Internet langsam und hohe Pingschwankungen

sever01 · 17.06.2013, 17:53

Hallo,
ich habe seit ungefähr einer Woche das Poblem, dass das Internet auf meinem PC langsam ist. Ich habe einen DSL Speedtest von mehreren Rechnern gemacht und die anderen Rechner hatten immer ein höheres Ergebnis. Außerdem habe ich bei Onlinespielen hohe Pingschwankungen was das Spielen fast unmöglich macht. Die gratis Version von AVAST findet keine Bedrohungen/Viren. Ich muss die Logfiles als Archiv anhängen, da sonst der Beitrag zu lang ist.

Schonmal vielen Dank für eure Hilfe!

MFG
Sever01

markusg · 17.06.2013, 17:57

Hi,
Downloade dir bitte

TDSSKiller.exe und speichere diese Datei auf dem Desktop

Starte die TDSSKiller.exe - Einstellen wie in der Anleitung zu TDSSKiller beschrieben.
Drücke Start Scan
Sollten infizierte Objekte gefunden werden, wähle keinesfalls Cure. Wähle Skip und klicke auf Continue.
TDSSKiller wird eine Logfile auf deinem Systemlaufwerk speichern (Meistens C:\)
Als Beispiel: C:\TDSSKiller.<Version_Datum_Uhrzeit>log.txt

Poste den Inhalt bitte in jedem Fall hier in deinen Thread.

sever01 · 17.06.2013, 19:36

Danke für die schnelle Antwort.
Hier der Logfile:

20:31:12.0620 4620 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
20:31:12.0795 4620 ============================================================
20:31:12.0795 4620 Current date / time: 2013/06/17 20:31:12.0795
20:31:12.0795 4620 SystemInfo:
20:31:12.0795 4620
20:31:12.0795 4620 OS Version: 6.1.7601 ServicePack: 1.0
20:31:12.0795 4620 Product type: Workstation
20:31:12.0795 4620 ComputerName: FRANZ-PC
20:31:12.0795 4620 UserName: Franz
20:31:12.0795 4620 Windows directory: C:\Windows
20:31:12.0795 4620 System windows directory: C:\Windows
20:31:12.0795 4620 Running under WOW64
20:31:12.0795 4620 Processor architecture: Intel x64
20:31:12.0795 4620 Number of processors: 4
20:31:12.0795 4620 Page size: 0x1000
20:31:12.0795 4620 Boot type: Normal boot
20:31:12.0795 4620 ============================================================
20:31:13.0950 4620 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
20:31:13.0967 4620 ============================================================
20:31:13.0967 4620 \Device\Harddisk0\DR0:
20:31:13.0967 4620 MBR partitions:
20:31:13.0967 4620 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
20:31:13.0967 4620 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x6A914000
20:31:13.0967 4620 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x6A946800, BlocksNum 0x9DBF000
20:31:13.0967 4620 ============================================================
20:31:13.0982 4620 C: <-> \Device\Harddisk0\DR0\Partition2
20:31:14.0017 4620 D: <-> \Device\Harddisk0\DR0\Partition3
20:31:14.0018 4620 ============================================================
20:31:14.0018 4620 Initialize success
20:31:14.0018 4620 ============================================================
20:32:13.0515 3388 ============================================================
20:32:13.0515 3388 Scan started
20:32:13.0515 3388 Mode: Manual; SigCheck; TDLFS;
20:32:13.0515 3388 ============================================================
20:32:13.0881 3388 ================ Scan system memory ========================
20:32:13.0881 3388 System memory - ok
20:32:13.0882 3388 ================ Scan services =============================
20:32:13.0973 3388 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
20:32:14.0035 3388 1394ohci - ok
20:32:14.0044 3388 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
20:32:14.0055 3388 ACPI - ok
20:32:14.0061 3388 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
20:32:14.0085 3388 AcpiPmi - ok
20:32:14.0169 3388 [ 9915504F602D277EE47FD843A677FD15 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
20:32:14.0188 3388 AdobeFlashPlayerUpdateSvc - ok
20:32:14.0197 3388 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
20:32:14.0218 3388 adp94xx - ok
20:32:14.0223 3388 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\drivers\adpahci.sys
20:32:14.0235 3388 adpahci - ok
20:32:14.0239 3388 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
20:32:14.0249 3388 adpu320 - ok
20:32:14.0266 3388 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
20:32:14.0289 3388 AeLookupSvc - ok
20:32:14.0309 3388 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
20:32:14.0342 3388 AFD - ok
20:32:14.0344 3388 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
20:32:14.0352 3388 agp440 - ok
20:32:14.0354 3388 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
20:32:14.0382 3388 ALG - ok
20:32:14.0384 3388 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
20:32:14.0392 3388 aliide - ok
20:32:14.0427 3388 [ 310F86335B0505DDC6D2DD48E66EF06B ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
20:32:14.0456 3388 AMD External Events Utility - ok
20:32:14.0460 3388 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
20:32:14.0474 3388 amdide - ok
20:32:14.0487 3388 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
20:32:14.0506 3388 AmdK8 - ok
20:32:14.0634 3388 [ 79CC9BE187E3144E1B58A54B842475E7 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
20:32:14.0816 3388 amdkmdag - ok
20:32:14.0904 3388 [ 07561D3B7FD99F6E186C49C2D0628E38 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
20:32:14.0935 3388 amdkmdap - ok
20:32:14.0939 3388 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys
20:32:14.0955 3388 AmdPPM - ok
20:32:14.0978 3388 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
20:32:14.0992 3388 amdsata - ok
20:32:14.0997 3388 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
20:32:15.0012 3388 amdsbs - ok
20:32:15.0024 3388 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
20:32:15.0036 3388 amdxata - ok
20:32:15.0039 3388 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
20:32:15.0070 3388 AppID - ok
20:32:15.0084 3388 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
20:32:15.0116 3388 AppIDSvc - ok
20:32:15.0132 3388 [ 9D2A2369AB4B08A4905FE72DB104498F ] Appinfo C:\Windows\System32\appinfo.dll
20:32:15.0165 3388 Appinfo - ok
20:32:15.0236 3388 [ 4FE5C6D40664AE07BE5105874357D2ED ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
20:32:15.0253 3388 Apple Mobile Device - ok
20:32:15.0258 3388 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\drivers\arc.sys
20:32:15.0269 3388 arc - ok
20:32:15.0271 3388 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\drivers\arcsas.sys
20:32:15.0280 3388 arcsas - ok
20:32:15.0322 3388 [ EB6DC008A1F36DFD7999EB57E97EAACE ] asahci64 C:\Windows\system32\DRIVERS\asahci64.sys
20:32:15.0342 3388 asahci64 - ok
20:32:15.0380 3388 [ 0C3F9E39C0B10D351026D580D9FF6F86 ] AsrRamDisk C:\Windows\system32\DRIVERS\AsrRamDisk.sys
20:32:15.0394 3388 AsrRamDisk - ok
20:32:15.0415 3388 [ 0BAEFD3F648C6E7AB52990DD9565E4E2 ] aswFsBlk C:\Windows\system32\drivers\aswFsBlk.sys
20:32:15.0431 3388 aswFsBlk - ok
20:32:15.0446 3388 [ 890918D53B80B474CFAFB48995B85AF3 ] aswKbd C:\Windows\system32\drivers\aswKbd.sys
20:32:15.0461 3388 aswKbd - ok
20:32:15.0476 3388 [ FA562F34ED6633C66170B09182B4C049 ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys
20:32:15.0492 3388 aswMonFlt - ok
20:32:15.0514 3388 [ 64E2BAB4096C13D2342BC4661C967E07 ] aswRdr C:\Windows\System32\Drivers\aswrdr2.sys
20:32:15.0530 3388 aswRdr - ok
20:32:15.0554 3388 [ 5573AA70993A2BB81525B1C704B88763 ] aswRvrt C:\Windows\system32\drivers\aswRvrt.sys
20:32:15.0570 3388 aswRvrt - ok
20:32:15.0596 3388 [ 10ED1CAB84AA65983C41A11F60294C9B ] aswSnx C:\Windows\system32\drivers\aswSnx.sys
20:32:15.0626 3388 aswSnx - ok
20:32:15.0657 3388 [ 00E5253353717D3CA12A0F5A6F9991EC ] aswSP C:\Windows\system32\drivers\aswSP.sys
20:32:15.0678 3388 aswSP - ok
20:32:15.0685 3388 [ 29DD8E458A84171202AA4979364C30C0 ] aswTdi C:\Windows\system32\drivers\aswTdi.sys
20:32:15.0698 3388 aswTdi - ok
20:32:15.0717 3388 [ 6359B99C955DB9F40B653159A0EED261 ] aswVmm C:\Windows\system32\drivers\aswVmm.sys
20:32:15.0733 3388 aswVmm - ok
20:32:15.0741 3388 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
20:32:15.0775 3388 AsyncMac - ok
20:32:15.0777 3388 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
20:32:15.0784 3388 atapi - ok
20:32:15.0838 3388 [ ED3A041014FBBFDC23D6C04F9C7A5D79 ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys
20:32:15.0871 3388 AtiHDAudioService - ok
20:32:15.0898 3388 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
20:32:15.0953 3388 AudioEndpointBuilder - ok
20:32:15.0960 3388 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
20:32:15.0983 3388 AudioSrv - ok
20:32:16.0023 3388 [ 28D6701C710AD7BA3CB95E75F8F1A9AA ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
20:32:16.0039 3388 avast! Antivirus - ok
20:32:16.0054 3388 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
20:32:16.0091 3388 AxInstSV - ok
20:32:16.0114 3388 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
20:32:16.0147 3388 b06bdrv - ok
20:32:16.0175 3388 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
20:32:16.0200 3388 b57nd60a - ok
20:32:16.0224 3388 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
20:32:16.0252 3388 BDESVC - ok
20:32:16.0263 3388 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
20:32:16.0309 3388 Beep - ok
20:32:16.0336 3388 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
20:32:16.0362 3388 BFE - ok
20:32:16.0386 3388 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
20:32:16.0426 3388 BITS - ok
20:32:16.0429 3388 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
20:32:16.0444 3388 blbdrive - ok
20:32:16.0482 3388 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
20:32:16.0503 3388 Bonjour Service - ok
20:32:16.0520 3388 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
20:32:16.0550 3388 bowser - ok
20:32:16.0563 3388 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
20:32:16.0587 3388 BrFiltLo - ok
20:32:16.0599 3388 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
20:32:16.0615 3388 BrFiltUp - ok
20:32:16.0640 3388 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
20:32:16.0656 3388 Browser - ok
20:32:16.0661 3388 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
20:32:16.0686 3388 Brserid - ok
20:32:16.0699 3388 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
20:32:16.0722 3388 BrSerWdm - ok
20:32:16.0726 3388 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
20:32:16.0743 3388 BrUsbMdm - ok
20:32:16.0745 3388 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
20:32:16.0757 3388 BrUsbSer - ok
20:32:16.0760 3388 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
20:32:16.0775 3388 BTHMODEM - ok
20:32:16.0790 3388 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
20:32:16.0812 3388 bthserv - ok
20:32:16.0823 3388 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
20:32:16.0845 3388 cdfs - ok
20:32:16.0855 3388 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
20:32:16.0865 3388 cdrom - ok
20:32:16.0877 3388 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
20:32:16.0898 3388 CertPropSvc - ok
20:32:16.0901 3388 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\drivers\circlass.sys
20:32:16.0911 3388 circlass - ok
20:32:16.0925 3388 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
20:32:16.0936 3388 CLFS - ok
20:32:16.0993 3388 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
20:32:17.0010 3388 clr_optimization_v2.0.50727_32 - ok
20:32:17.0036 3388 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
20:32:17.0057 3388 clr_optimization_v2.0.50727_64 - ok
20:32:17.0098 3388 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
20:32:17.0115 3388 clr_optimization_v4.0.30319_32 - ok
20:32:17.0143 3388 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
20:32:17.0159 3388 clr_optimization_v4.0.30319_64 - ok
20:32:17.0172 3388 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\drivers\CmBatt.sys
20:32:17.0195 3388 CmBatt - ok
20:32:17.0198 3388 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
20:32:17.0208 3388 cmdide - ok
20:32:17.0237 3388 [ AAFCB52FE0037207FB6FBEA070D25EFE ] CNG C:\Windows\system32\Drivers\cng.sys
20:32:17.0252 3388 CNG - ok
20:32:17.0255 3388 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\drivers\compbatt.sys
20:32:17.0262 3388 Compbatt - ok
20:32:17.0264 3388 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
20:32:17.0275 3388 CompositeBus - ok
20:32:17.0277 3388 COMSysApp - ok
20:32:17.0289 3388 cpuz136 - ok
20:32:17.0291 3388 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
20:32:17.0299 3388 crcdisk - ok
20:32:17.0310 3388 [ D8129C49798CBBFB2E4351D4B7B8EF9C ] CryptSvc C:\Windows\system32\cryptsvc.dll
20:32:17.0333 3388 CryptSvc - ok
20:32:17.0386 3388 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
20:32:17.0441 3388 DcomLaunch - ok
20:32:17.0459 3388 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
20:32:17.0495 3388 defragsvc - ok
20:32:17.0507 3388 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
20:32:17.0550 3388 DfsC - ok
20:32:17.0556 3388 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
20:32:17.0575 3388 Dhcp - ok
20:32:17.0578 3388 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
20:32:17.0607 3388 discache - ok
20:32:17.0610 3388 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\drivers\disk.sys
20:32:17.0618 3388 Disk - ok
20:32:17.0638 3388 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
20:32:17.0673 3388 Dnscache - ok
20:32:17.0714 3388 [ FA122BC1451B1B35B7814FBE1ACF1924 ] Dokan C:\Windows\system32\drivers\dokan.sys
20:32:17.0733 3388 Dokan - ok
20:32:17.0750 3388 [ 8C856E531A1170F53AC6844E89CD0B5F ] DokanMounter C:\Program Files (x86)\Dokan\DokanLibrary\mounter.exe
20:32:17.0782 3388 DokanMounter ( UnsignedFile.Multi.Generic ) - warning
20:32:17.0782 3388 DokanMounter - detected UnsignedFile.Multi.Generic (1)
20:32:17.0798 3388 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
20:32:17.0845 3388 dot3svc - ok
20:32:17.0848 3388 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
20:32:17.0878 3388 DPS - ok
20:32:17.0900 3388 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
20:32:17.0922 3388 drmkaud - ok
20:32:17.0957 3388 [ AF2E16242AA723F68F461B6EAE2EAD3D ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
20:32:17.0989 3388 DXGKrnl - ok
20:32:18.0000 3388 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
20:32:18.0023 3388 EapHost - ok
20:32:18.0071 3388 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\drivers\evbda.sys
20:32:18.0138 3388 ebdrv - ok
20:32:18.0160 3388 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
20:32:18.0170 3388 EFS - ok
20:32:18.0221 3388 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
20:32:18.0256 3388 ehRecvr - ok
20:32:18.0276 3388 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
20:32:18.0305 3388 ehSched - ok
20:32:18.0328 3388 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\drivers\elxstor.sys
20:32:18.0353 3388 elxstor - ok
20:32:18.0360 3388 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
20:32:18.0379 3388 ErrDev - ok
20:32:18.0391 3388 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
20:32:18.0422 3388 EventSystem - ok
20:32:18.0431 3388 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
20:32:18.0453 3388 exfat - ok
20:32:18.0457 3388 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
20:32:18.0480 3388 fastfat - ok
20:32:18.0491 3388 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
20:32:18.0513 3388 Fax - ok
20:32:18.0523 3388 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\drivers\fdc.sys
20:32:18.0532 3388 fdc - ok
20:32:18.0541 3388 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
20:32:18.0563 3388 fdPHost - ok
20:32:18.0573 3388 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
20:32:18.0602 3388 FDResPub - ok
20:32:18.0605 3388 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
20:32:18.0612 3388 FileInfo - ok
20:32:18.0614 3388 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
20:32:18.0635 3388 Filetrace - ok
20:32:18.0638 3388 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
20:32:18.0646 3388 flpydisk - ok
20:32:18.0650 3388 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
20:32:18.0660 3388 FltMgr - ok
20:32:18.0683 3388 [ C4C183E6551084039EC862DA1C945E3D ] FontCache C:\Windows\system32\FntCache.dll
20:32:18.0698 3388 FontCache - ok
20:32:18.0718 3388 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
20:32:18.0725 3388 FontCache3.0.0.0 - ok
20:32:18.0728 3388 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
20:32:18.0735 3388 FsDepends - ok
20:32:18.0753 3388 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
20:32:18.0760 3388 Fs_Rec - ok
20:32:18.0797 3388 [ B99C240DEA85007044E178C1C9C75659 ] Futuremark SystemInfo Service C:\Program Files (x86)\Futuremark\Futuremark SystemInfo\FMSISvc.exe
20:32:18.0811 3388 Futuremark SystemInfo Service - ok
20:32:18.0828 3388 [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
20:32:18.0852 3388 fvevol - ok
20:32:18.0856 3388 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
20:32:18.0867 3388 gagp30kx - ok
20:32:18.0901 3388 [ F5D15F93007259AFD6FC2DEC420132A1 ] GameKB C:\Windows\system32\drivers\GameKB.sys
20:32:18.0914 3388 GameKB - ok
20:32:18.0933 3388 [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
20:32:18.0939 3388 GEARAspiWDM - ok
20:32:18.0952 3388 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
20:32:18.0979 3388 gpsvc - ok
20:32:18.0990 3388 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
20:32:19.0005 3388 hcw85cir - ok
20:32:19.0038 3388 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
20:32:19.0064 3388 HdAudAddService - ok
20:32:19.0077 3388 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
20:32:19.0100 3388 HDAudBus - ok
20:32:19.0107 3388 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
20:32:19.0134 3388 HidBatt - ok
20:32:19.0146 3388 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\drivers\hidbth.sys
20:32:19.0170 3388 HidBth - ok
20:32:19.0180 3388 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\drivers\hidir.sys
20:32:19.0199 3388 HidIr - ok
20:32:19.0206 3388 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
20:32:19.0235 3388 hidserv - ok
20:32:19.0246 3388 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
20:32:19.0255 3388 HidUsb - ok
20:32:19.0269 3388 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
20:32:19.0299 3388 hkmsvc - ok
20:32:19.0314 3388 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
20:32:19.0326 3388 HomeGroupListener - ok
20:32:19.0342 3388 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
20:32:19.0358 3388 HomeGroupProvider - ok
20:32:19.0361 3388 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
20:32:19.0369 3388 HpSAMD - ok
20:32:19.0401 3388 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
20:32:19.0449 3388 HTTP - ok
20:32:19.0451 3388 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
20:32:19.0460 3388 hwpolicy - ok
20:32:19.0462 3388 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
20:32:19.0473 3388 i8042prt - ok
20:32:19.0503 3388 [ 6C91E425ACE29594BD574DE38AC9B76D ] iaStorA C:\Windows\system32\DRIVERS\iaStorA.sys
20:32:19.0518 3388 iaStorA - ok
20:32:19.0555 3388 [ 0AB254994A460550258446950BB58311 ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
20:32:19.0563 3388 IAStorDataMgrSvc - ok
20:32:19.0574 3388 [ 2B38F13E18E272459CD2CE83E6722C12 ] iaStorF C:\Windows\system32\DRIVERS\iaStorF.sys
20:32:19.0582 3388 iaStorF - ok
20:32:19.0607 3388 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
20:32:19.0620 3388 iaStorV - ok
20:32:19.0657 3388 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
20:32:19.0675 3388 idsvc - ok
20:32:19.0678 3388 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\drivers\iirsp.sys
20:32:19.0687 3388 iirsp - ok
20:32:19.0718 3388 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
20:32:19.0752 3388 IKEEXT - ok
20:32:19.0756 3388 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
20:32:19.0764 3388 intelide - ok
20:32:19.0771 3388 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
20:32:19.0781 3388 intelppm - ok
20:32:19.0788 3388 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
20:32:19.0811 3388 IPBusEnum - ok
20:32:19.0825 3388 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
20:32:19.0846 3388 IpFilterDriver - ok
20:32:19.0863 3388 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
20:32:19.0884 3388 iphlpsvc - ok
20:32:19.0919 3388 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
20:32:19.0947 3388 IPMIDRV - ok
20:32:19.0959 3388 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
20:32:20.0003 3388 IPNAT - ok
20:32:20.0034 3388 [ 0FF335D687C85097725A53458160E81E ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
20:32:20.0058 3388 iPod Service - ok
20:32:20.0062 3388 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
20:32:20.0079 3388 IRENUM - ok
20:32:20.0081 3388 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
20:32:20.0088 3388 isapnp - ok
20:32:20.0100 3388 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
20:32:20.0110 3388 iScsiPrt - ok
20:32:20.0141 3388 [ BE72D2B3A99615F84E270C80F0A18448 ] ISWKL C:\Program Files\CheckPoint\ZAForceField\ISWKL.sys
20:32:20.0148 3388 ISWKL - ok
20:32:20.0167 3388 [ D9A4C1353CC653F8E2FE4D2C6A490E96 ] IswSvc C:\Program Files\CheckPoint\ZAForceField\IswSvc.exe
20:32:20.0179 3388 IswSvc - ok
20:32:20.0231 3388 [ D596D915CF091DA1F8CE4BD38BB5D509 ] iusb3hcs C:\Windows\system32\DRIVERS\iusb3hcs.sys
20:32:20.0246 3388 iusb3hcs - ok
20:32:20.0322 3388 [ 023896E23B61543A15A230EED996D911 ] iusb3hub C:\Windows\system32\DRIVERS\iusb3hub.sys
20:32:20.0343 3388 iusb3hub - ok
20:32:20.0416 3388 [ 7FAEC13F1ADD619F4B5B2D2CBF841E8E ] iusb3xhc C:\Windows\system32\DRIVERS\iusb3xhc.sys
20:32:20.0430 3388 iusb3xhc - ok
20:32:20.0484 3388 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
20:32:20.0500 3388 kbdclass - ok
20:32:20.0507 3388 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
20:32:20.0541 3388 kbdhid - ok
20:32:20.0561 3388 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
20:32:20.0572 3388 KeyIso - ok
20:32:20.0588 3388 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
20:32:20.0598 3388 KSecDD - ok
20:32:20.0614 3388 [ 7EFB9333E4ECCE6AE4AE9D777D9E553E ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
20:32:20.0624 3388 KSecPkg - ok
20:32:20.0632 3388 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
20:32:20.0668 3388 ksthunk - ok
20:32:20.0691 3388 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
20:32:20.0725 3388 KtmRm - ok
20:32:20.0742 3388 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
20:32:20.0774 3388 LanmanServer - ok
20:32:20.0796 3388 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
20:32:20.0831 3388 LanmanWorkstation - ok
20:32:20.0846 3388 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
20:32:20.0868 3388 lltdio - ok
20:32:20.0891 3388 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
20:32:20.0923 3388 lltdsvc - ok
20:32:20.0940 3388 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
20:32:20.0966 3388 lmhosts - ok
20:32:20.0978 3388 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
20:32:20.0987 3388 LSI_FC - ok
20:32:20.0989 3388 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
20:32:20.0998 3388 LSI_SAS - ok
20:32:21.0000 3388 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
20:32:21.0007 3388 LSI_SAS2 - ok
20:32:21.0010 3388 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
20:32:21.0019 3388 LSI_SCSI - ok
20:32:21.0021 3388 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
20:32:21.0052 3388 luafv - ok
20:32:21.0072 3388 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
20:32:21.0083 3388 Mcx2Svc - ok
20:32:21.0085 3388 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\drivers\megasas.sys
20:32:21.0093 3388 megasas - ok
20:32:21.0097 3388 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
20:32:21.0107 3388 MegaSR - ok
20:32:21.0132 3388 [ 772A1DEEDFDBC244183B5C805D1B7D85 ] MEIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
20:32:21.0138 3388 MEIx64 - ok
20:32:21.0144 3388 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
20:32:21.0167 3388 MMCSS - ok
20:32:21.0180 3388 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
20:32:21.0203 3388 Modem - ok
20:32:21.0205 3388 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
20:32:21.0223 3388 monitor - ok
20:32:21.0226 3388 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
20:32:21.0233 3388 mouclass - ok
20:32:21.0244 3388 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
20:32:21.0257 3388 mouhid - ok
20:32:21.0260 3388 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
20:32:21.0268 3388 mountmgr - ok
20:32:21.0293 3388 [ 825BF0E46B4470A463AEB641480C5FCA ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
20:32:21.0301 3388 MozillaMaintenance - ok
20:32:21.0304 3388 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
20:32:21.0313 3388 mpio - ok
20:32:21.0316 3388 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
20:32:21.0337 3388 mpsdrv - ok
20:32:21.0353 3388 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
20:32:21.0380 3388 MpsSvc - ok
20:32:21.0383 3388 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
20:32:21.0396 3388 MRxDAV - ok
20:32:21.0415 3388 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
20:32:21.0429 3388 mrxsmb - ok
20:32:21.0444 3388 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
20:32:21.0454 3388 mrxsmb10 - ok
20:32:21.0468 3388 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
20:32:21.0478 3388 mrxsmb20 - ok
20:32:21.0480 3388 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
20:32:21.0487 3388 msahci - ok
20:32:21.0490 3388 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
20:32:21.0499 3388 msdsm - ok
20:32:21.0512 3388 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
20:32:21.0524 3388 MSDTC - ok
20:32:21.0528 3388 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
20:32:21.0553 3388 Msfs - ok
20:32:21.0559 3388 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
20:32:21.0581 3388 mshidkmdf - ok
20:32:21.0583 3388 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
20:32:21.0590 3388 msisadrv - ok
20:32:21.0608 3388 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
20:32:21.0632 3388 MSiSCSI - ok
20:32:21.0633 3388 msiserver - ok
20:32:21.0644 3388 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
20:32:21.0674 3388 MSKSSRV - ok
20:32:21.0682 3388 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
20:32:21.0713 3388 MSPCLOCK - ok
20:32:21.0724 3388 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
20:32:21.0745 3388 MSPQM - ok
20:32:21.0761 3388 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
20:32:21.0772 3388 MsRPC - ok
20:32:21.0775 3388 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
20:32:21.0782 3388 mssmbios - ok
20:32:21.0794 3388 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
20:32:21.0816 3388 MSTEE - ok
20:32:21.0825 3388 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
20:32:21.0835 3388 MTConfig - ok
20:32:21.0845 3388 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
20:32:21.0852 3388 Mup - ok
20:32:21.0872 3388 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
20:32:21.0908 3388 napagent - ok
20:32:21.0920 3388 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
20:32:21.0935 3388 NativeWifiP - ok
20:32:21.0961 3388 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
20:32:21.0976 3388 NDIS - ok
20:32:21.0984 3388 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
20:32:22.0006 3388 NdisCap - ok
20:32:22.0018 3388 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
20:32:22.0039 3388 NdisTapi - ok
20:32:22.0052 3388 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
20:32:22.0074 3388 Ndisuio - ok
20:32:22.0077 3388 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
20:32:22.0110 3388 NdisWan - ok
20:32:22.0118 3388 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
20:32:22.0139 3388 NDProxy - ok
20:32:22.0141 3388 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
20:32:22.0164 3388 NetBIOS - ok
20:32:22.0167 3388 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
20:32:22.0189 3388 NetBT - ok
20:32:22.0194 3388 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
20:32:22.0203 3388 Netlogon - ok
20:32:22.0227 3388 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
20:32:22.0259 3388 Netman - ok
20:32:22.0271 3388 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
20:32:22.0307 3388 netprofm - ok
20:32:22.0320 3388 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
20:32:22.0328 3388 NetTcpPortSharing - ok
20:32:22.0331 3388 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
20:32:22.0339 3388 nfrd960 - ok
20:32:22.0366 3388 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
20:32:22.0382 3388 NlaSvc - ok
20:32:22.0384 3388 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
20:32:22.0405 3388 Npfs - ok
20:32:22.0415 3388 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
20:32:22.0442 3388 nsi - ok
20:32:22.0444 3388 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
20:32:22.0469 3388 nsiproxy - ok
20:32:22.0499 3388 [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
20:32:22.0523 3388 Ntfs - ok
20:32:22.0528 3388 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
20:32:22.0555 3388 Null - ok
20:32:22.0566 3388 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
20:32:22.0575 3388 nvraid - ok
20:32:22.0586 3388 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
20:32:22.0596 3388 nvstor - ok
20:32:22.0609 3388 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
20:32:22.0618 3388 nv_agp - ok
20:32:22.0620 3388 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
20:32:22.0633 3388 ohci1394 - ok
20:32:22.0642 3388 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
20:32:22.0658 3388 p2pimsvc - ok
20:32:22.0674 3388 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
20:32:22.0687 3388 p2psvc - ok
20:32:22.0689 3388 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\drivers\parport.sys
20:32:22.0708 3388 Parport - ok
20:32:22.0725 3388 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
20:32:22.0733 3388 partmgr - ok
20:32:22.0736 3388 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
20:32:22.0761 3388 PcaSvc - ok
20:32:22.0765 3388 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
20:32:22.0774 3388 pci - ok
20:32:22.0776 3388 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
20:32:22.0783 3388 pciide - ok
20:32:22.0795 3388 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
20:32:22.0804 3388 pcmcia - ok
20:32:22.0806 3388 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
20:32:22.0813 3388 pcw - ok
20:32:22.0819 3388 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
20:32:22.0847 3388 PEAUTH - ok
20:32:22.0888 3388 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
20:32:22.0913 3388 PerfHost - ok
20:32:22.0942 3388 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
20:32:22.0996 3388 pla - ok
20:32:23.0021 3388 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
20:32:23.0037 3388 PlugPlay - ok
20:32:23.0046 3388 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
20:32:23.0066 3388 PNRPAutoReg - ok
20:32:23.0071 3388 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
20:32:23.0085 3388 PNRPsvc - ok
20:32:23.0105 3388 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
20:32:23.0130 3388 PolicyAgent - ok
20:32:23.0155 3388 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
20:32:23.0186 3388 Power - ok
20:32:23.0199 3388 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
20:32:23.0223 3388 PptpMiniport - ok
20:32:23.0225 3388 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\drivers\processr.sys
20:32:23.0245 3388 Processor - ok
20:32:23.0262 3388 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
20:32:23.0281 3388 ProfSvc - ok
20:32:23.0294 3388 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
20:32:23.0304 3388 ProtectedStorage - ok
20:32:23.0325 3388 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
20:32:23.0354 3388 Psched - ok
20:32:23.0384 3388 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
20:32:23.0424 3388 ql2300 - ok
20:32:23.0427 3388 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
20:32:23.0435 3388 ql40xx - ok
20:32:23.0446 3388 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
20:32:23.0460 3388 QWAVE - ok
20:32:23.0463 3388 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
20:32:23.0475 3388 QWAVEdrv - ok
20:32:23.0484 3388 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
20:32:23.0506 3388 RasAcd - ok
20:32:23.0517 3388 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
20:32:23.0538 3388 RasAgileVpn - ok
20:32:23.0549 3388 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
20:32:23.0574 3388 RasAuto - ok
20:32:23.0577 3388 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
20:32:23.0598 3388 Rasl2tp - ok
20:32:23.0611 3388 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
20:32:23.0636 3388 RasMan - ok
20:32:23.0639 3388 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
20:32:23.0660 3388 RasPppoe - ok
20:32:23.0663 3388 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
20:32:23.0685 3388 RasSstp - ok
20:32:23.0689 3388 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
20:32:23.0713 3388 rdbss - ok
20:32:23.0747 3388 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\drivers\rdpbus.sys
20:32:23.0775 3388 rdpbus - ok
20:32:23.0791 3388 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
20:32:23.0824 3388 RDPCDD - ok
20:32:23.0828 3388 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
20:32:23.0853 3388 RDPENCDD - ok
20:32:23.0864 3388 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
20:32:23.0889 3388 RDPREFMP - ok
20:32:23.0929 3388 [ 313F68E1A3E6345A4F47A36B07062F34 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
20:32:23.0958 3388 RdpVideoMiniport - ok
20:32:23.0979 3388 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
20:32:24.0001 3388 RDPWD - ok
20:32:24.0014 3388 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
20:32:24.0033 3388 rdyboost - ok
20:32:24.0060 3388 [ EA569D48B2E755AF6D96F03F3335D98A ] Realtek11nSU C:\Program Files (x86)\REALTEK\11n USB Wireless LAN Utility\RtlService.exe
20:32:24.0076 3388 Realtek11nSU ( UnsignedFile.Multi.Generic ) - warning
20:32:24.0076 3388 Realtek11nSU - detected UnsignedFile.Multi.Generic (1)
20:32:24.0095 3388 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
20:32:24.0144 3388 RemoteAccess - ok
20:32:24.0163 3388 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
20:32:24.0188 3388 RemoteRegistry - ok
20:32:24.0199 3388 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
20:32:24.0223 3388 RpcEptMapper - ok
20:32:24.0239 3388 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
20:32:24.0250 3388 RpcLocator - ok
20:32:24.0261 3388 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
20:32:24.0285 3388 RpcSs - ok
20:32:24.0295 3388 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
20:32:24.0316 3388 rspndr - ok
20:32:24.0335 3388 [ 5EDFCEE5682237607082880338415AA6 ] RTL8192su C:\Windows\system32\DRIVERS\RTL8192su.sys
20:32:24.0346 3388 RTL8192su - ok
20:32:24.0353 3388 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
20:32:24.0362 3388 SamSs - ok
20:32:24.0364 3388 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
20:32:24.0372 3388 sbp2port - ok
20:32:24.0376 3388 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
20:32:24.0400 3388 SCardSvr - ok
20:32:24.0402 3388 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
20:32:24.0429 3388 scfilter - ok
20:32:24.0447 3388 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
20:32:24.0487 3388 Schedule - ok
20:32:24.0503 3388 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
20:32:24.0524 3388 SCPolicySvc - ok
20:32:24.0543 3388 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
20:32:24.0555 3388 SDRSVC - ok
20:32:24.0557 3388 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
20:32:24.0589 3388 secdrv - ok
20:32:24.0597 3388 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
20:32:24.0619 3388 seclogon - ok
20:32:24.0628 3388 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
20:32:24.0657 3388 SENS - ok
20:32:24.0664 3388 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
20:32:24.0682 3388 SensrSvc - ok
20:32:24.0693 3388 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
20:32:24.0702 3388 Serenum - ok
20:32:24.0712 3388 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
20:32:24.0725 3388 Serial - ok
20:32:24.0735 3388 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\drivers\sermouse.sys
20:32:24.0751 3388 sermouse - ok
20:32:24.0764 3388 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
20:32:24.0791 3388 SessionEnv - ok
20:32:24.0799 3388 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
20:32:24.0810 3388 sffdisk - ok
20:32:24.0821 3388 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
20:32:24.0840 3388 sffp_mmc - ok
20:32:24.0851 3388 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
20:32:24.0879 3388 sffp_sd - ok
20:32:24.0887 3388 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
20:32:24.0905 3388 sfloppy - ok
20:32:24.0920 3388 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
20:32:24.0974 3388 SharedAccess - ok
20:32:24.0984 3388 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
20:32:25.0010 3388 ShellHWDetection - ok
20:32:25.0013 3388 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
20:32:25.0020 3388 SiSRaid2 - ok
20:32:25.0022 3388 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
20:32:25.0031 3388 SiSRaid4 - ok
20:32:25.0049 3388 [ 7C15061CD0372487903B07B9BB03AFAD ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
20:32:25.0057 3388 SkypeUpdate - ok
20:32:25.0065 3388 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
20:32:25.0092 3388 Smb - ok
20:32:25.0105 3388 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
20:32:25.0120 3388 SNMPTRAP - ok
20:32:25.0122 3388 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
20:32:25.0129 3388 spldr - ok
20:32:25.0151 3388 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
20:32:25.0163 3388 Spooler - ok
20:32:25.0203 3388 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
20:32:25.0246 3388 sppsvc - ok
20:32:25.0257 3388 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
20:32:25.0281 3388 sppuinotify - ok
20:32:25.0303 3388 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
20:32:25.0315 3388 srv - ok
20:32:25.0319 3388 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
20:32:25.0332 3388 srv2 - ok
20:32:25.0350 3388 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
20:32:25.0360 3388 srvnet - ok
20:32:25.0377 3388 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
20:32:25.0401 3388 SSDPSRV - ok
20:32:25.0403 3388 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
20:32:25.0427 3388 SstpSvc - ok
20:32:25.0432 3388 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\drivers\stexstor.sys
20:32:25.0440 3388 stexstor - ok
20:32:25.0594 3388 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
20:32:25.0655 3388 stisvc - ok
20:32:25.0659 3388 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
20:32:25.0673 3388 swenum - ok
20:32:25.0680 3388 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
20:32:25.0714 3388 swprv - ok
20:32:25.0743 3388 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
20:32:25.0780 3388 SysMain - ok
20:32:25.0805 3388 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
20:32:25.0820 3388 TabletInputService - ok
20:32:25.0839 3388 [ B08740047145B9BCE15BF75CA0F9718A ] tap0901t C:\Windows\system32\DRIVERS\tap0901t.sys
20:32:25.0864 3388 tap0901t - ok
20:32:25.0872 3388 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
20:32:25.0919 3388 TapiSrv - ok
20:32:25.0922 3388 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
20:32:25.0959 3388 TBS - ok
20:32:25.0989 3388 [ 9849EA3843A2ADBDD1497E97A85D8CAE ] Tcpip C:\Windows\system32\drivers\tcpip.sys
20:32:26.0016 3388 Tcpip - ok
20:32:26.0036 3388 [ 9849EA3843A2ADBDD1497E97A85D8CAE ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
20:32:26.0058 3388 TCPIP6 - ok
20:32:26.0073 3388 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
20:32:26.0083 3388 tcpipreg - ok
20:32:26.0095 3388 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
20:32:26.0105 3388 TDPIPE - ok
20:32:26.0123 3388 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
20:32:26.0133 3388 TDTCP - ok
20:32:26.0144 3388 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
20:32:26.0165 3388 tdx - ok
20:32:26.0168 3388 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
20:32:26.0176 3388 TermDD - ok
20:32:26.0185 3388 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
20:32:26.0212 3388 TermService - ok
20:32:26.0223 3388 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
20:32:26.0237 3388 Themes - ok
20:32:26.0245 3388 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
20:32:26.0267 3388 THREADORDER - ok
20:32:26.0270 3388 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
20:32:26.0302 3388 TrkWks - ok
20:32:26.0334 3388 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
20:32:26.0370 3388 TrustedInstaller - ok
20:32:26.0373 3388 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
20:32:26.0405 3388 tssecsrv - ok
20:32:26.0438 3388 [ 17C6B51CBCCDED95B3CC14E22791F85E ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
20:32:26.0464 3388 TsUsbFlt - ok
20:32:26.0478 3388 [ AD64450A4ABE076F5CB34CC08EEACB07 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
20:32:26.0503 3388 TsUsbGD - ok
20:32:26.0528 3388 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
20:32:26.0578 3388 tunnel - ok
20:32:26.0621 3388 [ 0F744A57BFA0B92AA5A626CF7DD2A667 ] TunngleService C:\Program Files (x86)\Tunngle\TnglCtrl.exe
20:32:26.0648 3388 TunngleService - ok
20:32:26.0662 3388 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
20:32:26.0673 3388 uagp35 - ok
20:32:26.0689 3388 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
20:32:26.0721 3388 udfs - ok
20:32:26.0726 3388 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
20:32:26.0737 3388 UI0Detect - ok
20:32:26.0739 3388 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
20:32:26.0747 3388 uliagpkx - ok
20:32:26.0753 3388 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
20:32:26.0770 3388 umbus - ok
20:32:26.0778 3388 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\drivers\umpass.sys
20:32:26.0792 3388 UmPass - ok
20:32:26.0830 3388 [ 8F387A1CC015A3F5020700C657A0FC85 ] UnsignedThemes C:\Windows\UnsignedThemesSvc.exe
20:32:26.0846 3388 UnsignedThemes - ok
20:32:26.0870 3388 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
20:32:26.0918 3388 upnphost - ok
20:32:26.0937 3388 [ C9E9D59C0099A9FF51697E9306A44240 ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
20:32:26.0949 3388 USBAAPL64 - ok
20:32:26.0967 3388 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
20:32:26.0979 3388 usbccgp - ok
20:32:26.0989 3388 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
20:32:27.0002 3388 usbcir - ok
20:32:27.0017 3388 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
20:32:27.0036 3388 usbehci - ok
20:32:27.0047 3388 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
20:32:27.0065 3388 usbhub - ok
20:32:27.0079 3388 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
20:32:27.0096 3388 usbohci - ok
20:32:27.0099 3388 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\drivers\usbprint.sys
20:32:27.0120 3388 usbprint - ok
20:32:27.0128 3388 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
20:32:27.0152 3388 USBSTOR - ok
20:32:27.0155 3388 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
20:32:27.0166 3388 usbuhci - ok
20:32:27.0197 3388 [ 297EE9C666FC8BB96A232DB0DDBA1E49 ] uxpatch C:\Windows\system32\drivers\uxpatch.sys
20:32:27.0206 3388 uxpatch - ok
20:32:27.0214 3388 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
20:32:27.0248 3388 UxSms - ok
20:32:27.0254 3388 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
20:32:27.0265 3388 VaultSvc - ok
20:32:27.0273 3388 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
20:32:27.0282 3388 vdrvroot - ok
20:32:27.0298 3388 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
20:32:27.0331 3388 vds - ok
20:32:27.0334 3388 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
20:32:27.0346 3388 vga - ok
20:32:27.0348 3388 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
20:32:27.0370 3388 VgaSave - ok
20:32:27.0406 3388 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
20:32:27.0415 3388 vhdmp - ok
20:32:27.0418 3388 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
20:32:27.0425 3388 viaide - ok
20:32:27.0428 3388 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
20:32:27.0436 3388 volmgr - ok
20:32:27.0440 3388 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
20:32:27.0451 3388 volmgrx - ok
20:32:27.0455 3388 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
20:32:27.0466 3388 volsnap - ok
20:32:27.0488 3388 [ 1065A957523ED51AAFFF737CC63010A6 ] Vsdatant C:\Windows\system32\DRIVERS\vsdatant.sys
20:32:27.0498 3388 Vsdatant - ok
20:32:27.0518 3388 vsmon - ok
20:32:27.0525 3388 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
20:32:27.0534 3388 vsmraid - ok
20:32:27.0555 3388 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
20:32:27.0611 3388 VSS - ok
20:32:27.0614 3388 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
20:32:27.0625 3388 vwifibus - ok
20:32:27.0646 3388 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
20:32:27.0659 3388 vwififlt - ok
20:32:27.0664 3388 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
20:32:27.0676 3388 vwifimp - ok
20:32:27.0682 3388 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
20:32:27.0708 3388 W32Time - ok
20:32:27.0720 3388 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\drivers\wacompen.sys
20:32:27.0734 3388 WacomPen - ok
20:32:27.0737 3388 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
20:32:27.0766 3388 WANARP - ok
20:32:27.0768 3388 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
20:32:27.0789 3388 Wanarpv6 - ok
20:32:27.0809 3388 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
20:32:27.0855 3388 wbengine - ok
20:32:27.0869 3388 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
20:32:27.0883 3388 WbioSrvc - ok
20:32:27.0888 3388 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
20:32:27.0904 3388 wcncsvc - ok
20:32:27.0915 3388 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
20:32:27.0934 3388 WcsPlugInService - ok
20:32:27.0936 3388 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\drivers\wd.sys
20:32:27.0944 3388 Wd - ok
20:32:27.0968 3388 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
20:32:27.0984 3388 Wdf01000 - ok
20:32:27.0991 3388 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
20:32:28.0017 3388 WdiServiceHost - ok
20:32:28.0019 3388 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
20:32:28.0031 3388 WdiSystemHost - ok
20:32:28.0035 3388 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
20:32:28.0051 3388 WebClient - ok
20:32:28.0060 3388 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
20:32:28.0101 3388 Wecsvc - ok
20:32:28.0114 3388 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
20:32:28.0137 3388 wercplsupport - ok
20:32:28.0151 3388 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
20:32:28.0173 3388 WerSvc - ok
20:32:28.0176 3388 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
20:32:28.0196 3388 WfpLwf - ok
20:32:28.0210 3388 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
20:32:28.0218 3388 WIMMount - ok
20:32:28.0224 3388 WinDefend - ok
20:32:28.0226 3388 WinHttpAutoProxySvc - ok
20:32:28.0266 3388 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
20:32:28.0302 3388 Winmgmt - ok
20:32:28.0336 3388 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
20:32:28.0374 3388 WinRM - ok
20:32:28.0396 3388 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
20:32:28.0411 3388 WinUsb - ok
20:32:28.0435 3388 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
20:32:28.0455 3388 Wlansvc - ok
20:32:28.0552 3388 [ 357CABBF155AFD1D3926E62539D2A3A7 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
20:32:28.0593 3388 wlidsvc - ok
20:32:28.0600 3388 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
20:32:28.0609 3388 WmiAcpi - ok
20:32:28.0626 3388 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
20:32:28.0648 3388 wmiApSrv - ok
20:32:28.0659 3388 WMPNetworkSvc - ok
20:32:28.0670 3388 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
20:32:28.0681 3388 WPCSvc - ok
20:32:28.0692 3388 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
20:32:28.0704 3388 WPDBusEnum - ok
20:32:28.0706 3388 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
20:32:28.0728 3388 ws2ifsl - ok
20:32:28.0737 3388 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
20:32:28.0757 3388 wscsvc - ok
20:32:28.0759 3388 WSearch - ok
20:32:28.0793 3388 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
20:32:28.0845 3388 wuauserv - ok
20:32:28.0868 3388 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
20:32:28.0878 3388 WudfPf - ok
20:32:28.0902 3388 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
20:32:28.0924 3388 WUDFRd - ok
20:32:28.0936 3388 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
20:32:28.0958 3388 wudfsvc - ok
20:32:28.0980 3388 [ FE90B750AB808FB9DD8FBB428B5FF83B ] WwanSvc C:\Windows\System32\wwansvc.dll
20:32:29.0004 3388 WwanSvc - ok
20:32:29.0008 3388 ================ Scan global ===============================
20:32:29.0022 3388 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
20:32:29.0046 3388 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
20:32:29.0051 3388 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
20:32:29.0070 3388 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
20:32:29.0100 3388 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
20:32:29.0106 3388 [Global] - ok
20:32:29.0106 3388 ================ Scan MBR ==================================
20:32:29.0116 3388 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
20:32:29.0310 3388 \Device\Harddisk0\DR0 - ok
20:32:29.0310 3388 ================ Scan VBR ==================================
20:32:29.0313 3388 [ 095855E7791D3A3A3CFFAA3889882554 ] \Device\Harddisk0\DR0\Partition1
20:32:29.0314 3388 \Device\Harddisk0\DR0\Partition1 - ok
20:32:29.0342 3388 [ 2CE7FF8CF8F74B0312F235A4D7183093 ] \Device\Harddisk0\DR0\Partition2
20:32:29.0343 3388 \Device\Harddisk0\DR0\Partition2 - ok
20:32:29.0363 3388 [ AF41EFE84DC15EFBB6BBE0730DECB936 ] \Device\Harddisk0\DR0\Partition3
20:32:29.0365 3388 \Device\Harddisk0\DR0\Partition3 - ok
20:32:29.0366 3388 ============================================================
20:32:29.0366 3388 Scan finished
20:32:29.0366 3388 ============================================================
20:32:29.0374 5824 Detected object count: 2
20:32:29.0374 5824 Actual detected object count: 2
20:32:59.0050 5824 DokanMounter ( UnsignedFile.Multi.Generic ) - skipped by user
20:32:59.0050 5824 DokanMounter ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:32:59.0050 5824 Realtek11nSU ( UnsignedFile.Multi.Generic ) - skipped by user
20:32:59.0050 5824 Realtek11nSU ( UnsignedFile.Multi.Generic ) - User select action: Skip

markusg · 18.06.2013, 11:57

Hi,
Scan mit Combofix

WARNUNG an die MITLESER:
Combofix sollte ausschließlich ausgeführt werden, wenn dies von einem Teammitglied angewiesen wurde!

Downloade dir bitte Combofix vom folgenden Downloadspiegel: Link

WICHTIG: Speichere Combofix auf deinem Desktop.

Deaktiviere bitte alle deine Antivirensoftware sowie Malware/Spyware Scanner. Diese können Combofix bei der Arbeit stören. Combofix meckert auch manchmal trotzdem noch, das kannst du dann ignorieren, mir aber bitte mitteilen.

Starte die Combofix.exe und folge den Anweisungen auf dem Bildschirm.

Während Combofix läuft bitte nicht am Computer arbeiten, die Maus bewegen oder ins Combofixfenster klicken!

Wenn Combofix fertig ist, wird es ein Logfile erstellen.

Bitte poste die C:\Combofix.txt in deiner nächsten Antwort (möglichst in CODE-Tags).

Hinweis: Solltest du nach dem Neustart folgende Fehlermeldung erhalten
Es wurde versucht, einen Registrierungsschlüssel einem ungültigen Vorgang zu unterziehen, der zum Löschen markiert wurde.
starte den Rechner einfach neu. Dies sollte das Problem beheben.

sever01 · 18.06.2013, 12:37

ComboFix hat nicht gemeckert und beim Start kam auch keine Fehlermeldung.
Hier der Log:

Code:

ATTFilter

ComboFix 13-06-18.02 - Franz 18.06.2013  13:25:30.1.4 - x64
Microsoft Windows 7 Home Premium   6.1.7601.1.1252.49.1031.18.8136.6084 [GMT 2:00]
ausgeführt von:: c:\users\Franz\Desktop\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
FW: avast! Internet Security *Disabled* {131692B0-0864-D491-4E21-3A3A1D8BBB47}
FW: ZoneAlarm Free Firewall Firewall *Disabled* {E6380B7E-D4B2-19F1-083E-56486607704B}
SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((   Weitere Löschungen   ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\SysWow64\frapsvid.dll
.
.
(((((((((((((((((((((((   Dateien erstellt von 2013-05-18 bis 2013-06-18  ))))))))))))))))))))))))))))))
.
.
2013-06-18 11:29 . 2013-06-18 11:29	--------	d-----w-	c:\users\Default\AppData\Local\temp
2013-06-18 11:27 . 2013-06-18 11:27	76232	----a-w-	c:\programdata\Microsoft\Windows Defender\Definition Updates\{22B6A6DE-C208-4E88-B92E-18B347C13D24}\offreg.dll
2013-06-18 11:22 . 2013-06-12 03:08	9552976	----a-w-	c:\programdata\Microsoft\Windows Defender\Definition Updates\{22B6A6DE-C208-4E88-B92E-18B347C13D24}\mpengine.dll
2013-06-17 13:45 . 2013-06-17 13:46	--------	d-----w-	c:\users\Franz\AppData\Roaming\Feed The Beast
2013-06-17 13:45 . 2013-06-17 13:55	--------	d-----w-	c:\users\Franz\AppData\Roaming\ftblauncher
2013-06-16 17:48 . 2013-06-16 17:48	--------	d-----w-	c:\program files (x86)\AMD AVT
2013-06-16 17:48 . 2013-06-16 17:48	--------	d-----w-	c:\program files\Common Files\ATI Technologies
2013-06-16 17:48 . 2013-06-16 17:48	--------	d-----w-	c:\program files (x86)\Common Files\ATI Technologies
2013-06-16 17:48 . 2013-06-16 17:48	--------	d-----w-	c:\program files (x86)\ATI Technologies
2013-06-16 17:47 . 2013-06-16 17:47	--------	d-----w-	c:\program files\ATI Technologies
2013-06-13 05:48 . 2013-05-17 01:25	257536	----a-w-	c:\program files (x86)\Internet Explorer\ieproxy.dll
2013-06-12 14:25 . 2013-05-08 06:39	1910632	----a-w-	c:\windows\system32\drivers\tcpip.sys
2013-06-09 16:50 . 2013-06-09 16:50	--------	d-----w-	c:\programdata\34BE82C4-E596-4e99-A191-52C6199EBF69
2013-06-09 16:50 . 2013-06-09 16:50	--------	d-----w-	c:\program files (x86)\iTunes
2013-06-09 16:50 . 2013-06-09 16:50	--------	d-----w-	c:\program files\iPod
2013-06-09 16:50 . 2013-06-09 16:50	--------	d-----w-	c:\program files\iTunes
2013-06-09 16:47 . 2013-06-11 14:55	--------	d-----w-	c:\program files\Microsoft Silverlight
2013-06-09 16:47 . 2013-06-11 14:55	--------	d-----w-	c:\program files (x86)\Microsoft Silverlight
2013-06-09 16:45 . 2012-08-24 18:05	340992	----a-w-	c:\windows\system32\schannel.dll
2013-06-09 16:45 . 2012-08-24 16:57	247808	----a-w-	c:\windows\SysWow64\schannel.dll
2013-06-09 16:45 . 2012-08-24 18:13	154480	----a-w-	c:\windows\system32\drivers\ksecpkg.sys
2013-06-09 16:45 . 2012-08-24 18:09	458712	----a-w-	c:\windows\system32\drivers\cng.sys
2013-06-09 16:45 . 2012-08-24 18:03	1448448	----a-w-	c:\windows\system32\lsasrv.dll
2013-06-09 16:45 . 2012-08-24 16:57	22016	----a-w-	c:\windows\SysWow64\secur32.dll
2013-06-09 16:45 . 2012-08-24 16:53	96768	----a-w-	c:\windows\SysWow64\sspicli.dll
2013-06-09 16:44 . 2012-05-04 11:00	366592	----a-w-	c:\windows\system32\qdvd.dll
2013-06-09 16:44 . 2012-05-04 09:59	514560	----a-w-	c:\windows\SysWow64\qdvd.dll
2013-06-08 15:54 . 2013-06-08 15:54	--------	d-----w-	c:\users\Franz\AppData\Local\Futuremark
2013-06-08 15:53 . 2013-06-08 15:53	--------	d-----w-	c:\program files (x86)\Futuremark
2013-06-08 13:05 . 2013-06-08 13:06	--------	d-----w-	c:\program files\Eclipse
2013-05-31 18:13 . 2013-06-04 07:07	--------	d-----w-	c:\users\Franz\AppData\Roaming\TS3Client
2013-05-31 17:20 . 2013-05-31 17:20	--------	d-----w-	c:\program files\ASRock Utility
2013-05-31 17:20 . 2012-01-13 10:52	31016	----a-w-	c:\windows\system32\drivers\AsrRamDisk.sys
2013-05-31 17:19 . 2013-06-16 14:57	--------	d-----w-	c:\program files (x86)\ASRock Utility
2013-05-27 18:36 . 2013-05-27 18:36	--------	d-sh--w-	c:\users\Franz\AppData\Local\ms-drivers
2013-05-27 18:36 . 2013-05-27 18:36	--------	d-----w-	c:\users\Franz\AppData\Local\MetaGeek,_LLC
2013-05-27 18:36 . 2013-05-27 18:36	--------	d-----w-	c:\users\Franz\AppData\Local\IsolatedStorage
2013-05-27 15:57 . 2013-05-27 15:58	--------	d-----w-	c:\users\Franz\AppData\Roaming\Ultimate
2013-05-25 16:15 . 2013-05-25 16:15	159744	----a-w-	c:\program files\Internet Explorer\Plugins\npqtplugin5.dll
2013-05-25 16:15 . 2013-05-25 16:15	159744	----a-w-	c:\program files\Internet Explorer\Plugins\npqtplugin4.dll
2013-05-25 16:15 . 2013-05-25 16:15	159744	----a-w-	c:\program files\Internet Explorer\Plugins\npqtplugin3.dll
2013-05-25 16:15 . 2013-05-25 16:15	159744	----a-w-	c:\program files\Internet Explorer\Plugins\npqtplugin2.dll
2013-05-25 16:15 . 2013-05-25 16:15	159744	----a-w-	c:\program files\Internet Explorer\Plugins\npqtplugin.dll
2013-05-22 18:55 . 2013-05-22 18:55	311200	----a-w-	c:\windows\system32\javaws.exe
2013-05-22 18:55 . 2013-05-22 18:55	971680	----a-w-	c:\windows\system32\deployJava1.dll
2013-05-22 18:55 . 2013-05-22 18:55	1092512	----a-w-	c:\windows\system32\npDeployJava1.dll
2013-05-22 18:55 . 2013-05-22 18:55	108448	----a-w-	c:\windows\system32\WindowsAccessBridge-64.dll
2013-05-22 18:55 . 2013-05-22 18:55	188832	----a-w-	c:\windows\system32\javaw.exe
2013-05-22 18:55 . 2013-05-22 18:55	188320	----a-w-	c:\windows\system32\java.exe
2013-05-22 18:55 . 2013-05-26 14:23	--------	d-----w-	c:\program files\Java
2013-05-22 18:06 . 2013-05-22 18:06	--------	d-----w-	c:\users\Franz\AppData\Roaming\Ubisoft
2013-05-22 18:06 . 2008-10-15 04:22	519000	----a-w-	c:\windows\system32\d3dx10_40.dll
2013-05-22 18:06 . 2008-10-15 04:22	452440	----a-w-	c:\windows\SysWow64\d3dx10_40.dll
2013-05-22 18:06 . 2008-10-15 04:22	2605920	----a-w-	c:\windows\system32\D3DCompiler_40.dll
2013-05-22 18:06 . 2008-10-15 04:22	2036576	----a-w-	c:\windows\SysWow64\D3DCompiler_40.dll
2013-05-22 18:06 . 2008-10-15 04:22	5631312	----a-w-	c:\windows\system32\D3DX9_40.dll
2013-05-22 18:06 . 2008-10-15 04:22	4379984	----a-w-	c:\windows\SysWow64\D3DX9_40.dll
2013-05-22 18:04 . 2013-05-22 18:04	--------	d-----w-	c:\program files (x86)\Ubisoft
2013-05-22 15:39 . 2013-05-22 15:39	--------	d-----w-	c:\users\Franz\AppData\Local\Diagnostics
2013-05-22 12:28 . 2013-05-22 12:29	--------	d-----w-	c:\users\Franz\.shsh
2013-05-22 11:58 . 2013-05-22 11:58	--------	d-----w-	c:\users\Franz\AppData\Roaming\LolClient
2013-05-21 19:54 . 2013-05-11 22:27	262552	----a-w-	c:\program files (x86)\Mozilla Firefox\browser\components\browsercomps.dll
.
.
.
((((((((((((((((((((((((((((((((((((   Find3M Bericht   ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-06-13 05:54 . 2013-05-11 13:50	71048	----a-w-	c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-06-13 05:54 . 2013-05-11 13:50	692104	----a-w-	c:\windows\SysWow64\FlashPlayerApp.exe
2013-06-13 05:48 . 2013-05-11 16:35	75825640	----a-w-	c:\windows\system32\MRT.exe
2013-05-22 15:31 . 2013-05-11 15:03	866720	----a-w-	c:\windows\SysWow64\npDeployJava1.dll
2013-05-22 15:31 . 2013-05-11 15:03	788896	----a-w-	c:\windows\SysWow64\deployJava1.dll
2013-05-15 19:22 . 2012-07-17 12:37	22240	----a-w-	c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2013-05-11 16:23 . 2013-05-11 16:23	97280	----a-w-	c:\windows\system32\mshtmled.dll
2013-05-11 16:23 . 2013-05-11 16:23	92160	----a-w-	c:\windows\system32\SetIEInstalledDate.exe
2013-05-11 16:23 . 2013-05-11 16:23	905728	----a-w-	c:\windows\system32\mshtmlmedia.dll
2013-05-11 16:23 . 2013-05-11 16:23	81408	----a-w-	c:\windows\system32\icardie.dll
2013-05-11 16:23 . 2013-05-11 16:23	77312	----a-w-	c:\windows\system32\tdc.ocx
2013-05-11 16:23 . 2013-05-11 16:23	762368	----a-w-	c:\windows\system32\ieapfltr.dll
2013-05-11 16:23 . 2013-05-11 16:23	73728	----a-w-	c:\windows\SysWow64\SetIEInstalledDate.exe
2013-05-11 16:23 . 2013-05-11 16:23	719360	----a-w-	c:\windows\SysWow64\mshtmlmedia.dll
2013-05-11 16:23 . 2013-05-11 16:23	62976	----a-w-	c:\windows\system32\pngfilt.dll
2013-05-11 16:23 . 2013-05-11 16:23	61952	----a-w-	c:\windows\SysWow64\tdc.ocx
2013-05-11 16:23 . 2013-05-11 16:23	599552	----a-w-	c:\windows\system32\vbscript.dll
2013-05-11 16:23 . 2013-05-11 16:23	523264	----a-w-	c:\windows\SysWow64\vbscript.dll
2013-05-11 16:23 . 2013-05-11 16:23	52224	----a-w-	c:\windows\system32\msfeedsbs.dll
2013-05-11 16:23 . 2013-05-11 16:23	51200	----a-w-	c:\windows\system32\imgutil.dll
2013-05-11 16:23 . 2013-05-11 16:23	48640	----a-w-	c:\windows\SysWow64\mshtmler.dll
2013-05-11 16:23 . 2013-05-11 16:23	48640	----a-w-	c:\windows\system32\mshtmler.dll
2013-05-11 16:23 . 2013-05-11 16:23	452096	----a-w-	c:\windows\system32\dxtmsft.dll
2013-05-11 16:23 . 2013-05-11 16:23	441856	----a-w-	c:\windows\system32\html.iec
2013-05-11 16:23 . 2013-05-11 16:23	38400	----a-w-	c:\windows\SysWow64\imgutil.dll
2013-05-11 16:23 . 2013-05-11 16:23	361984	----a-w-	c:\windows\SysWow64\html.iec
2013-05-11 16:23 . 2013-05-11 16:23	281600	----a-w-	c:\windows\system32\dxtrans.dll
2013-05-11 16:23 . 2013-05-11 16:23	27648	----a-w-	c:\windows\system32\licmgr10.dll
2013-05-11 16:23 . 2013-05-11 16:23	270848	----a-w-	c:\windows\system32\iedkcs32.dll
2013-05-11 16:23 . 2013-05-11 16:23	247296	----a-w-	c:\windows\system32\webcheck.dll
2013-05-11 16:23 . 2013-05-11 16:23	235008	----a-w-	c:\windows\system32\url.dll
2013-05-11 16:23 . 2013-05-11 16:23	23040	----a-w-	c:\windows\SysWow64\licmgr10.dll
2013-05-11 16:23 . 2013-05-11 16:23	226304	----a-w-	c:\windows\system32\elshyph.dll
2013-05-11 16:23 . 2013-05-11 16:23	216064	----a-w-	c:\windows\system32\msls31.dll
2013-05-11 16:23 . 2013-05-11 16:23	197120	----a-w-	c:\windows\system32\msrating.dll
2013-05-11 16:23 . 2013-05-11 16:23	185344	----a-w-	c:\windows\SysWow64\elshyph.dll
2013-05-11 16:23 . 2013-05-11 16:23	173568	----a-w-	c:\windows\system32\ieUnatt.exe
2013-05-11 16:23 . 2013-05-11 16:23	167424	----a-w-	c:\windows\system32\iexpress.exe
2013-05-11 16:23 . 2013-05-11 16:23	158720	----a-w-	c:\windows\SysWow64\msls31.dll
2013-05-11 16:23 . 2013-05-11 16:23	1509376	----a-w-	c:\windows\system32\inetcpl.cpl
2013-05-11 16:23 . 2013-05-11 16:23	150528	----a-w-	c:\windows\SysWow64\iexpress.exe
2013-05-11 16:23 . 2013-05-11 16:23	149504	----a-w-	c:\windows\system32\occache.dll
2013-05-11 16:23 . 2013-05-11 16:23	144896	----a-w-	c:\windows\system32\wextract.exe
2013-05-11 16:23 . 2013-05-11 16:23	1441280	----a-w-	c:\windows\SysWow64\inetcpl.cpl
2013-05-11 16:23 . 2013-05-11 16:23	1400416	----a-w-	c:\windows\system32\ieapfltr.dat
2013-05-11 16:23 . 2013-05-11 16:23	138752	----a-w-	c:\windows\SysWow64\wextract.exe
2013-05-11 16:23 . 2013-05-11 16:23	13824	----a-w-	c:\windows\system32\mshta.exe
2013-05-11 16:23 . 2013-05-11 16:23	137216	----a-w-	c:\windows\SysWow64\ieUnatt.exe
2013-05-11 16:23 . 2013-05-11 16:23	136192	----a-w-	c:\windows\system32\iepeers.dll
2013-05-11 16:23 . 2013-05-11 16:23	135680	----a-w-	c:\windows\system32\IEAdvpack.dll
2013-05-11 16:23 . 2013-05-11 16:23	12800	----a-w-	c:\windows\SysWow64\mshta.exe
2013-05-11 16:23 . 2013-05-11 16:23	12800	----a-w-	c:\windows\system32\msfeedssync.exe
2013-05-11 16:23 . 2013-05-11 16:23	110592	----a-w-	c:\windows\SysWow64\IEAdvpack.dll
2013-05-11 16:23 . 2013-05-11 16:23	1054720	----a-w-	c:\windows\system32\MsSpellCheckingFacility.exe
2013-05-11 16:23 . 2013-05-11 16:23	102912	----a-w-	c:\windows\system32\inseng.dll
2013-05-11 16:20 . 2013-05-11 16:20	9728	---ha-w-	c:\windows\SysWow64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-05-11 16:20 . 2013-05-11 16:20	9728	---ha-w-	c:\windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-05-11 16:20 . 2013-05-11 16:20	648192	----a-w-	c:\windows\system32\d3d10level9.dll
2013-05-11 16:20 . 2013-05-11 16:20	604160	----a-w-	c:\windows\SysWow64\d3d10level9.dll
2013-05-11 16:20 . 2013-05-11 16:20	5632	---ha-w-	c:\windows\SysWow64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-05-11 16:20 . 2013-05-11 16:20	5632	---ha-w-	c:\windows\SysWow64\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-05-11 16:20 . 2013-05-11 16:20	5632	---ha-w-	c:\windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-05-11 16:20 . 2013-05-11 16:20	5632	---ha-w-	c:\windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-05-11 16:20 . 2013-05-11 16:20	522752	----a-w-	c:\windows\system32\XpsGdiConverter.dll
2013-05-11 16:20 . 2013-05-11 16:20	465920	----a-w-	c:\windows\system32\WMPhoto.dll
2013-05-11 16:20 . 2013-05-11 16:20	417792	----a-w-	c:\windows\SysWow64\WMPhoto.dll
2013-05-11 16:20 . 2013-05-11 16:20	4096	---ha-w-	c:\windows\SysWow64\api-ms-win-downlevel-user32-l1-1-0.dll
2013-05-11 16:20 . 2013-05-11 16:20	4096	---ha-w-	c:\windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2013-05-11 16:20 . 2013-05-11 16:20	3928064	----a-w-	c:\windows\system32\d2d1.dll
2013-05-11 16:20 . 2013-05-11 16:20	364544	----a-w-	c:\windows\SysWow64\XpsGdiConverter.dll
2013-05-11 16:20 . 2013-05-11 16:20	363008	----a-w-	c:\windows\system32\dxgi.dll
2013-05-11 16:20 . 2013-05-11 16:20	3584	---ha-w-	c:\windows\SysWow64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-05-11 16:20 . 2013-05-11 16:20	3584	---ha-w-	c:\windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-05-11 16:20 . 2013-05-11 16:20	3419136	----a-w-	c:\windows\SysWow64\d2d1.dll
2013-05-11 16:20 . 2013-05-11 16:20	333312	----a-w-	c:\windows\system32\d3d10_1core.dll
2013-05-11 16:20 . 2013-05-11 16:20	3072	---ha-w-	c:\windows\SysWow64\api-ms-win-downlevel-version-l1-1-0.dll
2013-05-11 16:20 . 2013-05-11 16:20	3072	---ha-w-	c:\windows\SysWow64\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-05-11 16:20 . 2013-05-11 16:20	3072	---ha-w-	c:\windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2013-05-11 16:20 . 2013-05-11 16:20	3072	---ha-w-	c:\windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-05-11 16:20 . 2013-05-11 16:20	296960	----a-w-	c:\windows\system32\d3d10core.dll
2013-05-11 16:20 . 2013-05-11 16:20	293376	----a-w-	c:\windows\SysWow64\dxgi.dll
2013-05-11 16:20 . 2013-05-11 16:20	2776576	----a-w-	c:\windows\system32\msmpeg2vdec.dll
2013-05-11 16:20 . 2013-05-11 16:20	2565120	----a-w-	c:\windows\system32\d3d10warp.dll
2013-05-11 16:20 . 2013-05-11 16:20	2560	---ha-w-	c:\windows\SysWow64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-05-11 16:20 . 2013-05-11 16:20	2560	---ha-w-	c:\windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-05-11 16:20 . 2013-05-11 16:20	249856	----a-w-	c:\windows\SysWow64\d3d10_1core.dll
2013-05-11 16:20 . 2013-05-11 16:20	245248	----a-w-	c:\windows\system32\WindowsCodecsExt.dll
2013-05-11 16:20 . 2013-05-11 16:20	2284544	----a-w-	c:\windows\SysWow64\msmpeg2vdec.dll
2013-05-11 16:20 . 2013-05-11 16:20	221184	----a-w-	c:\windows\system32\UIAnimation.dll
2013-05-11 16:20 . 2013-05-11 16:20	220160	----a-w-	c:\windows\SysWow64\d3d10core.dll
2013-05-11 16:20 . 2013-05-11 16:20	207872	----a-w-	c:\windows\SysWow64\WindowsCodecsExt.dll
2013-05-11 16:20 . 2013-05-11 16:20	1988096	----a-w-	c:\windows\SysWow64\d3d10warp.dll
2013-05-11 16:20 . 2013-05-11 16:20	194560	----a-w-	c:\windows\system32\d3d10_1.dll
2013-05-11 16:20 . 2013-05-11 16:20	187392	----a-w-	c:\windows\SysWow64\UIAnimation.dll
2013-05-11 16:20 . 2013-05-11 16:20	1682432	----a-w-	c:\windows\system32\XpsPrint.dll
2013-05-11 16:20 . 2013-05-11 16:20	1643520	----a-w-	c:\windows\system32\DWrite.dll
2013-05-11 16:20 . 2013-05-11 16:20	161792	----a-w-	c:\windows\SysWow64\d3d10_1.dll
2013-05-11 16:20 . 2013-05-11 16:20	1247744	----a-w-	c:\windows\SysWow64\DWrite.dll
2013-05-11 16:20 . 2013-05-11 16:20	1238528	----a-w-	c:\windows\system32\d3d10.dll
2013-05-11 16:20 . 2013-05-11 16:20	1175552	----a-w-	c:\windows\system32\FntCache.dll
.
.
((((((((((((((((((((((((((((   Autostartpunkte der Registrierung   ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt. 
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-21 1475584]
"Skype"="c:\program files (x86)\Skype\Phone\Skype.exe" [2013-04-19 18678376]
"Pando Media Booster"="c:\program files (x86)\Pando Networks\Media Booster\PMB.exe" [2013-05-15 4284976]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"ZoneAlarm"="c:\program files (x86)\CheckPoint\ZoneAlarm\zatray.exe" [2013-03-27 73832]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2013-05-09 4858968]
"GamingKeyboard"="c:\program files (x86)\SHARKOON Skiller\GameMon.exe" [2012-06-07 1803264]
"APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2013-04-21 59720]
"IAStorIcon"="c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe" [2012-09-12 56128]
"USB3MON"="c:\program files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe" [2012-05-20 291648]
"QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" [2013-05-01 421888]
"iTunesHelper"="c:\program files (x86)\iTunes\iTunesHelper.exe" [2013-05-31 152392]
.
c:\users\Franz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
OpenOffice.org 3.4.1.lnk - c:\program files (x86)\OpenOffice.org 3\program\quickstart.exe [2012-8-13 1199104]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 DokanMounter;DokanMounter;c:\program files (x86)\Dokan\DokanLibrary\mounter.exe;c:\program files (x86)\Dokan\DokanLibrary\mounter.exe [x]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage-Technologie;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [x]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R3 cpuz136;cpuz136;c:\windows\TEMP\cpuz136\cpuz136_x64.sys;c:\windows\TEMP\cpuz136\cpuz136_x64.sys [x]
R3 Futuremark SystemInfo Service;Futuremark SystemInfo Service;c:\program files (x86)\Futuremark\Futuremark SystemInfo\FMSISvc.exe;c:\program files (x86)\Futuremark\Futuremark SystemInfo\FMSISvc.exe [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 RTL8192su;Realtek RTL8192SU Wireless LAN 802.11n USB 2.0 Network Adapter;c:\windows\system32\DRIVERS\RTL8192su.sys;c:\windows\SYSNATIVE\DRIVERS\RTL8192su.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
R3 TunngleService;TunngleService;c:\program files (x86)\Tunngle\TnglCtrl.exe;c:\program files (x86)\Tunngle\TnglCtrl.exe [x]
R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys;c:\windows\SYSNATIVE\Drivers\usbaapl64.sys [x]
S0 asahci64;asahci64;c:\windows\system32\DRIVERS\asahci64.sys;c:\windows\SYSNATIVE\DRIVERS\asahci64.sys [x]
S0 AsrRamDisk;AsrRamDisk;c:\windows\system32\DRIVERS\AsrRamDisk.sys;c:\windows\SYSNATIVE\DRIVERS\AsrRamDisk.sys [x]
S0 aswRvrt;aswRvrt; [x]
S0 aswVmm;aswVmm; [x]
S0 iaStorA;iaStorA;c:\windows\system32\DRIVERS\iaStorA.sys;c:\windows\SYSNATIVE\DRIVERS\iaStorA.sys [x]
S0 iaStorF;iaStorF;c:\windows\system32\DRIVERS\iaStorF.sys;c:\windows\SYSNATIVE\DRIVERS\iaStorF.sys [x]
S0 iusb3hcs;Intel(R) USB 3.0 Hostcontroller-Switchtreiber;c:\windows\system32\DRIVERS\iusb3hcs.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3hcs.sys [x]
S1 aswKbd;aswKbd; [x]
S1 aswSnx;aswSnx; [x]
S1 aswSP;aswSP; [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys;c:\windows\SYSNATIVE\drivers\aswMonFlt.sys [x]
S2 Dokan;Dokan;c:\windows\system32\drivers\dokan.sys;c:\windows\SYSNATIVE\drivers\dokan.sys [x]
S2 ISWKL;ZoneAlarm LTD Toolbar ISWKL;c:\program files\CheckPoint\ZAForceField\ISWKL.sys;c:\program files\CheckPoint\ZAForceField\ISWKL.sys [x]
S2 IswSvc;ZoneAlarm LTD Toolbar IswSvc;c:\program files\CheckPoint\ZAForceField\IswSvc.exe;c:\program files\CheckPoint\ZAForceField\IswSvc.exe [x]
S2 Realtek11nSU;Realtek11nSU;c:\program files (x86)\REALTEK\11n USB Wireless LAN Utility\RtlService.exe;c:\program files (x86)\REALTEK\11n USB Wireless LAN Utility\RtlService.exe [x]
S2 UnsignedThemes;Unsigned Themes;c:\windows\UnsignedThemesSvc.exe;c:\windows\UnsignedThemesSvc.exe [x]
S2 uxpatch;uxpatch;c:\windows\system32\drivers\uxpatch.sys;c:\windows\SYSNATIVE\drivers\uxpatch.sys [x]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys;c:\windows\SYSNATIVE\drivers\AtihdW76.sys [x]
S3 GameKB;SHARKOON Skiller;c:\windows\system32\drivers\GameKB.sys;c:\windows\SYSNATIVE\drivers\GameKB.sys [x]
S3 iusb3hub;Intel(R) USB 3.0-Hubtreiber;c:\windows\system32\DRIVERS\iusb3hub.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3hub.sys [x]
S3 iusb3xhc;Intel(R) USB 3.0 eXtensible-Hostcontrollertreiber;c:\windows\system32\DRIVERS\iusb3xhc.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3xhc.sys [x]
S3 tap0901t;TAP-Win32 Adapter V9 (Tunngle);c:\windows\system32\DRIVERS\tap0901t.sys;c:\windows\SYSNATIVE\DRIVERS\tap0901t.sys [x]
.
.
Inhalt des "geplante Tasks" Ordners
.
2013-06-17 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-05-11 05:54]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2013-05-09 08:58	133840	----a-w-	c:\program files\AVAST Software\Avast\ashShA64.dll
.
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\SharedTaskScheduler]
"{F791A188-699D-4FD4-955A-EB59E89B1907}"= "\Program Files\Theme Resource Changer\ThemeResourceChanger.dll" [2010-10-07 103936]
.
------- Zusätzlicher Suchlauf -------
.
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride = *.local
TCP: DhcpNameServer = 192.168.2.1
FF - ProfilePath - c:\users\Franz\AppData\Roaming\Mozilla\Firefox\Profiles\ufim2oib.default\
FF - ExtSQL: 2013-05-11 15:45; {FFB96CC1-7EB3-449D-B827-DB661701C6BB}; c:\program files\CheckPoint\ZAForceField\WOW64\TrustChecker
FF - ExtSQL: 2013-05-11 16:32; wrc@avast.com; c:\program files\AVAST Software\Avast\WebRep\FF
FF - ExtSQL: 2013-05-31 21:08; {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}; c:\users\Franz\AppData\Roaming\Mozilla\Firefox\Profiles\ufim2oib.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF - ExtSQL: 2013-06-08 17:35; personas@christopher.beard; c:\users\Franz\AppData\Roaming\Mozilla\Firefox\Profiles\ufim2oib.default\extensions\personas@christopher.beard.xpi
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
Wow6432Node-HKCU-Run-ASRockXTU - (no file)
HKLM-Run-ISW - (no file)
.
.
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_USERS\S-1-5-21-921928476-601607189-1348779831-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.eml\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="WindowsLiveMail.Email.1"
.
[HKEY_USERS\S-1-5-21-921928476-601607189-1348779831-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.vcf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="WindowsLiveMail.VCard.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_224_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_224_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_224_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_224_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Zeit der Fertigstellung: 2013-06-18  13:30:39
ComboFix-quarantined-files.txt  2013-06-18 11:30
.
Vor Suchlauf: 11 Verzeichnis(se), 723.262.267.392 Bytes frei
Nach Suchlauf: 14 Verzeichnis(se), 724.186.779.648 Bytes frei
.
- - End Of File - - 2D78EFE884B3A7EFDA912A4F5D4289DC
A36C5E4F47E84449FF07ED3517B43A31

markusg · 18.06.2013, 14:41

Hi,
malwarebytes:
Downloade Dir bitte Malwarebytes

Installiere
das Programm in den vorgegebenen Pfad.
Vista und Win7 User mit Rechtsklick "als Administrator starten"
Starte Malwarebytes, klicke auf Aktualisierung --> Suche
nach Aktualisierung
Wenn das Update beendet wurde, aktiviere vollständiger Scan durchführen und drücke auf Scannen.
Wenn der Scan beendet
ist, klicke auf Ergebnisse anzeigen.
Versichere Dich, dass alle Funde markiert sind und drücke Entferne Auswahl.
Poste
das Logfile, welches sich in Notepad öffnet, hier in den Thread.
Nachträglich kannst du den Bericht unter "Log Dateien" finden.

sever01 · 18.06.2013, 16:02

Es gab keine Funde bei Malwarebytes.

Code:

ATTFilter

 Malwarebytes Anti-Malware  (Test) 1.75.0.1300
www.malwarebytes.org

Datenbank Version: v2013.06.18.04

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16618
Franz :: FRANZ-PC [Administrator]

Schutz: Aktiviert

18.06.2013 16:28:38
mbam-log-2013-06-18 (16-28-38).txt

Art des Suchlaufs: Vollständiger Suchlauf (C:\|D:\|)
Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM
Deaktivierte Suchlaufeinstellungen: P2P
Durchsuchte Objekte: 356592
Laufzeit: 19 Minute(n), 50 Sekunde(n)

Infizierte Speicherprozesse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungswerte: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateiobjekte der Registrierung: 0
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateien: 0
(Keine bösartigen Objekte gefunden)

(Ende)

markusg · 18.06.2013, 17:14

lade den CCleaner standard:
CCleaner - Download - Filepony
falls der CCleaner
bereits instaliert, überspringen.
öffnen, Tools (extras),uninstall Llist, als txt speichern. öffnen.
hinter, jedes von dir benötigte programm, schreibe notwendig.
hinter, jedes, von dir nicht benötigte, unnötig.
hinter, dir unbekannte, unbekannt.
liste posten.

sever01 · 18.06.2013, 17:55

Hier die Liste:

Code:

ATTFilter

Adobe Flash Player 11 ActiveX	Adobe Systems Incorporated	12.06.2013	6,00MB	11.7.700.224	unbekannt
Adobe Flash Player 11 Plugin	Adobe Systems Incorporated	13.06.2013	6,00MB	11.7.700.224	notwendig
AMD Catalyst Install Manager	Advanced Micro Devices, Inc.	16.06.2013	26,3MB	8.0.911.0	unnötig
ANNO 2070 DEMO	Ubisoft	22.05.2013		1.0.0.0		notwendig
Apple Application Support	Apple Inc.	21.05.2013	64,7MB	2.3.4 	unbekannt
Apple Mobile Device Support	Apple Inc.	15.05.2013	25,2MB	6.1.0.13 	unbekannt
Apple Software Update	Apple Inc.	15.05.2013	2,38MB	2.1.3.127 unbekannt
Asmedia ASM106x SATA Host Controller Driver	Asmedia Technology	17.05.2013	96,0KB	1.3.4.000 unbekannt
ASRock eXtreme Tuner v0.1.191		31.05.2013	22,0MB		notwendig
avast! Free Antivirus	AVAST Software	28.05.2013		8.0.1489.0	notwendig
Blender	Blender Foundation	11.05.2013		2.67	notwendig
Bonjour	Apple Inc.	15.05.2013	2,00MB	3.0.0.10	unbekannt
Camtasia Studio 8	TechSmith Corporation	12.05.2013	375MB	8.0.4.1060 notwendig
CCleaner	Piriform	24.05.2013		4.02 notwendig
Cisco EAP-FAST Module	Cisco Systems, Inc.	11.05.2013	1,55MB	2.2.14  unbekannt
Cisco LEAP Module	Cisco Systems, Inc.	11.05.2013	644KB	1.0.19  unbekannt
Cisco PEAP Module	Cisco Systems, Inc.	11.05.2013	1,23MB	1.1.6 	unbekannt
Dokan Library 0.6.0		16.05.2013		notwendig
Fraps (remove only)		11.05.2013		notwendig
GIMP 2.8.4	The GIMP Team	11.05.2013	244MB	2.8.4	notwendig
Intel(R) Rapid Storage Technology	Intel Corporation	17.05.2013		11.6.0.1030	unbekannt
Intel(R) USB 3.0 eXtensible Host Controller Driver	Intel Corporation	17.05.2013		1.0.5.235	unbekannt
iTunes	Apple Inc.	09.06.2013	187MB	11.0.4.4 	notwendig
Java 7 Update 21 (64-bit)	Oracle	22.05.2013	128MB	7.0.210		notwendig
Java SE Development Kit 7 Update 21 (64-bit)	Oracle	26.05.2013	159MB	1.7.0.210	notwendig
League of Legends	Riot Games	17.05.2013		1.3	notwendig
Malwarebytes Anti-Malware Version 1.75.0.1300	Malwarebytes Corporation	18.06.2013	19,2MB	1.75.0.1300	unnötig
Microsoft .NET Framework 4 Client Profile	Microsoft Corporation	12.05.2013	38,8MB	4.0.30319	unbekannt
Microsoft .NET Framework 4 Client Profile DEU Language Pack	Microsoft Corporation	12.05.2013	2,93MB	4.0.30319 unbekannt
Microsoft Silverlight	Microsoft Corporation	11.06.2013	100MB	5.1.20125.0	unbekannt
Microsoft SQL Server 2005 Compact Edition [ENU]	Microsoft Corporation	15.05.2013	1,69MB	3.1.0000	unbekannt
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17	Microsoft Corporation	11.05.2013	596KB	9.0.30729	unbekannt
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161	Microsoft Corporation	11.05.2013	600KB	9.0.30729.6161	unbekannt
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219	Microsoft Corporation	29.05.2013	13,8MB	10.0.40219	unbekannt 
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.30319	Microsoft Corporation	09.06.2013	11,0MB	10.0.30319	unbekannt
Mozilla Firefox 21.0 (x86 de)	Mozilla	21.05.2013	44,5MB	21.0	notwendig
Mozilla Maintenance Service	Mozilla	21.05.2013	333KB	21.0	unbekannt
Need For Speed™ World	Electronic Arts	15.05.2013	13,6MB	1.0.0.1509	notwendig
OpenOffice.org 3.4.1	Apache Software Foundation	11.05.2013	331MB	3.41.9593	notwendig
Pando Media Booster	Pando Networks Inc.	15.05.2013	5,46MB	2.6.0.9	 notwendig
QuickTime	Apple Inc.	25.05.2013	74,6MB	7.74.80.86	notwendig
REALTEK Wireless LAN Driver and Utility	REALTEK Semiconductor Corp.	11.05.2013		1.00.0187 	notwendig
Scratch	MIT Media Lab Lifelong Kindergarten Group	11.05.2013		1.4.0.0 	notwendig
SHARKOON Skiller		13.05.2013		1.00.0000	notwendig
Skype™ 6.3	Skype Technologies S.A.	10.06.2013	20,9MB	6.3.107 	notwendig
TeamSpeak 3 Client	TeamSpeak Systems GmbH	11.05.2013		3.0.10	notwendig
Theme Resource Changer X64 v1.0	Bad Ass Apps	14.05.2013			notwendig
Tunngle beta	Tunngle.net GmbH	11.05.2013	9,77MB			notwendig
UxStyle Core Beta	The Within Network, LLC	14.05.2013	38,0KB	0.2.1.1		notwendig
Windows Live Essentials	Microsoft Corporation	15.05.2013		16.4.3508.0205	notwendig
WinRAR 4.20 (64-Bit)	win.rar GmbH	14.05.2013		4.20.0 notwendig
World of Tanks	Wargaming.net	11.05.2013	16,5MB	notwendig
World of Tanks - Common Test	Wargaming.net	30.05.2013	16,3MB	notwendig
ZoneAlarm Free Firewall	Check Point	11.05.2013	67,0MB	11.0.000.504	notwendig

markusg · 18.06.2013, 18:00

deinstaliere:
Adobe Flash Player alle
Adobe - Adobe Flash Player installieren
neueste version laden, instalieren.
Malwarebytes
ZoneAlarm : weg mit dem quark, windows Firewall ist mehr als ausreichend

Öffne CCleaner, analysieren, starten, PC neustarten
Downloade Dir bitte

AdwCleaner auf deinen Desktop.

Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
Starte die AdwCleaner.exe mit einem Doppelklick.
Stimme den Nutzungsbedingungen zu.
Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
- "Tracing" Schlüssel löschen
- Winsock Einstellungen zurücksetzen
- Proxy Einstellungen zurücksetzen
- Internet Explorer Richtlinien zurücksetzen
- Chrome Richtlinien zurücksetzen
- Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).

sever01 · 18.06.2013, 18:48

Hab die Programme gelöscht und die neuste Version von Adobe Flash Player installiert.
Hier der Log von AdwCleaner:

Code:

ATTFilter

# AdwCleaner v2.303 - Datei am 18/06/2013 um 19:45:44 erstellt
# Aktualisiert am 08/06/2013 von Xplode
# Betriebssystem : Windows 7 Home Premium Service Pack 1 (64 bits)
# Benutzer : Franz - FRANZ-PC
# Bootmodus : Normal
# Ausgeführt unter : C:\Users\Franz\Downloads\adwcleaner.exe
# Option [Löschen]


**** [Dienste] ****


***** [Dateien / Ordner] *****

Datei Gelöscht : C:\Users\Franz\AppData\Local\Temp\Uninstall.exe
Ordner Gelöscht : C:\ProgramData\Babylon
Ordner Gelöscht : C:\ProgramData\Tarma Installer
Ordner Gelöscht : C:\Users\Franz\AppData\Roaming\CheckPoint\ZoneAlarm LTD Toolbar

***** [Registrierungsdatenbank] *****

Schlüssel Gelöscht : HKCU\Software\APN PIP
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Schlüssel Gelöscht : HKLM\Software\Babylon
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Prod.cap
Schlüssel Gelöscht : HKLM\Software\Iminent
Schlüssel Gelöscht : HKLM\SOFTWARE\MozillaPlugins\@checkpoint.com/FFApi
Schlüssel Gelöscht : HKLM\Software\PIP
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ZoneAlarm LTD Toolbar

***** [Internet Browser] *****

-\\ Internet Explorer v10.0.9200.16611

[OK] Die Registrierungsdatenbank ist sauber.

-\\ Mozilla Firefox v21.0 (de)

Datei : C:\Users\Franz\AppData\Roaming\Mozilla\Firefox\Profiles\ufim2oib.default\prefs.js

[OK] Die Datei ist sauber.

*************************

AdwCleaner[S1].txt - [1587 octets] - [18/06/2013 19:45:44]

########## EOF - C:\AdwCleaner[S1].txt - [1647 octets] ##########

markusg · 18.06.2013, 19:51

Hi
HitmanPro - Download - Filepony
Hitmanpro laden, doppelklicken, Scan klicken.
Nichts löschen.
Weiter klicken, Log speichern und posten, bzw als XML exportieren, packen und anhängen

sever01 · 18.06.2013, 20:09

Hier der Log von Hitman

Code:

ATTFilter

HitmanPro 3.7.6.201
www.hitmanpro.com

   Computer name . . . . : FRANZ-PC
   Windows . . . . . . . : 6.1.1.7601.X64/4
   User name . . . . . . : Franz-PC\Franz
   UAC . . . . . . . . . : Enabled
   License . . . . . . . : Free

   Scan date . . . . . . : 2013-06-18 21:05:54
   Scan mode . . . . . . : Normal
   Scan duration . . . . : 1m 49s
   Disk access mode  . . : Direct disk access (SRB)
   Cloud . . . . . . . . : Internet
   Reboot  . . . . . . . : No

   Threats . . . . . . . : 0
   Traces  . . . . . . . : 7

   Objects scanned . . . : 1.124.796
   Files scanned . . . . : 20.075
   Remnants scanned  . . : 318.428 files / 786.293 keys

Potential Unwanted Programs _________________________________________________

   HKU\S-1-5-21-921928476-601607189-1348779831-1000_Classes\Wow6432Node\CLSID\{80922ee0-8a76-46ae-95d5-bd3c3fe0708d}\ (Yontoo)

markusg · 18.06.2013, 20:48

ok, fund löschen, gabs ne Besserung?

sever01 · 19.06.2013, 12:04

Ich hab den Fund gelöscht, aber eine wirklich merkliche Verbesserung gab es leider nicht.

18.06.2013, 20:48	#14
markusg /// Malware-holic	Internet langsam und hohe Pingschwankungen ok, fund löschen, gabs ne Besserung? __________________ -Verdächtige mails bitte an uns zur Analyse weiterleiten: markusg.trojaner-board@web.de Weiterleiten Anleitung: http://markusg.trojaner-board.de Mails bitte vorerst nach obiger Anleitung an markusg.trojaner-board@web.de Weiterleiten Wenn Ihr uns unterstützen möchtet

Internet langsam und hohe Pingschwankungen

Plagegeister aller Art und deren Bekämpfung: Internet langsam und hohe Pingschwankungen