|
Plagegeister aller Art und deren Bekämpfung: TR/Trash.Gen gefunden,harmlos oder muß was unternommen werden?Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
08.08.2013, 17:33 | #1 |
| TR/Trash.Gen gefunden,harmlos oder muß was unternommen werden? hallo, ich hab ja schon in einem anderen tread mit schruber versucht mein system wieder flott zu bekommen.wir hatten uns dann auf eine Neuinstallation geeinigt. nachdem ich nun das programm Tdsskiller bei mir durchlaufen lies,bekamm ich die meldung das evtl. 2 dateien möglicherweise befallen sind.es wäre klasse wenn da mal jemand einen blick drauf werfen würde. ich habe NICHTS unternommen ,nur den log gespeichert. Code:
ATTFilter 17:53:43.0703 3772 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42 17:53:44.0062 3772 ============================================================ 17:53:44.0062 3772 Current date / time: 2013/08/08 17:53:44.0062 17:53:44.0062 3772 SystemInfo: 17:53:44.0062 3772 17:53:44.0062 3772 OS Version: 5.1.2600 ServicePack: 3.0 17:53:44.0062 3772 Product type: Workstation 17:53:44.0062 3772 ComputerName: SHERLOCK-HOLMES 17:53:44.0062 3772 UserName: Dr.Watson 17:53:44.0062 3772 Windows directory: C:\WINXP 17:53:44.0062 3772 System windows directory: C:\WINXP 17:53:44.0062 3772 Processor architecture: Intel x86 17:53:44.0062 3772 Number of processors: 2 17:53:44.0062 3772 Page size: 0x1000 17:53:44.0062 3772 Boot type: Normal boot 17:53:44.0062 3772 ============================================================ 17:53:45.0515 3772 Drive \Device\Harddisk0\DR0 - Size: 0xAEA8BD5E00 (698.64 Gb), SectorSize: 0x200, Cylinders: 0x16441, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054 17:53:45.0515 3772 Drive \Device\Harddisk1\DR1 - Size: 0x7470AFDE00 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054 17:53:45.0531 3772 Drive \Device\Harddisk3\DR3 - Size: 0x3A38A25E00 (232.88 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054 17:53:45.0546 3772 Drive \Device\Harddisk2\DR2 - Size: 0x1D1C1116000 (1863.02 Gb), SectorSize: 0x200, Cylinders: 0x3B601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054 17:53:45.0546 3772 Drive \Device\Harddisk4\DR16 - Size: 0x15D50F66000 (1397.27 Gb), SectorSize: 0x200, Cylinders: 0x2C881, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W' 17:53:45.0562 3772 ============================================================ 17:53:45.0562 3772 \Device\Harddisk0\DR0: 17:53:45.0562 3772 MBR partitions: 17:53:45.0562 3772 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x31C86F57 17:53:45.0562 3772 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x31C86F96, BlocksNum 0x258BE36B 17:53:45.0562 3772 \Device\Harddisk1\DR1: 17:53:45.0562 3772 MBR partitions: 17:53:45.0562 3772 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x1869E559 17:53:45.0562 3772 \Device\Harddisk1\DR1\Partition2: MBR, Type 0x7, StartLBA 0x1869E598, BlocksNum 0x14C3B275 17:53:45.0562 3772 \Device\Harddisk1\DR1\Partition3: MBR, Type 0x7, StartLBA 0x2D2D980D, BlocksNum 0xD0AB434 17:53:45.0562 3772 \Device\Harddisk3\DR3: 17:53:45.0562 3772 MBR partitions: 17:53:45.0578 3772 \Device\Harddisk3\DR3\Partition1: MBR, Type 0x7, StartLBA 0x3F00, BlocksNum 0x3C8C331 17:53:45.0578 3772 \Device\Harddisk3\DR3\Partition2: MBR, Type 0x7, StartLBA 0x3C90231, BlocksNum 0x510C02A 17:53:45.0578 3772 \Device\Harddisk3\DR3\Partition3: MBR, Type 0x7, StartLBA 0x8D9C25B, BlocksNum 0x14428326 17:53:45.0578 3772 \Device\Harddisk2\DR2: 17:53:45.0578 3772 MBR partitions: 17:53:45.0578 3772 \Device\Harddisk2\DR2\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0xC34F28D 17:53:45.0578 3772 \Device\Harddisk2\DR2\Partition2: MBR, Type 0x7, StartLBA 0xC34F2CC, BlocksNum 0x11A7514A 17:53:45.0578 3772 \Device\Harddisk2\DR2\Partition3: MBR, Type 0x7, StartLBA 0x1DDC4416, BlocksNum 0x5953C63B 17:53:45.0578 3772 \Device\Harddisk2\DR2\Partition4: MBR, Type 0x7, StartLBA 0x77300A51, BlocksNum 0x71B04C6A 17:53:45.0578 3772 \Device\Harddisk4\DR16: 17:53:45.0578 3772 MBR partitions: 17:53:45.0578 3772 \Device\Harddisk4\DR16\Partition1: MBR, Type 0x7, StartLBA 0x3F00, BlocksNum 0x34962EC7 17:53:45.0593 3772 \Device\Harddisk4\DR16\Partition2: MBR, Type 0x7, StartLBA 0x34966E06, BlocksNum 0x3D08FC7E 17:53:45.0609 3772 \Device\Harddisk4\DR16\Partition3: MBR, Type 0x7, StartLBA 0x719F6AC3, BlocksNum 0x3D08FC7E 17:53:45.0609 3772 ============================================================ 17:53:45.0703 3772 C: <-> \Device\Harddisk3\DR3\Partition2 17:53:45.0718 3772 D: <-> \Device\Harddisk3\DR3\Partition1 17:53:45.0796 3772 E: <-> \Device\Harddisk3\DR3\Partition3 17:53:45.0859 3772 J: <-> \Device\Harddisk1\DR1\Partition3 17:53:45.0890 3772 K: <-> \Device\Harddisk0\DR0\Partition2 17:53:45.0937 3772 O: <-> \Device\Harddisk4\DR16\Partition1 17:53:46.0140 3772 P: <-> \Device\Harddisk4\DR16\Partition2 17:53:46.0187 3772 G: <-> \Device\Harddisk0\DR0\Partition1 17:53:46.0218 3772 F: <-> \Device\Harddisk1\DR1\Partition1 17:53:46.0265 3772 H: <-> \Device\Harddisk1\DR1\Partition2 17:53:46.0296 3772 M: <-> \Device\Harddisk2\DR2\Partition1 17:53:46.0343 3772 I: <-> \Device\Harddisk2\DR2\Partition3 17:53:46.0484 3772 L: <-> \Device\Harddisk2\DR2\Partition4 17:53:46.0531 3772 V: <-> \Device\Harddisk2\DR2\Partition2 17:53:46.0578 3772 Q: <-> \Device\Harddisk4\DR16\Partition3 17:53:46.0578 3772 ============================================================ 17:53:46.0578 3772 Initialize success 17:53:46.0578 3772 ============================================================ 17:53:54.0781 3416 ============================================================ 17:53:54.0781 3416 Scan started 17:53:54.0781 3416 Mode: Manual; 17:53:54.0781 3416 ============================================================ 17:53:57.0734 3416 ================ Scan system memory ======================== 17:53:57.0734 3416 System memory - ok 17:53:57.0734 3416 ================ Scan services ============================= 17:53:58.0281 3416 Abiosdsk - ok 17:53:58.0281 3416 abp480n5 - ok 17:53:58.0437 3416 [ E6F53D6C0DEA3D375362265E175CA638 ] acedrv11 C:\WINXP\system32\drivers\acedrv11.sys 17:53:58.0437 3416 acedrv11 - ok 17:53:58.0609 3416 [ AC407F1A62C3A300B4F2B5A9F1D55B2C ] ACPI C:\WINXP\system32\DRIVERS\ACPI.sys 17:53:58.0625 3416 ACPI - ok 17:53:58.0656 3416 [ 9E1CA3160DAFB159CA14F83B1E317F75 ] ACPIEC C:\WINXP\system32\drivers\ACPIEC.sys 17:53:58.0656 3416 ACPIEC - ok 17:53:58.0656 3416 adpu160m - ok 17:53:58.0781 3416 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINXP\system32\drivers\aec.sys 17:53:58.0781 3416 aec - ok 17:53:58.0921 3416 [ F6B7B1ECD7B41736BDB6FF4B092BCB79 ] AFD C:\WINXP\System32\drivers\afd.sys 17:53:58.0921 3416 AFD - ok 17:53:58.0921 3416 Aha154x - ok 17:53:58.0921 3416 aic78u2 - ok 17:53:58.0937 3416 aic78xx - ok 17:53:58.0953 3416 [ 738D80CC01D7BC7584BE917B7F544394 ] Alerter C:\WINXP\system32\alrsvc.dll 17:53:58.0968 3416 Alerter - ok 17:53:59.0000 3416 [ 190CD73D4984F94D823F9444980513E5 ] ALG C:\WINXP\System32\alg.exe 17:53:59.0000 3416 ALG - ok 17:53:59.0000 3416 AliIde - ok 17:54:00.0218 3416 [ 267FC636801EDC5AB28E14036349E3BE ] Ambfilt C:\WINXP\system32\drivers\Ambfilt.sys 17:54:00.0234 3416 Ambfilt - ok 17:54:00.0234 3416 amsint - ok 17:54:00.0468 3416 [ FE9932692FC61C2203EC9884D414F700 ] AntiVirSchedulerService C:\Programme\Avira\AntiVir Desktop\sched.exe 17:54:00.0593 3416 AntiVirSchedulerService - ok 17:54:00.0703 3416 [ B1F8B58F27971B7E316DD316687886EC ] AntiVirService C:\Programme\Avira\AntiVir Desktop\avguard.exe 17:54:00.0781 3416 AntiVirService - ok 17:54:00.0953 3416 [ D45960BE52C3C610D361977057F98C54 ] AppMgmt C:\WINXP\System32\appmgmts.dll 17:54:00.0953 3416 AppMgmt - ok 17:54:01.0015 3416 [ B5B8A80875C1DEDEDA8B02765642C32F ] Arp1394 C:\WINXP\system32\DRIVERS\arp1394.sys 17:54:01.0015 3416 Arp1394 - ok 17:54:01.0031 3416 asc - ok 17:54:01.0031 3416 asc3350p - ok 17:54:01.0031 3416 asc3550 - ok 17:54:01.0218 3416 [ 0E5E4957549056E2BF2C49F4F6B601AD ] aspnet_state C:\WINXP\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe 17:54:01.0250 3416 aspnet_state - ok 17:54:01.0281 3416 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINXP\system32\DRIVERS\asyncmac.sys 17:54:01.0281 3416 AsyncMac - ok 17:54:01.0375 3416 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINXP\system32\DRIVERS\atapi.sys 17:54:01.0375 3416 atapi - ok 17:54:01.0375 3416 Atdisk - ok 17:54:01.0859 3416 [ 8FDB05AFF463CB36BE0FD3BC779121CD ] Ati HotKey Poller C:\WINXP\system32\Ati2evxx.exe 17:54:01.0875 3416 Ati HotKey Poller - ok 17:54:07.0562 3416 [ 175DDF9AE328CB0D8696094FA1346361 ] ati2mtag C:\WINXP\system32\DRIVERS\ati2mtag.sys 17:54:07.0609 3416 ati2mtag - ok 17:54:07.0734 3416 [ 924971A182E07463765EF9FA8876F24F ] AtiHDAudioService C:\WINXP\system32\drivers\AtihdXP3.sys 17:54:07.0734 3416 AtiHDAudioService - ok 17:54:07.0796 3416 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINXP\system32\DRIVERS\atmarpc.sys 17:54:07.0796 3416 Atmarpc - ok 17:54:07.0843 3416 [ 58ED0D5452DF7BE732193E7999C6B9A4 ] AudioSrv C:\WINXP\System32\audiosrv.dll 17:54:07.0859 3416 AudioSrv - ok 17:54:07.0890 3416 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINXP\system32\DRIVERS\audstub.sys 17:54:07.0890 3416 audstub - ok 17:54:07.0953 3416 [ 87425709A251386064C99B684BF96F72 ] avgntflt C:\WINXP\system32\DRIVERS\avgntflt.sys 17:54:07.0953 3416 avgntflt - ok 17:54:08.0078 3416 [ D50FBA68163BC498F2C136E0E5BA8E2F ] avipbb C:\WINXP\system32\DRIVERS\avipbb.sys 17:54:08.0078 3416 avipbb - ok 17:54:08.0125 3416 [ CB8741CD7B126499FED40C9B197F6AC5 ] avkmgr C:\WINXP\system32\DRIVERS\avkmgr.sys 17:54:08.0125 3416 avkmgr - ok 17:54:08.0156 3416 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINXP\system32\drivers\Beep.sys 17:54:08.0156 3416 Beep - ok 17:54:08.0484 3416 [ D6F603772A789BB3228F310D650B8BD1 ] BITS C:\WINXP\system32\qmgr.dll 17:54:08.0484 3416 BITS - ok 17:54:08.0578 3416 [ B2CC8D85D27BF10C5FAF5B98C335978E ] Browser C:\WINXP\System32\browser.dll 17:54:08.0578 3416 Browser - ok 17:54:08.0609 3416 [ B279426E3C0C344893ED78A613A73BDE ] BthEnum C:\WINXP\system32\DRIVERS\BthEnum.sys 17:54:08.0625 3416 BthEnum - ok 17:54:08.0703 3416 [ 80602B8746D3738F5886CE3D67EF06B6 ] BthPan C:\WINXP\system32\DRIVERS\bthpan.sys 17:54:08.0703 3416 BthPan - ok 17:54:08.0937 3416 [ F55BFD05892C321FB7470D334D6B44E1 ] BTHPORT C:\WINXP\system32\Drivers\BTHport.sys 17:54:08.0937 3416 BTHPORT - ok 17:54:08.0984 3416 [ 26C601EF7525E31379744ABFC6F35A1B ] BthServ C:\WINXP\System32\bthserv.dll 17:54:08.0984 3416 BthServ - ok 17:54:09.0015 3416 [ 61364CD71EF63B0F038B7E9DF00F1EFA ] BTHUSB C:\WINXP\system32\Drivers\BTHUSB.sys 17:54:09.0015 3416 BTHUSB - ok 17:54:09.0203 3416 [ 1778EBA872274C1226D869CD9486847E ] Capture Device Service C:\Programme\Gemeinsame Dateien\InterVideo\DeviceService\DevSvc.exe 17:54:09.0203 3416 Capture Device Service - ok 17:54:09.0312 3416 catchme - ok 17:54:09.0343 3416 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINXP\system32\drivers\cbidf2k.sys 17:54:09.0343 3416 cbidf2k - ok 17:54:09.0359 3416 cd20xrnt - ok 17:54:09.0390 3416 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINXP\system32\drivers\Cdaudio.sys 17:54:09.0390 3416 Cdaudio - ok 17:54:09.0468 3416 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINXP\system32\drivers\Cdfs.sys 17:54:09.0468 3416 Cdfs - ok 17:54:09.0531 3416 [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom C:\WINXP\system32\DRIVERS\cdrom.sys 17:54:09.0531 3416 Cdrom - ok 17:54:09.0531 3416 Changer - ok 17:54:09.0546 3416 [ 28E3040D1F1CA2008CD6B29DFEBC9A5E ] CiSvc C:\WINXP\system32\cisvc.exe 17:54:09.0546 3416 CiSvc - ok 17:54:09.0593 3416 [ 778A30ED3C134EB7E406AFC407E9997D ] ClipSrv C:\WINXP\system32\clipsrv.exe 17:54:09.0593 3416 ClipSrv - ok 17:54:09.0671 3416 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINXP\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe 17:54:09.0750 3416 clr_optimization_v2.0.50727_32 - ok 17:54:09.0750 3416 CmdIde - ok 17:54:09.0765 3416 COMSysApp - ok 17:54:09.0765 3416 Cpqarray - ok 17:54:09.0781 3416 cpuz130 - ok 17:54:09.0843 3416 [ 611F824E5C703A5A899F84C5F1699E4D ] CryptSvc C:\WINXP\System32\cryptsvc.dll 17:54:09.0843 3416 CryptSvc - ok 17:54:09.0843 3416 dac2w2k - ok 17:54:09.0859 3416 dac960nt - ok 17:54:10.0156 3416 [ D3D765E8455A961AE567B408F767D4F9 ] DcomLaunch C:\WINXP\system32\rpcss.dll 17:54:10.0171 3416 DcomLaunch - ok 17:54:10.0218 3416 [ 6216FD7FD227DE454238A702B218CEC7 ] dgderdrv C:\WINXP\system32\drivers\dgderdrv.sys 17:54:10.0218 3416 dgderdrv - ok 17:54:10.0281 3416 [ B575C523F537F24D66D31F8877E6BCAB ] dg_ssudbus C:\WINXP\system32\DRIVERS\ssudbus.sys 17:54:10.0281 3416 dg_ssudbus - ok 17:54:10.0406 3416 [ C29A1C9B75BA38FA37F8C44405DEC360 ] Dhcp C:\WINXP\System32\dhcpcsvc.dll 17:54:10.0406 3416 Dhcp - ok 17:54:10.0453 3416 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINXP\system32\DRIVERS\disk.sys 17:54:10.0453 3416 Disk - ok 17:54:10.0453 3416 dmadmin - ok 17:54:11.0140 3416 [ 0DCFC8395A99FECBB1EF771CEC7FE4EA ] dmboot C:\WINXP\system32\drivers\dmboot.sys 17:54:11.0140 3416 dmboot - ok 17:54:11.0265 3416 [ 53720AB12B48719D00E327DA470A619A ] dmio C:\WINXP\system32\drivers\dmio.sys 17:54:11.0265 3416 dmio - ok 17:54:11.0296 3416 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINXP\system32\drivers\dmload.sys 17:54:11.0296 3416 dmload - ok 17:54:11.0328 3416 [ 25C83FFBBA13B554EB6D59A9B2E2EE78 ] dmserver C:\WINXP\System32\dmserver.dll 17:54:11.0328 3416 dmserver - ok 17:54:11.0406 3416 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINXP\system32\drivers\DMusic.sys 17:54:11.0406 3416 DMusic - ok 17:54:11.0468 3416 [ 4548494812BA3B416D489E0C6AF8D643 ] Dnscache C:\WINXP\System32\dnsrslvr.dll 17:54:11.0468 3416 Dnscache - ok 17:54:11.0578 3416 [ 676E36C4FF5BCEA1900F44182B9723E6 ] Dot3svc C:\WINXP\System32\dot3svc.dll 17:54:11.0578 3416 Dot3svc - ok 17:54:11.0578 3416 dpti2o - ok 17:54:11.0593 3416 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINXP\system32\drivers\drmkaud.sys 17:54:11.0593 3416 drmkaud - ok 17:54:11.0796 3416 [ C8EB60A182BEE9AFD6B394C0145A1732 ] dtsoftbus01 C:\WINXP\system32\DRIVERS\dtsoftbus01.sys 17:54:11.0796 3416 dtsoftbus01 - ok 17:54:11.0859 3416 [ 4E4F2FDDAB0A0736D7671134DCCE91FB ] EapHost C:\WINXP\System32\eapsvc.dll 17:54:11.0859 3416 EapHost - ok 17:54:11.0890 3416 [ 877C18558D70587AA7823A1A308AC96B ] ERSvc C:\WINXP\System32\ersvc.dll 17:54:11.0890 3416 ERSvc - ok 17:54:12.0000 3416 [ F0A7D59AF279326528715B206669B86C ] Eventlog C:\WINXP\system32\services.exe 17:54:12.0000 3416 Eventlog - ok 17:54:12.0187 3416 [ ADA7241C16F3F42C7F210539FAD5F3AA ] EventSystem C:\WINXP\system32\es.dll 17:54:12.0203 3416 EventSystem - ok 17:54:12.0312 3416 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINXP\system32\drivers\Fastfat.sys 17:54:12.0312 3416 Fastfat - ok 17:54:12.0437 3416 [ 927666F4228E3FBBC3D1171581DC8BDC ] FastUserSwitchingCompatibility C:\WINXP\System32\shsvcs.dll 17:54:12.0437 3416 FastUserSwitchingCompatibility - ok 17:54:12.0484 3416 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINXP\system32\DRIVERS\fdc.sys 17:54:12.0484 3416 Fdc - ok 17:54:12.0531 3416 [ B0678A548587C5F1967B0D70BACAD6C1 ] Fips C:\WINXP\system32\drivers\Fips.sys 17:54:12.0531 3416 Fips - ok 17:54:12.0562 3416 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINXP\system32\DRIVERS\flpydisk.sys 17:54:12.0562 3416 Flpydisk - ok 17:54:12.0687 3416 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINXP\system32\DRIVERS\fltMgr.sys 17:54:12.0687 3416 FltMgr - ok 17:54:12.0828 3416 [ 7C2B319EF1F62837AAD0CDD76F0B84C6 ] FolderSize C:\Programme\FolderSize\FolderSizeSvc.exe 17:54:12.0828 3416 FolderSize - ok 17:54:12.0921 3416 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 C:\WINXP\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe 17:54:12.0921 3416 FontCache3.0.0.0 - ok 17:54:12.0953 3416 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINXP\system32\drivers\Fs_Rec.sys 17:54:12.0953 3416 Fs_Rec - ok 17:54:13.0062 3416 [ 8F1955CE42E1484714B542F341647778 ] Ftdisk C:\WINXP\system32\DRIVERS\ftdisk.sys 17:54:13.0062 3416 Ftdisk - ok 17:54:13.0125 3416 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINXP\system32\DRIVERS\msgpc.sys 17:54:13.0125 3416 Gpc - ok 17:54:13.0265 3416 [ C1B577B2169900F4CF7190C39F085794 ] gusvc C:\Programme\Google\Common\Google Updater\GoogleUpdaterService.exe 17:54:13.0265 3416 gusvc - ok 17:54:13.0406 3416 [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus C:\WINXP\system32\DRIVERS\HDAudBus.sys 17:54:13.0406 3416 HDAudBus - ok 17:54:13.0500 3416 [ CB66BF85BF599BEFD6C6A57C2E20357F ] helpsvc C:\WINXP\PCHealth\HelpCtr\Binaries\pchsvc.dll 17:54:13.0531 3416 helpsvc - ok 17:54:13.0593 3416 [ B35DA85E60C0103F2E4104532DA2F12B ] HidServ C:\WINXP\System32\hidserv.dll 17:54:13.0593 3416 HidServ - ok 17:54:13.0625 3416 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] HidUsb C:\WINXP\system32\DRIVERS\hidusb.sys 17:54:13.0625 3416 HidUsb - ok 17:54:13.0703 3416 [ ED29F14101523A6E0E808107405D452C ] hkmsvc C:\WINXP\System32\kmsvc.dll 17:54:13.0703 3416 hkmsvc - ok 17:54:13.0703 3416 hpn - ok 17:54:13.0781 3416 [ 9F1D80908658EB7F1BF70809E0B51470 ] HPZid412 C:\WINXP\system32\DRIVERS\HPZid412.sys 17:54:13.0781 3416 HPZid412 - ok 17:54:13.0812 3416 [ F7E3E9D50F9CD3DE28085A8FDAA0A1C3 ] HPZipr12 C:\WINXP\system32\DRIVERS\HPZipr12.sys 17:54:13.0812 3416 HPZipr12 - ok 17:54:13.0859 3416 [ CF1B7951B4EC8D13F3C93B74BB2B461B ] HPZius12 C:\WINXP\system32\DRIVERS\HPZius12.sys 17:54:13.0859 3416 HPZius12 - ok 17:54:14.0062 3416 [ 937031C085718C1C04A9C0864625EC6B ] HTTP C:\WINXP\system32\Drivers\HTTP.sys 17:54:14.0078 3416 HTTP - ok 17:54:14.0109 3416 [ 9E4ADB854CEBCFB81A4B36718FEECD16 ] HTTPFilter C:\WINXP\System32\w3ssl.dll 17:54:14.0109 3416 HTTPFilter - ok 17:54:14.0109 3416 i2omgmt - ok 17:54:14.0125 3416 i2omp - ok 17:54:14.0187 3416 [ E283B97CFBEB86C1D86BAED5F7846A92 ] i8042prt C:\WINXP\system32\DRIVERS\i8042prt.sys 17:54:14.0187 3416 i8042prt - ok 17:54:14.0906 3416 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc C:\WINXP\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe 17:54:14.0921 3416 idsvc - ok 17:54:14.0984 3416 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINXP\system32\DRIVERS\imapi.sys 17:54:14.0984 3416 Imapi - ok 17:54:15.0093 3416 [ D4B413AA210C21E46AEDD2BA5B68D38E ] ImapiService C:\WINXP\system32\imapi.exe 17:54:15.0093 3416 ImapiService - ok 17:54:15.0109 3416 ini910u - ok 17:54:19.0500 3416 [ 994186286E1DF03B5BCBA765A9320E0F ] IntcAzAudAddService C:\WINXP\system32\drivers\RtkHDAud.sys 17:54:19.0546 3416 IntcAzAudAddService - ok 17:54:19.0546 3416 IntelIde - ok 17:54:19.0609 3416 [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw C:\WINXP\system32\DRIVERS\Ip6Fw.sys 17:54:19.0609 3416 Ip6Fw - ok 17:54:19.0640 3416 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINXP\system32\DRIVERS\ipfltdrv.sys 17:54:19.0656 3416 IpFilterDriver - ok 17:54:19.0671 3416 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINXP\system32\DRIVERS\ipinip.sys 17:54:19.0687 3416 IpInIp - ok 17:54:19.0796 3416 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINXP\system32\DRIVERS\ipnat.sys 17:54:19.0812 3416 IpNat - ok 17:54:19.0875 3416 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINXP\system32\DRIVERS\ipsec.sys 17:54:19.0875 3416 IPSec - ok 17:54:19.0906 3416 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINXP\system32\DRIVERS\irenum.sys 17:54:19.0906 3416 IRENUM - ok 17:54:19.0953 3416 [ 6DFB88F64135C525433E87648BDA30DE ] isapnp C:\WINXP\system32\DRIVERS\isapnp.sys 17:54:19.0953 3416 isapnp - ok 17:54:20.0015 3416 [ DE96BBF842059A67D876B692076D8875 ] ivusb C:\WINXP\system32\DRIVERS\ivusb.sys 17:54:20.0015 3416 ivusb - ok 17:54:20.0250 3416 [ 9ECF00E19736054E019C532AED8228FC ] JavaQuickStarterService C:\Programme\Java\jre7\bin\jqs.exe 17:54:20.0250 3416 JavaQuickStarterService - ok 17:54:20.0296 3416 [ 1704D8C4C8807B889E43C649B478A452 ] Kbdclass C:\WINXP\system32\DRIVERS\kbdclass.sys 17:54:20.0296 3416 Kbdclass - ok 17:54:20.0343 3416 [ B6D6C117D771C98130497265F26D1882 ] kbdhid C:\WINXP\system32\DRIVERS\kbdhid.sys 17:54:20.0343 3416 kbdhid - ok 17:54:20.0484 3416 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINXP\system32\drivers\kmixer.sys 17:54:20.0484 3416 kmixer - ok 17:54:20.0578 3416 [ C6EBF1D6AD71DF30DB49B8D3287E1368 ] KSecDD C:\WINXP\system32\drivers\KSecDD.sys 17:54:20.0578 3416 KSecDD - ok 17:54:20.0640 3416 [ 0F8B7BF7097D1E8D78F2F52A2BEA03CD ] L8042pr2 C:\WINXP\system32\DRIVERS\L8042pr2.Sys 17:54:20.0640 3416 L8042pr2 - ok 17:54:20.0750 3416 [ 41202C42C8D1A4465AB121F806E93F24 ] LanmanServer C:\WINXP\System32\srvsvc.dll 17:54:20.0750 3416 LanmanServer - ok 17:54:20.0890 3416 [ C9B816901C1ABF28BA6C5B6CB65EB75B ] lanmanworkstation C:\WINXP\System32\wkssvc.dll 17:54:20.0890 3416 lanmanworkstation - ok 17:54:20.0890 3416 lbrtfdc - ok 17:54:20.0937 3416 [ 636714B7D43C8D0C80449123FD266920 ] LmHosts C:\WINXP\System32\lmhsvc.dll 17:54:20.0937 3416 LmHosts - ok 17:54:21.0015 3416 [ AEF09673376A4D93C09E8341854F1BF4 ] LMouFlt2 C:\WINXP\system32\DRIVERS\LMouFlt2.Sys 17:54:21.0015 3416 LMouFlt2 - ok 17:54:21.0078 3416 [ 4470E3C1E0C3378E4CAB137893C12C3A ] MBAMProtector C:\WINXP\system32\drivers\mbam.sys 17:54:21.0078 3416 MBAMProtector - ok 17:54:21.0453 3416 [ 65085456FD9A74D7F1A999520C299ECB ] MBAMScheduler C:\Programme\Malwarebytes' Anti-Malware\mbamscheduler.exe 17:54:21.0453 3416 MBAMScheduler - ok 17:54:21.0968 3416 [ E0D7732F2D2E24B2DB3F67B6750295B8 ] MBAMService C:\Programme\Malwarebytes' Anti-Malware\mbamservice.exe 17:54:21.0968 3416 MBAMService - ok 17:54:22.0015 3416 [ B7550A7107281D170CE85524B1488C98 ] Messenger C:\WINXP\System32\msgsvc.dll 17:54:22.0015 3416 Messenger - ok 17:54:22.0203 3416 [ 123271BD5237AB991DC5C21FDF8835EB ] Microsoft Office Groove Audit Service C:\Programme\Microsoft Office\Office12\GrooveAuditService.exe 17:54:22.0203 3416 Microsoft Office Groove Audit Service - ok 17:54:22.0234 3416 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINXP\system32\drivers\mnmdd.sys 17:54:22.0234 3416 mnmdd - ok 17:54:22.0296 3416 [ C2F1D365FD96791B037EE504868065D3 ] mnmsrvc C:\WINXP\system32\mnmsrvc.exe 17:54:22.0296 3416 mnmsrvc - ok 17:54:22.0343 3416 [ 6FB74EBD4EC57A6F1781DE3852CC3362 ] Modem C:\WINXP\system32\drivers\Modem.sys 17:54:22.0343 3416 Modem - ok 17:54:23.0359 3416 [ C7D9F9717916B34C1B00DD4834AF485C ] Monfilt C:\WINXP\system32\drivers\Monfilt.sys 17:54:23.0359 3416 Monfilt - ok 17:54:23.0406 3416 [ B24CE8005DEAB254C0251E15CB71D802 ] Mouclass C:\WINXP\system32\DRIVERS\mouclass.sys 17:54:23.0406 3416 Mouclass - ok 17:54:23.0437 3416 [ 66A6F73C74E1791464160A7065CE711A ] mouhid C:\WINXP\system32\DRIVERS\mouhid.sys 17:54:23.0437 3416 mouhid - ok 17:54:23.0500 3416 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\WINXP\system32\drivers\MountMgr.sys 17:54:23.0500 3416 MountMgr - ok 17:54:23.0593 3416 [ 528A5C2570F468155A1B3CF0A2FF5EBD ] MozillaMaintenance C:\Programme\Mozilla Maintenance Service\maintenanceservice.exe 17:54:23.0593 3416 MozillaMaintenance - ok 17:54:23.0609 3416 mraid35x - ok 17:54:23.0750 3416 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\WINXP\system32\DRIVERS\mrxdav.sys 17:54:23.0765 3416 MRxDAV - ok 17:54:24.0109 3416 [ FB2FCCC70F7174C7BF64F48E96D3ADF4 ] MRxSmb C:\WINXP\system32\DRIVERS\mrxsmb.sys 17:54:24.0109 3416 MRxSmb - ok 17:54:24.0156 3416 [ 35A031AF38C55F92D28AA03EE9F12CC9 ] MSDTC C:\WINXP\system32\msdtc.exe 17:54:24.0156 3416 MSDTC - ok 17:54:24.0203 3416 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINXP\system32\drivers\Msfs.sys 17:54:24.0203 3416 Msfs - ok 17:54:24.0203 3416 MSIServer - ok 17:54:24.0234 3416 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINXP\system32\drivers\MSKSSRV.sys 17:54:24.0234 3416 MSKSSRV - ok 17:54:24.0250 3416 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINXP\system32\drivers\MSPCLOCK.sys 17:54:24.0250 3416 MSPCLOCK - ok 17:54:24.0281 3416 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINXP\system32\drivers\MSPQM.sys 17:54:24.0281 3416 MSPQM - ok 17:54:24.0312 3416 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINXP\system32\DRIVERS\mssmbios.sys 17:54:24.0312 3416 mssmbios - ok 17:54:24.0406 3416 [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup C:\WINXP\system32\drivers\Mup.sys 17:54:24.0406 3416 Mup - ok 17:54:24.0625 3416 [ 46BB15AE2AC7D025D6D2567B876817BD ] napagent C:\WINXP\System32\qagentrt.dll 17:54:24.0625 3416 napagent - ok 17:54:25.0203 3416 [ 2637F26312ECCEEB6F110E95F1ECE243 ] NBService C:\Programme\Nero\Nero 7\Nero BackItUp\NBService.exe 17:54:25.0218 3416 NBService - ok 17:54:25.0375 3416 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\WINXP\system32\drivers\NDIS.sys 17:54:25.0375 3416 NDIS - ok 17:54:25.0406 3416 [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi C:\WINXP\system32\DRIVERS\ndistapi.sys 17:54:25.0406 3416 NdisTapi - ok 17:54:25.0437 3416 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINXP\system32\DRIVERS\ndisuio.sys 17:54:25.0437 3416 Ndisuio - ok 17:54:25.0515 3416 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\WINXP\system32\DRIVERS\ndiswan.sys 17:54:25.0515 3416 NdisWan - ok 17:54:25.0562 3416 [ 816460BD4B4ACD27937D1D0813E2E9E9 ] NDProxy C:\WINXP\system32\drivers\NDProxy.sys 17:54:25.0562 3416 NDProxy - ok 17:54:25.0609 3416 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINXP\system32\DRIVERS\netbios.sys 17:54:25.0609 3416 NetBIOS - ok 17:54:25.0718 3416 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINXP\system32\DRIVERS\netbt.sys 17:54:25.0734 3416 NetBT - ok 17:54:25.0843 3416 [ 8ACE4251BFFD09CE75679FE940E996CC ] NetDDE C:\WINXP\system32\netdde.exe 17:54:25.0843 3416 NetDDE - ok 17:54:25.0953 3416 [ 8ACE4251BFFD09CE75679FE940E996CC ] NetDDEdsdm C:\WINXP\system32\netdde.exe 17:54:25.0953 3416 NetDDEdsdm - ok 17:54:26.0015 3416 [ AFB8261B56CBA0D86AEB6DF682AF9785 ] Netlogon C:\WINXP\system32\lsass.exe 17:54:26.0015 3416 Netlogon - ok 17:54:26.0187 3416 [ E6D88F1F6745BF00B57E7855A2AB696C ] Netman C:\WINXP\System32\netman.dll 17:54:26.0187 3416 Netman - ok 17:54:26.0328 3416 [ D34612C5D02D026535B3095D620626AE ] NetTcpPortSharing C:\WINXP\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe 17:54:26.0328 3416 NetTcpPortSharing - ok 17:54:26.0390 3416 [ E9E47CFB2D461FA0FC75B7A74C6383EA ] NIC1394 C:\WINXP\system32\DRIVERS\nic1394.sys 17:54:26.0390 3416 NIC1394 - ok 17:54:26.0593 3416 [ 4AA50627B01C0E9C6B4C6BD3AF648F12 ] Nla C:\WINXP\System32\mswsock.dll 17:54:26.0593 3416 Nla - ok 17:54:26.0640 3416 [ A00877C05933FBA8AFB3390DD72D4679 ] nmwcd C:\WINXP\system32\drivers\ccdcmb.sys 17:54:26.0640 3416 nmwcd - ok 17:54:26.0703 3416 [ 9FF15F18E4E8758AC57BDB910D0238B3 ] nmwcdc C:\WINXP\system32\drivers\ccdcmbo.sys 17:54:26.0703 3416 nmwcdc - ok 17:54:26.0734 3416 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINXP\system32\drivers\Npfs.sys 17:54:26.0734 3416 Npfs - ok 17:54:27.0156 3416 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\WINXP\system32\drivers\Ntfs.sys 17:54:27.0156 3416 Ntfs - ok 17:54:27.0171 3416 [ AFB8261B56CBA0D86AEB6DF682AF9785 ] NtLmSsp C:\WINXP\system32\lsass.exe 17:54:27.0171 3416 NtLmSsp - ok 17:54:27.0500 3416 [ 56AF4064996FA5BAC9C449B1514B4770 ] NtmsSvc C:\WINXP\system32\ntmssvc.dll 17:54:27.0500 3416 NtmsSvc - ok 17:54:27.0531 3416 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINXP\system32\drivers\Null.sys 17:54:27.0531 3416 Null - ok 17:54:27.0609 3416 [ E54781F54ABCF18DCE0D39E78462A104 ] nusb3hub C:\WINXP\system32\DRIVERS\nusb3hub.sys 17:54:27.0609 3416 nusb3hub - ok 17:54:27.0750 3416 [ AA4CC12E74B813347E8AB590B4C9DD8A ] nusb3xhc C:\WINXP\system32\DRIVERS\nusb3xhc.sys 17:54:27.0750 3416 nusb3xhc - ok 17:54:27.0781 3416 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINXP\system32\DRIVERS\nwlnkflt.sys 17:54:27.0781 3416 NwlnkFlt - ok 17:54:27.0828 3416 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINXP\system32\DRIVERS\nwlnkfwd.sys 17:54:27.0828 3416 NwlnkFwd - ok 17:54:28.0234 3416 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Programme\Gemeinsame Dateien\Microsoft Shared\OFFICE12\ODSERV.EXE 17:54:28.0234 3416 odserv - ok 17:54:28.0296 3416 [ CA33832DF41AFB202EE7AEB05145922F ] ohci1394 C:\WINXP\system32\DRIVERS\ohci1394.sys 17:54:28.0296 3416 ohci1394 - ok 17:54:28.0437 3416 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Programme\Gemeinsame Dateien\Microsoft Shared\Source Engine\OSE.EXE 17:54:28.0437 3416 ose - ok 17:54:28.0531 3416 [ F84785660305B9B903FB3BCA8BA29837 ] Parport C:\WINXP\system32\DRIVERS\parport.sys 17:54:28.0531 3416 Parport - ok 17:54:28.0546 3416 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINXP\system32\drivers\PartMgr.sys 17:54:28.0546 3416 PartMgr - ok 17:54:28.0593 3416 [ C2BF987829099A3EAA2CA6A0A90ECB4F ] ParVdm C:\WINXP\system32\drivers\ParVdm.sys 17:54:28.0593 3416 ParVdm - ok 17:54:28.0625 3416 [ F451DCACBAA67F3307305EBD4A39EA07 ] pccsmcfd C:\WINXP\system32\DRIVERS\pccsmcfd.sys 17:54:28.0625 3416 pccsmcfd - ok 17:54:28.0703 3416 [ 387E8DEDC343AA2D1EFBC30580273ACD ] PCI C:\WINXP\system32\DRIVERS\pci.sys 17:54:28.0703 3416 PCI - ok 17:54:28.0718 3416 PCIDump - ok 17:54:28.0718 3416 [ 59BA86D9A61CBCF4DF8E598C331F5B82 ] PCIIde C:\WINXP\system32\DRIVERS\pciide.sys 17:54:28.0718 3416 PCIIde - ok 17:54:28.0828 3416 [ A2A966B77D61847D61A3051DF87C8C97 ] Pcmcia C:\WINXP\system32\drivers\Pcmcia.sys 17:54:28.0843 3416 Pcmcia - ok 17:54:28.0843 3416 PDCOMP - ok 17:54:28.0843 3416 PDFRAME - ok 17:54:28.0859 3416 PDRELI - ok 17:54:28.0859 3416 PDRFRAME - ok 17:54:28.0859 3416 perc2 - ok 17:54:28.0875 3416 perc2hib - ok 17:54:28.0968 3416 [ F0A7D59AF279326528715B206669B86C ] PlugPlay C:\WINXP\system32\services.exe 17:54:28.0984 3416 PlugPlay - ok 17:54:29.0062 3416 [ 9D84376931440F3679BEEF2A414FA493 ] Pml Driver HPZ12 C:\WINXP\system32\HPZipm12.exe 17:54:29.0062 3416 Pml Driver HPZ12 - ok 17:54:29.0140 3416 [ 8C74C611ADAF9DA2A918B8E82E14766B ] Pnp680 C:\WINXP\system32\DRIVERS\pnp680.sys 17:54:29.0140 3416 Pnp680 - ok 17:54:29.0218 3416 [ A1D7A9214B71EBBB6F31CB84AAC15525 ] Pnp680r C:\WINXP\system32\DRIVERS\pnp680r.sys 17:54:29.0218 3416 Pnp680r - ok 17:54:29.0250 3416 [ AFB8261B56CBA0D86AEB6DF682AF9785 ] PolicyAgent C:\WINXP\system32\lsass.exe 17:54:29.0250 3416 PolicyAgent - ok 17:54:29.0312 3416 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINXP\system32\DRIVERS\raspptp.sys 17:54:29.0312 3416 PptpMiniport - ok 17:54:29.0359 3416 [ 2CB55427C58679F49AD600FCCBA76360 ] Processor C:\WINXP\system32\DRIVERS\processr.sys 17:54:29.0359 3416 Processor - ok 17:54:29.0375 3416 [ AFB8261B56CBA0D86AEB6DF682AF9785 ] ProtectedStorage C:\WINXP\system32\lsass.exe 17:54:29.0375 3416 ProtectedStorage - ok 17:54:29.0437 3416 [ 09298EC810B07E5D582CB3A3F9255424 ] PSched C:\WINXP\system32\DRIVERS\psched.sys 17:54:29.0437 3416 PSched - ok 17:54:29.0609 3416 [ 543A4EF0923BF70D126625B034EF25AF ] PSI_SVC_2 c:\Programme\Gemeinsame Dateien\Protexis\License Service\PsiService_2.exe 17:54:29.0609 3416 PSI_SVC_2 - ok 17:54:29.0656 3416 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINXP\system32\DRIVERS\ptilink.sys 17:54:29.0656 3416 Ptilink - ok 17:54:29.0718 3416 [ 153D02480A0A2F45785522E814C634B6 ] PxHelp20 C:\WINXP\system32\Drivers\PxHelp20.sys 17:54:29.0718 3416 PxHelp20 - ok 17:54:29.0734 3416 ql1080 - ok 17:54:29.0734 3416 Ql10wnt - ok 17:54:29.0734 3416 ql12160 - ok 17:54:29.0750 3416 ql1240 - ok 17:54:29.0750 3416 ql1280 - ok 17:54:29.0765 3416 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINXP\system32\DRIVERS\rasacd.sys 17:54:29.0765 3416 RasAcd - ok 17:54:29.0875 3416 [ F5BA6CACCDB66C8F048E867563203246 ] RasAuto C:\WINXP\System32\rasauto.dll 17:54:29.0875 3416 RasAuto - ok 17:54:29.0921 3416 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINXP\system32\DRIVERS\rasl2tp.sys 17:54:29.0921 3416 Rasl2tp - ok 17:54:30.0062 3416 [ F9A7B66EA345726EDB5862A46B1ECCD5 ] RasMan C:\WINXP\System32\rasmans.dll 17:54:30.0062 3416 RasMan - ok 17:54:30.0109 3416 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\WINXP\system32\DRIVERS\raspppoe.sys 17:54:30.0109 3416 RasPppoe - ok 17:54:30.0156 3416 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINXP\system32\DRIVERS\raspti.sys 17:54:30.0156 3416 Raspti - ok 17:54:30.0296 3416 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\WINXP\system32\DRIVERS\rdbss.sys 17:54:30.0296 3416 Rdbss - ok 17:54:30.0328 3416 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINXP\system32\DRIVERS\RDPCDD.sys 17:54:30.0328 3416 RDPCDD - ok 17:54:30.0484 3416 [ 15CABD0F7C00C47C70124907916AF3F1 ] rdpdr C:\WINXP\system32\DRIVERS\rdpdr.sys 17:54:30.0500 3416 rdpdr - ok 17:54:30.0625 3416 [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD C:\WINXP\system32\drivers\RDPWD.sys 17:54:30.0625 3416 RDPWD - ok 17:54:30.0750 3416 [ 263AF18AF0F3DB99F574C95F284CCEC9 ] RDSessMgr C:\WINXP\system32\sessmgr.exe 17:54:30.0750 3416 RDSessMgr - ok 17:54:30.0812 3416 [ ED761D453856F795A7FE056E42C36365 ] redbook C:\WINXP\system32\DRIVERS\redbook.sys 17:54:30.0812 3416 redbook - ok 17:54:30.0890 3416 [ 0E97EC96D6942CEEC2D188CC2EB69A01 ] RemoteAccess C:\WINXP\System32\mprdim.dll 17:54:30.0890 3416 RemoteAccess - ok 17:54:30.0984 3416 [ E4CD1F3D84E1C2CA0B8CF7501E201593 ] RemoteRegistry C:\WINXP\system32\regsvc.dll 17:54:30.0984 3416 RemoteRegistry - ok 17:54:31.0046 3416 [ 851C30DF2807FCFA21E4C681A7D6440E ] RFCOMM C:\WINXP\system32\DRIVERS\rfcomm.sys 17:54:31.0046 3416 RFCOMM - ok 17:54:31.0109 3416 [ 2A02E21867497DF20B8FC95631395169 ] RpcLocator C:\WINXP\system32\locator.exe 17:54:31.0109 3416 RpcLocator - ok 17:54:31.0421 3416 [ D3D765E8455A961AE567B408F767D4F9 ] RpcSs C:\WINXP\System32\rpcss.dll 17:54:31.0421 3416 RpcSs - ok 17:54:31.0546 3416 [ 4BDD71B4B521521499DFD14735C4F398 ] RSVP C:\WINXP\system32\rsvp.exe 17:54:31.0546 3416 RSVP - ok 17:54:34.0109 3416 [ 017CC2E361A47461472BC4C08BD12440 ] RTHDMIAzAudService C:\WINXP\system32\drivers\RtHDMI.sys 17:54:34.0140 3416 RTHDMIAzAudService - ok 17:54:34.0312 3416 [ C6D34A1874CD2B212DC3E788091C64B4 ] RTLE8023xp C:\WINXP\system32\DRIVERS\Rtenicxp.sys 17:54:34.0312 3416 RTLE8023xp - ok 17:54:34.0343 3416 [ AFB8261B56CBA0D86AEB6DF682AF9785 ] SamSs C:\WINXP\system32\lsass.exe 17:54:34.0343 3416 SamSs - ok 17:54:34.0453 3416 [ DCEC079FAD95D36C8DD5CB6D779DFE32 ] SCardSvr C:\WINXP\System32\SCardSvr.exe 17:54:34.0453 3416 SCardSvr - ok 17:54:34.0625 3416 [ A050194A44D7FA8D7186ED2F4E8367AE ] Schedule C:\WINXP\system32\schedsvc.dll 17:54:34.0625 3416 Schedule - ok 17:54:34.0656 3416 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINXP\system32\DRIVERS\secdrv.sys 17:54:34.0656 3416 Secdrv - ok 17:54:34.0687 3416 [ BEE4CFD1D48C23B44CF4B974B0B79B2B ] seclogon C:\WINXP\System32\seclogon.dll 17:54:34.0687 3416 seclogon - ok 17:54:34.0734 3416 [ 2AAC9B6ED9EDDFFB721D6452E34D67E3 ] SENS C:\WINXP\system32\sens.dll 17:54:34.0734 3416 SENS - ok 17:54:34.0765 3416 [ 0F29512CCD6BEAD730039FB4BD2C85CE ] serenum C:\WINXP\system32\DRIVERS\serenum.sys 17:54:34.0765 3416 serenum - ok 17:54:34.0828 3416 [ CF24EB4F0412C82BCD1F4F35A025E31D ] Serial C:\WINXP\system32\DRIVERS\serial.sys 17:54:34.0828 3416 Serial - ok 17:54:34.0859 3416 [ E8F3E51DA8098201F50678CEC5FCE179 ] sermouse C:\WINXP\system32\DRIVERS\sermouse.sys 17:54:34.0859 3416 Suspicious file (Forged): C:\WINXP\system32\DRIVERS\sermouse.sys. Real md5: E8F3E51DA8098201F50678CEC5FCE179, Fake md5: 460EAFE0DBD95939AD866F1BACF87593 17:54:34.0859 3416 sermouse ( ForgedFile.Multi.Generic ) - warning 17:54:34.0859 3416 sermouse - detected ForgedFile.Multi.Generic (1) 17:54:35.0437 3416 [ 78F7BB9F4924BE164294C59B8C3FC096 ] ServiceLayer C:\Programme\PC Connectivity Solution\ServiceLayer.exe 17:54:35.0437 3416 ServiceLayer - ok 17:54:35.0484 3416 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINXP\system32\drivers\Sfloppy.sys 17:54:35.0484 3416 Sfloppy - ok 17:54:35.0734 3416 [ CAD058D5F8B889A87CA3EB3CF624DCEF ] SharedAccess C:\WINXP\System32\ipnathlp.dll 17:54:35.0734 3416 SharedAccess - ok 17:54:35.0843 3416 [ 927666F4228E3FBBC3D1171581DC8BDC ] ShellHWDetection C:\WINXP\System32\shsvcs.dll 17:54:35.0859 3416 ShellHWDetection - ok 17:54:35.0859 3416 Simbad - ok 17:54:35.0890 3416 Sparrow - ok 17:54:35.0921 3416 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINXP\system32\drivers\splitter.sys 17:54:35.0921 3416 splitter - ok 17:54:36.0000 3416 [ 258DD5D4283FD9F9A7166BE9AE45CE73 ] Spooler C:\WINXP\system32\spoolsv.exe 17:54:36.0000 3416 Spooler - ok 17:54:36.0343 3416 [ 8EA0FD60A5B047E0C734D51AACE531C9 ] sptd C:\WINXP\System32\Drivers\sptd.sys 17:54:36.0343 3416 Suspicious file (NoAccess): C:\WINXP\System32\Drivers\sptd.sys. md5: 8EA0FD60A5B047E0C734D51AACE531C9 17:54:36.0343 3416 sptd ( LockedFile.Multi.Generic ) - warning 17:54:36.0343 3416 sptd - detected LockedFile.Multi.Generic (1) 17:54:36.0437 3416 [ 50FA898F8C032796D3B1B9951BB5A90F ] sr C:\WINXP\system32\DRIVERS\sr.sys 17:54:36.0437 3416 sr - ok 17:54:36.0562 3416 [ FE77A85495065F3AD59C5C65B6C54182 ] srservice C:\WINXP\system32\srsvc.dll 17:54:36.0562 3416 srservice - ok 17:54:36.0843 3416 [ 9B390283569EA58D43D2586032B892F5 ] Srv C:\WINXP\system32\DRIVERS\srv.sys 17:54:36.0859 3416 Srv - ok 17:54:36.0906 3416 [ 4DF5B05DFAEC29E13E1ED6F6EE12C500 ] SSDPSRV C:\WINXP\System32\ssdpsrv.dll 17:54:36.0921 3416 SSDPSRV - ok 17:54:36.0968 3416 [ A36EE93698802CD899F98BFD553D8185 ] ssmdrv C:\WINXP\system32\DRIVERS\ssmdrv.sys 17:54:36.0968 3416 ssmdrv - ok 17:54:37.0125 3416 [ CA22092117F4F8BA3700B4BF9962444A ] ssudmdm C:\WINXP\system32\DRIVERS\ssudmdm.sys 17:54:37.0125 3416 ssudmdm - ok 17:54:37.0156 3416 Steam Client Service - ok 17:54:37.0421 3416 [ BC2C5985611C5356B24AEB370953DED9 ] stisvc C:\WINXP\system32\wiaservc.dll 17:54:37.0421 3416 stisvc - ok 17:54:37.0437 3416 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINXP\system32\DRIVERS\swenum.sys 17:54:37.0437 3416 swenum - ok 17:54:37.0500 3416 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINXP\system32\drivers\swmidi.sys 17:54:37.0500 3416 swmidi - ok 17:54:37.0500 3416 SwPrv - ok 17:54:37.0500 3416 symc810 - ok 17:54:37.0515 3416 symc8xx - ok 17:54:37.0515 3416 sym_hi - ok 17:54:37.0515 3416 sym_u3 - ok 17:54:37.0562 3416 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINXP\system32\drivers\sysaudio.sys 17:54:37.0578 3416 sysaudio - ok 17:54:37.0656 3416 [ 2903FFFA2523926D6219428040DCE6B9 ] SysmonLog C:\WINXP\system32\smlogsvc.exe 17:54:37.0656 3416 SysmonLog - ok 17:54:37.0859 3416 [ 05903CAC4B98908D55EA5774775B382E ] TapiSrv C:\WINXP\System32\tapisrv.dll 17:54:37.0859 3416 TapiSrv - ok 17:54:38.0125 3416 [ AD978A1B783B5719720CFF204B666C8E ] Tcpip C:\WINXP\system32\DRIVERS\tcpip.sys 17:54:38.0125 3416 Tcpip - ok 17:54:38.0171 3416 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINXP\system32\drivers\TDPIPE.sys 17:54:38.0171 3416 TDPIPE - ok 17:54:38.0203 3416 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\WINXP\system32\drivers\TDTCP.sys 17:54:38.0203 3416 TDTCP - ok 17:54:38.0234 3416 [ 88155247177638048422893737429D9E ] TermDD C:\WINXP\system32\DRIVERS\termdd.sys 17:54:38.0234 3416 TermDD - ok 17:54:38.0453 3416 [ B7DE02C863D8F5A005A7BF375375A6A4 ] TermService C:\WINXP\System32\termsrv.dll 17:54:38.0468 3416 TermService - ok 17:54:38.0562 3416 [ 927666F4228E3FBBC3D1171581DC8BDC ] Themes C:\WINXP\System32\shsvcs.dll 17:54:38.0562 3416 Themes - ok 17:54:38.0656 3416 [ 03681A1CE77F51586903869A5AB1DEAB ] TlntSvr C:\WINXP\system32\tlntsvr.exe 17:54:38.0656 3416 TlntSvr - ok 17:54:38.0656 3416 TosIde - ok 17:54:38.0734 3416 [ 626504572B175867F30F3215C04B3E2F ] TrkWks C:\WINXP\system32\trkwks.dll 17:54:38.0734 3416 TrkWks - ok 17:54:38.0796 3416 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINXP\system32\drivers\Udfs.sys 17:54:38.0796 3416 Udfs - ok 17:54:38.0812 3416 ultra - ok 17:54:39.0109 3416 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINXP\system32\DRIVERS\update.sys 17:54:39.0109 3416 Update - ok 17:54:39.0265 3416 [ 1DFD8975D8C89214B98D9387C1125B49 ] upnphost C:\WINXP\System32\upnphost.dll 17:54:39.0265 3416 upnphost - ok 17:54:39.0281 3416 [ 8721F55D8BC9F89E3A63CEBDF5EF4FA3 ] upperdev C:\WINXP\system32\DRIVERS\usbser_lowerflt.sys 17:54:39.0296 3416 upperdev - ok 17:54:39.0312 3416 [ 9B11E6118958E63E1FEF129466E2BDA7 ] UPS C:\WINXP\System32\ups.exe 17:54:39.0328 3416 UPS - ok 17:54:39.0359 3416 [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp C:\WINXP\system32\DRIVERS\usbccgp.sys 17:54:39.0359 3416 usbccgp - ok 17:54:39.0390 3416 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci C:\WINXP\system32\DRIVERS\usbehci.sys 17:54:39.0390 3416 usbehci - ok 17:54:39.0437 3416 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINXP\system32\DRIVERS\usbhub.sys 17:54:39.0437 3416 usbhub - ok 17:54:39.0468 3416 [ 0DAECCE65366EA32B162F85F07C6753B ] usbohci C:\WINXP\system32\DRIVERS\usbohci.sys 17:54:39.0468 3416 usbohci - ok 17:54:39.0515 3416 [ A717C8721046828520C9EDF31288FC00 ] usbprint C:\WINXP\system32\DRIVERS\usbprint.sys 17:54:39.0515 3416 usbprint - ok 17:54:39.0562 3416 [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan C:\WINXP\system32\DRIVERS\usbscan.sys 17:54:39.0562 3416 usbscan - ok 17:54:39.0609 3416 [ 1C888B000C2F9492F4B15B5B6B84873E ] usbser C:\WINXP\system32\drivers\usbser.sys 17:54:39.0609 3416 usbser - ok 17:54:39.0656 3416 [ 4E66C71D8D010BFB0DF1042D25E9CB0F ] UsbserFilt C:\WINXP\system32\DRIVERS\usbser_lowerfltj.sys 17:54:39.0656 3416 UsbserFilt - ok 17:54:39.0703 3416 [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR C:\WINXP\system32\DRIVERS\USBSTOR.SYS 17:54:39.0703 3416 USBSTOR - ok 17:54:39.0750 3416 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINXP\System32\drivers\vga.sys 17:54:39.0750 3416 VgaSave - ok 17:54:39.0765 3416 ViaIde - ok 17:54:39.0953 3416 [ 817DA66B1B889FAD1DBF669E0E2F3228 ] vmm C:\WINXP\system32\Drivers\vmm.sys 17:54:39.0953 3416 vmm - ok 17:54:40.0015 3416 [ A5A712F4E880874A477AF790B5186E1D ] VolSnap C:\WINXP\system32\drivers\VolSnap.sys 17:54:40.0015 3416 VolSnap - ok 17:54:40.0093 3416 [ 2ABE8281DB609D8BB1BD1B2F93800D5F ] VPCNetS2 C:\WINXP\system32\DRIVERS\VMNetSrv.sys 17:54:40.0093 3416 VPCNetS2 - ok 17:54:40.0312 3416 [ 68F106273BE29E7B7EF8266977268E78 ] VSS C:\WINXP\System32\vssvc.exe 17:54:40.0312 3416 VSS - ok 17:54:40.0453 3416 [ 7B353059E665F8B7AD2BBEAEF597CF45 ] W32Time C:\WINXP\system32\w32time.dll 17:54:40.0453 3416 W32Time - ok 17:54:40.0515 3416 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINXP\system32\DRIVERS\wanarp.sys 17:54:40.0515 3416 Wanarp - ok 17:54:40.0859 3416 [ D918617B46457B9AC28027722E30F647 ] Wdf01000 C:\WINXP\system32\Drivers\wdf01000.sys 17:54:40.0859 3416 Wdf01000 - ok 17:54:40.0859 3416 WDICA - ok 17:54:40.0953 3416 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINXP\system32\drivers\wdmaud.sys 17:54:40.0953 3416 wdmaud - ok 17:54:41.0046 3416 [ 81727C9873E3905A2FFC1EBD07265002 ] WebClient C:\WINXP\System32\webclnt.dll 17:54:41.0046 3416 WebClient - ok 17:54:41.0250 3416 [ 6F3F3973D97714CC5F906A19FE883729 ] winmgmt C:\WINXP\system32\wbem\WMIsvc.dll 17:54:41.0250 3416 winmgmt - ok 17:54:41.0296 3416 [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN C:\WINXP\system32\mspmsnsv.dll 17:54:41.0296 3416 WmdmPmSN - ok 17:54:41.0812 3416 [ 57FA31A965D8FC3172641A93618FBE9E ] Wmi C:\WINXP\System32\advapi32.dll 17:54:41.0828 3416 Wmi - ok 17:54:41.0859 3416 [ C42584FD66CE9E17403AEBCA199F7BDB ] WmiAcpi C:\WINXP\system32\DRIVERS\wmiacpi.sys 17:54:41.0859 3416 WmiAcpi - ok 17:54:41.0968 3416 [ 93908111BA57A6E60EC2FA2DE202105C ] WmiApSrv C:\WINXP\system32\wbem\wmiapsrv.exe 17:54:41.0984 3416 WmiApSrv - ok 17:54:42.0656 3416 [ BF05650BB7DF5E9EBDD25974E22403BB ] WMPNetworkSvc C:\Programme\Windows Media Player\WMPNetwk.exe 17:54:42.0671 3416 WMPNetworkSvc - ok 17:54:42.0718 3416 [ CF4DEF1BF66F06964DC0D91844239104 ] WpdUsb C:\WINXP\system32\DRIVERS\wpdusb.sys 17:54:42.0718 3416 WpdUsb - ok 17:54:42.0765 3416 [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] WS2IFSL C:\WINXP\System32\drivers\ws2ifsl.sys 17:54:42.0765 3416 WS2IFSL - ok 17:54:42.0843 3416 [ 300B3E84FAF1A5C1F791C159BA28035D ] wscsvc C:\WINXP\system32\wscsvc.dll 17:54:42.0843 3416 wscsvc - ok 17:54:42.0875 3416 [ 7B4FE05202AA6BF9F4DFD0E6A0D8A085 ] wuauserv C:\WINXP\system32\wuauserv.dll 17:54:42.0875 3416 wuauserv - ok 17:54:42.0937 3416 [ F15FEAFFFBB3644CCC80C5DA584E6311 ] WudfPf C:\WINXP\system32\DRIVERS\WudfPf.sys 17:54:42.0937 3416 WudfPf - ok 17:54:43.0015 3416 [ 28B524262BCE6DE1F7EF9F510BA3985B ] WudfRd C:\WINXP\system32\DRIVERS\wudfrd.sys 17:54:43.0015 3416 WudfRd - ok 17:54:43.0062 3416 [ 05231C04253C5BC30B26CBAAE680ED89 ] WudfSvc C:\WINXP\System32\WUDFSvc.dll 17:54:43.0078 3416 WudfSvc - ok 17:54:43.0421 3416 [ C4F109C005F6725162D2D12CA751E4A7 ] WZCSVC C:\WINXP\System32\wzcsvc.dll 17:54:43.0437 3416 WZCSVC - ok 17:54:43.0531 3416 [ 0ADA34871A2E1CD2CAAFED1237A47750 ] xmlprov C:\WINXP\System32\xmlprov.dll 17:54:43.0546 3416 xmlprov - ok 17:54:43.0546 3416 ================ Scan global =============================== 17:54:43.0640 3416 [ 2C60091CA5F67C3032EAB3B30390C27F ] C:\WINXP\system32\basesrv.dll 17:54:43.0875 3416 [ 935B583E1E780BDB75718EAFD9667366 ] C:\WINXP\system32\winsrv.dll 17:54:44.0078 3416 [ 935B583E1E780BDB75718EAFD9667366 ] C:\WINXP\system32\winsrv.dll 17:54:44.0171 3416 [ F0A7D59AF279326528715B206669B86C ] C:\WINXP\system32\services.exe 17:54:44.0171 3416 [Global] - ok 17:54:44.0171 3416 ================ Scan MBR ================================== 17:54:44.0171 3416 [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk0\DR0 17:54:44.0171 3416 \Device\Harddisk0\DR0 - ok 17:54:44.0187 3416 [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk1\DR1 17:54:44.0421 3416 \Device\Harddisk1\DR1 - ok 17:54:44.0468 3416 [ 72B8CE41AF0DE751C946802B3ED844B4 ] \Device\Harddisk3\DR3 17:54:44.0875 3416 \Device\Harddisk3\DR3 - ok 17:54:44.0875 3416 [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk2\DR2 17:54:44.0875 3416 \Device\Harddisk2\DR2 - ok 17:54:44.0875 3416 [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk4\DR16 17:54:44.0890 3416 \Device\Harddisk4\DR16 - ok 17:54:44.0890 3416 ================ Scan VBR ================================== 17:54:44.0890 3416 [ 79E1C4F70F5EC8E025C5B791445BB09D ] \Device\Harddisk0\DR0\Partition1 17:54:44.0906 3416 \Device\Harddisk0\DR0\Partition1 - ok 17:54:44.0906 3416 [ C0303816A22AFB62EA2F2CF2A05579F7 ] \Device\Harddisk0\DR0\Partition2 17:54:44.0906 3416 \Device\Harddisk0\DR0\Partition2 - ok 17:54:44.0906 3416 [ 7949625C207918CC36F7F92E2E4E9F4B ] \Device\Harddisk1\DR1\Partition1 17:54:44.0921 3416 \Device\Harddisk1\DR1\Partition1 - ok 17:54:44.0921 3416 [ 59946D73378BA658C0C293A9FFB4F13B ] \Device\Harddisk1\DR1\Partition2 17:54:44.0921 3416 \Device\Harddisk1\DR1\Partition2 - ok 17:54:44.0921 3416 [ B7320BE63109C47ED161232DF572B55C ] \Device\Harddisk1\DR1\Partition3 17:54:44.0921 3416 \Device\Harddisk1\DR1\Partition3 - ok 17:54:44.0953 3416 [ 8CB15EFE61C1E5F1BA298927058F91EB ] \Device\Harddisk3\DR3\Partition1 17:54:44.0953 3416 \Device\Harddisk3\DR3\Partition1 - ok 17:54:44.0968 3416 [ A8E4C18E2844490C7762749709E53798 ] \Device\Harddisk3\DR3\Partition2 17:54:44.0984 3416 \Device\Harddisk3\DR3\Partition2 - ok 17:54:45.0000 3416 [ 1DD85E00B9CD2A111EE9F42C1ED45E08 ] \Device\Harddisk3\DR3\Partition3 17:54:45.0015 3416 \Device\Harddisk3\DR3\Partition3 - ok 17:54:45.0015 3416 [ F401DEB93823DD2B0C750C3E5EA07139 ] \Device\Harddisk2\DR2\Partition1 17:54:45.0015 3416 \Device\Harddisk2\DR2\Partition1 - ok 17:54:45.0015 3416 [ 85297104F0CF72987AB77BAD3B008E3C ] \Device\Harddisk2\DR2\Partition2 17:54:45.0015 3416 \Device\Harddisk2\DR2\Partition2 - ok 17:54:45.0031 3416 [ E69314176A27D333A087F91EBA75D6F6 ] \Device\Harddisk2\DR2\Partition3 17:54:45.0031 3416 \Device\Harddisk2\DR2\Partition3 - ok 17:54:45.0031 3416 [ 55373E96AB70628B62CB6F36D6A56E71 ] \Device\Harddisk2\DR2\Partition4 17:54:45.0031 3416 \Device\Harddisk2\DR2\Partition4 - ok 17:54:45.0031 3416 [ 0F8D7795615C4C6B7123486DD2A5736D ] \Device\Harddisk4\DR16\Partition1 17:54:45.0031 3416 \Device\Harddisk4\DR16\Partition1 - ok 17:54:45.0046 3416 [ 17AEE6AA4B7A9DB272775C786278C25E ] \Device\Harddisk4\DR16\Partition2 17:54:45.0046 3416 \Device\Harddisk4\DR16\Partition2 - ok 17:54:45.0046 3416 [ 84E99F1ED8407DF367A4C28209186B29 ] \Device\Harddisk4\DR16\Partition3 17:54:45.0046 3416 \Device\Harddisk4\DR16\Partition3 - ok 17:54:45.0046 3416 ============================================================ 17:54:45.0046 3416 Scan finished 17:54:45.0046 3416 ============================================================ 17:54:45.0062 4024 Detected object count: 2 17:54:45.0062 4024 Actual detected object count: 2 17:55:44.0671 4024 sermouse ( ForgedFile.Multi.Generic ) - skipped by user 17:55:44.0671 4024 sermouse ( ForgedFile.Multi.Generic ) - User select action: Skip 17:55:44.0671 4024 sptd ( LockedFile.Multi.Generic ) - skipped by user 17:55:44.0671 4024 sptd ( LockedFile.Multi.Generic ) - User select action: Skip 18:15:27.0031 3308 ============================================================ 18:15:27.0031 3308 Scan started 18:15:27.0031 3308 Mode: Manual; 18:15:27.0031 3308 ============================================================ 18:15:39.0468 3308 ================ Scan system memory ======================== 18:15:39.0468 3308 System memory - ok 18:15:39.0468 3308 ================ Scan services ============================= 18:15:39.0984 3308 Abiosdsk - ok 18:15:39.0984 3308 abp480n5 - ok 18:15:40.0140 3308 [ E6F53D6C0DEA3D375362265E175CA638 ] acedrv11 C:\WINXP\system32\drivers\acedrv11.sys 18:15:40.0140 3308 acedrv11 - ok 18:15:40.0312 3308 [ AC407F1A62C3A300B4F2B5A9F1D55B2C ] ACPI C:\WINXP\system32\DRIVERS\ACPI.sys 18:15:40.0312 3308 ACPI - ok 18:15:40.0343 3308 [ 9E1CA3160DAFB159CA14F83B1E317F75 ] ACPIEC C:\WINXP\system32\drivers\ACPIEC.sys 18:15:40.0343 3308 ACPIEC - ok 18:15:40.0343 3308 adpu160m - ok 18:15:40.0468 3308 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINXP\system32\drivers\aec.sys 18:15:40.0468 3308 aec - ok 18:15:40.0593 3308 [ F6B7B1ECD7B41736BDB6FF4B092BCB79 ] AFD C:\WINXP\System32\drivers\afd.sys 18:15:40.0593 3308 AFD - ok 18:15:40.0593 3308 Aha154x - ok 18:15:40.0609 3308 aic78u2 - ok 18:15:40.0609 3308 aic78xx - ok 18:15:40.0640 3308 [ 738D80CC01D7BC7584BE917B7F544394 ] Alerter C:\WINXP\system32\alrsvc.dll 18:15:40.0656 3308 Alerter - ok 18:15:40.0718 3308 [ 190CD73D4984F94D823F9444980513E5 ] ALG C:\WINXP\System32\alg.exe 18:15:40.0750 3308 ALG - ok 18:15:40.0750 3308 AliIde - ok 18:15:41.0968 3308 [ 267FC636801EDC5AB28E14036349E3BE ] Ambfilt C:\WINXP\system32\drivers\Ambfilt.sys 18:15:41.0984 3308 Ambfilt - ok 18:15:41.0984 3308 amsint - ok 18:15:42.0218 3308 [ FE9932692FC61C2203EC9884D414F700 ] AntiVirSchedulerService C:\Programme\Avira\AntiVir Desktop\sched.exe 18:15:42.0281 3308 AntiVirSchedulerService - ok 18:15:42.0390 3308 [ B1F8B58F27971B7E316DD316687886EC ] AntiVirService C:\Programme\Avira\AntiVir Desktop\avguard.exe 18:15:42.0453 3308 AntiVirService - ok 18:15:42.0625 3308 [ D45960BE52C3C610D361977057F98C54 ] AppMgmt C:\WINXP\System32\appmgmts.dll 18:15:42.0750 3308 AppMgmt - ok 18:15:42.0828 3308 [ B5B8A80875C1DEDEDA8B02765642C32F ] Arp1394 C:\WINXP\system32\DRIVERS\arp1394.sys 18:15:42.0828 3308 Arp1394 - ok 18:15:42.0828 3308 asc - ok 18:15:42.0828 3308 asc3350p - ok 18:15:42.0843 3308 asc3550 - ok 18:15:43.0015 3308 [ 0E5E4957549056E2BF2C49F4F6B601AD ] aspnet_state C:\WINXP\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe 18:15:43.0046 3308 aspnet_state - ok 18:15:43.0078 3308 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINXP\system32\DRIVERS\asyncmac.sys 18:15:43.0078 3308 AsyncMac - ok 18:15:43.0171 3308 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINXP\system32\DRIVERS\atapi.sys 18:15:43.0171 3308 atapi - ok 18:15:43.0171 3308 Atdisk - ok 18:15:43.0640 3308 [ 8FDB05AFF463CB36BE0FD3BC779121CD ] Ati HotKey Poller C:\WINXP\system32\Ati2evxx.exe 18:15:44.0109 3308 Ati HotKey Poller - ok 18:15:49.0640 3308 [ 175DDF9AE328CB0D8696094FA1346361 ] ati2mtag C:\WINXP\system32\DRIVERS\ati2mtag.sys 18:15:52.0265 3308 ati2mtag - ok 18:15:52.0406 3308 [ 924971A182E07463765EF9FA8876F24F ] AtiHDAudioService C:\WINXP\system32\drivers\AtihdXP3.sys 18:15:52.0484 3308 AtiHDAudioService - ok 18:15:52.0546 3308 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINXP\system32\DRIVERS\atmarpc.sys 18:15:52.0593 3308 Atmarpc - ok 18:15:52.0656 3308 [ 58ED0D5452DF7BE732193E7999C6B9A4 ] AudioSrv C:\WINXP\System32\audiosrv.dll 18:15:52.0687 3308 AudioSrv - ok 18:15:52.0718 3308 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINXP\system32\DRIVERS\audstub.sys 18:15:52.0718 3308 audstub - ok 18:15:52.0781 3308 [ 87425709A251386064C99B684BF96F72 ] avgntflt C:\WINXP\system32\DRIVERS\avgntflt.sys 18:15:52.0843 3308 avgntflt - ok 18:15:52.0968 3308 [ D50FBA68163BC498F2C136E0E5BA8E2F ] avipbb C:\WINXP\system32\DRIVERS\avipbb.sys 18:15:53.0062 3308 avipbb - ok 18:15:53.0109 3308 [ CB8741CD7B126499FED40C9B197F6AC5 ] avkmgr C:\WINXP\system32\DRIVERS\avkmgr.sys 18:15:53.0140 3308 avkmgr - ok 18:15:53.0171 3308 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINXP\system32\drivers\Beep.sys 18:15:53.0171 3308 Beep - ok 18:15:53.0484 3308 [ D6F603772A789BB3228F310D650B8BD1 ] BITS C:\WINXP\system32\qmgr.dll 18:15:53.0796 3308 BITS - ok 18:15:53.0890 3308 [ B2CC8D85D27BF10C5FAF5B98C335978E ] Browser C:\WINXP\System32\browser.dll 18:15:53.0937 3308 Browser - ok 18:15:53.0984 3308 [ B279426E3C0C344893ED78A613A73BDE ] BthEnum C:\WINXP\system32\DRIVERS\BthEnum.sys 18:15:53.0984 3308 BthEnum - ok 18:15:54.0078 3308 [ 80602B8746D3738F5886CE3D67EF06B6 ] BthPan C:\WINXP\system32\DRIVERS\bthpan.sys 18:15:54.0140 3308 BthPan - ok 18:15:54.0359 3308 [ F55BFD05892C321FB7470D334D6B44E1 ] BTHPORT C:\WINXP\system32\Drivers\BTHport.sys 18:15:54.0562 3308 BTHPORT - ok 18:15:54.0609 3308 [ 26C601EF7525E31379744ABFC6F35A1B ] BthServ C:\WINXP\System32\bthserv.dll 18:15:54.0625 3308 BthServ - ok 18:15:54.0656 3308 [ 61364CD71EF63B0F038B7E9DF00F1EFA ] BTHUSB C:\WINXP\system32\Drivers\BTHUSB.sys 18:15:54.0671 3308 BTHUSB - ok 18:15:54.0859 3308 [ 1778EBA872274C1226D869CD9486847E ] Capture Device Service C:\Programme\Gemeinsame Dateien\InterVideo\DeviceService\DevSvc.exe 18:15:55.0031 3308 Capture Device Service - ok 18:15:55.0140 3308 catchme - ok 18:15:55.0187 3308 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINXP\system32\drivers\cbidf2k.sys 18:15:55.0203 3308 cbidf2k - ok 18:15:55.0203 3308 cd20xrnt - ok 18:15:55.0234 3308 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINXP\system32\drivers\Cdaudio.sys 18:15:55.0250 3308 Cdaudio - ok 18:15:55.0328 3308 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINXP\system32\drivers\Cdfs.sys 18:15:55.0375 3308 Cdfs - ok 18:15:55.0437 3308 [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom C:\WINXP\system32\DRIVERS\cdrom.sys 18:15:55.0484 3308 Cdrom - ok 18:15:55.0484 3308 Changer - ok 18:15:55.0531 3308 [ 28E3040D1F1CA2008CD6B29DFEBC9A5E ] CiSvc C:\WINXP\system32\cisvc.exe 18:15:55.0531 3308 CiSvc - ok 18:15:55.0562 3308 [ 778A30ED3C134EB7E406AFC407E9997D ] ClipSrv C:\WINXP\system32\clipsrv.exe 18:15:55.0593 3308 ClipSrv - ok 18:15:55.0687 3308 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINXP\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe 18:15:55.0734 3308 clr_optimization_v2.0.50727_32 - ok 18:15:55.0734 3308 CmdIde - ok 18:15:55.0750 3308 COMSysApp - ok 18:15:55.0750 3308 Cpqarray - ok 18:15:55.0765 3308 cpuz130 - ok 18:15:55.0812 3308 [ 611F824E5C703A5A899F84C5F1699E4D ] CryptSvc C:\WINXP\System32\cryptsvc.dll 18:15:55.0859 3308 CryptSvc - ok 18:15:55.0859 3308 dac2w2k - ok 18:15:55.0875 3308 dac960nt - ok 18:15:56.0187 3308 [ D3D765E8455A961AE567B408F767D4F9 ] DcomLaunch C:\WINXP\system32\rpcss.dll 18:15:56.0468 3308 DcomLaunch - ok 18:15:56.0531 3308 [ 6216FD7FD227DE454238A702B218CEC7 ] dgderdrv C:\WINXP\system32\drivers\dgderdrv.sys 18:15:56.0546 3308 dgderdrv - ok 18:15:56.0656 3308 [ B575C523F537F24D66D31F8877E6BCAB ] dg_ssudbus C:\WINXP\system32\DRIVERS\ssudbus.sys 18:15:56.0718 3308 dg_ssudbus - ok 18:15:56.0843 3308 [ C29A1C9B75BA38FA37F8C44405DEC360 ] Dhcp C:\WINXP\System32\dhcpcsvc.dll 18:15:56.0921 3308 Dhcp - ok 18:15:56.0984 3308 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINXP\system32\DRIVERS\disk.sys 18:15:57.0000 3308 Disk - ok 18:15:57.0015 3308 dmadmin - ok 18:15:57.0578 3308 [ 0DCFC8395A99FECBB1EF771CEC7FE4EA ] dmboot C:\WINXP\system32\drivers\dmboot.sys 18:15:58.0156 3308 dmboot - ok 18:15:58.0265 3308 [ 53720AB12B48719D00E327DA470A619A ] dmio C:\WINXP\system32\drivers\dmio.sys 18:15:58.0375 3308 dmio - ok 18:15:58.0421 3308 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINXP\system32\drivers\dmload.sys 18:15:58.0421 3308 dmload - ok 18:15:58.0468 3308 [ 25C83FFBBA13B554EB6D59A9B2E2EE78 ] dmserver C:\WINXP\System32\dmserver.dll 18:15:58.0484 3308 dmserver - ok 18:15:58.0546 3308 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINXP\system32\drivers\DMusic.sys 18:15:58.0593 3308 DMusic - ok 18:15:58.0640 3308 [ 4548494812BA3B416D489E0C6AF8D643 ] Dnscache C:\WINXP\System32\dnsrslvr.dll 18:15:58.0687 3308 Dnscache - ok 18:15:58.0781 3308 [ 676E36C4FF5BCEA1900F44182B9723E6 ] Dot3svc C:\WINXP\System32\dot3svc.dll 18:15:58.0875 3308 Dot3svc - ok 18:15:58.0890 3308 dpti2o - ok 18:15:58.0906 3308 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINXP\system32\drivers\drmkaud.sys 18:15:58.0906 3308 drmkaud - ok 18:15:59.0109 3308 [ C8EB60A182BEE9AFD6B394C0145A1732 ] dtsoftbus01 C:\WINXP\system32\DRIVERS\dtsoftbus01.sys 18:15:59.0281 3308 dtsoftbus01 - ok 18:15:59.0328 3308 [ 4E4F2FDDAB0A0736D7671134DCCE91FB ] EapHost C:\WINXP\System32\eapsvc.dll 18:15:59.0343 3308 EapHost - ok 18:15:59.0375 3308 [ 877C18558D70587AA7823A1A308AC96B ] ERSvc C:\WINXP\System32\ersvc.dll 18:15:59.0390 3308 ERSvc - ok 18:15:59.0500 3308 [ F0A7D59AF279326528715B206669B86C ] Eventlog C:\WINXP\system32\services.exe 18:15:59.0578 3308 Eventlog - ok 18:15:59.0781 3308 [ ADA7241C16F3F42C7F210539FAD5F3AA ] EventSystem C:\WINXP\system32\es.dll 18:15:59.0953 3308 EventSystem - ok 18:16:00.0093 3308 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINXP\system32\drivers\Fastfat.sys 18:16:00.0218 3308 Fastfat - ok 18:16:00.0343 3308 [ 927666F4228E3FBBC3D1171581DC8BDC ] FastUserSwitchingCompatibility C:\WINXP\System32\shsvcs.dll 18:16:00.0437 3308 FastUserSwitchingCompatibility - ok 18:16:00.0484 3308 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINXP\system32\DRIVERS\fdc.sys 18:16:00.0500 3308 Fdc - ok 18:16:00.0562 3308 [ B0678A548587C5F1967B0D70BACAD6C1 ] Fips C:\WINXP\system32\drivers\Fips.sys 18:16:00.0593 3308 Fips - ok 18:16:00.0640 3308 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINXP\system32\DRIVERS\flpydisk.sys 18:16:00.0656 3308 Flpydisk - ok 18:16:00.0765 3308 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINXP\system32\DRIVERS\fltMgr.sys 18:16:00.0859 3308 FltMgr - ok 18:16:01.0000 3308 [ 7C2B319EF1F62837AAD0CDD76F0B84C6 ] FolderSize C:\Programme\FolderSize\FolderSizeSvc.exe 18:16:01.0093 3308 FolderSize - ok 18:16:01.0218 3308 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 C:\WINXP\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe 18:16:01.0250 3308 FontCache3.0.0.0 - ok 18:16:01.0265 3308 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINXP\system32\drivers\Fs_Rec.sys 18:16:01.0265 3308 Fs_Rec - ok 18:16:01.0375 3308 [ 8F1955CE42E1484714B542F341647778 ] Ftdisk C:\WINXP\system32\DRIVERS\ftdisk.sys 18:16:01.0468 3308 Ftdisk - ok 18:16:01.0515 3308 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINXP\system32\DRIVERS\msgpc.sys 18:16:01.0546 3308 Gpc - ok 18:16:01.0671 3308 [ C1B577B2169900F4CF7190C39F085794 ] gusvc C:\Programme\Google\Common\Google Updater\GoogleUpdaterService.exe 18:16:01.0765 3308 gusvc - ok 18:16:01.0906 3308 [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus C:\WINXP\system32\DRIVERS\HDAudBus.sys 18:16:02.0000 3308 HDAudBus - ok 18:16:02.0093 3308 [ CB66BF85BF599BEFD6C6A57C2E20357F ] helpsvc C:\WINXP\PCHealth\HelpCtr\Binaries\pchsvc.dll 18:16:02.0125 3308 helpsvc - ok 18:16:02.0171 3308 [ B35DA85E60C0103F2E4104532DA2F12B ] HidServ C:\WINXP\System32\hidserv.dll 18:16:02.0187 3308 HidServ - ok 18:16:02.0234 3308 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] HidUsb C:\WINXP\system32\DRIVERS\hidusb.sys 18:16:02.0234 3308 HidUsb - ok 18:16:02.0312 3308 [ ED29F14101523A6E0E808107405D452C ] hkmsvc C:\WINXP\System32\kmsvc.dll 18:16:02.0343 3308 hkmsvc - ok 18:16:02.0359 3308 hpn - ok 18:16:02.0421 3308 [ 9F1D80908658EB7F1BF70809E0B51470 ] HPZid412 C:\WINXP\system32\DRIVERS\HPZid412.sys 18:16:02.0453 3308 HPZid412 - ok 18:16:02.0484 3308 [ F7E3E9D50F9CD3DE28085A8FDAA0A1C3 ] HPZipr12 C:\WINXP\system32\DRIVERS\HPZipr12.sys 18:16:02.0500 3308 HPZipr12 - ok 18:16:02.0546 3308 [ CF1B7951B4EC8D13F3C93B74BB2B461B ] HPZius12 C:\WINXP\system32\DRIVERS\HPZius12.sys 18:16:02.0562 3308 HPZius12 - ok 18:16:02.0781 3308 [ 937031C085718C1C04A9C0864625EC6B ] HTTP C:\WINXP\system32\Drivers\HTTP.sys 18:16:02.0968 3308 HTTP - ok 18:16:03.0015 3308 [ 9E4ADB854CEBCFB81A4B36718FEECD16 ] HTTPFilter C:\WINXP\System32\w3ssl.dll 18:16:03.0031 3308 HTTPFilter - ok 18:16:03.0031 3308 i2omgmt - ok 18:16:03.0031 3308 i2omp - ok 18:16:03.0109 3308 [ E283B97CFBEB86C1D86BAED5F7846A92 ] i8042prt C:\WINXP\system32\DRIVERS\i8042prt.sys 18:16:03.0156 3308 i8042prt - ok 18:16:03.0875 3308 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc C:\WINXP\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe 18:16:04.0515 3308 idsvc - ok 18:16:04.0578 3308 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINXP\system32\DRIVERS\imapi.sys 18:16:04.0609 3308 Imapi - ok 18:16:04.0734 3308 [ D4B413AA210C21E46AEDD2BA5B68D38E ] ImapiService C:\WINXP\system32\imapi.exe 18:16:04.0843 3308 ImapiService - ok 18:16:04.0843 3308 ini910u - ok 18:16:09.0250 3308 [ 994186286E1DF03B5BCBA765A9320E0F ] IntcAzAudAddService C:\WINXP\system32\drivers\RtkHDAud.sys 18:16:13.0562 3308 IntcAzAudAddService - ok 18:16:13.0562 3308 IntelIde - ok 18:16:13.0625 3308 [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw C:\WINXP\system32\DRIVERS\Ip6Fw.sys 18:16:13.0640 3308 Ip6Fw - ok 18:16:13.0687 3308 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINXP\system32\DRIVERS\ipfltdrv.sys 18:16:13.0718 3308 IpFilterDriver - ok 18:16:13.0750 3308 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINXP\system32\DRIVERS\ipinip.sys 18:16:13.0765 3308 IpInIp - ok 18:16:13.0906 3308 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINXP\system32\DRIVERS\ipnat.sys 18:16:14.0015 3308 IpNat - ok 18:16:14.0093 3308 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINXP\system32\DRIVERS\ipsec.sys 18:16:14.0156 3308 IPSec - ok 18:16:14.0187 3308 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINXP\system32\DRIVERS\irenum.sys 18:16:14.0203 3308 IRENUM - ok 18:16:14.0265 3308 [ 6DFB88F64135C525433E87648BDA30DE ] isapnp C:\WINXP\system32\DRIVERS\isapnp.sys 18:16:14.0281 3308 isapnp - ok 18:16:14.0343 3308 [ DE96BBF842059A67D876B692076D8875 ] ivusb C:\WINXP\system32\DRIVERS\ivusb.sys 18:16:14.0359 3308 ivusb - ok 18:16:14.0609 3308 [ 9ECF00E19736054E019C532AED8228FC ] JavaQuickStarterService C:\Programme\Java\jre7\bin\jqs.exe 18:16:14.0734 3308 JavaQuickStarterService - ok 18:16:14.0796 3308 [ 1704D8C4C8807B889E43C649B478A452 ] Kbdclass C:\WINXP\system32\DRIVERS\kbdclass.sys 18:16:14.0812 3308 Kbdclass - ok 18:16:14.0875 3308 [ B6D6C117D771C98130497265F26D1882 ] kbdhid C:\WINXP\system32\DRIVERS\kbdhid.sys 18:16:14.0890 3308 kbdhid - ok 18:16:15.0031 3308 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINXP\system32\drivers\kmixer.sys 18:16:15.0156 3308 kmixer - ok 18:16:15.0250 3308 [ C6EBF1D6AD71DF30DB49B8D3287E1368 ] KSecDD C:\WINXP\system32\drivers\KSecDD.sys 18:16:15.0312 3308 KSecDD - ok 18:16:15.0390 3308 [ 0F8B7BF7097D1E8D78F2F52A2BEA03CD ] L8042pr2 C:\WINXP\system32\DRIVERS\L8042pr2.Sys 18:16:15.0421 3308 L8042pr2 - ok 18:16:15.0546 3308 [ 41202C42C8D1A4465AB121F806E93F24 ] LanmanServer C:\WINXP\System32\srvsvc.dll 18:16:15.0609 3308 LanmanServer - ok 18:16:15.0750 3308 [ C9B816901C1ABF28BA6C5B6CB65EB75B ] lanmanworkstation C:\WINXP\System32\wkssvc.dll 18:16:15.0875 3308 lanmanworkstation - ok 18:16:15.0875 3308 lbrtfdc - ok 18:16:15.0906 3308 [ 636714B7D43C8D0C80449123FD266920 ] LmHosts C:\WINXP\System32\lmhsvc.dll 18:16:15.0921 3308 LmHosts - ok 18:16:16.0000 3308 [ AEF09673376A4D93C09E8341854F1BF4 ] LMouFlt2 C:\WINXP\system32\DRIVERS\LMouFlt2.Sys 18:16:16.0046 3308 LMouFlt2 - ok 18:16:16.0109 3308 [ 4470E3C1E0C3378E4CAB137893C12C3A ] MBAMProtector C:\WINXP\system32\drivers\mbam.sys 18:16:16.0125 3308 MBAMProtector - ok 18:16:16.0484 3308 [ 65085456FD9A74D7F1A999520C299ECB ] MBAMScheduler C:\Programme\Malwarebytes' Anti-Malware\mbamscheduler.exe 18:16:16.0828 3308 MBAMScheduler - ok 18:16:17.0406 3308 [ E0D7732F2D2E24B2DB3F67B6750295B8 ] MBAMService C:\Programme\Malwarebytes' Anti-Malware\mbamservice.exe 18:16:17.0953 3308 MBAMService - ok 18:16:18.0015 3308 [ B7550A7107281D170CE85524B1488C98 ] Messenger C:\WINXP\System32\msgsvc.dll 18:16:18.0046 3308 Messenger - ok 18:16:18.0218 3308 [ 123271BD5237AB991DC5C21FDF8835EB ] Microsoft Office Groove Audit Service C:\Programme\Microsoft Office\Office12\GrooveAuditService.exe 18:16:18.0265 3308 Microsoft Office Groove Audit Service - ok 18:16:18.0312 3308 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINXP\system32\drivers\mnmdd.sys 18:16:18.0312 3308 mnmdd - ok 18:16:18.0375 3308 [ C2F1D365FD96791B037EE504868065D3 ] mnmsrvc C:\WINXP\system32\mnmsrvc.exe 18:16:18.0390 3308 mnmsrvc - ok 18:16:18.0453 3308 [ 6FB74EBD4EC57A6F1781DE3852CC3362 ] Modem C:\WINXP\system32\drivers\Modem.sys 18:16:18.0468 3308 Modem - ok 18:16:19.0484 3308 [ C7D9F9717916B34C1B00DD4834AF485C ] Monfilt C:\WINXP\system32\drivers\Monfilt.sys 18:16:20.0484 3308 Monfilt - ok 18:16:20.0515 3308 [ B24CE8005DEAB254C0251E15CB71D802 ] Mouclass C:\WINXP\system32\DRIVERS\mouclass.sys 18:16:20.0531 3308 Mouclass - ok 18:16:20.0687 3308 [ 66A6F73C74E1791464160A7065CE711A ] mouhid C:\WINXP\system32\DRIVERS\mouhid.sys 18:16:20.0734 3308 mouhid - ok 18:16:20.0875 3308 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\WINXP\system32\drivers\MountMgr.sys 18:16:20.0937 3308 MountMgr - ok 18:16:21.0375 3308 [ 528A5C2570F468155A1B3CF0A2FF5EBD ] MozillaMaintenance C:\Programme\Mozilla Maintenance Service\maintenanceservice.exe 18:16:21.0546 3308 MozillaMaintenance - ok 18:16:21.0562 3308 mraid35x - ok 18:16:21.0718 3308 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\WINXP\system32\DRIVERS\mrxdav.sys 18:16:21.0843 3308 MRxDAV - ok 18:16:22.0281 3308 [ FB2FCCC70F7174C7BF64F48E96D3ADF4 ] MRxSmb C:\WINXP\system32\DRIVERS\mrxsmb.sys 18:16:22.0593 3308 MRxSmb - ok 18:16:22.0640 3308 [ 35A031AF38C55F92D28AA03EE9F12CC9 ] MSDTC C:\WINXP\system32\msdtc.exe 18:16:22.0656 3308 MSDTC - ok 18:16:22.0703 3308 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINXP\system32\drivers\Msfs.sys 18:16:22.0718 3308 Msfs - ok 18:16:22.0718 3308 MSIServer - ok 18:16:22.0765 3308 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINXP\system32\drivers\MSKSSRV.sys 18:16:22.0765 3308 MSKSSRV - ok 18:16:22.0781 3308 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINXP\system32\drivers\MSPCLOCK.sys 18:16:22.0781 3308 MSPCLOCK - ok 18:16:22.0796 3308 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINXP\system32\drivers\MSPQM.sys 18:16:22.0796 3308 MSPQM - ok 18:16:22.0828 3308 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINXP\system32\DRIVERS\mssmbios.sys 18:16:22.0843 3308 mssmbios - ok 18:16:22.0968 3308 [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup C:\WINXP\system32\drivers\Mup.sys 18:16:23.0109 3308 Mup - ok 18:16:23.0468 3308 [ 46BB15AE2AC7D025D6D2567B876817BD ] napagent C:\WINXP\System32\qagentrt.dll 18:16:23.0671 3308 napagent - ok 18:16:24.0500 3308 [ 2637F26312ECCEEB6F110E95F1ECE243 ] NBService C:\Programme\Nero\Nero 7\Nero BackItUp\NBService.exe 18:16:25.0093 3308 NBService - ok 18:16:25.0250 3308 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\WINXP\system32\drivers\NDIS.sys 18:16:25.0468 3308 NDIS - ok 18:16:25.0515 3308 [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi C:\WINXP\system32\DRIVERS\ndistapi.sys 18:16:25.0531 3308 NdisTapi - ok 18:16:25.0562 3308 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINXP\system32\DRIVERS\ndisuio.sys 18:16:25.0578 3308 Ndisuio - ok 18:16:25.0656 3308 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\WINXP\system32\DRIVERS\ndiswan.sys 18:16:25.0734 3308 NdisWan - ok 18:16:25.0781 3308 [ 816460BD4B4ACD27937D1D0813E2E9E9 ] NDProxy C:\WINXP\system32\drivers\NDProxy.sys 18:16:25.0796 3308 NDProxy - ok 18:16:25.0843 3308 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINXP\system32\DRIVERS\netbios.sys 18:16:25.0875 3308 NetBIOS - ok 18:16:26.0031 3308 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINXP\system32\DRIVERS\netbt.sys 18:16:26.0156 3308 NetBT - ok 18:16:26.0265 3308 [ 8ACE4251BFFD09CE75679FE940E996CC ] NetDDE C:\WINXP\system32\netdde.exe 18:16:26.0437 3308 NetDDE - ok 18:16:26.0531 3308 [ 8ACE4251BFFD09CE75679FE940E996CC ] NetDDEdsdm C:\WINXP\system32\netdde.exe 18:16:26.0546 3308 NetDDEdsdm - ok 18:16:26.0593 3308 [ AFB8261B56CBA0D86AEB6DF682AF9785 ] Netlogon C:\WINXP\system32\lsass.exe 18:16:26.0593 3308 Netlogon - ok 18:16:26.0750 3308 [ E6D88F1F6745BF00B57E7855A2AB696C ] Netman C:\WINXP\System32\netman.dll 18:16:26.0937 3308 Netman - ok 18:16:27.0093 3308 [ D34612C5D02D026535B3095D620626AE ] NetTcpPortSharing C:\WINXP\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe 18:16:27.0187 3308 NetTcpPortSharing - ok 18:16:27.0250 3308 [ E9E47CFB2D461FA0FC75B7A74C6383EA ] NIC1394 C:\WINXP\system32\DRIVERS\nic1394.sys 18:16:27.0296 3308 NIC1394 - ok 18:16:27.0500 3308 [ 4AA50627B01C0E9C6B4C6BD3AF648F12 ] Nla C:\WINXP\System32\mswsock.dll 18:16:27.0671 3308 Nla - ok 18:16:27.0718 3308 [ A00877C05933FBA8AFB3390DD72D4679 ] nmwcd C:\WINXP\system32\drivers\ccdcmb.sys 18:16:27.0734 3308 nmwcd - ok 18:16:27.0781 3308 [ 9FF15F18E4E8758AC57BDB910D0238B3 ] nmwcdc C:\WINXP\system32\drivers\ccdcmbo.sys 18:16:27.0796 3308 nmwcdc - ok 18:16:27.0843 3308 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINXP\system32\drivers\Npfs.sys 18:16:27.0875 3308 Npfs - ok 18:16:28.0359 3308 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\WINXP\system32\drivers\Ntfs.sys 18:16:28.0765 3308 Ntfs - ok 18:16:28.0796 3308 [ AFB8261B56CBA0D86AEB6DF682AF9785 ] NtLmSsp C:\WINXP\system32\lsass.exe 18:16:28.0796 3308 NtLmSsp - ok 18:16:29.0218 3308 [ 56AF4064996FA5BAC9C449B1514B4770 ] NtmsSvc C:\WINXP\system32\ntmssvc.dll 18:16:29.0531 3308 NtmsSvc - ok 18:16:29.0562 3308 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINXP\system32\drivers\Null.sys 18:16:29.0562 3308 Null - ok 18:16:29.0640 3308 [ E54781F54ABCF18DCE0D39E78462A104 ] nusb3hub C:\WINXP\system32\DRIVERS\nusb3hub.sys 18:16:29.0687 3308 nusb3hub - ok 18:16:29.0828 3308 [ AA4CC12E74B813347E8AB590B4C9DD8A ] nusb3xhc C:\WINXP\system32\DRIVERS\nusb3xhc.sys 18:16:29.0984 3308 nusb3xhc - ok 18:16:30.0015 3308 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINXP\system32\DRIVERS\nwlnkflt.sys 18:16:30.0031 3308 NwlnkFlt - ok 18:16:30.0078 3308 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINXP\system32\DRIVERS\nwlnkfwd.sys 18:16:30.0109 3308 NwlnkFwd - ok 18:16:30.0500 3308 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Programme\Gemeinsame Dateien\Microsoft Shared\OFFICE12\ODSERV.EXE 18:16:30.0812 3308 odserv - ok 18:16:30.0890 3308 [ CA33832DF41AFB202EE7AEB05145922F ] ohci1394 C:\WINXP\system32\DRIVERS\ohci1394.sys 18:16:30.0968 3308 ohci1394 - ok 18:16:31.0109 3308 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Programme\Gemeinsame Dateien\Microsoft Shared\Source Engine\OSE.EXE 18:16:31.0203 3308 ose - ok 18:16:31.0343 3308 [ F84785660305B9B903FB3BCA8BA29837 ] Parport C:\WINXP\system32\DRIVERS\parport.sys 18:16:31.0406 3308 Parport - ok 18:16:31.0437 3308 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINXP\system32\drivers\PartMgr.sys 18:16:31.0453 3308 PartMgr - ok 18:16:31.0484 3308 [ C2BF987829099A3EAA2CA6A0A90ECB4F ] ParVdm C:\WINXP\system32\drivers\ParVdm.sys 18:16:31.0500 3308 ParVdm - ok 18:16:31.0562 3308 [ F451DCACBAA67F3307305EBD4A39EA07 ] pccsmcfd C:\WINXP\system32\DRIVERS\pccsmcfd.sys 18:16:31.0578 3308 pccsmcfd - ok 18:16:31.0671 3308 [ 387E8DEDC343AA2D1EFBC30580273ACD ] PCI C:\WINXP\system32\DRIVERS\pci.sys 18:16:31.0718 3308 PCI - ok 18:16:31.0718 3308 PCIDump - ok 18:16:31.0750 3308 [ 59BA86D9A61CBCF4DF8E598C331F5B82 ] PCIIde C:\WINXP\system32\DRIVERS\pciide.sys 18:16:31.0750 3308 PCIIde - ok 18:16:31.0859 3308 [ A2A966B77D61847D61A3051DF87C8C97 ] Pcmcia C:\WINXP\system32\drivers\Pcmcia.sys 18:16:31.0968 3308 Pcmcia - ok 18:16:31.0984 3308 PDCOMP - ok 18:16:31.0984 3308 PDFRAME - ok 18:16:31.0984 3308 PDRELI - ok 18:16:31.0984 3308 PDRFRAME - ok 18:16:32.0000 3308 perc2 - ok 18:16:32.0000 3308 perc2hib - ok 18:16:32.0093 3308 [ F0A7D59AF279326528715B206669B86C ] PlugPlay C:\WINXP\system32\services.exe 18:16:32.0109 3308 PlugPlay - ok 18:16:32.0187 3308 [ 9D84376931440F3679BEEF2A414FA493 ] Pml Driver HPZ12 C:\WINXP\system32\HPZipm12.exe 18:16:32.0250 3308 Pml Driver HPZ12 - ok 18:16:32.0328 3308 [ 8C74C611ADAF9DA2A918B8E82E14766B ] Pnp680 C:\WINXP\system32\DRIVERS\pnp680.sys 18:16:32.0375 3308 Pnp680 - ok 18:16:32.0453 3308 [ A1D7A9214B71EBBB6F31CB84AAC15525 ] Pnp680r C:\WINXP\system32\DRIVERS\pnp680r.sys 18:16:32.0515 3308 Pnp680r - ok 18:16:32.0531 3308 [ AFB8261B56CBA0D86AEB6DF682AF9785 ] PolicyAgent C:\WINXP\system32\lsass.exe 18:16:32.0546 3308 PolicyAgent - ok 18:16:32.0609 3308 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINXP\system32\DRIVERS\raspptp.sys 18:16:32.0640 3308 PptpMiniport - ok 18:16:32.0671 3308 [ 2CB55427C58679F49AD600FCCBA76360 ] Processor C:\WINXP\system32\DRIVERS\processr.sys 18:16:32.0703 3308 Processor - ok 18:16:32.0734 3308 [ AFB8261B56CBA0D86AEB6DF682AF9785 ] ProtectedStorage C:\WINXP\system32\lsass.exe 18:16:32.0734 3308 ProtectedStorage - ok 18:16:32.0796 3308 [ 09298EC810B07E5D582CB3A3F9255424 ] PSched C:\WINXP\system32\DRIVERS\psched.sys 18:16:32.0843 3308 PSched - ok 18:16:33.0046 3308 [ 543A4EF0923BF70D126625B034EF25AF ] PSI_SVC_2 c:\Programme\Gemeinsame Dateien\Protexis\License Service\PsiService_2.exe 18:16:33.0187 3308 PSI_SVC_2 - ok 18:16:33.0234 3308 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINXP\system32\DRIVERS\ptilink.sys 18:16:33.0250 3308 Ptilink - ok 18:16:33.0312 3308 [ 153D02480A0A2F45785522E814C634B6 ] PxHelp20 C:\WINXP\system32\Drivers\PxHelp20.sys 18:16:33.0343 3308 PxHelp20 - ok 18:16:33.0343 3308 ql1080 - ok 18:16:33.0343 3308 Ql10wnt - ok 18:16:33.0359 3308 ql12160 - ok 18:16:33.0359 3308 ql1240 - ok 18:16:33.0359 3308 ql1280 - ok 18:16:33.0390 3308 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINXP\system32\DRIVERS\rasacd.sys 18:16:33.0390 3308 RasAcd - ok 18:16:33.0500 3308 [ F5BA6CACCDB66C8F048E867563203246 ] RasAuto C:\WINXP\System32\rasauto.dll 18:16:33.0562 3308 RasAuto - ok 18:16:33.0609 3308 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINXP\system32\DRIVERS\rasl2tp.sys 18:16:33.0656 3308 Rasl2tp - ok 18:16:33.0796 3308 [ F9A7B66EA345726EDB5862A46B1ECCD5 ] RasMan C:\WINXP\System32\rasmans.dll 18:16:33.0937 3308 RasMan - ok 18:16:33.0968 3308 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\WINXP\system32\DRIVERS\raspppoe.sys 18:16:34.0000 3308 RasPppoe - ok 18:16:34.0031 3308 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINXP\system32\DRIVERS\raspti.sys 18:16:34.0046 3308 Raspti - ok 18:16:34.0187 3308 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\WINXP\system32\DRIVERS\rdbss.sys 18:16:34.0312 3308 Rdbss - ok 18:16:34.0328 3308 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINXP\system32\DRIVERS\RDPCDD.sys 18:16:34.0328 3308 RDPCDD - ok 18:16:34.0500 3308 [ 15CABD0F7C00C47C70124907916AF3F1 ] rdpdr C:\WINXP\system32\DRIVERS\rdpdr.sys 18:16:34.0625 3308 rdpdr - ok 18:16:34.0765 3308 [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD C:\WINXP\system32\drivers\RDPWD.sys 18:16:34.0875 3308 RDPWD - ok 18:16:35.0000 3308 [ 263AF18AF0F3DB99F574C95F284CCEC9 ] RDSessMgr C:\WINXP\system32\sessmgr.exe 18:16:35.0109 3308 RDSessMgr - ok 18:16:35.0187 3308 [ ED761D453856F795A7FE056E42C36365 ] redbook C:\WINXP\system32\DRIVERS\redbook.sys 18:16:35.0234 3308 redbook - ok 18:16:35.0296 3308 [ 0E97EC96D6942CEEC2D188CC2EB69A01 ] RemoteAccess C:\WINXP\System32\mprdim.dll 18:16:35.0343 3308 RemoteAccess - ok 18:16:35.0421 3308 [ E4CD1F3D84E1C2CA0B8CF7501E201593 ] RemoteRegistry C:\WINXP\system32\regsvc.dll 18:16:35.0453 3308 RemoteRegistry - ok 18:16:35.0531 3308 [ 851C30DF2807FCFA21E4C681A7D6440E ] RFCOMM C:\WINXP\system32\DRIVERS\rfcomm.sys 18:16:35.0562 3308 RFCOMM - ok 18:16:35.0640 3308 [ 2A02E21867497DF20B8FC95631395169 ] RpcLocator C:\WINXP\system32\locator.exe 18:16:35.0687 3308 RpcLocator - ok 18:16:36.0015 3308 [ D3D765E8455A961AE567B408F767D4F9 ] RpcSs C:\WINXP\System32\rpcss.dll 18:16:36.0015 3308 RpcSs - ok 18:16:36.0156 3308 [ 4BDD71B4B521521499DFD14735C4F398 ] RSVP C:\WINXP\system32\rsvp.exe 18:16:36.0250 3308 RSVP - ok 18:16:38.0781 3308 [ 017CC2E361A47461472BC4C08BD12440 ] RTHDMIAzAudService C:\WINXP\system32\drivers\RtHDMI.sys 18:16:41.0328 3308 RTHDMIAzAudService - ok 18:16:41.0546 3308 [ C6D34A1874CD2B212DC3E788091C64B4 ] RTLE8023xp C:\WINXP\system32\DRIVERS\Rtenicxp.sys 18:16:41.0703 3308 RTLE8023xp - ok 18:16:41.0750 3308 [ AFB8261B56CBA0D86AEB6DF682AF9785 ] SamSs C:\WINXP\system32\lsass.exe 18:16:41.0750 3308 SamSs - ok 18:16:41.0843 3308 [ DCEC079FAD95D36C8DD5CB6D779DFE32 ] SCardSvr C:\WINXP\System32\SCardSvr.exe 18:16:41.0921 3308 SCardSvr - ok 18:16:42.0109 3308 [ A050194A44D7FA8D7186ED2F4E8367AE ] Schedule C:\WINXP\system32\schedsvc.dll 18:16:42.0265 3308 Schedule - ok 18:16:42.0312 3308 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINXP\system32\DRIVERS\secdrv.sys 18:16:42.0328 3308 Secdrv - ok 18:16:42.0375 3308 [ BEE4CFD1D48C23B44CF4B974B0B79B2B ] seclogon C:\WINXP\System32\seclogon.dll 18:16:42.0390 3308 seclogon - ok 18:16:42.0437 3308 [ 2AAC9B6ED9EDDFFB721D6452E34D67E3 ] SENS C:\WINXP\system32\sens.dll 18:16:42.0468 3308 SENS - ok 18:16:42.0500 3308 [ 0F29512CCD6BEAD730039FB4BD2C85CE ] serenum C:\WINXP\system32\DRIVERS\serenum.sys 18:16:42.0515 3308 serenum - ok 18:16:42.0578 3308 [ CF24EB4F0412C82BCD1F4F35A025E31D ] Serial C:\WINXP\system32\DRIVERS\serial.sys 18:16:42.0625 3308 Serial - ok 18:16:42.0656 3308 [ E8F3E51DA8098201F50678CEC5FCE179 ] sermouse C:\WINXP\system32\DRIVERS\sermouse.sys 18:16:42.0656 3308 Suspicious file (Forged): C:\WINXP\system32\DRIVERS\sermouse.sys. Real md5: E8F3E51DA8098201F50678CEC5FCE179, Fake md5: 460EAFE0DBD95939AD866F1BACF87593 18:16:42.0656 3308 sermouse ( ForgedFile.Multi.Generic ) - warning 18:16:42.0656 3308 sermouse - detected ForgedFile.Multi.Generic (1) 18:16:43.0250 3308 [ 78F7BB9F4924BE164294C59B8C3FC096 ] ServiceLayer C:\Programme\PC Connectivity Solution\ServiceLayer.exe 18:16:43.0781 3308 ServiceLayer - ok 18:16:43.0828 3308 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINXP\system32\drivers\Sfloppy.sys 18:16:43.0828 3308 Sfloppy - ok 18:16:44.0093 3308 [ CAD058D5F8B889A87CA3EB3CF624DCEF ] SharedAccess C:\WINXP\System32\ipnathlp.dll 18:16:44.0328 3308 SharedAccess - ok 18:16:44.0453 3308 [ 927666F4228E3FBBC3D1171581DC8BDC ] ShellHWDetection C:\WINXP\System32\shsvcs.dll 18:16:44.0453 3308 ShellHWDetection - ok 18:16:44.0453 3308 Simbad - ok 18:16:44.0468 3308 Sparrow - ok 18:16:44.0500 3308 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINXP\system32\drivers\splitter.sys 18:16:44.0500 3308 splitter - ok 18:16:44.0578 3308 [ 258DD5D4283FD9F9A7166BE9AE45CE73 ] Spooler C:\WINXP\system32\spoolsv.exe 18:16:44.0625 3308 Spooler - ok 18:16:45.0046 3308 [ 8EA0FD60A5B047E0C734D51AACE531C9 ] sptd C:\WINXP\System32\Drivers\sptd.sys 18:16:45.0046 3308 Suspicious file (NoAccess): C:\WINXP\System32\Drivers\sptd.sys. md5: 8EA0FD60A5B047E0C734D51AACE531C9 18:16:45.0046 3308 sptd ( LockedFile.Multi.Generic ) - warning 18:16:45.0046 3308 sptd - detected LockedFile.Multi.Generic (1) 18:16:45.0140 3308 [ 50FA898F8C032796D3B1B9951BB5A90F ] sr C:\WINXP\system32\DRIVERS\sr.sys 18:16:45.0203 3308 sr - ok 18:16:45.0343 3308 [ FE77A85495065F3AD59C5C65B6C54182 ] srservice C:\WINXP\system32\srsvc.dll 18:16:45.0468 3308 srservice - ok 18:16:45.0750 3308 [ 9B390283569EA58D43D2586032B892F5 ] Srv C:\WINXP\system32\DRIVERS\srv.sys 18:16:46.0000 3308 Srv - ok 18:16:46.0062 3308 [ 4DF5B05DFAEC29E13E1ED6F6EE12C500 ] SSDPSRV C:\WINXP\System32\ssdpsrv.dll 18:16:46.0125 3308 SSDPSRV - ok 18:16:46.0171 3308 [ A36EE93698802CD899F98BFD553D8185 ] ssmdrv C:\WINXP\system32\DRIVERS\ssmdrv.sys 18:16:46.0187 3308 ssmdrv - ok 18:16:46.0359 3308 [ CA22092117F4F8BA3700B4BF9962444A ] ssudmdm C:\WINXP\system32\DRIVERS\ssudmdm.sys 18:16:46.0484 3308 ssudmdm - ok 18:16:46.0515 3308 Steam Client Service - ok 18:16:46.0781 3308 [ BC2C5985611C5356B24AEB370953DED9 ] stisvc C:\WINXP\system32\wiaservc.dll 18:16:47.0031 3308 stisvc - ok 18:16:47.0078 3308 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINXP\system32\DRIVERS\swenum.sys 18:16:47.0093 3308 swenum - ok 18:16:47.0156 3308 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINXP\system32\drivers\swmidi.sys 18:16:47.0203 3308 swmidi - ok 18:16:47.0203 3308 SwPrv - ok 18:16:47.0218 3308 symc810 - ok 18:16:47.0218 3308 symc8xx - ok 18:16:47.0218 3308 sym_hi - ok 18:16:47.0218 3308 sym_u3 - ok 18:16:47.0281 3308 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINXP\system32\drivers\sysaudio.sys 18:16:47.0328 3308 sysaudio - ok 18:16:47.0421 3308 [ 2903FFFA2523926D6219428040DCE6B9 ] SysmonLog C:\WINXP\system32\smlogsvc.exe 18:16:47.0500 3308 SysmonLog - ok 18:16:47.0687 3308 [ 05903CAC4B98908D55EA5774775B382E ] TapiSrv C:\WINXP\System32\tapisrv.dll 18:16:47.0859 3308 TapiSrv - ok 18:16:48.0156 3308 [ AD978A1B783B5719720CFF204B666C8E ] Tcpip C:\WINXP\system32\DRIVERS\tcpip.sys 18:16:48.0406 3308 Tcpip - ok 18:16:48.0437 3308 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINXP\system32\drivers\TDPIPE.sys 18:16:48.0453 3308 TDPIPE - ok 18:16:48.0484 3308 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\WINXP\system32\drivers\TDTCP.sys 18:16:48.0500 3308 TDTCP - ok 18:16:49.0312 3308 [ 88155247177638048422893737429D9E ] TermDD C:\WINXP\system32\DRIVERS\termdd.sys 18:16:49.0390 3308 TermDD - ok 18:16:49.0812 3308 [ B7DE02C863D8F5A005A7BF375375A6A4 ] TermService C:\WINXP\System32\termsrv.dll 18:16:50.0109 3308 TermService - ok 18:16:50.0234 3308 [ 927666F4228E3FBBC3D1171581DC8BDC ] Themes C:\WINXP\System32\shsvcs.dll 18:16:50.0234 3308 Themes - ok 18:16:50.0312 3308 [ 03681A1CE77F51586903869A5AB1DEAB ] TlntSvr C:\WINXP\system32\tlntsvr.exe 18:16:50.0375 3308 TlntSvr - ok 18:16:50.0375 3308 TosIde - ok 18:16:50.0453 3308 [ 626504572B175867F30F3215C04B3E2F ] TrkWks C:\WINXP\system32\trkwks.dll 18:16:50.0609 3308 TrkWks - ok 18:16:50.0671 3308 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINXP\system32\drivers\Udfs.sys 18:16:50.0718 3308 Udfs - ok 18:16:50.0734 3308 ultra - ok 18:16:51.0062 3308 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINXP\system32\DRIVERS\update.sys 18:16:51.0328 3308 Update - ok 18:16:51.0500 3308 [ 1DFD8975D8C89214B98D9387C1125B49 ] upnphost C:\WINXP\System32\upnphost.dll 18:16:51.0625 3308 upnphost - ok 18:16:51.0687 3308 [ 8721F55D8BC9F89E3A63CEBDF5EF4FA3 ] upperdev C:\WINXP\system32\DRIVERS\usbser_lowerflt.sys 18:16:51.0703 3308 upperdev - ok 18:16:51.0750 3308 [ 9B11E6118958E63E1FEF129466E2BDA7 ] UPS C:\WINXP\System32\ups.exe 18:16:51.0765 3308 UPS - ok 18:16:51.0796 3308 [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp C:\WINXP\system32\DRIVERS\usbccgp.sys 18:16:51.0828 3308 usbccgp - ok 18:16:51.0875 3308 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci C:\WINXP\system32\DRIVERS\usbehci.sys 18:16:51.0921 3308 usbehci - ok 18:16:51.0984 3308 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINXP\system32\DRIVERS\usbhub.sys 18:16:52.0015 3308 usbhub - ok 18:16:52.0046 3308 [ 0DAECCE65366EA32B162F85F07C6753B ] usbohci C:\WINXP\system32\DRIVERS\usbohci.sys 18:16:52.0062 3308 usbohci - ok 18:16:52.0109 3308 [ A717C8721046828520C9EDF31288FC00 ] usbprint C:\WINXP\system32\DRIVERS\usbprint.sys 18:16:52.0140 3308 usbprint - ok 18:16:52.0218 3308 [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan C:\WINXP\system32\DRIVERS\usbscan.sys 18:16:52.0250 3308 usbscan - ok 18:16:52.0296 3308 [ 1C888B000C2F9492F4B15B5B6B84873E ] usbser C:\WINXP\system32\drivers\usbser.sys 18:16:52.0312 3308 usbser - ok 18:16:52.0359 3308 [ 4E66C71D8D010BFB0DF1042D25E9CB0F ] UsbserFilt C:\WINXP\system32\DRIVERS\usbser_lowerfltj.sys 18:16:52.0359 3308 UsbserFilt - ok 18:16:52.0421 3308 [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR C:\WINXP\system32\DRIVERS\USBSTOR.SYS 18:16:52.0437 3308 USBSTOR - ok 18:16:52.0500 3308 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINXP\System32\drivers\vga.sys 18:16:52.0515 3308 VgaSave - ok 18:16:52.0531 3308 ViaIde - ok 18:16:52.0796 3308 [ 817DA66B1B889FAD1DBF669E0E2F3228 ] vmm C:\WINXP\system32\Drivers\vmm.sys 18:16:53.0125 3308 vmm - ok 18:16:53.0218 3308 [ A5A712F4E880874A477AF790B5186E1D ] VolSnap C:\WINXP\system32\drivers\VolSnap.sys 18:16:53.0296 3308 VolSnap - ok 18:16:53.0546 3308 [ 2ABE8281DB609D8BB1BD1B2F93800D5F ] VPCNetS2 C:\WINXP\system32\DRIVERS\VMNetSrv.sys 18:16:53.0593 3308 VPCNetS2 - ok 18:16:53.0890 3308 [ 68F106273BE29E7B7EF8266977268E78 ] VSS C:\WINXP\System32\vssvc.exe 18:16:54.0109 3308 VSS - ok 18:16:54.0234 3308 [ 7B353059E665F8B7AD2BBEAEF597CF45 ] W32Time C:\WINXP\system32\w32time.dll 18:16:54.0359 3308 W32Time - ok 18:16:54.0421 3308 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINXP\system32\DRIVERS\wanarp.sys 18:16:54.0437 3308 Wanarp - ok 18:16:54.0781 3308 [ D918617B46457B9AC28027722E30F647 ] Wdf01000 C:\WINXP\system32\Drivers\wdf01000.sys 18:16:55.0109 3308 Wdf01000 - ok 18:16:55.0109 3308 WDICA - ok 18:16:55.0203 3308 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINXP\system32\drivers\wdmaud.sys 18:16:55.0265 3308 wdmaud - ok 18:16:55.0328 3308 [ 81727C9873E3905A2FFC1EBD07265002 ] WebClient C:\WINXP\System32\webclnt.dll 18:16:55.0375 3308 WebClient - ok 18:16:55.0562 3308 [ 6F3F3973D97714CC5F906A19FE883729 ] winmgmt C:\WINXP\system32\wbem\WMIsvc.dll 18:16:55.0671 3308 winmgmt - ok 18:16:55.0718 3308 [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN C:\WINXP\system32\mspmsnsv.dll 18:16:55.0750 3308 WmdmPmSN - ok 18:16:56.0250 3308 [ 57FA31A965D8FC3172641A93618FBE9E ] Wmi C:\WINXP\System32\advapi32.dll 18:16:56.0718 3308 Wmi - ok 18:16:56.0750 3308 [ C42584FD66CE9E17403AEBCA199F7BDB ] WmiAcpi C:\WINXP\system32\DRIVERS\wmiacpi.sys 18:16:56.0750 3308 WmiAcpi - ok 18:16:56.0859 3308 [ 93908111BA57A6E60EC2FA2DE202105C ] WmiApSrv C:\WINXP\system32\wbem\wmiapsrv.exe 18:16:56.0984 3308 WmiApSrv - ok 18:16:57.0843 3308 [ BF05650BB7DF5E9EBDD25974E22403BB ] WMPNetworkSvc C:\Programme\Windows Media Player\WMPNetwk.exe 18:16:58.0687 3308 WMPNetworkSvc - ok 18:16:58.0781 3308 [ CF4DEF1BF66F06964DC0D91844239104 ] WpdUsb C:\WINXP\system32\DRIVERS\wpdusb.sys 18:16:58.0812 3308 WpdUsb - ok 18:16:58.0859 3308 [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] WS2IFSL C:\WINXP\System32\drivers\ws2ifsl.sys 18:16:58.0859 3308 WS2IFSL - ok 18:16:58.0953 3308 [ 300B3E84FAF1A5C1F791C159BA28035D ] wscsvc C:\WINXP\system32\wscsvc.dll 18:16:59.0078 3308 wscsvc - ok 18:16:59.0187 3308 [ 7B4FE05202AA6BF9F4DFD0E6A0D8A085 ] wuauserv C:\WINXP\system32\wuauserv.dll 18:16:59.0218 3308 wuauserv - ok 18:16:59.0312 3308 [ F15FEAFFFBB3644CCC80C5DA584E6311 ] WudfPf C:\WINXP\system32\DRIVERS\WudfPf.sys 18:16:59.0406 3308 WudfPf - ok 18:16:59.0484 3308 [ 28B524262BCE6DE1F7EF9F510BA3985B ] WudfRd C:\WINXP\system32\DRIVERS\wudfrd.sys 18:16:59.0562 3308 WudfRd - ok 18:16:59.0625 3308 [ 05231C04253C5BC30B26CBAAE680ED89 ] WudfSvc C:\WINXP\System32\WUDFSvc.dll 18:16:59.0671 3308 WudfSvc - ok 18:17:00.0187 3308 [ C4F109C005F6725162D2D12CA751E4A7 ] WZCSVC C:\WINXP\System32\wzcsvc.dll 18:17:00.0609 3308 WZCSVC - ok 18:17:00.0750 3308 [ 0ADA34871A2E1CD2CAAFED1237A47750 ] xmlprov C:\WINXP\System32\xmlprov.dll 18:17:00.0859 3308 xmlprov - ok 18:17:00.0859 3308 ================ Scan global =============================== 18:17:01.0062 3308 [ 2C60091CA5F67C3032EAB3B30390C27F ] C:\WINXP\system32\basesrv.dll 18:17:01.0406 3308 [ 935B583E1E780BDB75718EAFD9667366 ] C:\WINXP\system32\winsrv.dll 18:17:01.0859 3308 [ 935B583E1E780BDB75718EAFD9667366 ] C:\WINXP\system32\winsrv.dll 18:17:01.0968 3308 [ F0A7D59AF279326528715B206669B86C ] C:\WINXP\system32\services.exe 18:17:01.0968 3308 [Global] - ok 18:17:01.0968 3308 ================ Scan MBR ================================== 18:17:01.0984 3308 [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk0\DR0 18:17:02.0000 3308 \Device\Harddisk0\DR0 - ok 18:17:02.0000 3308 [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk1\DR1 18:17:02.0234 3308 \Device\Harddisk1\DR1 - ok 18:17:02.0281 3308 [ 72B8CE41AF0DE751C946802B3ED844B4 ] \Device\Harddisk3\DR3 18:17:02.0671 3308 \Device\Harddisk3\DR3 - ok 18:17:02.0687 3308 [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk2\DR2 18:17:02.0687 3308 \Device\Harddisk2\DR2 - ok 18:17:02.0703 3308 [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk4\DR16 18:17:02.0703 3308 \Device\Harddisk4\DR16 - ok 18:17:02.0703 3308 ================ Scan VBR ================================== 18:17:02.0703 3308 [ 79E1C4F70F5EC8E025C5B791445BB09D ] \Device\Harddisk0\DR0\Partition1 18:17:02.0703 3308 \Device\Harddisk0\DR0\Partition1 - ok 18:17:02.0718 3308 [ C0303816A22AFB62EA2F2CF2A05579F7 ] \Device\Harddisk0\DR0\Partition2 18:17:02.0734 3308 \Device\Harddisk0\DR0\Partition2 - ok 18:17:02.0734 3308 [ 7949625C207918CC36F7F92E2E4E9F4B ] \Device\Harddisk1\DR1\Partition1 18:17:02.0734 3308 \Device\Harddisk1\DR1\Partition1 - ok 18:17:02.0734 3308 [ 59946D73378BA658C0C293A9FFB4F13B ] \Device\Harddisk1\DR1\Partition2 18:17:02.0750 3308 \Device\Harddisk1\DR1\Partition2 - ok 18:17:02.0750 3308 [ B7320BE63109C47ED161232DF572B55C ] \Device\Harddisk1\DR1\Partition3 18:17:02.0750 3308 \Device\Harddisk1\DR1\Partition3 - ok 18:17:02.0765 3308 [ 8CB15EFE61C1E5F1BA298927058F91EB ] \Device\Harddisk3\DR3\Partition1 18:17:02.0781 3308 \Device\Harddisk3\DR3\Partition1 - ok 18:17:02.0796 3308 [ A8E4C18E2844490C7762749709E53798 ] \Device\Harddisk3\DR3\Partition2 18:17:02.0796 3308 \Device\Harddisk3\DR3\Partition2 - ok 18:17:02.0812 3308 [ 1DD85E00B9CD2A111EE9F42C1ED45E08 ] \Device\Harddisk3\DR3\Partition3 18:17:02.0859 3308 \Device\Harddisk3\DR3\Partition3 - ok 18:17:02.0859 3308 [ F401DEB93823DD2B0C750C3E5EA07139 ] \Device\Harddisk2\DR2\Partition1 18:17:02.0859 3308 \Device\Harddisk2\DR2\Partition1 - ok 18:17:02.0875 3308 [ 85297104F0CF72987AB77BAD3B008E3C ] \Device\Harddisk2\DR2\Partition2 18:17:02.0875 3308 \Device\Harddisk2\DR2\Partition2 - ok 18:17:02.0890 3308 [ E69314176A27D333A087F91EBA75D6F6 ] \Device\Harddisk2\DR2\Partition3 18:17:02.0890 3308 \Device\Harddisk2\DR2\Partition3 - ok 18:17:02.0921 3308 [ 55373E96AB70628B62CB6F36D6A56E71 ] \Device\Harddisk2\DR2\Partition4 18:17:02.0921 3308 \Device\Harddisk2\DR2\Partition4 - ok 18:17:02.0921 3308 [ 0F8D7795615C4C6B7123486DD2A5736D ] \Device\Harddisk4\DR16\Partition1 18:17:02.0937 3308 \Device\Harddisk4\DR16\Partition1 - ok 18:17:02.0937 3308 [ 17AEE6AA4B7A9DB272775C786278C25E ] \Device\Harddisk4\DR16\Partition2 18:17:02.0937 3308 \Device\Harddisk4\DR16\Partition2 - ok 18:17:02.0937 3308 [ 84E99F1ED8407DF367A4C28209186B29 ] \Device\Harddisk4\DR16\Partition3 18:17:02.0937 3308 \Device\Harddisk4\DR16\Partition3 - ok 18:17:02.0937 3308 ============================================================ 18:17:02.0937 3308 Scan finished 18:17:02.0937 3308 ============================================================ 18:17:02.0953 3916 Detected object count: 2 18:17:02.0953 3916 Actual detected object count: 2 18:17:13.0546 3916 sermouse ( ForgedFile.Multi.Generic ) - skipped by user 18:17:13.0546 3916 sermouse ( ForgedFile.Multi.Generic ) - User select action: Skip 18:17:13.0546 3916 sptd ( LockedFile.Multi.Generic ) - skipped by user 18:17:13.0546 3916 sptd ( LockedFile.Multi.Generic ) - User select action: Skip 18:20:13.0406 3780 Deinitialize success |
08.08.2013, 17:40 | #2 |
/// the machine /// TB-Ausbilder | TR/Trash.Gen gefunden,harmlos oder muß was unternommen werden? hi,
__________________das sind Fehlalarme
__________________ |
08.08.2013, 18:01 | #3 |
| TR/Trash.Gen gefunden,harmlos oder muß was unternommen werden?danke dir |
09.08.2013, 09:38 | #4 |
/// the machine /// TB-Ausbilder | TR/Trash.Gen gefunden,harmlos oder muß was unternommen werden? Büdde
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
Themen zu TR/Trash.Gen gefunden,harmlos oder muß was unternommen werden? |
avira, browser, computer, dateien, desktop, detected, fake, file, fontcache, google, harddisk, hotkey, log, malwarebytes, messenger, object, policyagent, programm, programme, rootkit, scan, system, tr/trash.gen, ups, windows, windows media player, wmp |