys [18.08.2009 20:18 26024]
S3 s1018obex;Sony Ericsson Device 1018 USB WMC OBEX Interface;c:\windows\system32\drivers\s1018obex.sys [18.08.2009 20:18 104744]
S3 s1018unic;Sony Ericsson Device 1018 USB Ethernet Emulation (WDM);c:\windows\system32\drivers\s1018unic.sys [18.08.2009 20:18 109864]
S3 UDXTTM6010;Cinergy Hybrid XE BDA service;c:\windows\system32\drivers\UDXTTM6010.sys [13.05.2009 20:47 596896]
S4 MAGIX StartUp Analyze Service;MAGIX StartUp Analyze Service;c:\programme\MAGIX\PC_Check_Tuning_Free_2011\MXSAS.exe [04.11.2010 12:45 186368]
S4 PMBDeviceInfoProvider;PMBDeviceInfoProvider;c:\programme\Sony\PMB\PMBDeviceInfoProvider.exe [24.10.2009 02:18 360224]
S4 TomTomHOMEService;TomTomHOMEService;c:\programme\TomTom HOME 2\TomTomHOMEService.exe [26.07.2012 13:16 92632]
S4 VMCService;Vodafone Mobile Connect Service;c:\programme\Vodafone\Vodafone Mobile Connect\Bin\VMCService.exe [11.09.2009 11:33 9216]
.
--- Andere Dienste/Treiber im Speicher ---
.
*Deregistered* - BMLoad
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12
hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc
.
Inhalt des "geplante Tasks" Ordners
.
2013-01-06 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-03-29 19:51]
.
2012-12-31 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\programme\Apple Software Update\SoftwareUpdate.exe [2011-06-01 16:57]
.
2013-01-03 c:\windows\Tasks\Google Software Updater.job
- c:\programme\Google\Common\Google Updater\GoogleUpdaterService.exe [2008-10-08 16:30]
.
2013-01-06 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\programme\Google\Update\GoogleUpdate.exe [2009-04-08 19:09]
.
2013-01-06 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\programme\Google\Update\GoogleUpdate.exe [2009-04-08 19:09]
.
2012-12-08 c:\windows\Tasks\PCDoctorBackgroundMonitorTask.job
- c:\programme\Dell Support Center\uaclauncher.exe [2012-11-29 23:16]
.
2013-01-06 c:\windows\Tasks\RMAutoUpdate.job
- c:\programme\PC Tools Registry Mechanic\SULauncher.exe [2012-07-06 09:23]
.
2013-01-05 c:\windows\Tasks\RMSchedule.job
- c:\programme\PC Tools Registry Mechanic\RegMech.exe [2012-07-06 09:22]
.
2013-01-06 c:\windows\Tasks\Scheduled Update for Ask Toolbar.job
- c:\programme\Ask.com\UpdateTask.exe [2012-10-19 00:26]
.
.
------- Zusätzlicher Suchlauf -------
.
uStart Page = hxxp://home.sweetim.com/?crg=3.1010006.10031&barid={CFDEBC22-55D9-11E2-93D9-0A56DA6494AF}
uSearch Page = hxxp://www.google.com
uSearch Bar = hxxp://www.google.com/ie
mDefault_Search_URL = hxxp://www.google.com/ie
mStart Page = hxxp://home.sweetim.com/?crg=3.1010006.10031&barid={CFDEBC22-55D9-11E2-93D9-0A56DA6494AF}
mSearch Bar = hxxp://www.google.com/ie
uInternet Settings,ProxyOverride = *.local;<local>
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
mSearchAssistant = hxxp://www.google.com/ie
IE: An OneNote s&enden - c:\progra~1\MICROS~3\Office14\ONBttnIE.dll/105
IE: Nach Microsoft &Excel exportieren - c:\progra~1\MICROS~3\Office10\EXCEL.EXE/3000
IE: Nach Microsoft E&xcel exportieren - c:\progra~1\MICROS~3\Office14\EXCEL.EXE/3000
LSP: c:\programme\Avira\AntiVir Desktop\avsda.dll
LSP: bmnet.dll
TCP: DhcpNameServer = 192.168.2.1
FF - ProfilePath - c:\dokumente und einstellungen\Rene Thaler\Anwendungsdaten\Mozilla\Firefox\Profiles\zwrdlkib.default\
FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2736476&SearchSource=3&q={searchTerms}
FF - prefs.js: browser.search.selectedEngine - AVG Secure Search
FF - prefs.js: browser.startup.homepage - hxxp://127.0.0.1:4664/&s=ZOJmz2DNHGlPUyiUAUB6Hyk6nag
FF - prefs.js: keyword.URL - hxxp://search.avg.com/?d=50e46a5b&i=23&tp=ab&nt=1&q=
FF - ExtSQL: 2012-11-19 19:14; {CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA}; c:\programme\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA}
FF - ExtSQL: 2012-11-25 11:04; {EB9394A3-4AD6-4918-9537-31A1FD8E8EDF}; c:\dokumente und einstellungen\Rene Thaler\Anwendungsdaten\Mozilla\Firefox\Profiles\zwrdlkib.default\extensions\{EB9394A3-4AD6-4918-9537-31A1FD8E8EDF}
FF - ExtSQL: 2013-01-03 08:35; {1E73965B-8B48-48be-9C8D-68B920ABC1C4}; c:\programme\AVG\AVG10\Firefox4
FF - ExtSQL: 2013-01-03 20:14; {EEE6C361-6118-11DC-9C72-001320C79847}; c:\dokumente und einstellungen\Rene Thaler\Anwendungsdaten\Mozilla\Firefox\Profiles\zwrdlkib.default\extensions\{EEE6C361-6118-11DC-9C72-001320C79847}.xpi
FF - ExtSQL: 2013-01-03 20:26; bbrs_002@blabbers.com; c:\dokumente und einstellungen\Rene Thaler\Anwendungsdaten\Mozilla\Firefox\Profiles\zwrdlkib.default\extensions\bbrs_002@blabbers.com
FF - ExtSQL: 2013-01-04 06:48; helperbar@helperbar.com; c:\dokumente und einstellungen\Rene Thaler\Anwendungsdaten\Mozilla\Firefox\Profiles\zwrdlkib.default\extensions\helperbar@helperbar.com
FF - user.js: yahoo.homepage.dontask - true
FF - user.js: network.http.max-connections-per-server - 8
FF - user.js: network.http.max-persistent-connections-per-server - 4
FF - user.js: content.max.tokenizing.time - 1800000
FF - user.js: content.notify.interval - 600000
FF - user.js: nglayout.initialpaint.delay - 600
FF - user.js: content.switch.threshold - 600000
user_pref('extensions.dealply.partner', 'vita');
user_pref('extensions.dealply.channel', 'vitaeazel');
user_pref('extensions.dealply.installId', 'v24300240318480509677632012112511023029');
user_pref('extensions.dealply.installIdSource', 'inst');
user_pref('extensions.dealply.sampleGroup', '9');
FF - user.js: extensions.BabylonToolbar.tlbrSrchUrl - hxxp://search.babylon.com/?babsrc=TB_def&mntrId=b082fe8100000000000000234d6543d5&q=
FF - user.js: extensions.BabylonToolbar.id - b082fe8100000000000000234d6543d5
FF - user.js: extensions.BabylonToolbar.appId - {BDB69379-802F-4eaf-B541-F8DE92DD98DB}
FF - user.js: extensions.BabylonToolbar.instlDay - 15669
FF - user.js: extensions.BabylonToolbar.vrsn - 1.8.3.8
FF - user.js: extensions.BabylonToolbar.vrsni - 1.8.3.8
FF - user.js: extensions.BabylonToolbar_i.vrsnTs - 1.8.3.811:03
FF - user.js: extensions.BabylonToolbar.prtnrId - babylon
FF - user.js: extensions.BabylonToolbar.prdct - BabylonToolbar
FF - user.js: extensions.BabylonToolbar.aflt - babsst
FF - user.js: extensions.BabylonToolbar_i.smplGrp - none
FF - user.js: extensions.BabylonToolbar.tlbrId - irhnew
FF - user.js: extensions.BabylonToolbar.instlRef - sst
FF - user.js: extensions.BabylonToolbar.dfltLng - en
FF - user.js: extensions.BabylonToolbar.excTlbr - false
FF - user.js: extensions.BabylonToolbar.admin - false
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
URLSearchHooks-{A3BC75A2-1F87-4686-AA43-5347D756017C} - (no file)
Toolbar-{CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)
WebBrowser-{CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)
HKLM-Run-ROC_ROC_JULY_P1 - c:\programme\AVG Secure Search\ROC_ROC_JULY_P1.exe
MSConfigStartUp-Facebook Update - c:\dokumente und einstellungen\Rene Thaler\Lokale Einstellungen\Anwendungsdaten\Facebook\Update\FacebookUpdate.exe
MSConfigStartUp-HF_G_Jul - c:\programme\AVG Secure Search\HF_G_Jul.exe
AddRemove-Controlling - c:\programme\BMWi\BMWi Updater\ExUpdate.exe
AddRemove-DealPly - c:\programme\DealPly\uninst.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, hxxp://www.gmer.net
Rootkit scan 2013-01-06 10:33
Windows 5.1.2600 Service Pack 3 NTFS
.
Scanne versteckte Prozesse...
.
Scanne versteckte Autostarteinträge...
.
Scanne versteckte Dateien...
.
Scan erfolgreich abgeschlossen
versteckte Dateien: 0
.
**************************************************************************
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil32_11_5_502_135_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil32_11_5_502_135_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
--------------------- Durch laufende Prozesse gestartete DLLs ---------------------
.
- - - - - - - > 'winlogon.exe'(2020)
c:\windows\System32\BCMLogon.dll
.
- - - - - - - > 'explorer.exe'(2272)
c:\dokumente und einstellungen\All Users\Anwendungsdaten\Browser Manager\2.5.976.107\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\mngr.dll
c:\windows\system32\msi.dll
c:\windows\system32\WPDShServiceObj.dll
c:\programme\Roxio\Drag-to-Disc\Shellex.dll
c:\programme\Gemeinsame Dateien\Roxio Shared\9.0\DLLShared\DLAAPI_W.DLL
c:\programme\Roxio\Drag-to-Disc\ShellRes.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
------------------------ Weitere laufende Prozesse ------------------------
.
c:\windows\System32\WLTRYSVC.EXE
c:\windows\System32\bcmwltry.exe
c:\programme\Avira\AntiVir Desktop\avguard.exe
c:\programme\Gemeinsame Dateien\Apple\Mobile Device Support\AppleMobileDeviceService.exe
c:\programme\Bonjour\mDNSResponder.exe
c:\programme\Java\jre6\bin\jqs.exe
c:\programme\Gemeinsame Dateien\Microsoft Shared\VS7Debug\mdm.exe
c:\programme\Gemeinsame Dateien\Protexis\License Service\PsiService_2.exe
c:\programme\Gemeinsame Dateien\Ulead Systems\DVD\ULCDRSvr.exe
c:\programme\AVG\AVG10\avgnsx.exe
c:\programme\AVG\AVG10\avgchsvx.exe
c:\programme\Avira\AntiVir Desktop\avshadow.exe
c:\windows\system32\wbem\wmiapsrv.exe
c:\windows\system32\RUNDLL32.EXE
c:\programme\DellTPad\ApMsgFwd.exe
c:\programme\DellTPad\Apntex.exe
c:\programme\DellTPad\HidFind.exe
c:\windows\RTHDCPL.EXE
.
**************************************************************************
.
Zeit der Fertigstellung: 2013-01-06 10:37:45 - PC wurde neu gestartet
ComboFix-quarantined-files.txt 2013-01-06 09:37
.
Vor Suchlauf: 23 Verzeichnis(se), 203.897.884.672 Bytes frei
Nach Suchlauf: 25 Verzeichnis(se), 204.339.068.928 Bytes frei
.
WindowsXP-KB310994-SP2-Pro-BootDisk-DEU.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(2)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
UnsupportedDebug="do not select this" /debug
multi(0)disk(0)rdisk(0)partition(2)\WINDOWS="Microsoft Windows XP Professional" /noexecute=optin /fastdetect
.
- - End Of File - - 585032BE5ECE4B17E3C4B56115D2845B
|
|
06.01.2013, 16:54
| #29 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Erste suche adwCleaner - Toolbars und ungewollte Start-/Suchseiten aufspüren Downloade Dir bitte AdwCleaner auf deinen Desktop. Falls der adwCleaner schon mal in der runtergeladen wurde, bitte die alte adwcleaner.exe löschen und neu runterladen!!
__________________ Logfiles bitte immer in CODE-Tags posten |
|
06.01.2013, 17:14
| #30 |
| | Erste suche Ergebnis von ASW Cleaner Code:
ATTFilter # AdwCleaner v2.104 - Datei am 06/01/2013 um 17:16:20 erstellt
# Aktualisiert am 29/12/2012 von Xplode
# Betriebssystem : Microsoft Windows XP Service Pack 3 (32 bits)
# Benutzer : Rene Thaler - FUßBODENPLAN-VO
# Bootmodus : Normal
# Ausgeführt unter : C:\Dokumente und Einstellungen\Rene Thaler\Desktop\adwcleaner.exe
# Option [Suche]
**** [Dienste] ****
Gefunden : Browser Manager
***** [Dateien / Ordner] *****
Datei Gefunden : C:\WINDOWS\Tasks\Scheduled Update for Ask Toolbar.job
Ordner Gefunden : C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Ask
Ordner Gefunden : C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Babylon
Ordner Gefunden : C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Browser Manager
Ordner Gefunden : C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\SweetIM
Ordner Gefunden : C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\DealPly
Ordner Gefunden : C:\Dokumente und Einstellungen\Rene Thaler\Anwendungsdaten\Babylon
Ordner Gefunden : C:\Dokumente und Einstellungen\Rene Thaler\Anwendungsdaten\BrowserCompanion
Ordner Gefunden : C:\Programme\Ask.com
Ordner Gefunden : C:\Programme\Conduit
Ordner Gefunden : C:\Programme\SweetIM
Ordner Gefunden : C:\WINDOWS\Installer\{86D4B82A-ABED-442A-BE86-96357B70F4FE}
Ordner Gefunden : C:\WINDOWS\Installer\{A0C9DF2B-89B5-4483-8983-18A68200F1B4}
Ordner Gefunden : C:\WINDOWS\Installer\{A0C9DF2B-89B5-4483-8983-18A68200F1B4}
Ordner Gefunden : C:\WINDOWS\Installer\{E55E7026-EF2A-4A17-AAA7-DB98EA3FD1B1}
***** [Registrierungsdatenbank] *****
Schlüssel Gefunden : HKCU\Software\96d6dbe269e440
Schlüssel Gefunden : HKCU\Software\APN
Schlüssel Gefunden : HKCU\Software\AppDataLow\Software\Conduit
Schlüssel Gefunden : HKCU\Software\Ask.com
Schlüssel Gefunden : HKCU\Software\AskToolbar
Schlüssel Gefunden : HKCU\Software\AVG Security Toolbar
Schlüssel Gefunden : HKCU\Software\Babylon
Schlüssel Gefunden : HKCU\Software\Conduit
Schlüssel Gefunden : HKCU\Software\ConduitSearchScopes
Schlüssel Gefunden : HKCU\Software\DataMngr_Toolbar
Schlüssel Gefunden : HKCU\Software\DealPly
Schlüssel Gefunden : HKCU\Software\Google\Chrome\Extensions\amfclgbdpgndipgoegfpkkgobahigbcl
Schlüssel Gefunden : HKCU\Software\Google\Chrome\Extensions\gaiilaahiahdejapggenmdmafpmbipje
Schlüssel Gefunden : HKCU\Software\Microsoft\Babylon
Schlüssel Gefunden : HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
Schlüssel Gefunden : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40B7-AC73-056A5EBA4A7E}
Schlüssel Gefunden : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Schlüssel Gefunden : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{CFF4DB9B-135F-47C0-9269-B4C6572FD61A}
Schlüssel Gefunden : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}
Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{79A765E1-C399-405B-85AF-466F52E918B0}
Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\DealPly
Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\bProtectSettings
Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\{79A765E1-C399-405B-85AF-466F52E918B0}
Schlüssel Gefunden : HKCU\Software\SmartbarBackup
Schlüssel Gefunden : HKCU\Software\SmartbarLog
Schlüssel Gefunden : HKCU\Software\SweetIM
Schlüssel Gefunden : HKLM\SOFTWARE\96d6dbe269e440
Schlüssel Gefunden : HKLM\Software\APN
Schlüssel Gefunden : HKLM\Software\AskToolbar
Schlüssel Gefunden : HKLM\Software\Babylon
Schlüssel Gefunden : HKLM\Software\BrowserCompanion
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AppID\{20EDC024-43C5-423E-B7F5-FD93523E0D9F}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AppID\{373ED12D-B306-43AC-9485-A7C5133DC34C}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AppID\{ED6535E7-F778-48A5-A060-549D30024511}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AppID\GenericAskToolbar.DLL
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AppID\tdataprotocol.DLL
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AppID\updatebho.DLL
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AppID\wit4ie.DLL
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{00000000-6E41-4FD3-8538-502F5495E5FC}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{82AC53B4-164C-4B07-A016-437A8388B81A}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{A4A0CB15-8465-4F58-A7E5-73084EA2A064}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{CC5AD34C-6F10-4CB3-B74A-C2DD4D5060A3}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Installer\Features\A28B4D68DEBAA244EB686953B7074FEF
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Installer\Products\A28B4D68DEBAA244EB686953B7074FEF
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Installer\UpgradeCodes\F928123A039649549966D4C29D35B1C9
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{A439801C-961D-452C-AB42-7848E9CBD289}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{EEE6C358-6118-11DC-9C72-001320C79847}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{EEE6C359-6118-11DC-9C72-001320C79847}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{EEE6C35A-6118-11DC-9C72-001320C79847}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{F4EBB1E2-21F3-4786-8CF4-16EC5925867F}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\MediaPlayer.GraphicsUtils
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\MediaPlayer.GraphicsUtils.1
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\MgMediaPlayer.GifAnimator
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\MgMediaPlayer.GifAnimator.1
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Prod.cap
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\sim-packages
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Toolbar.CT2736476
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\TypeLib\{4D3B167E-5FD8-4276-8FD7-9DF19C1E4D19}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Schlüssel Gefunden : HKLM\Software\Conduit
Schlüssel Gefunden : HKLM\Software\DealPly
Schlüssel Gefunden : HKLM\SOFTWARE\Google\Chrome\Extensions\dhkplhfnhceodhffomolpfigojocbpcb
Schlüssel Gefunden : HKLM\SOFTWARE\Google\Chrome\Extensions\gaiilaahiahdejapggenmdmafpmbipje
Schlüssel Gefunden : HKLM\SOFTWARE\Google\Chrome\Extensions\jmfkcklnlgedgbglfkkgedjfmejoahla
Schlüssel Gefunden : HKLM\SOFTWARE\Google\Chrome\Extensions\ogccgbmabaphcakpiclgcnmcnimhokcj
Schlüssel Gefunden : HKLM\SOFTWARE\Google\Chrome\Extensions\pgafcinpmmpklohkojmllohdhomoefph
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{EEE6C367-6118-11DC-9C72-001320C79847}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SweetIM
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{15D2D75C-9CB2-4EFD-BAD7-B9B4CB4BC693}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{86D4B82A-ABED-442A-BE86-96357B70F4FE}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{E55E7026-EF2A-4A17-AAA7-DB98EA3FD1B1}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\AVG Secure Search
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\BabylonToolbar
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\BrowserCompanion
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\DealPly
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\SweetIM.exe
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0E12F736682067FDE4D1158D5940A82E
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1A24B5BB8521B03E0C8D908F5ABC0AE6
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\261F213D1F55267499B1F87D0CC3BCF7
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2B0D56C4F4C46D844A57FFED6F0D2852
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\49D4375FE41653242AEA4C969E4E65E0
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6AA0923513360135B272E8289C5F13FA
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6F7467AF8F29C134CBBAB394ECCFDE96
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\741B4ADF27276464790022C965AB6DA8
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7DE196B10195F5647A2B21B761F3DE01
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\922525DCC5199162F8935747CA3D8E59
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9D4F5849367142E4685ED8C25E44C5ED
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A5875B04372C19545BEB90D4D606C472
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A876D9E80B896EC44A8620248CC79296
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B66FFAB725B92594C986DE826A867888
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BCDA179D619B91648538E3394CAC94CC
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D677B1A9671D4D4004F6F2A4469E86EA
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DD1402A9DD4215A43ABDE169A41AFA0E
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E36E114A0EAD2AD46B381D23AD69CDDF
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EF8E618DB3AEDFBB384561B5C548F65E
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\A28B4D68DEBAA244EB686953B7074FEF
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{15D2D75C-9CB2-4EFD-BAD7-B9B4CB4BC693}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{86D4B82A-ABED-442A-BE86-96357B70F4FE}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A0C9DF2B-89B5-4483-8983-18A68200F1B4}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{E55E7026-EF2A-4A17-AAA7-DB98EA3FD1B1}
Schlüssel Gefunden : HKLM\Software\SweetIM
Schlüssel Gefunden : HKU\S-1-5-21-2944919743-4009782357-245005397-1005\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40B7-AC73-056A5EBA4A7E}
Schlüssel Gefunden : HKU\S-1-5-21-2944919743-4009782357-245005397-1005\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Schlüssel Gefunden : HKU\S-1-5-21-2944919743-4009782357-245005397-1005\Software\Microsoft\Internet Explorer\SearchScopes\{CFF4DB9B-135F-47C0-9269-B4C6572FD61A}
Schlüssel Gefunden : HKU\S-1-5-21-2944919743-4009782357-245005397-1005\Software\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}
Wert Gefunden : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{00000000-6E41-4FD3-8538-502F5495E5FC}]
Wert Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [Browser Infrastructure Helper]
Wert Gefunden : HKCU\Software\Mozilla\Firefox\extensions [{58BD07EB-0EE0-4DF0-8121-DC9B693373DF}]
Wert Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{98889811-442D-49DD-99D7-DC866BE87DBC}]
Wert Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{AE07101B-46D4-4A98-AF68-0333EA26E113}]
Wert Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{D0F4A166-B8D4-48b8-9D63-80849FE137CB}]
Wert Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [ApnUpdater]
Wert Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs [C:\Programme\SweetIM\Toolbars\Internet Explorer\mgHelperApp.exe]
Wert Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs [C:\Programme\SweetIM\Toolbars\Internet Explorer\mgToolbarProxy.dll]
***** [Internet Browser] *****
-\\ Internet Explorer v6.0.2900.5512
[HKCU\Software\Microsoft\Internet Explorer\Main - Start Page] = hxxp://home.sweetim.com/?crg=3.1010006.10031&barid={CFDEBC22-55D9-11E2-93D9-0A56DA6494AF}
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Main - Start Page] = hxxp://home.sweetim.com/?crg=3.1010006.10031&barid={CFDEBC22-55D9-11E2-93D9-0A56DA6494AF}
*************************
AdwCleaner[R1].txt - [12689 octets] - [10/12/2012 21:07:04]
AdwCleaner[R2].txt - [14429 octets] - [06/01/2013 17:16:20]
########## EOF - C:\AdwCleaner[R2].txt - [14490 octets] ##########
|
|
| Themen zu Erste suche |
| administrator, anti-malware, appdata, autostart, cache, dateien, ergebnis, explorer, fix, gelöscht, gen, helper, install.exe, jquery, langsamer, link, löschen, microsoft, programme, service pack 3, software, speicher, suche, suchmaschine, temp, test, uninstall.exe, whatsapp |
Linear-Darstellung
