McAfee Virenscan und Firewall nicht aktivierbar, Internetverbindung weg

rootkit014 · 30.07.2014, 00:44

Liebe Helferin, lieber Helfer,

seit gestern abend funktioniert plötzlich das Internet an meinem PC nicht mehr, obwohl alle anderen Computer weiterhin Zugriff haben. Gleichzeitig funktioniert der Live-Scan von McAfee nicht mehr. Weder der Scan noch die Firewall lassen sich manuell aktivieren. Wenn es funktioniert, dann nur für wenige Sekunden, bis das Programm wird auf "deaktiviert" umschaltet.

Ein erster Scan mit Malwarebytes Anti-Malware hat neben einer Vielzahl von PUPs zwei Trojaner und ein Backdoor gefunden. Alle Funde habe ich in die Quarantäne verschoben. Das Problem war dadurch jedoch nicht gelöst. Da sich die Schadsoftware scheinbar sehr tief eingegraben hat, komme ich einfach nicht weiter.

Bei dem Betriebssystem handelt es sich um Windows XP Build 2600 Service Pack 3.

Ich hoffe, ihr könnt mir irgendwie helfen. Vielen lieben Dank im Voraus!!!

Liebe Grüße
Daniel

Hier sind meine Log-Files:

1. defogger:

Code:

ATTFilter

defogger_disable by jpshortstuff (23.02.10.1)
Log created at 00:22 on 30/07/2014 (******)

Checking for autostart values...
HKCU\~\Run values retrieved.
HKLM\~\Run values retrieved.

Checking for services/drivers...
Unable to read e55f1a183fbfe661.sys
Unable to read rdbss.sys
Unable to read rdpcdd.sys
Unable to read rdpdr.sys
Unable to read rdpwd.sys
Unable to read recagent.sys
Unable to read redbook.sys
Unable to read rfcomm.sys
Unable to read rio8drv.sys
Unable to read riodrv.sys
Unable to read rmcast.sys
Unable to read rndismp.sys
Unable to read rndismpx.sys
Unable to read rootmdm.sys
Unable to read s3gnbm.sys
Unable to read scsiport.sys
Unable to read sdbus.sys
Unable to read secdrv.sys
Unable to read serenum.sys
Unable to read serial.sys
Unable to read sffdisk.sys
Unable to read sffp_mmc.sys
Unable to read sffp_sd.sys
Unable to read sfloppy.sys
Unable to read sisagp.sys
Unable to read SLIP.sys
Unable to read slnt7554.sys
Unable to read slntamr.sys
Unable to read slnthal.sys
Unable to read slwdmsup.sys
Unable to read smbali.sys
Unable to read smclib.sys
Unable to read sonydcam.sys
Unable to read splitter.sys
Unable to read sr.sys
Unable to read srv.sys
Unable to read ssadadb.sys
Unable to read ssadbus.sys
Unable to read ssadcm.sys
Unable to read ssadcmnt.sys
Unable to read ssadmdfl.sys
Unable to read ssadmdm.sys
Unable to read ssadserd.sys
Unable to read ssadwh.sys
Unable to read ssadwhnt.sys
Unable to read ssudbus.sys
Unable to read ssudmdm.sys
Unable to read ss_bus.sys
Unable to read ss_cm.sys
Unable to read ss_cmnt.sys
Unable to read ss_mdfl.sys
Unable to read ss_mdm.sys
Unable to read ss_wh.sys
Unable to read ss_whnt.sys
Unable to read stream.sys
Unable to read StreamIP.sys
Unable to read swenum.sys
Unable to read swmidi.sys
Unable to read sysaudio.sys
Unable to read tape.sys
Unable to read tcpip.sys
Unable to read tcpip6.sys
Unable to read tdi.sys
Unable to read tdpipe.sys
Unable to read tdtcp.sys
Unable to read termdd.sys
Unable to read tosdvd.sys
Unable to read tsbvcap.sys
Unable to read tunmp.sys
Unable to read uagp35.sys
Unable to read udfs.sys
Unable to read update.sys
Unable to read usb8023.sys
Unable to read usb8023x.sys
Unable to read usbaapl.sys
Unable to read usbaudio.sys
Unable to read usbcamd.sys
Unable to read usbcamd2.sys
Unable to read usbccgp.sys
Unable to read usbd.sys
Unable to read usbehci.sys
Unable to read usbhub.sys
Unable to read usbintel.sys
Unable to read usbohci.sys
Unable to read usbport.sys
Unable to read usbprint.sys
Unable to read USBSTOR.SYS
Unable to read usbvideo.sys
Unable to read vdmindvd.sys
Unable to read vga.sys
Unable to read viaagp.sys
Unable to read viahduaa.sys
Unable to read videoprt.sys
Unable to read volsnap.sys
Unable to read wacompen.sys
Unable to read wadv07nt.sys
Unable to read wadv08nt.sys
Unable to read wadv09nt.sys
Unable to read wadv11nt.sys
Unable to read wanarp.sys
Unable to read wanatw4.sys
Unable to read watv06nt.sys
Unable to read watv10nt.sys
Unable to read wceusbsh.sys
Unable to read wdf01000.sys
Unable to read wdfldr.sys
Unable to read wdmaud.sys
Unable to read wmilib.sys
Unable to read wpdusb.sys
Unable to read ws2ifsl.sys
Unable to read WSTCODEC.SYS
Unable to read WudfPf.sys
Unable to read WudfRd.sys


-=E.O.F=-

2. FRST.txt

Code:

ATTFilter

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:25-07-2014
Ran by ****** (administrator) on ******-PC1 on 30-07-2014 00:24:19
Running from H:\
Platform: Microsoft Windows XP Home Edition Service Pack 3 (X86) OS Language: Deutsch (Deutschland)
Internet Explorer Version 8
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: hxxp://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/ 
Download link for 64-Bit Version: hxxp://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/ 
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Taiwan Shui Mu Chih Ching Technology Limited.) C:\Programme\WinZipper\winzipersvc.exe
(Logitech Inc.) C:\Programme\Gemeinsame Dateien\logishrd\LVMVFM\UMVPFSrv.exe
(AOL LLC) C:\Programme\Gemeinsame Dateien\aol\acs\AOLacsd.exe
(Apple Inc.) C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\AppleMobileDeviceService.exe
() C:\Programme\Sony\PlayMemories Home\dfs.exe
(Oracle Corporation) C:\Programme\Java\jre7\bin\jqs.exe
(McAfee, Inc.) C:\Programme\Gemeinsame Dateien\Mcafee\McSvcHost\McSvHost.exe
(McAfee, Inc.) C:\Programme\Gemeinsame Dateien\Mcafee\Platform\McSvcHost\McSvHost.exe
(Microsoft Corporation) C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7DEBUG\mdm.exe
(NVIDIA Corporation) C:\WINDOWS\system32\nvsvc32.exe
(Sony Corporation) C:\Programme\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe
() D:\Tobit Radio.fx\Server\rfx-server.exe
(Skype Technologies S.A.) C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Skype\Toolbars\Skype C2C Service\c2c_service.exe
(Microsoft Corporation) C:\WINDOWS\system32\rundll32.exe
(Brother Industries, Ltd.) C:\Programme\Browny02\Brother\BrStMonW.exe
(Microsoft Corporation) C:\WINDOWS\system32\rundll32.exe
(Brother Industries, Ltd.) C:\Programme\Brother\ControlCenter3\BrccMCtl.exe
(Apple Inc.) C:\Programme\iTunes\iTunesHelper.exe
(Microsoft Corporation) C:\Programme\Microsoft ActiveSync\wcescomm.exe
(McAfee, Inc.) C:\Programme\Gemeinsame Dateien\Mcafee\Platform\McUICnt.exe
(Samsung) C:\Programme\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
(AOL, LLC.) C:\Programme\AOL 9.0 VR\waol.exe
(Microsoft Corporation) C:\PROGRA~1\MI3AA1~1\rapimgr.exe
(America Online, Inc.) C:\Programme\Gemeinsame Dateien\aol\1336674111\ee\aolsoftware.exe
(Brother Industries, Ltd.) C:\Programme\Browny02\BrYNSvc.exe
(Apple Inc.) C:\Programme\iPod\bin\iPodService.exe
(Microsoft Corporation) C:\WINDOWS\system32\wscntfy.exe
(AOL, LLC.) C:\Programme\AOL 9.0 VR\shellmon.exe
(McAfee, Inc.) C:\PROGRA~1\McAfee\VIRUSS~1\McVsShld.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKU\S-1-5-21-1085031214-1604221776-1417001333-1005\...\Run: [H/PC Connection Agent] => C:\Programme\Microsoft ActiveSync\wcescomm.exe [1289000 2006-11-13] (Microsoft Corporation)
HKU\S-1-5-21-1085031214-1604221776-1417001333-1005\...\Run: [] => C:\Programme\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [844296 2012-12-20] (Samsung)
HKU\S-1-5-21-1085031214-1604221776-1417001333-1005\...\Run: [AOL Fast Start] => C:\Programme\AOL 9.0 VR\AOL.EXE [50480 2007-06-21] (AOL, LLC.)
HKU\S-1-5-21-1085031214-1604221776-1417001333-1005\...\Policies\Explorer: [NoFolderOptions] 0
HKU\S-1-5-21-1085031214-1604221776-1417001333-1005\...\Policies\Explorer: [NoControlPanel] 0
Startup: C:\Dokumente und Einstellungen\Martina\Startmenü\Programme\Autostart\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Dokumente und Einstellungen\******\Anwendungsdaten\Dropbox\bin\Dropbox.exe (No File)
ShellIconOverlayIdentifiers: DropboxExt1 -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers: DropboxExt2 -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers: DropboxExt3 -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers: DropboxExt4 -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} =>  No File

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.delta-homes.com/?utm_source=b&utm_medium=wpm0226&utm_campaign=installer&utm_content=hp&from=wpm0226&uid=ST3500418AS_6VM31WBYXXXX6VM31WBY&ts=1393436437
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.delta-homes.com/?type=hp&ts=1402602195&from=wpm0612&uid=ST3500418AS_6VM31WBYXXXX6VM31WBY
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.delta-homes.com/?type=hp&ts=1402602195&from=wpm0612&uid=ST3500418AS_6VM31WBYXXXX6VM31WBY
URLSearchHook: HKCU - (No Name) - {1CFFA392-0898-4b1c-89D1-6E98F9D8EF78} -  No File
URLSearchHook: HKCU - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Programme\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
SearchScopes: HKCU - DefaultScope {1964435A-24BE-4281-B985-756DFB79784A} URL = hxxp://de.search.yahoo.com/search?fr=mcafee&type=A011DE544&p={SearchTerms}
SearchScopes: HKCU - {1964435A-24BE-4281-B985-756DFB79784A} URL = hxxp://de.search.yahoo.com/search?fr=mcafee&type=A011DE544&p={SearchTerms}
SearchScopes: HKCU - {443789B7-F39C-4b5c-9287-DA72D38F4FE6} URL = hxxp://suche.aol.de/suche/web/search.jsp?q={searchTerms}
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Programme\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: AOL Toolbar Launcher -> {7C554162-8CB7-45A4-B8F4-8EA1C75885F9} -> C:\Programme\AOL\AOL Toolbar 4.0\aoltb.dll (AOL LLC)
BHO: McAfee SiteAdvisor BHO -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> c:\Programme\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Programme\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - AOL Toolbar - {DE9C389F-3316-41A7-809B-AA305ED9D922} - C:\Programme\AOL\AOL Toolbar 4.0\aoltb.dll (AOL LLC)
Toolbar: HKLM - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Programme\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
Toolbar: HKCU - &Adresse - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll (Microsoft Corporation)
Toolbar: HKCU - &Links - {0E5CBF21-D15F-11D0-8301-00AA005B4383} - C:\WINDOWS\system32\SHELL32.dll (Microsoft Corporation)
Toolbar: HKCU - AOL Toolbar - {DE9C389F-3316-41A7-809B-AA305ED9D922} - C:\Programme\AOL\AOL Toolbar 4.0\aoltb.dll (AOL LLC)
DPF: {1B00725B-C455-4DE6-BFB6-AD540AD427CD} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} hxxp://windowsupdate.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1336581757631
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_07-windows-i586.cab
DPF: {CAFEEFAC-0017-0000-0007-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_07-windows-i586.cab
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Programme\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
Handler: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: ipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: ms-help - {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation)
Handler: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Programme\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Programme\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Programme\Gemeinsame Dateien\Skype\Skype4COM.dll (Skype Technologies)
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Programme\McAfee\MSC\McSnIePl.dll (McAfee, Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Dokumente und Einstellungen\******\Anwendungsdaten\Mozilla\Firefox\Profiles\zix0i0wy.default
FF NewTab: hxxp://www.delta-homes.com/newtab/?utm_source=b&utm_medium=wpm0226&utm_campaign=ST3500418AS_6VM31WBYXXXX6VM31WBY&utm_content=nt&from=wpm0226&uid=ST3500418AS_6VM31WBYXXXX6VM31WBY&ts=1393436437
FF DefaultSearchEngine: Sichere Suche
FF SearchEngineOrder.1: Sichere Suche
FF SelectedSearchEngine: Sichere Suche
FF Homepage: https://www.google.de/
FF Keyword.URL: hxxp://de.search.yahoo.com/search?fr=mcafee&type=A111DE544&p=
FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_14_0_0_145.dll ()
FF Plugin: @Apple.com/iTunes,version=1.0 - C:\Programme\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin: @java.com/DTPlugin,version=10.25.2 - C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.25.2 - C:\Programme\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @mcafee.com/MSC,version=10 - c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL ()
FF Plugin: @mcafee.com/MVT - C:\Programme\McAfee\Supportability\MVT\NPMVTPlugin.dll (McAfee, Inc.)
FF Plugin: @microsoft.com/OfficeLive,version=1.5 - C:\Programme\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin: @microsoft.com/WPF,version=3.5 - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.0.8 - C:\Programme\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.2 - C:\Programme\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: Adobe Reader - C:\Programme\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Programme\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Programme\mozilla firefox\plugins\npqtplugin.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Programme\mozilla firefox\plugins\npqtplugin2.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Programme\mozilla firefox\plugins\npqtplugin3.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Programme\mozilla firefox\plugins\npqtplugin4.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Programme\mozilla firefox\plugins\npqtplugin5.dll (Apple Inc.)
FF SearchPlugin: C:\Programme\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Programme\mozilla firefox\browser\searchplugins\delta-homes.xml
FF SearchPlugin: C:\Programme\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Programme\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Programme\mozilla firefox\browser\searchplugins\McSiteAdvisor.xml
FF SearchPlugin: C:\Programme\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: Fast Start - C:\Dokumente und Einstellungen\******\Anwendungsdaten\Mozilla\Firefox\Profiles\zix0i0wy.default\Extensions\faststartff@gmail.com [2014-07-11]
FF Extension: Personas Plus - C:\Dokumente und Einstellungen\******\Anwendungsdaten\Mozilla\Firefox\Profiles\zix0i0wy.default\Extensions\personas@christopher.beard.xpi [2012-12-15]
FF Extension: Skype Click to Call - C:\Programme\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2014-06-26]
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Programme\McAfee\SiteAdvisor
FF Extension: McAfee SiteAdvisor - C:\Programme\McAfee\SiteAdvisor [2012-05-10]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2012-06-24]
FF HKLM\...\Firefox\Extensions: [quick_start@gmail.com] - C:\Dokumente und Einstellungen\******\Anwendungsdaten\Mozilla\Firefox\Profiles\zix0i0wy.default\extensions\quick_start@gmail.com
FF HKLM\...\Firefox\Extensions: [faststartff@gmail.com] - C:\Dokumente und Einstellungen\Martina\Anwendungsdaten\Mozilla\Firefox\Profiles\ylidlgq2.default\extensions\faststartff@gmail.com
FF HKLM\...\Firefox\Extensions: [shortcutff@gmail.com] - C:\Dokumente und Einstellungen\Martina\Anwendungsdaten\Mozilla\Firefox\Profiles\ylidlgq2.default\extensions\shortcutff@gmail.com

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

Locked "e55f1a183fbfe661" service could not be unlocked. <===== ATTENTION

R2 AOL ACS; C:\Programme\Gemeinsame Dateien\AOL\ACS\AOLAcsd.exe [46640 2006-10-23] (AOL LLC)
R2 Apple Mobile Device; C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\AppleMobileDeviceService.exe [43336 2014-02-12] (Apple Inc.)
R3 BrYNSvc; C:\Programme\Browny02\BrYNSvc.exe [245760 2010-01-25] (Brother Industries, Ltd.) [File not signed]
R2 DeviceFinderService; C:\Programme\Sony\PlayMemories Home\dfs.exe [149088 2012-11-27] ()
S2 HomeNetSvc; C:\Programme\Gemeinsame Dateien\Mcafee\Platform\McSvcHost\McSvHost.exe [281560 2013-07-30] (McAfee, Inc.)
R3 iPod Service; C:\Programme\iPod\bin\iPodService.exe [553288 2014-05-26] (Apple Inc.)
R2 JavaQuickStarterService; C:\Programme\Java\jre7\bin\jqs.exe [182184 2013-06-23] (Oracle Corporation)
R2 McAfee SiteAdvisor Service; C:\Programme\Gemeinsame Dateien\Mcafee\McSvcHost\McSvHost.exe [167784 2012-08-31] (McAfee, Inc.)
S2 McAPExe; C:\Programme\McAfee\MSC\McAPExe.exe [145568 2014-04-25] (McAfee, Inc.)
U2 mcbootdelaystartsvc; C:\Programme\Gemeinsame Dateien\Mcafee\Platform\McSvcHost\McSvHost.exe [281560 2013-07-30] (McAfee, Inc.)
S2 McMPFSvc; C:\Programme\Gemeinsame Dateien\Mcafee\Platform\McSvcHost\McSvHost.exe [281560 2013-07-30] (McAfee, Inc.)
R2 McNaiAnn; C:\Programme\Gemeinsame Dateien\Mcafee\Platform\McSvcHost\McSvHost.exe [281560 2013-07-30] (McAfee, Inc.)
S3 McODS; C:\Programme\McAfee\VirusScan\mcods.exe [471592 2013-08-02] (McAfee, Inc.)
R2 mcpltsvc; C:\Programme\Gemeinsame Dateien\Mcafee\Platform\McSvcHost\McSvHost.exe [281560 2013-07-30] (McAfee, Inc.)
S2 McProxy; C:\Programme\Gemeinsame Dateien\Mcafee\Platform\McSvcHost\McSvHost.exe [281560 2013-07-30] (McAfee, Inc.)
R2 MDM; C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7DEBUG\mdm.exe [335872 2006-10-26] (Microsoft Corporation) [File not signed]
S2 mfecore; C:\Programme\Gemeinsame Dateien\McAfee\AMCore\mcshield.exe [655936 2014-06-18] (McAfee, Inc.)
S2 mfefire; C:\Programme\Gemeinsame Dateien\McAfee\SystemCore\\mfefire.exe [169800 2014-06-20] (McAfee, Inc.)
S2 mfevtp; C:\WINDOWS\system32\mfevtps.exe [179600 2014-06-20] (McAfee, Inc.)
S3 MozillaMaintenance; C:\Programme\Mozilla Maintenance Service\maintenanceservice.exe [119408 2014-06-26] (Mozilla Foundation)
R2 nvUpdatusService; C:\Programme\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [1259296 2013-01-31] (NVIDIA Corporation)
S3 odserv; C:\Programme\Gemeinsame Dateien\Microsoft Shared\OFFICE12\ODSERV.EXE [440696 2011-07-20] (Microsoft Corporation)
S3 ose; C:\Programme\Gemeinsame Dateien\Microsoft Shared\Source Engine\OSE.EXE [145184 2006-10-26] (Microsoft Corporation)
R2 PMBDeviceInfoProvider; C:\Programme\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe [479840 2012-11-27] (Sony Corporation)
R2 Radio.fx; D:\Tobit Radio.fx\Server\rfx-server.exe [3673944 2011-11-18] ()
R2 Skype C2C Service; C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Skype\Toolbars\Skype C2C Service\c2c_service.exe [3064000 2012-10-02] (Skype Technologies S.A.)
S2 SkypeUpdate; C:\Programme\Skype\Updater\Updater.exe [172192 2013-10-23] (Skype Technologies)
R2 UMVPFSrv; C:\Programme\Gemeinsame Dateien\logishrd\LVMVFM\UMVPFSrv.exe [450848 2012-01-18] (Logitech Inc.)
R2 winzipersvc; C:\Programme\WinZipper\winzipersvc.exe [425104 2014-02-26] (Taiwan Shui Mu Chih Ching Technology Limited.)
S3 WMPNetworkSvc; C:\Programme\Windows Media Player\WMPNetwk.exe [920576 2006-11-03] (Microsoft Corporation)
S2 Util WebConnect; "C:\Programme\WebConnect\bin\utilWebConnect.exe" [X]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R3 3xHybrid; C:\WINDOWS\System32\DRIVERS\3xHybrid.sys [945152 2004-10-06] () [File not signed]
R0 ACPI; C:\WINDOWS\System32\DRIVERS\ACPI.sys [188800 2008-04-14] () [File not signed]
S4 ACPIEC; C:\WINDOWS\system32\Drivers\ACPIEC.sys [12160 2004-08-04] () [File not signed]
S3 aec; C:\WINDOWS\System32\drivers\aec.sys [142592 2008-04-13] () [File not signed]
R1 AFD; C:\WINDOWS\System32\drivers\afd.sys [138496 2011-08-17] () [File not signed]
S3 AMBFilt; C:\WINDOWS\System32\drivers\AMBFilt.sys [1656960 2009-06-26] () [File not signed]
R1 AmdPPM; C:\WINDOWS\System32\DRIVERS\AmdPPM.sys [33792 2007-04-16] () [File not signed]
S3 androidusb; C:\WINDOWS\System32\Drivers\ssadadb.sys [30312 2012-06-27] () [File not signed]
S3 AsyncMac; C:\WINDOWS\System32\DRIVERS\asyncmac.sys [14336 2008-04-14] () [File not signed]
R0 atapi; C:\WINDOWS\System32\DRIVERS\atapi.sys [96512 2008-04-14] () [File not signed]
S3 Atmarpc; C:\WINDOWS\System32\DRIVERS\atmarpc.sys [59904 2008-04-14] () [File not signed]
R3 audstub; C:\WINDOWS\System32\DRIVERS\audstub.sys [3072 2001-08-17] () [File not signed]
R1 Beep; C:\WINDOWS\system32\Drivers\Beep.sys [4224 2004-08-04] () [File not signed]
S3 BrScnUsb; C:\WINDOWS\System32\DRIVERS\BrScnUsb.sys [15295 2004-10-15] () [File not signed]
S4 cbidf2k; C:\WINDOWS\system32\Drivers\cbidf2k.sys [13952 2004-08-04] () [File not signed]
S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2008-04-14] () [File not signed]
S1 Cdaudio; C:\WINDOWS\system32\Drivers\Cdaudio.sys [18688 2004-08-04] () [File not signed]
R4 Cdfs; C:\WINDOWS\system32\Drivers\Cdfs.sys [63744 2008-04-14] () [File not signed]
R1 Cdrom; C:\WINDOWS\System32\DRIVERS\cdrom.sys [62976 2008-04-14] () [File not signed]
S3 cfwids; C:\WINDOWS\System32\drivers\cfwids.sys [62832 2014-06-20] () [File not signed]
S3 dgderdrv; C:\WINDOWS\System32\drivers\dgderdrv.sys [20032 2012-12-18] () [File not signed]
S3 dg_ssudbus; C:\WINDOWS\System32\DRIVERS\ssudbus.sys [83168 2012-09-20] () [File not signed]
R0 Disk; C:\WINDOWS\System32\DRIVERS\disk.sys [36352 2008-04-14] () [File not signed]
S4 dmboot; C:\WINDOWS\System32\drivers\dmboot.sys [800384 2008-04-14] () [File not signed]
S4 dmio; C:\WINDOWS\System32\drivers\dmio.sys [154112 2008-04-14] () [File not signed]
S4 dmload; C:\WINDOWS\System32\drivers\dmload.sys [5888 2004-08-04] () [File not signed]
S3 DMusic; C:\WINDOWS\System32\drivers\DMusic.sys [52864 2008-04-14] () [File not signed]
S3 drmkaud; C:\WINDOWS\System32\drivers\drmkaud.sys [2944 2008-04-14] () [File not signed]
R4 Fastfat; C:\WINDOWS\system32\Drivers\Fastfat.sys [143744 2008-04-14] () [File not signed]
S1 Fdc; C:\WINDOWS\system32\Drivers\Fdc.sys [27392 2008-04-14] () [File not signed]
R1 Fips; C:\WINDOWS\system32\Drivers\Fips.sys [44672 2008-04-14] () [File not signed]
S1 Flpydisk; C:\WINDOWS\system32\Drivers\Flpydisk.sys [20480 2008-04-14] () [File not signed]
R0 FltMgr; C:\WINDOWS\System32\drivers\fltmgr.sys [129792 2008-04-14] () [File not signed]
U1 Fs_Rec; C:\WINDOWS\system32\Drivers\Fs_Rec.sys [7936 2004-08-04] () [File not signed]
R0 Ftdisk; C:\WINDOWS\System32\DRIVERS\ftdisk.sys [126336 2004-08-04] () [File not signed]
R3 GEARAspiWDM; C:\WINDOWS\System32\DRIVERS\GEARAspiWDM.sys [26840 2012-08-21] () [File not signed]
R3 Gpc; C:\WINDOWS\System32\DRIVERS\msgpc.sys [35072 2008-04-14] () [File not signed]
R3 HDAudBus; C:\WINDOWS\System32\DRIVERS\HDAudBus.sys [144384 2008-04-13] () [File not signed]
R3 hidusb; C:\WINDOWS\System32\DRIVERS\hidusb.sys [10368 2008-04-14] () [File not signed]
S3 HipShieldK; C:\WINDOWS\System32\drivers\HipShieldK.sys [147912 2013-09-23] () [File not signed]
R3 HTTP; C:\WINDOWS\System32\Drivers\HTTP.sys [265728 2009-10-20] () [File not signed]
S1 i8042prt; C:\WINDOWS\system32\Drivers\i8042prt.sys [52992 2008-04-14] () [File not signed]
R1 Imapi; C:\WINDOWS\System32\DRIVERS\imapi.sys [42112 2008-04-14] () [File not signed]
S3 Ip6Fw; C:\WINDOWS\System32\drivers\ip6fw.sys [36608 2008-04-14] () [File not signed]
S3 IpFilterDriver; C:\WINDOWS\System32\DRIVERS\ipfltdrv.sys [32896 2004-08-04] () [File not signed]
S3 IpInIp; C:\WINDOWS\System32\DRIVERS\ipinip.sys [20864 2008-04-14] () [File not signed]
R3 IpNat; C:\WINDOWS\System32\DRIVERS\ipnat.sys [152832 2008-04-14] () [File not signed]
R1 IPSec; C:\WINDOWS\System32\DRIVERS\ipsec.sys [75264 2008-04-14] () [File not signed]
S3 IRENUM; C:\WINDOWS\System32\DRIVERS\irenum.sys [11264 2008-04-14] () [File not signed]
R0 isapnp; C:\WINDOWS\System32\DRIVERS\isapnp.sys [37632 2008-04-14] () [File not signed]
R1 Kbdclass; C:\WINDOWS\System32\DRIVERS\kbdclass.sys [25216 2008-04-14] () [File not signed]
R1 kbdhid; C:\WINDOWS\System32\DRIVERS\kbdhid.sys [14720 2008-04-14] () [File not signed]
R3 kmixer; C:\WINDOWS\System32\drivers\kmixer.sys [172416 2008-04-14] () [File not signed]
S3 KMWDFILTER; C:\WINDOWS\System32\DRIVERS\KMWDFILTER.sys [17408 2008-10-09] () [File not signed]
R0 KSecDD; C:\WINDOWS\system32\Drivers\KSecDD.sys [92928 2009-06-24] () [File not signed]
S3 LVRS; C:\WINDOWS\System32\DRIVERS\lvrs.sys [312096 2012-01-18] () [File not signed]
S3 LVUVC; C:\WINDOWS\System32\DRIVERS\lvuvc.sys [4332960 2012-01-18] () [File not signed]
S3 mfeapfk; C:\WINDOWS\System32\drivers\mfeapfk.sys [135968 2014-06-20] () [File not signed]
S3 mfeavfk; C:\WINDOWS\System32\drivers\mfeavfk.sys [238176 2014-06-20] (McAfee, Inc.)
S3 mfebopk; C:\WINDOWS\System32\drivers\mfebopk.sys [67816 2014-06-20] () [File not signed]
S3 mfefirek; C:\WINDOWS\System32\drivers\mfefirek.sys [369248 2014-06-20] () [File not signed]
S0 mfehidk; C:\WINDOWS\System32\drivers\mfehidk.sys [576048 2014-06-20] (McAfee, Inc.)
S3 mfencbdc; C:\WINDOWS\System32\DRIVERS\mfencbdc.sys [349192 2014-06-18] () [File not signed]
S3 mfencrk; C:\WINDOWS\System32\DRIVERS\mfencrk.sys [81296 2014-06-18] () [File not signed]
S3 mfendisk; C:\WINDOWS\System32\DRIVERS\mfendisk.sys [87520 2014-06-20] () [File not signed]
S3 mfendiskmp; C:\WINDOWS\System32\DRIVERS\mfendisk.sys [87520 2014-06-20] () [File not signed]
S1 mfetdi2k; C:\WINDOWS\System32\drivers\mfetdi2k.sys [93624 2014-06-20] (McAfee, Inc.)
R1 mnmdd; C:\WINDOWS\system32\Drivers\mnmdd.sys [4224 2004-08-04] () [File not signed]
S3 Modem; C:\WINDOWS\system32\Drivers\Modem.sys [30336 2008-04-14] () [File not signed]
S3 MonFilt; C:\WINDOWS\System32\drivers\MonFilt.sys [1389056 2008-12-02] () [File not signed]
R1 Mouclass; C:\WINDOWS\System32\DRIVERS\mouclass.sys [23552 2008-04-14] () [File not signed]
R3 mouhid; C:\WINDOWS\System32\DRIVERS\mouhid.sys [12288 2004-08-04] () [File not signed]
R0 MountMgr; C:\WINDOWS\system32\Drivers\MountMgr.sys [42368 2008-04-14] () [File not signed]
S3 MPE; C:\WINDOWS\System32\DRIVERS\MPE.sys [15232 2008-04-14] () [File not signed]
R3 MRxDAV; C:\WINDOWS\System32\DRIVERS\mrxdav.sys [180608 2008-04-14] () [File not signed]
R1 MRxSmb; C:\WINDOWS\System32\DRIVERS\mrxsmb.sys [456320 2011-07-15] () [File not signed]
R1 Msfs; C:\WINDOWS\system32\Drivers\Msfs.sys [19072 2008-04-14] () [File not signed]
S3 MSKSSRV; C:\WINDOWS\System32\drivers\MSKSSRV.sys [7552 2008-04-14] () [File not signed]
S3 MSPCLOCK; C:\WINDOWS\System32\drivers\MSPCLOCK.sys [5376 2008-04-14] () [File not signed]
S3 MSPQM; C:\WINDOWS\System32\drivers\MSPQM.sys [4992 2008-04-14] () [File not signed]
R3 mssmbios; C:\WINDOWS\System32\DRIVERS\mssmbios.sys [15488 2008-04-14] () [File not signed]
S3 MSTEE; C:\WINDOWS\System32\drivers\MSTEE.sys [5504 2008-04-14] () [File not signed]
R0 Mup; C:\WINDOWS\system32\Drivers\Mup.sys [105472 2011-04-21] () [File not signed]
S3 NABTSFEC; C:\WINDOWS\System32\DRIVERS\NABTSFEC.sys [85248 2008-04-14] () [File not signed]
R0 NDIS; C:\WINDOWS\system32\Drivers\NDIS.sys [182656 2008-04-14] () [File not signed]
S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2008-04-14] () [File not signed]
R3 NdisTapi; C:\WINDOWS\System32\DRIVERS\ndistapi.sys [10496 2011-07-08] () [File not signed]
R3 Ndisuio; C:\WINDOWS\System32\DRIVERS\ndisuio.sys [14592 2008-04-14] () [File not signed]
R3 NdisWan; C:\WINDOWS\System32\DRIVERS\ndiswan.sys [91520 2008-04-14] () [File not signed]
R3 NDProxy; C:\WINDOWS\system32\Drivers\NDProxy.sys [40960 2013-11-27] () [File not signed]
R1 NetBIOS; C:\WINDOWS\System32\DRIVERS\netbios.sys [34688 2008-04-14] () [File not signed]
R1 NetBT; C:\WINDOWS\System32\DRIVERS\netbt.sys [162816 2008-04-14] () [File not signed]
R1 Npfs; C:\WINDOWS\system32\Drivers\Npfs.sys [30848 2008-04-14] () [File not signed]
R4 Ntfs; C:\WINDOWS\system32\Drivers\Ntfs.sys [574976 2008-04-14] () [File not signed]
R1 Null; C:\WINDOWS\system32\Drivers\Null.sys [2944 2004-08-04] () [File not signed]
R3 nv; C:\WINDOWS\System32\DRIVERS\nv4_mini.sys [12648960 2013-03-23] () [File not signed]
R3 NVENETFD; C:\WINDOWS\System32\DRIVERS\NVENETFD.sys [54400 2008-03-25] () [File not signed]
R0 nvgts; C:\WINDOWS\System32\DRIVERS\nvgts.sys [145952 2008-08-18] () [File not signed]
R3 nvnetbus; C:\WINDOWS\System32\DRIVERS\nvnetbus.sys [22016 2008-03-25] () [File not signed]
S3 NwlnkFlt; C:\WINDOWS\System32\DRIVERS\nwlnkflt.sys [12416 2004-08-04] () [File not signed]
S3 NwlnkFwd; C:\WINDOWS\System32\DRIVERS\nwlnkfwd.sys [32512 2004-08-04] () [File not signed]
S3 Parport; C:\WINDOWS\system32\Drivers\Parport.sys [80384 2008-04-14] () [File not signed]
R0 PartMgr; C:\WINDOWS\system32\Drivers\PartMgr.sys [19712 2008-04-14] () [File not signed]
S2 ParVdm; C:\WINDOWS\system32\Drivers\ParVdm.sys [7040 2004-08-04] () [File not signed]
R0 PCI; C:\WINDOWS\System32\DRIVERS\pci.sys [68224 2008-04-14] () [File not signed]
R0 PCIIde; C:\WINDOWS\System32\DRIVERS\pciide.sys [3328 2004-08-04] () [File not signed]
S4 Pcmcia; C:\WINDOWS\system32\Drivers\Pcmcia.sys [120576 2008-04-14] () [File not signed]
S3 PID_PEPI; C:\WINDOWS\System32\DRIVERS\LV302V32.SYS [2687512 2009-04-30] () [File not signed]
R3 PptpMiniport; C:\WINDOWS\System32\DRIVERS\raspptp.sys [48384 2008-04-14] () [File not signed]
S1 Processor; C:\WINDOWS\System32\DRIVERS\processr.sys [39936 2008-04-14] () [File not signed]
R3 PSched; C:\WINDOWS\System32\DRIVERS\psched.sys [69120 2008-04-14] () [File not signed]
R3 Ptilink; C:\WINDOWS\System32\DRIVERS\ptilink.sys [17792 2004-08-04] () [File not signed]
R1 RasAcd; C:\WINDOWS\System32\DRIVERS\rasacd.sys [8832 2004-08-04] () [File not signed]
R3 Rasl2tp; C:\WINDOWS\System32\DRIVERS\rasl2tp.sys [51328 2008-04-14] () [File not signed]
R3 RasPppoe; C:\WINDOWS\System32\DRIVERS\raspppoe.sys [41472 2008-04-14] () [File not signed]
R3 Raspti; C:\WINDOWS\System32\DRIVERS\raspti.sys [16512 2004-08-04] () [File not signed]
R1 Rdbss; C:\WINDOWS\System32\DRIVERS\rdbss.sys [175744 2008-04-14] () [File not signed]
R1 RDPCDD; C:\WINDOWS\System32\DRIVERS\RDPCDD.sys [4224 2004-08-04] () [File not signed]
S3 RDPWD; C:\WINDOWS\system32\Drivers\RDPWD.sys [139784 2012-07-04] () [File not signed]
R1 redbook; C:\WINDOWS\System32\DRIVERS\redbook.sys [57728 2008-04-14] () [File not signed]
S3 Secdrv; C:\WINDOWS\System32\DRIVERS\secdrv.sys [20480 2008-04-13] () [File not signed]
R3 Serenum; C:\WINDOWS\System32\DRIVERS\serenum.sys [15744 2008-04-14] () [File not signed]
R1 Serial; C:\WINDOWS\System32\DRIVERS\serial.sys [65536 2008-04-14] () [File not signed]
S1 Sfloppy; C:\WINDOWS\system32\Drivers\Sfloppy.sys [11392 2008-04-14] () [File not signed]
S3 SLIP; C:\WINDOWS\System32\DRIVERS\SLIP.sys [11136 2008-04-14] () [File not signed]
S3 splitter; C:\WINDOWS\System32\drivers\splitter.sys [6272 2008-04-14] () [File not signed]
R0 sr; C:\WINDOWS\System32\DRIVERS\sr.sys [73472 2008-04-14] () [File not signed]
R3 Srv; C:\WINDOWS\System32\DRIVERS\srv.sys [357888 2011-02-17] () [File not signed]
S3 ssadbus; C:\WINDOWS\System32\DRIVERS\ssadbus.sys [121064 2012-06-27] () [File not signed]
S3 ssadmdfl; C:\WINDOWS\System32\DRIVERS\ssadmdfl.sys [12776 2012-06-27] () [File not signed]
S3 ssadmdm; C:\WINDOWS\System32\DRIVERS\ssadmdm.sys [136808 2012-06-27] () [File not signed]
S3 ssadserd; C:\WINDOWS\System32\DRIVERS\ssadserd.sys [114280 2012-06-27] () [File not signed]
S3 ssudmdm; C:\WINDOWS\System32\DRIVERS\ssudmdm.sys [181344 2012-09-20] () [File not signed]
S3 ss_bus; C:\WINDOWS\System32\DRIVERS\ss_bus.sys [98560 2012-06-27] () [File not signed]
S3 ss_mdfl; C:\WINDOWS\System32\DRIVERS\ss_mdfl.sys [14848 2012-06-27] () [File not signed]
S3 ss_mdm; C:\WINDOWS\System32\DRIVERS\ss_mdm.sys [123776 2012-06-27] () [File not signed]
S3 streamip; C:\WINDOWS\System32\DRIVERS\StreamIP.sys [15232 2008-04-14] () [File not signed]
R3 swenum; C:\WINDOWS\System32\DRIVERS\swenum.sys [4352 2008-04-14] () [File not signed]
S3 swmidi; C:\WINDOWS\System32\drivers\swmidi.sys [56576 2008-04-14] () [File not signed]
R3 sysaudio; C:\WINDOWS\System32\drivers\sysaudio.sys [60800 2008-04-14] () [File not signed]
R1 Tcpip; C:\WINDOWS\System32\DRIVERS\tcpip.sys [361600 2008-06-20] () [File not signed]
S3 TDPIPE; C:\WINDOWS\system32\Drivers\TDPIPE.sys [12040 2008-04-14] () [File not signed]
S3 TDTCP; C:\WINDOWS\system32\Drivers\TDTCP.sys [21896 2008-04-14] () [File not signed]
R1 TermDD; C:\WINDOWS\System32\DRIVERS\termdd.sys [40840 2008-04-14] () [File not signed]
S4 Udfs; C:\WINDOWS\system32\Drivers\Udfs.sys [66048 2008-04-14] () [File not signed]
R3 Update; C:\WINDOWS\System32\DRIVERS\update.sys [384768 2008-04-14] () [File not signed]
S3 USBAAPL; C:\WINDOWS\System32\Drivers\usbaapl.sys [45056 2012-12-13] () [File not signed]
S3 usbaudio; C:\WINDOWS\System32\drivers\usbaudio.sys [60160 2013-07-17] () [File not signed]
R3 usbccgp; C:\WINDOWS\System32\DRIVERS\usbccgp.sys [32384 2013-08-09] () [File not signed]
R3 usbehci; C:\WINDOWS\System32\DRIVERS\usbehci.sys [30336 2009-03-18] () [File not signed]
R3 usbhub; C:\WINDOWS\System32\DRIVERS\usbhub.sys [59520 2008-04-14] () [File not signed]
R3 usbohci; C:\WINDOWS\System32\DRIVERS\usbohci.sys [17152 2008-04-14] () [File not signed]
S3 usbprint; C:\WINDOWS\System32\DRIVERS\usbprint.sys [25856 2008-04-14] () [File not signed]
R3 USBSTOR; C:\WINDOWS\System32\DRIVERS\USBSTOR.SYS [26368 2008-04-14] () [File not signed]
S3 usbvideo; C:\WINDOWS\System32\Drivers\usbvideo.sys [123008 2013-07-17] () [File not signed]
R1 VgaSave; C:\WINDOWS\System32\drivers\vga.sys [20992 2008-04-14] () [File not signed]
R3 VIAHdAudAddService; C:\WINDOWS\System32\drivers\viahduaa.sys [1617408 2009-11-25] () [File not signed]
R0 VolSnap; C:\WINDOWS\system32\Drivers\VolSnap.sys [53760 2008-04-14] () [File not signed]
S3 Wanarp; C:\WINDOWS\System32\DRIVERS\wanarp.sys [34560 2008-04-14] () [File not signed]
R3 wanatw; C:\WINDOWS\System32\DRIVERS\wanatw4.sys [33588 2003-01-10] () [File not signed]
S3 wceusbsh; C:\WINDOWS\System32\DRIVERS\wceusbsh.sys [28672 2006-11-06] () [File not signed]
S3 Wdf01000; C:\WINDOWS\System32\DRIVERS\Wdf01000.sys [492000 2006-11-02] () [File not signed]
R3 wdmaud; C:\WINDOWS\System32\drivers\wdmaud.sys [83072 2008-04-14] () [File not signed]
S3 WpdUsb; C:\WINDOWS\System32\DRIVERS\wpdusb.sys [38528 2006-10-18] () [File not signed]
S3 WSTCODEC; C:\WINDOWS\System32\DRIVERS\WSTCODEC.SYS [19200 2008-04-14] () [File not signed]
R0 WudfPf; C:\WINDOWS\System32\DRIVERS\WudfPf.sys [77568 2006-09-28] () [File not signed]
S3 WudfRd; C:\WINDOWS\System32\DRIVERS\wudfrd.sys [82944 2006-09-28] () [File not signed]
U5 e55f1a183fbfe661; C:\Windows\System32\Drivers\e55f1a183fbfe661.sys [36480 2014-07-12] () <===== ATTENTION Necurs Rootkit?
S4 IntelIde; No ImagePath
U0 mfewfpk; 
U5 ScsiPort; C:\WINDOWS\system32\drivers\scsiport.sys [96384 2008-04-14] () [File not signed]
U1 WS2IFSL; 

==================== NetSvcs (Whitelisted) ===================


(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-07-30 00:24 - 2014-07-30 00:24 - 00000000 ____D () C:\FRST
2014-07-30 00:22 - 2014-07-30 00:23 - 00000000 ____D () C:\Dokumente und Einstellungen\******\Desktop\Protokolle
2014-07-30 00:22 - 2014-07-30 00:22 - 00000000 _____ () C:\Dokumente und Einstellungen\******\defogger_reenable
2014-07-29 20:08 - 2014-07-29 20:18 - 00110296 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2014-07-29 20:08 - 2014-07-29 20:08 - 00000749 _____ () C:\Dokumente und Einstellungen\All Users\Desktop\ Malwarebytes Anti-Malware .lnk
2014-07-29 20:08 - 2014-07-29 20:08 - 00000000 ____D () C:\Programme\ Malwarebytes Anti-Malware 
2014-07-29 20:08 - 2014-07-29 20:08 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\ Malwarebytes Anti-Malware 
2014-07-29 20:08 - 2014-07-29 20:08 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Malwarebytes
2014-07-29 20:08 - 2014-05-12 07:26 - 00053208 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2014-07-29 20:08 - 2014-05-12 07:25 - 00023256 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2014-07-27 22:50 - 2014-06-20 11:05 - 00087520 _____ () C:\WINDOWS\system32\Drivers\mfendisk.sys
2014-07-27 22:49 - 2014-06-20 11:05 - 00087520 _____ (McAfee, Inc.) C:\WINDOWS\system32\Drivers\mfendisk.sys.8115.deleteme
2014-07-21 20:21 - 2014-07-21 22:05 - 00000000 ____D () C:\Dokumente und Einstellungen\Martina\Desktop\Fotos 3829 - 4642
2014-07-15 20:18 - 2014-07-15 20:19 - 00541592 _____ (McAfee, Inc.) C:\Dokumente und Einstellungen\******\Desktop\MVTInstaller.exe
2014-07-15 20:08 - 2014-07-30 00:20 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\McAfee
2014-07-14 18:44 - 2014-07-14 18:44 - 00000000 ____D () C:\Dokumente und Einstellungen\******\Anwendungsdaten\McAfee
2014-07-12 08:34 - 2014-07-12 08:34 - 00036480 _____ () C:\WINDOWS\system32\Drivers\e55f1a183fbfe661.sys
2014-07-10 22:32 - 2014-07-10 22:37 - 79864488 _____ () C:\Dokumente und Einstellungen\******\Desktop\Mojo- Jack White presents the Best of Third Man Records.zip
2014-07-10 14:29 - 2014-07-10 14:29 - 00000000 ____D () C:\Dokumente und Einstellungen\Martina\Desktop\Gerds Pavillon
2014-07-10 13:58 - 2014-07-12 08:47 - 00000000 ____D () C:\Dokumente und Einstellungen\Martina\Desktop\Landhausbrunch 20 07 2014
2014-07-10 10:23 - 2014-07-10 10:23 - 00001584 _____ () C:\Dokumente und Einstellungen\All Users\Desktop\QuickTime Player.lnk
2014-07-10 10:23 - 2014-07-10 10:23 - 00000000 ____D () C:\Programme\QuickTime
2014-07-10 10:23 - 2014-07-10 10:23 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\QuickTime
2014-07-08 21:02 - 2014-07-28 17:38 - 00296690 _____ () C:\WINDOWS\setupapi.log

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-07-30 00:24 - 2014-07-30 00:24 - 00000000 ____D () C:\FRST
2014-07-30 00:24 - 2012-05-09 18:11 - 00000000 ____D () C:\Dokumente und Einstellungen\******\Lokale Einstellungen\Temp
2014-07-30 00:23 - 2014-07-30 00:22 - 00000000 ____D () C:\Dokumente und Einstellungen\******\Desktop\Protokolle
2014-07-30 00:22 - 2014-07-30 00:22 - 00000000 _____ () C:\Dokumente und Einstellungen\******\defogger_reenable
2014-07-30 00:22 - 2012-05-09 18:11 - 00000000 ____D () C:\Dokumente und Einstellungen\******
2014-07-30 00:20 - 2014-07-15 20:08 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\McAfee
2014-07-30 00:20 - 2012-05-10 20:46 - 00001591 _____ () C:\Dokumente und Einstellungen\All Users\Desktop\McAfee AntiVirus Plus.lnk
2014-07-30 00:17 - 2014-02-26 19:41 - 00000000 ____D () C:\Programme\WinZipper
2014-07-30 00:16 - 2014-03-28 14:02 - 00000226 _____ () C:\WINDOWS\Tasks\Ende des Supports für Microsoft Windows XP –  Benachrichtigung – Anmeldung.job
2014-07-30 00:16 - 2012-06-22 21:55 - 00000382 _____ () C:\WINDOWS\Tasks\ProgramUpdateCheck.job
2014-07-30 00:16 - 2012-05-09 18:46 - 00000259 _____ () C:\WINDOWS\wiadebug.log
2014-07-30 00:16 - 2012-05-09 18:46 - 00000050 _____ () C:\WINDOWS\wiaservc.log
2014-07-30 00:16 - 2012-05-09 18:10 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-07-30 00:16 - 2004-08-04 14:00 - 00000669 _____ () C:\WINDOWS\win.ini
2014-07-29 20:54 - 2012-05-09 18:11 - 00000190 ___SH () C:\Dokumente und Einstellungen\******\ntuser.ini
2014-07-29 20:54 - 2012-05-09 18:10 - 00032552 _____ () C:\WINDOWS\SchedLgU.Txt
2014-07-29 20:54 - 2012-05-09 17:56 - 01984878 _____ () C:\WINDOWS\WindowsUpdate.log
2014-07-29 20:42 - 2013-08-20 22:42 - 00000420 _____ () C:\WINDOWS\Tasks\At1.job
2014-07-29 20:36 - 2014-06-12 21:43 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\IePluginServices
2014-07-29 20:36 - 2014-01-07 19:19 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\WPM
2014-07-29 20:36 - 2012-05-09 19:11 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2467659$
2014-07-29 20:35 - 2014-02-26 19:41 - 00000000 ____D () C:\Dokumente und Einstellungen\******\Anwendungsdaten\SupTab
2014-07-29 20:35 - 2013-11-23 15:19 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\eSafe
2014-07-29 20:35 - 2012-05-10 22:24 - 00000000 ____D () C:\Dokumente und Einstellungen\Martina\Lokale Einstellungen\Temp
2014-07-29 20:31 - 2012-05-10 10:16 - 00000884 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-07-29 20:18 - 2014-07-29 20:08 - 00110296 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2014-07-29 20:08 - 2014-07-29 20:08 - 00000749 _____ () C:\Dokumente und Einstellungen\All Users\Desktop\ Malwarebytes Anti-Malware .lnk
2014-07-29 20:08 - 2014-07-29 20:08 - 00000000 ____D () C:\Programme\ Malwarebytes Anti-Malware 
2014-07-29 20:08 - 2014-07-29 20:08 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\ Malwarebytes Anti-Malware 
2014-07-29 20:08 - 2014-07-29 20:08 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Malwarebytes
2014-07-29 20:08 - 2012-05-09 18:44 - 00000000 ___RD () C:\Programme
2014-07-29 20:08 - 2012-05-09 18:43 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme
2014-07-29 20:07 - 2012-08-06 10:07 - 00017408 _____ () C:\Dokumente und Einstellungen\******\Lokale Einstellungen\Anwendungsdaten\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-07-29 20:03 - 2012-07-26 16:34 - 00000000 ____D () C:\Dokumente und Einstellungen\Gast\Lokale Einstellungen\Temp
2014-07-29 19:49 - 2012-05-10 22:24 - 00000190 ___SH () C:\Dokumente und Einstellungen\Martina\ntuser.ini
2014-07-29 16:50 - 2012-05-09 18:11 - 00000000 ___HD () C:\Dokumente und Einstellungen\******\Netzwerkumgebung
2014-07-29 16:23 - 2004-08-04 14:00 - 00013646 _____ () C:\WINDOWS\system32\wpa.dbl
2014-07-28 17:38 - 2014-07-08 21:02 - 00296690 _____ () C:\WINDOWS\setupapi.log
2014-07-28 16:42 - 2012-05-10 20:46 - 00000000 ____D () C:\Programme\Gemeinsame Dateien\Mcafee
2014-07-23 20:22 - 2012-05-10 10:16 - 00699056 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2014-07-23 20:22 - 2012-05-10 10:16 - 00071344 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2014-07-23 13:09 - 2014-01-18 15:08 - 00000000 ____D () C:\Dokumente und Einstellungen\Martina\Anwendungsdaten\Dropbox
2014-07-21 22:05 - 2014-07-21 20:21 - 00000000 ____D () C:\Dokumente und Einstellungen\Martina\Desktop\Fotos 3829 - 4642
2014-07-15 21:23 - 2012-05-09 17:56 - 00000749 __RHC () C:\WINDOWS\system32\sapi.cpl.manifest
2014-07-15 21:23 - 2012-05-09 17:56 - 00000749 __RHC () C:\WINDOWS\system32\nwc.cpl.manifest
2014-07-15 21:23 - 2012-05-09 17:56 - 00000749 __RHC () C:\WINDOWS\system32\ncpa.cpl.manifest
2014-07-15 21:23 - 2012-05-09 17:56 - 00000749 __RHC () C:\WINDOWS\system32\cdplayer.exe.manifest
2014-07-15 21:23 - 2012-05-09 17:56 - 00000749 ___RH () C:\WINDOWS\WindowsShell.Manifest
2014-07-15 21:23 - 2012-05-09 17:56 - 00000749 ___RH () C:\WINDOWS\system32\wuaucpl.cpl.manifest
2014-07-15 20:23 - 2012-05-09 17:56 - 00023392 _____ () C:\WINDOWS\system32\nscompat.tlb
2014-07-15 20:23 - 2012-05-09 17:56 - 00016832 _____ () C:\WINDOWS\system32\amcompat.tlb
2014-07-15 20:19 - 2014-07-15 20:18 - 00541592 _____ (McAfee, Inc.) C:\Dokumente und Einstellungen\******\Desktop\MVTInstaller.exe
2014-07-15 20:19 - 2012-05-10 20:46 - 00000000 ____D () C:\Programme\McAfee
2014-07-14 18:53 - 2012-05-09 18:43 - 00180716 _____ () C:\WINDOWS\setupact.log
2014-07-14 18:44 - 2014-07-14 18:44 - 00000000 ____D () C:\Dokumente und Einstellungen\******\Anwendungsdaten\McAfee
2014-07-14 18:44 - 2012-05-10 20:31 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\McAfee
2014-07-12 08:47 - 2014-07-10 13:58 - 00000000 ____D () C:\Dokumente und Einstellungen\Martina\Desktop\Landhausbrunch 20 07 2014
2014-07-12 08:34 - 2014-07-12 08:34 - 00036480 _____ () C:\WINDOWS\system32\Drivers\e55f1a183fbfe661.sys
2014-07-12 07:44 - 2014-01-18 15:08 - 00000000 ____D () C:\Dokumente und Einstellungen\Martina\Anwendungsdaten\DropboxMaster
2014-07-12 07:44 - 2013-09-12 20:06 - 03355641 _____ () C:\WINDOWS\KB2864063.log
2014-07-10 22:37 - 2014-07-10 22:32 - 79864488 _____ () C:\Dokumente und Einstellungen\******\Desktop\Mojo- Jack White presents the Best of Third Man Records.zip
2014-07-10 14:39 - 2013-08-14 09:30 - 00000000 ____D () C:\WINDOWS\system32\MRT
2014-07-10 14:37 - 2012-05-10 21:40 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Microsoft Help
2014-07-10 14:37 - 2012-05-09 19:10 - 93585272 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-07-10 14:36 - 2012-05-10 22:24 - 00000000 ____D () C:\Dokumente und Einstellungen\Martina
2014-07-10 14:29 - 2014-07-10 14:29 - 00000000 ____D () C:\Dokumente und Einstellungen\Martina\Desktop\Gerds Pavillon
2014-07-10 13:38 - 2012-06-03 13:42 - 00012800 ____C () C:\Dokumente und Einstellungen\Martina\Lokale Einstellungen\Anwendungsdaten\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-07-10 10:23 - 2014-07-10 10:23 - 00001584 _____ () C:\Dokumente und Einstellungen\All Users\Desktop\QuickTime Player.lnk
2014-07-10 10:23 - 2014-07-10 10:23 - 00000000 ____D () C:\Programme\QuickTime
2014-07-10 10:23 - 2014-07-10 10:23 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\QuickTime
2014-07-10 10:21 - 2012-05-11 18:32 - 00000276 _____ () C:\WINDOWS\Tasks\AppleSoftwareUpdate.job
2014-07-08 18:58 - 2014-02-12 17:40 - 01059841 _____ () C:\WINDOWS\setupapi.log.0.old
2014-07-08 18:48 - 2014-03-28 14:02 - 00000220 _____ () C:\WINDOWS\Tasks\Ende des Supports für Microsoft Windows XP – Monatliche Benachrichtigung.job

Files to move or delete:
====================
C:\Windows\Tasks\At1.job


Some content of TEMP:
====================
C:\Dokumente und Einstellungen\******\Lokale Einstellungen\Temp\_is4D5.exe
C:\Dokumente und Einstellungen\******\Lokale Einstellungen\Temp\_is4D6.exe
C:\Dokumente und Einstellungen\Martina\Lokale Einstellungen\Temp\AskSLib.dll
C:\Dokumente und Einstellungen\Martina\Lokale Einstellungen\Temp\dotNetFx40_Client_setup.exe
C:\Dokumente und Einstellungen\Martina\Lokale Einstellungen\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmp93esd_.dll
C:\Dokumente und Einstellungen\Martina\Lokale Einstellungen\Temp\ICReinstall_SkypeSetup-16427221-none[1].exe
C:\Dokumente und Einstellungen\Martina\Lokale Einstellungen\Temp\jre-7u5-windows-i586-iftw.exe
C:\Dokumente und Einstellungen\Martina\Lokale Einstellungen\Temp\qc_a402013b_7656_4f6f_b57f_5a8ef69f5fc4_32.exe
C:\Dokumente und Einstellungen\Martina\Lokale Einstellungen\Temp\Quarantine.exe
C:\Dokumente und Einstellungen\Martina\Lokale Einstellungen\Temp\vcredist_x86.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys
[2008-04-14 07:22] - [2008-04-14 07:22] - 0053760 ____A () 

C:\WINDOWS\system32\Drivers\volsnap.sys No Company Name <===== ATTENTION!


==================== End Of Log ============================

3. Addition.txt s. Anhang (leider nur als .zip)

4. Gmer.txt
Beim Start von GMER kam folgende Fehlermeldung (auch im abgesicherten Modus): "LoadDriver("C:\DOKUME~1\*NAME*~1\LOKALE~1\Temp\kwlcrkob.sys") error 0xC0000001: Ein dauerhafter Unterschlüssel kann nicht unter einem temporären übergeordneten Schlüssel erstellt werden."
Im abgesicherten Modus ließ sich folgender Fehler vermeiden: "C:\WINDOWS\system32\config\system: Der Prozess kann nicht auf die Datei zugreifen, da sie von einem anderen Prozess verwendet wird." (bei Start des Programms und bei Start des Scans)
weitere Pfade beim Scan:
~\software
C:\Dokumente und Einstellunegn\******\ntuser.dat

Code:

ATTFilter

GMER 2.1.19357 - hxxp://www.gmer.net
Rootkit scan 2014-07-30 00:51:37
Windows 5.1.2600 Service Pack 3 
Running: tp5i162g.exe


---- Services - GMER 2.1 ----

Service  C:\WINDOWS\System32\Drivers\e55f1a183fbfe661.sys (*** hidden *** )                                        [BOOT] e55f1a183fbfe661                             <-- ROOTKIT !!!

---- Registry - GMER 2.1 ----

Reg      HKLM\SYSTEM\CurrentControlSet\Control\Video\{6E4EE30B-822D-4636-B49E-B82720F06157}\0000@D3D_\x3332\x3331  2089309684
Reg      HKLM\SYSTEM\CurrentControlSet\Control\Video\{DE8CA2BC-35E9-4CEB-8330-EAB7F056F2D0}\0000@D3D_\x3332\x3331  2089309684
Reg      HKLM\SYSTEM\CurrentControlSet\Services\e55f1a183fbfe661@ImagePath                                         \SystemRoot\System32\Drivers\e55f1a183fbfe661.sys
Reg      HKLM\SYSTEM\CurrentControlSet\Services\e55f1a183fbfe661@Group                                             Boot Bus Extender
Reg      HKLM\SYSTEM\CurrentControlSet\Services\e55f1a183fbfe661@ErrorControl                                      0
Reg      HKLM\SYSTEM\CurrentControlSet\Services\e55f1a183fbfe661@Type                                              1
Reg      HKLM\SYSTEM\CurrentControlSet\Services\e55f1a183fbfe661@Start                                             0
Reg      HKLM\SYSTEM\CurrentControlSet\Services\e55f1a183fbfe661@Tag                                               1
Reg      HKLM\SYSTEM\CurrentControlSet\Services\e55f1a183fbfe661@DisplayName                                       syshost.exe
Reg      HKLM\SYSTEM\CurrentControlSet\Services\e55f1a183fbfe661                                                   
Reg      HKLM\SYSTEM\ControlSet003\Control\Video\{6E4EE30B-822D-4636-B49E-B82720F06157}\0000@D3D_\x3332\x3331      2089309684
Reg      HKLM\SYSTEM\ControlSet003\Control\Video\{DE8CA2BC-35E9-4CEB-8330-EAB7F056F2D0}\0000@D3D_\x3332\x3331      2089309684
Reg      HKLM\SYSTEM\ControlSet003\Services\e55f1a183fbfe661@ImagePath                                             \SystemRoot\System32\Drivers\e55f1a183fbfe661.sys
Reg      HKLM\SYSTEM\ControlSet003\Services\e55f1a183fbfe661@Group                                                 Boot Bus Extender
Reg      HKLM\SYSTEM\ControlSet003\Services\e55f1a183fbfe661@ErrorControl                                          0
Reg      HKLM\SYSTEM\ControlSet003\Services\e55f1a183fbfe661@Type                                                  1
Reg      HKLM\SYSTEM\ControlSet003\Services\e55f1a183fbfe661@Start                                                 0
Reg      HKLM\SYSTEM\ControlSet003\Services\e55f1a183fbfe661@Tag                                                   1
Reg      HKLM\SYSTEM\ControlSet003\Services\e55f1a183fbfe661@DisplayName                                           syshost.exe

---- EOF - GMER 2.1 ----

5. Protokoll von Malwarebytes:

Code:

ATTFilter

 Malwarebytes Anti-Malware 
www.malwarebytes.org

Scan Date: 29.07.2014
Scan Time: 20:19:29
Logfile: Malwarebytes.txt
Administrator: Yes

Version: 2.00.2.1012
Malware Database: v2014.03.04.09
Rootkit Database: v2014.02.20.01
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled

OS: Windows XP Service Pack 3
CPU: x86
File System: NTFS
User: ******

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 328056
Time Elapsed: 13 min, 25 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Enabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled

Processes: 3
PUP.Optional.IePluginService.A, C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\IePluginService\PluginService.exe, 988, Delete-on-Reboot, [463703db22588aaca199c9cfbf4233cd]
PUP.Optional.IePluginService.A, C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\IePluginServices\PluginService.exe, 1048, Delete-on-Reboot, [daa3c717b7c305312a10c9cf17ead62a]
PUP.Optional.WpManager, C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\WPM\wprotectmanager.exe, 1164, Delete-on-Reboot, [017c8b53a2d8a98d71f49a08986935cb]

Modules: 0
(No malicious items detected)

Registry Keys: 34
PUP.Optional.IePluginService.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\IePluginService, Quarantined, [463703db22588aaca199c9cfbf4233cd], 
PUP.Optional.IePluginService.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\IePlugins, Quarantined, [463703db22588aaca199c9cfbf4233cd], 
PUP.Optional.IePluginService.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\IePluginServices, Quarantined, [daa3c717b7c305312a10c9cf17ead62a], 
PUP.Optional.WpManager, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\Wpm, Quarantined, [017c8b53a2d8a98d71f49a08986935cb], 
PUP.Optional.Wajam.A, HKLM\SOFTWARE\CLASSES\APPID\{D616A4A2-7B38-4DBC-9093-6FE7A4A21B17}, Quarantined, [1568f6e8ceac20167d60ef8559a945bb], 
PUP.Optional.WebConnect.A, HKU\S-1-5-21-1085031214-1604221776-1417001333-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{2316C625-B487-4410-A1A5-FF040B65245F}, Quarantined, [89f4ffdfb8c264d2180e1f55a2608878], 
PUP.Optional.WebConnect.A, HKU\S-1-5-21-1085031214-1604221776-1417001333-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{2316C625-B487-4410-A1A5-FF040B65245F}, Quarantined, [89f4ffdfb8c264d2180e1f55a2608878], 
PUP.Optional.SupTab.A, HKU\S-1-5-21-1085031214-1604221776-1417001333-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}, Quarantined, [a6d728b65327a88e32e43b04f50de11f], 
PUP.Optional.SupTab.A, HKU\S-1-5-21-1085031214-1604221776-1417001333-1006-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}, Quarantined, [a6d728b65327a88e32e43b04f50de11f], 
PUP.Optional.SupTab.A, HKU\S-1-5-21-1085031214-1604221776-1417001333-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}, Quarantined, [a6d728b65327a88e32e43b04f50de11f], 
PUP.Optional.SupTab.A, HKU\S-1-5-21-1085031214-1604221776-1417001333-1006-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}, Quarantined, [a6d728b65327a88e32e43b04f50de11f], 
PUP.Optional.SupTab.A, HKU\S-1-5-21-1085031214-1604221776-1417001333-501-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}, Quarantined, [a6d728b65327a88e32e43b04f50de11f], 
PUP.Optional.Delta.A, HKU\S-1-5-21-1085031214-1604221776-1417001333-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{82E1477C-B154-48D3-9891-33D83C26BCD3}, Quarantined, [017c924ce49662d4dc2777fc39c931cf], 
PUP.Optional.Delta.A, HKU\S-1-5-21-1085031214-1604221776-1417001333-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{82E1477C-B154-48D3-9891-33D83C26BCD3}, Quarantined, [017c924ce49662d4dc2777fc39c931cf], 
PUP.Optional.Wajam.A, HKU\S-1-5-21-1085031214-1604221776-1417001333-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C}, Quarantined, [dca15a84bdbdcb6b313846fbe71bf20e], 
PUP.Optional.Wajam.A, HKU\S-1-5-21-1085031214-1604221776-1417001333-1006-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C}, Quarantined, [dca15a84bdbdcb6b313846fbe71bf20e], 
PUP.Optional.Wajam.A, HKU\S-1-5-21-1085031214-1604221776-1417001333-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C}, Quarantined, [dca15a84bdbdcb6b313846fbe71bf20e], 
PUP.Optional.Wajam.A, HKU\S-1-5-21-1085031214-1604221776-1417001333-1006-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C}, Quarantined, [dca15a84bdbdcb6b313846fbe71bf20e], 
PUP.Optional.Delta.A, HKU\S-1-5-21-1085031214-1604221776-1417001333-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}, Quarantined, [2f4e17c76c0edb5bc73b6d067989ac54], 
PUP.Optional.Delta.A, HKU\S-1-5-21-1085031214-1604221776-1417001333-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}, Quarantined, [2f4e17c76c0edb5bc73b6d067989ac54], 
PUP.Optional.Babylon.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\SETUP.EXE, Quarantined, [e19c558986f47abc9e69e686ed1332ce], 
PUP.Optional.Aartemis.A, HKLM\SOFTWARE\AARTEMISSOFTWARE\aartemishp, Quarantined, [7d0038a62357181ec0f3f1a5748e7090], 
PUP.Optional.Qone8, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{33BB0A4E-99AF-4226-BDF6-49120163DE86}, Quarantined, [4f2eb826acceb185d0d67d398f74956b], 
Trojan.Agent, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\SYSHOST32, Quarantined, [bbc2a43accae270fcd9196ebe71c5fa1], 
PUP.Optional.DealPly.A, HKU\S-1-5-21-1085031214-1604221776-1417001333-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\DealPlyLive, Quarantined, [56276d71d0aa87affb3d317b739009f7], 
PUP.Optional.Iminent.A, HKU\S-1-5-21-1085031214-1604221776-1417001333-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\Iminent, Quarantined, [bdc008d6afcb77bfc3b0b1e4a26041bf], 
PUP.Optional.LyriXeeker.A, HKU\S-1-5-21-1085031214-1604221776-1417001333-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\LyriXeeker, Quarantined, [e09da638d8a295a1ecad01b1bb48ef11], 
PUP.Optional.Qone8, HKU\S-1-5-21-1085031214-1604221776-1417001333-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{33BB0A4E-99AF-4226-BDF6-49120163DE86}, Quarantined, [bcc1dfffd9a16dc9c3e2199de71c33cd], 
PUP.Optional.RegCleanerPro.A, HKU\S-1-5-21-1085031214-1604221776-1417001333-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\SYSTWEAK\RegClean Pro, Quarantined, [b1ccd905f486a096aae3eec2e51e7c84], 
PUP.Optional.InstallCore.A, HKU\S-1-5-21-1085031214-1604221776-1417001333-1006-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\INSTALLCORE\1I1T1Q1S, Quarantined, [631aa53968122d09f187435149b938c8], 
PUP.Optional.InstallCore.A, HKU\S-1-5-21-1085031214-1604221776-1417001333-1006-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\INSTALLCORE, Quarantined, [6f0ea23c2654bb7b824c109a7192c040], 
PUP.Optional.Qone8, HKU\S-1-5-21-1085031214-1604221776-1417001333-1006-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{33BB0A4E-99AF-4226-BDF6-49120163DE86}, Quarantined, [6d102bb34e2c37ffa9fc447255aedd23], 
PUP.Optional.DealPly.A, HKU\S-1-5-21-1085031214-1604221776-1417001333-501-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\DealPlyLive, Quarantined, [6d101cc2b5c5e74fa5937537d330f40c], 
PUP.Optional.InstallCore.A, HKU\S-1-5-21-1085031214-1604221776-1417001333-501-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\INSTALLCORE, Quarantined, [3845eef05c1eb77fa42a5b4f48bb5ba5], 

Registry Values: 4
Trojan.Agent, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\SYSHOST32|ImagePath, "C:\WINDOWS\Installer\{BA980A79-5D7B-FCA3-6063-161340150D6B}\syshost.exe" /service, Quarantined, [bbc2a43accae270fcd9196ebe71c5fa1]
PUP.Optional.WpManager.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\WPM|ImagePath, C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\WPM\wprotectmanager.exe -service, Quarantined, [de9fad31fe7cb4829bec2c8f2ad99c64]
PUP.Optional.InstallCore.A, HKU\S-1-5-21-1085031214-1604221776-1417001333-1006-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\INSTALLCORE|tb, 0Z1N1J, Quarantined, [6f0ea23c2654bb7b824c109a7192c040]
PUP.Optional.InstallCore.A, HKU\S-1-5-21-1085031214-1604221776-1417001333-501-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\INSTALLCORE|tb, 0L1N1H2O1S, Quarantined, [3845eef05c1eb77fa42a5b4f48bb5ba5]

Registry Data: 5
PUP.Optional.Aartemis, HKLM\SOFTWARE\CLIENTS\STARTMENUINTERNET\IEXPLORE.EXE\SHELL\OPEN\COMMAND, C:\Programme\Internet Explorer\iexplore.exe hxxp://aartemis.com/?type=sc&ts=1385212789&from=cor&uid=ST3500418AS_6VM31WBYXXXX6VM31WBY, Good: (iexplore.exe), Bad: (C:\Programme\Internet Explorer\iexplore.exe hxxp://aartemis.com/?type=sc&ts=1385212789&from=cor&uid=ST3500418AS_6VM31WBYXXXX6VM31WBY),Replaced,[e6970dd13b3fc67050041f10f311fa06]
PUP.Optional.Qone8, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES|DefaultScope, {33BB0A4E-99AF-4226-BDF6-49120163DE86}, Good: ({0633EE93-D776-472f-A0FF-E1416B8B2E3A}), Bad: ({33BB0A4E-99AF-4226-BDF6-49120163DE86}),Replaced,[3647f0eed7a36fc7053e60cf29dbc23e]
PUM.Disabled.SecurityCenter, HKLM\SOFTWARE\MICROSOFT\SECURITY CENTER|AntiVirusDisableNotify, 1, Good: (0), Bad: (1),Replaced,[dca1b12da6d42a0c22df6cbea064639d]
PUM.Disabled.SecurityCenter, HKLM\SOFTWARE\MICROSOFT\SECURITY CENTER|FirewallDisableNotify, 1, Good: (0), Bad: (1),Replaced,[e29b8f4f99e11d1956acb377df2539c7]
PUM.Disabled.SecurityCenter, HKLM\SOFTWARE\MICROSOFT\SECURITY CENTER|UpdatesDisableNotify, 1, Good: (0), Bad: (1),Replaced,[3d40fce296e4c670dd2670bae321f907]

Folders: 8
PUP.Optional.eSafe.A, C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\eSafe\log, Quarantined, [89f45b83087239fd415feaa6b949da26], 
PUP.Optional.Aartemis.A, C:\Dokumente und Einstellungen\Martina\Anwendungsdaten\aartemis, Quarantined, [5c214896fa806cca3abdeace0102e61a], 
PUP.Optional.Aartemis.A, C:\Dokumente und Einstellungen\Martina\Anwendungsdaten\aartemis\log, Quarantined, [5c214896fa806cca3abdeace0102e61a], 
PUP.Optional.Delta.A, C:\Dokumente und Einstellungen\Martina\Lokale Einstellungen\Temp\mt_ffx\Delta, Quarantined, [4b321cc2b6c469cdfbadc7bf828004fc], 
PUP.Optional.Delta.A, C:\Dokumente und Einstellungen\Martina\Lokale Einstellungen\Temp\mt_ffx\Delta\delta, Quarantined, [4b321cc2b6c469cdfbadc7bf828004fc], 
PUP.Optional.Delta.A, C:\Dokumente und Einstellungen\Martina\Lokale Einstellungen\Temp\mt_ffx\Delta\delta\1.8.24.6, Quarantined, [4b321cc2b6c469cdfbadc7bf828004fc], 
PUP.Optional.IePluginService.A, C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\IePluginService, Delete-on-Reboot, [9ae3e4fa4a30cc6a4420b3d6956de818], 
PUP.Optional.IePluginService.A, C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\IePluginService\update, Quarantined, [9ae3e4fa4a30cc6a4420b3d6956de818], 

Files: 27
PUP.Optional.IePluginService.A, C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\IePluginService\PluginService.exe, Delete-on-Reboot, [463703db22588aaca199c9cfbf4233cd], 
PUP.Optional.IePluginService.A, C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\IePluginServices\PluginService.exe, Delete-on-Reboot, [daa3c717b7c305312a10c9cf17ead62a], 
PUP.Optional.WpManager, C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\WPM\wprotectmanager.exe, Delete-on-Reboot, [017c8b53a2d8a98d71f49a08986935cb], 
PUP.Optional.SupTab.A, C:\Dokumente und Einstellungen\******\Anwendungsdaten\SupTab\SupTab.dll, Quarantined, [710c2bb3532779bd3cfb2c57956bcc34], 
PUP.Optional.Delta.A, C:\Dokumente und Einstellungen\Gast\Lokale Einstellungen\Temp\is357113909\DeltaTB.exe, Quarantined, [532a9d414c2eae88094cc980709118e8], 
PUP.Optional.DealPly.A, C:\Dokumente und Einstellungen\Gast\Lokale Einstellungen\Temp\is357113909\dp.exe, Quarantined, [710c89558dedbf777a2267ed22e2d52b], 
PUP.Optional.Installcore, C:\Dokumente und Einstellungen\Martina\Lokale Einstellungen\Temp\ICReinstall_AdobeReaderSetup-11727605-none[1].exe, Quarantined, [acd130ae552577bf7d3ed545c83cb34d], 
PUP.Optional.Installcore, C:\Dokumente und Einstellungen\Martina\Lokale Einstellungen\Temp\ICReinstall_FinalMediaPlayerSetup-3514721-none[1].exe, Quarantined, [87f64f8f2c4e00361bd542d0be46e51b], 
PUP.Optional.Installcore, C:\Dokumente und Einstellungen\Martina\Lokale Einstellungen\Temp\ICReinstall_PDFCreatorSetup-10437732-none[1].exe, Quarantined, [2c519b4368128aaca536100410f4f907], 
PUP.Optional.Wsys.A, C:\Dokumente und Einstellungen\Martina\Lokale Einstellungen\Temp\fullpackage_temp1385212782\tmp\eGdpSvc.exe, Quarantined, [750828b626549b9be04b4f1953aee21e], 
PUP.Optional.CRX.A, C:\Dokumente und Einstellungen\Martina\Lokale Einstellungen\Temp\bus444\CrxUpdater_d.exe, Quarantined, [05785589c4b642f404b88b8b798b6997], 
PUP.Optional.CRX.A, C:\Dokumente und Einstellungen\Martina\Lokale Einstellungen\Temp\bus459\CrxUpdater_d.exe, Quarantined, [67165a84047649ed5d5f1afc768e6997], 
PUP.Optional.CRX.A, C:\Dokumente und Einstellungen\Martina\Lokale Einstellungen\Temp\bus45E\CrxUpdater_d.exe, Quarantined, [423bc21c4e2c7fb7cbf143d306fe4ab6], 
PUP.Optional.CRX.A, C:\Dokumente und Einstellungen\Martina\Lokale Einstellungen\Temp\bus46B\CrxUpdater_d.exe, Quarantined, [116cd905adcd5dd9b00cc84e976dbb45], 
PUP.Optional.CRX.A, C:\Dokumente und Einstellungen\Martina\Lokale Einstellungen\Temp\bus484\CrxUpdater_d.exe, Quarantined, [cfaeb02eee8cb38313a9b85ee024956b], 
PUP.Optional.Babylon.A, C:\Dokumente und Einstellungen\Martina\Lokale Einstellungen\Temp\A780778A-BAB0-7891-9B88-5D2B01EC372E\Latest\BExternal.dll, Quarantined, [0a7320be0c6eac8a6265115fbb459b65], 
PUP.Optional.BabSolution.A, C:\Dokumente und Einstellungen\Martina\Lokale Einstellungen\Temp\A780778A-BAB0-7891-9B88-5D2B01EC372E\Latest\BUSolution.dll, Quarantined, [562749958bef1e1829298dc16b96aa56], 
PUP.Optional.Babylon.A, C:\Dokumente und Einstellungen\Martina\Lokale Einstellungen\Temp\A780778A-BAB0-7891-9B88-5D2B01EC372E\Latest\CrxInstaller.dll, Quarantined, [3d40bd21fc7e8da9070091ca9869af51], 
PUP.Optional.Babylon.A, C:\Dokumente und Einstellungen\Martina\Lokale Einstellungen\Temp\A780778A-BAB0-7891-9B88-5D2B01EC372E\Latest\MntrDLLInstall.dll, Quarantined, [94e98f4f76047fb7bd4b48136a978a76], 
PUP.Optional.Delta, C:\Dokumente und Einstellungen\Martina\Lokale Einstellungen\Temp\A780778A-BAB0-7891-9B88-5D2B01EC372E\Latest\MyDeltaTB.exe, Quarantined, [d7a6796592e8989e0fe5ce7cc9386c94], 
PUP.Optional.Babylon.A, C:\Dokumente und Einstellungen\Martina\Lokale Einstellungen\Temp\A780778A-BAB0-7891-9B88-5D2B01EC372E\Latest\Setup.exe, Quarantined, [e19c558986f47abc9e69e686ed1332ce], 
PUP.Optional.eSafe.A, C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\eSafe\log\eGdpSvc.LOG, Quarantined, [89f45b83087239fd415feaa6b949da26], 
Backdoor.ProRat, C:\Dokumente und Einstellungen\Martina\Lokale Einstellungen\Temp\pey7F7.tmp, Quarantined, [8eef39a5b0ca84b21354efff62a030d0], 
PUP.Optional.Aartemis.A, C:\Dokumente und Einstellungen\Martina\Anwendungsdaten\aartemis\cor_aartemis.json, Quarantined, [5c214896fa806cca3abdeace0102e61a], 
PUP.Optional.Aartemis.A, C:\Dokumente und Einstellungen\Martina\Anwendungsdaten\aartemis\DataBase, Quarantined, [5c214896fa806cca3abdeace0102e61a], 
PUP.Optional.Aartemis.A, C:\Dokumente und Einstellungen\Martina\Anwendungsdaten\aartemis\QQBrowserFrame.dll, Quarantined, [5c214896fa806cca3abdeace0102e61a], 
PUP.Optional.Aartemis.A, C:\Dokumente und Einstellungen\Martina\Anwendungsdaten\aartemis\log\aartemis.LOG, Quarantined, [5c214896fa806cca3abdeace0102e61a], 

Physical Sectors: 0
(No malicious items detected)


(end)

schrauber · 30.07.2014, 07:16

Hi,

Logs bitte immer in den Thread posten. Zur Not aufteilen und mehrere Posts nutzen.
Ich kann auf Arbeit keine Anhänge öffnen, danke.

So funktioniert es:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert mir massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu gross für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:

Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.

rootkit014 · 30.07.2014, 10:32

Entschuldigung! Ich war irgendwie davon ausgegangen, dass alles in einen Post müsste.

Hier ist nochmal die Additions.txt aufgeteilt auf mehrere Posts:

Code:

ATTFilter

Additional scan result of Farbar Recovery Scan Tool (x86) Version:25-07-2014
Ran by ****** at 2014-07-30 00:24:58
Running from H:\
Boot Mode: Normal
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: McAfee Anti-Virus und Anti-Spyware (Disabled - Up to date) {84B5EE75-6421-4CDE-A33A-DD43BA9FAD83}
FW: McAfee Firewall (Disabled) {94894B63-8C7F-4050-BDA4-813CA00DA3E8}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Flash Player 14 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 14.0.0.145 - Adobe Systems Incorporated)
Adobe Flash Player 14 Plugin (HKLM\...\Adobe Flash Player Plugin) (Version: 14.0.0.145 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.07) (HKLM\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.07 - Adobe Systems Incorporated)
AOL Deinstallation (HKLM\...\AOL Deinstallation) (Version:  - )
AOL Installations-Manager (HKLM\...\AOL Installations-Manager) (Version: 3.0.0.7 - AOL Deutschland)
Apple Application Support (HKLM\...\{D9DAD0FF-495A-472B-9F10-BAE430A26682}) (Version: 3.0.3 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{18D47FA1-0440-48D3-A7E0-DA09537FF471}) (Version: 7.1.1.3 - Apple Inc.)
Apple Software Update (HKLM\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Brother MFL-Pro Suite DCP-J315W (HKLM\...\{FB83EAC4-E3F6-4666-B45B-44522F2344B6}) (Version: 1.0.3.0 - Brother Industries, Ltd.)
CameraHelperMsi (Version: 13.31.1038.0 - Logitech) Hidden
ElsterFormular (HKLM\...\ElsterFormular) (Version: 15.2.20140326 - Landesfinanzdirektion Thüringen)
erLT (Version: 1.20.138.34 - Logitech, Inc.) Hidden
File Type Assistant (HKLM\...\Trusted Software Assistant_is1) (Version:  - Trusted Software) <==== ATTENTION
HiDef Media Player 1.1.12 (HKLM\...\HiDef Media Player) (Version: 1.1.12 - HiDefMedia)
Hotfix für Windows Media Player 11 (KB939683) (HKLM\...\KB939683) (Version:  - Microsoft Corporation)
Hotfix für Windows XP (KB2633952) (HKLM\...\KB2633952) (Version: 1 - Microsoft Corporation)
Hotfix für Windows XP (KB2756822) (HKLM\...\KB2756822) (Version: 1 - Microsoft Corporation)
Hotfix für Windows XP (KB2779562) (HKLM\...\KB2779562) (Version: 1 - Microsoft Corporation)
Hotfix für Windows XP (KB952287) (HKLM\...\KB952287) (Version: 1 - Microsoft Corporation)
Hotfix für Windows XP (KB961118) (HKLM\...\KB961118) (Version: 1 - Microsoft Corporation)
Huffyuv AVI lossless video codec (Remove Only) (HKLM\...\HUFFYUV) (Version:  - )
InstallIQ Updater (HKLM\...\{8E1CB0F1-67BF-4052-AA23-FA22E94804C1}) (Version: 1.4.3.0 - W3i, LLC)
iTunes (HKLM\...\{0718A90E-93AA-49AF-A4FE-0165ACD91DF0}) (Version: 11.2.2.3 - Apple Inc.)
Java 7 Update 25 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83217025FF}) (Version: 7.0.250 - Oracle)
Java Auto Updater (Version: 2.1.9.5 - Sun Microsystems, Inc.) Hidden
Logitech Vid HD (HKLM\...\Logitech Vid) (Version: 7.2 (7240) - Logitech Inc..)
Logitech Webcam Software (HKLM\...\{D40EB009-0499-459c-A8AF-C9C110766215}) (Version: 2.0 - Logitech Inc.)
LWS Facebook (Version: 13.31.1038.0 - Logitech) Hidden
LWS Gallery (Version: 13.31.1038.0 - Logitech) Hidden
LWS Help_main (Version: 13.31.1044.0 - Logitech) Hidden
LWS Launcher (Version: 13.31.1038.0 - Logitech) Hidden
LWS Motion Detection (Version: 13.30.1395.0 - Logitech) Hidden
LWS Pictures And Video (Version: 13.31.1038.0 - Logitech) Hidden
LWS Twitter (Version: 13.30.1346.0 - Logitech) Hidden
LWS Video Mask Maker (Version: 13.30.1379.0 - Logitech) Hidden
LWS VideoEffects (Version: 13.30.1379.0 - Logitech) Hidden
LWS Webcam Software (Version: 13.31.1038.0 - Logitech) Hidden
LWS WLM Plugin (Version: 1.30.1201.0 - Logitech) Hidden
LWS YouTube Plugin (Version: 13.31.1038.0 - Logitech) Hidden
Malwarebytes Anti-Malware Version 2.0.2.1012 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)
McAfee AntiVirus Plus (HKLM\...\MSC) (Version: 12.8.958 - McAfee, Inc.)
McAfee Virtual Technician (HKLM\...\McAfee Virtual Technician) (Version: 7.5.0.3026 - McAfee, Inc.)
Mediaport (HKLM\...\Mediaport) (Version:  - )
Medion GoPal Assistant 3.00.0385 (HKLM\...\Medion GoPal Assistant) (Version: 3.00.0385 - Medion)
Microsoft .NET Framework 1.1 (HKLM\...\Microsoft .NET Framework 1.1  (1033)) (Version:  - )
Microsoft .NET Framework 1.1 (Version: 1.1.4322 - Microsoft) Hidden
Microsoft .NET Framework 1.1 German Language Pack (HKLM\...\{E78BFA60-5393-4C38-82AB-E8019E464EB4}) (Version: 1.1.4322 - Microsoft)
Microsoft .NET Framework 1.1 Security Update (KB2698023) (HKLM\...\M2698023) (Version:  - )
Microsoft .NET Framework 1.1 Security Update (KB2833941) (HKLM\...\M2833941) (Version:  - )
Microsoft .NET Framework 2.0 Service Pack 2 (HKLM\...\{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}) (Version: 2.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.0 Service Pack 2 (HKLM\...\{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}) (Version: 3.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version:  - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Client Profile DEU Language Pack (HKLM\...\Microsoft .NET Framework 4 Client Profile DEU Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft ActiveSync (HKLM\...\{99052DB7-9592-4522-A558-5417BBAD48EE}) (Version: 4.5.5096.0 - Microsoft Corporation)
Microsoft Compression Client Pack 1.0 for Windows XP (HKLM\...\MSCompPackV1) (Version: 1 - Microsoft Corporation)
Microsoft Digital Image Library 9 - Blocker (Version: 9.00.0000 - Microsoft Corporation) Hidden
Microsoft Kernel-Mode Driver Framework Feature Pack 1.5 (Version:  - Microsoft Corporation) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version:  - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (Version:  - Microsoft) Hidden
Microsoft Office Access MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Enterprise 2007 (HKLM\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (HKLM\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Groove MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Live Add-in 1.5 (HKLM\...\{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}) (Version: 2.0.4024.1 - Microsoft Corporation)
Microsoft Office OneNote MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Italian) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (German) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (Version:  - Microsoft) Hidden
Microsoft Office Publisher MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Picture It! Foto Premium 10 (HKLM\...\PictureItPrem_v10) (Version: 10.0.0715 - Microsoft Corporation)
Microsoft Picture It! Foto Premium 10 (Version: 10.0.0715 - Microsoft Corporation) Hidden
Microsoft Picture It!-Bibliothek 10 (Version: 10.0.0715 - Microsoft Corporation) Hidden
Microsoft Software Update for Web Folders  (German) 12 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft User-Mode Driver Framework Feature Pack 1.0 (HKLM\...\Wudf01000) (Version:  - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Works (HKLM\...\{B26E3B0D-C2FA-4370-B068-7C476766F029}) (Version: 08.04.0702 - Microsoft Corporation)
Microsoft-Basissmartcard-Kryptografiedienstanbieterpaket (HKLM\...\KB909520) (Version:  - Microsoft Corporation)
Mozilla Firefox 30.0 (x86 de) (HKLM\...\Mozilla Firefox 30.0 (x86 de)) (Version: 30.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MyFreeCodec (HKCU\...\MyFreeCodec) (Version:  - )
Nur Entfernen der CopyTrans Suite möglich (HKCU\...\CopyTrans Suite) (Version: 2.36 - WindSolutions)
NVIDIA Drivers (HKLM\...\NVIDIA Drivers) (Version: 1.3 - NVIDIA Corporation)
NVIDIA Grafiktreiber 307.83 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 307.83 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.118.757 - NVIDIA Corporation) Hidden
NVIDIA nView 136.53 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NView) (Version: 136.53 - NVIDIA Corporation)
NVIDIA Systemsteuerung 307.83 (Version: 307.83 - NVIDIA Corporation) Hidden
NVIDIA Update 1.10.8 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.10.8 - NVIDIA Corporation)
NVIDIA Update Components (Version: 1.10.8 - NVIDIA Corporation) Hidden
PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 1.7.1 - pdfforge)
Platform (Version: 1.34 - VIA Technologies, Inc.) Hidden
PlayMemories Home (HKLM\...\{1E5C7043-09C5-4974-A69F-A5271FD82BBC}) (Version: 7.0.00.11271 - Sony Corporation)
QuickTime 7 (HKLM\...\{111EE7DF-FC45-40C7-98A7-753AC46B12FB}) (Version: 7.75.80.95 - Apple Inc.)
Samsung Kies (HKLM\...\InstallShield_{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.5.1.12123_2 - Samsung Electronics Co., Ltd.)
Samsung Kies (Version: 2.5.1.12123_2 - Samsung Electronics Co., Ltd.) Hidden
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.16.0 - SAMSUNG Electronics Co., Ltd.)
Setup-Start von Microsoft Works 2005 (HKLM\...\Works2005Setup) (Version:  - )
Shared C Run-time for x86 (Version: 10.0.0 - McAfee) Hidden
Sicherheitsupdate für Microsoft Windows (KB2564958) (HKLM\...\KB2564958) (Version:  - Microsoft Corporation)
Sicherheitsupdate für Windows Internet Explorer 8 (KB2510531) (HKLM\...\KB2510531-IE8) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows Internet Explorer 8 (KB2544521) (HKLM\...\KB2544521-IE8) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows Internet Explorer 8 (KB2618444) (HKLM\...\KB2618444-IE8) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows Internet Explorer 8 (KB2647516) (HKLM\...\KB2647516-IE8) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows Internet Explorer 8 (KB2675157) (HKLM\...\KB2675157-IE8) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows Internet Explorer 8 (KB2699988) (HKLM\...\KB2699988-IE8) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows Internet Explorer 8 (KB2722913) (HKLM\...\KB2722913-IE8) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows Internet Explorer 8 (KB2744842) (HKLM\...\KB2744842-IE8) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows Internet Explorer 8 (KB2761465) (HKLM\...\KB2761465-IE8) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows Internet Explorer 8 (KB2792100) (HKLM\...\KB2792100-IE8) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows Internet Explorer 8 (KB2797052) (HKLM\...\KB2797052-IE8) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows Internet Explorer 8 (KB2799329) (HKLM\...\KB2799329-IE8) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows Internet Explorer 8 (KB2809289) (HKLM\...\KB2809289-IE8) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows Internet Explorer 8 (KB2817183) (HKLM\...\KB2817183-IE8) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows Internet Explorer 8 (KB2829530) (HKLM\...\KB2829530-IE8) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows Internet Explorer 8 (KB2838727) (HKLM\...\KB2838727-IE8) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows Internet Explorer 8 (KB2846071) (HKLM\...\KB2846071-IE8) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows Internet Explorer 8 (KB2847204) (HKLM\...\KB2847204-IE8) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows Internet Explorer 8 (KB2862772) (HKLM\...\KB2862772-IE8) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows Internet Explorer 8 (KB2870699) (HKLM\...\KB2870699-IE8) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows Internet Explorer 8 (KB2879017) (HKLM\...\KB2879017-IE8) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows Internet Explorer 8 (KB2888505) (HKLM\...\KB2888505-IE8) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows Internet Explorer 8 (KB2898785) (HKLM\...\KB2898785-IE8) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows Internet Explorer 8 (KB2909210) (HKLM\...\KB2909210-IE8) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows Internet Explorer 8 (KB2909921) (HKLM\...\KB2909921-IE8) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows Internet Explorer 8 (KB2925418) (HKLM\...\KB2925418-IE8) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows Internet Explorer 8 (KB2936068) (HKLM\...\KB2936068-IE8) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows Internet Explorer 8 (KB2964358) (HKLM\...\KB2964358-IE8) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows Internet Explorer 8 (KB982381) (HKLM\...\KB982381-IE8) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows Media Player (KB2378111) (HKLM\...\KB2378111_WM9) (Version:  - Microsoft Corporation)
Sicherheitsupdate für Windows Media Player (KB2834904) (HKLM\...\KB2834904_WM11) (Version:  - Microsoft Corporation)
Sicherheitsupdate für Windows Media Player (KB2834904-v2) (HKLM\...\KB2834904-v2_WM11) (Version:  - Microsoft Corporation)
Sicherheitsupdate für Windows Media Player (KB952069) (HKLM\...\KB952069_WM9) (Version:  - Microsoft Corporation)
Sicherheitsupdate für Windows Media Player (KB954155) (HKLM\...\KB954155_WM9) (Version:  - Microsoft Corporation)
Sicherheitsupdate für Windows Media Player (KB973540) (HKLM\...\KB973540_WM9) (Version:  - Microsoft Corporation)
Sicherheitsupdate für Windows Media Player (KB975558) (HKLM\...\KB975558_WM8) (Version:  - Microsoft Corporation)
Sicherheitsupdate für Windows Media Player (KB978695) (HKLM\...\KB978695_WM9) (Version:  - Microsoft Corporation)
Sicherheitsupdate für Windows Media Player 11 (KB954154) (HKLM\...\KB954154_WM11) (Version:  - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2079403) (HKLM\...\KB2079403) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2115168) (HKLM\...\KB2115168) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2229593) (HKLM\...\KB2229593) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2296011) (HKLM\...\KB2296011) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2347290) (HKLM\...\KB2347290) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2360937) (HKLM\...\KB2360937) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2387149) (HKLM\...\KB2387149) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2393802) (HKLM\...\KB2393802) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2419632) (HKLM\...\KB2419632) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2423089) (HKLM\...\KB2423089) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2440591) (HKLM\...\KB2440591) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2443105) (HKLM\...\KB2443105) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2476490) (HKLM\...\KB2476490) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2478960) (HKLM\...\KB2478960) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2478971) (HKLM\...\KB2478971) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2479943) (HKLM\...\KB2479943) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2481109) (HKLM\...\KB2481109) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2483185) (HKLM\...\KB2483185) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2485663) (HKLM\...\KB2485663) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2506212) (HKLM\...\KB2506212) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2507618) (HKLM\...\KB2507618) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2507938) (HKLM\...\KB2507938) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2508429) (HKLM\...\KB2508429) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2509553) (HKLM\...\KB2509553) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2510581) (Version: 1 - Microsoft Corporation) Hidden
Sicherheitsupdate für Windows XP (KB2535512) (HKLM\...\KB2535512) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2536276-v2) (HKLM\...\KB2536276-v2) (Version: 2 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2544521) (Version: 1 - Microsoft Corporation) Hidden
Sicherheitsupdate für Windows XP (KB2544893-v2) (HKLM\...\KB2544893-v2) (Version: 2 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2566454) (HKLM\...\KB2566454) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2570947) (HKLM\...\KB2570947) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2584146) (HKLM\...\KB2584146) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2585542) (HKLM\...\KB2585542) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2592799) (HKLM\...\KB2592799) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2598479) (HKLM\...\KB2598479) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2603381) (HKLM\...\KB2603381) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2618451) (HKLM\...\KB2618451) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2619339) (HKLM\...\KB2619339) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2620712) (HKLM\...\KB2620712) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2621440) (HKLM\...\KB2621440) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2624667) (HKLM\...\KB2624667) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2631813) (HKLM\...\KB2631813) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2646524) (HKLM\...\KB2646524) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2653956) (HKLM\...\KB2653956) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2655992) (HKLM\...\KB2655992) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2659262) (HKLM\...\KB2659262) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2661637) (HKLM\...\KB2661637) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2675157) (HKLM\...\KB2675157) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2676562) (HKLM\...\KB2676562) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2685939) (HKLM\...\KB2685939) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2686509) (HKLM\...\KB2686509) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2691442) (HKLM\...\KB2691442) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2695962) (HKLM\...\KB2695962) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2698365) (HKLM\...\KB2698365) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2705219) (HKLM\...\KB2705219) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2707511) (HKLM\...\KB2707511) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2709162) (HKLM\...\KB2709162) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2712808) (HKLM\...\KB2712808) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2718523) (HKLM\...\KB2718523) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2719985) (HKLM\...\KB2719985) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2723135) (HKLM\...\KB2723135) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2724197) (HKLM\...\KB2724197) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2727528) (HKLM\...\KB2727528) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2731847) (HKLM\...\KB2731847) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2753842) (HKLM\...\KB2753842) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2753842-v2) (HKLM\...\KB2753842-v2) (Version: 2 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2757638) (HKLM\...\KB2757638) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2758857) (HKLM\...\KB2758857) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2761226) (HKLM\...\KB2761226) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2770660) (HKLM\...\KB2770660) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2778344) (HKLM\...\KB2778344) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2779030) (HKLM\...\KB2779030) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2780091) (HKLM\...\KB2780091) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2799494) (HKLM\...\KB2799494) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2802968) (HKLM\...\KB2802968) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2807986) (HKLM\...\KB2807986) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2808735) (HKLM\...\KB2808735) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2813170) (HKLM\...\KB2813170) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2813345) (HKLM\...\KB2813345) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2820197) (HKLM\...\KB2820197) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2820917) (HKLM\...\KB2820917) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2829361) (HKLM\...\KB2829361) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2834886) (HKLM\...\KB2834886) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2839229) (HKLM\...\KB2839229) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2845187) (HKLM\...\KB2845187) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2847311) (HKLM\...\KB2847311) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2849470) (HKLM\...\KB2849470) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2850851) (HKLM\...\KB2850851) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2850869) (HKLM\...\KB2850869) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2859537) (HKLM\...\KB2859537) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2862152) (HKLM\...\KB2862152) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2862330) (HKLM\...\KB2862330) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2862335) (HKLM\...\KB2862335) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2864063) (HKLM\...\KB2864063) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2868038) (HKLM\...\KB2868038) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2868626) (HKLM\...\KB2868626) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2876217) (HKLM\...\KB2876217) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2876315) (HKLM\...\KB2876315) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2876331) (HKLM\...\KB2876331) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2883150) (HKLM\...\KB2883150) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2892075) (HKLM\...\KB2892075) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2893294) (HKLM\...\KB2893294) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2893984) (HKLM\...\KB2893984) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2898715) (HKLM\...\KB2898715) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2900986) (HKLM\...\KB2900986) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2914368) (HKLM\...\KB2914368) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2916036) (HKLM\...\KB2916036) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2922229) (HKLM\...\KB2922229) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2929961) (HKLM\...\KB2929961) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2930275) (HKLM\...\KB2930275) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB923561) (HKLM\...\KB923561) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB923789) (HKLM\...\KB923789) (Version:  - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB941569) (HKLM\...\KB941569) (Version:  - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB946648) (HKLM\...\KB946648) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB950762) (HKLM\...\KB950762) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB950974) (HKLM\...\KB950974) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB951376-v2) (HKLM\...\KB951376-v2) (Version: 2 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB952004) (HKLM\...\KB952004) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB952954) (HKLM\...\KB952954) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB954459) (HKLM\...\KB954459) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB956572) (HKLM\...\KB956572) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB956744) (HKLM\...\KB956744) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB956802) (HKLM\...\KB956802) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB956844) (HKLM\...\KB956844) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB958644) (HKLM\...\KB958644) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB959426) (HKLM\...\KB959426) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB960803) (HKLM\...\KB960803) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB960859) (HKLM\...\KB960859) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB961501) (HKLM\...\KB961501) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB969059) (HKLM\...\KB969059) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB970430) (HKLM\...\KB970430) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB971657) (HKLM\...\KB971657) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB972270) (HKLM\...\KB972270) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB973507) (HKLM\...\KB973507) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB973869) (HKLM\...\KB973869) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB973904) (HKLM\...\KB973904) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB974112) (HKLM\...\KB974112) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB974318) (HKLM\...\KB974318) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB974392) (HKLM\...\KB974392) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB974571) (HKLM\...\KB974571) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB975025) (HKLM\...\KB975025) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB975467) (HKLM\...\KB975467) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB975560) (HKLM\...\KB975560) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB975713) (Version: 1 - Microsoft Corporation) Hidden
Sicherheitsupdate für Windows XP (KB977816) (HKLM\...\KB977816) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB977914) (HKLM\...\KB977914) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB978338) (HKLM\...\KB978338) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB978542) (HKLM\...\KB978542) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB978706) (HKLM\...\KB978706) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB979309) (HKLM\...\KB979309) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB979482) (HKLM\...\KB979482) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB979687) (HKLM\...\KB979687) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB981322) (HKLM\...\KB981322) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB981997) (HKLM\...\KB981997) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB982132) (HKLM\...\KB982132) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB982665) (HKLM\...\KB982665) (Version: 1 - Microsoft Corporation)
Skype Click to Call (HKLM\...\{B6CF2967-C81E-40C0-9815-C05774FEF120}) (Version: 6.3.11079 - Skype Technologies S.A.)
Skype™ 6.11 (HKLM\...\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}) (Version: 6.11.102 - Skype Technologies S.A.)
TSDoctor (HKLM\...\{F4BBEF26-9D37-411F-B0E0-221C680F7B9B}) (Version: 1.2.57 - Cypheros)
Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (HKLM\...\{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB963707) (Version: 1 - Microsoft Corporation)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{A024FC7B-77DE-45DE-A058-1C049A17BFB3}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{E9A82945-BA29-4EE8-8F2A-2F49545E9CF2}) (Version:  - Microsoft)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition (HKLM\...\{90120000-001A-0407-0000-0000000FF1CE}_ENTERPRISE_{EA54F104-79D2-48CC-9ABC-91A63C43D353}) (Version:  - Microsoft)
Update for Microsoft Office Outlook 2007 (KB2863811) 32-Bit Edition (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{53DEC068-4690-4F6B-9946-7D21EF02236B}) (Version:  - Microsoft)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2883030) 32-Bit Edition (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{F5DCAB53-C2FD-4E5A-8C83-0F37485E5E89}) (Version:  - Microsoft)
Update für Microsoft Windows (KB971513) (HKLM\...\KB971513) (Version:  - Microsoft Corporation)
Update für Windows Internet Explorer 8 (KB2598845) (HKLM\...\KB2598845-IE8) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB2345886) (HKLM\...\KB2345886) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB2467659) (HKLM\...\KB2467659) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB2492386) (HKLM\...\KB2492386) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB2641690) (HKLM\...\KB2641690) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB2661254-v2) (HKLM\...\KB2661254-v2) (Version: 2 - Microsoft Corporation)
Update für Windows XP (KB2718704) (HKLM\...\KB2718704) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB2736233) (HKLM\...\KB2736233) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB2749655) (HKLM\...\KB2749655) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB2863058) (HKLM\...\KB2863058) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB2904266) (HKLM\...\KB2904266) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB2934207) (HKLM\...\KB2934207) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB898461) (HKLM\...\KB898461) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB951978) (Version: 1 - Microsoft Corporation) Hidden
Update für Windows XP (KB968389) (HKLM\...\KB968389) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB971029) (HKLM\...\KB971029) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB973687) (HKLM\...\KB973687) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB973815) (HKLM\...\KB973815) (Version: 1 - Microsoft Corporation)
VIA Plattform-Geräte-Manager (HKLM\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.34 - VIA Technologies, Inc.)
VideoConverter (HKLM\...\VideoConverter) (Version:  - PerformerSoft LLC) <==== ATTENTION
VLC media player 2.1.2 (HKLM\...\VLC media player) (Version: 2.1.2 - VideoLAN)
WDR RadioRecorder (HKLM\...\Tobit Radio.fx Server 1) (Version:  - Tobit.Software)
WebFldrs XP (Version: 9.50.7523 - Microsoft Corporation) Hidden
Windows Genuine Advantage Validation Tool (KB892130) (HKLM\...\KB892130) (Version:  - Microsoft Corporation)
Windows Genuine Advantage Validation Tool (KB892130) (HKLM\...\WGA) (Version: 1.7.0069.2 - Microsoft Corporation)
Windows Internet Explorer 8 (HKLM\...\ie8) (Version: 20090308.140743 - Microsoft Corporation)
Windows Media Format 11 runtime (HKLM\...\Windows Media Format Runtime) (Version:  - )
Windows Media Format 11 runtime (Version:  - Microsoft Corporation) Hidden
Windows Media Player 11 (HKLM\...\Windows Media Player) (Version:  - )
Windows Media Player 11 (Version:  - Microsoft Corporation) Hidden
WinRAR 4.20 (32-Bit) (HKLM\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)
WinZipper (HKLM\...\WinZipper) (Version: 1.5.29 - Taiwan Shui Mu Chih Ching Technology Limited.) <==== ATTENTION
Works Update (Version: 8.0.0.0000 - Microsoft Corporation) Hidden

rootkit014 · 30.07.2014, 10:34

Code:

ATTFilter

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0013-0000-0003-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0013-0000-0004-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0013-0000-0005-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0013-0001-0000-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0013-0001-0001-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0013-0001-0001-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0013-0001-0002-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0013-0001-0002-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0013-0001-0003-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0013-0001-0003-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0013-0001-0004-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0013-0001-0004-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0013-0001-0005-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0013-0001-0005-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0013-0001-0006-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0013-0001-0006-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0013-0001-0007-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0013-0001-0007-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0013-0001-0008-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0013-0001-0008-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0013-0001-0009-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0013-0001-0009-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0013-0001-0010-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0013-0001-0010-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0013-0001-0011-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0013-0001-0011-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0013-0001-0012-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0013-0001-0012-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0013-0001-0013-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0013-0001-0013-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0013-0001-0014-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0013-0001-0014-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0013-0001-0015-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0013-0001-0015-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0013-0001-0016-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0013-0001-0016-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0013-0001-0017-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0013-0001-0017-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0013-0001-0018-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0013-0001-0018-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0013-0001-0019-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0013-0001-0019-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0013-0001-0020-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0013-0001-0020-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0013-0001-0021-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0013-0001-0021-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0000-0000-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0000-0000-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0000-0001-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0000-0001-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0000-0002-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0000-0002-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0000-0003-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0000-0003-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0000-0004-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0000-0004-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0001-0000-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0001-0000-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0001-0001-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0001-0001-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0001-0002-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0001-0002-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0001-0003-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0001-0003-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0001-0004-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0001-0004-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0001-0005-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0001-0005-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0001-0006-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0001-0006-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0001-0007-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0001-0007-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0002-0000-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0002-0000-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0002-0001-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0002-0001-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0002-0002-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0002-0002-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0002-0003-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0002-0003-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0002-0004-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0002-0004-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0002-0005-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0002-0005-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0002-0006-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0002-0006-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0002-0007-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0002-0007-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0002-0008-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0002-0008-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0002-0009-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0002-0009-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0002-0010-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0002-0010-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0002-0011-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0002-0011-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0002-0012-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0002-0012-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0002-0013-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0002-0013-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0002-0014-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0002-0014-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0002-0015-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0002-0015-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0002-0016-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0002-0016-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0002-0017-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0002-0017-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0002-0018-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0002-0018-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0002-0019-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0002-0019-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0002-0020-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0002-0020-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0002-0021-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0002-0021-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0002-0022-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0002-0022-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0002-0023-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0002-0023-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0002-0024-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0002-0024-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0002-0025-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0002-0025-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0002-0026-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0002-0026-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0002-0027-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0002-0027-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0002-0028-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0002-0028-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0002-0029-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0002-0029-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0002-0030-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0002-0030-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0002-0031-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0002-0031-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0002-0032-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0002-0032-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0002-0033-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0002-0033-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0002-0034-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0002-0034-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0002-0035-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0002-0035-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0002-0036-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0002-0036-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0002-0037-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0002-0037-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0002-0038-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0002-0038-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0002-0039-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0002-0039-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0002-0040-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0002-0040-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0002-0041-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0002-0041-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0002-0042-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0002-0042-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0002-0043-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0002-0043-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0014-0002-FFFF-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0000-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0000-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0000-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0001-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0001-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0001-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0002-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0002-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0002-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0003-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0003-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0003-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0004-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0004-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0004-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0005-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0005-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0005-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0006-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0006-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0007-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0007-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0007-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0008-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0008-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0008-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0009-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0009-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0009-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0010-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0010-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0010-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0011-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0011-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0011-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0012-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0012-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0012-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0013-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0013-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0013-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0014-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0014-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0014-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0015-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0015-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0015-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0016-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0016-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0016-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0017-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0017-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0017-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0018-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0018-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0018-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0019-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0019-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0019-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0020-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0020-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0020-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0021-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0021-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0021-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0022-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0022-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0022-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0023-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0023-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0023-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0024-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0024-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0024-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0025-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0025-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0025-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0026-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0026-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0026-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0027-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0027-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0027-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0028-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0028-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0028-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0029-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0029-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0029-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0030-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0030-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0030-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0031-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0031-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0031-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0032-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0032-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0032-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0033-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0033-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0033-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0034-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0034-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0034-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0035-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0035-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0035-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0036-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0036-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0036-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0037-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0037-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0037-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0038-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0038-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0038-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0039-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0039-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0039-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0040-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0040-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0040-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0041-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0041-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0041-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0042-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0042-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0042-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0043-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0043-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0043-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0044-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0044-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0044-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0045-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0045-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0045-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0046-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0046-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0046-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0047-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0047-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0047-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0048-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0048-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0048-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0049-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0049-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0049-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0050-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0050-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0050-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0051-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0051-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-0051-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0015-0000-FFFF-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0000-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0000-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0000-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0001-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0001-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0004-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0004-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0004-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0006-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0006-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0006-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0008-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0008-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0008-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0009-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0009-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0009-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0010-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0010-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0010-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0011-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0011-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0012-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0012-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0012-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0014-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0014-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0018-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0018-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0019-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0019-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0019-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0025-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0025-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0027-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0027-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0028-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0028-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0028-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0029-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0029-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0030-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0030-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0030-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0032-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0032-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0032-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0034-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0034-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0034-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0036-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0036-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0036-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0038-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0038-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0038-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0039-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0039-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0039-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0040-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0040-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0040-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0041-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0041-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0041-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0042-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0042-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0042-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0043-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0043-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0043-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0044-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0044-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0044-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0045-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0045-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0045-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0046-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0046-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0046-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0047-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0047-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0047-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0048-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0048-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0048-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0049-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0049-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0049-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0050-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0050-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0050-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0051-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0051-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-0051-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0016-0000-FFFF-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0017-0000-0000-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0017-0000-0000-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0017-0000-0000-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0017-0000-0001-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0017-0000-0001-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0017-0000-0001-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0017-0000-0002-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0017-0000-0002-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0017-0000-0002-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0017-0000-0003-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0017-0000-0003-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0017-0000-0003-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0017-0000-0004-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0017-0000-0004-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0017-0000-0004-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0017-0000-0005-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0017-0000-0005-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0017-0000-0005-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0017-0000-0006-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0017-0000-0006-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0017-0000-0006-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0017-0000-0007-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0017-0000-0007-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0017-0000-0007-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0017-0000-0008-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0017-0000-0008-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0017-0000-0008-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0017-0000-0009-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0017-0000-0009-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0017-0000-0009-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0017-0000-0010-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0017-0000-0010-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0017-0000-0010-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0017-0000-0011-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0017-0000-0011-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0017-0000-0011-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0017-0000-0012-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0017-0000-0012-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0017-0000-0012-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0017-0000-0013-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0017-0000-0013-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0017-0000-0013-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0017-0000-0014-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0017-0000-0014-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0017-0000-0014-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0017-0000-0015-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0017-0000-0015-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0017-0000-0015-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0017-0000-0016-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0017-0000-0016-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0017-0000-0016-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0017-0000-0017-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0017-0000-0017-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0017-0000-0017-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0017-0000-0018-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0017-0000-0018-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0017-0000-0018-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0017-0000-0019-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0017-0000-0019-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0017-0000-0019-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0017-0000-0020-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0017-0000-0020-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0017-0000-0020-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0017-0000-0021-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0017-0000-0021-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0017-0000-0021-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0017-0000-0022-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0017-0000-0022-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0017-0000-0022-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0017-0000-0023-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0017-0000-0023-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0017-0000-0023-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0017-0000-0024-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0017-0000-0024-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0017-0000-0024-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0017-0000-0025-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0017-0000-0025-ABCDEFFEDCBB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0017-0000-0025-ABCDEFFEDCBC}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{CAFEEFAC-0017-0000-FFFF-ABCDEFFEDCBA}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()
CustomCLSID: HKU\S-1-5-21-1085031214-1604221776-1417001333-1005_Classes\CLSID\{E19F9331-3110-11D4-991C-005004D3B3DB}\InprocServer32 -> C:\Programme\Java\jre7\bin\jp2iexp.dll ()

==================== Restore Points  =========================

29-04-2014 15:59:08 Software Distribution Service 3.0
29-04-2014 17:26:07 Software Distribution Service 3.0
29-04-2014 21:19:55 Software Distribution Service 3.0
30-04-2014 20:57:18 Software Distribution Service 3.0
06-05-2014 11:14:48 Systemprüfpunkt
06-05-2014 13:05:53 Software Distribution Service 3.0
06-05-2014 20:35:41 Software Distribution Service 3.0
07-05-2014 20:26:24 Software Distribution Service 3.0
08-05-2014 22:16:55 Software Distribution Service 3.0
09-05-2014 16:56:15 Software Distribution Service 3.0
09-05-2014 18:35:34 Software Distribution Service 3.0
11-05-2014 10:37:54 Software Distribution Service 3.0
12-05-2014 19:48:34 Systemprüfpunkt
12-05-2014 21:04:51 Software Distribution Service 3.0
14-05-2014 15:26:41 Software Distribution Service 3.0
15-05-2014 14:43:40 Software Distribution Service 3.0
18-05-2014 18:15:02 Software Distribution Service 3.0
18-05-2014 18:40:55 Software Distribution Service 3.0
18-05-2014 19:49:03 Software Distribution Service 3.0
20-05-2014 05:19:18 Software Distribution Service 3.0
21-05-2014 06:21:52 Software Distribution Service 3.0
21-05-2014 20:15:05 Software Distribution Service 3.0
23-05-2014 17:50:53 Software Distribution Service 3.0
25-05-2014 22:00:26 Software Distribution Service 3.0
26-05-2014 21:17:08 Software Distribution Service 3.0
27-05-2014 21:17:56 Software Distribution Service 3.0
28-05-2014 18:10:28 Software Distribution Service 3.0
29-05-2014 10:49:54 Software Distribution Service 3.0
29-05-2014 10:59:34 Software Distribution Service 3.0
29-05-2014 17:59:13 Software Distribution Service 3.0
30-05-2014 20:01:45 Software Distribution Service 3.0
31-05-2014 21:29:24 Systemprüfpunkt
01-06-2014 09:10:39 Software Distribution Service 3.0
01-06-2014 09:26:16 Software Distribution Service 3.0
01-06-2014 18:00:35 Software Distribution Service 3.0
03-06-2014 09:23:49 Software Distribution Service 3.0
03-06-2014 21:10:46 Software Distribution Service 3.0
04-06-2014 17:19:01 Software Distribution Service 3.0
05-06-2014 20:52:01 Software Distribution Service 3.0
10-06-2014 13:24:51 Software Distribution Service 3.0
11-06-2014 16:16:01 Systemprüfpunkt
12-06-2014 13:23:11 Software Distribution Service 3.0
12-06-2014 19:52:07 Software Distribution Service 3.0
13-06-2014 20:11:28 Software Distribution Service 3.0
14-06-2014 21:29:51 Software Distribution Service 3.0
15-06-2014 10:08:14 Software Distribution Service 3.0
16-06-2014 13:33:08 Software Distribution Service 3.0
16-06-2014 17:00:40 Bonjour wird entfernt
16-06-2014 17:07:20 Removed PDF Architect
16-06-2014 22:25:48 Software Distribution Service 3.0
17-06-2014 17:42:58 Software Distribution Service 3.0
17-06-2014 19:33:15 Software Distribution Service 3.0
18-06-2014 19:33:32 Software Distribution Service 3.0
19-06-2014 16:09:27 Software Distribution Service 3.0
19-06-2014 19:55:18 Software Distribution Service 3.0
20-06-2014 21:05:08 Systemprüfpunkt
20-06-2014 22:10:01 Software Distribution Service 3.0
22-06-2014 18:56:52 Software Distribution Service 3.0
22-06-2014 20:45:05 Software Distribution Service 3.0
23-06-2014 06:00:02 Software Distribution Service 3.0
23-06-2014 22:37:40 Software Distribution Service 3.0
24-06-2014 07:29:55 Software Distribution Service 3.0
25-06-2014 15:03:37 Software Distribution Service 3.0
25-06-2014 21:58:58 Software Distribution Service 3.0
26-06-2014 20:23:14 Software Distribution Service 3.0
28-06-2014 09:42:59 Software Distribution Service 3.0
28-06-2014 15:24:22 Software Distribution Service 3.0
28-06-2014 20:14:17 Software Distribution Service 3.0
29-06-2014 15:02:26 Software Distribution Service 3.0
29-06-2014 21:14:06 Software Distribution Service 3.0
01-07-2014 09:53:42 Software Distribution Service 3.0
01-07-2014 10:24:40 Software Distribution Service 3.0
01-07-2014 16:14:47 Software Distribution Service 3.0
01-07-2014 17:03:10 Software Distribution Service 3.0
01-07-2014 20:12:57 Software Distribution Service 3.0
08-07-2014 19:18:33 Software Distribution Service 3.0
09-07-2014 20:09:21 Software Distribution Service 3.0
10-07-2014 12:36:51 Software Distribution Service 3.0
10-07-2014 21:25:35 Software Distribution Service 3.0
11-07-2014 23:50:00 Software Distribution Service 3.0
13-07-2014 12:18:51 Systemprüfpunkt
14-07-2014 12:58:18 Systemprüfpunkt
15-07-2014 18:41:39 Systemprüfpunkt
23-07-2014 11:39:41 Systemprüfpunkt
28-07-2014 14:58:27 Systemprüfpunkt

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2004-08-04 14:00 - 2004-08-04 14:00 - 00000820 ____A C:\WINDOWS\system32\Drivers\etc\hosts
127.0.0.1       localhost

==================== Scheduled Tasks (whitelisted) =============


(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\AppleSoftwareUpdate.job => C:\Programme\Apple Software Update\SoftwareUpdate.exe
Task: C:\WINDOWS\Tasks\At1.job => C:\DOKUME~1\Martina\ANWEND~1\Dealply\UPDATE~1\UPDATE~1.EXE
Task: C:\WINDOWS\Tasks\Ende des Supports für Microsoft Windows XP –  Benachrichtigung – Anmeldung.job => C:\WINDOWS\system32\xp_eos.exe
Task: C:\WINDOWS\Tasks\Ende des Supports für Microsoft Windows XP – Monatliche Benachrichtigung.job => C:\WINDOWS\system32\xp_eos.exe
Task: C:\WINDOWS\Tasks\ProgramUpdateCheck.job => C:\Programme\File Type Assistant\tsassist.exe

==================== Loaded Modules (whitelisted) =============

2014-02-26 19:41 - 2014-02-26 19:41 - 00612496 _____ () C:\Programme\WinZipper\sqlite3.dll
2014-02-12 21:58 - 2014-02-12 21:58 - 00073544 _____ () C:\Programme\Gemeinsame Dateien\Apple\Apple Application Support\zlib1.dll
2014-02-12 21:58 - 2014-02-12 21:58 - 01044808 _____ () C:\Programme\Gemeinsame Dateien\Apple\Apple Application Support\libxml2.dll
2012-11-27 22:14 - 2012-11-27 22:14 - 00149088 _____ () C:\Programme\Sony\PlayMemories Home\dfs.exe
2012-06-22 22:13 - 2011-11-18 14:51 - 03673944 _____ () D:\Tobit Radio.fx\Server\rfx-server.exe
2013-09-13 12:40 - 2013-01-31 13:22 - 00357224 _____ () C:\Programme\NVIDIA Corporation\nview\nvshell.dll
2013-09-19 19:01 - 2009-02-27 16:38 - 00139264 ____R () C:\Programme\Brother\BrUtilities\BrLogAPI.dll
2004-01-09 22:02 - 2004-01-09 22:02 - 00045056 _____ () C:\Programme\AOL 9.0 VR\zlib.dll
2002-04-22 23:08 - 2002-04-22 23:08 - 00053248 _____ () C:\Programme\AOL 9.0 VR\xmlparse.dll
2002-04-22 23:08 - 2002-04-22 23:08 - 00081920 _____ () C:\Programme\AOL 9.0 VR\xmltok.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

AlternateDataStreams: C:\Dokumente und Einstellungen\Martina\Desktop\Löwenmäulchen.jpg:SummaryInformation
AlternateDataStreams: C:\Dokumente und Einstellungen\Martina\Desktop\Löwenmäulchen.jpg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d}

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefire => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfevtp => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\{1a3e09be-1e45-494b-9174-d7385b45bbf5} => ""=""

==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)

MSCONFIG\startupreg: Adobe ARM => "C:\Programme\Gemeinsame Dateien\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: AOL Fast Start => "C:\Programme\AOL 9.0 VR\AOL.EXE" -b
MSCONFIG\startupreg: APSDaemon => "C:\Programme\Gemeinsame Dateien\Apple\Apple Application Support\APSDaemon.exe"
MSCONFIG\startupreg: HostManager => C:\Programme\Gemeinsame Dateien\AOL\1336674111\ee\AOLSoftware.exe
MSCONFIG\startupreg: iTunesHelper => "C:\Programme\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: LogitechQuickCamRibbon => "C:\Programme\Logitech\Logitech WebCam Software\LWS.exe" /hide
MSCONFIG\startupreg: QuickTime Task => "C:\Programme\QuickTime\qttask.exe" -atboottime
MSCONFIG\startupreg: Skype => "C:\Programme\Skype\Phone\Skype.exe" /minimized /regrun
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Programme\Gemeinsame Dateien\Java\Java Update\jusched.exe"

==================== Faulty Device Manager Devices =============

Name: NVIDIA nForce 10/100 Mbps Ethernet  - McAfee Core NDIS Intermediate Filter Miniport
Description: McAfee Core NDIS Intermediate Filter Miniport
Class Guid: {4D36E972-E325-11CE-BFC1-08002BE10318}
Manufacturer: McAfee
Service: mfendiskmp
Problem: : Windows cannot initialize the device driver for this hardware. (Code 37)
Resolution: The driver returned failure from its DriverEntry routine. Uninstall the driver, and then click "Scan for hardware changes" to reinstall or upgrade the driver.

Name: WAN-Miniport (IP) - McAfee Core NDIS Intermediate Filter Miniport
Description: McAfee Core NDIS Intermediate Filter Miniport
Class Guid: {4D36E972-E325-11CE-BFC1-08002BE10318}
Manufacturer: McAfee
Service: mfendiskmp
Problem: : Windows cannot initialize the device driver for this hardware. (Code 37)
Resolution: The driver returned failure from its DriverEntry routine. Uninstall the driver, and then click "Scan for hardware changes" to reinstall or upgrade the driver.


==================== Event log errors: =========================

Application errors:
==================
Error: (07/30/2014 00:16:26 AM) (Source: crypt32) (EventID: 8) (User: )
Description: Der automatische Aktualisierungsabruf der Drittanbieterstammlisten-Sequenznummer von <hxxp://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> ist fehlgeschlagen mit dem Fehler: Diese Netzwerkverbindung ist nicht vorhanden.
.

Error: (07/30/2014 00:16:26 AM) (Source: crypt32) (EventID: 8) (User: )
Description: Der automatische Aktualisierungsabruf der Drittanbieterstammlisten-Sequenznummer von <hxxp://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> ist fehlgeschlagen mit dem Fehler: Diese Netzwerkverbindung ist nicht vorhanden.
.

Error: (07/30/2014 00:16:26 AM) (Source: crypt32) (EventID: 8) (User: )
Description: Der automatische Aktualisierungsabruf der Drittanbieterstammlisten-Sequenznummer von <hxxp://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> ist fehlgeschlagen mit dem Fehler: Diese Netzwerkverbindung ist nicht vorhanden.
.

Error: (07/30/2014 00:16:26 AM) (Source: crypt32) (EventID: 8) (User: )
Description: Der automatische Aktualisierungsabruf der Drittanbieterstammlisten-Sequenznummer von <hxxp://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> ist fehlgeschlagen mit dem Fehler: The server name or address could not be resolved
.

Error: (07/30/2014 00:16:26 AM) (Source: crypt32) (EventID: 8) (User: )
Description: Der automatische Aktualisierungsabruf der Drittanbieterstammlisten-Sequenznummer von <hxxp://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> ist fehlgeschlagen mit dem Fehler: The server name or address could not be resolved
.

Error: (06/29/2014 11:12:11 PM) (Source: Brother BrLog) (EventID: 1001) (User: )
Description: STI BrtSTI: [2014/06/29 23:12:11.453]: [00002080]: CUsbScnDev: DeviceIoControl Illegal response

Error: (06/28/2014 09:30:00 PM) (Source: Application Error) (EventID: 1004) (User: )
Description: Fehlgeschlagene Anwendung McSvHost.exe, Version 3.8.703.0, fehlgeschlagenes Modul unknown, Version 0.0.0.0, Fehleradresse 0x00640068.
Fehler beim Erstellen des resultierenden PEAP-TLV als Antwort auf das empfangene PEAP-TLV (McSvHost.exe!ld!)

Error: (06/28/2014 09:20:25 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Fehlgeschlagene Anwendung McSvHost.exe, Version 3.8.703.0, fehlgeschlagenes Modul unknown, Version 0.0.0.0, Fehleradresse 0x00640068.
Das medienspezifische Ereignis für [McSvHost.exe!ws!] wird verarbeitet.

Error: (06/24/2014 10:43:50 PM) (Source: Application Error) (EventID: 1001) (User: )
Description: Fehlerhafter Speicherbereich -413036403.
Nach der 802.1x-Authentifizierung resultierte der WEP-Schlüsselaustausch nicht in einer sicheren Verbindung. Die aktuelle Einstellung wurde als fehlerhaft markiert, und die Drahtlosverbindung wird getrennt.

Error: (06/24/2014 10:43:27 PM) (Source: Application Error) (EventID: 1004) (User: )
Description: Fehlgeschlagene Anwendung McSvHost.exe, Version 3.8.703.0, fehlgeschlagenes Modul unknown, Version 0.0.0.0, Fehleradresse 0x00640068.
Fehler beim Erstellen des resultierenden PEAP-TLV als Antwort auf das empfangene PEAP-TLV (McSvHost.exe!ld!)


System errors:
=============
Error: (07/30/2014 00:17:49 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "McAfee AP Service" ist vom Dienst "McAfee Validation Trust Protection Service" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: 
%%1068

Error: (07/30/2014 00:17:49 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "McAfee Validation Trust Protection Service" ist vom Dienst "McAfee Inc. mfehidk" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: 
%%31

Error: (07/30/2014 00:17:49 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "McAfee Inc. mfehidk" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%31

Error: (07/30/2014 00:17:49 AM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen: 
mfehidk
mfetdi2k

Error: (07/30/2014 00:17:49 AM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Der Dienst "McAfee Boot Delay Start Service" wurde nicht ordnungsgemäß gestartet.

Error: (07/30/2014 00:16:27 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "McAfee Proxy Service" ist vom Dienst "McAfee Firewall Core Service" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: 
%%1068

Error: (07/30/2014 00:16:27 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "McAfee Personal Firewall Service" ist vom Dienst "McAfee Firewall Core Service" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: 
%%1068

Error: (07/30/2014 00:16:27 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "McAfee Home Network" ist vom Dienst "McAfee Firewall Core Service" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: 
%%1068

Error: (07/30/2014 00:16:27 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "McAfee Firewall Core Service" ist vom Dienst "McAfee Validation Trust Protection Service" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: 
%%1068

Error: (07/30/2014 00:16:27 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "McAfee Anti-Malware Core" ist vom Dienst "McAfee Validation Trust Protection Service" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: 
%%1068


Microsoft Office Sessions:
=========================

==================== Memory info =========================== 

Percentage of memory in use: 13%
Total physical RAM: 3711.23 MB
Available physical RAM: 3207.32 MB
Total Pagefile: 5592.21 MB
Available Pagefile: 5162.45 MB
Total Virtual: 2047.88 MB
Available Virtual: 1939.2 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:100.02 GB) (Free:11.01 GB) NTFS ==>[Drive with boot components (Windows XP)]
Drive d: () (Fixed) (Total:365.73 GB) (Free:329.28 GB) NTFS
Drive h: (USB DISK) (Removable) (Total:14.29 GB) (Free:8.17 GB) FAT32

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 466 GB) (Disk ID: A340A340)
Partition 1: (Active) - (Size=100 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=366 GB) - (Type=OF Extended)

========================================================
Disk: 1 (MBR Code: Windows XP) (Size: 14 GB) (Disk ID: C3072E18)
Partition 1: (Not Active) - (Size=14 GB) - (Type=0C)

==================== End Of Log ============================

schrauber · 30.07.2014, 15:21

hi,

Downloade dir bitte

TDSSKiller.exe und speichere diese Datei auf dem Desktop

Starte die TDSSKiller.exe - Einstellen wie in der Anleitung zu TDSSKiller beschrieben.
Drücke Start Scan
Sollten infizierte Objekte gefunden werden, wähle keinesfalls Cure. Wähle Skip und klicke auf Continue.
TDSSKiller wird eine Logfile auf deinem Systemlaufwerk speichern (Meistens C:\)
Als Beispiel: C:\TDSSKiller.<Version_Datum_Uhrzeit>log.txt

Poste den Inhalt bitte in jedem Fall hier in deinen Thread.

rootkit014 · 10.08.2014, 12:29

Hallo schrauber,

Hier ist der Inhalt der Logdatei vom TDSSKiller. Er hat 7 threats gefunden. Habe erstmal alle mit Skip bestätigt.

Wie geht es denn jetzt weiter?

Vielen Dank für deine Hilfe!

Code:

ATTFilter

13:20:39.0984 0x07c0  TDSS rootkit removing tool 3.0.0.40 Jul 10 2014 12:37:58
13:20:42.0968 0x07c0  ============================================================
13:20:42.0968 0x07c0  Current date / time: 2014/08/10 13:20:42.0968
13:20:42.0968 0x07c0  SystemInfo:
13:20:42.0968 0x07c0  
13:20:42.0968 0x07c0  OS Version: 5.1.2600 ServicePack: 3.0
13:20:42.0968 0x07c0  Product type: Workstation
13:20:42.0968 0x07c0  ComputerName: JAGUSCHE-PC1
13:20:42.0968 0x07c0  UserName: Jaguschewski
13:20:42.0968 0x07c0  Windows directory: C:\WINDOWS
13:20:42.0968 0x07c0  System windows directory: C:\WINDOWS
13:20:42.0968 0x07c0  Processor architecture: Intel x86
13:20:42.0968 0x07c0  Number of processors: 2
13:20:42.0968 0x07c0  Page size: 0x1000
13:20:42.0968 0x07c0  Boot type: Normal boot
13:20:42.0968 0x07c0  ============================================================
13:20:43.0156 0x07c0  KLMD registered as C:\WINDOWS\system32\drivers\00378380.sys
13:21:46.0781 0x07c0  System UUID: {C4ED2375-6BDC-9518-310A-85B282D2B5E9}
13:21:47.0046 0x07c0  !crdlk
13:21:47.0046 0x07c0  Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 ( 465.76 Gb ), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
13:21:47.0062 0x07c0  Drive \Device\Harddisk1\DR3 - Size: 0x393180000 ( 14.30 Gb ), SectorSize: 0x200, Cylinders: 0x74A, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
13:21:47.0062 0x07c0  ============================================================
13:21:47.0062 0x07c0  \Device\Harddisk0\DR0:
13:21:47.0062 0x07c0  MBR partitions:
13:21:47.0062 0x07c0  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0xC80B182
13:21:47.0078 0x07c0  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0xC80B200, BlocksNum 0x2DB75B80
13:21:47.0078 0x07c0  \Device\Harddisk1\DR3:
13:21:47.0078 0x07c0  MBR partitions:
13:21:47.0078 0x07c0  \Device\Harddisk1\DR3\Partition1: MBR, Type 0xC, StartLBA 0x1F80, BlocksNum 0x1C96C80
13:21:47.0078 0x07c0  ============================================================
13:21:47.0093 0x07c0  D: <-> \Device\Harddisk0\DR0\Partition2
13:21:47.0109 0x07c0  C: <-> \Device\Harddisk0\DR0\Partition1
13:21:47.0109 0x07c0  ============================================================
13:21:47.0109 0x07c0  Initialize success
13:21:47.0109 0x07c0  ============================================================
13:22:18.0312 0x0e1c  ============================================================
13:22:18.0312 0x0e1c  Scan started
13:22:18.0312 0x0e1c  Mode: Manual; SigCheck; TDLFS; 
13:22:18.0312 0x0e1c  ============================================================
13:22:18.0312 0x0e1c  KSN ping started
13:22:18.0343 0x0e1c  KSN ping finished: false
13:22:18.0968 0x0e1c  ================ Scan system memory ========================
13:22:18.0968 0x0e1c  System memory - ok
13:22:18.0968 0x0e1c  ================ Scan services =============================
13:22:19.0140 0x0e1c  [ 97165948AF80EDA4A3015EB536A85818, 0BB0DBE1EA81D4F475F854E34932C48FB2D1DEBFBADE8156DB004756B98FBE36 ] 3xHybrid        C:\WINDOWS\system32\DRIVERS\3xHybrid.sys
13:22:19.0640 0x0e1c  3xHybrid - ok
13:22:19.0703 0x0e1c  Abiosdsk - ok
13:22:19.0718 0x0e1c  abp480n5 - ok
13:22:19.0750 0x0e1c  [ AC407F1A62C3A300B4F2B5A9F1D55B2C, 31F5FC61B37E22100B3A52A590295A7E827FFC581FA9960C64B9032452AAECED ] ACPI            C:\WINDOWS\system32\DRIVERS\ACPI.sys
13:22:20.0062 0x0e1c  ACPI - ok
13:22:20.0093 0x0e1c  [ 9E1CA3160DAFB159CA14F83B1E317F75, 13B3E897B0E819BF734449416D9EC6EBCAC89538EC69BF48C068593B82D57004 ] ACPIEC          C:\WINDOWS\system32\drivers\ACPIEC.sys
13:22:20.0203 0x0e1c  ACPIEC - ok
13:22:20.0281 0x0e1c  [ A6B6AB9502B63F43A9A56AE6AFB22078, DD1F0BA3D8F3333F52A71EAE3719A001F6EF844D647FFABF0E4C56C6C764ACA7 ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
13:22:20.0296 0x0e1c  AdobeFlashPlayerUpdateSvc - ok
13:22:20.0312 0x0e1c  adpu160m - ok
13:22:20.0359 0x0e1c  [ 8BED39E3C35D6A489438B8141717A557, 1B5796E56B0927360CE0759641B1151828BC0A9E45620D2B2D880491F5CE33D0 ] aec             C:\WINDOWS\system32\drivers\aec.sys
13:22:20.0437 0x0e1c  aec - ok
13:22:20.0468 0x0e1c  [ 1E44BC1E83D8FD2305F8D452DB109CF9, CF5EC07E0B589FA2A4701C6CFD69E893FC3ABF274AD57AE3C13FFE49063B02C8 ] AFD             C:\WINDOWS\System32\drivers\afd.sys
13:22:20.0500 0x0e1c  AFD - ok
13:22:20.0515 0x0e1c  Aha154x - ok
13:22:20.0531 0x0e1c  aic78u2 - ok
13:22:20.0546 0x0e1c  aic78xx - ok
13:22:20.0593 0x0e1c  [ 738D80CC01D7BC7584BE917B7F544394, DCC17AAEF5CDDF52FAAC3CC6904EF421CD595F66318A2370BEE261D5C3A8E340 ] Alerter         C:\WINDOWS\system32\alrsvc.dll
13:22:20.0671 0x0e1c  Alerter - ok
13:22:20.0687 0x0e1c  [ 190CD73D4984F94D823F9444980513E5, 93A32C2495CCA094F768BA707C74DA5C00B8A88A9236DD1A297439A7C2E6C6FA ] ALG             C:\WINDOWS\System32\alg.exe
13:22:20.0718 0x0e1c  ALG - ok
13:22:20.0734 0x0e1c  AliIde - ok
13:22:20.0812 0x0e1c  [ 57221EF8A056B5FB47CDDA3BA28DD377, D4A31F61F46F5E87E99B41FD02E976709CC18CBFBB33B1F794FF3BFCA07ECCBE ] AMBFilt         C:\WINDOWS\system32\drivers\AMBFilt.sys
13:22:20.0906 0x0e1c  AMBFilt - ok
13:22:20.0984 0x0e1c  [ 033448D435E65C4BD72E70521FD05C76, A5462C22D5461F1BA06E81CD7E1ECE5409092DE53A8E4D3E78D089B65CB474D4 ] AmdPPM          C:\WINDOWS\system32\DRIVERS\AmdPPM.sys
13:22:21.0000 0x0e1c  AmdPPM - ok
13:22:21.0015 0x0e1c  amsint - ok
13:22:21.0062 0x0e1c  [ DD8D9C597AF7CD2F6B70A3D6A4A1ACEA, 834B397F365D930DA01D5189DDF06195CFE4C0F9249223C5A9004643F41BA6E4 ] androidusb      C:\WINDOWS\system32\Drivers\ssadadb.sys
13:22:21.0187 0x0e1c  androidusb - ok
13:22:21.0250 0x0e1c  [ 85180CF88C5EBAD73B452A43A004CA51, 24D25495DC21293FC1F37EE7E7C2A4725E66D3D25BE05D7EDF4BB4F444C65526 ] AOL ACS         C:\Programme\Gemeinsame Dateien\AOL\ACS\AOLAcsd.exe
13:22:21.0265 0x0e1c  AOL ACS - ok
13:22:21.0343 0x0e1c  [ 221564CC7BE37611FE15EACF443E1BF6, 381BDF17418C779D72332431BA174C2AD76CD9C7C1711FF5142EA9B05D5555E4 ] Apple Mobile Device C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\AppleMobileDeviceService.exe
13:22:21.0343 0x0e1c  Apple Mobile Device - ok
13:22:21.0375 0x0e1c  AppMgmt - ok
13:22:21.0390 0x0e1c  asc - ok
13:22:21.0406 0x0e1c  asc3350p - ok
13:22:21.0421 0x0e1c  asc3550 - ok
13:22:21.0500 0x0e1c  [ 0E5E4957549056E2BF2C49F4F6B601AD, F7F19FDC906B719A3516D30A9B4A2262C8CC5B36B94E3D4195C345EC4610FF2B ] aspnet_state    C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
13:22:21.0515 0x0e1c  aspnet_state - ok
13:22:21.0531 0x0e1c  [ B153AFFAC761E7F5FCFA822B9C4E97BC, 7E60F572A6B3C6219E3C86225AA37243AFFD74337DB7F108B04778042E5CC959 ] AsyncMac        C:\WINDOWS\system32\DRIVERS\asyncmac.sys
13:22:21.0609 0x0e1c  AsyncMac - ok
13:22:21.0640 0x0e1c  [ 9F3A2F5AA6875C72BF062C712CFA2674, B4DF1D2C56A593C6B54DE57395E3B51D288F547842893B32B0F59228A0CF70B9 ] atapi           C:\WINDOWS\system32\DRIVERS\atapi.sys
13:22:21.0718 0x0e1c  atapi - ok
13:22:21.0734 0x0e1c  Atdisk - ok
13:22:21.0750 0x0e1c  [ 9916C1225104BA14794209CFA8012159, 5D6F05F715C52A16D05CAE15C3DFE77A139A7F27F7AE710EC9A10F9EE05115A1 ] Atmarpc         C:\WINDOWS\system32\DRIVERS\atmarpc.sys
13:22:21.0828 0x0e1c  Atmarpc - ok
13:22:21.0875 0x0e1c  [ 58ED0D5452DF7BE732193E7999C6B9A4, 254E2ECF592DDA2E3E6CA9F6F3E77926E2265586A7937BA95199ED47BCDE69A3 ] AudioSrv        C:\WINDOWS\System32\audiosrv.dll
13:22:21.0953 0x0e1c  AudioSrv - ok
13:22:21.0984 0x0e1c  [ D9F724AA26C010A217C97606B160ED68, 329B5118F2409731D06FDAE85B6ADD64A048292801BCB3546651CEB303111695 ] audstub         C:\WINDOWS\system32\DRIVERS\audstub.sys
13:22:22.0062 0x0e1c  audstub - ok
13:22:22.0093 0x0e1c  [ DA1F27D85E0D1525F6621372E7B685E9, 5A81A46A3BDD19DAFC6C87D277267A5D44F3A1B5302F2CC1111D84B7BAD5610D ] Beep            C:\WINDOWS\system32\drivers\Beep.sys
13:22:22.0171 0x0e1c  Beep - ok
13:22:22.0218 0x0e1c  [ D6F603772A789BB3228F310D650B8BD1, A539025C70FD998A9B8703DE05CAE5E99BC721D8852EA561EBC2DD20CB371D2E ] BITS            C:\WINDOWS\system32\qmgr.dll
13:22:22.0343 0x0e1c  BITS - ok
13:22:22.0375 0x0e1c  [ B71549F23736ADF83A571061C47777FD, A1D0320736EE777030A543DCA086367EB5A5B6F95088B9C22D8E09326C3A39A9 ] Browser         C:\WINDOWS\System32\browser.dll
13:22:22.0406 0x0e1c  Browser - ok
13:22:22.0453 0x0e1c  [ 92A964547B96D697E5E9ED43B4297F5A, 01A84802B68253FF093EAFED5B85DE716BB85EBD080D92D4814B6FB39286CD24 ] BrScnUsb        C:\WINDOWS\system32\DRIVERS\BrScnUsb.sys
13:22:22.0500 0x0e1c  BrScnUsb - ok
13:22:22.0546 0x0e1c  [ EA7E57F87D6FEE5FD6C5F813C04E8CD2, 1EB84F4DEE3034FAFBEA2A3F84EECE036E803872DA94D54E958E9F2F09519E88 ] BrYNSvc         C:\Programme\Browny02\BrYNSvc.exe
13:22:22.0562 0x0e1c  BrYNSvc - detected UnsignedFile.Multi.Generic ( 1 )
13:22:22.0609 0x0e1c  BrYNSvc ( UnsignedFile.Multi.Generic ) - warning
13:22:22.0640 0x0e1c  [ 90A673FC8E12A79AFBED2576F6A7AAF9, BDE7858A3457DB979FEDD8577FA6321BF72848E4A7BF9F173C78A6A10CBB3EBE ] cbidf2k         C:\WINDOWS\system32\drivers\cbidf2k.sys
13:22:22.0734 0x0e1c  cbidf2k - ok
13:22:22.0765 0x0e1c  [ 0BE5AEF125BE881C4F854C554F2B025C, 1770DD70B3F115A0EF460907DEDC1E4B7241C08615A98F194D61A49C3E2BAA54 ] CCDECODE        C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
13:22:22.0843 0x0e1c  CCDECODE - ok
13:22:22.0859 0x0e1c  cd20xrnt - ok
13:22:22.0875 0x0e1c  [ C1B486A7658353D33A10CC15211A873B, AA4DD9E7AAE5AAB1146B360B17001F975D2F29A1281CF7B13E7136480410F347 ] Cdaudio         C:\WINDOWS\system32\drivers\Cdaudio.sys
13:22:22.0953 0x0e1c  Cdaudio - ok
13:22:22.0984 0x0e1c  [ C885B02847F5D2FD45A24E219ED93B32, B26B2F8E3A831E2B65EB0C5195B0645CD50E22615CE79C9B0B391CD563B121DB ] Cdfs            C:\WINDOWS\system32\drivers\Cdfs.sys
13:22:23.0078 0x0e1c  Cdfs - ok
13:22:23.0093 0x0e1c  [ 1F4260CC5B42272D71F79E570A27A4FE, B51C2A3ED3C309953D0EA45869C8E464C10F2533DADE9E0286AF674979098D1D ] Cdrom           C:\WINDOWS\system32\DRIVERS\cdrom.sys
13:22:23.0171 0x0e1c  Cdrom - ok
13:22:23.0218 0x0e1c  [ 0DAAE43A50E7A0BE59052E05E2DACA5D, FC9F3C9E1CA86CAA5451C3D23F1443DEDACFE0F327B4321BD2B441C69183B51D ] cfwids          C:\WINDOWS\system32\drivers\cfwids.sys
13:22:23.0234 0x0e1c  cfwids - ok
13:22:23.0234 0x0e1c  Changer - ok
13:22:23.0265 0x0e1c  [ 28E3040D1F1CA2008CD6B29DFEBC9A5E, ACB458E8A11AA2143734A5A0281973D95158E6402A6453F98F9832D1E19B01F9 ] CiSvc           C:\WINDOWS\system32\cisvc.exe
13:22:23.0328 0x0e1c  CiSvc - ok
13:22:23.0343 0x0e1c  [ 778A30ED3C134EB7E406AFC407E9997D, 3E6AD115AB2596EB001BC21AEADDBC75F27C42DB90C986B7AD17743CE631234E ] ClipSrv         C:\WINDOWS\system32\clipsrv.exe
13:22:23.0421 0x0e1c  ClipSrv - ok
13:22:23.0484 0x0e1c  [ D87ACAED61E417BBA546CED5E7E36D9C, 14AC6034A5BC0FB2A1AFDAD42BEF4DE641556E54AD30D0C46765660A4BE55462 ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
13:22:23.0515 0x0e1c  clr_optimization_v2.0.50727_32 - ok
13:22:23.0625 0x0e1c  [ C5A75EB48E2344ABDC162BDA79E16841, 6070A8AAFD38FBC6A68A2B10C20117612354DF21B4492D90CA522BFB6870D726 ] clr_optimization_v4.0.30319_32 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
13:22:23.0640 0x0e1c  clr_optimization_v4.0.30319_32 - ok
13:22:23.0656 0x0e1c  CmdIde - ok
13:22:23.0656 0x0e1c  COMSysApp - ok
13:22:23.0687 0x0e1c  Cpqarray - ok
13:22:23.0734 0x0e1c  [ 611F824E5C703A5A899F84C5F1699E4D, 9EFA5612FE58E9974E4CC13D39D91D7B5DEA3ED66BEFBED3AAE6D2800FD8162A ] CryptSvc        C:\WINDOWS\System32\cryptsvc.dll
13:22:23.0812 0x0e1c  CryptSvc - ok
13:22:23.0812 0x0e1c  dac2w2k - ok
13:22:23.0828 0x0e1c  dac960nt - ok
13:22:23.0875 0x0e1c  [ 3127AFBF2C1ED0AB14A1BBB7AAECB85B, ECFBACE3CBF2384948EA1C445BDA3955EB4F44A9874286E6537C67DC1283E5B0 ] DcomLaunch      C:\WINDOWS\system32\rpcss.dll
13:22:23.0906 0x0e1c  DcomLaunch - ok
13:22:23.0984 0x0e1c  [ 90C0413E98467EC337CBD72E81FBE31B, AE2A64B9755D77F7E905435227C42B95B1FAE6BE9EA0FB8C915DF3D0A924CB08 ] DeviceFinderService C:\Programme\Sony\PlayMemories Home\dfs.exe
13:22:24.0015 0x0e1c  DeviceFinderService - ok
13:22:24.0093 0x0e1c  [ 6216FD7FD227DE454238A702B218CEC7, 5699FDD253754AE274B8624A41CBE778D74383E95D5167785A48A51AAD67FC70 ] dgderdrv        C:\WINDOWS\system32\drivers\dgderdrv.sys
13:22:24.0109 0x0e1c  dgderdrv - ok
13:22:24.0140 0x0e1c  [ 6CC6C4B9D7B906A151AA094CA087B9F0, 5D06DC2FCAF86C256792D541D5581AF5AFEDA247814E07C6017BEE92284CAA56 ] dg_ssudbus      C:\WINDOWS\system32\DRIVERS\ssudbus.sys
13:22:24.0156 0x0e1c  dg_ssudbus - ok
13:22:24.0203 0x0e1c  [ C29A1C9B75BA38FA37F8C44405DEC360, 7476D8BC4380CDE56764B2034AF3741DA4ED00F315E41C9A02B5EAD04374F241 ] Dhcp            C:\WINDOWS\System32\dhcpcsvc.dll
13:22:24.0281 0x0e1c  Dhcp - ok
13:22:24.0312 0x0e1c  [ 044452051F3E02E7963599FC8F4F3E25, 584BDDB074618BE76454CF90E74829CFF588B5B5FAEB793E2F7AAD26352DD689 ] Disk            C:\WINDOWS\system32\DRIVERS\disk.sys
13:22:24.0375 0x0e1c  Disk - ok
13:22:24.0390 0x0e1c  dmadmin - ok
13:22:24.0437 0x0e1c  [ 0DCFC8395A99FECBB1EF771CEC7FE4EA, 89B0AEE5BE01B9FE4FF2989FF16DB6121721ACDFCE6D9655C0ACD321D8C308BE ] dmboot          C:\WINDOWS\system32\drivers\dmboot.sys
13:22:24.0546 0x0e1c  dmboot - ok
13:22:24.0578 0x0e1c  [ 53720AB12B48719D00E327DA470A619A, 800264866A6267C9000A85D00095D57908D059D737E5F28C9C4049B884C46228 ] dmio            C:\WINDOWS\system32\drivers\dmio.sys
13:22:24.0656 0x0e1c  dmio - ok
13:22:24.0687 0x0e1c  [ E9317282A63CA4D188C0DF5E09C6AC5F, D41E002F555FE9015EF620975255F58BB79198CA1FF0E09EC950CB450FF77CF7 ] dmload          C:\WINDOWS\system32\drivers\dmload.sys
13:22:24.0750 0x0e1c  dmload - ok
13:22:24.0781 0x0e1c  [ 25C83FFBBA13B554EB6D59A9B2E2EE78, 9FBD655ED3E9163AE11EC207F283E387EFBA5A23108EC790BAE4846B35E66F16 ] dmserver        C:\WINDOWS\System32\dmserver.dll
13:22:24.0859 0x0e1c  dmserver - ok
13:22:24.0906 0x0e1c  [ 8A208DFCF89792A484E76C40E5F50B45, 4E40E2EB38C6254E7CAA488200E89EE7DEBBBA773890BC6A84313CC68178D54F ] DMusic          C:\WINDOWS\system32\drivers\DMusic.sys
13:22:24.0968 0x0e1c  DMusic - ok
13:22:25.0000 0x0e1c  [ 407F3227AC618FD1CA54B335B083DE07, 96B8E734648FE9A4EBA59C096C8779BD1A11A93A6303AFD438A406C8122D36C6 ] Dnscache        C:\WINDOWS\System32\dnsrslvr.dll
13:22:25.0031 0x0e1c  Dnscache - ok
13:22:25.0078 0x0e1c  [ 676E36C4FF5BCEA1900F44182B9723E6, 740CF18BD40E00FEA26CF0E6340C5D18F7D0B4390055FAEEC258B3AA790C4AE9 ] Dot3svc         C:\WINDOWS\System32\dot3svc.dll
13:22:25.0140 0x0e1c  Dot3svc - ok
13:22:25.0156 0x0e1c  dpti2o - ok
13:22:25.0203 0x0e1c  [ 8F5FCFF8E8848AFAC920905FBD9D33C8, C8C6FB97AB0871C8C88A2201525A5CF10D5131CB6980D32692ED7A8F58399AD5 ] drmkaud         C:\WINDOWS\system32\drivers\drmkaud.sys
13:22:25.0265 0x0e1c  drmkaud - ok
13:22:25.0281 0x0e1c  Suspicious service (NoAccess): e55f1a183fbfe661
13:22:25.0328 0x0e1c  [ ECF13B36E60CF2C3781ADD2BD4402D3D, 58C20D5DF5260183FA92E5075F3413DEF3A64862D473ADAB873012D5D017524D ] e55f1a183fbfe661 C:\WINDOWS\System32\Drivers\e55f1a183fbfe661.sys
13:22:25.0328 0x0e1c  Suspicious file ( NoAccess ): C:\WINDOWS\System32\Drivers\e55f1a183fbfe661.sys. md5: ECF13B36E60CF2C3781ADD2BD4402D3D, sha256: 58C20D5DF5260183FA92E5075F3413DEF3A64862D473ADAB873012D5D017524D
13:22:25.0343 0x0e1c  e55f1a183fbfe661 - detected Rootkit.Win32.Necurs.gen ( 0 )
13:22:25.0343 0x0e1c  e55f1a183fbfe661 ( Rootkit.Win32.Necurs.gen ) - infected
13:22:25.0343 0x0e1c  Force sending object to P2P due to detect: e55f1a183fbfe661
13:22:25.0343 0x0e1c  Object send P2P result: false
13:22:25.0375 0x0e1c  [ 4E4F2FDDAB0A0736D7671134DCCE91FB, 8E2C57D1A006856C47CBDD5765A9DD317DB205B26DA8BFC70555A506257A1CD9 ] EapHost         C:\WINDOWS\System32\eapsvc.dll
13:22:25.0453 0x0e1c  EapHost - ok
13:22:25.0468 0x0e1c  [ 877C18558D70587AA7823A1A308AC96B, 6B336A62112988D855513F45153F73F8470C41A448E9B7438B4A8EC1813AABF1 ] ERSvc           C:\WINDOWS\System32\ersvc.dll
13:22:25.0546 0x0e1c  ERSvc - ok
13:22:25.0593 0x0e1c  [ A3EDBE9053889FB24AB22492472B39DC, 6F2ED6E04BDE2FCA2A8BF9BD2D1D6923DE6EAECB46F582B6C0BD1CF364D65C9E ] Eventlog        C:\WINDOWS\system32\services.exe
13:22:25.0593 0x0e1c  Eventlog - ok
13:22:25.0640 0x0e1c  [ AF4F6B5739D18CA7972AB53E091CBC74, A399E2CC026730D3A429727AAB48093B9F1E5DD8EB6336519C7F16182FDB3905 ] EventSystem     C:\WINDOWS\system32\Es.dll
13:22:25.0687 0x0e1c  EventSystem - ok
13:22:25.0718 0x0e1c  [ 38D332A6D56AF32635675F132548343E, E6909DB836AF679B4F4D62C7396D6C82769CC7ABB8C919C2AABFE934FCE268F6 ] Fastfat         C:\WINDOWS\system32\drivers\Fastfat.sys
13:22:25.0796 0x0e1c  Fastfat - ok
13:22:25.0828 0x0e1c  [ 2DB7D303C36DDD055215052F118E8E75, BE6E7BBE12A7A4EDF1F1C2935350603970C7426BBCA7A1A6644BB8999123AF17 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
13:22:25.0859 0x0e1c  FastUserSwitchingCompatibility - ok
13:22:25.0890 0x0e1c  [ 92CDD60B6730B9F50F6A1A0C1F8CDC81, 8307A532AB4D05CBBCE206DC2759497708BF5AAA880BD00F0E4F281D8578A1F5 ] Fdc             C:\WINDOWS\system32\drivers\Fdc.sys
13:22:25.0968 0x0e1c  Fdc - ok
13:22:25.0984 0x0e1c  [ B0678A548587C5F1967B0D70BACAD6C1, 7E49910212ED87313F926E4800EA8D34809C287A686CA69B82B79C1A6451F88C ] Fips            C:\WINDOWS\system32\drivers\Fips.sys
13:22:26.0046 0x0e1c  Fips - ok
13:22:26.0062 0x0e1c  [ 9D27E7B80BFCDF1CDD9B555862D5E7F0, 69C271AD5BCEBFD8AE5A769BDD7EC51256DA3A8ADAD5D12E5C0D13F4E82D8805 ] Flpydisk        C:\WINDOWS\system32\drivers\Flpydisk.sys
13:22:26.0125 0x0e1c  Flpydisk - ok
13:22:26.0171 0x0e1c  [ B2CF4B0786F8212CB92ED2B50C6DB6B0, 280F5CF8A90F7BEDE73ADD0DD0F8952088133A7CA9A3D3B7041957E33B36845D ] FltMgr          C:\WINDOWS\system32\drivers\fltmgr.sys
13:22:26.0234 0x0e1c  FltMgr - ok
13:22:26.0296 0x0e1c  [ 8BA7C024070F2B7FDD98ED8A4BA41789, 47585006F86B2C6016EC54250A416794792D1E4024FF229C120BC25B684AF66A ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
13:22:26.0312 0x0e1c  FontCache3.0.0.0 - ok
13:22:26.0328 0x0e1c  [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A, EC635E071201A766845D48973772CBE0958942B4162F3F5F70660D114CC877E0 ] Fs_Rec          C:\WINDOWS\system32\drivers\Fs_Rec.sys
13:22:26.0390 0x0e1c  Fs_Rec - ok
13:22:26.0406 0x0e1c  [ 8F1955CE42E1484714B542F341647778, 8EB3F99625F409D3032561E8AB44BEFBFBFBA4EC873C2151C92A5CAAF7F2AA55 ] Ftdisk          C:\WINDOWS\system32\DRIVERS\ftdisk.sys
13:22:26.0484 0x0e1c  Ftdisk - ok
13:22:26.0500 0x0e1c  [ 185ADA973B5020655CEE342059A86CBB, D3E352DFAF30761505480A4C557D980083F65EC5BD46E2656B2114D47B272A89 ] GEARAspiWDM     C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
13:22:26.0515 0x0e1c  GEARAspiWDM - ok
13:22:26.0531 0x0e1c  [ 0A02C63C8B144BD8C86B103DEE7C86A2, 7A3235DD3E1995DD72B212FAEB3ECA2A974434DE9BF6D269EA11BA65A80E7E50 ] Gpc             C:\WINDOWS\system32\DRIVERS\msgpc.sys
13:22:26.0609 0x0e1c  Gpc - ok
13:22:26.0625 0x0e1c  [ 573C7D0A32852B48F3058CFD8026F511, BC384BBA394AFDCDA1A9ABC858C692AA84A1F0A31AF3DDF7F38D120C027927FB ] HDAudBus        C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
13:22:26.0718 0x0e1c  HDAudBus - ok
13:22:26.0781 0x0e1c  [ CB66BF85BF599BEFD6C6A57C2E20357F, 55D3A0F9279FF316766F42548FCB61C452942B08A37590C4892DF110BE4E53C6 ] helpsvc         C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
13:22:26.0859 0x0e1c  helpsvc - ok
13:22:26.0890 0x0e1c  [ B35DA85E60C0103F2E4104532DA2F12B, E13C9F73DF7713554CB614B36123D75014F5121AA1FC9069733E61758751CBE4 ] HidServ         C:\WINDOWS\System32\hidserv.dll
13:22:26.0968 0x0e1c  HidServ - ok
13:22:26.0984 0x0e1c  [ CCF82C5EC8A7326C3066DE870C06DAF1, 93395FA4C26B2E82DC8B7025ED3BCF583885E5D8C5F60CD6EEAA6335D6A126EC ] hidusb          C:\WINDOWS\system32\DRIVERS\hidusb.sys
13:22:27.0062 0x0e1c  hidusb - ok
13:22:27.0093 0x0e1c  [ 156765F692192EA9039A6C4A809312FD, 73400BC5E5C92A2E7834CB8EB33B3D78BF73C875C98B1AD91B0112FBB8DB19E3 ] HipShieldK      C:\WINDOWS\system32\drivers\HipShieldK.sys
13:22:27.0109 0x0e1c  HipShieldK - ok
13:22:27.0140 0x0e1c  [ ED29F14101523A6E0E808107405D452C, B8FA987637787BEECC2EB06D36293DAC355523392B49A8C5A9491EEE961917E9 ] hkmsvc          C:\WINDOWS\System32\kmsvc.dll
13:22:27.0218 0x0e1c  hkmsvc - ok
13:22:27.0296 0x0e1c  [ 5007E21208DA68F60EBF43352BDFE6D0, 698B6AB8260E05D6A2D168939E8D7F9F1CC1C78FDEC4F6B9D1A7289FD83C841B ] HomeNetSvc      C:\Programme\Gemeinsame Dateien\Mcafee\Platform\McSvcHost\McSvHost.exe
13:22:27.0312 0x0e1c  HomeNetSvc - ok
13:22:27.0328 0x0e1c  hpn - ok
13:22:27.0375 0x0e1c  [ F80A415EF82CD06FFAF0D971528EAD38, 524D9E9201572929522F6805011783711B7C0F76308B924C89CF75F4B7A1FDF3 ] HTTP            C:\WINDOWS\system32\Drivers\HTTP.sys
13:22:27.0406 0x0e1c  HTTP - ok
13:22:27.0453 0x0e1c  [ 9E4ADB854CEBCFB81A4B36718FEECD16, 677AB64460775686F8366D6BF35D420A2486C3F07338A00A7C2788A5142B9F08 ] HTTPFilter      C:\WINDOWS\System32\w3ssl.dll
13:22:27.0531 0x0e1c  HTTPFilter - ok
13:22:27.0546 0x0e1c  i2omgmt - ok
13:22:27.0546 0x0e1c  i2omp - ok
13:22:27.0578 0x0e1c  [ E283B97CFBEB86C1D86BAED5F7846A92, 7664F791D08C80DF1E52B34BE69F073AA645610C4BD975F498254807602374AB ] i8042prt        C:\WINDOWS\system32\drivers\i8042prt.sys
13:22:27.0656 0x0e1c  i8042prt - ok
13:22:27.0718 0x0e1c  [ C01AC32DC5C03076CFB852CB5DA5229C, A4D7749220B5BC965D96A267F1E02FE8284A230BA249109207BD4B9EA8DFAC96 ] idsvc           C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
13:22:27.0765 0x0e1c  idsvc - ok
13:22:27.0796 0x0e1c  [ 083A052659F5310DD8B6A6CB05EDCF8E, 48D39B03FFB6FAA1529B774443BA12618AE3982D9F65A7B9D18F2269F78B31F4 ] Imapi           C:\WINDOWS\system32\DRIVERS\imapi.sys
13:22:27.0875 0x0e1c  Imapi - ok
13:22:27.0906 0x0e1c  [ D4B413AA210C21E46AEDD2BA5B68D38E, 2309622867AA8FC832A729FA78F48742D4BD6CA0DAFBFB9DDB0772D671E1ED75 ] ImapiService    C:\WINDOWS\system32\imapi.exe
13:22:27.0984 0x0e1c  ImapiService - ok
13:22:28.0000 0x0e1c  ini910u - ok
13:22:28.0015 0x0e1c  IntelIde - ok
13:22:28.0046 0x0e1c  [ 3BB22519A194418D5FEC05D800A19AD0, F6662F440950596DC1382DD1DB5D7891CCEA30A6062BEA942C18445B5F0D8B16 ] Ip6Fw           C:\WINDOWS\system32\drivers\ip6fw.sys
13:22:28.0125 0x0e1c  Ip6Fw - ok
13:22:28.0156 0x0e1c  [ 731F22BA402EE4B62748ADAF6363C182, 5C3BEBD008A5BE4DC2F92076FF41A10DDC01E10EC7E6552213CFA11970811848 ] IpFilterDriver  C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
13:22:28.0218 0x0e1c  IpFilterDriver - ok
13:22:28.0250 0x0e1c  [ B87AB476DCF76E72010632B5550955F5, E6E74D3A86A7917A8BAED44F8E97CCD2EB171E4E4B27E9907F60D1523FAF319A ] IpInIp          C:\WINDOWS\system32\DRIVERS\ipinip.sys
13:22:28.0328 0x0e1c  IpInIp - ok
13:22:28.0343 0x0e1c  [ CC748EA12C6EFFDE940EE98098BF96BB, AF523E21C25D9A1715EFEA573E4F52AF5D4FC9F28A2D613F5DB629C186C439E0 ] IpNat           C:\WINDOWS\system32\DRIVERS\ipnat.sys
13:22:28.0421 0x0e1c  IpNat - ok
13:22:28.0500 0x0e1c  [ 10F97E4666133FF3E66EE7F31551536E, 9BB1BE505EC0195A4740C214FD9DA744A5D98B9114E7517ABB575F752ED59EEE ] iPod Service    C:\Programme\iPod\bin\iPodService.exe
13:22:28.0515 0x0e1c  iPod Service - ok
13:22:28.0578 0x0e1c  [ 23C74D75E36E7158768DD63D92789A91, 394D296F38E7D8EFD91A6EEC301D9CE6AF910E35EB9819F1A9E3363863AEDFDC ] IPSec           C:\WINDOWS\system32\DRIVERS\ipsec.sys
13:22:28.0656 0x0e1c  IPSec - ok
13:22:28.0687 0x0e1c  [ C93C9FF7B04D772627A3646D89F7BF89, 805FA48E7A46D4F10240BF880A2468F53DEA36E83004399228AB70DB7D20544A ] IRENUM          C:\WINDOWS\system32\DRIVERS\irenum.sys
13:22:28.0718 0x0e1c  IRENUM - ok
13:22:28.0750 0x0e1c  [ 6DFB88F64135C525433E87648BDA30DE, 8233EEFBEF36AAA152F2C55D23D7118F0DE40C9C22EB5D9793405A4770889540 ] isapnp          C:\WINDOWS\system32\DRIVERS\isapnp.sys
13:22:28.0812 0x0e1c  isapnp - ok
13:22:28.0906 0x0e1c  [ 9ECF00E19736054E019C532AED8228FC, F5A64A8269EA3655BBD4850298F335C0BD30535258928ED7CE62A32A3363E60B ] JavaQuickStarterService C:\Programme\Java\jre7\bin\jqs.exe
13:22:28.0906 0x0e1c  JavaQuickStarterService - ok
13:22:28.0937 0x0e1c  [ 1704D8C4C8807B889E43C649B478A452, E854C90CD301F42BE2520CEDAD35E49DF2D43606CF4EEED861B74882118D04D1 ] Kbdclass        C:\WINDOWS\system32\DRIVERS\kbdclass.sys
13:22:29.0000 0x0e1c  Kbdclass - ok
13:22:29.0015 0x0e1c  [ B6D6C117D771C98130497265F26D1882, E79CC4EA5C088F988BA61F80764F9CAD9B78BC56A7E17DD54622C75483BC5DF4 ] kbdhid          C:\WINDOWS\system32\DRIVERS\kbdhid.sys
13:22:29.0093 0x0e1c  kbdhid - ok
13:22:29.0109 0x0e1c  [ 692BCF44383D056AED41B045A323D378, 1A99DEE83FFAF64E73067FC049C0A4CE07D94E4AE31EFA17B38CEFA9E41D67DC ] kmixer          C:\WINDOWS\system32\drivers\kmixer.sys
13:22:29.0187 0x0e1c  kmixer - ok
13:22:29.0218 0x0e1c  [ 566C5FD480FDBCE3BA5CF9FBCFFAEA9A, 573681387B27FB2C8DC6612474B9BB8631F6CD3CED29AEBF91992606875724D2 ] KMWDFILTER      C:\WINDOWS\system32\DRIVERS\KMWDFILTER.sys
13:22:29.0250 0x0e1c  KMWDFILTER - ok
13:22:29.0281 0x0e1c  [ B467646C54CC746128904E1654C750C1, 3BD71BE3663EA23463D236D8A2A2E42DFA10C502BDB4B6E131FAF0FBA748219E ] KSecDD          C:\WINDOWS\system32\drivers\KSecDD.sys
13:22:29.0328 0x0e1c  KSecDD - ok
13:22:29.0359 0x0e1c  [ 2BBDCB79900990F0716DFCB714E72DE7, 6283789201164A9254632D9A3C8A54FE697717D5F8D5A37804D924DC2B70C8E3 ] LanmanServer    C:\WINDOWS\System32\srvsvc.dll
13:22:29.0390 0x0e1c  LanmanServer - ok
13:22:29.0453 0x0e1c  [ 1869B14B06B44B44AF70548E1EA3303F, 4D63B4DAF580C86F86837C7D1753E2105B4C52E26D4CA0CAAFE83755EFF7AFBE ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
13:22:29.0484 0x0e1c  lanmanworkstation - ok
13:22:29.0500 0x0e1c  lbrtfdc - ok
13:22:29.0546 0x0e1c  [ 636714B7D43C8D0C80449123FD266920, F06F6C7DC49B26EFCAC3570C67BA9BD934F62C6F382DA4DD2AB302C7B970F414 ] LmHosts         C:\WINDOWS\System32\lmhsvc.dll
13:22:29.0625 0x0e1c  LmHosts - ok
13:22:29.0671 0x0e1c  [ ED643E777BA3F7151EF3F0FB6BE4F7F0, 94B96367ECF2140299F36D93C00C9FE666953BEA6A1253EEEAAC439A682D38CA ] LVRS            C:\WINDOWS\system32\DRIVERS\lvrs.sys
13:22:29.0703 0x0e1c  LVRS - ok
13:22:29.0859 0x0e1c  [ 5BC80451109A8DD7F2DDD35BCE2929A3, F97BAD2D43D1E199841BAE5707424B49B4451CD486F249646E898FC7CC7AB4C8 ] LVUVC           C:\WINDOWS\system32\DRIVERS\lvuvc.sys
13:22:30.0031 0x0e1c  LVUVC - ok
13:22:30.0109 0x0e1c  [ ECAB006AC6136F1307E140B633CDB8C2, CAF7B51C0BE52A80FAEE6A2F93D5AF0D9ACD7C2255C4D711EC467755C4F8B9B6 ] McAfee SiteAdvisor Service C:\Programme\Gemeinsame Dateien\Mcafee\McSvcHost\McSvHost.exe
13:22:30.0125 0x0e1c  McAfee SiteAdvisor Service - ok
13:22:30.0203 0x0e1c  [ 16B115E3706F493BE99FCA5D75EE54CF, CAEC1D17894EBBE303A23BD33B6E9DB9EFB670E31C7393812BCFB8B418FCD816 ] McAPExe         C:\Programme\McAfee\MSC\McAPExe.exe
13:22:30.0218 0x0e1c  McAPExe - ok
13:22:30.0281 0x0e1c  [ 5007E21208DA68F60EBF43352BDFE6D0, 698B6AB8260E05D6A2D168939E8D7F9F1CC1C78FDEC4F6B9D1A7289FD83C841B ] mcbootdelaystartsvc C:\Programme\Gemeinsame Dateien\Mcafee\Platform\McSvcHost\McSvHost.exe
13:22:30.0296 0x0e1c  mcbootdelaystartsvc - ok
13:22:30.0312 0x0e1c  [ 5007E21208DA68F60EBF43352BDFE6D0, 698B6AB8260E05D6A2D168939E8D7F9F1CC1C78FDEC4F6B9D1A7289FD83C841B ] McMPFSvc        C:\Programme\Gemeinsame Dateien\Mcafee\Platform\McSvcHost\McSvHost.exe
13:22:30.0328 0x0e1c  McMPFSvc - ok
13:22:30.0343 0x0e1c  [ 5007E21208DA68F60EBF43352BDFE6D0, 698B6AB8260E05D6A2D168939E8D7F9F1CC1C78FDEC4F6B9D1A7289FD83C841B ] McNaiAnn        C:\Programme\Gemeinsame Dateien\Mcafee\Platform\McSvcHost\McSvHost.exe
13:22:30.0359 0x0e1c  McNaiAnn - ok
13:22:30.0437 0x0e1c  [ 3A01047FFF666D33EBDE3513D20DA1F5, 360A1D6C2CBDF9C25E72B872ACE36E69D43218E532248A08753490ED6C266CBE ] McODS           C:\Programme\McAfee\VirusScan\mcods.exe
13:22:30.0468 0x0e1c  McODS - ok
13:22:30.0500 0x0e1c  [ 5007E21208DA68F60EBF43352BDFE6D0, 698B6AB8260E05D6A2D168939E8D7F9F1CC1C78FDEC4F6B9D1A7289FD83C841B ] mcpltsvc        C:\Programme\Gemeinsame Dateien\Mcafee\Platform\McSvcHost\McSvHost.exe
13:22:30.0515 0x0e1c  mcpltsvc - ok
13:22:30.0531 0x0e1c  [ 5007E21208DA68F60EBF43352BDFE6D0, 698B6AB8260E05D6A2D168939E8D7F9F1CC1C78FDEC4F6B9D1A7289FD83C841B ] McProxy         C:\Programme\Gemeinsame Dateien\Mcafee\Platform\McSvcHost\McSvHost.exe
13:22:30.0546 0x0e1c  McProxy - ok
13:22:30.0578 0x0e1c  [ 7CF1B716372B89568AE4C0FE769F5869, 0D70A7A594BCFBB26D7249C0F4B0AF9EF874F2318B3FDCE44648CC61279594ED ] MDM             C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7DEBUG\mdm.exe
13:22:30.0609 0x0e1c  MDM - detected UnsignedFile.Multi.Generic ( 1 )
13:22:30.0609 0x0e1c  MDM ( UnsignedFile.Multi.Generic ) - warning
13:22:30.0640 0x0e1c  [ B7550A7107281D170CE85524B1488C98, A3854B16A65436BEF6BEDE918B43B3BE8F00D303660DB5831DD376271DC43239 ] Messenger       C:\WINDOWS\System32\msgsvc.dll
13:22:30.0718 0x0e1c  Messenger - ok
13:22:30.0750 0x0e1c  [ BD40B4F2E6282ADABE9D82E963DB42FB, B35E94445B0178D750F9CFE0A260E576DCB0DD280E8B00F0767568C170690073 ] mfeapfk         C:\WINDOWS\system32\drivers\mfeapfk.sys
13:22:30.0765 0x0e1c  mfeapfk - ok
13:22:30.0796 0x0e1c  [ 2AED3FE3E34AE751F4FD7EDF97B411F0, A19836AC942375662E3F3D5E13A75AC16994432C2EAB5F56934DDA97E2FFEB40 ] mfeavfk         C:\WINDOWS\system32\drivers\mfeavfk.sys
13:22:30.0812 0x0e1c  mfeavfk - ok
13:22:30.0843 0x0e1c  [ 4DA6C7377F721C1A621FBE0474A77D60, 25FA62B4D4198609F97F58C7E2DE50533337E21D768EC74C1E00141B08D76E40 ] mfebopk         C:\WINDOWS\system32\drivers\mfebopk.sys
13:22:30.0843 0x0e1c  mfebopk - ok
13:22:30.0921 0x0e1c  [ F2390CA991F8111D08CB5D5FE56EAEE1, E8891E3ED6C5B238FFA60736F3B71F42F8E24BB87CE97F993B47BA5D340FBDB9 ] mfecore         C:\Programme\Gemeinsame Dateien\McAfee\AMCore\mcshield.exe
13:22:30.0953 0x0e1c  mfecore - ok
13:22:31.0000 0x0e1c  [ 8020C7C06B9DDC3372A9A84844C03136, 24C0FCBBDCEEB9A804D6A160C904DBEFD2DF5C576856255CAC2206EC9A6C9809 ] mfefire         C:\Programme\Gemeinsame Dateien\McAfee\SystemCore\\mfefire.exe
13:22:31.0015 0x0e1c  mfefire - ok
13:22:31.0046 0x0e1c  [ 496FA40A3D40A1158978498CFB814D9E, FD31EC8114C784F741602AC7D584CD244482BB098BA2C2F49B06D2943BBA74A5 ] mfefirek        C:\WINDOWS\system32\drivers\mfefirek.sys
13:22:31.0062 0x0e1c  mfefirek - ok
13:22:31.0093 0x0e1c  [ 7A4C47EB5772B5E4E99D01734A60679B, 7D6CE9EFC9AEA2A6A1C1CE12477BC7B21436CE4E497F04E1C43FA392C8092136 ] mfehidk         C:\WINDOWS\system32\drivers\mfehidk.sys
13:22:31.0125 0x0e1c  mfehidk - ok
13:22:31.0171 0x0e1c  [ 9CF051BAD1E5DDA2E8D4330DDDD0BC5D, 58C12EAB723014741D445F784821EE39C69B270846641E0B327E701660C3F1A6 ] mfencbdc        C:\WINDOWS\system32\DRIVERS\mfencbdc.sys
13:22:31.0187 0x0e1c  mfencbdc - ok
13:22:31.0218 0x0e1c  [ 6114C0155E15690524AAA8B483CD9839, F7A7728BDCF96C08D0CFA8A3210F6E20FA82882C3433605DEFCCFB6D115593DC ] mfencrk         C:\WINDOWS\system32\DRIVERS\mfencrk.sys
13:22:31.0234 0x0e1c  mfencrk - ok
13:22:31.0265 0x0e1c  [ C4CEBD21C39E2E7DBD156BC458F8EC7D, 8120677ECBA8A12F0C711986D9BF5154CE9D48C9463DB79445672C5595F3FC64 ] mfendisk        C:\WINDOWS\system32\DRIVERS\mfendisk.sys
13:22:31.0281 0x0e1c  mfendisk - ok
13:22:31.0312 0x0e1c  [ C4CEBD21C39E2E7DBD156BC458F8EC7D, 8120677ECBA8A12F0C711986D9BF5154CE9D48C9463DB79445672C5595F3FC64 ] mfendiskmp      C:\WINDOWS\system32\DRIVERS\mfendisk.sys
13:22:31.0328 0x0e1c  mfendiskmp - ok
13:22:31.0343 0x0e1c  [ C453856A058C6B3EB84D054173DDDC4D, AFC25C058CE4255AA6E0A61CD4F3A0713015164F8F005313C88F2C9FB5A47B86 ] mfetdi2k        C:\WINDOWS\system32\drivers\mfetdi2k.sys
13:22:31.0343 0x0e1c  mfetdi2k - ok
13:22:31.0375 0x0e1c  [ 9ECA2FA155897ED17E42AFC70F0CE01D, D646CA71A99241D3E5C8A9521D5B18B17BB8F85115271C476FB0ED3E4A21987A ] mfevtp          C:\WINDOWS\system32\mfevtps.exe
13:22:31.0406 0x0e1c  mfevtp - ok
13:22:31.0468 0x0e1c  [ 4AE068242760A1FB6E1A44BF4E16AFA6, 1FB771162B96AAF787AC24867B818DF8511F0780BB094FA9A38C11D8DBFE68BC ] mnmdd           C:\WINDOWS\system32\drivers\mnmdd.sys
13:22:31.0531 0x0e1c  mnmdd - ok
13:22:31.0562 0x0e1c  [ C2F1D365FD96791B037EE504868065D3, 87BD87E08FD00D115524B049F1A3A719AB86557D68968E7090CD0F271F985CAF ] mnmsrvc         C:\WINDOWS\system32\mnmsrvc.exe
13:22:31.0640 0x0e1c  mnmsrvc - ok
13:22:31.0656 0x0e1c  [ 6FB74EBD4EC57A6F1781DE3852CC3362, 0454509D9A31E0202C08AE17294E2682F227D177A3C73B303E4C8332757AFCA1 ] Modem           C:\WINDOWS\system32\drivers\Modem.sys
13:22:31.0734 0x0e1c  Modem - ok
13:22:31.0796 0x0e1c  [ 9FA7207D1B1ADEAD88AE8EED9CDBBAA5, 2AC3875B2E7D9B0692253A9867B940CF214DE03574808B42C3702843BC1D5696 ] MonFilt         C:\WINDOWS\system32\drivers\MonFilt.sys
13:22:31.0875 0x0e1c  MonFilt - ok
13:22:31.0906 0x0e1c  [ B24CE8005DEAB254C0251E15CB71D802, 6804A8ABDAD5EC846E7F8077D1EE9BA45D6226ACFF42C70BE3DE7C8980EF9EC4 ] Mouclass        C:\WINDOWS\system32\DRIVERS\mouclass.sys
13:22:31.0968 0x0e1c  Mouclass - ok
13:22:32.0000 0x0e1c  [ 66A6F73C74E1791464160A7065CE711A, 3C570FA1E8EF976B83759220FE95BAC9D7D48D607F91B113EDE4790D34ACBD46 ] mouhid          C:\WINDOWS\system32\DRIVERS\mouhid.sys
13:22:32.0062 0x0e1c  mouhid - ok
13:22:32.0093 0x0e1c  [ A80B9A0BAD1B73637DBCBBA7DF72D3FD, 2A5E15ED2C24C6C65EF2F7E1FD93374774076C9D8D451E4422561F4D269C012F ] MountMgr        C:\WINDOWS\system32\drivers\MountMgr.sys
13:22:32.0156 0x0e1c  MountMgr - ok
13:22:32.0203 0x0e1c  [ 26EA1DAD601EE3ACAC301D66F07BA219, C9594BB15D53D4AC2156CCCD2DB65B2C20620F1F60DA85F48D1586FC10028096 ] MozillaMaintenance C:\Programme\Mozilla Maintenance Service\maintenanceservice.exe
13:22:32.0218 0x0e1c  MozillaMaintenance - ok
13:22:32.0250 0x0e1c  [ C0F8E0C2C3C0437CF37C6781896DC3EC, 12196EF5A94BD011B5D578E755B51424E3238437A028CC1EDFB53138C00D3339 ] MPE             C:\WINDOWS\system32\DRIVERS\MPE.sys
13:22:32.0312 0x0e1c  MPE - ok
13:22:32.0312 0x0e1c  mraid35x - ok
13:22:32.0328 0x0e1c  [ 11D42BB6206F33FBB3BA0288D3EF81BD, 76ABCFB62C5AC549F58C231F72A99882CDEB74928104B77FE52554765C2B1A22 ] MRxDAV          C:\WINDOWS\system32\DRIVERS\mrxdav.sys
13:22:32.0406 0x0e1c  MRxDAV - ok
13:22:32.0453 0x0e1c  [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0, DB9B186F7076D7B94F45041AF7B77C1AD2CAB504D683B459C6CB1C22840ED170 ] MRxSmb          C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
13:22:32.0484 0x0e1c  MRxSmb - ok
13:22:32.0515 0x0e1c  [ 35A031AF38C55F92D28AA03EE9F12CC9, 97245D204C886EE8DCCC2DEAC80A0E358A7E0C1982F77389DA50DCF091FC9DDC ] MSDTC           C:\WINDOWS\system32\msdtc.exe
13:22:32.0578 0x0e1c  MSDTC - ok
13:22:32.0640 0x0e1c  [ C941EA2454BA8350021D774DAF0F1027, C940E978C7B66A713A0FDAB54B5F995DF59D089AFCD96221DD3222948CD49BBD ] Msfs            C:\WINDOWS\system32\drivers\Msfs.sys
13:22:32.0703 0x0e1c  Msfs - ok
13:22:32.0718 0x0e1c  MSIServer - ok
13:22:32.0750 0x0e1c  [ D1575E71568F4D9E14CA56B7B0453BF1, 4ABE0E24786C0D39FA2B885447E56204CA6942FB175E534DCE675D7BCF0B176A ] MSKSSRV         C:\WINDOWS\system32\drivers\MSKSSRV.sys
13:22:32.0812 0x0e1c  MSKSSRV - ok
13:22:32.0843 0x0e1c  [ 325BB26842FC7CCC1FCCE2C457317F3E, C07BE560513B1FB91D756494F0BA4AEEB2E1998DE0E1C21EE83DB1183B0CEE91 ] MSPCLOCK        C:\WINDOWS\system32\drivers\MSPCLOCK.sys
13:22:32.0921 0x0e1c  MSPCLOCK - ok
13:22:32.0937 0x0e1c  [ BAD59648BA099DA4A17680B39730CB3D, 9AD4C7C94C186C8815D0BC75DCAFB962158DA6935A244BA243EDDDEB33F9816C ] MSPQM           C:\WINDOWS\system32\drivers\MSPQM.sys
13:22:33.0000 0x0e1c  MSPQM - ok
13:22:33.0031 0x0e1c  [ AF5F4F3F14A8EA2C26DE30F7A1E17136, AC93A1E4ABB0D038B772E429015567E44CC2EDB66C54DBE23A5F98176FAC1520 ] mssmbios        C:\WINDOWS\system32\DRIVERS\mssmbios.sys
13:22:33.0109 0x0e1c  mssmbios - ok
13:22:33.0109 0x0e1c  [ E53736A9E30C45FA9E7B5EAC55056D1D, 38602F280BF69EBA3706AD175AFC1AEB561A8302B4B61E3FECB3C27D7A9BDB41 ] MSTEE           C:\WINDOWS\system32\drivers\MSTEE.sys
13:22:33.0171 0x0e1c  MSTEE - ok
13:22:33.0218 0x0e1c  [ DE6A75F5C270E756C5508D94B6CF68F5, FCC972DDC36C2C44D836913F10004C2C33B11C54DEFFF0C63E0FDF901D2F9261 ] Mup             C:\WINDOWS\system32\drivers\Mup.sys
13:22:33.0234 0x0e1c  Mup - ok
13:22:33.0281 0x0e1c  [ 5B50F1B2A2ED47D560577B221DA734DB, C16A554B6E1A7F5F98C94DFA88163E0F7426506BF2F51FD351B1A05FC0DB3BC5 ] NABTSFEC        C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
13:22:33.0343 0x0e1c  NABTSFEC - ok
13:22:33.0375 0x0e1c  [ 46BB15AE2AC7D025D6D2567B876817BD, 102A101B96D1078C98FA0F871C801A9A8538E20E5686AB0C7680B2F6C92B3165 ] napagent        C:\WINDOWS\System32\qagentrt.dll
13:22:33.0468 0x0e1c  napagent - ok
13:22:33.0484 0x0e1c  [ 1DF7F42665C94B825322FAE71721130D, FE0DCB728471465B39A42A7511F4133021FBA5DF88F88BCB5FE2FF34CFD713F9 ] NDIS            C:\WINDOWS\system32\drivers\NDIS.sys
13:22:33.0562 0x0e1c  NDIS - ok
13:22:33.0578 0x0e1c  [ 7FF1F1FD8609C149AA432F95A8163D97, 18CD1FF5AC1EF8A38D1EC53014F2BADD28D9CDF4ECE2EBC2313D08903776F323 ] NdisIP          C:\WINDOWS\system32\DRIVERS\NdisIP.sys
13:22:33.0640 0x0e1c  NdisIP - ok
13:22:33.0671 0x0e1c  [ 0109C4F3850DFBAB279542515386AE22, 4F6DB1E499AC853FD36FD603FBB6D3AC9BDCEB298C7FE1FB59A9236CB46729B2 ] NdisTapi        C:\WINDOWS\system32\DRIVERS\ndistapi.sys
13:22:33.0687 0x0e1c  NdisTapi - ok
13:22:33.0718 0x0e1c  [ F927A4434C5028758A842943EF1A3849, B1AA3AF150C05307461774925901789456B0CCCD03A5E71ADA4AB58455962BEE ] Ndisuio         C:\WINDOWS\system32\DRIVERS\ndisuio.sys
13:22:33.0781 0x0e1c  Ndisuio - ok
13:22:33.0796 0x0e1c  [ EDC1531A49C80614B2CFDA43CA8659AB, 494042F790F33721328B4451E79842E21919681CC421A4F9633EC4D383E06097 ] NdisWan         C:\WINDOWS\system32\DRIVERS\ndiswan.sys
13:22:33.0859 0x0e1c  NdisWan - ok
13:22:33.0906 0x0e1c  [ 2F597BB467E05B1FE3830EABD821B8E0, 141497F5A49D47CCE3C9289644F4BD838DCB238F6D8E847FC006652E21FE02AC ] NDProxy         C:\WINDOWS\system32\drivers\NDProxy.sys
13:22:33.0937 0x0e1c  NDProxy - ok
13:22:33.0984 0x0e1c  [ 5D81CF9A2F1A3A756B66CF684911CDF0, 7989C36607CAEA17AFA2C1C9904145CA0714A54B9F712D9D4C1AB140D0B2CC0C ] NetBIOS         C:\WINDOWS\system32\DRIVERS\netbios.sys
13:22:34.0046 0x0e1c  NetBIOS - ok
13:22:34.0062 0x0e1c  [ 74B2B2F5BEA5E9A3DC021D685551BD3D, 7932B71F98B4122BE88F576BF6D745A757AE378A48924B7F4358837B75640A82 ] NetBT           C:\WINDOWS\system32\DRIVERS\netbt.sys
13:22:34.0140 0x0e1c  NetBT - ok
13:22:34.0171 0x0e1c  [ 8ACE4251BFFD09CE75679FE940E996CC, 81969521B5EAEA09ECA63058BE9697BB69AF2596339CA9DF0CFEDC031DCFDC7E ] NetDDE          C:\WINDOWS\system32\netdde.exe
13:22:34.0250 0x0e1c  NetDDE - ok
13:22:34.0265 0x0e1c  [ 8ACE4251BFFD09CE75679FE940E996CC, 81969521B5EAEA09ECA63058BE9697BB69AF2596339CA9DF0CFEDC031DCFDC7E ] NetDDEdsdm      C:\WINDOWS\system32\netdde.exe
13:22:34.0328 0x0e1c  NetDDEdsdm - ok
13:22:34.0343 0x0e1c  [ AFB8261B56CBA0D86AEB6DF682AF9785, 104D96F1F19DD4CE492064ACC9634406A019EAE20B42D03198E400E661897127 ] Netlogon        C:\WINDOWS\system32\lsass.exe
13:22:34.0406 0x0e1c  Netlogon - ok
13:22:34.0437 0x0e1c  [ E6D88F1F6745BF00B57E7855A2AB696C, 12A5EDD853600FF5EBF91E127077745AE1E61E66DBC1D4D4306570F171AF4A39 ] Netman          C:\WINDOWS\System32\netman.dll
13:22:34.0500 0x0e1c  Netman - ok
13:22:34.0546 0x0e1c  [ D34612C5D02D026535B3095D620626AE, 1BBCCCBF49EB8807240A77DCB43C25C21682073CC5356594E2C4F53EF36BF657 ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
13:22:34.0562 0x0e1c  NetTcpPortSharing - ok
13:22:34.0609 0x0e1c  [ F1B67B6B0751AE0E6E964B02821206A3, 3D5A7593ABDEE2047C5738671C85DC8B95A4ECF58D5D7B04EEE13A689839A540 ] Nla             C:\WINDOWS\System32\mswsock.dll
13:22:34.0625 0x0e1c  Nla - ok
13:22:34.0656 0x0e1c  [ 3182D64AE053D6FB034F44B6DEF8034A, 4ADFC76965BA2A5F488E71789A4E4EA702A74AF42725F72130D1CA919406CF19 ] Npfs            C:\WINDOWS\system32\drivers\Npfs.sys
13:22:34.0718 0x0e1c  Npfs - ok
13:22:34.0750 0x0e1c  [ 78A08DD6A8D65E697C18E1DB01C5CDCA, E0E6F3ED05068E32F1D5C2D2B38CDEF4536B8656DB6756C66CF6B40B60C8F3DA ] Ntfs            C:\WINDOWS\system32\drivers\Ntfs.sys
13:22:34.0843 0x0e1c  Ntfs - ok
13:22:34.0875 0x0e1c  [ AFB8261B56CBA0D86AEB6DF682AF9785, 104D96F1F19DD4CE492064ACC9634406A019EAE20B42D03198E400E661897127 ] NtLmSsp         C:\WINDOWS\system32\lsass.exe
13:22:34.0937 0x0e1c  NtLmSsp - ok
13:22:34.0984 0x0e1c  [ 56AF4064996FA5BAC9C449B1514B4770, 154602EFEC22728503D4ABA025DF711B0F2CFC983F5E3BF25F2A4BCD1AE250EC ] NtmsSvc         C:\WINDOWS\system32\ntmssvc.dll
13:22:35.0062 0x0e1c  NtmsSvc - ok
13:22:35.0078 0x0e1c  [ 73C1E1F395918BC2C6DD67AF7591A3AD, B21133A75253EC15E2DFF66D3B480AB1A7E1A2360476C810E7AA55D0F0EB08D4 ] Null            C:\WINDOWS\system32\drivers\Null.sys
13:22:35.0125 0x0e1c  Null - ok
13:22:35.0484 0x0e1c  [ 7C56F3FD65B2BDB315CA3605A5392D7B, 1C33B2723BBD958FE06D71B6AC5C54DF1F46491C292749FE0DB8577BF056A765 ] nv              C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
13:22:35.0906 0x0e1c  nv - ok
13:22:35.0968 0x0e1c  [ 70217A23470F4BB4C8FB4ABE06813081, 78148E689526983E3163BD1768C20D9943AC4D07C6D11C567E232798FD150E1B ] NVENETFD        C:\WINDOWS\system32\DRIVERS\NVENETFD.sys
13:22:35.0984 0x0e1c  NVENETFD - ok
13:22:36.0015 0x0e1c  [ EA98BFE4931BD13D747D647C1859796E, B5D0C23EEB0067DE64FB49A9DB86FDCE77547DE6C73A2657FA43122CB16026BB ] nvgts           C:\WINDOWS\system32\DRIVERS\nvgts.sys
13:22:36.0031 0x0e1c  nvgts - ok
13:22:36.0062 0x0e1c  [ BE8513730653384939A4D2D977C81027, 87A36A08146E13FCFB53851052B0C4A78E909548336EC68E693A515B95385AD9 ] nvnetbus        C:\WINDOWS\system32\DRIVERS\nvnetbus.sys
13:22:36.0078 0x0e1c  nvnetbus - ok
13:22:36.0109 0x0e1c  [ 1982E96B2C5C2EFFEF38EFC37293A42E, 06FA232C69CEEDE98EBC4580C0C1421688A4909CB46912D5E16541A2020F3160 ] NVSvc           C:\WINDOWS\system32\nvsvc32.exe
13:22:36.0125 0x0e1c  NVSvc - ok
13:22:36.0203 0x0e1c  [ E6568D2D90028207587CB43CD8E5FD01, 671D44781C5DBB8AD42904A5A749B0256344A54C801390E8C92E9339E2FBE354 ] nvUpdatusService C:\Programme\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
13:22:36.0281 0x0e1c  nvUpdatusService - ok
13:22:36.0312 0x0e1c  [ B305F3FAD35083837EF46A0BBCE2FC57, 9D0E0E666D652D0FC9EAB97280A5D67AAF61D6B21929DF7CF8ED72A367720464 ] NwlnkFlt        C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
13:22:36.0375 0x0e1c  NwlnkFlt - ok
13:22:36.0390 0x0e1c  [ C99B3415198D1AAB7227F2C88FD664B9, DD8DA4B5E804F134AB9233859544C025062902DFC3E8FB8A09A67337A4E73F55 ] NwlnkFwd        C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
13:22:36.0453 0x0e1c  NwlnkFwd - ok
13:22:36.0531 0x0e1c  [ 785F487A64950F3CB8E9F16253BA3B7B, 02445344BD214370A6D48B1CA04921D8EFCB13E676B5648266DD0E076C0822B6 ] odserv          C:\Programme\Gemeinsame Dateien\Microsoft Shared\OFFICE12\ODSERV.EXE
13:22:36.0546 0x0e1c  odserv - ok
13:22:36.0593 0x0e1c  [ 5A432A042DAE460ABE7199B758E8606C, 6E5D1F477D290905BE27CEBF9572BAC6B05FFEF2FAD901D3C8E11F665F8B9A71 ] ose             C:\Programme\Gemeinsame Dateien\Microsoft Shared\Source Engine\OSE.EXE
13:22:36.0609 0x0e1c  ose - ok
13:22:36.0625 0x0e1c  [ F84785660305B9B903FB3BCA8BA29837, BDBDE61076800415D98759077E9E039C80B55DBE68E31F8BF44A909C6C3D3276 ] Parport         C:\WINDOWS\system32\drivers\Parport.sys
13:22:36.0703 0x0e1c  Parport - ok
13:22:36.0734 0x0e1c  [ BEB3BA25197665D82EC7065B724171C6, 7E71C13BA30CD95CEE8A9CC85E6F48A01F30EDEAADEE69D80AE828BF97E5A5CA ] PartMgr         C:\WINDOWS\system32\drivers\PartMgr.sys
13:22:36.0812 0x0e1c  PartMgr - ok
13:22:36.0843 0x0e1c  [ C2BF987829099A3EAA2CA6A0A90ECB4F, 1DF21EA8E43875CFEECD869407429F82FB449707CFB845718499468E699BAAAA ] ParVdm          C:\WINDOWS\system32\drivers\ParVdm.sys
13:22:36.0906 0x0e1c  ParVdm - ok
13:22:36.0921 0x0e1c  [ 387E8DEDC343AA2D1EFBC30580273ACD, 5F3E642BDB759777E570ED5B22AC7E93CDCD362708F281657AD7BAB44EDEC802 ] PCI             C:\WINDOWS\system32\DRIVERS\pci.sys
13:22:36.0984 0x0e1c  PCI - ok
13:22:37.0000 0x0e1c  PCIDump - ok
13:22:37.0015 0x0e1c  [ 59BA86D9A61CBCF4DF8E598C331F5B82, 822D11C5CE77BFD7B2F25350CCBF92B0B9388EEA6D86ED220B768C720976D839 ] PCIIde          C:\WINDOWS\system32\DRIVERS\pciide.sys
13:22:37.0078 0x0e1c  PCIIde - ok
13:22:37.0109 0x0e1c  [ A2A966B77D61847D61A3051DF87C8C97, 6CED7CA26DC62B0AAFC83A2E07336DAD25954491201BB8E06103971F3F0B8B51 ] Pcmcia          C:\WINDOWS\system32\drivers\Pcmcia.sys
13:22:37.0171 0x0e1c  Pcmcia - ok
13:22:37.0187 0x0e1c  PDCOMP - ok
13:22:37.0203 0x0e1c  PDFRAME - ok
13:22:37.0218 0x0e1c  PDRELI - ok
13:22:37.0234 0x0e1c  PDRFRAME - ok
13:22:37.0234 0x0e1c  perc2 - ok
13:22:37.0250 0x0e1c  perc2hib - ok
13:22:37.0390 0x0e1c  [ DD184D9ADFE2A8A21741DBDFE9E22F5C, 0C22966973246248FD15A6C192AA1B731D018B4FDF1BD97FE9AA67A746C9440C ] PID_PEPI        C:\WINDOWS\system32\DRIVERS\LV302V32.SYS
13:22:37.0500 0x0e1c  PID_PEPI - ok
13:22:37.0531 0x0e1c  [ A3EDBE9053889FB24AB22492472B39DC, 6F2ED6E04BDE2FCA2A8BF9BD2D1D6923DE6EAECB46F582B6C0BD1CF364D65C9E ] PlugPlay        C:\WINDOWS\system32\services.exe
13:22:37.0546 0x0e1c  PlugPlay - ok
13:22:37.0593 0x0e1c  [ CBCEC2C45E7D672EC6E46CBFF23BDF8E, 2E51A0E9A5AE8F017D0AC22D46036FFFAF917CBC6A7C7297B63C1154DFC7FCC6 ] PMBDeviceInfoProvider C:\Programme\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe
13:22:37.0640 0x0e1c  PMBDeviceInfoProvider - ok
13:22:37.0656 0x0e1c  [ AFB8261B56CBA0D86AEB6DF682AF9785, 104D96F1F19DD4CE492064ACC9634406A019EAE20B42D03198E400E661897127 ] PolicyAgent     C:\WINDOWS\system32\lsass.exe
13:22:37.0718 0x0e1c  PolicyAgent - ok
13:22:37.0734 0x0e1c  [ EFEEC01B1D3CF84F16DDD24D9D9D8F99, C5F0C8C66A3AF7E7BB04CEDE4AC5306F8387AB384A2107DC5BE413AAE968EFF1 ] PptpMiniport    C:\WINDOWS\system32\DRIVERS\raspptp.sys
13:22:37.0812 0x0e1c  PptpMiniport - ok
13:22:37.0828 0x0e1c  [ 2CB55427C58679F49AD600FCCBA76360, 2B5242E9637FCB6A7C16F720C9D8D440AA88B61FB5F108B295A208886C01C4D1 ] Processor       C:\WINDOWS\system32\DRIVERS\processr.sys
13:22:37.0890 0x0e1c  Processor - ok
13:22:37.0906 0x0e1c  [ AFB8261B56CBA0D86AEB6DF682AF9785, 104D96F1F19DD4CE492064ACC9634406A019EAE20B42D03198E400E661897127 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
13:22:37.0968 0x0e1c  ProtectedStorage - ok
13:22:38.0000 0x0e1c  [ 09298EC810B07E5D582CB3A3F9255424, 35473A1BE25AC289474090EB0806AC6B3035DC33D1F3DF97A14BF1E361AC6AC3 ] PSched          C:\WINDOWS\system32\DRIVERS\psched.sys
13:22:38.0062 0x0e1c  PSched - ok
13:22:38.0078 0x0e1c  [ 80D317BD1C3DBC5D4FE7B1678C60CADD, DA76804B55D0CAB3DDD01EFC06673764AE4860693375C658B6063FB14AF7F12C ] Ptilink         C:\WINDOWS\system32\DRIVERS\ptilink.sys
13:22:38.0140 0x0e1c  Ptilink - ok
13:22:38.0156 0x0e1c  ql1080 - ok
13:22:38.0156 0x0e1c  Ql10wnt - ok
13:22:38.0171 0x0e1c  ql12160 - ok
13:22:38.0187 0x0e1c  ql1240 - ok
13:22:38.0203 0x0e1c  ql1280 - ok
13:22:38.0343 0x0e1c  [ 138F7963118EC710C348819C08F72230, A5ED1F4C69132944EFF1BF91F59FF0C47BA54E6C8AC2124B36BF5C8B79E16441 ] Radio.fx        D:\Tobit Radio.fx\Server\rfx-server.exe
13:22:38.0515 0x0e1c  Radio.fx - ok
13:22:38.0562 0x0e1c  [ FE0D99D6F31E4FAD8159F690D68DED9C, 998685622ABE631984B7E4DBF91AB3594B1F574378D75EB9F6265F4650470692 ] RasAcd          C:\WINDOWS\system32\DRIVERS\rasacd.sys
13:22:38.0625 0x0e1c  RasAcd - ok
13:22:38.0656 0x0e1c  [ F5BA6CACCDB66C8F048E867563203246, AFEAD8FC02313F7EBC8F9F39E7ED2868852B480BE3902FA7BD0AFD81492AB243 ] RasAuto         C:\WINDOWS\System32\rasauto.dll
13:22:38.0750 0x0e1c  RasAuto - ok
13:22:38.0765 0x0e1c  [ 11B4A627BC9614B885C4969BFA5FF8A6, EAE0A412A2B0F68919C32A96B3A08CC1A06585E4998819F5C9051745F63FF5AD ] Rasl2tp         C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
13:22:38.0828 0x0e1c  Rasl2tp - ok
13:22:38.0859 0x0e1c  [ F9A7B66EA345726EDB5862A46B1ECCD5, 5D35429D394D36A1692A7E219BA1A85CD8096FEAE0F90BFE036A63118FEDBF57 ] RasMan          C:\WINDOWS\System32\rasmans.dll
13:22:38.0921 0x0e1c  RasMan - ok
13:22:38.0937 0x0e1c  [ 5BC962F2654137C9909C3D4603587DEE, A5CE5653D0105240F5E86CFAAB89E7917D42D939E2F27A5A7D6979289CA651B8 ] RasPppoe        C:\WINDOWS\system32\DRIVERS\raspppoe.sys
13:22:39.0000 0x0e1c  RasPppoe - ok
13:22:39.0015 0x0e1c  [ FDBB1D60066FCFBB7452FD8F9829B242, 10A2DACF944BD000032EBA8C095CB3D879CC55B28C377ADF6E52E508E47444DB ] Raspti          C:\WINDOWS\system32\DRIVERS\raspti.sys
13:22:39.0062 0x0e1c  Raspti - ok
13:22:39.0078 0x0e1c  [ 7AD224AD1A1437FE28D89CF22B17780A, 6645235CA27D671954E3557FA37082881C3D7D47492C71264CD8CB8D108EC801 ] Rdbss           C:\WINDOWS\system32\DRIVERS\rdbss.sys
13:22:39.0156 0x0e1c  Rdbss - ok
13:22:39.0156 0x0e1c  [ 4912D5B403614CE99C28420F75353332, 975341ECD660209987B5E5171B8315E032439E408CBE8A5986E67AF767F373BB ] RDPCDD          C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
13:22:39.0218 0x0e1c  RDPCDD - ok
13:22:39.0265 0x0e1c  [ 43AF5212BD8FB5BA6EED9754358BD8F7, AF330F61CECA4AFA359CEABC5EB3227E6B56A9A2DCE50701381D665122D7356D ] RDPWD           C:\WINDOWS\system32\drivers\RDPWD.sys
13:22:39.0312 0x0e1c  RDPWD - ok
13:22:39.0343 0x0e1c  [ 263AF18AF0F3DB99F574C95F284CCEC9, 2BFA9952E97EFEB386FC56EC2C125080CD12DAC078DBE43C395CB4D9F22165D3 ] RDSessMgr       C:\WINDOWS\system32\sessmgr.exe
13:22:39.0406 0x0e1c  RDSessMgr - ok
13:22:39.0437 0x0e1c  [ ED761D453856F795A7FE056E42C36365, EF026585B33415D8FCE94A9F27D7A4396C7C35C88E06A4CF0FEA702401E8597A ] redbook         C:\WINDOWS\system32\DRIVERS\redbook.sys
13:22:39.0500 0x0e1c  redbook - ok
13:22:39.0531 0x0e1c  [ 0E97EC96D6942CEEC2D188CC2EB69A01, D4253B4420BEF19451A55AB91E4834482181A31A31134F6E2AFE05C8E20C81A5 ] RemoteAccess    C:\WINDOWS\System32\mprdim.dll
13:22:39.0593 0x0e1c  RemoteAccess - ok
13:22:39.0609 0x0e1c  [ 2A02E21867497DF20B8FC95631395169, D89E2D17ED4E1C727847C0E92D2DF68AEB70BF0B956BD2FE024ED70A961759D2 ] RpcLocator      C:\WINDOWS\system32\locator.exe
13:22:39.0671 0x0e1c  RpcLocator - ok
13:22:39.0718 0x0e1c  [ 3127AFBF2C1ED0AB14A1BBB7AAECB85B, ECFBACE3CBF2384948EA1C445BDA3955EB4F44A9874286E6537C67DC1283E5B0 ] RpcSs           C:\WINDOWS\system32\rpcss.dll
13:22:39.0734 0x0e1c  RpcSs - ok
13:22:39.0781 0x0e1c  [ 4BDD71B4B521521499DFD14735C4F398, 7B1498D3C67E56D05B58B7DA319ECB0117C37963AABB0E59B42831C087469DA1 ] RSVP            C:\WINDOWS\system32\rsvp.exe
13:22:39.0843 0x0e1c  RSVP - ok
13:22:39.0875 0x0e1c  [ AFB8261B56CBA0D86AEB6DF682AF9785, 104D96F1F19DD4CE492064ACC9634406A019EAE20B42D03198E400E661897127 ] SamSs           C:\WINDOWS\system32\lsass.exe
13:22:39.0921 0x0e1c  SamSs - ok
13:22:39.0953 0x0e1c  [ DCEC079FAD95D36C8DD5CB6D779DFE32, F8546552D939A225853A0CE4913701A93738DF02C999D16E141E9A828814BBC6 ] SCardSvr        C:\WINDOWS\System32\SCardSvr.exe
13:22:40.0031 0x0e1c  SCardSvr - ok
13:22:40.0078 0x0e1c  [ A050194A44D7FA8D7186ED2F4E8367AE, BCDF56D5A2F9E202DC67E7FE4BCC617BCC0BDFF2D221A621020068B17B2855BB ] Schedule        C:\WINDOWS\system32\schedsvc.dll
13:22:40.0140 0x0e1c  Schedule - ok
13:22:40.0171 0x0e1c  [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] Secdrv          C:\WINDOWS\system32\DRIVERS\secdrv.sys
13:22:40.0203 0x0e1c  Secdrv - ok
13:22:40.0250 0x0e1c  [ BEE4CFD1D48C23B44CF4B974B0B79B2B, DF3B02D713F8A4602BE75F004074D5DF79AFF2D58FF37110B2A6AC29F680758B ] seclogon        C:\WINDOWS\System32\seclogon.dll
13:22:40.0312 0x0e1c  seclogon - ok
13:22:40.0343 0x0e1c  [ 2AAC9B6ED9EDDFFB721D6452E34D67E3, 95D83F054A6610328D56E56CD948A6618C590231853E56FC20E7557DB61384A4 ] SENS            C:\WINDOWS\system32\sens.dll
13:22:40.0406 0x0e1c  SENS - ok
13:22:40.0453 0x0e1c  [ 0F29512CCD6BEAD730039FB4BD2C85CE, 4F98AE390D1B14A755700DD6CEFB9CF921F0404AF2145D2D7E5F52394F87C6A5 ] Serenum         C:\WINDOWS\system32\DRIVERS\serenum.sys
13:22:40.0515 0x0e1c  Serenum - ok
13:22:40.0546 0x0e1c  [ CF24EB4F0412C82BCD1F4F35A025E31D, B74CB094126F5C23F601C34D53B2DF5BE3E5918230AC9DCFCFFA8E66B3A0FA25 ] Serial          C:\WINDOWS\system32\DRIVERS\serial.sys
13:22:40.0609 0x0e1c  Serial - ok
13:22:40.0671 0x0e1c  [ 8E6B8C671615D126FDC553D1E2DE5562, CEEC0067514555D5CA489F50E3D7562FCA8DB8E952C3C878604C9277FC77959F ] Sfloppy         C:\WINDOWS\system32\drivers\Sfloppy.sys
13:22:40.0734 0x0e1c  Sfloppy - ok
13:22:40.0765 0x0e1c  [ CAD058D5F8B889A87CA3EB3CF624DCEF, A7CDCF44261D1F4D820927253EA8EBB63714B7BAFF8B08DE073507D9A7EEA5BB ] SharedAccess    C:\WINDOWS\System32\ipnathlp.dll
13:22:40.0843 0x0e1c  SharedAccess - ok
13:22:40.0859 0x0e1c  [ 2DB7D303C36DDD055215052F118E8E75, BE6E7BBE12A7A4EDF1F1C2935350603970C7426BBCA7A1A6644BB8999123AF17 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
13:22:40.0875 0x0e1c  ShellHWDetection - ok
13:22:40.0890 0x0e1c  Simbad - ok
13:22:41.0062 0x0e1c  [ 388AE59FE75F1B959DFA0900923C61BB, 0D47F8B4B4FBE5BF041DBE75B0A14D905E9310FFA6F0160746455B38A349EA54 ] Skype C2C Service C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Skype\Toolbars\Skype C2C Service\c2c_service.exe
13:22:41.0187 0x0e1c  Skype C2C Service - ok
13:22:41.0296 0x0e1c  [ 50D9949020E02B847CD48F1243FCB895, 5BDAD5E44DE5B412645142810C5FCE4B2D9685F928FF4A6B836A9DCE7725BD78 ] SkypeUpdate     C:\Programme\Skype\Updater\Updater.exe
13:22:41.0328 0x0e1c  SkypeUpdate - ok
13:22:41.0359 0x0e1c  [ 866D538EBE33709A5C9F5C62B73B7D14, BC94BEB7C17B4FCAC8B5D0D5006A203BC209E0504EECE149651D8691935696CD ] SLIP            C:\WINDOWS\system32\DRIVERS\SLIP.sys
13:22:41.0437 0x0e1c  SLIP - ok
13:22:41.0468 0x0e1c  Sparrow - ok
13:22:41.0500 0x0e1c  [ AB8B92451ECB048A4D1DE7C3FFCB4A9F, DD17733CBB370FCA08F0296704D7CBEACA3C8F76D0ABE4761C3B1FFDF7481D9E ] splitter        C:\WINDOWS\system32\drivers\splitter.sys
13:22:41.0562 0x0e1c  splitter - ok
13:22:41.0593 0x0e1c  [ 60784F891563FB1B767F70117FC2428F, E0B07F08E60FFBAD36C2E58180F4B2A16DCA47716044CBE0213DF7B74D742F1F ] Spooler         C:\WINDOWS\system32\spoolsv.exe
13:22:41.0625 0x0e1c  Spooler - ok
13:22:41.0656 0x0e1c  [ 50FA898F8C032796D3B1B9951BB5A90F, 1C86273EC19EB96D6DB9CE6670C00683B77C99C42CC2F7E75BC50872B93446B1 ] sr              C:\WINDOWS\system32\DRIVERS\sr.sys
13:22:41.0687 0x0e1c  sr - ok
13:22:41.0718 0x0e1c  [ FE77A85495065F3AD59C5C65B6C54182, EB4BAF992F961B2FD5D24BFCB6BCB2142BC32933139A818835FEAB190E4283BB ] srservice       C:\WINDOWS\system32\srsvc.dll
13:22:41.0765 0x0e1c  srservice - ok
13:22:41.0796 0x0e1c  [ 47DDFC2F003F7F9F0592C6874962A2E7, 17C643BD4EB09B5666FE41817DC785BE04A6E491CE79E8E5A702CDBD98E1BDD7 ] Srv             C:\WINDOWS\system32\DRIVERS\srv.sys
13:22:41.0828 0x0e1c  Srv - ok
13:22:41.0890 0x0e1c  [ 64E44ACD8C238FCBBB78F0BA4BDC4B05, 59D015DD86EA35AC8F667C063AE76FAFA9497F04225D256DF5A37EB1461F15D4 ] ssadbus         C:\WINDOWS\system32\DRIVERS\ssadbus.sys
13:22:41.0921 0x0e1c  ssadbus - ok
13:22:41.0953 0x0e1c  [ BB2C84A15C765DA89FD832B0E73F26CE, BAE3E7726F075340B8CC7BCA18869DFEA304A03B0A0429B4C3D186B1149E9A9A ] ssadmdfl        C:\WINDOWS\system32\DRIVERS\ssadmdfl.sys
13:22:41.0984 0x0e1c  ssadmdfl - ok
13:22:42.0015 0x0e1c  [ 6D0D132DDC6F43EDA00DCED6D8B1CA31, 0A37081D95A56861C3E48592048DFCFAE6FB38510D21AB41C9C73744743E7646 ] ssadmdm         C:\WINDOWS\system32\DRIVERS\ssadmdm.sys
13:22:42.0031 0x0e1c  ssadmdm - ok
13:22:42.0078 0x0e1c  [ 1A5A397BC459F346AB56492B61EF79F6, 9CB7BE4E4A7B145D97BA0C72EE7ECB844DA6EB0282FBC3BE92A1CC5AD80FA6C4 ] ssadserd        C:\WINDOWS\system32\DRIVERS\ssadserd.sys
13:22:42.0093 0x0e1c  ssadserd - ok
13:22:42.0140 0x0e1c  [ 4DF5B05DFAEC29E13E1ED6F6EE12C500, 2971D7D45D6942D310D47DBD19B9680D2D29527E79B86133C72217FD29259465 ] SSDPSRV         C:\WINDOWS\System32\ssdpsrv.dll
13:22:42.0171 0x0e1c  SSDPSRV - ok
13:22:42.0218 0x0e1c  [ 359FEE084F1173FFFFD7F9CCBD43D47F, 197EE7267D0565E426368868233C35F6FD29A0432D75630F8365336E061318D7 ] ssudmdm         C:\WINDOWS\system32\DRIVERS\ssudmdm.sys
13:22:42.0234 0x0e1c  ssudmdm - ok
13:22:42.0296 0x0e1c  [ 54946449A0EB74915A4BB34F7EE51A5A, 4C9EFC564520FD5E082A8066B0FCFDC9FCC5050DC26518810E57ECF3B90EF248 ] ss_bus          C:\WINDOWS\system32\DRIVERS\ss_bus.sys
13:22:42.0312 0x0e1c  ss_bus - ok
13:22:42.0343 0x0e1c  [ 4450BC0B2E9D7D9B90E3C3DE4EA00A78, 4AE89D25F4D3B061D8CBD31329EDD3D5BAD9ED5D24ECC49FBC263B4DFE6760AB ] ss_mdfl         C:\WINDOWS\system32\DRIVERS\ss_mdfl.sys
13:22:42.0359 0x0e1c  ss_mdfl - ok
13:22:42.0406 0x0e1c  [ 30B8D0DD01EAD1243F329CAF7D7D1517, A4BC52064E3C6140175BF403ED396C1718BF5EB996CB050989051532D0D79C71 ] ss_mdm          C:\WINDOWS\system32\DRIVERS\ss_mdm.sys
13:22:42.0421 0x0e1c  ss_mdm - ok
13:22:42.0484 0x0e1c  [ BC2C5985611C5356B24AEB370953DED9, 15CBAB8166827DC098E2B16AB6F49A1441A4CB52AF3588F0AD964CAB596DFE10 ] stisvc          C:\WINDOWS\system32\wiaservc.dll
13:22:42.0546 0x0e1c  stisvc - ok
13:22:42.0578 0x0e1c  [ 77813007BA6265C4B6098187E6ED79D2, 93939120E803C46FBFD577C8FC2E6C7E71C0460E01D25CB29579490640AB50C7 ] streamip        C:\WINDOWS\system32\DRIVERS\StreamIP.sys
13:22:42.0640 0x0e1c  streamip - ok
13:22:42.0656 0x0e1c  [ 3941D127AEF12E93ADDF6FE6EE027E0F, EA1F0E32E1C5E90FA4AAC421DEBBE086512340758D3217A6334E886BCE638B51 ] swenum          C:\WINDOWS\system32\DRIVERS\swenum.sys
13:22:42.0718 0x0e1c  swenum - ok
13:22:42.0750 0x0e1c  [ 8CE882BCC6CF8A62F2B2323D95CB3D01, B408550A581F3DA222355964AFA4E976AD8471F0AA37573C42C4948AE5A23A3B ] swmidi          C:\WINDOWS\system32\drivers\swmidi.sys
13:22:42.0828 0x0e1c  swmidi - ok
13:22:42.0828 0x0e1c  SwPrv - ok
13:22:42.0859 0x0e1c  symc810 - ok
13:22:42.0859 0x0e1c  symc8xx - ok
13:22:42.0875 0x0e1c  sym_hi - ok
13:22:42.0890 0x0e1c  sym_u3 - ok
13:22:42.0906 0x0e1c  [ 8B83F3ED0F1688B4958F77CD6D2BF290, 546D3602183702B4F53E84413CFA2C933D64C8540378E54A8DCD148F3F36A2DA ] sysaudio        C:\WINDOWS\system32\drivers\sysaudio.sys
13:22:42.0968 0x0e1c  sysaudio - ok
13:22:43.0000 0x0e1c  [ 2903FFFA2523926D6219428040DCE6B9, 4F13181931B0499F6C3F08138054DBCD1F84CB9806999A9172B80DE79D446F62 ] SysmonLog       C:\WINDOWS\system32\smlogsvc.exe
13:22:43.0062 0x0e1c  SysmonLog - ok
13:22:43.0109 0x0e1c  [ 05903CAC4B98908D55EA5774775B382E, AC3666CBD894D737874A5998DC7F46A0A51A7B23B1835FC735B9AD503A2191CC ] TapiSrv         C:\WINDOWS\System32\tapisrv.dll
13:22:43.0187 0x0e1c  TapiSrv - ok
13:22:43.0203 0x0e1c  [ 9AEFA14BD6B182D61E3119FA5F436D3D, EA29E49434585409272E7901AF89771FE9D6E911A7DC44AB3C7020CFF8A44552 ] Tcpip           C:\WINDOWS\system32\DRIVERS\tcpip.sys
13:22:43.0234 0x0e1c  Tcpip - ok
13:22:43.0265 0x0e1c  [ 6471A66807F5E104E4885F5B67349397, F35CBFFB8BB235CCE30EF94A5273333900DD49FD506BF9D55D99A320B8A53A5A ] TDPIPE          C:\WINDOWS\system32\drivers\TDPIPE.sys
13:22:43.0328 0x0e1c  TDPIPE - ok
13:22:43.0343 0x0e1c  [ C56B6D0402371CF3700EB322EF3AAF61, 7743FA4C734BCE38EFB1CA69BC17364D8421E2CD172F856F7E38E7AE1EE93F2F ] TDTCP           C:\WINDOWS\system32\drivers\TDTCP.sys
13:22:43.0406 0x0e1c  TDTCP - ok
13:22:43.0453 0x0e1c  [ 88155247177638048422893737429D9E, B6D4E8691917946332C2208D01F8C8281978C1AD1E9951C5D99DF0D49AC34B3B ] TermDD          C:\WINDOWS\system32\DRIVERS\termdd.sys
13:22:43.0515 0x0e1c  TermDD - ok
13:22:43.0562 0x0e1c  [ B7DE02C863D8F5A005A7BF375375A6A4, 6DE05A7B28CA5A78D58536347FC47F15883EEDBEF487CEA0117CC280FC582DCC ] TermService     C:\WINDOWS\System32\termsrv.dll
13:22:43.0640 0x0e1c  TermService - ok
13:22:43.0656 0x0e1c  [ 2DB7D303C36DDD055215052F118E8E75, BE6E7BBE12A7A4EDF1F1C2935350603970C7426BBCA7A1A6644BB8999123AF17 ] Themes          C:\WINDOWS\System32\shsvcs.dll
13:22:43.0671 0x0e1c  Themes - ok
13:22:43.0687 0x0e1c  TosIde - ok
13:22:43.0734 0x0e1c  [ 626504572B175867F30F3215C04B3E2F, 47E87CE9BC666D5CB5953C5D497DC00A7CC28F8EC0A064B3E47700279C5C4B91 ] TrkWks          C:\WINDOWS\system32\trkwks.dll
13:22:43.0812 0x0e1c  TrkWks - ok
13:22:43.0843 0x0e1c  [ 5787B80C2E3C5E2F56C2A233D91FA2C9, 3774905CF77954DFCECDA5BCC7CDE3D0ED72712BFAAD85ADAE5246306447E46C ] Udfs            C:\WINDOWS\system32\drivers\Udfs.sys
13:22:43.0906 0x0e1c  Udfs - ok
13:22:43.0921 0x0e1c  ultra - ok
13:22:44.0000 0x0e1c  [ 67A95B9D129ED5399E7965CD09CF30E7, F1F2F684146F1CCB293BB9871117B8CFC1D04588A830F67CE5D3F0D034D93B2A ] UMVPFSrv        C:\Programme\Gemeinsame Dateien\logishrd\LVMVFM\UMVPFSrv.exe
13:22:44.0031 0x0e1c  UMVPFSrv - ok
13:22:44.0062 0x0e1c  [ 402DDC88356B1BAC0EE3DD1580C76A31, 32A686595710336A6BFD54C03F552AE39439611662F84EF5D24193AE5665C6F3 ] Update          C:\WINDOWS\system32\DRIVERS\update.sys
13:22:44.0140 0x0e1c  Update - ok
13:22:44.0171 0x0e1c  [ 1DFD8975D8C89214B98D9387C1125B49, 0B6B268487C8E45E9B86BF4A0A9DB669E0E45D600DE3C82B63F9986CA9E01082 ] upnphost        C:\WINDOWS\System32\upnphost.dll
13:22:44.0218 0x0e1c  upnphost - ok
13:22:44.0234 0x0e1c  [ 9B11E6118958E63E1FEF129466E2BDA7, 97168BCE3F4A9BB9E6500F05E34851FB957B219C598944FADC28AC0011C0503B ] UPS             C:\WINDOWS\System32\ups.exe
13:22:44.0296 0x0e1c  UPS - ok
13:22:44.0343 0x0e1c  [ 6E421CCC57059B0186C6259CA3B6DFC9, E348BF23CCD6C14FD10C1689BBDC77E125245331F97BFE60D4C8FD9A8711CB59 ] USBAAPL         C:\WINDOWS\system32\Drivers\usbaapl.sys
13:22:44.0375 0x0e1c  USBAAPL - ok
13:22:44.0437 0x0e1c  [ 65898A183FBF1D1F7759D5CCB364DCD4, 85E823123FDB4CA5F8255064E22A444627999055EC3419DFD001371893F36AB9 ] usbaudio        C:\WINDOWS\system32\drivers\usbaudio.sys
13:22:44.0468 0x0e1c  usbaudio - ok
13:22:44.0515 0x0e1c  [ 1B611611C28D2DF25BC057D79C6F13FC, B0D86F63E44B40413BBAE6402CC088046CFAE082D41BBC2ED5A916293356B846 ] usbccgp         C:\WINDOWS\system32\DRIVERS\usbccgp.sys
13:22:44.0531 0x0e1c  usbccgp - ok
13:22:44.0562 0x0e1c  [ 4BAC8DF07F1D8434FC640E677A62204E, 76C1351AF6752224BF59DEEE0F8665FE699F3DFD679F5BCD01C7D9383E6402A4 ] usbehci         C:\WINDOWS\system32\DRIVERS\usbehci.sys
13:22:44.0562 0x0e1c  usbehci - ok
13:22:44.0609 0x0e1c  [ 1AB3CDDE553B6E064D2E754EFE20285C, A99C4528C4227B1E96847614745AAFACD3C5F1BDFE435214DBF78740FFB300FE ] usbhub          C:\WINDOWS\system32\DRIVERS\usbhub.sys
13:22:44.0671 0x0e1c  usbhub - ok
13:22:44.0687 0x0e1c  [ 0DAECCE65366EA32B162F85F07C6753B, 3C33AC2FC95E876933F2016CF0CDA2745491679728684DA8DF95A515CE4804BD ] usbohci         C:\WINDOWS\system32\DRIVERS\usbohci.sys
13:22:44.0750 0x0e1c  usbohci - ok
13:22:44.0765 0x0e1c  [ A717C8721046828520C9EDF31288FC00, 1530BBE832EDBB0974AD89D723A03FF7A0094B368992D73C2C3E62A181DF1E0A ] usbprint        C:\WINDOWS\system32\DRIVERS\usbprint.sys
13:22:44.0843 0x0e1c  usbprint - ok
13:22:44.0859 0x0e1c  [ A32426D9B14A089EAA1D922E0C5801A9, ED1DC52EE45F8EAD3AEC4B1F817BB25634141CF48295494C5947DCE6CF7A9817 ] USBSTOR         C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
13:22:44.0921 0x0e1c  USBSTOR - ok
13:22:44.0968 0x0e1c  [ 813236B1183CFCF289E367BD5DE6E29E, 167FE18A96F330AEEC1A4C419770C15EFEB536D43838285E51E7A62E95DF4674 ] usbvideo        C:\WINDOWS\system32\Drivers\usbvideo.sys
13:22:44.0968 0x0e1c  usbvideo - ok
13:22:45.0000 0x0e1c  Util WebConnect - ok
13:22:45.0031 0x0e1c  [ 0D3A8FAFCEACD8B7625CD549757A7DF1, B9CFDEFCD66AA139F3DC2F967B184669532922563AD5A71769BABDC4370D065E ] VgaSave         C:\WINDOWS\System32\drivers\vga.sys
13:22:45.0109 0x0e1c  VgaSave - ok
13:22:45.0171 0x0e1c  [ F29BFD0C5CCCC9823E5FCDEE71DBC054, B064D82A73E15476B65720B9BD60C5B8ABD12E233B91EDBCE7C7D301127D304D ] VIAHdAudAddService C:\WINDOWS\system32\drivers\viahduaa.sys
13:22:45.0250 0x0e1c  VIAHdAudAddService - ok
13:22:45.0265 0x0e1c  ViaIde - ok
13:22:45.0296 0x0e1c  [ A5A712F4E880874A477AF790B5186E1D, FE885ED04C3EAFC379787F836738A2769E43D07CF52DD917D90C38E001957A5E ] VolSnap         C:\WINDOWS\system32\drivers\VolSnap.sys
13:22:45.0359 0x0e1c  VolSnap - ok
13:22:45.0390 0x0e1c  [ 68F106273BE29E7B7EF8266977268E78, 1488AB7A654EBC94C73E1D494067189ACB95BC233980110CAC4C0297CDC4115A ] VSS             C:\WINDOWS\System32\vssvc.exe
13:22:45.0437 0x0e1c  VSS - ok
13:22:45.0484 0x0e1c  [ 7B353059E665F8B7AD2BBEAEF597CF45, 84A4311F18A4B8DCB364741DEA7D18E2363F19564B2EF25214965DC729527068 ] W32Time         C:\WINDOWS\system32\w32time.dll
13:22:45.0546 0x0e1c  W32Time - ok
13:22:45.0578 0x0e1c  [ E20B95BAEDB550F32DD489265C1DA1F6, 5589B2067E6C9FBA290D8C5EADDC198EBAF39C50C3CD7D2BC5CDA7CBFBC445E5 ] Wanarp          C:\WINDOWS\system32\DRIVERS\wanarp.sys
13:22:45.0640 0x0e1c  Wanarp - ok
13:22:45.0656 0x0e1c  [ 0A716C08CB13C3A8F4F51E882DBF7416, 66FFDC9151CB3676B5DF073431DE055E7F2CDA5722F7EAAC6EC45F2CF9910882 ] wanatw          C:\WINDOWS\system32\DRIVERS\wanatw4.sys
13:22:45.0687 0x0e1c  wanatw - ok
13:22:45.0734 0x0e1c  [ 46A247F6617526AFE38B6F12F5512120, 24931910E3D678829A7A6CF1140CFE428E05057A4D3A14086ED66B884E847D2D ] wceusbsh        C:\WINDOWS\system32\DRIVERS\wceusbsh.sys
13:22:45.0765 0x0e1c  wceusbsh - ok
13:22:45.0812 0x0e1c  [ FD47474BD21794508AF449D9D91AF6E6, 2AD586390824F673B5DC5D86FC2423ED9252413D221E1C7EC3A760782DB6436A ] Wdf01000        C:\WINDOWS\system32\DRIVERS\Wdf01000.sys
13:22:45.0828 0x0e1c  Wdf01000 - ok
13:22:45.0843 0x0e1c  WDICA - ok
13:22:45.0875 0x0e1c  [ 6768ACF64B18196494413695F0C3A00F, 3A8F8586F1D997D19A8478345338D2AECD785AEABDB61531DD3F92003D3230A5 ] wdmaud          C:\WINDOWS\system32\drivers\wdmaud.sys
13:22:45.0937 0x0e1c  wdmaud - ok
13:22:45.0953 0x0e1c  [ 81727C9873E3905A2FFC1EBD07265002, 6AC2383A1DCBB7FA3DB90FBB874C8E1819F5B7492717FF41E303EFC7BF72F93E ] WebClient       C:\WINDOWS\System32\webclnt.dll
13:22:46.0015 0x0e1c  WebClient - ok
13:22:46.0093 0x0e1c  [ 6F3F3973D97714CC5F906A19FE883729, 7817118BE94D0F6FAE0F9CE48AD70FFE0AEF886CCE09C666768FAB61047F992F ] winmgmt         C:\WINDOWS\system32\wbem\WMIsvc.dll
13:22:46.0156 0x0e1c  winmgmt - ok
13:22:46.0250 0x0e1c  [ 8F9D8732840C374D1C5EAF9E1645F4AC, C90B4C12CEF8A703737A28E869CFB9AFAD69FA63350C1E2EF82B41CB0AB81209 ] winzipersvc     C:\Programme\WinZipper\winzipersvc.exe
13:22:46.0265 0x0e1c  winzipersvc - ok
13:22:46.0312 0x0e1c  [ C51B4A5C05A5475708E3C81C7765B71D, F776D2680BD3407307B7072626F78460361FC5BC38623C9E16F394D300AB25DE ] WmdmPmSN        C:\WINDOWS\system32\MsPMSNSv.dll
13:22:46.0343 0x0e1c  WmdmPmSN - ok
13:22:46.0390 0x0e1c  [ 93908111BA57A6E60EC2FA2DE202105C, F395F25F18D15C6B9FEDB45FD31E10295FFE5517E2BC86ACAC11904EA0664BE2 ] WmiApSrv        C:\WINDOWS\system32\wbem\wmiapsrv.exe
13:22:46.0453 0x0e1c  WmiApSrv - ok
13:22:46.0531 0x0e1c  [ BF05650BB7DF5E9EBDD25974E22403BB, AF173D89B768CFC7AB03DFADD4F049CAC40AC59A0C9208AF5AB92CB368983077 ] WMPNetworkSvc   C:\Programme\Windows Media Player\WMPNetwk.exe
13:22:46.0578 0x0e1c  WMPNetworkSvc - ok
13:22:46.0609 0x0e1c  [ CF4DEF1BF66F06964DC0D91844239104, CC1D9CECE2056D29A9651D51BB57C3F4F9BF9E90A4808CF7496C683C874FBD51 ] WpdUsb          C:\WINDOWS\system32\DRIVERS\wpdusb.sys
13:22:46.0625 0x0e1c  WpdUsb - ok
13:22:46.0703 0x0e1c  [ 15673BD0B86150CB8E27766059C72A9B, 56C23289A8BFF4945EE532CF6D62D3EC81B827CA15A359F30A327789F9FE9CAF ] WPFFontCache_v0400 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
13:22:46.0734 0x0e1c  WPFFontCache_v0400 - ok
13:22:46.0812 0x0e1c  [ 300B3E84FAF1A5C1F791C159BA28035D, 0194856BDF94C1F274AF70AD558290ACDACDDEA331BD66FEB8E167ABD1E36786 ] wscsvc          C:\WINDOWS\system32\wscsvc.dll
13:22:46.0875 0x0e1c  wscsvc - ok
13:22:46.0906 0x0e1c  [ C98B39829C2BBD34E454150633C62C78, 71B60EA3AD0E2637917D528C6A9E7ECF2949E3E5E91036AA5BBADA95BD725511 ] WSTCODEC        C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
13:22:46.0953 0x0e1c  WSTCODEC - ok
13:22:46.0984 0x0e1c  [ 7B4FE05202AA6BF9F4DFD0E6A0D8A085, A1DB8909FA73337DB613D01824945485186654364A4DF129B8CB913CF87D1D2E ] wuauserv        C:\WINDOWS\system32\wuauserv.dll
13:22:47.0046 0x0e1c  wuauserv - ok
13:22:47.0093 0x0e1c  [ F15FEAFFFBB3644CCC80C5DA584E6311, 79B3E9AF35976CE49921E9BEA3BA3B4A8AF762FD3F284B62954038B5FFB32471 ] WudfPf          C:\WINDOWS\system32\DRIVERS\WudfPf.sys
13:22:47.0125 0x0e1c  WudfPf - ok
13:22:47.0156 0x0e1c  [ 28B524262BCE6DE1F7EF9F510BA3985B, AEFF02B899801A63CBB262757C3D4369E38BFF0690BD085DE60E873DFBE3C3F4 ] WudfRd          C:\WINDOWS\system32\DRIVERS\wudfrd.sys
13:22:47.0171 0x0e1c  WudfRd - ok
13:22:47.0203 0x0e1c  [ 05231C04253C5BC30B26CBAAE680ED89, 5C03C2D7E0B573646D32F4093E2FF2C3BA391C39F5BA37D67F69D38E357FCC3D ] WudfSvc         C:\WINDOWS\System32\WUDFSvc.dll
13:22:47.0218 0x0e1c  WudfSvc - ok
13:22:47.0250 0x0e1c  [ C4F109C005F6725162D2D12CA751E4A7, AC996B44338328BDD4442FE48406F286A64526F0EC77BE00A19FA7FDB0407CFE ] WZCSVC          C:\WINDOWS\System32\wzcsvc.dll
13:22:47.0359 0x0e1c  WZCSVC - ok
13:22:47.0390 0x0e1c  [ 0ADA34871A2E1CD2CAAFED1237A47750, 45BEF8649078BD74C1A347B5F2D3A1958E5A7DCD6C6BA8A2E0CAD277A929C64E ] xmlprov         C:\WINDOWS\System32\xmlprov.dll
13:22:47.0468 0x0e1c  xmlprov - ok
13:22:47.0484 0x0e1c  ================ Scan global ===============================
13:22:47.0531 0x0e1c  [ 2C60091CA5F67C3032EAB3B30390C27F, 9E205C8E67F4B61FCFA2A82AA1968D522C3B6410D7075BE813F7F1564D61632E ] C:\WINDOWS\system32\basesrv.dll
13:22:47.0562 0x0e1c  [ E62178BC21EAC63A3B9A2DBD46C1B505, CAA5480CC4DAA37758F0CF445F865FD6F4630080B044EF2E606C2F62DAA4061A ] C:\WINDOWS\system32\winsrv.dll
13:22:47.0578 0x0e1c  [ E62178BC21EAC63A3B9A2DBD46C1B505, CAA5480CC4DAA37758F0CF445F865FD6F4630080B044EF2E606C2F62DAA4061A ] C:\WINDOWS\system32\winsrv.dll
13:22:47.0578 0x0e1c  [ A3EDBE9053889FB24AB22492472B39DC, 6F2ED6E04BDE2FCA2A8BF9BD2D1D6923DE6EAECB46F582B6C0BD1CF364D65C9E ] C:\WINDOWS\system32\services.exe
13:22:47.0593 0x0e1c  [ Global ] - ok
13:22:47.0593 0x0e1c  ================ Scan MBR ==================================
13:22:47.0593 0x0e1c  [ 72B8CE41AF0DE751C946802B3ED844B4 ] \Device\Harddisk0\DR0
13:22:47.0843 0x0e1c  \Device\Harddisk0\DR0 - ok
13:22:47.0843 0x0e1c  [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk1\DR3
13:22:47.0953 0x0e1c  \Device\Harddisk1\DR3 - ok
13:22:47.0953 0x0e1c  ================ Scan VBR ==================================
13:22:47.0953 0x0e1c  [ E9D0A36A755BF079A5AA146F50AFC9CF ] \Device\Harddisk0\DR0\Partition1
13:22:47.0953 0x0e1c  \Device\Harddisk0\DR0\Partition1 - ok
13:22:47.0953 0x0e1c  [ 1433D3002361D3C0A58C3A9CCE1901C7 ] \Device\Harddisk0\DR0\Partition2
13:22:47.0953 0x0e1c  \Device\Harddisk0\DR0\Partition2 - ok
13:22:47.0968 0x0e1c  [ 412C9B2F6316F39409318D147E17291D ] \Device\Harddisk1\DR3\Partition1
13:22:47.0968 0x0e1c  \Device\Harddisk1\DR3\Partition1 - ok
13:22:47.0968 0x0e1c  ================ Scan generic autorun ======================
13:22:48.0031 0x0e1c  [ 00C608CDFC203846B20EB12E2AB41F3A, C67279A51C4ACFDF3DBEA0D006DE8DB67DA3F5B61D3B2B7D6F0E6EAB6C180A06 ] C:\Programme\McAfee.com\Agent\mcagent.exe
13:22:48.0062 0x0e1c  mcui_exe - ok
13:22:48.0109 0x0e1c  [ 4DE3EF07E0854547309C6B40235A9D44, F73D8E6D98583865D1C8DB728058D83C72A3908E21E04EF313FCB829C040A1EC ] C:\Programme\Brother\ControlCenter3\brctrcen.exe
13:22:48.0125 0x0e1c  ControlCenter3 - detected UnsignedFile.Multi.Generic ( 1 )
13:22:48.0125 0x0e1c  ControlCenter3 ( UnsignedFile.Multi.Generic ) - warning
13:22:48.0218 0x0e1c  [ 640609646D2E6F805E89238F0ADD3A1A, 6E919DD8C93B4F1B7AA00404DDF11FDAA7C050C49028480C8E28F2DF99E99FED ] C:\Programme\Browny02\Brother\BrStMonW.exe
13:22:48.0312 0x0e1c  BrStsMon00 - detected UnsignedFile.Multi.Generic ( 1 )
13:22:48.0312 0x0e1c  BrStsMon00 ( UnsignedFile.Multi.Generic ) - warning
13:22:48.0312 0x0e1c  Force sending object to P2P due to detect: C:\Programme\Browny02\Brother\BrStMonW.exe
13:22:48.0343 0x0e1c  Object send P2P result: false
13:22:48.0343 0x0e1c  NvCplDaemon - ok
13:22:48.0343 0x0e1c  NvMediaCenter - ok
13:22:48.0421 0x0e1c  [ 6E0F29BD0E792618FF285AB094F4DCEF, 6BED26091EE890ABEFD31B95E1DCADE27C8775E580D201C6071D851FB5BB20BC ] C:\Programme\NVIDIA Corporation\nview\nwiz.exe
13:22:48.0500 0x0e1c  nwiz - ok
13:22:48.0531 0x0e1c  [ 94A4D6915D4F572309DF6137E1846528, E46BDF83CAA6683AA655DBA3D2C8DC7AC06251E952466A20CFDA3A16B1840455 ] C:\Programme\Gemeinsame Dateien\Apple\Apple Application Support\APSDaemon.exe
13:22:48.0546 0x0e1c  APSDaemon - ok
13:22:48.0562 0x0e1c  [ 00C608CDFC203846B20EB12E2AB41F3A, C67279A51C4ACFDF3DBEA0D006DE8DB67DA3F5B61D3B2B7D6F0E6EAB6C180A06 ] C:\Programme\McAfee.com\Agent\mcagent.exe
13:22:48.0578 0x0e1c  mcpltui_exe - ok
13:22:48.0640 0x0e1c  [ 048EA4B978851788E9F5E8E4F081DF7A, EB62719AC0DCC18FF056F2CD84438BF14B61E38F0619617C81961C6257BDFCEC ] C:\Programme\Gemeinsame Dateien\Adobe\ARM\1.0\AdobeARM.exe
13:22:48.0687 0x0e1c  Adobe ARM - ok
13:22:48.0734 0x0e1c  [ D2E3E6D94A9E1CFA1561D9C748136FD0, C8CD851F1872086D18A329B47C7DEFAD2CE2E3A8F4321411247D06D07B2DB1D3 ] C:\Programme\iTunes\iTunesHelper.exe
13:22:48.0750 0x0e1c  iTunesHelper - ok
13:22:48.0796 0x0e1c  [ 08E7173D1B74095335052459200CB1EA, 5B6EB8A65B5F451BF6115EB7CD1355E5870E6D764F22D767D13216BF17C5668F ] C:\Programme\QuickTime\qttask.exe
13:22:48.0812 0x0e1c  QuickTime Task - detected UnsignedFile.Multi.Generic ( 1 )
13:22:48.0812 0x0e1c  QuickTime Task ( UnsignedFile.Multi.Generic ) - warning
13:22:48.0828 0x0e1c  [ 01B4E6E990B6C5EA8856D96C7FD044B2, 2266296FD3C8E0DFA657F21406EE4E494477870DFAF7C65BEBCB6FBA8CADC7C6 ] C:\WINDOWS\system32\CTFMON.EXE
13:22:48.0906 0x0e1c  CTFMON.EXE - ok
13:22:48.0906 0x0e1c  [ 01B4E6E990B6C5EA8856D96C7FD044B2, 2266296FD3C8E0DFA657F21406EE4E494477870DFAF7C65BEBCB6FBA8CADC7C6 ] C:\WINDOWS\system32\CTFMON.EXE
13:22:48.0968 0x0e1c  CTFMON.EXE - ok
13:22:48.0968 0x0e1c  [ 01B4E6E990B6C5EA8856D96C7FD044B2, 2266296FD3C8E0DFA657F21406EE4E494477870DFAF7C65BEBCB6FBA8CADC7C6 ] C:\WINDOWS\system32\ctfmon.exe
13:22:49.0031 0x0e1c  ctfmon.exe - ok
13:22:49.0093 0x0e1c  [ 1C2863FE366B9E907AABFC6F8B6EE1A3, 37053DF56CD508889A2D9EBE7CE07F91DE5A5F6C522A1C0986BEA82C3E3BD210 ] C:\Programme\Microsoft ActiveSync\wcescomm.exe
13:22:49.0125 0x0e1c  H/PC Connection Agent - ok
13:22:49.0140 0x0e1c  [ 01B4E6E990B6C5EA8856D96C7FD044B2, 2266296FD3C8E0DFA657F21406EE4E494477870DFAF7C65BEBCB6FBA8CADC7C6 ] C:\WINDOWS\system32\ctfmon.exe
13:22:49.0203 0x0e1c  CTFMON.EXE - ok
13:22:49.0203 0x0e1c  Advanced System Protector_startup - ok
13:22:49.0250 0x0e1c  [ 1C2863FE366B9E907AABFC6F8B6EE1A3, 37053DF56CD508889A2D9EBE7CE07F91DE5A5F6C522A1C0986BEA82C3E3BD210 ] C:\Programme\Microsoft ActiveSync\wcescomm.exe
13:22:49.0296 0x0e1c  H/PC Connection Agent - ok
13:22:49.0406 0x0e1c  [ 270B6BFFDE7A8199DFEB9735BBB1918F, FEEEE8097794B4CF02CAAD3F905A8CCEB004B74F65AAFF387957AC169A0D73EC ] C:\Dokumente und Einstellungen\Martina\Anwendungsdaten\Spotify\Data\SpotifyWebHelper.exe
13:22:49.0515 0x0e1c  Spotify Web Helper - ok
13:22:49.0515 0x0e1c  [ 01B4E6E990B6C5EA8856D96C7FD044B2, 2266296FD3C8E0DFA657F21406EE4E494477870DFAF7C65BEBCB6FBA8CADC7C6 ] C:\WINDOWS\system32\CTFMON.EXE
13:22:49.0578 0x0e1c  CTFMON.EXE - ok
13:22:49.0593 0x0e1c  [ 01B4E6E990B6C5EA8856D96C7FD044B2, 2266296FD3C8E0DFA657F21406EE4E494477870DFAF7C65BEBCB6FBA8CADC7C6 ] C:\WINDOWS\system32\CTFMON.EXE
13:22:49.0640 0x0e1c  CTFMON.EXE - ok
13:22:49.0656 0x0e1c  [ 01B4E6E990B6C5EA8856D96C7FD044B2, 2266296FD3C8E0DFA657F21406EE4E494477870DFAF7C65BEBCB6FBA8CADC7C6 ] C:\WINDOWS\system32\ctfmon.exe
13:22:49.0718 0x0e1c  CTFMON.EXE - ok
13:22:49.0734 0x0e1c  [ 08E7173D1B74095335052459200CB1EA, 5B6EB8A65B5F451BF6115EB7CD1355E5870E6D764F22D767D13216BF17C5668F ] C:\Programme\QuickTime\qttask.exe
13:22:49.0750 0x0e1c  QuickTime Task - detected UnsignedFile.Multi.Generic ( 1 )
13:22:49.0750 0x0e1c  QuickTime Task ( UnsignedFile.Multi.Generic ) - warning
13:22:49.0796 0x0e1c  [ 1C2863FE366B9E907AABFC6F8B6EE1A3, 37053DF56CD508889A2D9EBE7CE07F91DE5A5F6C522A1C0986BEA82C3E3BD210 ] C:\Programme\Microsoft ActiveSync\wcescomm.exe
13:22:49.0859 0x0e1c  H/PC Connection Agent - ok
13:22:49.0906 0x0e1c  AV detected via SS1: McAfee Anti-Virus und Anti-Spyware, , disabled, updated
13:22:49.0906 0x0e1c  FW detected via SS1: McAfee Firewall, , disabled
13:22:49.0921 0x0e1c  Win FW state via NFM: enabled
13:22:49.0921 0x0e1c  ============================================================
13:22:49.0921 0x0e1c  Scan finished
13:22:49.0921 0x0e1c  ============================================================
13:22:49.0921 0x0b14  Detected object count: 7
13:22:49.0921 0x0b14  Actual detected object count: 7
13:24:57.0406 0x0b14  BrYNSvc ( UnsignedFile.Multi.Generic ) - skipped by user
13:24:57.0406 0x0b14  BrYNSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip 
13:24:57.0406 0x0b14  e55f1a183fbfe661 ( Rootkit.Win32.Necurs.gen ) - skipped by user
13:24:57.0406 0x0b14  e55f1a183fbfe661 ( Rootkit.Win32.Necurs.gen ) - User select action: Skip 
13:24:57.0406 0x0b14  MDM ( UnsignedFile.Multi.Generic ) - skipped by user
13:24:57.0406 0x0b14  MDM ( UnsignedFile.Multi.Generic ) - User select action: Skip 
13:24:57.0406 0x0b14  ControlCenter3 ( UnsignedFile.Multi.Generic ) - skipped by user
13:24:57.0406 0x0b14  ControlCenter3 ( UnsignedFile.Multi.Generic ) - User select action: Skip 
13:24:57.0406 0x0b14  BrStsMon00 ( UnsignedFile.Multi.Generic ) - skipped by user
13:24:57.0406 0x0b14  BrStsMon00 ( UnsignedFile.Multi.Generic ) - User select action: Skip 
13:24:57.0406 0x0b14  QuickTime Task ( UnsignedFile.Multi.Generic ) - skipped by user
13:24:57.0406 0x0b14  QuickTime Task ( UnsignedFile.Multi.Generic ) - User select action: Skip 
13:24:57.0421 0x0b14  QuickTime Task ( UnsignedFile.Multi.Generic ) - skipped by user
13:24:57.0421 0x0b14  QuickTime Task ( UnsignedFile.Multi.Generic ) - User select action: Skip

schrauber · 10.08.2014, 18:38

Hinter der Rootkit Zeile:

Starte TDSSkiller.exe mit Doppelklick.
Vista und Win7 User mit Rechtsklick "als Administrator starten"

Drücke auf Start Scan.
Mache während dem Scan nichts am Rechner
Gehe sicher das Cure ( default ) angehackt ist !
Drücke Continue --> Reboot.

TDSSKiller wird eine Logfile auf deinem Systemlaufwerk speichern ( Meistens C:\ )
Als Beispiel: C:\TDSSKiller.<version_date_time>log.txt

Poste den Inhalt bitte hier in deinen Thread.

rootkit014 · 11.08.2014, 21:25

Hallo schrauber,

Wenn ich den Scan durchführe und Cure einstellen will wird mir nur Delete angeboten bei allen Threats. Gehe ich richtig in der Annahme das Delete in diesem Fall dann die richtige Option ist?

In der Anleitung steht ja auch drin das man Cure bzw. Delete auswählen kann.

Da ich Cure als Option nicht auswählen kann, soll ich nun alle Threats mit Delete bestätigen und anschließend die Logdatei posten?

Schönen Abend,
Daniel

schrauber · 12.08.2014, 17:43

nicht alle, nur den Rootkitfund, dort dann Delete

rootkit014 · 13.08.2014, 15:54

Hallo schrauber,

Ich habe das Rootkit nun entfernt.

Logfile wie folgt:

Code:

ATTFilter

16:32:41.0796 0x0910  TDSS rootkit removing tool 3.0.0.40 Jul 10 2014 12:37:58
16:32:48.0656 0x0910  ============================================================
16:32:48.0656 0x0910  Current date / time: 2014/08/13 16:32:48.0656
16:32:48.0656 0x0910  SystemInfo:
16:32:48.0656 0x0910  
16:32:48.0656 0x0910  OS Version: 5.1.2600 ServicePack: 3.0
16:32:48.0656 0x0910  Product type: Workstation
16:32:48.0656 0x0910  ComputerName: JAGUSCHE-PC1
16:32:48.0656 0x0910  UserName: Jaguschewski
16:32:48.0656 0x0910  Windows directory: C:\WINDOWS
16:32:48.0656 0x0910  System windows directory: C:\WINDOWS
16:32:48.0656 0x0910  Processor architecture: Intel x86
16:32:48.0656 0x0910  Number of processors: 2
16:32:48.0656 0x0910  Page size: 0x1000
16:32:48.0656 0x0910  Boot type: Normal boot
16:32:48.0656 0x0910  ============================================================
16:32:48.0906 0x0910  KLMD registered as C:\WINDOWS\system32\drivers\16850838.sys
16:33:57.0718 0x0910  System UUID: {C4ED2375-6BDC-9518-310A-85B282D2B5E9}
16:33:58.0046 0x0910  !crdlk
16:33:58.0046 0x0910  Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 ( 465.76 Gb ), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
16:33:58.0062 0x0910  ============================================================
16:33:58.0062 0x0910  \Device\Harddisk0\DR0:
16:33:58.0062 0x0910  MBR partitions:
16:33:58.0062 0x0910  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0xC80B182
16:33:58.0062 0x0910  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0xC80B200, BlocksNum 0x2DB75B80
16:33:58.0062 0x0910  ============================================================
16:33:58.0093 0x0910  D: <-> \Device\Harddisk0\DR0\Partition2
16:33:58.0109 0x0910  C: <-> \Device\Harddisk0\DR0\Partition1
16:33:58.0125 0x0910  ============================================================
16:33:58.0125 0x0910  Initialize success
16:33:58.0125 0x0910  ============================================================
16:42:06.0187 0x0424  Scan started
16:42:06.0187 0x0424  Mode: Manual; SigCheck; TDLFS; 
16:42:06.0187 0x0424  ============================================================
16:42:06.0187 0x0424  KSN ping started
16:42:06.0187 0x0424  KSN ping finished: false
16:42:06.0718 0x0424  ================ Scan system memory ========================
16:42:06.0718 0x0424  System memory - ok
16:42:06.0718 0x0424  ================ Scan services =============================
16:42:06.0875 0x0424  [ 97165948AF80EDA4A3015EB536A85818, 0BB0DBE1EA81D4F475F854E34932C48FB2D1DEBFBADE8156DB004756B98FBE36 ] 3xHybrid        C:\WINDOWS\system32\DRIVERS\3xHybrid.sys
16:42:07.0046 0x0424  3xHybrid - ok
16:42:07.0078 0x0424  Abiosdsk - ok
16:42:07.0078 0x0424  abp480n5 - ok
16:42:07.0109 0x0424  [ AC407F1A62C3A300B4F2B5A9F1D55B2C, 31F5FC61B37E22100B3A52A590295A7E827FFC581FA9960C64B9032452AAECED ] ACPI            C:\WINDOWS\system32\DRIVERS\ACPI.sys
16:42:07.0625 0x0424  ACPI - ok
16:42:07.0656 0x0424  [ 9E1CA3160DAFB159CA14F83B1E317F75, 13B3E897B0E819BF734449416D9EC6EBCAC89538EC69BF48C068593B82D57004 ] ACPIEC          C:\WINDOWS\system32\drivers\ACPIEC.sys
16:42:07.0734 0x0424  ACPIEC - ok
16:42:07.0796 0x0424  [ A6B6AB9502B63F43A9A56AE6AFB22078, DD1F0BA3D8F3333F52A71EAE3719A001F6EF844D647FFABF0E4C56C6C764ACA7 ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
16:42:07.0812 0x0424  AdobeFlashPlayerUpdateSvc - ok
16:42:07.0828 0x0424  adpu160m - ok
16:42:07.0890 0x0424  [ 8BED39E3C35D6A489438B8141717A557, 1B5796E56B0927360CE0759641B1151828BC0A9E45620D2B2D880491F5CE33D0 ] aec             C:\WINDOWS\system32\drivers\aec.sys
16:42:07.0953 0x0424  aec - ok
16:42:08.0000 0x0424  [ 1E44BC1E83D8FD2305F8D452DB109CF9, CF5EC07E0B589FA2A4701C6CFD69E893FC3ABF274AD57AE3C13FFE49063B02C8 ] AFD             C:\WINDOWS\System32\drivers\afd.sys
16:42:08.0031 0x0424  AFD - ok
16:42:08.0046 0x0424  Aha154x - ok
16:42:08.0062 0x0424  aic78u2 - ok
16:42:08.0062 0x0424  aic78xx - ok
16:42:08.0125 0x0424  [ 738D80CC01D7BC7584BE917B7F544394, DCC17AAEF5CDDF52FAAC3CC6904EF421CD595F66318A2370BEE261D5C3A8E340 ] Alerter         C:\WINDOWS\system32\alrsvc.dll
16:42:08.0187 0x0424  Alerter - ok
16:42:08.0203 0x0424  [ 190CD73D4984F94D823F9444980513E5, 93A32C2495CCA094F768BA707C74DA5C00B8A88A9236DD1A297439A7C2E6C6FA ] ALG             C:\WINDOWS\System32\alg.exe
16:42:08.0234 0x0424  ALG - ok
16:42:08.0250 0x0424  AliIde - ok
16:42:08.0328 0x0424  [ 57221EF8A056B5FB47CDDA3BA28DD377, D4A31F61F46F5E87E99B41FD02E976709CC18CBFBB33B1F794FF3BFCA07ECCBE ] AMBFilt         C:\WINDOWS\system32\drivers\AMBFilt.sys
16:42:08.0406 0x0424  AMBFilt - ok
16:42:08.0468 0x0424  [ 033448D435E65C4BD72E70521FD05C76, A5462C22D5461F1BA06E81CD7E1ECE5409092DE53A8E4D3E78D089B65CB474D4 ] AmdPPM          C:\WINDOWS\system32\DRIVERS\AmdPPM.sys
16:42:08.0500 0x0424  AmdPPM - ok
16:42:08.0515 0x0424  amsint - ok
16:42:08.0562 0x0424  [ DD8D9C597AF7CD2F6B70A3D6A4A1ACEA, 834B397F365D930DA01D5189DDF06195CFE4C0F9249223C5A9004643F41BA6E4 ] androidusb      C:\WINDOWS\system32\Drivers\ssadadb.sys
16:42:08.0703 0x0424  androidusb - ok
16:42:08.0765 0x0424  [ 85180CF88C5EBAD73B452A43A004CA51, 24D25495DC21293FC1F37EE7E7C2A4725E66D3D25BE05D7EDF4BB4F444C65526 ] AOL ACS         C:\Programme\Gemeinsame Dateien\AOL\ACS\AOLAcsd.exe
16:42:08.0765 0x0424  AOL ACS - ok
16:42:08.0843 0x0424  [ 221564CC7BE37611FE15EACF443E1BF6, 381BDF17418C779D72332431BA174C2AD76CD9C7C1711FF5142EA9B05D5555E4 ] Apple Mobile Device C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\AppleMobileDeviceService.exe
16:42:08.0859 0x0424  Apple Mobile Device - ok
16:42:08.0875 0x0424  AppMgmt - ok
16:42:08.0890 0x0424  asc - ok
16:42:08.0906 0x0424  asc3350p - ok
16:42:08.0921 0x0424  asc3550 - ok
16:42:08.0984 0x0424  [ 0E5E4957549056E2BF2C49F4F6B601AD, F7F19FDC906B719A3516D30A9B4A2262C8CC5B36B94E3D4195C345EC4610FF2B ] aspnet_state    C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
16:42:09.0000 0x0424  aspnet_state - ok
16:42:09.0031 0x0424  [ B153AFFAC761E7F5FCFA822B9C4E97BC, 7E60F572A6B3C6219E3C86225AA37243AFFD74337DB7F108B04778042E5CC959 ] AsyncMac        C:\WINDOWS\system32\DRIVERS\asyncmac.sys
16:42:09.0093 0x0424  AsyncMac - ok
16:42:09.0125 0x0424  [ 9F3A2F5AA6875C72BF062C712CFA2674, B4DF1D2C56A593C6B54DE57395E3B51D288F547842893B32B0F59228A0CF70B9 ] atapi           C:\WINDOWS\system32\DRIVERS\atapi.sys
16:42:09.0187 0x0424  atapi - ok
16:42:09.0203 0x0424  Atdisk - ok
16:42:09.0234 0x0424  [ 9916C1225104BA14794209CFA8012159, 5D6F05F715C52A16D05CAE15C3DFE77A139A7F27F7AE710EC9A10F9EE05115A1 ] Atmarpc         C:\WINDOWS\system32\DRIVERS\atmarpc.sys
16:42:09.0281 0x0424  Atmarpc - ok
16:42:09.0296 0x0424  [ 58ED0D5452DF7BE732193E7999C6B9A4, 254E2ECF592DDA2E3E6CA9F6F3E77926E2265586A7937BA95199ED47BCDE69A3 ] AudioSrv        C:\WINDOWS\System32\audiosrv.dll
16:42:09.0375 0x0424  AudioSrv - ok
16:42:09.0406 0x0424  [ D9F724AA26C010A217C97606B160ED68, 329B5118F2409731D06FDAE85B6ADD64A048292801BCB3546651CEB303111695 ] audstub         C:\WINDOWS\system32\DRIVERS\audstub.sys
16:42:09.0468 0x0424  audstub - ok
16:42:09.0500 0x0424  [ DA1F27D85E0D1525F6621372E7B685E9, 5A81A46A3BDD19DAFC6C87D277267A5D44F3A1B5302F2CC1111D84B7BAD5610D ] Beep            C:\WINDOWS\system32\drivers\Beep.sys
16:42:09.0562 0x0424  Beep - ok
16:42:09.0609 0x0424  [ D6F603772A789BB3228F310D650B8BD1, A539025C70FD998A9B8703DE05CAE5E99BC721D8852EA561EBC2DD20CB371D2E ] BITS            C:\WINDOWS\system32\qmgr.dll
16:42:09.0687 0x0424  BITS - ok
16:42:09.0703 0x0424  [ B71549F23736ADF83A571061C47777FD, A1D0320736EE777030A543DCA086367EB5A5B6F95088B9C22D8E09326C3A39A9 ] Browser         C:\WINDOWS\System32\browser.dll
16:42:09.0750 0x0424  Browser - ok
16:42:09.0781 0x0424  [ 92A964547B96D697E5E9ED43B4297F5A, 01A84802B68253FF093EAFED5B85DE716BB85EBD080D92D4814B6FB39286CD24 ] BrScnUsb        C:\WINDOWS\system32\DRIVERS\BrScnUsb.sys
16:42:09.0843 0x0424  BrScnUsb - ok
16:42:09.0890 0x0424  [ EA7E57F87D6FEE5FD6C5F813C04E8CD2, 1EB84F4DEE3034FAFBEA2A3F84EECE036E803872DA94D54E958E9F2F09519E88 ] BrYNSvc         C:\Programme\Browny02\BrYNSvc.exe
16:42:09.0906 0x0424  BrYNSvc - detected UnsignedFile.Multi.Generic ( 1 )
16:42:09.0921 0x0424  BrYNSvc ( UnsignedFile.Multi.Generic ) - warning
16:42:09.0953 0x0424  [ 90A673FC8E12A79AFBED2576F6A7AAF9, BDE7858A3457DB979FEDD8577FA6321BF72848E4A7BF9F173C78A6A10CBB3EBE ] cbidf2k         C:\WINDOWS\system32\drivers\cbidf2k.sys
16:42:10.0015 0x0424  cbidf2k - ok
16:42:10.0046 0x0424  [ 0BE5AEF125BE881C4F854C554F2B025C, 1770DD70B3F115A0EF460907DEDC1E4B7241C08615A98F194D61A49C3E2BAA54 ] CCDECODE        C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
16:42:10.0125 0x0424  CCDECODE - ok
16:42:10.0125 0x0424  cd20xrnt - ok
16:42:10.0140 0x0424  [ C1B486A7658353D33A10CC15211A873B, AA4DD9E7AAE5AAB1146B360B17001F975D2F29A1281CF7B13E7136480410F347 ] Cdaudio         C:\WINDOWS\system32\drivers\Cdaudio.sys
16:42:10.0218 0x0424  Cdaudio - ok
16:42:10.0234 0x0424  [ C885B02847F5D2FD45A24E219ED93B32, B26B2F8E3A831E2B65EB0C5195B0645CD50E22615CE79C9B0B391CD563B121DB ] Cdfs            C:\WINDOWS\system32\drivers\Cdfs.sys
16:42:10.0312 0x0424  Cdfs - ok
16:42:10.0328 0x0424  [ 1F4260CC5B42272D71F79E570A27A4FE, B51C2A3ED3C309953D0EA45869C8E464C10F2533DADE9E0286AF674979098D1D ] Cdrom           C:\WINDOWS\system32\DRIVERS\cdrom.sys
16:42:10.0406 0x0424  Cdrom - ok
16:42:10.0453 0x0424  [ 0DAAE43A50E7A0BE59052E05E2DACA5D, FC9F3C9E1CA86CAA5451C3D23F1443DEDACFE0F327B4321BD2B441C69183B51D ] cfwids          C:\WINDOWS\system32\drivers\cfwids.sys
16:42:10.0468 0x0424  cfwids - ok
16:42:10.0484 0x0424  Changer - ok
16:42:10.0500 0x0424  [ 28E3040D1F1CA2008CD6B29DFEBC9A5E, ACB458E8A11AA2143734A5A0281973D95158E6402A6453F98F9832D1E19B01F9 ] CiSvc           C:\WINDOWS\system32\cisvc.exe
16:42:10.0562 0x0424  CiSvc - ok
16:42:10.0578 0x0424  [ 778A30ED3C134EB7E406AFC407E9997D, 3E6AD115AB2596EB001BC21AEADDBC75F27C42DB90C986B7AD17743CE631234E ] ClipSrv         C:\WINDOWS\system32\clipsrv.exe
16:42:10.0656 0x0424  ClipSrv - ok
16:42:10.0687 0x0424  [ D87ACAED61E417BBA546CED5E7E36D9C, 14AC6034A5BC0FB2A1AFDAD42BEF4DE641556E54AD30D0C46765660A4BE55462 ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
16:42:10.0703 0x0424  clr_optimization_v2.0.50727_32 - ok
16:42:10.0781 0x0424  [ C5A75EB48E2344ABDC162BDA79E16841, 6070A8AAFD38FBC6A68A2B10C20117612354DF21B4492D90CA522BFB6870D726 ] clr_optimization_v4.0.30319_32 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
16:42:10.0781 0x0424  clr_optimization_v4.0.30319_32 - ok
16:42:10.0796 0x0424  CmdIde - ok
16:42:10.0812 0x0424  COMSysApp - ok
16:42:10.0828 0x0424  Cpqarray - ok
16:42:10.0859 0x0424  [ 611F824E5C703A5A899F84C5F1699E4D, 9EFA5612FE58E9974E4CC13D39D91D7B5DEA3ED66BEFBED3AAE6D2800FD8162A ] CryptSvc        C:\WINDOWS\System32\cryptsvc.dll
16:42:10.0937 0x0424  CryptSvc - ok
16:42:10.0937 0x0424  dac2w2k - ok
16:42:10.0937 0x0424  dac960nt - ok
16:42:10.0984 0x0424  [ 3127AFBF2C1ED0AB14A1BBB7AAECB85B, ECFBACE3CBF2384948EA1C445BDA3955EB4F44A9874286E6537C67DC1283E5B0 ] DcomLaunch      C:\WINDOWS\system32\rpcss.dll
16:42:11.0015 0x0424  DcomLaunch - ok
16:42:11.0109 0x0424  [ 90C0413E98467EC337CBD72E81FBE31B, AE2A64B9755D77F7E905435227C42B95B1FAE6BE9EA0FB8C915DF3D0A924CB08 ] DeviceFinderService C:\Programme\Sony\PlayMemories Home\dfs.exe
16:42:11.0109 0x0424  DeviceFinderService - ok
16:42:11.0156 0x0424  [ 6216FD7FD227DE454238A702B218CEC7, 5699FDD253754AE274B8624A41CBE778D74383E95D5167785A48A51AAD67FC70 ] dgderdrv        C:\WINDOWS\system32\drivers\dgderdrv.sys
16:42:11.0171 0x0424  dgderdrv - ok
16:42:11.0203 0x0424  [ 6CC6C4B9D7B906A151AA094CA087B9F0, 5D06DC2FCAF86C256792D541D5581AF5AFEDA247814E07C6017BEE92284CAA56 ] dg_ssudbus      C:\WINDOWS\system32\DRIVERS\ssudbus.sys
16:42:11.0218 0x0424  dg_ssudbus - ok
16:42:11.0265 0x0424  [ C29A1C9B75BA38FA37F8C44405DEC360, 7476D8BC4380CDE56764B2034AF3741DA4ED00F315E41C9A02B5EAD04374F241 ] Dhcp            C:\WINDOWS\System32\dhcpcsvc.dll
16:42:11.0343 0x0424  Dhcp - ok
16:42:11.0359 0x0424  [ 044452051F3E02E7963599FC8F4F3E25, 584BDDB074618BE76454CF90E74829CFF588B5B5FAEB793E2F7AAD26352DD689 ] Disk            C:\WINDOWS\system32\DRIVERS\disk.sys
16:42:11.0421 0x0424  Disk - ok
16:42:11.0437 0x0424  dmadmin - ok
16:42:11.0484 0x0424  [ 0DCFC8395A99FECBB1EF771CEC7FE4EA, 89B0AEE5BE01B9FE4FF2989FF16DB6121721ACDFCE6D9655C0ACD321D8C308BE ] dmboot          C:\WINDOWS\system32\drivers\dmboot.sys
16:42:11.0593 0x0424  dmboot - ok
16:42:11.0609 0x0424  [ 53720AB12B48719D00E327DA470A619A, 800264866A6267C9000A85D00095D57908D059D737E5F28C9C4049B884C46228 ] dmio            C:\WINDOWS\system32\drivers\dmio.sys
16:42:11.0671 0x0424  dmio - ok
16:42:11.0703 0x0424  [ E9317282A63CA4D188C0DF5E09C6AC5F, D41E002F555FE9015EF620975255F58BB79198CA1FF0E09EC950CB450FF77CF7 ] dmload          C:\WINDOWS\system32\drivers\dmload.sys
16:42:11.0765 0x0424  dmload - ok
16:42:11.0796 0x0424  [ 25C83FFBBA13B554EB6D59A9B2E2EE78, 9FBD655ED3E9163AE11EC207F283E387EFBA5A23108EC790BAE4846B35E66F16 ] dmserver        C:\WINDOWS\System32\dmserver.dll
16:42:11.0859 0x0424  dmserver - ok
16:42:11.0890 0x0424  [ 8A208DFCF89792A484E76C40E5F50B45, 4E40E2EB38C6254E7CAA488200E89EE7DEBBBA773890BC6A84313CC68178D54F ] DMusic          C:\WINDOWS\system32\drivers\DMusic.sys
16:42:11.0953 0x0424  DMusic - ok
16:42:11.0984 0x0424  [ 407F3227AC618FD1CA54B335B083DE07, 96B8E734648FE9A4EBA59C096C8779BD1A11A93A6303AFD438A406C8122D36C6 ] Dnscache        C:\WINDOWS\System32\dnsrslvr.dll
16:42:12.0015 0x0424  Dnscache - ok
16:42:12.0062 0x0424  [ 676E36C4FF5BCEA1900F44182B9723E6, 740CF18BD40E00FEA26CF0E6340C5D18F7D0B4390055FAEEC258B3AA790C4AE9 ] Dot3svc         C:\WINDOWS\System32\dot3svc.dll
16:42:12.0125 0x0424  Dot3svc - ok
16:42:12.0125 0x0424  dpti2o - ok
16:42:12.0171 0x0424  [ 8F5FCFF8E8848AFAC920905FBD9D33C8, C8C6FB97AB0871C8C88A2201525A5CF10D5131CB6980D32692ED7A8F58399AD5 ] drmkaud         C:\WINDOWS\system32\drivers\drmkaud.sys
16:42:12.0218 0x0424  drmkaud - ok
16:42:12.0234 0x0424  Suspicious service (NoAccess): e55f1a183fbfe661
16:42:12.0296 0x0424  [ ECF13B36E60CF2C3781ADD2BD4402D3D, 58C20D5DF5260183FA92E5075F3413DEF3A64862D473ADAB873012D5D017524D ] e55f1a183fbfe661 C:\WINDOWS\System32\Drivers\e55f1a183fbfe661.sys
16:42:12.0296 0x0424  Suspicious file ( NoAccess ): C:\WINDOWS\System32\Drivers\e55f1a183fbfe661.sys. md5: ECF13B36E60CF2C3781ADD2BD4402D3D, sha256: 58C20D5DF5260183FA92E5075F3413DEF3A64862D473ADAB873012D5D017524D
16:42:12.0312 0x0424  e55f1a183fbfe661 - detected Rootkit.Win32.Necurs.gen ( 0 )
16:42:12.0312 0x0424  e55f1a183fbfe661 ( Rootkit.Win32.Necurs.gen ) - infected
16:42:12.0312 0x0424  Force sending object to P2P due to detect: e55f1a183fbfe661
16:42:12.0312 0x0424  Object send P2P result: false
16:42:12.0343 0x0424  [ 4E4F2FDDAB0A0736D7671134DCCE91FB, 8E2C57D1A006856C47CBDD5765A9DD317DB205B26DA8BFC70555A506257A1CD9 ] EapHost         C:\WINDOWS\System32\eapsvc.dll
16:42:12.0406 0x0424  EapHost - ok
16:42:12.0437 0x0424  [ 877C18558D70587AA7823A1A308AC96B, 6B336A62112988D855513F45153F73F8470C41A448E9B7438B4A8EC1813AABF1 ] ERSvc           C:\WINDOWS\System32\ersvc.dll
16:42:12.0500 0x0424  ERSvc - ok
16:42:12.0531 0x0424  [ A3EDBE9053889FB24AB22492472B39DC, 6F2ED6E04BDE2FCA2A8BF9BD2D1D6923DE6EAECB46F582B6C0BD1CF364D65C9E ] Eventlog        C:\WINDOWS\system32\services.exe
16:42:12.0546 0x0424  Eventlog - ok
16:42:12.0593 0x0424  [ AF4F6B5739D18CA7972AB53E091CBC74, A399E2CC026730D3A429727AAB48093B9F1E5DD8EB6336519C7F16182FDB3905 ] EventSystem     C:\WINDOWS\system32\Es.dll
16:42:12.0625 0x0424  EventSystem - ok
16:42:12.0656 0x0424  [ 38D332A6D56AF32635675F132548343E, E6909DB836AF679B4F4D62C7396D6C82769CC7ABB8C919C2AABFE934FCE268F6 ] Fastfat         C:\WINDOWS\system32\drivers\Fastfat.sys
16:42:12.0734 0x0424  Fastfat - ok
16:42:12.0765 0x0424  [ 2DB7D303C36DDD055215052F118E8E75, BE6E7BBE12A7A4EDF1F1C2935350603970C7426BBCA7A1A6644BB8999123AF17 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
16:42:12.0796 0x0424  FastUserSwitchingCompatibility - ok
16:42:12.0828 0x0424  [ 92CDD60B6730B9F50F6A1A0C1F8CDC81, 8307A532AB4D05CBBCE206DC2759497708BF5AAA880BD00F0E4F281D8578A1F5 ] Fdc             C:\WINDOWS\system32\drivers\Fdc.sys
16:42:12.0890 0x0424  Fdc - ok
16:42:12.0906 0x0424  [ B0678A548587C5F1967B0D70BACAD6C1, 7E49910212ED87313F926E4800EA8D34809C287A686CA69B82B79C1A6451F88C ] Fips            C:\WINDOWS\system32\drivers\Fips.sys
16:42:12.0968 0x0424  Fips - ok
16:42:12.0984 0x0424  [ 9D27E7B80BFCDF1CDD9B555862D5E7F0, 69C271AD5BCEBFD8AE5A769BDD7EC51256DA3A8ADAD5D12E5C0D13F4E82D8805 ] Flpydisk        C:\WINDOWS\system32\drivers\Flpydisk.sys
16:42:13.0046 0x0424  Flpydisk - ok
16:42:13.0078 0x0424  [ B2CF4B0786F8212CB92ED2B50C6DB6B0, 280F5CF8A90F7BEDE73ADD0DD0F8952088133A7CA9A3D3B7041957E33B36845D ] FltMgr          C:\WINDOWS\system32\drivers\fltmgr.sys
16:42:13.0140 0x0424  FltMgr - ok
16:42:13.0203 0x0424  [ 8BA7C024070F2B7FDD98ED8A4BA41789, 47585006F86B2C6016EC54250A416794792D1E4024FF229C120BC25B684AF66A ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
16:42:13.0203 0x0424  FontCache3.0.0.0 - ok
16:42:13.0234 0x0424  [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A, EC635E071201A766845D48973772CBE0958942B4162F3F5F70660D114CC877E0 ] Fs_Rec          C:\WINDOWS\system32\drivers\Fs_Rec.sys
16:42:13.0296 0x0424  Fs_Rec - ok
16:42:13.0312 0x0424  [ 8F1955CE42E1484714B542F341647778, 8EB3F99625F409D3032561E8AB44BEFBFBFBA4EC873C2151C92A5CAAF7F2AA55 ] Ftdisk          C:\WINDOWS\system32\DRIVERS\ftdisk.sys
16:42:13.0375 0x0424  Ftdisk - ok
16:42:13.0390 0x0424  [ 185ADA973B5020655CEE342059A86CBB, D3E352DFAF30761505480A4C557D980083F65EC5BD46E2656B2114D47B272A89 ] GEARAspiWDM     C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
16:42:13.0406 0x0424  GEARAspiWDM - ok
16:42:13.0421 0x0424  [ 0A02C63C8B144BD8C86B103DEE7C86A2, 7A3235DD3E1995DD72B212FAEB3ECA2A974434DE9BF6D269EA11BA65A80E7E50 ] Gpc             C:\WINDOWS\system32\DRIVERS\msgpc.sys
16:42:13.0500 0x0424  Gpc - ok
16:42:13.0515 0x0424  [ 573C7D0A32852B48F3058CFD8026F511, BC384BBA394AFDCDA1A9ABC858C692AA84A1F0A31AF3DDF7F38D120C027927FB ] HDAudBus        C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
16:42:13.0593 0x0424  HDAudBus - ok
16:42:13.0656 0x0424  [ CB66BF85BF599BEFD6C6A57C2E20357F, 55D3A0F9279FF316766F42548FCB61C452942B08A37590C4892DF110BE4E53C6 ] helpsvc         C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
16:42:13.0718 0x0424  helpsvc - ok
16:42:13.0750 0x0424  [ B35DA85E60C0103F2E4104532DA2F12B, E13C9F73DF7713554CB614B36123D75014F5121AA1FC9069733E61758751CBE4 ] HidServ         C:\WINDOWS\System32\hidserv.dll
16:42:13.0812 0x0424  HidServ - ok
16:42:13.0828 0x0424  [ CCF82C5EC8A7326C3066DE870C06DAF1, 93395FA4C26B2E82DC8B7025ED3BCF583885E5D8C5F60CD6EEAA6335D6A126EC ] hidusb          C:\WINDOWS\system32\DRIVERS\hidusb.sys
16:42:13.0890 0x0424  hidusb - ok
16:42:13.0937 0x0424  [ 156765F692192EA9039A6C4A809312FD, 73400BC5E5C92A2E7834CB8EB33B3D78BF73C875C98B1AD91B0112FBB8DB19E3 ] HipShieldK      C:\WINDOWS\system32\drivers\HipShieldK.sys
16:42:13.0953 0x0424  HipShieldK - ok
16:42:13.0984 0x0424  [ ED29F14101523A6E0E808107405D452C, B8FA987637787BEECC2EB06D36293DAC355523392B49A8C5A9491EEE961917E9 ] hkmsvc          C:\WINDOWS\System32\kmsvc.dll
16:42:14.0046 0x0424  hkmsvc - ok
16:42:14.0109 0x0424  [ 5007E21208DA68F60EBF43352BDFE6D0, 698B6AB8260E05D6A2D168939E8D7F9F1CC1C78FDEC4F6B9D1A7289FD83C841B ] HomeNetSvc      C:\Programme\Gemeinsame Dateien\Mcafee\Platform\McSvcHost\McSvHost.exe
16:42:14.0125 0x0424  HomeNetSvc - ok
16:42:14.0140 0x0424  hpn - ok
16:42:14.0187 0x0424  [ F80A415EF82CD06FFAF0D971528EAD38, 524D9E9201572929522F6805011783711B7C0F76308B924C89CF75F4B7A1FDF3 ] HTTP            C:\WINDOWS\system32\Drivers\HTTP.sys
16:42:14.0218 0x0424  HTTP - ok
16:42:14.0265 0x0424  [ 9E4ADB854CEBCFB81A4B36718FEECD16, 677AB64460775686F8366D6BF35D420A2486C3F07338A00A7C2788A5142B9F08 ] HTTPFilter      C:\WINDOWS\System32\w3ssl.dll
16:42:14.0343 0x0424  HTTPFilter - ok
16:42:14.0343 0x0424  i2omgmt - ok
16:42:14.0359 0x0424  i2omp - ok
16:42:14.0390 0x0424  [ E283B97CFBEB86C1D86BAED5F7846A92, 7664F791D08C80DF1E52B34BE69F073AA645610C4BD975F498254807602374AB ] i8042prt        C:\WINDOWS\system32\drivers\i8042prt.sys
16:42:14.0453 0x0424  i8042prt - ok
16:42:14.0515 0x0424  [ C01AC32DC5C03076CFB852CB5DA5229C, A4D7749220B5BC965D96A267F1E02FE8284A230BA249109207BD4B9EA8DFAC96 ] idsvc           C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
16:42:14.0546 0x0424  idsvc - ok
16:42:14.0578 0x0424  [ 083A052659F5310DD8B6A6CB05EDCF8E, 48D39B03FFB6FAA1529B774443BA12618AE3982D9F65A7B9D18F2269F78B31F4 ] Imapi           C:\WINDOWS\system32\DRIVERS\imapi.sys
16:42:14.0640 0x0424  Imapi - ok
16:42:14.0671 0x0424  [ D4B413AA210C21E46AEDD2BA5B68D38E, 2309622867AA8FC832A729FA78F48742D4BD6CA0DAFBFB9DDB0772D671E1ED75 ] ImapiService    C:\WINDOWS\system32\imapi.exe
16:42:14.0750 0x0424  ImapiService - ok
16:42:14.0750 0x0424  ini910u - ok
16:42:14.0765 0x0424  IntelIde - ok
16:42:14.0796 0x0424  [ 3BB22519A194418D5FEC05D800A19AD0, F6662F440950596DC1382DD1DB5D7891CCEA30A6062BEA942C18445B5F0D8B16 ] Ip6Fw           C:\WINDOWS\system32\drivers\ip6fw.sys
16:42:14.0859 0x0424  Ip6Fw - ok
16:42:14.0890 0x0424  [ 731F22BA402EE4B62748ADAF6363C182, 5C3BEBD008A5BE4DC2F92076FF41A10DDC01E10EC7E6552213CFA11970811848 ] IpFilterDriver  C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
16:42:14.0953 0x0424  IpFilterDriver - ok
16:42:14.0968 0x0424  [ B87AB476DCF76E72010632B5550955F5, E6E74D3A86A7917A8BAED44F8E97CCD2EB171E4E4B27E9907F60D1523FAF319A ] IpInIp          C:\WINDOWS\system32\DRIVERS\ipinip.sys
16:42:15.0031 0x0424  IpInIp - ok
16:42:15.0062 0x0424  [ CC748EA12C6EFFDE940EE98098BF96BB, AF523E21C25D9A1715EFEA573E4F52AF5D4FC9F28A2D613F5DB629C186C439E0 ] IpNat           C:\WINDOWS\system32\DRIVERS\ipnat.sys
16:42:15.0125 0x0424  IpNat - ok
16:42:15.0187 0x0424  [ 10F97E4666133FF3E66EE7F31551536E, 9BB1BE505EC0195A4740C214FD9DA744A5D98B9114E7517ABB575F752ED59EEE ] iPod Service    C:\Programme\iPod\bin\iPodService.exe
16:42:15.0218 0x0424  iPod Service - ok
16:42:15.0265 0x0424  [ 23C74D75E36E7158768DD63D92789A91, 394D296F38E7D8EFD91A6EEC301D9CE6AF910E35EB9819F1A9E3363863AEDFDC ] IPSec           C:\WINDOWS\system32\DRIVERS\ipsec.sys
16:42:15.0328 0x0424  IPSec - ok
16:42:15.0359 0x0424  [ C93C9FF7B04D772627A3646D89F7BF89, 805FA48E7A46D4F10240BF880A2468F53DEA36E83004399228AB70DB7D20544A ] IRENUM          C:\WINDOWS\system32\DRIVERS\irenum.sys
16:42:15.0390 0x0424  IRENUM - ok
16:42:15.0421 0x0424  [ 6DFB88F64135C525433E87648BDA30DE, 8233EEFBEF36AAA152F2C55D23D7118F0DE40C9C22EB5D9793405A4770889540 ] isapnp          C:\WINDOWS\system32\DRIVERS\isapnp.sys
16:42:15.0484 0x0424  isapnp - ok
16:42:15.0578 0x0424  [ 9ECF00E19736054E019C532AED8228FC, F5A64A8269EA3655BBD4850298F335C0BD30535258928ED7CE62A32A3363E60B ] JavaQuickStarterService C:\Programme\Java\jre7\bin\jqs.exe
16:42:15.0593 0x0424  JavaQuickStarterService - ok
16:42:15.0609 0x0424  [ 1704D8C4C8807B889E43C649B478A452, E854C90CD301F42BE2520CEDAD35E49DF2D43606CF4EEED861B74882118D04D1 ] Kbdclass        C:\WINDOWS\system32\DRIVERS\kbdclass.sys
16:42:15.0687 0x0424  Kbdclass - ok
16:42:15.0703 0x0424  [ B6D6C117D771C98130497265F26D1882, E79CC4EA5C088F988BA61F80764F9CAD9B78BC56A7E17DD54622C75483BC5DF4 ] kbdhid          C:\WINDOWS\system32\DRIVERS\kbdhid.sys
16:42:15.0765 0x0424  kbdhid - ok
16:42:15.0781 0x0424  [ 692BCF44383D056AED41B045A323D378, 1A99DEE83FFAF64E73067FC049C0A4CE07D94E4AE31EFA17B38CEFA9E41D67DC ] kmixer          C:\WINDOWS\system32\drivers\kmixer.sys
16:42:15.0843 0x0424  kmixer - ok
16:42:15.0890 0x0424  [ 566C5FD480FDBCE3BA5CF9FBCFFAEA9A, 573681387B27FB2C8DC6612474B9BB8631F6CD3CED29AEBF91992606875724D2 ] KMWDFILTER      C:\WINDOWS\system32\DRIVERS\KMWDFILTER.sys
16:42:15.0906 0x0424  KMWDFILTER - ok
16:42:15.0937 0x0424  [ B467646C54CC746128904E1654C750C1, 3BD71BE3663EA23463D236D8A2A2E42DFA10C502BDB4B6E131FAF0FBA748219E ] KSecDD          C:\WINDOWS\system32\drivers\KSecDD.sys
16:42:15.0968 0x0424  KSecDD - ok
16:42:16.0015 0x0424  [ 2BBDCB79900990F0716DFCB714E72DE7, 6283789201164A9254632D9A3C8A54FE697717D5F8D5A37804D924DC2B70C8E3 ] LanmanServer    C:\WINDOWS\System32\srvsvc.dll
16:42:16.0031 0x0424  LanmanServer - ok
16:42:16.0078 0x0424  [ 1869B14B06B44B44AF70548E1EA3303F, 4D63B4DAF580C86F86837C7D1753E2105B4C52E26D4CA0CAAFE83755EFF7AFBE ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
16:42:16.0093 0x0424  lanmanworkstation - ok
16:42:16.0109 0x0424  lbrtfdc - ok
16:42:16.0156 0x0424  [ 636714B7D43C8D0C80449123FD266920, F06F6C7DC49B26EFCAC3570C67BA9BD934F62C6F382DA4DD2AB302C7B970F414 ] LmHosts         C:\WINDOWS\System32\lmhsvc.dll
16:42:16.0250 0x0424  LmHosts - ok
16:42:16.0281 0x0424  [ ED643E777BA3F7151EF3F0FB6BE4F7F0, 94B96367ECF2140299F36D93C00C9FE666953BEA6A1253EEEAAC439A682D38CA ] LVRS            C:\WINDOWS\system32\DRIVERS\lvrs.sys
16:42:16.0296 0x0424  LVRS - ok
16:42:16.0437 0x0424  [ 5BC80451109A8DD7F2DDD35BCE2929A3, F97BAD2D43D1E199841BAE5707424B49B4451CD486F249646E898FC7CC7AB4C8 ] LVUVC           C:\WINDOWS\system32\DRIVERS\lvuvc.sys
16:42:16.0578 0x0424  LVUVC - ok
16:42:16.0640 0x0424  [ ECAB006AC6136F1307E140B633CDB8C2, CAF7B51C0BE52A80FAEE6A2F93D5AF0D9ACD7C2255C4D711EC467755C4F8B9B6 ] McAfee SiteAdvisor Service C:\Programme\Gemeinsame Dateien\Mcafee\McSvcHost\McSvHost.exe
16:42:16.0656 0x0424  McAfee SiteAdvisor Service - ok
16:42:16.0734 0x0424  [ 16B115E3706F493BE99FCA5D75EE54CF, CAEC1D17894EBBE303A23BD33B6E9DB9EFB670E31C7393812BCFB8B418FCD816 ] McAPExe         C:\Programme\McAfee\MSC\McAPExe.exe
16:42:16.0750 0x0424  McAPExe - ok
16:42:16.0781 0x0424  [ 5007E21208DA68F60EBF43352BDFE6D0, 698B6AB8260E05D6A2D168939E8D7F9F1CC1C78FDEC4F6B9D1A7289FD83C841B ] mcbootdelaystartsvc C:\Programme\Gemeinsame Dateien\Mcafee\Platform\McSvcHost\McSvHost.exe
16:42:16.0796 0x0424  mcbootdelaystartsvc - ok
16:42:16.0812 0x0424  [ 5007E21208DA68F60EBF43352BDFE6D0, 698B6AB8260E05D6A2D168939E8D7F9F1CC1C78FDEC4F6B9D1A7289FD83C841B ] McMPFSvc        C:\Programme\Gemeinsame Dateien\Mcafee\Platform\McSvcHost\McSvHost.exe
16:42:16.0828 0x0424  McMPFSvc - ok
16:42:16.0859 0x0424  [ 5007E21208DA68F60EBF43352BDFE6D0, 698B6AB8260E05D6A2D168939E8D7F9F1CC1C78FDEC4F6B9D1A7289FD83C841B ] McNaiAnn        C:\Programme\Gemeinsame Dateien\Mcafee\Platform\McSvcHost\McSvHost.exe
16:42:16.0875 0x0424  McNaiAnn - ok
16:42:16.0921 0x0424  [ 3A01047FFF666D33EBDE3513D20DA1F5, 360A1D6C2CBDF9C25E72B872ACE36E69D43218E532248A08753490ED6C266CBE ] McODS           C:\Programme\McAfee\VirusScan\mcods.exe
16:42:16.0937 0x0424  McODS - ok
16:42:16.0953 0x0424  [ 5007E21208DA68F60EBF43352BDFE6D0, 698B6AB8260E05D6A2D168939E8D7F9F1CC1C78FDEC4F6B9D1A7289FD83C841B ] mcpltsvc        C:\Programme\Gemeinsame Dateien\Mcafee\Platform\McSvcHost\McSvHost.exe
16:42:16.0968 0x0424  mcpltsvc - ok
16:42:17.0000 0x0424  [ 5007E21208DA68F60EBF43352BDFE6D0, 698B6AB8260E05D6A2D168939E8D7F9F1CC1C78FDEC4F6B9D1A7289FD83C841B ] McProxy         C:\Programme\Gemeinsame Dateien\Mcafee\Platform\McSvcHost\McSvHost.exe
16:42:17.0015 0x0424  McProxy - ok
16:42:17.0046 0x0424  [ 7CF1B716372B89568AE4C0FE769F5869, 0D70A7A594BCFBB26D7249C0F4B0AF9EF874F2318B3FDCE44648CC61279594ED ] MDM             C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7DEBUG\mdm.exe
16:42:17.0062 0x0424  MDM - detected UnsignedFile.Multi.Generic ( 1 )
16:42:17.0078 0x0424  MDM ( UnsignedFile.Multi.Generic ) - warning
16:42:17.0093 0x0424  [ B7550A7107281D170CE85524B1488C98, A3854B16A65436BEF6BEDE918B43B3BE8F00D303660DB5831DD376271DC43239 ] Messenger       C:\WINDOWS\System32\msgsvc.dll
16:42:17.0171 0x0424  Messenger - ok
16:42:17.0203 0x0424  [ BD40B4F2E6282ADABE9D82E963DB42FB, B35E94445B0178D750F9CFE0A260E576DCB0DD280E8B00F0767568C170690073 ] mfeapfk         C:\WINDOWS\system32\drivers\mfeapfk.sys
16:42:17.0218 0x0424  mfeapfk - ok
16:42:17.0250 0x0424  [ 2AED3FE3E34AE751F4FD7EDF97B411F0, A19836AC942375662E3F3D5E13A75AC16994432C2EAB5F56934DDA97E2FFEB40 ] mfeavfk         C:\WINDOWS\system32\drivers\mfeavfk.sys
16:42:17.0265 0x0424  mfeavfk - ok
16:42:17.0296 0x0424  [ 4DA6C7377F721C1A621FBE0474A77D60, 25FA62B4D4198609F97F58C7E2DE50533337E21D768EC74C1E00141B08D76E40 ] mfebopk         C:\WINDOWS\system32\drivers\mfebopk.sys
16:42:17.0296 0x0424  mfebopk - ok
16:42:17.0359 0x0424  [ F2390CA991F8111D08CB5D5FE56EAEE1, E8891E3ED6C5B238FFA60736F3B71F42F8E24BB87CE97F993B47BA5D340FBDB9 ] mfecore         C:\Programme\Gemeinsame Dateien\McAfee\AMCore\mcshield.exe
16:42:17.0390 0x0424  mfecore - ok
16:42:17.0437 0x0424  [ 8020C7C06B9DDC3372A9A84844C03136, 24C0FCBBDCEEB9A804D6A160C904DBEFD2DF5C576856255CAC2206EC9A6C9809 ] mfefire         C:\Programme\Gemeinsame Dateien\McAfee\SystemCore\\mfefire.exe
16:42:17.0453 0x0424  mfefire - ok
16:42:17.0484 0x0424  [ 496FA40A3D40A1158978498CFB814D9E, FD31EC8114C784F741602AC7D584CD244482BB098BA2C2F49B06D2943BBA74A5 ] mfefirek        C:\WINDOWS\system32\drivers\mfefirek.sys
16:42:17.0500 0x0424  mfefirek - ok
16:42:17.0546 0x0424  [ 7A4C47EB5772B5E4E99D01734A60679B, 7D6CE9EFC9AEA2A6A1C1CE12477BC7B21436CE4E497F04E1C43FA392C8092136 ] mfehidk         C:\WINDOWS\system32\drivers\mfehidk.sys
16:42:17.0562 0x0424  mfehidk - ok
16:42:17.0609 0x0424  [ 9CF051BAD1E5DDA2E8D4330DDDD0BC5D, 58C12EAB723014741D445F784821EE39C69B270846641E0B327E701660C3F1A6 ] mfencbdc        C:\WINDOWS\system32\DRIVERS\mfencbdc.sys
16:42:17.0625 0x0424  mfencbdc - ok
16:42:17.0640 0x0424  [ 6114C0155E15690524AAA8B483CD9839, F7A7728BDCF96C08D0CFA8A3210F6E20FA82882C3433605DEFCCFB6D115593DC ] mfencrk         C:\WINDOWS\system32\DRIVERS\mfencrk.sys
16:42:17.0656 0x0424  mfencrk - ok
16:42:17.0703 0x0424  [ C4CEBD21C39E2E7DBD156BC458F8EC7D, 8120677ECBA8A12F0C711986D9BF5154CE9D48C9463DB79445672C5595F3FC64 ] mfendisk        C:\WINDOWS\system32\DRIVERS\mfendisk.sys
16:42:17.0703 0x0424  mfendisk - ok
16:42:17.0734 0x0424  [ C4CEBD21C39E2E7DBD156BC458F8EC7D, 8120677ECBA8A12F0C711986D9BF5154CE9D48C9463DB79445672C5595F3FC64 ] mfendiskmp      C:\WINDOWS\system32\DRIVERS\mfendisk.sys
16:42:17.0750 0x0424  mfendiskmp - ok
16:42:17.0765 0x0424  [ C453856A058C6B3EB84D054173DDDC4D, AFC25C058CE4255AA6E0A61CD4F3A0713015164F8F005313C88F2C9FB5A47B86 ] mfetdi2k        C:\WINDOWS\system32\drivers\mfetdi2k.sys
16:42:17.0781 0x0424  mfetdi2k - ok
16:42:17.0812 0x0424  [ 9ECA2FA155897ED17E42AFC70F0CE01D, D646CA71A99241D3E5C8A9521D5B18B17BB8F85115271C476FB0ED3E4A21987A ] mfevtp          C:\WINDOWS\system32\mfevtps.exe
16:42:17.0828 0x0424  mfevtp - ok
16:42:17.0906 0x0424  [ 4AE068242760A1FB6E1A44BF4E16AFA6, 1FB771162B96AAF787AC24867B818DF8511F0780BB094FA9A38C11D8DBFE68BC ] mnmdd           C:\WINDOWS\system32\drivers\mnmdd.sys
16:42:17.0968 0x0424  mnmdd - ok
16:42:18.0000 0x0424  [ C2F1D365FD96791B037EE504868065D3, 87BD87E08FD00D115524B049F1A3A719AB86557D68968E7090CD0F271F985CAF ] mnmsrvc         C:\WINDOWS\system32\mnmsrvc.exe
16:42:18.0078 0x0424  mnmsrvc - ok
16:42:18.0093 0x0424  [ 6FB74EBD4EC57A6F1781DE3852CC3362, 0454509D9A31E0202C08AE17294E2682F227D177A3C73B303E4C8332757AFCA1 ] Modem           C:\WINDOWS\system32\drivers\Modem.sys
16:42:18.0171 0x0424  Modem - ok
16:42:18.0234 0x0424  [ 9FA7207D1B1ADEAD88AE8EED9CDBBAA5, 2AC3875B2E7D9B0692253A9867B940CF214DE03574808B42C3702843BC1D5696 ] MonFilt         C:\WINDOWS\system32\drivers\MonFilt.sys
16:42:18.0296 0x0424  MonFilt - ok
16:42:18.0328 0x0424  [ B24CE8005DEAB254C0251E15CB71D802, 6804A8ABDAD5EC846E7F8077D1EE9BA45D6226ACFF42C70BE3DE7C8980EF9EC4 ] Mouclass        C:\WINDOWS\system32\DRIVERS\mouclass.sys
16:42:18.0390 0x0424  Mouclass - ok
16:42:18.0406 0x0424  [ 66A6F73C74E1791464160A7065CE711A, 3C570FA1E8EF976B83759220FE95BAC9D7D48D607F91B113EDE4790D34ACBD46 ] mouhid          C:\WINDOWS\system32\DRIVERS\mouhid.sys
16:42:18.0468 0x0424  mouhid - ok
16:42:18.0500 0x0424  [ A80B9A0BAD1B73637DBCBBA7DF72D3FD, 2A5E15ED2C24C6C65EF2F7E1FD93374774076C9D8D451E4422561F4D269C012F ] MountMgr        C:\WINDOWS\system32\drivers\MountMgr.sys
16:42:18.0562 0x0424  MountMgr - ok
16:42:18.0625 0x0424  [ 26EA1DAD601EE3ACAC301D66F07BA219, C9594BB15D53D4AC2156CCCD2DB65B2C20620F1F60DA85F48D1586FC10028096 ] MozillaMaintenance C:\Programme\Mozilla Maintenance Service\maintenanceservice.exe
16:42:18.0625 0x0424  MozillaMaintenance - ok
16:42:18.0656 0x0424  [ C0F8E0C2C3C0437CF37C6781896DC3EC, 12196EF5A94BD011B5D578E755B51424E3238437A028CC1EDFB53138C00D3339 ] MPE             C:\WINDOWS\system32\DRIVERS\MPE.sys
16:42:18.0718 0x0424  MPE - ok
16:42:18.0734 0x0424  mraid35x - ok
16:42:18.0750 0x0424  [ 11D42BB6206F33FBB3BA0288D3EF81BD, 76ABCFB62C5AC549F58C231F72A99882CDEB74928104B77FE52554765C2B1A22 ] MRxDAV          C:\WINDOWS\system32\DRIVERS\mrxdav.sys
16:42:18.0812 0x0424  MRxDAV - ok
16:42:18.0859 0x0424  [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0, DB9B186F7076D7B94F45041AF7B77C1AD2CAB504D683B459C6CB1C22840ED170 ] MRxSmb          C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
16:42:18.0906 0x0424  MRxSmb - ok
16:42:18.0937 0x0424  [ 35A031AF38C55F92D28AA03EE9F12CC9, 97245D204C886EE8DCCC2DEAC80A0E358A7E0C1982F77389DA50DCF091FC9DDC ] MSDTC           C:\WINDOWS\system32\msdtc.exe
16:42:19.0000 0x0424  MSDTC - ok
16:42:19.0046 0x0424  [ C941EA2454BA8350021D774DAF0F1027, C940E978C7B66A713A0FDAB54B5F995DF59D089AFCD96221DD3222948CD49BBD ] Msfs            C:\WINDOWS\system32\drivers\Msfs.sys
16:42:19.0109 0x0424  Msfs - ok
16:42:19.0109 0x0424  MSIServer - ok
16:42:19.0140 0x0424  [ D1575E71568F4D9E14CA56B7B0453BF1, 4ABE0E24786C0D39FA2B885447E56204CA6942FB175E534DCE675D7BCF0B176A ] MSKSSRV         C:\WINDOWS\system32\drivers\MSKSSRV.sys
16:42:19.0203 0x0424  MSKSSRV - ok
16:42:19.0218 0x0424  [ 325BB26842FC7CCC1FCCE2C457317F3E, C07BE560513B1FB91D756494F0BA4AEEB2E1998DE0E1C21EE83DB1183B0CEE91 ] MSPCLOCK        C:\WINDOWS\system32\drivers\MSPCLOCK.sys
16:42:19.0296 0x0424  MSPCLOCK - ok
16:42:19.0312 0x0424  [ BAD59648BA099DA4A17680B39730CB3D, 9AD4C7C94C186C8815D0BC75DCAFB962158DA6935A244BA243EDDDEB33F9816C ] MSPQM           C:\WINDOWS\system32\drivers\MSPQM.sys
16:42:19.0375 0x0424  MSPQM - ok
16:42:19.0406 0x0424  [ AF5F4F3F14A8EA2C26DE30F7A1E17136, AC93A1E4ABB0D038B772E429015567E44CC2EDB66C54DBE23A5F98176FAC1520 ] mssmbios        C:\WINDOWS\system32\DRIVERS\mssmbios.sys
16:42:19.0468 0x0424  mssmbios - ok
16:42:19.0484 0x0424  [ E53736A9E30C45FA9E7B5EAC55056D1D, 38602F280BF69EBA3706AD175AFC1AEB561A8302B4B61E3FECB3C27D7A9BDB41 ] MSTEE           C:\WINDOWS\system32\drivers\MSTEE.sys
16:42:19.0546 0x0424  MSTEE - ok
16:42:19.0578 0x0424  [ DE6A75F5C270E756C5508D94B6CF68F5, FCC972DDC36C2C44D836913F10004C2C33B11C54DEFFF0C63E0FDF901D2F9261 ] Mup             C:\WINDOWS\system32\drivers\Mup.sys
16:42:19.0609 0x0424  Mup - ok
16:42:19.0640 0x0424  [ 5B50F1B2A2ED47D560577B221DA734DB, C16A554B6E1A7F5F98C94DFA88163E0F7426506BF2F51FD351B1A05FC0DB3BC5 ] NABTSFEC        C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
16:42:19.0703 0x0424  NABTSFEC - ok
16:42:19.0734 0x0424  [ 46BB15AE2AC7D025D6D2567B876817BD, 102A101B96D1078C98FA0F871C801A9A8538E20E5686AB0C7680B2F6C92B3165 ] napagent        C:\WINDOWS\System32\qagentrt.dll
16:42:19.0812 0x0424  napagent - ok
16:42:19.0828 0x0424  [ 1DF7F42665C94B825322FAE71721130D, FE0DCB728471465B39A42A7511F4133021FBA5DF88F88BCB5FE2FF34CFD713F9 ] NDIS            C:\WINDOWS\system32\drivers\NDIS.sys
16:42:19.0906 0x0424  NDIS - ok
16:42:19.0906 0x0424  [ 7FF1F1FD8609C149AA432F95A8163D97, 18CD1FF5AC1EF8A38D1EC53014F2BADD28D9CDF4ECE2EBC2313D08903776F323 ] NdisIP          C:\WINDOWS\system32\DRIVERS\NdisIP.sys
16:42:19.0968 0x0424  NdisIP - ok
16:42:20.0000 0x0424  [ 0109C4F3850DFBAB279542515386AE22, 4F6DB1E499AC853FD36FD603FBB6D3AC9BDCEB298C7FE1FB59A9236CB46729B2 ] NdisTapi        C:\WINDOWS\system32\DRIVERS\ndistapi.sys
16:42:20.0031 0x0424  NdisTapi - ok
16:42:20.0078 0x0424  [ F927A4434C5028758A842943EF1A3849, B1AA3AF150C05307461774925901789456B0CCCD03A5E71ADA4AB58455962BEE ] Ndisuio         C:\WINDOWS\system32\DRIVERS\ndisuio.sys
16:42:20.0140 0x0424  Ndisuio - ok
16:42:20.0140 0x0424  [ EDC1531A49C80614B2CFDA43CA8659AB, 494042F790F33721328B4451E79842E21919681CC421A4F9633EC4D383E06097 ] NdisWan         C:\WINDOWS\system32\DRIVERS\ndiswan.sys
16:42:20.0203 0x0424  NdisWan - ok
16:42:20.0234 0x0424  [ 2F597BB467E05B1FE3830EABD821B8E0, 141497F5A49D47CCE3C9289644F4BD838DCB238F6D8E847FC006652E21FE02AC ] NDProxy         C:\WINDOWS\system32\drivers\NDProxy.sys
16:42:20.0250 0x0424  NDProxy - ok
16:42:20.0296 0x0424  [ 5D81CF9A2F1A3A756B66CF684911CDF0, 7989C36607CAEA17AFA2C1C9904145CA0714A54B9F712D9D4C1AB140D0B2CC0C ] NetBIOS         C:\WINDOWS\system32\DRIVERS\netbios.sys
16:42:20.0359 0x0424  NetBIOS - ok
16:42:20.0375 0x0424  [ 74B2B2F5BEA5E9A3DC021D685551BD3D, 7932B71F98B4122BE88F576BF6D745A757AE378A48924B7F4358837B75640A82 ] NetBT           C:\WINDOWS\system32\DRIVERS\netbt.sys
16:42:20.0437 0x0424  NetBT - ok
16:42:20.0468 0x0424  [ 8ACE4251BFFD09CE75679FE940E996CC, 81969521B5EAEA09ECA63058BE9697BB69AF2596339CA9DF0CFEDC031DCFDC7E ] NetDDE          C:\WINDOWS\system32\netdde.exe
16:42:20.0546 0x0424  NetDDE - ok
16:42:20.0546 0x0424  [ 8ACE4251BFFD09CE75679FE940E996CC, 81969521B5EAEA09ECA63058BE9697BB69AF2596339CA9DF0CFEDC031DCFDC7E ] NetDDEdsdm      C:\WINDOWS\system32\netdde.exe
16:42:20.0609 0x0424  NetDDEdsdm - ok
16:42:20.0625 0x0424  [ AFB8261B56CBA0D86AEB6DF682AF9785, 104D96F1F19DD4CE492064ACC9634406A019EAE20B42D03198E400E661897127 ] Netlogon        C:\WINDOWS\system32\lsass.exe
16:42:20.0687 0x0424  Netlogon - ok
16:42:20.0718 0x0424  [ E6D88F1F6745BF00B57E7855A2AB696C, 12A5EDD853600FF5EBF91E127077745AE1E61E66DBC1D4D4306570F171AF4A39 ] Netman          C:\WINDOWS\System32\netman.dll
16:42:20.0781 0x0424  Netman - ok
16:42:20.0812 0x0424  [ D34612C5D02D026535B3095D620626AE, 1BBCCCBF49EB8807240A77DCB43C25C21682073CC5356594E2C4F53EF36BF657 ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
16:42:20.0828 0x0424  NetTcpPortSharing - ok
16:42:20.0859 0x0424  [ F1B67B6B0751AE0E6E964B02821206A3, 3D5A7593ABDEE2047C5738671C85DC8B95A4ECF58D5D7B04EEE13A689839A540 ] Nla             C:\WINDOWS\System32\mswsock.dll
16:42:20.0890 0x0424  Nla - ok
16:42:20.0906 0x0424  [ 3182D64AE053D6FB034F44B6DEF8034A, 4ADFC76965BA2A5F488E71789A4E4EA702A74AF42725F72130D1CA919406CF19 ] Npfs            C:\WINDOWS\system32\drivers\Npfs.sys
16:42:20.0968 0x0424  Npfs - ok
16:42:21.0000 0x0424  [ 78A08DD6A8D65E697C18E1DB01C5CDCA, E0E6F3ED05068E32F1D5C2D2B38CDEF4536B8656DB6756C66CF6B40B60C8F3DA ] Ntfs            C:\WINDOWS\system32\drivers\Ntfs.sys
16:42:21.0093 0x0424  Ntfs - ok
16:42:21.0109 0x0424  [ AFB8261B56CBA0D86AEB6DF682AF9785, 104D96F1F19DD4CE492064ACC9634406A019EAE20B42D03198E400E661897127 ] NtLmSsp         C:\WINDOWS\system32\lsass.exe
16:42:21.0171 0x0424  NtLmSsp - ok
16:42:21.0203 0x0424  [ 56AF4064996FA5BAC9C449B1514B4770, 154602EFEC22728503D4ABA025DF711B0F2CFC983F5E3BF25F2A4BCD1AE250EC ] NtmsSvc         C:\WINDOWS\system32\ntmssvc.dll
16:42:21.0281 0x0424  NtmsSvc - ok
16:42:21.0296 0x0424  [ 73C1E1F395918BC2C6DD67AF7591A3AD, B21133A75253EC15E2DFF66D3B480AB1A7E1A2360476C810E7AA55D0F0EB08D4 ] Null            C:\WINDOWS\system32\drivers\Null.sys
16:42:21.0359 0x0424  Null - ok
16:42:21.0703 0x0424  [ 7C56F3FD65B2BDB315CA3605A5392D7B, 1C33B2723BBD958FE06D71B6AC5C54DF1F46491C292749FE0DB8577BF056A765 ] nv              C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
16:42:22.0093 0x0424  nv - ok
16:42:22.0156 0x0424  [ 70217A23470F4BB4C8FB4ABE06813081, 78148E689526983E3163BD1768C20D9943AC4D07C6D11C567E232798FD150E1B ] NVENETFD        C:\WINDOWS\system32\DRIVERS\NVENETFD.sys
16:42:22.0187 0x0424  NVENETFD - ok
16:42:22.0203 0x0424  [ EA98BFE4931BD13D747D647C1859796E, B5D0C23EEB0067DE64FB49A9DB86FDCE77547DE6C73A2657FA43122CB16026BB ] nvgts           C:\WINDOWS\system32\DRIVERS\nvgts.sys
16:42:22.0218 0x0424  nvgts - ok
16:42:22.0250 0x0424  [ BE8513730653384939A4D2D977C81027, 87A36A08146E13FCFB53851052B0C4A78E909548336EC68E693A515B95385AD9 ] nvnetbus        C:\WINDOWS\system32\DRIVERS\nvnetbus.sys
16:42:22.0265 0x0424  nvnetbus - ok
16:42:22.0328 0x0424  [ 1982E96B2C5C2EFFEF38EFC37293A42E, 06FA232C69CEEDE98EBC4580C0C1421688A4909CB46912D5E16541A2020F3160 ] NVSvc           C:\WINDOWS\system32\nvsvc32.exe
16:42:22.0343 0x0424  NVSvc - ok
16:42:22.0421 0x0424  [ E6568D2D90028207587CB43CD8E5FD01, 671D44781C5DBB8AD42904A5A749B0256344A54C801390E8C92E9339E2FBE354 ] nvUpdatusService C:\Programme\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
16:42:22.0468 0x0424  nvUpdatusService - ok
16:42:22.0500 0x0424  [ B305F3FAD35083837EF46A0BBCE2FC57, 9D0E0E666D652D0FC9EAB97280A5D67AAF61D6B21929DF7CF8ED72A367720464 ] NwlnkFlt        C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
16:42:22.0562 0x0424  NwlnkFlt - ok
16:42:22.0593 0x0424  [ C99B3415198D1AAB7227F2C88FD664B9, DD8DA4B5E804F134AB9233859544C025062902DFC3E8FB8A09A67337A4E73F55 ] NwlnkFwd        C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
16:42:22.0640 0x0424  NwlnkFwd - ok
16:42:22.0718 0x0424  [ 785F487A64950F3CB8E9F16253BA3B7B, 02445344BD214370A6D48B1CA04921D8EFCB13E676B5648266DD0E076C0822B6 ] odserv          C:\Programme\Gemeinsame Dateien\Microsoft Shared\OFFICE12\ODSERV.EXE
16:42:22.0734 0x0424  odserv - ok
16:42:22.0781 0x0424  [ 5A432A042DAE460ABE7199B758E8606C, 6E5D1F477D290905BE27CEBF9572BAC6B05FFEF2FAD901D3C8E11F665F8B9A71 ] ose             C:\Programme\Gemeinsame Dateien\Microsoft Shared\Source Engine\OSE.EXE
16:42:22.0796 0x0424  ose - ok
16:42:22.0812 0x0424  [ F84785660305B9B903FB3BCA8BA29837, BDBDE61076800415D98759077E9E039C80B55DBE68E31F8BF44A909C6C3D3276 ] Parport         C:\WINDOWS\system32\drivers\Parport.sys
16:42:22.0875 0x0424  Parport - ok
16:42:22.0906 0x0424  [ BEB3BA25197665D82EC7065B724171C6, 7E71C13BA30CD95CEE8A9CC85E6F48A01F30EDEAADEE69D80AE828BF97E5A5CA ] PartMgr         C:\WINDOWS\system32\drivers\PartMgr.sys
16:42:22.0968 0x0424  PartMgr - ok
16:42:23.0000 0x0424  [ C2BF987829099A3EAA2CA6A0A90ECB4F, 1DF21EA8E43875CFEECD869407429F82FB449707CFB845718499468E699BAAAA ] ParVdm          C:\WINDOWS\system32\drivers\ParVdm.sys
16:42:23.0046 0x0424  ParVdm - ok
16:42:23.0062 0x0424  [ 387E8DEDC343AA2D1EFBC30580273ACD, 5F3E642BDB759777E570ED5B22AC7E93CDCD362708F281657AD7BAB44EDEC802 ] PCI             C:\WINDOWS\system32\DRIVERS\pci.sys
16:42:23.0125 0x0424  PCI - ok
16:42:23.0140 0x0424  PCIDump - ok
16:42:23.0156 0x0424  [ 59BA86D9A61CBCF4DF8E598C331F5B82, 822D11C5CE77BFD7B2F25350CCBF92B0B9388EEA6D86ED220B768C720976D839 ] PCIIde          C:\WINDOWS\system32\DRIVERS\pciide.sys
16:42:23.0218 0x0424  PCIIde - ok
16:42:23.0234 0x0424  [ A2A966B77D61847D61A3051DF87C8C97, 6CED7CA26DC62B0AAFC83A2E07336DAD25954491201BB8E06103971F3F0B8B51 ] Pcmcia          C:\WINDOWS\system32\drivers\Pcmcia.sys
16:42:23.0312 0x0424  Pcmcia - ok
16:42:23.0312 0x0424  PDCOMP - ok
16:42:23.0328 0x0424  PDFRAME - ok
16:42:23.0328 0x0424  PDRELI - ok
16:42:23.0343 0x0424  PDRFRAME - ok
16:42:23.0343 0x0424  perc2 - ok
16:42:23.0359 0x0424  perc2hib - ok
16:42:23.0484 0x0424  [ DD184D9ADFE2A8A21741DBDFE9E22F5C, 0C22966973246248FD15A6C192AA1B731D018B4FDF1BD97FE9AA67A746C9440C ] PID_PEPI        C:\WINDOWS\system32\DRIVERS\LV302V32.SYS
16:42:23.0578 0x0424  PID_PEPI - ok
16:42:23.0593 0x0424  [ A3EDBE9053889FB24AB22492472B39DC, 6F2ED6E04BDE2FCA2A8BF9BD2D1D6923DE6EAECB46F582B6C0BD1CF364D65C9E ] PlugPlay        C:\WINDOWS\system32\services.exe
16:42:23.0609 0x0424  PlugPlay - ok
16:42:23.0656 0x0424  [ CBCEC2C45E7D672EC6E46CBFF23BDF8E, 2E51A0E9A5AE8F017D0AC22D46036FFFAF917CBC6A7C7297B63C1154DFC7FCC6 ] PMBDeviceInfoProvider C:\Programme\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe
16:42:23.0687 0x0424  PMBDeviceInfoProvider - ok
16:42:23.0703 0x0424  [ AFB8261B56CBA0D86AEB6DF682AF9785, 104D96F1F19DD4CE492064ACC9634406A019EAE20B42D03198E400E661897127 ] PolicyAgent     C:\WINDOWS\system32\lsass.exe
16:42:23.0765 0x0424  PolicyAgent - ok
16:42:23.0765 0x0424  [ EFEEC01B1D3CF84F16DDD24D9D9D8F99, C5F0C8C66A3AF7E7BB04CEDE4AC5306F8387AB384A2107DC5BE413AAE968EFF1 ] PptpMiniport    C:\WINDOWS\system32\DRIVERS\raspptp.sys
16:42:23.0843 0x0424  PptpMiniport - ok
16:42:23.0859 0x0424  [ 2CB55427C58679F49AD600FCCBA76360, 2B5242E9637FCB6A7C16F720C9D8D440AA88B61FB5F108B295A208886C01C4D1 ] Processor       C:\WINDOWS\system32\DRIVERS\processr.sys
16:42:23.0906 0x0424  Processor - ok
16:42:23.0921 0x0424  [ AFB8261B56CBA0D86AEB6DF682AF9785, 104D96F1F19DD4CE492064ACC9634406A019EAE20B42D03198E400E661897127 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
16:42:23.0984 0x0424  ProtectedStorage - ok
16:42:24.0000 0x0424  [ 09298EC810B07E5D582CB3A3F9255424, 35473A1BE25AC289474090EB0806AC6B3035DC33D1F3DF97A14BF1E361AC6AC3 ] PSched          C:\WINDOWS\system32\DRIVERS\psched.sys
16:42:24.0062 0x0424  PSched - ok
16:42:24.0078 0x0424  [ 80D317BD1C3DBC5D4FE7B1678C60CADD, DA76804B55D0CAB3DDD01EFC06673764AE4860693375C658B6063FB14AF7F12C ] Ptilink         C:\WINDOWS\system32\DRIVERS\ptilink.sys
16:42:24.0140 0x0424  Ptilink - ok
16:42:24.0156 0x0424  ql1080 - ok
16:42:24.0156 0x0424  Ql10wnt - ok
16:42:24.0171 0x0424  ql12160 - ok
16:42:24.0171 0x0424  ql1240 - ok
16:42:24.0187 0x0424  ql1280 - ok
16:42:24.0328 0x0424  [ 138F7963118EC710C348819C08F72230, A5ED1F4C69132944EFF1BF91F59FF0C47BA54E6C8AC2124B36BF5C8B79E16441 ] Radio.fx        D:\Tobit Radio.fx\Server\rfx-server.exe
16:42:24.0437 0x0424  Radio.fx - ok
16:42:24.0500 0x0424  [ FE0D99D6F31E4FAD8159F690D68DED9C, 998685622ABE631984B7E4DBF91AB3594B1F574378D75EB9F6265F4650470692 ] RasAcd          C:\WINDOWS\system32\DRIVERS\rasacd.sys
16:42:24.0562 0x0424  RasAcd - ok
16:42:24.0593 0x0424  [ F5BA6CACCDB66C8F048E867563203246, AFEAD8FC02313F7EBC8F9F39E7ED2868852B480BE3902FA7BD0AFD81492AB243 ] RasAuto         C:\WINDOWS\System32\rasauto.dll
16:42:24.0671 0x0424  RasAuto - ok
16:42:24.0687 0x0424  [ 11B4A627BC9614B885C4969BFA5FF8A6, EAE0A412A2B0F68919C32A96B3A08CC1A06585E4998819F5C9051745F63FF5AD ] Rasl2tp         C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
16:42:24.0765 0x0424  Rasl2tp - ok
16:42:24.0781 0x0424  [ F9A7B66EA345726EDB5862A46B1ECCD5, 5D35429D394D36A1692A7E219BA1A85CD8096FEAE0F90BFE036A63118FEDBF57 ] RasMan          C:\WINDOWS\System32\rasmans.dll
16:42:24.0843 0x0424  RasMan - ok
16:42:24.0859 0x0424  [ 5BC962F2654137C9909C3D4603587DEE, A5CE5653D0105240F5E86CFAAB89E7917D42D939E2F27A5A7D6979289CA651B8 ] RasPppoe        C:\WINDOWS\system32\DRIVERS\raspppoe.sys
16:42:24.0921 0x0424  RasPppoe - ok
16:42:24.0937 0x0424  [ FDBB1D60066FCFBB7452FD8F9829B242, 10A2DACF944BD000032EBA8C095CB3D879CC55B28C377ADF6E52E508E47444DB ] Raspti          C:\WINDOWS\system32\DRIVERS\raspti.sys
16:42:25.0000 0x0424  Raspti - ok
16:42:25.0015 0x0424  [ 7AD224AD1A1437FE28D89CF22B17780A, 6645235CA27D671954E3557FA37082881C3D7D47492C71264CD8CB8D108EC801 ] Rdbss           C:\WINDOWS\system32\DRIVERS\rdbss.sys
16:42:25.0078 0x0424  Rdbss - ok
16:42:25.0078 0x0424  [ 4912D5B403614CE99C28420F75353332, 975341ECD660209987B5E5171B8315E032439E408CBE8A5986E67AF767F373BB ] RDPCDD          C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
16:42:25.0156 0x0424  RDPCDD - ok
16:42:25.0187 0x0424  [ 43AF5212BD8FB5BA6EED9754358BD8F7, AF330F61CECA4AFA359CEABC5EB3227E6B56A9A2DCE50701381D665122D7356D ] RDPWD           C:\WINDOWS\system32\drivers\RDPWD.sys
16:42:25.0218 0x0424  RDPWD - ok
16:42:25.0250 0x0424  [ 263AF18AF0F3DB99F574C95F284CCEC9, 2BFA9952E97EFEB386FC56EC2C125080CD12DAC078DBE43C395CB4D9F22165D3 ] RDSessMgr       C:\WINDOWS\system32\sessmgr.exe
16:42:25.0312 0x0424  RDSessMgr - ok
16:42:25.0328 0x0424  [ ED761D453856F795A7FE056E42C36365, EF026585B33415D8FCE94A9F27D7A4396C7C35C88E06A4CF0FEA702401E8597A ] redbook         C:\WINDOWS\system32\DRIVERS\redbook.sys
16:42:25.0390 0x0424  redbook - ok
16:42:25.0421 0x0424  [ 0E97EC96D6942CEEC2D188CC2EB69A01, D4253B4420BEF19451A55AB91E4834482181A31A31134F6E2AFE05C8E20C81A5 ] RemoteAccess    C:\WINDOWS\System32\mprdim.dll
16:42:25.0484 0x0424  RemoteAccess - ok
16:42:25.0500 0x0424  [ 2A02E21867497DF20B8FC95631395169, D89E2D17ED4E1C727847C0E92D2DF68AEB70BF0B956BD2FE024ED70A961759D2 ] RpcLocator      C:\WINDOWS\system32\locator.exe
16:42:25.0562 0x0424  RpcLocator - ok
16:42:25.0593 0x0424  [ 3127AFBF2C1ED0AB14A1BBB7AAECB85B, ECFBACE3CBF2384948EA1C445BDA3955EB4F44A9874286E6537C67DC1283E5B0 ] RpcSs           C:\WINDOWS\system32\rpcss.dll
16:42:25.0625 0x0424  RpcSs - ok
16:42:25.0656 0x0424  [ 4BDD71B4B521521499DFD14735C4F398, 7B1498D3C67E56D05B58B7DA319ECB0117C37963AABB0E59B42831C087469DA1 ] RSVP            C:\WINDOWS\system32\rsvp.exe
16:42:25.0734 0x0424  RSVP - ok
16:42:25.0750 0x0424  [ AFB8261B56CBA0D86AEB6DF682AF9785, 104D96F1F19DD4CE492064ACC9634406A019EAE20B42D03198E400E661897127 ] SamSs           C:\WINDOWS\system32\lsass.exe
16:42:25.0812 0x0424  SamSs - ok
16:42:25.0843 0x0424  [ DCEC079FAD95D36C8DD5CB6D779DFE32, F8546552D939A225853A0CE4913701A93738DF02C999D16E141E9A828814BBC6 ] SCardSvr        C:\WINDOWS\System32\SCardSvr.exe
16:42:25.0906 0x0424  SCardSvr - ok
16:42:25.0937 0x0424  [ A050194A44D7FA8D7186ED2F4E8367AE, BCDF56D5A2F9E202DC67E7FE4BCC617BCC0BDFF2D221A621020068B17B2855BB ] Schedule        C:\WINDOWS\system32\schedsvc.dll
16:42:26.0000 0x0424  Schedule - ok
16:42:26.0031 0x0424  [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] Secdrv          C:\WINDOWS\system32\DRIVERS\secdrv.sys
16:42:26.0062 0x0424  Secdrv - ok
16:42:26.0093 0x0424  [ BEE4CFD1D48C23B44CF4B974B0B79B2B, DF3B02D713F8A4602BE75F004074D5DF79AFF2D58FF37110B2A6AC29F680758B ] seclogon        C:\WINDOWS\System32\seclogon.dll
16:42:26.0156 0x0424  seclogon - ok
16:42:26.0171 0x0424  [ 2AAC9B6ED9EDDFFB721D6452E34D67E3, 95D83F054A6610328D56E56CD948A6618C590231853E56FC20E7557DB61384A4 ] SENS            C:\WINDOWS\system32\sens.dll
16:42:26.0234 0x0424  SENS - ok
16:42:26.0281 0x0424  [ 0F29512CCD6BEAD730039FB4BD2C85CE, 4F98AE390D1B14A755700DD6CEFB9CF921F0404AF2145D2D7E5F52394F87C6A5 ] Serenum         C:\WINDOWS\system32\DRIVERS\serenum.sys
16:42:26.0343 0x0424  Serenum - ok
16:42:26.0375 0x0424  [ CF24EB4F0412C82BCD1F4F35A025E31D, B74CB094126F5C23F601C34D53B2DF5BE3E5918230AC9DCFCFFA8E66B3A0FA25 ] Serial          C:\WINDOWS\system32\DRIVERS\serial.sys
16:42:26.0437 0x0424  Serial - ok
16:42:26.0468 0x0424  [ 8E6B8C671615D126FDC553D1E2DE5562, CEEC0067514555D5CA489F50E3D7562FCA8DB8E952C3C878604C9277FC77959F ] Sfloppy         C:\WINDOWS\system32\drivers\Sfloppy.sys
16:42:26.0531 0x0424  Sfloppy - ok
16:42:26.0562 0x0424  [ CAD058D5F8B889A87CA3EB3CF624DCEF, A7CDCF44261D1F4D820927253EA8EBB63714B7BAFF8B08DE073507D9A7EEA5BB ] SharedAccess    C:\WINDOWS\System32\ipnathlp.dll
16:42:26.0625 0x0424  SharedAccess - ok
16:42:26.0640 0x0424  [ 2DB7D303C36DDD055215052F118E8E75, BE6E7BBE12A7A4EDF1F1C2935350603970C7426BBCA7A1A6644BB8999123AF17 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
16:42:26.0671 0x0424  ShellHWDetection - ok
16:42:26.0687 0x0424  Simbad - ok
16:42:26.0843 0x0424  [ 388AE59FE75F1B959DFA0900923C61BB, 0D47F8B4B4FBE5BF041DBE75B0A14D905E9310FFA6F0160746455B38A349EA54 ] Skype C2C Service C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Skype\Toolbars\Skype C2C Service\c2c_service.exe
16:42:26.0953 0x0424  Skype C2C Service - ok
16:42:27.0031 0x0424  [ 50D9949020E02B847CD48F1243FCB895, 5BDAD5E44DE5B412645142810C5FCE4B2D9685F928FF4A6B836A9DCE7725BD78 ] SkypeUpdate     C:\Programme\Skype\Updater\Updater.exe
16:42:27.0046 0x0424  SkypeUpdate - ok
16:42:27.0062 0x0424  [ 866D538EBE33709A5C9F5C62B73B7D14, BC94BEB7C17B4FCAC8B5D0D5006A203BC209E0504EECE149651D8691935696CD ] SLIP            C:\WINDOWS\system32\DRIVERS\SLIP.sys
16:42:27.0125 0x0424  SLIP - ok
16:42:27.0140 0x0424  Sparrow - ok
16:42:27.0171 0x0424  [ AB8B92451ECB048A4D1DE7C3FFCB4A9F, DD17733CBB370FCA08F0296704D7CBEACA3C8F76D0ABE4761C3B1FFDF7481D9E ] splitter        C:\WINDOWS\system32\drivers\splitter.sys
16:42:27.0234 0x0424  splitter - ok
16:42:27.0265 0x0424  [ 60784F891563FB1B767F70117FC2428F, E0B07F08E60FFBAD36C2E58180F4B2A16DCA47716044CBE0213DF7B74D742F1F ] Spooler         C:\WINDOWS\system32\spoolsv.exe
16:42:27.0281 0x0424  Spooler - ok
16:42:27.0312 0x0424  [ 50FA898F8C032796D3B1B9951BB5A90F, 1C86273EC19EB96D6DB9CE6670C00683B77C99C42CC2F7E75BC50872B93446B1 ] sr              C:\WINDOWS\system32\DRIVERS\sr.sys
16:42:27.0359 0x0424  sr - ok
16:42:27.0390 0x0424  [ FE77A85495065F3AD59C5C65B6C54182, EB4BAF992F961B2FD5D24BFCB6BCB2142BC32933139A818835FEAB190E4283BB ] srservice       C:\WINDOWS\system32\srsvc.dll
16:42:27.0421 0x0424  srservice - ok
16:42:27.0453 0x0424  [ 47DDFC2F003F7F9F0592C6874962A2E7, 17C643BD4EB09B5666FE41817DC785BE04A6E491CE79E8E5A702CDBD98E1BDD7 ] Srv             C:\WINDOWS\system32\DRIVERS\srv.sys
16:42:27.0500 0x0424  Srv - ok
16:42:27.0546 0x0424  [ 64E44ACD8C238FCBBB78F0BA4BDC4B05, 59D015DD86EA35AC8F667C063AE76FAFA9497F04225D256DF5A37EB1461F15D4 ] ssadbus         C:\WINDOWS\system32\DRIVERS\ssadbus.sys
16:42:27.0578 0x0424  ssadbus - ok
16:42:27.0609 0x0424  [ BB2C84A15C765DA89FD832B0E73F26CE, BAE3E7726F075340B8CC7BCA18869DFEA304A03B0A0429B4C3D186B1149E9A9A ] ssadmdfl        C:\WINDOWS\system32\DRIVERS\ssadmdfl.sys
16:42:27.0640 0x0424  ssadmdfl - ok
16:42:27.0656 0x0424  [ 6D0D132DDC6F43EDA00DCED6D8B1CA31, 0A37081D95A56861C3E48592048DFCFAE6FB38510D21AB41C9C73744743E7646 ] ssadmdm         C:\WINDOWS\system32\DRIVERS\ssadmdm.sys
16:42:27.0671 0x0424  ssadmdm - ok
16:42:27.0718 0x0424  [ 1A5A397BC459F346AB56492B61EF79F6, 9CB7BE4E4A7B145D97BA0C72EE7ECB844DA6EB0282FBC3BE92A1CC5AD80FA6C4 ] ssadserd        C:\WINDOWS\system32\DRIVERS\ssadserd.sys
16:42:27.0734 0x0424  ssadserd - ok
16:42:27.0781 0x0424  [ 4DF5B05DFAEC29E13E1ED6F6EE12C500, 2971D7D45D6942D310D47DBD19B9680D2D29527E79B86133C72217FD29259465 ] SSDPSRV         C:\WINDOWS\System32\ssdpsrv.dll
16:42:27.0812 0x0424  SSDPSRV - ok
16:42:27.0859 0x0424  [ 359FEE084F1173FFFFD7F9CCBD43D47F, 197EE7267D0565E426368868233C35F6FD29A0432D75630F8365336E061318D7 ] ssudmdm         C:\WINDOWS\system32\DRIVERS\ssudmdm.sys
16:42:27.0875 0x0424  ssudmdm - ok
16:42:27.0921 0x0424  [ 54946449A0EB74915A4BB34F7EE51A5A, 4C9EFC564520FD5E082A8066B0FCFDC9FCC5050DC26518810E57ECF3B90EF248 ] ss_bus          C:\WINDOWS\system32\DRIVERS\ss_bus.sys
16:42:27.0937 0x0424  ss_bus - ok
16:42:27.0968 0x0424  [ 4450BC0B2E9D7D9B90E3C3DE4EA00A78, 4AE89D25F4D3B061D8CBD31329EDD3D5BAD9ED5D24ECC49FBC263B4DFE6760AB ] ss_mdfl         C:\WINDOWS\system32\DRIVERS\ss_mdfl.sys
16:42:27.0984 0x0424  ss_mdfl - ok
16:42:28.0015 0x0424  [ 30B8D0DD01EAD1243F329CAF7D7D1517, A4BC52064E3C6140175BF403ED396C1718BF5EB996CB050989051532D0D79C71 ] ss_mdm          C:\WINDOWS\system32\DRIVERS\ss_mdm.sys
16:42:28.0015 0x0424  ss_mdm - ok
16:42:28.0078 0x0424  [ BC2C5985611C5356B24AEB370953DED9, 15CBAB8166827DC098E2B16AB6F49A1441A4CB52AF3588F0AD964CAB596DFE10 ] stisvc          C:\WINDOWS\system32\wiaservc.dll
16:42:28.0156 0x0424  stisvc - ok
16:42:28.0171 0x0424  [ 77813007BA6265C4B6098187E6ED79D2, 93939120E803C46FBFD577C8FC2E6C7E71C0460E01D25CB29579490640AB50C7 ] streamip        C:\WINDOWS\system32\DRIVERS\StreamIP.sys
16:42:28.0234 0x0424  streamip - ok
16:42:28.0250 0x0424  [ 3941D127AEF12E93ADDF6FE6EE027E0F, EA1F0E32E1C5E90FA4AAC421DEBBE086512340758D3217A6334E886BCE638B51 ] swenum          C:\WINDOWS\system32\DRIVERS\swenum.sys
16:42:28.0312 0x0424  swenum - ok
16:42:28.0343 0x0424  [ 8CE882BCC6CF8A62F2B2323D95CB3D01, B408550A581F3DA222355964AFA4E976AD8471F0AA37573C42C4948AE5A23A3B ] swmidi          C:\WINDOWS\system32\drivers\swmidi.sys
16:42:28.0406 0x0424  swmidi - ok
16:42:28.0421 0x0424  SwPrv - ok
16:42:28.0453 0x0424  symc810 - ok
16:42:28.0468 0x0424  symc8xx - ok
16:42:28.0484 0x0424  sym_hi - ok
16:42:28.0484 0x0424  sym_u3 - ok
16:42:28.0515 0x0424  [ 8B83F3ED0F1688B4958F77CD6D2BF290, 546D3602183702B4F53E84413CFA2C933D64C8540378E54A8DCD148F3F36A2DA ] sysaudio        C:\WINDOWS\system32\drivers\sysaudio.sys
16:42:28.0578 0x0424  sysaudio - ok
16:42:28.0609 0x0424  [ 2903FFFA2523926D6219428040DCE6B9, 4F13181931B0499F6C3F08138054DBCD1F84CB9806999A9172B80DE79D446F62 ] SysmonLog       C:\WINDOWS\system32\smlogsvc.exe
16:42:28.0671 0x0424  SysmonLog - ok
16:42:28.0703 0x0424  [ 05903CAC4B98908D55EA5774775B382E, AC3666CBD894D737874A5998DC7F46A0A51A7B23B1835FC735B9AD503A2191CC ] TapiSrv         C:\WINDOWS\System32\tapisrv.dll
16:42:28.0781 0x0424  TapiSrv - ok
16:42:28.0796 0x0424  [ 9AEFA14BD6B182D61E3119FA5F436D3D, EA29E49434585409272E7901AF89771FE9D6E911A7DC44AB3C7020CFF8A44552 ] Tcpip           C:\WINDOWS\system32\DRIVERS\tcpip.sys
16:42:28.0828 0x0424  Tcpip - ok
16:42:28.0843 0x0424  [ 6471A66807F5E104E4885F5B67349397, F35CBFFB8BB235CCE30EF94A5273333900DD49FD506BF9D55D99A320B8A53A5A ] TDPIPE          C:\WINDOWS\system32\drivers\TDPIPE.sys
16:42:28.0906 0x0424  TDPIPE - ok
16:42:28.0921 0x0424  [ C56B6D0402371CF3700EB322EF3AAF61, 7743FA4C734BCE38EFB1CA69BC17364D8421E2CD172F856F7E38E7AE1EE93F2F ] TDTCP           C:\WINDOWS\system32\drivers\TDTCP.sys
16:42:28.0984 0x0424  TDTCP - ok
16:42:29.0000 0x0424  [ 88155247177638048422893737429D9E, B6D4E8691917946332C2208D01F8C8281978C1AD1E9951C5D99DF0D49AC34B3B ] TermDD          C:\WINDOWS\system32\DRIVERS\termdd.sys
16:42:29.0078 0x0424  TermDD - ok
16:42:29.0109 0x0424  [ B7DE02C863D8F5A005A7BF375375A6A4, 6DE05A7B28CA5A78D58536347FC47F15883EEDBEF487CEA0117CC280FC582DCC ] TermService     C:\WINDOWS\System32\termsrv.dll
16:42:29.0187 0x0424  TermService - ok
16:42:29.0203 0x0424  [ 2DB7D303C36DDD055215052F118E8E75, BE6E7BBE12A7A4EDF1F1C2935350603970C7426BBCA7A1A6644BB8999123AF17 ] Themes          C:\WINDOWS\System32\shsvcs.dll
16:42:29.0218 0x0424  Themes - ok
16:42:29.0234 0x0424  TosIde - ok
16:42:29.0281 0x0424  [ 626504572B175867F30F3215C04B3E2F, 47E87CE9BC666D5CB5953C5D497DC00A7CC28F8EC0A064B3E47700279C5C4B91 ] TrkWks          C:\WINDOWS\system32\trkwks.dll
16:42:29.0343 0x0424  TrkWks - ok
16:42:29.0375 0x0424  [ 5787B80C2E3C5E2F56C2A233D91FA2C9, 3774905CF77954DFCECDA5BCC7CDE3D0ED72712BFAAD85ADAE5246306447E46C ] Udfs            C:\WINDOWS\system32\drivers\Udfs.sys
16:42:29.0437 0x0424  Udfs - ok
16:42:29.0453 0x0424  ultra - ok
16:42:29.0515 0x0424  [ 67A95B9D129ED5399E7965CD09CF30E7, F1F2F684146F1CCB293BB9871117B8CFC1D04588A830F67CE5D3F0D034D93B2A ] UMVPFSrv        C:\Programme\Gemeinsame Dateien\logishrd\LVMVFM\UMVPFSrv.exe
16:42:29.0546 0x0424  UMVPFSrv - ok
16:42:29.0578 0x0424  [ 402DDC88356B1BAC0EE3DD1580C76A31, 32A686595710336A6BFD54C03F552AE39439611662F84EF5D24193AE5665C6F3 ] Update          C:\WINDOWS\system32\DRIVERS\update.sys
16:42:29.0640 0x0424  Update - ok
16:42:29.0687 0x0424  [ 1DFD8975D8C89214B98D9387C1125B49, 0B6B268487C8E45E9B86BF4A0A9DB669E0E45D600DE3C82B63F9986CA9E01082 ] upnphost        C:\WINDOWS\System32\upnphost.dll
16:42:29.0718 0x0424  upnphost - ok
16:42:29.0734 0x0424  [ 9B11E6118958E63E1FEF129466E2BDA7, 97168BCE3F4A9BB9E6500F05E34851FB957B219C598944FADC28AC0011C0503B ] UPS             C:\WINDOWS\System32\ups.exe
16:42:29.0796 0x0424  UPS - ok
16:42:29.0843 0x0424  [ 6E421CCC57059B0186C6259CA3B6DFC9, E348BF23CCD6C14FD10C1689BBDC77E125245331F97BFE60D4C8FD9A8711CB59 ] USBAAPL         C:\WINDOWS\system32\Drivers\usbaapl.sys
16:42:29.0875 0x0424  USBAAPL - ok
16:42:29.0921 0x0424  [ 65898A183FBF1D1F7759D5CCB364DCD4, 85E823123FDB4CA5F8255064E22A444627999055EC3419DFD001371893F36AB9 ] usbaudio        C:\WINDOWS\system32\drivers\usbaudio.sys
16:42:29.0937 0x0424  usbaudio - ok
16:42:29.0968 0x0424  [ 1B611611C28D2DF25BC057D79C6F13FC, B0D86F63E44B40413BBAE6402CC088046CFAE082D41BBC2ED5A916293356B846 ] usbccgp         C:\WINDOWS\system32\DRIVERS\usbccgp.sys
16:42:30.0000 0x0424  usbccgp - ok
16:42:30.0015 0x0424  [ 4BAC8DF07F1D8434FC640E677A62204E, 76C1351AF6752224BF59DEEE0F8665FE699F3DFD679F5BCD01C7D9383E6402A4 ] usbehci         C:\WINDOWS\system32\DRIVERS\usbehci.sys
16:42:30.0031 0x0424  usbehci - ok
16:42:30.0078 0x0424  [ 1AB3CDDE553B6E064D2E754EFE20285C, A99C4528C4227B1E96847614745AAFACD3C5F1BDFE435214DBF78740FFB300FE ] usbhub          C:\WINDOWS\system32\DRIVERS\usbhub.sys
16:42:30.0140 0x0424  usbhub - ok
16:42:30.0140 0x0424  [ 0DAECCE65366EA32B162F85F07C6753B, 3C33AC2FC95E876933F2016CF0CDA2745491679728684DA8DF95A515CE4804BD ] usbohci         C:\WINDOWS\system32\DRIVERS\usbohci.sys
16:42:30.0203 0x0424  usbohci - ok
16:42:30.0218 0x0424  [ A717C8721046828520C9EDF31288FC00, 1530BBE832EDBB0974AD89D723A03FF7A0094B368992D73C2C3E62A181DF1E0A ] usbprint        C:\WINDOWS\system32\DRIVERS\usbprint.sys
16:42:30.0281 0x0424  usbprint - ok
16:42:30.0312 0x0424  [ A32426D9B14A089EAA1D922E0C5801A9, ED1DC52EE45F8EAD3AEC4B1F817BB25634141CF48295494C5947DCE6CF7A9817 ] USBSTOR         C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
16:42:30.0375 0x0424  USBSTOR - ok
16:42:30.0406 0x0424  [ 813236B1183CFCF289E367BD5DE6E29E, 167FE18A96F330AEEC1A4C419770C15EFEB536D43838285E51E7A62E95DF4674 ] usbvideo        C:\WINDOWS\system32\Drivers\usbvideo.sys
16:42:30.0421 0x0424  usbvideo - ok
16:42:30.0453 0x0424  Util WebConnect - ok
16:42:30.0484 0x0424  [ 0D3A8FAFCEACD8B7625CD549757A7DF1, B9CFDEFCD66AA139F3DC2F967B184669532922563AD5A71769BABDC4370D065E ] VgaSave         C:\WINDOWS\System32\drivers\vga.sys
16:42:30.0546 0x0424  VgaSave - ok
16:42:30.0640 0x0424  [ F29BFD0C5CCCC9823E5FCDEE71DBC054, B064D82A73E15476B65720B9BD60C5B8ABD12E233B91EDBCE7C7D301127D304D ] VIAHdAudAddService C:\WINDOWS\system32\drivers\viahduaa.sys
16:42:30.0718 0x0424  VIAHdAudAddService - ok
16:42:30.0734 0x0424  ViaIde - ok
16:42:30.0750 0x0424  [ A5A712F4E880874A477AF790B5186E1D, FE885ED04C3EAFC379787F836738A2769E43D07CF52DD917D90C38E001957A5E ] VolSnap         C:\WINDOWS\system32\drivers\VolSnap.sys
16:42:30.0828 0x0424  VolSnap - ok
16:42:30.0859 0x0424  [ 68F106273BE29E7B7EF8266977268E78, 1488AB7A654EBC94C73E1D494067189ACB95BC233980110CAC4C0297CDC4115A ] VSS             C:\WINDOWS\System32\vssvc.exe
16:42:30.0906 0x0424  VSS - ok
16:42:30.0953 0x0424  [ 7B353059E665F8B7AD2BBEAEF597CF45, 84A4311F18A4B8DCB364741DEA7D18E2363F19564B2EF25214965DC729527068 ] W32Time         C:\WINDOWS\system32\w32time.dll
16:42:31.0015 0x0424  W32Time - ok
16:42:31.0031 0x0424  [ E20B95BAEDB550F32DD489265C1DA1F6, 5589B2067E6C9FBA290D8C5EADDC198EBAF39C50C3CD7D2BC5CDA7CBFBC445E5 ] Wanarp          C:\WINDOWS\system32\DRIVERS\wanarp.sys
16:42:31.0093 0x0424  Wanarp - ok
16:42:31.0125 0x0424  [ 0A716C08CB13C3A8F4F51E882DBF7416, 66FFDC9151CB3676B5DF073431DE055E7F2CDA5722F7EAAC6EC45F2CF9910882 ] wanatw          C:\WINDOWS\system32\DRIVERS\wanatw4.sys
16:42:31.0140 0x0424  wanatw - ok
16:42:31.0171 0x0424  [ 46A247F6617526AFE38B6F12F5512120, 24931910E3D678829A7A6CF1140CFE428E05057A4D3A14086ED66B884E847D2D ] wceusbsh        C:\WINDOWS\system32\DRIVERS\wceusbsh.sys
16:42:31.0203 0x0424  wceusbsh - ok
16:42:31.0250 0x0424  [ FD47474BD21794508AF449D9D91AF6E6, 2AD586390824F673B5DC5D86FC2423ED9252413D221E1C7EC3A760782DB6436A ] Wdf01000        C:\WINDOWS\system32\DRIVERS\Wdf01000.sys
16:42:31.0265 0x0424  Wdf01000 - ok
16:42:31.0281 0x0424  WDICA - ok
16:42:31.0296 0x0424  [ 6768ACF64B18196494413695F0C3A00F, 3A8F8586F1D997D19A8478345338D2AECD785AEABDB61531DD3F92003D3230A5 ] wdmaud          C:\WINDOWS\system32\drivers\wdmaud.sys
16:42:31.0375 0x0424  wdmaud - ok
16:42:31.0390 0x0424  [ 81727C9873E3905A2FFC1EBD07265002, 6AC2383A1DCBB7FA3DB90FBB874C8E1819F5B7492717FF41E303EFC7BF72F93E ] WebClient       C:\WINDOWS\System32\webclnt.dll
16:42:31.0453 0x0424  WebClient - ok
16:42:31.0515 0x0424  [ 6F3F3973D97714CC5F906A19FE883729, 7817118BE94D0F6FAE0F9CE48AD70FFE0AEF886CCE09C666768FAB61047F992F ] winmgmt         C:\WINDOWS\system32\wbem\WMIsvc.dll
16:42:31.0578 0x0424  winmgmt - ok
16:42:31.0656 0x0424  [ 8F9D8732840C374D1C5EAF9E1645F4AC, C90B4C12CEF8A703737A28E869CFB9AFAD69FA63350C1E2EF82B41CB0AB81209 ] winzipersvc     C:\Programme\WinZipper\winzipersvc.exe
16:42:31.0687 0x0424  winzipersvc - ok
16:42:31.0703 0x0424  [ C51B4A5C05A5475708E3C81C7765B71D, F776D2680BD3407307B7072626F78460361FC5BC38623C9E16F394D300AB25DE ] WmdmPmSN        C:\WINDOWS\system32\MsPMSNSv.dll
16:42:31.0750 0x0424  WmdmPmSN - ok
16:42:31.0781 0x0424  [ 93908111BA57A6E60EC2FA2DE202105C, F395F25F18D15C6B9FEDB45FD31E10295FFE5517E2BC86ACAC11904EA0664BE2 ] WmiApSrv        C:\WINDOWS\system32\wbem\wmiapsrv.exe
16:42:31.0859 0x0424  WmiApSrv - ok
16:42:31.0937 0x0424  [ BF05650BB7DF5E9EBDD25974E22403BB, AF173D89B768CFC7AB03DFADD4F049CAC40AC59A0C9208AF5AB92CB368983077 ] WMPNetworkSvc   C:\Programme\Windows Media Player\WMPNetwk.exe
16:42:31.0984 0x0424  WMPNetworkSvc - ok
16:42:32.0000 0x0424  [ CF4DEF1BF66F06964DC0D91844239104, CC1D9CECE2056D29A9651D51BB57C3F4F9BF9E90A4808CF7496C683C874FBD51 ] WpdUsb          C:\WINDOWS\system32\DRIVERS\wpdusb.sys
16:42:32.0015 0x0424  WpdUsb - ok
16:42:32.0093 0x0424  [ 15673BD0B86150CB8E27766059C72A9B, 56C23289A8BFF4945EE532CF6D62D3EC81B827CA15A359F30A327789F9FE9CAF ] WPFFontCache_v0400 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
16:42:32.0125 0x0424  WPFFontCache_v0400 - ok
16:42:32.0171 0x0424  [ 300B3E84FAF1A5C1F791C159BA28035D, 0194856BDF94C1F274AF70AD558290ACDACDDEA331BD66FEB8E167ABD1E36786 ] wscsvc          C:\WINDOWS\system32\wscsvc.dll
16:42:32.0250 0x0424  wscsvc - ok
16:42:32.0265 0x0424  [ C98B39829C2BBD34E454150633C62C78, 71B60EA3AD0E2637917D528C6A9E7ECF2949E3E5E91036AA5BBADA95BD725511 ] WSTCODEC        C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
16:42:32.0328 0x0424  WSTCODEC - ok
16:42:32.0359 0x0424  [ 7B4FE05202AA6BF9F4DFD0E6A0D8A085, A1DB8909FA73337DB613D01824945485186654364A4DF129B8CB913CF87D1D2E ] wuauserv        C:\WINDOWS\system32\wuauserv.dll
16:42:32.0421 0x0424  wuauserv - ok
16:42:32.0453 0x0424  [ F15FEAFFFBB3644CCC80C5DA584E6311, 79B3E9AF35976CE49921E9BEA3BA3B4A8AF762FD3F284B62954038B5FFB32471 ] WudfPf          C:\WINDOWS\system32\DRIVERS\WudfPf.sys
16:42:32.0468 0x0424  WudfPf - ok
16:42:32.0484 0x0424  [ 28B524262BCE6DE1F7EF9F510BA3985B, AEFF02B899801A63CBB262757C3D4369E38BFF0690BD085DE60E873DFBE3C3F4 ] WudfRd          C:\WINDOWS\system32\DRIVERS\wudfrd.sys
16:42:32.0500 0x0424  WudfRd - ok
16:42:32.0546 0x0424  [ 05231C04253C5BC30B26CBAAE680ED89, 5C03C2D7E0B573646D32F4093E2FF2C3BA391C39F5BA37D67F69D38E357FCC3D ] WudfSvc         C:\WINDOWS\System32\WUDFSvc.dll
16:42:32.0562 0x0424  WudfSvc - ok
16:42:32.0609 0x0424  [ C4F109C005F6725162D2D12CA751E4A7, AC996B44338328BDD4442FE48406F286A64526F0EC77BE00A19FA7FDB0407CFE ] WZCSVC          C:\WINDOWS\System32\wzcsvc.dll
16:42:32.0703 0x0424  WZCSVC - ok
16:42:32.0718 0x0424  [ 0ADA34871A2E1CD2CAAFED1237A47750, 45BEF8649078BD74C1A347B5F2D3A1958E5A7DCD6C6BA8A2E0CAD277A929C64E ] xmlprov         C:\WINDOWS\System32\xmlprov.dll
16:42:32.0796 0x0424  xmlprov - ok
16:42:32.0812 0x0424  ================ Scan global ===============================
16:42:32.0843 0x0424  [ 2C60091CA5F67C3032EAB3B30390C27F, 9E205C8E67F4B61FCFA2A82AA1968D522C3B6410D7075BE813F7F1564D61632E ] C:\WINDOWS\system32\basesrv.dll
16:42:32.0875 0x0424  [ E62178BC21EAC63A3B9A2DBD46C1B505, CAA5480CC4DAA37758F0CF445F865FD6F4630080B044EF2E606C2F62DAA4061A ] C:\WINDOWS\system32\winsrv.dll
16:42:32.0890 0x0424  [ E62178BC21EAC63A3B9A2DBD46C1B505, CAA5480CC4DAA37758F0CF445F865FD6F4630080B044EF2E606C2F62DAA4061A ] C:\WINDOWS\system32\winsrv.dll
16:42:32.0906 0x0424  [ A3EDBE9053889FB24AB22492472B39DC, 6F2ED6E04BDE2FCA2A8BF9BD2D1D6923DE6EAECB46F582B6C0BD1CF364D65C9E ] C:\WINDOWS\system32\services.exe
16:42:32.0906 0x0424  [ Global ] - ok
16:42:32.0906 0x0424  ================ Scan MBR ==================================
16:42:32.0921 0x0424  [ 72B8CE41AF0DE751C946802B3ED844B4 ] \Device\Harddisk0\DR0
16:42:33.0125 0x0424  \Device\Harddisk0\DR0 - ok
16:42:33.0125 0x0424  ================ Scan VBR ==================================
16:42:33.0125 0x0424  [ E9D0A36A755BF079A5AA146F50AFC9CF ] \Device\Harddisk0\DR0\Partition1
16:42:33.0125 0x0424  \Device\Harddisk0\DR0\Partition1 - ok
16:42:33.0125 0x0424  [ 1433D3002361D3C0A58C3A9CCE1901C7 ] \Device\Harddisk0\DR0\Partition2
16:42:33.0140 0x0424  \Device\Harddisk0\DR0\Partition2 - ok
16:42:33.0140 0x0424  ================ Scan generic autorun ======================
16:42:33.0203 0x0424  [ 00C608CDFC203846B20EB12E2AB41F3A, C67279A51C4ACFDF3DBEA0D006DE8DB67DA3F5B61D3B2B7D6F0E6EAB6C180A06 ] C:\Programme\McAfee.com\Agent\mcagent.exe
16:42:33.0234 0x0424  mcui_exe - ok
16:42:33.0281 0x0424  [ 4DE3EF07E0854547309C6B40235A9D44, F73D8E6D98583865D1C8DB728058D83C72A3908E21E04EF313FCB829C040A1EC ] C:\Programme\Brother\ControlCenter3\brctrcen.exe
16:42:33.0296 0x0424  ControlCenter3 - detected UnsignedFile.Multi.Generic ( 1 )
16:42:33.0296 0x0424  ControlCenter3 ( UnsignedFile.Multi.Generic ) - warning
16:42:33.0390 0x0424  [ 640609646D2E6F805E89238F0ADD3A1A, 6E919DD8C93B4F1B7AA00404DDF11FDAA7C050C49028480C8E28F2DF99E99FED ] C:\Programme\Browny02\Brother\BrStMonW.exe
16:42:33.0500 0x0424  BrStsMon00 - detected UnsignedFile.Multi.Generic ( 1 )
16:42:33.0500 0x0424  BrStsMon00 ( UnsignedFile.Multi.Generic ) - warning
16:42:33.0500 0x0424  NvCplDaemon - ok
16:42:33.0500 0x0424  NvMediaCenter - ok
16:42:33.0562 0x0424  [ 6E0F29BD0E792618FF285AB094F4DCEF, 6BED26091EE890ABEFD31B95E1DCADE27C8775E580D201C6071D851FB5BB20BC ] C:\Programme\NVIDIA Corporation\nview\nwiz.exe
16:42:33.0640 0x0424  nwiz - ok
16:42:33.0671 0x0424  [ 94A4D6915D4F572309DF6137E1846528, E46BDF83CAA6683AA655DBA3D2C8DC7AC06251E952466A20CFDA3A16B1840455 ] C:\Programme\Gemeinsame Dateien\Apple\Apple Application Support\APSDaemon.exe
16:42:33.0687 0x0424  APSDaemon - ok
16:42:33.0703 0x0424  [ 00C608CDFC203846B20EB12E2AB41F3A, C67279A51C4ACFDF3DBEA0D006DE8DB67DA3F5B61D3B2B7D6F0E6EAB6C180A06 ] C:\Programme\McAfee.com\Agent\mcagent.exe
16:42:33.0718 0x0424  mcpltui_exe - ok
16:42:33.0796 0x0424  [ 048EA4B978851788E9F5E8E4F081DF7A, EB62719AC0DCC18FF056F2CD84438BF14B61E38F0619617C81961C6257BDFCEC ] C:\Programme\Gemeinsame Dateien\Adobe\ARM\1.0\AdobeARM.exe
16:42:33.0828 0x0424  Adobe ARM - ok
16:42:33.0859 0x0424  [ D2E3E6D94A9E1CFA1561D9C748136FD0, C8CD851F1872086D18A329B47C7DEFAD2CE2E3A8F4321411247D06D07B2DB1D3 ] C:\Programme\iTunes\iTunesHelper.exe
16:42:33.0875 0x0424  iTunesHelper - ok
16:42:33.0937 0x0424  [ 08E7173D1B74095335052459200CB1EA, 5B6EB8A65B5F451BF6115EB7CD1355E5870E6D764F22D767D13216BF17C5668F ] C:\Programme\QuickTime\qttask.exe
16:42:33.0953 0x0424  QuickTime Task - detected UnsignedFile.Multi.Generic ( 1 )
16:42:33.0953 0x0424  QuickTime Task ( UnsignedFile.Multi.Generic ) - warning
16:42:33.0968 0x0424  [ 01B4E6E990B6C5EA8856D96C7FD044B2, 2266296FD3C8E0DFA657F21406EE4E494477870DFAF7C65BEBCB6FBA8CADC7C6 ] C:\WINDOWS\system32\CTFMON.EXE
16:42:34.0031 0x0424  CTFMON.EXE - ok
16:42:34.0046 0x0424  [ 01B4E6E990B6C5EA8856D96C7FD044B2, 2266296FD3C8E0DFA657F21406EE4E494477870DFAF7C65BEBCB6FBA8CADC7C6 ] C:\WINDOWS\system32\CTFMON.EXE
16:42:34.0093 0x0424  CTFMON.EXE - ok
16:42:34.0109 0x0424  [ 01B4E6E990B6C5EA8856D96C7FD044B2, 2266296FD3C8E0DFA657F21406EE4E494477870DFAF7C65BEBCB6FBA8CADC7C6 ] C:\WINDOWS\system32\ctfmon.exe
16:42:34.0156 0x0424  ctfmon.exe - ok
16:42:34.0218 0x0424  [ 1C2863FE366B9E907AABFC6F8B6EE1A3, 37053DF56CD508889A2D9EBE7CE07F91DE5A5F6C522A1C0986BEA82C3E3BD210 ] C:\Programme\Microsoft ActiveSync\wcescomm.exe
16:42:34.0281 0x0424  H/PC Connection Agent - ok
16:42:34.0281 0x0424  [ 01B4E6E990B6C5EA8856D96C7FD044B2, 2266296FD3C8E0DFA657F21406EE4E494477870DFAF7C65BEBCB6FBA8CADC7C6 ] C:\WINDOWS\system32\ctfmon.exe
16:42:34.0328 0x0424  CTFMON.EXE - ok
16:42:34.0328 0x0424  Advanced System Protector_startup - ok
16:42:34.0375 0x0424  [ 1C2863FE366B9E907AABFC6F8B6EE1A3, 37053DF56CD508889A2D9EBE7CE07F91DE5A5F6C522A1C0986BEA82C3E3BD210 ] C:\Programme\Microsoft ActiveSync\wcescomm.exe
16:42:34.0421 0x0424  H/PC Connection Agent - ok
16:42:34.0515 0x0424  [ 270B6BFFDE7A8199DFEB9735BBB1918F, FEEEE8097794B4CF02CAAD3F905A8CCEB004B74F65AAFF387957AC169A0D73EC ] C:\Dokumente und Einstellungen\Martina\Anwendungsdaten\Spotify\Data\SpotifyWebHelper.exe
16:42:34.0578 0x0424  Spotify Web Helper - ok
16:42:34.0578 0x0424  [ 01B4E6E990B6C5EA8856D96C7FD044B2, 2266296FD3C8E0DFA657F21406EE4E494477870DFAF7C65BEBCB6FBA8CADC7C6 ] C:\WINDOWS\system32\CTFMON.EXE
16:42:34.0640 0x0424  CTFMON.EXE - ok
16:42:34.0640 0x0424  [ 01B4E6E990B6C5EA8856D96C7FD044B2, 2266296FD3C8E0DFA657F21406EE4E494477870DFAF7C65BEBCB6FBA8CADC7C6 ] C:\WINDOWS\system32\CTFMON.EXE
16:42:34.0703 0x0424  CTFMON.EXE - ok
16:42:34.0703 0x0424  [ 01B4E6E990B6C5EA8856D96C7FD044B2, 2266296FD3C8E0DFA657F21406EE4E494477870DFAF7C65BEBCB6FBA8CADC7C6 ] C:\WINDOWS\system32\ctfmon.exe
16:42:34.0765 0x0424  CTFMON.EXE - ok
16:42:34.0781 0x0424  [ 08E7173D1B74095335052459200CB1EA, 5B6EB8A65B5F451BF6115EB7CD1355E5870E6D764F22D767D13216BF17C5668F ] C:\Programme\QuickTime\qttask.exe
16:42:34.0796 0x0424  QuickTime Task - detected UnsignedFile.Multi.Generic ( 1 )
16:42:34.0796 0x0424  QuickTime Task ( UnsignedFile.Multi.Generic ) - warning
16:42:34.0843 0x0424  [ 1C2863FE366B9E907AABFC6F8B6EE1A3, 37053DF56CD508889A2D9EBE7CE07F91DE5A5F6C522A1C0986BEA82C3E3BD210 ] C:\Programme\Microsoft ActiveSync\wcescomm.exe
16:42:34.0890 0x0424  H/PC Connection Agent - ok
16:42:34.0906 0x0424  AV detected via SS1: McAfee Anti-Virus und Anti-Spyware, , disabled, updated
16:42:34.0906 0x0424  FW detected via SS1: McAfee Firewall, , enabled
16:42:34.0906 0x0424  ============================================================
16:42:34.0906 0x0424  Scan finished
16:42:34.0906 0x0424  ============================================================
16:42:34.0921 0x0ca8  Detected object count: 7
16:42:34.0921 0x0ca8  Actual detected object count: 7
16:43:06.0531 0x0ca8  BrYNSvc ( UnsignedFile.Multi.Generic ) - skipped by user
16:43:06.0531 0x0ca8  BrYNSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip 
16:43:06.0609 0x0ca8  C:\WINDOWS\System32\Drivers\e55f1a183fbfe661.sys - copied to quarantine
16:43:06.0640 0x0ca8  HKLM\SYSTEM\ControlSet001\services\e55f1a183fbfe661 - will be deleted on reboot
16:43:06.0687 0x0ca8  HKLM\SYSTEM\ControlSet003\services\e55f1a183fbfe661 - will be deleted on reboot
16:43:06.0781 0x0ca8  C:\WINDOWS\System32\Drivers\e55f1a183fbfe661.sys - will be deleted on reboot
16:43:06.0781 0x0ca8  e55f1a183fbfe661 ( Rootkit.Win32.Necurs.gen ) - User select action: Delete 
16:43:06.0781 0x0ca8  MDM ( UnsignedFile.Multi.Generic ) - skipped by user
16:43:06.0781 0x0ca8  MDM ( UnsignedFile.Multi.Generic ) - User select action: Skip 
16:43:06.0781 0x0ca8  ControlCenter3 ( UnsignedFile.Multi.Generic ) - skipped by user
16:43:06.0781 0x0ca8  ControlCenter3 ( UnsignedFile.Multi.Generic ) - User select action: Skip 
16:43:06.0781 0x0ca8  BrStsMon00 ( UnsignedFile.Multi.Generic ) - skipped by user
16:43:06.0781 0x0ca8  BrStsMon00 ( UnsignedFile.Multi.Generic ) - User select action: Skip 
16:43:06.0781 0x0ca8  QuickTime Task ( UnsignedFile.Multi.Generic ) - skipped by user
16:43:06.0781 0x0ca8  QuickTime Task ( UnsignedFile.Multi.Generic ) - User select action: Skip 
16:43:06.0781 0x0ca8  QuickTime Task ( UnsignedFile.Multi.Generic ) - skipped by user
16:43:06.0781 0x0ca8  QuickTime Task ( UnsignedFile.Multi.Generic ) - User select action: Skip 
16:43:06.0828 0x0ca8  KLMD registered as C:\WINDOWS\system32\drivers\46191920.sys
16:43:24.0296 0x08f8  Deinitialize success

schrauber · 13.08.2014, 20:48

Supi. Frischen TDSSKIller Scan machen, Log posten.

Scan mit Combofix

WARNUNG an die MITLESER:
Combofix sollte ausschließlich ausgeführt werden, wenn dies von einem Teammitglied angewiesen wurde!

Downloade dir bitte Combofix vom folgenden Downloadspiegel: Link

WICHTIG: Speichere Combofix auf deinem Desktop.

Deaktiviere bitte alle deine Antivirensoftware sowie Malware/Spyware Scanner. Diese können Combofix bei der Arbeit stören. Combofix meckert auch manchmal trotzdem noch, das kannst du dann ignorieren, mir aber bitte mitteilen.

Starte die Combofix.exe und folge den Anweisungen auf dem Bildschirm.

Während Combofix läuft bitte nicht am Computer arbeiten, die Maus bewegen oder ins Combofixfenster klicken!

Wenn Combofix fertig ist, wird es ein Logfile erstellen.

Bitte poste die C:\Combofix.txt in deiner nächsten Antwort (möglichst in CODE-Tags).

Hinweis: Solltest du nach dem Neustart folgende Fehlermeldung erhalten
Es wurde versucht, einen Registrierungsschlüssel einem ungültigen Vorgang zu unterziehen, der zum Löschen markiert wurde.
starte den Rechner einfach neu. Dies sollte das Problem beheben.

12.08.2014, 17:43	#9
schrauber /// the machine /// TB-Ausbilder	McAfee Virenscan und Firewall nicht aktivierbar, Internetverbindung weg nicht alle, nur den Rootkitfund, dort dann Delete __________________ gruß, schrauber *Proud Member of UNITE and ASAP since 2009* Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM!

McAfee Virenscan und Firewall nicht aktivierbar, Internetverbindung weg

Log-Analyse und Auswertung: McAfee Virenscan und Firewall nicht aktivierbar, Internetverbindung weg