| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Browser öffnet hin und wieder falsche Websiten bei klick auf linksWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
16.01.2013, 22:11
| #1 |
| |  Browser öffnet hin und wieder falsche Websiten bei klick auf links Hallo! Ich hab seit 2 Tagen folgendes Problem: Wenn ich ganz normal im Internet surfe (via firefox und IE) und auf links klicke leitet der mich ziemlich oft auf völlig falsche websiten, kurz ist auch noch zusehen das er weiterleitet, dann steht da was von redirecting to.. und dann lande ich auf irgendwelchen anderen seiten, meistens nichts "anstößiges" hab dann eine systemwiederherstellung gemacht bei der er interessanterweise D:\ nicht wiederherstellen konnte Hab dann das problem mit den links mal gegoogled und da ein paar beunruhigende sachen gefunden, dass das ganze ne phishing geschichte sein kann um an meine daten ranzukommen. Was ja eher suboptimal wär Ich hab den rechner dann vom Internet getrennt, vorsorglich via einem anderen pc meine onlinebanking bankdaten geändert und ein paar scans durchlaufen lassen Antivir und Malwarebytes finden absolut nichts, SUPER Antimalware hat ein bisschen was gefunden was aber auch nicht das problem gelöst hat (log im Anhang) hoffentlich ist es nich das was ich denke, weils Neuaufsetzen sehr aufwendig werden würde (hab weder recovery cd, noch programme noch ne festplatte zur datensicherung hier) Naja es wär echt toll wenn ihr mir helfen könntet! Danke! Logfiles sind im Anhang (OTL, Extras, Gmer, Superantispyware) |
|
16.01.2013, 22:26
| #2 |
| /// Malware-holic   | Browser öffnet hin und wieder falsche Websiten bei klick auf links Hi
__________________keine Systemwiederherstellung bei vermutetem Trojaner befall! download tdss killer: http://www.trojaner-board.de/82358-t...entfernen.html Klicke auf Change parameters • Setze die Haken bei Verify driver digital signatures und Detect TDLFS file system • Klick auf OK und anschließend auf Start scan - bei funden erst mal immer skip wählen, log posten c: öffnen, tdsskiller-datum-version.txt öffnen, Inhalt posten
__________________ |
|
16.01.2013, 22:39
| #3 |
| | Browser öffnet hin und wieder falsche Websiten bei klick auf links Hey!
__________________Danke für die schnelle Antwort! Er hat was gefunden (27 threats) Hier die Logfile: Code:
ATTFilter 22:31:37.0687 1040 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
22:31:37.0687 1040 ============================================================
22:31:37.0687 1040 Current date / time: 2013/01/16 22:31:37.0687
22:31:37.0687 1040 SystemInfo:
22:31:37.0687 1040
22:31:37.0687 1040 OS Version: 5.1.2600 ServicePack: 3.0
22:31:37.0687 1040 Product type: Workstation
22:31:37.0687 1040 ComputerName: ARBEITSPFERD
22:31:37.0687 1040 UserName: Hauke l
22:31:37.0687 1040 Windows directory: C:\WINDOWS
22:31:37.0687 1040 System windows directory: C:\WINDOWS
22:31:37.0687 1040 Processor architecture: Intel x86
22:31:37.0687 1040 Number of processors: 2
22:31:37.0687 1040 Page size: 0x1000
22:31:37.0687 1040 Boot type: Normal boot
22:31:37.0687 1040 ============================================================
22:31:41.0375 1040 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
22:31:41.0390 1040 Drive \Device\Harddisk1\DR3 - Size: 0x1D9C00000 (7.40 Gb), SectorSize: 0x200, Cylinders: 0x3C6, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
22:31:41.0390 1040 ============================================================
22:31:41.0390 1040 \Device\Harddisk0\DR0:
22:31:41.0390 1040 MBR partitions:
22:31:41.0390 1040 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x320C94ED
22:31:41.0406 1040 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x320C956B, BlocksNum 0x82BB6D6
22:31:41.0406 1040 \Device\Harddisk1\DR3:
22:31:41.0406 1040 MBR partitions:
22:31:41.0406 1040 \Device\Harddisk1\DR3\Partition1: MBR, Type 0xB, StartLBA 0x2000, BlocksNum 0xECC000
22:31:41.0406 1040 ============================================================
22:31:41.0453 1040 C: <-> \Device\Harddisk0\DR0\Partition1
22:31:41.0468 1040 D: <-> \Device\Harddisk0\DR0\Partition2
22:31:41.0515 1040 ============================================================
22:31:41.0515 1040 Initialize success
22:31:41.0515 1040 ============================================================
22:32:17.0828 2172 ============================================================
22:32:17.0828 2172 Scan started
22:32:17.0828 2172 Mode: Manual; SigCheck; TDLFS;
22:32:17.0828 2172 ============================================================
22:32:18.0859 2172 ================ Scan system memory ========================
22:32:18.0859 2172 System memory - ok
22:32:18.0859 2172 ================ Scan services =============================
22:32:18.0968 2172 [ 01E81C84AD1D0ACC61CF3CFD06632210 ] !SASCORE C:\Programme\SUPERAntiSpyware\SASCORE.EXE
22:32:19.0031 2172 !SASCORE - ok
22:32:19.0093 2172 Abiosdsk - ok
22:32:19.0093 2172 abp480n5 - ok
22:32:19.0140 2172 [ AC407F1A62C3A300B4F2B5A9F1D55B2C ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
22:32:20.0218 2172 ACPI - ok
22:32:20.0234 2172 [ 9E1CA3160DAFB159CA14F83B1E317F75 ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
22:32:20.0343 2172 ACPIEC - ok
22:32:20.0437 2172 [ 424877CB9D5517F980FF7BACA2EB379D ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
22:32:20.0453 2172 AdobeFlashPlayerUpdateSvc - ok
22:32:20.0453 2172 adpu160m - ok
22:32:20.0484 2172 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys
22:32:20.0578 2172 aec - ok
22:32:20.0625 2172 [ 2F7F3E8DA380325866E566F5D5EC23D5 ] AegisP C:\WINDOWS\system32\DRIVERS\AegisP.sys
22:32:20.0640 2172 AegisP ( UnsignedFile.Multi.Generic ) - warning
22:32:20.0640 2172 AegisP - detected UnsignedFile.Multi.Generic (1)
22:32:20.0671 2172 [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD C:\WINDOWS\System32\drivers\afd.sys
22:32:20.0718 2172 AFD - ok
22:32:20.0734 2172 Aha154x - ok
22:32:20.0734 2172 aic78u2 - ok
22:32:20.0734 2172 aic78xx - ok
22:32:20.0750 2172 [ 738D80CC01D7BC7584BE917B7F544394 ] Alerter C:\WINDOWS\system32\alrsvc.dll
22:32:20.0828 2172 Alerter - ok
22:32:20.0859 2172 [ 5AC664ECB9BD5A406E5468ED73C04CB4 ] AlesisFirewire C:\WINDOWS\system32\Drivers\AlesisFirewire.sys
22:32:20.0890 2172 AlesisFirewire ( UnsignedFile.Multi.Generic ) - warning
22:32:20.0890 2172 AlesisFirewire - detected UnsignedFile.Multi.Generic (1)
22:32:20.0921 2172 [ 0AFCA1D9E73A3160D71B6C694756C119 ] AlesisFirewireAudio C:\WINDOWS\system32\drivers\AlesisFirewireAudio.sys
22:32:20.0921 2172 AlesisFirewireAudio ( UnsignedFile.Multi.Generic ) - warning
22:32:20.0921 2172 AlesisFirewireAudio - detected UnsignedFile.Multi.Generic (1)
22:32:20.0937 2172 [ D6A979A5BA7CE2465A199F2587B9E82A ] AlesisFirewireMidi C:\WINDOWS\system32\drivers\AlesisFirewireMidi.sys
22:32:20.0937 2172 AlesisFirewireMidi ( UnsignedFile.Multi.Generic ) - warning
22:32:20.0937 2172 AlesisFirewireMidi - detected UnsignedFile.Multi.Generic (1)
22:32:20.0953 2172 [ 190CD73D4984F94D823F9444980513E5 ] ALG C:\WINDOWS\System32\alg.exe
22:32:21.0015 2172 ALG - ok
22:32:21.0015 2172 AliIde - ok
22:32:21.0078 2172 [ 267FC636801EDC5AB28E14036349E3BE ] Ambfilt C:\WINDOWS\system32\drivers\Ambfilt.sys
22:32:21.0171 2172 Ambfilt - ok
22:32:21.0187 2172 amsint - ok
22:32:21.0343 2172 [ 0FA2D8304ECA29CA0AB7E3EE50FD585A ] AntiVirSchedulerService C:\Programme\Avira\AntiVir Desktop\sched.exe
22:32:21.0375 2172 AntiVirSchedulerService - ok
22:32:21.0390 2172 [ 5C69AAC8A59207DA9710FF2E42D6F80F ] AntiVirService C:\Programme\Avira\AntiVir Desktop\avguard.exe
22:32:21.0406 2172 AntiVirService - ok
22:32:21.0421 2172 [ 255527AB98293EA390352A8C53B0042A ] AntiVirWebService C:\Programme\Avira\AntiVir Desktop\AVWEBGRD.EXE
22:32:21.0437 2172 AntiVirWebService - ok
22:32:21.0515 2172 [ 2E3E53A6AEF23E24F402C7855B9B1542 ] Apple Mobile Device C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\AppleMobileDeviceService.exe
22:32:21.0515 2172 Apple Mobile Device - ok
22:32:21.0546 2172 [ D45960BE52C3C610D361977057F98C54 ] AppMgmt C:\WINDOWS\System32\appmgmts.dll
22:32:21.0640 2172 AppMgmt - ok
22:32:21.0656 2172 [ B5B8A80875C1DEDEDA8B02765642C32F ] Arp1394 C:\WINDOWS\system32\DRIVERS\arp1394.sys
22:32:21.0750 2172 Arp1394 - ok
22:32:21.0765 2172 [ 1E0EEB62964513F4F1E18FEE3C69C43D ] Asapi C:\WINDOWS\system32\drivers\Asapi.sys
22:32:21.0765 2172 Asapi ( UnsignedFile.Multi.Generic ) - warning
22:32:21.0765 2172 Asapi - detected UnsignedFile.Multi.Generic (1)
22:32:21.0765 2172 asc - ok
22:32:21.0765 2172 asc3350p - ok
22:32:21.0781 2172 asc3550 - ok
22:32:21.0812 2172 [ 6E3F4538B33BC19259E99BE1826286A3 ] asComSvc C:\Programme\ASUS\AXSP\1.00.14\atkexComSvc.exe
22:32:21.0843 2172 asComSvc - ok
22:32:21.0906 2172 [ A63173897EA1A73A75D0E65036DE5B15 ] asHmComSvc C:\Programme\ASUS\AAHM\1.00.14\aaHMSvc.exe
22:32:21.0921 2172 asHmComSvc - ok
22:32:21.0953 2172 [ A3938D491EAEE2B83D3A3631C3273182 ] asmthub3 C:\WINDOWS\system32\DRIVERS\asmthub3.sys
22:32:21.0984 2172 asmthub3 - ok
22:32:22.0015 2172 [ FE5FFED1DBA8DA0C9064202207301BA4 ] asmtxhci C:\WINDOWS\system32\DRIVERS\asmtxhci.sys
22:32:22.0078 2172 asmtxhci - ok
22:32:22.0140 2172 [ 0E5E4957549056E2BF2C49F4F6B601AD ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
22:32:22.0171 2172 aspnet_state - ok
22:32:22.0218 2172 [ 5C31DFB196CB3A488A041881634D86D2 ] AsSysCtrlService C:\Programme\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe
22:32:22.0234 2172 AsSysCtrlService - ok
22:32:22.0250 2172 [ A9A565C669786C402752F609AFDD0DD5 ] AsUpIO C:\WINDOWS\system32\drivers\AsUpIO.sys
22:32:22.0265 2172 AsUpIO - ok
22:32:22.0281 2172 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
22:32:22.0359 2172 AsyncMac - ok
22:32:22.0390 2172 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
22:32:22.0468 2172 atapi - ok
22:32:22.0468 2172 Atdisk - ok
22:32:22.0484 2172 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
22:32:22.0562 2172 Atmarpc - ok
22:32:22.0609 2172 [ 58ED0D5452DF7BE732193E7999C6B9A4 ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
22:32:22.0671 2172 AudioSrv - ok
22:32:22.0703 2172 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
22:32:22.0781 2172 audstub - ok
22:32:22.0796 2172 [ A5C175039B1D6D85D0E79F5855828E4D ] avgntflt C:\WINDOWS\system32\DRIVERS\avgntflt.sys
22:32:22.0812 2172 avgntflt - ok
22:32:22.0843 2172 [ 37B854C7D1F477E66C5B49C7700C47CC ] avipbb C:\WINDOWS\system32\DRIVERS\avipbb.sys
22:32:22.0859 2172 avipbb - ok
22:32:22.0875 2172 [ CC4EBA25D80DE42BBC2BF3E553219388 ] avkmgr C:\WINDOWS\system32\DRIVERS\avkmgr.sys
22:32:22.0890 2172 avkmgr - ok
22:32:22.0921 2172 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
22:32:22.0984 2172 Beep - ok
22:32:23.0031 2172 [ D6F603772A789BB3228F310D650B8BD1 ] BITS C:\WINDOWS\system32\qmgr.dll
22:32:23.0093 2172 BITS - ok
22:32:23.0156 2172 [ 5AB58C337AC65837FE404462AD6265AB ] Bonjour Service C:\Programme\Bonjour\mDNSResponder.exe
22:32:23.0171 2172 Bonjour Service - ok
22:32:23.0218 2172 [ B71549F23736ADF83A571061C47777FD ] Browser C:\WINDOWS\System32\browser.dll
22:32:23.0265 2172 Browser - ok
22:32:23.0296 2172 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
22:32:23.0359 2172 cbidf2k - ok
22:32:23.0359 2172 cd20xrnt - ok
22:32:23.0375 2172 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
22:32:23.0453 2172 Cdaudio - ok
22:32:23.0468 2172 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
22:32:23.0531 2172 Cdfs - ok
22:32:23.0546 2172 [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
22:32:23.0609 2172 Cdrom - ok
22:32:23.0625 2172 Changer - ok
22:32:23.0640 2172 [ 28E3040D1F1CA2008CD6B29DFEBC9A5E ] CiSvc C:\WINDOWS\system32\cisvc.exe
22:32:23.0718 2172 CiSvc - ok
22:32:23.0750 2172 [ 778A30ED3C134EB7E406AFC407E9997D ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
22:32:23.0828 2172 ClipSrv - ok
22:32:23.0843 2172 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
22:32:23.0875 2172 clr_optimization_v2.0.50727_32 - ok
22:32:23.0875 2172 CmdIde - ok
22:32:23.0875 2172 COMSysApp - ok
22:32:23.0890 2172 Cpqarray - ok
22:32:23.0890 2172 [ 611F824E5C703A5A899F84C5F1699E4D ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
22:32:23.0953 2172 CryptSvc - ok
22:32:23.0968 2172 dac2w2k - ok
22:32:23.0968 2172 dac960nt - ok
22:32:23.0984 2172 [ BB005CB49D0638039703AC4F67FE0A05 ] DC21x4 C:\WINDOWS\system32\DRIVERS\dc21x4.sys
22:32:24.0078 2172 DC21x4 - ok
22:32:24.0125 2172 [ 3127AFBF2C1ED0AB14A1BBB7AAECB85B ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
22:32:24.0171 2172 DcomLaunch - ok
22:32:24.0203 2172 [ C29A1C9B75BA38FA37F8C44405DEC360 ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
22:32:24.0265 2172 Dhcp - ok
22:32:24.0281 2172 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
22:32:24.0359 2172 Disk - ok
22:32:24.0359 2172 dmadmin - ok
22:32:24.0390 2172 [ 0DCFC8395A99FECBB1EF771CEC7FE4EA ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
22:32:24.0500 2172 dmboot - ok
22:32:24.0500 2172 [ 53720AB12B48719D00E327DA470A619A ] dmio C:\WINDOWS\system32\drivers\dmio.sys
22:32:24.0578 2172 dmio - ok
22:32:24.0609 2172 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
22:32:24.0687 2172 dmload - ok
22:32:24.0703 2172 [ 25C83FFBBA13B554EB6D59A9B2E2EE78 ] dmserver C:\WINDOWS\System32\dmserver.dll
22:32:24.0765 2172 dmserver - ok
22:32:24.0765 2172 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
22:32:24.0828 2172 DMusic - ok
22:32:24.0859 2172 [ 407F3227AC618FD1CA54B335B083DE07 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
22:32:24.0921 2172 Dnscache - ok
22:32:24.0953 2172 [ 676E36C4FF5BCEA1900F44182B9723E6 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
22:32:25.0015 2172 Dot3svc - ok
22:32:25.0015 2172 dpti2o - ok
22:32:25.0015 2172 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
22:32:25.0093 2172 drmkaud - ok
22:32:25.0109 2172 [ 4E4F2FDDAB0A0736D7671134DCCE91FB ] EapHost C:\WINDOWS\System32\eapsvc.dll
22:32:25.0218 2172 EapHost - ok
22:32:25.0250 2172 [ 01F83E1B5DCE05F5CB7D99113CA9E890 ] emu10k C:\WINDOWS\system32\drivers\emu10k1m.sys
22:32:25.0343 2172 emu10k - ok
22:32:25.0375 2172 [ 7FFA171CCE6A8BFC774862A578BA39A2 ] emu10k1 C:\WINDOWS\system32\drivers\ctlfacem.sys
22:32:25.0453 2172 emu10k1 - ok
22:32:25.0484 2172 [ BDD170FECB0E496A914318009D85B819 ] ENTECH C:\WINDOWS\system32\DRIVERS\ENTECH.SYS
22:32:25.0484 2172 ENTECH ( UnsignedFile.Multi.Generic ) - warning
22:32:25.0484 2172 ENTECH - detected UnsignedFile.Multi.Generic (1)
22:32:25.0515 2172 [ 877C18558D70587AA7823A1A308AC96B ] ERSvc C:\WINDOWS\System32\ersvc.dll
22:32:25.0593 2172 ERSvc - ok
22:32:25.0640 2172 [ A3EDBE9053889FB24AB22492472B39DC ] Eventlog C:\WINDOWS\system32\services.exe
22:32:25.0640 2172 Eventlog - ok
22:32:25.0687 2172 [ AF4F6B5739D18CA7972AB53E091CBC74 ] EventSystem C:\WINDOWS\System32\es.dll
22:32:25.0718 2172 EventSystem - ok
22:32:25.0765 2172 Fabs - ok
22:32:25.0765 2172 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
22:32:25.0843 2172 Fastfat - ok
22:32:25.0875 2172 [ 2DB7D303C36DDD055215052F118E8E75 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
22:32:25.0921 2172 FastUserSwitchingCompatibility - ok
22:32:25.0937 2172 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\DRIVERS\fdc.sys
22:32:26.0000 2172 Fdc - ok
22:32:26.0015 2172 [ B0678A548587C5F1967B0D70BACAD6C1 ] Fips C:\WINDOWS\system32\drivers\Fips.sys
22:32:26.0078 2172 Fips - ok
22:32:26.0140 2172 [ FFF1130F7C9FA01D093A1EDFC5CCE8FC ] FirebirdServerMAGIXInstance C:\Programme\Gemeinsame Dateien\MAGIX Services\Database\bin\fbserver.exe
22:32:26.0328 2172 FirebirdServerMAGIXInstance ( UnsignedFile.Multi.Generic ) - warning
22:32:26.0343 2172 FirebirdServerMAGIXInstance - detected UnsignedFile.Multi.Generic (1)
22:32:26.0343 2172 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\DRIVERS\flpydisk.sys
22:32:26.0421 2172 Flpydisk - ok
22:32:26.0453 2172 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
22:32:26.0531 2172 FltMgr - ok
22:32:26.0593 2172 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
22:32:26.0609 2172 FontCache3.0.0.0 - ok
22:32:26.0609 2172 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
22:32:26.0687 2172 Fs_Rec - ok
22:32:26.0703 2172 [ 8F1955CE42E1484714B542F341647778 ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
22:32:26.0781 2172 Ftdisk - ok
22:32:26.0781 2172 [ 065639773D8B03F33577F6CDAEA21063 ] gameenum C:\WINDOWS\system32\DRIVERS\gameenum.sys
22:32:26.0843 2172 gameenum - ok
22:32:26.0859 2172 [ 8182FF89C65E4D38B2DE4BB0FB18564E ] GEARAspiWDM C:\WINDOWS\system32\Drivers\GEARAspiWDM.sys
22:32:26.0875 2172 GEARAspiWDM - ok
22:32:26.0890 2172 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
22:32:26.0968 2172 Gpc - ok
22:32:26.0984 2172 [ 9EB33545BC9B1CA0C9B9E6D780CE0D27 ] GT72NDISIPXP C:\WINDOWS\system32\DRIVERS\Gt51Ip.sys
22:32:27.0015 2172 GT72NDISIPXP - ok
22:32:27.0031 2172 [ 687A4B740F14C2DFF6DD7B848F50F0A6 ] GT72UBUS C:\WINDOWS\system32\DRIVERS\gt72ubus.sys
22:32:27.0078 2172 GT72UBUS - ok
22:32:27.0109 2172 [ B8D928F19FCDF9862CE2D01BC9741861 ] GtDetectSc C:\Programme\T-Mobile\web'n'walk Manager\GtDetectSc.exe
22:32:27.0125 2172 GtDetectSc ( UnsignedFile.Multi.Generic ) - warning
22:32:27.0125 2172 GtDetectSc - detected UnsignedFile.Multi.Generic (1)
22:32:27.0140 2172 [ FC80052194D5708254A346568F0E77C0 ] GTNDIS5 C:\WINDOWS\system32\GTNDIS5.SYS
22:32:27.0156 2172 GTNDIS5 ( UnsignedFile.Multi.Generic ) - warning
22:32:27.0156 2172 GTNDIS5 - detected UnsignedFile.Multi.Generic (1)
22:32:27.0171 2172 [ 346DDAEFA04E49AD804EE12D4BAA0ED3 ] GTPTSER C:\WINDOWS\system32\DRIVERS\gtptser.sys
22:32:27.0265 2172 GTPTSER - ok
22:32:27.0312 2172 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdate C:\Programme\Google\Update\GoogleUpdate.exe
22:32:27.0328 2172 gupdate - ok
22:32:27.0328 2172 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdatem C:\Programme\Google\Update\GoogleUpdate.exe
22:32:27.0343 2172 gupdatem - ok
22:32:27.0375 2172 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Programme\Google\Common\Google Updater\GoogleUpdaterService.exe
22:32:27.0390 2172 gusvc - ok
22:32:27.0421 2172 [ 3FCC124B6E08EE0E9351F717DD136939 ] HDAudBus C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
22:32:27.0437 2172 HDAudBus ( UnsignedFile.Multi.Generic ) - warning
22:32:27.0437 2172 HDAudBus - detected UnsignedFile.Multi.Generic (1)
22:32:27.0515 2172 [ CB66BF85BF599BEFD6C6A57C2E20357F ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
22:32:27.0578 2172 helpsvc - ok
22:32:27.0593 2172 [ B35DA85E60C0103F2E4104532DA2F12B ] HidServ C:\WINDOWS\System32\hidserv.dll
22:32:27.0671 2172 HidServ - ok
22:32:27.0703 2172 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] HidUsb C:\WINDOWS\system32\DRIVERS\hidusb.sys
22:32:27.0765 2172 HidUsb - ok
22:32:27.0796 2172 [ ED29F14101523A6E0E808107405D452C ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
22:32:27.0875 2172 hkmsvc - ok
22:32:27.0875 2172 hpn - ok
22:32:27.0906 2172 [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
22:32:27.0937 2172 HTTP - ok
22:32:27.0968 2172 [ 9E4ADB854CEBCFB81A4B36718FEECD16 ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
22:32:28.0046 2172 HTTPFilter - ok
22:32:28.0046 2172 i2omgmt - ok
22:32:28.0046 2172 i2omp - ok
22:32:28.0078 2172 [ E283B97CFBEB86C1D86BAED5F7846A92 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
22:32:28.0140 2172 i8042prt - ok
22:32:28.0187 2172 [ C0255E6F43DBDE7F20637A039075318D ] ialm C:\WINDOWS\system32\DRIVERS\igxpmp32.sys
22:32:28.0312 2172 ialm - ok
22:32:28.0343 2172 [ 76C3966183BD5382E14CEB6DF97D9709 ] iaStor C:\WINDOWS\system32\drivers\iaStor.sys
22:32:28.0375 2172 iaStor - ok
22:32:28.0437 2172 [ 6F95324909B502E2651442C1548AB12F ] IDriverT C:\Programme\Gemeinsame Dateien\InstallShield\Driver\1050\Intel 32\IDriverT.exe
22:32:28.0437 2172 IDriverT ( UnsignedFile.Multi.Generic ) - warning
22:32:28.0437 2172 IDriverT - detected UnsignedFile.Multi.Generic (1)
22:32:28.0500 2172 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
22:32:28.0562 2172 idsvc - ok
22:32:28.0593 2172 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
22:32:28.0656 2172 Imapi - ok
22:32:28.0703 2172 [ D4B413AA210C21E46AEDD2BA5B68D38E ] ImapiService C:\WINDOWS\System32\imapi.exe
22:32:28.0765 2172 ImapiService - ok
22:32:28.0781 2172 [ B87FC7C71632240DAC8F4D20E9CE8377 ] InCDfs C:\WINDOWS\system32\drivers\InCDfs.sys
22:32:28.0796 2172 InCDfs ( UnsignedFile.Multi.Generic ) - warning
22:32:28.0796 2172 InCDfs - detected UnsignedFile.Multi.Generic (1)
22:32:28.0796 2172 [ 2E878405128EC98886EB9C2216AC7BD6 ] InCDPass C:\WINDOWS\system32\DRIVERS\InCDPass.sys
22:32:28.0812 2172 InCDPass ( UnsignedFile.Multi.Generic ) - warning
22:32:28.0812 2172 InCDPass - detected UnsignedFile.Multi.Generic (1)
22:32:28.0828 2172 [ DDF078917A42F105385D7EB6DEBB3433 ] InCDrec C:\WINDOWS\system32\drivers\InCDrec.sys
22:32:28.0843 2172 InCDrec ( UnsignedFile.Multi.Generic ) - warning
22:32:28.0843 2172 InCDrec - detected UnsignedFile.Multi.Generic (1)
22:32:28.0875 2172 [ 7F352360E947AD2CD4BA60DE27B1A299 ] incdrm C:\WINDOWS\system32\drivers\incdrm.sys
22:32:28.0875 2172 incdrm ( UnsignedFile.Multi.Generic ) - warning
22:32:28.0875 2172 incdrm - detected UnsignedFile.Multi.Generic (1)
22:32:28.0921 2172 [ E9372A17C22FC4E5C9FD8798A97775FC ] InCDsrv C:\Programme\Ahead\InCD\InCDsrv.exe
22:32:28.0953 2172 InCDsrv ( UnsignedFile.Multi.Generic ) - warning
22:32:28.0953 2172 InCDsrv - detected UnsignedFile.Multi.Generic (1)
22:32:28.0953 2172 ini910u - ok
22:32:29.0109 2172 [ 9D04EE981B9F2AD4AFEDD5CF376F3148 ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RtkHDAud.sys
22:32:29.0265 2172 IntcAzAudAddService - ok
22:32:29.0265 2172 IntcDAud - ok
22:32:29.0265 2172 IntelIde - ok
22:32:29.0312 2172 [ 4C7D2750158ED6E7AD642D97BFFAE351 ] intelppm C:\WINDOWS\system32\DRIVERS\intelppm.sys
22:32:29.0375 2172 intelppm - ok
22:32:29.0406 2172 [ 3BB22519A194418D5FEC05D800A19AD0 ] ip6fw C:\WINDOWS\system32\drivers\ip6fw.sys
22:32:29.0484 2172 ip6fw - ok
22:32:29.0515 2172 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
22:32:29.0593 2172 IpFilterDriver - ok
22:32:29.0609 2172 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
22:32:29.0671 2172 IpInIp - ok
22:32:29.0703 2172 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
22:32:29.0781 2172 IpNat - ok
22:32:29.0812 2172 [ 8F610078437A459948480407F4DB91EA ] iPod Service C:\Programme\iPod\bin\iPodService.exe
22:32:29.0828 2172 iPod Service - ok
22:32:29.0828 2172 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
22:32:29.0906 2172 IPSec - ok
22:32:29.0921 2172 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
22:32:30.0000 2172 IRENUM - ok
22:32:30.0031 2172 [ 6DFB88F64135C525433E87648BDA30DE ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
22:32:30.0093 2172 isapnp - ok
22:32:30.0140 2172 [ B7A5FADF67136FDA7E8F25303565B674 ] ithsgt C:\WINDOWS\system32\DRIVERS\ithsgt.sys
22:32:30.0140 2172 ithsgt ( UnsignedFile.Multi.Generic ) - warning
22:32:30.0140 2172 ithsgt - detected UnsignedFile.Multi.Generic (1)
22:32:30.0250 2172 [ B591E761161D1EF547D76EF236EAA6A5 ] JavaQuickStarterService C:\Programme\Java\jre7\bin\jqs.exe
22:32:30.0265 2172 JavaQuickStarterService - ok
22:32:30.0281 2172 [ 1704D8C4C8807B889E43C649B478A452 ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
22:32:30.0359 2172 Kbdclass - ok
22:32:30.0359 2172 [ B6D6C117D771C98130497265F26D1882 ] kbdhid C:\WINDOWS\system32\DRIVERS\kbdhid.sys
22:32:30.0421 2172 kbdhid - ok
22:32:30.0437 2172 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
22:32:30.0515 2172 kmixer - ok
22:32:30.0546 2172 [ B467646C54CC746128904E1654C750C1 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
22:32:30.0609 2172 KSecDD - ok
22:32:30.0656 2172 [ CDA416A81CEDCA675CC3316A0617A213 ] L1c C:\WINDOWS\system32\DRIVERS\l1c51x86.sys
22:32:30.0671 2172 L1c - ok
22:32:30.0687 2172 [ CD83854B89BD69F86225D9FC086C1ABF ] L6DP C:\WINDOWS\system32\Drivers\l6dp.sys
22:32:30.0703 2172 L6DP ( UnsignedFile.Multi.Generic ) - warning
22:32:30.0703 2172 L6DP - detected UnsignedFile.Multi.Generic (1)
22:32:30.0718 2172 [ 585E0A1368A84D4FBEDCA77418A9F7F1 ] L6TPortA C:\WINDOWS\system32\Drivers\L6TPortA.sys
22:32:30.0734 2172 L6TPortA ( UnsignedFile.Multi.Generic ) - warning
22:32:30.0734 2172 L6TPortA - detected UnsignedFile.Multi.Generic (1)
22:32:30.0765 2172 [ 2BBDCB79900990F0716DFCB714E72DE7 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
22:32:30.0812 2172 lanmanserver - ok
22:32:30.0828 2172 [ 1869B14B06B44B44AF70548E1EA3303F ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
22:32:30.0859 2172 lanmanworkstation - ok
22:32:30.0859 2172 lbrtfdc - ok
22:32:30.0875 2172 [ 16767EA492B5D140E1DE3679A65EAE74 ] lilsgt C:\WINDOWS\system32\DRIVERS\lilsgt.sys
22:32:30.0890 2172 lilsgt ( UnsignedFile.Multi.Generic ) - warning
22:32:30.0890 2172 lilsgt - detected UnsignedFile.Multi.Generic (1)
22:32:30.0921 2172 [ 636714B7D43C8D0C80449123FD266920 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
22:32:31.0000 2172 LmHosts - ok
22:32:31.0046 2172 [ 07A3A53BDE18961C5026AE94D6FF8921 ] MAFWPROFIRE C:\WINDOWS\system32\DRIVERS\MAudioProFire.sys
22:32:31.0062 2172 MAFWPROFIRE - ok
22:32:31.0156 2172 [ 34933232C17FBBFE2E224E5C536A48CF ] MagixASIODrv C:\Programme\MAGIX\Samplitude_11\mxasio.sys
22:32:31.0171 2172 MagixASIODrv ( UnsignedFile.Multi.Generic ) - warning
22:32:31.0171 2172 MagixASIODrv - detected UnsignedFile.Multi.Generic (1)
22:32:31.0187 2172 [ 050AF61670D668610F27AA2C99996AFD ] MAUSBFASTTRACKPRO C:\WINDOWS\system32\DRIVERS\MAudioFastTrackPro.sys
22:32:31.0203 2172 MAUSBFASTTRACKPRO - ok
22:32:31.0218 2172 [ 629CABB0421668C9D3D402A3C3D77E14 ] MBAMProtector C:\WINDOWS\system32\drivers\mbam.sys
22:32:31.0234 2172 MBAMProtector - ok
22:32:31.0281 2172 [ 1ACAA67676E9E7BDA5E0C41B6E0DECAF ] MBAMScheduler C:\Programme\Malwarebytes' Anti-Malware\mbamscheduler.exe
22:32:31.0296 2172 MBAMScheduler - ok
22:32:31.0421 2172 [ 916B8954AC3E06DC9E898AFFB41F3FB6 ] MBAMService C:\Programme\Malwarebytes' Anti-Malware\mbamservice.exe
22:32:31.0437 2172 MBAMService - ok
22:32:31.0468 2172 [ B7550A7107281D170CE85524B1488C98 ] Messenger C:\WINDOWS\System32\msgsvc.dll
22:32:31.0546 2172 Messenger - ok
22:32:31.0578 2172 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
22:32:31.0656 2172 mnmdd - ok
22:32:31.0687 2172 [ C2F1D365FD96791B037EE504868065D3 ] mnmsrvc C:\WINDOWS\System32\mnmsrvc.exe
22:32:31.0765 2172 mnmsrvc - ok
22:32:31.0781 2172 [ 6FB74EBD4EC57A6F1781DE3852CC3362 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
22:32:31.0859 2172 Modem - ok
22:32:31.0890 2172 [ C7D9F9717916B34C1B00DD4834AF485C ] Monfilt C:\WINDOWS\system32\drivers\Monfilt.sys
22:32:31.0984 2172 Monfilt - ok
22:32:32.0000 2172 [ B24CE8005DEAB254C0251E15CB71D802 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
22:32:32.0062 2172 Mouclass - ok
22:32:32.0093 2172 [ 66A6F73C74E1791464160A7065CE711A ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys
22:32:32.0156 2172 mouhid - ok
22:32:32.0187 2172 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
22:32:32.0250 2172 MountMgr - ok
22:32:32.0312 2172 [ CB8AF049AC9BE419A77ADAE288673359 ] MozillaMaintenance C:\Programme\Mozilla Maintenance Service\maintenanceservice.exe
22:32:32.0343 2172 MozillaMaintenance - ok
22:32:32.0359 2172 mraid35x - ok
22:32:32.0359 2172 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
22:32:32.0437 2172 MRxDAV - ok
22:32:32.0468 2172 [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
22:32:32.0531 2172 MRxSmb - ok
22:32:32.0562 2172 [ 35A031AF38C55F92D28AA03EE9F12CC9 ] MSDTC C:\WINDOWS\System32\msdtc.exe
22:32:32.0625 2172 MSDTC - ok
22:32:32.0640 2172 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
22:32:32.0703 2172 Msfs - ok
22:32:32.0703 2172 MSIServer - ok
22:32:32.0718 2172 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
22:32:32.0781 2172 MSKSSRV - ok
22:32:32.0796 2172 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
22:32:32.0859 2172 MSPCLOCK - ok
22:32:32.0875 2172 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
22:32:32.0937 2172 MSPQM - ok
22:32:32.0937 2172 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
22:32:33.0000 2172 mssmbios - ok
22:32:33.0015 2172 [ D48659BB24C48345D926ECB45C1EBDF5 ] MTsensor C:\WINDOWS\system32\DRIVERS\ASACPI.sys
22:32:33.0046 2172 MTsensor - ok
22:32:33.0062 2172 [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
22:32:33.0093 2172 Mup - ok
22:32:33.0140 2172 [ 46BB15AE2AC7D025D6D2567B876817BD ] napagent C:\WINDOWS\System32\qagentrt.dll
22:32:33.0234 2172 napagent - ok
22:32:33.0234 2172 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
22:32:33.0312 2172 NDIS - ok
22:32:33.0343 2172 [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
22:32:33.0390 2172 NdisTapi - ok
22:32:33.0437 2172 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
22:32:33.0515 2172 Ndisuio - ok
22:32:33.0515 2172 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
22:32:33.0578 2172 NdisWan - ok
22:32:33.0609 2172 [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
22:32:33.0656 2172 NDProxy - ok
22:32:33.0671 2172 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
22:32:33.0734 2172 NetBIOS - ok
22:32:33.0750 2172 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
22:32:33.0828 2172 NetBT - ok
22:32:33.0859 2172 [ 8ACE4251BFFD09CE75679FE940E996CC ] NetDDE C:\WINDOWS\system32\netdde.exe
22:32:33.0921 2172 NetDDE - ok
22:32:33.0937 2172 [ 8ACE4251BFFD09CE75679FE940E996CC ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
22:32:34.0000 2172 NetDDEdsdm - ok
22:32:34.0015 2172 [ AFB8261B56CBA0D86AEB6DF682AF9785 ] Netlogon C:\WINDOWS\System32\lsass.exe
22:32:34.0078 2172 Netlogon - ok
22:32:34.0125 2172 [ E6D88F1F6745BF00B57E7855A2AB696C ] Netman C:\WINDOWS\System32\netman.dll
22:32:34.0187 2172 Netman - ok
22:32:34.0218 2172 [ D34612C5D02D026535B3095D620626AE ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
22:32:34.0234 2172 NetTcpPortSharing - ok
22:32:34.0250 2172 [ E9E47CFB2D461FA0FC75B7A74C6383EA ] NIC1394 C:\WINDOWS\system32\DRIVERS\nic1394.sys
22:32:34.0343 2172 NIC1394 - ok
22:32:34.0375 2172 [ F1B67B6B0751AE0E6E964B02821206A3 ] Nla C:\WINDOWS\System32\mswsock.dll
22:32:34.0390 2172 Nla - ok
22:32:34.0390 2172 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
22:32:34.0453 2172 Npfs - ok
22:32:34.0468 2172 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
22:32:34.0546 2172 Ntfs - ok
22:32:34.0546 2172 [ AFB8261B56CBA0D86AEB6DF682AF9785 ] NtLmSsp C:\WINDOWS\System32\lsass.exe
22:32:34.0609 2172 NtLmSsp - ok
22:32:34.0640 2172 [ 56AF4064996FA5BAC9C449B1514B4770 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
22:32:34.0734 2172 NtmsSvc - ok
22:32:34.0750 2172 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
22:32:34.0828 2172 Null - ok
22:32:35.0031 2172 [ ED9816DBAF6689542EA7D022631906A1 ] nv C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
22:32:35.0437 2172 nv - ok
22:32:35.0468 2172 [ A2322C6207EBB0761A6C8CC9003EBACF ] NVSvc C:\WINDOWS\system32\nvsvc32.exe
22:32:35.0484 2172 NVSvc - ok
22:32:35.0531 2172 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
22:32:35.0609 2172 NwlnkFlt - ok
22:32:35.0609 2172 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
22:32:35.0687 2172 NwlnkFwd - ok
22:32:35.0718 2172 [ CA33832DF41AFB202EE7AEB05145922F ] ohci1394 C:\WINDOWS\system32\DRIVERS\ohci1394.sys
22:32:35.0781 2172 ohci1394 - ok
22:32:35.0812 2172 [ 7A56CF3E3F12E8AF599963B16F50FB6A ] ose C:\Programme\Gemeinsame Dateien\Microsoft Shared\Source Engine\OSE.EXE
22:32:35.0828 2172 ose - ok
22:32:35.0843 2172 ossrv - ok
22:32:35.0843 2172 [ F84785660305B9B903FB3BCA8BA29837 ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
22:32:35.0921 2172 Parport - ok
22:32:35.0937 2172 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
22:32:36.0000 2172 PartMgr - ok
22:32:36.0031 2172 [ C2BF987829099A3EAA2CA6A0A90ECB4F ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
22:32:36.0109 2172 ParVdm - ok
22:32:36.0125 2172 [ 387E8DEDC343AA2D1EFBC30580273ACD ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
22:32:36.0187 2172 PCI - ok
22:32:36.0187 2172 PCIDump - ok
22:32:36.0203 2172 [ 59BA86D9A61CBCF4DF8E598C331F5B82 ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
22:32:36.0281 2172 PCIIde - ok
22:32:36.0312 2172 [ A2A966B77D61847D61A3051DF87C8C97 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
22:32:36.0375 2172 Pcmcia - ok
22:32:36.0375 2172 PDCOMP - ok
22:32:36.0375 2172 PDFRAME - ok
22:32:36.0390 2172 PDRELI - ok
22:32:36.0390 2172 PDRFRAME - ok
22:32:36.0390 2172 perc2 - ok
22:32:36.0390 2172 perc2hib - ok
22:32:36.0406 2172 [ B293F05AD9120B0232C28945C1E98CD0 ] PfModNT C:\WINDOWS\system32\PfModNT.sys
22:32:36.0421 2172 PfModNT ( UnsignedFile.Multi.Generic ) - warning
22:32:36.0421 2172 PfModNT - detected UnsignedFile.Multi.Generic (1)
22:32:36.0437 2172 [ A3EDBE9053889FB24AB22492472B39DC ] PlugPlay C:\WINDOWS\system32\services.exe
22:32:36.0437 2172 PlugPlay - ok
22:32:36.0546 2172 pnicml - ok
22:32:36.0546 2172 [ AFB8261B56CBA0D86AEB6DF682AF9785 ] PolicyAgent C:\WINDOWS\System32\lsass.exe
22:32:36.0609 2172 PolicyAgent - ok
22:32:36.0640 2172 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
22:32:36.0703 2172 PptpMiniport - ok
22:32:36.0703 2172 [ 2CB55427C58679F49AD600FCCBA76360 ] Processor C:\WINDOWS\system32\DRIVERS\processr.sys
22:32:36.0765 2172 Processor - ok
22:32:36.0781 2172 [ AFB8261B56CBA0D86AEB6DF682AF9785 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
22:32:36.0843 2172 ProtectedStorage - ok
22:32:36.0843 2172 [ 09298EC810B07E5D582CB3A3F9255424 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
22:32:36.0906 2172 PSched - ok
22:32:36.0937 2172 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
22:32:37.0000 2172 Ptilink - ok
22:32:37.0000 2172 [ D86B4A68565E444D76457F14172C875A ] PxHelp20 C:\WINDOWS\system32\Drivers\PxHelp20.sys
22:32:37.0015 2172 PxHelp20 - ok
22:32:37.0031 2172 ql1080 - ok
22:32:37.0031 2172 Ql10wnt - ok
22:32:37.0031 2172 ql12160 - ok
22:32:37.0031 2172 ql1240 - ok
22:32:37.0046 2172 ql1280 - ok
22:32:37.0062 2172 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
22:32:37.0125 2172 RasAcd - ok
22:32:37.0156 2172 [ F5BA6CACCDB66C8F048E867563203246 ] RasAuto C:\WINDOWS\System32\rasauto.dll
22:32:37.0234 2172 RasAuto - ok
22:32:37.0250 2172 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
22:32:37.0312 2172 Rasl2tp - ok
22:32:37.0343 2172 [ F9A7B66EA345726EDB5862A46B1ECCD5 ] RasMan C:\WINDOWS\System32\rasmans.dll
22:32:37.0421 2172 RasMan - ok
22:32:37.0421 2172 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
22:32:37.0484 2172 RasPppoe - ok
22:32:37.0500 2172 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
22:32:37.0562 2172 Raspti - ok
22:32:37.0593 2172 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
22:32:37.0671 2172 Rdbss - ok
22:32:37.0687 2172 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
22:32:37.0750 2172 RDPCDD - ok
22:32:37.0765 2172 [ 15CABD0F7C00C47C70124907916AF3F1 ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys
22:32:37.0828 2172 rdpdr - ok
22:32:37.0875 2172 [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
22:32:37.0906 2172 RDPWD - ok
22:32:37.0921 2172 [ 263AF18AF0F3DB99F574C95F284CCEC9 ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
22:32:38.0000 2172 RDSessMgr - ok
22:32:38.0031 2172 [ ED761D453856F795A7FE056E42C36365 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
22:32:38.0093 2172 redbook - ok
22:32:38.0125 2172 [ 0E97EC96D6942CEEC2D188CC2EB69A01 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
22:32:38.0203 2172 RemoteAccess - ok
22:32:38.0218 2172 [ E4CD1F3D84E1C2CA0B8CF7501E201593 ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
22:32:38.0281 2172 RemoteRegistry - ok
22:32:38.0343 2172 [ 616F6E52CAE254727A886BA8EDA1BEEA ] RichVideo C:\Programme\CyberLink\Shared Files\RichVideo.exe
22:32:38.0359 2172 RichVideo - ok
22:32:38.0359 2172 RkHit - ok
22:32:38.0390 2172 [ 2A02E21867497DF20B8FC95631395169 ] RpcLocator C:\WINDOWS\System32\locator.exe
22:32:38.0453 2172 RpcLocator - ok
22:32:38.0484 2172 [ 3127AFBF2C1ED0AB14A1BBB7AAECB85B ] RpcSs C:\WINDOWS\system32\rpcss.dll
22:32:38.0500 2172 RpcSs - ok
22:32:38.0531 2172 [ 4BDD71B4B521521499DFD14735C4F398 ] RSVP C:\WINDOWS\System32\rsvp.exe
22:32:38.0625 2172 RSVP - ok
22:32:38.0671 2172 [ 581E74880AEB1DBA1CB5AC8E6E6C0A69 ] RT61 C:\WINDOWS\system32\DRIVERS\RT61.sys
22:32:38.0718 2172 RT61 - ok
22:32:38.0734 2172 RTL8023xp - ok
22:32:38.0765 2172 [ D507C1400284176573224903819FFDA3 ] rtl8139 C:\WINDOWS\system32\DRIVERS\RTL8139.SYS
22:32:38.0828 2172 rtl8139 - ok
22:32:38.0843 2172 RTLE8023xp - ok
22:32:38.0859 2172 [ AFB8261B56CBA0D86AEB6DF682AF9785 ] SamSs C:\WINDOWS\system32\lsass.exe
22:32:38.0921 2172 SamSs - ok
22:32:38.0968 2172 [ 39763504067962108505BFF25F024345 ] SASDIFSV C:\Programme\SUPERAntiSpyware\SASDIFSV.SYS
22:32:38.0984 2172 SASDIFSV - ok
22:32:39.0015 2172 [ 77B9FC20084B48408AD3E87570EB4A85 ] SASKUTIL C:\Programme\SUPERAntiSpyware\SASKUTIL.SYS
22:32:39.0031 2172 SASKUTIL - ok
22:32:39.0093 2172 [ A829D52394CBA22F1B101EABF7B5FB14 ] sc4stupmngrService C:\Programme\SimCity4 StartupManager\sumservice.exe
22:32:39.0125 2172 sc4stupmngrService ( UnsignedFile.Multi.Generic ) - warning
22:32:39.0125 2172 sc4stupmngrService - detected UnsignedFile.Multi.Generic (1)
22:32:39.0156 2172 [ DCEC079FAD95D36C8DD5CB6D779DFE32 ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
22:32:39.0250 2172 SCardSvr - ok
22:32:39.0281 2172 [ A050194A44D7FA8D7186ED2F4E8367AE ] Schedule C:\WINDOWS\system32\schedsvc.dll
22:32:39.0343 2172 Schedule - ok
22:32:39.0375 2172 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
22:32:39.0437 2172 Secdrv - ok
22:32:39.0453 2172 [ BEE4CFD1D48C23B44CF4B974B0B79B2B ] seclogon C:\WINDOWS\System32\seclogon.dll
22:32:39.0515 2172 seclogon - ok
22:32:39.0515 2172 [ 2AAC9B6ED9EDDFFB721D6452E34D67E3 ] SENS C:\WINDOWS\system32\sens.dll
22:32:39.0578 2172 SENS - ok
22:32:39.0625 2172 [ 0F29512CCD6BEAD730039FB4BD2C85CE ] serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
22:32:39.0687 2172 serenum - ok
22:32:39.0734 2172 [ CF24EB4F0412C82BCD1F4F35A025E31D ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
22:32:39.0796 2172 Serial - ok
22:32:39.0828 2172 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
22:32:39.0890 2172 Sfloppy - ok
22:32:39.0921 2172 [ 0B1A5E9CACB5CDD54A2815107BD7C772 ] sfman C:\WINDOWS\system32\drivers\sfmanm.sys
22:32:40.0015 2172 sfman - ok
22:32:40.0046 2172 [ CAD058D5F8B889A87CA3EB3CF624DCEF ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
22:32:40.0156 2172 SharedAccess - ok
22:32:40.0171 2172 [ 2DB7D303C36DDD055215052F118E8E75 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
22:32:40.0187 2172 ShellHWDetection - ok
22:32:40.0187 2172 Simbad - ok
22:32:40.0234 2172 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Programme\Skype\Updater\Updater.exe
22:32:40.0250 2172 SkypeUpdate - ok
22:32:40.0265 2172 [ A1ECEEAA5C5E74B2499EB51D38185B84 ] SONYPVU1 C:\WINDOWS\system32\DRIVERS\SONYPVU1.SYS
22:32:40.0343 2172 SONYPVU1 - ok
22:32:40.0343 2172 Sparrow - ok
22:32:40.0375 2172 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
22:32:40.0437 2172 splitter - ok
22:32:40.0453 2172 [ 60784F891563FB1B767F70117FC2428F ] Spooler C:\WINDOWS\system32\spoolsv.exe
22:32:40.0500 2172 Spooler - ok
22:32:40.0531 2172 [ 50FA898F8C032796D3B1B9951BB5A90F ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
22:32:40.0593 2172 sr - ok
22:32:40.0625 2172 [ FE77A85495065F3AD59C5C65B6C54182 ] srservice C:\WINDOWS\System32\srsvc.dll
22:32:40.0687 2172 srservice - ok
22:32:40.0703 2172 [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
22:32:40.0781 2172 Srv - ok
22:32:40.0781 2172 srvC00 - ok
22:32:40.0812 2172 [ 4DF5B05DFAEC29E13E1ED6F6EE12C500 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
22:32:40.0875 2172 SSDPSRV - ok
22:32:40.0921 2172 [ B9E31F2A3640403B0EA3A867BB73B9F4 ] SSHDRV86 C:\WINDOWS\system32\drivers\SSHDRV86.sys
22:32:40.0968 2172 SSHDRV86 ( UnsignedFile.Multi.Generic ) - warning
22:32:40.0968 2172 SSHDRV86 - detected UnsignedFile.Multi.Generic (1)
22:32:41.0000 2172 [ A36EE93698802CD899F98BFD553D8185 ] ssmdrv C:\WINDOWS\system32\DRIVERS\ssmdrv.sys
22:32:41.0015 2172 ssmdrv - ok
22:32:41.0062 2172 [ BC2C5985611C5356B24AEB370953DED9 ] stisvc C:\WINDOWS\system32\wiaservc.dll
22:32:41.0125 2172 stisvc - ok
22:32:41.0140 2172 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
22:32:41.0203 2172 swenum - ok
22:32:41.0218 2172 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
22:32:41.0281 2172 swmidi - ok
22:32:41.0281 2172 SwPrv - ok
22:32:41.0296 2172 symc810 - ok
22:32:41.0296 2172 symc8xx - ok
22:32:41.0296 2172 sym_hi - ok
22:32:41.0312 2172 sym_u3 - ok
22:32:41.0328 2172 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
22:32:41.0390 2172 sysaudio - ok
22:32:41.0406 2172 [ 2903FFFA2523926D6219428040DCE6B9 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
22:32:41.0468 2172 SysmonLog - ok
22:32:41.0500 2172 [ 05903CAC4B98908D55EA5774775B382E ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
22:32:41.0562 2172 TapiSrv - ok
22:32:41.0609 2172 [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
22:32:41.0671 2172 Tcpip - ok
22:32:41.0703 2172 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
22:32:41.0765 2172 TDPIPE - ok
22:32:41.0765 2172 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
22:32:41.0828 2172 TDTCP - ok
22:32:41.0828 2172 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
22:32:41.0906 2172 TermDD - ok
22:32:41.0906 2172 [ B7DE02C863D8F5A005A7BF375375A6A4 ] TermService C:\WINDOWS\System32\termsrv.dll
22:32:41.0984 2172 TermService - ok
22:32:42.0015 2172 [ 2DB7D303C36DDD055215052F118E8E75 ] Themes C:\WINDOWS\System32\shsvcs.dll
22:32:42.0031 2172 Themes - ok
22:32:42.0062 2172 [ 03681A1CE77F51586903869A5AB1DEAB ] TlntSvr C:\WINDOWS\System32\tlntsvr.exe
22:32:42.0140 2172 TlntSvr - ok
22:32:42.0140 2172 TosIde - ok
22:32:42.0156 2172 [ 626504572B175867F30F3215C04B3E2F ] TrkWks C:\WINDOWS\system32\trkwks.dll
22:32:42.0218 2172 TrkWks - ok
22:32:42.0234 2172 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
22:32:42.0296 2172 Udfs - ok
22:32:42.0296 2172 ultra - ok
22:32:42.0343 2172 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
22:32:42.0437 2172 Update - ok
22:32:42.0453 2172 [ 1DFD8975D8C89214B98D9387C1125B49 ] upnphost C:\WINDOWS\System32\upnphost.dll
22:32:42.0531 2172 upnphost - ok
22:32:42.0546 2172 [ 9B11E6118958E63E1FEF129466E2BDA7 ] UPS C:\WINDOWS\System32\ups.exe
22:32:42.0609 2172 UPS - ok
22:32:42.0625 2172 [ C1CA131F4E3ED63D6BC89A35FFAD4CDA ] USBAAPL C:\WINDOWS\system32\Drivers\usbaapl.sys
22:32:42.0656 2172 USBAAPL ( UnsignedFile.Multi.Generic ) - warning
22:32:42.0656 2172 USBAAPL - detected UnsignedFile.Multi.Generic (1)
22:32:42.0671 2172 [ E919708DB44ED8543A7C017953148330 ] usbaudio C:\WINDOWS\system32\drivers\usbaudio.sys
22:32:42.0734 2172 usbaudio - ok
22:32:42.0750 2172 [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
22:32:42.0812 2172 usbccgp - ok
22:32:42.0843 2172 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
22:32:42.0906 2172 usbehci - ok
22:32:42.0921 2172 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
22:32:42.0984 2172 usbhub - ok
22:32:43.0015 2172 [ A717C8721046828520C9EDF31288FC00 ] usbprint C:\WINDOWS\system32\DRIVERS\usbprint.sys
22:32:43.0078 2172 usbprint - ok
22:32:43.0093 2172 [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
22:32:43.0187 2172 usbscan - ok
22:32:43.0187 2172 [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
22:32:43.0250 2172 USBSTOR - ok
22:32:43.0265 2172 [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
22:32:43.0328 2172 usbuhci - ok
22:32:43.0343 2172 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
22:32:43.0406 2172 VgaSave - ok
22:32:43.0406 2172 ViaIde - ok
22:32:43.0421 2172 [ A5A712F4E880874A477AF790B5186E1D ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
22:32:43.0484 2172 VolSnap - ok
22:32:43.0515 2172 [ 68F106273BE29E7B7EF8266977268E78 ] VSS C:\WINDOWS\System32\vssvc.exe
22:32:43.0609 2172 VSS - ok
22:32:43.0625 2172 [ 7B353059E665F8B7AD2BBEAEF597CF45 ] W32Time C:\WINDOWS\System32\w32time.dll
22:32:43.0687 2172 W32Time - ok
22:32:43.0718 2172 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
22:32:43.0781 2172 Wanarp - ok
22:32:43.0781 2172 WDICA - ok
22:32:43.0796 2172 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
22:32:43.0859 2172 wdmaud - ok
22:32:43.0890 2172 [ 81727C9873E3905A2FFC1EBD07265002 ] WebClient C:\WINDOWS\System32\webclnt.dll
22:32:43.0953 2172 WebClient - ok
22:32:44.0031 2172 [ 6F3F3973D97714CC5F906A19FE883729 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
22:32:44.0093 2172 winmgmt - ok
22:32:44.0125 2172 [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN C:\WINDOWS\system32\MsPMSNSv.dll
22:32:44.0187 2172 WmdmPmSN - ok
22:32:44.0218 2172 [ FFA4D901D46D07A5BAB2D8307FBB51A6 ] Wmi C:\WINDOWS\System32\advapi32.dll
22:32:44.0234 2172 Wmi - ok
22:32:44.0265 2172 [ C42584FD66CE9E17403AEBCA199F7BDB ] WmiAcpi C:\WINDOWS\system32\DRIVERS\wmiacpi.sys
22:32:44.0328 2172 WmiAcpi - ok
22:32:44.0343 2172 [ 93908111BA57A6E60EC2FA2DE202105C ] WmiApSrv C:\WINDOWS\System32\wbem\wmiapsrv.exe
22:32:44.0421 2172 WmiApSrv - ok
22:32:44.0468 2172 [ CCFDECD6060EA8EB0F8466782A97FF21 ] WMP54Gv4SVC C:\Programme\Linksys Wireless-G PCI Wireless Network Monitor\WLService.exe
22:32:44.0468 2172 WMP54Gv4SVC ( UnsignedFile.Multi.Generic ) - warning
22:32:44.0468 2172 WMP54Gv4SVC - detected UnsignedFile.Multi.Generic (1)
22:32:44.0531 2172 [ F74E3D9A7FA9556C3BBB14D4E5E63D3B ] WMPNetworkSvc C:\Programme\Windows Media Player\WMPNetwk.exe
22:32:44.0656 2172 WMPNetworkSvc - ok
22:32:44.0671 2172 [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] WS2IFSL C:\WINDOWS\System32\drivers\ws2ifsl.sys
22:32:44.0765 2172 WS2IFSL - ok
22:32:44.0796 2172 [ 300B3E84FAF1A5C1F791C159BA28035D ] wscsvc C:\WINDOWS\system32\wscsvc.dll
22:32:44.0875 2172 wscsvc - ok
22:32:44.0890 2172 [ 7B4FE05202AA6BF9F4DFD0E6A0D8A085 ] wuauserv C:\WINDOWS\system32\wuauserv.dll
22:32:44.0953 2172 wuauserv - ok
22:32:44.0968 2172 [ F15FEAFFFBB3644CCC80C5DA584E6311 ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
22:32:45.0000 2172 WudfPf - ok
22:32:45.0031 2172 [ 28B524262BCE6DE1F7EF9F510BA3985B ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
22:32:45.0046 2172 WudfRd - ok
22:32:45.0062 2172 [ 05231C04253C5BC30B26CBAAE680ED89 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
22:32:45.0078 2172 WudfSvc - ok
22:32:45.0125 2172 [ C4F109C005F6725162D2D12CA751E4A7 ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
22:32:45.0187 2172 WZCSVC - ok
22:32:45.0234 2172 [ 0ADA34871A2E1CD2CAAFED1237A47750 ] xmlprov C:\WINDOWS\System32\xmlprov.dll
22:32:45.0312 2172 xmlprov - ok
22:32:45.0328 2172 ================ Scan global ===============================
22:32:45.0359 2172 [ 2C60091CA5F67C3032EAB3B30390C27F ] C:\WINDOWS\system32\basesrv.dll
22:32:45.0406 2172 [ A28CE25B59C90E12743001A1F2AE3613 ] C:\WINDOWS\system32\winsrv.dll
22:32:45.0406 2172 [ A28CE25B59C90E12743001A1F2AE3613 ] C:\WINDOWS\system32\winsrv.dll
22:32:45.0421 2172 [ A3EDBE9053889FB24AB22492472B39DC ] C:\WINDOWS\system32\services.exe
22:32:45.0421 2172 [Global] - ok
22:32:45.0421 2172 ================ Scan MBR ==================================
22:32:45.0437 2172 [ 4111774B1E16AE44D34BC4424B3EA5F9 ] \Device\Harddisk0\DR0
22:32:45.0625 2172 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
22:32:45.0625 2172 \Device\Harddisk0\DR0 - detected TDSS File System (1)
22:32:45.0625 2172 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk1\DR3
22:32:45.0765 2172 \Device\Harddisk1\DR3 - ok
22:32:45.0765 2172 ================ Scan VBR ==================================
22:32:45.0765 2172 [ 04F69B2A74F4B9238AE4AA1E6D384D1F ] \Device\Harddisk0\DR0\Partition1
22:32:45.0765 2172 \Device\Harddisk0\DR0\Partition1 - ok
22:32:45.0765 2172 [ BCA10F0690AB45BDC01C104667BB1BF4 ] \Device\Harddisk0\DR0\Partition2
22:32:45.0781 2172 \Device\Harddisk0\DR0\Partition2 - ok
22:32:45.0781 2172 [ FA741FD72D659919DAB0C2706A6D5451 ] \Device\Harddisk1\DR3\Partition1
22:32:45.0781 2172 \Device\Harddisk1\DR3\Partition1 - ok
22:32:45.0781 2172 ============================================================
22:32:45.0781 2172 Scan finished
22:32:45.0781 2172 ============================================================
22:32:45.0890 2148 Detected object count: 27
22:32:45.0890 2148 Actual detected object count: 27
22:33:26.0484 2148 AegisP ( UnsignedFile.Multi.Generic ) - skipped by user
22:33:26.0484 2148 AegisP ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:33:26.0484 2148 AlesisFirewire ( UnsignedFile.Multi.Generic ) - skipped by user
22:33:26.0484 2148 AlesisFirewire ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:33:26.0500 2148 AlesisFirewireAudio ( UnsignedFile.Multi.Generic ) - skipped by user
22:33:26.0500 2148 AlesisFirewireAudio ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:33:26.0500 2148 AlesisFirewireMidi ( UnsignedFile.Multi.Generic ) - skipped by user
22:33:26.0500 2148 AlesisFirewireMidi ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:33:26.0500 2148 Asapi ( UnsignedFile.Multi.Generic ) - skipped by user
22:33:26.0500 2148 Asapi ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:33:26.0500 2148 ENTECH ( UnsignedFile.Multi.Generic ) - skipped by user
22:33:26.0500 2148 ENTECH ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:33:26.0500 2148 FirebirdServerMAGIXInstance ( UnsignedFile.Multi.Generic ) - skipped by user
22:33:26.0500 2148 FirebirdServerMAGIXInstance ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:33:26.0500 2148 GtDetectSc ( UnsignedFile.Multi.Generic ) - skipped by user
22:33:26.0500 2148 GtDetectSc ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:33:26.0500 2148 GTNDIS5 ( UnsignedFile.Multi.Generic ) - skipped by user
22:33:26.0500 2148 GTNDIS5 ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:33:26.0500 2148 HDAudBus ( UnsignedFile.Multi.Generic ) - skipped by user
22:33:26.0500 2148 HDAudBus ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:33:26.0500 2148 IDriverT ( UnsignedFile.Multi.Generic ) - skipped by user
22:33:26.0500 2148 IDriverT ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:33:26.0500 2148 InCDfs ( UnsignedFile.Multi.Generic ) - skipped by user
22:33:26.0500 2148 InCDfs ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:33:26.0500 2148 InCDPass ( UnsignedFile.Multi.Generic ) - skipped by user
22:33:26.0500 2148 InCDPass ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:33:26.0500 2148 InCDrec ( UnsignedFile.Multi.Generic ) - skipped by user
22:33:26.0500 2148 InCDrec ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:33:26.0500 2148 incdrm ( UnsignedFile.Multi.Generic ) - skipped by user
22:33:26.0500 2148 incdrm ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:33:26.0500 2148 InCDsrv ( UnsignedFile.Multi.Generic ) - skipped by user
22:33:26.0500 2148 InCDsrv ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:33:26.0515 2148 ithsgt ( UnsignedFile.Multi.Generic ) - skipped by user
22:33:26.0515 2148 ithsgt ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:33:26.0515 2148 L6DP ( UnsignedFile.Multi.Generic ) - skipped by user
22:33:26.0515 2148 L6DP ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:33:26.0515 2148 L6TPortA ( UnsignedFile.Multi.Generic ) - skipped by user
22:33:26.0515 2148 L6TPortA ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:33:26.0515 2148 lilsgt ( UnsignedFile.Multi.Generic ) - skipped by user
22:33:26.0515 2148 lilsgt ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:33:26.0515 2148 MagixASIODrv ( UnsignedFile.Multi.Generic ) - skipped by user
22:33:26.0515 2148 MagixASIODrv ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:33:26.0515 2148 PfModNT ( UnsignedFile.Multi.Generic ) - skipped by user
22:33:26.0515 2148 PfModNT ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:33:26.0515 2148 sc4stupmngrService ( UnsignedFile.Multi.Generic ) - skipped by user
22:33:26.0515 2148 sc4stupmngrService ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:33:26.0515 2148 SSHDRV86 ( UnsignedFile.Multi.Generic ) - skipped by user
22:33:26.0515 2148 SSHDRV86 ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:33:26.0515 2148 USBAAPL ( UnsignedFile.Multi.Generic ) - skipped by user
22:33:26.0515 2148 USBAAPL ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:33:26.0515 2148 WMP54Gv4SVC ( UnsignedFile.Multi.Generic ) - skipped by user
22:33:26.0515 2148 WMP54Gv4SVC ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:33:26.0515 2148 \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
22:33:26.0515 2148 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip
|
|
17.01.2013, 16:01
| #4 |
| /// Malware-holic | Browser öffnet hin und wieder falsche Websiten bei klick auf links Hi, starte den TDSS killer, wie oben beschrieben, scanne. wähle den Fund: TDSS File System wähle delete starte neu, konfiguriere TDSS killer wie oben, scanne, erstelle bitte ein neues Log, poste den Inhalt.
__________________ -Verdächtige mails bitte an uns zur Analyse weiterleiten: markusg.trojaner-board@web.de Weiterleiten Anleitung: http://markusg.trojaner-board.de Mails bitte vorerst nach obiger Anleitung an markusg.trojaner-board@web.de Weiterleiten Wenn Ihr uns unterstützen möchtet |
|
17.01.2013, 18:38
| #5 |
| | Browser öffnet hin und wieder falsche Websiten bei klick auf links Hab ich gemacht, hier die Log: Code:
ATTFilter 18:32:37.0250 3012 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
18:32:37.0250 3012 ============================================================
18:32:37.0250 3012 Current date / time: 2013/01/17 18:32:37.0250
18:32:37.0250 3012 SystemInfo:
18:32:37.0265 3012
18:32:37.0265 3012 OS Version: 5.1.2600 ServicePack: 3.0
18:32:37.0265 3012 Product type: Workstation
18:32:37.0265 3012 ComputerName: ARBEITSPFERD
18:32:37.0265 3012 UserName: *** l
18:32:37.0265 3012 Windows directory: C:\WINDOWS
18:32:37.0265 3012 System windows directory: C:\WINDOWS
18:32:37.0265 3012 Processor architecture: Intel x86
18:32:37.0265 3012 Number of processors: 2
18:32:37.0265 3012 Page size: 0x1000
18:32:37.0265 3012 Boot type: Normal boot
18:32:37.0265 3012 ============================================================
18:32:41.0671 3012 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
18:32:41.0765 3012 ============================================================
18:32:41.0765 3012 \Device\Harddisk0\DR0:
18:32:41.0765 3012 MBR partitions:
18:32:41.0765 3012 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x320C94ED
18:32:41.0781 3012 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x320C956B, BlocksNum 0x82BB6D6
18:32:41.0781 3012 ============================================================
18:32:41.0859 3012 C: <-> \Device\Harddisk0\DR0\Partition1
18:32:42.0031 3012 D: <-> \Device\Harddisk0\DR0\Partition2
18:32:46.0812 3012 ============================================================
18:32:46.0812 3012 Initialize success
18:32:46.0812 3012 ============================================================
18:32:56.0375 3568 ============================================================
18:32:56.0375 3568 Scan started
18:32:56.0375 3568 Mode: Manual; SigCheck; TDLFS;
18:32:56.0375 3568 ============================================================
18:32:59.0156 3568 ================ Scan system memory ========================
18:32:59.0156 3568 System memory - ok
18:32:59.0156 3568 ================ Scan services =============================
18:32:59.0250 3568 [ 01E81C84AD1D0ACC61CF3CFD06632210 ] !SASCORE C:\Programme\SUPERAntiSpyware\SASCORE.EXE
18:32:59.0343 3568 !SASCORE - ok
18:32:59.0390 3568 Abiosdsk - ok
18:32:59.0390 3568 abp480n5 - ok
18:32:59.0437 3568 [ AC407F1A62C3A300B4F2B5A9F1D55B2C ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
18:33:00.0578 3568 ACPI - ok
18:33:00.0609 3568 [ 9E1CA3160DAFB159CA14F83B1E317F75 ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
18:33:00.0718 3568 ACPIEC - ok
18:33:00.0781 3568 [ 424877CB9D5517F980FF7BACA2EB379D ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
18:33:00.0828 3568 AdobeFlashPlayerUpdateSvc - ok
18:33:00.0828 3568 adpu160m - ok
18:33:00.0859 3568 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys
18:33:00.0953 3568 aec - ok
18:33:00.0984 3568 [ 2F7F3E8DA380325866E566F5D5EC23D5 ] AegisP C:\WINDOWS\system32\DRIVERS\AegisP.sys
18:33:01.0000 3568 AegisP ( UnsignedFile.Multi.Generic ) - warning
18:33:01.0000 3568 AegisP - detected UnsignedFile.Multi.Generic (1)
18:33:01.0031 3568 [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD C:\WINDOWS\System32\drivers\afd.sys
18:33:01.0093 3568 AFD - ok
18:33:01.0093 3568 Aha154x - ok
18:33:01.0093 3568 aic78u2 - ok
18:33:01.0093 3568 aic78xx - ok
18:33:01.0109 3568 [ 738D80CC01D7BC7584BE917B7F544394 ] Alerter C:\WINDOWS\system32\alrsvc.dll
18:33:01.0203 3568 Alerter - ok
18:33:01.0218 3568 [ 5AC664ECB9BD5A406E5468ED73C04CB4 ] AlesisFirewire C:\WINDOWS\system32\Drivers\AlesisFirewire.sys
18:33:01.0250 3568 AlesisFirewire ( UnsignedFile.Multi.Generic ) - warning
18:33:01.0250 3568 AlesisFirewire - detected UnsignedFile.Multi.Generic (1)
18:33:01.0281 3568 [ 0AFCA1D9E73A3160D71B6C694756C119 ] AlesisFirewireAudio C:\WINDOWS\system32\drivers\AlesisFirewireAudio.sys
18:33:01.0281 3568 AlesisFirewireAudio ( UnsignedFile.Multi.Generic ) - warning
18:33:01.0281 3568 AlesisFirewireAudio - detected UnsignedFile.Multi.Generic (1)
18:33:01.0296 3568 [ D6A979A5BA7CE2465A199F2587B9E82A ] AlesisFirewireMidi C:\WINDOWS\system32\drivers\AlesisFirewireMidi.sys
18:33:01.0296 3568 AlesisFirewireMidi ( UnsignedFile.Multi.Generic ) - warning
18:33:01.0296 3568 AlesisFirewireMidi - detected UnsignedFile.Multi.Generic (1)
18:33:01.0312 3568 [ 190CD73D4984F94D823F9444980513E5 ] ALG C:\WINDOWS\System32\alg.exe
18:33:01.0375 3568 ALG - ok
18:33:01.0375 3568 AliIde - ok
18:33:01.0421 3568 [ 267FC636801EDC5AB28E14036349E3BE ] Ambfilt C:\WINDOWS\system32\drivers\Ambfilt.sys
18:33:01.0562 3568 Ambfilt - ok
18:33:01.0562 3568 amsint - ok
18:33:01.0734 3568 [ 0FA2D8304ECA29CA0AB7E3EE50FD585A ] AntiVirSchedulerService C:\Programme\Avira\AntiVir Desktop\sched.exe
18:33:01.0765 3568 AntiVirSchedulerService - ok
18:33:01.0828 3568 [ 5C69AAC8A59207DA9710FF2E42D6F80F ] AntiVirService C:\Programme\Avira\AntiVir Desktop\avguard.exe
18:33:01.0828 3568 AntiVirService - ok
18:33:01.0875 3568 [ 255527AB98293EA390352A8C53B0042A ] AntiVirWebService C:\Programme\Avira\AntiVir Desktop\AVWEBGRD.EXE
18:33:01.0890 3568 AntiVirWebService - ok
18:33:01.0984 3568 [ 2E3E53A6AEF23E24F402C7855B9B1542 ] Apple Mobile Device C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\AppleMobileDeviceService.exe
18:33:02.0000 3568 Apple Mobile Device - ok
18:33:02.0031 3568 [ D45960BE52C3C610D361977057F98C54 ] AppMgmt C:\WINDOWS\System32\appmgmts.dll
18:33:02.0125 3568 AppMgmt - ok
18:33:02.0140 3568 [ B5B8A80875C1DEDEDA8B02765642C32F ] Arp1394 C:\WINDOWS\system32\DRIVERS\arp1394.sys
18:33:02.0218 3568 Arp1394 - ok
18:33:02.0234 3568 [ 1E0EEB62964513F4F1E18FEE3C69C43D ] Asapi C:\WINDOWS\system32\drivers\Asapi.sys
18:33:02.0250 3568 Asapi ( UnsignedFile.Multi.Generic ) - warning
18:33:02.0250 3568 Asapi - detected UnsignedFile.Multi.Generic (1)
18:33:02.0250 3568 asc - ok
18:33:02.0250 3568 asc3350p - ok
18:33:02.0250 3568 asc3550 - ok
18:33:02.0296 3568 [ 6E3F4538B33BC19259E99BE1826286A3 ] asComSvc C:\Programme\ASUS\AXSP\1.00.14\atkexComSvc.exe
18:33:02.0312 3568 asComSvc - ok
18:33:02.0375 3568 [ A63173897EA1A73A75D0E65036DE5B15 ] asHmComSvc C:\Programme\ASUS\AAHM\1.00.14\aaHMSvc.exe
18:33:02.0390 3568 asHmComSvc - ok
18:33:02.0421 3568 [ A3938D491EAEE2B83D3A3631C3273182 ] asmthub3 C:\WINDOWS\system32\DRIVERS\asmthub3.sys
18:33:02.0453 3568 asmthub3 - ok
18:33:02.0468 3568 [ FE5FFED1DBA8DA0C9064202207301BA4 ] asmtxhci C:\WINDOWS\system32\DRIVERS\asmtxhci.sys
18:33:02.0531 3568 asmtxhci - ok
18:33:02.0593 3568 [ 0E5E4957549056E2BF2C49F4F6B601AD ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
18:33:02.0625 3568 aspnet_state - ok
18:33:02.0703 3568 [ 5C31DFB196CB3A488A041881634D86D2 ] AsSysCtrlService C:\Programme\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe
18:33:02.0718 3568 AsSysCtrlService - ok
18:33:02.0750 3568 [ A9A565C669786C402752F609AFDD0DD5 ] AsUpIO C:\WINDOWS\system32\drivers\AsUpIO.sys
18:33:02.0750 3568 AsUpIO - ok
18:33:02.0781 3568 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
18:33:02.0843 3568 AsyncMac - ok
18:33:02.0890 3568 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
18:33:02.0968 3568 atapi - ok
18:33:02.0968 3568 Atdisk - ok
18:33:02.0984 3568 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
18:33:03.0078 3568 Atmarpc - ok
18:33:03.0109 3568 [ 58ED0D5452DF7BE732193E7999C6B9A4 ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
18:33:03.0187 3568 AudioSrv - ok
18:33:03.0218 3568 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
18:33:03.0281 3568 audstub - ok
18:33:03.0296 3568 [ A5C175039B1D6D85D0E79F5855828E4D ] avgntflt C:\WINDOWS\system32\DRIVERS\avgntflt.sys
18:33:03.0312 3568 avgntflt - ok
18:33:03.0359 3568 [ 37B854C7D1F477E66C5B49C7700C47CC ] avipbb C:\WINDOWS\system32\DRIVERS\avipbb.sys
18:33:03.0375 3568 avipbb - ok
18:33:03.0390 3568 [ CC4EBA25D80DE42BBC2BF3E553219388 ] avkmgr C:\WINDOWS\system32\DRIVERS\avkmgr.sys
18:33:03.0406 3568 avkmgr - ok
18:33:03.0437 3568 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
18:33:03.0500 3568 Beep - ok
18:33:03.0546 3568 [ D6F603772A789BB3228F310D650B8BD1 ] BITS C:\WINDOWS\system32\qmgr.dll
18:33:03.0609 3568 BITS - ok
18:33:03.0687 3568 [ 5AB58C337AC65837FE404462AD6265AB ] Bonjour Service C:\Programme\Bonjour\mDNSResponder.exe
18:33:03.0703 3568 Bonjour Service - ok
18:33:03.0750 3568 [ B71549F23736ADF83A571061C47777FD ] Browser C:\WINDOWS\System32\browser.dll
18:33:03.0812 3568 Browser - ok
18:33:03.0828 3568 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
18:33:03.0890 3568 cbidf2k - ok
18:33:03.0890 3568 cd20xrnt - ok
18:33:03.0921 3568 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
18:33:04.0000 3568 Cdaudio - ok
18:33:04.0000 3568 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
18:33:04.0078 3568 Cdfs - ok
18:33:04.0093 3568 [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
18:33:04.0171 3568 Cdrom - ok
18:33:04.0171 3568 Changer - ok
18:33:04.0203 3568 [ 28E3040D1F1CA2008CD6B29DFEBC9A5E ] CiSvc C:\WINDOWS\system32\cisvc.exe
18:33:04.0281 3568 CiSvc - ok
18:33:04.0312 3568 [ 778A30ED3C134EB7E406AFC407E9997D ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
18:33:04.0375 3568 ClipSrv - ok
18:33:04.0390 3568 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
18:33:04.0421 3568 clr_optimization_v2.0.50727_32 - ok
18:33:04.0437 3568 CmdIde - ok
18:33:04.0437 3568 COMSysApp - ok
18:33:04.0437 3568 Cpqarray - ok
18:33:04.0453 3568 [ 611F824E5C703A5A899F84C5F1699E4D ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
18:33:04.0515 3568 CryptSvc - ok
18:33:04.0515 3568 dac2w2k - ok
18:33:04.0531 3568 dac960nt - ok
18:33:04.0546 3568 [ BB005CB49D0638039703AC4F67FE0A05 ] DC21x4 C:\WINDOWS\system32\DRIVERS\dc21x4.sys
18:33:04.0625 3568 DC21x4 - ok
18:33:04.0687 3568 [ 3127AFBF2C1ED0AB14A1BBB7AAECB85B ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
18:33:04.0718 3568 DcomLaunch - ok
18:33:04.0765 3568 [ C29A1C9B75BA38FA37F8C44405DEC360 ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
18:33:04.0843 3568 Dhcp - ok
18:33:04.0843 3568 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
18:33:04.0921 3568 Disk - ok
18:33:04.0921 3568 dmadmin - ok
18:33:04.0953 3568 [ 0DCFC8395A99FECBB1EF771CEC7FE4EA ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
18:33:05.0062 3568 dmboot - ok
18:33:05.0062 3568 [ 53720AB12B48719D00E327DA470A619A ] dmio C:\WINDOWS\system32\drivers\dmio.sys
18:33:05.0140 3568 dmio - ok
18:33:05.0156 3568 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
18:33:05.0218 3568 dmload - ok
18:33:05.0234 3568 [ 25C83FFBBA13B554EB6D59A9B2E2EE78 ] dmserver C:\WINDOWS\System32\dmserver.dll
18:33:05.0296 3568 dmserver - ok
18:33:05.0296 3568 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
18:33:05.0375 3568 DMusic - ok
18:33:05.0390 3568 [ 407F3227AC618FD1CA54B335B083DE07 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
18:33:05.0468 3568 Dnscache - ok
18:33:05.0484 3568 [ 676E36C4FF5BCEA1900F44182B9723E6 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
18:33:05.0578 3568 Dot3svc - ok
18:33:05.0578 3568 dpti2o - ok
18:33:05.0609 3568 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
18:33:05.0671 3568 drmkaud - ok
18:33:05.0703 3568 [ 4E4F2FDDAB0A0736D7671134DCCE91FB ] EapHost C:\WINDOWS\System32\eapsvc.dll
18:33:05.0781 3568 EapHost - ok
18:33:05.0828 3568 [ 01F83E1B5DCE05F5CB7D99113CA9E890 ] emu10k C:\WINDOWS\system32\drivers\emu10k1m.sys
18:33:05.0921 3568 emu10k - ok
18:33:05.0937 3568 [ 7FFA171CCE6A8BFC774862A578BA39A2 ] emu10k1 C:\WINDOWS\system32\drivers\ctlfacem.sys
18:33:06.0015 3568 emu10k1 - ok
18:33:06.0046 3568 [ BDD170FECB0E496A914318009D85B819 ] ENTECH C:\WINDOWS\system32\DRIVERS\ENTECH.SYS
18:33:06.0093 3568 ENTECH ( UnsignedFile.Multi.Generic ) - warning
18:33:06.0093 3568 ENTECH - detected UnsignedFile.Multi.Generic (1)
18:33:06.0125 3568 [ 877C18558D70587AA7823A1A308AC96B ] ERSvc C:\WINDOWS\System32\ersvc.dll
18:33:06.0203 3568 ERSvc - ok
18:33:06.0234 3568 [ A3EDBE9053889FB24AB22492472B39DC ] Eventlog C:\WINDOWS\system32\services.exe
18:33:06.0250 3568 Eventlog - ok
18:33:06.0296 3568 [ AF4F6B5739D18CA7972AB53E091CBC74 ] EventSystem C:\WINDOWS\System32\es.dll
18:33:06.0343 3568 EventSystem - ok
18:33:06.0375 3568 Fabs - ok
18:33:06.0406 3568 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
18:33:06.0484 3568 Fastfat - ok
18:33:06.0515 3568 [ 2DB7D303C36DDD055215052F118E8E75 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
18:33:06.0562 3568 FastUserSwitchingCompatibility - ok
18:33:06.0609 3568 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\DRIVERS\fdc.sys
18:33:06.0671 3568 Fdc - ok
18:33:06.0671 3568 [ B0678A548587C5F1967B0D70BACAD6C1 ] Fips C:\WINDOWS\system32\drivers\Fips.sys
18:33:06.0734 3568 Fips - ok
18:33:06.0812 3568 [ FFF1130F7C9FA01D093A1EDFC5CCE8FC ] FirebirdServerMAGIXInstance C:\Programme\Gemeinsame Dateien\MAGIX Services\Database\bin\fbserver.exe
18:33:06.0984 3568 FirebirdServerMAGIXInstance ( UnsignedFile.Multi.Generic ) - warning
18:33:06.0984 3568 FirebirdServerMAGIXInstance - detected UnsignedFile.Multi.Generic (1)
18:33:07.0031 3568 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\DRIVERS\flpydisk.sys
18:33:07.0109 3568 Flpydisk - ok
18:33:07.0125 3568 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
18:33:07.0203 3568 FltMgr - ok
18:33:07.0281 3568 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
18:33:07.0296 3568 FontCache3.0.0.0 - ok
18:33:07.0296 3568 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
18:33:07.0375 3568 Fs_Rec - ok
18:33:07.0375 3568 [ 8F1955CE42E1484714B542F341647778 ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
18:33:07.0453 3568 Ftdisk - ok
18:33:07.0468 3568 [ 065639773D8B03F33577F6CDAEA21063 ] gameenum C:\WINDOWS\system32\DRIVERS\gameenum.sys
18:33:07.0531 3568 gameenum - ok
18:33:07.0546 3568 [ 8182FF89C65E4D38B2DE4BB0FB18564E ] GEARAspiWDM C:\WINDOWS\system32\Drivers\GEARAspiWDM.sys
18:33:07.0562 3568 GEARAspiWDM - ok
18:33:07.0593 3568 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
18:33:07.0671 3568 Gpc - ok
18:33:07.0687 3568 [ 9EB33545BC9B1CA0C9B9E6D780CE0D27 ] GT72NDISIPXP C:\WINDOWS\system32\DRIVERS\Gt51Ip.sys
18:33:07.0718 3568 GT72NDISIPXP - ok
18:33:07.0734 3568 [ 687A4B740F14C2DFF6DD7B848F50F0A6 ] GT72UBUS C:\WINDOWS\system32\DRIVERS\gt72ubus.sys
18:33:07.0781 3568 GT72UBUS - ok
18:33:07.0812 3568 [ B8D928F19FCDF9862CE2D01BC9741861 ] GtDetectSc C:\Programme\T-Mobile\web'n'walk Manager\GtDetectSc.exe
18:33:07.0812 3568 GtDetectSc ( UnsignedFile.Multi.Generic ) - warning
18:33:07.0812 3568 GtDetectSc - detected UnsignedFile.Multi.Generic (1)
18:33:07.0843 3568 [ FC80052194D5708254A346568F0E77C0 ] GTNDIS5 C:\WINDOWS\system32\GTNDIS5.SYS
18:33:07.0875 3568 GTNDIS5 ( UnsignedFile.Multi.Generic ) - warning
18:33:07.0875 3568 GTNDIS5 - detected UnsignedFile.Multi.Generic (1)
18:33:07.0890 3568 [ 346DDAEFA04E49AD804EE12D4BAA0ED3 ] GTPTSER C:\WINDOWS\system32\DRIVERS\gtptser.sys
18:33:07.0953 3568 GTPTSER - ok
18:33:08.0015 3568 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdate C:\Programme\Google\Update\GoogleUpdate.exe
18:33:08.0015 3568 gupdate - ok
18:33:08.0031 3568 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdatem C:\Programme\Google\Update\GoogleUpdate.exe
18:33:08.0031 3568 gupdatem - ok
18:33:08.0078 3568 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Programme\Google\Common\Google Updater\GoogleUpdaterService.exe
18:33:08.0093 3568 gusvc - ok
18:33:08.0125 3568 [ 3FCC124B6E08EE0E9351F717DD136939 ] HDAudBus C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
18:33:08.0156 3568 HDAudBus ( UnsignedFile.Multi.Generic ) - warning
18:33:08.0156 3568 HDAudBus - detected UnsignedFile.Multi.Generic (1)
18:33:08.0218 3568 [ CB66BF85BF599BEFD6C6A57C2E20357F ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
18:33:08.0296 3568 helpsvc - ok
18:33:08.0296 3568 [ B35DA85E60C0103F2E4104532DA2F12B ] HidServ C:\WINDOWS\System32\hidserv.dll
18:33:08.0375 3568 HidServ - ok
18:33:08.0390 3568 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] HidUsb C:\WINDOWS\system32\DRIVERS\hidusb.sys
18:33:08.0453 3568 HidUsb - ok
18:33:08.0484 3568 [ ED29F14101523A6E0E808107405D452C ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
18:33:08.0562 3568 hkmsvc - ok
18:33:08.0562 3568 hpn - ok
18:33:08.0609 3568 [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
18:33:08.0656 3568 HTTP - ok
18:33:08.0671 3568 [ 9E4ADB854CEBCFB81A4B36718FEECD16 ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
18:33:08.0750 3568 HTTPFilter - ok
18:33:08.0750 3568 i2omgmt - ok
18:33:08.0765 3568 i2omp - ok
18:33:08.0796 3568 [ E283B97CFBEB86C1D86BAED5F7846A92 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
18:33:08.0859 3568 i8042prt - ok
18:33:08.0906 3568 [ C0255E6F43DBDE7F20637A039075318D ] ialm C:\WINDOWS\system32\DRIVERS\igxpmp32.sys
18:33:09.0031 3568 ialm - ok
18:33:09.0062 3568 [ 76C3966183BD5382E14CEB6DF97D9709 ] iaStor C:\WINDOWS\system32\drivers\iaStor.sys
18:33:09.0093 3568 iaStor - ok
18:33:09.0140 3568 [ 6F95324909B502E2651442C1548AB12F ] IDriverT C:\Programme\Gemeinsame Dateien\InstallShield\Driver\1050\Intel 32\IDriverT.exe
18:33:09.0156 3568 IDriverT ( UnsignedFile.Multi.Generic ) - warning
18:33:09.0156 3568 IDriverT - detected UnsignedFile.Multi.Generic (1)
18:33:09.0203 3568 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
18:33:09.0265 3568 idsvc - ok
18:33:09.0281 3568 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
18:33:09.0343 3568 Imapi - ok
18:33:09.0390 3568 [ D4B413AA210C21E46AEDD2BA5B68D38E ] ImapiService C:\WINDOWS\System32\imapi.exe
18:33:09.0453 3568 ImapiService - ok
18:33:09.0468 3568 [ B87FC7C71632240DAC8F4D20E9CE8377 ] InCDfs C:\WINDOWS\system32\drivers\InCDfs.sys
18:33:09.0484 3568 InCDfs ( UnsignedFile.Multi.Generic ) - warning
18:33:09.0484 3568 InCDfs - detected UnsignedFile.Multi.Generic (1)
18:33:09.0484 3568 [ 2E878405128EC98886EB9C2216AC7BD6 ] InCDPass C:\WINDOWS\system32\DRIVERS\InCDPass.sys
18:33:09.0500 3568 InCDPass ( UnsignedFile.Multi.Generic ) - warning
18:33:09.0500 3568 InCDPass - detected UnsignedFile.Multi.Generic (1)
18:33:09.0515 3568 [ DDF078917A42F105385D7EB6DEBB3433 ] InCDrec C:\WINDOWS\system32\drivers\InCDrec.sys
18:33:09.0531 3568 InCDrec ( UnsignedFile.Multi.Generic ) - warning
18:33:09.0531 3568 InCDrec - detected UnsignedFile.Multi.Generic (1)
18:33:09.0546 3568 [ 7F352360E947AD2CD4BA60DE27B1A299 ] incdrm C:\WINDOWS\system32\drivers\incdrm.sys
18:33:09.0562 3568 incdrm ( UnsignedFile.Multi.Generic ) - warning
18:33:09.0562 3568 incdrm - detected UnsignedFile.Multi.Generic (1)
18:33:09.0625 3568 [ E9372A17C22FC4E5C9FD8798A97775FC ] InCDsrv C:\Programme\Ahead\InCD\InCDsrv.exe
18:33:09.0687 3568 InCDsrv ( UnsignedFile.Multi.Generic ) - warning
18:33:09.0687 3568 InCDsrv - detected UnsignedFile.Multi.Generic (1)
18:33:09.0703 3568 ini910u - ok
18:33:09.0828 3568 [ 9D04EE981B9F2AD4AFEDD5CF376F3148 ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RtkHDAud.sys
18:33:09.0984 3568 IntcAzAudAddService - ok
18:33:09.0984 3568 IntcDAud - ok
18:33:09.0984 3568 IntelIde - ok
18:33:10.0031 3568 [ 4C7D2750158ED6E7AD642D97BFFAE351 ] intelppm C:\WINDOWS\system32\DRIVERS\intelppm.sys
18:33:10.0093 3568 intelppm - ok
18:33:10.0125 3568 [ 3BB22519A194418D5FEC05D800A19AD0 ] ip6fw C:\WINDOWS\system32\drivers\ip6fw.sys
18:33:10.0203 3568 ip6fw - ok
18:33:10.0234 3568 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
18:33:10.0312 3568 IpFilterDriver - ok
18:33:10.0328 3568 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
18:33:10.0390 3568 IpInIp - ok
18:33:10.0421 3568 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
18:33:10.0484 3568 IpNat - ok
18:33:10.0515 3568 [ 8F610078437A459948480407F4DB91EA ] iPod Service C:\Programme\iPod\bin\iPodService.exe
18:33:10.0531 3568 iPod Service - ok
18:33:10.0531 3568 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
18:33:10.0625 3568 IPSec - ok
18:33:10.0640 3568 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
18:33:10.0718 3568 IRENUM - ok
18:33:10.0750 3568 [ 6DFB88F64135C525433E87648BDA30DE ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
18:33:10.0812 3568 isapnp - ok
18:33:10.0843 3568 [ B7A5FADF67136FDA7E8F25303565B674 ] ithsgt C:\WINDOWS\system32\DRIVERS\ithsgt.sys
18:33:10.0843 3568 ithsgt ( UnsignedFile.Multi.Generic ) - warning
18:33:10.0843 3568 ithsgt - detected UnsignedFile.Multi.Generic (1)
18:33:10.0937 3568 [ B591E761161D1EF547D76EF236EAA6A5 ] JavaQuickStarterService C:\Programme\Java\jre7\bin\jqs.exe
18:33:10.0937 3568 JavaQuickStarterService - ok
18:33:10.0968 3568 [ 1704D8C4C8807B889E43C649B478A452 ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
18:33:11.0046 3568 Kbdclass - ok
18:33:11.0046 3568 [ B6D6C117D771C98130497265F26D1882 ] kbdhid C:\WINDOWS\system32\DRIVERS\kbdhid.sys
18:33:11.0109 3568 kbdhid - ok
18:33:11.0125 3568 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
18:33:11.0218 3568 kmixer - ok
18:33:11.0234 3568 [ B467646C54CC746128904E1654C750C1 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
18:33:11.0296 3568 KSecDD - ok
18:33:11.0328 3568 [ CDA416A81CEDCA675CC3316A0617A213 ] L1c C:\WINDOWS\system32\DRIVERS\l1c51x86.sys
18:33:11.0343 3568 L1c - ok
18:33:11.0359 3568 [ CD83854B89BD69F86225D9FC086C1ABF ] L6DP C:\WINDOWS\system32\Drivers\l6dp.sys
18:33:11.0359 3568 L6DP ( UnsignedFile.Multi.Generic ) - warning
18:33:11.0359 3568 L6DP - detected UnsignedFile.Multi.Generic (1)
18:33:11.0390 3568 [ 585E0A1368A84D4FBEDCA77418A9F7F1 ] L6TPortA C:\WINDOWS\system32\Drivers\L6TPortA.sys
18:33:11.0406 3568 L6TPortA ( UnsignedFile.Multi.Generic ) - warning
18:33:11.0406 3568 L6TPortA - detected UnsignedFile.Multi.Generic (1)
18:33:11.0437 3568 [ 2BBDCB79900990F0716DFCB714E72DE7 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
18:33:11.0484 3568 lanmanserver - ok
18:33:11.0515 3568 [ 1869B14B06B44B44AF70548E1EA3303F ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
18:33:11.0546 3568 lanmanworkstation - ok
18:33:11.0546 3568 lbrtfdc - ok
18:33:11.0578 3568 [ 16767EA492B5D140E1DE3679A65EAE74 ] lilsgt C:\WINDOWS\system32\DRIVERS\lilsgt.sys
18:33:11.0593 3568 lilsgt ( UnsignedFile.Multi.Generic ) - warning
18:33:11.0593 3568 lilsgt - detected UnsignedFile.Multi.Generic (1)
18:33:11.0625 3568 [ 636714B7D43C8D0C80449123FD266920 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
18:33:11.0687 3568 LmHosts - ok
18:33:11.0734 3568 [ 07A3A53BDE18961C5026AE94D6FF8921 ] MAFWPROFIRE C:\WINDOWS\system32\DRIVERS\MAudioProFire.sys
18:33:11.0750 3568 MAFWPROFIRE - ok
18:33:11.0843 3568 [ 34933232C17FBBFE2E224E5C536A48CF ] MagixASIODrv C:\Programme\MAGIX\Samplitude_11\mxasio.sys
18:33:11.0859 3568 MagixASIODrv ( UnsignedFile.Multi.Generic ) - warning
18:33:11.0859 3568 MagixASIODrv - detected UnsignedFile.Multi.Generic (1)
18:33:11.0875 3568 [ 050AF61670D668610F27AA2C99996AFD ] MAUSBFASTTRACKPRO C:\WINDOWS\system32\DRIVERS\MAudioFastTrackPro.sys
18:33:11.0890 3568 MAUSBFASTTRACKPRO - ok
18:33:11.0906 3568 [ 629CABB0421668C9D3D402A3C3D77E14 ] MBAMProtector C:\WINDOWS\system32\drivers\mbam.sys
18:33:11.0921 3568 MBAMProtector - ok
18:33:11.0984 3568 [ 1ACAA67676E9E7BDA5E0C41B6E0DECAF ] MBAMScheduler C:\Programme\Malwarebytes' Anti-Malware\mbamscheduler.exe
18:33:11.0984 3568 MBAMScheduler - ok
18:33:12.0046 3568 [ 916B8954AC3E06DC9E898AFFB41F3FB6 ] MBAMService C:\Programme\Malwarebytes' Anti-Malware\mbamservice.exe
18:33:12.0062 3568 MBAMService - ok
18:33:12.0109 3568 [ B7550A7107281D170CE85524B1488C98 ] Messenger C:\WINDOWS\System32\msgsvc.dll
18:33:12.0187 3568 Messenger - ok
18:33:12.0218 3568 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
18:33:12.0296 3568 mnmdd - ok
18:33:12.0328 3568 [ C2F1D365FD96791B037EE504868065D3 ] mnmsrvc C:\WINDOWS\System32\mnmsrvc.exe
18:33:12.0406 3568 mnmsrvc - ok
18:33:12.0421 3568 [ 6FB74EBD4EC57A6F1781DE3852CC3362 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
18:33:12.0500 3568 Modem - ok
18:33:12.0531 3568 [ C7D9F9717916B34C1B00DD4834AF485C ] Monfilt C:\WINDOWS\system32\drivers\Monfilt.sys
18:33:12.0640 3568 Monfilt - ok
18:33:12.0671 3568 [ B24CE8005DEAB254C0251E15CB71D802 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
18:33:12.0734 3568 Mouclass - ok
18:33:12.0765 3568 [ 66A6F73C74E1791464160A7065CE711A ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys
18:33:12.0828 3568 mouhid - ok
18:33:12.0859 3568 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
18:33:12.0921 3568 MountMgr - ok
18:33:12.0984 3568 [ CB8AF049AC9BE419A77ADAE288673359 ] MozillaMaintenance C:\Programme\Mozilla Maintenance Service\maintenanceservice.exe
18:33:13.0015 3568 MozillaMaintenance - ok
18:33:13.0015 3568 mraid35x - ok
18:33:13.0015 3568 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
18:33:13.0093 3568 MRxDAV - ok
18:33:13.0125 3568 [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
18:33:13.0187 3568 MRxSmb - ok
18:33:13.0218 3568 [ 35A031AF38C55F92D28AA03EE9F12CC9 ] MSDTC C:\WINDOWS\System32\msdtc.exe
18:33:13.0296 3568 MSDTC - ok
18:33:13.0296 3568 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
18:33:13.0359 3568 Msfs - ok
18:33:13.0359 3568 MSIServer - ok
18:33:13.0375 3568 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
18:33:13.0437 3568 MSKSSRV - ok
18:33:13.0453 3568 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
18:33:13.0515 3568 MSPCLOCK - ok
18:33:13.0531 3568 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
18:33:13.0593 3568 MSPQM - ok
18:33:13.0593 3568 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
18:33:13.0656 3568 mssmbios - ok
18:33:13.0687 3568 [ D48659BB24C48345D926ECB45C1EBDF5 ] MTsensor C:\WINDOWS\system32\DRIVERS\ASACPI.sys
18:33:13.0734 3568 MTsensor - ok
18:33:13.0734 3568 [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
18:33:13.0765 3568 Mup - ok
18:33:13.0796 3568 [ 46BB15AE2AC7D025D6D2567B876817BD ] napagent C:\WINDOWS\System32\qagentrt.dll
18:33:13.0906 3568 napagent - ok
18:33:13.0906 3568 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
18:33:13.0984 3568 NDIS - ok
18:33:14.0015 3568 [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
18:33:14.0078 3568 NdisTapi - ok
18:33:14.0093 3568 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
18:33:14.0171 3568 Ndisuio - ok
18:33:14.0171 3568 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
18:33:14.0234 3568 NdisWan - ok
18:33:14.0250 3568 [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
18:33:14.0296 3568 NDProxy - ok
18:33:14.0312 3568 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
18:33:14.0375 3568 NetBIOS - ok
18:33:14.0406 3568 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
18:33:14.0484 3568 NetBT - ok
18:33:14.0515 3568 [ 8ACE4251BFFD09CE75679FE940E996CC ] NetDDE C:\WINDOWS\system32\netdde.exe
18:33:14.0578 3568 NetDDE - ok
18:33:14.0578 3568 [ 8ACE4251BFFD09CE75679FE940E996CC ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
18:33:14.0640 3568 NetDDEdsdm - ok
18:33:14.0687 3568 [ AFB8261B56CBA0D86AEB6DF682AF9785 ] Netlogon C:\WINDOWS\System32\lsass.exe
18:33:14.0750 3568 Netlogon - ok
18:33:14.0796 3568 [ E6D88F1F6745BF00B57E7855A2AB696C ] Netman C:\WINDOWS\System32\netman.dll
18:33:14.0859 3568 Netman - ok
18:33:14.0890 3568 [ D34612C5D02D026535B3095D620626AE ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
18:33:14.0906 3568 NetTcpPortSharing - ok
18:33:14.0921 3568 [ E9E47CFB2D461FA0FC75B7A74C6383EA ] NIC1394 C:\WINDOWS\system32\DRIVERS\nic1394.sys
18:33:15.0000 3568 NIC1394 - ok
18:33:15.0031 3568 [ F1B67B6B0751AE0E6E964B02821206A3 ] Nla C:\WINDOWS\System32\mswsock.dll
18:33:15.0046 3568 Nla - ok
18:33:15.0062 3568 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
18:33:15.0125 3568 Npfs - ok
18:33:15.0140 3568 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
18:33:15.0218 3568 Ntfs - ok
18:33:15.0218 3568 [ AFB8261B56CBA0D86AEB6DF682AF9785 ] NtLmSsp C:\WINDOWS\System32\lsass.exe
18:33:15.0281 3568 NtLmSsp - ok
18:33:15.0328 3568 [ 56AF4064996FA5BAC9C449B1514B4770 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
18:33:15.0421 3568 NtmsSvc - ok
18:33:15.0437 3568 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
18:33:15.0500 3568 Null - ok
18:33:15.0703 3568 [ ED9816DBAF6689542EA7D022631906A1 ] nv C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
18:33:16.0093 3568 nv - ok
18:33:16.0125 3568 [ A2322C6207EBB0761A6C8CC9003EBACF ] NVSvc C:\WINDOWS\system32\nvsvc32.exe
18:33:16.0140 3568 NVSvc - ok
18:33:16.0171 3568 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
18:33:16.0250 3568 NwlnkFlt - ok
18:33:16.0265 3568 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
18:33:16.0328 3568 NwlnkFwd - ok
18:33:16.0359 3568 [ CA33832DF41AFB202EE7AEB05145922F ] ohci1394 C:\WINDOWS\system32\DRIVERS\ohci1394.sys
18:33:16.0421 3568 ohci1394 - ok
18:33:16.0453 3568 [ 7A56CF3E3F12E8AF599963B16F50FB6A ] ose C:\Programme\Gemeinsame Dateien\Microsoft Shared\Source Engine\OSE.EXE
18:33:16.0468 3568 ose - ok
18:33:16.0468 3568 ossrv - ok
18:33:16.0484 3568 [ F84785660305B9B903FB3BCA8BA29837 ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
18:33:16.0562 3568 Parport - ok
18:33:16.0562 3568 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
18:33:16.0656 3568 PartMgr - ok
18:33:16.0687 3568 [ C2BF987829099A3EAA2CA6A0A90ECB4F ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
18:33:16.0765 3568 ParVdm - ok
18:33:16.0781 3568 [ 387E8DEDC343AA2D1EFBC30580273ACD ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
18:33:16.0843 3568 PCI - ok
18:33:16.0859 3568 PCIDump - ok
18:33:16.0859 3568 [ 59BA86D9A61CBCF4DF8E598C331F5B82 ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
18:33:16.0937 3568 PCIIde - ok
18:33:16.0968 3568 [ A2A966B77D61847D61A3051DF87C8C97 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
18:33:17.0031 3568 Pcmcia - ok
18:33:17.0031 3568 PDCOMP - ok
18:33:17.0046 3568 PDFRAME - ok
18:33:17.0046 3568 PDRELI - ok
18:33:17.0046 3568 PDRFRAME - ok
18:33:17.0046 3568 perc2 - ok
18:33:17.0062 3568 perc2hib - ok
18:33:17.0093 3568 [ B293F05AD9120B0232C28945C1E98CD0 ] PfModNT C:\WINDOWS\system32\PfModNT.sys
18:33:17.0093 3568 PfModNT ( UnsignedFile.Multi.Generic ) - warning
18:33:17.0093 3568 PfModNT - detected UnsignedFile.Multi.Generic (1)
18:33:17.0109 3568 [ A3EDBE9053889FB24AB22492472B39DC ] PlugPlay C:\WINDOWS\system32\services.exe
18:33:17.0125 3568 PlugPlay - ok
18:33:17.0218 3568 pnicml - ok
18:33:17.0218 3568 [ AFB8261B56CBA0D86AEB6DF682AF9785 ] PolicyAgent C:\WINDOWS\System32\lsass.exe
18:33:17.0281 3568 PolicyAgent - ok
18:33:17.0312 3568 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
18:33:17.0375 3568 PptpMiniport - ok
18:33:17.0390 3568 [ 2CB55427C58679F49AD600FCCBA76360 ] Processor C:\WINDOWS\system32\DRIVERS\processr.sys
18:33:17.0453 3568 Processor - ok
18:33:17.0453 3568 [ AFB8261B56CBA0D86AEB6DF682AF9785 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
18:33:17.0515 3568 ProtectedStorage - ok
18:33:17.0515 3568 [ 09298EC810B07E5D582CB3A3F9255424 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
18:33:17.0593 3568 PSched - ok
18:33:17.0609 3568 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
18:33:17.0671 3568 Ptilink - ok
18:33:17.0687 3568 [ D86B4A68565E444D76457F14172C875A ] PxHelp20 C:\WINDOWS\system32\Drivers\PxHelp20.sys
18:33:17.0703 3568 PxHelp20 - ok
18:33:17.0703 3568 ql1080 - ok
18:33:17.0703 3568 Ql10wnt - ok
18:33:17.0703 3568 ql12160 - ok
18:33:17.0718 3568 ql1240 - ok
18:33:17.0718 3568 ql1280 - ok
18:33:17.0734 3568 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
18:33:17.0812 3568 RasAcd - ok
18:33:17.0828 3568 [ F5BA6CACCDB66C8F048E867563203246 ] RasAuto C:\WINDOWS\System32\rasauto.dll
18:33:17.0906 3568 RasAuto - ok
18:33:17.0906 3568 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
18:33:17.0968 3568 Rasl2tp - ok
18:33:18.0015 3568 [ F9A7B66EA345726EDB5862A46B1ECCD5 ] RasMan C:\WINDOWS\System32\rasmans.dll
18:33:18.0078 3568 RasMan - ok
18:33:18.0078 3568 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
18:33:18.0156 3568 RasPppoe - ok
18:33:18.0156 3568 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
18:33:18.0218 3568 Raspti - ok
18:33:18.0250 3568 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
18:33:18.0328 3568 Rdbss - ok
18:33:18.0343 3568 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
18:33:18.0406 3568 RDPCDD - ok
18:33:18.0421 3568 [ 15CABD0F7C00C47C70124907916AF3F1 ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys
18:33:18.0484 3568 rdpdr - ok
18:33:18.0531 3568 [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
18:33:18.0562 3568 RDPWD - ok
18:33:18.0609 3568 [ 263AF18AF0F3DB99F574C95F284CCEC9 ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
18:33:18.0687 3568 RDSessMgr - ok
18:33:18.0718 3568 [ ED761D453856F795A7FE056E42C36365 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
18:33:18.0796 3568 redbook - ok
18:33:18.0828 3568 [ 0E97EC96D6942CEEC2D188CC2EB69A01 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
18:33:18.0906 3568 RemoteAccess - ok
18:33:18.0937 3568 [ E4CD1F3D84E1C2CA0B8CF7501E201593 ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
18:33:19.0000 3568 RemoteRegistry - ok
18:33:19.0062 3568 [ 616F6E52CAE254727A886BA8EDA1BEEA ] RichVideo C:\Programme\CyberLink\Shared Files\RichVideo.exe
18:33:19.0078 3568 RichVideo - ok
18:33:19.0078 3568 RkHit - ok
18:33:19.0109 3568 [ 2A02E21867497DF20B8FC95631395169 ] RpcLocator C:\WINDOWS\System32\locator.exe
18:33:19.0171 3568 RpcLocator - ok
18:33:19.0203 3568 [ 3127AFBF2C1ED0AB14A1BBB7AAECB85B ] RpcSs C:\WINDOWS\system32\rpcss.dll
18:33:19.0218 3568 RpcSs - ok
18:33:19.0250 3568 [ 4BDD71B4B521521499DFD14735C4F398 ] RSVP C:\WINDOWS\System32\rsvp.exe
18:33:19.0343 3568 RSVP - ok
18:33:19.0390 3568 [ 581E74880AEB1DBA1CB5AC8E6E6C0A69 ] RT61 C:\WINDOWS\system32\DRIVERS\RT61.sys
18:33:19.0437 3568 RT61 - ok
18:33:19.0437 3568 RTL8023xp - ok
18:33:19.0453 3568 [ D507C1400284176573224903819FFDA3 ] rtl8139 C:\WINDOWS\system32\DRIVERS\RTL8139.SYS
18:33:19.0531 3568 rtl8139 - ok
18:33:19.0531 3568 RTLE8023xp - ok
18:33:19.0546 3568 [ AFB8261B56CBA0D86AEB6DF682AF9785 ] SamSs C:\WINDOWS\system32\lsass.exe
18:33:19.0609 3568 SamSs - ok
18:33:19.0656 3568 [ 39763504067962108505BFF25F024345 ] SASDIFSV C:\Programme\SUPERAntiSpyware\SASDIFSV.SYS
18:33:19.0671 3568 SASDIFSV - ok
18:33:19.0687 3568 [ 77B9FC20084B48408AD3E87570EB4A85 ] SASKUTIL C:\Programme\SUPERAntiSpyware\SASKUTIL.SYS
18:33:19.0703 3568 SASKUTIL - ok
18:33:19.0765 3568 [ A829D52394CBA22F1B101EABF7B5FB14 ] sc4stupmngrService C:\Programme\SimCity4 StartupManager\sumservice.exe
18:33:19.0796 3568 sc4stupmngrService ( UnsignedFile.Multi.Generic ) - warning
18:33:19.0796 3568 sc4stupmngrService - detected UnsignedFile.Multi.Generic (1)
18:33:19.0828 3568 [ DCEC079FAD95D36C8DD5CB6D779DFE32 ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
18:33:19.0921 3568 SCardSvr - ok
18:33:19.0953 3568 [ A050194A44D7FA8D7186ED2F4E8367AE ] Schedule C:\WINDOWS\system32\schedsvc.dll
18:33:20.0031 3568 Schedule - ok
18:33:20.0062 3568 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
18:33:20.0125 3568 Secdrv - ok
18:33:20.0156 3568 [ BEE4CFD1D48C23B44CF4B974B0B79B2B ] seclogon C:\WINDOWS\System32\seclogon.dll
18:33:20.0218 3568 seclogon - ok
18:33:20.0218 3568 [ 2AAC9B6ED9EDDFFB721D6452E34D67E3 ] SENS C:\WINDOWS\system32\sens.dll
18:33:20.0281 3568 SENS - ok
18:33:20.0312 3568 [ 0F29512CCD6BEAD730039FB4BD2C85CE ] serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
18:33:20.0375 3568 serenum - ok
18:33:20.0375 3568 [ CF24EB4F0412C82BCD1F4F35A025E31D ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
18:33:20.0453 3568 Serial - ok
18:33:20.0453 3568 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
18:33:20.0515 3568 Sfloppy - ok
18:33:20.0546 3568 [ 0B1A5E9CACB5CDD54A2815107BD7C772 ] sfman C:\WINDOWS\system32\drivers\sfmanm.sys
18:33:20.0640 3568 sfman - ok
18:33:20.0671 3568 [ CAD058D5F8B889A87CA3EB3CF624DCEF ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
18:33:20.0765 3568 SharedAccess - ok
18:33:20.0796 3568 [ 2DB7D303C36DDD055215052F118E8E75 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
18:33:20.0812 3568 ShellHWDetection - ok
18:33:20.0812 3568 Simbad - ok
18:33:20.0859 3568 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Programme\Skype\Updater\Updater.exe
18:33:20.0875 3568 SkypeUpdate - ok
18:33:20.0906 3568 [ A1ECEEAA5C5E74B2499EB51D38185B84 ] SONYPVU1 C:\WINDOWS\system32\DRIVERS\SONYPVU1.SYS
18:33:20.0968 3568 SONYPVU1 - ok
18:33:20.0968 3568 Sparrow - ok
18:33:20.0984 3568 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
18:33:21.0046 3568 splitter - ok
18:33:21.0078 3568 [ 60784F891563FB1B767F70117FC2428F ] Spooler C:\WINDOWS\system32\spoolsv.exe
18:33:21.0125 3568 Spooler - ok
18:33:21.0140 3568 [ 50FA898F8C032796D3B1B9951BB5A90F ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
18:33:21.0203 3568 sr - ok
18:33:21.0250 3568 [ FE77A85495065F3AD59C5C65B6C54182 ] srservice C:\WINDOWS\System32\srsvc.dll
18:33:21.0312 3568 srservice - ok
18:33:21.0328 3568 [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
18:33:21.0406 3568 Srv - ok
18:33:21.0406 3568 srvC00 - ok
18:33:21.0437 3568 [ 4DF5B05DFAEC29E13E1ED6F6EE12C500 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
18:33:21.0500 3568 SSDPSRV - ok
18:33:21.0546 3568 [ B9E31F2A3640403B0EA3A867BB73B9F4 ] SSHDRV86 C:\WINDOWS\system32\drivers\SSHDRV86.sys
18:33:21.0609 3568 SSHDRV86 ( UnsignedFile.Multi.Generic ) - warning
18:33:21.0609 3568 SSHDRV86 - detected UnsignedFile.Multi.Generic (1)
18:33:21.0625 3568 [ A36EE93698802CD899F98BFD553D8185 ] ssmdrv C:\WINDOWS\system32\DRIVERS\ssmdrv.sys
18:33:21.0640 3568 ssmdrv - ok
18:33:21.0671 3568 [ BC2C5985611C5356B24AEB370953DED9 ] stisvc C:\WINDOWS\system32\wiaservc.dll
18:33:21.0750 3568 stisvc - ok
18:33:21.0750 3568 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
18:33:21.0812 3568 swenum - ok
18:33:21.0828 3568 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
18:33:21.0906 3568 swmidi - ok
18:33:21.0906 3568 SwPrv - ok
18:33:21.0906 3568 symc810 - ok
18:33:21.0906 3568 symc8xx - ok
18:33:21.0921 3568 sym_hi - ok
18:33:21.0921 3568 sym_u3 - ok
18:33:21.0937 3568 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
18:33:22.0000 3568 sysaudio - ok
18:33:22.0015 3568 [ 2903FFFA2523926D6219428040DCE6B9 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
18:33:22.0093 3568 SysmonLog - ok
18:33:22.0093 3568 [ 05903CAC4B98908D55EA5774775B382E ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
18:33:22.0171 3568 TapiSrv - ok
18:33:22.0218 3568 [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
18:33:22.0265 3568 Tcpip - ok
18:33:22.0281 3568 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
18:33:22.0343 3568 TDPIPE - ok
18:33:22.0359 3568 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
18:33:22.0421 3568 TDTCP - ok
18:33:22.0421 3568 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
18:33:22.0500 3568 TermDD - ok
18:33:22.0500 3568 [ B7DE02C863D8F5A005A7BF375375A6A4 ] TermService C:\WINDOWS\System32\termsrv.dll
18:33:22.0593 3568 TermService - ok
18:33:22.0609 3568 [ 2DB7D303C36DDD055215052F118E8E75 ] Themes C:\WINDOWS\System32\shsvcs.dll
18:33:22.0625 3568 Themes - ok
18:33:22.0656 3568 [ 03681A1CE77F51586903869A5AB1DEAB ] TlntSvr C:\WINDOWS\System32\tlntsvr.exe
18:33:22.0734 3568 TlntSvr - ok
18:33:22.0734 3568 TosIde - ok
18:33:22.0734 3568 [ 626504572B175867F30F3215C04B3E2F ] TrkWks C:\WINDOWS\system32\trkwks.dll
18:33:22.0812 3568 TrkWks - ok
18:33:22.0828 3568 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
18:33:22.0890 3568 Udfs - ok
18:33:22.0890 3568 ultra - ok
18:33:22.0921 3568 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
18:33:22.0984 3568 Update - ok
18:33:23.0015 3568 [ 1DFD8975D8C89214B98D9387C1125B49 ] upnphost C:\WINDOWS\System32\upnphost.dll
18:33:23.0093 3568 upnphost - ok
18:33:23.0109 3568 [ 9B11E6118958E63E1FEF129466E2BDA7 ] UPS C:\WINDOWS\System32\ups.exe
18:33:23.0171 3568 UPS - ok
18:33:23.0187 3568 [ C1CA131F4E3ED63D6BC89A35FFAD4CDA ] USBAAPL C:\WINDOWS\system32\Drivers\usbaapl.sys
18:33:23.0218 3568 USBAAPL ( UnsignedFile.Multi.Generic ) - warning
18:33:23.0218 3568 USBAAPL - detected UnsignedFile.Multi.Generic (1)
18:33:23.0234 3568 [ E919708DB44ED8543A7C017953148330 ] usbaudio C:\WINDOWS\system32\drivers\usbaudio.sys
18:33:23.0296 3568 usbaudio - ok
18:33:23.0312 3568 [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
18:33:23.0375 3568 usbccgp - ok
18:33:23.0406 3568 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
18:33:23.0468 3568 usbehci - ok
18:33:23.0484 3568 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
18:33:23.0546 3568 usbhub - ok
18:33:23.0578 3568 [ A717C8721046828520C9EDF31288FC00 ] usbprint C:\WINDOWS\system32\DRIVERS\usbprint.sys
18:33:23.0656 3568 usbprint - ok
18:33:23.0671 3568 [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
18:33:23.0750 3568 usbscan - ok
18:33:23.0765 3568 [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
18:33:23.0843 3568 USBSTOR - ok
18:33:23.0859 3568 [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
18:33:23.0937 3568 usbuhci - ok
18:33:23.0953 3568 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
18:33:24.0015 3568 VgaSave - ok
18:33:24.0015 3568 ViaIde - ok
18:33:24.0031 3568 [ A5A712F4E880874A477AF790B5186E1D ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
18:33:24.0093 3568 VolSnap - ok
18:33:24.0109 3568 [ 68F106273BE29E7B7EF8266977268E78 ] VSS C:\WINDOWS\System32\vssvc.exe
18:33:24.0187 3568 VSS - ok
18:33:24.0203 3568 [ 7B353059E665F8B7AD2BBEAEF597CF45 ] W32Time C:\WINDOWS\System32\w32time.dll
18:33:24.0281 3568 W32Time - ok
18:33:24.0281 3568 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
18:33:24.0343 3568 Wanarp - ok
18:33:24.0359 3568 WDICA - ok
18:33:24.0359 3568 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
18:33:24.0437 3568 wdmaud - ok
18:33:24.0453 3568 [ 81727C9873E3905A2FFC1EBD07265002 ] WebClient C:\WINDOWS\System32\webclnt.dll
18:33:24.0515 3568 WebClient - ok
18:33:24.0593 3568 [ 6F3F3973D97714CC5F906A19FE883729 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
18:33:24.0656 3568 winmgmt - ok
18:33:24.0703 3568 [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN C:\WINDOWS\system32\MsPMSNSv.dll
18:33:24.0765 3568 WmdmPmSN - ok
18:33:24.0812 3568 [ FFA4D901D46D07A5BAB2D8307FBB51A6 ] Wmi C:\WINDOWS\System32\advapi32.dll
18:33:24.0828 3568 Wmi - ok
18:33:24.0859 3568 [ C42584FD66CE9E17403AEBCA199F7BDB ] WmiAcpi C:\WINDOWS\system32\DRIVERS\wmiacpi.sys
18:33:24.0921 3568 WmiAcpi - ok
18:33:24.0937 3568 [ 93908111BA57A6E60EC2FA2DE202105C ] WmiApSrv C:\WINDOWS\System32\wbem\wmiapsrv.exe
18:33:25.0062 3568 WmiApSrv - ok
18:33:25.0265 3568 [ CCFDECD6060EA8EB0F8466782A97FF21 ] WMP54Gv4SVC C:\Programme\Linksys Wireless-G PCI Wireless Network Monitor\WLService.exe
18:33:25.0265 3568 WMP54Gv4SVC ( UnsignedFile.Multi.Generic ) - warning
18:33:25.0265 3568 WMP54Gv4SVC - detected UnsignedFile.Multi.Generic (1)
18:33:25.0343 3568 [ F74E3D9A7FA9556C3BBB14D4E5E63D3B ] WMPNetworkSvc C:\Programme\Windows Media Player\WMPNetwk.exe
18:33:25.0437 3568 WMPNetworkSvc - ok
18:33:25.0484 3568 [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] WS2IFSL C:\WINDOWS\System32\drivers\ws2ifsl.sys
18:33:25.0562 3568 WS2IFSL - ok
18:33:25.0609 3568 [ 300B3E84FAF1A5C1F791C159BA28035D ] wscsvc C:\WINDOWS\system32\wscsvc.dll
18:33:25.0687 3568 wscsvc - ok
18:33:25.0734 3568 [ 7B4FE05202AA6BF9F4DFD0E6A0D8A085 ] wuauserv C:\WINDOWS\system32\wuauserv.dll
18:33:25.0796 3568 wuauserv - ok
18:33:25.0828 3568 [ F15FEAFFFBB3644CCC80C5DA584E6311 ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
18:33:25.0875 3568 WudfPf - ok
18:33:25.0906 3568 [ 28B524262BCE6DE1F7EF9F510BA3985B ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
18:33:25.0968 3568 WudfRd - ok
18:33:26.0000 3568 [ 05231C04253C5BC30B26CBAAE680ED89 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
18:33:26.0093 3568 WudfSvc - ok
18:33:26.0312 3568 [ C4F109C005F6725162D2D12CA751E4A7 ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
18:33:26.0453 3568 WZCSVC - ok
18:33:26.0515 3568 [ 0ADA34871A2E1CD2CAAFED1237A47750 ] xmlprov C:\WINDOWS\System32\xmlprov.dll
18:33:26.0984 3568 xmlprov - ok
18:33:27.0046 3568 ================ Scan global ===============================
18:33:27.0156 3568 [ 2C60091CA5F67C3032EAB3B30390C27F ] C:\WINDOWS\system32\basesrv.dll
18:33:27.0265 3568 [ A28CE25B59C90E12743001A1F2AE3613 ] C:\WINDOWS\system32\winsrv.dll
18:33:27.0671 3568 [ A28CE25B59C90E12743001A1F2AE3613 ] C:\WINDOWS\system32\winsrv.dll
18:33:27.0687 3568 [ A3EDBE9053889FB24AB22492472B39DC ] C:\WINDOWS\system32\services.exe
18:33:27.0703 3568 [Global] - ok
18:33:27.0703 3568 ================ Scan MBR ==================================
18:33:27.0859 3568 [ 4111774B1E16AE44D34BC4424B3EA5F9 ] \Device\Harddisk0\DR0
18:33:32.0890 3568 \Device\Harddisk0\DR0 - ok
18:33:32.0890 3568 ================ Scan VBR ==================================
18:33:32.0890 3568 [ 04F69B2A74F4B9238AE4AA1E6D384D1F ] \Device\Harddisk0\DR0\Partition1
18:33:32.0968 3568 \Device\Harddisk0\DR0\Partition1 - ok
18:33:33.0031 3568 [ BCA10F0690AB45BDC01C104667BB1BF4 ] \Device\Harddisk0\DR0\Partition2
18:33:33.0812 3568 \Device\Harddisk0\DR0\Partition2 - ok
18:33:33.0812 3568 ============================================================
18:33:33.0812 3568 Scan finished
18:33:33.0812 3568 ============================================================
18:33:33.0921 3556 Detected object count: 26
18:33:33.0921 3556 Actual detected object count: 26
|
|
17.01.2013, 18:46
| #6 |
| /// Malware-holic | Browser öffnet hin und wieder falsche Websiten bei klick auf links Hi, nutzt du das Gerät für Onlinebanking, zum einkaufen, für sonstige Zahlungsabwicklungen, oder ähnlich wichtigem, wie beruflichem?
__________________ --> Browser öffnet hin und wieder falsche Websiten bei klick auf links |
|
17.01.2013, 18:54
| #7 |
| | Browser öffnet hin und wieder falsche Websiten bei klick auf links Onlinebanking Ja, wie gesagt, Daten habe ich sicherheitshalber via einem anderen PC geändert, Einkaufen eher nich Isses so ne Phishing geschichte? |
|
17.01.2013, 22:04
| #8 |
| /// Malware-holic | Browser öffnet hin und wieder falsche Websiten bei klick auf links hi, bitte die Bank anrufen, onlinebanking sperren lassen, aufgrund des Zero access Rootkits (womit deine Frage auch beantwortet ist :-)) dies ist ein Rootkit, da man hier nicht ganz sicher gehen kann, dass wir dies los werden: der pc muss neu aufgesetzt und dann abgesichert werden 1. Datenrettung:
ich werde außerdem noch weitere punkte dazu posten. 4. alle Passwörter ändern! 5. nach PC Absicherung, die gesicherten Daten prüfen und falls sauber: zurückspielen. 6. werde ich dann noch was zum absichern von Onlinebanking mit Chip Card Reader + Star Money sagen.
__________________ -Verdächtige mails bitte an uns zur Analyse weiterleiten: markusg.trojaner-board@web.de Weiterleiten Anleitung: http://markusg.trojaner-board.de Mails bitte vorerst nach obiger Anleitung an markusg.trojaner-board@web.de Weiterleiten Wenn Ihr uns unterstützen möchtet |
|
17.01.2013, 23:43
| #9 |
| | Browser öffnet hin und wieder falsche Websiten bei klick auf links Hi, Ja alles so wie ich befürchtet hatte, dann bedank ich mich für die Hilfe/Analyse meines Systems! Da ich gerade frisch in die Stadt hier gezogen bin, keinerlei datenträger/recovery cd's geschweige denn sowas wie programme wie office zur verfügung hab wird mir dann wohl nichts anderes Übrig bleiben als für das Problem Geld auszugeben und jemanden zu beauftragen, dass er das für mich macht Wie gesagt danke für die Hilfe, ihr macht das großartig! Gute Nacht |
|
18.01.2013, 18:48
| #10 |
| /// Malware-holic | Browser öffnet hin und wieder falsche Websiten bei klick auf links hi sag mir doch erst mal, wie dein gerät heißt, hersteller und typen.
__________________ -Verdächtige mails bitte an uns zur Analyse weiterleiten: markusg.trojaner-board@web.de Weiterleiten Anleitung: http://markusg.trojaner-board.de Mails bitte vorerst nach obiger Anleitung an markusg.trojaner-board@web.de Weiterleiten Wenn Ihr uns unterstützen möchtet |
|
| Themen zu Browser öffnet hin und wieder falsche Websiten bei klick auf links |
| antimalware, browser, datensicherung, ebanking, falsche, festplatte, firefox, folge, gmer, internet, klicke, leitet, link, links, log, malwarebytes, phishing, problem, problem gelöst, programme, rechner, recovery cd, seite, seiten, super, superantispyware, systemwiederherstellung, systemwiederherstellung gemacht, öffnet |
Linear-Darstellung
