| |
| |||||||
Log-Analyse und Auswertung: Virus „BOO/Sinowal.A“ lässt sich nicht entfernenWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
 |
03.10.2013, 14:30
| #16 |
 |  Virus „BOO/Sinowal.A“ lässt sich nicht entfernen Hallo Schrauber, hier folgt der FIXLOG Code:
ATTFilter Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 03-10-2013
Ran by Peter Hermesdorf at 2013-10-03 15:24:54 Run:1
Running from C:\Dokumente und Einstellungen\Peter Hermesdorf\Eigene Dateien\Downloads
Boot Mode: Normal
==============================================
Content of fixlist:
*****************
S3 ulisa; System32\Drivers\ulisa.sys [x]
U3 Winsock - Google Desktop Search Backup Before First Install; No ImagePath
U3 Winsock - Google Desktop Search Backup Before Last Install; No ImagePath
2013-09-26 18:59 - 2013-09-27 07:05 - 00000000 ____D C:\Programme\BonanzaDealsLive
2013-09-26 18:59 - 2013-09-27 06:55 - 00000000 ____D C:\Programme\BonanzaDeals
2013-09-26 18:59 - 2013-09-26 18:59 - 00000000 ____D C:\Dokumente und Einstellungen\Peter xxxxx\Lokale Einstellungen\Anwendungsdaten\BonanzaDealsLive
2013-09-26 18:59 - 2013-09-26 18:59 - 00000000 ____D C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\BonanzaDealsLive
*****************
ulisa => Service deleted successfully.
Winsock - Google Desktop Search Backup Before First Install => Service deleted successfully.
Winsock - Google Desktop Search Backup Before Last Install => Service deleted successfully.
C:\Programme\BonanzaDealsLive => Moved successfully.
C:\Programme\BonanzaDeals => Moved successfully.
"C:\Dokumente und Einstellungen\Peter xxxxx\Lokale Einstellungen\Anwendungsdaten\BonanzaDealsLive" => File/Directory not found.
C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\BonanzaDealsLive => Moved successfully.
==== End of Fixlog ====
|
|
04.10.2013, 02:00
| #17 |
| /// the machine /// TB-Ausbilder    | Virus „BOO/Sinowal.A“ lässt sich nicht entfernen hi,
__________________Downloade dir bitte  TDSSKiller.exe und speichere diese Datei auf dem Desktop
__________________ |
|
04.10.2013, 11:07
| #18 |
| | Virus „BOO/Sinowal.A“ lässt sich nicht entfernen Hallo Schrauber,
__________________ich staune nicht schlecht 3Uhr! hier das Log Code:
ATTFilter 10:36:31.0062 0x0d10 TDSS rootkit removing tool 3.0.0.11 Sep 30 2013 09:17:03
10:36:32.0000 0x0d10 ============================================================
10:36:32.0000 0x0d10 Current date / time: 2013/10/04 10:36:32.0000
10:36:32.0000 0x0d10 SystemInfo:
10:36:32.0000 0x0d10
10:36:32.0000 0x0d10 OS Version: 5.1.2600 ServicePack: 3.0
10:36:32.0000 0x0d10 Product type: Workstation
10:36:32.0000 0x0d10 ComputerName: xxxxx
10:36:32.0000 0x0d10 UserName: Peter xxxxx
10:36:32.0000 0x0d10 Windows directory: C:\WINDOWS
10:36:32.0000 0x0d10 System windows directory: C:\WINDOWS
10:36:32.0000 0x0d10 Processor architecture: Intel x86
10:36:32.0000 0x0d10 Number of processors: 1
10:36:32.0000 0x0d10 Page size: 0x1000
10:36:32.0000 0x0d10 Boot type: Normal boot
10:36:32.0000 0x0d10 ============================================================
10:36:52.0796 0x0d10 System UUID: {AEB0CB9A-AED1-B0D0-41D3-A73CFE66A525}
10:36:55.0781 0x0d10 Drive \Device\Harddisk0\DR0 - Size: 0x3A35294400 (232.83 Gb), SectorSize: 0x200, Cylinders: 0x76BA, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
10:36:55.0812 0x0d10 ============================================================
10:36:55.0812 0x0d10 \Device\Harddisk0\DR0:
10:36:55.0812 0x0d10 MBR partitions:
10:36:55.0812 0x0d10 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x17886, BlocksNum 0x1CB880AA
10:36:55.0812 0x0d10 ============================================================
10:36:55.0953 0x0d10 C: <-> \Device\Harddisk0\DR0\Partition1
10:36:55.0953 0x0d10 ============================================================
10:36:55.0953 0x0d10 Initialize success
10:36:55.0953 0x0d10 ============================================================
10:37:00.0250 0x0e9c ============================================================
10:37:00.0250 0x0e9c Scan started
10:37:00.0250 0x0e9c Mode: Manual;
10:37:00.0250 0x0e9c ============================================================
10:37:00.0250 0x0e9c KSN ping started
10:37:13.0890 0x0e9c KSN ping finished: true
10:37:15.0609 0x0e9c ================ Scan system memory ========================
10:37:15.0609 0x0e9c System memory - ok
10:37:15.0625 0x0e9c ================ Scan services =============================
10:37:15.0953 0x0e9c [ D5A6658CBFBBF9A0F8827E83C9FDE806, F67489BEA27A6DD596FBBC08FB7C2BC0093DBF18F779016EA263986FD4B0D946 ] 6to4 C:\WINDOWS\System32\6to4svc.dll
10:37:15.0953 0x0e9c 6to4 - ok
10:37:16.0093 0x0e9c Abiosdsk - ok
10:37:16.0140 0x0e9c [ 6ABB91494FE6C59089B9336452AB2EA3, FA28396820E44F991891042E051A4414485B54D456F252E03E3FFE1B4B4CF843 ] abp480n5 C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS
10:37:16.0171 0x0e9c abp480n5 - ok
10:37:16.0234 0x0e9c [ AC407F1A62C3A300B4F2B5A9F1D55B2C, 31F5FC61B37E22100B3A52A590295A7E827FFC581FA9960C64B9032452AAECED ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
10:37:16.0250 0x0e9c ACPI - ok
10:37:16.0328 0x0e9c [ 9E1CA3160DAFB159CA14F83B1E317F75, 13B3E897B0E819BF734449416D9EC6EBCAC89538EC69BF48C068593B82D57004 ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
10:37:16.0343 0x0e9c ACPIEC - ok
10:37:16.0437 0x0e9c AcrSch2Svc - ok
10:37:16.0515 0x0e9c [ 6463D1DB354B13E6CED4D67F6E4910F4, 0E14AF6F68F162276ADE88D9F2CAC2DBA30FFC90EE7CC51A0C9B86D568369238 ] actser C:\WINDOWS\system32\drivers\actser.sys
10:37:16.0546 0x0e9c actser - ok
10:37:16.0609 0x0e9c [ 6D7F09CD92A9FEF3A8EFCE66231FDD79, FBEE01F2FFDB6854F682B4BE91673462A146927DD333D3C4DE66E6B86D9ED8DB ] adfs C:\WINDOWS\system32\drivers\adfs.sys
10:37:16.0609 0x0e9c adfs - ok
10:37:16.0718 0x0e9c [ 476BB014F3F68C0C15EDDD5B444DA8FF, 94E8FDC4390672C31081EACF3B3AE57486ED06669C4120F139DB3A62AAE77071 ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
10:37:16.0781 0x0e9c AdobeFlashPlayerUpdateSvc - ok
10:37:16.0828 0x0e9c [ 9A11864873DA202C996558B2106B0BBC, 4C68F1DBD1541291DD0FAB78DB42B25FA051CD9F55ED869173E3219CD31500C4 ] adpu160m C:\WINDOWS\system32\DRIVERS\adpu160m.sys
10:37:16.0875 0x0e9c adpu160m - ok
10:37:16.0921 0x0e9c [ 8BED39E3C35D6A489438B8141717A557, 1B5796E56B0927360CE0759641B1151828BC0A9E45620D2B2D880491F5CE33D0 ] aec C:\WINDOWS\system32\drivers\aec.sys
10:37:16.0937 0x0e9c aec - ok
10:37:17.0015 0x0e9c [ 1E44BC1E83D8FD2305F8D452DB109CF9, CF5EC07E0B589FA2A4701C6CFD69E893FC3ABF274AD57AE3C13FFE49063B02C8 ] AFD C:\WINDOWS\System32\drivers\afd.sys
10:37:17.0031 0x0e9c AFD - ok
10:37:17.0078 0x0e9c [ B34B1AB0A7690A0E2301FEC6D17B2FC1, E37953E874709E8329C72F8923F34B72654B35A756D838828A005A31E196F206 ] AFS2K C:\WINDOWS\system32\drivers\AFS2K.sys
10:37:17.0156 0x0e9c AFS2K - ok
10:37:17.0296 0x0e9c [ 08FD04AA961BDC77FB983F328334E3D7, A784EC8A9EDB579262366B5A9AB177DB7BEC0A421BDE85431D0AD4959D5AF5E7 ] agp440 C:\WINDOWS\system32\DRIVERS\agp440.sys
10:37:17.0328 0x0e9c agp440 - ok
10:37:17.0375 0x0e9c [ 03A7E0922ACFE1B07D5DB2EEB0773063, 93EEA872A5642C95FF19C81F8EFFB9B52742A14DBF138784F0F713AD18C413ED ] agpCPQ C:\WINDOWS\system32\DRIVERS\agpCPQ.sys
10:37:17.0375 0x0e9c agpCPQ - ok
10:37:17.0437 0x0e9c [ C23EA9B5F46C7F7910DB3EAB648FF013, 92C84E9AF278A3B55D56C4F8E6C10E3EF1F7B336A44A018AED6DC51A46671F0B ] Aha154x C:\WINDOWS\system32\DRIVERS\aha154x.sys
10:37:17.0468 0x0e9c Aha154x - ok
10:37:17.0515 0x0e9c [ 19DD0FB48B0C18892F70E2E7D61A1529, 95BA1568E8E08314508CA0E1F95555891E70399AEC312C793B46A841F56FFDCF ] aic78u2 C:\WINDOWS\system32\DRIVERS\aic78u2.sys
10:37:17.0531 0x0e9c aic78u2 - ok
10:37:17.0562 0x0e9c [ B7FE594A7468AA0132DEB03FB8E34326, BF0DC2B8C474DB151589BA9968264413521DDD9E7316B752B2FA40C24200FBE0 ] aic78xx C:\WINDOWS\system32\DRIVERS\aic78xx.sys
10:37:17.0578 0x0e9c aic78xx - ok
10:37:17.0640 0x0e9c [ 738D80CC01D7BC7584BE917B7F544394, DCC17AAEF5CDDF52FAAC3CC6904EF421CD595F66318A2370BEE261D5C3A8E340 ] Alerter C:\WINDOWS\system32\alrsvc.dll
10:37:17.0640 0x0e9c Alerter - ok
10:37:17.0671 0x0e9c [ 190CD73D4984F94D823F9444980513E5, 93A32C2495CCA094F768BA707C74DA5C00B8A88A9236DD1A297439A7C2E6C6FA ] ALG C:\WINDOWS\System32\alg.exe
10:37:17.0671 0x0e9c ALG - ok
10:37:17.0703 0x0e9c [ 1140AB9938809700B46BB88E46D72A96, 369379ECC5941ACE984A7F31EAABB66A2E693EDBADA639B86D26FD681D45608E ] AliIde C:\WINDOWS\system32\DRIVERS\aliide.sys
10:37:17.0718 0x0e9c AliIde - ok
10:37:17.0750 0x0e9c [ CB08AED0DE2DD889A8A820CD8082D83C, B1A9D493390AEDF6EFF8BCAA3B33EC31758452AB497C34C0728CDDA1D8DCBF2A ] alim1541 C:\WINDOWS\system32\DRIVERS\alim1541.sys
10:37:17.0765 0x0e9c alim1541 - ok
10:37:17.0796 0x0e9c [ 95B4FB835E28AA1336CEEB07FD5B9398, 36CD3B14EF78B01FB653B78187FAA63C4DD5F4137AC3B91D81256A350EEDCBC1 ] amdagp C:\WINDOWS\system32\DRIVERS\amdagp.sys
10:37:17.0796 0x0e9c amdagp - ok
10:37:17.0828 0x0e9c [ 79F5ADD8D24BD6893F2903A3E2F3FAD6, 9B179F0B6A559639D3AE3975CEBF2718294BE5743517BEE06586F0D258164C81 ] amsint C:\WINDOWS\system32\DRIVERS\amsint.sys
10:37:17.0859 0x0e9c amsint - ok
10:37:18.0109 0x0e9c [ 010FB73DB0B4BDAE8C2EB2E561EBE0E3, E2AE4588841A944478485CFCFE1FEA34C04327B32FB0AFF31962C03098D11A46 ] AntiVirMailService C:\Programme\Avira\AntiVir Desktop\avmailc.exe
10:37:18.0218 0x0e9c AntiVirMailService - ok
10:37:18.0328 0x0e9c [ 3478F48B23A0D9F6EADD4A2405BA70EF, 421BDDCEFEF491915EF8D9BFB756A56778437D98B136758A15AE5A0672738C9D ] AntiVirSchedulerService C:\Programme\Avira\AntiVir Desktop\sched.exe
10:37:18.0406 0x0e9c AntiVirSchedulerService - ok
10:37:18.0453 0x0e9c [ AFFE7C21A4FCA1963371F10066911D3A, DC7A94A784C9389792F3C9A1F435CD9B2D5F74AC9E56F35831B65820FA6A0EDE ] AntiVirService C:\Programme\Avira\AntiVir Desktop\avguard.exe
10:37:18.0484 0x0e9c AntiVirService - ok
10:37:18.0593 0x0e9c [ 48543D304F54C8997462208555662BA4, ADA3B62E6D1513FF24D044B03EFCBBD4268DB32C213F575D8AD3867D3F82B340 ] AntiVirWebService C:\Programme\Avira\AntiVir Desktop\AVWEBGRD.EXE
10:37:18.0640 0x0e9c AntiVirWebService - ok
10:37:18.0781 0x0e9c [ 85180CF88C5EBAD73B452A43A004CA51, 24D25495DC21293FC1F37EE7E7C2A4725E66D3D25BE05D7EDF4BB4F444C65526 ] AOL ACS C:\Programme\Gemeinsame Dateien\AOL\ACS\AOLAcsd.exe
10:37:18.0781 0x0e9c AOL ACS - ok
10:37:18.0875 0x0e9c [ 2FC9244E0CD8F1EC2204142D1557FC6D, 62DC3B81A1DA7F29C6F4D7F0A79249184E99773A8E9861D6A6CEA2DCD0CA9B24 ] AOLService C:\PROGRA~1\GEMEIN~1\aol\AOLPRI~1\\aolserv.exe
10:37:18.0890 0x0e9c AOLService - ok
10:37:19.0031 0x0e9c [ 6D46AB4C073FE2692FD72D1808CA2260, 36CCEB624F4A0E6999C1BD1E1F2CD6F288304B430AA9130EFBDC7FF0C8B3F1CC ] APNMCP C:\Programme\AskPartnerNetwork\Toolbar\apnmcp.exe
10:37:19.0031 0x0e9c APNMCP - ok
10:37:19.0093 0x0e9c [ D45960BE52C3C610D361977057F98C54, 9186589B502F46B47672CFB8EBD558D51B0F3CBFE4E0DDBA625A4265236518CE ] AppMgmt C:\WINDOWS\System32\appmgmts.dll
10:37:19.0140 0x0e9c AppMgmt - ok
10:37:19.0171 0x0e9c [ 62D318E9A0C8FC9B780008E724283707, 1A69806AB2BDECCEB5EB23A80700B3F98983D5D67F78839CBF269087FA460757 ] asc C:\WINDOWS\system32\DRIVERS\asc.sys
10:37:19.0203 0x0e9c asc - ok
10:37:19.0234 0x0e9c [ 69EB0CC7714B32896CCBFD5EDCBEA447, 1CB506B5F71F84EFD26961010681D0A79AA7B266573378E3D2755125DF5D6BB6 ] asc3350p C:\WINDOWS\system32\DRIVERS\asc3350p.sys
10:37:19.0250 0x0e9c asc3350p - ok
10:37:19.0312 0x0e9c [ 5D8DE112AA0254B907861E9E9C31D597, 557C93E82A71131D226267151C84B197503831A16263DDFE040E996B605CA9E8 ] asc3550 C:\WINDOWS\system32\DRIVERS\asc3550.sys
10:37:19.0343 0x0e9c asc3550 - ok
10:37:19.0437 0x0e9c [ B979979AB8027F7F53FB16EC4229B7DB, 3D50396B13B494D0082266C29C40715981CA105F6E407288C71410D4B833BB10 ] ASPI32 C:\WINDOWS\system32\drivers\ASPI32.sys
10:37:19.0453 0x0e9c ASPI32 - ok
10:37:19.0625 0x0e9c [ 0E5E4957549056E2BF2C49F4F6B601AD, F7F19FDC906B719A3516D30A9B4A2262C8CC5B36B94E3D4195C345EC4610FF2B ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
10:37:19.0750 0x0e9c aspnet_state - ok
10:37:19.0796 0x0e9c [ B153AFFAC761E7F5FCFA822B9C4E97BC, 7E60F572A6B3C6219E3C86225AA37243AFFD74337DB7F108B04778042E5CC959 ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
10:37:19.0812 0x0e9c AsyncMac - ok
10:37:19.0875 0x0e9c [ 9F3A2F5AA6875C72BF062C712CFA2674, B4DF1D2C56A593C6B54DE57395E3B51D288F547842893B32B0F59228A0CF70B9 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
10:37:19.0875 0x0e9c atapi - ok
10:37:19.0906 0x0e9c Atdisk - ok
10:37:19.0937 0x0e9c [ 9916C1225104BA14794209CFA8012159, 5D6F05F715C52A16D05CAE15C3DFE77A139A7F27F7AE710EC9A10F9EE05115A1 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
10:37:19.0968 0x0e9c Atmarpc - ok
10:37:20.0031 0x0e9c [ 58ED0D5452DF7BE732193E7999C6B9A4, 254E2ECF592DDA2E3E6CA9F6F3E77926E2265586A7937BA95199ED47BCDE69A3 ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
10:37:20.0031 0x0e9c AudioSrv - ok
10:37:20.0062 0x0e9c [ D9F724AA26C010A217C97606B160ED68, 329B5118F2409731D06FDAE85B6ADD64A048292801BCB3546651CEB303111695 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
10:37:20.0109 0x0e9c audstub - ok
10:37:20.0171 0x0e9c [ 683A089D14B60CD58E06ECE079065235, AD6B637FF32C3249D17D0029E55ED1EA8D1B878C99066AF76D452408B009D311 ] avgntflt C:\WINDOWS\system32\DRIVERS\avgntflt.sys
10:37:20.0171 0x0e9c avgntflt - ok
10:37:20.0234 0x0e9c [ D62D0CFABA19B111067613101D43FA7E, 0A0B7886AA48A9E6716CADB52CE02EE1EF40002636EBF04AC02E0AF3FBC22970 ] avipbb C:\WINDOWS\system32\DRIVERS\avipbb.sys
10:37:20.0265 0x0e9c avipbb - ok
10:37:20.0343 0x0e9c [ D8C712305F73CD34D1B344810E522728, 49A474FF6CA44E8427D7A8290B47395125B0148AF384CF2B3B1FA495A4718CBA ] avkmgr C:\WINDOWS\system32\DRIVERS\avkmgr.sys
10:37:20.0375 0x0e9c avkmgr - ok
10:37:20.0421 0x0e9c [ 56ACAE37FAEEF24D346B99F45D17EF4B, 247D9AB03D0038760B3FF95A1037FCF6E325CB48A430E24443BA58BB1C175192 ] AVMCOWAN C:\WINDOWS\system32\DRIVERS\AVMCOWAN.sys
10:37:20.0437 0x0e9c AVMCOWAN - ok
10:37:20.0500 0x0e9c [ 980F4C96C73C61CC6FCF657A721B35D3, CFBF1DC15117C494B27434AFF8C337AB5435E3FB4B97474E6A13A69F9C8B7D77 ] AVMUNET C:\WINDOWS\system32\DRIVERS\avmunet.sys
10:37:20.0531 0x0e9c AVMUNET - ok
10:37:20.0578 0x0e9c [ C997AF59C54D69232FB7BBEA4DAD86E2, 215DAACB21728E8241B06713F6CF87D50C38E66DF94D224EC17075510D87079A ] AVMWAN C:\WINDOWS\system32\DRIVERS\avmwan.sys
10:37:20.0593 0x0e9c AVMWAN - ok
10:37:20.0656 0x0e9c [ DA1F27D85E0D1525F6621372E7B685E9, 5A81A46A3BDD19DAFC6C87D277267A5D44F3A1B5302F2CC1111D84B7BAD5610D ] Beep C:\WINDOWS\system32\drivers\Beep.sys
10:37:20.0656 0x0e9c Beep - ok
10:37:20.0734 0x0e9c [ D6F603772A789BB3228F310D650B8BD1, A539025C70FD998A9B8703DE05CAE5E99BC721D8852EA561EBC2DD20CB371D2E ] BITS C:\WINDOWS\system32\qmgr.dll
10:37:21.0015 0x0e9c BITS - ok
10:37:21.0093 0x0e9c [ 31FF5B87C1DD907613CC613224B8E303, 71878A4D7029AE39B3DD7847983D6228A01A83899F09862E775DA05DBF5869AA ] BlueletAudio C:\WINDOWS\system32\DRIVERS\blueletaudio.sys
10:37:21.0093 0x0e9c BlueletAudio - ok
10:37:21.0171 0x0e9c [ B71549F23736ADF83A571061C47777FD, A1D0320736EE777030A543DCA086367EB5A5B6F95088B9C22D8E09326C3A39A9 ] Browser C:\WINDOWS\System32\browser.dll
10:37:21.0171 0x0e9c Browser - ok
10:37:21.0218 0x0e9c [ 2FE6D5BE0629F706197B30C0AA05DE30, 528ED3AA8129FDD6C8EF698E5ECE9BB93C0249CF0200115F13B36410A353F353 ] BrPar C:\WINDOWS\System32\drivers\BrPar.sys
10:37:21.0234 0x0e9c BrPar - ok
10:37:21.0312 0x0e9c [ 9DA8ABC4885AFF4793D4AA420E40BB12, 502C7ED03B4DB0B36436FF0AE2DE1BD1DB488EFC9D473E3E8EC40E2D96954CC1 ] BT C:\WINDOWS\system32\DRIVERS\btnetdrv.sys
10:37:21.0312 0x0e9c BT - ok
10:37:21.0375 0x0e9c [ BDF2C32C14EF7AB75DDCC3394D6F80D4, 212C62AF31FC03B22021325E8A7A597D321D20BFB9B70A928304CB6A7DFC1B04 ] Btcsrusb C:\WINDOWS\system32\Drivers\btcusb.sys
10:37:21.0406 0x0e9c Btcsrusb - ok
10:37:21.0437 0x0e9c [ 083AD7F6FF500D0A93C0BEA2CF298C93, 5AD9009642718506A71B0D399FC255A1DD648A016E00727C20763C3D91B9BC97 ] BTHidEnum C:\WINDOWS\system32\DRIVERS\vbtenum.sys
10:37:21.0468 0x0e9c BTHidEnum - ok
10:37:21.0546 0x0e9c [ F408264F6AD1DC7E7BDD4837440F115D, 3EC127AAC4D26D63783A098FDF52DF03F57C6B7D7788CDEC51509B9BE74EEB5C ] BTHidMgr C:\WINDOWS\system32\Drivers\BTHidMgr.sys
10:37:21.0562 0x0e9c BTHidMgr - ok
10:37:21.0625 0x0e9c [ 6B05FDC0CFC3753B520D2D4176CC32D0, A15BB0899A1A6273FFB34A57FC6B5544CCC09F2A7C56F6173A8F86E80C0DD49E ] BTNetFilter C:\WINDOWS\system32\drivers\BTNetFilter.sys
10:37:21.0656 0x0e9c BTNetFilter - ok
10:37:21.0734 0x0e9c [ 09E1576F9A1A4B538C75486EF9319860, 25EDF950DC75BBF6EE46922E322471F349331D246DBA384FB55FD64D3B0B18A6 ] CA504AV C:\WINDOWS\system32\Drivers\CA504AV.SYS
10:37:21.0781 0x0e9c CA504AV - ok
10:37:21.0843 0x0e9c [ 4EA760F6CA89618230ECF298781AAE3A, C0BD27FC666CC92C01F1B7376428C8EF5544A6FE71C9310B945C3B5877707D64 ] CAPI20 C:\WINDOWS\System32\Drivers\CAPI20.SYS
10:37:21.0859 0x0e9c CAPI20 - ok
10:37:21.0875 0x0e9c catchme - ok
10:37:21.0937 0x0e9c [ 90A673FC8E12A79AFBED2576F6A7AAF9, BDE7858A3457DB979FEDD8577FA6321BF72848E4A7BF9F173C78A6A10CBB3EBE ] cbidf C:\WINDOWS\system32\DRIVERS\cbidf2k.sys
10:37:21.0953 0x0e9c cbidf - ok
10:37:21.0968 0x0e9c [ 90A673FC8E12A79AFBED2576F6A7AAF9, BDE7858A3457DB979FEDD8577FA6321BF72848E4A7BF9F173C78A6A10CBB3EBE ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
10:37:21.0968 0x0e9c cbidf2k - ok
10:37:22.0031 0x0e9c [ 0BE5AEF125BE881C4F854C554F2B025C, 1770DD70B3F115A0EF460907DEDC1E4B7241C08615A98F194D61A49C3E2BAA54 ] CCDECODE C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
10:37:22.0062 0x0e9c CCDECODE - ok
10:37:22.0109 0x0e9c [ F3EC03299634490E97BBCE94CD2954C7, CDC85ADA27E0D501581CE6F28D7E1941E90411FA8E8F2C43A68BAA8CB78E85DD ] cd20xrnt C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys
10:37:22.0140 0x0e9c cd20xrnt - ok
10:37:22.0187 0x0e9c [ C1B486A7658353D33A10CC15211A873B, AA4DD9E7AAE5AAB1146B360B17001F975D2F29A1281CF7B13E7136480410F347 ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
10:37:22.0203 0x0e9c Cdaudio - ok
10:37:22.0234 0x0e9c [ C885B02847F5D2FD45A24E219ED93B32, B26B2F8E3A831E2B65EB0C5195B0645CD50E22615CE79C9B0B391CD563B121DB ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
10:37:22.0281 0x0e9c Cdfs - ok
10:37:22.0328 0x0e9c [ 1F4260CC5B42272D71F79E570A27A4FE, B51C2A3ED3C309953D0EA45869C8E464C10F2533DADE9E0286AF674979098D1D ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
10:37:22.0343 0x0e9c Cdrom - ok
10:37:22.0375 0x0e9c Changer - ok
10:37:22.0437 0x0e9c [ 28E3040D1F1CA2008CD6B29DFEBC9A5E, ACB458E8A11AA2143734A5A0281973D95158E6402A6453F98F9832D1E19B01F9 ] cisvc C:\WINDOWS\system32\cisvc.exe
10:37:22.0453 0x0e9c cisvc - ok
10:37:22.0531 0x0e9c [ 778A30ED3C134EB7E406AFC407E9997D, 3E6AD115AB2596EB001BC21AEADDBC75F27C42DB90C986B7AD17743CE631234E ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
10:37:22.0562 0x0e9c ClipSrv - ok
10:37:22.0640 0x0e9c [ D87ACAED61E417BBA546CED5E7E36D9C, 14AC6034A5BC0FB2A1AFDAD42BEF4DE641556E54AD30D0C46765660A4BE55462 ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
10:37:22.0875 0x0e9c clr_optimization_v2.0.50727_32 - ok
10:37:23.0218 0x0e9c [ C5A75EB48E2344ABDC162BDA79E16841, 6070A8AAFD38FBC6A68A2B10C20117612354DF21B4492D90CA522BFB6870D726 ] clr_optimization_v4.0.30319_32 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
10:37:23.0390 0x0e9c clr_optimization_v4.0.30319_32 - ok
10:37:23.0437 0x0e9c [ C687F81290303D90099B027A6474F99F, 9276B631E9082685B6348E425482D708CE5D1761876D951B1675442DBAF8AF7C ] CmdIde C:\WINDOWS\system32\DRIVERS\cmdide.sys
10:37:23.0453 0x0e9c CmdIde - ok
10:37:23.0468 0x0e9c COMSysApp - ok
10:37:23.0531 0x0e9c [ 3EE529119EED34CD212A215E8C40D4B6, A6B71F3D4EE7358CA85F010E6271A6B72226D25DF30ED331DA830639ED3E9903 ] Cpqarray C:\WINDOWS\system32\DRIVERS\cpqarray.sys
10:37:23.0546 0x0e9c Cpqarray - ok
10:37:23.0609 0x0e9c [ D01F685F8B4598D144B0CCE9FF95D8D5, A68EF814CDBD7291DEF4745FE14D5080041BD3275AB12629C7811506AF2B8E17 ] cpudrv C:\Programme\SystemRequirementsLab\cpudrv.sys
10:37:23.0609 0x0e9c cpudrv - ok
10:37:23.0687 0x0e9c [ 611F824E5C703A5A899F84C5F1699E4D, 9EFA5612FE58E9974E4CC13D39D91D7B5DEA3ED66BEFBED3AAE6D2800FD8162A ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
10:37:23.0687 0x0e9c CryptSvc - ok
10:37:23.0750 0x0e9c [ E550E7418984B65A78299D248F0A7F36, 52F6BD1027E91F9A90AFAB82C7F2A0314B7E55262F5293D5F9F8F12135EDD88C ] dac2w2k C:\WINDOWS\system32\DRIVERS\dac2w2k.sys
10:37:23.0812 0x0e9c dac2w2k - ok
10:37:23.0875 0x0e9c [ 683789CAA3864EB46125AE86FF677D34, B725D026E069AD253192E21245260CBA44EF3C72781616A2CAD0BF0E2D86D510 ] dac960nt C:\WINDOWS\system32\DRIVERS\dac960nt.sys
10:37:23.0921 0x0e9c dac960nt - ok
10:37:24.0015 0x0e9c [ 3127AFBF2C1ED0AB14A1BBB7AAECB85B, ECFBACE3CBF2384948EA1C445BDA3955EB4F44A9874286E6537C67DC1283E5B0 ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
10:37:24.0046 0x0e9c DcomLaunch - ok
10:37:24.0125 0x0e9c [ C29A1C9B75BA38FA37F8C44405DEC360, 7476D8BC4380CDE56764B2034AF3741DA4ED00F315E41C9A02B5EAD04374F241 ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
10:37:24.0125 0x0e9c Dhcp - ok
10:37:24.0187 0x0e9c [ 044452051F3E02E7963599FC8F4F3E25, 584BDDB074618BE76454CF90E74829CFF588B5B5FAEB793E2F7AAD26352DD689 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
10:37:24.0218 0x0e9c Disk - ok
10:37:24.0250 0x0e9c dmadmin - ok
10:37:24.0328 0x0e9c [ 0DCFC8395A99FECBB1EF771CEC7FE4EA, 89B0AEE5BE01B9FE4FF2989FF16DB6121721ACDFCE6D9655C0ACD321D8C308BE ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
10:37:24.0406 0x0e9c dmboot - ok
10:37:24.0484 0x0e9c [ 53720AB12B48719D00E327DA470A619A, 800264866A6267C9000A85D00095D57908D059D737E5F28C9C4049B884C46228 ] dmio C:\WINDOWS\system32\drivers\dmio.sys
10:37:24.0515 0x0e9c dmio - ok
10:37:24.0578 0x0e9c [ E9317282A63CA4D188C0DF5E09C6AC5F, D41E002F555FE9015EF620975255F58BB79198CA1FF0E09EC950CB450FF77CF7 ] dmload C:\WINDOWS\system32\drivers\dmload.sys
10:37:24.0593 0x0e9c dmload - ok
10:37:24.0656 0x0e9c [ 25C83FFBBA13B554EB6D59A9B2E2EE78, 9FBD655ED3E9163AE11EC207F283E387EFBA5A23108EC790BAE4846B35E66F16 ] dmserver C:\WINDOWS\System32\dmserver.dll
10:37:24.0656 0x0e9c dmserver - ok
10:37:24.0703 0x0e9c [ 8A208DFCF89792A484E76C40E5F50B45, 4E40E2EB38C6254E7CAA488200E89EE7DEBBBA773890BC6A84313CC68178D54F ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
10:37:24.0718 0x0e9c DMusic - ok
10:37:24.0781 0x0e9c [ 407F3227AC618FD1CA54B335B083DE07, 96B8E734648FE9A4EBA59C096C8779BD1A11A93A6303AFD438A406C8122D36C6 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
10:37:24.0781 0x0e9c Dnscache - ok
10:37:24.0843 0x0e9c [ 676E36C4FF5BCEA1900F44182B9723E6, 740CF18BD40E00FEA26CF0E6340C5D18F7D0B4390055FAEEC258B3AA790C4AE9 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
10:37:24.0875 0x0e9c Dot3svc - ok
10:37:24.0906 0x0e9c [ 40F3B93B4E5B0126F2F5C0A7A5E22660, 8AFFF28903037F5E36BB5352F2B236A217558FCC0146B23C787606C3F21243DB ] dpti2o C:\WINDOWS\system32\DRIVERS\dpti2o.sys
10:37:24.0937 0x0e9c dpti2o - ok
10:37:24.0984 0x0e9c [ 8F5FCFF8E8848AFAC920905FBD9D33C8, C8C6FB97AB0871C8C88A2201525A5CF10D5131CB6980D32692ED7A8F58399AD5 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
10:37:24.0984 0x0e9c drmkaud - ok
10:37:25.0078 0x0e9c [ 95974E66D3DE4951D29E28E8BC0B644C, 5737A2FB4D95AAB61A50E25CC570D78FC91C1A7B02754211B1B57DC4209A7D58 ] E100B C:\WINDOWS\system32\DRIVERS\e100b325.sys
10:37:25.0093 0x0e9c E100B - ok
10:37:25.0140 0x0e9c [ 4E4F2FDDAB0A0736D7671134DCCE91FB, 8E2C57D1A006856C47CBDD5765A9DD317DB205B26DA8BFC70555A506257A1CD9 ] EapHost C:\WINDOWS\System32\eapsvc.dll
10:37:25.0140 0x0e9c EapHost - ok
10:37:25.0171 0x0e9c [ 877C18558D70587AA7823A1A308AC96B, 6B336A62112988D855513F45153F73F8470C41A448E9B7438B4A8EC1813AABF1 ] ERSvc C:\WINDOWS\System32\ersvc.dll
10:37:25.0171 0x0e9c ERSvc - ok
10:37:25.0187 0x0e9c esgiguard - ok
10:37:25.0250 0x0e9c [ 01CE484FF6D70A39479BC6D619DE7ED6, E3ABCB9FF8844148119630E2B9B8456FA8706AB8C947986EB040B7A921C16EFE ] EsgScanner C:\WINDOWS\system32\DRIVERS\EsgScanner.sys
10:37:25.0265 0x0e9c EsgScanner - ok
10:37:25.0343 0x0e9c [ A3EDBE9053889FB24AB22492472B39DC, 6F2ED6E04BDE2FCA2A8BF9BD2D1D6923DE6EAECB46F582B6C0BD1CF364D65C9E ] Eventlog C:\WINDOWS\system32\services.exe
10:37:25.0343 0x0e9c Eventlog - ok
10:37:25.0406 0x0e9c [ AF4F6B5739D18CA7972AB53E091CBC74, A399E2CC026730D3A429727AAB48093B9F1E5DD8EB6336519C7F16182FDB3905 ] EventSystem C:\WINDOWS\system32\es.dll
10:37:25.0421 0x0e9c EventSystem - ok
10:37:25.0453 0x0e9c [ 38D332A6D56AF32635675F132548343E, E6909DB836AF679B4F4D62C7396D6C82769CC7ABB8C919C2AABFE934FCE268F6 ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
10:37:25.0468 0x0e9c Fastfat - ok
10:37:25.0546 0x0e9c [ 2DB7D303C36DDD055215052F118E8E75, BE6E7BBE12A7A4EDF1F1C2935350603970C7426BBCA7A1A6644BB8999123AF17 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
10:37:25.0562 0x0e9c FastUserSwitchingCompatibility - ok
10:37:25.0609 0x0e9c [ 08B8B302AF0D1B3B8543429BBAC8F21F, F3370FE5C4BECB16F0668E6605792EF8096FE06A79D8234E3D6E1B584F2D4E5A ] Fax C:\WINDOWS\system32\fxssvc.exe
10:37:25.0640 0x0e9c Fax - ok
10:37:25.0703 0x0e9c [ 92CDD60B6730B9F50F6A1A0C1F8CDC81, 8307A532AB4D05CBBCE206DC2759497708BF5AAA880BD00F0E4F281D8578A1F5 ] Fdc C:\WINDOWS\system32\DRIVERS\fdc.sys
10:37:25.0703 0x0e9c Fdc - ok
10:37:25.0718 0x0e9c [ B0678A548587C5F1967B0D70BACAD6C1, 7E49910212ED87313F926E4800EA8D34809C287A686CA69B82B79C1A6451F88C ] Fips C:\WINDOWS\system32\drivers\Fips.sys
10:37:25.0734 0x0e9c Fips - ok
10:37:25.0828 0x0e9c [ 1F63900E2EB00101B9ACA2B7A870704E, 5AFE1FC852937FECE6B33147BD0110436FE97F33BFDA3F69B1F5EDAD6FFC09C6 ] FLEXnet Licensing Service C:\Programme\Gemeinsame Dateien\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
10:37:25.0906 0x0e9c FLEXnet Licensing Service - ok
10:37:25.0953 0x0e9c [ 9D27E7B80BFCDF1CDD9B555862D5E7F0, 69C271AD5BCEBFD8AE5A769BDD7EC51256DA3A8ADAD5D12E5C0D13F4E82D8805 ] Flpydisk C:\WINDOWS\system32\DRIVERS\flpydisk.sys
10:37:25.0953 0x0e9c Flpydisk - ok
10:37:26.0015 0x0e9c [ B2CF4B0786F8212CB92ED2B50C6DB6B0, 280F5CF8A90F7BEDE73ADD0DD0F8952088133A7CA9A3D3B7041957E33B36845D ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
10:37:26.0046 0x0e9c FltMgr - ok
10:37:26.0156 0x0e9c [ 8BA7C024070F2B7FDD98ED8A4BA41789, 47585006F86B2C6016EC54250A416794792D1E4024FF229C120BC25B684AF66A ] FontCache3.0.0.0 c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
10:37:26.0218 0x0e9c FontCache3.0.0.0 - ok
10:37:26.0328 0x0e9c [ 0B7EE136026CC51FE42855BA6772F79A, 7AA7BF23481E5F2C885872E1AF35DDA2295D8DEBEB22F3233ED2BB6BB5D8C801 ] fpcibase C:\WINDOWS\system32\DRIVERS\fpcibase.sys
10:37:26.0421 0x0e9c fpcibase - ok
10:37:26.0453 0x0e9c [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A, EC635E071201A766845D48973772CBE0958942B4162F3F5F70660D114CC877E0 ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
10:37:26.0484 0x0e9c Fs_Rec - ok
10:37:26.0531 0x0e9c [ 8F1955CE42E1484714B542F341647778, 8EB3F99625F409D3032561E8AB44BEFBFBFBA4EC873C2151C92A5CAAF7F2AA55 ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
10:37:26.0578 0x0e9c Ftdisk - ok
10:37:26.0640 0x0e9c [ 0A02C63C8B144BD8C86B103DEE7C86A2, 7A3235DD3E1995DD72B212FAEB3ECA2A974434DE9BF6D269EA11BA65A80E7E50 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
10:37:26.0640 0x0e9c Gpc - ok
10:37:26.0781 0x0e9c [ 626A24ED1228580B9518C01930936DF9, CBD94AB1E5477D7288799D17528CC43D572E711DA0F2B0C784A0B9FE105BF0F4 ] gupdate C:\Programme\Google\Update\GoogleUpdate.exe
10:37:26.0828 0x0e9c gupdate - ok
10:37:26.0843 0x0e9c [ 626A24ED1228580B9518C01930936DF9, CBD94AB1E5477D7288799D17528CC43D572E711DA0F2B0C784A0B9FE105BF0F4 ] gupdatem C:\Programme\Google\Update\GoogleUpdate.exe
10:37:26.0859 0x0e9c gupdatem - ok
10:37:26.0937 0x0e9c [ 3FD5F79AA40B1C244C59DE984E98DC37, 85EEAC5C9B472B660DED0CA2C3CD2E499FC3B8C4B7463485A27F63787A2ACEB0 ] gusvc C:\Programme\Google\Common\Google Updater\GoogleUpdaterService.exe
10:37:26.0984 0x0e9c gusvc - ok
10:37:27.0031 0x0e9c [ 573C7D0A32852B48F3058CFD8026F511, BC384BBA394AFDCDA1A9ABC858C692AA84A1F0A31AF3DDF7F38D120C027927FB ] HDAudBus C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
10:37:27.0031 0x0e9c HDAudBus - ok
10:37:27.0125 0x0e9c [ CB66BF85BF599BEFD6C6A57C2E20357F, 55D3A0F9279FF316766F42548FCB61C452942B08A37590C4892DF110BE4E53C6 ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
10:37:27.0125 0x0e9c helpsvc - ok
10:37:27.0187 0x0e9c [ B35DA85E60C0103F2E4104532DA2F12B, E13C9F73DF7713554CB614B36123D75014F5121AA1FC9069733E61758751CBE4 ] HidServ C:\WINDOWS\System32\hidserv.dll
10:37:27.0187 0x0e9c HidServ - ok
10:37:27.0234 0x0e9c [ CCF82C5EC8A7326C3066DE870C06DAF1, 93395FA4C26B2E82DC8B7025ED3BCF583885E5D8C5F60CD6EEAA6335D6A126EC ] HidUsb C:\WINDOWS\system32\DRIVERS\hidusb.sys
10:37:27.0265 0x0e9c HidUsb - ok
10:37:27.0328 0x0e9c [ ED29F14101523A6E0E808107405D452C, B8FA987637787BEECC2EB06D36293DAC355523392B49A8C5A9491EEE961917E9 ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
10:37:27.0359 0x0e9c hkmsvc - ok
10:37:27.0406 0x0e9c [ B028377DEA0546A5FCFBA928A8AEFAE0, FD7B34A6036AD443014B16394A5F051A298CEE4276D50525FB9F15A0D2684C8B ] hpn C:\WINDOWS\system32\DRIVERS\hpn.sys
10:37:27.0453 0x0e9c hpn - ok
10:37:27.0500 0x0e9c [ 863CC3A82C63C9F60ACF2E85D5310620, 51CBC73D696BB87FBF3F4CD31ADE38DF9B8476DFAC38356A5C0ABD8CA63A5494 ] HPZid412 C:\WINDOWS\system32\DRIVERS\HPZid412.sys
10:37:27.0515 0x0e9c HPZid412 - ok
10:37:27.0578 0x0e9c [ 08CB72E95DD75B61F2966B311D0E4366, 3C4CBCA84B67DBFD00C3A2470EE0CBE1F66AF549E9579B016C659BEE40219D24 ] HPZipr12 C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
10:37:27.0593 0x0e9c HPZipr12 - ok
10:37:27.0656 0x0e9c [ CA990306ED4EF732AF9695BFF24FC96F, 083532116547447D4A82CA02181AB4099944082405036EE38D7A3FB09CFDDC95 ] HPZius12 C:\WINDOWS\system32\DRIVERS\HPZius12.sys
10:37:27.0656 0x0e9c HPZius12 - ok
10:37:27.0718 0x0e9c [ F80A415EF82CD06FFAF0D971528EAD38, 524D9E9201572929522F6805011783711B7C0F76308B924C89CF75F4B7A1FDF3 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
10:37:27.0750 0x0e9c HTTP - ok
10:37:27.0796 0x0e9c [ 9E4ADB854CEBCFB81A4B36718FEECD16, 677AB64460775686F8366D6BF35D420A2486C3F07338A00A7C2788A5142B9F08 ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
10:37:27.0828 0x0e9c HTTPFilter - ok
10:37:27.0875 0x0e9c [ 9368670BD426EBEA5E8B18A62416EC28, 0ED865F8FB79F0B6309521925280E8640DB5CA6F75377434830536899734B6EE ] i2omgmt C:\WINDOWS\system32\drivers\i2omgmt.sys
10:37:27.0890 0x0e9c i2omgmt - ok
10:37:27.0906 0x0e9c [ F10863BF1CCC290BABD1A09188AE49E0, BC038EAE6C8A76D56A5AD27035DC0369D6E766711E9FAA7467144370851F1615 ] i2omp C:\WINDOWS\system32\DRIVERS\i2omp.sys
10:37:27.0921 0x0e9c i2omp - ok
10:37:27.0937 0x0e9c [ E283B97CFBEB86C1D86BAED5F7846A92, 7664F791D08C80DF1E52B34BE69F073AA645610C4BD975F498254807602374AB ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
10:37:27.0968 0x0e9c i8042prt - ok
10:37:28.0062 0x0e9c [ 5A8E05F1D5C36ABD58CFFA111EB325EA, F881543B911C94BA6E0E4FF754286F18DBB30DAEEA13982A7D5179E51AC2C30F ] ialm C:\WINDOWS\system32\DRIVERS\ialmnt5.sys
10:37:28.0171 0x0e9c ialm - ok
10:37:28.0296 0x0e9c [ C01AC32DC5C03076CFB852CB5DA5229C, A4D7749220B5BC965D96A267F1E02FE8284A230BA249109207BD4B9EA8DFAC96 ] idsvc c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
10:37:28.0468 0x0e9c idsvc - ok
10:37:28.0515 0x0e9c [ 083A052659F5310DD8B6A6CB05EDCF8E, 48D39B03FFB6FAA1529B774443BA12618AE3982D9F65A7B9D18F2269F78B31F4 ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
10:37:28.0531 0x0e9c Imapi - ok
10:37:28.0578 0x0e9c [ D4B413AA210C21E46AEDD2BA5B68D38E, 2309622867AA8FC832A729FA78F48742D4BD6CA0DAFBFB9DDB0772D671E1ED75 ] ImapiService C:\WINDOWS\system32\imapi.exe
10:37:28.0578 0x0e9c ImapiService - ok
10:37:28.0640 0x0e9c [ 4A40E045FAEE58631FD8D91AFC620719, 7A2FD81BD483821B3DA01B1CD7215423EDD719CBE3862C0342FF7D21A17AF437 ] ini910u C:\WINDOWS\system32\DRIVERS\ini910u.sys
10:37:28.0640 0x0e9c ini910u - ok
10:37:28.0718 0x0e9c [ 69C4E3C9E67A1F103B94E14FDD5F3213, 894ABDDBF95E3FFE59A4621AF94AFA7E6F6D780420845078622C76624C0326D2 ] IntelIde C:\WINDOWS\system32\DRIVERS\intelide.sys
10:37:28.0734 0x0e9c IntelIde - ok
10:37:28.0796 0x0e9c [ 4C7D2750158ED6E7AD642D97BFFAE351, C05E4799752F090DCB632F07F62ADE38D31534621064D269AD535CA0BDFED448 ] intelppm C:\WINDOWS\system32\DRIVERS\intelppm.sys
10:37:28.0828 0x0e9c intelppm - ok
10:37:28.0875 0x0e9c [ 3BB22519A194418D5FEC05D800A19AD0, F6662F440950596DC1382DD1DB5D7891CCEA30A6062BEA942C18445B5F0D8B16 ] Ip6Fw C:\WINDOWS\system32\drivers\ip6fw.sys
10:37:28.0875 0x0e9c Ip6Fw - ok
10:37:28.0906 0x0e9c [ 731F22BA402EE4B62748ADAF6363C182, 5C3BEBD008A5BE4DC2F92076FF41A10DDC01E10EC7E6552213CFA11970811848 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
10:37:28.0921 0x0e9c IpFilterDriver - ok
10:37:28.0953 0x0e9c [ B87AB476DCF76E72010632B5550955F5, E6E74D3A86A7917A8BAED44F8E97CCD2EB171E4E4B27E9907F60D1523FAF319A ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
10:37:28.0953 0x0e9c IpInIp - ok
10:37:29.0000 0x0e9c [ CC748EA12C6EFFDE940EE98098BF96BB, AF523E21C25D9A1715EFEA573E4F52AF5D4FC9F28A2D613F5DB629C186C439E0 ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
10:37:29.0000 0x0e9c IpNat - ok
10:37:29.0062 0x0e9c [ 9843F75E31FB74C5FE757D28150C2B9F, 7307DAF99AA5D9C39AC7D708313B0E8A71196D6F11C1A29F184A358FF1115F18 ] Iprip C:\WINDOWS\System32\iprip.dll
10:37:29.0062 0x0e9c Iprip - ok
10:37:29.0109 0x0e9c [ 23C74D75E36E7158768DD63D92789A91, 394D296F38E7D8EFD91A6EEC301D9CE6AF910E35EB9819F1A9E3363863AEDFDC ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
10:37:29.0109 0x0e9c IPSec - ok
10:37:29.0171 0x0e9c [ C93C9FF7B04D772627A3646D89F7BF89, 805FA48E7A46D4F10240BF880A2468F53DEA36E83004399228AB70DB7D20544A ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
10:37:29.0187 0x0e9c IRENUM - ok
10:37:29.0234 0x0e9c [ 6DFB88F64135C525433E87648BDA30DE, 8233EEFBEF36AAA152F2C55D23D7118F0DE40C9C22EB5D9793405A4770889540 ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
10:37:29.0265 0x0e9c isapnp - ok
10:37:29.0515 0x0e9c [ A5937B2A94424CF1B13A4AD503AF6B2E, E96CE4E526E053FB410987BD444627BC7B26FCE48DC0A61916ADD0A69EFA6941 ] JavaQuickStarterService C:\Programme\Java\jre7\bin\jqs.exe
10:37:29.0515 0x0e9c JavaQuickStarterService - ok
10:37:29.0562 0x0e9c [ 1704D8C4C8807B889E43C649B478A452, E854C90CD301F42BE2520CEDAD35E49DF2D43606CF4EEED861B74882118D04D1 ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
10:37:29.0578 0x0e9c Kbdclass - ok
10:37:29.0609 0x0e9c [ B6D6C117D771C98130497265F26D1882, E79CC4EA5C088F988BA61F80764F9CAD9B78BC56A7E17DD54622C75483BC5DF4 ] kbdhid C:\WINDOWS\system32\DRIVERS\kbdhid.sys
10:37:29.0609 0x0e9c kbdhid - ok
10:37:29.0671 0x0e9c [ 692BCF44383D056AED41B045A323D378, 1A99DEE83FFAF64E73067FC049C0A4CE07D94E4AE31EFA17B38CEFA9E41D67DC ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
10:37:29.0687 0x0e9c kmixer - ok
10:37:29.0750 0x0e9c [ B467646C54CC746128904E1654C750C1, 3BD71BE3663EA23463D236D8A2A2E42DFA10C502BDB4B6E131FAF0FBA748219E ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
10:37:29.0765 0x0e9c KSecDD - ok
10:37:29.0796 0x0e9c [ 2BBDCB79900990F0716DFCB714E72DE7, 6283789201164A9254632D9A3C8A54FE697717D5F8D5A37804D924DC2B70C8E3 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
10:37:29.0812 0x0e9c lanmanserver - ok
10:37:29.0875 0x0e9c [ 1869B14B06B44B44AF70548E1EA3303F, 4D63B4DAF580C86F86837C7D1753E2105B4C52E26D4CA0CAAFE83755EFF7AFBE ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
10:37:29.0921 0x0e9c lanmanworkstation - ok
10:37:29.0953 0x0e9c Lavasoft Kernexplorer - ok
10:37:29.0968 0x0e9c Lbd - ok
10:37:30.0000 0x0e9c lbrtfdc - ok
10:37:30.0078 0x0e9c [ 636714B7D43C8D0C80449123FD266920, F06F6C7DC49B26EFCAC3570C67BA9BD934F62C6F382DA4DD2AB302C7B970F414 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
10:37:30.0078 0x0e9c LmHosts - ok
10:37:30.0109 0x0e9c [ 7A1A532F14FDE28489DC349C6E404A67, 2BD9F0C54C7107B4D1957F5DB788265CD87602320CF48453B4A2D6F249EEE392 ] LPDSVC C:\WINDOWS\system32\tcpsvcs.exe
10:37:30.0125 0x0e9c LPDSVC - ok
10:37:30.0296 0x0e9c [ 034606B82FA5BD3E73AB427B6D55F915, F24AA57D46F3AD5FBBE29CE9E2D8798FA1FC98A9004E10EEED3D651F52A6143B ] McComponentHostService C:\Programme\McAfee Security Scan\3.0.285\McCHSvc.exe
10:37:30.0328 0x0e9c McComponentHostService - ok
10:37:30.0484 0x0e9c [ 11F714F85530A2BD134074DC30E99FCA, BDB5FD3B2DF4ADD19B31965B3E789768B59E872B3EA85912B1FFB32B2AF9D5D8 ] MDM C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7Debug\mdm.exe
10:37:30.0500 0x0e9c MDM - ok
10:37:30.0515 0x0e9c MEMSWEEP2 - ok
10:37:30.0562 0x0e9c [ B7550A7107281D170CE85524B1488C98, A3854B16A65436BEF6BEDE918B43B3BE8F00D303660DB5831DD376271DC43239 ] Messenger C:\WINDOWS\System32\msgsvc.dll
10:37:30.0593 0x0e9c Messenger - ok
10:37:30.0656 0x0e9c [ A7DA20AB18A1BDAE28B0F349E57DA0D1, C668F419579ADDF37558241982B0334A93644E9C05919967C494FE9853E62D5B ] mf C:\WINDOWS\system32\DRIVERS\mf.sys
10:37:30.0656 0x0e9c mf - ok
10:37:30.0734 0x0e9c [ 5E5024D9E2351DB2563B30912B4C4146, 8982A3776BBCC14BC9A7AEB843838D780E20EF454B0A10C29405270835D36D9E ] MIINPazX C:\PROGRA~1\GEMEIN~1\MARMIK~1\MInfraIS\MIINPazX.SYS
10:37:30.0765 0x0e9c MIINPazX - ok
10:37:30.0812 0x0e9c [ 4AE068242760A1FB6E1A44BF4E16AFA6, 1FB771162B96AAF787AC24867B818DF8511F0780BB094FA9A38C11D8DBFE68BC ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
10:37:30.0828 0x0e9c mnmdd - ok
10:37:30.0890 0x0e9c [ C2F1D365FD96791B037EE504868065D3, 87BD87E08FD00D115524B049F1A3A719AB86557D68968E7090CD0F271F985CAF ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
10:37:30.0890 0x0e9c mnmsrvc - ok
10:37:30.0953 0x0e9c [ 6FB74EBD4EC57A6F1781DE3852CC3362, 0454509D9A31E0202C08AE17294E2682F227D177A3C73B303E4C8332757AFCA1 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
10:37:30.0953 0x0e9c Modem - ok
10:37:31.0015 0x0e9c [ 1992E0D143B09653AB0F9C5E04B0FD65, 1431EC53A65F561C235A08F926C5348A6B21B06A08C075DE8172A88EE0AA634E ] MODEMCSA C:\WINDOWS\system32\drivers\MODEMCSA.sys
10:37:31.0046 0x0e9c MODEMCSA - ok
10:37:31.0093 0x0e9c [ B24CE8005DEAB254C0251E15CB71D802, 6804A8ABDAD5EC846E7F8077D1EE9BA45D6226ACFF42C70BE3DE7C8980EF9EC4 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
10:37:31.0125 0x0e9c Mouclass - ok
10:37:31.0171 0x0e9c [ 66A6F73C74E1791464160A7065CE711A, 3C570FA1E8EF976B83759220FE95BAC9D7D48D607F91B113EDE4790D34ACBD46 ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys
10:37:31.0218 0x0e9c mouhid - ok
10:37:31.0265 0x0e9c [ A80B9A0BAD1B73637DBCBBA7DF72D3FD, 2A5E15ED2C24C6C65EF2F7E1FD93374774076C9D8D451E4422561F4D269C012F ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
10:37:31.0312 0x0e9c MountMgr - ok
10:37:31.0375 0x0e9c [ 3F4BB95E5A44F3BE34824E8E7CAF0737, 9A4F9E63AA55B779AF3563C66C8E40D9C42FF3BB5F533F70905ADC7A44EA7DAD ] mraid35x C:\WINDOWS\system32\DRIVERS\mraid35x.sys
10:37:31.0390 0x0e9c mraid35x - ok
10:37:31.0421 0x0e9c [ 11D42BB6206F33FBB3BA0288D3EF81BD, 76ABCFB62C5AC549F58C231F72A99882CDEB74928104B77FE52554765C2B1A22 ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
10:37:31.0453 0x0e9c MRxDAV - ok
10:37:31.0531 0x0e9c [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0, DB9B186F7076D7B94F45041AF7B77C1AD2CAB504D683B459C6CB1C22840ED170 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
10:37:31.0609 0x0e9c MRxSmb - ok
10:37:31.0671 0x0e9c [ 35A031AF38C55F92D28AA03EE9F12CC9, 97245D204C886EE8DCCC2DEAC80A0E358A7E0C1982F77389DA50DCF091FC9DDC ] MSDTC C:\WINDOWS\system32\msdtc.exe
10:37:31.0703 0x0e9c MSDTC - ok
10:37:31.0781 0x0e9c [ C941EA2454BA8350021D774DAF0F1027, C940E978C7B66A713A0FDAB54B5F995DF59D089AFCD96221DD3222948CD49BBD ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
10:37:31.0812 0x0e9c Msfs - ok
10:37:31.0859 0x0e9c MSIServer - ok
10:37:31.0890 0x0e9c [ D1575E71568F4D9E14CA56B7B0453BF1, 4ABE0E24786C0D39FA2B885447E56204CA6942FB175E534DCE675D7BCF0B176A ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
10:37:31.0921 0x0e9c MSKSSRV - ok
10:37:31.0984 0x0e9c [ 325BB26842FC7CCC1FCCE2C457317F3E, C07BE560513B1FB91D756494F0BA4AEEB2E1998DE0E1C21EE83DB1183B0CEE91 ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
10:37:31.0984 0x0e9c MSPCLOCK - ok
10:37:32.0031 0x0e9c [ BAD59648BA099DA4A17680B39730CB3D, 9AD4C7C94C186C8815D0BC75DCAFB962158DA6935A244BA243EDDDEB33F9816C ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
10:37:32.0031 0x0e9c MSPQM - ok
10:37:32.0093 0x0e9c [ AF5F4F3F14A8EA2C26DE30F7A1E17136, AC93A1E4ABB0D038B772E429015567E44CC2EDB66C54DBE23A5F98176FAC1520 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
10:37:32.0109 0x0e9c mssmbios - ok
10:37:32.0593 0x0e9c [ F90756C7215D9E55143DF43A6D9307F4, DA1DB093D0A31E63E7AA88721996E0AB66CF3DEB599BA215108816960D8D1911 ] MSSQL$MICROSOFTSMLBIZ C:\Programme\Microsoft SQL Server\MSSQL$MICROSOFTSMLBIZ\Binn\sqlservr.exe
10:37:33.0171 0x0e9c MSSQL$MICROSOFTSMLBIZ - ok
10:37:33.0281 0x0e9c [ 1D1B22613EAB9287AF902398867BC93C, FB30F12C30822E271FA854FA982F37C5973B295DD8CA4944F147BCB9A49DDF78 ] MSSQLServerADHelper C:\Programme\Microsoft SQL Server\80\Tools\Binn\sqladhlp.exe
10:37:33.0328 0x0e9c MSSQLServerADHelper - ok
10:37:33.0375 0x0e9c [ E53736A9E30C45FA9E7B5EAC55056D1D, 38602F280BF69EBA3706AD175AFC1AEB561A8302B4B61E3FECB3C27D7A9BDB41 ] MSTEE C:\WINDOWS\system32\drivers\MSTEE.sys
10:37:33.0375 0x0e9c MSTEE - ok
10:37:33.0437 0x0e9c MTOnlPktAlyX - ok
10:37:33.0500 0x0e9c [ DE6A75F5C270E756C5508D94B6CF68F5, FCC972DDC36C2C44D836913F10004C2C33B11C54DEFFF0C63E0FDF901D2F9261 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
10:37:33.0531 0x0e9c Mup - ok
10:37:33.0609 0x0e9c [ 5B50F1B2A2ED47D560577B221DA734DB, C16A554B6E1A7F5F98C94DFA88163E0F7426506BF2F51FD351B1A05FC0DB3BC5 ] NABTSFEC C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
10:37:33.0609 0x0e9c NABTSFEC - ok
10:37:33.0703 0x0e9c [ 46BB15AE2AC7D025D6D2567B876817BD, 102A101B96D1078C98FA0F871C801A9A8538E20E5686AB0C7680B2F6C92B3165 ] napagent C:\WINDOWS\System32\qagentrt.dll
10:37:33.0734 0x0e9c napagent - ok
10:37:33.0781 0x0e9c [ 1DF7F42665C94B825322FAE71721130D, FE0DCB728471465B39A42A7511F4133021FBA5DF88F88BCB5FE2FF34CFD713F9 ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
10:37:33.0828 0x0e9c NDIS - ok
10:37:33.0859 0x0e9c [ 7FF1F1FD8609C149AA432F95A8163D97, 18CD1FF5AC1EF8A38D1EC53014F2BADD28D9CDF4ECE2EBC2313D08903776F323 ] NdisIP C:\WINDOWS\system32\DRIVERS\NdisIP.sys
10:37:33.0875 0x0e9c NdisIP - ok
10:37:33.0937 0x0e9c [ 0109C4F3850DFBAB279542515386AE22, 4F6DB1E499AC853FD36FD603FBB6D3AC9BDCEB298C7FE1FB59A9236CB46729B2 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
10:37:33.0968 0x0e9c NdisTapi - ok
10:37:34.0031 0x0e9c [ F927A4434C5028758A842943EF1A3849, B1AA3AF150C05307461774925901789456B0CCCD03A5E71ADA4AB58455962BEE ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
10:37:34.0031 0x0e9c Ndisuio - ok
10:37:34.0078 0x0e9c [ EDC1531A49C80614B2CFDA43CA8659AB, 494042F790F33721328B4451E79842E21919681CC421A4F9633EC4D383E06097 ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
10:37:34.0078 0x0e9c NdisWan - ok
10:37:34.0156 0x0e9c [ 9282BD12DFB069D3889EB3FCC1000A9B, 09A46F1712BD9165068D8E153585FE3E6E5CBF4F1DDEC142115555D3A91AEC09 ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
10:37:34.0156 0x0e9c NDProxy - ok
10:37:34.0203 0x0e9c [ 5D81CF9A2F1A3A756B66CF684911CDF0, 7989C36607CAEA17AFA2C1C9904145CA0714A54B9F712D9D4C1AB140D0B2CC0C ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
10:37:34.0203 0x0e9c NetBIOS - ok
10:37:34.0234 0x0e9c [ 74B2B2F5BEA5E9A3DC021D685551BD3D, 7932B71F98B4122BE88F576BF6D745A757AE378A48924B7F4358837B75640A82 ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
10:37:34.0312 0x0e9c NetBT - ok
10:37:34.0375 0x0e9c [ 8ACE4251BFFD09CE75679FE940E996CC, 81969521B5EAEA09ECA63058BE9697BB69AF2596339CA9DF0CFEDC031DCFDC7E ] NetDDE C:\WINDOWS\system32\netdde.exe
10:37:34.0390 0x0e9c NetDDE - ok
10:37:34.0421 0x0e9c [ 8ACE4251BFFD09CE75679FE940E996CC, 81969521B5EAEA09ECA63058BE9697BB69AF2596339CA9DF0CFEDC031DCFDC7E ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
10:37:34.0421 0x0e9c NetDDEdsdm - ok
10:37:34.0484 0x0e9c [ AFB8261B56CBA0D86AEB6DF682AF9785, 104D96F1F19DD4CE492064ACC9634406A019EAE20B42D03198E400E661897127 ] Netlogon C:\WINDOWS\system32\lsass.exe
10:37:34.0500 0x0e9c Netlogon - ok
10:37:34.0562 0x0e9c [ E6D88F1F6745BF00B57E7855A2AB696C, 12A5EDD853600FF5EBF91E127077745AE1E61E66DBC1D4D4306570F171AF4A39 ] Netman C:\WINDOWS\System32\netman.dll
10:37:34.0578 0x0e9c Netman - ok
10:37:34.0625 0x0e9c [ 9DA26B773BD04B867A8E9F427CD048FC, A8D8D92720EA31685864B834FC67CD6225D0B65DF40DCDD6A80E6D0DF677C855 ] NetSvc C:\Programme\Intel\PROSetWired\NCS\Sync\NetSvc.exe
10:37:34.0671 0x0e9c NetSvc - ok
10:37:34.0734 0x0e9c [ D34612C5D02D026535B3095D620626AE, 1BBCCCBF49EB8807240A77DCB43C25C21682073CC5356594E2C4F53EF36BF657 ] NetTcpPortSharing c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
10:37:34.0750 0x0e9c NetTcpPortSharing - ok
10:37:34.0812 0x0e9c [ F1B67B6B0751AE0E6E964B02821206A3, 3D5A7593ABDEE2047C5738671C85DC8B95A4ECF58D5D7B04EEE13A689839A540 ] Nla C:\WINDOWS\System32\mswsock.dll
10:37:34.0843 0x0e9c Nla - ok
10:37:34.0890 0x0e9c [ 1E421A6BCF2203CC61B821ADA9DE878B, C658F1D5DCE7525CF929C65C46AB2881C99D89BF8F0F61C1D440C9D9BFB2F89F ] nm C:\WINDOWS\system32\DRIVERS\NMnt.sys
10:37:34.0906 0x0e9c nm - ok
10:37:34.0937 0x0e9c [ 3182D64AE053D6FB034F44B6DEF8034A, 4ADFC76965BA2A5F488E71789A4E4EA702A74AF42725F72130D1CA919406CF19 ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
10:37:34.0937 0x0e9c Npfs - ok
10:37:35.0015 0x0e9c [ 78A08DD6A8D65E697C18E1DB01C5CDCA, E0E6F3ED05068E32F1D5C2D2B38CDEF4536B8656DB6756C66CF6B40B60C8F3DA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
10:37:35.0109 0x0e9c Ntfs - ok
10:37:35.0140 0x0e9c [ AFB8261B56CBA0D86AEB6DF682AF9785, 104D96F1F19DD4CE492064ACC9634406A019EAE20B42D03198E400E661897127 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
10:37:35.0140 0x0e9c NtLmSsp - ok
10:37:35.0218 0x0e9c [ 56AF4064996FA5BAC9C449B1514B4770, 154602EFEC22728503D4ABA025DF711B0F2CFC983F5E3BF25F2A4BCD1AE250EC ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
10:37:35.0312 0x0e9c NtmsSvc - ok
10:37:35.0375 0x0e9c [ 73C1E1F395918BC2C6DD67AF7591A3AD, B21133A75253EC15E2DFF66D3B480AB1A7E1A2360476C810E7AA55D0F0EB08D4 ] Null C:\WINDOWS\system32\drivers\Null.sys
10:37:35.0375 0x0e9c Null - ok
10:37:35.0484 0x0e9c [ 2B298519EDBFCF451D43E0F1E8F1006D, 67F3F2001F4C8DABD253D60AB3222793635532DC51AD977954286F8A246F5592 ] nv C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
10:37:35.0625 0x0e9c nv - ok
10:37:35.0687 0x0e9c [ C34A6A72DEC2C317D67355DC18F87090, CFB91AAFDA022A79A7C9CF0088394B937E9C739A8F1F4F2700691FB383781CA7 ] NWCWorkstation C:\WINDOWS\System32\nwwks.dll
10:37:35.0703 0x0e9c NWCWorkstation - ok
10:37:35.0734 0x0e9c [ B305F3FAD35083837EF46A0BBCE2FC57, 9D0E0E666D652D0FC9EAB97280A5D67AAF61D6B21929DF7CF8ED72A367720464 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
10:37:35.0734 0x0e9c NwlnkFlt - ok
10:37:35.0781 0x0e9c [ C99B3415198D1AAB7227F2C88FD664B9, DD8DA4B5E804F134AB9233859544C025062902DFC3E8FB8A09A67337A4E73F55 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
10:37:35.0812 0x0e9c NwlnkFwd - ok
10:37:35.0859 0x0e9c [ 8B8B1BE2DBA4025DA6786C645F77F123, E47D5EED2F3AF85E2332C325DA80AEF2C4EC989E38A175194EBBFA967BA8BF81 ] NwlnkIpx C:\WINDOWS\system32\DRIVERS\nwlnkipx.sys
10:37:35.0875 0x0e9c NwlnkIpx - ok
10:37:35.0906 0x0e9c [ 56D34A67C05E94E16377C60609741FF8, ABE48D3E7D38DB20E9D4884FC6FE42FAE0C5FAFD3AC86F1E585A4BB17C6F09C5 ] NwlnkNb C:\WINDOWS\system32\DRIVERS\nwlnknb.sys
10:37:35.0921 0x0e9c NwlnkNb - ok
10:37:35.0953 0x0e9c [ C0BB7D1615E1ACBDC99757F6CEAF8CF0, 899905C0EB182ABCDAE0D0D749C0BC39CD231B9FAEE733D5DFDAE86EB8BC755B ] NwlnkSpx C:\WINDOWS\system32\DRIVERS\nwlnkspx.sys
10:37:35.0984 0x0e9c NwlnkSpx - ok
10:37:36.0078 0x0e9c [ 36B9B950E3D2E100970A48D8BAD86740, B0F320E68974925E1BB199B9F59A191FA1EBA2D2F164F182FE7820A83220687C ] NWRDR C:\WINDOWS\system32\DRIVERS\nwrdr.sys
10:37:36.0093 0x0e9c NWRDR - ok
10:37:36.0156 0x0e9c [ 7A56CF3E3F12E8AF599963B16F50FB6A, 882C82BAE96D263138D4C0D6C425458B770B7B9C8E9C1D28AC918BF6BE94A5C2 ] ose C:\Programme\Gemeinsame Dateien\Microsoft Shared\Source Engine\OSE.EXE
10:37:36.0203 0x0e9c ose - ok
10:37:36.0265 0x0e9c [ 9BAD7EDCFEE78FF3B3D852E881633C6A, 40684FBE69919997D2BE18C8489D91BE6786AA90B401387BA6E97D1651CBB2ED ] p2pgasvc C:\WINDOWS\system32\p2pgasvc.dll
10:37:36.0265 0x0e9c p2pgasvc - ok
10:37:36.0328 0x0e9c [ 02EBBECE9FB4A4811AD3C4BB55CCED0C, 99D42706BAFE3512CA0DD9BE1E33824674E1ADFD93BF1B459943760BBB8A4297 ] p2pimsvc C:\WINDOWS\system32\p2psvc.dll
10:37:36.0375 0x0e9c p2pimsvc - ok
10:37:36.0437 0x0e9c [ 02EBBECE9FB4A4811AD3C4BB55CCED0C, 99D42706BAFE3512CA0DD9BE1E33824674E1ADFD93BF1B459943760BBB8A4297 ] p2psvc C:\WINDOWS\system32\p2psvc.dll
10:37:36.0468 0x0e9c p2psvc - ok
10:37:36.0531 0x0e9c [ 95BD9287B49B01A3CF2488AF8A1AC312, 903130FD0433551E58D0BCAB9D7132A75E928B805DADBF6817CE8C64EC1A3A46 ] PAC7311 C:\WINDOWS\system32\DRIVERS\PA707UCM.SYS
10:37:36.0546 0x0e9c PAC7311 - ok
10:37:36.0578 0x0e9c [ F84785660305B9B903FB3BCA8BA29837, BDBDE61076800415D98759077E9E039C80B55DBE68E31F8BF44A909C6C3D3276 ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
10:37:36.0640 0x0e9c Parport - ok
10:37:36.0703 0x0e9c [ BEB3BA25197665D82EC7065B724171C6, 7E71C13BA30CD95CEE8A9CC85E6F48A01F30EDEAADEE69D80AE828BF97E5A5CA ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
10:37:36.0718 0x0e9c PartMgr - ok
10:37:36.0750 0x0e9c [ C2BF987829099A3EAA2CA6A0A90ECB4F, 1DF21EA8E43875CFEECD869407429F82FB449707CFB845718499468E699BAAAA ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
10:37:36.0765 0x0e9c ParVdm - ok
10:37:36.0796 0x0e9c [ 387E8DEDC343AA2D1EFBC30580273ACD, 5F3E642BDB759777E570ED5B22AC7E93CDCD362708F281657AD7BAB44EDEC802 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
10:37:36.0828 0x0e9c PCI - ok
10:37:36.0859 0x0e9c PCIDump - ok
10:37:36.0906 0x0e9c [ 59BA86D9A61CBCF4DF8E598C331F5B82, 822D11C5CE77BFD7B2F25350CCBF92B0B9388EEA6D86ED220B768C720976D839 ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
10:37:36.0937 0x0e9c PCIIde - ok
10:37:36.0984 0x0e9c [ A2A966B77D61847D61A3051DF87C8C97, 6CED7CA26DC62B0AAFC83A2E07336DAD25954491201BB8E06103971F3F0B8B51 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
10:37:37.0015 0x0e9c Pcmcia - ok
10:37:37.0046 0x0e9c PDCOMP - ok
10:37:37.0078 0x0e9c PDFRAME - ok
10:37:37.0093 0x0e9c PDRELI - ok
10:37:37.0109 0x0e9c PDRFRAME - ok
10:37:37.0156 0x0e9c [ 6C14B9C19BA84F73D3A86DBA11133101, 2CFB7E027E43C1B3890985DFD7987B23E4E3CC003E3FD2583E4A8AC1F8A13B26 ] perc2 C:\WINDOWS\system32\DRIVERS\perc2.sys
10:37:37.0156 0x0e9c perc2 - ok
10:37:37.0187 0x0e9c [ F50F7C27F131AFE7BEBA13E14A3B9416, C0498EA65B908C07A734324ED70DB27F434FAAA815DD02F1BC429A3AB6C663D5 ] perc2hib C:\WINDOWS\system32\DRIVERS\perc2hib.sys
10:37:37.0203 0x0e9c perc2hib - ok
10:37:37.0312 0x0e9c [ A3EDBE9053889FB24AB22492472B39DC, 6F2ED6E04BDE2FCA2A8BF9BD2D1D6923DE6EAECB46F582B6C0BD1CF364D65C9E ] PlugPlay C:\WINDOWS\system32\services.exe
10:37:37.0312 0x0e9c PlugPlay - ok
10:37:37.0375 0x0e9c [ FB03F341FF5380394BF2EE52F1979925, 50795312FB3C90FFE3BF6F6C3FCDC489A3C8DA9801F13689C8A7B78C56D571A2 ] Pml Driver HPZ12 C:\WINDOWS\system32\HPZipm12.exe
10:37:37.0390 0x0e9c Pml Driver HPZ12 - ok
10:37:37.0453 0x0e9c [ 02EBBECE9FB4A4811AD3C4BB55CCED0C, 99D42706BAFE3512CA0DD9BE1E33824674E1ADFD93BF1B459943760BBB8A4297 ] PNRPSvc C:\WINDOWS\system32\p2psvc.dll
10:37:37.0453 0x0e9c PNRPSvc - ok
10:37:37.0500 0x0e9c [ AFB8261B56CBA0D86AEB6DF682AF9785, 104D96F1F19DD4CE492064ACC9634406A019EAE20B42D03198E400E661897127 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
10:37:37.0500 0x0e9c PolicyAgent - ok
10:37:37.0578 0x0e9c [ EFEEC01B1D3CF84F16DDD24D9D9D8F99, C5F0C8C66A3AF7E7BB04CEDE4AC5306F8387AB384A2107DC5BE413AAE968EFF1 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
10:37:37.0609 0x0e9c PptpMiniport - ok
10:37:37.0625 0x0e9c [ AFB8261B56CBA0D86AEB6DF682AF9785, 104D96F1F19DD4CE492064ACC9634406A019EAE20B42D03198E400E661897127 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
10:37:37.0625 0x0e9c ProtectedStorage - ok
10:37:37.0671 0x0e9c [ 09298EC810B07E5D582CB3A3F9255424, 35473A1BE25AC289474090EB0806AC6B3035DC33D1F3DF97A14BF1E361AC6AC3 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
10:37:37.0718 0x0e9c PSched - ok
10:37:37.0750 0x0e9c [ 80D317BD1C3DBC5D4FE7B1678C60CADD, DA76804B55D0CAB3DDD01EFC06673764AE4860693375C658B6063FB14AF7F12C ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
10:37:37.0781 0x0e9c Ptilink - ok
10:37:37.0843 0x0e9c [ 153D02480A0A2F45785522E814C634B6, 02B7590F2F4A8FA0B031CDA7A28BD55E7C04A080C1EA810BF3AC3212A62153A6 ] PxHelp20 C:\WINDOWS\system32\Drivers\PxHelp20.sys
10:37:37.0843 0x0e9c PxHelp20 - ok
10:37:37.0890 0x0e9c [ 0A63FB54039EB5662433CABA3B26DBA7, A1FB923EB2D08D89D24E8AD7042BBED7CB1DBDA9A5B77BDD188E9913BADAB0EF ] ql1080 C:\WINDOWS\system32\DRIVERS\ql1080.sys
10:37:37.0906 0x0e9c ql1080 - ok
10:37:37.0937 0x0e9c [ 6503449E1D43A0FF0201AD5CB1B8C706, F1EFC2DE5998615CB182D7984366631FE956AE1ECA9AC777F26FCA2E6F2E05A6 ] Ql10wnt C:\WINDOWS\system32\DRIVERS\ql10wnt.sys
10:37:37.0953 0x0e9c Ql10wnt - ok
10:37:37.0984 0x0e9c [ 156ED0EF20C15114CA097A34A30D8A01, 7490B90D4C88B7A9BADB9473D4033535F054C797ABF6D542CB859DA5C9B2586A ] ql12160 C:\WINDOWS\system32\DRIVERS\ql12160.sys
10:37:38.0015 0x0e9c ql12160 - ok
10:37:38.0046 0x0e9c [ 70F016BEBDE6D29E864C1230A07CC5E6, 895BC2C888F6566086FC1399F499A401D447E57333BC9F9C6DBAFE0F117603D6 ] ql1240 C:\WINDOWS\system32\DRIVERS\ql1240.sys
10:37:38.0093 0x0e9c ql1240 - ok
10:37:38.0171 0x0e9c [ 907F0AEEA6BC451011611E732BD31FCF, F9E7023BD1042963110D0A613054D094437868B20779F23C316A38E4781A6152 ] ql1280 C:\WINDOWS\system32\DRIVERS\ql1280.sys
10:37:38.0203 0x0e9c ql1280 - ok
10:37:38.0250 0x0e9c [ FE0D99D6F31E4FAD8159F690D68DED9C, 998685622ABE631984B7E4DBF91AB3594B1F574378D75EB9F6265F4650470692 ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
10:37:38.0281 0x0e9c RasAcd - ok
10:37:38.0328 0x0e9c [ F5BA6CACCDB66C8F048E867563203246, AFEAD8FC02313F7EBC8F9F39E7ED2868852B480BE3902FA7BD0AFD81492AB243 ] RasAuto C:\WINDOWS\System32\rasauto.dll
10:37:38.0328 0x0e9c RasAuto - ok
10:37:38.0390 0x0e9c [ 11B4A627BC9614B885C4969BFA5FF8A6, EAE0A412A2B0F68919C32A96B3A08CC1A06585E4998819F5C9051745F63FF5AD ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
10:37:38.0390 0x0e9c Rasl2tp - ok
10:37:38.0468 0x0e9c [ F9A7B66EA345726EDB5862A46B1ECCD5, 5D35429D394D36A1692A7E219BA1A85CD8096FEAE0F90BFE036A63118FEDBF57 ] RasMan C:\WINDOWS\System32\rasmans.dll
10:37:38.0484 0x0e9c RasMan - ok
10:37:38.0515 0x0e9c [ 5BC962F2654137C9909C3D4603587DEE, A5CE5653D0105240F5E86CFAAB89E7917D42D939E2F27A5A7D6979289CA651B8 ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
10:37:38.0531 0x0e9c RasPppoe - ok
10:37:38.0546 0x0e9c [ FDBB1D60066FCFBB7452FD8F9829B242, 10A2DACF944BD000032EBA8C095CB3D879CC55B28C377ADF6E52E508E47444DB ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
10:37:38.0562 0x0e9c Raspti - ok
10:37:38.0609 0x0e9c [ 7AD224AD1A1437FE28D89CF22B17780A, 6645235CA27D671954E3557FA37082881C3D7D47492C71264CD8CB8D108EC801 ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
10:37:38.0656 0x0e9c Rdbss - ok
10:37:38.0718 0x0e9c [ 4912D5B403614CE99C28420F75353332, 975341ECD660209987B5E5171B8315E032439E408CBE8A5986E67AF767F373BB ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
10:37:38.0750 0x0e9c RDPCDD - ok
10:37:38.0812 0x0e9c [ 15CABD0F7C00C47C70124907916AF3F1, 66B5C978B7FB6359AD8BAC9F568FE9D469E358FEAB07B1F129BA9E85F1DF723E ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys
10:37:38.0843 0x0e9c rdpdr - ok
10:37:38.0921 0x0e9c [ 43AF5212BD8FB5BA6EED9754358BD8F7, AF330F61CECA4AFA359CEABC5EB3227E6B56A9A2DCE50701381D665122D7356D ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
10:37:38.0937 0x0e9c RDPWD - ok
10:37:39.0000 0x0e9c [ 263AF18AF0F3DB99F574C95F284CCEC9, 2BFA9952E97EFEB386FC56EC2C125080CD12DAC078DBE43C395CB4D9F22165D3 ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
10:37:39.0046 0x0e9c RDSessMgr - ok
10:37:39.0109 0x0e9c [ ED761D453856F795A7FE056E42C36365, EF026585B33415D8FCE94A9F27D7A4396C7C35C88E06A4CF0FEA702401E8597A ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
10:37:39.0109 0x0e9c redbook - ok
10:37:39.0187 0x0e9c [ 0E97EC96D6942CEEC2D188CC2EB69A01, D4253B4420BEF19451A55AB91E4834482181A31A31134F6E2AFE05C8E20C81A5 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
10:37:39.0218 0x0e9c RemoteAccess - ok
10:37:39.0296 0x0e9c [ E4CD1F3D84E1C2CA0B8CF7501E201593, 649CC0B04F94D407EB6B4C7FDE2C6E4D2B1531307BC67C5775E44D66EF2E4F8A ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
10:37:39.0328 0x0e9c RemoteRegistry - ok
10:37:39.0390 0x0e9c [ D8B0B4ADE32574B2D9C5CC34DC0DBBE7, CDF10D3D8ADA7ADB1CC1567BFA986557C6D69F4099B70FDFABD4C3D09E3CA778 ] ROOTMODEM C:\WINDOWS\system32\Drivers\RootMdm.sys
10:37:39.0421 0x0e9c ROOTMODEM - ok
10:37:39.0453 0x0e9c [ 2A02E21867497DF20B8FC95631395169, D89E2D17ED4E1C727847C0E92D2DF68AEB70BF0B956BD2FE024ED70A961759D2 ] RpcLocator C:\WINDOWS\system32\locator.exe
10:37:39.0468 0x0e9c RpcLocator - ok
10:37:39.0531 0x0e9c [ 3127AFBF2C1ED0AB14A1BBB7AAECB85B, ECFBACE3CBF2384948EA1C445BDA3955EB4F44A9874286E6537C67DC1283E5B0 ] RpcSs C:\WINDOWS\System32\rpcss.dll
10:37:39.0531 0x0e9c RpcSs - ok
10:37:39.0593 0x0e9c [ 4BDD71B4B521521499DFD14735C4F398, 7B1498D3C67E56D05B58B7DA319ECB0117C37963AABB0E59B42831C087469DA1 ] RSVP C:\WINDOWS\system32\rsvp.exe
10:37:39.0640 0x0e9c RSVP - ok
10:37:39.0703 0x0e9c [ D507C1400284176573224903819FFDA3, DD0BDB2AB39A8A0A300B6D60FB6A7F5BA08C4DB8F59E0A784FB763EA8AD72AB2 ] rtl8139 C:\WINDOWS\system32\DRIVERS\RTL8139.SYS
10:37:39.0718 0x0e9c rtl8139 - ok
10:37:39.0781 0x0e9c SageDB 5.0 - ok
10:37:39.0812 0x0e9c [ AFB8261B56CBA0D86AEB6DF682AF9785, 104D96F1F19DD4CE492064ACC9634406A019EAE20B42D03198E400E661897127 ] SamSs C:\WINDOWS\system32\lsass.exe
10:37:39.0812 0x0e9c SamSs - ok
10:37:39.0875 0x0e9c [ 1DCAD90CC9C0DDC7D060FD97854F8518, 09223141827E3CE06ECC5DB0D7647D0E8E74D56D271943263EECB1B889F4F796 ] SBFWIMCL C:\WINDOWS\system32\DRIVERS\sbfwim.sys
10:37:39.0875 0x0e9c SBFWIMCL - ok
10:37:39.0890 0x0e9c [ 1DCAD90CC9C0DDC7D060FD97854F8518, 09223141827E3CE06ECC5DB0D7647D0E8E74D56D271943263EECB1B889F4F796 ] SBFWIMCLMP C:\WINDOWS\system32\DRIVERS\SBFWIM.sys
10:37:39.0906 0x0e9c SBFWIMCLMP - ok
10:37:39.0921 0x0e9c SBRE - ok
10:37:39.0953 0x0e9c [ DCEC079FAD95D36C8DD5CB6D779DFE32, F8546552D939A225853A0CE4913701A93738DF02C999D16E141E9A828814BBC6 ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
10:37:40.0015 0x0e9c SCardSvr - ok
10:37:40.0062 0x0e9c [ A050194A44D7FA8D7186ED2F4E8367AE, BCDF56D5A2F9E202DC67E7FE4BCC617BCC0BDFF2D221A621020068B17B2855BB ] Schedule C:\WINDOWS\system32\schedsvc.dll
10:37:40.0125 0x0e9c Schedule - ok
10:37:40.0218 0x0e9c [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
10:37:40.0218 0x0e9c Secdrv - ok
10:37:40.0296 0x0e9c [ BEE4CFD1D48C23B44CF4B974B0B79B2B, DF3B02D713F8A4602BE75F004074D5DF79AFF2D58FF37110B2A6AC29F680758B ] seclogon C:\WINDOWS\System32\seclogon.dll
10:37:40.0296 0x0e9c seclogon - ok
10:37:40.0359 0x0e9c [ 2AAC9B6ED9EDDFFB721D6452E34D67E3, 95D83F054A6610328D56E56CD948A6618C590231853E56FC20E7557DB61384A4 ] SENS C:\WINDOWS\system32\sens.dll
10:37:40.0359 0x0e9c SENS - ok
10:37:40.0437 0x0e9c [ 0F29512CCD6BEAD730039FB4BD2C85CE, 4F98AE390D1B14A755700DD6CEFB9CF921F0404AF2145D2D7E5F52394F87C6A5 ] serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
10:37:40.0484 0x0e9c serenum - ok
10:37:40.0531 0x0e9c [ CF24EB4F0412C82BCD1F4F35A025E31D, B74CB094126F5C23F601C34D53B2DF5BE3E5918230AC9DCFCFFA8E66B3A0FA25 ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
10:37:40.0546 0x0e9c Serial - ok
10:37:40.0640 0x0e9c [ 8E6B8C671615D126FDC553D1E2DE5562, CEEC0067514555D5CA489F50E3D7562FCA8DB8E952C3C878604C9277FC77959F ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
10:37:40.0640 0x0e9c Sfloppy - ok
10:37:40.0703 0x0e9c [ CAD058D5F8B889A87CA3EB3CF624DCEF, A7CDCF44261D1F4D820927253EA8EBB63714B7BAFF8B08DE073507D9A7EEA5BB ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
10:37:40.0718 0x0e9c SharedAccess - ok
10:37:40.0765 0x0e9c [ 2DB7D303C36DDD055215052F118E8E75, BE6E7BBE12A7A4EDF1F1C2935350603970C7426BBCA7A1A6644BB8999123AF17 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
10:37:40.0781 0x0e9c ShellHWDetection - ok
10:37:40.0812 0x0e9c Simbad - ok
10:37:40.0843 0x0e9c [ 7A1A532F14FDE28489DC349C6E404A67, 2BD9F0C54C7107B4D1957F5DB788265CD87602320CF48453B4A2D6F249EEE392 ] SimpTcp C:\WINDOWS\system32\tcpsvcs.exe
10:37:40.0843 0x0e9c SimpTcp - ok
10:37:40.0875 0x0e9c [ 6B33D0EBD30DB32E27D1D78FE946A754, CDA3D082D370B079C06D943DA124D76BAF0C5DB264FB0C893148EF6322D2FABE ] sisagp C:\WINDOWS\system32\DRIVERS\sisagp.sys
10:37:40.0875 0x0e9c sisagp - ok
10:37:40.0937 0x0e9c [ 866D538EBE33709A5C9F5C62B73B7D14, BC94BEB7C17B4FCAC8B5D0D5006A203BC209E0504EECE149651D8691935696CD ] SLIP C:\WINDOWS\system32\DRIVERS\SLIP.sys
10:37:40.0937 0x0e9c SLIP - ok
10:37:41.0015 0x0e9c [ 9BAE383D3116A545758D45D0B994BA32, FA397F459FA5DE2D3A4DB9E54C0983DEAF7C24B4151CB5092A8FDB06FA073921 ] snapman C:\WINDOWS\system32\DRIVERS\snapman.sys
10:37:41.0031 0x0e9c snapman - ok
10:37:41.0093 0x0e9c [ 708A1B41E7E850B2B1309073551CBD53, 4F27F7111F23E7FD9DBA88E3D801493DA9EA58E305E98809F924DFF25DB7EB75 ] SNMP C:\WINDOWS\System32\snmp.exe
10:37:41.0093 0x0e9c SNMP - ok
10:37:41.0125 0x0e9c [ 0702E1D16B7003049918595057F3904F, 9EE4A08635E0F63BA2857F2D972BBC7ED7E0BF007C8E85CE0BDFE7CBFEC1A915 ] SNMPTRAP C:\WINDOWS\System32\snmptrap.exe
10:37:41.0125 0x0e9c SNMPTRAP - ok
10:37:41.0171 0x0e9c [ 83C0F71F86D3BDAF915685F3D568B20E, 10B24723914A5A9E27A592FD58DAE2207B6E49F13A17CD2B1477C51D2D609D2E ] Sparrow C:\WINDOWS\system32\DRIVERS\sparrow.sys
10:37:41.0187 0x0e9c Sparrow - ok
10:37:41.0218 0x0e9c [ AB8B92451ECB048A4D1DE7C3FFCB4A9F, DD17733CBB370FCA08F0296704D7CBEACA3C8F76D0ABE4761C3B1FFDF7481D9E ] splitter C:\WINDOWS\system32\drivers\splitter.sys
10:37:41.0250 0x0e9c splitter - ok
10:37:41.0312 0x0e9c [ 60784F891563FB1B767F70117FC2428F, E0B07F08E60FFBAD36C2E58180F4B2A16DCA47716044CBE0213DF7B74D742F1F ] Spooler C:\WINDOWS\system32\spoolsv.exe
10:37:41.0328 0x0e9c Spooler - ok
10:37:41.0390 0x0e9c [ 352E375AB298C23B0F9BC307652C7F50, 582F8D685905B9482DF00A125594A0B468E4F884DBDE391A985B448DF2C61856 ] SQLAgent$MICROSOFTSMLBIZ C:\Programme\Microsoft SQL Server\MSSQL$MICROSOFTSMLBIZ\Binn\sqlagent.EXE
10:37:41.0421 0x0e9c SQLAgent$MICROSOFTSMLBIZ - ok
10:37:41.0468 0x0e9c [ 50FA898F8C032796D3B1B9951BB5A90F, 1C86273EC19EB96D6DB9CE6670C00683B77C99C42CC2F7E75BC50872B93446B1 ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
10:37:41.0500 0x0e9c sr - ok
10:37:41.0562 0x0e9c [ FE77A85495065F3AD59C5C65B6C54182, EB4BAF992F961B2FD5D24BFCB6BCB2142BC32933139A818835FEAB190E4283BB ] srservice C:\WINDOWS\system32\srsvc.dll
10:37:41.0593 0x0e9c srservice - ok
10:37:41.0671 0x0e9c [ 47DDFC2F003F7F9F0592C6874962A2E7, 17C643BD4EB09B5666FE41817DC785BE04A6E491CE79E8E5A702CDBD98E1BDD7 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
10:37:41.0703 0x0e9c Srv - ok
10:37:41.0765 0x0e9c [ 4DF5B05DFAEC29E13E1ED6F6EE12C500, 2971D7D45D6942D310D47DBD19B9680D2D29527E79B86133C72217FD29259465 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
10:37:41.0765 0x0e9c SSDPSRV - ok
10:37:41.0828 0x0e9c [ A36EE93698802CD899F98BFD553D8185, 224CFED921EA230FF8025D259E34968FD2C0FD34BB3A918FB4B9B8BA42BEA5D3 ] ssmdrv C:\WINDOWS\system32\DRIVERS\ssmdrv.sys
10:37:41.0859 0x0e9c ssmdrv - ok
10:37:41.0968 0x0e9c [ 26EB7ACF476A3461B85F5BCE9A677A4A, 18C5852D59A7FC5C7012554372565B6DFF7C1A2BACBDBE9F3EC9A46C4DE16595 ] STHDA C:\WINDOWS\system32\drivers\sthda.sys
10:37:42.0093 0x0e9c STHDA - ok
10:37:42.0140 0x0e9c [ ED78DFAD8EFCDFBC89500492C4D14645, E642BC209693D0EACDDDD2386B4FFFA4CB1C9AB4FA431796900FC730677E09D4 ] STI Simulator C:\WINDOWS\System32\PAStiSvc.exe
10:37:42.0156 0x0e9c STI Simulator - ok
10:37:42.0218 0x0e9c [ A2DBCC4C8860449DF1AB758EA28B4DE0, 90D46D4D888DF6D58F61F3F9CFD1627D516507B7A668F40EA873579FB487A8D9 ] StillCam C:\WINDOWS\system32\DRIVERS\serscan.sys
10:37:42.0250 0x0e9c StillCam - ok
10:37:42.0328 0x0e9c [ BC2C5985611C5356B24AEB370953DED9, 15CBAB8166827DC098E2B16AB6F49A1441A4CB52AF3588F0AD964CAB596DFE10 ] stisvc C:\WINDOWS\system32\wiaservc.dll
10:37:42.0359 0x0e9c stisvc - ok
10:37:42.0406 0x0e9c [ 77813007BA6265C4B6098187E6ED79D2, 93939120E803C46FBFD577C8FC2E6C7E71C0460E01D25CB29579490640AB50C7 ] streamip C:\WINDOWS\system32\DRIVERS\StreamIP.sys
10:37:42.0421 0x0e9c streamip - ok
10:37:42.0484 0x0e9c [ F0FBF57D64A896720029830176CD6404, 65986727FCFE5FC7C074FD1F3BA9B77C790E32A7BE427388ADD97A84F1DA284D ] Sunplus C:\WINDOWS\system32\Drivers\Bulk504.sys
10:37:42.0515 0x0e9c Sunplus - ok
10:37:42.0578 0x0e9c [ C425F21CCCB35CF6166BCEE7B1132411, 5F49EAFD4B79A06C7BB930D61F7987196897C554AB2BFA53DBFCA3DDA3A2B274 ] susbser C:\WINDOWS\system32\DRIVERS\susbser.sys
10:37:42.0609 0x0e9c susbser - ok
10:37:42.0656 0x0e9c [ 3941D127AEF12E93ADDF6FE6EE027E0F, EA1F0E32E1C5E90FA4AAC421DEBBE086512340758D3217A6334E886BCE638B51 ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
10:37:42.0671 0x0e9c swenum - ok
10:37:42.0703 0x0e9c [ 8CE882BCC6CF8A62F2B2323D95CB3D01, B408550A581F3DA222355964AFA4E976AD8471F0AA37573C42C4948AE5A23A3B ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
10:37:42.0718 0x0e9c swmidi - ok
10:37:42.0750 0x0e9c SwPrv - ok
10:37:42.0796 0x0e9c [ 1FF3217614018630D0A6758630FC698C, 78A3075BBFF5D7ADEAC1527E65ACA8527BFC509DF124D44410BB46C4D96C96BB ] symc810 C:\WINDOWS\system32\DRIVERS\symc810.sys
10:37:42.0828 0x0e9c symc810 - ok
10:37:42.0859 0x0e9c [ 070E001D95CF725186EF8B20335F933C, B98B29FB01741AF3B4BB02C76A4D117EA04FE4CC4F8CDB491F9216931704A6D8 ] symc8xx C:\WINDOWS\system32\DRIVERS\symc8xx.sys
10:37:42.0875 0x0e9c symc8xx - ok
10:37:42.0906 0x0e9c [ 80AC1C4ABBE2DF3B738BF15517A51F2C, CCF82D09C63F4FA98BCBEF3A1DC8C02D4269B78256D0B6213E815D9BBE174432 ] sym_hi C:\WINDOWS\system32\DRIVERS\sym_hi.sys
10:37:42.0937 0x0e9c sym_hi - ok
10:37:42.0984 0x0e9c [ BF4FAB949A382A8E105F46EBB4937058, FE7C114A19D50E37463CDD3605C26105A779EEA79CB92BF98267C7BE809D853B ] sym_u3 C:\WINDOWS\system32\DRIVERS\sym_u3.sys
10:37:43.0015 0x0e9c sym_u3 - ok
10:37:43.0062 0x0e9c [ 8B83F3ED0F1688B4958F77CD6D2BF290, 546D3602183702B4F53E84413CFA2C933D64C8540378E54A8DCD148F3F36A2DA ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
10:37:43.0078 0x0e9c sysaudio - ok
10:37:43.0156 0x0e9c [ 2903FFFA2523926D6219428040DCE6B9, 4F13181931B0499F6C3F08138054DBCD1F84CB9806999A9172B80DE79D446F62 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
10:37:43.0187 0x0e9c SysmonLog - ok
10:37:43.0234 0x0e9c [ 05903CAC4B98908D55EA5774775B382E, AC3666CBD894D737874A5998DC7F46A0A51A7B23B1835FC735B9AD503A2191CC ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
10:37:43.0250 0x0e9c TapiSrv - ok
10:37:43.0312 0x0e9c [ 9AEFA14BD6B182D61E3119FA5F436D3D, EA29E49434585409272E7901AF89771FE9D6E911A7DC44AB3C7020CFF8A44552 ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
10:37:43.0359 0x0e9c Tcpip - ok
10:37:43.0437 0x0e9c [ 4E53BBCC4BE37D7A4BD6EF1098C89FF7, D084EFE07AC200672A1CE7BB8AE736612B3E353271188D26E29EC973E26E1F5F ] Tcpip6 C:\WINDOWS\system32\DRIVERS\tcpip6.sys
10:37:43.0468 0x0e9c Tcpip6 - ok
10:37:43.0500 0x0e9c [ 6471A66807F5E104E4885F5B67349397, F35CBFFB8BB235CCE30EF94A5273333900DD49FD506BF9D55D99A320B8A53A5A ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
10:37:43.0500 0x0e9c TDPIPE - ok
10:37:43.0546 0x0e9c [ C56B6D0402371CF3700EB322EF3AAF61, 7743FA4C734BCE38EFB1CA69BC17364D8421E2CD172F856F7E38E7AE1EE93F2F ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
10:37:43.0562 0x0e9c TDTCP - ok
10:37:43.0593 0x0e9c [ 88155247177638048422893737429D9E, B6D4E8691917946332C2208D01F8C8281978C1AD1E9951C5D99DF0D49AC34B3B ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
10:37:43.0609 0x0e9c TermDD - ok
10:37:43.0671 0x0e9c [ B7DE02C863D8F5A005A7BF375375A6A4, 6DE05A7B28CA5A78D58536347FC47F15883EEDBEF487CEA0117CC280FC582DCC ] TermService C:\WINDOWS\System32\termsrv.dll
10:37:43.0703 0x0e9c TermService - ok
10:37:43.0734 0x0e9c [ 2DB7D303C36DDD055215052F118E8E75, BE6E7BBE12A7A4EDF1F1C2935350603970C7426BBCA7A1A6644BB8999123AF17 ] Themes C:\WINDOWS\System32\shsvcs.dll
10:37:43.0750 0x0e9c Themes - ok
10:37:43.0812 0x0e9c [ 6F66601689163373BDA1A3CB10DFA633, C5167FE036DE6C9A95143D8431B6897F898E21DDC881159C6CF7193AB5EF0C26 ] tifsfilter C:\WINDOWS\system32\DRIVERS\tifsfilt.sys
10:37:43.0812 0x0e9c tifsfilter - ok
10:37:43.0843 0x0e9c [ DEC7D1D20259FEFF19C2A3114D428D61, 3E874D12A78DE9D15DF9B225699F88A630BE99FF09CAA21149E9A6C2D720157F ] timounter C:\WINDOWS\system32\DRIVERS\timntr.sys
10:37:43.0906 0x0e9c timounter - ok
10:37:43.0968 0x0e9c [ 03681A1CE77F51586903869A5AB1DEAB, E2EC0A481412166B654682C2F3D953E96E757466135CBD2D813B967EDB13C721 ] TlntSvr C:\WINDOWS\system32\tlntsvr.exe
10:37:44.0000 0x0e9c TlntSvr - ok
10:37:44.0031 0x0e9c TOMCATWAN - ok
10:37:44.0093 0x0e9c [ D213A9247DC347F305A2D4CC9B951487, 9016F96388BD0D3DE7C50F04C046C1E0A4077680453033D639AD7AA6ED9A511E ] TosIde C:\WINDOWS\system32\DRIVERS\toside.sys
10:37:44.0125 0x0e9c TosIde - ok
10:37:44.0187 0x0e9c [ 626504572B175867F30F3215C04B3E2F, 47E87CE9BC666D5CB5953C5D497DC00A7CC28F8EC0A064B3E47700279C5C4B91 ] TrkWks C:\WINDOWS\system32\trkwks.dll
10:37:44.0203 0x0e9c TrkWks - ok
10:37:44.0296 0x0e9c [ 8F861EDA21C05857EB8197300A92501C, 374FF9464F273610A051B9220C8D20F01FD4DD029095A7BE37244E20C5C8B5BB ] tunmp C:\WINDOWS\system32\DRIVERS\tunmp.sys
10:37:44.0328 0x0e9c tunmp - ok
10:37:44.0406 0x0e9c [ 5787B80C2E3C5E2F56C2A233D91FA2C9, 3774905CF77954DFCECDA5BCC7CDE3D0ED72712BFAAD85ADAE5246306447E46C ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
10:37:44.0406 0x0e9c Udfs - ok
10:37:44.0437 0x0e9c UIUSys - ok
10:37:44.0468 0x0e9c [ 1B698A51CD528D8DA4FFAED66DFC51B9, FC3F12D25EE0E99AFE056502FCCFC052854699C21B99D559FAF1244F206DFB4F ] ultra C:\WINDOWS\system32\DRIVERS\ultra.sys
10:37:44.0484 0x0e9c ultra - ok
10:37:44.0546 0x0e9c [ 402DDC88356B1BAC0EE3DD1580C76A31, 32A686595710336A6BFD54C03F552AE39439611662F84EF5D24193AE5665C6F3 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
10:37:44.0625 0x0e9c Update - ok
10:37:44.0687 0x0e9c [ 1DFD8975D8C89214B98D9387C1125B49, 0B6B268487C8E45E9B86BF4A0A9DB669E0E45D600DE3C82B63F9986CA9E01082 ] upnphost C:\WINDOWS\System32\upnphost.dll
10:37:44.0718 0x0e9c upnphost - ok
10:37:44.0765 0x0e9c [ 9B11E6118958E63E1FEF129466E2BDA7, 97168BCE3F4A9BB9E6500F05E34851FB957B219C598944FADC28AC0011C0503B ] UPS C:\WINDOWS\System32\ups.exe
10:37:44.0796 0x0e9c UPS - ok
10:37:44.0859 0x0e9c [ E919708DB44ED8543A7C017953148330, 226D032912D396117213FC29CD0BB5A8B2F872DD91D92F254F2F1FE392481B61 ] usbaudio C:\WINDOWS\system32\drivers\usbaudio.sys
10:37:44.0890 0x0e9c usbaudio - ok
10:37:44.0953 0x0e9c [ 173F317CE0DB8E21322E71B7E60A27E8, 7042441BA63AE38AE9D7BE0BC5CA7404FC9EE5BB3F084604A68F01E82769652A ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
10:37:44.0953 0x0e9c usbccgp - ok
10:37:44.0984 0x0e9c [ 65DCF09D0E37D4C6B11B5B0B76D470A7, 90EBA8BAF45932B453D905EDF2BDDDF3A432BFD50B9F7DF58CDEAE98D11C2E2F ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
10:37:45.0031 0x0e9c usbehci - ok
10:37:45.0093 0x0e9c [ 1AB3CDDE553B6E064D2E754EFE20285C, A99C4528C4227B1E96847614745AAFACD3C5F1BDFE435214DBF78740FFB300FE ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
10:37:45.0093 0x0e9c usbhub - ok
10:37:45.0140 0x0e9c [ A717C8721046828520C9EDF31288FC00, 1530BBE832EDBB0974AD89D723A03FF7A0094B368992D73C2C3E62A181DF1E0A ] usbprint C:\WINDOWS\system32\DRIVERS\usbprint.sys
10:37:45.0156 0x0e9c usbprint - ok
10:37:45.0187 0x0e9c [ A0B8CF9DEB1184FBDD20784A58FA75D4, D8AFD45BD9CF7B02F2554AA6085194DE82893AF794EDF479BC9B9E9C1758DC75 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
10:37:45.0203 0x0e9c usbscan - ok
10:37:45.0250 0x0e9c [ A32426D9B14A089EAA1D922E0C5801A9, ED1DC52EE45F8EAD3AEC4B1F817BB25634141CF48295494C5947DCE6CF7A9817 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
10:37:45.0265 0x0e9c USBSTOR - ok
10:37:45.0328 0x0e9c [ 26496F9DEE2D787FC3E61AD54821FFE6, 8BE7FF647470B9A951CBB478FAF83D657A15CC78037F42348A6B738F21D523DA ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
10:37:45.0343 0x0e9c usbuhci - ok
10:37:45.0406 0x0e9c [ B4D7B7AD8A9F7C063C5CC3E2C1A0724E, CFA47A71403419CA7C94333B4F7766DFC97C5DCDBC3AD1B106044B93C979A5C5 ] usb_rndisx C:\WINDOWS\system32\DRIVERS\usb8023x.sys
10:37:45.0421 0x0e9c usb_rndisx - ok
10:37:45.0484 0x0e9c [ D81CD7E761C1A52DEC20F0D4EAEA3259, 95629AD28D6D81D5EB06B9DE9D85C454421A9301B50721E839F8C58BD130CC8C ] UxTuneUp C:\WINDOWS\System32\uxtuneup.dll
10:37:45.0484 0x0e9c UxTuneUp - ok
10:37:45.0546 0x0e9c [ 9EBEE4A060C5364A31AEAA04EAC2AF1E, 695332A57F65E2F5854043691C1F8FC20FF97A60BB72A90095DCB113A5AE8D33 ] VComm C:\WINDOWS\system32\DRIVERS\VComm.sys
10:37:45.0546 0x0e9c VComm - ok
10:37:45.0609 0x0e9c [ EF0D45ED806B0C9AE9756BFEECB077ED, FB7C006C2D88B361AB971F78F86169263D595EEB75163F5774FEA2208055109F ] VcommMgr C:\WINDOWS\system32\Drivers\VcommMgr.sys
10:37:45.0625 0x0e9c VcommMgr - ok
10:37:45.0671 0x0e9c [ 0D3A8FAFCEACD8B7625CD549757A7DF1, B9CFDEFCD66AA139F3DC2F967B184669532922563AD5A71769BABDC4370D065E ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
10:37:45.0671 0x0e9c VgaSave - ok
10:37:45.0734 0x0e9c [ 754292CE5848B3738281B4F3607EAEF4, B0DCC9E9F8F78671FF878B493264C3B1DD2ED4A7167E3F5495F66ABF5FACB86C ] viaagp C:\WINDOWS\system32\DRIVERS\viaagp.sys
10:37:45.0781 0x0e9c viaagp - ok
10:37:45.0843 0x0e9c [ 3B3EFCDA263B8AC14FDF9CBDD0791B2E, FC7FFD53FCC0F81587EFF26A43C141D25C43DBC68311520CE2BCDD739CA58CA9 ] ViaIde C:\WINDOWS\system32\DRIVERS\viaide.sys
10:37:45.0859 0x0e9c ViaIde - ok
10:37:45.0937 0x0e9c [ 233509E1AD024A3E451D8DF6795EEED5, BF79E746D4E237989CFCD934097FC8F2553EC2869A53DEC1A79896BD062D09A6 ] vmfilter303 C:\WINDOWS\system32\drivers\vmfilter303.sys
10:37:46.0078 0x0e9c vmfilter303 - ok
10:37:46.0156 0x0e9c [ A5A712F4E880874A477AF790B5186E1D, FE885ED04C3EAFC379787F836738A2769E43D07CF52DD917D90C38E001957A5E ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
10:37:46.0171 0x0e9c VolSnap - ok
10:37:46.0234 0x0e9c [ 1C8A783E90C34D205596F1AB4A97E261, 0D0ACA939B38F0B5F7350D74E49817BD590E6AAC702A051354073B5265FDA6F0 ] vsbus C:\WINDOWS\system32\DRIVERS\vsb.sys
10:37:46.0265 0x0e9c vsbus - ok
10:37:46.0296 0x0e9c [ 3377DAA1CB8CAC46A538C236F5F3D58F, 6F2D45DF5247ACE69062840D8801B46E62BF77041A4F2BC19ABE1D0758450784 ] vserial C:\WINDOWS\system32\DRIVERS\vserial.sys
10:37:46.0343 0x0e9c vserial - ok
10:37:46.0406 0x0e9c [ 68F106273BE29E7B7EF8266977268E78, 1488AB7A654EBC94C73E1D494067189ACB95BC233980110CAC4C0297CDC4115A ] VSS C:\WINDOWS\System32\vssvc.exe
10:37:46.0468 0x0e9c VSS - ok
10:37:46.0531 0x0e9c [ 16409C468CEEE99B6B129FCAA5C0F206, AD241E5AF9DE82994F2C3DFB436A02CA8577C49AFB6EDFE2A98B152F843C764C ] vulfnths C:\WINDOWS\System32\Drivers\vulfnth.sys
10:37:46.0562 0x0e9c vulfnths - ok
10:37:46.0625 0x0e9c [ 9FCAD546C6285D5073FB926709203049, 067F25EB0254B2E309EBBCEBFADA098DB250FCB9D915D79647A24A23EA87C0F3 ] vulfntrs C:\WINDOWS\System32\Drivers\vulfntr.sys
10:37:46.0656 0x0e9c vulfntrs - ok
10:37:46.0718 0x0e9c [ 7B353059E665F8B7AD2BBEAEF597CF45, 84A4311F18A4B8DCB364741DEA7D18E2363F19564B2EF25214965DC729527068 ] w32time C:\WINDOWS\system32\w32time.dll
10:37:46.0734 0x0e9c w32time - ok
10:37:46.0781 0x0e9c [ E20B95BAEDB550F32DD489265C1DA1F6, 5589B2067E6C9FBA290D8C5EADDC198EBAF39C50C3CD7D2BC5CDA7CBFBC445E5 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
10:37:46.0812 0x0e9c Wanarp - ok
10:37:46.0890 0x0e9c [ 0A716C08CB13C3A8F4F51E882DBF7416, 66FFDC9151CB3676B5DF073431DE055E7F2CDA5722F7EAAC6EC45F2CF9910882 ] wanatw C:\WINDOWS\system32\DRIVERS\wanatw4.sys
10:37:46.0921 0x0e9c wanatw - ok
10:37:46.0968 0x0e9c [ 46A247F6617526AFE38B6F12F5512120, 24931910E3D678829A7A6CF1140CFE428E05057A4D3A14086ED66B884E847D2D ] wceusbsh C:\WINDOWS\system32\DRIVERS\wceusbsh.sys
10:37:46.0984 0x0e9c wceusbsh - ok
10:37:47.0000 0x0e9c WDICA - ok
10:37:47.0046 0x0e9c [ 6768ACF64B18196494413695F0C3A00F, 3A8F8586F1D997D19A8478345338D2AECD785AEABDB61531DD3F92003D3230A5 ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
10:37:47.0062 0x0e9c wdmaud - ok
10:37:47.0125 0x0e9c [ 81727C9873E3905A2FFC1EBD07265002, 6AC2383A1DCBB7FA3DB90FBB874C8E1819F5B7492717FF41E303EFC7BF72F93E ] WebClient C:\WINDOWS\System32\webclnt.dll
10:37:47.0125 0x0e9c WebClient - ok
10:37:47.0250 0x0e9c [ 6F3F3973D97714CC5F906A19FE883729, 7817118BE94D0F6FAE0F9CE48AD70FFE0AEF886CCE09C666768FAB61047F992F ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
10:37:47.0265 0x0e9c winmgmt - ok
10:37:47.0390 0x0e9c [ C51B4A5C05A5475708E3C81C7765B71D, F776D2680BD3407307B7072626F78460361FC5BC38623C9E16F394D300AB25DE ] WmdmPmSN C:\WINDOWS\system32\MsPMSNSv.dll
10:37:47.0421 0x0e9c WmdmPmSN - ok
10:37:47.0500 0x0e9c [ FFA4D901D46D07A5BAB2D8307FBB51A6, 53C6D04D111EDF774C7F7EEB8D032B372E6244774D56B1B34CF1236027EC9450 ] Wmi C:\WINDOWS\System32\advapi32.dll
10:37:47.0531 0x0e9c Wmi - ok
10:37:47.0593 0x0e9c [ 93908111BA57A6E60EC2FA2DE202105C, F395F25F18D15C6B9FEDB45FD31E10295FFE5517E2BC86ACAC11904EA0664BE2 ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
10:37:47.0593 0x0e9c WmiApSrv - ok
10:37:47.0703 0x0e9c [ BF05650BB7DF5E9EBDD25974E22403BB, AF173D89B768CFC7AB03DFADD4F049CAC40AC59A0C9208AF5AB92CB368983077 ] WMPNetworkSvc C:\Programme\Windows Media Player\WMPNetwk.exe
10:37:47.0796 0x0e9c WMPNetworkSvc - ok
10:37:47.0859 0x0e9c [ CF4DEF1BF66F06964DC0D91844239104, CC1D9CECE2056D29A9651D51BB57C3F4F9BF9E90A4808CF7496C683C874FBD51 ] WpdUsb C:\WINDOWS\system32\DRIVERS\wpdusb.sys
10:37:47.0890 0x0e9c WpdUsb - ok
10:37:48.0062 0x0e9c [ B800EEC15851597405784126C407188C, 78FE6A9CBFC2C10DB88D5D8616DBFD848849630907906D06199C14DC4F6C152D ] WPFFontCache_v0400 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
10:37:48.0296 0x0e9c WPFFontCache_v0400 - ok
10:37:48.0390 0x0e9c [ 6ABE6E225ADB5A751622A9CC3BC19CE8, 4061C5D0F051DFF1730E2A3BFC1CCA97B29602FC50F10F6B44D93B0D28F42024 ] WS2IFSL C:\WINDOWS\System32\drivers\ws2ifsl.sys
10:37:48.0421 0x0e9c WS2IFSL - ok
10:37:48.0484 0x0e9c [ 300B3E84FAF1A5C1F791C159BA28035D, 0194856BDF94C1F274AF70AD558290ACDACDDEA331BD66FEB8E167ABD1E36786 ] wscsvc C:\WINDOWS\system32\wscsvc.dll
10:37:48.0484 0x0e9c wscsvc - ok
10:37:48.0562 0x0e9c [ 0091D78C5F8FDE0CDF2B214823DE6E48, 879334B8F4090DD3E562AB76E2510C1D2F5D2557DCCECAF4E27A763D8C6AB740 ] WSIMD C:\WINDOWS\system32\DRIVERS\wsimd.sys
10:37:48.0562 0x0e9c WSIMD - ok
10:37:48.0609 0x0e9c [ C98B39829C2BBD34E454150633C62C78, 71B60EA3AD0E2637917D528C6A9E7ECF2949E3E5E91036AA5BBADA95BD725511 ] WSTCODEC C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
10:37:48.0625 0x0e9c WSTCODEC - ok
10:37:48.0687 0x0e9c [ 7B4FE05202AA6BF9F4DFD0E6A0D8A085, A1DB8909FA73337DB613D01824945485186654364A4DF129B8CB913CF87D1D2E ] wuauserv C:\WINDOWS\system32\wuauserv.dll
10:37:48.0703 0x0e9c wuauserv - ok
10:37:48.0781 0x0e9c [ F15FEAFFFBB3644CCC80C5DA584E6311, 79B3E9AF35976CE49921E9BEA3BA3B4A8AF762FD3F284B62954038B5FFB32471 ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
10:37:48.0796 0x0e9c WudfPf - ok
10:37:48.0828 0x0e9c [ 28B524262BCE6DE1F7EF9F510BA3985B, AEFF02B899801A63CBB262757C3D4369E38BFF0690BD085DE60E873DFBE3C3F4 ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
10:37:48.0875 0x0e9c WudfRd - ok
10:37:48.0921 0x0e9c [ 05231C04253C5BC30B26CBAAE680ED89, 5C03C2D7E0B573646D32F4093E2FF2C3BA391C39F5BA37D67F69D38E357FCC3D ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
10:37:48.0937 0x0e9c WudfSvc - ok
10:37:49.0015 0x0e9c [ C4F109C005F6725162D2D12CA751E4A7, AC996B44338328BDD4442FE48406F286A64526F0EC77BE00A19FA7FDB0407CFE ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
10:37:49.0109 0x0e9c WZCSVC - ok
10:37:49.0156 0x0e9c [ 0ADA34871A2E1CD2CAAFED1237A47750, 45BEF8649078BD74C1A347B5F2D3A1958E5A7DCD6C6BA8A2E0CAD277A929C64E ] xmlprov C:\WINDOWS\System32\xmlprov.dll
10:37:49.0218 0x0e9c xmlprov - ok
10:37:49.0281 0x0e9c [ 3DE80BAA4AF21883CF938197D508B848, 79BB2674765E5E90FC43745979578F22274BE6194CD372F2A9C9D25B95C13B9B ] ZSMC303 C:\WINDOWS\system32\Drivers\usbVM303.sys
10:37:49.0359 0x0e9c ZSMC303 - ok
10:37:49.0484 0x0e9c ================ Scan global ===============================
10:37:49.0531 0x0e9c [ 2C60091CA5F67C3032EAB3B30390C27F, 9E205C8E67F4B61FCFA2A82AA1968D522C3B6410D7075BE813F7F1564D61632E ] C:\WINDOWS\system32\basesrv.dll
10:37:49.0609 0x0e9c [ E62178BC21EAC63A3B9A2DBD46C1B505, CAA5480CC4DAA37758F0CF445F865FD6F4630080B044EF2E606C2F62DAA4061A ] C:\WINDOWS\system32\winsrv.dll
10:37:49.0640 0x0e9c [ E62178BC21EAC63A3B9A2DBD46C1B505, CAA5480CC4DAA37758F0CF445F865FD6F4630080B044EF2E606C2F62DAA4061A ] C:\WINDOWS\system32\winsrv.dll
10:37:49.0687 0x0e9c [ A3EDBE9053889FB24AB22492472B39DC, 6F2ED6E04BDE2FCA2A8BF9BD2D1D6923DE6EAECB46F582B6C0BD1CF364D65C9E ] C:\WINDOWS\system32\services.exe
10:37:49.0703 0x0e9c [ Global ] - ok
10:37:49.0718 0x0e9c ================ Scan MBR ==================================
10:37:49.0734 0x0e9c [ C13EBA24706976A0DC06E36798503676 ] \Device\Harddisk0\DR0
10:37:49.0734 0x0e9c Suspicious mbr (Forged): \Device\Harddisk0\DR0
10:37:49.0765 0x0e9c \Device\Harddisk0\DR0 - detected Rootkit.Boot.Sinowal.a ( 0 )
10:37:49.0765 0x0e9c \Device\Harddisk0\DR0 ( Rootkit.Boot.Sinowal.a ) - infected
10:37:52.0125 0x0e9c ================ Scan VBR ==================================
10:37:52.0156 0x0e9c [ 357DA4F3EDB2D7832997A5800F8E68BD ] \Device\Harddisk0\DR0\Partition1
10:37:52.0156 0x0e9c \Device\Harddisk0\DR0\Partition1 - ok
10:37:52.0156 0x0e9c Waiting for KSN requests completion. In queue: 17
10:37:53.0156 0x0e9c Waiting for KSN requests completion. In queue: 17
10:37:54.0156 0x0e9c Waiting for KSN requests completion. In queue: 17
10:37:55.0171 0x0e9c AV detected via SS1: Avira AntiVir PersonalEdition Classic, 0.0.0.0, enabled, updated
10:37:55.0171 0x0e9c AV detected via SS1: Avira AntiVir PersonalEdition Classic, 0.0.0.0, enabled, updated
10:37:55.0171 0x0e9c AV detected via SS1: Avira AntiVir PersonalEdition Classic, 0.0.0.0, enabled, updated
10:37:55.0171 0x0e9c AV detected via SS1: Avira AntiVir PersonalEdition Classic, 0.0.0.0, enabled, updated
10:37:55.0171 0x0e9c AV detected via SS1: Avira AntiVir PersonalEdition Classic, 0.0.0.0, enabled, updated
10:37:55.0171 0x0e9c AV detected via SS1: Avira AntiVir PersonalEdition Classic, 0.0.0.0, enabled, updated
10:37:55.0171 0x0e9c AV detected via SS1: Avira Desktop, 14.0.0.335, enabled, updated
10:37:55.0171 0x0e9c AV detected via SS1: Avira AntiVir PersonalEdition Classic, 0.0.0.0, enabled, updated
10:37:55.0171 0x0e9c AV detected via SS1: Avira AntiVir PersonalEdition Classic, 0.0.0.0, enabled, updated
10:37:55.0171 0x0e9c AV detected via SS1: Avira AntiVir PersonalEdition Classic, 0.0.0.0, enabled, outofdate
10:37:55.0171 0x0e9c AV detected via SS1: Avira AntiVir PersonalEdition Classic, 0.0.0.0, enabled, updated
10:37:55.0171 0x0e9c AV detected via SS1: Avira AntiVir PersonalEdition Classic, 0.0.0.0, enabled, updated
10:37:55.0171 0x0e9c AV detected via SS1: Avira AntiVir PersonalEdition Classic, 0.0.0.0, enabled, updated
10:37:55.0171 0x0e9c AV detected via SS1: Avira AntiVir PersonalEdition Classic, 0.0.0.0, enabled, updated
10:37:55.0171 0x0e9c AV detected via SS1: Avira AntiVir PersonalEdition Classic, 0.0.0.0, enabled, updated
10:37:55.0171 0x0e9c AV detected via SS1: Avira AntiVir PersonalEdition Classic, 0.0.0.0, enabled, updated
10:37:55.0171 0x0e9c AV detected via SS1: Avira AntiVir PersonalEdition Classic, 0.0.0.0, enabled, updated
10:37:55.0171 0x0e9c AV detected via SS1: Avira AntiVir PersonalEdition Classic, 0.0.0.0, enabled, updated
10:37:55.0171 0x0e9c AV detected via SS1: Avira AntiVir PersonalEdition Classic, 0.0.0.0, enabled, updated
10:37:55.0171 0x0e9c AV detected via SS1: Avira AntiVir PersonalEdition Classic, 0.0.0.0, enabled, updated
10:37:55.0171 0x0e9c AV detected via SS1: Avira AntiVir PersonalEdition Classic, 0.0.0.0, enabled, updated
10:37:55.0171 0x0e9c AV detected via SS1: Avira AntiVir PersonalEdition Classic, 0.0.0.0, enabled, updated
10:37:55.0171 0x0e9c AV detected via SS1: Avira AntiVir PersonalEdition Classic, 0.0.0.0, enabled, updated
10:37:55.0171 0x0e9c AV detected via SS1: Avira AntiVir PersonalEdition Classic, 0.0.0.0, enabled, updated
10:37:55.0203 0x0e9c Win FW state via NFM: enabled
10:37:57.0531 0x0e9c ============================================================
10:37:57.0531 0x0e9c Scan finished
10:37:57.0531 0x0e9c ============================================================
10:37:57.0562 0x0b70 Detected object count: 1
10:37:57.0562 0x0b70 Actual detected object count: 1
10:38:31.0484 0x0b70 \Device\Harddisk0\DR0 ( Rootkit.Boot.Sinowal.a ) - skipped by user
10:38:31.0484 0x0b70 \Device\Harddisk0\DR0 ( Rootkit.Boot.Sinowal.a ) - User select action: Skip
10:38:48.0390 0x0a48 Deinitialize success
Peter Hermes |
|
04.10.2013, 22:24
| #19 | |
| /// the machine /// TB-Ausbilder | Virus „BOO/Sinowal.A“ lässt sich nicht entfernen Nochmal laufen lassen, wähle Cure, poste dann bitte das Logfile, sowie das Log eines frischen Scan smit TDSSKiller. Und ein FRST log bitte. Zitat:
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
05.10.2013, 20:08
| #20 |
| | Virus „BOO/Sinowal.A“ lässt sich nicht entfernen Hallo Schrauber, ich ahne wovon gesprochen wird und davon habe ich 7 und mittlerweils 6 Enkel. Ich glaube du hast dem BOO/.. den Garaus gemacht. Hier nun die scan s. als erste FRST (Addition kann ich nicht finden) und ich muß wohl die Anwort in drei Teilen versenden. FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 03-10-2013
Ran by Peter xxxxx (administrator) on xxxxx on 05-10-2013 20:22:47
Running from C:\Dokumente und Einstellungen\Peter xxxxx\Eigene Dateien\Downloads
Microsoft Windows XP Professional Service Pack 3 (X86) OS Language: German Standard
Internet Explorer Version 8
Boot Mode: Normal
==================== Processes (Whitelisted) ===================
(Avira Operations GmbH & Co. KG) C:\Programme\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Programme\Avira\AntiVir Desktop\avguard.exe
(AOL LLC) C:\Programme\Gemeinsame Dateien\AOL\ACS\AOLAcsd.exe
(APN LLC.) C:\Programme\AskPartnerNetwork\Toolbar\apnmcp.exe
(Oracle Corporation) C:\Programme\Java\jre7\bin\jqs.exe
(Microsoft Corporation) C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7Debug\mdm.exe
() C:\Programme\Sage\SageDB 5.0\bin\mysqld-nt.exe
(Microsoft Corporation) C:\WINDOWS\system32\tcpsvcs.exe
(Microsoft Corporation) C:\WINDOWS\System32\snmp.exe
(AOL Inc.) C:\Programme\Gemeinsame Dateien\AOL\1189342388\ee\AOLSoftware.exe
(RealNetworks, Inc.) C:\Programme\Gemeinsame Dateien\Real\Update_OB\realsched.exe
(Avira Operations GmbH & Co. KG) C:\Programme\Avira\AntiVir Desktop\avgnt.exe
(Oracle Corporation) C:\Programme\Gemeinsame Dateien\Java\Java Update\jusched.exe
(Apple Inc.) C:\Programme\QuickTime\qttask.exe
(Microsoft Corporation) C:\Programme\Microsoft ActiveSync\wcescomm.exe
(AOL, LLC.) C:\Programme\AOL 9.0 VRb\waol.exe
(Microsoft Corporation) C:\PROGRA~1\MI3AA1~1\rapimgr.exe
(McAfee, Inc.) C:\Programme\McAfee Security Scan\3.0.285\SSScheduler.exe
(Avira Operations GmbH & Co. KG) C:\Programme\Avira\AntiVir Desktop\avshadow.exe
(Avira Operations GmbH & Co. KG) C:\Programme\Avira\AntiVir Desktop\avmailc.exe
(Avira Operations GmbH & Co. KG) C:\Programme\Avira\AntiVir Desktop\AVWEBGRD.EXE
(Microsoft Corporation) C:\WINDOWS\system32\wscntfy.exe
(AOL, LLC.) C:\Programme\AOL 9.0 VRb\shellmon.exe
(Google Inc.) C:\Dokumente und Einstellungen\Peter xxxxx\Lokale Einstellungen\Anwendungsdaten\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Dokumente und Einstellungen\Peter xxxxx\Lokale Einstellungen\Anwendungsdaten\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Dokumente und Einstellungen\Peter xxxxx\Lokale Einstellungen\Anwendungsdaten\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Dokumente und Einstellungen\Peter xxxxx\Lokale Einstellungen\Anwendungsdaten\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Dokumente und Einstellungen\Peter xxxxx\Lokale Einstellungen\Anwendungsdaten\Google\Chrome\Application\chrome.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [HostManager] - C:\Programme\Gemeinsame Dateien\AOL\1189342388\ee\AOLSoftware.exe [41800 2010-03-08] (AOL Inc.)
HKLM\...\Run: [TkBellExe] - C:\Programme\Gemeinsame Dateien\Real\Update_OB\realsched.exe [185896 2007-06-05] (RealNetworks, Inc.)
HKLM\...\Run: [avgnt] - C:\Programme\Avira\AntiVir Desktop\avgnt.exe [681032 2013-10-01] (Avira Operations GmbH & Co. KG)
HKLM\...\Run: [SunJavaUpdateSched] - C:\Programme\Gemeinsame Dateien\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM\...\Run: [Adobe ARM] - C:\Programme\Gemeinsame Dateien\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-09-05] (Adobe Systems Incorporated)
HKLM\...\Run: [QuickTime Task] - C:\Programme\QuickTime\qttask.exe [421888 2012-09-29] (Apple Inc.)
HKLM\...\Policies\Explorer: [NoStrCmpLogical] 0
HKCU\...\Run: [H/PC Connection Agent] - C:\Programme\Microsoft ActiveSync\wcescomm.exe [1289000 2006-11-13] (Microsoft Corporation)
HKCU\...\Run: [AOL Fast Start] - C:\Programme\AOL 9.0 VRb\AOL.EXE [50480 2007-06-21] (AOL, LLC.)
HKCU\...\Policies\Explorer: [MaxRecentDocs] 26
HKCU\...\Policies\Explorer: [NoSharedDocuments] 0x01000000
HKCU\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\Administrator\...\Run: [AOL Fast Start] - C:\PROGRA~1\AOL9~4.0VR\AOL.EXE [ 2007-06-21] (AOL, LLC.)
HKU\Monika xxxxx\...\Run: [Uniblue RegistryBooster 2009] - C:\Programme\Uniblue\RegistryBooster\RegistryBooster.exe [ 2008-08-26] (Uniblue Software)
HKU\Monika xxxxx\...\Run: [AOL Fast Start] - C:\Programme\AOL 9.0 VRa\AOL.EXE [ 2007-06-21] (AOL, LLC.)
HKU\Ulrike xxxxx\...\Run: [swg] - "C:\Programme\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
HKU\Ulrike xxxxx\...\Run: [H/PC Connection Agent] - C:\Programme\Microsoft ActiveSync\wcescomm.exe [ 2006-11-13] (Microsoft Corporation)
HKU\Ulrike xxxxx\...\Run: [Uniblue RegistryBooster 2] - C:\Programme\Uniblue\RegistryBooster 2\RegistryBooster.exe /S
HKU\Ulrike xxxxx\...\Run: [Google Update] - C:\Dokumente und Einstellungen\Ulrike xxxxx\Lokale Einstellungen\Anwendungsdaten\Google\Update\GoogleUpdate.exe [ 2009-06-06] (Google Inc.)
Lsa: [Authentication Packages] msv1_0 nwprovau
Startup: C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart\McAfee Security Scan Plus.lnk
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Programme\McAfee Security Scan\3.0.285\SSScheduler.exe (McAfee, Inc.)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = hxxp://www.google.com/search?q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd={SUB_PRD}&clcid={SUB_CLSID}&pver={SUB_PVER}&ar=home
HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm
SearchScopes: HKLM - DefaultScope {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL =
SearchScopes: HKCU - DefaultScope {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL =
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search
BHO: No Name - {41564952-412D-5637-00A7-7A786E7484D7} - No File
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programme\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Programme\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - AOL Toolbar - {ba00b7b1-0351-477a-b948-23e3ee5a73d4} - No File
Toolbar: HKLM - No Name - {41564952-412D-5637-00A7-7A786E7484D7} - No File
Toolbar: HKCU -&Adresse - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\Windows\system32\browseui.dll (Microsoft Corporation)
Toolbar: HKCU - No Name - {41564952-412D-5637-00A7-7A786E7484D7} - No File
Toolbar: HKCU -AOL Toolbar - {BA00B7B1-0351-477A-B948-23E3EE5A73D4} - No File
DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} hxxp://appldnld.apple.com.edgesuite.net/content.info.apple.com/QuickTime/qtactivex/qtplugin.cab
DPF: {05CA9FB0-3E3E-4B36-BF41-0E3A5CAA8CD8} hxxp://download.microsoft.com/download/E/3/9/E39C664F-A8E3-4F69-A109-1AE9849204EE/OGAControl.cab
DPF: {1B00725B-C455-4DE6-BFB6-AD540AD427CD} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
DPF: {6218F7B5-0D3A-48BA-AE4C-49DCFA63D400} hxxp://www.myheritage.de/Genoogle/Components/ActiveX/SearchEngineQuery.dll
DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} hxxp://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1379052400312
DPF: {73ECB3AA-4717-450C-A2AB-D00DAD9EE203} hxxp://h20614.www2.hp.com/ediags/gmd/Install/Cab/hpdetect119b.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/products/plugin/autodl/jinstall-170-windows-i586.cab
DPF: {CAFEEFAC-0017-0000-0011-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_11-windows-i586.cab
DPF: {CAFEEFAC-0017-0000-0021-ABCDEFFEDCBA} hxxp://java.sun.com/products/plugin/autodl/jinstall-170-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_21-windows-i586.cab
DPF: {CF84DAC5-A4F5-419E-A0BA-C01FFD71112F} hxxp://content.systemrequirementslab.com.s3.amazonaws.com/global/bin/srldetect_intel_4.5.11.0.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
Handler: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler: ipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation)
Handler: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Winsock: Catalog5 05 C:\WINDOWS\system32\pnrpnsp.dll [58880] (Microsoft Corporation)
Winsock: Catalog5 06 C:\WINDOWS\system32\pnrpnsp.dll [58880] (Microsoft Corporation)
Winsock: Catalog9 01 C:\Programme\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 02 C:\Programme\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 03 C:\Programme\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 04 C:\Programme\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 66 C:\Programme\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
FireFox:
========
FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_8_800_94.dll ()
FF Plugin: @Google.com/GoogleEarthPlugin - C:\Programme\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin: @java.com/DTPlugin,version=10.40.2 - C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.40.2 - C:\Programme\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/OfficeLive,version=1.5 - C:\Programme\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin: @microsoft.com/WPF,version=3.5 - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @real.com/nppl3260;version=6.0.11.2768 - C:\Programme\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprjplug;version=1.0.2.2826 - C:\Programme\Real\RealPlayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprpjplug;version=6.0.12.1578 - C:\Programme\Real\RealPlayer\Netscape6\nprpjplug.dll (RealNetworks, Inc.)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Programme\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Programme\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: Adobe Reader - C:\Programme\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Dokumente und Einstellungen\Peter xxxxx\Lokale Einstellungen\Anwendungsdaten\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Dokumente und Einstellungen\Peter xxxxx\Lokale Einstellungen\Anwendungsdaten\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF Extension: Microsoft .NET Framework Assistant - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
Chrome:
=======
CHR HomePage: hxxp://feed.snapdo.com/?publisher=SnapdoGOblidooYB&dpid=GOB1&co=DE&userid=a835d0f9-e975-837b-5b1b-01c237ab3265&searchtype=hp&installDate=29/09/2013
CHR DefaultSearchURL: (Google) - {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}
CHR DefaultSuggestURL: (Google) - {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}sugkey={google:suggestAPIKeyParameter}
CHR Plugin: (Shockwave Flash) - C:\Dokumente und Einstellungen\Peter xxxxx\Lokale Einstellungen\Anwendungsdaten\Google\Chrome\Application\29.0.1547.66\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Dokumente und Einstellungen\Peter xxxxx\Lokale Einstellungen\Anwendungsdaten\Google\Chrome\Application\29.0.1547.66\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Dokumente und Einstellungen\Peter xxxxx\Lokale Einstellungen\Anwendungsdaten\Google\Chrome\Application\29.0.1547.66\pdf.dll ()
CHR Plugin: (Microsoft\u00AE DRM) - C:\Programme\Windows Media Player\npdrmv2.dll (Microsoft Corporation)
CHR Plugin: (Windows Media Player Plug-in Dynamic Link Library) - C:\Programme\Windows Media Player\npdsplay.dll (Microsoft Corporation (written by Digital Renaissance Inc.))
CHR Plugin: (Microsoft\u00AE DRM) - C:\Programme\Windows Media Player\npwmsdrm.dll (Microsoft Corporation)
CHR Plugin: (Adobe Acrobat) - C:\Programme\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll No File
CHR Plugin: (Google Earth Plugin) - C:\Programme\Google\Google Earth\plugin\npgeplugin.dll (Google)
CHR Plugin: (Google Update) - C:\Programme\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
CHR Plugin: (Java(TM) Platform SE 7 U21) - C:\Programme\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
CHR Plugin: (Microsoft Office Live Plug-in for Firefox) - C:\Programme\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
CHR Plugin: (RealPlayer(tm) G2 LiveConnect-Enabled Plug-In (32-bit) ) - C:\Programme\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
CHR Plugin: (RealJukebox NS Plugin) - C:\Programme\Real\RealPlayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
CHR Plugin: (RealPlayer Version Plugin) - C:\Programme\Real\RealPlayer\Netscape6\nprpjplug.dll (RealNetworks, Inc.)
CHR Plugin: (MetaStream 3 Plugin) - C:\Programme\Viewpoint\Viewpoint Experience Technology\npViewpoint.dll No File
CHR Plugin: (Shockwave Flash) - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_8_800_94.dll ()
CHR Plugin: (Windows Presentation Foundation) - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
CHR Extension: (Avira SearchFree Toolbar plus Web Protection) - C:\DOKUME~1\PETERH~1\LOKALE~1\Anwendungsdaten\Google\Chrome\User Data\Default\Extensions\aaaaacalgebmfelllfiaoknifldpngjh\24.57772_0
CHR Extension: (Google Docs) - C:\DOKUME~1\PETERH~1\LOKALE~1\Anwendungsdaten\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0
CHR Extension: (Google Drive) - C:\DOKUME~1\PETERH~1\LOKALE~1\Anwendungsdaten\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
CHR Extension: (YouTube) - C:\DOKUME~1\PETERH~1\LOKALE~1\Anwendungsdaten\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Google Search) - C:\DOKUME~1\PETERH~1\LOKALE~1\Anwendungsdaten\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (Chrome In-App Payments service) - C:\DOKUME~1\PETERH~1\LOKALE~1\Anwendungsdaten\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.11_1
CHR Extension: (Gmail) - C:\DOKUME~1\PETERH~1\LOKALE~1\Anwendungsdaten\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1
CHR HKLM\...\Chrome\Extension: [aaaaacalgebmfelllfiaoknifldpngjh] - C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\AskPartnerNetwork\Toolbar\AVIRA-V7\CRX\ToolbarCR.crx
CHR StartMenuInternet: Google Chrome - C:\Dokumente und Einstellungen\Peter xxxxx\Lokale Einstellungen\Anwendungsdaten\Google\Chrome\Application\chrome.exe
========================== Services (Whitelisted) =================
R2 6to4; C:\Windows\System32\6to4svc.dll [100864 2010-02-12] (Microsoft Corporation)
R2 AntiVirMailService; C:\Programme\Avira\AntiVir Desktop\avmailc.exe [948296 2013-10-01] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Programme\Avira\AntiVir Desktop\sched.exe [440392 2013-10-01] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Programme\Avira\AntiVir Desktop\avguard.exe [440392 2013-10-01] (Avira Operations GmbH & Co. KG)
R2 AntiVirWebService; C:\Programme\Avira\AntiVir Desktop\AVWEBGRD.EXE [1164360 2013-10-01] (Avira Operations GmbH & Co. KG)
R2 AOL ACS; C:\Programme\Gemeinsame Dateien\AOL\ACS\AOLAcsd.exe [46640 2006-10-23] (AOL LLC)
S2 AOLService; C:\PROGRA~1\GEMEIN~1\aol\AOLPRI~1\\aolserv.exe [49152 2004-10-11] ()
R2 APNMCP; C:\Programme\AskPartnerNetwork\Toolbar\apnmcp.exe [164816 2013-09-24] (APN LLC.)
S4 FLEXnet Licensing Service; C:\Programme\Gemeinsame Dateien\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [655624 2010-05-27] (Acresso Software Inc.)
S4 gupdate; C:\Programme\Google\Update\GoogleUpdate.exe [133104 2009-07-05] (Google Inc.)
S4 gupdatem; C:\Programme\Google\Update\GoogleUpdate.exe [133104 2009-07-05] (Google Inc.)
S3 gusvc; C:\Programme\Google\Common\Google Updater\GoogleUpdaterService.exe [190448 2009-07-05] (Google)
R2 Iprip; C:\Windows\System32\iprip.dll [36864 2008-04-14] (Microsoft Corporation)
S3 LPDSVC; C:\Windows\system32\tcpsvcs.exe [19456 2004-08-04] (Microsoft Corporation)
S3 McComponentHostService; C:\Programme\McAfee Security Scan\3.0.285\McCHSvc.exe [234776 2012-09-05] (McAfee, Inc.)
R2 MDM; C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7Debug\mdm.exe [322120 2003-06-20] (Microsoft Corporation)
S4 MSSQL$MICROSOFTSMLBIZ; C:\Programme\Microsoft SQL Server\MSSQL$MICROSOFTSMLBIZ\Binn\sqlservr.exe [9150464 2005-05-04] (Microsoft Corporation)
S4 MSSQLServerADHelper; C:\Programme\Microsoft SQL Server\80\Tools\Binn\sqladhlp.exe [73728 2005-05-03] (Microsoft Corporation)
S4 NetSvc; C:\Programme\Intel\PROSetWired\NCS\Sync\NetSvc.exe [147456 2004-11-19] (Intel(R) Corporation)
R2 NWCWorkstation; C:\Windows\System32\nwwks.dll [65536 2008-04-14] (Microsoft Corporation)
S3 ose; C:\Programme\Gemeinsame Dateien\Microsoft Shared\Source Engine\OSE.EXE [89136 2003-07-28] (Microsoft Corporation)
S3 p2pgasvc; C:\Windows\system32\p2pgasvc.dll [105472 2008-04-14] (Microsoft Corporation)
R2 SageDB 5.0; C:\Programme\Sage\SageDB 5.0\server.ini [1793 2008-12-26] ()
S3 SQLAgent$MICROSOFTSMLBIZ; C:\Programme\Microsoft SQL Server\MSSQL$MICROSOFTSMLBIZ\Binn\sqlagent.EXE [323584 2005-05-03] (Microsoft Corporation)
S4 STI Simulator; C:\WINDOWS\System32\PAStiSvc.exe [53248 2005-01-14] ()
S3 WMPNetworkSvc; C:\Programme\Windows Media Player\WMPNetwk.exe [920576 2006-11-03] (Microsoft Corporation)
S4 AcrSch2Svc; "C:\Programme\Gemeinsame Dateien\Acronis\Schedule2\schedul2.exe" [x]
R2 JavaQuickStarterService; "C:\Programme\Java\jre7\bin\jqs.exe" -service -config "C:\Programme\Java\jre7\lib\deploy\jqs\jqs.conf"
==================== Drivers (Whitelisted) ====================
S3 actser; C:\Windows\System32\drivers\actser.sys [29440 2005-11-23] (Siemens AG)
R1 AFS2K; C:\Windows\System32\Drivers\AFS2K.sys [82380 2009-07-27] (Oak Technology Inc.)
R2 ASPI32; C:\Windows\System32\Drivers\ASPI32.sys [25244 1999-09-10] (Adaptec)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [89376 2013-10-01] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [137208 2013-10-01] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [37352 2013-10-01] (Avira Operations GmbH & Co. KG)
R3 AVMCOWAN; C:\Windows\System32\DRIVERS\AVMCOWAN.sys [53632 2005-11-24] (AVM GmbH)
S3 AVMUNET; C:\Windows\System32\DRIVERS\avmunet.sys [14976 2006-11-07] (AVM GmbH)
S3 AVMWAN; C:\Windows\System32\DRIVERS\avmwan.sys [37568 2001-08-17] (AVM GmbH)
S3 BlueletAudio; C:\Windows\System32\DRIVERS\blueletaudio.sys [20096 2004-10-19] (IVT Corporation)
S3 BT; C:\Windows\System32\DRIVERS\btnetdrv.sys [10804 2004-09-21] (IVT Corporation)
S3 Btcsrusb; C:\Windows\System32\Drivers\btcusb.sys [22488 2004-12-01] (IVT Corporation)
S3 BTHidEnum; C:\Windows\System32\DRIVERS\vbtenum.sys [11604 2004-09-21] ()
S0 BTHidMgr; C:\Windows\System32\Drivers\BTHidMgr.sys [28207 2004-10-19] (IVT Corporation)
S3 BTNetFilter; C:\WINDOWS\system32\drivers\BTNetFilter.sys [13304 2004-12-16] ()
S3 CA504AV; C:\Windows\System32\Drivers\CA504AV.SYS [508394 2002-07-12] (Sunplus Technology Co. LTD.)
R2 CAPI20; C:\Windows\System32\Drivers\CAPI20.SYS [146096 2000-11-22] (DeTeWe Berlin)
S3 cpudrv; C:\Programme\SystemRequirementsLab\cpudrv.sys [11336 2011-06-02] ()
S3 EsgScanner; C:\Windows\System32\DRIVERS\EsgScanner.sys [19984 2012-06-22] ()
S3 fpcibase; C:\Windows\System32\DRIVERS\fpcibase.sys [548864 2005-11-24] (AVM Berlin)
R3 HPZid412; C:\Windows\System32\DRIVERS\HPZid412.sys [51024 2003-03-09] (HP)
R3 HPZipr12; C:\Windows\System32\DRIVERS\HPZipr12.sys [16080 2003-03-09] (HP)
R3 HPZius12; C:\Windows\System32\DRIVERS\HPZius12.sys [21456 2003-03-09] (HP)
R3 ialm; C:\Windows\System32\DRIVERS\ialmnt5.sys [1302812 2005-10-14] (Intel Corporation)
R3 mf; C:\Windows\System32\DRIVERS\mf.sys [63744 2008-04-14] (Microsoft Corporation)
S3 MIINPazX; C:\PROGRA~1\GEMEIN~1\MARMIK~1\MInfraIS\MIINPazX.SYS [17152 2006-10-09] (Deutsche Telekom AG, Marmiko IT-Solutions GmbH)
S3 NdisIP; C:\Windows\System32\DRIVERS\NdisIP.sys [10880 2008-04-14] (Microsoft Corporation)
S3 nm; C:\Windows\System32\DRIVERS\NMnt.sys [40320 2008-04-14] (Microsoft Corporation)
R2 NwlnkIpx; C:\Windows\System32\DRIVERS\nwlnkipx.sys [88320 2008-04-14] (Microsoft Corporation)
R2 NwlnkNb; C:\Windows\System32\DRIVERS\nwlnknb.sys [63232 2004-08-04] (Microsoft Corporation)
R2 NwlnkSpx; C:\Windows\System32\DRIVERS\nwlnkspx.sys [55936 2004-08-04] (Microsoft Corporation)
R3 NWRDR; C:\Windows\System32\DRIVERS\nwrdr.sys [163584 2008-04-14] (Microsoft Corporation)
S3 PAC7311; C:\Windows\System32\DRIVERS\PA707UCM.SYS [140800 2005-06-27] (PixArt Imaging Inc.)
S3 rtl8139; C:\Windows\System32\DRIVERS\RTL8139.SYS [20992 2004-08-03] (Realtek Semiconductor Corporation)
S3 SBFWIMCL; C:\Windows\System32\DRIVERS\sbfwim.sys [94584 2011-09-29] (GFI Software)
R3 SBFWIMCLMP; C:\Windows\System32\DRIVERS\SBFWIM.sys [94584 2011-09-29] (GFI Software)
R1 ssmdrv; C:\Windows\System32\DRIVERS\ssmdrv.sys [28520 2013-09-27] (Avira GmbH)
R3 STHDA; C:\Windows\System32\drivers\sthda.sys [1022040 2005-08-17] (SigmaTel, Inc.)
S3 Sunplus; C:\Windows\System32\Drivers\Bulk504.sys [10988 2002-07-11] (USB BULK)
S3 susbser; C:\Windows\System32\DRIVERS\susbser.sys [77056 2005-11-23] (Siemens AG)
R1 Tcpip6; C:\Windows\System32\DRIVERS\tcpip6.sys [226880 2010-02-11] (Microsoft Corporation)
R2 tifsfilter; C:\Windows\System32\DRIVERS\tifsfilt.sys [28064 2006-04-16] (Acronis)
S3 VComm; C:\Windows\System32\DRIVERS\VComm.sys [61312 2004-10-19] (IVT Corporation)
S3 VcommMgr; C:\Windows\System32\Drivers\VcommMgr.sys [82148 2004-11-05] (IVT Corporation)
S3 vmfilter303; C:\Windows\System32\drivers\vmfilter303.sys [428160 2006-04-25] (Vimicro Corporation)
R3 vsbus; C:\Windows\System32\DRIVERS\vsb.sys [15264 2005-11-23] ()
S3 vserial; C:\Windows\System32\DRIVERS\vserial.sys [47744 2005-11-23] ()
S3 vulfnths; C:\Windows\System32\Drivers\vulfnth.sys [6912 2004-07-25] (VIA Technologies, Inc.)
S3 vulfntrs; C:\Windows\System32\Drivers\vulfntr.sys [11392 2004-07-25] (VIA Technologies, Inc.)
R3 wanatw; C:\Windows\System32\DRIVERS\wanatw4.sys [33588 2003-01-10] (America Online, Inc.)
S3 wceusbsh; C:\Windows\System32\DRIVERS\wceusbsh.sys [28672 2006-11-06] (Microsoft Corporation)
R3 WSIMD; C:\Windows\System32\DRIVERS\wsimd.sys [58208 2011-03-31] (Atheros Communications, Inc.)
S3 ZSMC303; C:\Windows\System32\Drivers\usbVM303.sys [392122 2006-12-01] (Vimicro Corporation)
U5 Bulk504; C:\Windows\System32\Drivers\Bulk504.sys [10988 2002-07-11] (USB BULK)
S3 catchme; \??\C:\ComboFix\catchme.sys [x]
S3 esgiguard; \??\C:\Programme\Enigma Software Group\SpyHunter\esgiguard.sys [x]
S3 Lavasoft Kernexplorer; \??\C:\Programme\Lavasoft\Ad-Aware\KernExplorer.sys [x]
S0 Lbd; system32\DRIVERS\Lbd.sys [x]
S3 MEMSWEEP2; \??\C:\WINDOWS\system32\60.tmp [x]
S3 MTOnlPktAlyX; \??\C:\PROGRA~1\T-Online\T-ONLI~2\BASIS-~1\Basis1\MTOnlPktAlyX.SYS [x]
S1 SBRE; \??\C:\WINDOWS\system32\drivers\SBREdrv.sys [x]
U5 ScsiPort; C:\Windows\system32\drivers\scsiport.sys [96384 2008-04-14] (Microsoft Corporation)
S3 TOMCATWAN; system32\DRIVERS\WTOMCAT.SYS [x]
S3 UIUSys; system32\drivers\UIUSys.sys [x]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-10-05 19:54 - 2013-10-05 19:54 - 00000000 ____D C:\TDSSKiller_Quarantine
2013-10-04 10:34 - 2013-10-04 10:34 - 00000000 ____D C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\42FD
2013-10-04 10:33 - 2013-10-04 10:33 - 00000801 _____ C:\Dokumente und Einstellungen\Peter xxxxx\Startmenü\Programme\iMesh.lnk
2013-10-04 10:33 - 2013-10-04 10:33 - 00000795 _____ C:\Dokumente und Einstellungen\Peter xxxxx\Desktop\iMesh.lnk
2013-10-04 10:33 - 2013-10-04 10:33 - 00000000 ____D C:\Dokumente und Einstellungen\Peter xxxxx\Eigene Dateien\My Received Files
2013-10-04 10:32 - 2013-10-04 10:34 - 00000000 ____D C:\Dokumente und Einstellungen\Peter xxxxx\Lokale Einstellungen\Anwendungsdaten\iMesh
2013-10-04 10:32 - 2013-10-04 10:32 - 00000000 ____D C:\Programme\iMesh Applications
2013-10-04 08:24 - 2013-10-04 13:47 - 00000000 ____D C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\ParetoLogic
2013-10-04 08:24 - 2013-10-04 08:24 - 00000000 ____D C:\Dokumente und Einstellungen\Peter xxxxx\Anwendungsdaten\ParetoLogic
2013-10-04 08:24 - 2013-10-04 08:24 - 00000000 ____D C:\Dokumente und Einstellungen\Peter xxxxx\Anwendungsdaten\DriverCure
2013-10-04 08:20 - 2013-10-04 08:20 - 00000525 _____ C:\hpfr3420.xml
2013-10-03 14:05 - 2013-10-03 14:05 - 00000000 ____D C:\Programme\McAfee Security Scan
2013-10-03 14:05 - 2013-10-03 14:05 - 00000000 ____D C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\McAfee Security Scan Plus
2013-10-03 14:05 - 2013-10-03 14:05 - 00000000 ____D C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\McAfee Security Scan
2013-10-03 14:05 - 2013-10-03 14:05 - 00000000 ____D C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\McAfee
2013-10-03 14:04 - 2013-10-03 14:04 - 00001804 _____ C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Adobe Reader XI.lnk
2013-10-03 14:04 - 2013-10-03 14:04 - 00001714 _____ C:\Dokumente und Einstellungen\All Users\Desktop\Adobe Reader XI.lnk
2013-10-03 13:58 - 2013-10-03 13:58 - 00000000 ____D C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Java
2013-10-03 13:58 - 2013-10-03 13:57 - 00264616 _____ (Oracle Corporation) C:\WINDOWS\system32\javaws.exe
2013-10-03 13:58 - 2013-10-03 13:57 - 00175016 _____ (Oracle Corporation) C:\WINDOWS\system32\javaw.exe
2013-10-03 13:58 - 2013-10-03 13:57 - 00175016 _____ (Oracle Corporation) C:\WINDOWS\system32\java.exe
2013-10-03 13:58 - 2013-10-03 13:57 - 00094632 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge.dll
2013-10-02 18:31 - 2013-10-02 18:31 - 00000000 ____D C:\Dokumente und Einstellungen\Peter xxxxx\Eigene Dateien\-XX[task2013.256]CrosswindandGustsOperations-Preliminary
2013-10-02 09:44 - 2013-10-02 09:44 - 00000000 ____D C:\tmp
2013-10-02 09:26 - 2013-10-02 09:26 - 00007721 _____ C:\Dokumente und Einstellungen\Peter xxxxx\Eigene Dateien\Rechnung374009.htm
2013-10-01 13:45 - 2013-10-01 13:45 - 98609238 _____ C:\WINDOWS\system32\䶎魍嚄6
2013-10-01 08:34 - 2013-10-01 08:34 - 00000000 ____D C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Avira
2013-10-01 06:51 - 2013-10-01 06:51 - 98602865 _____ C:\WINDOWS\system32\籅Ҥ嚄6
2013-09-30 21:05 - 2013-09-30 21:05 - 98541442 _____ C:\WINDOWS\system32\拏ﲜ嚄6
2013-09-30 07:03 - 2013-09-30 15:02 - 98499637 _____ C:\WINDOWS\system32\ꂉ�嚄6
2013-09-29 19:02 - 2013-09-29 19:02 - 98466785 _____ C:\WINDOWS\system32\䒲協6
2013-09-29 12:19 - 2013-09-29 12:19 - 98462899 _____ C:\WINDOWS\system32\�⫂協6
2013-09-29 10:31 - 2013-09-29 10:31 - 00002228 _____ C:\Dokumente und Einstellungen\Peter xxxxx\Anwendungsdaten\PhoneExplorer_WinShellFolder.txt
2013-09-29 10:31 - 2013-09-29 10:31 - 00001300 _____ C:\Dokumente und Einstellungen\Peter xxxxx\Anwendungsdaten\PhoneExplorer_Default.txt
2013-09-29 10:20 - 2013-09-29 10:20 - 00000000 ____D C:\WINDOWS\ERUNT
2013-09-29 10:19 - 2013-09-27 09:33 - 01030305 _____ (Thisisu) C:\Dokumente und Einstellungen\Peter xxxxx\Desktop\JRT_NEW.exe
2013-09-28 19:36 - 2013-09-28 19:36 - 98442955 _____ C:\WINDOWS\system32\菕庭嚄6
2013-09-28 17:15 - 2013-09-28 17:15 - 00000000 ____D C:\Dokumente und Einstellungen\Peter xxxxx\Anwendungsdaten\Malwarebytes
2013-09-28 17:15 - 2013-09-28 17:15 - 00000000 ____D C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Malwarebytes
2013-09-28 08:06 - 2013-09-28 08:06 - 98372650 _____ C:\WINDOWS\system32\괼隸嚄6
2013-09-27 19:12 - 2013-09-27 19:12 - 00000000 ____D C:\Dokumente und Einstellungen\Peter xxxxx\WINDOWS
2013-09-27 18:52 - 2013-09-27 18:52 - 00000000 ____D C:\Dokumente und Einstellungen\Peter xxxxx\Lokale Einstellungen\Anwendungsdaten\AskPartnerNetwork
2013-09-27 18:52 - 2013-09-27 18:52 - 00000000 ____D C:\Dokumente und Einstellungen\Peter xxxxx\Lokale Einstellungen\Anwendungsdaten\AOL Toolbar
2013-09-27 17:48 - 2013-09-27 17:48 - 00000000 ____D C:\Dokumente und Einstellungen\Peter xxxxx\Anwendungsdaten\Avira
2013-09-27 17:45 - 2013-09-27 17:45 - 00000000 ____D C:\Programme\AskPartnerNetwork
2013-09-27 17:45 - 2013-09-27 17:45 - 00000000 ____D C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\AskPartnerNetwork
2013-09-27 17:42 - 2013-10-01 08:34 - 00001671 _____ C:\Dokumente und Einstellungen\All Users\Desktop\Avira Control Center.lnk
2013-09-27 17:41 - 2013-10-01 16:16 - 00137208 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avipbb.sys
2013-09-27 17:41 - 2013-10-01 16:16 - 00089376 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avgntflt.sys
2013-09-27 17:41 - 2013-10-01 16:16 - 00037352 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avkmgr.sys
2013-09-27 17:41 - 2013-09-27 17:41 - 00000000 ____D C:\Programme\Avira
2013-09-27 17:41 - 2013-09-27 17:37 - 00028520 _____ (Avira GmbH) C:\WINDOWS\system32\Drivers\ssmdrv.sys
2013-09-27 08:26 - 2013-09-27 08:26 - 00008192 ____H C:\WINDOWS\system32\config\SECURITY.tmp.LOG
2013-09-27 08:26 - 2013-09-27 08:26 - 00000000 ____H C:\WINDOWS\system32\config\SYSTEM.tmp.LOG
2013-09-27 08:26 - 2013-09-27 08:26 - 00000000 ____H C:\WINDOWS\system32\config\SOFTWARE.tmp.LOG
2013-09-27 08:26 - 2013-09-27 08:26 - 00000000 ____H C:\WINDOWS\system32\config\SAM.tmp.LOG
2013-09-27 08:26 - 2013-09-27 08:26 - 00000000 ____H C:\WINDOWS\system32\config\DEFAULT.tmp.LOG
2013-09-27 08:07 - 2013-09-27 08:07 - 00000000 _RSHD C:\cmdcons
2013-09-27 08:07 - 2004-08-03 23:00 - 00262448 __RSH C:\cmldr
2013-09-27 08:03 - 2011-06-26 08:45 - 00256000 _____ C:\WINDOWS\PEV.exe
2013-09-27 08:03 - 2010-11-07 19:20 - 00208896 _____ C:\WINDOWS\MBR.exe
2013-09-27 08:03 - 2009-04-20 06:56 - 00060416 _____ (NirSoft) C:\WINDOWS\NIRCMD.exe
2013-09-27 08:03 - 2000-08-31 02:00 - 00518144 _____ (SteelWerX) C:\WINDOWS\SWREG.exe
2013-09-27 08:03 - 2000-08-31 02:00 - 00406528 _____ (SteelWerX) C:\WINDOWS\SWSC.exe
2013-09-27 08:03 - 2000-08-31 02:00 - 00212480 _____ (SteelWerX) C:\WINDOWS\SWXCACLS.exe
2013-09-27 08:03 - 2000-08-31 02:00 - 00098816 _____ C:\WINDOWS\sed.exe
2013-09-27 08:03 - 2000-08-31 02:00 - 00080412 _____ C:\WINDOWS\grep.exe
2013-09-27 08:03 - 2000-08-31 02:00 - 00068096 _____ C:\WINDOWS\zip.exe
2013-09-27 07:46 - 2013-09-27 08:34 - 00000000 ____D C:\Qoobox
2013-09-26 19:03 - 2013-09-27 08:32 - 00000000 ____D C:\WINDOWS\erdnt
2013-09-26 18:59 - 2013-09-26 18:59 - 00000000 ____D C:\Dokumente und Einstellungen\Peter xxxxx\Lokale Einstellungen\Anwendungsdaten\BonanzaDealsLive
2013-09-24 08:25 - 2013-09-24 08:25 - 00028709 _____ C:\Dokumente und Einstellungen\Peter xxxxx\Eigene Dateien\Logs.zip
2013-09-22 20:03 - 2013-10-03 14:11 - 00000000 ____D C:\FRST
2013-09-22 19:58 - 2013-09-22 19:58 - 00000000 _____ C:\Dokumente und Einstellungen\Peter xxxxx\defogger_reenable
2013-09-20 09:21 - 2013-10-02 11:11 - 00000810 _____ C:\WINDOWS\wmsetup.log
2013-09-20 09:21 - 2013-09-20 09:21 - 00000746 _____ C:\Dokumente und Einstellungen\All Users\Desktop\AOL Desktop 9.7.lnk
2013-09-20 09:21 - 2013-09-20 09:21 - 00000664 _____ C:\Dokumente und Einstellungen\All Users\Startmenü\AOL Desktop 9.7.lnk
2013-09-20 09:21 - 2013-09-20 08:54 - 00058696 _____ (AOL Inc.) C:\WINDOWS\system32\AOLParconLink.exe
2013-09-20 09:20 - 2013-09-20 09:20 - 00000000 ____D C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\AOL Toolbar
2013-09-20 09:19 - 2013-09-20 09:19 - 00000000 ____D C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\AOL OCP
2013-09-20 09:18 - 2013-09-20 09:25 - 00000000 ____D C:\Programme\AOL Desktop 9.7
2013-09-20 09:05 - 2013-09-20 09:06 - 00000000 ____D C:\Handbücher
2013-09-18 09:42 - 2013-09-18 09:42 - 00000000 ____D C:\Dokumente und Einstellungen\Administrator\Anwendungsdaten\Real
2013-09-18 09:12 - 2013-09-18 09:12 - 00000000 ____D C:\WINDOWS\system32\vmm32
2013-09-18 08:42 - 2013-09-18 08:42 - 00000000 ____D C:\Dokumente und Einstellungen\Peter xxxxx\Lokale Einstellungen\Anwendungsdaten\DriverTuner
2013-09-18 08:10 - 2013-09-27 08:01 - 00224637 _____ C:\WINDOWS\setupapi.log
2013-09-17 09:34 - 2013-09-17 09:34 - 00002824 _____ C:\Dokumente und Einstellungen\Peter xxxxx\Eigene Dateien\cc_20130917_093359.reg
2013-09-15 18:29 - 2013-09-15 18:29 - 00001427 _____ C:\Dokumente und Einstellungen\Peter xxxxx\Lokale Einstellungen\Anwendungsdaten\RecConfig.xml
2013-09-15 18:24 - 2013-09-15 18:29 - 00005560 _____ C:\Dokumente und Einstellungen\Peter xxxxx\Lokale Einstellungen\Anwendungsdaten\PhoneExplorer_WinShellFolder.txt
2013-09-15 18:24 - 2013-09-15 18:24 - 00001244 _____ C:\Dokumente und Einstellungen\Peter xxxxx\Lokale Einstellungen\Anwendungsdaten\PhoneExplorer_Default.txt
2013-09-15 18:22 - 2013-09-17 09:35 - 00000000 ____D C:\Dokumente und Einstellungen\Peter xxxxx\Lokale Einstellungen\Anwendungsdaten\No23 Recorder
2013-09-15 17:44 - 2008-04-14 00:15 - 00060032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBAUDIO.sys
2013-09-15 17:44 - 2008-04-14 00:15 - 00060032 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbaudio.sys
2013-09-15 10:45 - 2013-09-15 10:45 - 00155272 _____ C:\Dokumente und Einstellungen\Peter xxxxx\Eigene Dateien\cc_20130915_104507.reg
2013-09-15 10:33 - 2013-09-15 10:33 - 00000654 _____ C:\Dokumente und Einstellungen\All Users\Desktop\CCleaner.lnk
2013-09-15 10:33 - 2013-09-15 10:33 - 00000000 ____D C:\Programme\CCleaner
2013-09-15 09:54 - 2013-10-05 19:57 - 00000464 _____ C:\WINDOWS\Tasks\RNUpgradeHelperLogonPrompt_Peter xxxxx.job
2013-09-15 09:52 - 2013-10-04 10:08 - 00000454 _____ C:\WINDOWS\Tasks\ReclaimerUpdateXML_Peter xxxxx.job
2013-09-15 09:52 - 2013-09-25 06:58 - 00000458 _____ C:\WINDOWS\Tasks\ReclaimerUpdateFiles_Peter xxxxx.job
2013-09-14 20:08 - 2013-09-14 20:08 - 97581476 _____ C:\WINDOWS\system32\觵嚄6
2013-09-14 17:54 - 2013-09-14 17:54 - 97581476 _____ C:\WINDOWS\system32\菏㚯嚄6
2013-09-14 15:52 - 2013-09-14 15:52 - 97542592 _____ C:\WINDOWS\system32\䔏瀄嚄6
2013-09-14 08:30 - 2013-09-14 16:06 - 00002416 _____ C:\WINDOWS\Summary.txt
2013-09-14 08:30 - 2013-09-14 08:30 - 00002416 _____ C:\WINDOWS\Summary_0.txt
2013-09-14 08:30 - 2013-09-14 08:30 - 00000000 ____D C:\Dokumente und Einstellungen\NetworkService\Lokale Einstellungen\Anwendungsdaten\PCHealth
2013-09-14 07:49 - 2013-09-14 07:49 - 97519942 _____ C:\WINDOWS\system32\聞쩨嚄6
2013-09-13 20:27 - 2013-09-13 20:27 - 97503480 _____ C:\WINDOWS\system32\舌찎嚄6
2013-09-13 16:47 - 2013-09-13 16:47 - 97492159 _____ C:\WINDOWS\system32\㔾ࣞ嚄6
2013-09-13 14:10 - 2013-09-13 14:10 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2864063$
2013-09-13 14:03 - 2013-09-13 14:09 - 00000000 ____D C:\WINDOWS\system32\MRT
2013-09-13 14:01 - 2013-09-13 14:01 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2876315$
2013-09-13 14:01 - 2013-09-13 14:01 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2876217$
2013-09-13 12:24 - 2013-09-13 12:24 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2655992$
2013-09-13 11:57 - 2013-09-13 11:57 - 00000000 ____D C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Microsoft Office Live Add-in
2013-09-13 11:57 - 2010-07-05 15:14 - 00018808 ____N (Microsoft Corporation) C:\WINDOWS\system32\spmsg.dll
2013-09-13 11:51 - 2013-09-13 11:51 - 00000000 ____D C:\WINDOWS\$SQLUninstallSQL2000-KB960082-v8.00.2055-x86-DEU$
2013-09-13 11:33 - 2013-09-13 11:33 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2507938$
2013-09-13 11:32 - 2013-09-13 11:32 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2481109$
2013-09-13 11:31 - 2013-09-13 11:31 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2479943$
2013-09-13 08:51 - 2013-08-08 08:05 - 00522240 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\jsdbgui.dll
2013-09-13 08:50 - 2011-04-21 15:37 - 00105472 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mup.sys
2013-09-13 08:50 - 2011-02-09 15:53 - 00270848 ____N C:\WINDOWS\system32\dllcache\sbe.dll
2013-09-13 08:49 - 2013-02-12 02:32 - 00012928 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usb8023x.sys
2013-09-13 08:49 - 2013-02-12 02:32 - 00012928 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usb8023.sys
2013-09-13 08:48 - 2011-01-27 13:57 - 00677888 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\lhmstsc.exe
2013-09-13 08:44 - 2012-07-04 16:05 - 00139784 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\rdpwd.sys
2013-09-13 08:39 - 2012-01-11 21:06 - 00003072 ____N C:\WINDOWS\system32\iacenc.dll
2013-09-13 08:39 - 2012-01-11 21:06 - 00003072 ____N C:\WINDOWS\system32\dllcache\iacenc.dll
2013-09-13 08:39 - 2011-07-08 16:02 - 00010496 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ndistapi.sys
2013-09-13 08:07 - 2012-06-02 15:18 - 00275696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mucltui.dll
2013-09-13 08:07 - 2012-06-02 15:18 - 00018160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mucltui.dll.mui
2013-09-13 08:06 - 2013-09-13 08:06 - 00001566 _____ C:\Dokumente und Einstellungen\All Users\Startmenü\Microsoft Update.lnk
2013-09-12 20:52 - 2013-09-12 20:52 - 00000000 ____D C:\Programme\SigmaTel
2013-09-12 18:09 - 2013-09-12 18:09 - 00000000 ____D C:\Dokumente und Einstellungen\Administrator\Lokale Einstellungen\Anwendungsdaten\Google
2013-09-12 13:00 - 2013-09-12 15:00 - 97296948 _____ C:\WINDOWS\system32\匉齪嚄6
2013-09-12 07:00 - 2013-09-12 07:00 - 97238077 _____ C:\WINDOWS\system32\辈ᑝ嚄6
2013-09-11 21:33 - 2013-09-11 21:33 - 97170353 _____ C:\WINDOWS\system32\⡿嚄6
2013-09-11 19:33 - 2013-09-11 19:33 - 97170353 _____ C:\WINDOWS\system32\䠃ᕀ嚄6
2013-09-11 19:28 - 2013-09-11 19:28 - 00002209 _____ C:\Dokumente und Einstellungen\Administrator\PhoneExplorer_WinShellFolder.txt
2013-09-11 19:28 - 2013-09-11 19:28 - 00001281 _____ C:\Dokumente und Einstellungen\Administrator\PhoneExplorer_Default.txt
2013-09-11 17:35 - 2013-09-11 17:35 - 97124766 _____ C:\WINDOWS\system32\ꔧﮇ嚄6
2013-09-11 13:52 - 2013-10-05 20:15 - 00000884 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2013-09-11 13:51 - 2013-09-11 13:51 - 00000000 __SHD C:\Dokumente und Einstellungen\Peter xxxxx\IECompatCache
2013-09-11 11:58 - 2013-09-11 11:58 - 97080355 _____ C:\WINDOWS\system32\↖ꦋ嚄6
2013-09-11 09:13 - 2013-10-01 08:34 - 00000000 ____D C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Avira
2013-09-10 11:09 - 2013-09-10 11:09 - 00000000 ____D C:\Dokumente und Einstellungen\Peter xxxxx\Lokale Einstellungen\Anwendungsdaten\avgchrome
2013-09-10 11:08 - 2013-09-10 11:08 - 00000000 ____D C:\WINDOWS\system32\searchplugins
2013-09-10 11:08 - 2013-09-10 11:08 - 00000000 ____D C:\WINDOWS\system32\Extensions
2013-09-10 11:07 - 2013-09-10 11:07 - 00000000 ____D C:\Programme\Mozilla Firefox
2013-09-09 10:53 - 2013-09-09 19:56 - 00120502 _____ C:\Dokumente und Einstellungen\Peter xxxxx\PhoneExplorer_WinShellView.txt
2013-09-09 09:47 - 2013-09-14 16:03 - 00000000 ____D C:\Dokumente und Einstellungen\Peter xxxxx\Lokale Einstellungen\Anwendungsdaten\WEKA DVD Interface
2013-09-09 09:13 - 2013-09-09 09:13 - 00000000 ____D C:\Dokumente und Einstellungen\Peter xxxxx\Lokale Einstellungen\Anwendungsdaten\PCHealth
2013-09-09 07:45 - 2013-10-04 10:39 - 00001966 _____ C:\WINDOWS\system32\CEnvironmentServer.txt
2013-09-09 07:45 - 2013-10-04 10:39 - 00001844 _____ C:\WINDOWS\system32\CSDSConfigSettings.txt
2013-09-09 07:45 - 2013-10-04 10:39 - 00000952 _____ C:\WINDOWS\system32\CCfgMgr4PlugIns.txt
2013-09-09 07:45 - 2013-10-04 10:39 - 00000700 _____ C:\WINDOWS\system32\CStdDOMWrapper.txt
2013-09-09 07:45 - 2013-09-27 07:36 - 00017901 _____ C:\WINDOWS\system32\DESProxy_M.txt
2013-09-09 07:45 - 2013-09-27 07:36 - 00016183 _____ C:\WINDOWS\system32\DESProxy_I.txt
2013-09-09 07:45 - 2013-09-27 07:36 - 00007270 _____ C:\Dokumente und Einstellungen\Peter xxxxx\PhoneExplorer_PhoneCall.txt
2013-09-09 07:45 - 2013-09-27 07:36 - 00006168 _____ C:\WINDOWS\system32SPhoneObserver.txt
2013-09-09 07:45 - 2013-09-27 07:36 - 00002684 _____ C:\Dokumente und Einstellungen\Peter xxxxx\PhoneExplorer_PhoneEvent.txt
2013-09-09 07:45 - 2013-09-27 07:36 - 00001318 _____ C:\Dokumente und Einstellungen\Peter xxxxx\PhoneExplorer_Jobs.txt
2013-09-09 07:45 - 2013-09-09 10:53 - 00000738 _____ C:\Dokumente und Einstellungen\Peter xxxxx\PhoneExplorer_WinShellShortcut.txt
2013-09-09 07:44 - 2013-10-04 12:14 - 00001344 _____ C:\Dokumente und Einstellungen\Peter xxxxx\PhoneExplorer_Default.txt
2013-09-09 07:44 - 2013-10-04 10:39 - 00002212 _____ C:\Dokumente und Einstellungen\Peter xxxxx\PhoneExplorer_WinShellFolder.txt
2013-09-08 19:40 - 2013-09-08 19:40 - 00000621 _____ C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Windows Messenger.lnk
2013-09-08 18:45 - 2013-09-08 18:45 - 00000889 _____ C:\Dokumente und Einstellungen\Peter xxxxx\Desktop\Revo Uninstaller.lnk
2013-09-08 18:45 - 2013-09-08 18:45 - 00000000 ____D C:\Programme\VS Revo Group
2013-09-07 19:20 - 2013-09-07 19:20 - 00499712 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp71.dll
2013-09-07 19:20 - 2013-09-07 19:20 - 00348160 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcr71.dll
2013-09-07 19:20 - 2013-09-07 19:20 - 00163840 _____ (America Online) C:\WINDOWS\system32\jgdw400.dll
2013-09-07 19:20 - 2013-09-07 19:20 - 00027648 _____ (Johnson-Grace Company) C:\WINDOWS\system32\jgpl400.dll
2013-09-07 14:17 - 2013-09-07 14:17 - 00002004 _____ C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\MSN.lnk
2013-09-07 14:17 - 2013-09-07 14:17 - 00000000 ____D C:\WINDOWS\system32\FxsTmp
2013-09-07 14:17 - 2013-09-07 14:17 - 00000000 ____D C:\Programme\Online Services
2013-09-07 14:16 - 2003-04-02 14:00 - 00139264 _____ (Microsoft Corporation) C:\WINDOWS\system32\fxsclntR.dll
2013-09-07 14:16 - 2003-04-02 14:00 - 00139264 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fxsclntr.dll
2013-09-07 14:16 - 2003-04-02 14:00 - 00112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\fxscfgwz.dll
2013-09-07 14:16 - 2003-04-02 14:00 - 00112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fxscfgwz.dll
2013-09-07 14:16 - 2003-04-02 14:00 - 00031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\fxsroute.dll
2013-09-07 14:16 - 2003-04-02 14:00 - 00031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fxsroute.dll
2013-09-07 14:16 - 2003-04-02 14:00 - 00015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\smierrsm.dll
2013-09-07 14:16 - 2003-04-02 14:00 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\fxssend.exe
2013-09-07 14:16 - 2003-04-02 14:00 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fxssend.exe
2013-09-07 14:16 - 2003-04-02 14:00 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\snmpstup.dll
2013-09-07 14:16 - 2003-04-02 14:00 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\smimsgif.dll
2013-09-07 14:16 - 2003-04-02 14:00 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\smierrsy.dll
2013-09-07 14:16 - 2003-04-02 14:00 - 00003776 _____ C:\WINDOWS\system32\fxsperf.ini
2013-09-07 13:49 - 2013-09-07 13:51 - 00000000 ____D C:\WINDOWS\CD27142034CF47DC80B7C409B6CD0DD8.TMP
2013-09-07 13:39 - 2013-09-07 13:39 - 00000000 ____D C:\Dokumente und Einstellungen\Administrator\Anwendungsdaten\PKWARE
2013-09-06 21:46 - 2013-09-06 21:46 - 00000000 ____D C:\Dokumente und Einstellungen\Administrator\Anwendungsdaten\Macromedia
2013-09-06 21:46 - 2013-09-06 21:46 - 00000000 ____D C:\Dokumente und Einstellungen\Administrator\Anwendungsdaten\AOL
2013-09-06 21:41 - 2013-09-06 21:41 - 00000000 ____D C:\Dokumente und Einstellungen\Administrator\Anwendungsdaten\T-Online
2013-09-06 12:21 - 2013-09-06 12:21 - 00000000 ____D C:\Dokumente und Einstellungen\Administrator\Lokale Einstellungen\Anwendungsdaten\AOL
2013-09-06 12:20 - 2013-09-06 12:20 - 00000747 _____ C:\Dokumente und Einstellungen\Administrator\Startmenü\Programme\Internet Explorer.lnk
2013-09-06 12:19 - 2013-09-06 12:19 - 00000768 _____ C:\Dokumente und Einstellungen\Administrator\Startmenü\Programme\Windows Media Player.lnk
2013-09-06 11:19 - 2013-09-06 11:19 - 00000000 ____D C:\sh4ldr
2013-09-06 11:17 - 2013-09-08 20:59 - 00000000 ____D C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Advanced System Optimizer 3
2013-09-06 11:16 - 2013-09-08 21:10 - 00000000 ____D C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Driver Whiz
2013-09-06 11:16 - 2013-09-06 11:16 - 00000000 ____D C:\Dokumente und Einstellungen\Peter xxxxx\Lokale Einstellungen\Anwendungsdaten\PC_Drivers_Headquarters
2013-09-06 11:16 - 2013-09-06 11:16 - 00000000 ____D C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\UAB
2013-09-06 11:15 - 2013-10-04 13:47 - 00000000 ____D C:\Dokumente und Einstellungen\Peter xxxxx\Startmenü\Programme
2013-09-06 11:15 - 2013-09-06 11:15 - 00000000 ___RD C:\Dokumente und Einstellungen\Peter xxxxx\Startmenü\Programme\Zubehör
2013-09-06 11:15 - 2013-09-06 11:15 - 00000000 ___RD C:\Dokumente und Einstellungen\Peter xxxxx\Startmenü\Programme\Verwaltung
2013-09-06 11:15 - 2013-09-06 11:15 - 00000000 ___RD C:\Dokumente und Einstellungen\Peter xxxxx\Startmenü\Programme\Autostart
2013-09-06 11:15 - 2013-09-06 11:15 - 00000000 ___RD C:\Dokumente und Einstellungen\Peter xxxxx\Startmenü
2013-09-06 11:15 - 2013-09-06 11:15 - 00000000 ____D C:\Dokumente und Einstellungen\Peter xxxxx\Startmenü\Programme\TP-LINK
2013-09-06 11:15 - 2013-09-06 11:15 - 00000000 ____D C:\Dokumente und Einstellungen\Peter xxxxx\Startmenü\Programme\SupervisionCam
2013-09-06 11:15 - 2013-09-06 11:15 - 00000000 ____D C:\Dokumente und Einstellungen\Peter xxxxx\Startmenü\Programme\Sage GS-Buchhalter
2013-09-06 11:15 - 2013-09-06 11:15 - 00000000 ____D C:\Dokumente und Einstellungen\Peter xxxxx\Startmenü\Programme\Microsoft Office
2013-09-06 11:15 - 2013-09-06 11:15 - 00000000 ____D C:\Dokumente und Einstellungen\Peter xxxxx\Startmenü\Programme\GS-Büro 32
2013-09-06 11:15 - 2013-09-06 11:15 - 00000000 ____D C:\Dokumente und Einstellungen\Peter xxxxx\Startmenü\Programme\Google Chrome
2013-09-06 11:15 - 2013-09-06 11:15 - 00000000 ____D C:\Dokumente und Einstellungen\Peter xxxxx\Startmenü\Programme\Dell
2013-09-06 11:13 - 2013-09-06 11:13 - 00000000 ____D C:\Dokumente und Einstellungen\Ulrike xxxxx\Lokale Einstellungen\Anwendungsdaten\XTTB00001
2013-09-06 11:13 - 2013-09-06 11:13 - 00000000 ____D C:\Dokumente und Einstellungen\Peter xxxxx\Lokale Einstellungen\Anwendungsdaten\XTTB00001
2013-09-06 11:13 - 2013-09-06 11:13 - 00000000 ____D C:\Dokumente und Einstellungen\Barbara xxxxx\Lokale Einstellungen\Anwendungsdaten\XTTB00001
2013-09-05 19:20 - 2013-09-13 12:25 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2712808$
2013-09-05 19:20 - 2013-09-06 10:53 - 00000000 ___DC C:\WINDOWS\$NtUninstallKB976323$
2013-09-05 19:20 - 2013-09-06 10:53 - 00000000 ___DC C:\WINDOWS\$NtUninstallKB2124261$
2013-09-05 19:16 - 2013-09-05 19:16 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2659262$
2013-09-05 19:15 - 2013-09-13 11:34 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2564958$
2013-09-05 19:07 - 2013-09-13 12:44 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2758857$
2013-09-05 19:07 - 2013-09-13 11:35 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2544893-v2$
2013-09-05 19:07 - 2013-09-13 11:34 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2536276-v2$
2013-09-05 19:07 - 2013-09-13 11:33 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2491683$
2013-09-05 19:07 - 2013-09-05 19:07 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2834886$
2013-09-05 19:06 - 2013-09-13 11:48 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2585542$
2013-09-05 19:06 - 2013-09-06 10:54 - 00000000 ___DC C:\WINDOWS\$NtUninstallKB2850851$
2013-09-05 19:05 - 2013-09-13 12:24 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2691442$
2013-09-05 19:05 - 2013-09-13 11:48 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2631813$
2013-09-05 18:50 - 2013-09-06 10:54 - 00000000 ___DC C:\WINDOWS\$NtUninstallKB970483$
2013-09-05 18:35 - 2013-09-13 13:14 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2802968$
2013-09-05 18:35 - 2013-09-13 12:23 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2686509$
2013-09-05 18:35 - 2013-09-13 11:49 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2598479$
2013-09-05 18:35 - 2013-09-13 11:32 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2485663$
2013-09-05 18:34 - 2013-09-13 14:01 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2834904-v2_WM11$
2013-09-05 18:34 - 2013-09-13 13:48 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2845187$
2013-09-05 18:34 - 2013-09-13 13:14 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2780091$
2013-09-05 14:46 - 2013-09-06 11:05 - 00000000 ____D C:\ab1c13cb9f029ab079f73db4
2013-09-05 11:32 - 2013-09-09 08:56 - 00000000 ____D C:\86169efe8ca9739d0636082b5eaf02
2013-09-05 11:31 - 2013-09-06 11:07 - 00000000 ___DC C:\WINDOWS\$NtUninstallKB2624667$
2013-09-05 11:25 - 2013-09-13 12:24 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2719985$
2013-09-05 11:17 - 2013-09-13 12:44 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2770660$
2013-09-05 11:17 - 2013-09-13 12:44 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2753842-v2$
2013-09-05 11:17 - 2013-09-13 11:34 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2592799$
2013-09-05 11:17 - 2013-09-13 11:33 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2535512$
2013-09-05 11:17 - 2013-09-06 11:07 - 00000000 ___DC C:\WINDOWS\$NtUninstallKB953155$
2013-09-05 11:16 - 2013-09-13 14:00 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2850869$
2013-09-05 11:11 - 2013-09-13 13:49 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2859537$
2013-09-05 11:11 - 2013-09-13 13:15 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2807986$
2013-09-05 11:11 - 2013-09-13 11:34 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2570947$
2013-09-05 11:10 - 2013-09-06 11:08 - 00000000 ___DC C:\WINDOWS\$NtUninstallKB2290570$
2013-09-05 11:01 - 2013-09-13 13:15 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2820917$
2013-09-05 11:00 - 2013-09-13 13:25 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2820197$
2013-09-05 11:00 - 2013-09-13 12:44 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2757638$
2013-09-05 11:00 - 2013-09-13 11:57 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2653956$
2013-09-05 11:00 - 2013-09-13 11:48 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2603381$
2013-09-05 11:00 - 2013-09-13 11:32 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2508429$
2013-09-05 10:59 - 2013-09-13 13:49 - 00012396 _____ C:\WINDOWS\system32\TZLog.log
2013-09-05 10:59 - 2013-09-13 13:49 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2863058$
2013-09-05 10:59 - 2013-09-13 12:25 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2749655$
2013-09-05 10:59 - 2013-09-13 11:32 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2506212$
2013-09-05 10:58 - 2013-09-13 13:48 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2849470$
2013-09-05 10:58 - 2013-09-13 12:44 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2727528$
2013-09-05 10:58 - 2013-09-13 12:26 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2705219-v2$
2013-09-05 10:58 - 2013-09-13 12:25 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2698365$
2013-09-05 10:58 - 2013-09-13 11:35 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2619339$
2013-09-05 10:46 - 2013-09-13 18:22 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2661254-v2$
2013-09-05 10:46 - 2013-09-13 12:25 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2723135-v2$
2013-09-05 10:46 - 2013-09-13 11:35 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2618451$
2013-09-05 10:33 - 2013-09-13 13:15 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2813345$
2013-09-05 10:33 - 2013-09-13 12:06 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2676562$
2013-09-05 10:33 - 2013-09-13 11:33 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2509553$
2013-09-05 10:10 - 2013-09-13 11:49 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2661637$
2013-09-05 10:10 - 2013-09-13 11:35 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2620712$
2013-09-05 10:10 - 2013-09-13 11:34 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2566454$
2013-09-05 08:51 - 2013-09-06 11:14 - 00000000 ____D C:\Dokumente und Einstellungen\Peter xxxxx\Lokale Einstellungen\Anwendungsdaten\Torch
==================== One Month Modified Files and Folders =======
2013-10-05 20:15 - 2013-09-11 13:52 - 00000884 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2013-10-05 20:15 - 2006-04-17 14:39 - 00000000 ____D C:\SCAnnXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
2013-10-05 20:01 - 2004-08-13 14:49 - 00000157 _____ C:\WINDOWS\wiadebug.log
2013-10-05 20:00 - 2004-08-13 14:40 - 00002206 _____ C:\WINDOWS\system32\wpa.dbl
2013-10-05 19:58 - 2007-12-30 21:06 - 01063778 _____ C:\WINDOWS\WindowsUpdate.log
2013-10-05 19:58 - 2004-08-13 14:40 - 00002850 _____ C:\WINDOWS\win.ini
2013-10-05 19:57 - 2013-09-15 09:54 - 00000464 _____ C:\WINDOWS\Tasks\RNUpgradeHelperLogonPrompt_Peter xxxxx.job
2013-10-05 19:57 - 2004-08-13 15:00 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2013-10-05 19:57 - 2004-08-13 14:49 - 00000050 _____ C:\WINDOWS\wiaservc.log
2013-10-05 19:56 - 2004-08-13 15:00 - 00032460 _____ C:\WINDOWS\SchedLgU.Txt
2013-10-05 19:55 - 2006-03-18 20:58 - 00000300 ___SH C:\Dokumente und Einstellungen\Peter xxxxx\ntuser.ini
2013-10-05 19:55 - 2006-03-18 20:58 - 00000000 ____D C:\Dokumente und Einstellungen\Peter xxxxx
2013-10-05 19:54 - 2013-10-05 19:54 - 00000000 ____D C:\TDSSKiller_Quarantine
2013-10-04 20:29 - 2008-12-21 17:39 - 00000000 ____D C:\MAHJONGG
2013-10-04 20:04 - 2009-03-19 19:47 - 00000000 __SHD C:\WINDOWS\CSC
2013-10-04 13:47 - 2013-10-04 08:24 - 00000000 ____D C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\ParetoLogic
2013-10-04 13:47 - 2013-09-06 11:15 - 00000000 ____D C:\Dokumente und Einstellungen\Peter xxxxx\Startmenü\Programme
2013-10-04 13:47 - 2004-08-13 14:47 - 00000000 ___RD C:\Programme
2013-10-04 12:14 - 2013-09-09 07:44 - 00001344 _____ C:\Dokumente und Einstellungen\Peter xxxxx\PhoneExplorer_Default.txt
2013-10-04 10:39 - 2013-09-09 07:45 - 00001966 _____ C:\WINDOWS\system32\CEnvironmentServer.txt
2013-10-04 10:39 - 2013-09-09 07:45 - 00001844 _____ C:\WINDOWS\system32\CSDSConfigSettings.txt
2013-10-04 10:39 - 2013-09-09 07:45 - 00000952 _____ C:\WINDOWS\system32\CCfgMgr4PlugIns.txt
2013-10-04 10:39 - 2013-09-09 07:45 - 00000700 _____ C:\WINDOWS\system32\CStdDOMWrapper.txt
2013-10-04 10:39 - 2013-09-09 07:44 - 00002212 _____ C:\Dokumente und Einstellungen\Peter xxxxx\PhoneExplorer_WinShellFolder.txt
2013-10-04 10:34 - 2013-10-04 10:34 - 00000000 ____D C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\42FD
2013-10-04 10:34 - 2013-10-04 10:32 - 00000000 ____D C:\Dokumente und Einstellungen\Peter xxxxx\Lokale Einstellungen\Anwendungsdaten\iMesh
2013-10-04 10:33 - 2013-10-04 10:33 - 00000801 _____ C:\Dokumente und Einstellungen\Peter xxxxx\Startmenü\Programme\iMesh.lnk
2013-10-04 10:33 - 2013-10-04 10:33 - 00000795 _____ C:\Dokumente und Einstellungen\Peter xxxxx\Desktop\iMesh.lnk
2013-10-04 10:33 - 2013-10-04 10:33 - 00000000 ____D C:\Dokumente und Einstellungen\Peter xxxxx\Eigene Dateien\My Received Files
2013-10-04 10:33 - 2006-03-18 20:58 - 00000000 ___RD C:\Dokumente und Einstellungen\Peter xxxxx\Desktop\Eigene Musik
2013-10-04 10:32 - 2013-10-04 10:32 - 00000000 ____D C:\Programme\iMesh Applications
2013-10-04 10:08 - 2013-09-15 09:52 - 00000454 _____ C:\WINDOWS\Tasks\ReclaimerUpdateXML_Peter xxxxx.job
2013-10-04 08:24 - 2013-10-04 08:24 - 00000000 ____D C:\Dokumente und Einstellungen\Peter xxxxx\Anwendungsdaten\ParetoLogic
2013-10-04 08:24 - 2013-10-04 08:24 - 00000000 ____D C:\Dokumente und Einstellungen\Peter xxxxx\Anwendungsdaten\DriverCure
2013-10-04 08:20 - 2013-10-04 08:20 - 00000525 _____ C:\hpfr3420.xml
2013-10-04 08:19 - 2008-12-13 20:01 - 00002509 _____ C:\Dokumente und Einstellungen\Peter xxxxx\Desktop\Microsoft Office Word 2003.lnk
2013-10-03 16:42 - 2006-02-21 04:36 - 00000000 ____D C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Adobe
2013-10-03 14:11 - 2013-09-22 20:03 - 00000000 ____D C:\FRST
2013-10-03 14:05 - 2013-10-03 14:05 - 00000000 ____D C:\Programme\McAfee Security Scan
2013-10-03 14:05 - 2013-10-03 14:05 - 00000000 ____D C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\McAfee Security Scan Plus
2013-10-03 14:05 - 2013-10-03 14:05 - 00000000 ____D C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\McAfee Security Scan
2013-10-03 14:05 - 2013-10-03 14:05 - 00000000 ____D C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\McAfee
2013-10-03 14:05 - 2006-03-18 21:08 - 00000000 ____D C:\Dokumente und Einstellungen\Peter xxxxx\Lokale Einstellungen\Anwendungsdaten\Adobe
2013-10-03 14:05 - 2004-08-13 14:47 - 00000000 ___RD C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart
2013-10-03 14:05 - 2004-08-13 14:47 - 00000000 ___RD C:\Dokumente und Einstellungen\All Users\Startmenü\Programme
2013-10-03 14:04 - 2013-10-03 14:04 - 00001804 _____ C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Adobe Reader XI.lnk
2013-10-03 14:04 - 2013-10-03 14:04 - 00001714 _____ C:\Dokumente und Einstellungen\All Users\Desktop\Adobe Reader XI.lnk
2013-10-03 14:03 - 2006-03-18 21:07 - 00000000 ____D C:\Programme\Gemeinsame Dateien\Adobe
2013-10-03 14:03 - 2006-02-21 04:36 - 00000000 ____D C:\Programme\Adobe
2013-10-03 13:58 - 2013-10-03 13:58 - 00000000 ____D C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Java
2013-10-03 13:57 - 2013-10-03 13:58 - 00264616 _____ (Oracle Corporation) C:\WINDOWS\system32\javaws.exe
2013-10-03 13:57 - 2013-10-03 13:58 - 00175016 _____ (Oracle Corporation) C:\WINDOWS\system32\javaw.exe
2013-10-03 13:57 - 2013-10-03 13:58 - 00175016 _____ (Oracle Corporation) C:\WINDOWS\system32\java.exe
2013-10-03 13:57 - 2013-10-03 13:58 - 00094632 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge.dll
2013-10-03 13:57 - 2012-05-06 12:35 - 00868264 _____ (Oracle Corporation) C:\WINDOWS\system32\npdeployJava1.dll
2013-10-03 13:57 - 2012-05-06 12:35 - 00790440 _____ (Oracle Corporation) C:\WINDOWS\system32\deployJava1.dll
2013-10-03 13:57 - 2012-05-06 12:35 - 00144896 _____ (Oracle Corporation) C:\WINDOWS\system32\javacpl.cpl
2013-10-03 13:57 - 2006-02-21 04:30 - 00000000 ____D C:\Programme\Java
2013-10-02 19:05 - 2006-11-30 21:54 - 00000000 ____D C:\Programme\Mozilla Thunderbird
2013-10-02 18:31 - 2013-10-02 18:31 - 00000000 ____D C:\Dokumente und Einstellungen\Peter xxxxx\Eigene Dateien\-XX[task2013.256]CrosswindandGustsOperations-Preliminary
2013-10-02 12:02 - 2004-08-13 14:42 - 00000000 ____D C:\WINDOWS\Help
2013-10-02 11:11 - 2013-09-20 09:21 - 00000810 _____ C:\WINDOWS\wmsetup.log
2013-10-02 09:44 - 2013-10-02 09:44 - 00000000 ____D C:\tmp
2013-10-02 09:26 - 2013-10-02 09:26 - 00007721 _____ C:\Dokumente und Einstellungen\Peter xxxxx\Eigene Dateien\Rechnung374009.htm
2013-10-01 16:16 - 2013-09-27 17:41 - 00137208 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avipbb.sys
2013-10-01 16:16 - 2013-09-27 17:41 - 00089376 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avgntflt.sys
2013-10-01 16:16 - 2013-09-27 17:41 - 00037352 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avkmgr.sys
2013-10-01 13:45 - 2013-10-01 13:45 - 98609238 _____ C:\WINDOWS\system32\䶎魍嚄6
2013-10-01 08:34 - 2013-10-01 08:34 - 00000000 ____D C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Avira
2013-10-01 08:34 - 2013-09-27 17:42 - 00001671 _____ C:\Dokumente und Einstellungen\All Users\Desktop\Avira Control Center.lnk
2013-10-01 08:34 - 2013-09-11 09:13 - 00000000 ____D C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Avira
2013-10-01 06:51 - 2013-10-01 06:51 - 98602865 _____ C:\WINDOWS\system32\籅Ҥ嚄6
2013-09-30 21:05 - 2013-09-30 21:05 - 98541442 _____ C:\WINDOWS\system32\拏ﲜ嚄6
2013-09-30 15:02 - 2013-09-30 07:03 - 98499637 _____ C:\WINDOWS\system32\ꂉ�嚄6
2013-09-30 08:44 - 2006-04-17 15:14 - 00000000 ____D C:\Programme\Gemeinsame Dateien\aol
2013-09-29 19:02 - 2013-09-29 19:02 - 98466785 _____ C:\WINDOWS\system32\䒲協6
2013-09-29 12:19 - 2013-09-29 12:19 - 98462899 _____ C:\WINDOWS\system32\�⫂協6
2013-09-29 10:31 - 2013-09-29 10:31 - 00002228 _____ C:\Dokumente und Einstellungen\Peter xxxxx\Anwendungsdaten\PhoneExplorer_WinShellFolder.txt
2013-09-29 10:31 - 2013-09-29 10:31 - 00001300 _____ C:\Dokumente und Einstellungen\Peter xxxxx\Anwendungsdaten\PhoneExplorer_Default.txt
2013-09-29 10:20 - 2013-09-29 10:20 - 00000000 ____D C:\WINDOWS\ERUNT
2013-09-29 08:14 - 2011-02-23 17:11 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB954155_WM9$
2013-09-28 19:36 - 2013-09-28 19:36 - 98442955 _____ C:\WINDOWS\system32\菕庭嚄6
2013-09-28 17:15 - 2013-09-28 17:15 - 00000000 ____D C:\Dokumente und Einstellungen\Peter xxxxx\Anwendungsdaten\Malwarebytes
2013-09-28 17:15 - 2013-09-28 17:15 - 00000000 ____D C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Malwarebytes
2013-09-28 13:36 - 2004-08-13 14:47 - 02115720 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2013-09-28 08:06 - 2013-09-28 08:06 - 98372650 _____ C:\WINDOWS\system32\괼隸嚄6
2013-09-27 19:12 - 2013-09-27 19:12 - 00000000 ____D C:\Dokumente und Einstellungen\Peter xxxxx\WINDOWS
2013-09-27 18:52 - 2013-09-27 18:52 - 00000000 ____D C:\Dokumente und Einstellungen\Peter xxxxx\Lokale Einstellungen\Anwendungsdaten\AskPartnerNetwork
2013-09-27 18:52 - 2013-09-27 18:52 - 00000000 ____D C:\Dokumente und Einstellungen\Peter xxxxx\Lokale Einstellungen\Anwendungsdaten\AOL Toolbar
2013-09-27 17:48 - 2013-09-27 17:48 - 00000000 ____D C:\Dokumente und Einstellungen\Peter xxxxx\Anwendungsdaten\Avira
2013-09-27 17:45 - 2013-09-27 17:45 - 00000000 ____D C:\Programme\AskPartnerNetwork
2013-09-27 17:45 - 2013-09-27 17:45 - 00000000 ____D C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\AskPartnerNetwork
2013-09-27 17:41 - 2013-09-27 17:41 - 00000000 ____D C:\Programme\Avira
2013-09-27 17:37 - 2013-09-27 17:41 - 00028520 _____ (Avira GmbH) C:\WINDOWS\system32\Drivers\ssmdrv.sys
2013-09-27 09:33 - 2013-09-29 10:19 - 01030305 _____ (Thisisu) C:\Dokumente und Einstellungen\Peter xxxxx\Desktop\JRT_NEW.exe
2013-09-27 08:34 - 2013-09-27 07:46 - 00000000 ____D C:\Qoobox
2013-09-27 08:32 - 2013-09-26 19:03 - 00000000 ____D C:\WINDOWS\erdnt
2013-09-27 08:29 - 2004-08-13 14:40 - 00000379 _____ C:\WINDOWS\system.ini
2013-09-27 08:27 - 2006-02-21 16:15 - 10223616 _____ C:\WINDOWS\system32\config\SYSTEM.bak
2013-09-27 08:27 - 2004-08-13 13:46 - 40632320 _____ C:\WINDOWS\system32\config\SOFTWARE.bak
2013-09-27 08:27 - 2004-08-13 13:46 - 00786432 _____ C:\WINDOWS\system32\config\DEFAULT.bak
2013-09-27 08:27 - 2004-08-13 13:46 - 00090112 _____ C:\WINDOWS\system32\config\SECURITY.bak
2013-09-27 08:27 - 2004-08-13 13:46 - 00028672 _____ C:\WINDOWS\system32\config\SAM.bak
2013-09-27 08:26 - 2013-09-27 08:26 - 00008192 ____H C:\WINDOWS\system32\config\SECURITY.tmp.LOG
2013-09-27 08:26 - 2013-09-27 08:26 - 00000000 ____H C:\WINDOWS\system32\config\SYSTEM.tmp.LOG
2013-09-27 08:26 - 2013-09-27 08:26 - 00000000 ____H C:\WINDOWS\system32\config\SOFTWARE.tmp.LOG
2013-09-27 08:26 - 2013-09-27 08:26 - 00000000 ____H C:\WINDOWS\system32\config\SAM.tmp.LOG
2013-09-27 08:26 - 2013-09-27 08:26 - 00000000 ____H C:\WINDOWS\system32\config\DEFAULT.tmp.LOG
2013-09-27 08:24 - 2007-04-07 15:33 - 00000000 ____D C:\Dokumente und Einstellungen\ULLI
2013-09-27 08:24 - 2004-08-13 14:42 - 00000000 ____D C:\WINDOWS\system
2013-09-27 08:07 - 2013-09-27 08:07 - 00000000 _RSHD C:\cmdcons
2013-09-27 08:07 - 2006-02-21 04:20 - 00000319 __RSH C:\boot.ini
2013-09-27 08:01 - 2013-09-18 08:10 - 00224637 _____ C:\WINDOWS\setupapi.log
2013-09-27 07:36 - 2013-09-09 07:45 - 00017901 _____ C:\WINDOWS\system32\DESProxy_M.txt
2013-09-27 07:36 - 2013-09-09 07:45 - 00016183 _____ C:\WINDOWS\system32\DESProxy_I.txt
2013-09-27 07:36 - 2013-09-09 07:45 - 00007270 _____ C:\Dokumente und Einstellungen\Peter xxxxx\PhoneExplorer_PhoneCall.txt
2013-09-27 07:36 - 2013-09-09 07:45 - 00006168 _____ C:\WINDOWS\system32SPhoneObserver.txt
2013-09-27 07:36 - 2013-09-09 07:45 - 00002684 _____ C:\Dokumente und Einstellungen\Peter xxxxx\PhoneExplorer_PhoneEvent.txt
2013-09-27 07:36 - 2013-09-09 07:45 - 00001318 _____ C:\Dokumente und Einstellungen\Peter xxxxx\PhoneExplorer_Jobs.txt
2013-09-26 18:59 - 2013-09-26 18:59 - 00000000 ____D C:\Dokumente und Einstellungen\Peter xxxxx\Lokale Einstellungen\Anwendungsdaten\BonanzaDealsLive
2013-09-25 06:58 - 2013-09-15 09:52 - 00000458 _____ C:\WINDOWS\Tasks\ReclaimerUpdateFiles_Peter xxxxx.job
2013-09-24 08:25 - 2013-09-24 08:25 - 00028709 _____ C:\Dokumente und Einstellungen\Peter xxxxx\Eigene Dateien\Logs.zip
2013-09-22 19:58 - 2013-09-22 19:58 - 00000000 _____ C:\Dokumente und Einstellungen\Peter xxxxx\defogger_reenable
2013-09-20 12:08 - 2008-02-24 12:09 - 00000000 ____D C:\Dokumente und Einstellungen\LocalService\Lokale Einstellungen\Anwendungsdaten\AOL
2013-09-20 12:08 - 2007-09-09 14:54 - 00000000 ____D C:\Dokumente und Einstellungen\Peter xxxxx\Lokale Einstellungen\Anwendungsdaten\AOL
2013-09-20 09:25 - 2013-09-20 09:18 - 00000000 ____D C:\Programme\AOL Desktop 9.7
2013-09-20 09:22 - 2007-09-08 19:56 - 00000000 ____D C:\Dokumente und Einstellungen\Peter xxxxx\Anwendungsdaten\AOL
2013-09-20 09:21 - 2013-09-20 09:21 - 00000746 _____ C:\Dokumente und Einstellungen\All Users\Desktop\AOL Desktop 9.7.lnk
2013-09-20 09:21 - 2013-09-20 09:21 - 00000664 _____ C:\Dokumente und Einstellungen\All Users\Startmenü\AOL Desktop 9.7.lnk
2013-09-20 09:21 - 2012-05-20 09:59 - 00692104 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2013-09-20 09:21 - 2012-05-20 09:59 - 00071048 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2013-09-20 09:21 - 2009-06-18 18:59 - 00000000 ____D C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\AOL
2013-09-20 09:21 - 2007-09-09 14:52 - 00000000 ____D C:\Programme\AOL
2013-09-20 09:21 - 2004-08-13 14:47 - 00000000 ___RD C:\Dokumente und Einstellungen\All Users\Startmenü
2013-09-20 09:20 - 2013-09-20 09:20 - 00000000 ____D C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\AOL Toolbar
2013-09-20 09:19 - 2013-09-20 09:19 - 00000000 ____D C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\AOL OCP
2013-09-20 09:18 - 2009-06-18 18:59 - 00000000 ____D C:\Programme\Gemeinsame Dateien\aolshare
2013-09-20 09:18 - 2007-09-08 19:53 - 00000000 ____D C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\AOL
2013-09-20 09:06 - 2013-09-20 09:05 - 00000000 ____D C:\Handbücher
2013-09-20 09:04 - 2006-04-17 15:48 - 00000000 ____D C:\Acrobat3
2013-09-20 08:54 - 2013-09-20 09:21 - 00058696 _____ (AOL Inc.) C:\WINDOWS\system32\AOLParconLink.exe
2013-09-18 10:15 - 2006-04-17 17:03 - 00000000 ____D C:\Programme\IrfanView
2013-09-18 09:50 - 2004-08-13 15:00 - 00000190 ___SH C:\Dokumente und Einstellungen\Administrator\ntuser.ini
2013-09-18 09:50 - 2004-08-13 15:00 - 00000000 ____D C:\Dokumente und Einstellungen\Administrator
2013-09-18 09:42 - 2013-09-18 09:42 - 00000000 ____D C:\Dokumente und Einstellungen\Administrator\Anwendungsdaten\Real
2013-09-18 09:22 - 2006-02-21 04:22 - 00000000 ____D C:\WINDOWS\system32\ReinstallBackups
2013-09-18 09:12 - 2013-09-18 09:12 - 00000000 ____D C:\WINDOWS\system32\vmm32
2013-09-18 08:42 - 2013-09-18 08:42 - 00000000 ____D C:\Dokumente und Einstellungen\Peter xxxxx\Lokale Einstellungen\Anwendungsdaten\DriverTuner
2013-09-17 09:35 - 2013-09-15 18:22 - 00000000 ____D C:\Dokumente und Einstellungen\Peter xxxxx\Lokale Einstellungen\Anwendungsdaten\No23 Recorder
2013-09-17 09:34 - 2013-09-17 09:34 - 00002824 _____ C:\Dokumente und Einstellungen\Peter xxxxx\Eigene Dateien\cc_20130917_093359.reg
2013-09-15 18:29 - 2013-09-15 18:29 - 00001427 _____ C:\Dokumente und Einstellungen\Peter xxxxx\Lokale Einstellungen\Anwendungsdaten\RecConfig.xml
2013-09-15 18:29 - 2013-09-15 18:24 - 00005560 _____ C:\Dokumente und Einstellungen\Peter xxxxx\Lokale Einstellungen\Anwendungsdaten\PhoneExplorer_WinShellFolder.txt
2013-09-15 18:24 - 2013-09-15 18:24 - 00001244 _____ C:\Dokumente und Einstellungen\Peter xxxxx\Lokale Einstellungen\Anwendungsdaten\PhoneExplorer_Default.txt
2013-09-15 10:45 - 2013-09-15 10:45 - 00155272 _____ C:\Dokumente und Einstellungen\Peter xxxxx\Eigene Dateien\cc_20130915_104507.reg
2013-09-15 10:35 - 2007-09-08 19:55 - 00000000 ____D C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\QuickTime
2013-09-15 10:35 - 2006-06-03 08:04 - 00000000 ____D C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\WinPhone
2013-09-15 10:35 - 2006-04-19 17:01 - 00000000 ____D C:\WINDOWS\Minidump
2013-09-15 10:33 - 2013-09-15 10:33 - 00000654 _____ C:\Dokumente und Einstellungen\All Users\Desktop\CCleaner.lnk
2013-09-15 10:33 - 2013-09-15 10:33 - 00000000 ____D C:\Programme\CCleaner
2013-09-14 20:13 - 2007-06-12 19:56 - 00000260 _____ C:\WINDOWS\cdplayer.ini
2013-09-14 20:08 - 2013-09-14 20:08 - 97581476 _____ C:\WINDOWS\system32\觵嚄6
2013-09-14 18:56 - 2006-11-26 19:48 - 00212992 _____ C:\WINDOWS\outlook.pst
2013-09-14 18:29 - 2006-03-18 21:04 - 00173832 _____ C:\Dokumente und Einstellungen\Peter xxxxx\Lokale Einstellungen\Anwendungsdaten\GDIPFONTCACHEV1.DAT
2013-09-14 17:54 - 2013-09-14 17:54 - 97581476 _____ C:\WINDOWS\system32\菏㚯嚄6
2013-09-14 16:06 - 2013-09-14 08:30 - 00002416 _____ C:\WINDOWS\Summary.txt
2013-09-14 16:03 - 2013-09-09 09:47 - 00000000 ____D C:\Dokumente und Einstellungen\Peter xxxxx\Lokale Einstellungen\Anwendungsdaten\WEKA DVD Interface
2013-09-14 15:56 - 2006-04-16 18:10 - 00000000 ____D C:\Programme\Microsoft Office
2013-09-14 15:52 - 2013-09-14 15:52 - 97542592 _____ C:\WINDOWS\system32\䔏瀄嚄6
2013-09-14 08:32 - 2008-12-13 20:01 - 00000000 ____D C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Microsoft Office
2013-09-14 08:30 - 2013-09-14 08:30 - 00002416 _____ C:\WINDOWS\Summary_0.txt
2013-09-14 08:30 - 2013-09-14 08:30 - 00000000 ____D C:\Dokumente und Einstellungen\NetworkService\Lokale Einstellungen\Anwendungsdaten\PCHealth
2013-09-14 07:49 - 2013-09-14 07:49 - 97519942 _____ C:\WINDOWS\system32\聞쩨嚄6
2013-09-13 20:27 - 2013-09-13 20:27 - 97503480 _____ C:\WINDOWS\system32\舌찎嚄6
2013-09-13 18:22 - 2013-09-05 10:46 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2661254-v2$
2013-09-13 18:13 - 2004-08-13 14:46 - 02463832 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2013-09-13 16:47 - 2013-09-13 16:47 - 97492159 _____ C:\WINDOWS\system32\㔾ࣞ嚄6
2013-09-13 14:23 - 2004-08-13 15:01 - 00000000 ____D C:\WINDOWS\Microsoft.NET
2013-09-13 14:10 - 2013-09-13 14:10 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2864063$
2013-09-13 14:09 - 2013-09-13 14:03 - 00000000 ____D C:\WINDOWS\system32\MRT
2013-09-13 14:01 - 2013-09-13 14:01 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2876315$
2013-09-13 14:01 - 2013-09-13 14:01 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2876217$
2013-09-13 14:01 - 2013-09-05 18:34 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2834904-v2_WM11$
2013-09-13 14:01 - 2009-07-28 11:49 - 00000000 ____D C:\WINDOWS\ie8updates
2013-09-13 14:00 - 2013-09-05 11:16 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2850869$
2013-09-13 13:49 - 2013-09-05 11:11 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2859537$
2013-09-13 13:49 - 2013-09-05 10:59 - 00012396 _____ C:\WINDOWS\system32\TZLog.log
2013-09-13 13:49 - 2013-09-05 10:59 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2863058$
2013-09-13 13:48 - 2013-09-05 18:34 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2845187$
2013-09-13 13:48 - 2013-09-05 10:58 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2849470$
2013-09-13 13:40 - 2009-08-06 14:30 - 00000000 ____D C:\WINDOWS\system32\XPSViewer
2013-09-13 13:25 - 2013-09-05 11:00 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2820197$
2013-09-13 13:15 - 2013-09-05 11:11 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2807986$
2013-09-13 13:15 - 2013-09-05 11:01 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2820917$
2013-09-13 13:15 - 2013-09-05 10:33 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2813345$
2013-09-13 13:14 - 2013-09-05 18:35 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2802968$
2013-09-13 13:14 - 2013-09-05 18:34 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2780091$
2013-09-13 12:44 - 2013-09-05 19:07 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2758857$
2013-09-13 12:44 - 2013-09-05 11:17 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2770660$
2013-09-13 12:44 - 2013-09-05 11:17 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2753842-v2$
2013-09-13 12:44 - 2013-09-05 11:00 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2757638$
2013-09-13 12:44 - 2013-09-05 10:58 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2727528$
2013-09-13 12:26 - 2013-09-05 10:58 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2705219-v2$
2013-09-13 12:25 - 2013-09-05 19:20 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2712808$
2013-09-13 12:25 - 2013-09-05 10:59 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2749655$
2013-09-13 12:25 - 2013-09-05 10:58 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2698365$
2013-09-13 12:25 - 2013-09-05 10:46 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2723135-v2$
2013-09-13 12:24 - 2013-09-13 12:24 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2655992$
2013-09-13 12:24 - 2013-09-05 19:05 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2691442$
2013-09-13 12:24 - 2013-09-05 11:25 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2719985$
2013-09-13 12:23 - 2013-09-05 18:35 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2686509$
2013-09-13 12:20 - 2007-11-07 21:46 - 00000000 ____D C:\Programme\Microsoft ActiveSync
2013-09-13 12:06 - 2013-09-05 10:33 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2676562$
2013-09-13 11:57 - 2013-09-13 11:57 - 00000000 ____D C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Microsoft Office Live Add-in
2013-09-13 11:57 - 2013-09-05 11:00 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2653956$
2013-09-13 11:51 - 2013-09-13 11:51 - 00000000 ____D C:\WINDOWS\$SQLUninstallSQL2000-KB960082-v8.00.2055-x86-DEU$
2013-09-13 11:49 - 2013-09-05 18:35 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2598479$
2013-09-13 11:49 - 2013-09-05 10:10 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2661637$
2013-09-13 11:48 - 2013-09-05 19:06 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2585542$
2013-09-13 11:48 - 2013-09-05 19:05 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2631813$
2013-09-13 11:48 - 2013-09-05 11:00 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2603381$
2013-09-13 11:48 - 2013-09-04 16:43 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2584146$
2013-09-13 11:35 - 2013-09-05 19:07 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2544893-v2$
2013-09-13 11:35 - 2013-09-05 10:58 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2619339$
2013-09-13 11:35 - 2013-09-05 10:46 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2618451$
2013-09-13 11:35 - 2013-09-05 10:10 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2620712$
2013-09-13 11:34 - 2013-09-05 19:15 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2564958$
2013-09-13 11:34 - 2013-09-05 19:07 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2536276-v2$
2013-09-13 11:34 - 2013-09-05 11:17 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2592799$
2013-09-13 11:34 - 2013-09-05 11:11 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2570947$
2013-09-13 11:34 - 2013-09-05 10:10 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2566454$
2013-09-13 11:33 - 2013-09-13 11:33 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2507938$
2013-09-13 11:33 - 2013-09-05 19:07 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2491683$
2013-09-13 11:33 - 2013-09-05 11:17 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2535512$
2013-09-13 11:33 - 2013-09-05 10:33 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2509553$
2013-09-13 11:32 - 2013-09-13 11:32 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2481109$
2013-09-13 11:32 - 2013-09-05 18:35 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2485663$
2013-09-13 11:32 - 2013-09-05 11:00 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2508429$
2013-09-13 11:32 - 2013-09-05 10:59 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2506212$
2013-09-13 11:31 - 2013-09-13 11:31 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2479943$
2013-09-13 11:31 - 2013-09-04 16:43 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB971029$
2013-09-13 08:50 - 2009-05-13 20:47 - 00000000 ___HD C:\WINDOWS\$hf_mig$
2013-09-13 08:06 - 2013-09-13 08:06 - 00001566 _____ C:\Dokumente und Einstellungen\All Users\Startmenü\Microsoft Update.lnk
2013-09-13 07:44 - 2013-01-05 15:44 - 00000000 ____D C:\drvrtmp
2013-09-13 07:32 - 2008-12-27 14:54 - 00000000 ____D C:\Dokumente und Einstellungen\Peter xxxxx\Lokale Einstellungen\Anwendungsdaten\Deployment
2013-09-12 21:32 - 2008-10-01 18:43 - 00000000 ____D C:\Dokumente und Einstellungen\Peter xxxxx\Desktop\Neuer Ordner
2013-09-12 20:52 - 2013-09-12 20:52 - 00000000 ____D C:\Programme\SigmaTel
2013-09-12 18:59 - 2006-04-27 10:28 - 00000000 ____D C:\Dokumente und Einstellungen\Monika xxxxx
2013-09-12 18:59 - 2006-04-19 15:55 - 00000000 ____D C:\Dokumente und Einstellungen\Ulrike xxxxx
2013-09-12 18:59 - 2006-04-18 14:16 - 00000000 ____D C:\Dokumente und Einstellungen\Barbara xxxxx
2013-09-12 18:59 - 2004-08-13 15:00 - 00000000 __SHD C:\Dokumente und Einstellungen\NetworkService
2013-09-12 18:59 - 2004-08-13 15:00 - 00000000 __SHD C:\Dokumente und Einstellungen\LocalService
2013-09-12 18:58 - 2004-08-13 14:52 - 00000000 ____D C:\WINDOWS\Registration
2013-09-12 18:56 - 2006-02-21 04:16 - 00000000 ____D C:\i386
2013-09-12 18:09 - 2013-09-12 18:09 - 00000000 ____D C:\Dokumente und Einstellungen\Administrator\Lokale Einstellungen\Anwendungsdaten\Google
2013-09-12 15:00 - 2013-09-12 13:00 - 97296948 _____ C:\WINDOWS\system32\匉齪嚄6
2013-09-12 07:00 - 2013-09-12 07:00 - 97238077 _____ C:\WINDOWS\system32\辈ᑝ嚄6
2013-09-11 21:33 - 2013-09-11 21:33 - 97170353 _____ C:\WINDOWS\system32\⡿嚄6
2013-09-11 19:33 - 2013-09-11 19:33 - 97170353 _____ C:\WINDOWS\system32\䠃ᕀ嚄6
2013-09-11 19:28 - 2013-09-11 19:28 - 00002209 _____ C:\Dokumente und Einstellungen\Administrator\PhoneExplorer_WinShellFolder.txt
2013-09-11 19:28 - 2013-09-11 19:28 - 00001281 _____ C:\Dokumente und Einstellungen\Administrator\PhoneExplorer_Default.txt
2013-09-11 17:35 - 2013-09-11 17:35 - 97124766 _____ C:\WINDOWS\system32\ꔧﮇ嚄6
2013-09-11 13:51 - 2013-09-11 13:51 - 00000000 __SHD C:\Dokumente und Einstellungen\Peter xxxxx\IECompatCache
2013-09-11 11:58 - 2013-09-11 11:58 - 97080355 _____ C:\WINDOWS\system32\↖ꦋ嚄6
2013-09-11 09:16 - 2006-04-17 16:57 - 00000000 ____D C:\Dokumente und Einstellungen\Peter xxxxx\Anwendungsdaten\Mozilla
2013-09-11 08:13 - 2006-11-11 18:46 - 00000000 ____D C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Google
2013-09-11 08:13 - 2006-11-11 18:43 - 00000000 ____D C:\Programme\Google
2013-09-10 11:09 - 2013-09-10 11:09 - 00000000 ____D C:\Dokumente und Einstellungen\Peter xxxxx\Lokale Einstellungen\Anwendungsdaten\avgchrome
2013-09-10 11:08 - 2013-09-10 11:08 - 00000000 ____D C:\WINDOWS\system32\searchplugins
2013-09-10 11:08 - 2013-09-10 11:08 - 00000000 ____D C:\WINDOWS\system32\Extensions
2013-09-10 11:07 - 2013-09-10 11:07 - 00000000 ____D C:\Programme\Mozilla Firefox
2013-09-09 19:56 - 2013-09-09 10:53 - 00120502 _____ C:\Dokumente und Einstellungen\Peter xxxxx\PhoneExplorer_WinShellView.txt
2013-09-09 19:49 - 2004-08-13 14:53 - 00000000 ____D C:\WINDOWS\system32\DirectX
2013-09-09 18:24 - 2007-02-25 12:33 - 00000000 ____D C:\Programme\Gemeinsame Dateien\Wise Installation Wizard
2013-09-09 10:53 - 2013-09-09 07:45 - 00000738 _____ C:\Dokumente und Einstellungen\Peter xxxxx\PhoneExplorer_WinShellShortcut.txt
2013-09-09 09:13 - 2013-09-09 09:13 - 00000000 ____D C:\Dokumente und Einstellungen\Peter xxxxx\Lokale Einstellungen\Anwendungsdaten\PCHealth
2013-09-09 08:56 - 2013-09-05 11:32 - 00000000 ____D C:\86169efe8ca9739d0636082b5eaf02
2013-09-09 08:54 - 2006-05-05 20:41 - 00000000 ____D C:\Software
2013-09-09 07:45 - 2011-03-26 15:56 - 00002445 _____ C:\Dokumente und Einstellungen\Peter xxxxx\Desktop\Google Chrome.lnk
2013-09-08 21:24 - 2004-08-13 14:40 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ctfmon.exe
2013-09-08 21:24 - 2004-08-13 14:40 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\ctfmon.exe
2013-09-08 21:10 - 2013-09-06 11:16 - 00000000 ____D C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Driver Whiz
2013-09-08 20:59 - 2013-09-06 11:17 - 00000000 ____D C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Advanced System Optimizer 3
2013-09-08 19:40 - 2013-09-08 19:40 - 00000621 _____ C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Windows Messenger.lnk
2013-09-08 19:25 - 2006-04-29 18:52 - 00000000 ____D C:\Programme\T-Online
2013-09-08 18:45 - 2013-09-08 18:45 - 00000889 _____ C:\Dokumente und Einstellungen\Peter xxxxx\Desktop\Revo Uninstaller.lnk
2013-09-08 18:45 - 2013-09-08 18:45 - 00000000 ____D C:\Programme\VS Revo Group
2013-09-08 17:56 - 2006-04-17 15:31 - 00000000 __SHD C:\Dokumente und Einstellungen\Peter xxxxx\UserData
2013-09-07 19:20 - 2013-09-07 19:20 - 00499712 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp71.dll
2013-09-07 19:20 - 2013-09-07 19:20 - 00348160 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcr71.dll
2013-09-07 19:20 - 2013-09-07 19:20 - 00163840 _____ (America Online) C:\WINDOWS\system32\jgdw400.dll
2013-09-07 19:20 - 2013-09-07 19:20 - 00027648 _____ (Johnson-Grace Company) C:\WINDOWS\system32\jgpl400.dll
2013-09-07 14:24 - 2004-08-13 14:42 - 00000000 ____D C:\WINDOWS\security
2013-09-07 14:17 - 2013-09-07 14:17 - 00002004 _____ C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\MSN.lnk
2013-09-07 14:17 - 2013-09-07 14:17 - 00000000 ____D C:\WINDOWS\system32\FxsTmp
2013-09-07 14:17 - 2013-09-07 14:17 - 00000000 ____D C:\Programme\Online Services
2013-09-07 14:16 - 2004-08-13 14:42 - 00000000 ____D C:\WINDOWS\addins
2013-09-07 14:12 - 2004-08-13 14:42 - 00000000 ____D C:\WINDOWS\system32\inetsrv
2013-09-07 13:51 - 2013-09-07 13:49 - 00000000 ____D C:\WINDOWS\CD27142034CF47DC80B7C409B6CD0DD8.TMP
2013-09-07 13:39 - 2013-09-07 13:39 - 00000000 ____D C:\Dokumente und Einstellungen\Administrator\Anwendungsdaten\PKWARE
2013-09-07 13:38 - 2009-05-13 12:37 - 00000000 ____D C:\Programme\Support Tools
2013-09-06 21:46 - 2013-09-06 21:46 - 00000000 ____D C:\Dokumente und Einstellungen\Administrator\Anwendungsdaten\Macromedia
2013-09-06 21:46 - 2013-09-06 21:46 - 00000000 ____D C:\Dokumente und Einstellungen\Administrator\Anwendungsdaten\AOL
2013-09-06 21:41 - 2013-09-06 21:41 - 00000000 ____D C:\Dokumente und Einstellungen\Administrator\Anwendungsdaten\T-Online
2013-09-06 12:21 - 2013-09-06 12:21 - 00000000 ____D C:\Dokumente und Einstellungen\Administrator\Lokale Einstellungen\Anwendungsdaten\AOL
2013-09-06 12:20 - 2013-09-06 12:20 - 00000747 _____ C:\Dokumente und Einstellungen\Administrator\Startmenü\Programme\Internet Explorer.lnk
2013-09-06 12:20 - 2004-08-13 15:00 - 00000718 _____ C:\Dokumente und Einstellungen\Administrator\Startmenü\Programme\Outlook Express.lnk
2013-09-06 12:20 - 2004-08-13 15:00 - 00000000 ___RD C:\Dokumente und Einstellungen\Administrator\Startmenü\Programme
2013-09-06 12:20 - 2004-08-13 15:00 - 00000000 ___RD C:\Dokumente und Einstellungen\Administrator\Eigene Dateien\Eigene Musik
2013-09-06 12:20 - 2004-08-13 15:00 - 00000000 ___RD C:\Dokumente und Einstellungen\Administrator\Eigene Dateien\Eigene Bilder
2013-09-06 12:19 - 2013-09-06 12:19 - 00000768 _____ C:\Dokumente und Einstellungen\Administrator\Startmenü\Programme\Windows Media Player.lnk
2013-09-06 12:09 - 2004-08-13 14:47 - 00001919 _____ C:\WINDOWS\system32\AUTOEXEC.NT
2013-09-06 11:19 - 2013-09-06 11:19 - 00000000 ____D C:\sh4ldr
2013-09-06 11:19 - 2013-05-19 11:22 - 00000000 ____D C:\WINDOWS\4941BFEB62C047A2801E998FC469CC2C.TMP
2013-09-06 11:17 - 2013-09-01 15:31 - 00000000 ____D C:\Inetpub(2)
2013-09-06 11:17 - 2006-06-03 08:03 - 00000000 ____D C:\Programme\Gemeinsame Dateien\Sonic Shared
2013-09-06 11:16 - 2013-09-06 11:16 - 00000000 ____D C:\Dokumente und Einstellungen\Peter xxxxx\Lokale Einstellungen\Anwendungsdaten\PC_Drivers_Headquarters
2013-09-06 11:16 - 2013-09-06 11:16 - 00000000 ____D C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\UAB
2013-09-06 11:15 - 2013-09-06 11:15 - 00000000 ___RD C:\Dokumente und Einstellungen\Peter xxxxx\Startmenü\Programme\Zubehör
2013-09-06 11:15 - 2013-09-06 11:15 - 00000000 ___RD C:\Dokumente und Einstellungen\Peter xxxxx\Startmenü\Programme\Verwaltung
2013-09-06 11:15 - 2013-09-06 11:15 - 00000000 ___RD C:\Dokumente und Einstellungen\Peter xxxxx\Startmenü\Programme\Autostart
2013-09-06 11:15 - 2013-09-06 11:15 - 00000000 ___RD C:\Dokumente und Einstellungen\Peter xxxxx\Startmenü
2013-09-06 11:15 - 2013-09-06 11:15 - 00000000 ____D C:\Dokumente und Einstellungen\Peter xxxxx\Startmenü\Programme\TP-LINK
2013-09-06 11:15 - 2013-09-06 11:15 - 00000000 ____D C:\Dokumente und Einstellungen\Peter xxxxx\Startmenü\Programme\SupervisionCam
2013-09-06 11:15 - 2013-09-06 11:15 - 00000000 ____D C:\Dokumente und Einstellungen\Peter xxxxx\Startmenü\Programme\Sage GS-Buchhalter
2013-09-06 11:15 - 2013-09-06 11:15 - 00000000 ____D C:\Dokumente und Einstellungen\Peter xxxxx\Startmenü\Programme\Microsoft Office
2013-09-06 11:15 - 2013-09-06 11:15 - 00000000 ____D C:\Dokumente und Einstellungen\Peter xxxxx\Startmenü\Programme\GS-Büro 32
2013-09-06 11:15 - 2013-09-06 11:15 - 00000000 ____D C:\Dokumente und Einstellungen\Peter xxxxx\Startmenü\Programme\Google Chrome
2013-09-06 11:15 - 2013-09-06 11:15 - 00000000 ____D C:\Dokumente und Einstellungen\Peter xxxxx\Startmenü\Programme\Dell
2013-09-06 11:14 - 2013-09-05 08:51 - 00000000 ____D C:\Dokumente und Einstellungen\Peter xxxxx\Lokale Einstellungen\Anwendungsdaten\Torch
2013-09-06 11:14 - 2013-08-18 16:41 - 00000000 ___DC C:\WINDOWS\$NtUninstallKB942288-v3$
2013-09-06 11:13 - 2013-09-06 11:13 - 00000000 ____D C:\Dokumente und Einstellungen\Ulrike xxxxx\Lokale Einstellungen\Anwendungsdaten\XTTB00001
2013-09-06 11:13 - 2013-09-06 11:13 - 00000000 ____D C:\Dokumente und Einstellungen\Peter xxxxx\Lokale Einstellungen\Anwendungsdaten\XTTB00001
2013-09-06 11:13 - 2013-09-06 11:13 - 00000000 ____D C:\Dokumente und Einstellungen\Barbara xxxxx\Lokale Einstellungen\Anwendungsdaten\XTTB00001
2013-09-06 11:13 - 2009-08-29 13:02 - 00000000 ____D C:\Programme\Gemeinsame Dateien\Marmiko Shared
2013-09-06 11:08 - 2013-09-05 11:10 - 00000000 ___DC C:\WINDOWS\$NtUninstallKB2290570$
2013-09-06 11:07 - 2013-09-05 11:31 - 00000000 ___DC C:\WINDOWS\$NtUninstallKB2624667$
2013-09-06 11:07 - 2013-09-05 11:17 - 00000000 ___DC C:\WINDOWS\$NtUninstallKB953155$
2013-09-06 11:05 - 2013-09-05 14:46 - 00000000 ____D C:\ab1c13cb9f029ab079f73db4
2013-09-06 10:57 - 2006-02-21 04:34 - 00000000 ___HD C:\Programme\InstallShield Installation Information
2013-09-06 10:54 - 2013-09-05 19:06 - 00000000 ___DC C:\WINDOWS\$NtUninstallKB2850851$
2013-09-06 10:54 - 2013-09-05 18:50 - 00000000 ___DC C:\WINDOWS\$NtUninstallKB970483$
2013-09-06 10:53 - 2013-09-05 19:20 - 00000000 ___DC C:\WINDOWS\$NtUninstallKB976323$
2013-09-06 10:53 - 2013-09-05 19:20 - 00000000 ___DC C:\WINDOWS\$NtUninstallKB2124261$
2013-09-06 10:29 - 2004-08-13 14:52 - 00000000 ___RD C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Verwaltung
2013-09-06 10:28 - 2006-02-21 04:34 - 00000000 ____D C:\Programme\Dell
2013-09-05 19:16 - 2013-09-05 19:16 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2659262$
2013-09-05 19:07 - 2013-09-05 19:07 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2834886$
2013-09-05 13:06 - 2010-06-13 12:50 - 00065536 _____ C:\WINDOWS\system32\config\WindowsPowerShell.evt
2013-09-05 12:26 - 2006-03-18 20:58 - 00000000 __SHD C:\Dokumente und Einstellungen\Peter xxxxx\Lokale Einstellungen\Verlauf
Files to move or delete:
====================
C:\Dokumente und Einstellungen\Peter xxxxx\hpothb07.dat
C:\Dokumente und Einstellungen\Ulrike xxxxx\hpothb07.dat
Some content of TEMP:
====================
C:\Dokumente und Einstellungen\Peter xxxxx\Lokale Einstellungen\Temp\AcsInstall.dll
C:\Dokumente und Einstellungen\Peter xxxxx\Lokale Einstellungen\Temp\AOLFirewallMgr.dll
C:\Dokumente und Einstellungen\Peter xxxxx\Lokale Einstellungen\Temp\AOLInstallerfw.dll
C:\Dokumente und Einstellungen\Peter xxxxx\Lokale Einstellungen\Temp\avgnt.exe
C:\Dokumente und Einstellungen\Peter xxxxx\Lokale Einstellungen\Temp\Quarantine.exe
C:\Dokumente und Einstellungen\Peter xxxxx\Lokale Einstellungen\Temp\SHFOLDER.DLL
C:\Dokumente und Einstellungen\Peter xxxxx\Lokale Einstellungen\Temp\{57FB0E88-2596-4D46-B130-A45DB02C7F62}.exe
C:\Dokumente und Einstellungen\Ulrike xxxxx\Lokale Einstellungen\Temp\QuickTimeInstaller.exe
==================== Bamital & volsnap Check =================
C:\Windows\explorer.exe
[2004-08-13 14:40] - [2008-04-14 07:52] - 1036800 ____A (Microsoft Corporation) 418045a93cd87a352098ab7dabe1b53e
C:\Windows\System32\winlogon.exe
[2004-08-13 14:40] - [2008-04-14 07:53] - 0513024 ____A (Microsoft Corporation) f09a527b422e25c478e38caa0e44417a
C:\Windows\System32\svchost.exe
[2004-08-13 14:40] - [2008-04-14 07:53] - 0014336 ____A (Microsoft Corporation) 4fbc75b74479c7a6f829e0ca19df3366
C:\Windows\System32\services.exe
[2004-08-13 14:40] - [2009-02-09 13:21] - 0111104 ____A (Microsoft Corporation) a3edbe9053889fb24ab22492472b39dc
C:\Windows\System32\User32.dll
[2004-08-13 14:40] - [2008-04-14 07:52] - 0580096 ____A (Microsoft Corporation) b0050cc5340e3a0760dd8b417ff7aebd
C:\Windows\System32\userinit.exe
[2004-08-13 14:40] - [2008-04-14 07:53] - 0026624 ____A (Microsoft Corporation) 788f95312e26389d596c0fa55834e106
C:\Windows\System32\Drivers\volsnap.sys
[2004-08-13 14:40] - [2008-04-14 07:22] - 0053760 ____A (Microsoft Corporation) a5a712f4e880874a477af790b5186e1d
==================== End Of Log ============================
----Teil 1--- |
|
05.10.2013, 20:11
| #21 |
| | Virus „BOO/Sinowal.A“ lässt sich nicht entfernen Hallo Schrauber, nun der erst Log Tdss Killer Code:
ATTFilter 19:52:20.0031 0x0abc TDSS rootkit removing tool 3.0.0.11 Sep 30 2013 09:17:03
19:52:20.0312 0x0abc ============================================================
19:52:20.0312 0x0abc Current date / time: 2013/10/05 19:52:20.0312
19:52:20.0312 0x0abc SystemInfo:
19:52:20.0312 0x0abc
19:52:20.0312 0x0abc OS Version: 5.1.2600 ServicePack: 3.0
19:52:20.0312 0x0abc Product type: Workstation
19:52:20.0312 0x0abc ComputerName: xxxxx
19:52:20.0312 0x0abc UserName: Peter xxxxx
19:52:20.0312 0x0abc Windows directory: C:\WINDOWS
19:52:20.0312 0x0abc System windows directory: C:\WINDOWS
19:52:20.0312 0x0abc Processor architecture: Intel x86
19:52:20.0312 0x0abc Number of processors: 1
19:52:20.0312 0x0abc Page size: 0x1000
19:52:20.0312 0x0abc Boot type: Normal boot
19:52:20.0312 0x0abc ============================================================
19:52:45.0546 0x0abc System UUID: {AEB0CB9A-AED1-B0D0-41D3-A73CFE66A525}
19:52:46.0812 0x0abc Drive \Device\Harddisk0\DR0 - Size: 0x3A35294400 (232.83 Gb), SectorSize: 0x200, Cylinders: 0x76BA, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
19:52:46.0843 0x0abc ============================================================
19:52:46.0843 0x0abc \Device\Harddisk0\DR0:
19:52:46.0843 0x0abc MBR partitions:
19:52:46.0843 0x0abc \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x17886, BlocksNum 0x1CB880AA
19:52:46.0843 0x0abc ============================================================
19:52:46.0921 0x0abc C: <-> \Device\Harddisk0\DR0\Partition1
19:52:46.0921 0x0abc ============================================================
19:52:46.0921 0x0abc Initialize success
19:52:46.0921 0x0abc ============================================================
19:52:54.0296 0x09b8 ============================================================
19:52:54.0296 0x09b8 Scan started
19:52:54.0296 0x09b8 Mode: Manual;
19:52:54.0296 0x09b8 ============================================================
19:52:54.0296 0x09b8 KSN ping started
19:53:07.0734 0x09b8 KSN ping finished: true
19:53:10.0546 0x09b8 ================ Scan system memory ========================
19:53:10.0562 0x09b8 System memory - ok
19:53:10.0562 0x09b8 ================ Scan services =============================
19:53:10.0937 0x09b8 [ D5A6658CBFBBF9A0F8827E83C9FDE806, F67489BEA27A6DD596FBBC08FB7C2BC0093DBF18F779016EA263986FD4B0D946 ] 6to4 C:\WINDOWS\System32\6to4svc.dll
19:53:10.0937 0x09b8 6to4 - ok
19:53:11.0078 0x09b8 Abiosdsk - ok
19:53:11.0125 0x09b8 [ 6ABB91494FE6C59089B9336452AB2EA3, FA28396820E44F991891042E051A4414485B54D456F252E03E3FFE1B4B4CF843 ] abp480n5 C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS
19:53:11.0203 0x09b8 abp480n5 - ok
19:53:11.0250 0x09b8 [ AC407F1A62C3A300B4F2B5A9F1D55B2C, 31F5FC61B37E22100B3A52A590295A7E827FFC581FA9960C64B9032452AAECED ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
19:53:11.0296 0x09b8 ACPI - ok
19:53:11.0343 0x09b8 [ 9E1CA3160DAFB159CA14F83B1E317F75, 13B3E897B0E819BF734449416D9EC6EBCAC89538EC69BF48C068593B82D57004 ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
19:53:11.0390 0x09b8 ACPIEC - ok
19:53:11.0484 0x09b8 AcrSch2Svc - ok
19:53:11.0546 0x09b8 [ 6463D1DB354B13E6CED4D67F6E4910F4, 0E14AF6F68F162276ADE88D9F2CAC2DBA30FFC90EE7CC51A0C9B86D568369238 ] actser C:\WINDOWS\system32\drivers\actser.sys
19:53:11.0578 0x09b8 actser - ok
19:53:11.0640 0x09b8 [ 6D7F09CD92A9FEF3A8EFCE66231FDD79, FBEE01F2FFDB6854F682B4BE91673462A146927DD333D3C4DE66E6B86D9ED8DB ] adfs C:\WINDOWS\system32\drivers\adfs.sys
19:53:11.0687 0x09b8 adfs - ok
19:53:11.0796 0x09b8 [ 476BB014F3F68C0C15EDDD5B444DA8FF, 94E8FDC4390672C31081EACF3B3AE57486ED06669C4120F139DB3A62AAE77071 ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
19:53:11.0875 0x09b8 AdobeFlashPlayerUpdateSvc - ok
19:53:11.0921 0x09b8 [ 9A11864873DA202C996558B2106B0BBC, 4C68F1DBD1541291DD0FAB78DB42B25FA051CD9F55ED869173E3219CD31500C4 ] adpu160m C:\WINDOWS\system32\DRIVERS\adpu160m.sys
19:53:11.0968 0x09b8 adpu160m - ok
19:53:12.0015 0x09b8 [ 8BED39E3C35D6A489438B8141717A557, 1B5796E56B0927360CE0759641B1151828BC0A9E45620D2B2D880491F5CE33D0 ] aec C:\WINDOWS\system32\drivers\aec.sys
19:53:12.0078 0x09b8 aec - ok
19:53:12.0156 0x09b8 [ 1E44BC1E83D8FD2305F8D452DB109CF9, CF5EC07E0B589FA2A4701C6CFD69E893FC3ABF274AD57AE3C13FFE49063B02C8 ] AFD C:\WINDOWS\System32\drivers\afd.sys
19:53:12.0187 0x09b8 AFD - ok
19:53:12.0250 0x09b8 [ B34B1AB0A7690A0E2301FEC6D17B2FC1, E37953E874709E8329C72F8923F34B72654B35A756D838828A005A31E196F206 ] AFS2K C:\WINDOWS\system32\drivers\AFS2K.sys
19:53:12.0265 0x09b8 AFS2K - ok
19:53:12.0375 0x09b8 [ 08FD04AA961BDC77FB983F328334E3D7, A784EC8A9EDB579262366B5A9AB177DB7BEC0A421BDE85431D0AD4959D5AF5E7 ] agp440 C:\WINDOWS\system32\DRIVERS\agp440.sys
19:53:12.0406 0x09b8 agp440 - ok
19:53:12.0453 0x09b8 [ 03A7E0922ACFE1B07D5DB2EEB0773063, 93EEA872A5642C95FF19C81F8EFFB9B52742A14DBF138784F0F713AD18C413ED ] agpCPQ C:\WINDOWS\system32\DRIVERS\agpCPQ.sys
19:53:12.0468 0x09b8 agpCPQ - ok
19:53:12.0531 0x09b8 [ C23EA9B5F46C7F7910DB3EAB648FF013, 92C84E9AF278A3B55D56C4F8E6C10E3EF1F7B336A44A018AED6DC51A46671F0B ] Aha154x C:\WINDOWS\system32\DRIVERS\aha154x.sys
19:53:12.0562 0x09b8 Aha154x - ok
19:53:12.0609 0x09b8 [ 19DD0FB48B0C18892F70E2E7D61A1529, 95BA1568E8E08314508CA0E1F95555891E70399AEC312C793B46A841F56FFDCF ] aic78u2 C:\WINDOWS\system32\DRIVERS\aic78u2.sys
19:53:12.0656 0x09b8 aic78u2 - ok
19:53:12.0703 0x09b8 [ B7FE594A7468AA0132DEB03FB8E34326, BF0DC2B8C474DB151589BA9968264413521DDD9E7316B752B2FA40C24200FBE0 ] aic78xx C:\WINDOWS\system32\DRIVERS\aic78xx.sys
19:53:12.0750 0x09b8 aic78xx - ok
19:53:12.0812 0x09b8 [ 738D80CC01D7BC7584BE917B7F544394, DCC17AAEF5CDDF52FAAC3CC6904EF421CD595F66318A2370BEE261D5C3A8E340 ] Alerter C:\WINDOWS\system32\alrsvc.dll
19:53:12.0812 0x09b8 Alerter - ok
19:53:12.0859 0x09b8 [ 190CD73D4984F94D823F9444980513E5, 93A32C2495CCA094F768BA707C74DA5C00B8A88A9236DD1A297439A7C2E6C6FA ] ALG C:\WINDOWS\System32\alg.exe
19:53:12.0859 0x09b8 ALG - ok
19:53:12.0906 0x09b8 [ 1140AB9938809700B46BB88E46D72A96, 369379ECC5941ACE984A7F31EAABB66A2E693EDBADA639B86D26FD681D45608E ] AliIde C:\WINDOWS\system32\DRIVERS\aliide.sys
19:53:12.0937 0x09b8 AliIde - ok
19:53:12.0984 0x09b8 [ CB08AED0DE2DD889A8A820CD8082D83C, B1A9D493390AEDF6EFF8BCAA3B33EC31758452AB497C34C0728CDDA1D8DCBF2A ] alim1541 C:\WINDOWS\system32\DRIVERS\alim1541.sys
19:53:13.0015 0x09b8 alim1541 - ok
19:53:13.0062 0x09b8 [ 95B4FB835E28AA1336CEEB07FD5B9398, 36CD3B14EF78B01FB653B78187FAA63C4DD5F4137AC3B91D81256A350EEDCBC1 ] amdagp C:\WINDOWS\system32\DRIVERS\amdagp.sys
19:53:13.0125 0x09b8 amdagp - ok
19:53:13.0171 0x09b8 [ 79F5ADD8D24BD6893F2903A3E2F3FAD6, 9B179F0B6A559639D3AE3975CEBF2718294BE5743517BEE06586F0D258164C81 ] amsint C:\WINDOWS\system32\DRIVERS\amsint.sys
19:53:13.0203 0x09b8 amsint - ok
19:53:13.0437 0x09b8 [ 010FB73DB0B4BDAE8C2EB2E561EBE0E3, E2AE4588841A944478485CFCFE1FEA34C04327B32FB0AFF31962C03098D11A46 ] AntiVirMailService C:\Programme\Avira\AntiVir Desktop\avmailc.exe
19:53:13.0562 0x09b8 AntiVirMailService - ok
19:53:13.0625 0x09b8 [ 3478F48B23A0D9F6EADD4A2405BA70EF, 421BDDCEFEF491915EF8D9BFB756A56778437D98B136758A15AE5A0672738C9D ] AntiVirSchedulerService C:\Programme\Avira\AntiVir Desktop\sched.exe
19:53:13.0687 0x09b8 AntiVirSchedulerService - ok
19:53:13.0750 0x09b8 [ AFFE7C21A4FCA1963371F10066911D3A, DC7A94A784C9389792F3C9A1F435CD9B2D5F74AC9E56F35831B65820FA6A0EDE ] AntiVirService C:\Programme\Avira\AntiVir Desktop\avguard.exe
19:53:13.0781 0x09b8 AntiVirService - ok
19:53:13.0906 0x09b8 [ 48543D304F54C8997462208555662BA4, ADA3B62E6D1513FF24D044B03EFCBBD4268DB32C213F575D8AD3867D3F82B340 ] AntiVirWebService C:\Programme\Avira\AntiVir Desktop\AVWEBGRD.EXE
19:53:13.0953 0x09b8 AntiVirWebService - ok
19:53:14.0125 0x09b8 [ 85180CF88C5EBAD73B452A43A004CA51, 24D25495DC21293FC1F37EE7E7C2A4725E66D3D25BE05D7EDF4BB4F444C65526 ] AOL ACS C:\Programme\Gemeinsame Dateien\AOL\ACS\AOLAcsd.exe
19:53:14.0125 0x09b8 AOL ACS - ok
19:53:14.0218 0x09b8 [ 2FC9244E0CD8F1EC2204142D1557FC6D, 62DC3B81A1DA7F29C6F4D7F0A79249184E99773A8E9861D6A6CEA2DCD0CA9B24 ] AOLService C:\PROGRA~1\GEMEIN~1\aol\AOLPRI~1\\aolserv.exe
19:53:14.0265 0x09b8 AOLService - ok
19:53:14.0406 0x09b8 [ 6D46AB4C073FE2692FD72D1808CA2260, 36CCEB624F4A0E6999C1BD1E1F2CD6F288304B430AA9130EFBDC7FF0C8B3F1CC ] APNMCP C:\Programme\AskPartnerNetwork\Toolbar\apnmcp.exe
19:53:14.0421 0x09b8 APNMCP - ok
19:53:14.0484 0x09b8 [ D45960BE52C3C610D361977057F98C54, 9186589B502F46B47672CFB8EBD558D51B0F3CBFE4E0DDBA625A4265236518CE ] AppMgmt C:\WINDOWS\System32\appmgmts.dll
19:53:14.0531 0x09b8 AppMgmt - ok
19:53:14.0593 0x09b8 [ 62D318E9A0C8FC9B780008E724283707, 1A69806AB2BDECCEB5EB23A80700B3F98983D5D67F78839CBF269087FA460757 ] asc C:\WINDOWS\system32\DRIVERS\asc.sys
19:53:14.0656 0x09b8 asc - ok
19:53:14.0718 0x09b8 [ 69EB0CC7714B32896CCBFD5EDCBEA447, 1CB506B5F71F84EFD26961010681D0A79AA7B266573378E3D2755125DF5D6BB6 ] asc3350p C:\WINDOWS\system32\DRIVERS\asc3350p.sys
19:53:14.0734 0x09b8 asc3350p - ok
19:53:14.0812 0x09b8 [ 5D8DE112AA0254B907861E9E9C31D597, 557C93E82A71131D226267151C84B197503831A16263DDFE040E996B605CA9E8 ] asc3550 C:\WINDOWS\system32\DRIVERS\asc3550.sys
19:53:14.0843 0x09b8 asc3550 - ok
19:53:14.0937 0x09b8 [ B979979AB8027F7F53FB16EC4229B7DB, 3D50396B13B494D0082266C29C40715981CA105F6E407288C71410D4B833BB10 ] ASPI32 C:\WINDOWS\system32\drivers\ASPI32.sys
19:53:14.0984 0x09b8 ASPI32 - ok
19:53:15.0156 0x09b8 [ 0E5E4957549056E2BF2C49F4F6B601AD, F7F19FDC906B719A3516D30A9B4A2262C8CC5B36B94E3D4195C345EC4610FF2B ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
19:53:15.0265 0x09b8 aspnet_state - ok
19:53:15.0328 0x09b8 [ B153AFFAC761E7F5FCFA822B9C4E97BC, 7E60F572A6B3C6219E3C86225AA37243AFFD74337DB7F108B04778042E5CC959 ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
19:53:15.0343 0x09b8 AsyncMac - ok
19:53:15.0437 0x09b8 [ 9F3A2F5AA6875C72BF062C712CFA2674, B4DF1D2C56A593C6B54DE57395E3B51D288F547842893B32B0F59228A0CF70B9 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
19:53:15.0453 0x09b8 atapi - ok
19:53:15.0468 0x09b8 Atdisk - ok
19:53:15.0515 0x09b8 [ 9916C1225104BA14794209CFA8012159, 5D6F05F715C52A16D05CAE15C3DFE77A139A7F27F7AE710EC9A10F9EE05115A1 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
19:53:15.0546 0x09b8 Atmarpc - ok
19:53:15.0593 0x09b8 [ 58ED0D5452DF7BE732193E7999C6B9A4, 254E2ECF592DDA2E3E6CA9F6F3E77926E2265586A7937BA95199ED47BCDE69A3 ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
19:53:15.0625 0x09b8 AudioSrv - ok
19:53:15.0687 0x09b8 [ D9F724AA26C010A217C97606B160ED68, 329B5118F2409731D06FDAE85B6ADD64A048292801BCB3546651CEB303111695 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
19:53:15.0734 0x09b8 audstub - ok
19:53:15.0796 0x09b8 [ 683A089D14B60CD58E06ECE079065235, AD6B637FF32C3249D17D0029E55ED1EA8D1B878C99066AF76D452408B009D311 ] avgntflt C:\WINDOWS\system32\DRIVERS\avgntflt.sys
19:53:15.0828 0x09b8 avgntflt - ok
19:53:15.0859 0x09b8 [ D62D0CFABA19B111067613101D43FA7E, 0A0B7886AA48A9E6716CADB52CE02EE1EF40002636EBF04AC02E0AF3FBC22970 ] avipbb C:\WINDOWS\system32\DRIVERS\avipbb.sys
19:53:16.0000 0x09b8 avipbb - ok
19:53:16.0078 0x09b8 [ D8C712305F73CD34D1B344810E522728, 49A474FF6CA44E8427D7A8290B47395125B0148AF384CF2B3B1FA495A4718CBA ] avkmgr C:\WINDOWS\system32\DRIVERS\avkmgr.sys
19:53:16.0109 0x09b8 avkmgr - ok
19:53:16.0187 0x09b8 [ 56ACAE37FAEEF24D346B99F45D17EF4B, 247D9AB03D0038760B3FF95A1037FCF6E325CB48A430E24443BA58BB1C175192 ] AVMCOWAN C:\WINDOWS\system32\DRIVERS\AVMCOWAN.sys
19:53:16.0250 0x09b8 AVMCOWAN - ok
19:53:16.0343 0x09b8 [ 980F4C96C73C61CC6FCF657A721B35D3, CFBF1DC15117C494B27434AFF8C337AB5435E3FB4B97474E6A13A69F9C8B7D77 ] AVMUNET C:\WINDOWS\system32\DRIVERS\avmunet.sys
19:53:16.0375 0x09b8 AVMUNET - ok
19:53:16.0453 0x09b8 [ C997AF59C54D69232FB7BBEA4DAD86E2, 215DAACB21728E8241B06713F6CF87D50C38E66DF94D224EC17075510D87079A ] AVMWAN C:\WINDOWS\system32\DRIVERS\avmwan.sys
19:53:16.0562 0x09b8 AVMWAN - ok
19:53:16.0656 0x09b8 [ DA1F27D85E0D1525F6621372E7B685E9, 5A81A46A3BDD19DAFC6C87D277267A5D44F3A1B5302F2CC1111D84B7BAD5610D ] Beep C:\WINDOWS\system32\drivers\Beep.sys
19:53:16.0703 0x09b8 Beep - ok
19:53:16.0937 0x09b8 [ D6F603772A789BB3228F310D650B8BD1, A539025C70FD998A9B8703DE05CAE5E99BC721D8852EA561EBC2DD20CB371D2E ] BITS C:\WINDOWS\system32\qmgr.dll
19:53:17.0468 0x09b8 BITS - ok
19:53:17.0546 0x09b8 [ 31FF5B87C1DD907613CC613224B8E303, 71878A4D7029AE39B3DD7847983D6228A01A83899F09862E775DA05DBF5869AA ] BlueletAudio C:\WINDOWS\system32\DRIVERS\blueletaudio.sys
19:53:17.0625 0x09b8 BlueletAudio - ok
19:53:17.0734 0x09b8 [ B71549F23736ADF83A571061C47777FD, A1D0320736EE777030A543DCA086367EB5A5B6F95088B9C22D8E09326C3A39A9 ] Browser C:\WINDOWS\System32\browser.dll
19:53:17.0734 0x09b8 Browser - ok
19:53:17.0828 0x09b8 [ 2FE6D5BE0629F706197B30C0AA05DE30, 528ED3AA8129FDD6C8EF698E5ECE9BB93C0249CF0200115F13B36410A353F353 ] BrPar C:\WINDOWS\System32\drivers\BrPar.sys
19:53:17.0968 0x09b8 BrPar - ok
19:53:18.0125 0x09b8 [ 9DA8ABC4885AFF4793D4AA420E40BB12, 502C7ED03B4DB0B36436FF0AE2DE1BD1DB488EFC9D473E3E8EC40E2D96954CC1 ] BT C:\WINDOWS\system32\DRIVERS\btnetdrv.sys
19:53:18.0156 0x09b8 BT - ok
19:53:18.0265 0x09b8 [ BDF2C32C14EF7AB75DDCC3394D6F80D4, 212C62AF31FC03B22021325E8A7A597D321D20BFB9B70A928304CB6A7DFC1B04 ] Btcsrusb C:\WINDOWS\system32\Drivers\btcusb.sys
19:53:18.0343 0x09b8 Btcsrusb - ok
19:53:18.0406 0x09b8 [ 083AD7F6FF500D0A93C0BEA2CF298C93, 5AD9009642718506A71B0D399FC255A1DD648A016E00727C20763C3D91B9BC97 ] BTHidEnum C:\WINDOWS\system32\DRIVERS\vbtenum.sys
19:53:18.0453 0x09b8 BTHidEnum - ok
19:53:18.0531 0x09b8 [ F408264F6AD1DC7E7BDD4837440F115D, 3EC127AAC4D26D63783A098FDF52DF03F57C6B7D7788CDEC51509B9BE74EEB5C ] BTHidMgr C:\WINDOWS\system32\Drivers\BTHidMgr.sys
19:53:18.0781 0x09b8 BTHidMgr - ok
19:53:18.0906 0x09b8 [ 6B05FDC0CFC3753B520D2D4176CC32D0, A15BB0899A1A6273FFB34A57FC6B5544CCC09F2A7C56F6173A8F86E80C0DD49E ] BTNetFilter C:\WINDOWS\system32\drivers\BTNetFilter.sys
19:53:19.0031 0x09b8 BTNetFilter - ok
19:53:19.0203 0x09b8 [ 09E1576F9A1A4B538C75486EF9319860, 25EDF950DC75BBF6EE46922E322471F349331D246DBA384FB55FD64D3B0B18A6 ] CA504AV C:\WINDOWS\system32\Drivers\CA504AV.SYS
19:53:19.0562 0x09b8 CA504AV - ok
19:53:19.0671 0x09b8 [ 4EA760F6CA89618230ECF298781AAE3A, C0BD27FC666CC92C01F1B7376428C8EF5544A6FE71C9310B945C3B5877707D64 ] CAPI20 C:\WINDOWS\System32\Drivers\CAPI20.SYS
19:53:19.0765 0x09b8 CAPI20 - ok
19:53:19.0796 0x09b8 catchme - ok
19:53:19.0859 0x09b8 [ 90A673FC8E12A79AFBED2576F6A7AAF9, BDE7858A3457DB979FEDD8577FA6321BF72848E4A7BF9F173C78A6A10CBB3EBE ] cbidf C:\WINDOWS\system32\DRIVERS\cbidf2k.sys
19:53:20.0031 0x09b8 cbidf - ok
19:53:20.0062 0x09b8 [ 90A673FC8E12A79AFBED2576F6A7AAF9, BDE7858A3457DB979FEDD8577FA6321BF72848E4A7BF9F173C78A6A10CBB3EBE ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
19:53:20.0078 0x09b8 cbidf2k - ok
19:53:20.0156 0x09b8 [ 0BE5AEF125BE881C4F854C554F2B025C, 1770DD70B3F115A0EF460907DEDC1E4B7241C08615A98F194D61A49C3E2BAA54 ] CCDECODE C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
19:53:20.0250 0x09b8 CCDECODE - ok
19:53:20.0312 0x09b8 [ F3EC03299634490E97BBCE94CD2954C7, CDC85ADA27E0D501581CE6F28D7E1941E90411FA8E8F2C43A68BAA8CB78E85DD ] cd20xrnt C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys
19:53:20.0343 0x09b8 cd20xrnt - ok
19:53:20.0406 0x09b8 [ C1B486A7658353D33A10CC15211A873B, AA4DD9E7AAE5AAB1146B360B17001F975D2F29A1281CF7B13E7136480410F347 ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
19:53:20.0453 0x09b8 Cdaudio - ok
19:53:20.0484 0x09b8 [ C885B02847F5D2FD45A24E219ED93B32, B26B2F8E3A831E2B65EB0C5195B0645CD50E22615CE79C9B0B391CD563B121DB ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
19:53:20.0562 0x09b8 Cdfs - ok
19:53:20.0593 0x09b8 [ 1F4260CC5B42272D71F79E570A27A4FE, B51C2A3ED3C309953D0EA45869C8E464C10F2533DADE9E0286AF674979098D1D ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
19:53:20.0656 0x09b8 Cdrom - ok
19:53:20.0687 0x09b8 Changer - ok
19:53:20.0765 0x09b8 [ 28E3040D1F1CA2008CD6B29DFEBC9A5E, ACB458E8A11AA2143734A5A0281973D95158E6402A6453F98F9832D1E19B01F9 ] cisvc C:\WINDOWS\system32\cisvc.exe
19:53:20.0796 0x09b8 cisvc - ok
19:53:20.0906 0x09b8 [ 778A30ED3C134EB7E406AFC407E9997D, 3E6AD115AB2596EB001BC21AEADDBC75F27C42DB90C986B7AD17743CE631234E ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
19:53:20.0953 0x09b8 ClipSrv - ok
19:53:21.0015 0x09b8 [ D87ACAED61E417BBA546CED5E7E36D9C, 14AC6034A5BC0FB2A1AFDAD42BEF4DE641556E54AD30D0C46765660A4BE55462 ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
19:53:21.0296 0x09b8 clr_optimization_v2.0.50727_32 - ok
19:53:21.0687 0x09b8 [ C5A75EB48E2344ABDC162BDA79E16841, 6070A8AAFD38FBC6A68A2B10C20117612354DF21B4492D90CA522BFB6870D726 ] clr_optimization_v4.0.30319_32 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
19:53:21.0843 0x09b8 clr_optimization_v4.0.30319_32 - ok
19:53:21.0890 0x09b8 [ C687F81290303D90099B027A6474F99F, 9276B631E9082685B6348E425482D708CE5D1761876D951B1675442DBAF8AF7C ] CmdIde C:\WINDOWS\system32\DRIVERS\cmdide.sys
19:53:21.0921 0x09b8 CmdIde - ok
19:53:21.0953 0x09b8 COMSysApp - ok
19:53:22.0000 0x09b8 [ 3EE529119EED34CD212A215E8C40D4B6, A6B71F3D4EE7358CA85F010E6271A6B72226D25DF30ED331DA830639ED3E9903 ] Cpqarray C:\WINDOWS\system32\DRIVERS\cpqarray.sys
19:53:22.0031 0x09b8 Cpqarray - ok
19:53:22.0093 0x09b8 [ D01F685F8B4598D144B0CCE9FF95D8D5, A68EF814CDBD7291DEF4745FE14D5080041BD3275AB12629C7811506AF2B8E17 ] cpudrv C:\Programme\SystemRequirementsLab\cpudrv.sys
19:53:22.0125 0x09b8 cpudrv - ok
19:53:22.0187 0x09b8 [ 611F824E5C703A5A899F84C5F1699E4D, 9EFA5612FE58E9974E4CC13D39D91D7B5DEA3ED66BEFBED3AAE6D2800FD8162A ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
19:53:22.0187 0x09b8 CryptSvc - ok
19:53:22.0250 0x09b8 [ E550E7418984B65A78299D248F0A7F36, 52F6BD1027E91F9A90AFAB82C7F2A0314B7E55262F5293D5F9F8F12135EDD88C ] dac2w2k C:\WINDOWS\system32\DRIVERS\dac2w2k.sys
19:53:22.0312 0x09b8 dac2w2k - ok
19:53:22.0343 0x09b8 [ 683789CAA3864EB46125AE86FF677D34, B725D026E069AD253192E21245260CBA44EF3C72781616A2CAD0BF0E2D86D510 ] dac960nt C:\WINDOWS\system32\DRIVERS\dac960nt.sys
19:53:22.0375 0x09b8 dac960nt - ok
19:53:22.0437 0x09b8 [ 3127AFBF2C1ED0AB14A1BBB7AAECB85B, ECFBACE3CBF2384948EA1C445BDA3955EB4F44A9874286E6537C67DC1283E5B0 ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
19:53:22.0453 0x09b8 DcomLaunch - ok
19:53:22.0531 0x09b8 [ C29A1C9B75BA38FA37F8C44405DEC360, 7476D8BC4380CDE56764B2034AF3741DA4ED00F315E41C9A02B5EAD04374F241 ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
19:53:22.0531 0x09b8 Dhcp - ok
19:53:22.0609 0x09b8 [ 044452051F3E02E7963599FC8F4F3E25, 584BDDB074618BE76454CF90E74829CFF588B5B5FAEB793E2F7AAD26352DD689 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
19:53:22.0640 0x09b8 Disk - ok
19:53:22.0656 0x09b8 dmadmin - ok
19:53:22.0718 0x09b8 [ 0DCFC8395A99FECBB1EF771CEC7FE4EA, 89B0AEE5BE01B9FE4FF2989FF16DB6121721ACDFCE6D9655C0ACD321D8C308BE ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
19:53:22.0796 0x09b8 dmboot - ok
19:53:22.0875 0x09b8 [ 53720AB12B48719D00E327DA470A619A, 800264866A6267C9000A85D00095D57908D059D737E5F28C9C4049B884C46228 ] dmio C:\WINDOWS\system32\drivers\dmio.sys
19:53:22.0906 0x09b8 dmio - ok
19:53:22.0968 0x09b8 [ E9317282A63CA4D188C0DF5E09C6AC5F, D41E002F555FE9015EF620975255F58BB79198CA1FF0E09EC950CB450FF77CF7 ] dmload C:\WINDOWS\system32\drivers\dmload.sys
19:53:23.0015 0x09b8 dmload - ok
19:53:23.0078 0x09b8 [ 25C83FFBBA13B554EB6D59A9B2E2EE78, 9FBD655ED3E9163AE11EC207F283E387EFBA5A23108EC790BAE4846B35E66F16 ] dmserver C:\WINDOWS\System32\dmserver.dll
19:53:23.0078 0x09b8 dmserver - ok
19:53:23.0125 0x09b8 [ 8A208DFCF89792A484E76C40E5F50B45, 4E40E2EB38C6254E7CAA488200E89EE7DEBBBA773890BC6A84313CC68178D54F ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
19:53:23.0156 0x09b8 DMusic - ok
19:53:23.0218 0x09b8 [ 407F3227AC618FD1CA54B335B083DE07, 96B8E734648FE9A4EBA59C096C8779BD1A11A93A6303AFD438A406C8122D36C6 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
19:53:23.0234 0x09b8 Dnscache - ok
19:53:23.0296 0x09b8 [ 676E36C4FF5BCEA1900F44182B9723E6, 740CF18BD40E00FEA26CF0E6340C5D18F7D0B4390055FAEEC258B3AA790C4AE9 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
19:53:23.0328 0x09b8 Dot3svc - ok
19:53:23.0390 0x09b8 [ 40F3B93B4E5B0126F2F5C0A7A5E22660, 8AFFF28903037F5E36BB5352F2B236A217558FCC0146B23C787606C3F21243DB ] dpti2o C:\WINDOWS\system32\DRIVERS\dpti2o.sys
19:53:23.0421 0x09b8 dpti2o - ok
19:53:23.0468 0x09b8 [ 8F5FCFF8E8848AFAC920905FBD9D33C8, C8C6FB97AB0871C8C88A2201525A5CF10D5131CB6980D32692ED7A8F58399AD5 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
19:53:23.0500 0x09b8 drmkaud - ok
19:53:23.0562 0x09b8 [ 95974E66D3DE4951D29E28E8BC0B644C, 5737A2FB4D95AAB61A50E25CC570D78FC91C1A7B02754211B1B57DC4209A7D58 ] E100B C:\WINDOWS\system32\DRIVERS\e100b325.sys
19:53:23.0562 0x09b8 E100B - ok
19:53:23.0640 0x09b8 [ 4E4F2FDDAB0A0736D7671134DCCE91FB, 8E2C57D1A006856C47CBDD5765A9DD317DB205B26DA8BFC70555A506257A1CD9 ] EapHost C:\WINDOWS\System32\eapsvc.dll
19:53:23.0671 0x09b8 EapHost - ok
19:53:23.0734 0x09b8 [ 877C18558D70587AA7823A1A308AC96B, 6B336A62112988D855513F45153F73F8470C41A448E9B7438B4A8EC1813AABF1 ] ERSvc C:\WINDOWS\System32\ersvc.dll
19:53:23.0734 0x09b8 ERSvc - ok
19:53:23.0765 0x09b8 esgiguard - ok
19:53:23.0828 0x09b8 [ 01CE484FF6D70A39479BC6D619DE7ED6, E3ABCB9FF8844148119630E2B9B8456FA8706AB8C947986EB040B7A921C16EFE ] EsgScanner C:\WINDOWS\system32\DRIVERS\EsgScanner.sys
19:53:23.0859 0x09b8 EsgScanner - ok
19:53:23.0937 0x09b8 [ A3EDBE9053889FB24AB22492472B39DC, 6F2ED6E04BDE2FCA2A8BF9BD2D1D6923DE6EAECB46F582B6C0BD1CF364D65C9E ] Eventlog C:\WINDOWS\system32\services.exe
19:53:23.0937 0x09b8 Eventlog - ok
19:53:24.0031 0x09b8 [ AF4F6B5739D18CA7972AB53E091CBC74, A399E2CC026730D3A429727AAB48093B9F1E5DD8EB6336519C7F16182FDB3905 ] EventSystem C:\WINDOWS\system32\es.dll
19:53:24.0062 0x09b8 EventSystem - ok
19:53:24.0125 0x09b8 [ 38D332A6D56AF32635675F132548343E, E6909DB836AF679B4F4D62C7396D6C82769CC7ABB8C919C2AABFE934FCE268F6 ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
19:53:24.0171 0x09b8 Fastfat - ok
19:53:24.0250 0x09b8 [ 2DB7D303C36DDD055215052F118E8E75, BE6E7BBE12A7A4EDF1F1C2935350603970C7426BBCA7A1A6644BB8999123AF17 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
19:53:24.0250 0x09b8 FastUserSwitchingCompatibility - ok
19:53:24.0328 0x09b8 [ 08B8B302AF0D1B3B8543429BBAC8F21F, F3370FE5C4BECB16F0668E6605792EF8096FE06A79D8234E3D6E1B584F2D4E5A ] Fax C:\WINDOWS\system32\fxssvc.exe
19:53:24.0375 0x09b8 Fax - ok
19:53:24.0421 0x09b8 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81, 8307A532AB4D05CBBCE206DC2759497708BF5AAA880BD00F0E4F281D8578A1F5 ] Fdc C:\WINDOWS\system32\DRIVERS\fdc.sys
19:53:24.0453 0x09b8 Fdc - ok
19:53:24.0515 0x09b8 [ B0678A548587C5F1967B0D70BACAD6C1, 7E49910212ED87313F926E4800EA8D34809C287A686CA69B82B79C1A6451F88C ] Fips C:\WINDOWS\system32\drivers\Fips.sys
19:53:24.0546 0x09b8 Fips - ok
19:53:24.0609 0x09b8 [ 1F63900E2EB00101B9ACA2B7A870704E, 5AFE1FC852937FECE6B33147BD0110436FE97F33BFDA3F69B1F5EDAD6FFC09C6 ] FLEXnet Licensing Service C:\Programme\Gemeinsame Dateien\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
19:53:24.0765 0x09b8 FLEXnet Licensing Service - ok
19:53:24.0812 0x09b8 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0, 69C271AD5BCEBFD8AE5A769BDD7EC51256DA3A8ADAD5D12E5C0D13F4E82D8805 ] Flpydisk C:\WINDOWS\system32\DRIVERS\flpydisk.sys
19:53:24.0859 0x09b8 Flpydisk - ok
19:53:24.0953 0x09b8 [ B2CF4B0786F8212CB92ED2B50C6DB6B0, 280F5CF8A90F7BEDE73ADD0DD0F8952088133A7CA9A3D3B7041957E33B36845D ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
19:53:25.0031 0x09b8 FltMgr - ok
19:53:25.0140 0x09b8 [ 8BA7C024070F2B7FDD98ED8A4BA41789, 47585006F86B2C6016EC54250A416794792D1E4024FF229C120BC25B684AF66A ] FontCache3.0.0.0 c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
19:53:25.0203 0x09b8 FontCache3.0.0.0 - ok
19:53:25.0359 0x09b8 [ 0B7EE136026CC51FE42855BA6772F79A, 7AA7BF23481E5F2C885872E1AF35DDA2295D8DEBEB22F3233ED2BB6BB5D8C801 ] fpcibase C:\WINDOWS\system32\DRIVERS\fpcibase.sys
19:53:25.0515 0x09b8 fpcibase - ok
19:53:25.0562 0x09b8 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A, EC635E071201A766845D48973772CBE0958942B4162F3F5F70660D114CC877E0 ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
19:53:25.0593 0x09b8 Fs_Rec - ok
19:53:25.0656 0x09b8 [ 8F1955CE42E1484714B542F341647778, 8EB3F99625F409D3032561E8AB44BEFBFBFBA4EC873C2151C92A5CAAF7F2AA55 ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
19:53:25.0703 0x09b8 Ftdisk - ok
19:53:25.0781 0x09b8 [ 0A02C63C8B144BD8C86B103DEE7C86A2, 7A3235DD3E1995DD72B212FAEB3ECA2A974434DE9BF6D269EA11BA65A80E7E50 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
19:53:25.0812 0x09b8 Gpc - ok
19:53:25.0937 0x09b8 [ 626A24ED1228580B9518C01930936DF9, CBD94AB1E5477D7288799D17528CC43D572E711DA0F2B0C784A0B9FE105BF0F4 ] gupdate C:\Programme\Google\Update\GoogleUpdate.exe
19:53:25.0984 0x09b8 gupdate - ok
19:53:26.0015 0x09b8 [ 626A24ED1228580B9518C01930936DF9, CBD94AB1E5477D7288799D17528CC43D572E711DA0F2B0C784A0B9FE105BF0F4 ] gupdatem C:\Programme\Google\Update\GoogleUpdate.exe
19:53:26.0015 0x09b8 gupdatem - ok
19:53:26.0093 0x09b8 [ 3FD5F79AA40B1C244C59DE984E98DC37, 85EEAC5C9B472B660DED0CA2C3CD2E499FC3B8C4B7463485A27F63787A2ACEB0 ] gusvc C:\Programme\Google\Common\Google Updater\GoogleUpdaterService.exe
19:53:26.0156 0x09b8 gusvc - ok
19:53:26.0218 0x09b8 [ 573C7D0A32852B48F3058CFD8026F511, BC384BBA394AFDCDA1A9ABC858C692AA84A1F0A31AF3DDF7F38D120C027927FB ] HDAudBus C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
19:53:26.0234 0x09b8 HDAudBus - ok
19:53:26.0328 0x09b8 [ CB66BF85BF599BEFD6C6A57C2E20357F, 55D3A0F9279FF316766F42548FCB61C452942B08A37590C4892DF110BE4E53C6 ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
19:53:26.0328 0x09b8 helpsvc - ok
19:53:26.0406 0x09b8 [ B35DA85E60C0103F2E4104532DA2F12B, E13C9F73DF7713554CB614B36123D75014F5121AA1FC9069733E61758751CBE4 ] HidServ C:\WINDOWS\System32\hidserv.dll
19:53:26.0406 0x09b8 HidServ - ok
19:53:26.0437 0x09b8 [ CCF82C5EC8A7326C3066DE870C06DAF1, 93395FA4C26B2E82DC8B7025ED3BCF583885E5D8C5F60CD6EEAA6335D6A126EC ] HidUsb C:\WINDOWS\system32\DRIVERS\hidusb.sys
19:53:26.0468 0x09b8 HidUsb - ok
19:53:26.0531 0x09b8 [ ED29F14101523A6E0E808107405D452C, B8FA987637787BEECC2EB06D36293DAC355523392B49A8C5A9491EEE961917E9 ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
19:53:26.0562 0x09b8 hkmsvc - ok
19:53:26.0625 0x09b8 [ B028377DEA0546A5FCFBA928A8AEFAE0, FD7B34A6036AD443014B16394A5F051A298CEE4276D50525FB9F15A0D2684C8B ] hpn C:\WINDOWS\system32\DRIVERS\hpn.sys
19:53:26.0671 0x09b8 hpn - ok
19:53:26.0750 0x09b8 [ 863CC3A82C63C9F60ACF2E85D5310620, 51CBC73D696BB87FBF3F4CD31ADE38DF9B8476DFAC38356A5C0ABD8CA63A5494 ] HPZid412 C:\WINDOWS\system32\DRIVERS\HPZid412.sys
19:53:26.0781 0x09b8 HPZid412 - ok
19:53:26.0843 0x09b8 [ 08CB72E95DD75B61F2966B311D0E4366, 3C4CBCA84B67DBFD00C3A2470EE0CBE1F66AF549E9579B016C659BEE40219D24 ] HPZipr12 C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
19:53:26.0875 0x09b8 HPZipr12 - ok
19:53:26.0937 0x09b8 [ CA990306ED4EF732AF9695BFF24FC96F, 083532116547447D4A82CA02181AB4099944082405036EE38D7A3FB09CFDDC95 ] HPZius12 C:\WINDOWS\system32\DRIVERS\HPZius12.sys
19:53:26.0984 0x09b8 HPZius12 - ok
19:53:27.0046 0x09b8 [ F80A415EF82CD06FFAF0D971528EAD38, 524D9E9201572929522F6805011783711B7C0F76308B924C89CF75F4B7A1FDF3 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
19:53:27.0062 0x09b8 HTTP - ok
19:53:27.0125 0x09b8 [ 9E4ADB854CEBCFB81A4B36718FEECD16, 677AB64460775686F8366D6BF35D420A2486C3F07338A00A7C2788A5142B9F08 ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
19:53:27.0125 0x09b8 HTTPFilter - ok
19:53:27.0203 0x09b8 [ 9368670BD426EBEA5E8B18A62416EC28, 0ED865F8FB79F0B6309521925280E8640DB5CA6F75377434830536899734B6EE ] i2omgmt C:\WINDOWS\system32\drivers\i2omgmt.sys
19:53:27.0234 0x09b8 i2omgmt - ok
19:53:27.0281 0x09b8 [ F10863BF1CCC290BABD1A09188AE49E0, BC038EAE6C8A76D56A5AD27035DC0369D6E766711E9FAA7467144370851F1615 ] i2omp C:\WINDOWS\system32\DRIVERS\i2omp.sys
19:53:27.0328 0x09b8 i2omp - ok
19:53:27.0375 0x09b8 [ E283B97CFBEB86C1D86BAED5F7846A92, 7664F791D08C80DF1E52B34BE69F073AA645610C4BD975F498254807602374AB ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
19:53:27.0406 0x09b8 i8042prt - ok
19:53:27.0531 0x09b8 [ 5A8E05F1D5C36ABD58CFFA111EB325EA, F881543B911C94BA6E0E4FF754286F18DBB30DAEEA13982A7D5179E51AC2C30F ] ialm C:\WINDOWS\system32\DRIVERS\ialmnt5.sys
19:53:27.0687 0x09b8 ialm - ok
19:53:27.0828 0x09b8 [ C01AC32DC5C03076CFB852CB5DA5229C, A4D7749220B5BC965D96A267F1E02FE8284A230BA249109207BD4B9EA8DFAC96 ] idsvc c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
19:53:28.0062 0x09b8 idsvc - ok
19:53:28.0125 0x09b8 [ 083A052659F5310DD8B6A6CB05EDCF8E, 48D39B03FFB6FAA1529B774443BA12618AE3982D9F65A7B9D18F2269F78B31F4 ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
19:53:28.0156 0x09b8 Imapi - ok
19:53:28.0218 0x09b8 [ D4B413AA210C21E46AEDD2BA5B68D38E, 2309622867AA8FC832A729FA78F48742D4BD6CA0DAFBFB9DDB0772D671E1ED75 ] ImapiService C:\WINDOWS\system32\imapi.exe
19:53:28.0281 0x09b8 ImapiService - ok
19:53:28.0328 0x09b8 [ 4A40E045FAEE58631FD8D91AFC620719, 7A2FD81BD483821B3DA01B1CD7215423EDD719CBE3862C0342FF7D21A17AF437 ] ini910u C:\WINDOWS\system32\DRIVERS\ini910u.sys
19:53:28.0375 0x09b8 ini910u - ok
19:53:28.0437 0x09b8 [ 69C4E3C9E67A1F103B94E14FDD5F3213, 894ABDDBF95E3FFE59A4621AF94AFA7E6F6D780420845078622C76624C0326D2 ] IntelIde C:\WINDOWS\system32\DRIVERS\intelide.sys
19:53:28.0562 0x09b8 IntelIde - ok
19:53:28.0640 0x09b8 [ 4C7D2750158ED6E7AD642D97BFFAE351, C05E4799752F090DCB632F07F62ADE38D31534621064D269AD535CA0BDFED448 ] intelppm C:\WINDOWS\system32\DRIVERS\intelppm.sys
19:53:28.0671 0x09b8 intelppm - ok
19:53:28.0718 0x09b8 [ 3BB22519A194418D5FEC05D800A19AD0, F6662F440950596DC1382DD1DB5D7891CCEA30A6062BEA942C18445B5F0D8B16 ] Ip6Fw C:\WINDOWS\system32\drivers\ip6fw.sys
19:53:28.0718 0x09b8 Ip6Fw - ok
19:53:28.0765 0x09b8 [ 731F22BA402EE4B62748ADAF6363C182, 5C3BEBD008A5BE4DC2F92076FF41A10DDC01E10EC7E6552213CFA11970811848 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
19:53:28.0828 0x09b8 IpFilterDriver - ok
19:53:28.0875 0x09b8 [ B87AB476DCF76E72010632B5550955F5, E6E74D3A86A7917A8BAED44F8E97CCD2EB171E4E4B27E9907F60D1523FAF319A ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
19:53:28.0906 0x09b8 IpInIp - ok
19:53:28.0953 0x09b8 [ CC748EA12C6EFFDE940EE98098BF96BB, AF523E21C25D9A1715EFEA573E4F52AF5D4FC9F28A2D613F5DB629C186C439E0 ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
19:53:28.0968 0x09b8 IpNat - ok
19:53:29.0031 0x09b8 [ 9843F75E31FB74C5FE757D28150C2B9F, 7307DAF99AA5D9C39AC7D708313B0E8A71196D6F11C1A29F184A358FF1115F18 ] Iprip C:\WINDOWS\System32\iprip.dll
19:53:29.0031 0x09b8 Iprip - ok
19:53:29.0078 0x09b8 [ 23C74D75E36E7158768DD63D92789A91, 394D296F38E7D8EFD91A6EEC301D9CE6AF910E35EB9819F1A9E3363863AEDFDC ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
19:53:29.0109 0x09b8 IPSec - ok
19:53:29.0171 0x09b8 [ C93C9FF7B04D772627A3646D89F7BF89, 805FA48E7A46D4F10240BF880A2468F53DEA36E83004399228AB70DB7D20544A ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
19:53:29.0203 0x09b8 IRENUM - ok
19:53:29.0281 0x09b8 [ 6DFB88F64135C525433E87648BDA30DE, 8233EEFBEF36AAA152F2C55D23D7118F0DE40C9C22EB5D9793405A4770889540 ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
19:53:29.0312 0x09b8 isapnp - ok
19:53:29.0593 0x09b8 [ A5937B2A94424CF1B13A4AD503AF6B2E, E96CE4E526E053FB410987BD444627BC7B26FCE48DC0A61916ADD0A69EFA6941 ] JavaQuickStarterService C:\Programme\Java\jre7\bin\jqs.exe
19:53:29.0625 0x09b8 JavaQuickStarterService - ok
19:53:29.0656 0x09b8 [ 1704D8C4C8807B889E43C649B478A452, E854C90CD301F42BE2520CEDAD35E49DF2D43606CF4EEED861B74882118D04D1 ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
19:53:29.0687 0x09b8 Kbdclass - ok
19:53:29.0734 0x09b8 [ B6D6C117D771C98130497265F26D1882, E79CC4EA5C088F988BA61F80764F9CAD9B78BC56A7E17DD54622C75483BC5DF4 ] kbdhid C:\WINDOWS\system32\DRIVERS\kbdhid.sys
19:53:29.0765 0x09b8 kbdhid - ok
19:53:29.0843 0x09b8 [ 692BCF44383D056AED41B045A323D378, 1A99DEE83FFAF64E73067FC049C0A4CE07D94E4AE31EFA17B38CEFA9E41D67DC ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
19:53:29.0921 0x09b8 kmixer - ok
19:53:29.0984 0x09b8 [ B467646C54CC746128904E1654C750C1, 3BD71BE3663EA23463D236D8A2A2E42DFA10C502BDB4B6E131FAF0FBA748219E ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
19:53:30.0015 0x09b8 KSecDD - ok
19:53:30.0093 0x09b8 [ 2BBDCB79900990F0716DFCB714E72DE7, 6283789201164A9254632D9A3C8A54FE697717D5F8D5A37804D924DC2B70C8E3 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
19:53:30.0093 0x09b8 lanmanserver - ok
19:53:30.0171 0x09b8 [ 1869B14B06B44B44AF70548E1EA3303F, 4D63B4DAF580C86F86837C7D1753E2105B4C52E26D4CA0CAAFE83755EFF7AFBE ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
19:53:30.0187 0x09b8 lanmanworkstation - ok
19:53:30.0218 0x09b8 Lavasoft Kernexplorer - ok
19:53:30.0234 0x09b8 Lbd - ok
19:53:30.0265 0x09b8 lbrtfdc - ok
19:53:30.0328 0x09b8 [ 636714B7D43C8D0C80449123FD266920, F06F6C7DC49B26EFCAC3570C67BA9BD934F62C6F382DA4DD2AB302C7B970F414 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
19:53:30.0328 0x09b8 LmHosts - ok
19:53:30.0375 0x09b8 [ 7A1A532F14FDE28489DC349C6E404A67, 2BD9F0C54C7107B4D1957F5DB788265CD87602320CF48453B4A2D6F249EEE392 ] LPDSVC C:\WINDOWS\system32\tcpsvcs.exe
19:53:30.0375 0x09b8 LPDSVC - ok
19:53:30.0515 0x09b8 [ 034606B82FA5BD3E73AB427B6D55F915, F24AA57D46F3AD5FBBE29CE9E2D8798FA1FC98A9004E10EEED3D651F52A6143B ] McComponentHostService C:\Programme\McAfee Security Scan\3.0.285\McCHSvc.exe
19:53:30.0562 0x09b8 McComponentHostService - ok
19:53:30.0718 0x09b8 [ 11F714F85530A2BD134074DC30E99FCA, BDB5FD3B2DF4ADD19B31965B3E789768B59E872B3EA85912B1FFB32B2AF9D5D8 ] MDM C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7Debug\mdm.exe
19:53:30.0734 0x09b8 MDM - ok
19:53:30.0750 0x09b8 MEMSWEEP2 - ok
19:53:30.0796 0x09b8 [ B7550A7107281D170CE85524B1488C98, A3854B16A65436BEF6BEDE918B43B3BE8F00D303660DB5831DD376271DC43239 ] Messenger C:\WINDOWS\System32\msgsvc.dll
19:53:30.0812 0x09b8 Messenger - ok
19:53:30.0906 0x09b8 [ A7DA20AB18A1BDAE28B0F349E57DA0D1, C668F419579ADDF37558241982B0334A93644E9C05919967C494FE9853E62D5B ] mf C:\WINDOWS\system32\DRIVERS\mf.sys
19:53:30.0937 0x09b8 mf - ok
19:53:31.0031 0x09b8 [ 5E5024D9E2351DB2563B30912B4C4146, 8982A3776BBCC14BC9A7AEB843838D780E20EF454B0A10C29405270835D36D9E ] MIINPazX C:\PROGRA~1\GEMEIN~1\MARMIK~1\MInfraIS\MIINPazX.SYS
19:53:31.0062 0x09b8 MIINPazX - ok
19:53:31.0093 0x09b8 [ 4AE068242760A1FB6E1A44BF4E16AFA6, 1FB771162B96AAF787AC24867B818DF8511F0780BB094FA9A38C11D8DBFE68BC ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
19:53:31.0125 0x09b8 mnmdd - ok
19:53:31.0187 0x09b8 [ C2F1D365FD96791B037EE504868065D3, 87BD87E08FD00D115524B049F1A3A719AB86557D68968E7090CD0F271F985CAF ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
19:53:31.0234 0x09b8 mnmsrvc - ok
19:53:31.0296 0x09b8 [ 6FB74EBD4EC57A6F1781DE3852CC3362, 0454509D9A31E0202C08AE17294E2682F227D177A3C73B303E4C8332757AFCA1 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
19:53:31.0343 0x09b8 Modem - ok
19:53:31.0375 0x09b8 [ 1992E0D143B09653AB0F9C5E04B0FD65, 1431EC53A65F561C235A08F926C5348A6B21B06A08C075DE8172A88EE0AA634E ] MODEMCSA C:\WINDOWS\system32\drivers\MODEMCSA.sys
19:53:31.0437 0x09b8 MODEMCSA - ok
19:53:31.0484 0x09b8 [ B24CE8005DEAB254C0251E15CB71D802, 6804A8ABDAD5EC846E7F8077D1EE9BA45D6226ACFF42C70BE3DE7C8980EF9EC4 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
19:53:31.0515 0x09b8 Mouclass - ok
19:53:31.0578 0x09b8 [ 66A6F73C74E1791464160A7065CE711A, 3C570FA1E8EF976B83759220FE95BAC9D7D48D607F91B113EDE4790D34ACBD46 ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys
19:53:31.0609 0x09b8 mouhid - ok
19:53:31.0656 0x09b8 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD, 2A5E15ED2C24C6C65EF2F7E1FD93374774076C9D8D451E4422561F4D269C012F ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
19:53:31.0687 0x09b8 MountMgr - ok
19:53:31.0750 0x09b8 [ 3F4BB95E5A44F3BE34824E8E7CAF0737, 9A4F9E63AA55B779AF3563C66C8E40D9C42FF3BB5F533F70905ADC7A44EA7DAD ] mraid35x C:\WINDOWS\system32\DRIVERS\mraid35x.sys
19:53:31.0781 0x09b8 mraid35x - ok
19:53:31.0812 0x09b8 [ 11D42BB6206F33FBB3BA0288D3EF81BD, 76ABCFB62C5AC549F58C231F72A99882CDEB74928104B77FE52554765C2B1A22 ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
19:53:31.0890 0x09b8 MRxDAV - ok
19:53:31.0968 0x09b8 [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0, DB9B186F7076D7B94F45041AF7B77C1AD2CAB504D683B459C6CB1C22840ED170 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
19:53:32.0031 0x09b8 MRxSmb - ok
19:53:32.0078 0x09b8 [ 35A031AF38C55F92D28AA03EE9F12CC9, 97245D204C886EE8DCCC2DEAC80A0E358A7E0C1982F77389DA50DCF091FC9DDC ] MSDTC C:\WINDOWS\system32\msdtc.exe
19:53:32.0109 0x09b8 MSDTC - ok
19:53:32.0203 0x09b8 [ C941EA2454BA8350021D774DAF0F1027, C940E978C7B66A713A0FDAB54B5F995DF59D089AFCD96221DD3222948CD49BBD ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
19:53:32.0234 0x09b8 Msfs - ok
19:53:32.0265 0x09b8 MSIServer - ok
19:53:32.0296 0x09b8 [ D1575E71568F4D9E14CA56B7B0453BF1, 4ABE0E24786C0D39FA2B885447E56204CA6942FB175E534DCE675D7BCF0B176A ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
19:53:32.0328 0x09b8 MSKSSRV - ok
19:53:32.0390 0x09b8 [ 325BB26842FC7CCC1FCCE2C457317F3E, C07BE560513B1FB91D756494F0BA4AEEB2E1998DE0E1C21EE83DB1183B0CEE91 ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
19:53:32.0484 0x09b8 MSPCLOCK - ok
19:53:32.0515 0x09b8 [ BAD59648BA099DA4A17680B39730CB3D, 9AD4C7C94C186C8815D0BC75DCAFB962158DA6935A244BA243EDDDEB33F9816C ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
19:53:32.0546 0x09b8 MSPQM - ok
19:53:32.0625 0x09b8 [ AF5F4F3F14A8EA2C26DE30F7A1E17136, AC93A1E4ABB0D038B772E429015567E44CC2EDB66C54DBE23A5F98176FAC1520 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
19:53:32.0625 0x09b8 mssmbios - ok
19:53:33.0140 0x09b8 [ F90756C7215D9E55143DF43A6D9307F4, DA1DB093D0A31E63E7AA88721996E0AB66CF3DEB599BA215108816960D8D1911 ] MSSQL$MICROSOFTSMLBIZ C:\Programme\Microsoft SQL Server\MSSQL$MICROSOFTSMLBIZ\Binn\sqlservr.exe
19:53:33.0750 0x09b8 MSSQL$MICROSOFTSMLBIZ - ok
19:53:33.0875 0x09b8 [ 1D1B22613EAB9287AF902398867BC93C, FB30F12C30822E271FA854FA982F37C5973B295DD8CA4944F147BCB9A49DDF78 ] MSSQLServerADHelper C:\Programme\Microsoft SQL Server\80\Tools\Binn\sqladhlp.exe
19:53:33.0921 0x09b8 MSSQLServerADHelper - ok
19:53:33.0968 0x09b8 [ E53736A9E30C45FA9E7B5EAC55056D1D, 38602F280BF69EBA3706AD175AFC1AEB561A8302B4B61E3FECB3C27D7A9BDB41 ] MSTEE C:\WINDOWS\system32\drivers\MSTEE.sys
19:53:34.0000 0x09b8 MSTEE - ok
19:53:34.0062 0x09b8 MTOnlPktAlyX - ok
19:53:34.0125 0x09b8 [ DE6A75F5C270E756C5508D94B6CF68F5, FCC972DDC36C2C44D836913F10004C2C33B11C54DEFFF0C63E0FDF901D2F9261 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
19:53:34.0156 0x09b8 Mup - ok
19:53:34.0203 0x09b8 [ 5B50F1B2A2ED47D560577B221DA734DB, C16A554B6E1A7F5F98C94DFA88163E0F7426506BF2F51FD351B1A05FC0DB3BC5 ] NABTSFEC C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
19:53:34.0250 0x09b8 NABTSFEC - ok
19:53:34.0328 0x09b8 [ 46BB15AE2AC7D025D6D2567B876817BD, 102A101B96D1078C98FA0F871C801A9A8538E20E5686AB0C7680B2F6C92B3165 ] napagent C:\WINDOWS\System32\qagentrt.dll
19:53:34.0406 0x09b8 napagent - ok
19:53:34.0468 0x09b8 [ 1DF7F42665C94B825322FAE71721130D, FE0DCB728471465B39A42A7511F4133021FBA5DF88F88BCB5FE2FF34CFD713F9 ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
19:53:34.0531 0x09b8 NDIS - ok
19:53:34.0578 0x09b8 [ 7FF1F1FD8609C149AA432F95A8163D97, 18CD1FF5AC1EF8A38D1EC53014F2BADD28D9CDF4ECE2EBC2313D08903776F323 ] NdisIP C:\WINDOWS\system32\DRIVERS\NdisIP.sys
19:53:34.0625 0x09b8 NdisIP - ok
19:53:34.0703 0x09b8 [ 0109C4F3850DFBAB279542515386AE22, 4F6DB1E499AC853FD36FD603FBB6D3AC9BDCEB298C7FE1FB59A9236CB46729B2 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
19:53:34.0750 0x09b8 NdisTapi - ok
19:53:34.0796 0x09b8 [ F927A4434C5028758A842943EF1A3849, B1AA3AF150C05307461774925901789456B0CCCD03A5E71ADA4AB58455962BEE ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
19:53:34.0812 0x09b8 Ndisuio - ok
19:53:34.0859 0x09b8 [ EDC1531A49C80614B2CFDA43CA8659AB, 494042F790F33721328B4451E79842E21919681CC421A4F9633EC4D383E06097 ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
19:53:34.0890 0x09b8 NdisWan - ok
19:53:34.0937 0x09b8 [ 9282BD12DFB069D3889EB3FCC1000A9B, 09A46F1712BD9165068D8E153585FE3E6E5CBF4F1DDEC142115555D3A91AEC09 ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
19:53:34.0984 0x09b8 NDProxy - ok
19:53:35.0031 0x09b8 [ 5D81CF9A2F1A3A756B66CF684911CDF0, 7989C36607CAEA17AFA2C1C9904145CA0714A54B9F712D9D4C1AB140D0B2CC0C ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
19:53:35.0062 0x09b8 NetBIOS - ok
19:53:35.0125 0x09b8 [ 74B2B2F5BEA5E9A3DC021D685551BD3D, 7932B71F98B4122BE88F576BF6D745A757AE378A48924B7F4358837B75640A82 ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
19:53:35.0171 0x09b8 NetBT - ok
19:53:35.0218 0x09b8 [ 8ACE4251BFFD09CE75679FE940E996CC, 81969521B5EAEA09ECA63058BE9697BB69AF2596339CA9DF0CFEDC031DCFDC7E ] NetDDE C:\WINDOWS\system32\netdde.exe
19:53:35.0265 0x09b8 NetDDE - ok
19:53:35.0296 0x09b8 [ 8ACE4251BFFD09CE75679FE940E996CC, 81969521B5EAEA09ECA63058BE9697BB69AF2596339CA9DF0CFEDC031DCFDC7E ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
19:53:35.0296 0x09b8 NetDDEdsdm - ok
19:53:35.0375 0x09b8 [ AFB8261B56CBA0D86AEB6DF682AF9785, 104D96F1F19DD4CE492064ACC9634406A019EAE20B42D03198E400E661897127 ] Netlogon C:\WINDOWS\system32\lsass.exe
19:53:35.0375 0x09b8 Netlogon - ok
19:53:35.0421 0x09b8 [ E6D88F1F6745BF00B57E7855A2AB696C, 12A5EDD853600FF5EBF91E127077745AE1E61E66DBC1D4D4306570F171AF4A39 ] Netman C:\WINDOWS\System32\netman.dll
19:53:35.0437 0x09b8 Netman - ok
19:53:35.0515 0x09b8 [ 9DA26B773BD04B867A8E9F427CD048FC, A8D8D92720EA31685864B834FC67CD6225D0B65DF40DCDD6A80E6D0DF677C855 ] NetSvc C:\Programme\Intel\PROSetWired\NCS\Sync\NetSvc.exe
19:53:35.0562 0x09b8 NetSvc - ok
19:53:35.0625 0x09b8 [ D34612C5D02D026535B3095D620626AE, 1BBCCCBF49EB8807240A77DCB43C25C21682073CC5356594E2C4F53EF36BF657 ] NetTcpPortSharing c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
19:53:35.0671 0x09b8 NetTcpPortSharing - ok
19:53:35.0718 0x09b8 [ F1B67B6B0751AE0E6E964B02821206A3, 3D5A7593ABDEE2047C5738671C85DC8B95A4ECF58D5D7B04EEE13A689839A540 ] Nla C:\WINDOWS\System32\mswsock.dll
19:53:35.0734 0x09b8 Nla - ok
19:53:35.0781 0x09b8 [ 1E421A6BCF2203CC61B821ADA9DE878B, C658F1D5DCE7525CF929C65C46AB2881C99D89BF8F0F61C1D440C9D9BFB2F89F ] nm C:\WINDOWS\system32\DRIVERS\NMnt.sys
19:53:35.0828 0x09b8 nm - ok
19:53:35.0875 0x09b8 [ 3182D64AE053D6FB034F44B6DEF8034A, 4ADFC76965BA2A5F488E71789A4E4EA702A74AF42725F72130D1CA919406CF19 ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
19:53:35.0906 0x09b8 Npfs - ok
19:53:36.0000 0x09b8 [ 78A08DD6A8D65E697C18E1DB01C5CDCA, E0E6F3ED05068E32F1D5C2D2B38CDEF4536B8656DB6756C66CF6B40B60C8F3DA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
19:53:36.0140 0x09b8 Ntfs - ok
19:53:36.0171 0x09b8 [ AFB8261B56CBA0D86AEB6DF682AF9785, 104D96F1F19DD4CE492064ACC9634406A019EAE20B42D03198E400E661897127 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
19:53:36.0171 0x09b8 NtLmSsp - ok
19:53:36.0250 0x09b8 [ 56AF4064996FA5BAC9C449B1514B4770, 154602EFEC22728503D4ABA025DF711B0F2CFC983F5E3BF25F2A4BCD1AE250EC ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
19:53:36.0406 0x09b8 NtmsSvc - ok
19:53:36.0437 0x09b8 [ 73C1E1F395918BC2C6DD67AF7591A3AD, B21133A75253EC15E2DFF66D3B480AB1A7E1A2360476C810E7AA55D0F0EB08D4 ] Null C:\WINDOWS\system32\drivers\Null.sys
19:53:36.0468 0x09b8 Null - ok
19:53:36.0593 0x09b8 [ 2B298519EDBFCF451D43E0F1E8F1006D, 67F3F2001F4C8DABD253D60AB3222793635532DC51AD977954286F8A246F5592 ] nv C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
19:53:36.0765 0x09b8 nv - ok
19:53:36.0843 0x09b8 [ C34A6A72DEC2C317D67355DC18F87090, CFB91AAFDA022A79A7C9CF0088394B937E9C739A8F1F4F2700691FB383781CA7 ] NWCWorkstation C:\WINDOWS\System32\nwwks.dll
19:53:36.0843 0x09b8 NWCWorkstation - ok
19:53:36.0890 0x09b8 [ B305F3FAD35083837EF46A0BBCE2FC57, 9D0E0E666D652D0FC9EAB97280A5D67AAF61D6B21929DF7CF8ED72A367720464 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
19:53:36.0921 0x09b8 NwlnkFlt - ok
19:53:36.0968 0x09b8 [ C99B3415198D1AAB7227F2C88FD664B9, DD8DA4B5E804F134AB9233859544C025062902DFC3E8FB8A09A67337A4E73F55 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
19:53:37.0031 0x09b8 NwlnkFwd - ok
19:53:37.0078 0x09b8 [ 8B8B1BE2DBA4025DA6786C645F77F123, E47D5EED2F3AF85E2332C325DA80AEF2C4EC989E38A175194EBBFA967BA8BF81 ] NwlnkIpx C:\WINDOWS\system32\DRIVERS\nwlnkipx.sys
19:53:37.0125 0x09b8 NwlnkIpx - ok
19:53:37.0171 0x09b8 [ 56D34A67C05E94E16377C60609741FF8, ABE48D3E7D38DB20E9D4884FC6FE42FAE0C5FAFD3AC86F1E585A4BB17C6F09C5 ] NwlnkNb C:\WINDOWS\system32\DRIVERS\nwlnknb.sys
19:53:37.0234 0x09b8 NwlnkNb - ok
19:53:37.0281 0x09b8 [ C0BB7D1615E1ACBDC99757F6CEAF8CF0, 899905C0EB182ABCDAE0D0D749C0BC39CD231B9FAEE733D5DFDAE86EB8BC755B ] NwlnkSpx C:\WINDOWS\system32\DRIVERS\nwlnkspx.sys
19:53:37.0312 0x09b8 NwlnkSpx - ok
19:53:37.0359 0x09b8 [ 36B9B950E3D2E100970A48D8BAD86740, B0F320E68974925E1BB199B9F59A191FA1EBA2D2F164F182FE7820A83220687C ] NWRDR C:\WINDOWS\system32\DRIVERS\nwrdr.sys
19:53:37.0421 0x09b8 NWRDR - ok
19:53:37.0484 0x09b8 [ 7A56CF3E3F12E8AF599963B16F50FB6A, 882C82BAE96D263138D4C0D6C425458B770B7B9C8E9C1D28AC918BF6BE94A5C2 ] ose C:\Programme\Gemeinsame Dateien\Microsoft Shared\Source Engine\OSE.EXE
19:53:37.0531 0x09b8 ose - ok
19:53:37.0593 0x09b8 [ 9BAD7EDCFEE78FF3B3D852E881633C6A, 40684FBE69919997D2BE18C8489D91BE6786AA90B401387BA6E97D1651CBB2ED ] p2pgasvc C:\WINDOWS\system32\p2pgasvc.dll
19:53:37.0656 0x09b8 p2pgasvc - ok
19:53:37.0750 0x09b8 [ 02EBBECE9FB4A4811AD3C4BB55CCED0C, 99D42706BAFE3512CA0DD9BE1E33824674E1ADFD93BF1B459943760BBB8A4297 ] p2pimsvc C:\WINDOWS\system32\p2psvc.dll
19:53:38.0000 0x09b8 p2pimsvc - ok
19:53:38.0046 0x09b8 [ 02EBBECE9FB4A4811AD3C4BB55CCED0C, 99D42706BAFE3512CA0DD9BE1E33824674E1ADFD93BF1B459943760BBB8A4297 ] p2psvc C:\WINDOWS\system32\p2psvc.dll
19:53:38.0093 0x09b8 p2psvc - ok
19:53:38.0156 0x09b8 [ 95BD9287B49B01A3CF2488AF8A1AC312, 903130FD0433551E58D0BCAB9D7132A75E928B805DADBF6817CE8C64EC1A3A46 ] PAC7311 C:\WINDOWS\system32\DRIVERS\PA707UCM.SYS
19:53:38.0218 0x09b8 PAC7311 - ok
19:53:38.0250 0x09b8 [ F84785660305B9B903FB3BCA8BA29837, BDBDE61076800415D98759077E9E039C80B55DBE68E31F8BF44A909C6C3D3276 ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
19:53:38.0281 0x09b8 Parport - ok
19:53:38.0343 0x09b8 [ BEB3BA25197665D82EC7065B724171C6, 7E71C13BA30CD95CEE8A9CC85E6F48A01F30EDEAADEE69D80AE828BF97E5A5CA ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
19:53:38.0390 0x09b8 PartMgr - ok
19:53:38.0437 0x09b8 [ C2BF987829099A3EAA2CA6A0A90ECB4F, 1DF21EA8E43875CFEECD869407429F82FB449707CFB845718499468E699BAAAA ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
19:53:38.0468 0x09b8 ParVdm - ok
19:53:38.0515 0x09b8 [ 387E8DEDC343AA2D1EFBC30580273ACD, 5F3E642BDB759777E570ED5B22AC7E93CDCD362708F281657AD7BAB44EDEC802 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
19:53:38.0562 0x09b8 PCI - ok
19:53:38.0578 0x09b8 PCIDump - ok
19:53:38.0656 0x09b8 [ 59BA86D9A61CBCF4DF8E598C331F5B82, 822D11C5CE77BFD7B2F25350CCBF92B0B9388EEA6D86ED220B768C720976D839 ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
19:53:38.0687 0x09b8 PCIIde - ok
19:53:38.0718 0x09b8 [ A2A966B77D61847D61A3051DF87C8C97, 6CED7CA26DC62B0AAFC83A2E07336DAD25954491201BB8E06103971F3F0B8B51 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
19:53:38.0796 0x09b8 Pcmcia - ok
19:53:38.0828 0x09b8 PDCOMP - ok
19:53:38.0875 0x09b8 PDFRAME - ok
19:53:38.0906 0x09b8 PDRELI - ok
19:53:38.0953 0x09b8 PDRFRAME - ok
19:53:39.0000 0x09b8 [ 6C14B9C19BA84F73D3A86DBA11133101, 2CFB7E027E43C1B3890985DFD7987B23E4E3CC003E3FD2583E4A8AC1F8A13B26 ] perc2 C:\WINDOWS\system32\DRIVERS\perc2.sys
19:53:39.0031 0x09b8 perc2 - ok
19:53:39.0062 0x09b8 [ F50F7C27F131AFE7BEBA13E14A3B9416, C0498EA65B908C07A734324ED70DB27F434FAAA815DD02F1BC429A3AB6C663D5 ] perc2hib C:\WINDOWS\system32\DRIVERS\perc2hib.sys
19:53:39.0093 0x09b8 perc2hib - ok
19:53:39.0234 0x09b8 [ A3EDBE9053889FB24AB22492472B39DC, 6F2ED6E04BDE2FCA2A8BF9BD2D1D6923DE6EAECB46F582B6C0BD1CF364D65C9E ] PlugPlay C:\WINDOWS\system32\services.exe
19:53:39.0250 0x09b8 PlugPlay - ok
19:53:39.0312 0x09b8 [ FB03F341FF5380394BF2EE52F1979925, 50795312FB3C90FFE3BF6F6C3FCDC489A3C8DA9801F13689C8A7B78C56D571A2 ] Pml Driver HPZ12 C:\WINDOWS\system32\HPZipm12.exe
19:53:39.0359 0x09b8 Pml Driver HPZ12 - ok
19:53:39.0390 0x09b8 [ 02EBBECE9FB4A4811AD3C4BB55CCED0C, 99D42706BAFE3512CA0DD9BE1E33824674E1ADFD93BF1B459943760BBB8A4297 ] PNRPSvc C:\WINDOWS\system32\p2psvc.dll
19:53:39.0406 0x09b8 PNRPSvc - ok
19:53:39.0468 0x09b8 [ AFB8261B56CBA0D86AEB6DF682AF9785, 104D96F1F19DD4CE492064ACC9634406A019EAE20B42D03198E400E661897127 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
19:53:39.0468 0x09b8 PolicyAgent - ok
19:53:39.0515 0x09b8 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99, C5F0C8C66A3AF7E7BB04CEDE4AC5306F8387AB384A2107DC5BE413AAE968EFF1 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
19:53:39.0562 0x09b8 PptpMiniport - ok
19:53:39.0578 0x09b8 [ AFB8261B56CBA0D86AEB6DF682AF9785, 104D96F1F19DD4CE492064ACC9634406A019EAE20B42D03198E400E661897127 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
19:53:39.0578 0x09b8 ProtectedStorage - ok
19:53:39.0640 0x09b8 [ 09298EC810B07E5D582CB3A3F9255424, 35473A1BE25AC289474090EB0806AC6B3035DC33D1F3DF97A14BF1E361AC6AC3 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
19:53:39.0671 0x09b8 PSched - ok
19:53:39.0718 0x09b8 [ 80D317BD1C3DBC5D4FE7B1678C60CADD, DA76804B55D0CAB3DDD01EFC06673764AE4860693375C658B6063FB14AF7F12C ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
19:53:39.0750 0x09b8 Ptilink - ok
19:53:39.0812 0x09b8 [ 153D02480A0A2F45785522E814C634B6, 02B7590F2F4A8FA0B031CDA7A28BD55E7C04A080C1EA810BF3AC3212A62153A6 ] PxHelp20 C:\WINDOWS\system32\Drivers\PxHelp20.sys
19:53:39.0859 0x09b8 PxHelp20 - ok
19:53:39.0921 0x09b8 [ 0A63FB54039EB5662433CABA3B26DBA7, A1FB923EB2D08D89D24E8AD7042BBED7CB1DBDA9A5B77BDD188E9913BADAB0EF ] ql1080 C:\WINDOWS\system32\DRIVERS\ql1080.sys
19:53:39.0953 0x09b8 ql1080 - ok
19:53:40.0015 0x09b8 [ 6503449E1D43A0FF0201AD5CB1B8C706, F1EFC2DE5998615CB182D7984366631FE956AE1ECA9AC777F26FCA2E6F2E05A6 ] Ql10wnt C:\WINDOWS\system32\DRIVERS\ql10wnt.sys
19:53:40.0031 0x09b8 Ql10wnt - ok
19:53:40.0078 0x09b8 [ 156ED0EF20C15114CA097A34A30D8A01, 7490B90D4C88B7A9BADB9473D4033535F054C797ABF6D542CB859DA5C9B2586A ] ql12160 C:\WINDOWS\system32\DRIVERS\ql12160.sys
19:53:40.0109 0x09b8 ql12160 - ok
19:53:40.0171 0x09b8 [ 70F016BEBDE6D29E864C1230A07CC5E6, 895BC2C888F6566086FC1399F499A401D447E57333BC9F9C6DBAFE0F117603D6 ] ql1240 C:\WINDOWS\system32\DRIVERS\ql1240.sys
19:53:40.0203 0x09b8 ql1240 - ok
19:53:40.0265 0x09b8 [ 907F0AEEA6BC451011611E732BD31FCF, F9E7023BD1042963110D0A613054D094437868B20779F23C316A38E4781A6152 ] ql1280 C:\WINDOWS\system32\DRIVERS\ql1280.sys
19:53:40.0296 0x09b8 ql1280 - ok
19:53:40.0343 0x09b8 [ FE0D99D6F31E4FAD8159F690D68DED9C, 998685622ABE631984B7E4DBF91AB3594B1F574378D75EB9F6265F4650470692 ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
19:53:40.0375 0x09b8 RasAcd - ok
19:53:40.0437 0x09b8 [ F5BA6CACCDB66C8F048E867563203246, AFEAD8FC02313F7EBC8F9F39E7ED2868852B480BE3902FA7BD0AFD81492AB243 ] RasAuto C:\WINDOWS\System32\rasauto.dll
19:53:40.0453 0x09b8 RasAuto - ok
19:53:40.0484 0x09b8 [ 11B4A627BC9614B885C4969BFA5FF8A6, EAE0A412A2B0F68919C32A96B3A08CC1A06585E4998819F5C9051745F63FF5AD ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
19:53:40.0515 0x09b8 Rasl2tp - ok
19:53:40.0593 0x09b8 [ F9A7B66EA345726EDB5862A46B1ECCD5, 5D35429D394D36A1692A7E219BA1A85CD8096FEAE0F90BFE036A63118FEDBF57 ] RasMan C:\WINDOWS\System32\rasmans.dll
19:53:40.0609 0x09b8 RasMan - ok
19:53:40.0640 0x09b8 [ 5BC962F2654137C9909C3D4603587DEE, A5CE5653D0105240F5E86CFAAB89E7917D42D939E2F27A5A7D6979289CA651B8 ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
19:53:40.0671 0x09b8 RasPppoe - ok
19:53:40.0718 0x09b8 [ FDBB1D60066FCFBB7452FD8F9829B242, 10A2DACF944BD000032EBA8C095CB3D879CC55B28C377ADF6E52E508E47444DB ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
19:53:40.0765 0x09b8 Raspti - ok
19:53:40.0812 0x09b8 [ 7AD224AD1A1437FE28D89CF22B17780A, 6645235CA27D671954E3557FA37082881C3D7D47492C71264CD8CB8D108EC801 ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
19:53:40.0875 0x09b8 Rdbss - ok
19:53:40.0921 0x09b8 [ 4912D5B403614CE99C28420F75353332, 975341ECD660209987B5E5171B8315E032439E408CBE8A5986E67AF767F373BB ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
19:53:40.0953 0x09b8 RDPCDD - ok
19:53:41.0031 0x09b8 [ 15CABD0F7C00C47C70124907916AF3F1, 66B5C978B7FB6359AD8BAC9F568FE9D469E358FEAB07B1F129BA9E85F1DF723E ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys
19:53:41.0093 0x09b8 rdpdr - ok
19:53:41.0203 0x09b8 [ 43AF5212BD8FB5BA6EED9754358BD8F7, AF330F61CECA4AFA359CEABC5EB3227E6B56A9A2DCE50701381D665122D7356D ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
19:53:41.0250 0x09b8 RDPWD - ok
19:53:41.0312 0x09b8 [ 263AF18AF0F3DB99F574C95F284CCEC9, 2BFA9952E97EFEB386FC56EC2C125080CD12DAC078DBE43C395CB4D9F22165D3 ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
19:53:41.0375 0x09b8 RDSessMgr - ok
19:53:41.0437 0x09b8 [ ED761D453856F795A7FE056E42C36365, EF026585B33415D8FCE94A9F27D7A4396C7C35C88E06A4CF0FEA702401E8597A ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
19:53:41.0468 0x09b8 redbook - ok
19:53:41.0531 0x09b8 [ 0E97EC96D6942CEEC2D188CC2EB69A01, D4253B4420BEF19451A55AB91E4834482181A31A31134F6E2AFE05C8E20C81A5 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
19:53:41.0562 0x09b8 RemoteAccess - ok
19:53:41.0625 0x09b8 [ E4CD1F3D84E1C2CA0B8CF7501E201593, 649CC0B04F94D407EB6B4C7FDE2C6E4D2B1531307BC67C5775E44D66EF2E4F8A ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
19:53:41.0671 0x09b8 RemoteRegistry - ok
19:53:41.0718 0x09b8 [ D8B0B4ADE32574B2D9C5CC34DC0DBBE7, CDF10D3D8ADA7ADB1CC1567BFA986557C6D69F4099B70FDFABD4C3D09E3CA778 ] ROOTMODEM C:\WINDOWS\system32\Drivers\RootMdm.sys
19:53:41.0750 0x09b8 ROOTMODEM - ok
19:53:41.0796 0x09b8 [ 2A02E21867497DF20B8FC95631395169, D89E2D17ED4E1C727847C0E92D2DF68AEB70BF0B956BD2FE024ED70A961759D2 ] RpcLocator C:\WINDOWS\system32\locator.exe
19:53:41.0843 0x09b8 RpcLocator - ok
19:53:41.0906 0x09b8 [ 3127AFBF2C1ED0AB14A1BBB7AAECB85B, ECFBACE3CBF2384948EA1C445BDA3955EB4F44A9874286E6537C67DC1283E5B0 ] RpcSs C:\WINDOWS\System32\rpcss.dll
19:53:41.0921 0x09b8 RpcSs - ok
19:53:41.0984 0x09b8 [ 4BDD71B4B521521499DFD14735C4F398, 7B1498D3C67E56D05B58B7DA319ECB0117C37963AABB0E59B42831C087469DA1 ] RSVP C:\WINDOWS\system32\rsvp.exe
19:53:42.0046 0x09b8 RSVP - ok
19:53:42.0140 0x09b8 [ D507C1400284176573224903819FFDA3, DD0BDB2AB39A8A0A300B6D60FB6A7F5BA08C4DB8F59E0A784FB763EA8AD72AB2 ] rtl8139 C:\WINDOWS\system32\DRIVERS\RTL8139.SYS
19:53:42.0250 0x09b8 rtl8139 - ok
19:53:42.0343 0x09b8 SageDB 5.0 - ok
19:53:42.0390 0x09b8 [ AFB8261B56CBA0D86AEB6DF682AF9785, 104D96F1F19DD4CE492064ACC9634406A019EAE20B42D03198E400E661897127 ] SamSs C:\WINDOWS\system32\lsass.exe
19:53:42.0390 0x09b8 SamSs - ok
19:53:42.0453 0x09b8 [ 1DCAD90CC9C0DDC7D060FD97854F8518, 09223141827E3CE06ECC5DB0D7647D0E8E74D56D271943263EECB1B889F4F796 ] SBFWIMCL C:\WINDOWS\system32\DRIVERS\sbfwim.sys
19:53:42.0453 0x09b8 SBFWIMCL - ok
19:53:42.0468 0x09b8 [ 1DCAD90CC9C0DDC7D060FD97854F8518, 09223141827E3CE06ECC5DB0D7647D0E8E74D56D271943263EECB1B889F4F796 ] SBFWIMCLMP C:\WINDOWS\system32\DRIVERS\SBFWIM.sys
19:53:42.0468 0x09b8 SBFWIMCLMP - ok
19:53:42.0500 0x09b8 SBRE - ok
19:53:42.0546 0x09b8 [ DCEC079FAD95D36C8DD5CB6D779DFE32, F8546552D939A225853A0CE4913701A93738DF02C999D16E141E9A828814BBC6 ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
19:53:42.0593 0x09b8 SCardSvr - ok
19:53:42.0656 0x09b8 [ A050194A44D7FA8D7186ED2F4E8367AE, BCDF56D5A2F9E202DC67E7FE4BCC617BCC0BDFF2D221A621020068B17B2855BB ] Schedule C:\WINDOWS\system32\schedsvc.dll
19:53:42.0671 0x09b8 Schedule - ok
19:53:42.0750 0x09b8 [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
19:53:42.0781 0x09b8 Secdrv - ok
19:53:42.0843 0x09b8 [ BEE4CFD1D48C23B44CF4B974B0B79B2B, DF3B02D713F8A4602BE75F004074D5DF79AFF2D58FF37110B2A6AC29F680758B ] seclogon C:\WINDOWS\System32\seclogon.dll
19:53:42.0843 0x09b8 seclogon - ok
19:53:42.0921 0x09b8 [ 2AAC9B6ED9EDDFFB721D6452E34D67E3, 95D83F054A6610328D56E56CD948A6618C590231853E56FC20E7557DB61384A4 ] SENS C:\WINDOWS\system32\sens.dll
19:53:42.0921 0x09b8 SENS - ok
19:53:42.0984 0x09b8 [ 0F29512CCD6BEAD730039FB4BD2C85CE, 4F98AE390D1B14A755700DD6CEFB9CF921F0404AF2145D2D7E5F52394F87C6A5 ] serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
19:53:43.0015 0x09b8 serenum - ok
19:53:43.0062 0x09b8 [ CF24EB4F0412C82BCD1F4F35A025E31D, B74CB094126F5C23F601C34D53B2DF5BE3E5918230AC9DCFCFFA8E66B3A0FA25 ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
19:53:43.0125 0x09b8 Serial - ok
19:53:43.0281 0x09b8 [ 8E6B8C671615D126FDC553D1E2DE5562, CEEC0067514555D5CA489F50E3D7562FCA8DB8E952C3C878604C9277FC77959F ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
19:53:43.0328 0x09b8 Sfloppy - ok
19:53:43.0406 0x09b8 [ CAD058D5F8B889A87CA3EB3CF624DCEF, A7CDCF44261D1F4D820927253EA8EBB63714B7BAFF8B08DE073507D9A7EEA5BB ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
19:53:43.0421 0x09b8 SharedAccess - ok
19:53:43.0484 0x09b8 [ 2DB7D303C36DDD055215052F118E8E75, BE6E7BBE12A7A4EDF1F1C2935350603970C7426BBCA7A1A6644BB8999123AF17 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
19:53:43.0484 0x09b8 ShellHWDetection - ok
19:53:43.0531 0x09b8 Simbad - ok
19:53:43.0562 0x09b8 [ 7A1A532F14FDE28489DC349C6E404A67, 2BD9F0C54C7107B4D1957F5DB788265CD87602320CF48453B4A2D6F249EEE392 ] SimpTcp C:\WINDOWS\system32\tcpsvcs.exe
19:53:43.0562 0x09b8 SimpTcp - ok
19:53:43.0593 0x09b8 [ 6B33D0EBD30DB32E27D1D78FE946A754, CDA3D082D370B079C06D943DA124D76BAF0C5DB264FB0C893148EF6322D2FABE ] sisagp C:\WINDOWS\system32\DRIVERS\sisagp.sys
19:53:43.0640 0x09b8 sisagp - ok
19:53:43.0703 0x09b8 [ 866D538EBE33709A5C9F5C62B73B7D14, BC94BEB7C17B4FCAC8B5D0D5006A203BC209E0504EECE149651D8691935696CD ] SLIP C:\WINDOWS\system32\DRIVERS\SLIP.sys
19:53:43.0734 0x09b8 SLIP - ok
19:53:43.0828 0x09b8 [ 9BAE383D3116A545758D45D0B994BA32, FA397F459FA5DE2D3A4DB9E54C0983DEAF7C24B4151CB5092A8FDB06FA073921 ] snapman C:\WINDOWS\system32\DRIVERS\snapman.sys
19:53:43.0875 0x09b8 snapman - ok
19:53:43.0937 0x09b8 [ 708A1B41E7E850B2B1309073551CBD53, 4F27F7111F23E7FD9DBA88E3D801493DA9EA58E305E98809F924DFF25DB7EB75 ] SNMP C:\WINDOWS\System32\snmp.exe
19:53:43.0953 0x09b8 SNMP - ok
19:53:44.0000 0x09b8 [ 0702E1D16B7003049918595057F3904F, 9EE4A08635E0F63BA2857F2D972BBC7ED7E0BF007C8E85CE0BDFE7CBFEC1A915 ] SNMPTRAP C:\WINDOWS\System32\snmptrap.exe
19:53:44.0031 0x09b8 SNMPTRAP - ok
19:53:44.0093 0x09b8 [ 83C0F71F86D3BDAF915685F3D568B20E, 10B24723914A5A9E27A592FD58DAE2207B6E49F13A17CD2B1477C51D2D609D2E ] Sparrow C:\WINDOWS\system32\DRIVERS\sparrow.sys
19:53:44.0125 0x09b8 Sparrow - ok
19:53:44.0171 0x09b8 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F, DD17733CBB370FCA08F0296704D7CBEACA3C8F76D0ABE4761C3B1FFDF7481D9E ] splitter C:\WINDOWS\system32\drivers\splitter.sys
19:53:44.0203 0x09b8 splitter - ok
19:53:44.0265 0x09b8 [ 60784F891563FB1B767F70117FC2428F, E0B07F08E60FFBAD36C2E58180F4B2A16DCA47716044CBE0213DF7B74D742F1F ] Spooler C:\WINDOWS\system32\spoolsv.exe
19:53:44.0281 0x09b8 Spooler - ok
19:53:44.0343 0x09b8 [ 352E375AB298C23B0F9BC307652C7F50, 582F8D685905B9482DF00A125594A0B468E4F884DBDE391A985B448DF2C61856 ] SQLAgent$MICROSOFTSMLBIZ C:\Programme\Microsoft SQL Server\MSSQL$MICROSOFTSMLBIZ\Binn\sqlagent.EXE
19:53:44.0421 0x09b8 SQLAgent$MICROSOFTSMLBIZ - ok
19:53:44.0468 0x09b8 [ 50FA898F8C032796D3B1B9951BB5A90F, 1C86273EC19EB96D6DB9CE6670C00683B77C99C42CC2F7E75BC50872B93446B1 ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
19:53:44.0500 0x09b8 sr - ok
19:53:44.0562 0x09b8 [ FE77A85495065F3AD59C5C65B6C54182, EB4BAF992F961B2FD5D24BFCB6BCB2142BC32933139A818835FEAB190E4283BB ] srservice C:\WINDOWS\system32\srsvc.dll
19:53:44.0578 0x09b8 srservice - ok
19:53:44.0656 0x09b8 [ 47DDFC2F003F7F9F0592C6874962A2E7, 17C643BD4EB09B5666FE41817DC785BE04A6E491CE79E8E5A702CDBD98E1BDD7 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
19:53:44.0734 0x09b8 Srv - ok
19:53:44.0812 0x09b8 [ 4DF5B05DFAEC29E13E1ED6F6EE12C500, 2971D7D45D6942D310D47DBD19B9680D2D29527E79B86133C72217FD29259465 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
19:53:44.0812 0x09b8 SSDPSRV - ok
19:53:44.0875 0x09b8 [ A36EE93698802CD899F98BFD553D8185, 224CFED921EA230FF8025D259E34968FD2C0FD34BB3A918FB4B9B8BA42BEA5D3 ] ssmdrv C:\WINDOWS\system32\DRIVERS\ssmdrv.sys
19:53:44.0906 0x09b8 ssmdrv - ok
19:53:45.0015 0x09b8 [ 26EB7ACF476A3461B85F5BCE9A677A4A, 18C5852D59A7FC5C7012554372565B6DFF7C1A2BACBDBE9F3EC9A46C4DE16595 ] STHDA C:\WINDOWS\system32\drivers\sthda.sys
19:53:45.0218 0x09b8 STHDA - ok
19:53:45.0281 0x09b8 [ ED78DFAD8EFCDFBC89500492C4D14645, E642BC209693D0EACDDDD2386B4FFFA4CB1C9AB4FA431796900FC730677E09D4 ] STI Simulator C:\WINDOWS\System32\PAStiSvc.exe
19:53:45.0328 0x09b8 STI Simulator - ok
19:53:45.0390 0x09b8 [ A2DBCC4C8860449DF1AB758EA28B4DE0, 90D46D4D888DF6D58F61F3F9CFD1627D516507B7A668F40EA873579FB487A8D9 ] StillCam C:\WINDOWS\system32\DRIVERS\serscan.sys
19:53:45.0437 0x09b8 StillCam - ok
19:53:45.0531 0x09b8 [ BC2C5985611C5356B24AEB370953DED9, 15CBAB8166827DC098E2B16AB6F49A1441A4CB52AF3588F0AD964CAB596DFE10 ] stisvc C:\WINDOWS\system32\wiaservc.dll
19:53:45.0546 0x09b8 stisvc - ok
19:53:45.0609 0x09b8 [ 77813007BA6265C4B6098187E6ED79D2, 93939120E803C46FBFD577C8FC2E6C7E71C0460E01D25CB29579490640AB50C7 ] streamip C:\WINDOWS\system32\DRIVERS\StreamIP.sys
19:53:45.0640 0x09b8 streamip - ok
19:53:45.0687 0x09b8 [ F0FBF57D64A896720029830176CD6404, 65986727FCFE5FC7C074FD1F3BA9B77C790E32A7BE427388ADD97A84F1DA284D ] Sunplus C:\WINDOWS\system32\Drivers\Bulk504.sys
19:53:45.0734 0x09b8 Sunplus - ok
19:53:45.0796 0x09b8 [ C425F21CCCB35CF6166BCEE7B1132411, 5F49EAFD4B79A06C7BB930D61F7987196897C554AB2BFA53DBFCA3DDA3A2B274 ] susbser C:\WINDOWS\system32\DRIVERS\susbser.sys
19:53:45.0843 0x09b8 susbser - ok
19:53:45.0890 0x09b8 [ 3941D127AEF12E93ADDF6FE6EE027E0F, EA1F0E32E1C5E90FA4AAC421DEBBE086512340758D3217A6334E886BCE638B51 ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
19:53:45.0921 0x09b8 swenum - ok
19:53:45.0968 0x09b8 [ 8CE882BCC6CF8A62F2B2323D95CB3D01, B408550A581F3DA222355964AFA4E976AD8471F0AA37573C42C4948AE5A23A3B ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
19:53:46.0031 0x09b8 swmidi - ok
19:53:46.0046 0x09b8 SwPrv - ok
19:53:46.0109 0x09b8 [ 1FF3217614018630D0A6758630FC698C, 78A3075BBFF5D7ADEAC1527E65ACA8527BFC509DF124D44410BB46C4D96C96BB ] symc810 C:\WINDOWS\system32\DRIVERS\symc810.sys
19:53:46.0156 0x09b8 symc810 - ok
19:53:46.0203 0x09b8 [ 070E001D95CF725186EF8B20335F933C, B98B29FB01741AF3B4BB02C76A4D117EA04FE4CC4F8CDB491F9216931704A6D8 ] symc8xx C:\WINDOWS\system32\DRIVERS\symc8xx.sys
19:53:46.0234 0x09b8 symc8xx - ok
19:53:46.0281 0x09b8 [ 80AC1C4ABBE2DF3B738BF15517A51F2C, CCF82D09C63F4FA98BCBEF3A1DC8C02D4269B78256D0B6213E815D9BBE174432 ] sym_hi C:\WINDOWS\system32\DRIVERS\sym_hi.sys
19:53:46.0312 0x09b8 sym_hi - ok
19:53:46.0359 0x09b8 [ BF4FAB949A382A8E105F46EBB4937058, FE7C114A19D50E37463CDD3605C26105A779EEA79CB92BF98267C7BE809D853B ] sym_u3 C:\WINDOWS\system32\DRIVERS\sym_u3.sys
19:53:46.0375 0x09b8 sym_u3 - ok
19:53:46.0453 0x09b8 [ 8B83F3ED0F1688B4958F77CD6D2BF290, 546D3602183702B4F53E84413CFA2C933D64C8540378E54A8DCD148F3F36A2DA ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
19:53:46.0484 0x09b8 sysaudio - ok
19:53:46.0562 0x09b8 [ 2903FFFA2523926D6219428040DCE6B9, 4F13181931B0499F6C3F08138054DBCD1F84CB9806999A9172B80DE79D446F62 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
19:53:46.0593 0x09b8 SysmonLog - ok
19:53:46.0656 0x09b8 [ 05903CAC4B98908D55EA5774775B382E, AC3666CBD894D737874A5998DC7F46A0A51A7B23B1835FC735B9AD503A2191CC ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
19:53:46.0671 0x09b8 TapiSrv - ok
19:53:46.0750 0x09b8 [ 9AEFA14BD6B182D61E3119FA5F436D3D, EA29E49434585409272E7901AF89771FE9D6E911A7DC44AB3C7020CFF8A44552 ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
19:53:46.0921 0x09b8 Tcpip - ok
19:53:47.0000 0x09b8 [ 4E53BBCC4BE37D7A4BD6EF1098C89FF7, D084EFE07AC200672A1CE7BB8AE736612B3E353271188D26E29EC973E26E1F5F ] Tcpip6 C:\WINDOWS\system32\DRIVERS\tcpip6.sys
19:53:47.0046 0x09b8 Tcpip6 - ok
19:53:47.0093 0x09b8 [ 6471A66807F5E104E4885F5B67349397, F35CBFFB8BB235CCE30EF94A5273333900DD49FD506BF9D55D99A320B8A53A5A ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
19:53:47.0125 0x09b8 TDPIPE - ok
19:53:47.0156 0x09b8 [ C56B6D0402371CF3700EB322EF3AAF61, 7743FA4C734BCE38EFB1CA69BC17364D8421E2CD172F856F7E38E7AE1EE93F2F ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
19:53:47.0187 0x09b8 TDTCP - ok
19:53:47.0265 0x09b8 [ 88155247177638048422893737429D9E, B6D4E8691917946332C2208D01F8C8281978C1AD1E9951C5D99DF0D49AC34B3B ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
19:53:47.0296 0x09b8 TermDD - ok
19:53:47.0375 0x09b8 [ B7DE02C863D8F5A005A7BF375375A6A4, 6DE05A7B28CA5A78D58536347FC47F15883EEDBEF487CEA0117CC280FC582DCC ] TermService C:\WINDOWS\System32\termsrv.dll
19:53:47.0390 0x09b8 TermService - ok
19:53:47.0421 0x09b8 [ 2DB7D303C36DDD055215052F118E8E75, BE6E7BBE12A7A4EDF1F1C2935350603970C7426BBCA7A1A6644BB8999123AF17 ] Themes C:\WINDOWS\System32\shsvcs.dll
19:53:47.0421 0x09b8 Themes - ok
19:53:47.0515 0x09b8 [ 6F66601689163373BDA1A3CB10DFA633, C5167FE036DE6C9A95143D8431B6897F898E21DDC881159C6CF7193AB5EF0C26 ] tifsfilter C:\WINDOWS\system32\DRIVERS\tifsfilt.sys
19:53:47.0546 0x09b8 tifsfilter - ok
19:53:47.0593 0x09b8 [ DEC7D1D20259FEFF19C2A3114D428D61, 3E874D12A78DE9D15DF9B225699F88A630BE99FF09CAA21149E9A6C2D720157F ] timounter C:\WINDOWS\system32\DRIVERS\timntr.sys
19:53:47.0656 0x09b8 timounter - ok
19:53:47.0718 0x09b8 [ 03681A1CE77F51586903869A5AB1DEAB, E2EC0A481412166B654682C2F3D953E96E757466135CBD2D813B967EDB13C721 ] TlntSvr C:\WINDOWS\system32\tlntsvr.exe
19:53:47.0765 0x09b8 TlntSvr - ok
19:53:47.0781 0x09b8 TOMCATWAN - ok
19:53:47.0875 0x09b8 [ D213A9247DC347F305A2D4CC9B951487, 9016F96388BD0D3DE7C50F04C046C1E0A4077680453033D639AD7AA6ED9A511E ] TosIde C:\WINDOWS\system32\DRIVERS\toside.sys
19:53:47.0906 0x09b8 TosIde - ok
19:53:47.0984 0x09b8 [ 626504572B175867F30F3215C04B3E2F, 47E87CE9BC666D5CB5953C5D497DC00A7CC28F8EC0A064B3E47700279C5C4B91 ] TrkWks C:\WINDOWS\system32\trkwks.dll
19:53:48.0000 0x09b8 TrkWks - ok
19:53:48.0078 0x09b8 [ 8F861EDA21C05857EB8197300A92501C, 374FF9464F273610A051B9220C8D20F01FD4DD029095A7BE37244E20C5C8B5BB ] tunmp C:\WINDOWS\system32\DRIVERS\tunmp.sys
19:53:48.0109 0x09b8 tunmp - ok
19:53:48.0187 0x09b8 [ 5787B80C2E3C5E2F56C2A233D91FA2C9, 3774905CF77954DFCECDA5BCC7CDE3D0ED72712BFAAD85ADAE5246306447E46C ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
19:53:48.0218 0x09b8 Udfs - ok
19:53:48.0234 0x09b8 UIUSys - ok
19:53:48.0296 0x09b8 [ 1B698A51CD528D8DA4FFAED66DFC51B9, FC3F12D25EE0E99AFE056502FCCFC052854699C21B99D559FAF1244F206DFB4F ] ultra C:\WINDOWS\system32\DRIVERS\ultra.sys
19:53:48.0328 0x09b8 ultra - ok
19:53:48.0421 0x09b8 [ 402DDC88356B1BAC0EE3DD1580C76A31, 32A686595710336A6BFD54C03F552AE39439611662F84EF5D24193AE5665C6F3 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
19:53:48.0468 0x09b8 Update - ok
19:53:48.0546 0x09b8 [ 1DFD8975D8C89214B98D9387C1125B49, 0B6B268487C8E45E9B86BF4A0A9DB669E0E45D600DE3C82B63F9986CA9E01082 ] upnphost C:\WINDOWS\System32\upnphost.dll
19:53:48.0609 0x09b8 upnphost - ok
19:53:48.0656 0x09b8 [ 9B11E6118958E63E1FEF129466E2BDA7, 97168BCE3F4A9BB9E6500F05E34851FB957B219C598944FADC28AC0011C0503B ] UPS C:\WINDOWS\System32\ups.exe
19:53:48.0687 0x09b8 UPS - ok
19:53:48.0750 0x09b8 [ E919708DB44ED8543A7C017953148330, 226D032912D396117213FC29CD0BB5A8B2F872DD91D92F254F2F1FE392481B61 ] usbaudio C:\WINDOWS\system32\drivers\usbaudio.sys
19:53:48.0781 0x09b8 usbaudio - ok
19:53:48.0843 0x09b8 [ 173F317CE0DB8E21322E71B7E60A27E8, 7042441BA63AE38AE9D7BE0BC5CA7404FC9EE5BB3F084604A68F01E82769652A ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
19:53:48.0875 0x09b8 usbccgp - ok
19:53:48.0906 0x09b8 [ 65DCF09D0E37D4C6B11B5B0B76D470A7, 90EBA8BAF45932B453D905EDF2BDDDF3A432BFD50B9F7DF58CDEAE98D11C2E2F ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
19:53:48.0906 0x09b8 usbehci - ok
19:53:48.0953 0x09b8 [ 1AB3CDDE553B6E064D2E754EFE20285C, A99C4528C4227B1E96847614745AAFACD3C5F1BDFE435214DBF78740FFB300FE ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
19:53:49.0000 0x09b8 usbhub - ok
19:53:49.0062 0x09b8 [ A717C8721046828520C9EDF31288FC00, 1530BBE832EDBB0974AD89D723A03FF7A0094B368992D73C2C3E62A181DF1E0A ] usbprint C:\WINDOWS\system32\DRIVERS\usbprint.sys
19:53:49.0093 0x09b8 usbprint - ok
19:53:49.0125 0x09b8 [ A0B8CF9DEB1184FBDD20784A58FA75D4, D8AFD45BD9CF7B02F2554AA6085194DE82893AF794EDF479BC9B9E9C1758DC75 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
19:53:49.0171 0x09b8 usbscan - ok
19:53:49.0218 0x09b8 [ A32426D9B14A089EAA1D922E0C5801A9, ED1DC52EE45F8EAD3AEC4B1F817BB25634141CF48295494C5947DCE6CF7A9817 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
19:53:49.0250 0x09b8 USBSTOR - ok
19:53:49.0312 0x09b8 [ 26496F9DEE2D787FC3E61AD54821FFE6, 8BE7FF647470B9A951CBB478FAF83D657A15CC78037F42348A6B738F21D523DA ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
19:53:49.0359 0x09b8 usbuhci - ok
19:53:49.0421 0x09b8 [ B4D7B7AD8A9F7C063C5CC3E2C1A0724E, CFA47A71403419CA7C94333B4F7766DFC97C5DCDBC3AD1B106044B93C979A5C5 ] usb_rndisx C:\WINDOWS\system32\DRIVERS\usb8023x.sys
19:53:49.0468 0x09b8 usb_rndisx - ok
19:53:49.0515 0x09b8 [ D81CD7E761C1A52DEC20F0D4EAEA3259, 95629AD28D6D81D5EB06B9DE9D85C454421A9301B50721E839F8C58BD130CC8C ] UxTuneUp C:\WINDOWS\System32\uxtuneup.dll
19:53:49.0515 0x09b8 UxTuneUp - ok
19:53:49.0625 0x09b8 [ 9EBEE4A060C5364A31AEAA04EAC2AF1E, 695332A57F65E2F5854043691C1F8FC20FF97A60BB72A90095DCB113A5AE8D33 ] VComm C:\WINDOWS\system32\DRIVERS\VComm.sys
19:53:49.0656 0x09b8 VComm - ok
19:53:49.0703 0x09b8 [ EF0D45ED806B0C9AE9756BFEECB077ED, FB7C006C2D88B361AB971F78F86169263D595EEB75163F5774FEA2208055109F ] VcommMgr C:\WINDOWS\system32\Drivers\VcommMgr.sys
19:53:49.0750 0x09b8 VcommMgr - ok
19:53:49.0796 0x09b8 [ 0D3A8FAFCEACD8B7625CD549757A7DF1, B9CFDEFCD66AA139F3DC2F967B184669532922563AD5A71769BABDC4370D065E ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
19:53:49.0843 0x09b8 VgaSave - ok
19:53:49.0921 0x09b8 [ 754292CE5848B3738281B4F3607EAEF4, B0DCC9E9F8F78671FF878B493264C3B1DD2ED4A7167E3F5495F66ABF5FACB86C ] viaagp C:\WINDOWS\system32\DRIVERS\viaagp.sys
19:53:49.0953 0x09b8 viaagp - ok
19:53:50.0000 0x09b8 [ 3B3EFCDA263B8AC14FDF9CBDD0791B2E, FC7FFD53FCC0F81587EFF26A43C141D25C43DBC68311520CE2BCDD739CA58CA9 ] ViaIde C:\WINDOWS\system32\DRIVERS\viaide.sys
19:53:50.0078 0x09b8 ViaIde - ok
19:53:50.0156 0x09b8 [ 233509E1AD024A3E451D8DF6795EEED5, BF79E746D4E237989CFCD934097FC8F2553EC2869A53DEC1A79896BD062D09A6 ] vmfilter303 C:\WINDOWS\system32\drivers\vmfilter303.sys
19:53:50.0250 0x09b8 vmfilter303 - ok
19:53:50.0328 0x09b8 [ A5A712F4E880874A477AF790B5186E1D, FE885ED04C3EAFC379787F836738A2769E43D07CF52DD917D90C38E001957A5E ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
19:53:50.0343 0x09b8 VolSnap - ok
19:53:50.0390 0x09b8 [ 1C8A783E90C34D205596F1AB4A97E261, 0D0ACA939B38F0B5F7350D74E49817BD590E6AAC702A051354073B5265FDA6F0 ] vsbus C:\WINDOWS\system32\DRIVERS\vsb.sys
19:53:50.0421 0x09b8 vsbus - ok
19:53:50.0500 0x09b8 [ 3377DAA1CB8CAC46A538C236F5F3D58F, 6F2D45DF5247ACE69062840D8801B46E62BF77041A4F2BC19ABE1D0758450784 ] vserial C:\WINDOWS\system32\DRIVERS\vserial.sys
19:53:50.0609 0x09b8 vserial - ok
19:53:50.0750 0x09b8 [ 68F106273BE29E7B7EF8266977268E78, 1488AB7A654EBC94C73E1D494067189ACB95BC233980110CAC4C0297CDC4115A ] VSS C:\WINDOWS\System32\vssvc.exe
19:53:51.0140 0x09b8 VSS - ok
19:53:51.0250 0x09b8 [ 16409C468CEEE99B6B129FCAA5C0F206, AD241E5AF9DE82994F2C3DFB436A02CA8577C49AFB6EDFE2A98B152F843C764C ] vulfnths C:\WINDOWS\System32\Drivers\vulfnth.sys
19:53:51.0359 0x09b8 vulfnths - ok
19:53:51.0468 0x09b8 [ 9FCAD546C6285D5073FB926709203049, 067F25EB0254B2E309EBBCEBFADA098DB250FCB9D915D79647A24A23EA87C0F3 ] vulfntrs C:\WINDOWS\System32\Drivers\vulfntr.sys
19:53:51.0515 0x09b8 vulfntrs - ok
19:53:51.0656 0x09b8 [ 7B353059E665F8B7AD2BBEAEF597CF45, 84A4311F18A4B8DCB364741DEA7D18E2363F19564B2EF25214965DC729527068 ] w32time C:\WINDOWS\system32\w32time.dll
19:53:51.0687 0x09b8 w32time - ok
19:53:51.0718 0x09b8 [ E20B95BAEDB550F32DD489265C1DA1F6, 5589B2067E6C9FBA290D8C5EADDC198EBAF39C50C3CD7D2BC5CDA7CBFBC445E5 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
19:53:51.0812 0x09b8 Wanarp - ok
19:53:51.0906 0x09b8 [ 0A716C08CB13C3A8F4F51E882DBF7416, 66FFDC9151CB3676B5DF073431DE055E7F2CDA5722F7EAAC6EC45F2CF9910882 ] wanatw C:\WINDOWS\system32\DRIVERS\wanatw4.sys
19:53:52.0046 0x09b8 wanatw - ok
19:53:52.0156 0x09b8 [ 46A247F6617526AFE38B6F12F5512120, 24931910E3D678829A7A6CF1140CFE428E05057A4D3A14086ED66B884E847D2D ] wceusbsh C:\WINDOWS\system32\DRIVERS\wceusbsh.sys
19:53:52.0250 0x09b8 wceusbsh - ok
19:53:52.0296 0x09b8 WDICA - ok
19:53:52.0343 0x09b8 [ 6768ACF64B18196494413695F0C3A00F, 3A8F8586F1D997D19A8478345338D2AECD785AEABDB61531DD3F92003D3230A5 ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
19:53:52.0453 0x09b8 wdmaud - ok
19:53:52.0546 0x09b8 [ 81727C9873E3905A2FFC1EBD07265002, 6AC2383A1DCBB7FA3DB90FBB874C8E1819F5B7492717FF41E303EFC7BF72F93E ] WebClient C:\WINDOWS\System32\webclnt.dll
19:53:52.0578 0x09b8 WebClient - ok
19:53:52.0906 0x09b8 [ 6F3F3973D97714CC5F906A19FE883729, 7817118BE94D0F6FAE0F9CE48AD70FFE0AEF886CCE09C666768FAB61047F992F ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
19:53:52.0953 0x09b8 winmgmt - ok
19:53:53.0156 0x09b8 [ C51B4A5C05A5475708E3C81C7765B71D, F776D2680BD3407307B7072626F78460361FC5BC38623C9E16F394D300AB25DE ] WmdmPmSN C:\WINDOWS\system32\MsPMSNSv.dll
19:53:53.0234 0x09b8 WmdmPmSN - ok
19:53:53.0625 0x09b8 [ FFA4D901D46D07A5BAB2D8307FBB51A6, 53C6D04D111EDF774C7F7EEB8D032B372E6244774D56B1B34CF1236027EC9450 ] Wmi C:\WINDOWS\System32\advapi32.dll
19:53:53.0968 0x09b8 Wmi - ok
19:53:54.0031 0x09b8 [ 93908111BA57A6E60EC2FA2DE202105C, F395F25F18D15C6B9FEDB45FD31E10295FFE5517E2BC86ACAC11904EA0664BE2 ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
19:53:54.0171 0x09b8 WmiApSrv - ok
19:53:54.0609 0x09b8 [ BF05650BB7DF5E9EBDD25974E22403BB, AF173D89B768CFC7AB03DFADD4F049CAC40AC59A0C9208AF5AB92CB368983077 ] WMPNetworkSvc C:\Programme\Windows Media Player\WMPNetwk.exe
19:53:54.0984 0x09b8 WMPNetworkSvc - ok
19:53:55.0046 0x09b8 [ CF4DEF1BF66F06964DC0D91844239104, CC1D9CECE2056D29A9651D51BB57C3F4F9BF9E90A4808CF7496C683C874FBD51 ] WpdUsb C:\WINDOWS\system32\DRIVERS\wpdusb.sys
19:53:55.0125 0x09b8 WpdUsb - ok
19:53:55.0453 0x09b8 [ B800EEC15851597405784126C407188C, 78FE6A9CBFC2C10DB88D5D8616DBFD848849630907906D06199C14DC4F6C152D ] WPFFontCache_v0400 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
19:53:55.0609 0x09b8 WPFFontCache_v0400 - ok
19:53:55.0671 0x09b8 [ 6ABE6E225ADB5A751622A9CC3BC19CE8, 4061C5D0F051DFF1730E2A3BFC1CCA97B29602FC50F10F6B44D93B0D28F42024 ] WS2IFSL C:\WINDOWS\System32\drivers\ws2ifsl.sys
19:53:55.0750 0x09b8 WS2IFSL - ok
19:53:55.0812 0x09b8 [ 300B3E84FAF1A5C1F791C159BA28035D, 0194856BDF94C1F274AF70AD558290ACDACDDEA331BD66FEB8E167ABD1E36786 ] wscsvc C:\WINDOWS\system32\wscsvc.dll
19:53:55.0812 0x09b8 wscsvc - ok
19:53:55.0875 0x09b8 [ 0091D78C5F8FDE0CDF2B214823DE6E48, 879334B8F4090DD3E562AB76E2510C1D2F5D2557DCCECAF4E27A763D8C6AB740 ] WSIMD C:\WINDOWS\system32\DRIVERS\wsimd.sys
19:53:55.0906 0x09b8 WSIMD - ok
19:53:55.0953 0x09b8 [ C98B39829C2BBD34E454150633C62C78, 71B60EA3AD0E2637917D528C6A9E7ECF2949E3E5E91036AA5BBADA95BD725511 ] WSTCODEC C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
19:53:56.0000 0x09b8 WSTCODEC - ok
19:53:56.0078 0x09b8 [ 7B4FE05202AA6BF9F4DFD0E6A0D8A085, A1DB8909FA73337DB613D01824945485186654364A4DF129B8CB913CF87D1D2E ] wuauserv C:\WINDOWS\system32\wuauserv.dll
19:53:56.0078 0x09b8 wuauserv - ok
19:53:56.0203 0x09b8 [ F15FEAFFFBB3644CCC80C5DA584E6311, 79B3E9AF35976CE49921E9BEA3BA3B4A8AF762FD3F284B62954038B5FFB32471 ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
19:53:56.0250 0x09b8 WudfPf - ok
19:53:56.0296 0x09b8 [ 28B524262BCE6DE1F7EF9F510BA3985B, AEFF02B899801A63CBB262757C3D4369E38BFF0690BD085DE60E873DFBE3C3F4 ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
19:53:56.0359 0x09b8 WudfRd - ok
19:53:56.0437 0x09b8 [ 05231C04253C5BC30B26CBAAE680ED89, 5C03C2D7E0B573646D32F4093E2FF2C3BA391C39F5BA37D67F69D38E357FCC3D ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
19:53:56.0437 0x09b8 WudfSvc - ok
19:53:56.0515 0x09b8 [ C4F109C005F6725162D2D12CA751E4A7, AC996B44338328BDD4442FE48406F286A64526F0EC77BE00A19FA7FDB0407CFE ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
19:53:56.0578 0x09b8 WZCSVC - ok
19:53:56.0625 0x09b8 [ 0ADA34871A2E1CD2CAAFED1237A47750, 45BEF8649078BD74C1A347B5F2D3A1958E5A7DCD6C6BA8A2E0CAD277A929C64E ] xmlprov C:\WINDOWS\System32\xmlprov.dll
19:53:56.0703 0x09b8 xmlprov - ok
19:53:56.0781 0x09b8 [ 3DE80BAA4AF21883CF938197D508B848, 79BB2674765E5E90FC43745979578F22274BE6194CD372F2A9C9D25B95C13B9B ] ZSMC303 C:\WINDOWS\system32\Drivers\usbVM303.sys
19:53:56.0953 0x09b8 ZSMC303 - ok
19:53:57.0109 0x09b8 ================ Scan global ===============================
19:53:57.0140 0x09b8 [ 2C60091CA5F67C3032EAB3B30390C27F, 9E205C8E67F4B61FCFA2A82AA1968D522C3B6410D7075BE813F7F1564D61632E ] C:\WINDOWS\system32\basesrv.dll
19:53:57.0203 0x09b8 [ E62178BC21EAC63A3B9A2DBD46C1B505, CAA5480CC4DAA37758F0CF445F865FD6F4630080B044EF2E606C2F62DAA4061A ] C:\WINDOWS\system32\winsrv.dll
19:53:57.0234 0x09b8 [ E62178BC21EAC63A3B9A2DBD46C1B505, CAA5480CC4DAA37758F0CF445F865FD6F4630080B044EF2E606C2F62DAA4061A ] C:\WINDOWS\system32\winsrv.dll
19:53:57.0296 0x09b8 [ A3EDBE9053889FB24AB22492472B39DC, 6F2ED6E04BDE2FCA2A8BF9BD2D1D6923DE6EAECB46F582B6C0BD1CF364D65C9E ] C:\WINDOWS\system32\services.exe
19:53:57.0312 0x09b8 [ Global ] - ok
19:53:57.0312 0x09b8 ================ Scan MBR ==================================
19:53:57.0359 0x09b8 [ C13EBA24706976A0DC06E36798503676 ] \Device\Harddisk0\DR0
19:53:57.0359 0x09b8 Suspicious mbr (Forged): \Device\Harddisk0\DR0
19:53:57.0390 0x09b8 \Device\Harddisk0\DR0 - detected Rootkit.Boot.Sinowal.a ( 0 )
19:53:57.0390 0x09b8 \Device\Harddisk0\DR0 ( Rootkit.Boot.Sinowal.a ) - infected
19:53:59.0750 0x09b8 ================ Scan VBR ==================================
19:53:59.0781 0x09b8 [ 357DA4F3EDB2D7832997A5800F8E68BD ] \Device\Harddisk0\DR0\Partition1
19:53:59.0781 0x09b8 \Device\Harddisk0\DR0\Partition1 - ok
19:53:59.0781 0x09b8 Waiting for KSN requests completion. In queue: 17
19:54:00.0781 0x09b8 Waiting for KSN requests completion. In queue: 17
19:54:01.0796 0x09b8 AV detected via SS1: Avira AntiVir PersonalEdition Classic, 0.0.0.0, enabled, updated
19:54:01.0796 0x09b8 AV detected via SS1: Avira AntiVir PersonalEdition Classic, 0.0.0.0, enabled, updated
19:54:01.0796 0x09b8 AV detected via SS1: Avira AntiVir PersonalEdition Classic, 0.0.0.0, enabled, updated
19:54:01.0796 0x09b8 AV detected via SS1: Avira AntiVir PersonalEdition Classic, 0.0.0.0, enabled, updated
19:54:01.0796 0x09b8 AV detected via SS1: Avira AntiVir PersonalEdition Classic, 0.0.0.0, enabled, updated
19:54:01.0796 0x09b8 AV detected via SS1: Avira AntiVir PersonalEdition Classic, 0.0.0.0, enabled, updated
19:54:01.0796 0x09b8 AV detected via SS1: Avira Desktop, 14.0.0.335, enabled, updated
19:54:01.0796 0x09b8 AV detected via SS1: Avira AntiVir PersonalEdition Classic, 0.0.0.0, enabled, updated
19:54:01.0796 0x09b8 AV detected via SS1: Avira AntiVir PersonalEdition Classic, 0.0.0.0, enabled, updated
19:54:01.0796 0x09b8 AV detected via SS1: Avira AntiVir PersonalEdition Classic, 0.0.0.0, enabled, outofdate
19:54:01.0796 0x09b8 AV detected via SS1: Avira AntiVir PersonalEdition Classic, 0.0.0.0, enabled, updated
19:54:01.0796 0x09b8 AV detected via SS1: Avira AntiVir PersonalEdition Classic, 0.0.0.0, enabled, updated
19:54:01.0796 0x09b8 AV detected via SS1: Avira AntiVir PersonalEdition Classic, 0.0.0.0, enabled, updated
19:54:01.0796 0x09b8 AV detected via SS1: Avira AntiVir PersonalEdition Classic, 0.0.0.0, enabled, updated
19:54:01.0796 0x09b8 AV detected via SS1: Avira AntiVir PersonalEdition Classic, 0.0.0.0, enabled, updated
19:54:01.0796 0x09b8 AV detected via SS1: Avira AntiVir PersonalEdition Classic, 0.0.0.0, enabled, updated
19:54:01.0796 0x09b8 AV detected via SS1: Avira AntiVir PersonalEdition Classic, 0.0.0.0, enabled, updated
19:54:01.0812 0x09b8 AV detected via SS1: Avira AntiVir PersonalEdition Classic, 0.0.0.0, enabled, updated
19:54:01.0812 0x09b8 AV detected via SS1: Avira AntiVir PersonalEdition Classic, 0.0.0.0, enabled, updated
19:54:01.0812 0x09b8 AV detected via SS1: Avira AntiVir PersonalEdition Classic, 0.0.0.0, enabled, updated
19:54:01.0812 0x09b8 AV detected via SS1: Avira AntiVir PersonalEdition Classic, 0.0.0.0, enabled, updated
19:54:01.0812 0x09b8 AV detected via SS1: Avira AntiVir PersonalEdition Classic, 0.0.0.0, enabled, updated
19:54:01.0812 0x09b8 AV detected via SS1: Avira AntiVir PersonalEdition Classic, 0.0.0.0, enabled, updated
19:54:01.0812 0x09b8 AV detected via SS1: Avira AntiVir PersonalEdition Classic, 0.0.0.0, enabled, updated
19:54:01.0828 0x09b8 Win FW state via NFM: enabled
19:54:04.0156 0x09b8 ============================================================
19:54:04.0156 0x09b8 Scan finished
19:54:04.0156 0x09b8 ============================================================
19:54:04.0187 0x04d4 Detected object count: 1
19:54:04.0187 0x04d4 Actual detected object count: 1
19:54:48.0312 0x04d4 \Device\Harddisk0\DR0\# - copied to quarantine
19:54:48.0328 0x04d4 \Device\Harddisk0\DR0 - copied to quarantine
19:54:48.0375 0x04d4 \Device\Harddisk0\DR0 ( Rootkit.Boot.Sinowal.a ) - will be cured on reboot
19:54:48.0375 0x04d4 \Device\Harddisk0\DR0 - ok
19:54:48.0375 0x04d4 \Device\Harddisk0\DR0 ( Rootkit.Boot.Sinowal.a ) - User select action: Cure
19:55:19.0359 0x0318 Deinitialize success
|
|
05.10.2013, 20:15
| #22 |
| | Virus „BOO/Sinowal.A“ lässt sich nicht entfernen Hallo Schrauber, nun der letzte Log Code:
ATTFilter 19:57:54.0562 0x0a54 TDSS rootkit removing tool 3.0.0.11 Sep 30 2013 09:17:03
19:57:55.0718 0x0a54 ============================================================
19:57:55.0718 0x0a54 Current date / time: 2013/10/05 19:57:55.0718
19:57:55.0718 0x0a54 SystemInfo:
19:57:55.0718 0x0a54
19:57:55.0718 0x0a54 OS Version: 5.1.2600 ServicePack: 3.0
19:57:55.0718 0x0a54 Product type: Workstation
19:57:55.0718 0x0a54 ComputerName: xxxxx
19:57:55.0718 0x0a54 UserName: Peter xxxxx
19:57:55.0718 0x0a54 Windows directory: C:\WINDOWS
19:57:55.0718 0x0a54 System windows directory: C:\WINDOWS
19:57:55.0718 0x0a54 Processor architecture: Intel x86
19:57:55.0718 0x0a54 Number of processors: 1
19:57:55.0718 0x0a54 Page size: 0x1000
19:57:55.0718 0x0a54 Boot type: Normal boot
19:57:55.0718 0x0a54 ============================================================
19:57:55.0718 0x0a54 BG loaded
19:58:08.0671 0x0a54 System UUID: {AEB0CB9A-AED1-B0D0-41D3-A73CFE66A525}
19:58:11.0125 0x0a54 Drive \Device\Harddisk0\DR0 - Size: 0x3A35294400 (232.83 Gb), SectorSize: 0x200, Cylinders: 0x76BA, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
19:58:11.0125 0x0a54 ============================================================
19:58:11.0125 0x0a54 \Device\Harddisk0\DR0:
19:58:11.0125 0x0a54 MBR partitions:
19:58:11.0125 0x0a54 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x17886, BlocksNum 0x1CB880AA
19:58:11.0125 0x0a54 ============================================================
19:58:11.0218 0x0a54 C: <-> \Device\Harddisk0\DR0\Partition1
19:58:11.0218 0x0a54 ============================================================
19:58:11.0218 0x0a54 Initialize success
19:58:11.0218 0x0a54 ============================================================
19:58:16.0375 0x0dfc ============================================================
19:58:16.0375 0x0dfc Scan started
19:58:16.0375 0x0dfc Mode: Manual;
19:58:16.0375 0x0dfc ============================================================
19:58:16.0375 0x0dfc KSN ping started
19:58:30.0781 0x0dfc KSN ping finished: true
19:58:44.0281 0x0dfc ================ Scan system memory ========================
19:58:44.0281 0x0dfc System memory - ok
19:58:44.0296 0x0dfc ================ Scan services =============================
19:58:45.0953 0x0dfc [ D5A6658CBFBBF9A0F8827E83C9FDE806, F67489BEA27A6DD596FBBC08FB7C2BC0093DBF18F779016EA263986FD4B0D946 ] 6to4 C:\WINDOWS\System32\6to4svc.dll
19:58:45.0953 0x0dfc 6to4 - ok
19:58:46.0218 0x0dfc Abiosdsk - ok
19:58:46.0281 0x0dfc [ 6ABB91494FE6C59089B9336452AB2EA3, FA28396820E44F991891042E051A4414485B54D456F252E03E3FFE1B4B4CF843 ] abp480n5 C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS
19:58:46.0312 0x0dfc abp480n5 - ok
19:58:46.0453 0x0dfc [ AC407F1A62C3A300B4F2B5A9F1D55B2C, 31F5FC61B37E22100B3A52A590295A7E827FFC581FA9960C64B9032452AAECED ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
19:58:46.0500 0x0dfc ACPI - ok
19:58:46.0531 0x0dfc [ 9E1CA3160DAFB159CA14F83B1E317F75, 13B3E897B0E819BF734449416D9EC6EBCAC89538EC69BF48C068593B82D57004 ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
19:58:46.0562 0x0dfc ACPIEC - ok
19:58:46.0734 0x0dfc AcrSch2Svc - ok
19:58:46.0843 0x0dfc [ 6463D1DB354B13E6CED4D67F6E4910F4, 0E14AF6F68F162276ADE88D9F2CAC2DBA30FFC90EE7CC51A0C9B86D568369238 ] actser C:\WINDOWS\system32\drivers\actser.sys
19:58:46.0875 0x0dfc actser - ok
19:58:47.0000 0x0dfc [ 6D7F09CD92A9FEF3A8EFCE66231FDD79, FBEE01F2FFDB6854F682B4BE91673462A146927DD333D3C4DE66E6B86D9ED8DB ] adfs C:\WINDOWS\system32\drivers\adfs.sys
19:58:47.0015 0x0dfc adfs - ok
19:58:47.0156 0x0dfc [ 476BB014F3F68C0C15EDDD5B444DA8FF, 94E8FDC4390672C31081EACF3B3AE57486ED06669C4120F139DB3A62AAE77071 ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
19:58:47.0281 0x0dfc AdobeFlashPlayerUpdateSvc - ok
19:58:47.0421 0x0dfc [ 9A11864873DA202C996558B2106B0BBC, 4C68F1DBD1541291DD0FAB78DB42B25FA051CD9F55ED869173E3219CD31500C4 ] adpu160m C:\WINDOWS\system32\DRIVERS\adpu160m.sys
19:58:47.0500 0x0dfc adpu160m - ok
19:58:47.0546 0x0dfc [ 8BED39E3C35D6A489438B8141717A557, 1B5796E56B0927360CE0759641B1151828BC0A9E45620D2B2D880491F5CE33D0 ] aec C:\WINDOWS\system32\drivers\aec.sys
19:58:47.0593 0x0dfc aec - ok
19:58:47.0687 0x0dfc [ 1E44BC1E83D8FD2305F8D452DB109CF9, CF5EC07E0B589FA2A4701C6CFD69E893FC3ABF274AD57AE3C13FFE49063B02C8 ] AFD C:\WINDOWS\System32\drivers\afd.sys
19:58:47.0718 0x0dfc AFD - ok
19:58:47.0796 0x0dfc [ B34B1AB0A7690A0E2301FEC6D17B2FC1, E37953E874709E8329C72F8923F34B72654B35A756D838828A005A31E196F206 ] AFS2K C:\WINDOWS\system32\drivers\AFS2K.sys
19:58:47.0859 0x0dfc AFS2K - ok
19:58:47.0921 0x0dfc [ 08FD04AA961BDC77FB983F328334E3D7, A784EC8A9EDB579262366B5A9AB177DB7BEC0A421BDE85431D0AD4959D5AF5E7 ] agp440 C:\WINDOWS\system32\DRIVERS\agp440.sys
19:58:48.0000 0x0dfc agp440 - ok
19:58:48.0062 0x0dfc [ 03A7E0922ACFE1B07D5DB2EEB0773063, 93EEA872A5642C95FF19C81F8EFFB9B52742A14DBF138784F0F713AD18C413ED ] agpCPQ C:\WINDOWS\system32\DRIVERS\agpCPQ.sys
19:58:48.0078 0x0dfc agpCPQ - ok
19:58:48.0125 0x0dfc [ C23EA9B5F46C7F7910DB3EAB648FF013, 92C84E9AF278A3B55D56C4F8E6C10E3EF1F7B336A44A018AED6DC51A46671F0B ] Aha154x C:\WINDOWS\system32\DRIVERS\aha154x.sys
19:58:48.0125 0x0dfc Aha154x - ok
19:58:48.0171 0x0dfc [ 19DD0FB48B0C18892F70E2E7D61A1529, 95BA1568E8E08314508CA0E1F95555891E70399AEC312C793B46A841F56FFDCF ] aic78u2 C:\WINDOWS\system32\DRIVERS\aic78u2.sys
19:58:48.0203 0x0dfc aic78u2 - ok
19:58:48.0234 0x0dfc [ B7FE594A7468AA0132DEB03FB8E34326, BF0DC2B8C474DB151589BA9968264413521DDD9E7316B752B2FA40C24200FBE0 ] aic78xx C:\WINDOWS\system32\DRIVERS\aic78xx.sys
19:58:48.0250 0x0dfc aic78xx - ok
19:58:48.0312 0x0dfc [ 738D80CC01D7BC7584BE917B7F544394, DCC17AAEF5CDDF52FAAC3CC6904EF421CD595F66318A2370BEE261D5C3A8E340 ] Alerter C:\WINDOWS\system32\alrsvc.dll
19:58:48.0343 0x0dfc Alerter - ok
19:58:48.0406 0x0dfc [ 190CD73D4984F94D823F9444980513E5, 93A32C2495CCA094F768BA707C74DA5C00B8A88A9236DD1A297439A7C2E6C6FA ] ALG C:\WINDOWS\System32\alg.exe
19:58:48.0421 0x0dfc ALG - ok
19:58:48.0515 0x0dfc [ 1140AB9938809700B46BB88E46D72A96, 369379ECC5941ACE984A7F31EAABB66A2E693EDBADA639B86D26FD681D45608E ] AliIde C:\WINDOWS\system32\DRIVERS\aliide.sys
19:58:48.0593 0x0dfc AliIde - ok
19:58:48.0625 0x0dfc [ CB08AED0DE2DD889A8A820CD8082D83C, B1A9D493390AEDF6EFF8BCAA3B33EC31758452AB497C34C0728CDDA1D8DCBF2A ] alim1541 C:\WINDOWS\system32\DRIVERS\alim1541.sys
19:58:48.0640 0x0dfc alim1541 - ok
19:58:48.0687 0x0dfc [ 95B4FB835E28AA1336CEEB07FD5B9398, 36CD3B14EF78B01FB653B78187FAA63C4DD5F4137AC3B91D81256A350EEDCBC1 ] amdagp C:\WINDOWS\system32\DRIVERS\amdagp.sys
19:58:48.0703 0x0dfc amdagp - ok
19:58:48.0750 0x0dfc [ 79F5ADD8D24BD6893F2903A3E2F3FAD6, 9B179F0B6A559639D3AE3975CEBF2718294BE5743517BEE06586F0D258164C81 ] amsint C:\WINDOWS\system32\DRIVERS\amsint.sys
19:58:48.0750 0x0dfc amsint - ok
19:58:50.0375 0x0dfc [ 010FB73DB0B4BDAE8C2EB2E561EBE0E3, E2AE4588841A944478485CFCFE1FEA34C04327B32FB0AFF31962C03098D11A46 ] AntiVirMailService C:\Programme\Avira\AntiVir Desktop\avmailc.exe
19:58:51.0468 0x0dfc AntiVirMailService - ok
19:58:51.0656 0x0dfc [ 3478F48B23A0D9F6EADD4A2405BA70EF, 421BDDCEFEF491915EF8D9BFB756A56778437D98B136758A15AE5A0672738C9D ] AntiVirSchedulerService C:\Programme\Avira\AntiVir Desktop\sched.exe
19:58:52.0343 0x0dfc AntiVirSchedulerService - ok
19:58:52.0703 0x0dfc [ AFFE7C21A4FCA1963371F10066911D3A, DC7A94A784C9389792F3C9A1F435CD9B2D5F74AC9E56F35831B65820FA6A0EDE ] AntiVirService C:\Programme\Avira\AntiVir Desktop\avguard.exe
19:58:52.0718 0x0dfc AntiVirService - ok
19:58:53.0218 0x0dfc [ 48543D304F54C8997462208555662BA4, ADA3B62E6D1513FF24D044B03EFCBBD4268DB32C213F575D8AD3867D3F82B340 ] AntiVirWebService C:\Programme\Avira\AntiVir Desktop\AVWEBGRD.EXE
19:58:53.0765 0x0dfc AntiVirWebService - ok
19:58:54.0171 0x0dfc [ 85180CF88C5EBAD73B452A43A004CA51, 24D25495DC21293FC1F37EE7E7C2A4725E66D3D25BE05D7EDF4BB4F444C65526 ] AOL ACS C:\Programme\Gemeinsame Dateien\AOL\ACS\AOLAcsd.exe
19:58:54.0234 0x0dfc AOL ACS - ok
19:58:54.0593 0x0dfc [ 2FC9244E0CD8F1EC2204142D1557FC6D, 62DC3B81A1DA7F29C6F4D7F0A79249184E99773A8E9861D6A6CEA2DCD0CA9B24 ] AOLService C:\PROGRA~1\GEMEIN~1\aol\AOLPRI~1\\aolserv.exe
19:58:54.0625 0x0dfc AOLService - ok
19:58:54.0875 0x0dfc [ 6D46AB4C073FE2692FD72D1808CA2260, 36CCEB624F4A0E6999C1BD1E1F2CD6F288304B430AA9130EFBDC7FF0C8B3F1CC ] APNMCP C:\Programme\AskPartnerNetwork\Toolbar\apnmcp.exe
19:58:54.0953 0x0dfc APNMCP - ok
19:58:55.0093 0x0dfc [ D45960BE52C3C610D361977057F98C54, 9186589B502F46B47672CFB8EBD558D51B0F3CBFE4E0DDBA625A4265236518CE ] AppMgmt C:\WINDOWS\System32\appmgmts.dll
19:58:55.0156 0x0dfc AppMgmt - ok
19:58:55.0218 0x0dfc [ 62D318E9A0C8FC9B780008E724283707, 1A69806AB2BDECCEB5EB23A80700B3F98983D5D67F78839CBF269087FA460757 ] asc C:\WINDOWS\system32\DRIVERS\asc.sys
19:58:55.0390 0x0dfc asc - ok
19:58:55.0453 0x0dfc [ 69EB0CC7714B32896CCBFD5EDCBEA447, 1CB506B5F71F84EFD26961010681D0A79AA7B266573378E3D2755125DF5D6BB6 ] asc3350p C:\WINDOWS\system32\DRIVERS\asc3350p.sys
19:58:55.0578 0x0dfc asc3350p - ok
19:58:55.0640 0x0dfc [ 5D8DE112AA0254B907861E9E9C31D597, 557C93E82A71131D226267151C84B197503831A16263DDFE040E996B605CA9E8 ] asc3550 C:\WINDOWS\system32\DRIVERS\asc3550.sys
19:58:55.0656 0x0dfc asc3550 - ok
19:58:55.0750 0x0dfc [ B979979AB8027F7F53FB16EC4229B7DB, 3D50396B13B494D0082266C29C40715981CA105F6E407288C71410D4B833BB10 ] ASPI32 C:\WINDOWS\system32\drivers\ASPI32.sys
19:58:55.0796 0x0dfc ASPI32 - ok
19:58:56.0640 0x0dfc [ 0E5E4957549056E2BF2C49F4F6B601AD, F7F19FDC906B719A3516D30A9B4A2262C8CC5B36B94E3D4195C345EC4610FF2B ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
19:58:57.0515 0x0dfc aspnet_state - ok
19:58:57.0640 0x0dfc [ B153AFFAC761E7F5FCFA822B9C4E97BC, 7E60F572A6B3C6219E3C86225AA37243AFFD74337DB7F108B04778042E5CC959 ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
19:58:57.0718 0x0dfc AsyncMac - ok
19:58:57.0843 0x0dfc [ 9F3A2F5AA6875C72BF062C712CFA2674, B4DF1D2C56A593C6B54DE57395E3B51D288F547842893B32B0F59228A0CF70B9 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
19:58:57.0843 0x0dfc atapi - ok
19:58:57.0859 0x0dfc Atdisk - ok
19:58:57.0953 0x0dfc [ 9916C1225104BA14794209CFA8012159, 5D6F05F715C52A16D05CAE15C3DFE77A139A7F27F7AE710EC9A10F9EE05115A1 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
19:58:58.0000 0x0dfc Atmarpc - ok
19:58:58.0171 0x0dfc [ 58ED0D5452DF7BE732193E7999C6B9A4, 254E2ECF592DDA2E3E6CA9F6F3E77926E2265586A7937BA95199ED47BCDE69A3 ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
19:58:58.0203 0x0dfc AudioSrv - ok
19:58:58.0343 0x0dfc [ D9F724AA26C010A217C97606B160ED68, 329B5118F2409731D06FDAE85B6ADD64A048292801BCB3546651CEB303111695 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
19:58:58.0421 0x0dfc audstub - ok
19:58:58.0484 0x0dfc [ 683A089D14B60CD58E06ECE079065235, AD6B637FF32C3249D17D0029E55ED1EA8D1B878C99066AF76D452408B009D311 ] avgntflt C:\WINDOWS\system32\DRIVERS\avgntflt.sys
19:58:58.0593 0x0dfc avgntflt - ok
19:58:58.0781 0x0dfc [ D62D0CFABA19B111067613101D43FA7E, 0A0B7886AA48A9E6716CADB52CE02EE1EF40002636EBF04AC02E0AF3FBC22970 ] avipbb C:\WINDOWS\system32\DRIVERS\avipbb.sys
19:58:58.0828 0x0dfc avipbb - ok
19:58:59.0046 0x0dfc [ D8C712305F73CD34D1B344810E522728, 49A474FF6CA44E8427D7A8290B47395125B0148AF384CF2B3B1FA495A4718CBA ] avkmgr C:\WINDOWS\system32\DRIVERS\avkmgr.sys
19:58:59.0078 0x0dfc avkmgr - ok
19:58:59.0171 0x0dfc [ 56ACAE37FAEEF24D346B99F45D17EF4B, 247D9AB03D0038760B3FF95A1037FCF6E325CB48A430E24443BA58BB1C175192 ] AVMCOWAN C:\WINDOWS\system32\DRIVERS\AVMCOWAN.sys
19:58:59.0421 0x0dfc AVMCOWAN - ok
19:58:59.0500 0x0dfc [ 980F4C96C73C61CC6FCF657A721B35D3, CFBF1DC15117C494B27434AFF8C337AB5435E3FB4B97474E6A13A69F9C8B7D77 ] AVMUNET C:\WINDOWS\system32\DRIVERS\avmunet.sys
19:58:59.0765 0x0dfc AVMUNET - ok
19:58:59.0843 0x0dfc [ C997AF59C54D69232FB7BBEA4DAD86E2, 215DAACB21728E8241B06713F6CF87D50C38E66DF94D224EC17075510D87079A ] AVMWAN C:\WINDOWS\system32\DRIVERS\avmwan.sys
19:59:00.0546 0x0dfc AVMWAN - ok
19:59:00.0656 0x0dfc [ DA1F27D85E0D1525F6621372E7B685E9, 5A81A46A3BDD19DAFC6C87D277267A5D44F3A1B5302F2CC1111D84B7BAD5610D ] Beep C:\WINDOWS\system32\drivers\Beep.sys
19:59:01.0625 0x0dfc Beep - ok
19:59:01.0890 0x0dfc [ D6F603772A789BB3228F310D650B8BD1, A539025C70FD998A9B8703DE05CAE5E99BC721D8852EA561EBC2DD20CB371D2E ] BITS C:\WINDOWS\system32\qmgr.dll
19:59:03.0031 0x0dfc BITS - ok
19:59:03.0187 0x0dfc [ 31FF5B87C1DD907613CC613224B8E303, 71878A4D7029AE39B3DD7847983D6228A01A83899F09862E775DA05DBF5869AA ] BlueletAudio C:\WINDOWS\system32\DRIVERS\blueletaudio.sys
19:59:03.0703 0x0dfc BlueletAudio - ok
19:59:03.0781 0x0dfc [ B71549F23736ADF83A571061C47777FD, A1D0320736EE777030A543DCA086367EB5A5B6F95088B9C22D8E09326C3A39A9 ] Browser C:\WINDOWS\System32\browser.dll
19:59:03.0781 0x0dfc Browser - ok
19:59:03.0890 0x0dfc [ 2FE6D5BE0629F706197B30C0AA05DE30, 528ED3AA8129FDD6C8EF698E5ECE9BB93C0249CF0200115F13B36410A353F353 ] BrPar C:\WINDOWS\System32\drivers\BrPar.sys
19:59:04.0578 0x0dfc BrPar - ok
19:59:04.0734 0x0dfc [ 9DA8ABC4885AFF4793D4AA420E40BB12, 502C7ED03B4DB0B36436FF0AE2DE1BD1DB488EFC9D473E3E8EC40E2D96954CC1 ] BT C:\WINDOWS\system32\DRIVERS\btnetdrv.sys
19:59:04.0828 0x0dfc BT - ok
19:59:04.0984 0x0dfc [ BDF2C32C14EF7AB75DDCC3394D6F80D4, 212C62AF31FC03B22021325E8A7A597D321D20BFB9B70A928304CB6A7DFC1B04 ] Btcsrusb C:\WINDOWS\system32\Drivers\btcusb.sys
19:59:05.0109 0x0dfc Btcsrusb - ok
19:59:05.0203 0x0dfc [ 083AD7F6FF500D0A93C0BEA2CF298C93, 5AD9009642718506A71B0D399FC255A1DD648A016E00727C20763C3D91B9BC97 ] BTHidEnum C:\WINDOWS\system32\DRIVERS\vbtenum.sys
19:59:05.0296 0x0dfc BTHidEnum - ok
19:59:05.0531 0x0dfc [ F408264F6AD1DC7E7BDD4837440F115D, 3EC127AAC4D26D63783A098FDF52DF03F57C6B7D7788CDEC51509B9BE74EEB5C ] BTHidMgr C:\WINDOWS\system32\Drivers\BTHidMgr.sys
19:59:05.0625 0x0dfc BTHidMgr - ok
19:59:05.0859 0x0dfc [ 6B05FDC0CFC3753B520D2D4176CC32D0, A15BB0899A1A6273FFB34A57FC6B5544CCC09F2A7C56F6173A8F86E80C0DD49E ] BTNetFilter C:\WINDOWS\system32\drivers\BTNetFilter.sys
19:59:05.0859 0x0dfc BTNetFilter - ok
19:59:06.0015 0x0dfc [ 09E1576F9A1A4B538C75486EF9319860, 25EDF950DC75BBF6EE46922E322471F349331D246DBA384FB55FD64D3B0B18A6 ] CA504AV C:\WINDOWS\system32\Drivers\CA504AV.SYS
19:59:06.0421 0x0dfc CA504AV - ok
19:59:06.0718 0x0dfc [ 4EA760F6CA89618230ECF298781AAE3A, C0BD27FC666CC92C01F1B7376428C8EF5544A6FE71C9310B945C3B5877707D64 ] CAPI20 C:\WINDOWS\System32\Drivers\CAPI20.SYS
19:59:06.0750 0x0dfc CAPI20 - ok
19:59:06.0781 0x0dfc catchme - ok
19:59:06.0859 0x0dfc [ 90A673FC8E12A79AFBED2576F6A7AAF9, BDE7858A3457DB979FEDD8577FA6321BF72848E4A7BF9F173C78A6A10CBB3EBE ] cbidf C:\WINDOWS\system32\DRIVERS\cbidf2k.sys
19:59:06.0859 0x0dfc cbidf - ok
19:59:06.0890 0x0dfc [ 90A673FC8E12A79AFBED2576F6A7AAF9, BDE7858A3457DB979FEDD8577FA6321BF72848E4A7BF9F173C78A6A10CBB3EBE ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
19:59:06.0890 0x0dfc cbidf2k - ok
19:59:07.0015 0x0dfc [ 0BE5AEF125BE881C4F854C554F2B025C, 1770DD70B3F115A0EF460907DEDC1E4B7241C08615A98F194D61A49C3E2BAA54 ] CCDECODE C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
19:59:07.0046 0x0dfc CCDECODE - ok
19:59:07.0140 0x0dfc [ F3EC03299634490E97BBCE94CD2954C7, CDC85ADA27E0D501581CE6F28D7E1941E90411FA8E8F2C43A68BAA8CB78E85DD ] cd20xrnt C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys
19:59:07.0234 0x0dfc cd20xrnt - ok
19:59:07.0437 0x0dfc [ C1B486A7658353D33A10CC15211A873B, AA4DD9E7AAE5AAB1146B360B17001F975D2F29A1281CF7B13E7136480410F347 ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
19:59:08.0328 0x0dfc Cdaudio - ok
19:59:08.0390 0x0dfc [ C885B02847F5D2FD45A24E219ED93B32, B26B2F8E3A831E2B65EB0C5195B0645CD50E22615CE79C9B0B391CD563B121DB ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
19:59:09.0296 0x0dfc Cdfs - ok
19:59:09.0375 0x0dfc [ 1F4260CC5B42272D71F79E570A27A4FE, B51C2A3ED3C309953D0EA45869C8E464C10F2533DADE9E0286AF674979098D1D ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
19:59:09.0625 0x0dfc Cdrom - ok
19:59:09.0671 0x0dfc Changer - ok
19:59:10.0093 0x0dfc [ 28E3040D1F1CA2008CD6B29DFEBC9A5E, ACB458E8A11AA2143734A5A0281973D95158E6402A6453F98F9832D1E19B01F9 ] cisvc C:\WINDOWS\system32\cisvc.exe
19:59:10.0281 0x0dfc cisvc - ok
19:59:10.0890 0x0dfc [ 778A30ED3C134EB7E406AFC407E9997D, 3E6AD115AB2596EB001BC21AEADDBC75F27C42DB90C986B7AD17743CE631234E ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
19:59:11.0093 0x0dfc ClipSrv - ok
19:59:11.0265 0x0dfc [ D87ACAED61E417BBA546CED5E7E36D9C, 14AC6034A5BC0FB2A1AFDAD42BEF4DE641556E54AD30D0C46765660A4BE55462 ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
19:59:14.0921 0x0dfc clr_optimization_v2.0.50727_32 - ok
19:59:20.0812 0x0dfc [ C5A75EB48E2344ABDC162BDA79E16841, 6070A8AAFD38FBC6A68A2B10C20117612354DF21B4492D90CA522BFB6870D726 ] clr_optimization_v4.0.30319_32 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
19:59:22.0750 0x0dfc clr_optimization_v4.0.30319_32 - ok
19:59:23.0796 0x0dfc [ C687F81290303D90099B027A6474F99F, 9276B631E9082685B6348E425482D708CE5D1761876D951B1675442DBAF8AF7C ] CmdIde C:\WINDOWS\system32\DRIVERS\cmdide.sys
19:59:23.0984 0x0dfc CmdIde - ok
19:59:24.0062 0x0dfc COMSysApp - ok
19:59:24.0140 0x0dfc [ 3EE529119EED34CD212A215E8C40D4B6, A6B71F3D4EE7358CA85F010E6271A6B72226D25DF30ED331DA830639ED3E9903 ] Cpqarray C:\WINDOWS\system32\DRIVERS\cpqarray.sys
19:59:24.0250 0x0dfc Cpqarray - ok
19:59:24.0406 0x0dfc [ D01F685F8B4598D144B0CCE9FF95D8D5, A68EF814CDBD7291DEF4745FE14D5080041BD3275AB12629C7811506AF2B8E17 ] cpudrv C:\Programme\SystemRequirementsLab\cpudrv.sys
19:59:30.0421 0x0dfc cpudrv - ok
19:59:30.0671 0x0dfc [ 611F824E5C703A5A899F84C5F1699E4D, 9EFA5612FE58E9974E4CC13D39D91D7B5DEA3ED66BEFBED3AAE6D2800FD8162A ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
19:59:30.0781 0x0dfc CryptSvc - ok
19:59:30.0890 0x0dfc [ E550E7418984B65A78299D248F0A7F36, 52F6BD1027E91F9A90AFAB82C7F2A0314B7E55262F5293D5F9F8F12135EDD88C ] dac2w2k C:\WINDOWS\system32\DRIVERS\dac2w2k.sys
19:59:31.0609 0x0dfc dac2w2k - ok
19:59:31.0718 0x0dfc [ 683789CAA3864EB46125AE86FF677D34, B725D026E069AD253192E21245260CBA44EF3C72781616A2CAD0BF0E2D86D510 ] dac960nt C:\WINDOWS\system32\DRIVERS\dac960nt.sys
19:59:32.0265 0x0dfc dac960nt - ok
19:59:33.0093 0x0dfc [ 3127AFBF2C1ED0AB14A1BBB7AAECB85B, ECFBACE3CBF2384948EA1C445BDA3955EB4F44A9874286E6537C67DC1283E5B0 ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
19:59:35.0968 0x0dfc DcomLaunch - ok
19:59:36.0078 0x0dfc [ C29A1C9B75BA38FA37F8C44405DEC360, 7476D8BC4380CDE56764B2034AF3741DA4ED00F315E41C9A02B5EAD04374F241 ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
19:59:36.0781 0x0dfc Dhcp - ok
19:59:36.0828 0x0dfc [ 044452051F3E02E7963599FC8F4F3E25, 584BDDB074618BE76454CF90E74829CFF588B5B5FAEB793E2F7AAD26352DD689 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
19:59:37.0156 0x0dfc Disk - ok
19:59:37.0187 0x0dfc dmadmin - ok
19:59:37.0296 0x0dfc [ 0DCFC8395A99FECBB1EF771CEC7FE4EA, 89B0AEE5BE01B9FE4FF2989FF16DB6121721ACDFCE6D9655C0ACD321D8C308BE ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
19:59:44.0484 0x0dfc dmboot - ok
19:59:44.0718 0x0dfc [ 0DCFC8395A99FECBB1EF771CEC7FE4EA, 89B0AEE5BE01B9FE4FF2989FF16DB6121721ACDFCE6D9655C0ACD321D8C308BE ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
19:59:44.0734 0x0dfc dmboot - ok
19:59:44.0890 0x0dfc [ 53720AB12B48719D00E327DA470A619A, 800264866A6267C9000A85D00095D57908D059D737E5F28C9C4049B884C46228 ] dmio C:\WINDOWS\system32\drivers\dmio.sys
19:59:46.0625 0x0dfc dmio - ok
19:59:46.0734 0x0dfc [ E9317282A63CA4D188C0DF5E09C6AC5F, D41E002F555FE9015EF620975255F58BB79198CA1FF0E09EC950CB450FF77CF7 ] dmload C:\WINDOWS\system32\drivers\dmload.sys
19:59:47.0140 0x0dfc dmload - ok
19:59:47.0234 0x0dfc [ 25C83FFBBA13B554EB6D59A9B2E2EE78, 9FBD655ED3E9163AE11EC207F283E387EFBA5A23108EC790BAE4846B35E66F16 ] dmserver C:\WINDOWS\System32\dmserver.dll
19:59:49.0500 0x0dfc dmserver - ok
19:59:49.0578 0x0dfc [ 8A208DFCF89792A484E76C40E5F50B45, 4E40E2EB38C6254E7CAA488200E89EE7DEBBBA773890BC6A84313CC68178D54F ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
19:59:49.0953 0x0dfc DMusic - ok
19:59:50.0125 0x0dfc [ 407F3227AC618FD1CA54B335B083DE07, 96B8E734648FE9A4EBA59C096C8779BD1A11A93A6303AFD438A406C8122D36C6 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
19:59:50.0515 0x0dfc Dnscache - ok
19:59:50.0593 0x0dfc [ 676E36C4FF5BCEA1900F44182B9723E6, 740CF18BD40E00FEA26CF0E6340C5D18F7D0B4390055FAEEC258B3AA790C4AE9 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
19:59:51.0031 0x0dfc Dot3svc - ok
19:59:51.0109 0x0dfc [ 40F3B93B4E5B0126F2F5C0A7A5E22660, 8AFFF28903037F5E36BB5352F2B236A217558FCC0146B23C787606C3F21243DB ] dpti2o C:\WINDOWS\system32\DRIVERS\dpti2o.sys
19:59:51.0296 0x0dfc dpti2o - ok
19:59:51.0328 0x0dfc [ 8F5FCFF8E8848AFAC920905FBD9D33C8, C8C6FB97AB0871C8C88A2201525A5CF10D5131CB6980D32692ED7A8F58399AD5 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
19:59:52.0296 0x0dfc drmkaud - ok
19:59:52.0421 0x0dfc [ 95974E66D3DE4951D29E28E8BC0B644C, 5737A2FB4D95AAB61A50E25CC570D78FC91C1A7B02754211B1B57DC4209A7D58 ] E100B C:\WINDOWS\system32\DRIVERS\e100b325.sys
19:59:53.0078 0x0dfc E100B - ok
19:59:53.0156 0x0dfc [ 4E4F2FDDAB0A0736D7671134DCCE91FB, 8E2C57D1A006856C47CBDD5765A9DD317DB205B26DA8BFC70555A506257A1CD9 ] EapHost C:\WINDOWS\System32\eapsvc.dll
19:59:53.0703 0x0dfc EapHost - ok
19:59:53.0781 0x0dfc [ 877C18558D70587AA7823A1A308AC96B, 6B336A62112988D855513F45153F73F8470C41A448E9B7438B4A8EC1813AABF1 ] ERSvc C:\WINDOWS\System32\ersvc.dll
19:59:53.0828 0x0dfc ERSvc - ok
19:59:53.0843 0x0dfc esgiguard - ok
19:59:53.0937 0x0dfc [ 01CE484FF6D70A39479BC6D619DE7ED6, E3ABCB9FF8844148119630E2B9B8456FA8706AB8C947986EB040B7A921C16EFE ] EsgScanner C:\WINDOWS\system32\DRIVERS\EsgScanner.sys
19:59:57.0218 0x0dfc EsgScanner - ok
19:59:59.0234 0x0dfc [ A3EDBE9053889FB24AB22492472B39DC, 6F2ED6E04BDE2FCA2A8BF9BD2D1D6923DE6EAECB46F582B6C0BD1CF364D65C9E ] Eventlog C:\WINDOWS\system32\services.exe
20:00:00.0640 0x0dfc Eventlog - ok
20:00:00.0718 0x0dfc [ AF4F6B5739D18CA7972AB53E091CBC74, A399E2CC026730D3A429727AAB48093B9F1E5DD8EB6336519C7F16182FDB3905 ] EventSystem C:\WINDOWS\system32\es.dll
20:00:01.0968 0x0dfc EventSystem - ok
20:00:02.0156 0x0dfc [ 38D332A6D56AF32635675F132548343E, E6909DB836AF679B4F4D62C7396D6C82769CC7ABB8C919C2AABFE934FCE268F6 ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
20:00:02.0562 0x0dfc Fastfat - ok
20:00:02.0656 0x0dfc [ 2DB7D303C36DDD055215052F118E8E75, BE6E7BBE12A7A4EDF1F1C2935350603970C7426BBCA7A1A6644BB8999123AF17 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
20:00:02.0781 0x0dfc FastUserSwitchingCompatibility - ok
20:00:02.0953 0x0dfc [ 08B8B302AF0D1B3B8543429BBAC8F21F, F3370FE5C4BECB16F0668E6605792EF8096FE06A79D8234E3D6E1B584F2D4E5A ] Fax C:\WINDOWS\system32\fxssvc.exe
20:00:04.0218 0x0dfc Fax - ok
20:00:04.0296 0x0dfc [ 92CDD60B6730B9F50F6A1A0C1F8CDC81, 8307A532AB4D05CBBCE206DC2759497708BF5AAA880BD00F0E4F281D8578A1F5 ] Fdc C:\WINDOWS\system32\DRIVERS\fdc.sys
20:00:04.0843 0x0dfc Fdc - ok
20:00:04.0968 0x0dfc [ B0678A548587C5F1967B0D70BACAD6C1, 7E49910212ED87313F926E4800EA8D34809C287A686CA69B82B79C1A6451F88C ] Fips C:\WINDOWS\system32\drivers\Fips.sys
20:00:05.0140 0x0dfc Fips - ok
20:00:05.0515 0x0dfc [ 1F63900E2EB00101B9ACA2B7A870704E, 5AFE1FC852937FECE6B33147BD0110436FE97F33BFDA3F69B1F5EDAD6FFC09C6 ] FLEXnet Licensing Service C:\Programme\Gemeinsame Dateien\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
20:00:06.0062 0x0dfc FLEXnet Licensing Service - ok
20:00:06.0156 0x0dfc [ 9D27E7B80BFCDF1CDD9B555862D5E7F0, 69C271AD5BCEBFD8AE5A769BDD7EC51256DA3A8ADAD5D12E5C0D13F4E82D8805 ] Flpydisk C:\WINDOWS\system32\DRIVERS\flpydisk.sys
20:00:06.0187 0x0dfc Flpydisk - ok
20:00:06.0250 0x0dfc [ B2CF4B0786F8212CB92ED2B50C6DB6B0, 280F5CF8A90F7BEDE73ADD0DD0F8952088133A7CA9A3D3B7041957E33B36845D ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
20:00:07.0328 0x0dfc FltMgr - ok
20:00:07.0531 0x0dfc [ 8BA7C024070F2B7FDD98ED8A4BA41789, 47585006F86B2C6016EC54250A416794792D1E4024FF229C120BC25B684AF66A ] FontCache3.0.0.0 c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
20:00:07.0593 0x0dfc FontCache3.0.0.0 - ok
20:00:07.0968 0x0dfc [ 0B7EE136026CC51FE42855BA6772F79A, 7AA7BF23481E5F2C885872E1AF35DDA2295D8DEBEB22F3233ED2BB6BB5D8C801 ] fpcibase C:\WINDOWS\system32\DRIVERS\fpcibase.sys
20:00:08.0265 0x0dfc fpcibase - ok
20:00:08.0296 0x0dfc [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A, EC635E071201A766845D48973772CBE0958942B4162F3F5F70660D114CC877E0 ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
20:00:08.0468 0x0dfc Fs_Rec - ok
20:00:08.0531 0x0dfc [ 8F1955CE42E1484714B542F341647778, 8EB3F99625F409D3032561E8AB44BEFBFBFBA4EC873C2151C92A5CAAF7F2AA55 ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
20:00:08.0703 0x0dfc Ftdisk - ok
20:00:08.0796 0x0dfc [ 0A02C63C8B144BD8C86B103DEE7C86A2, 7A3235DD3E1995DD72B212FAEB3ECA2A974434DE9BF6D269EA11BA65A80E7E50 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
20:00:08.0906 0x0dfc Gpc - ok
20:00:09.0046 0x0dfc [ 626A24ED1228580B9518C01930936DF9, CBD94AB1E5477D7288799D17528CC43D572E711DA0F2B0C784A0B9FE105BF0F4 ] gupdate C:\Programme\Google\Update\GoogleUpdate.exe
20:00:09.0484 0x0dfc gupdate - ok
20:00:09.0515 0x0dfc [ 626A24ED1228580B9518C01930936DF9, CBD94AB1E5477D7288799D17528CC43D572E711DA0F2B0C784A0B9FE105BF0F4 ] gupdatem C:\Programme\Google\Update\GoogleUpdate.exe
20:00:09.0515 0x0dfc gupdatem - ok
20:00:09.0796 0x0dfc [ 3FD5F79AA40B1C244C59DE984E98DC37, 85EEAC5C9B472B660DED0CA2C3CD2E499FC3B8C4B7463485A27F63787A2ACEB0 ] gusvc C:\Programme\Google\Common\Google Updater\GoogleUpdaterService.exe
20:00:09.0890 0x0dfc gusvc - ok
20:00:09.0953 0x0dfc [ 573C7D0A32852B48F3058CFD8026F511, BC384BBA394AFDCDA1A9ABC858C692AA84A1F0A31AF3DDF7F38D120C027927FB ] HDAudBus C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
20:00:10.0171 0x0dfc HDAudBus - ok
20:00:10.0375 0x0dfc [ CB66BF85BF599BEFD6C6A57C2E20357F, 55D3A0F9279FF316766F42548FCB61C452942B08A37590C4892DF110BE4E53C6 ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
20:00:10.0546 0x0dfc helpsvc - ok
20:00:10.0609 0x0dfc [ B35DA85E60C0103F2E4104532DA2F12B, E13C9F73DF7713554CB614B36123D75014F5121AA1FC9069733E61758751CBE4 ] HidServ C:\WINDOWS\System32\hidserv.dll
20:00:10.0640 0x0dfc HidServ - ok
20:00:10.0671 0x0dfc [ CCF82C5EC8A7326C3066DE870C06DAF1, 93395FA4C26B2E82DC8B7025ED3BCF583885E5D8C5F60CD6EEAA6335D6A126EC ] HidUsb C:\WINDOWS\system32\DRIVERS\hidusb.sys
20:00:10.0750 0x0dfc HidUsb - ok
20:00:10.0859 0x0dfc [ ED29F14101523A6E0E808107405D452C, B8FA987637787BEECC2EB06D36293DAC355523392B49A8C5A9491EEE961917E9 ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
20:00:10.0906 0x0dfc hkmsvc - ok
20:00:10.0953 0x0dfc [ B028377DEA0546A5FCFBA928A8AEFAE0, FD7B34A6036AD443014B16394A5F051A298CEE4276D50525FB9F15A0D2684C8B ] hpn C:\WINDOWS\system32\DRIVERS\hpn.sys
20:00:11.0000 0x0dfc hpn - ok
20:00:11.0078 0x0dfc [ 863CC3A82C63C9F60ACF2E85D5310620, 51CBC73D696BB87FBF3F4CD31ADE38DF9B8476DFAC38356A5C0ABD8CA63A5494 ] HPZid412 C:\WINDOWS\system32\DRIVERS\HPZid412.sys
20:00:11.0125 0x0dfc HPZid412 - ok
20:00:11.0203 0x0dfc [ 08CB72E95DD75B61F2966B311D0E4366, 3C4CBCA84B67DBFD00C3A2470EE0CBE1F66AF549E9579B016C659BEE40219D24 ] HPZipr12 C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
20:00:11.0234 0x0dfc HPZipr12 - ok
20:00:11.0296 0x0dfc [ CA990306ED4EF732AF9695BFF24FC96F, 083532116547447D4A82CA02181AB4099944082405036EE38D7A3FB09CFDDC95 ] HPZius12 C:\WINDOWS\system32\DRIVERS\HPZius12.sys
20:00:11.0328 0x0dfc HPZius12 - ok
20:00:11.0515 0x0dfc [ F80A415EF82CD06FFAF0D971528EAD38, 524D9E9201572929522F6805011783711B7C0F76308B924C89CF75F4B7A1FDF3 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
20:00:12.0156 0x0dfc HTTP - ok
20:00:12.0328 0x0dfc [ 9E4ADB854CEBCFB81A4B36718FEECD16, 677AB64460775686F8366D6BF35D420A2486C3F07338A00A7C2788A5142B9F08 ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
20:00:12.0343 0x0dfc HTTPFilter - ok
20:00:12.0546 0x0dfc [ 9368670BD426EBEA5E8B18A62416EC28, 0ED865F8FB79F0B6309521925280E8640DB5CA6F75377434830536899734B6EE ] i2omgmt C:\WINDOWS\system32\drivers\i2omgmt.sys
20:00:12.0812 0x0dfc i2omgmt - ok
20:00:12.0828 0x0dfc [ F10863BF1CCC290BABD1A09188AE49E0, BC038EAE6C8A76D56A5AD27035DC0369D6E766711E9FAA7467144370851F1615 ] i2omp C:\WINDOWS\system32\DRIVERS\i2omp.sys
20:00:12.0875 0x0dfc i2omp - ok
20:00:12.0906 0x0dfc [ E283B97CFBEB86C1D86BAED5F7846A92, 7664F791D08C80DF1E52B34BE69F073AA645610C4BD975F498254807602374AB ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
20:00:13.0281 0x0dfc i8042prt - ok
20:00:13.0750 0x0dfc [ 5A8E05F1D5C36ABD58CFFA111EB325EA, F881543B911C94BA6E0E4FF754286F18DBB30DAEEA13982A7D5179E51AC2C30F ] ialm C:\WINDOWS\system32\DRIVERS\ialmnt5.sys
20:00:14.0437 0x0dfc ialm - ok
20:00:14.0609 0x0dfc [ C01AC32DC5C03076CFB852CB5DA5229C, A4D7749220B5BC965D96A267F1E02FE8284A230BA249109207BD4B9EA8DFAC96 ] idsvc c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
20:00:18.0859 0x0dfc idsvc - ok
20:00:18.0953 0x0dfc [ 083A052659F5310DD8B6A6CB05EDCF8E, 48D39B03FFB6FAA1529B774443BA12618AE3982D9F65A7B9D18F2269F78B31F4 ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
20:00:21.0093 0x0dfc Imapi - ok
20:00:23.0218 0x0dfc [ D4B413AA210C21E46AEDD2BA5B68D38E, 2309622867AA8FC832A729FA78F48742D4BD6CA0DAFBFB9DDB0772D671E1ED75 ] ImapiService C:\WINDOWS\system32\imapi.exe
20:00:23.0250 0x0dfc ImapiService - ok
20:00:23.0296 0x0dfc [ 4A40E045FAEE58631FD8D91AFC620719, 7A2FD81BD483821B3DA01B1CD7215423EDD719CBE3862C0342FF7D21A17AF437 ] ini910u C:\WINDOWS\system32\DRIVERS\ini910u.sys
20:00:24.0796 0x0dfc ini910u - ok
20:00:24.0921 0x0dfc [ 69C4E3C9E67A1F103B94E14FDD5F3213, 894ABDDBF95E3FFE59A4621AF94AFA7E6F6D780420845078622C76624C0326D2 ] IntelIde C:\WINDOWS\system32\DRIVERS\intelide.sys
20:00:25.0656 0x0dfc IntelIde - ok
20:00:25.0734 0x0dfc [ 4C7D2750158ED6E7AD642D97BFFAE351, C05E4799752F090DCB632F07F62ADE38D31534621064D269AD535CA0BDFED448 ] intelppm C:\WINDOWS\system32\DRIVERS\intelppm.sys
20:00:25.0953 0x0dfc intelppm - ok
20:00:26.0000 0x0dfc [ 3BB22519A194418D5FEC05D800A19AD0, F6662F440950596DC1382DD1DB5D7891CCEA30A6062BEA942C18445B5F0D8B16 ] Ip6Fw C:\WINDOWS\system32\drivers\ip6fw.sys
20:00:27.0703 0x0dfc Ip6Fw - ok
20:00:27.0765 0x0dfc [ 731F22BA402EE4B62748ADAF6363C182, 5C3BEBD008A5BE4DC2F92076FF41A10DDC01E10EC7E6552213CFA11970811848 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
20:00:27.0812 0x0dfc IpFilterDriver - ok
20:00:27.0859 0x0dfc [ B87AB476DCF76E72010632B5550955F5, E6E74D3A86A7917A8BAED44F8E97CCD2EB171E4E4B27E9907F60D1523FAF319A ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
20:00:27.0890 0x0dfc IpInIp - ok
20:00:27.0968 0x0dfc [ CC748EA12C6EFFDE940EE98098BF96BB, AF523E21C25D9A1715EFEA573E4F52AF5D4FC9F28A2D613F5DB629C186C439E0 ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
20:00:28.0218 0x0dfc IpNat - ok
20:00:28.0265 0x0dfc [ 9843F75E31FB74C5FE757D28150C2B9F, 7307DAF99AA5D9C39AC7D708313B0E8A71196D6F11C1A29F184A358FF1115F18 ] Iprip C:\WINDOWS\System32\iprip.dll
20:00:28.0468 0x0dfc Iprip - ok
20:00:28.0593 0x0dfc [ 23C74D75E36E7158768DD63D92789A91, 394D296F38E7D8EFD91A6EEC301D9CE6AF910E35EB9819F1A9E3363863AEDFDC ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
20:00:29.0171 0x0dfc IPSec - ok
20:00:29.0281 0x0dfc [ C93C9FF7B04D772627A3646D89F7BF89, 805FA48E7A46D4F10240BF880A2468F53DEA36E83004399228AB70DB7D20544A ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
20:00:29.0625 0x0dfc IRENUM - ok
20:00:29.0703 0x0dfc [ 6DFB88F64135C525433E87648BDA30DE, 8233EEFBEF36AAA152F2C55D23D7118F0DE40C9C22EB5D9793405A4770889540 ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
20:00:30.0234 0x0dfc isapnp - ok
20:00:30.0687 0x0dfc [ A5937B2A94424CF1B13A4AD503AF6B2E, E96CE4E526E053FB410987BD444627BC7B26FCE48DC0A61916ADD0A69EFA6941 ] JavaQuickStarterService C:\Programme\Java\jre7\bin\jqs.exe
20:00:32.0109 0x0dfc JavaQuickStarterService - ok
20:00:32.0140 0x0dfc [ 1704D8C4C8807B889E43C649B478A452, E854C90CD301F42BE2520CEDAD35E49DF2D43606CF4EEED861B74882118D04D1 ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
20:00:32.0203 0x0dfc Kbdclass - ok
20:00:32.0218 0x0dfc [ B6D6C117D771C98130497265F26D1882, E79CC4EA5C088F988BA61F80764F9CAD9B78BC56A7E17DD54622C75483BC5DF4 ] kbdhid C:\WINDOWS\system32\DRIVERS\kbdhid.sys
20:00:32.0250 0x0dfc kbdhid - ok
20:00:32.0343 0x0dfc [ 692BCF44383D056AED41B045A323D378, 1A99DEE83FFAF64E73067FC049C0A4CE07D94E4AE31EFA17B38CEFA9E41D67DC ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
20:00:32.0625 0x0dfc kmixer - ok
20:00:32.0687 0x0dfc [ B467646C54CC746128904E1654C750C1, 3BD71BE3663EA23463D236D8A2A2E42DFA10C502BDB4B6E131FAF0FBA748219E ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
20:00:33.0796 0x0dfc KSecDD - ok
20:00:33.0828 0x0dfc [ 2BBDCB79900990F0716DFCB714E72DE7, 6283789201164A9254632D9A3C8A54FE697717D5F8D5A37804D924DC2B70C8E3 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
20:00:34.0234 0x0dfc lanmanserver - ok
20:00:34.0296 0x0dfc [ 1869B14B06B44B44AF70548E1EA3303F, 4D63B4DAF580C86F86837C7D1753E2105B4C52E26D4CA0CAAFE83755EFF7AFBE ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
20:00:34.0406 0x0dfc lanmanworkstation - ok
20:00:34.0421 0x0dfc Lavasoft Kernexplorer - ok
20:00:34.0453 0x0dfc Lbd - ok
20:00:34.0484 0x0dfc lbrtfdc - ok
20:00:34.0546 0x0dfc [ 636714B7D43C8D0C80449123FD266920, F06F6C7DC49B26EFCAC3570C67BA9BD934F62C6F382DA4DD2AB302C7B970F414 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
20:00:34.0921 0x0dfc LmHosts - ok
20:00:35.0015 0x0dfc [ 7A1A532F14FDE28489DC349C6E404A67, 2BD9F0C54C7107B4D1957F5DB788265CD87602320CF48453B4A2D6F249EEE392 ] LPDSVC C:\WINDOWS\system32\tcpsvcs.exe
20:00:35.0187 0x0dfc LPDSVC - ok
20:00:36.0343 0x0dfc [ 034606B82FA5BD3E73AB427B6D55F915, F24AA57D46F3AD5FBBE29CE9E2D8798FA1FC98A9004E10EEED3D651F52A6143B ] McComponentHostService C:\Programme\McAfee Security Scan\3.0.285\McCHSvc.exe
20:00:36.0593 0x0dfc McComponentHostService - ok
20:00:36.0828 0x0dfc [ 11F714F85530A2BD134074DC30E99FCA, BDB5FD3B2DF4ADD19B31965B3E789768B59E872B3EA85912B1FFB32B2AF9D5D8 ] MDM C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7Debug\mdm.exe
20:00:38.0250 0x0dfc MDM - ok
20:00:38.0265 0x0dfc MEMSWEEP2 - ok
20:00:38.0359 0x0dfc [ B7550A7107281D170CE85524B1488C98, A3854B16A65436BEF6BEDE918B43B3BE8F00D303660DB5831DD376271DC43239 ] Messenger C:\WINDOWS\System32\msgsvc.dll
20:00:38.0468 0x0dfc Messenger - ok
20:00:38.0546 0x0dfc [ A7DA20AB18A1BDAE28B0F349E57DA0D1, C668F419579ADDF37558241982B0334A93644E9C05919967C494FE9853E62D5B ] mf C:\WINDOWS\system32\DRIVERS\mf.sys
20:00:38.0593 0x0dfc mf - ok
20:00:38.0703 0x0dfc [ 5E5024D9E2351DB2563B30912B4C4146, 8982A3776BBCC14BC9A7AEB843838D780E20EF454B0A10C29405270835D36D9E ] MIINPazX C:\PROGRA~1\GEMEIN~1\MARMIK~1\MInfraIS\MIINPazX.SYS
20:00:38.0843 0x0dfc MIINPazX - ok
20:00:38.0875 0x0dfc [ 4AE068242760A1FB6E1A44BF4E16AFA6, 1FB771162B96AAF787AC24867B818DF8511F0780BB094FA9A38C11D8DBFE68BC ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
20:00:39.0078 0x0dfc mnmdd - ok
20:00:39.0234 0x0dfc [ C2F1D365FD96791B037EE504868065D3, 87BD87E08FD00D115524B049F1A3A719AB86557D68968E7090CD0F271F985CAF ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
20:00:39.0640 0x0dfc mnmsrvc - ok
20:00:40.0203 0x0dfc [ 6FB74EBD4EC57A6F1781DE3852CC3362, 0454509D9A31E0202C08AE17294E2682F227D177A3C73B303E4C8332757AFCA1 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
20:00:40.0890 0x0dfc Modem - ok
20:00:40.0937 0x0dfc [ 1992E0D143B09653AB0F9C5E04B0FD65, 1431EC53A65F561C235A08F926C5348A6B21B06A08C075DE8172A88EE0AA634E ] MODEMCSA C:\WINDOWS\system32\drivers\MODEMCSA.sys
20:00:41.0218 0x0dfc MODEMCSA - ok
20:00:41.0281 0x0dfc [ B24CE8005DEAB254C0251E15CB71D802, 6804A8ABDAD5EC846E7F8077D1EE9BA45D6226ACFF42C70BE3DE7C8980EF9EC4 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
20:00:41.0484 0x0dfc Mouclass - ok
20:00:41.0609 0x0dfc [ 66A6F73C74E1791464160A7065CE711A, 3C570FA1E8EF976B83759220FE95BAC9D7D48D607F91B113EDE4790D34ACBD46 ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys
20:00:42.0218 0x0dfc mouhid - ok
20:00:42.0265 0x0dfc [ A80B9A0BAD1B73637DBCBBA7DF72D3FD, 2A5E15ED2C24C6C65EF2F7E1FD93374774076C9D8D451E4422561F4D269C012F ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
20:00:42.0687 0x0dfc MountMgr - ok
20:00:42.0750 0x0dfc [ 3F4BB95E5A44F3BE34824E8E7CAF0737, 9A4F9E63AA55B779AF3563C66C8E40D9C42FF3BB5F533F70905ADC7A44EA7DAD ] mraid35x C:\WINDOWS\system32\DRIVERS\mraid35x.sys
20:00:43.0500 0x0dfc mraid35x - ok
20:00:43.0593 0x0dfc [ 11D42BB6206F33FBB3BA0288D3EF81BD, 76ABCFB62C5AC549F58C231F72A99882CDEB74928104B77FE52554765C2B1A22 ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
20:00:43.0750 0x0dfc MRxDAV - ok
20:00:44.0265 0x0dfc [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0, DB9B186F7076D7B94F45041AF7B77C1AD2CAB504D683B459C6CB1C22840ED170 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
20:00:44.0515 0x0dfc MRxSmb - ok
20:00:44.0593 0x0dfc [ 35A031AF38C55F92D28AA03EE9F12CC9, 97245D204C886EE8DCCC2DEAC80A0E358A7E0C1982F77389DA50DCF091FC9DDC ] MSDTC C:\WINDOWS\system32\msdtc.exe
20:00:45.0031 0x0dfc MSDTC - ok
20:00:45.0093 0x0dfc [ C941EA2454BA8350021D774DAF0F1027, C940E978C7B66A713A0FDAB54B5F995DF59D089AFCD96221DD3222948CD49BBD ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
20:00:45.0640 0x0dfc Msfs - ok
20:00:45.0671 0x0dfc MSIServer - ok
20:00:45.0718 0x0dfc [ D1575E71568F4D9E14CA56B7B0453BF1, 4ABE0E24786C0D39FA2B885447E56204CA6942FB175E534DCE675D7BCF0B176A ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
20:00:46.0140 0x0dfc MSKSSRV - ok
20:00:46.0531 0x0dfc [ 325BB26842FC7CCC1FCCE2C457317F3E, C07BE560513B1FB91D756494F0BA4AEEB2E1998DE0E1C21EE83DB1183B0CEE91 ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
20:00:46.0625 0x0dfc MSPCLOCK - ok
20:00:46.0671 0x0dfc [ BAD59648BA099DA4A17680B39730CB3D, 9AD4C7C94C186C8815D0BC75DCAFB962158DA6935A244BA243EDDDEB33F9816C ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
20:00:46.0718 0x0dfc MSPQM - ok
20:00:46.0781 0x0dfc [ AF5F4F3F14A8EA2C26DE30F7A1E17136, AC93A1E4ABB0D038B772E429015567E44CC2EDB66C54DBE23A5F98176FAC1520 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
20:00:46.0796 0x0dfc mssmbios - ok
20:00:48.0156 0x0dfc [ F90756C7215D9E55143DF43A6D9307F4, DA1DB093D0A31E63E7AA88721996E0AB66CF3DEB599BA215108816960D8D1911 ] MSSQL$MICROSOFTSMLBIZ C:\Programme\Microsoft SQL Server\MSSQL$MICROSOFTSMLBIZ\Binn\sqlservr.exe
20:00:49.0578 0x0dfc MSSQL$MICROSOFTSMLBIZ - ok
20:00:49.0812 0x0dfc [ 1D1B22613EAB9287AF902398867BC93C, FB30F12C30822E271FA854FA982F37C5973B295DD8CA4944F147BCB9A49DDF78 ] MSSQLServerADHelper C:\Programme\Microsoft SQL Server\80\Tools\Binn\sqladhlp.exe
20:00:49.0890 0x0dfc MSSQLServerADHelper - ok
20:00:49.0953 0x0dfc MTOnlPktAlyX - ok
20:00:50.0031 0x0dfc [ DE6A75F5C270E756C5508D94B6CF68F5, FCC972DDC36C2C44D836913F10004C2C33B11C54DEFFF0C63E0FDF901D2F9261 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
20:00:50.0078 0x0dfc Mup - ok
20:00:50.0171 0x0dfc [ 5B50F1B2A2ED47D560577B221DA734DB, C16A554B6E1A7F5F98C94DFA88163E0F7426506BF2F51FD351B1A05FC0DB3BC5 ] NABTSFEC C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
20:00:50.0218 0x0dfc NABTSFEC - ok
20:00:50.0375 0x0dfc [ 46BB15AE2AC7D025D6D2567B876817BD, 102A101B96D1078C98FA0F871C801A9A8538E20E5686AB0C7680B2F6C92B3165 ] napagent C:\WINDOWS\System32\qagentrt.dll
20:00:50.0734 0x0dfc napagent - ok
20:00:50.0796 0x0dfc [ 1DF7F42665C94B825322FAE71721130D, FE0DCB728471465B39A42A7511F4133021FBA5DF88F88BCB5FE2FF34CFD713F9 ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
20:00:50.0812 0x0dfc NDIS - ok
20:00:50.0875 0x0dfc [ 7FF1F1FD8609C149AA432F95A8163D97, 18CD1FF5AC1EF8A38D1EC53014F2BADD28D9CDF4ECE2EBC2313D08903776F323 ] NdisIP C:\WINDOWS\system32\DRIVERS\NdisIP.sys
20:00:50.0890 0x0dfc NdisIP - ok
20:00:50.0937 0x0dfc [ 0109C4F3850DFBAB279542515386AE22, 4F6DB1E499AC853FD36FD603FBB6D3AC9BDCEB298C7FE1FB59A9236CB46729B2 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
20:00:50.0953 0x0dfc NdisTapi - ok
20:00:51.0000 0x0dfc [ F927A4434C5028758A842943EF1A3849, B1AA3AF150C05307461774925901789456B0CCCD03A5E71ADA4AB58455962BEE ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
20:00:51.0046 0x0dfc Ndisuio - ok
20:00:51.0093 0x0dfc [ EDC1531A49C80614B2CFDA43CA8659AB, 494042F790F33721328B4451E79842E21919681CC421A4F9633EC4D383E06097 ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
20:00:51.0187 0x0dfc NdisWan - ok
20:00:51.0250 0x0dfc [ 9282BD12DFB069D3889EB3FCC1000A9B, 09A46F1712BD9165068D8E153585FE3E6E5CBF4F1DDEC142115555D3A91AEC09 ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
20:00:52.0234 0x0dfc NDProxy - ok
20:00:52.0281 0x0dfc [ 5D81CF9A2F1A3A756B66CF684911CDF0, 7989C36607CAEA17AFA2C1C9904145CA0714A54B9F712D9D4C1AB140D0B2CC0C ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
20:00:52.0453 0x0dfc NetBIOS - ok
20:00:52.0546 0x0dfc [ 74B2B2F5BEA5E9A3DC021D685551BD3D, 7932B71F98B4122BE88F576BF6D745A757AE378A48924B7F4358837B75640A82 ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
20:00:52.0593 0x0dfc NetBT - ok
20:00:52.0656 0x0dfc [ 8ACE4251BFFD09CE75679FE940E996CC, 81969521B5EAEA09ECA63058BE9697BB69AF2596339CA9DF0CFEDC031DCFDC7E ] NetDDE C:\WINDOWS\system32\netdde.exe
20:00:52.0718 0x0dfc NetDDE - ok
20:00:52.0750 0x0dfc [ 8ACE4251BFFD09CE75679FE940E996CC, 81969521B5EAEA09ECA63058BE9697BB69AF2596339CA9DF0CFEDC031DCFDC7E ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
20:00:52.0750 0x0dfc NetDDEdsdm - ok
20:00:52.0812 0x0dfc [ AFB8261B56CBA0D86AEB6DF682AF9785, 104D96F1F19DD4CE492064ACC9634406A019EAE20B42D03198E400E661897127 ] Netlogon C:\WINDOWS\system32\lsass.exe
20:00:52.0812 0x0dfc Netlogon - ok
20:00:52.0906 0x0dfc [ E6D88F1F6745BF00B57E7855A2AB696C, 12A5EDD853600FF5EBF91E127077745AE1E61E66DBC1D4D4306570F171AF4A39 ] Netman C:\WINDOWS\System32\netman.dll
20:00:52.0921 0x0dfc Netman - ok
20:00:53.0031 0x0dfc [ 9DA26B773BD04B867A8E9F427CD048FC, A8D8D92720EA31685864B834FC67CD6225D0B65DF40DCDD6A80E6D0DF677C855 ] NetSvc C:\Programme\Intel\PROSetWired\NCS\Sync\NetSvc.exe
20:00:53.0093 0x0dfc NetSvc - ok
20:00:53.0156 0x0dfc [ D34612C5D02D026535B3095D620626AE, 1BBCCCBF49EB8807240A77DCB43C25C21682073CC5356594E2C4F53EF36BF657 ] NetTcpPortSharing c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
20:00:53.0203 0x0dfc NetTcpPortSharing - ok
20:00:53.0312 0x0dfc [ F1B67B6B0751AE0E6E964B02821206A3, 3D5A7593ABDEE2047C5738671C85DC8B95A4ECF58D5D7B04EEE13A689839A540 ] Nla C:\WINDOWS\System32\mswsock.dll
20:00:53.0312 0x0dfc Nla - ok
20:00:53.0375 0x0dfc [ 1E421A6BCF2203CC61B821ADA9DE878B, C658F1D5DCE7525CF929C65C46AB2881C99D89BF8F0F61C1D440C9D9BFB2F89F ] nm C:\WINDOWS\system32\DRIVERS\NMnt.sys
20:00:53.0562 0x0dfc nm - ok
20:00:53.0593 0x0dfc [ 3182D64AE053D6FB034F44B6DEF8034A, 4ADFC76965BA2A5F488E71789A4E4EA702A74AF42725F72130D1CA919406CF19 ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
20:00:53.0718 0x0dfc Npfs - ok
20:00:54.0015 0x0dfc [ 78A08DD6A8D65E697C18E1DB01C5CDCA, E0E6F3ED05068E32F1D5C2D2B38CDEF4536B8656DB6756C66CF6B40B60C8F3DA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
20:00:54.0546 0x0dfc Ntfs - ok
20:00:54.0593 0x0dfc [ AFB8261B56CBA0D86AEB6DF682AF9785, 104D96F1F19DD4CE492064ACC9634406A019EAE20B42D03198E400E661897127 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
20:00:54.0609 0x0dfc NtLmSsp - ok
20:00:54.0781 0x0dfc [ 56AF4064996FA5BAC9C449B1514B4770, 154602EFEC22728503D4ABA025DF711B0F2CFC983F5E3BF25F2A4BCD1AE250EC ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
20:00:54.0890 0x0dfc NtmsSvc - ok
20:00:54.0953 0x0dfc [ 73C1E1F395918BC2C6DD67AF7591A3AD, B21133A75253EC15E2DFF66D3B480AB1A7E1A2360476C810E7AA55D0F0EB08D4 ] Null C:\WINDOWS\system32\drivers\Null.sys
20:00:54.0984 0x0dfc Null - ok
20:00:55.0515 0x0dfc [ 2B298519EDBFCF451D43E0F1E8F1006D, 67F3F2001F4C8DABD253D60AB3222793635532DC51AD977954286F8A246F5592 ] nv C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
20:00:56.0234 0x0dfc nv - ok
20:00:56.0375 0x0dfc [ C34A6A72DEC2C317D67355DC18F87090, CFB91AAFDA022A79A7C9CF0088394B937E9C739A8F1F4F2700691FB383781CA7 ] NWCWorkstation C:\WINDOWS\System32\nwwks.dll
20:00:56.0390 0x0dfc NWCWorkstation - ok
20:00:56.0437 0x0dfc [ B305F3FAD35083837EF46A0BBCE2FC57, 9D0E0E666D652D0FC9EAB97280A5D67AAF61D6B21929DF7CF8ED72A367720464 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
20:00:56.0453 0x0dfc NwlnkFlt - ok
20:00:56.0531 0x0dfc [ C99B3415198D1AAB7227F2C88FD664B9, DD8DA4B5E804F134AB9233859544C025062902DFC3E8FB8A09A67337A4E73F55 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
20:00:56.0562 0x0dfc NwlnkFwd - ok
20:00:56.0625 0x0dfc [ 8B8B1BE2DBA4025DA6786C645F77F123, E47D5EED2F3AF85E2332C325DA80AEF2C4EC989E38A175194EBBFA967BA8BF81 ] NwlnkIpx C:\WINDOWS\system32\DRIVERS\nwlnkipx.sys
20:00:56.0687 0x0dfc NwlnkIpx - ok
20:00:56.0734 0x0dfc [ 56D34A67C05E94E16377C60609741FF8, ABE48D3E7D38DB20E9D4884FC6FE42FAE0C5FAFD3AC86F1E585A4BB17C6F09C5 ] NwlnkNb C:\WINDOWS\system32\DRIVERS\nwlnknb.sys
20:00:56.0750 0x0dfc NwlnkNb - ok
20:00:56.0812 0x0dfc [ C0BB7D1615E1ACBDC99757F6CEAF8CF0, 899905C0EB182ABCDAE0D0D749C0BC39CD231B9FAEE733D5DFDAE86EB8BC755B ] NwlnkSpx C:\WINDOWS\system32\DRIVERS\nwlnkspx.sys
20:00:56.0843 0x0dfc NwlnkSpx - ok
20:00:56.0890 0x0dfc [ 36B9B950E3D2E100970A48D8BAD86740, B0F320E68974925E1BB199B9F59A191FA1EBA2D2F164F182FE7820A83220687C ] NWRDR C:\WINDOWS\system32\DRIVERS\nwrdr.sys
20:00:57.0609 0x0dfc NWRDR - ok
20:00:57.0765 0x0dfc [ 7A56CF3E3F12E8AF599963B16F50FB6A, 882C82BAE96D263138D4C0D6C425458B770B7B9C8E9C1D28AC918BF6BE94A5C2 ] ose C:\Programme\Gemeinsame Dateien\Microsoft Shared\Source Engine\OSE.EXE
20:00:57.0796 0x0dfc ose - ok
20:00:57.0921 0x0dfc [ 9BAD7EDCFEE78FF3B3D852E881633C6A, 40684FBE69919997D2BE18C8489D91BE6786AA90B401387BA6E97D1651CBB2ED ] p2pgasvc C:\WINDOWS\system32\p2pgasvc.dll
20:00:57.0984 0x0dfc p2pgasvc - ok
20:00:58.0062 0x0dfc [ 02EBBECE9FB4A4811AD3C4BB55CCED0C, 99D42706BAFE3512CA0DD9BE1E33824674E1ADFD93BF1B459943760BBB8A4297 ] p2pimsvc C:\WINDOWS\system32\p2psvc.dll
20:00:58.0375 0x0dfc p2pimsvc - ok
20:00:58.0453 0x0dfc [ 02EBBECE9FB4A4811AD3C4BB55CCED0C, 99D42706BAFE3512CA0DD9BE1E33824674E1ADFD93BF1B459943760BBB8A4297 ] p2psvc C:\WINDOWS\system32\p2psvc.dll
20:00:58.0468 0x0dfc p2psvc - ok
20:00:58.0562 0x0dfc [ 95BD9287B49B01A3CF2488AF8A1AC312, 903130FD0433551E58D0BCAB9D7132A75E928B805DADBF6817CE8C64EC1A3A46 ] PAC7311 C:\WINDOWS\system32\DRIVERS\PA707UCM.SYS
20:00:58.0609 0x0dfc PAC7311 - ok
20:00:58.0656 0x0dfc [ F84785660305B9B903FB3BCA8BA29837, BDBDE61076800415D98759077E9E039C80B55DBE68E31F8BF44A909C6C3D3276 ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
20:00:58.0671 0x0dfc Parport - ok
20:00:58.0734 0x0dfc [ BEB3BA25197665D82EC7065B724171C6, 7E71C13BA30CD95CEE8A9CC85E6F48A01F30EDEAADEE69D80AE828BF97E5A5CA ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
20:00:58.0734 0x0dfc PartMgr - ok
20:00:58.0796 0x0dfc [ C2BF987829099A3EAA2CA6A0A90ECB4F, 1DF21EA8E43875CFEECD869407429F82FB449707CFB845718499468E699BAAAA ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
20:00:58.0796 0x0dfc ParVdm - ok
20:00:58.0843 0x0dfc [ 387E8DEDC343AA2D1EFBC30580273ACD, 5F3E642BDB759777E570ED5B22AC7E93CDCD362708F281657AD7BAB44EDEC802 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
20:00:58.0890 0x0dfc PCI - ok
20:00:58.0906 0x0dfc PCIDump - ok
20:00:58.0953 0x0dfc [ 59BA86D9A61CBCF4DF8E598C331F5B82, 822D11C5CE77BFD7B2F25350CCBF92B0B9388EEA6D86ED220B768C720976D839 ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
20:00:58.0968 0x0dfc PCIIde - ok
20:00:59.0000 0x0dfc [ A2A966B77D61847D61A3051DF87C8C97, 6CED7CA26DC62B0AAFC83A2E07336DAD25954491201BB8E06103971F3F0B8B51 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
20:00:59.0031 0x0dfc Pcmcia - ok
20:00:59.0046 0x0dfc PDCOMP - ok
20:00:59.0078 0x0dfc PDFRAME - ok
20:00:59.0109 0x0dfc PDRELI - ok
20:00:59.0125 0x0dfc PDRFRAME - ok
20:00:59.0171 0x0dfc [ 6C14B9C19BA84F73D3A86DBA11133101, 2CFB7E027E43C1B3890985DFD7987B23E4E3CC003E3FD2583E4A8AC1F8A13B26 ] perc2 C:\WINDOWS\system32\DRIVERS\perc2.sys
20:00:59.0187 0x0dfc perc2 - ok
20:00:59.0218 0x0dfc [ F50F7C27F131AFE7BEBA13E14A3B9416, C0498EA65B908C07A734324ED70DB27F434FAAA815DD02F1BC429A3AB6C663D5 ] perc2hib C:\WINDOWS\system32\DRIVERS\perc2hib.sys
20:00:59.0234 0x0dfc perc2hib - ok
20:00:59.0312 0x0dfc [ A3EDBE9053889FB24AB22492472B39DC, 6F2ED6E04BDE2FCA2A8BF9BD2D1D6923DE6EAECB46F582B6C0BD1CF364D65C9E ] PlugPlay C:\WINDOWS\system32\services.exe
20:00:59.0312 0x0dfc PlugPlay - ok
20:00:59.0375 0x0dfc [ FB03F341FF5380394BF2EE52F1979925, 50795312FB3C90FFE3BF6F6C3FCDC489A3C8DA9801F13689C8A7B78C56D571A2 ] Pml Driver HPZ12 C:\WINDOWS\system32\HPZipm12.exe
20:00:59.0421 0x0dfc Pml Driver HPZ12 - ok
20:00:59.0468 0x0dfc [ 02EBBECE9FB4A4811AD3C4BB55CCED0C, 99D42706BAFE3512CA0DD9BE1E33824674E1ADFD93BF1B459943760BBB8A4297 ] PNRPSvc C:\WINDOWS\system32\p2psvc.dll
20:00:59.0484 0x0dfc PNRPSvc - ok
20:00:59.0531 0x0dfc [ AFB8261B56CBA0D86AEB6DF682AF9785, 104D96F1F19DD4CE492064ACC9634406A019EAE20B42D03198E400E661897127 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
20:00:59.0531 0x0dfc PolicyAgent - ok
20:00:59.0609 0x0dfc [ EFEEC01B1D3CF84F16DDD24D9D9D8F99, C5F0C8C66A3AF7E7BB04CEDE4AC5306F8387AB384A2107DC5BE413AAE968EFF1 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
20:00:59.0656 0x0dfc PptpMiniport - ok
20:00:59.0671 0x0dfc [ AFB8261B56CBA0D86AEB6DF682AF9785, 104D96F1F19DD4CE492064ACC9634406A019EAE20B42D03198E400E661897127 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
20:00:59.0671 0x0dfc ProtectedStorage - ok
20:00:59.0734 0x0dfc [ 09298EC810B07E5D582CB3A3F9255424, 35473A1BE25AC289474090EB0806AC6B3035DC33D1F3DF97A14BF1E361AC6AC3 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
20:00:59.0828 0x0dfc PSched - ok
20:00:59.0875 0x0dfc [ 80D317BD1C3DBC5D4FE7B1678C60CADD, DA76804B55D0CAB3DDD01EFC06673764AE4860693375C658B6063FB14AF7F12C ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
20:00:59.0875 0x0dfc Ptilink - ok
20:00:59.0921 0x0dfc [ 153D02480A0A2F45785522E814C634B6, 02B7590F2F4A8FA0B031CDA7A28BD55E7C04A080C1EA810BF3AC3212A62153A6 ] PxHelp20 C:\WINDOWS\system32\Drivers\PxHelp20.sys
20:00:59.0953 0x0dfc PxHelp20 - ok
20:00:59.0984 0x0dfc [ 0A63FB54039EB5662433CABA3B26DBA7, A1FB923EB2D08D89D24E8AD7042BBED7CB1DBDA9A5B77BDD188E9913BADAB0EF ] ql1080 C:\WINDOWS\system32\DRIVERS\ql1080.sys
20:01:00.0046 0x0dfc ql1080 - ok
20:01:00.0109 0x0dfc [ 6503449E1D43A0FF0201AD5CB1B8C706, F1EFC2DE5998615CB182D7984366631FE956AE1ECA9AC777F26FCA2E6F2E05A6 ] Ql10wnt C:\WINDOWS\system32\DRIVERS\ql10wnt.sys
20:01:00.0171 0x0dfc Ql10wnt - ok
20:01:00.0218 0x0dfc [ 156ED0EF20C15114CA097A34A30D8A01, 7490B90D4C88B7A9BADB9473D4033535F054C797ABF6D542CB859DA5C9B2586A ] ql12160 C:\WINDOWS\system32\DRIVERS\ql12160.sys
20:01:00.0234 0x0dfc ql12160 - ok
20:01:00.0281 0x0dfc [ 70F016BEBDE6D29E864C1230A07CC5E6, 895BC2C888F6566086FC1399F499A401D447E57333BC9F9C6DBAFE0F117603D6 ] ql1240 C:\WINDOWS\system32\DRIVERS\ql1240.sys
20:01:00.0296 0x0dfc ql1240 - ok
20:01:00.0328 0x0dfc [ 907F0AEEA6BC451011611E732BD31FCF, F9E7023BD1042963110D0A613054D094437868B20779F23C316A38E4781A6152 ] ql1280 C:\WINDOWS\system32\DRIVERS\ql1280.sys
20:01:00.0390 0x0dfc ql1280 - ok
20:01:00.0421 0x0dfc [ FE0D99D6F31E4FAD8159F690D68DED9C, 998685622ABE631984B7E4DBF91AB3594B1F574378D75EB9F6265F4650470692 ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
20:01:00.0421 0x0dfc RasAcd - ok
20:01:00.0531 0x0dfc [ F5BA6CACCDB66C8F048E867563203246, AFEAD8FC02313F7EBC8F9F39E7ED2868852B480BE3902FA7BD0AFD81492AB243 ] RasAuto C:\WINDOWS\System32\rasauto.dll
20:01:00.0562 0x0dfc RasAuto - ok
20:01:00.0593 0x0dfc [ 11B4A627BC9614B885C4969BFA5FF8A6, EAE0A412A2B0F68919C32A96B3A08CC1A06585E4998819F5C9051745F63FF5AD ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
20:01:00.0718 0x0dfc Rasl2tp - ok
20:01:00.0781 0x0dfc [ F9A7B66EA345726EDB5862A46B1ECCD5, 5D35429D394D36A1692A7E219BA1A85CD8096FEAE0F90BFE036A63118FEDBF57 ] RasMan C:\WINDOWS\System32\rasmans.dll
20:01:00.0812 0x0dfc RasMan - ok
20:01:00.0843 0x0dfc [ 5BC962F2654137C9909C3D4603587DEE, A5CE5653D0105240F5E86CFAAB89E7917D42D939E2F27A5A7D6979289CA651B8 ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
20:01:00.0859 0x0dfc RasPppoe - ok
20:01:00.0890 0x0dfc [ FDBB1D60066FCFBB7452FD8F9829B242, 10A2DACF944BD000032EBA8C095CB3D879CC55B28C377ADF6E52E508E47444DB ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
20:01:00.0906 0x0dfc Raspti - ok
20:01:00.0937 0x0dfc [ 7AD224AD1A1437FE28D89CF22B17780A, 6645235CA27D671954E3557FA37082881C3D7D47492C71264CD8CB8D108EC801 ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
20:01:01.0218 0x0dfc Rdbss - ok
20:01:01.0265 0x0dfc [ 4912D5B403614CE99C28420F75353332, 975341ECD660209987B5E5171B8315E032439E408CBE8A5986E67AF767F373BB ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
20:01:01.0312 0x0dfc RDPCDD - ok
20:01:01.0375 0x0dfc [ 15CABD0F7C00C47C70124907916AF3F1, 66B5C978B7FB6359AD8BAC9F568FE9D469E358FEAB07B1F129BA9E85F1DF723E ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys
20:01:01.0406 0x0dfc rdpdr - ok
20:01:01.0484 0x0dfc [ 43AF5212BD8FB5BA6EED9754358BD8F7, AF330F61CECA4AFA359CEABC5EB3227E6B56A9A2DCE50701381D665122D7356D ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
20:01:01.0531 0x0dfc RDPWD - ok
20:01:01.0609 0x0dfc [ 263AF18AF0F3DB99F574C95F284CCEC9, 2BFA9952E97EFEB386FC56EC2C125080CD12DAC078DBE43C395CB4D9F22165D3 ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
20:01:01.0656 0x0dfc RDSessMgr - ok
20:01:01.0718 0x0dfc [ ED761D453856F795A7FE056E42C36365, EF026585B33415D8FCE94A9F27D7A4396C7C35C88E06A4CF0FEA702401E8597A ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
20:01:01.0781 0x0dfc redbook - ok
20:01:01.0843 0x0dfc [ 0E97EC96D6942CEEC2D188CC2EB69A01, D4253B4420BEF19451A55AB91E4834482181A31A31134F6E2AFE05C8E20C81A5 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
20:01:01.0875 0x0dfc RemoteAccess - ok
20:01:01.0953 0x0dfc [ E4CD1F3D84E1C2CA0B8CF7501E201593, 649CC0B04F94D407EB6B4C7FDE2C6E4D2B1531307BC67C5775E44D66EF2E4F8A ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
20:01:01.0984 0x0dfc RemoteRegistry - ok
20:01:02.0078 0x0dfc [ D8B0B4ADE32574B2D9C5CC34DC0DBBE7, CDF10D3D8ADA7ADB1CC1567BFA986557C6D69F4099B70FDFABD4C3D09E3CA778 ] ROOTMODEM C:\WINDOWS\system32\Drivers\RootMdm.sys
20:01:02.0078 0x0dfc ROOTMODEM - ok
20:01:02.0140 0x0dfc [ 2A02E21867497DF20B8FC95631395169, D89E2D17ED4E1C727847C0E92D2DF68AEB70BF0B956BD2FE024ED70A961759D2 ] RpcLocator C:\WINDOWS\system32\locator.exe
20:01:02.0250 0x0dfc RpcLocator - ok
20:01:02.0375 0x0dfc [ 3127AFBF2C1ED0AB14A1BBB7AAECB85B, ECFBACE3CBF2384948EA1C445BDA3955EB4F44A9874286E6537C67DC1283E5B0 ] RpcSs C:\WINDOWS\System32\rpcss.dll
20:01:02.0390 0x0dfc RpcSs - ok
20:01:02.0468 0x0dfc [ 4BDD71B4B521521499DFD14735C4F398, 7B1498D3C67E56D05B58B7DA319ECB0117C37963AABB0E59B42831C087469DA1 ] RSVP C:\WINDOWS\system32\rsvp.exe
20:01:02.0562 0x0dfc RSVP - ok
20:01:02.0625 0x0dfc [ D507C1400284176573224903819FFDA3, DD0BDB2AB39A8A0A300B6D60FB6A7F5BA08C4DB8F59E0A784FB763EA8AD72AB2 ] rtl8139 C:\WINDOWS\system32\DRIVERS\RTL8139.SYS
20:01:02.0656 0x0dfc rtl8139 - ok
20:01:02.0734 0x0dfc SageDB 5.0 - ok
20:01:02.0765 0x0dfc [ AFB8261B56CBA0D86AEB6DF682AF9785, 104D96F1F19DD4CE492064ACC9634406A019EAE20B42D03198E400E661897127 ] SamSs C:\WINDOWS\system32\lsass.exe
20:01:02.0765 0x0dfc SamSs - ok
20:01:02.0859 0x0dfc [ 1DCAD90CC9C0DDC7D060FD97854F8518, 09223141827E3CE06ECC5DB0D7647D0E8E74D56D271943263EECB1B889F4F796 ] SBFWIMCL C:\WINDOWS\system32\DRIVERS\sbfwim.sys
20:01:02.0906 0x0dfc SBFWIMCL - ok
20:01:02.0937 0x0dfc [ 1DCAD90CC9C0DDC7D060FD97854F8518, 09223141827E3CE06ECC5DB0D7647D0E8E74D56D271943263EECB1B889F4F796 ] SBFWIMCLMP C:\WINDOWS\system32\DRIVERS\SBFWIM.sys
20:01:02.0937 0x0dfc SBFWIMCLMP - ok
20:01:02.0968 0x0dfc SBRE - ok
20:01:03.0015 0x0dfc [ DCEC079FAD95D36C8DD5CB6D779DFE32, F8546552D939A225853A0CE4913701A93738DF02C999D16E141E9A828814BBC6 ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
20:01:03.0234 0x0dfc SCardSvr - ok
20:01:03.0343 0x0dfc [ A050194A44D7FA8D7186ED2F4E8367AE, BCDF56D5A2F9E202DC67E7FE4BCC617BCC0BDFF2D221A621020068B17B2855BB ] Schedule C:\WINDOWS\system32\schedsvc.dll
20:01:03.0343 0x0dfc Schedule - ok
20:01:03.0453 0x0dfc [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
20:01:03.0453 0x0dfc Secdrv - ok
20:01:03.0515 0x0dfc [ BEE4CFD1D48C23B44CF4B974B0B79B2B, DF3B02D713F8A4602BE75F004074D5DF79AFF2D58FF37110B2A6AC29F680758B ] seclogon C:\WINDOWS\System32\seclogon.dll
20:01:03.0515 0x0dfc seclogon - ok
20:01:03.0578 0x0dfc [ 2AAC9B6ED9EDDFFB721D6452E34D67E3, 95D83F054A6610328D56E56CD948A6618C590231853E56FC20E7557DB61384A4 ] SENS C:\WINDOWS\system32\sens.dll
20:01:03.0578 0x0dfc SENS - ok
20:01:03.0656 0x0dfc [ 0F29512CCD6BEAD730039FB4BD2C85CE, 4F98AE390D1B14A755700DD6CEFB9CF921F0404AF2145D2D7E5F52394F87C6A5 ] serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
20:01:03.0656 0x0dfc serenum - ok
20:01:03.0703 0x0dfc [ CF24EB4F0412C82BCD1F4F35A025E31D, B74CB094126F5C23F601C34D53B2DF5BE3E5918230AC9DCFCFFA8E66B3A0FA25 ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
20:01:03.0765 0x0dfc Serial - ok
20:01:03.0875 0x0dfc [ 8E6B8C671615D126FDC553D1E2DE5562, CEEC0067514555D5CA489F50E3D7562FCA8DB8E952C3C878604C9277FC77959F ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
20:01:03.0921 0x0dfc Sfloppy - ok
20:01:04.0046 0x0dfc [ CAD058D5F8B889A87CA3EB3CF624DCEF, A7CDCF44261D1F4D820927253EA8EBB63714B7BAFF8B08DE073507D9A7EEA5BB ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
20:01:04.0093 0x0dfc SharedAccess - ok
20:01:04.0156 0x0dfc [ 2DB7D303C36DDD055215052F118E8E75, BE6E7BBE12A7A4EDF1F1C2935350603970C7426BBCA7A1A6644BB8999123AF17 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
20:01:04.0171 0x0dfc ShellHWDetection - ok
20:01:04.0187 0x0dfc Simbad - ok
20:01:04.0265 0x0dfc [ 7A1A532F14FDE28489DC349C6E404A67, 2BD9F0C54C7107B4D1957F5DB788265CD87602320CF48453B4A2D6F249EEE392 ] SimpTcp C:\WINDOWS\system32\tcpsvcs.exe
20:01:04.0265 0x0dfc SimpTcp - ok
20:01:04.0328 0x0dfc [ 6B33D0EBD30DB32E27D1D78FE946A754, CDA3D082D370B079C06D943DA124D76BAF0C5DB264FB0C893148EF6322D2FABE ] sisagp C:\WINDOWS\system32\DRIVERS\sisagp.sys
20:01:04.0343 0x0dfc sisagp - ok
20:01:04.0421 0x0dfc [ 866D538EBE33709A5C9F5C62B73B7D14, BC94BEB7C17B4FCAC8B5D0D5006A203BC209E0504EECE149651D8691935696CD ] SLIP C:\WINDOWS\system32\DRIVERS\SLIP.sys
20:01:04.0453 0x0dfc SLIP - ok
20:01:04.0531 0x0dfc [ 9BAE383D3116A545758D45D0B994BA32, FA397F459FA5DE2D3A4DB9E54C0983DEAF7C24B4151CB5092A8FDB06FA073921 ] snapman C:\WINDOWS\system32\DRIVERS\snapman.sys
20:01:04.0593 0x0dfc snapman - ok
20:01:04.0656 0x0dfc [ 708A1B41E7E850B2B1309073551CBD53, 4F27F7111F23E7FD9DBA88E3D801493DA9EA58E305E98809F924DFF25DB7EB75 ] SNMP C:\WINDOWS\System32\snmp.exe
20:01:04.0750 0x0dfc SNMP - ok
20:01:04.0796 0x0dfc [ 0702E1D16B7003049918595057F3904F, 9EE4A08635E0F63BA2857F2D972BBC7ED7E0BF007C8E85CE0BDFE7CBFEC1A915 ] SNMPTRAP C:\WINDOWS\System32\snmptrap.exe
20:01:04.0812 0x0dfc SNMPTRAP - ok
20:01:04.0875 0x0dfc [ 83C0F71F86D3BDAF915685F3D568B20E, 10B24723914A5A9E27A592FD58DAE2207B6E49F13A17CD2B1477C51D2D609D2E ] Sparrow C:\WINDOWS\system32\DRIVERS\sparrow.sys
20:01:04.0906 0x0dfc Sparrow - ok
20:01:04.0953 0x0dfc [ AB8B92451ECB048A4D1DE7C3FFCB4A9F, DD17733CBB370FCA08F0296704D7CBEACA3C8F76D0ABE4761C3B1FFDF7481D9E ] splitter C:\WINDOWS\system32\drivers\splitter.sys
20:01:04.0968 0x0dfc splitter - ok
20:01:05.0031 0x0dfc [ 60784F891563FB1B767F70117FC2428F, E0B07F08E60FFBAD36C2E58180F4B2A16DCA47716044CBE0213DF7B74D742F1F ] Spooler C:\WINDOWS\system32\spoolsv.exe
20:01:05.0078 0x0dfc Spooler - ok
20:01:05.0281 0x0dfc [ 352E375AB298C23B0F9BC307652C7F50, 582F8D685905B9482DF00A125594A0B468E4F884DBDE391A985B448DF2C61856 ] SQLAgent$MICROSOFTSMLBIZ C:\Programme\Microsoft SQL Server\MSSQL$MICROSOFTSMLBIZ\Binn\sqlagent.EXE
20:01:05.0437 0x0dfc SQLAgent$MICROSOFTSMLBIZ - ok
20:01:05.0515 0x0dfc [ 50FA898F8C032796D3B1B9951BB5A90F, 1C86273EC19EB96D6DB9CE6670C00683B77C99C42CC2F7E75BC50872B93446B1 ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
20:01:05.0546 0x0dfc sr - ok
20:01:05.0687 0x0dfc [ FE77A85495065F3AD59C5C65B6C54182, EB4BAF992F961B2FD5D24BFCB6BCB2142BC32933139A818835FEAB190E4283BB ] srservice C:\WINDOWS\system32\srsvc.dll
20:01:05.0687 0x0dfc srservice - ok
20:01:05.0890 0x0dfc [ 47DDFC2F003F7F9F0592C6874962A2E7, 17C643BD4EB09B5666FE41817DC785BE04A6E491CE79E8E5A702CDBD98E1BDD7 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
20:01:06.0218 0x0dfc Srv - ok
20:01:06.0343 0x0dfc [ 4DF5B05DFAEC29E13E1ED6F6EE12C500, 2971D7D45D6942D310D47DBD19B9680D2D29527E79B86133C72217FD29259465 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
20:01:06.0343 0x0dfc SSDPSRV - ok
20:01:06.0421 0x0dfc [ A36EE93698802CD899F98BFD553D8185, 224CFED921EA230FF8025D259E34968FD2C0FD34BB3A918FB4B9B8BA42BEA5D3 ] ssmdrv C:\WINDOWS\system32\DRIVERS\ssmdrv.sys
20:01:06.0468 0x0dfc ssmdrv - ok
20:01:06.0609 0x0dfc [ 26EB7ACF476A3461B85F5BCE9A677A4A, 18C5852D59A7FC5C7012554372565B6DFF7C1A2BACBDBE9F3EC9A46C4DE16595 ] STHDA C:\WINDOWS\system32\drivers\sthda.sys
20:01:06.0703 0x0dfc STHDA - ok
20:01:06.0765 0x0dfc [ ED78DFAD8EFCDFBC89500492C4D14645, E642BC209693D0EACDDDD2386B4FFFA4CB1C9AB4FA431796900FC730677E09D4 ] STI Simulator C:\WINDOWS\System32\PAStiSvc.exe
20:01:06.0796 0x0dfc STI Simulator - ok
20:01:06.0859 0x0dfc [ A2DBCC4C8860449DF1AB758EA28B4DE0, 90D46D4D888DF6D58F61F3F9CFD1627D516507B7A668F40EA873579FB487A8D9 ] StillCam C:\WINDOWS\system32\DRIVERS\serscan.sys
20:01:06.0875 0x0dfc StillCam - ok
20:01:06.0968 0x0dfc [ BC2C5985611C5356B24AEB370953DED9, 15CBAB8166827DC098E2B16AB6F49A1441A4CB52AF3588F0AD964CAB596DFE10 ] stisvc C:\WINDOWS\system32\wiaservc.dll
20:01:07.0015 0x0dfc stisvc - ok
20:01:07.0062 0x0dfc [ 77813007BA6265C4B6098187E6ED79D2, 93939120E803C46FBFD577C8FC2E6C7E71C0460E01D25CB29579490640AB50C7 ] streamip C:\WINDOWS\system32\DRIVERS\StreamIP.sys
20:01:07.0078 0x0dfc streamip - ok
20:01:07.0156 0x0dfc [ F0FBF57D64A896720029830176CD6404, 65986727FCFE5FC7C074FD1F3BA9B77C790E32A7BE427388ADD97A84F1DA284D ] Sunplus C:\WINDOWS\system32\Drivers\Bulk504.sys
20:01:07.0171 0x0dfc Sunplus - ok
20:01:07.0265 0x0dfc [ C425F21CCCB35CF6166BCEE7B1132411, 5F49EAFD4B79A06C7BB930D61F7987196897C554AB2BFA53DBFCA3DDA3A2B274 ] susbser C:\WINDOWS\system32\DRIVERS\susbser.sys
20:01:07.0312 0x0dfc susbser - ok
20:01:07.0343 0x0dfc [ 3941D127AEF12E93ADDF6FE6EE027E0F, EA1F0E32E1C5E90FA4AAC421DEBBE086512340758D3217A6334E886BCE638B51 ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
20:01:07.0359 0x0dfc swenum - ok
20:01:07.0375 0x0dfc [ 8CE882BCC6CF8A62F2B2323D95CB3D01, B408550A581F3DA222355964AFA4E976AD8471F0AA37573C42C4948AE5A23A3B ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
20:01:07.0406 0x0dfc swmidi - ok
20:01:07.0437 0x0dfc SwPrv - ok
20:01:07.0484 0x0dfc [ 1FF3217614018630D0A6758630FC698C, 78A3075BBFF5D7ADEAC1527E65ACA8527BFC509DF124D44410BB46C4D96C96BB ] symc810 C:\WINDOWS\system32\DRIVERS\symc810.sys
20:01:07.0500 0x0dfc symc810 - ok
20:01:07.0531 0x0dfc [ 070E001D95CF725186EF8B20335F933C, B98B29FB01741AF3B4BB02C76A4D117EA04FE4CC4F8CDB491F9216931704A6D8 ] symc8xx C:\WINDOWS\system32\DRIVERS\symc8xx.sys
20:01:07.0546 0x0dfc symc8xx - ok
20:01:07.0578 0x0dfc [ 80AC1C4ABBE2DF3B738BF15517A51F2C, CCF82D09C63F4FA98BCBEF3A1DC8C02D4269B78256D0B6213E815D9BBE174432 ] sym_hi C:\WINDOWS\system32\DRIVERS\sym_hi.sys
20:01:07.0593 0x0dfc sym_hi - ok
20:01:07.0625 0x0dfc [ BF4FAB949A382A8E105F46EBB4937058, FE7C114A19D50E37463CDD3605C26105A779EEA79CB92BF98267C7BE809D853B ] sym_u3 C:\WINDOWS\system32\DRIVERS\sym_u3.sys
20:01:07.0640 0x0dfc sym_u3 - ok
20:01:07.0687 0x0dfc [ 8B83F3ED0F1688B4958F77CD6D2BF290, 546D3602183702B4F53E84413CFA2C933D64C8540378E54A8DCD148F3F36A2DA ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
20:01:07.0734 0x0dfc sysaudio - ok
20:01:07.0812 0x0dfc [ 2903FFFA2523926D6219428040DCE6B9, 4F13181931B0499F6C3F08138054DBCD1F84CB9806999A9172B80DE79D446F62 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
20:01:07.0828 0x0dfc SysmonLog - ok
20:01:07.0875 0x0dfc [ 05903CAC4B98908D55EA5774775B382E, AC3666CBD894D737874A5998DC7F46A0A51A7B23B1835FC735B9AD503A2191CC ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
20:01:07.0890 0x0dfc TapiSrv - ok
20:01:07.0968 0x0dfc [ 9AEFA14BD6B182D61E3119FA5F436D3D, EA29E49434585409272E7901AF89771FE9D6E911A7DC44AB3C7020CFF8A44552 ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
20:01:08.0031 0x0dfc Tcpip - ok
20:01:08.0203 0x0dfc [ 4E53BBCC4BE37D7A4BD6EF1098C89FF7, D084EFE07AC200672A1CE7BB8AE736612B3E353271188D26E29EC973E26E1F5F ] Tcpip6 C:\WINDOWS\system32\DRIVERS\tcpip6.sys
20:01:08.0296 0x0dfc Tcpip6 - ok
20:01:08.0343 0x0dfc [ 6471A66807F5E104E4885F5B67349397, F35CBFFB8BB235CCE30EF94A5273333900DD49FD506BF9D55D99A320B8A53A5A ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
20:01:08.0437 0x0dfc TDPIPE - ok
20:01:08.0484 0x0dfc [ C56B6D0402371CF3700EB322EF3AAF61, 7743FA4C734BCE38EFB1CA69BC17364D8421E2CD172F856F7E38E7AE1EE93F2F ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
20:01:08.0500 0x0dfc TDTCP - ok
20:01:08.0546 0x0dfc [ 88155247177638048422893737429D9E, B6D4E8691917946332C2208D01F8C8281978C1AD1E9951C5D99DF0D49AC34B3B ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
20:01:08.0546 0x0dfc TermDD - ok
20:01:08.0625 0x0dfc [ B7DE02C863D8F5A005A7BF375375A6A4, 6DE05A7B28CA5A78D58536347FC47F15883EEDBEF487CEA0117CC280FC582DCC ] TermService C:\WINDOWS\System32\termsrv.dll
20:01:08.0625 0x0dfc TermService - ok
20:01:08.0671 0x0dfc [ 2DB7D303C36DDD055215052F118E8E75, BE6E7BBE12A7A4EDF1F1C2935350603970C7426BBCA7A1A6644BB8999123AF17 ] Themes C:\WINDOWS\System32\shsvcs.dll
20:01:08.0687 0x0dfc Themes - ok
20:01:08.0750 0x0dfc [ 6F66601689163373BDA1A3CB10DFA633, C5167FE036DE6C9A95143D8431B6897F898E21DDC881159C6CF7193AB5EF0C26 ] tifsfilter C:\WINDOWS\system32\DRIVERS\tifsfilt.sys
20:01:08.0750 0x0dfc tifsfilter - ok
20:01:08.0796 0x0dfc [ DEC7D1D20259FEFF19C2A3114D428D61, 3E874D12A78DE9D15DF9B225699F88A630BE99FF09CAA21149E9A6C2D720157F ] timounter C:\WINDOWS\system32\DRIVERS\timntr.sys
20:01:08.0968 0x0dfc timounter - ok
20:01:09.0015 0x0dfc [ 03681A1CE77F51586903869A5AB1DEAB, E2EC0A481412166B654682C2F3D953E96E757466135CBD2D813B967EDB13C721 ] TlntSvr C:\WINDOWS\system32\tlntsvr.exe
20:01:09.0046 0x0dfc TlntSvr - ok
20:01:09.0062 0x0dfc TOMCATWAN - ok
20:01:09.0171 0x0dfc [ D213A9247DC347F305A2D4CC9B951487, 9016F96388BD0D3DE7C50F04C046C1E0A4077680453033D639AD7AA6ED9A511E ] TosIde C:\WINDOWS\system32\DRIVERS\toside.sys
20:01:09.0171 0x0dfc TosIde - ok
20:01:09.0250 0x0dfc [ 626504572B175867F30F3215C04B3E2F, 47E87CE9BC666D5CB5953C5D497DC00A7CC28F8EC0A064B3E47700279C5C4B91 ] TrkWks C:\WINDOWS\system32\trkwks.dll
20:01:09.0250 0x0dfc TrkWks - ok
20:01:09.0296 0x0dfc [ 8F861EDA21C05857EB8197300A92501C, 374FF9464F273610A051B9220C8D20F01FD4DD029095A7BE37244E20C5C8B5BB ] tunmp C:\WINDOWS\system32\DRIVERS\tunmp.sys
20:01:09.0296 0x0dfc tunmp - ok
20:01:09.0359 0x0dfc [ 5787B80C2E3C5E2F56C2A233D91FA2C9, 3774905CF77954DFCECDA5BCC7CDE3D0ED72712BFAAD85ADAE5246306447E46C ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
20:01:09.0375 0x0dfc Udfs - ok
20:01:09.0406 0x0dfc UIUSys - ok
20:01:09.0437 0x0dfc [ 1B698A51CD528D8DA4FFAED66DFC51B9, FC3F12D25EE0E99AFE056502FCCFC052854699C21B99D559FAF1244F206DFB4F ] ultra C:\WINDOWS\system32\DRIVERS\ultra.sys
20:01:09.0453 0x0dfc ultra - ok
20:01:09.0515 0x0dfc [ 402DDC88356B1BAC0EE3DD1580C76A31, 32A686595710336A6BFD54C03F552AE39439611662F84EF5D24193AE5665C6F3 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
20:01:09.0562 0x0dfc Update - ok
20:01:09.0609 0x0dfc [ 1DFD8975D8C89214B98D9387C1125B49, 0B6B268487C8E45E9B86BF4A0A9DB669E0E45D600DE3C82B63F9986CA9E01082 ] upnphost C:\WINDOWS\System32\upnphost.dll
20:01:09.0640 0x0dfc upnphost - ok
20:01:09.0671 0x0dfc [ 9B11E6118958E63E1FEF129466E2BDA7, 97168BCE3F4A9BB9E6500F05E34851FB957B219C598944FADC28AC0011C0503B ] UPS C:\WINDOWS\System32\ups.exe
20:01:09.0703 0x0dfc UPS - ok
20:01:09.0765 0x0dfc [ E919708DB44ED8543A7C017953148330, 226D032912D396117213FC29CD0BB5A8B2F872DD91D92F254F2F1FE392481B61 ] usbaudio C:\WINDOWS\system32\drivers\usbaudio.sys
20:01:09.0765 0x0dfc usbaudio - ok
20:01:09.0843 0x0dfc [ 173F317CE0DB8E21322E71B7E60A27E8, 7042441BA63AE38AE9D7BE0BC5CA7404FC9EE5BB3F084604A68F01E82769652A ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
20:01:09.0875 0x0dfc usbccgp - ok
20:01:09.0906 0x0dfc [ 65DCF09D0E37D4C6B11B5B0B76D470A7, 90EBA8BAF45932B453D905EDF2BDDDF3A432BFD50B9F7DF58CDEAE98D11C2E2F ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
20:01:09.0937 0x0dfc usbehci - ok
20:01:09.0984 0x0dfc [ 1AB3CDDE553B6E064D2E754EFE20285C, A99C4528C4227B1E96847614745AAFACD3C5F1BDFE435214DBF78740FFB300FE ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
20:01:10.0000 0x0dfc usbhub - ok
20:01:10.0078 0x0dfc [ A717C8721046828520C9EDF31288FC00, 1530BBE832EDBB0974AD89D723A03FF7A0094B368992D73C2C3E62A181DF1E0A ] usbprint C:\WINDOWS\system32\DRIVERS\usbprint.sys
20:01:10.0109 0x0dfc usbprint - ok
20:01:10.0156 0x0dfc [ A0B8CF9DEB1184FBDD20784A58FA75D4, D8AFD45BD9CF7B02F2554AA6085194DE82893AF794EDF479BC9B9E9C1758DC75 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
20:01:10.0156 0x0dfc usbscan - ok
20:01:10.0218 0x0dfc [ A32426D9B14A089EAA1D922E0C5801A9, ED1DC52EE45F8EAD3AEC4B1F817BB25634141CF48295494C5947DCE6CF7A9817 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
20:01:10.0234 0x0dfc USBSTOR - ok
20:01:10.0312 0x0dfc [ 26496F9DEE2D787FC3E61AD54821FFE6, 8BE7FF647470B9A951CBB478FAF83D657A15CC78037F42348A6B738F21D523DA ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
20:01:10.0328 0x0dfc usbuhci - ok
20:01:10.0421 0x0dfc [ B4D7B7AD8A9F7C063C5CC3E2C1A0724E, CFA47A71403419CA7C94333B4F7766DFC97C5DCDBC3AD1B106044B93C979A5C5 ] usb_rndisx C:\WINDOWS\system32\DRIVERS\usb8023x.sys
20:01:10.0453 0x0dfc usb_rndisx - ok
20:01:10.0562 0x0dfc [ D81CD7E761C1A52DEC20F0D4EAEA3259, 95629AD28D6D81D5EB06B9DE9D85C454421A9301B50721E839F8C58BD130CC8C ] UxTuneUp C:\WINDOWS\System32\uxtuneup.dll
20:01:10.0578 0x0dfc UxTuneUp - ok
20:01:10.0625 0x0dfc [ 9EBEE4A060C5364A31AEAA04EAC2AF1E, 695332A57F65E2F5854043691C1F8FC20FF97A60BB72A90095DCB113A5AE8D33 ] VComm C:\WINDOWS\system32\DRIVERS\VComm.sys
20:01:10.0656 0x0dfc VComm - ok
20:01:10.0765 0x0dfc [ EF0D45ED806B0C9AE9756BFEECB077ED, FB7C006C2D88B361AB971F78F86169263D595EEB75163F5774FEA2208055109F ] VcommMgr C:\WINDOWS\system32\Drivers\VcommMgr.sys
20:01:10.0968 0x0dfc VcommMgr - ok
20:01:11.0000 0x0dfc [ 0D3A8FAFCEACD8B7625CD549757A7DF1, B9CFDEFCD66AA139F3DC2F967B184669532922563AD5A71769BABDC4370D065E ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
20:01:11.0062 0x0dfc VgaSave - ok
20:01:11.0140 0x0dfc [ 754292CE5848B3738281B4F3607EAEF4, B0DCC9E9F8F78671FF878B493264C3B1DD2ED4A7167E3F5495F66ABF5FACB86C ] viaagp C:\WINDOWS\system32\DRIVERS\viaagp.sys
20:01:11.0171 0x0dfc viaagp - ok
20:01:11.0203 0x0dfc [ 3B3EFCDA263B8AC14FDF9CBDD0791B2E, FC7FFD53FCC0F81587EFF26A43C141D25C43DBC68311520CE2BCDD739CA58CA9 ] ViaIde C:\WINDOWS\system32\DRIVERS\viaide.sys
20:01:11.0312 0x0dfc ViaIde - ok
20:01:11.0453 0x0dfc [ 233509E1AD024A3E451D8DF6795EEED5, BF79E746D4E237989CFCD934097FC8F2553EC2869A53DEC1A79896BD062D09A6 ] vmfilter303 C:\WINDOWS\system32\drivers\vmfilter303.sys
20:01:11.0578 0x0dfc vmfilter303 - ok
20:01:11.0671 0x0dfc [ A5A712F4E880874A477AF790B5186E1D, FE885ED04C3EAFC379787F836738A2769E43D07CF52DD917D90C38E001957A5E ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
20:01:11.0734 0x0dfc VolSnap - ok
20:01:11.0812 0x0dfc [ 1C8A783E90C34D205596F1AB4A97E261, 0D0ACA939B38F0B5F7350D74E49817BD590E6AAC702A051354073B5265FDA6F0 ] vsbus C:\WINDOWS\system32\DRIVERS\vsb.sys
20:01:11.0828 0x0dfc vsbus - ok
20:01:11.0875 0x0dfc [ 3377DAA1CB8CAC46A538C236F5F3D58F, 6F2D45DF5247ACE69062840D8801B46E62BF77041A4F2BC19ABE1D0758450784 ] vserial C:\WINDOWS\system32\DRIVERS\vserial.sys
20:01:11.0906 0x0dfc vserial - ok
20:01:12.0171 0x0dfc [ 68F106273BE29E7B7EF8266977268E78, 1488AB7A654EBC94C73E1D494067189ACB95BC233980110CAC4C0297CDC4115A ] VSS C:\WINDOWS\System32\vssvc.exe
20:01:12.0343 0x0dfc VSS - ok
20:01:12.0421 0x0dfc [ 16409C468CEEE99B6B129FCAA5C0F206, AD241E5AF9DE82994F2C3DFB436A02CA8577C49AFB6EDFE2A98B152F843C764C ] vulfnths C:\WINDOWS\System32\Drivers\vulfnth.sys
20:01:12.0453 0x0dfc vulfnths - ok
20:01:12.0500 0x0dfc [ 9FCAD546C6285D5073FB926709203049, 067F25EB0254B2E309EBBCEBFADA098DB250FCB9D915D79647A24A23EA87C0F3 ] vulfntrs C:\WINDOWS\System32\Drivers\vulfntr.sys
20:01:12.0578 0x0dfc vulfntrs - ok
20:01:12.0656 0x0dfc [ 7B353059E665F8B7AD2BBEAEF597CF45, 84A4311F18A4B8DCB364741DEA7D18E2363F19564B2EF25214965DC729527068 ] w32time C:\WINDOWS\system32\w32time.dll
20:01:12.0656 0x0dfc w32time - ok
20:01:12.0703 0x0dfc [ E20B95BAEDB550F32DD489265C1DA1F6, 5589B2067E6C9FBA290D8C5EADDC198EBAF39C50C3CD7D2BC5CDA7CBFBC445E5 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
20:01:12.0750 0x0dfc Wanarp - ok
20:01:12.0828 0x0dfc [ 0A716C08CB13C3A8F4F51E882DBF7416, 66FFDC9151CB3676B5DF073431DE055E7F2CDA5722F7EAAC6EC45F2CF9910882 ] wanatw C:\WINDOWS\system32\DRIVERS\wanatw4.sys
20:01:12.0843 0x0dfc wanatw - ok
20:01:12.0906 0x0dfc [ 46A247F6617526AFE38B6F12F5512120, 24931910E3D678829A7A6CF1140CFE428E05057A4D3A14086ED66B884E847D2D ] wceusbsh C:\WINDOWS\system32\DRIVERS\wceusbsh.sys
20:01:12.0921 0x0dfc wceusbsh - ok
20:01:12.0937 0x0dfc WDICA - ok
20:01:12.0984 0x0dfc [ 6768ACF64B18196494413695F0C3A00F, 3A8F8586F1D997D19A8478345338D2AECD785AEABDB61531DD3F92003D3230A5 ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
20:01:13.0015 0x0dfc wdmaud - ok
20:01:13.0125 0x0dfc [ 81727C9873E3905A2FFC1EBD07265002, 6AC2383A1DCBB7FA3DB90FBB874C8E1819F5B7492717FF41E303EFC7BF72F93E ] WebClient C:\WINDOWS\System32\webclnt.dll
20:01:13.0125 0x0dfc WebClient - ok
20:01:13.0250 0x0dfc [ 6F3F3973D97714CC5F906A19FE883729, 7817118BE94D0F6FAE0F9CE48AD70FFE0AEF886CCE09C666768FAB61047F992F ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
20:01:13.0250 0x0dfc winmgmt - ok
20:01:13.0375 0x0dfc [ C51B4A5C05A5475708E3C81C7765B71D, F776D2680BD3407307B7072626F78460361FC5BC38623C9E16F394D300AB25DE ] WmdmPmSN C:\WINDOWS\system32\MsPMSNSv.dll
20:01:13.0390 0x0dfc WmdmPmSN - ok
20:01:13.0468 0x0dfc [ FFA4D901D46D07A5BAB2D8307FBB51A6, 53C6D04D111EDF774C7F7EEB8D032B372E6244774D56B1B34CF1236027EC9450 ] Wmi C:\WINDOWS\System32\advapi32.dll
20:01:13.0562 0x0dfc Wmi - ok
20:01:13.0640 0x0dfc [ 93908111BA57A6E60EC2FA2DE202105C, F395F25F18D15C6B9FEDB45FD31E10295FFE5517E2BC86ACAC11904EA0664BE2 ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
20:01:13.0656 0x0dfc WmiApSrv - ok
20:01:13.0765 0x0dfc [ BF05650BB7DF5E9EBDD25974E22403BB, AF173D89B768CFC7AB03DFADD4F049CAC40AC59A0C9208AF5AB92CB368983077 ] WMPNetworkSvc C:\Programme\Windows Media Player\WMPNetwk.exe
20:01:13.0984 0x0dfc WMPNetworkSvc - ok
20:01:14.0015 0x0dfc [ CF4DEF1BF66F06964DC0D91844239104, CC1D9CECE2056D29A9651D51BB57C3F4F9BF9E90A4808CF7496C683C874FBD51 ] WpdUsb C:\WINDOWS\system32\DRIVERS\wpdusb.sys
20:01:14.0078 0x0dfc WpdUsb - ok
20:01:14.0390 0x0dfc [ B800EEC15851597405784126C407188C, 78FE6A9CBFC2C10DB88D5D8616DBFD848849630907906D06199C14DC4F6C152D ] WPFFontCache_v0400 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
20:01:14.0625 0x0dfc WPFFontCache_v0400 - ok
20:01:14.0734 0x0dfc [ 6ABE6E225ADB5A751622A9CC3BC19CE8, 4061C5D0F051DFF1730E2A3BFC1CCA97B29602FC50F10F6B44D93B0D28F42024 ] WS2IFSL C:\WINDOWS\System32\drivers\ws2ifsl.sys
20:01:14.0781 0x0dfc WS2IFSL - ok
20:01:14.0859 0x0dfc [ 300B3E84FAF1A5C1F791C159BA28035D, 0194856BDF94C1F274AF70AD558290ACDACDDEA331BD66FEB8E167ABD1E36786 ] wscsvc C:\WINDOWS\system32\wscsvc.dll
20:01:14.0859 0x0dfc wscsvc - ok
20:01:14.0984 0x0dfc [ 0091D78C5F8FDE0CDF2B214823DE6E48, 879334B8F4090DD3E562AB76E2510C1D2F5D2557DCCECAF4E27A763D8C6AB740 ] WSIMD C:\WINDOWS\system32\DRIVERS\wsimd.sys
20:01:15.0015 0x0dfc WSIMD - ok
20:01:15.0093 0x0dfc [ C98B39829C2BBD34E454150633C62C78, 71B60EA3AD0E2637917D528C6A9E7ECF2949E3E5E91036AA5BBADA95BD725511 ] WSTCODEC C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
20:01:15.0234 0x0dfc WSTCODEC - ok
20:01:15.0312 0x0dfc [ 7B4FE05202AA6BF9F4DFD0E6A0D8A085, A1DB8909FA73337DB613D01824945485186654364A4DF129B8CB913CF87D1D2E ] wuauserv C:\WINDOWS\system32\wuauserv.dll
20:01:15.0312 0x0dfc wuauserv - ok
20:01:15.0375 0x0dfc [ F15FEAFFFBB3644CCC80C5DA584E6311, 79B3E9AF35976CE49921E9BEA3BA3B4A8AF762FD3F284B62954038B5FFB32471 ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
20:01:15.0406 0x0dfc WudfPf - ok
20:01:15.0437 0x0dfc [ 28B524262BCE6DE1F7EF9F510BA3985B, AEFF02B899801A63CBB262757C3D4369E38BFF0690BD085DE60E873DFBE3C3F4 ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
20:01:15.0468 0x0dfc WudfRd - ok
20:01:15.0500 0x0dfc [ 05231C04253C5BC30B26CBAAE680ED89, 5C03C2D7E0B573646D32F4093E2FF2C3BA391C39F5BA37D67F69D38E357FCC3D ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
20:01:15.0515 0x0dfc WudfSvc - ok
20:01:15.0640 0x0dfc [ C4F109C005F6725162D2D12CA751E4A7, AC996B44338328BDD4442FE48406F286A64526F0EC77BE00A19FA7FDB0407CFE ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
20:01:15.0671 0x0dfc WZCSVC - ok
20:01:15.0750 0x0dfc [ 0ADA34871A2E1CD2CAAFED1237A47750, 45BEF8649078BD74C1A347B5F2D3A1958E5A7DCD6C6BA8A2E0CAD277A929C64E ] xmlprov C:\WINDOWS\System32\xmlprov.dll
20:01:15.0781 0x0dfc xmlprov - ok
20:01:15.0875 0x0dfc [ 3DE80BAA4AF21883CF938197D508B848, 79BB2674765E5E90FC43745979578F22274BE6194CD372F2A9C9D25B95C13B9B ] ZSMC303 C:\WINDOWS\system32\Drivers\usbVM303.sys
20:01:15.0984 0x0dfc ZSMC303 - ok
20:01:16.0125 0x0dfc ================ Scan global ===============================
20:01:16.0296 0x0dfc [ 2C60091CA5F67C3032EAB3B30390C27F, 9E205C8E67F4B61FCFA2A82AA1968D522C3B6410D7075BE813F7F1564D61632E ] C:\WINDOWS\system32\basesrv.dll
20:01:16.0468 0x0dfc [ E62178BC21EAC63A3B9A2DBD46C1B505, CAA5480CC4DAA37758F0CF445F865FD6F4630080B044EF2E606C2F62DAA4061A ] C:\WINDOWS\system32\winsrv.dll
20:01:16.0500 0x0dfc [ E62178BC21EAC63A3B9A2DBD46C1B505, CAA5480CC4DAA37758F0CF445F865FD6F4630080B044EF2E606C2F62DAA4061A ] C:\WINDOWS\system32\winsrv.dll
20:01:16.0546 0x0dfc [ A3EDBE9053889FB24AB22492472B39DC, 6F2ED6E04BDE2FCA2A8BF9BD2D1D6923DE6EAECB46F582B6C0BD1CF364D65C9E ] C:\WINDOWS\system32\services.exe
20:01:16.0546 0x0dfc [ Global ] - ok
20:01:16.0562 0x0dfc ================ Scan MBR ==================================
20:01:16.0625 0x0dfc [ 5CB90281D1A59B251F6603134774EEC3 ] \Device\Harddisk0\DR0
20:01:17.0312 0x0dfc \Device\Harddisk0\DR0 - ok
20:01:17.0343 0x0dfc ================ Scan VBR ==================================
20:01:17.0359 0x0dfc [ 357DA4F3EDB2D7832997A5800F8E68BD ] \Device\Harddisk0\DR0\Partition1
20:01:17.0359 0x0dfc \Device\Harddisk0\DR0\Partition1 - ok
20:01:17.0359 0x0dfc Waiting for KSN requests completion. In queue: 183
20:01:18.0359 0x0dfc Waiting for KSN requests completion. In queue: 183
20:01:19.0359 0x0dfc Waiting for KSN requests completion. In queue: 183
20:01:20.0562 0x0dfc AV detected via SS1: Avira AntiVir PersonalEdition Classic, 0.0.0.0, enabled, updated
20:01:20.0562 0x0dfc AV detected via SS1: Avira AntiVir PersonalEdition Classic, 0.0.0.0, enabled, updated
20:01:20.0562 0x0dfc AV detected via SS1: Avira AntiVir PersonalEdition Classic, 0.0.0.0, enabled, updated
20:01:20.0562 0x0dfc AV detected via SS1: Avira AntiVir PersonalEdition Classic, 0.0.0.0, enabled, updated
20:01:20.0562 0x0dfc AV detected via SS1: Avira AntiVir PersonalEdition Classic, 0.0.0.0, enabled, updated
20:01:20.0562 0x0dfc AV detected via SS1: Avira AntiVir PersonalEdition Classic, 0.0.0.0, enabled, updated
20:01:20.0562 0x0dfc AV detected via SS1: Avira Desktop, 14.0.0.335, enabled, updated
20:01:20.0562 0x0dfc AV detected via SS1: Avira AntiVir PersonalEdition Classic, 0.0.0.0, enabled, updated
20:01:20.0562 0x0dfc AV detected via SS1: Avira AntiVir PersonalEdition Classic, 0.0.0.0, enabled, updated
20:01:20.0562 0x0dfc AV detected via SS1: Avira AntiVir PersonalEdition Classic, 0.0.0.0, enabled, outofdate
20:01:20.0562 0x0dfc AV detected via SS1: Avira AntiVir PersonalEdition Classic, 0.0.0.0, enabled, updated
20:01:20.0562 0x0dfc AV detected via SS1: Avira AntiVir PersonalEdition Classic, 0.0.0.0, enabled, updated
20:01:20.0562 0x0dfc AV detected via SS1: Avira AntiVir PersonalEdition Classic, 0.0.0.0, enabled, updated
20:01:20.0562 0x0dfc AV detected via SS1: Avira AntiVir PersonalEdition Classic, 0.0.0.0, enabled, updated
20:01:20.0562 0x0dfc AV detected via SS1: Avira AntiVir PersonalEdition Classic, 0.0.0.0, enabled, updated
20:01:20.0562 0x0dfc AV detected via SS1: Avira AntiVir PersonalEdition Classic, 0.0.0.0, enabled, updated
20:01:20.0562 0x0dfc AV detected via SS1: Avira AntiVir PersonalEdition Classic, 0.0.0.0, enabled, updated
20:01:20.0562 0x0dfc AV detected via SS1: Avira AntiVir PersonalEdition Classic, 0.0.0.0, enabled, updated
20:01:20.0562 0x0dfc AV detected via SS1: Avira AntiVir PersonalEdition Classic, 0.0.0.0, enabled, updated
20:01:20.0562 0x0dfc AV detected via SS1: Avira AntiVir PersonalEdition Classic, 0.0.0.0, enabled, updated
20:01:20.0562 0x0dfc AV detected via SS1: Avira AntiVir PersonalEdition Classic, 0.0.0.0, enabled, updated
20:01:20.0562 0x0dfc AV detected via SS1: Avira AntiVir PersonalEdition Classic, 0.0.0.0, enabled, updated
20:01:20.0562 0x0dfc AV detected via SS1: Avira AntiVir PersonalEdition Classic, 0.0.0.0, enabled, updated
20:01:20.0562 0x0dfc AV detected via SS1: Avira AntiVir PersonalEdition Classic, 0.0.0.0, enabled, updated
20:01:20.0578 0x0dfc Win FW state via NFM: enabled
20:01:23.0015 0x0dfc ============================================================
20:01:23.0015 0x0dfc Scan finished
20:01:23.0015 0x0dfc ============================================================
20:01:23.0078 0x0df4 Detected object count: 0
20:01:23.0078 0x0df4 Actual detected object count: 0
20:04:19.0453 0x0818 Deinitialize success
Sollte es das gewesen sein so danke ich für die überaus große Hilfe und den Einsatz. Peter Hermes |
|
06.10.2013, 16:05
| #23 |
| /// the machine /// TB-Ausbilder | Virus „BOO/Sinowal.A“ lässt sich nicht entfernen Fertig Die Reihenfolge ist hier entscheidend.
Hier noch ein paar Tipps zur Absicherung deines Systems. Ich kann garnicht zu oft erwähnen, wie wichtig es ist, dass dein System Up to Date ist.
Anti- Viren Software
Zusätzlicher Schutz
Sicheres Browsen
Alternative Browser Andere Browser tendieren zu etwas mehr Sicherheit als der IE, da diese keine Active X Elemente verwenden. Diese können von Spyware zur Infektion deines Systems missbraucht werden.
Performance Bereinige regelmäßig deine Temp Files. Ich empfehle hierzu TFC Halte dich fern von jedlichen Registry Cleanern. Diese Schaden deinem System mehr als sie helfen. Hier ein paar ( englishe ) Links Miekemoes Blogspot ( MVP ) Bill Castner ( MVP ) Don'ts
Hinweis: Bitte gib mir eine kurze Rückmeldung wenn alles erledigt ist und keine Fragen mehr vorhanden sind, so das ich diesen Thread aus meinen Abos löschen kann.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
07.10.2013, 17:36
| #24 |
| | Virus „BOO/Sinowal.A“ lässt sich nicht entfernen Hallo Schrauber, gesagt getan! Nochmals vielen Dank für den Einsatz. mit NoScript hab ich meine Probleme, die jedoch bekanntlich zwischen den Ohren liegen. Kommt Zeit kommt Sovjet. Nochmal vielen Dank Peter Hermes |
|
08.10.2013, 08:15
| #25 |
| /// the machine /// TB-Ausbilder | Virus „BOO/Sinowal.A“ lässt sich nicht entfernen Gern Geschehen
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
| Themen zu Virus „BOO/Sinowal.A“ lässt sich nicht entfernen |
| avira, benötige, betrieb, boo/sinowal.a, boot, compu, computer, einzige, entferne, entfernen, hilfe, jahre, lässt sich nicht entfernen, mas, master, master boot record, monate, professionelle, virus, zugang |
Linear-Darstellung
