| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Provider meldet VirusbefallWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
22.01.2015, 17:55
| #1 |
 |  Provider meldet Virusbefall Hallo, Mein Provider meldet Virusbefall "Zeus" auf meinem alten XP-PC. |
|
22.01.2015, 18:20
| #2 |
| /// the machine /// TB-Ausbilder    | Provider meldet Virusbefall hi,
__________________Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:  FRST 32-Bit | FRST 64-Bit(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
__________________ |
|
22.01.2015, 18:46
| #3 |
| | Provider meldet Virusbefall hier die logs:
__________________FRST Logfile: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 19-01-2015
Ran by Beul (administrator) on COMPUTERNAME on 22-01-2015 18:40:31
Running from C:\Dokumente und Einstellungen\Beul\Desktop
Loaded Profiles: Beul (Available profiles: Beul & Administrator)
Platform: Microsoft Windows XP Home Edition Service Pack 3 (X86) OS Language: Deutsch (Deutschland)
Internet Explorer Version 8 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(ATI Technologies Inc.) C:\WINDOWS\system32\ati2evxx.exe
(ATI Technologies Inc.) C:\WINDOWS\system32\ati2evxx.exe
(Avira Operations GmbH & Co. KG) C:\Programme\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Programme\Avira\AntiVir Desktop\avguard.exe
(Microsoft Corporation) C:\WINDOWS\system32\cisvc.exe
(Oracle Corporation) C:\Programme\Java\jre7\bin\jqs.exe
(Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
(Avira Operations GmbH & Co. KG) C:\Programme\Avira\My Avira\Avira.OE.ServiceHost.exe
(Avira Operations GmbH & Co. KG) C:\Programme\Avira\AntiVir Desktop\avshadow.exe
(Avira Operations GmbH & Co. KG) C:\Programme\Avira\AntiVir Desktop\avgnt.exe
(Apple Computer, Inc.) C:\Programme\QuickTime\qttask.exe
(Avira Operations GmbH & Co. KG) C:\Programme\Avira\My Avira\Avira.OE.Systray.exe
(Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
(Microsoft Corporation) C:\Programme\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Programme\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Programme\Internet Explorer\iexplore.exe
(Avira Operations GmbH & Co. KG) C:\Programme\Avira\AntiVir Desktop\update.exe
(Avira Operations GmbH & Co. KG) C:\Programme\Avira\AntiVir Desktop\updrgui.exe
(Avira Operations GmbH & Co. KG) C:\Programme\Avira\AntiVir Desktop\update.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [PPort11reminder] => C:\Programme\ScanSoft\PaperPort\Ereg\Ereg.exe [328992 2007-08-31] (Nuance Communications, Inc.)
HKLM\...\Run: [avgnt] => C:\Programme\Avira\AntiVir Desktop\avgnt.exe [702768 2015-01-08] (Avira Operations GmbH & Co. KG)
HKLM\...\Run: [QuickTime Task] => C:\Programme\QuickTime\qttask.exe [155648 2006-05-16] (Apple Computer, Inc.)
HKLM\...\Run: [Avira Systray] => C:\Programme\Avira\My Avira\Avira.OE.Systray.exe [126200 2014-11-20] (Avira Operations GmbH & Co. KG)
Winlogon\Notify\AtiExtEvent: C:\WINDOWS\system32\Ati2evxx.dll (ATI Technologies Inc.)
HKU\S-1-5-21-3143356383-4098776177-3215239415-1006\...\Run: [swg] => C:\Programme\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [68856 2007-06-18] (Google Inc.)
HKU\S-1-5-21-3143356383-4098776177-3215239415-1006\...\Run: [Obqyofalu] => C:\Dokumente und Einstellungen\Beul\Anwendungsdaten\Zyquo\vyoq.exe [291029 2011-05-19] ()
Startup: C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart\WISO Mein Steuer-Sparbuch heute.lnk
ShortcutTarget: WISO Mein Steuer-Sparbuch heute.lnk -> C:\Programme\WISO\Steuersoftware 2014\mshaktuell.exe ()
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKU\S-1-5-21-3143356383-4098776177-3215239415-1006\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.freenet.de/
HKU\S-1-5-21-3143356383-4098776177-3215239415-1006\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://www.google.com/ie
HKU\S-1-5-21-3143356383-4098776177-3215239415-1006\Software\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = hxxp://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\.DEFAULT -> {1239D373-5EA6-4CA1-9656-8122C4EF3C2B} URL = hxxp://websearch.ask.com/redirect?client=ie&tb=AVR-4&o=APN10261&src=crm&q={searchTerms}&locale=de_DE&apn_ptnrs=^AGS&apn_dtid=^YYYYYY^YY^DE&apn_uid=f84bdafa-185b-44e8-8f19-89f502dcf87b&apn_sauid=4735EF6F-D1B0-441A-BB6D-B0A9B9A8BFFB
SearchScopes: HKU\S-1-5-21-3143356383-4098776177-3215239415-1006 -> DefaultScope {105E99FF-8B9A-4492-B155-06194B9056D2} URL = hxxp://www.bing.com/search?FORM=IEFM1&q={searchTerms}&src={referrer:source?}
SearchScopes: HKU\S-1-5-21-3143356383-4098776177-3215239415-1006 -> {105E99FF-8B9A-4492-B155-06194B9056D2} URL = hxxp://www.bing.com/search?FORM=IEFM1&q={searchTerms}&src={referrer:source?}
SearchScopes: HKU\S-1-5-21-3143356383-4098776177-3215239415-1006 -> {37E88BCA-81FC-4E42-B03D-B022FA7FE421} URL = hxxp://websearch.ask.com/redirect?client=ie&tb=AVR-4&o=APN10261&src=crm&q={searchTerms}&locale=de_DE&apn_ptnrs=^AGS&apn_dtid=^YYYYYY^YY^DE&apn_uid=f84bdafa-185b-44e8-8f19-89f502dcf87b&apn_sauid=4735EF6F-D1B0-441A-BB6D-B0A9B9A8BFFB
SearchScopes: HKU\S-1-5-21-3143356383-4098776177-3215239415-1006 -> {4327FABE-3C22-4689-8DBF-D226CF777FE9} URL = hxxp://www.searchplusnetwork.com/?sp=vit4&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3143356383-4098776177-3215239415-1006 -> {CFF4DB9B-135F-47c0-9269-B4C6572FD61A} URL = hxxp://mystart.incredimail.com/?search={searchTerms}&loc=search_box
SearchScopes: HKU\S-1-5-21-3143356383-4098776177-3215239415-1006 -> {DECA3892-BA8F-44b8-A993-A466AD694AE4} URL = hxxp://de.search.yahoo.com/search?fr=mcafee&p={searchTerms}
SearchScopes: HKU\S-1-5-21-3143356383-4098776177-3215239415-1006 -> {E08477E0-DA8D-4FF1-9073-A176A0A55DFB} URL = hxxp://search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=b1ie7
BHO: Adobe PDF Reader Link Helper -> {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -> C:\Programme\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
BHO: Conduit Engine -> {30F9B915-B755-4826-820B-08FBA6BD249D} -> C:\Programme\ConduitEngine\ConduitEngine.dll (Conduit Ltd.)
BHO: No Name -> {5C255C8A-E604-49b4-9D64-90988571CECB} -> No File
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Programme\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live Anmelde-Hilfsprogramm -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Programme\Gemeinsame Dateien\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Programme\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO: Skype Plug-In -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Programme\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
BHO: Google Toolbar Notifier BHO -> {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} -> C:\Programme\Google\GoogleToolbarNotifier\5.7.9012.1008\swg.dll (Google Inc.)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Programme\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Programme\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKU\.DEFAULT -> No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} - No File
Toolbar: HKU\.DEFAULT -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Programme\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKU\S-1-5-21-3143356383-4098776177-3215239415-1006 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Programme\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKU\S-1-5-21-3143356383-4098776177-3215239415-1006 -> No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} - No File
DPF: {15B782AF-55D8-11D1-B477-006097098764} hxxp://fpdownload.macromedia.com/get/shockwave/cabs/authorware/awswaxd.cab
DPF: {166B1BCA-3F9C-11CF-8075-444553540000} hxxp://fpdownload.macromedia.com/get/shockwave/cabs/director/sw.cab
DPF: {3B36B017-7E49-426B-95B0-B5CECD83C2E2} hxxp://chkr-web.ifolor.net/ORDERINGGENERAL/LowRes/app_support/ActiveX/IfolorUploader_chkr.cab
DPF: {3E68E405-C6DE-49FF-83AE-41EE9F4C36CE} hxxp://office.microsoft.com/officeupdate/content/opuc3.cab
DPF: {45A0A292-ECC6-4D8F-9EA9-A4BD411D24C1} hxxp://sat1.king.de/ctl/kingcomie.cab
DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} hxxp://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1120030355312
DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} hxxp://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1122285756359
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.5.0/jinstall-1_5_0_05-windows-i586.cab
DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} hxxp://fpdownload.macromedia.com/get/flashplayer/current/ultrashim.cab
DPF: {A4150320-98EC-4DB6-9BFB-EBF4B6FBEB16} hxxp://192.168.178.40:180/codebase/DVM_IPCam2.ocx
DPF: {CAFEEFAC-0015-0000-0005-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.5.0/jinstall-1_5_0_05-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\msdaipp.dll (Microsoft Corporation)
Handler: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\msdaipp.dll (Microsoft Corporation)
Handler: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\msdaipp.dll (Microsoft Corporation)
Handler: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\msdaipp.dll (Microsoft Corporation)
Handler: ipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\msdaipp.dll (Microsoft Corporation)
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Programme\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll (Microsoft Corporation)
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation)
Handler: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\msdaipp.dll (Microsoft Corporation)
Handler: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\msdaipp.dll (Microsoft Corporation)
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Programme\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll (Microsoft Corporation)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Programme\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Programme\Gemeinsame Dateien\Skype\Skype4COM.dll (Skype Technologies)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
FireFox:
========
FF ProfilePath: C:\Dokumente und Einstellungen\Beul\Anwendungsdaten\Mozilla\Firefox\Profiles\tl2nmkt0.default
FF DefaultSearchUrl: hxxp://www.google.com/search?lr=&ie=UTF-8&oe=UTF-8&q=
FF Homepage: hxxp://search.avira.com/?l=dis&o=APN10261&gct=hp&dc=EU&locale=de_DE
FF SelectedSearchEngine: Ask.com
FF SearchEngineOrder.1: Ask.com
FF Keyword.URL: user_pref("keyword.URL", "hxxp://www.searchplusnetwork.com/?sp=vit4&q=");
FF DefaultSearchEngine: Ask.com
FF Plugin: @Google.com/GoogleEarthPlugin -> C:\Programme\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin: @java.com/DTPlugin,version=10.7.2 -> C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.7.2 -> C:\Programme\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @real.com/nppl3260;version=6.0.11.2240 -> C:\Programme\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprjplug;version=1.0.2.2298 -> C:\Programme\Real\RealPlayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprpjplug;version=6.0.12.1348 -> C:\Programme\Real\RealPlayer\Netscape6\nprpjplug.dll (RealNetworks, Inc.)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Programme\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Programme\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @viewpoint.com/VMP -> C:\Programme\Viewpoint\Viewpoint Experience Technology\npViewpoint.dll ()
FF Plugin: @zylom.com/ZylomGamesPlayer -> C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Zylom\ZylomGamesPlayer\npzylomgamesplayer.dll (Zylom)
FF user.js: detected! => C:\Dokumente und Einstellungen\Beul\Anwendungsdaten\Mozilla\Firefox\Profiles\tl2nmkt0.default\user.js
FF Plugin ProgramFiles/Appdata: C:\Programme\mozilla firefox\plugins\npmidas.dll (Midasplayer Ltd)
FF Plugin ProgramFiles/Appdata: C:\Programme\mozilla firefox\plugins\npnul32.dll (mozilla.org)
FF Plugin ProgramFiles/Appdata: C:\Programme\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Programme\mozilla firefox\plugins\npqtplugin.dll (Apple Computer, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Programme\mozilla firefox\plugins\npqtplugin2.dll (Apple Computer, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Programme\mozilla firefox\plugins\npzylomgamesplayer.dll (Zylom)
FF SearchPlugin: C:\Dokumente und Einstellungen\Beul\Anwendungsdaten\Mozilla\Firefox\Profiles\tl2nmkt0.default\searchplugins\askcom.xml
FF SearchPlugin: C:\Dokumente und Einstellungen\Beul\Anwendungsdaten\Mozilla\Firefox\Profiles\tl2nmkt0.default\searchplugins\MyStart Search.xml
FF SearchPlugin: C:\Dokumente und Einstellungen\Beul\Anwendungsdaten\Mozilla\Firefox\Profiles\tl2nmkt0.default\searchplugins\Plusnetwork.xml
FF SearchPlugin: C:\Dokumente und Einstellungen\Beul\Anwendungsdaten\Mozilla\Firefox\Profiles\tl2nmkt0.default\searchplugins\siteadvisor.xml
FF Extension: Microsoft Choice Guard - C:\Dokumente und Einstellungen\Beul\Anwendungsdaten\Mozilla\Firefox\Profiles\tl2nmkt0.default\Extensions\ChoiceGuard@Microsoft [2009-08-21]
FF Extension: Google Toolbar for Firefox - C:\Dokumente und Einstellungen\Beul\Anwendungsdaten\Mozilla\Firefox\Profiles\tl2nmkt0.default\Extensions\{3112ca9c-de6d-4884-a869-9855de68056c} [2008-10-31]
FF Extension: softonic-de3 Toolbar - C:\Dokumente und Einstellungen\Beul\Anwendungsdaten\Mozilla\Firefox\Profiles\tl2nmkt0.default\Extensions\{cc05a3e3-64c3-4af2-bfc1-af0d66b69065} [2010-08-16]
FF Extension: IncrediMail MediaBar 2 Toolbar - C:\Dokumente und Einstellungen\Beul\Anwendungsdaten\Mozilla\Firefox\Profiles\tl2nmkt0.default\Extensions\{d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0} [2011-02-15]
FF Extension: Talkback - C:\Programme\Mozilla Firefox\extensions\talkback@mozilla.org [2007-11-11]
FF Extension: Google Toolbar for Firefox - C:\Programme\Mozilla Firefox\extensions\{3112ca9c-de6d-4884-a869-9855de68056c} [2007-11-11]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2011-06-12]
Chrome:
=======
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - No Path
========================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 AntiVirSchedulerService; C:\Programme\Avira\AntiVir Desktop\sched.exe [431920 2015-01-08] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Programme\Avira\AntiVir Desktop\avguard.exe [431920 2015-01-08] (Avira Operations GmbH & Co. KG)
S2 ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [520192 2006-05-03] () [File not signed]
R2 Avira.OE.ServiceHost; C:\Programme\Avira\My Avira\Avira.OE.ServiceHost.exe [166192 2014-11-20] (Avira Operations GmbH & Co. KG)
S3 BrYNSvc; C:\Programme\Browny02\BrYNSvc.exe [245760 2010-01-25] (Brother Industries, Ltd.) [File not signed]
S2 gupdate; C:\Programme\Google\Update\GoogleUpdate.exe [107912 2015-01-08] (Google Inc.)
S3 gupdatem; C:\Programme\Google\Update\GoogleUpdate.exe [107912 2015-01-08] (Google Inc.)
S3 gusvc; C:\Programme\Google\Common\Google Updater\GoogleUpdaterService.exe [194032 2012-08-21] (Google)
S3 IDriverT; C:\Programme\Gemeinsame Dateien\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-03] (Macrovision Corporation) [File not signed]
R2 JavaQuickStarterService; C:\Programme\Java\jre7\bin\jqs.exe [161768 2012-10-07] (Oracle Corporation)
S3 ServiceLayer; C:\Programme\PC Connectivity Solution\ServiceLayer.exe [620544 2008-11-11] (Nokia.) [File not signed]
S2 SkypeUpdate; C:\Programme\Skype\Updater\Updater.exe [160944 2012-07-13] (Skype Technologies)
R2 WMPNetworkSvc; C:\Programme\Windows Media Player\WMPNetwk.exe [920576 2006-11-03] (Microsoft Corporation)
S3 SwPrv; C:\WINDOWS\system32\dllhost.exe /Processid:{DF92F074-A4E4-48A8-A647-B523940018B4}
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R3 ALCXWDM; C:\WINDOWS\System32\drivers\ALCXWDM.SYS [2314560 2005-03-25] (Realtek Semiconductor Corp.)
S1 AmdK8; C:\WINDOWS\System32\DRIVERS\AmdK8.sys [43008 2005-06-28] (Advanced Micro Devices) [File not signed]
R2 avgntflt; C:\WINDOWS\System32\DRIVERS\avgntflt.sys [98160 2014-10-26] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\WINDOWS\System32\DRIVERS\avipbb.sys [136216 2014-10-26] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\WINDOWS\System32\DRIVERS\avkmgr.sys [37352 2013-12-08] (Avira Operations GmbH & Co. KG)
S3 CardReaderFilter; C:\WINDOWS\system32\Drivers\USBCRFT.SYS [17408 2012-08-05] (ICSI Technology Ltd.) [File not signed]
S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2008-04-13] (Microsoft Corporation)
S3 EL90XBC; C:\WINDOWS\System32\DRIVERS\el90xbc5.sys [66591 2001-08-17] (3Com Corporation)
R3 FETND5BV; C:\WINDOWS\System32\DRIVERS\fetnd5bv.sys [42496 2005-03-18] (VIA Technologies, Inc. )
S3 FETNDIS; C:\WINDOWS\System32\DRIVERS\fetnd5.sys [27165 2001-08-17] (VIA Technologies, Inc. )
S3 FsUsbExDisk; C:\WINDOWS\system32\FsUsbExDisk.SYS [36640 2009-12-22] () [File not signed]
R2 hwpsgt; C:\WINDOWS\System32\DRIVERS\hwpsgt.sys [137344 2006-04-16] () [File not signed]
R2 lemsgt; C:\WINDOWS\System32\DRIVERS\lemsgt.sys [9472 2006-04-16] () [File not signed]
S3 LVUSBSta; C:\WINDOWS\System32\drivers\lvusbsta.sys [22016 2005-05-27] (Logitech Inc.)
S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2008-04-13] (Microsoft Corporation)
R3 PRISM_A00; C:\WINDOWS\System32\DRIVERS\PRISMA00.sys [380736 2004-01-16] ()
R0 PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [20576 2005-05-09] (Sonic Solutions) [File not signed]
S3 QCMerced; C:\WINDOWS\System32\DRIVERS\LVCM.sys [1317152 2005-05-27] ()
R1 SSHDRV86; C:\WINDOWS\system32\drivers\SSHDRV86.sys [81408 2006-04-08] () [File not signed]
R1 ssmdrv; C:\WINDOWS\System32\DRIVERS\ssmdrv.sys [28520 2012-08-27] (Avira GmbH)
S3 ss_bbus; C:\WINDOWS\System32\DRIVERS\ss_bbus.sys [98432 2009-09-19] (MCCI)
S3 ss_bmdfl; C:\WINDOWS\System32\DRIVERS\ss_bmdfl.sys [14848 2009-09-19] (MCCI Corporation)
S3 ss_bmdm; C:\WINDOWS\System32\DRIVERS\ss_bmdm.sys [123648 2009-09-19] (MCCI Corporation)
S3 ss_bserd; C:\WINDOWS\System32\DRIVERS\ss_bserd.sys [100224 2009-09-19] (MCCI Corporation)
S3 tbhsd; C:\WINDOWS\System32\drivers\tbhsd.sys [26912 2007-11-16] (RapidSolution Software AG)
R0 viamraid; C:\WINDOWS\System32\DRIVERS\viamraid.sys [60928 2005-06-20] (VIA Technologies inc,.ltd)
S3 dgderdrv; System32\drivers\dgderdrv.sys [X]
S4 IntelIde; No ImagePath
S3 NPF; system32\drivers\npf.sys [X]
S3 NSNDIS5; \??\C:\WINDOWS\system32\NSNDIS5.SYS [X]
U5 ScsiPort; C:\WINDOWS\system32\drivers\scsiport.sys [96384 2008-04-13] (Microsoft Corporation)
S3 wanatw; system32\DRIVERS\wanatw4.sys [X]
U1 WS2IFSL; No ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2015-01-22 18:40 - 2015-01-22 18:41 - 00020958 _____ () C:\Dokumente und Einstellungen\Beul\Desktop\FRST.txt
2015-01-20 14:00 - 2015-01-20 14:00 - 00380416 _____ () C:\Dokumente und Einstellungen\Beul\Desktop\Gmer-19357.exe
2015-01-20 13:55 - 2015-01-22 18:40 - 00000000 ____D () C:\FRST
2015-01-20 13:54 - 2015-01-20 13:54 - 01118208 _____ (Farbar) C:\Dokumente und Einstellungen\Beul\Desktop\FRST.exe
2015-01-20 13:47 - 2015-01-20 13:47 - 00000000 _____ () C:\Dokumente und Einstellungen\Beul\defogger_reenable
2015-01-20 13:46 - 2015-01-20 13:46 - 00050477 _____ () C:\Dokumente und Einstellungen\Beul\Desktop\Defogger.exe
2015-01-08 21:56 - 2015-01-08 21:56 - 00000838 _____ () C:\Dokumente und Einstellungen\All Users\Desktop\Avira.lnk
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2015-01-22 18:41 - 2006-04-07 12:54 - 00000000 ____D () C:\Dokumente und Einstellungen\Beul\Lokale Einstellungen\Temp
2015-01-22 18:39 - 2013-09-05 20:05 - 01502373 _____ () C:\WINDOWS\WindowsUpdate.log
2015-01-22 18:38 - 2013-09-04 21:03 - 00000000 ____D () C:\Dokumente und Einstellungen\Beul\Anwendungsdaten\Nirao
2015-01-22 18:34 - 2004-08-04 13:00 - 00002206 _____ () C:\WINDOWS\system32\wpa.dbl
2015-01-22 18:33 - 2013-10-21 19:44 - 00001086 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1cece8d8b87f2ee.job
2015-01-22 18:33 - 2013-09-05 20:06 - 00000159 _____ () C:\WINDOWS\wiadebug.log
2015-01-22 18:33 - 2013-09-05 20:06 - 00000050 _____ () C:\WINDOWS\wiaservc.log
2015-01-22 18:33 - 2005-06-28 12:29 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2015-01-22 18:33 - 2005-06-28 12:19 - 00000000 ____D () C:\Dokumente und Einstellungen\NetworkService\Lokale Einstellungen\Temp
2015-01-20 19:48 - 2014-09-09 20:05 - 00136400 _____ () C:\Dokumente und Einstellungen\LocalService\Lokale Einstellungen\Anwendungsdaten\FontCache3.0.0.0.dat
2015-01-20 19:48 - 2013-09-05 20:06 - 00032602 _____ () C:\WINDOWS\SchedLgU.Txt
2015-01-20 19:48 - 2006-04-07 12:54 - 00000300 ___SH () C:\Dokumente und Einstellungen\Beul\ntuser.ini
2015-01-20 19:48 - 2006-04-07 12:54 - 00000000 ____D () C:\Dokumente und Einstellungen\Beul
2015-01-20 18:56 - 2010-01-29 22:26 - 00001090 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-01-20 17:14 - 2013-09-07 15:58 - 00000000 ____D () C:\Dokumente und Einstellungen\Beul\Anwendungsdaten\Ryqyko
2015-01-20 16:52 - 2005-07-25 14:39 - 00000000 ____D () C:\WINDOWS\system32\NtmsData
2015-01-20 15:17 - 2005-06-28 12:14 - 00000000 ____D () C:\WINDOWS\Registration
2015-01-20 14:36 - 2014-02-03 22:19 - 00011406 _____ () C:\WINDOWS\setupapi.log
2015-01-20 13:25 - 2014-09-09 19:04 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Package Cache
2015-01-08 21:56 - 2012-12-17 18:20 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Avira
2015-01-08 21:56 - 2012-12-17 18:18 - 00000000 ____D () C:\Programme\Avira
2015-01-08 21:56 - 2006-08-29 17:20 - 00000000 ____D () C:\Dokumente und Einstellungen\Beul\Eigene Dateien\Bewerbung
2015-01-08 21:52 - 2005-06-28 13:02 - 01160370 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2015-01-08 21:52 - 2005-06-28 13:02 - 00000000 ___RD () C:\Programme
==================== Files in the root of some directories =======
2009-03-14 21:50 - 2009-03-14 21:51 - 4157440 _____ () C:\Programme\fritz.box_fon_wlan_7050.14.04.33.image
2011-06-12 19:19 - 2011-06-12 19:19 - 0002528 _____ () C:\Dokumente und Einstellungen\Beul\Anwendungsdaten\$_hpcst$.hpc
2007-10-29 19:25 - 2012-01-28 16:03 - 0000085 ___SH () C:\Dokumente und Einstellungen\Beul\Anwendungsdaten\.zreglib
2006-08-29 16:42 - 2013-01-20 14:06 - 0000208 _____ () C:\Dokumente und Einstellungen\Beul\Anwendungsdaten\wklnhst.dat
2006-05-11 21:54 - 2014-02-10 11:25 - 0024576 _____ () C:\Dokumente und Einstellungen\Beul\Lokale Einstellungen\Anwendungsdaten\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2006-04-07 12:54 - 2007-07-11 16:56 - 0000137 _____ () C:\Dokumente und Einstellungen\Beul\Lokale Einstellungen\Anwendungsdaten\fusioncache.dat
Files to move or delete:
====================
C:\Dokumente und Einstellungen\Beul\bikblocks.exe
Some content of TEMP:
====================
C:\Dokumente und Einstellungen\Beul\Lokale Einstellungen\Temp\avgnt.exe
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
==================== End Of Log ============================
--- --- --- Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x86) Version: 19-01-2015
Ran by Beul at 2015-01-22 18:43:03
Running from C:\Dokumente und Einstellungen\Beul\Desktop
Boot Mode: Normal
==========================================================
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Avira AntiVir PersonalEdition Classic (Disabled - Up to date) {804FD2B8-FFA4-00EB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic (Disabled - Up to date) {804FD0EC-FFA4-00EB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic (Disabled - Up to date) {00000000-0000-0000-0000-000000000000}
AV: Avira Desktop (Disabled - Up to date) {AD166499-45F9-482A-A743-FDD3350758C7}
AV: Avira AntiVir PersonalEdition Classic (Disabled - Up to date) {804FD2B8-FFA4-00FC-0D24-347CA8A3377C}
==================== Installed Programs ======================
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
3D Mahjongg (HKLM\...\3D Mahjongg) (Version: - )
Adobe Flash Player 11 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 11.8.800.94 - Adobe Systems Incorporated)
Adobe Reader 7.0.9 - Deutsch (HKLM\...\{AC76BA86-7AD7-1031-7B44-A70900000002}) (Version: 7.0.9 - Adobe Systems Incorporated)
Asterix & Obelix XXL (HKLM\...\InstallShield_{D562E689-0ECD-4239-B1A0-323252893405}) (Version: 1.00.0000 - Ihr Firmenname)
Asterix & Obelix XXL (Version: 1.00.0000 - Ihr Firmenname) Hidden
ATI - Software Uninstall Utility (HKLM\...\All ATI Software) (Version: 6.14.10.1014 - )
ATI Catalyst Control Center (HKLM\...\{EA9FAF16-0E5C-42C4-9742-9AF8D5F6D69B}) (Version: 1.2.2314.20337 - )
ATI Control Panel (HKLM\...\{0BEDBD4E-2D34-47B5-9973-57E62B29307C}) (Version: 6.14.10.5157 - )
ATI Display Driver (HKLM\...\ATI Display Driver) (Version: 8.252-060503a-038185C-ATI - )
AutoUpdate (HKLM\...\{18D10072035C4515918F7E37EAFAACFC}) (Version: 1.0 - )
Avira (HKLM\...\{e7c7c227-b742-4878-9425-f09bbf9951db}) (Version: 1.1.27.25527 - Avira Operations & Co. KG)
Avira (Version: 1.1.27.25527 - Avira Operations & Co. KG) Hidden
Avira Free Antivirus (HKLM\...\Avira AntiVir Desktop) (Version: 14.0.7.468 - Avira)
Biet-O-Matic v2.8.0 (HKLM\...\Biet-O-Matic v2.8.0) (Version: Biet-O-Matic v2.8.0 - BOM Development Team)
Brother MFL-Pro Suite MFC-J415W (HKLM\...\{FB83EAC4-E3F6-4666-B45B-44522F2344B6}) (Version: 1.0.3.0 - Brother Industries, Ltd.)
CCleaner (HKLM\...\CCleaner) (Version: 4.02 - Piriform)
Compatibility Pack for the 2007 Office system (HKLM\...\{90120000-0020-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Creatix V.92 Data Fax Modem (HKLM\...\Creatix V.92 Data Fax Modem) (Version: - )
DivX Player (HKLM\...\{8ADFC4160D694100B5B8A22DE9DCABD9}) (Version: 2.5.5 - DivXNetworks, Inc.)
DivX Pro (HKLM\...\{7B63B2922B174135AFC0E1377DD81EC2}) (Version: 5.2.1 - DivXNetworks, Inc.)
DivX User Guide (HKLM\...\{FAF88B432344413595BB2DED98385684}) (Version: 5.2.1 - DivXNetworks, Inc.)
eTrust Registration (HKLM\...\{6BFF4534-7608-41F0-85F7-31A0569D8960}) (Version: 1.0 - Default Manufacturer)
FMS (HKLM\...\FMS) (Version: - )
Generic USB CardReader 2.0 (HKLM\...\{EA1CB7AC-E221-4822-A789-0ADB051DC498}) (Version: - )
Google Earth Plug-in (HKLM\...\{4AB54F11-2F8C-11E3-B09F-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Toolbar for Internet Explorer (HKLM\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.5111.1712 - Google Inc.)
Google Toolbar for Internet Explorer (Version: 1.0.0 - Google Inc.) Hidden
Google Update Helper (Version: 1.3.25.11 - Google Inc.) Hidden
HighMAT-Erweiterung für den Microsoft Windows XP-Assistenten zum Schreiben von CDs (HKLM\...\{FCE65C4E-B0E8-4FBD-AD16-EDCBE6CD591F}) (Version: 1.1.1905.1 - Microsoft Corporation)
Hotfix für Windows Internet Explorer 7 (KB947864) (Version: 1 - Microsoft Corporation) Hidden
Hotfix für Windows Media Player 11 (KB939683) (HKLM\...\KB939683) (Version: - Microsoft Corporation)
Hotfix für Windows XP (KB2158563) (HKLM\...\KB2158563) (Version: 1 - Microsoft Corporation)
Hotfix für Windows XP (KB2443685) (HKLM\...\KB2443685) (Version: 1 - Microsoft Corporation)
Hotfix für Windows XP (KB2570791) (HKLM\...\KB2570791) (Version: 1 - Microsoft Corporation)
Hotfix für Windows XP (KB2633952) (HKLM\...\KB2633952) (Version: 1 - Microsoft Corporation)
Hotfix für Windows XP (KB2756822) (HKLM\...\KB2756822) (Version: 1 - Microsoft Corporation)
Hotfix für Windows XP (KB2779562) (HKLM\...\KB2779562) (Version: 1 - Microsoft Corporation)
Hotfix für Windows XP (KB952287) (HKLM\...\KB952287) (Version: 1 - Microsoft Corporation)
Hotfix für Windows XP (KB961118) (HKLM\...\KB961118) (Version: 1 - Microsoft Corporation)
Hotfix für Windows XP (KB970653-v3) (HKLM\...\KB970653-v3) (Version: 3 - Microsoft Corporation)
Hotfix für Windows XP (KB976098-v2) (HKLM\...\KB976098-v2) (Version: 2 - Microsoft Corporation)
Hotfix für Windows XP (KB981793) (HKLM\...\KB981793) (Version: 1 - Microsoft Corporation)
Informationen über Ihren PC (HKLM\...\{3D1A6B70-3E02-49BC-88B0-916C80274632}) (Version: - )
IP Camera (HKLM\...\IP Camera) (Version: - )
J2SE Runtime Environment 5.0 Update 5 (HKLM\...\{3248F0A8-6813-11D6-A77B-00B0D0150050}) (Version: 1.5.0.50 - Sun Microsystems, Inc.)
Java 7 Update 7 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83217007FF}) (Version: 7.0.70 - Oracle)
king.com (remove only) (HKLM\...\king.com) (Version: - Midasplayer Ltd (king.com))
KLIX 1.06 (HKLM\...\KLIX) (Version: - )
Logitech QuickCam-Software (HKLM\...\{C43048A9-742C-4DAD-90D2-E3B53C9DB825}) (Version: 8.47.0000 - Logitech, Inc.)
Logitech® Camera-Treiber (HKLM\...\QcDrv) (Version: - )
Macromedia Shockwave Player (HKLM\...\Macromedia Shockwave Player) (Version: 10.1.0.11 - Macromedia, Inc.)
Malwarebytes Anti-Malware Version 1.75.0.1300 (HKLM\...\Malwarebytes' Anti-Malware_is1) (Version: 1.75.0.1300 - Malwarebytes Corporation)
MGI PhotoSuite 4 (nur entfernen) (HKLM\...\MGI_PRISM_V4_0) (Version: - MGI Software Corp.)
Microsoft .NET Framework 1.1 (HKLM\...\Microsoft .NET Framework 1.1 (1033)) (Version: - )
Microsoft .NET Framework 1.1 German Language Pack (HKLM\...\{E78BFA60-5393-4C38-82AB-E8019E464EB4}) (Version: 1.1.4322 - Microsoft)
Microsoft .NET Framework 1.1 Security Update (KB2698023) (HKLM\...\M2698023) (Version: - )
Microsoft .NET Framework 1.1 Security Update (KB2833941) (HKLM\...\M2833941) (Version: - )
Microsoft .NET Framework 1.1 Security Update (KB979906) (HKLM\...\M979906) (Version: - )
Microsoft .NET Framework 2.0 Service Pack 2 (HKLM\...\{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}) (Version: 2.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.0 Service Pack 2 (HKLM\...\{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}) (Version: 3.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version: - Microsoft Corporation)
Microsoft Compression Client Pack 1.0 for Windows XP (HKLM\...\MSCompPackV1) (Version: 1 - Microsoft Corporation)
Microsoft Office 2000 Premium (HKLM\...\{00000407-78E1-11D2-B60F-006097C998E7}) (Version: 9.00.2816 - Microsoft Corporation)
Microsoft User-Mode Driver Framework Feature Pack 1.5 (HKLM\...\Wudf01005) (Version: - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (HKLM\...\{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}) (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Windows-Journal-Viewer (HKLM\...\{43DCF766-6838-4F9A-8C91-D92DA586DFA7}) (Version: 1.5.2315.3 - Microsoft)
Microsoft Works (HKLM\...\{B26E3B0D-C2FA-4370-B068-7C476766F029}) (Version: 08.04.0702 - Microsoft Corporation)
Microsoft-Basissmartcard-Kryptografiedienstanbieterpaket (HKLM\...\KB909520) (Version: - Microsoft Corporation)
Mozilla Firefox (2.0.0.11) (HKLM\...\Mozilla Firefox (2.0.0.11)) (Version: 2.0.0.11 (de) - Mozilla)
MSN (HKLM\...\MSNINST) (Version: - )
MSVC80_x86 (Version: 1.0.1.0 - Nokia) Hidden
MSXML 4.0 SP2 (KB925672) (HKLM\...\{A9CF9052-F4A0-475D-A00F-A8388C62DD63}) (Version: 4.20.9839.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB927978) (HKLM\...\{37477865-A3F1-4772-AD43-AAFC6BCFF99F}) (Version: 4.20.9841.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB936181) (HKLM\...\{C04E32E0-0416-434D-AFB9-6969D703A9EF}) (Version: 4.20.9848.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Musicmatch® Jukebox (HKLM\...\{8EF1122E-E90C-4EE9-AB0C-7FDE2BA42C26}) (Version: 9.00.5085 - )
Nero Suite (HKLM\...\NeroMultiInstaller!UninstallKey) (Version: - )
PacksMagic 1.02 (HKLM\...\PacksMagic) (Version: - )
PaperPort Image Printer (HKLM\...\{2BC2781A-F7F6-452E-95EB-018A522F1B2C}) (Version: 1.00.0000 - Nuance Communications, Inc.)
PC Connectivity Solution (HKLM\...\{34610DE0-3C13-42CA-8E32-01FFA38AB6E8}) (Version: 8.47.7.0 - Nokia)
PDF24 Creator 5.2.0 (HKLM\...\{81A6F461-0DBA-4F12-B56F-0E977EC10576}_is1) (Version: - PDF24.org)
Photo Notifier and Animation Creator (HKLM\...\Photo Notifier and Animation Creator) (Version: 1.0.0.1009 - IncrediMail Ltd.)
PixiePack Codec Pack (HKLM\...\{621FCD24-4498-4324-A81E-07D331376EDF}) (Version: 0.10.4 - None)
Platform (Version: 1.12 - VIA Technologies, Inc.) Hidden
PowerDVD (HKLM\...\{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}) (Version: - )
PowerProducer (HKLM\...\{B7A0CE06-068E-11D6-97FD-0050BACBF861}) (Version: - )
QuickTime (HKLM\...\InstallShield_{929408E6-D265-4174-805F-81D1D914E2A4}) (Version: 7.0.4 - Apple Computer, Inc.)
QuickTime (Version: 7.0.4 - Apple Computer, Inc.) Hidden
RealFlight G3 R/C Simulator (HKLM\...\RealFlightG3Pro) (Version: - )
RealFlight G4 Demo (HKLM\...\{7EEA397D-3E3D-4C60-8585-DC897C8D36E0}) (Version: 1.00.0000 - Knife Edge Software)
RealPlayer (HKLM\...\RealPlayer 6.0) (Version: - )
Realtek AC'97 Audio (HKLM\...\{FB08F381-6533-4108-B7DD-039E11FBC27E}) (Version: - )
Recuva (HKLM\...\Recuva) (Version: 1.49 - Piriform)
SAMSUNG CDMA Modem Driver Set (HKLM\...\SAMSUNG CDMA Modem) (Version: - )
Samsung PC Studio (Version: 3.0.0.51106 - Samsung Electronics Co., Ltd.) Hidden
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.2.912.21200 - SAMSUNG Electronics Co., Ltd.)
ScanSoft PaperPort 11 (HKLM\...\{02570AE0-BEE0-4A6C-BE3F-D806E9F2EA17}) (Version: 11.2.0000 - Nuance Communications, Inc.)
Segoe UI (Version: 14.0.4327.805 - Microsoft Corp) Hidden
Sicherheitsupdate für Microsoft Windows (KB2564958) (HKLM\...\KB2564958) (Version: - Microsoft Corporation)
Sicherheitsupdate für Step by Step Interactive Training (KB898458) (HKLM\...\KB898458) (Version: 20050502.101010 - Microsoft Corporation)
Sicherheitsupdate für Step by Step Interactive Training (KB923723) (HKLM\...\KB923723) (Version: 20050502.101010 - Microsoft Corporation)
Sicherheitsupdate für Windows Internet Explorer 7 (KB928090) (Version: 20070117.120000 - Microsoft Corporation) Hidden
Sicherheitsupdate für Windows Internet Explorer 7 (KB929969) (Version: 20061222.120000 - Microsoft Corporation) Hidden
Sicherheitsupdate für Windows Internet Explorer 7 (KB931768) (Version: 1 - Microsoft Corporation) Hidden
Sicherheitsupdate für Windows Internet Explorer 7 (KB933566) (Version: 1 - Microsoft Corporation) Hidden
Sicherheitsupdate für Windows Internet Explorer 7 (KB937143) (Version: 1 - Microsoft Corporation) Hidden
Sicherheitsupdate für Windows Internet Explorer 7 (KB938127) (Version: 1 - Microsoft Corporation) Hidden
Sicherheitsupdate für Windows Internet Explorer 7 (KB939653) (Version: 1 - Microsoft Corporation) Hidden
Sicherheitsupdate für Windows Internet Explorer 7 (KB942615) (Version: 1 - Microsoft Corporation) Hidden
Sicherheitsupdate für Windows Internet Explorer 7 (KB944533) (Version: 1 - Microsoft Corporation) Hidden
Sicherheitsupdate für Windows Internet Explorer 7 (KB950759) (Version: 1 - Microsoft Corporation) Hidden
Sicherheitsupdate für Windows Internet Explorer 7 (KB953838) (Version: 1 - Microsoft Corporation) Hidden
Sicherheitsupdate für Windows Internet Explorer 7 (KB958215) (Version: 1 - Microsoft Corporation) Hidden
Sicherheitsupdate für Windows Internet Explorer 7 (KB960714) (Version: 1 - Microsoft Corporation) Hidden
Sicherheitsupdate für Windows Internet Explorer 7 (KB963027) (Version: 1 - Microsoft Corporation) Hidden
Sicherheitsupdate für Windows Internet Explorer 7 (KB969897) (Version: 1 - Microsoft Corporation) Hidden
Sicherheitsupdate für Windows Internet Explorer 8 (KB2183461) (HKLM\...\KB2183461-IE8) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows Internet Explorer 8 (KB2360131) (HKLM\...\KB2360131-IE8) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows Internet Explorer 8 (KB2416400) (HKLM\...\KB2416400-IE8) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows Internet Explorer 8 (KB2482017) (HKLM\...\KB2482017-IE8) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows Internet Explorer 8 (KB2497640) (HKLM\...\KB2497640-IE8) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows Internet Explorer 8 (KB2510531) (HKLM\...\KB2510531-IE8) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows Internet Explorer 8 (KB2544521) (HKLM\...\KB2544521-IE8) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows Internet Explorer 8 (KB2559049) (HKLM\...\KB2559049-IE8) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows Internet Explorer 8 (KB2586448) (HKLM\...\KB2586448-IE8) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows Internet Explorer 8 (KB2618444) (HKLM\...\KB2618444-IE8) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows Internet Explorer 8 (KB2647516) (HKLM\...\KB2647516-IE8) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows Internet Explorer 8 (KB2675157) (HKLM\...\KB2675157-IE8) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows Internet Explorer 8 (KB2699988) (HKLM\...\KB2699988-IE8) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows Internet Explorer 8 (KB2744842) (HKLM\...\KB2744842-IE8) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows Internet Explorer 8 (KB2761465) (HKLM\...\KB2761465-IE8) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows Internet Explorer 8 (KB2846071) (HKLM\...\KB2846071-IE8) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows Internet Explorer 8 (KB2862772) (HKLM\...\KB2862772-IE8) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows Internet Explorer 8 (KB2888505) (HKLM\...\KB2888505-IE8) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows Internet Explorer 8 (KB2898785) (HKLM\...\KB2898785-IE8) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows Internet Explorer 8 (KB971961) (HKLM\...\KB971961-IE8) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows Internet Explorer 8 (KB972260) (HKLM\...\KB972260-IE8) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows Internet Explorer 8 (KB974455) (HKLM\...\KB974455-IE8) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows Internet Explorer 8 (KB976325) (HKLM\...\KB976325-IE8) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows Internet Explorer 8 (KB978207) (HKLM\...\KB978207-IE8) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows Internet Explorer 8 (KB981332) (HKLM\...\KB981332-IE8) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows Internet Explorer 8 (KB982381) (HKLM\...\KB982381-IE8) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows Media Encoder (KB2447961) (HKLM\...\KB2447961_WM9L) (Version: - Microsoft Corporation)
Sicherheitsupdate für Windows Media Encoder (KB954156) (HKLM\...\KB954156_WM9L) (Version: - Microsoft Corporation)
Sicherheitsupdate für Windows Media Encoder (KB979332) (HKLM\...\KB979332_WM9L) (Version: - Microsoft Corporation)
Sicherheitsupdate für Windows Media Player (KB2378111) (HKLM\...\KB2378111_WM9) (Version: - Microsoft Corporation)
Sicherheitsupdate für Windows Media Player (KB2834904) (HKLM\...\KB2834904_WM11) (Version: - Microsoft Corporation)
Sicherheitsupdate für Windows Media Player (KB2834904-v2) (HKLM\...\KB2834904-v2_WM11) (Version: - Microsoft Corporation)
Sicherheitsupdate für Windows Media Player (KB911564) (Version: - Microsoft Corporation) Hidden
Sicherheitsupdate für Windows Media Player (KB952069) (HKLM\...\KB952069_WM9) (Version: - Microsoft Corporation)
Sicherheitsupdate für Windows Media Player (KB954155) (HKLM\...\KB954155_WM9) (Version: - Microsoft Corporation)
Sicherheitsupdate für Windows Media Player (KB968816) (HKLM\...\KB968816_WM9) (Version: - Microsoft Corporation)
Sicherheitsupdate für Windows Media Player (KB973540) (HKLM\...\KB973540_WM9) (Version: - Microsoft Corporation)
Sicherheitsupdate für Windows Media Player (KB975558) (HKLM\...\KB975558_WM8) (Version: - Microsoft Corporation)
Sicherheitsupdate für Windows Media Player (KB978695) (HKLM\...\KB978695_WM9) (Version: - Microsoft Corporation)
Sicherheitsupdate für Windows Media Player 10 (KB911565) (Version: - Microsoft Corporation) Hidden
Sicherheitsupdate für Windows Media Player 10 (KB917734) (Version: - Microsoft Corporation) Hidden
Sicherheitsupdate für Windows Media Player 10 (KB936782) (Version: - Microsoft Corporation) Hidden
Sicherheitsupdate für Windows Media Player 11 (KB936782) (HKLM\...\KB936782_WMP11) (Version: - Microsoft Corporation)
Sicherheitsupdate für Windows Media Player 11 (KB954154) (HKLM\...\KB954154_WM11) (Version: - Microsoft Corporation)
Sicherheitsupdate für Windows Media Player 6.4 (KB925398) (HKLM\...\KB925398_WMP64) (Version: - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2079403) (HKLM\...\KB2079403) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2115168) (HKLM\...\KB2115168) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2121546) (HKLM\...\KB2121546) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2160329) (HKLM\...\KB2160329) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2229593) (HKLM\...\KB2229593) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2259922) (HKLM\...\KB2259922) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2279986) (HKLM\...\KB2279986) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2286198) (HKLM\...\KB2286198) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2296011) (HKLM\...\KB2296011) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2296199) (HKLM\...\KB2296199) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2347290) (HKLM\...\KB2347290) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2360937) (HKLM\...\KB2360937) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2387149) (HKLM\...\KB2387149) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2393802) (HKLM\...\KB2393802) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2412687) (HKLM\...\KB2412687) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2419632) (HKLM\...\KB2419632) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2423089) (HKLM\...\KB2423089) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2436673) (HKLM\...\KB2436673) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2440591) (HKLM\...\KB2440591) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2443105) (HKLM\...\KB2443105) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2476490) (HKLM\...\KB2476490) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2476687) (HKLM\...\KB2476687) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2478960) (HKLM\...\KB2478960) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2478971) (HKLM\...\KB2478971) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2479628) (HKLM\...\KB2479628) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2479943) (HKLM\...\KB2479943) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2481109) (HKLM\...\KB2481109) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2483185) (HKLM\...\KB2483185) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2485376) (HKLM\...\KB2485376) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2485663) (HKLM\...\KB2485663) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2491683) (HKLM\...\KB2491683) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2503658) (HKLM\...\KB2503658) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2506212) (HKLM\...\KB2506212) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2506223) (HKLM\...\KB2506223) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2507618) (HKLM\...\KB2507618) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2507938) (HKLM\...\KB2507938) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2508272) (HKLM\...\KB2508272) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2508429) (HKLM\...\KB2508429) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2509553) (HKLM\...\KB2509553) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2511455) (HKLM\...\KB2511455) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2524375) (HKLM\...\KB2524375) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2535512) (HKLM\...\KB2535512) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2536276-v2) (HKLM\...\KB2536276-v2) (Version: 2 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2544893) (HKLM\...\KB2544893) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2544893-v2) (HKLM\...\KB2544893-v2) (Version: 2 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2555917) (HKLM\...\KB2555917) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2562937) (HKLM\...\KB2562937) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2566454) (HKLM\...\KB2566454) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2567053) (HKLM\...\KB2567053) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2567680) (HKLM\...\KB2567680) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2570222) (HKLM\...\KB2570222) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2570947) (HKLM\...\KB2570947) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2584146) (HKLM\...\KB2584146) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2585542) (HKLM\...\KB2585542) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2592799) (HKLM\...\KB2592799) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2598479) (HKLM\...\KB2598479) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2603381) (HKLM\...\KB2603381) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2618451) (HKLM\...\KB2618451) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2619339) (HKLM\...\KB2619339) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2620712) (HKLM\...\KB2620712) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2621440) (HKLM\...\KB2621440) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2624667) (HKLM\...\KB2624667) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2631813) (HKLM\...\KB2631813) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2633171) (HKLM\...\KB2633171) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2639417) (HKLM\...\KB2639417) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2641653) (HKLM\...\KB2641653) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2646524) (HKLM\...\KB2646524) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2647518) (HKLM\...\KB2647518) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2653956) (HKLM\...\KB2653956) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2655992) (HKLM\...\KB2655992) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2659262) (HKLM\...\KB2659262) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2660465) (HKLM\...\KB2660465) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2661637) (HKLM\...\KB2661637) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2676562) (HKLM\...\KB2676562) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2685939) (HKLM\...\KB2685939) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2686509) (HKLM\...\KB2686509) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2691442) (HKLM\...\KB2691442) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2695962) (HKLM\...\KB2695962) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2698365) (HKLM\...\KB2698365) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2705219) (HKLM\...\KB2705219) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2707511) (HKLM\...\KB2707511) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2709162) (HKLM\...\KB2709162) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2712808) (HKLM\...\KB2712808) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2718523) (HKLM\...\KB2718523) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2719985) (HKLM\...\KB2719985) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2723135) (HKLM\...\KB2723135) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2724197) (HKLM\...\KB2724197) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2727528) (HKLM\...\KB2727528) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2731847) (HKLM\...\KB2731847) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2753842-v2) (HKLM\...\KB2753842-v2) (Version: 2 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2757638) (HKLM\...\KB2757638) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2758857) (HKLM\...\KB2758857) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2770660) (HKLM\...\KB2770660) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2779030) (HKLM\...\KB2779030) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2780091) (HKLM\...\KB2780091) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2802968) (HKLM\...\KB2802968) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2807986) (HKLM\...\KB2807986) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2813345) (HKLM\...\KB2813345) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2820197) (HKLM\...\KB2820197) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2820917) (HKLM\...\KB2820917) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2834886) (HKLM\...\KB2834886) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2839229) (HKLM\...\KB2839229) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2845187) (HKLM\...\KB2845187) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2847311) (HKLM\...\KB2847311) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2849470) (HKLM\...\KB2849470) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2850851) (HKLM\...\KB2850851) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2850869) (HKLM\...\KB2850869) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2859537) (HKLM\...\KB2859537) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2862152) (HKLM\...\KB2862152) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2862330) (HKLM\...\KB2862330) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2862335) (HKLM\...\KB2862335) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2864063) (HKLM\...\KB2864063) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2868038) (HKLM\...\KB2868038) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2868626) (HKLM\...\KB2868626) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2876217) (HKLM\...\KB2876217) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2876331) (HKLM\...\KB2876331) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2883150) (HKLM\...\KB2883150) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2892075) (HKLM\...\KB2892075) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2893294) (HKLM\...\KB2893294) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2893984) (HKLM\...\KB2893984) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2898715) (HKLM\...\KB2898715) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2900986) (HKLM\...\KB2900986) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2914368) (HKLM\...\KB2914368) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB923561) (HKLM\...\KB923561) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB923689) (HKLM\...\KB923689) (Version: - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB938464) (HKLM\...\KB938464) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB938464-v2) (HKLM\...\KB938464-v2) (Version: 2 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB941569) (HKLM\...\KB941569) (Version: - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB950760) (HKLM\...\KB950760) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB950762) (HKLM\...\KB950762) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB950974) (HKLM\...\KB950974) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB951066) (HKLM\...\KB951066) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB951376) (HKLM\...\KB951376) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB951376-v2) (HKLM\...\KB951376-v2) (Version: 2 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB951698) (HKLM\...\KB951698) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB951748) (HKLM\...\KB951748) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB952004) (HKLM\...\KB952004) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB952954) (HKLM\...\KB952954) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB953839) (HKLM\...\KB953839) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB954211) (HKLM\...\KB954211) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB954459) (HKLM\...\KB954459) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB954600) (HKLM\...\KB954600) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB955069) (HKLM\...\KB955069) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB956391) (HKLM\...\KB956391) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB956572) (HKLM\...\KB956572) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB956744) (HKLM\...\KB956744) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB956802) (HKLM\...\KB956802) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB956803) (HKLM\...\KB956803) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB956841) (HKLM\...\KB956841) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB956844) (HKLM\...\KB956844) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB957095) (HKLM\...\KB957095) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB957097) (HKLM\...\KB957097) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB958644) (HKLM\...\KB958644) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB958687) (HKLM\...\KB958687) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB958690) (HKLM\...\KB958690) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB958869) (HKLM\...\KB958869) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB959426) (HKLM\...\KB959426) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB960225) (HKLM\...\KB960225) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB960715) (HKLM\...\KB960715) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB960803) (HKLM\...\KB960803) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB960859) (HKLM\...\KB960859) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB961371) (HKLM\...\KB961371) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB961373) (HKLM\...\KB961373) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB961501) (HKLM\...\KB961501) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB968537) (HKLM\...\KB968537) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB969059) (HKLM\...\KB969059) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB969898) (HKLM\...\KB969898) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB969947) (HKLM\...\KB969947) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB970238) (HKLM\...\KB970238) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB970430) (HKLM\...\KB970430) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB971468) (HKLM\...\KB971468) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB971486) (HKLM\...\KB971486) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB971557) (HKLM\...\KB971557) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB971633) (HKLM\...\KB971633) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB971657) (HKLM\...\KB971657) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB972270) (HKLM\...\KB972270) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB973346) (HKLM\...\KB973346) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB973354) (HKLM\...\KB973354) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB973507) (HKLM\...\KB973507) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB973525) (HKLM\...\KB973525) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB973869) (HKLM\...\KB973869) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB973904) (HKLM\...\KB973904) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB974112) (HKLM\...\KB974112) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB974318) (HKLM\...\KB974318) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB974392) (HKLM\...\KB974392) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB974571) (HKLM\...\KB974571) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB975025) (HKLM\...\KB975025) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB975467) (HKLM\...\KB975467) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB975560) (HKLM\...\KB975560) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB975561) (HKLM\...\KB975561) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB975562) (HKLM\...\KB975562) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB975713) (HKLM\...\KB975713) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB977816) (HKLM\...\KB977816) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB977914) (HKLM\...\KB977914) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB978037) (HKLM\...\KB978037) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB978262) (HKLM\...\KB978262) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB978338) (HKLM\...\KB978338) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB978542) (HKLM\...\KB978542) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB978601) (HKLM\...\KB978601) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB978706) (HKLM\...\KB978706) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB979309) (HKLM\...\KB979309) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB979482) (HKLM\...\KB979482) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB979559) (HKLM\...\KB979559) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB979683) (HKLM\...\KB979683) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB979687) (HKLM\...\KB979687) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB980195) (HKLM\...\KB980195) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB980218) (HKLM\...\KB980218) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB980232) (HKLM\...\KB980232) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB980436) (HKLM\...\KB980436) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB981322) (HKLM\...\KB981322) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB981852) (HKLM\...\KB981852) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB981957) (HKLM\...\KB981957) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB981997) (HKLM\...\KB981997) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB982132) (HKLM\...\KB982132) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB982214) (HKLM\...\KB982214) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB982665) (HKLM\...\KB982665) (Version: 1 - Microsoft Corporation)
Sieben Zwerge - Das Brettspiel XXL (HKLM\...\Sieben Zwerge - Das Brettspiel XXL) (Version: - )
SKIP-BO Castaway Caper (HKLM\...\SKIP-BO Castaway Caper) (Version: 1.00 - phenomedia publishing gmbh)
Skype Toolbars (HKLM\...\{CD95D125-2992-4858-B3EF-5F6FB52FBAD6}) (Version: 5.0.4137 - Skype Technologies S.A.)
Skype™ 5.10 (HKLM\...\{EE7257A2-39A2-4D2F-9DAC-F9F25B8AE1D8}) (Version: 5.10.116 - Skype Technologies S.A.)
Ulead Photo Explorer 8.5 SE Basic (HKLM\...\{025C3792-E9C6-432A-92C1-661F99D021CA}) (Version: 8.5 - Ulead Systems, Inc.)
Update für Windows Internet Explorer 8 (KB972636) (HKLM\...\KB972636-IE8) (Version: 1 - Microsoft Corporation)
Update für Windows Internet Explorer 8 (KB976662) (HKLM\...\KB976662-IE8) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB2141007) (HKLM\...\KB2141007) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB2345886) (HKLM\...\KB2345886) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB2467659) (HKLM\...\KB2467659) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB2541763) (HKLM\...\KB2541763) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB2616676-v2) (HKLM\...\KB2616676-v2) (Version: 2 - Microsoft Corporation)
Update für Windows XP (KB2641690) (HKLM\...\KB2641690) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB2661254-v2) (HKLM\...\KB2661254-v2) (Version: 2 - Microsoft Corporation)
Update für Windows XP (KB2718704) (HKLM\...\KB2718704) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB2736233) (HKLM\...\KB2736233) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB2749655) (HKLM\...\KB2749655) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB2863058) (HKLM\...\KB2863058) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB2904266) (HKLM\...\KB2904266) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB951072-v2) (HKLM\...\KB951072-v2) (Version: 2 - Microsoft Corporation)
Update für Windows XP (KB951978) (Version: 1 - Microsoft Corporation) Hidden
Update für Windows XP (KB955759) (HKLM\...\KB955759) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB955839) (HKLM\...\KB955839) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB961503) (HKLM\...\KB961503) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB967715) (HKLM\...\KB967715) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB968389) (HKLM\...\KB968389) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB971029) (HKLM\...\KB971029) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB971737) (HKLM\...\KB971737) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB973687) (HKLM\...\KB973687) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB973815) (HKLM\...\KB973815) (Version: 1 - Microsoft Corporation)
VCRedistSetup (Version: 1.0.0 - Nero AG) Hidden
VIA Platform Device Manager (HKLM\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.12 - VIA Technologies, Inc.)
VIA Rhine-Family Fast Ethernet Adapter (HKLM\...\VN_VUIns_Rhine_VIA) (Version: - )
Viewpoint Media Player (HKLM\...\ViewpointMediaPlayer) (Version: - )
WebFldrs XP (Version: 9.50.7523 - Microsoft Corporation) Hidden
Wichtiges Update für Windows Media Player 11 (KB959772) (HKLM\...\KB959772_WM11) (Version: - Microsoft Corporation)
Windows Genuine Advantage Notifications (KB905474) (HKLM\...\WgaNotify) (Version: 1.7.0017.0 - Microsoft Corporation)
Windows Internet Explorer 8 (HKLM\...\ie8) (Version: 20090308.140743 - Microsoft Corporation)
Windows Live Anmelde-Assistent (HKLM\...\{52B97218-98CB-4B8B-9283-D213C85E1AA4}) (Version: 5.000.818.5 - Microsoft Corporation)
Windows Live Essentials (HKLM\...\WinLiveSuite_Wave3) (Version: 14.0.8089.0726 - Microsoft Corporation)
Windows Live-Uploadtool (HKLM\...\{205C6BDD-7B73-42DE-8505-9A093F35A238}) (Version: 14.0.8014.1029 - Microsoft Corporation)
Windows Media Encoder 9-Reihe (HKLM\...\Windows Media Encoder 9) (Version: - )
Windows Media Format 11 runtime (HKLM\...\Windows Media Format Runtime) (Version: - )
Windows Media Player 11 (HKLM\...\Windows Media Player) (Version: - )
Windows XP Service Pack 3 (HKLM\...\Windows XP Service Pack) (Version: 20080414.031514 - Microsoft Corporation)
Windows-Sicherungsprogramm (HKLM\...\{76EFFC7C-17A6-479D-9E47-8E658C1695AE}) (Version: 5.1 - Microsoft Corporation)
WinRAR (HKLM\...\WinRAR archiver) (Version: - )
WISO Steuer 2013 (HKLM\...\{D6CC2FAF-F827-4091-96A1-D32CC9B69C79}) (Version: 20.00.8137 - Buhl Data Service GmbH)
WISO Steuer 2014 (HKLM\...\{8465FF93-FF72-4DF9-935D-7CC2CFB13152}) (Version: 21.00.8480 - Buhl Data Service GmbH)
==================== Custom CLSID (selected items): ==========================
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
CustomCLSID: HKU\S-1-5-21-3143356383-4098776177-3215239415-1006_Classes\CLSID\{039B2CA5-3B41-4D93-AD77-47D3293FC5CB}\InprocServer32 -> C:\Programme\Skype\Plugin Manager\ezPMUtils.dll No File
CustomCLSID: HKU\S-1-5-21-3143356383-4098776177-3215239415-1006_Classes\CLSID\{42481700-CF3C-4D05-8EC6-F9A1C57E8DC0}\InprocServer32 -> C:\Programme\Skype\Plugin Manager\ezPMUtils.dll No File
CustomCLSID: HKU\S-1-5-21-3143356383-4098776177-3215239415-1006_Classes\CLSID\{D0D38C6E-BF64-4C42-840D-3E0019D9F7A6}\InprocServer32 -> C:\Programme\Skype\Plugin Manager\ezPMUtils.dll No File
CustomCLSID: HKU\S-1-5-21-3143356383-4098776177-3215239415-1006_Classes\CLSID\{EB959CA4-408B-4465-9CF5-7EBA7B885153}\InprocServer32 -> C:\DOKUME~1\Beul\LOKALE~1\ANWEND~1\ASKTOO~1\DOWNLO~1\AVIRAS~1.DLL No File
==================== Restore Points =========================
26-10-2014 15:42:13 Systemprüfpunkt
20-01-2015 17:35:04 Systemprüfpunkt
==================== Hosts content: ==========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2004-08-04 13:00 - 2006-07-07 19:40 - 00000847 ____A C:\WINDOWS\system32\Drivers\etc\hosts
127.0.0.1 localhost
127.0.0.1 localhost
==================== Scheduled Tasks (whitelisted) =============
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1cece8d8b87f2ee.job => C:\Programme\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Programme\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (whitelisted) =============
2007-11-19 17:24 - 2007-09-20 18:34 - 00129024 _____ () C:\Programme\WinRAR\rarext.dll
2011-05-03 19:59 - 2009-02-27 15:38 - 00139264 ____R () C:\Programme\Brother\BrUtilities\BrLogAPI.dll
2014-11-20 14:09 - 2014-11-20 14:09 - 00245760 _____ () C:\Programme\Avira\My Avira\System.ComponentModel.Composition.dll
==================== Alternate Data Streams (whitelisted) =========
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
AlternateDataStreams: C:\Dokumente und Einstellungen\Beul:zylomtest
AlternateDataStreams: C:\Dokumente und Einstellungen\Beul:zylomtr{000HQ7FF-AD7A-3FG1-QCPB-27EJ7OREQVVU}
==================== Safe Mode (whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
==================== EXE Association (whitelisted) =============
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
==================== MSCONFIG/TASK MANAGER disabled items =========
(Currently there is no automatic fix for this section.)
MSCONFIG\startupreg: AGRSMMSG => AGRSMMSG.exe
MSCONFIG\startupreg: AntivirusRegistration => C:\Programme\CA\Etrust Antivirus\Register.exe
MSCONFIG\startupreg: AnyDVD => "C:\Programme\SlySoft\AnyDVD\AnyDVD.exe"
MSCONFIG\startupreg: ATICCC => "C:\Programme\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay
MSCONFIG\startupreg: ATIPTA => C:\Programme\ATI Technologies\ATI Control Panel\atiptaxx.exe
MSCONFIG\startupreg: avgnt => "C:\Programme\Avira\AntiVir Desktop\avgnt.exe" /min
MSCONFIG\startupreg: Obqyofalu => "C:\Dokumente und Einstellungen\Beul\Anwendungsdaten\Zyquo\vyoq.exe"
MSCONFIG\startupreg: Qoavgiihem => "C:\Dokumente und Einstellungen\Beul\Anwendungsdaten\Biikeq\iveho.exe"
MSCONFIG\startupreg: swg => "C:\Programme\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
========================= Accounts: ==========================
Administrator (S-1-5-21-3143356383-4098776177-3215239415-500 - Administrator - Enabled) => %SystemDrive%\Dokumente und Einstellungen\Administrator.COMPUTERNAME
ASPNET (S-1-5-21-3143356383-4098776177-3215239415-1004 - Limited - Enabled)
Beul (S-1-5-21-3143356383-4098776177-3215239415-1006 - Administrator - Enabled) => %SystemDrive%\Dokumente und Einstellungen\Beul
Gast (S-1-5-21-3143356383-4098776177-3215239415-501 - Limited - Disabled)
Hilfeassistent (S-1-5-21-3143356383-4098776177-3215239415-1005 - Limited - Disabled)
SUPPORT_388945a0 (S-1-5-21-3143356383-4098776177-3215239415-1002 - Limited - Disabled)
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (01/22/2015 06:41:28 PM) (Source: Ci) (EventID: 4127) (User: )
Description: Inhaltsindex auf c:\system volume information\catalog.wci konnte nicht initialisiert werden. Fehler 3221225478.
Error: (01/22/2015 06:41:28 PM) (Source: Ci) (EventID: 4127) (User: )
Description: Inhaltsindex auf c:\system volume information\catalog.wci konnte nicht initialisiert werden. Fehler 3221225478.
Error: (01/20/2015 04:52:18 PM) (Source: Ci) (EventID: 4127) (User: )
Description: Inhaltsindex auf c:\system volume information\catalog.wci konnte nicht initialisiert werden. Fehler 3221225478.
Error: (01/20/2015 04:52:18 PM) (Source: Ci) (EventID: 4127) (User: )
Description: Inhaltsindex auf c:\system volume information\catalog.wci konnte nicht initialisiert werden. Fehler 3221225478.
Error: (01/20/2015 04:51:44 PM) (Source: Ci) (EventID: 4127) (User: )
Description: Inhaltsindex auf c:\system volume information\catalog.wci konnte nicht initialisiert werden. Fehler 3221225478.
Error: (01/20/2015 04:51:44 PM) (Source: Ci) (EventID: 4127) (User: )
Description: Inhaltsindex auf c:\system volume information\catalog.wci konnte nicht initialisiert werden. Fehler 3221225478.
Error: (01/20/2015 04:49:23 PM) (Source: Ci) (EventID: 4127) (User: )
Description: Inhaltsindex auf c:\system volume information\catalog.wci konnte nicht initialisiert werden. Fehler 3221225478.
Error: (01/20/2015 04:49:23 PM) (Source: Ci) (EventID: 4127) (User: )
Description: Inhaltsindex auf c:\system volume information\catalog.wci konnte nicht initialisiert werden. Fehler 3221225478.
Error: (01/20/2015 04:46:16 PM) (Source: Brother BrLog) (EventID: 1001) (User: )
Description: STI BrtSTI: [2015/01/20 16:46:16.933]: [00001768]: SendSKeySettingToDevice:: Snmp Load Error[0] To[192.168.178.33]
Error: (01/20/2015 03:32:43 PM) (Source: Ci) (EventID: 4127) (User: )
Description: Inhaltsindex auf c:\system volume information\catalog.wci konnte nicht initialisiert werden. Fehler 3221225478.
System errors:
=============
Error: (01/22/2015 06:33:44 PM) (Source: WMPNetworkSvc) (EventID: 14344) (User: )
Description: Ein neuer Medienserver konnte nicht initialisiert werden, da ein Fehler "0xc00d2711" in "WMCreateDeviceRegistration()" aufgetreten ist. Die Komponenten "Windows Media DRM" auf dem Computer sind möglicherweise beschädigt. Überprüfen Sie, ob die geschützten Dateien richtig in Windows Media Player wiedergegeben werden, und starten Sie dann den "WMPNetworkSvc"-Dienst neu.
Error: (01/22/2015 06:33:43 PM) (Source: WMPNetworkSvc) (EventID: 14344) (User: )
Description: Ein neuer Medienserver konnte nicht initialisiert werden, da ein Fehler "0xc00d2711" in "WMCreateDeviceRegistration()" aufgetreten ist. Die Komponenten "Windows Media DRM" auf dem Computer sind möglicherweise beschädigt. Überprüfen Sie, ob die geschützten Dateien richtig in Windows Media Player wiedergegeben werden, und starten Sie dann den "WMPNetworkSvc"-Dienst neu.
Error: (01/20/2015 04:52:16 PM) (Source: Wechselmediendienst) (EventID: 111) (User: )
Description: Der Wechselmediendienst konnte die Medien in Laufwerk Laufwerk 0 der Bibliothek Generic MS/SD CombMMC/SD USB Device nicht laden.
Error: (01/20/2015 04:52:13 PM) (Source: Wechselmediendienst) (EventID: 111) (User: )
Description: Der Wechselmediendienst konnte die Medien in Laufwerk Laufwerk 0 der Bibliothek Generic MS/SD CombMMC/SD USB Device nicht laden.
Error: (01/20/2015 04:51:38 PM) (Source: Wechselmediendienst) (EventID: 111) (User: )
Description: Der Wechselmediendienst konnte die Medien in Laufwerk Laufwerk 0 der Bibliothek Generic MS/SD CombMMC/SD USB Device nicht laden.
Error: (01/20/2015 04:51:35 PM) (Source: Wechselmediendienst) (EventID: 111) (User: )
Description: Der Wechselmediendienst konnte die Medien in Laufwerk Laufwerk 0 der Bibliothek Generic MS/SD CombMMC/SD USB Device nicht laden.
Error: (01/20/2015 04:49:13 PM) (Source: Wechselmediendienst) (EventID: 111) (User: )
Description: Der Wechselmediendienst konnte die Medien in Laufwerk Laufwerk 0 der Bibliothek Generic MS/SD CombMMC/SD USB Device nicht laden.
Error: (01/20/2015 04:49:10 PM) (Source: Wechselmediendienst) (EventID: 111) (User: )
Description: Der Wechselmediendienst konnte die Medien in Laufwerk Laufwerk 0 der Bibliothek Generic MS/SD CombMMC/SD USB Device nicht laden.
Error: (01/20/2015 03:32:37 PM) (Source: Wechselmediendienst) (EventID: 111) (User: )
Description: Der Wechselmediendienst konnte die Medien in Laufwerk Laufwerk 0 der Bibliothek Generic MS/SD CombMMC/SD USB Device nicht laden.
Error: (01/20/2015 03:32:33 PM) (Source: Wechselmediendienst) (EventID: 111) (User: )
Description: Der Wechselmediendienst konnte die Medien in Laufwerk Laufwerk 0 der Bibliothek Generic MS/SD CombMMC/SD USB Device nicht laden.
Microsoft Office Sessions:
=========================
Error: (01/22/2015 06:41:28 PM) (Source: Ci) (EventID: 4127) (User: )
Description: c:\system volume information\catalog.wci3221225478
Error: (01/22/2015 06:41:28 PM) (Source: Ci) (EventID: 4127) (User: )
Description: c:\system volume information\catalog.wci3221225478
Error: (01/20/2015 04:52:18 PM) (Source: Ci) (EventID: 4127) (User: )
Description: c:\system volume information\catalog.wci3221225478
Error: (01/20/2015 04:52:18 PM) (Source: Ci) (EventID: 4127) (User: )
Description: c:\system volume information\catalog.wci3221225478
Error: (01/20/2015 04:51:44 PM) (Source: Ci) (EventID: 4127) (User: )
Description: c:\system volume information\catalog.wci3221225478
Error: (01/20/2015 04:51:44 PM) (Source: Ci) (EventID: 4127) (User: )
Description: c:\system volume information\catalog.wci3221225478
Error: (01/20/2015 04:49:23 PM) (Source: Ci) (EventID: 4127) (User: )
Description: c:\system volume information\catalog.wci3221225478
Error: (01/20/2015 04:49:23 PM) (Source: Ci) (EventID: 4127) (User: )
Description: c:\system volume information\catalog.wci3221225478
Error: (01/20/2015 04:46:16 PM) (Source: Brother BrLog) (EventID: 1001) (User: )
Description: STIBrtSTI: [2015/01/20 16:46:16.933]: [00001768]: SendSKeySettingToDevice:: Snmp Load Error[0] To[192.168.178.33]
Error: (01/20/2015 03:32:43 PM) (Source: Ci) (EventID: 4127) (User: )
Description: c:\system volume information\catalog.wci3221225478
==================== Memory info ===========================
Processor: AMD Sempron(tm) Processor 3000+
Percentage of memory in use: 60%
Total physical RAM: 1534.48 MB
Available physical RAM: 603.64 MB
Total Pagefile: 2152.8 MB
Available Pagefile: 1291.49 MB
Total Virtual: 2047.88 MB
Available Virtual: 1927.35 MB
==================== Drives ================================
Drive c: (BOOT) (Fixed) (Total:93.16 GB) (Free:63.92 GB) NTFS ==>[Drive with boot components (Windows XP)]
Drive d: (BACKUP) (Fixed) (Total:89.24 GB) (Free:88.12 GB) NTFS
Drive e: (RECOVER) (Fixed) (Total:3.9 GB) (Free:0.86 GB) FAT32
Drive i: () (Removable) (Total:1.89 GB) (Free:1.89 GB) FAT
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (Size: 186.3 GB) (Disk ID: F33DF33D)
Partition 1: (Active) - (Size=93.2 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=93.2 GB) - (Type=OF Extended)
========================================================
Disk: 2 (Size: 1.9 GB) (Disk ID: 00000000)
Partition: GPT Partition Type.
==================== End Of Log ============================
|
|
23.01.2015, 12:13
| #4 |
| /// the machine /// TB-Ausbilder | Provider meldet Virusbefall hi, Downloade dir bitte  Malwarebytes Anti-Rootkit und speichere es auf deinem Desktop.
Starte keine andere Datei in diesem Ordner ohne Anweisung eines Helfers Downloade dir bitte  TDSSKiller.exe und speichere diese Datei auf dem Desktop
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
23.01.2015, 12:47
| #5 |
| | Provider meldet Virusbefall kann mbar nicht downloaden 404. That’s an error. The requested URL /v1/mbar/beta/data/mbar-1.08.3.1004.exe was not found on this server. That’s all we know. das kommt immer nur! habe Malwarebytes Anti-Malware 2.0.4.1028, geht das auch? |
|
23.01.2015, 13:10
| #6 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Provider meldet Virusbefall @schrauber: FYI => http://www.trojaner-board.de/162991-...meinem-pc.html TO wollte auch eigentlich von sich aus auf ein aktuelles OS umsteigen. Oder findest du, dass eine Bereinigung von Windows XP jetzt noch Sinn macht?
__________________ --> Provider meldet Virusbefall |
|
23.01.2015, 13:21
| #7 |
| /// the machine /// TB-Ausbilder | Provider meldet Virusbefall @cosinus wenn der TO nicht lernen will breinige ich lieber, bevor er mit der Kiste andere gefährdet oder irgendwann im Knast landet. MBAM geht auch, aber Rootkitscan aktivieren.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
23.01.2015, 13:25
| #8 | |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Provider meldet VirusbefallZitat:
__________________ Logfiles bitte immer in CODE-Tags posten |
|
23.01.2015, 16:03
| #9 |
| | Provider meldet Virusbefall TDSS hatte keinen Fund Code:
ATTFilter 15:08:55.0828 0x062c TDSS rootkit removing tool 3.0.0.44 Jan 22 2015 08:27:04
15:09:13.0937 0x062c ============================================================
============================================================
15:09:17.0390 0x062c \Device\Harddisk0\DR0:
15:09:17.0390 0x062c MBR partitions:
15:09:17.0390 0x062c \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0xBA50E02
15:09:17.0390 0x062c \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0xBA50E80, BlocksNum 0xB27CAC3
15:09:17.0406 0x062c \Device\Harddisk0\DR0\Partition3: MBR, Type 0xB, StartLBA 0x16CCD982, BlocksNum 0x7D043F
15:09:17.0406 0x062c \Device\Harddisk2\DR5:
15:09:17.0406 0x062c MBR partitions:
15:09:17.0406 0x062c \Device\Harddisk2\DR5\Partition1: MBR, Type 0x6, StartLBA 0xF9, BlocksNum 0x3C8907
15:09:17.0406 0x062c ============================================================
15:09:17.0453 0x062c C: <-> \Device\Harddisk0\DR0\Partition1
15:09:17.0484 0x062c D: <-> \Device\Harddisk0\DR0\Partition2
15:09:17.0484 0x062c E: <-> \Device\Harddisk0\DR0\Partition3
15:09:17.0484 0x062c ============================================================
15:09:17.0484 0x062c Initialize success
15:09:17.0484 0x062c ============================================================
15:09:30.0296 0x0f34 ============================================================
15:09:30.0296 0x0f34 Scan started
15:09:30.0296 0x0f34 Mode: Manual;
15:09:30.0296 0x0f34 ============================================================
15:09:30.0296 0x0f34 KSN ping started
15:09:44.0718 0x0f34 KSN ping finished: true
15:09:46.0000 0x0f34 ================ Scan system memory ========================
15:09:46.0000 0x0f34 System memory - ok
15:09:46.0000 0x0f34 ================ Scan services =============================
15:09:46.0078 0x0f34 Abiosdsk - ok
15:09:46.0078 0x0f34 abp480n5 - ok
15:09:46.0125 0x0f34 [ AC407F1A62C3A300B4F2B5A9F1D55B2C, 31F5FC61B37E22100B3A52A590295A7E827FFC581FA9960C64B9032452AAECED ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
15:09:46.0140 0x0f34 ACPI - ok
15:09:46.0218 0x0f34 [ 9E1CA3160DAFB159CA14F83B1E317F75, 13B3E897B0E819BF734449416D9EC6EBCAC89538EC69BF48C068593B82D57004 ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
15:09:46.0234 0x0f34 ACPIEC - ok
15:09:46.0234 0x0f34 adpu160m - ok
15:09:46.0265 0x0f34 [ 8BED39E3C35D6A489438B8141717A557, 1B5796E56B0927360CE0759641B1151828BC0A9E45620D2B2D880491F5CE33D0 ] aec C:\WINDOWS\system32\drivers\aec.sys
15:09:46.0296 0x0f34 aec - ok
15:09:46.0328 0x0f34 [ 1E44BC1E83D8FD2305F8D452DB109CF9, CF5EC07E0B589FA2A4701C6CFD69E893FC3ABF274AD57AE3C13FFE49063B02C8 ] AFD C:\WINDOWS\System32\drivers\afd.sys
15:09:46.0328 0x0f34 AFD - ok
15:09:46.0421 0x0f34 [ 0C361D7AE68E90D615542640D571CCF4, 71E8607C43BB63D5A56CA62B680144EF0CF5BD9D11311918284EBC23CC54FEC8 ] AgereSoftModem C:\WINDOWS\system32\DRIVERS\AGRSM.sys
15:09:46.0515 0x0f34 AgereSoftModem - ok
15:09:46.0515 0x0f34 Aha154x - ok
15:09:46.0531 0x0f34 aic78u2 - ok
15:09:46.0546 0x0f34 aic78xx - ok
15:09:46.0703 0x0f34 [ BEA942FF21154FEE4F71DDD477621C70, 27BA7A74DBEFE082437302248A51C7A0F61CBCC7B540A373C3AAE0BD822A8230 ] ALCXWDM C:\WINDOWS\system32\drivers\ALCXWDM.SYS
15:09:46.0843 0x0f34 ALCXWDM - ok
15:09:46.0890 0x0f34 [ 738D80CC01D7BC7584BE917B7F544394, DCC17AAEF5CDDF52FAAC3CC6904EF421CD595F66318A2370BEE261D5C3A8E340 ] Alerter C:\WINDOWS\system32\alrsvc.dll
15:09:46.0906 0x0f34 Alerter - ok
15:09:46.0921 0x0f34 [ 190CD73D4984F94D823F9444980513E5, 93A32C2495CCA094F768BA707C74DA5C00B8A88A9236DD1A297439A7C2E6C6FA ] ALG C:\WINDOWS\System32\alg.exe
15:09:46.0921 0x0f34 ALG - ok
15:09:46.0921 0x0f34 AliIde - ok
15:09:46.0968 0x0f34 [ 769844EB65DF6A62AA51B886290FE51D, C63B3D821E0556870CAD0E53012EB0153AF69AB23C58D7D63FF92B8DC7D9FB01 ] AmdK8 C:\WINDOWS\system32\DRIVERS\AmdK8.sys
15:09:46.0984 0x0f34 AmdK8 - ok
15:09:46.0984 0x0f34 amsint - ok
15:09:47.0125 0x0f34 [ C2700D35AA42311A32DF7EA09630B401, 35B305916DB91EBC86CA70AF23140684F57CF527A0ADE099A79610335C61E861 ] AntiVirSchedulerService C:\Programme\Avira\AntiVir Desktop\sched.exe
15:09:47.0218 0x0f34 AntiVirSchedulerService - ok
15:09:47.0281 0x0f34 [ C2700D35AA42311A32DF7EA09630B401, 35B305916DB91EBC86CA70AF23140684F57CF527A0ADE099A79610335C61E861 ] AntiVirService C:\Programme\Avira\AntiVir Desktop\avguard.exe
15:09:47.0296 0x0f34 AntiVirService - ok
15:09:47.0296 0x0f34 AppMgmt - ok
15:09:47.0343 0x0f34 [ B5B8A80875C1DEDEDA8B02765642C32F, AD0C71D73B1B8225351FBF4FFB43001A32B4DAE69504C59970CD2428BB33D4EF ] Arp1394 C:\WINDOWS\system32\DRIVERS\arp1394.sys
15:09:47.0359 0x0f34 Arp1394 - ok
15:09:47.0375 0x0f34 asc - ok
15:09:47.0375 0x0f34 asc3350p - ok
15:09:47.0390 0x0f34 asc3550 - ok
15:09:47.0500 0x0f34 [ 0E5E4957549056E2BF2C49F4F6B601AD, F7F19FDC906B719A3516D30A9B4A2262C8CC5B36B94E3D4195C345EC4610FF2B ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
15:09:47.0515 0x0f34 aspnet_state - ok
15:09:47.0531 0x0f34 [ B153AFFAC761E7F5FCFA822B9C4E97BC, 7E60F572A6B3C6219E3C86225AA37243AFFD74337DB7F108B04778042E5CC959 ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
15:09:47.0531 0x0f34 AsyncMac - ok
15:09:47.0562 0x0f34 [ 9F3A2F5AA6875C72BF062C712CFA2674, B4DF1D2C56A593C6B54DE57395E3B51D288F547842893B32B0F59228A0CF70B9 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
15:09:47.0562 0x0f34 atapi - ok
15:09:47.0578 0x0f34 Atdisk - ok
15:09:47.0609 0x0f34 [ A2EAEB497CA29ECAEAF0DF66AD85C57D, 2745CBD114195735285A9D25A9F44B69CC5DD0CF4127109BC2067CF141D3803C ] Ati HotKey Poller C:\WINDOWS\system32\Ati2evxx.exe
15:09:47.0625 0x0f34 Ati HotKey Poller - ok
15:09:47.0703 0x0f34 [ 312A17DFF710A0F4E6D4DD1D52EAD1A8, 168DE1AAF7BAE3863B58FC4E4B83698489082892F08450BB3A31C178AEF3F635 ] ATI Smart C:\WINDOWS\system32\ati2sgag.exe
15:09:47.0734 0x0f34 ATI Smart - ok
15:09:47.0859 0x0f34 [ 492BD2A5F65F218D4EDE5764A3BB67E9, D557CD7EA241513E1C43D791F7B5B9E212CED77556A91AF119E15A5C00C1982D ] ati2mtag C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
15:09:47.0937 0x0f34 ati2mtag - ok
15:09:47.0968 0x0f34 [ 9916C1225104BA14794209CFA8012159, 5D6F05F715C52A16D05CAE15C3DFE77A139A7F27F7AE710EC9A10F9EE05115A1 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
15:09:47.0984 0x0f34 Atmarpc - ok
15:09:48.0015 0x0f34 [ 58ED0D5452DF7BE732193E7999C6B9A4, 254E2ECF592DDA2E3E6CA9F6F3E77926E2265586A7937BA95199ED47BCDE69A3 ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
15:09:48.0015 0x0f34 AudioSrv - ok
15:09:48.0046 0x0f34 [ D9F724AA26C010A217C97606B160ED68, 329B5118F2409731D06FDAE85B6ADD64A048292801BCB3546651CEB303111695 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
15:09:48.0062 0x0f34 audstub - ok
15:09:48.0109 0x0f34 [ F581D2F3E30C1CA7206D660FB7689F98, 53647E017AE58788922F72285DD63E8CD2F9E922B31F7C6711E547BC6B360154 ] avgntflt C:\WINDOWS\system32\DRIVERS\avgntflt.sys
15:09:48.0125 0x0f34 avgntflt - ok
15:09:48.0171 0x0f34 [ A2EE407D6D3757A2FFD5095DD16AE1F2, BBFCC5DC116D6A3AF85591955541528DB0CB1FE81D353F717BE7CAD3F7F446F4 ] avipbb C:\WINDOWS\system32\DRIVERS\avipbb.sys
15:09:48.0203 0x0f34 avipbb - ok
15:09:48.0281 0x0f34 [ 6F77BBB8FC69D26132309EB4CE7A4E0E, 39E1E20F7CE6B2A784765BB1BE3AC539EDD2889880F78D14C340129E9DB7A43E ] Avira.OE.ServiceHost C:\Programme\Avira\My Avira\Avira.OE.ServiceHost.exe
15:09:48.0296 0x0f34 Avira.OE.ServiceHost - ok
15:09:48.0328 0x0f34 [ D8C712305F73CD34D1B344810E522728, 49A474FF6CA44E8427D7A8290B47395125B0148AF384CF2B3B1FA495A4718CBA ] avkmgr C:\WINDOWS\system32\DRIVERS\avkmgr.sys
15:09:48.0343 0x0f34 avkmgr - ok
15:09:48.0390 0x0f34 [ DA1F27D85E0D1525F6621372E7B685E9, 5A81A46A3BDD19DAFC6C87D277267A5D44F3A1B5302F2CC1111D84B7BAD5610D ] Beep C:\WINDOWS\system32\drivers\Beep.sys
15:09:48.0390 0x0f34 Beep - ok
15:09:48.0437 0x0f34 [ D6F603772A789BB3228F310D650B8BD1, A539025C70FD998A9B8703DE05CAE5E99BC721D8852EA561EBC2DD20CB371D2E ] BITS C:\WINDOWS\system32\qmgr.dll
15:09:48.0484 0x0f34 BITS - ok
15:09:48.0515 0x0f34 [ B71549F23736ADF83A571061C47777FD, A1D0320736EE777030A543DCA086367EB5A5B6F95088B9C22D8E09326C3A39A9 ] Browser C:\WINDOWS\System32\browser.dll
15:09:48.0515 0x0f34 Browser - ok
15:09:48.0578 0x0f34 [ EA7E57F87D6FEE5FD6C5F813C04E8CD2, 1EB84F4DEE3034FAFBEA2A3F84EECE036E803872DA94D54E958E9F2F09519E88 ] BrYNSvc C:\Programme\Browny02\BrYNSvc.exe
15:09:48.0593 0x0f34 BrYNSvc - ok
15:09:48.0640 0x0f34 [ 66B71DD7794D3B8A88CCB645896D3E53, E17221F48902B17FA853AD8FBD1E333B7B1BB1AC576796BBDC4988BA73B7648D ] CardReaderFilter C:\WINDOWS\system32\Drivers\USBCRFT.SYS
15:09:48.0656 0x0f34 CardReaderFilter - ok
15:09:48.0687 0x0f34 [ 90A673FC8E12A79AFBED2576F6A7AAF9, BDE7858A3457DB979FEDD8577FA6321BF72848E4A7BF9F173C78A6A10CBB3EBE ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
15:09:48.0687 0x0f34 cbidf2k - ok
15:09:48.0718 0x0f34 [ 0BE5AEF125BE881C4F854C554F2B025C, 1770DD70B3F115A0EF460907DEDC1E4B7241C08615A98F194D61A49C3E2BAA54 ] CCDECODE C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
15:09:48.0718 0x0f34 CCDECODE - ok
15:09:48.0734 0x0f34 cd20xrnt - ok
15:09:48.0750 0x0f34 [ C1B486A7658353D33A10CC15211A873B, AA4DD9E7AAE5AAB1146B360B17001F975D2F29A1281CF7B13E7136480410F347 ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
15:09:48.0765 0x0f34 Cdaudio - ok
15:09:48.0796 0x0f34 [ C885B02847F5D2FD45A24E219ED93B32, B26B2F8E3A831E2B65EB0C5195B0645CD50E22615CE79C9B0B391CD563B121DB ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
15:09:48.0812 0x0f34 Cdfs - ok
15:09:48.0828 0x0f34 [ 1F4260CC5B42272D71F79E570A27A4FE, B51C2A3ED3C309953D0EA45869C8E464C10F2533DADE9E0286AF674979098D1D ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
15:09:48.0843 0x0f34 Cdrom - ok
15:09:48.0843 0x0f34 Changer - ok
15:09:48.0890 0x0f34 [ 28E3040D1F1CA2008CD6B29DFEBC9A5E, ACB458E8A11AA2143734A5A0281973D95158E6402A6453F98F9832D1E19B01F9 ] CiSvc C:\WINDOWS\system32\cisvc.exe
15:09:48.0890 0x0f34 CiSvc - ok
15:09:48.0906 0x0f34 [ 778A30ED3C134EB7E406AFC407E9997D, 3E6AD115AB2596EB001BC21AEADDBC75F27C42DB90C986B7AD17743CE631234E ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
15:09:48.0921 0x0f34 ClipSrv - ok
15:09:48.0968 0x0f34 [ D87ACAED61E417BBA546CED5E7E36D9C, 14AC6034A5BC0FB2A1AFDAD42BEF4DE641556E54AD30D0C46765660A4BE55462 ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
15:09:48.0984 0x0f34 clr_optimization_v2.0.50727_32 - ok
15:09:48.0984 0x0f34 CmdIde - ok
15:09:49.0000 0x0f34 COMSysApp - ok
15:09:49.0015 0x0f34 Cpqarray - ok
15:09:49.0031 0x0f34 [ 611F824E5C703A5A899F84C5F1699E4D, 9EFA5612FE58E9974E4CC13D39D91D7B5DEA3ED66BEFBED3AAE6D2800FD8162A ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
15:09:49.0046 0x0f34 CryptSvc - ok
15:09:49.0062 0x0f34 dac2w2k - ok
15:09:49.0062 0x0f34 dac960nt - ok
15:09:49.0109 0x0f34 [ 3127AFBF2C1ED0AB14A1BBB7AAECB85B, ECFBACE3CBF2384948EA1C445BDA3955EB4F44A9874286E6537C67DC1283E5B0 ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
15:09:49.0125 0x0f34 DcomLaunch - ok
15:09:49.0140 0x0f34 dgderdrv - ok
15:09:49.0187 0x0f34 [ C29A1C9B75BA38FA37F8C44405DEC360, 7476D8BC4380CDE56764B2034AF3741DA4ED00F315E41C9A02B5EAD04374F241 ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
15:09:49.0187 0x0f34 Dhcp - ok
15:09:49.0203 0x0f34 [ 044452051F3E02E7963599FC8F4F3E25, 584BDDB074618BE76454CF90E74829CFF588B5B5FAEB793E2F7AAD26352DD689 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
15:09:49.0218 0x0f34 Disk - ok
15:09:49.0218 0x0f34 dmadmin - ok
15:09:49.0281 0x0f34 [ 0DCFC8395A99FECBB1EF771CEC7FE4EA, 89B0AEE5BE01B9FE4FF2989FF16DB6121721ACDFCE6D9655C0ACD321D8C308BE ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
15:09:49.0328 0x0f34 dmboot - ok
15:09:49.0359 0x0f34 [ 53720AB12B48719D00E327DA470A619A, 800264866A6267C9000A85D00095D57908D059D737E5F28C9C4049B884C46228 ] dmio C:\WINDOWS\system32\drivers\dmio.sys
15:09:49.0375 0x0f34 dmio - ok
15:09:49.0406 0x0f34 [ E9317282A63CA4D188C0DF5E09C6AC5F, D41E002F555FE9015EF620975255F58BB79198CA1FF0E09EC950CB450FF77CF7 ] dmload C:\WINDOWS\system32\drivers\dmload.sys
15:09:49.0406 0x0f34 dmload - ok
15:09:49.0437 0x0f34 [ 25C83FFBBA13B554EB6D59A9B2E2EE78, 9FBD655ED3E9163AE11EC207F283E387EFBA5A23108EC790BAE4846B35E66F16 ] dmserver C:\WINDOWS\System32\dmserver.dll
15:09:49.0453 0x0f34 dmserver - ok
15:09:49.0468 0x0f34 [ 8A208DFCF89792A484E76C40E5F50B45, 4E40E2EB38C6254E7CAA488200E89EE7DEBBBA773890BC6A84313CC68178D54F ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
15:09:49.0484 0x0f34 DMusic - ok
15:09:49.0515 0x0f34 [ 407F3227AC618FD1CA54B335B083DE07, 96B8E734648FE9A4EBA59C096C8779BD1A11A93A6303AFD438A406C8122D36C6 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
15:09:49.0531 0x0f34 Dnscache - ok
15:09:49.0562 0x0f34 [ 676E36C4FF5BCEA1900F44182B9723E6, 740CF18BD40E00FEA26CF0E6340C5D18F7D0B4390055FAEEC258B3AA790C4AE9 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
15:09:49.0578 0x0f34 Dot3svc - ok
15:09:49.0593 0x0f34 dpti2o - ok
15:09:49.0609 0x0f34 [ 8F5FCFF8E8848AFAC920905FBD9D33C8, C8C6FB97AB0871C8C88A2201525A5CF10D5131CB6980D32692ED7A8F58399AD5 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
15:09:49.0609 0x0f34 drmkaud - ok
15:09:49.0625 0x0f34 [ 4E4F2FDDAB0A0736D7671134DCCE91FB, 8E2C57D1A006856C47CBDD5765A9DD317DB205B26DA8BFC70555A506257A1CD9 ] EapHost C:\WINDOWS\System32\eapsvc.dll
15:09:49.0640 0x0f34 EapHost - ok
15:09:49.0671 0x0f34 [ 6E883BF518296A40959131C2304AF714, FCBDAB6C9220742821D1A1711D39688889B578E0992F8B41945027DB23E92777 ] EL90XBC C:\WINDOWS\system32\DRIVERS\el90xbc5.sys
15:09:49.0687 0x0f34 EL90XBC - ok
15:09:49.0718 0x0f34 [ 877C18558D70587AA7823A1A308AC96B, 6B336A62112988D855513F45153F73F8470C41A448E9B7438B4A8EC1813AABF1 ] ERSvc C:\WINDOWS\System32\ersvc.dll
15:09:49.0718 0x0f34 ERSvc - ok
15:09:49.0750 0x0f34 [ A3EDBE9053889FB24AB22492472B39DC, 6F2ED6E04BDE2FCA2A8BF9BD2D1D6923DE6EAECB46F582B6C0BD1CF364D65C9E ] Eventlog C:\WINDOWS\system32\services.exe
15:09:49.0750 0x0f34 Eventlog - ok
15:09:49.0812 0x0f34 [ AF4F6B5739D18CA7972AB53E091CBC74, A399E2CC026730D3A429727AAB48093B9F1E5DD8EB6336519C7F16182FDB3905 ] EventSystem C:\WINDOWS\system32\es.dll
15:09:49.0812 0x0f34 EventSystem - ok
15:09:49.0843 0x0f34 [ 38D332A6D56AF32635675F132548343E, E6909DB836AF679B4F4D62C7396D6C82769CC7ABB8C919C2AABFE934FCE268F6 ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
15:09:49.0859 0x0f34 Fastfat - ok
15:09:49.0921 0x0f34 [ 2DB7D303C36DDD055215052F118E8E75, BE6E7BBE12A7A4EDF1F1C2935350603970C7426BBCA7A1A6644BB8999123AF17 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
15:09:49.0921 0x0f34 FastUserSwitchingCompatibility - ok
15:09:49.0984 0x0f34 [ 08B8B302AF0D1B3B8543429BBAC8F21F, F3370FE5C4BECB16F0668E6605792EF8096FE06A79D8234E3D6E1B584F2D4E5A ] Fax C:\WINDOWS\system32\fxssvc.exe
15:09:50.0062 0x0f34 Fax - ok
15:09:50.0093 0x0f34 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81, 8307A532AB4D05CBBCE206DC2759497708BF5AAA880BD00F0E4F281D8578A1F5 ] Fdc C:\WINDOWS\system32\DRIVERS\fdc.sys
15:09:50.0109 0x0f34 Fdc - ok
15:09:50.0140 0x0f34 [ 7D53D569892B46738E87F39C9AA8488A, 6B4EFFD94B4C8157321CC0C735AC11723DD44E3BE5ECA2283A16AF48970801CF ] FETND5BV C:\WINDOWS\system32\DRIVERS\fetnd5bv.sys
15:09:50.0156 0x0f34 FETND5BV - ok
15:09:50.0187 0x0f34 [ E9648254056BCE81A85380C0C3647DC4, AE58F498BD1C33360FE3BB9EA22C13EA562206B68E7946B587CB5A6DF94586A1 ] FETNDIS C:\WINDOWS\system32\DRIVERS\fetnd5.sys
15:09:50.0203 0x0f34 FETNDIS - ok
15:09:50.0218 0x0f34 [ B0678A548587C5F1967B0D70BACAD6C1, 7E49910212ED87313F926E4800EA8D34809C287A686CA69B82B79C1A6451F88C ] Fips C:\WINDOWS\system32\drivers\Fips.sys
15:09:50.0234 0x0f34 Fips - ok
15:09:50.0250 0x0f34 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0, 69C271AD5BCEBFD8AE5A769BDD7EC51256DA3A8ADAD5D12E5C0D13F4E82D8805 ] Flpydisk C:\WINDOWS\system32\DRIVERS\flpydisk.sys
15:09:50.0265 0x0f34 Flpydisk - ok
15:09:50.0296 0x0f34 [ B2CF4B0786F8212CB92ED2B50C6DB6B0, 280F5CF8A90F7BEDE73ADD0DD0F8952088133A7CA9A3D3B7041957E33B36845D ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
15:09:50.0312 0x0f34 FltMgr - ok
15:09:50.0375 0x0f34 [ 8BA7C024070F2B7FDD98ED8A4BA41789, 47585006F86B2C6016EC54250A416794792D1E4024FF229C120BC25B684AF66A ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
15:09:50.0390 0x0f34 FontCache3.0.0.0 - ok
15:09:50.0406 0x0f34 [ B07663A810E861EEBFD0EAC7E82CA62D, 9FC5CDE0A0C3D15050056325AACD65B13C4C45ED0DA199ABFB93A691285A3821 ] FsUsbExDisk C:\WINDOWS\system32\FsUsbExDisk.SYS
15:09:50.0421 0x0f34 FsUsbExDisk - ok
15:09:50.0437 0x0f34 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A, EC635E071201A766845D48973772CBE0958942B4162F3F5F70660D114CC877E0 ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
15:09:50.0453 0x0f34 Fs_Rec - ok
15:09:50.0468 0x0f34 [ 8F1955CE42E1484714B542F341647778, 8EB3F99625F409D3032561E8AB44BEFBFBFBA4EC873C2151C92A5CAAF7F2AA55 ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
15:09:50.0484 0x0f34 Ftdisk - ok
15:09:50.0500 0x0f34 [ 3A74C423CF6BCCA6982715878F450A3B, A98D6D377B48D05BE3927F6E93D0DE7741E115C43125C0E0DE6EEFE023DE73BC ] gagp30kx C:\WINDOWS\system32\DRIVERS\gagp30kx.sys
15:09:50.0515 0x0f34 gagp30kx - ok
15:09:50.0531 0x0f34 [ 0A02C63C8B144BD8C86B103DEE7C86A2, 7A3235DD3E1995DD72B212FAEB3ECA2A974434DE9BF6D269EA11BA65A80E7E50 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
15:09:50.0546 0x0f34 Gpc - ok
15:09:50.0593 0x0f34 [ F172AD4E906D97ED8F071896FC6789DC, FC10B3CE3DB0D3BF84DFD28E900EB6A11EDAAE32AC50F23CB03AACC6AA496911 ] gupdate C:\Programme\Google\Update\GoogleUpdate.exe
15:09:50.0609 0x0f34 gupdate - ok
15:09:50.0625 0x0f34 [ F172AD4E906D97ED8F071896FC6789DC, FC10B3CE3DB0D3BF84DFD28E900EB6A11EDAAE32AC50F23CB03AACC6AA496911 ] gupdatem C:\Programme\Google\Update\GoogleUpdate.exe
15:09:50.0625 0x0f34 gupdatem - ok
15:09:50.0687 0x0f34 [ 5D4BC124FAAE6730AC002CDB67BF1A1C, 00294F4DC7D17F6DD2A22B9C3299BED40146BA45C972367154D20DB502472551 ] gusvc C:\Programme\Google\Common\Google Updater\GoogleUpdaterService.exe
15:09:50.0718 0x0f34 gusvc - ok
15:09:50.0781 0x0f34 [ CB66BF85BF599BEFD6C6A57C2E20357F, 55D3A0F9279FF316766F42548FCB61C452942B08A37590C4892DF110BE4E53C6 ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
15:09:50.0781 0x0f34 helpsvc - ok
15:09:50.0796 0x0f34 HidServ - ok
15:09:50.0796 0x0f34 [ CCF82C5EC8A7326C3066DE870C06DAF1, 93395FA4C26B2E82DC8B7025ED3BCF583885E5D8C5F60CD6EEAA6335D6A126EC ] HidUsb C:\WINDOWS\system32\DRIVERS\hidusb.sys
15:09:50.0812 0x0f34 HidUsb - ok
15:09:50.0843 0x0f34 [ ED29F14101523A6E0E808107405D452C, B8FA987637787BEECC2EB06D36293DAC355523392B49A8C5A9491EEE961917E9 ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
15:09:50.0859 0x0f34 hkmsvc - ok
15:09:50.0875 0x0f34 hpn - ok
15:09:50.0906 0x0f34 [ F80A415EF82CD06FFAF0D971528EAD38, 524D9E9201572929522F6805011783711B7C0F76308B924C89CF75F4B7A1FDF3 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
15:09:50.0921 0x0f34 HTTP - ok
15:09:50.0953 0x0f34 [ 9E4ADB854CEBCFB81A4B36718FEECD16, 677AB64460775686F8366D6BF35D420A2486C3F07338A00A7C2788A5142B9F08 ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
15:09:50.0968 0x0f34 HTTPFilter - ok
15:09:51.0015 0x0f34 [ A439EBD90AFDB1F516C875B9B317832F, 73DEC8D53C0C6DA7806AFC0617652A660BD08BEEDA288962C44F846AFC4C5A6F ] hwpsgt C:\WINDOWS\system32\DRIVERS\hwpsgt.sys
15:09:51.0031 0x0f34 hwpsgt - ok
15:09:51.0031 0x0f34 i2omgmt - ok
15:09:51.0046 0x0f34 i2omp - ok
15:09:51.0062 0x0f34 [ E283B97CFBEB86C1D86BAED5F7846A92, 7664F791D08C80DF1E52B34BE69F073AA645610C4BD975F498254807602374AB ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
15:09:51.0078 0x0f34 i8042prt - ok
15:09:51.0187 0x0f34 [ 1CF03C69B49ACB70C722DF92755C0C8C, C227850C133F29BB9DED91A26A22AE077FD69629CEF35B67D305F016C4BDAA81 ] IDriverT C:\Programme\Gemeinsame Dateien\InstallShield\Driver\11\Intel 32\IDriverT.exe
15:09:51.0203 0x0f34 IDriverT - ok
15:09:51.0343 0x0f34 [ C01AC32DC5C03076CFB852CB5DA5229C, A4D7749220B5BC965D96A267F1E02FE8284A230BA249109207BD4B9EA8DFAC96 ] idsvc C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
15:09:51.0531 0x0f34 idsvc - ok
15:09:51.0546 0x0f34 [ 083A052659F5310DD8B6A6CB05EDCF8E, 48D39B03FFB6FAA1529B774443BA12618AE3982D9F65A7B9D18F2269F78B31F4 ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
15:09:51.0593 0x0f34 Imapi - ok
15:09:51.0656 0x0f34 [ D4B413AA210C21E46AEDD2BA5B68D38E, 2309622867AA8FC832A729FA78F48742D4BD6CA0DAFBFB9DDB0772D671E1ED75 ] ImapiService C:\WINDOWS\system32\imapi.exe
15:09:51.0656 0x0f34 ImapiService - ok
15:09:51.0781 0x0f34 ini910u - ok
15:09:51.0906 0x0f34 IntelIde - ok
15:09:52.0062 0x0f34 [ 3BB22519A194418D5FEC05D800A19AD0, F6662F440950596DC1382DD1DB5D7891CCEA30A6062BEA942C18445B5F0D8B16 ] Ip6Fw C:\WINDOWS\system32\drivers\ip6fw.sys
15:09:52.0109 0x0f34 Ip6Fw - ok
15:09:52.0156 0x0f34 [ 731F22BA402EE4B62748ADAF6363C182, 5C3BEBD008A5BE4DC2F92076FF41A10DDC01E10EC7E6552213CFA11970811848 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
15:09:52.0171 0x0f34 IpFilterDriver - ok
15:09:52.0218 0x0f34 [ B87AB476DCF76E72010632B5550955F5, E6E74D3A86A7917A8BAED44F8E97CCD2EB171E4E4B27E9907F60D1523FAF319A ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
15:09:52.0234 0x0f34 IpInIp - ok
15:09:52.0250 0x0f34 [ CC748EA12C6EFFDE940EE98098BF96BB, AF523E21C25D9A1715EFEA573E4F52AF5D4FC9F28A2D613F5DB629C186C439E0 ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
15:09:52.0265 0x0f34 IpNat - ok
15:09:52.0296 0x0f34 [ 23C74D75E36E7158768DD63D92789A91, 394D296F38E7D8EFD91A6EEC301D9CE6AF910E35EB9819F1A9E3363863AEDFDC ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
15:09:52.0375 0x0f34 IPSec - ok
15:09:52.0406 0x0f34 [ C93C9FF7B04D772627A3646D89F7BF89, 805FA48E7A46D4F10240BF880A2468F53DEA36E83004399228AB70DB7D20544A ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
15:09:52.0421 0x0f34 IRENUM - ok
15:09:52.0437 0x0f34 [ 6DFB88F64135C525433E87648BDA30DE, 8233EEFBEF36AAA152F2C55D23D7118F0DE40C9C22EB5D9793405A4770889540 ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
15:09:52.0453 0x0f34 isapnp - ok
15:09:52.0546 0x0f34 [ A12175F063302CD68F8FC6D572D7E5FD, 1FCDBBC169A5137DA97B90F6593B8BB3B49D7AD55BE8AFAD763F4FE1D2D4A76C ] JavaQuickStarterService C:\Programme\Java\jre7\bin\jqs.exe
15:09:52.0562 0x0f34 JavaQuickStarterService - ok
15:09:52.0750 0x0f34 [ 1704D8C4C8807B889E43C649B478A452, E854C90CD301F42BE2520CEDAD35E49DF2D43606CF4EEED861B74882118D04D1 ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
15:09:52.0750 0x0f34 Kbdclass - ok
15:09:52.0781 0x0f34 [ 692BCF44383D056AED41B045A323D378, 1A99DEE83FFAF64E73067FC049C0A4CE07D94E4AE31EFA17B38CEFA9E41D67DC ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
15:09:52.0812 0x0f34 kmixer - ok
15:09:52.0843 0x0f34 [ B467646C54CC746128904E1654C750C1, 3BD71BE3663EA23463D236D8A2A2E42DFA10C502BDB4B6E131FAF0FBA748219E ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
15:09:52.0843 0x0f34 KSecDD - ok
15:09:52.0875 0x0f34 [ 2BBDCB79900990F0716DFCB714E72DE7, 6283789201164A9254632D9A3C8A54FE697717D5F8D5A37804D924DC2B70C8E3 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
15:09:52.0890 0x0f34 lanmanserver - ok
15:09:52.0921 0x0f34 [ 1869B14B06B44B44AF70548E1EA3303F, 4D63B4DAF580C86F86837C7D1753E2105B4C52E26D4CA0CAAFE83755EFF7AFBE ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
15:09:52.0921 0x0f34 lanmanworkstation - ok
15:09:52.0937 0x0f34 lbrtfdc - ok
15:09:52.0968 0x0f34 [ 057DA656166893842DD401C25A058C4E, BFC3590C1C80794B3E9D367340A87A1519A014E99DC0E323AA6C00B7CE59521A ] lemsgt C:\WINDOWS\system32\DRIVERS\lemsgt.sys
15:09:52.0984 0x0f34 lemsgt - ok
15:09:53.0015 0x0f34 [ 636714B7D43C8D0C80449123FD266920, F06F6C7DC49B26EFCAC3570C67BA9BD934F62C6F382DA4DD2AB302C7B970F414 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
15:09:53.0015 0x0f34 LmHosts - ok
15:09:53.0062 0x0f34 [ C5EFBD05A5195402121711A6EBBB271F, F015528D38266C75D08168CB900937299864E1995FE474FE06C39D8333DD6CDE ] LVUSBSta C:\WINDOWS\system32\drivers\lvusbsta.sys
15:09:53.0062 0x0f34 LVUSBSta - ok
15:09:53.0078 0x0f34 [ B7550A7107281D170CE85524B1488C98, A3854B16A65436BEF6BEDE918B43B3BE8F00D303660DB5831DD376271DC43239 ] Messenger C:\WINDOWS\System32\msgsvc.dll
15:09:53.0093 0x0f34 Messenger - ok
15:09:53.0109 0x0f34 [ 4AE068242760A1FB6E1A44BF4E16AFA6, 1FB771162B96AAF787AC24867B818DF8511F0780BB094FA9A38C11D8DBFE68BC ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
15:09:53.0125 0x0f34 mnmdd - ok
15:09:53.0156 0x0f34 [ C2F1D365FD96791B037EE504868065D3, 87BD87E08FD00D115524B049F1A3A719AB86557D68968E7090CD0F271F985CAF ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
15:09:53.0171 0x0f34 mnmsrvc - ok
15:09:53.0203 0x0f34 [ 6FB74EBD4EC57A6F1781DE3852CC3362, 0454509D9A31E0202C08AE17294E2682F227D177A3C73B303E4C8332757AFCA1 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
15:09:53.0203 0x0f34 Modem - ok
15:09:53.0250 0x0f34 [ 1992E0D143B09653AB0F9C5E04B0FD65, 1431EC53A65F561C235A08F926C5348A6B21B06A08C075DE8172A88EE0AA634E ] MODEMCSA C:\WINDOWS\system32\drivers\MODEMCSA.sys
15:09:53.0250 0x0f34 MODEMCSA - ok
15:09:53.0265 0x0f34 [ B24CE8005DEAB254C0251E15CB71D802, 6804A8ABDAD5EC846E7F8077D1EE9BA45D6226ACFF42C70BE3DE7C8980EF9EC4 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
15:09:53.0281 0x0f34 Mouclass - ok
15:09:53.0296 0x0f34 [ 66A6F73C74E1791464160A7065CE711A, 3C570FA1E8EF976B83759220FE95BAC9D7D48D607F91B113EDE4790D34ACBD46 ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys
15:09:53.0296 0x0f34 mouhid - ok
15:09:53.0312 0x0f34 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD, 2A5E15ED2C24C6C65EF2F7E1FD93374774076C9D8D451E4422561F4D269C012F ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
15:09:53.0328 0x0f34 MountMgr - ok
15:09:53.0328 0x0f34 mraid35x - ok
15:09:53.0343 0x0f34 [ 11D42BB6206F33FBB3BA0288D3EF81BD, 76ABCFB62C5AC549F58C231F72A99882CDEB74928104B77FE52554765C2B1A22 ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
15:09:53.0375 0x0f34 MRxDAV - ok
15:09:53.0421 0x0f34 [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0, DB9B186F7076D7B94F45041AF7B77C1AD2CAB504D683B459C6CB1C22840ED170 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
15:09:53.0437 0x0f34 MRxSmb - ok
15:09:53.0468 0x0f34 [ 35A031AF38C55F92D28AA03EE9F12CC9, 97245D204C886EE8DCCC2DEAC80A0E358A7E0C1982F77389DA50DCF091FC9DDC ] MSDTC C:\WINDOWS\system32\msdtc.exe
15:09:53.0468 0x0f34 MSDTC - ok
15:09:53.0500 0x0f34 [ C941EA2454BA8350021D774DAF0F1027, C940E978C7B66A713A0FDAB54B5F995DF59D089AFCD96221DD3222948CD49BBD ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
15:09:53.0500 0x0f34 Msfs - ok
15:09:53.0515 0x0f34 MSIServer - ok
15:09:53.0531 0x0f34 [ D1575E71568F4D9E14CA56B7B0453BF1, 4ABE0E24786C0D39FA2B885447E56204CA6942FB175E534DCE675D7BCF0B176A ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
15:09:53.0531 0x0f34 MSKSSRV - ok
15:09:53.0546 0x0f34 [ 325BB26842FC7CCC1FCCE2C457317F3E, C07BE560513B1FB91D756494F0BA4AEEB2E1998DE0E1C21EE83DB1183B0CEE91 ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
15:09:53.0546 0x0f34 MSPCLOCK - ok
15:09:53.0562 0x0f34 [ BAD59648BA099DA4A17680B39730CB3D, 9AD4C7C94C186C8815D0BC75DCAFB962158DA6935A244BA243EDDDEB33F9816C ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
15:09:53.0562 0x0f34 MSPQM - ok
15:09:53.0593 0x0f34 [ AF5F4F3F14A8EA2C26DE30F7A1E17136, AC93A1E4ABB0D038B772E429015567E44CC2EDB66C54DBE23A5F98176FAC1520 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
15:09:53.0593 0x0f34 mssmbios - ok
15:09:53.0609 0x0f34 [ E53736A9E30C45FA9E7B5EAC55056D1D, 38602F280BF69EBA3706AD175AFC1AEB561A8302B4B61E3FECB3C27D7A9BDB41 ] MSTEE C:\WINDOWS\system32\drivers\MSTEE.sys
15:09:53.0625 0x0f34 MSTEE - ok
15:09:53.0656 0x0f34 [ DE6A75F5C270E756C5508D94B6CF68F5, FCC972DDC36C2C44D836913F10004C2C33B11C54DEFFF0C63E0FDF901D2F9261 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
15:09:53.0671 0x0f34 Mup - ok
15:09:53.0687 0x0f34 [ 5B50F1B2A2ED47D560577B221DA734DB, C16A554B6E1A7F5F98C94DFA88163E0F7426506BF2F51FD351B1A05FC0DB3BC5 ] NABTSFEC C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
15:09:53.0703 0x0f34 NABTSFEC - ok
15:09:53.0765 0x0f34 [ 46BB15AE2AC7D025D6D2567B876817BD, 102A101B96D1078C98FA0F871C801A9A8538E20E5686AB0C7680B2F6C92B3165 ] napagent C:\WINDOWS\System32\qagentrt.dll
15:09:53.0796 0x0f34 napagent - ok
15:09:53.0812 0x0f34 [ 1DF7F42665C94B825322FAE71721130D, FE0DCB728471465B39A42A7511F4133021FBA5DF88F88BCB5FE2FF34CFD713F9 ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
15:09:53.0843 0x0f34 NDIS - ok
15:09:53.0859 0x0f34 [ 7FF1F1FD8609C149AA432F95A8163D97, 18CD1FF5AC1EF8A38D1EC53014F2BADD28D9CDF4ECE2EBC2313D08903776F323 ] NdisIP C:\WINDOWS\system32\DRIVERS\NdisIP.sys
15:09:53.0875 0x0f34 NdisIP - ok
15:09:53.0906 0x0f34 [ 0109C4F3850DFBAB279542515386AE22, 4F6DB1E499AC853FD36FD603FBB6D3AC9BDCEB298C7FE1FB59A9236CB46729B2 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
15:09:53.0906 0x0f34 NdisTapi - ok
15:09:53.0921 0x0f34 [ F927A4434C5028758A842943EF1A3849, B1AA3AF150C05307461774925901789456B0CCCD03A5E71ADA4AB58455962BEE ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
15:09:53.0937 0x0f34 Ndisuio - ok
15:09:53.0953 0x0f34 [ EDC1531A49C80614B2CFDA43CA8659AB, 494042F790F33721328B4451E79842E21919681CC421A4F9633EC4D383E06097 ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
15:09:53.0953 0x0f34 NdisWan - ok
15:09:54.0000 0x0f34 [ 2F597BB467E05B1FE3830EABD821B8E0, 141497F5A49D47CCE3C9289644F4BD838DCB238F6D8E847FC006652E21FE02AC ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
15:09:54.0000 0x0f34 NDProxy - ok
15:09:54.0015 0x0f34 [ 5D81CF9A2F1A3A756B66CF684911CDF0, 7989C36607CAEA17AFA2C1C9904145CA0714A54B9F712D9D4C1AB140D0B2CC0C ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
15:09:54.0031 0x0f34 NetBIOS - ok
15:09:54.0046 0x0f34 [ 74B2B2F5BEA5E9A3DC021D685551BD3D, 7932B71F98B4122BE88F576BF6D745A757AE378A48924B7F4358837B75640A82 ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
15:09:54.0078 0x0f34 NetBT - ok
15:09:54.0109 0x0f34 [ 8ACE4251BFFD09CE75679FE940E996CC, 81969521B5EAEA09ECA63058BE9697BB69AF2596339CA9DF0CFEDC031DCFDC7E ] NetDDE C:\WINDOWS\system32\netdde.exe
15:09:54.0125 0x0f34 NetDDE - ok
15:09:54.0140 0x0f34 [ 8ACE4251BFFD09CE75679FE940E996CC, 81969521B5EAEA09ECA63058BE9697BB69AF2596339CA9DF0CFEDC031DCFDC7E ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
15:09:54.0156 0x0f34 NetDDEdsdm - ok
15:09:54.0203 0x0f34 [ AFB8261B56CBA0D86AEB6DF682AF9785, 104D96F1F19DD4CE492064ACC9634406A019EAE20B42D03198E400E661897127 ] Netlogon C:\WINDOWS\system32\lsass.exe
15:09:54.0203 0x0f34 Netlogon - ok
15:09:54.0250 0x0f34 [ E6D88F1F6745BF00B57E7855A2AB696C, 12A5EDD853600FF5EBF91E127077745AE1E61E66DBC1D4D4306570F171AF4A39 ] Netman C:\WINDOWS\System32\netman.dll
15:09:54.0250 0x0f34 Netman - ok
15:09:54.0296 0x0f34 [ D34612C5D02D026535B3095D620626AE, 1BBCCCBF49EB8807240A77DCB43C25C21682073CC5356594E2C4F53EF36BF657 ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
15:09:54.0328 0x0f34 NetTcpPortSharing - ok
15:09:54.0343 0x0f34 [ E9E47CFB2D461FA0FC75B7A74C6383EA, 544136F5BFD4DC23D45E90F12FA48B82FD9EAEA9EAF3E0F5F0BD27E23D672C3E ] NIC1394 C:\WINDOWS\system32\DRIVERS\nic1394.sys
15:09:54.0343 0x0f34 NIC1394 - ok
15:09:54.0375 0x0f34 [ F1B67B6B0751AE0E6E964B02821206A3, 3D5A7593ABDEE2047C5738671C85DC8B95A4ECF58D5D7B04EEE13A689839A540 ] Nla C:\WINDOWS\System32\mswsock.dll
15:09:54.0390 0x0f34 Nla - ok
15:09:54.0406 0x0f34 NPF - ok
15:09:54.0421 0x0f34 [ 3182D64AE053D6FB034F44B6DEF8034A, 4ADFC76965BA2A5F488E71789A4E4EA702A74AF42725F72130D1CA919406CF19 ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
15:09:54.0453 0x0f34 Npfs - ok
15:09:54.0453 0x0f34 NSNDIS5 - ok
15:09:54.0546 0x0f34 [ 78A08DD6A8D65E697C18E1DB01C5CDCA, E0E6F3ED05068E32F1D5C2D2B38CDEF4536B8656DB6756C66CF6B40B60C8F3DA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
15:09:54.0734 0x0f34 Ntfs - ok
15:09:54.0765 0x0f34 [ AFB8261B56CBA0D86AEB6DF682AF9785, 104D96F1F19DD4CE492064ACC9634406A019EAE20B42D03198E400E661897127 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
15:09:54.0765 0x0f34 NtLmSsp - ok
15:09:54.0921 0x0f34 [ 56AF4064996FA5BAC9C449B1514B4770, 154602EFEC22728503D4ABA025DF711B0F2CFC983F5E3BF25F2A4BCD1AE250EC ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
15:09:54.0984 0x0f34 NtmsSvc - ok
15:09:55.0000 0x0f34 [ 73C1E1F395918BC2C6DD67AF7591A3AD, B21133A75253EC15E2DFF66D3B480AB1A7E1A2360476C810E7AA55D0F0EB08D4 ] Null C:\WINDOWS\system32\drivers\Null.sys
15:09:55.0015 0x0f34 Null - ok
15:09:55.0046 0x0f34 [ B305F3FAD35083837EF46A0BBCE2FC57, 9D0E0E666D652D0FC9EAB97280A5D67AAF61D6B21929DF7CF8ED72A367720464 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
15:09:55.0062 0x0f34 NwlnkFlt - ok
15:09:55.0093 0x0f34 [ C99B3415198D1AAB7227F2C88FD664B9, DD8DA4B5E804F134AB9233859544C025062902DFC3E8FB8A09A67337A4E73F55 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
15:09:55.0125 0x0f34 NwlnkFwd - ok
15:09:55.0140 0x0f34 [ CA33832DF41AFB202EE7AEB05145922F, 9DD0089C2E13C7F81214C3B5A4A61276292052F9BBFEA7FCD0F6AA27815D5F95 ] ohci1394 C:\WINDOWS\system32\DRIVERS\ohci1394.sys
15:09:55.0140 0x0f34 ohci1394 - ok
15:09:55.0187 0x0f34 [ F84785660305B9B903FB3BCA8BA29837, BDBDE61076800415D98759077E9E039C80B55DBE68E31F8BF44A909C6C3D3276 ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
15:09:55.0250 0x0f34 Parport - ok
15:09:55.0281 0x0f34 [ BEB3BA25197665D82EC7065B724171C6, 7E71C13BA30CD95CEE8A9CC85E6F48A01F30EDEAADEE69D80AE828BF97E5A5CA ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
15:09:55.0296 0x0f34 PartMgr - ok
15:09:55.0328 0x0f34 [ C2BF987829099A3EAA2CA6A0A90ECB4F, 1DF21EA8E43875CFEECD869407429F82FB449707CFB845718499468E699BAAAA ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
15:09:55.0328 0x0f34 ParVdm - ok
15:09:55.0359 0x0f34 [ 387E8DEDC343AA2D1EFBC30580273ACD, 5F3E642BDB759777E570ED5B22AC7E93CDCD362708F281657AD7BAB44EDEC802 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
15:09:55.0359 0x0f34 PCI - ok
15:09:55.0375 0x0f34 PCIDump - ok
15:09:55.0406 0x0f34 [ 59BA86D9A61CBCF4DF8E598C331F5B82, 822D11C5CE77BFD7B2F25350CCBF92B0B9388EEA6D86ED220B768C720976D839 ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
15:09:55.0437 0x0f34 PCIIde - ok
15:09:55.0453 0x0f34 [ A2A966B77D61847D61A3051DF87C8C97, 6CED7CA26DC62B0AAFC83A2E07336DAD25954491201BB8E06103971F3F0B8B51 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
15:09:55.0484 0x0f34 Pcmcia - ok
15:09:55.0484 0x0f34 PDCOMP - ok
15:09:55.0500 0x0f34 PDFRAME - ok
15:09:55.0500 0x0f34 PDRELI - ok
15:09:55.0515 0x0f34 PDRFRAME - ok
15:09:55.0531 0x0f34 perc2 - ok
15:09:55.0531 0x0f34 perc2hib - ok
15:09:55.0578 0x0f34 [ A3EDBE9053889FB24AB22492472B39DC, 6F2ED6E04BDE2FCA2A8BF9BD2D1D6923DE6EAECB46F582B6C0BD1CF364D65C9E ] PlugPlay C:\WINDOWS\system32\services.exe
15:09:55.0578 0x0f34 PlugPlay - ok
15:09:55.0593 0x0f34 [ AFB8261B56CBA0D86AEB6DF682AF9785, 104D96F1F19DD4CE492064ACC9634406A019EAE20B42D03198E400E661897127 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
15:09:55.0593 0x0f34 PolicyAgent - ok
15:09:55.0625 0x0f34 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99, C5F0C8C66A3AF7E7BB04CEDE4AC5306F8387AB384A2107DC5BE413AAE968EFF1 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
15:09:55.0640 0x0f34 PptpMiniport - ok
15:09:55.0765 0x0f34 [ A5D938EE86B8CD0D4879D95EDA1CC430, A45F1C674657845C6121C4882485CBF62D914E69D867CD36FB6DF47C247CA3C3 ] PRISM_A00 C:\WINDOWS\system32\DRIVERS\PRISMA00.sys
15:09:55.0781 0x0f34 PRISM_A00 - ok
15:09:55.0796 0x0f34 [ 2CB55427C58679F49AD600FCCBA76360, 2B5242E9637FCB6A7C16F720C9D8D440AA88B61FB5F108B295A208886C01C4D1 ] Processor C:\WINDOWS\system32\DRIVERS\processr.sys
15:09:55.0812 0x0f34 Processor - ok
15:09:55.0828 0x0f34 [ AFB8261B56CBA0D86AEB6DF682AF9785, 104D96F1F19DD4CE492064ACC9634406A019EAE20B42D03198E400E661897127 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
15:09:55.0828 0x0f34 ProtectedStorage - ok
15:09:55.0843 0x0f34 [ 80D317BD1C3DBC5D4FE7B1678C60CADD, DA76804B55D0CAB3DDD01EFC06673764AE4860693375C658B6063FB14AF7F12C ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
15:09:55.0843 0x0f34 Ptilink - ok
15:09:55.0875 0x0f34 [ DB3B30C3A4CDCF07E164C14584D9D0F2, 6999E7DCB12206BCFA575994F993D7B10192A1E2D8359D041238905B9E44BB9E ] PxHelp20 C:\WINDOWS\system32\Drivers\PxHelp20.sys
15:09:55.0875 0x0f34 PxHelp20 - ok
15:09:55.0968 0x0f34 [ 9A155D31B8E52F41B258282092CC93A7, 0BCE0E646F920C8ED2794A0D2D04AAFC4C47D0C3DF56386F98069068676E8785 ] QCMerced C:\WINDOWS\system32\DRIVERS\LVCM.sys
15:09:56.0062 0x0f34 QCMerced - ok
15:09:56.0078 0x0f34 ql1080 - ok
15:09:56.0078 0x0f34 Ql10wnt - ok
15:09:56.0093 0x0f34 ql12160 - ok
15:09:56.0109 0x0f34 ql1240 - ok
15:09:56.0109 0x0f34 ql1280 - ok
15:09:56.0156 0x0f34 [ FE0D99D6F31E4FAD8159F690D68DED9C, 998685622ABE631984B7E4DBF91AB3594B1F574378D75EB9F6265F4650470692 ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
15:09:56.0156 0x0f34 RasAcd - ok
15:09:56.0218 0x0f34 [ F5BA6CACCDB66C8F048E867563203246, AFEAD8FC02313F7EBC8F9F39E7ED2868852B480BE3902FA7BD0AFD81492AB243 ] RasAuto C:\WINDOWS\System32\rasauto.dll
15:09:56.0234 0x0f34 RasAuto - ok
15:09:56.0250 0x0f34 [ 11B4A627BC9614B885C4969BFA5FF8A6, EAE0A412A2B0F68919C32A96B3A08CC1A06585E4998819F5C9051745F63FF5AD ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
15:09:56.0265 0x0f34 Rasl2tp - ok
15:09:56.0296 0x0f34 [ F9A7B66EA345726EDB5862A46B1ECCD5, 5D35429D394D36A1692A7E219BA1A85CD8096FEAE0F90BFE036A63118FEDBF57 ] RasMan C:\WINDOWS\System32\rasmans.dll
15:09:56.0312 0x0f34 RasMan - ok
15:09:56.0312 0x0f34 [ 5BC962F2654137C9909C3D4603587DEE, A5CE5653D0105240F5E86CFAAB89E7917D42D939E2F27A5A7D6979289CA651B8 ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
15:09:56.0328 0x0f34 RasPppoe - ok
15:09:56.0343 0x0f34 [ FDBB1D60066FCFBB7452FD8F9829B242, 10A2DACF944BD000032EBA8C095CB3D879CC55B28C377ADF6E52E508E47444DB ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
15:09:56.0343 0x0f34 Raspti - ok
15:09:56.0375 0x0f34 [ 7AD224AD1A1437FE28D89CF22B17780A, 6645235CA27D671954E3557FA37082881C3D7D47492C71264CD8CB8D108EC801 ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
15:09:56.0406 0x0f34 Rdbss - ok
15:09:56.0421 0x0f34 [ 4912D5B403614CE99C28420F75353332, 975341ECD660209987B5E5171B8315E032439E408CBE8A5986E67AF767F373BB ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
15:09:56.0421 0x0f34 RDPCDD - ok
15:09:56.0468 0x0f34 [ 43AF5212BD8FB5BA6EED9754358BD8F7, AF330F61CECA4AFA359CEABC5EB3227E6B56A9A2DCE50701381D665122D7356D ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
15:09:56.0468 0x0f34 RDPWD - ok
15:09:56.0500 0x0f34 [ 263AF18AF0F3DB99F574C95F284CCEC9, 2BFA9952E97EFEB386FC56EC2C125080CD12DAC078DBE43C395CB4D9F22165D3 ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
15:09:56.0515 0x0f34 RDSessMgr - ok
15:09:56.0546 0x0f34 [ ED761D453856F795A7FE056E42C36365, EF026585B33415D8FCE94A9F27D7A4396C7C35C88E06A4CF0FEA702401E8597A ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
15:09:56.0546 0x0f34 redbook - ok
15:09:56.0578 0x0f34 [ 0E97EC96D6942CEEC2D188CC2EB69A01, D4253B4420BEF19451A55AB91E4834482181A31A31134F6E2AFE05C8E20C81A5 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
15:09:56.0593 0x0f34 RemoteAccess - ok
15:09:56.0625 0x0f34 [ 2A02E21867497DF20B8FC95631395169, D89E2D17ED4E1C727847C0E92D2DF68AEB70BF0B956BD2FE024ED70A961759D2 ] RpcLocator C:\WINDOWS\system32\locator.exe
15:09:56.0640 0x0f34 RpcLocator - ok
15:09:56.0671 0x0f34 [ 3127AFBF2C1ED0AB14A1BBB7AAECB85B, ECFBACE3CBF2384948EA1C445BDA3955EB4F44A9874286E6537C67DC1283E5B0 ] RpcSs C:\WINDOWS\system32\rpcss.dll
15:09:56.0687 0x0f34 RpcSs - ok
15:09:56.0734 0x0f34 [ 4BDD71B4B521521499DFD14735C4F398, 7B1498D3C67E56D05B58B7DA319ECB0117C37963AABB0E59B42831C087469DA1 ] RSVP C:\WINDOWS\system32\rsvp.exe
15:09:56.0765 0x0f34 RSVP - ok
15:09:56.0781 0x0f34 [ AFB8261B56CBA0D86AEB6DF682AF9785, 104D96F1F19DD4CE492064ACC9634406A019EAE20B42D03198E400E661897127 ] SamSs C:\WINDOWS\system32\lsass.exe
15:09:56.0781 0x0f34 SamSs - ok
15:09:56.0812 0x0f34 [ DCEC079FAD95D36C8DD5CB6D779DFE32, F8546552D939A225853A0CE4913701A93738DF02C999D16E141E9A828814BBC6 ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
15:09:56.0828 0x0f34 SCardSvr - ok
15:09:56.0875 0x0f34 [ A050194A44D7FA8D7186ED2F4E8367AE, BCDF56D5A2F9E202DC67E7FE4BCC617BCC0BDFF2D221A621020068B17B2855BB ] Schedule C:\WINDOWS\system32\schedsvc.dll
15:09:56.0875 0x0f34 Schedule - ok
15:09:56.0906 0x0f34 [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
15:09:56.0921 0x0f34 Secdrv - ok
15:09:56.0937 0x0f34 [ BEE4CFD1D48C23B44CF4B974B0B79B2B, DF3B02D713F8A4602BE75F004074D5DF79AFF2D58FF37110B2A6AC29F680758B ] seclogon C:\WINDOWS\System32\seclogon.dll
15:09:56.0953 0x0f34 seclogon - ok
15:09:56.0953 0x0f34 [ 2AAC9B6ED9EDDFFB721D6452E34D67E3, 95D83F054A6610328D56E56CD948A6618C590231853E56FC20E7557DB61384A4 ] SENS C:\WINDOWS\system32\sens.dll
15:09:56.0968 0x0f34 SENS - ok
15:09:56.0984 0x0f34 [ 0F29512CCD6BEAD730039FB4BD2C85CE, 4F98AE390D1B14A755700DD6CEFB9CF921F0404AF2145D2D7E5F52394F87C6A5 ] serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
15:09:56.0984 0x0f34 serenum - ok
15:09:57.0000 0x0f34 [ CF24EB4F0412C82BCD1F4F35A025E31D, B74CB094126F5C23F601C34D53B2DF5BE3E5918230AC9DCFCFFA8E66B3A0FA25 ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
15:09:57.0015 0x0f34 Serial - ok
15:09:57.0093 0x0f34 [ 3EC8DE67B1C78C31E54C0F030E6BD7D5, 3D9C8CE5EEDFC4EB4C1BF7182C86185C40E8ED40946702BFC16EFBDF93B9778D ] ServiceLayer C:\Programme\PC Connectivity Solution\ServiceLayer.exe
15:09:57.0140 0x0f34 ServiceLayer - ok
15:09:57.0187 0x0f34 [ 8E6B8C671615D126FDC553D1E2DE5562, CEEC0067514555D5CA489F50E3D7562FCA8DB8E952C3C878604C9277FC77959F ] Sfloppy C:\WINDOWS\system32\DRIVERS\sfloppy.sys
15:09:57.0187 0x0f34 Sfloppy - ok
15:09:57.0234 0x0f34 [ CAD058D5F8B889A87CA3EB3CF624DCEF, A7CDCF44261D1F4D820927253EA8EBB63714B7BAFF8B08DE073507D9A7EEA5BB ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
15:09:57.0250 0x0f34 SharedAccess - ok
15:09:57.0265 0x0f34 [ 2DB7D303C36DDD055215052F118E8E75, BE6E7BBE12A7A4EDF1F1C2935350603970C7426BBCA7A1A6644BB8999123AF17 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
15:09:57.0281 0x0f34 ShellHWDetection - ok
15:09:57.0281 0x0f34 Simbad - ok
15:09:57.0343 0x0f34 [ F07AF60B152221472FBDB2FECEC4896D, A18FDCE8462A48429E249C44F0E49F844F2E3A4B5215349DE104F34D935EF983 ] SkypeUpdate C:\Programme\Skype\Updater\Updater.exe
15:09:57.0343 0x0f34 SkypeUpdate - ok
15:09:57.0375 0x0f34 [ 866D538EBE33709A5C9F5C62B73B7D14, BC94BEB7C17B4FCAC8B5D0D5006A203BC209E0504EECE149651D8691935696CD ] SLIP C:\WINDOWS\system32\DRIVERS\SLIP.sys
15:09:57.0390 0x0f34 SLIP - ok
15:09:57.0390 0x0f34 Sparrow - ok
15:09:57.0421 0x0f34 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F, DD17733CBB370FCA08F0296704D7CBEACA3C8F76D0ABE4761C3B1FFDF7481D9E ] splitter C:\WINDOWS\system32\drivers\splitter.sys
15:09:57.0421 0x0f34 splitter - ok
15:09:57.0453 0x0f34 [ 60784F891563FB1B767F70117FC2428F, E0B07F08E60FFBAD36C2E58180F4B2A16DCA47716044CBE0213DF7B74D742F1F ] Spooler C:\WINDOWS\system32\spoolsv.exe
15:09:57.0453 0x0f34 Spooler - ok
15:09:57.0484 0x0f34 [ 50FA898F8C032796D3B1B9951BB5A90F, 1C86273EC19EB96D6DB9CE6670C00683B77C99C42CC2F7E75BC50872B93446B1 ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
15:09:57.0500 0x0f34 sr - ok
15:09:57.0546 0x0f34 [ FE77A85495065F3AD59C5C65B6C54182, EB4BAF992F961B2FD5D24BFCB6BCB2142BC32933139A818835FEAB190E4283BB ] srservice C:\WINDOWS\system32\srsvc.dll
15:09:57.0546 0x0f34 srservice - ok
15:09:57.0609 0x0f34 [ 47DDFC2F003F7F9F0592C6874962A2E7, 17C643BD4EB09B5666FE41817DC785BE04A6E491CE79E8E5A702CDBD98E1BDD7 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
15:09:57.0625 0x0f34 Srv - ok
15:09:57.0640 0x0f34 [ 4DF5B05DFAEC29E13E1ED6F6EE12C500, 2971D7D45D6942D310D47DBD19B9680D2D29527E79B86133C72217FD29259465 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
15:09:57.0640 0x0f34 SSDPSRV - ok
15:09:57.0687 0x0f34 [ B9E31F2A3640403B0EA3A867BB73B9F4, 7EAE59382FCFFDB139CC59FA1A0A659E1AC27464A33341D6766D75F4E8D18A4D ] SSHDRV86 C:\WINDOWS\system32\drivers\SSHDRV86.sys
15:09:57.0812 0x0f34 SSHDRV86 - ok
15:09:57.0843 0x0f34 [ A36EE93698802CD899F98BFD553D8185, 224CFED921EA230FF8025D259E34968FD2C0FD34BB3A918FB4B9B8BA42BEA5D3 ] ssmdrv C:\WINDOWS\system32\DRIVERS\ssmdrv.sys
15:09:57.0859 0x0f34 ssmdrv - ok
15:09:57.0906 0x0f34 [ 3F0164FBC0BD1ADBD02DF9759181451A, 8BDAA0373BD16B38407F93FE5C697481D4D88C72B1931D6A7B9F80C0276242B9 ] ss_bbus C:\WINDOWS\system32\DRIVERS\ss_bbus.sys
15:09:57.0921 0x0f34 ss_bbus - ok
15:09:57.0937 0x0f34 [ B89D62206034E5FE573C80A24DD55675, 26D12E2A7CB538DDEEA7B764242E9EAE25E0A46293AE3608E6B7DD71AECBA901 ] ss_bmdfl C:\WINDOWS\system32\DRIVERS\ss_bmdfl.sys
15:09:57.0953 0x0f34 ss_bmdfl - ok
15:09:57.0968 0x0f34 [ 1ED0FCEA586FE2A416EE15196E5631DD, AF1EBAD7D580BF85ACD6C6287892DE4E7A679852887B9E866A032B1DDCF26183 ] ss_bmdm C:\WINDOWS\system32\DRIVERS\ss_bmdm.sys
15:09:57.0984 0x0f34 ss_bmdm - ok
15:09:58.0000 0x0f34 [ 994D2E5378CC337EC7DD73C1E04FCAA4, 4320B6EFF5CFA40DCD7EF1ED1BB79AC29D5FC34FCFA97BA97333CB5ABD741E05 ] ss_bserd C:\WINDOWS\system32\DRIVERS\ss_bserd.sys
15:09:58.0015 0x0f34 ss_bserd - ok
15:09:58.0062 0x0f34 [ A2DBCC4C8860449DF1AB758EA28B4DE0, 90D46D4D888DF6D58F61F3F9CFD1627D516507B7A668F40EA873579FB487A8D9 ] StillCam C:\WINDOWS\system32\DRIVERS\serscan.sys
15:09:58.0062 0x0f34 StillCam - ok
15:09:58.0125 0x0f34 [ BC2C5985611C5356B24AEB370953DED9, 15CBAB8166827DC098E2B16AB6F49A1441A4CB52AF3588F0AD964CAB596DFE10 ] stisvc C:\WINDOWS\system32\wiaservc.dll
15:09:58.0140 0x0f34 stisvc - ok
15:09:58.0171 0x0f34 [ 77813007BA6265C4B6098187E6ED79D2, 93939120E803C46FBFD577C8FC2E6C7E71C0460E01D25CB29579490640AB50C7 ] streamip C:\WINDOWS\system32\DRIVERS\StreamIP.sys
15:09:58.0187 0x0f34 streamip - ok
15:09:58.0234 0x0f34 [ 3941D127AEF12E93ADDF6FE6EE027E0F, EA1F0E32E1C5E90FA4AAC421DEBBE086512340758D3217A6334E886BCE638B51 ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
15:09:58.0234 0x0f34 swenum - ok
15:09:58.0265 0x0f34 [ 8CE882BCC6CF8A62F2B2323D95CB3D01, B408550A581F3DA222355964AFA4E976AD8471F0AA37573C42C4948AE5A23A3B ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
15:09:58.0281 0x0f34 swmidi - ok
15:09:58.0296 0x0f34 SwPrv - ok
15:09:58.0312 0x0f34 symc810 - ok
15:09:58.0328 0x0f34 symc8xx - ok
15:09:58.0343 0x0f34 sym_hi - ok
15:09:58.0375 0x0f34 sym_u3 - ok
15:09:58.0406 0x0f34 [ 8B83F3ED0F1688B4958F77CD6D2BF290, 546D3602183702B4F53E84413CFA2C933D64C8540378E54A8DCD148F3F36A2DA ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
15:09:58.0421 0x0f34 sysaudio - ok
15:09:58.0437 0x0f34 [ 2903FFFA2523926D6219428040DCE6B9, 4F13181931B0499F6C3F08138054DBCD1F84CB9806999A9172B80DE79D446F62 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
15:09:58.0453 0x0f34 SysmonLog - ok
15:09:58.0500 0x0f34 [ 05903CAC4B98908D55EA5774775B382E, AC3666CBD894D737874A5998DC7F46A0A51A7B23B1835FC735B9AD503A2191CC ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
15:09:58.0500 0x0f34 TapiSrv - ok
15:09:58.0531 0x0f34 [ F78B2BED3F2EE6C8BEBDAC2EAF970835, 6DF1BF2C601D5465ED5E07D81F60E6FF0A532B4F9DD182D0F503F96A6D06BBD2 ] tbhsd C:\WINDOWS\system32\drivers\tbhsd.sys
15:09:58.0546 0x0f34 tbhsd - ok
15:09:58.0593 0x0f34 [ 9AEFA14BD6B182D61E3119FA5F436D3D, EA29E49434585409272E7901AF89771FE9D6E911A7DC44AB3C7020CFF8A44552 ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
15:09:58.0609 0x0f34 Tcpip - ok
15:09:58.0656 0x0f34 [ 6471A66807F5E104E4885F5B67349397, F35CBFFB8BB235CCE30EF94A5273333900DD49FD506BF9D55D99A320B8A53A5A ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
15:09:58.0656 0x0f34 TDPIPE - ok
15:09:58.0687 0x0f34 [ C56B6D0402371CF3700EB322EF3AAF61, 7743FA4C734BCE38EFB1CA69BC17364D8421E2CD172F856F7E38E7AE1EE93F2F ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
15:09:58.0703 0x0f34 TDTCP - ok
15:09:58.0718 0x0f34 [ 88155247177638048422893737429D9E, B6D4E8691917946332C2208D01F8C8281978C1AD1E9951C5D99DF0D49AC34B3B ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
15:09:58.0734 0x0f34 TermDD - ok
15:09:58.0765 0x0f34 [ B7DE02C863D8F5A005A7BF375375A6A4, 6DE05A7B28CA5A78D58536347FC47F15883EEDBEF487CEA0117CC280FC582DCC ] TermService C:\WINDOWS\System32\termsrv.dll
15:09:58.0765 0x0f34 TermService - ok
15:09:58.0812 0x0f34 [ 2DB7D303C36DDD055215052F118E8E75, BE6E7BBE12A7A4EDF1F1C2935350603970C7426BBCA7A1A6644BB8999123AF17 ] Themes C:\WINDOWS\System32\shsvcs.dll
15:09:58.0812 0x0f34 Themes - ok
15:09:58.0828 0x0f34 TosIde - ok
15:09:58.0843 0x0f34 [ 626504572B175867F30F3215C04B3E2F, 47E87CE9BC666D5CB5953C5D497DC00A7CC28F8EC0A064B3E47700279C5C4B91 ] TrkWks C:\WINDOWS\system32\trkwks.dll
15:09:58.0859 0x0f34 TrkWks - ok
15:09:58.0890 0x0f34 [ 5787B80C2E3C5E2F56C2A233D91FA2C9, 3774905CF77954DFCECDA5BCC7CDE3D0ED72712BFAAD85ADAE5246306447E46C ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
15:09:58.0906 0x0f34 Udfs - ok
15:09:58.0906 0x0f34 ultra - ok
15:09:59.0000 0x0f34 [ 402DDC88356B1BAC0EE3DD1580C76A31, 32A686595710336A6BFD54C03F552AE39439611662F84EF5D24193AE5665C6F3 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
15:09:59.0078 0x0f34 Update - ok
15:09:59.0109 0x0f34 [ 1DFD8975D8C89214B98D9387C1125B49, 0B6B268487C8E45E9B86BF4A0A9DB669E0E45D600DE3C82B63F9986CA9E01082 ] upnphost C:\WINDOWS\System32\upnphost.dll
15:09:59.0125 0x0f34 upnphost - ok
15:09:59.0140 0x0f34 [ 9B11E6118958E63E1FEF129466E2BDA7, 97168BCE3F4A9BB9E6500F05E34851FB957B219C598944FADC28AC0011C0503B ] UPS C:\WINDOWS\System32\ups.exe
15:09:59.0140 0x0f34 UPS - ok
15:09:59.0187 0x0f34 [ 65898A183FBF1D1F7759D5CCB364DCD4, 85E823123FDB4CA5F8255064E22A444627999055EC3419DFD001371893F36AB9 ] usbaudio C:\WINDOWS\system32\drivers\usbaudio.sys
15:09:59.0187 0x0f34 usbaudio - ok
15:09:59.0250 0x0f34 [ 1B611611C28D2DF25BC057D79C6F13FC, B0D86F63E44B40413BBAE6402CC088046CFAE082D41BBC2ED5A916293356B846 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
15:09:59.0265 0x0f34 usbccgp - ok
15:09:59.0281 0x0f34 [ 4BAC8DF07F1D8434FC640E677A62204E, 76C1351AF6752224BF59DEEE0F8665FE699F3DFD679F5BCD01C7D9383E6402A4 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
15:09:59.0281 0x0f34 usbehci - ok
15:09:59.0312 0x0f34 [ 1AB3CDDE553B6E064D2E754EFE20285C, A99C4528C4227B1E96847614745AAFACD3C5F1BDFE435214DBF78740FFB300FE ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
15:09:59.0312 0x0f34 usbhub - ok
15:09:59.0343 0x0f34 [ A717C8721046828520C9EDF31288FC00, 1530BBE832EDBB0974AD89D723A03FF7A0094B368992D73C2C3E62A181DF1E0A ] usbprint C:\WINDOWS\system32\DRIVERS\usbprint.sys
15:09:59.0343 0x0f34 usbprint - ok
15:09:59.0375 0x0f34 [ F8EDE2B6928970DCE3D5614C27D9E7F6, 6E5EBBC8B70C1D593634DAF0C190DEADFDA18C3CBC8F552A76F156F3869EF05B ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
15:09:59.0375 0x0f34 usbscan - ok
15:09:59.0390 0x0f34 [ A32426D9B14A089EAA1D922E0C5801A9, ED1DC52EE45F8EAD3AEC4B1F817BB25634141CF48295494C5947DCE6CF7A9817 ] usbstor C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
15:09:59.0406 0x0f34 usbstor - ok
15:09:59.0421 0x0f34 [ 26496F9DEE2D787FC3E61AD54821FFE6, 8BE7FF647470B9A951CBB478FAF83D657A15CC78037F42348A6B738F21D523DA ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
15:09:59.0421 0x0f34 usbuhci - ok
15:09:59.0437 0x0f34 [ 0D3A8FAFCEACD8B7625CD549757A7DF1, B9CFDEFCD66AA139F3DC2F967B184669532922563AD5A71769BABDC4370D065E ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
15:09:59.0453 0x0f34 VgaSave - ok
15:09:59.0468 0x0f34 [ 3B3EFCDA263B8AC14FDF9CBDD0791B2E, FC7FFD53FCC0F81587EFF26A43C141D25C43DBC68311520CE2BCDD739CA58CA9 ] ViaIde C:\WINDOWS\system32\DRIVERS\viaide.sys
15:09:59.0468 0x0f34 ViaIde - ok
15:09:59.0500 0x0f34 [ 0363E216E4EB5052969C96608934DBDE, 0B6B60909E464294AE4AAA243C522365B88FB8FCDDC57DBA1EB96DD524C90C7E ] viamraid C:\WINDOWS\system32\DRIVERS\viamraid.sys
15:09:59.0515 0x0f34 viamraid - ok
15:09:59.0531 0x0f34 [ A5A712F4E880874A477AF790B5186E1D, FE885ED04C3EAFC379787F836738A2769E43D07CF52DD917D90C38E001957A5E ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
15:09:59.0546 0x0f34 VolSnap - ok
15:09:59.0578 0x0f34 [ 68F106273BE29E7B7EF8266977268E78, 1488AB7A654EBC94C73E1D494067189ACB95BC233980110CAC4C0297CDC4115A ] VSS C:\WINDOWS\System32\vssvc.exe
15:09:59.0609 0x0f34 VSS - ok
15:09:59.0656 0x0f34 [ 7B353059E665F8B7AD2BBEAEF597CF45, 84A4311F18A4B8DCB364741DEA7D18E2363F19564B2EF25214965DC729527068 ] W32Time C:\WINDOWS\system32\w32time.dll
15:09:59.0656 0x0f34 W32Time - ok
15:09:59.0687 0x0f34 [ E20B95BAEDB550F32DD489265C1DA1F6, 5589B2067E6C9FBA290D8C5EADDC198EBAF39C50C3CD7D2BC5CDA7CBFBC445E5 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
15:09:59.0687 0x0f34 Wanarp - ok
15:09:59.0703 0x0f34 wanatw - ok
15:09:59.0718 0x0f34 WDICA - ok
15:09:59.0734 0x0f34 [ 6768ACF64B18196494413695F0C3A00F, 3A8F8586F1D997D19A8478345338D2AECD785AEABDB61531DD3F92003D3230A5 ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
15:09:59.0750 0x0f34 wdmaud - ok
15:09:59.0765 0x0f34 [ 81727C9873E3905A2FFC1EBD07265002, 6AC2383A1DCBB7FA3DB90FBB874C8E1819F5B7492717FF41E303EFC7BF72F93E ] WebClient C:\WINDOWS\System32\webclnt.dll
15:09:59.0765 0x0f34 WebClient - ok
15:09:59.0843 0x0f34 [ 6F3F3973D97714CC5F906A19FE883729, 7817118BE94D0F6FAE0F9CE48AD70FFE0AEF886CCE09C666768FAB61047F992F ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
15:09:59.0843 0x0f34 winmgmt - ok
15:09:59.0890 0x0f34 [ C51B4A5C05A5475708E3C81C7765B71D, F776D2680BD3407307B7072626F78460361FC5BC38623C9E16F394D300AB25DE ] WmdmPmSN C:\WINDOWS\system32\MsPMSNSv.dll
15:09:59.0906 0x0f34 WmdmPmSN - ok
15:09:59.0921 0x0f34 [ 93908111BA57A6E60EC2FA2DE202105C, F395F25F18D15C6B9FEDB45FD31E10295FFE5517E2BC86ACAC11904EA0664BE2 ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
15:09:59.0921 0x0f34 WmiApSrv - ok
15:10:00.0046 0x0f34 [ BF05650BB7DF5E9EBDD25974E22403BB, AF173D89B768CFC7AB03DFADD4F049CAC40AC59A0C9208AF5AB92CB368983077 ] WMPNetworkSvc C:\Programme\Windows Media Player\WMPNetwk.exe
15:10:00.0078 0x0f34 WMPNetworkSvc - ok
15:10:00.0109 0x0f34 [ CF4DEF1BF66F06964DC0D91844239104, CC1D9CECE2056D29A9651D51BB57C3F4F9BF9E90A4808CF7496C683C874FBD51 ] WpdUsb C:\WINDOWS\system32\DRIVERS\wpdusb.sys
15:10:00.0125 0x0f34 WpdUsb - ok
15:10:00.0171 0x0f34 [ 300B3E84FAF1A5C1F791C159BA28035D, 0194856BDF94C1F274AF70AD558290ACDACDDEA331BD66FEB8E167ABD1E36786 ] wscsvc C:\WINDOWS\system32\wscsvc.dll
15:10:00.0203 0x0f34 wscsvc - ok
15:10:00.0234 0x0f34 [ C98B39829C2BBD34E454150633C62C78, 71B60EA3AD0E2637917D528C6A9E7ECF2949E3E5E91036AA5BBADA95BD725511 ] WSTCODEC C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
15:10:00.0250 0x0f34 WSTCODEC - ok
15:10:00.0265 0x0f34 [ 7B4FE05202AA6BF9F4DFD0E6A0D8A085, A1DB8909FA73337DB613D01824945485186654364A4DF129B8CB913CF87D1D2E ] wuauserv C:\WINDOWS\system32\wuauserv.dll
15:10:00.0265 0x0f34 wuauserv - ok
15:10:00.0312 0x0f34 [ 50EB9E21963B4F06FD010D007D54351B, 0918EABC0EBFE39EFFAE15A0286A8193D18474665B572CCD5E857A127EA1055B ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
15:10:00.0328 0x0f34 WudfPf - ok
15:10:00.0343 0x0f34 [ 6E209664BDEA8A15B5E8E480D6C607C2, 3A3C4C34DB39DE9660E68D40A0D4D351F7684A08B5B40C3B281436CEBD0DED62 ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
15:10:00.0359 0x0f34 WudfRd - ok
15:10:00.0390 0x0f34 [ AE93084D2D236887BA56467AE42B4955, EC0B076A2B3EDA17A613219C2888EBB86A337E9C47862F0F35919C3A02942909 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
15:10:00.0390 0x0f34 WudfSvc - ok
15:10:00.0453 0x0f34 [ C4F109C005F6725162D2D12CA751E4A7, AC996B44338328BDD4442FE48406F286A64526F0EC77BE00A19FA7FDB0407CFE ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
15:10:00.0484 0x0f34 WZCSVC - ok
15:10:00.0500 0x0f34 [ 0ADA34871A2E1CD2CAAFED1237A47750, 45BEF8649078BD74C1A347B5F2D3A1958E5A7DCD6C6BA8A2E0CAD277A929C64E ] xmlprov C:\WINDOWS\System32\xmlprov.dll
15:10:00.0515 0x0f34 xmlprov - ok
15:10:00.0531 0x0f34 ================ Scan global ===============================
15:10:00.0578 0x0f34 [ 2C60091CA5F67C3032EAB3B30390C27F, 9E205C8E67F4B61FCFA2A82AA1968D522C3B6410D7075BE813F7F1564D61632E ] C:\WINDOWS\system32\basesrv.dll
15:10:00.0625 0x0f34 [ E62178BC21EAC63A3B9A2DBD46C1B505, CAA5480CC4DAA37758F0CF445F865FD6F4630080B044EF2E606C2F62DAA4061A ] C:\WINDOWS\system32\winsrv.dll
15:10:00.0656 0x0f34 [ E62178BC21EAC63A3B9A2DBD46C1B505, CAA5480CC4DAA37758F0CF445F865FD6F4630080B044EF2E606C2F62DAA4061A ] C:\WINDOWS\system32\winsrv.dll
15:10:00.0687 0x0f34 [ A3EDBE9053889FB24AB22492472B39DC, 6F2ED6E04BDE2FCA2A8BF9BD2D1D6923DE6EAECB46F582B6C0BD1CF364D65C9E ] C:\WINDOWS\system32\services.exe
15:10:00.0703 0x0f34 [ Global ] - ok
15:10:00.0703 0x0f34 ================ Scan MBR ==================================
15:10:00.0718 0x0f34 [ 72B8CE41AF0DE751C946802B3ED844B4 ] \Device\Harddisk0\DR0
15:10:00.0875 0x0f34 \Device\Harddisk0\DR0 - ok
15:10:00.0875 0x0f34 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk2\DR5
15:10:00.0890 0x0f34 \Device\Harddisk2\DR5 - ok
15:10:00.0890 0x0f34 ================ Scan VBR ==================================
15:10:00.0890 0x0f34 [ D87C7BBE57E3D71B79E7C3F8499A69C4 ] \Device\Harddisk0\DR0\Partition1
15:10:00.0890 0x0f34 \Device\Harddisk0\DR0\Partition1 - ok
15:10:00.0906 0x0f34 [ 5CE505E1069C0E5E5DEC0F339ADDAEBE ] \Device\Harddisk0\DR0\Partition2
15:10:00.0921 0x0f34 \Device\Harddisk0\DR0\Partition2 - ok
15:10:00.0937 0x0f34 [ CA2D679725F981DC0E0347A76900D47A ] \Device\Harddisk0\DR0\Partition3
15:10:00.0937 0x0f34 \Device\Harddisk0\DR0\Partition3 - ok
15:10:00.0953 0x0f34 [ 831DE799B0E587F38741E4A8EFBD4027 ] \Device\Harddisk2\DR5\Partition1
15:10:00.0953 0x0f34 \Device\Harddisk2\DR5\Partition1 - ok
15:10:00.0953 0x0f34 ================ Scan generic autorun ======================
15:10:01.0046 0x0f34 [ A4A66195EB0ECD574A32AAA92DC0A7BD, 4E30D565917158316A541BB29D73BF5F3A01DAB1240363276DE0C5D59B2BFFFE ] C:\Programme\ScanSoft\PaperPort\Ereg\Ereg.exe
15:10:01.0046 0x0f34 PPort11reminder - ok
15:10:01.0171 0x0f34 [ A162B967A88BF374A81E01EF6E7A2655, 3616D7DDF72964EB1C7C40E45CCEFD7116252607068AEB9FB093F20064FB5BA2 ] C:\Programme\Avira\AntiVir Desktop\avgnt.exe
15:10:01.0187 0x0f34 avgnt - ok
15:10:01.0265 0x0f34 [ C74C7963EEC07AF49DCE44D64819B2BF, 7CCA35A4A3BC2BD427580C1EBBE4BA6E3FD9125780B056201B2D6E6A312AAC62 ] C:\Programme\QuickTime\qttask.exe
15:10:01.0281 0x0f34 QuickTime Task - ok
15:10:01.0343 0x0f34 [ BA18CFAB98426BFA6D6EC7E5B1961ED0, 540BF2CFDB099296F2AA24D192EFC5B013C88C0152763454521355ACBB50337D ] C:\Programme\Avira\My Avira\Avira.OE.Systray.exe
15:10:01.0343 0x0f34 Avira Systray - ok
15:10:01.0390 0x0f34 [ 01B4E6E990B6C5EA8856D96C7FD044B2, 2266296FD3C8E0DFA657F21406EE4E494477870DFAF7C65BEBCB6FBA8CADC7C6 ] C:\WINDOWS\system32\CTFMON.EXE
15:10:01.0390 0x0f34 CTFMON.EXE - ok
15:10:01.0406 0x0f34 [ 01B4E6E990B6C5EA8856D96C7FD044B2, 2266296FD3C8E0DFA657F21406EE4E494477870DFAF7C65BEBCB6FBA8CADC7C6 ] C:\WINDOWS\system32\CTFMON.EXE
15:10:01.0406 0x0f34 CTFMON.EXE - ok
15:10:01.0484 0x0f34 [ E616A6A6E91B0A86F2F6217CDE835FFE, 411671C4B2BB4DB3F02A21C199A5479F31394165704736A549B53245B94577F7 ] C:\Programme\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
15:10:01.0484 0x0f34 swg - ok
15:10:01.0484 0x0f34 Waiting for KSN requests completion. In queue: 199
15:10:02.0484 0x0f34 Waiting for KSN requests completion. In queue: 199
15:10:03.0484 0x0f34 Waiting for KSN requests completion. In queue: 199
15:10:04.0531 0x0f34 AV detected via SS1: Avira AntiVir PersonalEdition Classic, 0.0.0.0, enabled, updated
15:10:04.0531 0x0f34 AV detected via SS1: Avira AntiVir PersonalEdition Classic, 0.0.0.0, enabled, updated
15:10:04.0531 0x0f34 AV detected via SS1: Avira AntiVir PersonalEdition Classic, 0.0.0.0, enabled, updated
15:10:04.0531 0x0f34 AV detected via SS1: Avira Desktop, 13.6.20.2100, enabled, updated
15:10:04.0531 0x0f34 AV detected via SS1: Avira AntiVir PersonalEdition Classic, 7.0.0.165
, enabled, updated
15:10:04.0531 0x0f34 Win FW state via NFM: enabled
15:10:06.0953 0x0f34 ============================================================
|
|
23.01.2015, 16:05
| #10 |
| | Provider meldet Virusbefall Teil II Code:
ATTFilter 15:10:06.0953 0x0f34 Scan finished
15:10:06.0953 0x0f34 ============================================================
15:10:06.0968 0x0d9c Detected object count: 0
15:10:06.0968 0x0d9c Actual detected object count: 0
15:10:42.0000 0x08e0 ============================================================
15:10:42.0000 0x08e0 Scan started
15:10:42.0000 0x08e0 Mode: Manual; SigCheck; TDLFS;
15:10:42.0000 0x08e0 ============================================================
15:10:42.0000 0x08e0 KSN ping started
15:10:44.0328 0x08e0 KSN ping finished: true
15:10:45.0312 0x08e0 ================ Scan system memory ========================
15:10:45.0312 0x08e0 System memory - ok
15:10:45.0312 0x08e0 ================ Scan services =============================
15:10:45.0390 0x08e0 Abiosdsk - ok
15:10:45.0406 0x08e0 abp480n5 - ok
15:10:45.0453 0x08e0 [ AC407F1A62C3A300B4F2B5A9F1D55B2C, 31F5FC61B37E22100B3A52A590295A7E827FFC581FA9960C64B9032452AAECED ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
15:10:45.0812 0x08e0 ACPI - ok
15:10:45.0843 0x08e0 [ 9E1CA3160DAFB159CA14F83B1E317F75, 13B3E897B0E819BF734449416D9EC6EBCAC89538EC69BF48C068593B82D57004 ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
15:10:45.0984 0x08e0 ACPIEC - ok
15:10:46.0000 0x08e0 adpu160m - ok
15:10:46.0031 0x08e0 [ 8BED39E3C35D6A489438B8141717A557, 1B5796E56B0927360CE0759641B1151828BC0A9E45620D2B2D880491F5CE33D0 ] aec C:\WINDOWS\system32\drivers\aec.sys
15:10:46.0171 0x08e0 aec - ok
15:10:46.0218 0x08e0 [ 1E44BC1E83D8FD2305F8D452DB109CF9, CF5EC07E0B589FA2A4701C6CFD69E893FC3ABF274AD57AE3C13FFE49063B02C8 ] AFD C:\WINDOWS\System32\drivers\afd.sys
15:10:46.0281 0x08e0 AFD - ok
15:10:46.0375 0x08e0 [ 0C361D7AE68E90D615542640D571CCF4, 71E8607C43BB63D5A56CA62B680144EF0CF5BD9D11311918284EBC23CC54FEC8 ] AgereSoftModem C:\WINDOWS\system32\DRIVERS\AGRSM.sys
15:10:46.0484 0x08e0 AgereSoftModem - ok
15:10:46.0500 0x08e0 Aha154x - ok
15:10:46.0515 0x08e0 aic78u2 - ok
15:10:46.0531 0x08e0 aic78xx - ok
15:10:46.0671 0x08e0 [ BEA942FF21154FEE4F71DDD477621C70, 27BA7A74DBEFE082437302248A51C7A0F61CBCC7B540A373C3AAE0BD822A8230 ] ALCXWDM C:\WINDOWS\system32\drivers\ALCXWDM.SYS
15:10:46.0906 0x08e0 ALCXWDM - ok
15:10:46.0953 0x08e0 [ 738D80CC01D7BC7584BE917B7F544394, DCC17AAEF5CDDF52FAAC3CC6904EF421CD595F66318A2370BEE261D5C3A8E340 ] Alerter C:\WINDOWS\system32\alrsvc.dll
15:10:47.0093 0x08e0 Alerter - ok
15:10:47.0109 0x08e0 [ 190CD73D4984F94D823F9444980513E5, 93A32C2495CCA094F768BA707C74DA5C00B8A88A9236DD1A297439A7C2E6C6FA ] ALG C:\WINDOWS\System32\alg.exe
15:10:47.0187 0x08e0 ALG - ok
15:10:47.0203 0x08e0 AliIde - ok
15:10:47.0218 0x08e0 [ 769844EB65DF6A62AA51B886290FE51D, C63B3D821E0556870CAD0E53012EB0153AF69AB23C58D7D63FF92B8DC7D9FB01 ] AmdK8 C:\WINDOWS\system32\DRIVERS\AmdK8.sys
15:10:47.0234 0x08e0 AmdK8 - detected UnsignedFile.Multi.Generic ( 1 )
15:10:47.0234 0x08e0 Detect skipped due to KSN trusted
15:10:47.0234 0x08e0 AmdK8 - ok
15:10:47.0250 0x08e0 amsint - ok
15:10:47.0390 0x08e0 [ C2700D35AA42311A32DF7EA09630B401, 35B305916DB91EBC86CA70AF23140684F57CF527A0ADE099A79610335C61E861 ] AntiVirSchedulerService C:\Programme\Avira\AntiVir Desktop\sched.exe
15:10:47.0421 0x08e0 AntiVirSchedulerService - ok
15:10:47.0484 0x08e0 [ C2700D35AA42311A32DF7EA09630B401, 35B305916DB91EBC86CA70AF23140684F57CF527A0ADE099A79610335C61E861 ] AntiVirService C:\Programme\Avira\AntiVir Desktop\avguard.exe
15:10:47.0515 0x08e0 AntiVirService - ok
15:10:47.0531 0x08e0 AppMgmt - ok
15:10:47.0562 0x08e0 [ B5B8A80875C1DEDEDA8B02765642C32F, AD0C71D73B1B8225351FBF4FFB43001A32B4DAE69504C59970CD2428BB33D4EF ] Arp1394 C:\WINDOWS\system32\DRIVERS\arp1394.sys
15:10:47.0703 0x08e0 Arp1394 - ok
15:10:47.0718 0x08e0 asc - ok
15:10:47.0718 0x08e0 asc3350p - ok
15:10:47.0734 0x08e0 asc3550 - ok
15:10:47.0843 0x08e0 [ 0E5E4957549056E2BF2C49F4F6B601AD, F7F19FDC906B719A3516D30A9B4A2262C8CC5B36B94E3D4195C345EC4610FF2B ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
15:10:47.0859 0x08e0 aspnet_state - ok
15:10:47.0890 0x08e0 [ B153AFFAC761E7F5FCFA822B9C4E97BC, 7E60F572A6B3C6219E3C86225AA37243AFFD74337DB7F108B04778042E5CC959 ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
15:10:48.0015 0x08e0 AsyncMac - ok
15:10:48.0046 0x08e0 [ 9F3A2F5AA6875C72BF062C712CFA2674, B4DF1D2C56A593C6B54DE57395E3B51D288F547842893B32B0F59228A0CF70B9 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
15:10:48.0218 0x08e0 atapi - ok
15:10:48.0234 0x08e0 Atdisk - ok
15:10:48.0281 0x08e0 [ A2EAEB497CA29ECAEAF0DF66AD85C57D, 2745CBD114195735285A9D25A9F44B69CC5DD0CF4127109BC2067CF141D3803C ] Ati HotKey Poller C:\WINDOWS\system32\Ati2evxx.exe
15:10:48.0421 0x08e0 Ati HotKey Poller - ok
15:10:48.0484 0x08e0 [ 312A17DFF710A0F4E6D4DD1D52EAD1A8, 168DE1AAF7BAE3863B58FC4E4B83698489082892F08450BB3A31C178AEF3F635 ] ATI Smart C:\WINDOWS\system32\ati2sgag.exe
15:10:48.0515 0x08e0 ATI Smart - detected UnsignedFile.Multi.Generic ( 1 )
15:10:48.0515 0x08e0 Detect skipped due to KSN trusted
15:10:48.0515 0x08e0 ATI Smart - ok
15:10:48.0640 0x08e0 [ 492BD2A5F65F218D4EDE5764A3BB67E9, D557CD7EA241513E1C43D791F7B5B9E212CED77556A91AF119E15A5C00C1982D ] ati2mtag C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
15:10:48.0796 0x08e0 ati2mtag - ok
15:10:48.0859 0x08e0 [ 9916C1225104BA14794209CFA8012159, 5D6F05F715C52A16D05CAE15C3DFE77A139A7F27F7AE710EC9A10F9EE05115A1 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
15:10:49.0000 0x08e0 Atmarpc - ok
15:10:49.0046 0x08e0 [ 58ED0D5452DF7BE732193E7999C6B9A4, 254E2ECF592DDA2E3E6CA9F6F3E77926E2265586A7937BA95199ED47BCDE69A3 ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
15:10:49.0203 0x08e0 AudioSrv - ok
15:10:49.0234 0x08e0 [ D9F724AA26C010A217C97606B160ED68, 329B5118F2409731D06FDAE85B6ADD64A048292801BCB3546651CEB303111695 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
15:10:49.0390 0x08e0 audstub - ok
15:10:49.0421 0x08e0 [ F581D2F3E30C1CA7206D660FB7689F98, 53647E017AE58788922F72285DD63E8CD2F9E922B31F7C6711E547BC6B360154 ] avgntflt C:\WINDOWS\system32\DRIVERS\avgntflt.sys
15:10:49.0515 0x08e0 avgntflt - ok
15:10:49.0546 0x08e0 [ A2EE407D6D3757A2FFD5095DD16AE1F2, BBFCC5DC116D6A3AF85591955541528DB0CB1FE81D353F717BE7CAD3F7F446F4 ] avipbb C:\WINDOWS\system32\DRIVERS\avipbb.sys
15:10:49.0578 0x08e0 avipbb - ok
15:10:49.0656 0x08e0 [ 6F77BBB8FC69D26132309EB4CE7A4E0E, 39E1E20F7CE6B2A784765BB1BE3AC539EDD2889880F78D14C340129E9DB7A43E ] Avira.OE.ServiceHost C:\Programme\Avira\My Avira\Avira.OE.ServiceHost.exe
15:10:49.0671 0x08e0 Avira.OE.ServiceHost - ok
15:10:49.0718 0x08e0 [ D8C712305F73CD34D1B344810E522728, 49A474FF6CA44E8427D7A8290B47395125B0148AF384CF2B3B1FA495A4718CBA ] avkmgr C:\WINDOWS\system32\DRIVERS\avkmgr.sys
15:10:49.0734 0x08e0 avkmgr - ok
15:10:49.0765 0x08e0 [ DA1F27D85E0D1525F6621372E7B685E9, 5A81A46A3BDD19DAFC6C87D277267A5D44F3A1B5302F2CC1111D84B7BAD5610D ] Beep C:\WINDOWS\system32\drivers\Beep.sys
15:10:49.0921 0x08e0 Beep - ok
15:10:49.0984 0x08e0 [ D6F603772A789BB3228F310D650B8BD1, A539025C70FD998A9B8703DE05CAE5E99BC721D8852EA561EBC2DD20CB371D2E ] BITS C:\WINDOWS\system32\qmgr.dll
15:10:50.0171 0x08e0 BITS - ok
15:10:50.0218 0x08e0 [ B71549F23736ADF83A571061C47777FD, A1D0320736EE777030A543DCA086367EB5A5B6F95088B9C22D8E09326C3A39A9 ] Browser C:\WINDOWS\System32\browser.dll
15:10:50.0312 0x08e0 Browser - ok
15:10:50.0375 0x08e0 [ EA7E57F87D6FEE5FD6C5F813C04E8CD2, 1EB84F4DEE3034FAFBEA2A3F84EECE036E803872DA94D54E958E9F2F09519E88 ] BrYNSvc C:\Programme\Browny02\BrYNSvc.exe
15:10:50.0406 0x08e0 BrYNSvc - detected UnsignedFile.Multi.Generic ( 1 )
15:10:50.0406 0x08e0 Detect skipped due to KSN trusted
15:10:50.0406 0x08e0 BrYNSvc - ok
15:10:50.0453 0x08e0 [ 66B71DD7794D3B8A88CCB645896D3E53, E17221F48902B17FA853AD8FBD1E333B7B1BB1AC576796BBDC4988BA73B7648D ] CardReaderFilter C:\WINDOWS\system32\Drivers\USBCRFT.SYS
15:10:50.0468 0x08e0 CardReaderFilter - detected UnsignedFile.Multi.Generic ( 1 )
15:10:50.0468 0x08e0 Detect skipped due to KSN trusted
15:10:50.0468 0x08e0 CardReaderFilter - ok
15:10:50.0500 0x08e0 [ 90A673FC8E12A79AFBED2576F6A7AAF9, BDE7858A3457DB979FEDD8577FA6321BF72848E4A7BF9F173C78A6A10CBB3EBE ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
15:10:50.0656 0x08e0 cbidf2k - ok
15:10:50.0687 0x08e0 [ 0BE5AEF125BE881C4F854C554F2B025C, 1770DD70B3F115A0EF460907DEDC1E4B7241C08615A98F194D61A49C3E2BAA54 ] CCDECODE C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
15:10:50.0828 0x08e0 CCDECODE - ok
15:10:50.0843 0x08e0 cd20xrnt - ok
15:10:50.0875 0x08e0 [ C1B486A7658353D33A10CC15211A873B, AA4DD9E7AAE5AAB1146B360B17001F975D2F29A1281CF7B13E7136480410F347 ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
15:10:51.0031 0x08e0 Cdaudio - ok
15:10:51.0078 0x08e0 [ C885B02847F5D2FD45A24E219ED93B32, B26B2F8E3A831E2B65EB0C5195B0645CD50E22615CE79C9B0B391CD563B121DB ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
15:10:51.0218 0x08e0 Cdfs - ok
15:10:51.0250 0x08e0 [ 1F4260CC5B42272D71F79E570A27A4FE, B51C2A3ED3C309953D0EA45869C8E464C10F2533DADE9E0286AF674979098D1D ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
15:10:51.0406 0x08e0 Cdrom - ok
15:10:51.0406 0x08e0 Changer - ok
15:10:51.0453 0x08e0 [ 28E3040D1F1CA2008CD6B29DFEBC9A5E, ACB458E8A11AA2143734A5A0281973D95158E6402A6453F98F9832D1E19B01F9 ] CiSvc C:\WINDOWS\system32\cisvc.exe
15:10:51.0593 0x08e0 CiSvc - ok
15:10:51.0625 0x08e0 [ 778A30ED3C134EB7E406AFC407E9997D, 3E6AD115AB2596EB001BC21AEADDBC75F27C42DB90C986B7AD17743CE631234E ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
15:10:51.0781 0x08e0 ClipSrv - ok
15:10:51.0812 0x08e0 [ D87ACAED61E417BBA546CED5E7E36D9C, 14AC6034A5BC0FB2A1AFDAD42BEF4DE641556E54AD30D0C46765660A4BE55462 ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
15:10:51.0828 0x08e0 clr_optimization_v2.0.50727_32 - ok
15:10:51.0843 0x08e0 CmdIde - ok
15:10:51.0859 0x08e0 COMSysApp - ok
15:10:51.0875 0x08e0 Cpqarray - ok
15:10:51.0890 0x08e0 [ 611F824E5C703A5A899F84C5F1699E4D, 9EFA5612FE58E9974E4CC13D39D91D7B5DEA3ED66BEFBED3AAE6D2800FD8162A ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
15:10:52.0046 0x08e0 CryptSvc - ok
15:10:52.0062 0x08e0 dac2w2k - ok
15:10:52.0078 0x08e0 dac960nt - ok
15:10:52.0125 0x08e0 [ 3127AFBF2C1ED0AB14A1BBB7AAECB85B, ECFBACE3CBF2384948EA1C445BDA3955EB4F44A9874286E6537C67DC1283E5B0 ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
15:10:52.0218 0x08e0 DcomLaunch - ok
15:10:52.0234 0x08e0 dgderdrv - ok
15:10:52.0281 0x08e0 [ C29A1C9B75BA38FA37F8C44405DEC360, 7476D8BC4380CDE56764B2034AF3741DA4ED00F315E41C9A02B5EAD04374F241 ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
15:10:52.0437 0x08e0 Dhcp - ok
15:10:52.0468 0x08e0 [ 044452051F3E02E7963599FC8F4F3E25, 584BDDB074618BE76454CF90E74829CFF588B5B5FAEB793E2F7AAD26352DD689 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
15:10:52.0609 0x08e0 Disk - ok
15:10:52.0625 0x08e0 dmadmin - ok
15:10:52.0703 0x08e0 [ 0DCFC8395A99FECBB1EF771CEC7FE4EA, 89B0AEE5BE01B9FE4FF2989FF16DB6121721ACDFCE6D9655C0ACD321D8C308BE ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
15:10:52.0906 0x08e0 dmboot - ok
15:10:52.0921 0x08e0 [ 53720AB12B48719D00E327DA470A619A, 800264866A6267C9000A85D00095D57908D059D737E5F28C9C4049B884C46228 ] dmio C:\WINDOWS\system32\drivers\dmio.sys
15:10:53.0078 0x08e0 dmio - ok
15:10:53.0109 0x08e0 [ E9317282A63CA4D188C0DF5E09C6AC5F, D41E002F555FE9015EF620975255F58BB79198CA1FF0E09EC950CB450FF77CF7 ] dmload C:\WINDOWS\system32\drivers\dmload.sys
15:10:53.0265 0x08e0 dmload - ok
15:10:53.0296 0x08e0 [ 25C83FFBBA13B554EB6D59A9B2E2EE78, 9FBD655ED3E9163AE11EC207F283E387EFBA5A23108EC790BAE4846B35E66F16 ] dmserver C:\WINDOWS\System32\dmserver.dll
15:10:53.0468 0x08e0 dmserver - ok
15:10:53.0515 0x08e0 [ 8A208DFCF89792A484E76C40E5F50B45, 4E40E2EB38C6254E7CAA488200E89EE7DEBBBA773890BC6A84313CC68178D54F ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
15:10:53.0656 0x08e0 DMusic - ok
15:10:53.0703 0x08e0 [ 407F3227AC618FD1CA54B335B083DE07, 96B8E734648FE9A4EBA59C096C8779BD1A11A93A6303AFD438A406C8122D36C6 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
15:10:53.0812 0x08e0 Dnscache - ok
15:10:53.0859 0x08e0 [ 676E36C4FF5BCEA1900F44182B9723E6, 740CF18BD40E00FEA26CF0E6340C5D18F7D0B4390055FAEEC258B3AA790C4AE9 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
15:10:54.0000 0x08e0 Dot3svc - ok
15:10:54.0015 0x08e0 dpti2o - ok
15:10:54.0046 0x08e0 [ 8F5FCFF8E8848AFAC920905FBD9D33C8, C8C6FB97AB0871C8C88A2201525A5CF10D5131CB6980D32692ED7A8F58399AD5 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
15:10:54.0187 0x08e0 drmkaud - ok
15:10:54.0218 0x08e0 [ 4E4F2FDDAB0A0736D7671134DCCE91FB, 8E2C57D1A006856C47CBDD5765A9DD317DB205B26DA8BFC70555A506257A1CD9 ] EapHost C:\WINDOWS\System32\eapsvc.dll
15:10:54.0375 0x08e0 EapHost - ok
15:10:54.0406 0x08e0 [ 6E883BF518296A40959131C2304AF714, FCBDAB6C9220742821D1A1711D39688889B578E0992F8B41945027DB23E92777 ] EL90XBC C:\WINDOWS\system32\DRIVERS\el90xbc5.sys
15:10:54.0546 0x08e0 EL90XBC - ok
15:10:54.0562 0x08e0 [ 877C18558D70587AA7823A1A308AC96B, 6B336A62112988D855513F45153F73F8470C41A448E9B7438B4A8EC1813AABF1 ] ERSvc C:\WINDOWS\System32\ersvc.dll
15:10:54.0718 0x08e0 ERSvc - ok
15:10:54.0765 0x08e0 [ A3EDBE9053889FB24AB22492472B39DC, 6F2ED6E04BDE2FCA2A8BF9BD2D1D6923DE6EAECB46F582B6C0BD1CF364D65C9E ] Eventlog C:\WINDOWS\system32\services.exe
15:10:54.0796 0x08e0 Eventlog - ok
15:10:54.0843 0x08e0 [ AF4F6B5739D18CA7972AB53E091CBC74, A399E2CC026730D3A429727AAB48093B9F1E5DD8EB6336519C7F16182FDB3905 ] EventSystem C:\WINDOWS\system32\es.dll
15:10:54.0906 0x08e0 EventSystem - ok
15:10:54.0953 0x08e0 [ 38D332A6D56AF32635675F132548343E, E6909DB836AF679B4F4D62C7396D6C82769CC7ABB8C919C2AABFE934FCE268F6 ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
15:10:55.0109 0x08e0 Fastfat - ok
15:10:55.0156 0x08e0 [ 2DB7D303C36DDD055215052F118E8E75, BE6E7BBE12A7A4EDF1F1C2935350603970C7426BBCA7A1A6644BB8999123AF17 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
15:10:55.0250 0x08e0 FastUserSwitchingCompatibility - ok
15:10:55.0296 0x08e0 [ 08B8B302AF0D1B3B8543429BBAC8F21F, F3370FE5C4BECB16F0668E6605792EF8096FE06A79D8234E3D6E1B584F2D4E5A ] Fax C:\WINDOWS\system32\fxssvc.exe
15:10:55.0453 0x08e0 Fax - ok
15:10:55.0484 0x08e0 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81, 8307A532AB4D05CBBCE206DC2759497708BF5AAA880BD00F0E4F281D8578A1F5 ] Fdc C:\WINDOWS\system32\DRIVERS\fdc.sys
15:10:55.0625 0x08e0 Fdc - ok
15:10:55.0656 0x08e0 [ 7D53D569892B46738E87F39C9AA8488A, 6B4EFFD94B4C8157321CC0C735AC11723DD44E3BE5ECA2283A16AF48970801CF ] FETND5BV C:\WINDOWS\system32\DRIVERS\fetnd5bv.sys
15:10:55.0687 0x08e0 FETND5BV - ok
15:10:55.0734 0x08e0 [ E9648254056BCE81A85380C0C3647DC4, AE58F498BD1C33360FE3BB9EA22C13EA562206B68E7946B587CB5A6DF94586A1 ] FETNDIS C:\WINDOWS\system32\DRIVERS\fetnd5.sys
15:10:55.0890 0x08e0 FETNDIS - ok
15:10:55.0906 0x08e0 [ B0678A548587C5F1967B0D70BACAD6C1, 7E49910212ED87313F926E4800EA8D34809C287A686CA69B82B79C1A6451F88C ] Fips C:\WINDOWS\system32\drivers\Fips.sys
15:10:56.0078 0x08e0 Fips - ok
15:10:56.0109 0x08e0 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0, 69C271AD5BCEBFD8AE5A769BDD7EC51256DA3A8ADAD5D12E5C0D13F4E82D8805 ] Flpydisk C:\WINDOWS\system32\DRIVERS\flpydisk.sys
15:10:56.0250 0x08e0 Flpydisk - ok
15:10:56.0296 0x08e0 [ B2CF4B0786F8212CB92ED2B50C6DB6B0, 280F5CF8A90F7BEDE73ADD0DD0F8952088133A7CA9A3D3B7041957E33B36845D ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
15:10:56.0453 0x08e0 FltMgr - ok
15:10:56.0531 0x08e0 [ 8BA7C024070F2B7FDD98ED8A4BA41789, 47585006F86B2C6016EC54250A416794792D1E4024FF229C120BC25B684AF66A ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
15:10:56.0546 0x08e0 FontCache3.0.0.0 - ok
15:10:56.0593 0x08e0 [ B07663A810E861EEBFD0EAC7E82CA62D, 9FC5CDE0A0C3D15050056325AACD65B13C4C45ED0DA199ABFB93A691285A3821 ] FsUsbExDisk C:\WINDOWS\system32\FsUsbExDisk.SYS
15:10:56.0640 0x08e0 FsUsbExDisk - detected UnsignedFile.Multi.Generic ( 1 )
15:10:56.0640 0x08e0 Detect skipped due to KSN trusted
15:10:56.0640 0x08e0 FsUsbExDisk - ok
15:10:56.0656 0x08e0 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A, EC635E071201A766845D48973772CBE0958942B4162F3F5F70660D114CC877E0 ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
15:10:56.0812 0x08e0 Fs_Rec - ok
15:10:56.0843 0x08e0 [ 8F1955CE42E1484714B542F341647778, 8EB3F99625F409D3032561E8AB44BEFBFBFBA4EC873C2151C92A5CAAF7F2AA55 ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
15:10:57.0000 0x08e0 Ftdisk - ok
15:10:57.0015 0x08e0 [ 3A74C423CF6BCCA6982715878F450A3B, A98D6D377B48D05BE3927F6E93D0DE7741E115C43125C0E0DE6EEFE023DE73BC ] gagp30kx C:\WINDOWS\system32\DRIVERS\gagp30kx.sys
15:10:57.0156 0x08e0 gagp30kx - ok
15:10:57.0187 0x08e0 [ 0A02C63C8B144BD8C86B103DEE7C86A2, 7A3235DD3E1995DD72B212FAEB3ECA2A974434DE9BF6D269EA11BA65A80E7E50 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
15:10:57.0343 0x08e0 Gpc - ok
15:10:57.0468 0x08e0 [ F172AD4E906D97ED8F071896FC6789DC, FC10B3CE3DB0D3BF84DFD28E900EB6A11EDAAE32AC50F23CB03AACC6AA496911 ] gupdate C:\Programme\Google\Update\GoogleUpdate.exe
15:10:57.0484 0x08e0 gupdate - ok
15:10:57.0500 0x08e0 [ F172AD4E906D97ED8F071896FC6789DC, FC10B3CE3DB0D3BF84DFD28E900EB6A11EDAAE32AC50F23CB03AACC6AA496911 ] gupdatem C:\Programme\Google\Update\GoogleUpdate.exe
15:10:57.0515 0x08e0 gupdatem - ok
15:10:57.0609 0x08e0 [ 5D4BC124FAAE6730AC002CDB67BF1A1C, 00294F4DC7D17F6DD2A22B9C3299BED40146BA45C972367154D20DB502472551 ] gusvc C:\Programme\Google\Common\Google Updater\GoogleUpdaterService.exe
15:10:57.0640 0x08e0 gusvc - ok
15:10:57.0734 0x08e0 [ CB66BF85BF599BEFD6C6A57C2E20357F, 55D3A0F9279FF316766F42548FCB61C452942B08A37590C4892DF110BE4E53C6 ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
15:10:57.0906 0x08e0 helpsvc - ok
15:10:57.0921 0x08e0 HidServ - ok
15:10:57.0937 0x08e0 [ CCF82C5EC8A7326C3066DE870C06DAF1, 93395FA4C26B2E82DC8B7025ED3BCF583885E5D8C5F60CD6EEAA6335D6A126EC ] HidUsb C:\WINDOWS\system32\DRIVERS\hidusb.sys
15:10:58.0109 0x08e0 HidUsb - ok
15:10:58.0171 0x08e0 [ ED29F14101523A6E0E808107405D452C, B8FA987637787BEECC2EB06D36293DAC355523392B49A8C5A9491EEE961917E9 ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
15:10:58.0343 0x08e0 hkmsvc - ok
15:10:58.0343 0x08e0 hpn - ok
15:10:58.0406 0x08e0 [ F80A415EF82CD06FFAF0D971528EAD38, 524D9E9201572929522F6805011783711B7C0F76308B924C89CF75F4B7A1FDF3 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
15:10:58.0484 0x08e0 HTTP - ok
15:10:58.0531 0x08e0 [ 9E4ADB854CEBCFB81A4B36718FEECD16, 677AB64460775686F8366D6BF35D420A2486C3F07338A00A7C2788A5142B9F08 ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
15:10:58.0656 0x08e0 HTTPFilter - ok
15:10:58.0703 0x08e0 [ A439EBD90AFDB1F516C875B9B317832F, 73DEC8D53C0C6DA7806AFC0617652A660BD08BEEDA288962C44F846AFC4C5A6F ] hwpsgt C:\WINDOWS\system32\DRIVERS\hwpsgt.sys
15:10:58.0734 0x08e0 hwpsgt - detected UnsignedFile.Multi.Generic ( 1 )
15:10:58.0734 0x08e0 Detect skipped due to KSN trusted
15:10:58.0734 0x08e0 hwpsgt - ok
15:10:58.0750 0x08e0 i2omgmt - ok
15:10:58.0765 0x08e0 i2omp - ok
15:10:58.0812 0x08e0 [ E283B97CFBEB86C1D86BAED5F7846A92, 7664F791D08C80DF1E52B34BE69F073AA645610C4BD975F498254807602374AB ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
15:10:58.0953 0x08e0 i8042prt - ok
15:10:59.0046 0x08e0 [ 1CF03C69B49ACB70C722DF92755C0C8C, C227850C133F29BB9DED91A26A22AE077FD69629CEF35B67D305F016C4BDAA81 ] IDriverT C:\Programme\Gemeinsame Dateien\InstallShield\Driver\11\Intel 32\IDriverT.exe
15:10:59.0062 0x08e0 IDriverT - detected UnsignedFile.Multi.Generic ( 1 )
15:10:59.0062 0x08e0 Detect skipped due to KSN trusted
15:10:59.0062 0x08e0 IDriverT - ok
15:10:59.0171 0x08e0 [ C01AC32DC5C03076CFB852CB5DA5229C, A4D7749220B5BC965D96A267F1E02FE8284A230BA249109207BD4B9EA8DFAC96 ] idsvc C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
15:10:59.0234 0x08e0 idsvc - ok
15:10:59.0265 0x08e0 [ 083A052659F5310DD8B6A6CB05EDCF8E, 48D39B03FFB6FAA1529B774443BA12618AE3982D9F65A7B9D18F2269F78B31F4 ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
15:10:59.0406 0x08e0 Imapi - ok
15:10:59.0453 0x08e0 [ D4B413AA210C21E46AEDD2BA5B68D38E, 2309622867AA8FC832A729FA78F48742D4BD6CA0DAFBFB9DDB0772D671E1ED75 ] ImapiService C:\WINDOWS\system32\imapi.exe
15:10:59.0609 0x08e0 ImapiService - ok
15:10:59.0625 0x08e0 ini910u - ok
15:10:59.0640 0x08e0 IntelIde - ok
15:10:59.0687 0x08e0 [ 3BB22519A194418D5FEC05D800A19AD0, F6662F440950596DC1382DD1DB5D7891CCEA30A6062BEA942C18445B5F0D8B16 ] Ip6Fw C:\WINDOWS\system32\drivers\ip6fw.sys
15:10:59.0828 0x08e0 Ip6Fw - ok
15:10:59.0843 0x08e0 [ 731F22BA402EE4B62748ADAF6363C182, 5C3BEBD008A5BE4DC2F92076FF41A10DDC01E10EC7E6552213CFA11970811848 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
15:10:59.0984 0x08e0 IpFilterDriver - ok
15:11:00.0031 0x08e0 [ B87AB476DCF76E72010632B5550955F5, E6E74D3A86A7917A8BAED44F8E97CCD2EB171E4E4B27E9907F60D1523FAF319A ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
15:11:00.0156 0x08e0 IpInIp - ok
15:11:00.0203 0x08e0 [ CC748EA12C6EFFDE940EE98098BF96BB, AF523E21C25D9A1715EFEA573E4F52AF5D4FC9F28A2D613F5DB629C186C439E0 ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
15:11:00.0359 0x08e0 IpNat - ok
15:11:00.0390 0x08e0 [ 23C74D75E36E7158768DD63D92789A91, 394D296F38E7D8EFD91A6EEC301D9CE6AF910E35EB9819F1A9E3363863AEDFDC ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
15:11:00.0531 0x08e0 IPSec - ok
15:11:00.0562 0x08e0 [ C93C9FF7B04D772627A3646D89F7BF89, 805FA48E7A46D4F10240BF880A2468F53DEA36E83004399228AB70DB7D20544A ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
15:11:00.0625 0x08e0 IRENUM - ok
15:11:00.0656 0x08e0 [ 6DFB88F64135C525433E87648BDA30DE, 8233EEFBEF36AAA152F2C55D23D7118F0DE40C9C22EB5D9793405A4770889540 ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
15:11:00.0796 0x08e0 isapnp - ok
15:11:00.0906 0x08e0 [ A12175F063302CD68F8FC6D572D7E5FD, 1FCDBBC169A5137DA97B90F6593B8BB3B49D7AD55BE8AFAD763F4FE1D2D4A76C ] JavaQuickStarterService C:\Programme\Java\jre7\bin\jqs.exe
15:11:00.0937 0x08e0 JavaQuickStarterService - ok
15:11:00.0968 0x08e0 [ 1704D8C4C8807B889E43C649B478A452, E854C90CD301F42BE2520CEDAD35E49DF2D43606CF4EEED861B74882118D04D1 ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
15:11:01.0109 0x08e0 Kbdclass - ok
15:11:01.0140 0x08e0 [ 692BCF44383D056AED41B045A323D378, 1A99DEE83FFAF64E73067FC049C0A4CE07D94E4AE31EFA17B38CEFA9E41D67DC ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
15:11:01.0281 0x08e0 kmixer - ok
15:11:01.0312 0x08e0 [ B467646C54CC746128904E1654C750C1, 3BD71BE3663EA23463D236D8A2A2E42DFA10C502BDB4B6E131FAF0FBA748219E ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
15:11:01.0390 0x08e0 KSecDD - ok
15:11:01.0437 0x08e0 [ 2BBDCB79900990F0716DFCB714E72DE7, 6283789201164A9254632D9A3C8A54FE697717D5F8D5A37804D924DC2B70C8E3 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
15:11:01.0484 0x08e0 lanmanserver - ok
15:11:01.0531 0x08e0 [ 1869B14B06B44B44AF70548E1EA3303F, 4D63B4DAF580C86F86837C7D1753E2105B4C52E26D4CA0CAAFE83755EFF7AFBE ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
15:11:01.0578 0x08e0 lanmanworkstation - ok
15:11:01.0593 0x08e0 lbrtfdc - ok
15:11:01.0640 0x08e0 [ 057DA656166893842DD401C25A058C4E, BFC3590C1C80794B3E9D367340A87A1519A014E99DC0E323AA6C00B7CE59521A ] lemsgt C:\WINDOWS\system32\DRIVERS\lemsgt.sys
15:11:01.0640 0x08e0 lemsgt - detected UnsignedFile.Multi.Generic ( 1 )
15:11:01.0640 0x08e0 Detect skipped due to KSN trusted
15:11:01.0640 0x08e0 lemsgt - ok
15:11:01.0687 0x08e0 [ 636714B7D43C8D0C80449123FD266920, F06F6C7DC49B26EFCAC3570C67BA9BD934F62C6F382DA4DD2AB302C7B970F414 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
15:11:01.0812 0x08e0 LmHosts - ok
15:11:01.0859 0x08e0 [ C5EFBD05A5195402121711A6EBBB271F, F015528D38266C75D08168CB900937299864E1995FE474FE06C39D8333DD6CDE ] LVUSBSta C:\WINDOWS\system32\drivers\lvusbsta.sys
15:11:01.0953 0x08e0 LVUSBSta - ok
15:11:01.0984 0x08e0 [ B7550A7107281D170CE85524B1488C98, A3854B16A65436BEF6BEDE918B43B3BE8F00D303660DB5831DD376271DC43239 ] Messenger C:\WINDOWS\System32\msgsvc.dll
15:11:02.0140 0x08e0 Messenger - ok
15:11:02.0187 0x08e0 [ 4AE068242760A1FB6E1A44BF4E16AFA6, 1FB771162B96AAF787AC24867B818DF8511F0780BB094FA9A38C11D8DBFE68BC ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
15:11:02.0312 0x08e0 mnmdd - ok
15:11:02.0343 0x08e0 [ C2F1D365FD96791B037EE504868065D3, 87BD87E08FD00D115524B049F1A3A719AB86557D68968E7090CD0F271F985CAF ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
15:11:02.0500 0x08e0 mnmsrvc - ok
15:11:02.0531 0x08e0 [ 6FB74EBD4EC57A6F1781DE3852CC3362, 0454509D9A31E0202C08AE17294E2682F227D177A3C73B303E4C8332757AFCA1 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
15:11:02.0687 0x08e0 Modem - ok
15:11:02.0718 0x08e0 [ 1992E0D143B09653AB0F9C5E04B0FD65, 1431EC53A65F561C235A08F926C5348A6B21B06A08C075DE8172A88EE0AA634E ] MODEMCSA C:\WINDOWS\system32\drivers\MODEMCSA.sys
15:11:02.0859 0x08e0 MODEMCSA - ok
15:11:02.0875 0x08e0 [ B24CE8005DEAB254C0251E15CB71D802, 6804A8ABDAD5EC846E7F8077D1EE9BA45D6226ACFF42C70BE3DE7C8980EF9EC4 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
15:11:03.0000 0x08e0 Mouclass - ok
15:11:03.0031 0x08e0 [ 66A6F73C74E1791464160A7065CE711A, 3C570FA1E8EF976B83759220FE95BAC9D7D48D607F91B113EDE4790D34ACBD46 ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys
15:11:03.0171 0x08e0 mouhid - ok
15:11:03.0203 0x08e0 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD, 2A5E15ED2C24C6C65EF2F7E1FD93374774076C9D8D451E4422561F4D269C012F ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
15:11:03.0343 0x08e0 MountMgr - ok
15:11:03.0359 0x08e0 mraid35x - ok
15:11:03.0390 0x08e0 [ 11D42BB6206F33FBB3BA0288D3EF81BD, 76ABCFB62C5AC549F58C231F72A99882CDEB74928104B77FE52554765C2B1A22 ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
15:11:03.0625 0x08e0 MRxDAV - ok
15:11:03.0687 0x08e0 [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0, DB9B186F7076D7B94F45041AF7B77C1AD2CAB504D683B459C6CB1C22840ED170 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
15:11:03.0765 0x08e0 MRxSmb - ok
15:11:03.0796 0x08e0 [ 35A031AF38C55F92D28AA03EE9F12CC9, 97245D204C886EE8DCCC2DEAC80A0E358A7E0C1982F77389DA50DCF091FC9DDC ] MSDTC C:\WINDOWS\system32\msdtc.exe
15:11:03.0937 0x08e0 MSDTC - ok
15:11:03.0968 0x08e0 [ C941EA2454BA8350021D774DAF0F1027, C940E978C7B66A713A0FDAB54B5F995DF59D089AFCD96221DD3222948CD49BBD ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
15:11:04.0125 0x08e0 Msfs - ok
15:11:04.0125 0x08e0 MSIServer - ok
15:11:04.0156 0x08e0 [ D1575E71568F4D9E14CA56B7B0453BF1, 4ABE0E24786C0D39FA2B885447E56204CA6942FB175E534DCE675D7BCF0B176A ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
15:11:04.0296 0x08e0 MSKSSRV - ok
15:11:04.0312 0x08e0 [ 325BB26842FC7CCC1FCCE2C457317F3E, C07BE560513B1FB91D756494F0BA4AEEB2E1998DE0E1C21EE83DB1183B0CEE91 ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
15:11:04.0484 0x08e0 MSPCLOCK - ok
15:11:04.0500 0x08e0 [ BAD59648BA099DA4A17680B39730CB3D, 9AD4C7C94C186C8815D0BC75DCAFB962158DA6935A244BA243EDDDEB33F9816C ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
15:11:04.0640 0x08e0 MSPQM - ok
15:11:04.0656 0x08e0 [ AF5F4F3F14A8EA2C26DE30F7A1E17136, AC93A1E4ABB0D038B772E429015567E44CC2EDB66C54DBE23A5F98176FAC1520 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
15:11:04.0843 0x08e0 mssmbios - ok
15:11:04.0875 0x08e0 [ E53736A9E30C45FA9E7B5EAC55056D1D, 38602F280BF69EBA3706AD175AFC1AEB561A8302B4B61E3FECB3C27D7A9BDB41 ] MSTEE C:\WINDOWS\system32\drivers\MSTEE.sys
15:11:05.0000 0x08e0 MSTEE - ok
15:11:05.0031 0x08e0 [ DE6A75F5C270E756C5508D94B6CF68F5, FCC972DDC36C2C44D836913F10004C2C33B11C54DEFFF0C63E0FDF901D2F9261 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
15:11:05.0078 0x08e0 Mup - ok
15:11:05.0109 0x08e0 [ 5B50F1B2A2ED47D560577B221DA734DB, C16A554B6E1A7F5F98C94DFA88163E0F7426506BF2F51FD351B1A05FC0DB3BC5 ] NABTSFEC C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
15:11:05.0296 0x08e0 NABTSFEC - ok
15:11:05.0343 0x08e0 [ 46BB15AE2AC7D025D6D2567B876817BD, 102A101B96D1078C98FA0F871C801A9A8538E20E5686AB0C7680B2F6C92B3165 ] napagent C:\WINDOWS\System32\qagentrt.dll
15:11:05.0515 0x08e0 napagent - ok
15:11:05.0546 0x08e0 [ 1DF7F42665C94B825322FAE71721130D, FE0DCB728471465B39A42A7511F4133021FBA5DF88F88BCB5FE2FF34CFD713F9 ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
15:11:05.0734 0x08e0 NDIS - ok
15:11:05.0765 0x08e0 [ 7FF1F1FD8609C149AA432F95A8163D97, 18CD1FF5AC1EF8A38D1EC53014F2BADD28D9CDF4ECE2EBC2313D08903776F323 ] NdisIP C:\WINDOWS\system32\DRIVERS\NdisIP.sys
15:11:05.0921 0x08e0 NdisIP - ok
15:11:05.0968 0x08e0 [ 0109C4F3850DFBAB279542515386AE22, 4F6DB1E499AC853FD36FD603FBB6D3AC9BDCEB298C7FE1FB59A9236CB46729B2 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
15:11:06.0031 0x08e0 NdisTapi - ok
15:11:06.0062 0x08e0 [ F927A4434C5028758A842943EF1A3849, B1AA3AF150C05307461774925901789456B0CCCD03A5E71ADA4AB58455962BEE ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
15:11:06.0187 0x08e0 Ndisuio - ok
15:11:06.0218 0x08e0 [ EDC1531A49C80614B2CFDA43CA8659AB, 494042F790F33721328B4451E79842E21919681CC421A4F9633EC4D383E06097 ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
15:11:06.0421 0x08e0 NdisWan - ok
15:11:06.0453 0x08e0 [ 2F597BB467E05B1FE3830EABD821B8E0, 141497F5A49D47CCE3C9289644F4BD838DCB238F6D8E847FC006652E21FE02AC ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
15:11:06.0484 0x08e0 NDProxy - ok
15:11:06.0515 0x08e0 [ 5D81CF9A2F1A3A756B66CF684911CDF0, 7989C36607CAEA17AFA2C1C9904145CA0714A54B9F712D9D4C1AB140D0B2CC0C ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
15:11:06.0656 0x08e0 NetBIOS - ok
15:11:06.0687 0x08e0 [ 74B2B2F5BEA5E9A3DC021D685551BD3D, 7932B71F98B4122BE88F576BF6D745A757AE378A48924B7F4358837B75640A82 ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
15:11:06.0859 0x08e0 NetBT - ok
15:11:06.0890 0x08e0 [ 8ACE4251BFFD09CE75679FE940E996CC, 81969521B5EAEA09ECA63058BE9697BB69AF2596339CA9DF0CFEDC031DCFDC7E ] NetDDE C:\WINDOWS\system32\netdde.exe
15:11:07.0046 0x08e0 NetDDE - ok
15:11:07.0046 0x08e0 [ 8ACE4251BFFD09CE75679FE940E996CC, 81969521B5EAEA09ECA63058BE9697BB69AF2596339CA9DF0CFEDC031DCFDC7E ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
15:11:07.0203 0x08e0 NetDDEdsdm - ok
15:11:07.0234 0x08e0 [ AFB8261B56CBA0D86AEB6DF682AF9785, 104D96F1F19DD4CE492064ACC9634406A019EAE20B42D03198E400E661897127 ] Netlogon C:\WINDOWS\system32\lsass.exe
15:11:07.0359 0x08e0 Netlogon - ok
15:11:07.0390 0x08e0 [ E6D88F1F6745BF00B57E7855A2AB696C, 12A5EDD853600FF5EBF91E127077745AE1E61E66DBC1D4D4306570F171AF4A39 ] Netman C:\WINDOWS\System32\netman.dll
15:11:07.0531 0x08e0 Netman - ok
15:11:07.0578 0x08e0 [ D34612C5D02D026535B3095D620626AE, 1BBCCCBF49EB8807240A77DCB43C25C21682073CC5356594E2C4F53EF36BF657 ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
15:11:07.0593 0x08e0 NetTcpPortSharing - ok
15:11:07.0609 0x08e0 [ E9E47CFB2D461FA0FC75B7A74C6383EA, 544136F5BFD4DC23D45E90F12FA48B82FD9EAEA9EAF3E0F5F0BD27E23D672C3E ] NIC1394 C:\WINDOWS\system32\DRIVERS\nic1394.sys
15:11:07.0750 0x08e0 NIC1394 - ok
15:11:07.0796 0x08e0 [ F1B67B6B0751AE0E6E964B02821206A3, 3D5A7593ABDEE2047C5738671C85DC8B95A4ECF58D5D7B04EEE13A689839A540 ] Nla C:\WINDOWS\System32\mswsock.dll
15:11:07.0843 0x08e0 Nla - ok
15:11:07.0843 0x08e0 NPF - ok
15:11:07.0875 0x08e0 [ 3182D64AE053D6FB034F44B6DEF8034A, 4ADFC76965BA2A5F488E71789A4E4EA702A74AF42725F72130D1CA919406CF19 ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
15:11:08.0000 0x08e0 Npfs - ok
15:11:08.0015 0x08e0 NSNDIS5 - ok
15:11:08.0046 0x08e0 [ 78A08DD6A8D65E697C18E1DB01C5CDCA, E0E6F3ED05068E32F1D5C2D2B38CDEF4536B8656DB6756C66CF6B40B60C8F3DA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
15:11:08.0265 0x08e0 Ntfs - ok
15:11:08.0281 0x08e0 [ AFB8261B56CBA0D86AEB6DF682AF9785, 104D96F1F19DD4CE492064ACC9634406A019EAE20B42D03198E400E661897127 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
15:11:08.0453 0x08e0 NtLmSsp - ok
15:11:08.0515 0x08e0 [ 56AF4064996FA5BAC9C449B1514B4770, 154602EFEC22728503D4ABA025DF711B0F2CFC983F5E3BF25F2A4BCD1AE250EC ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
15:11:08.0687 0x08e0 NtmsSvc - ok
15:11:08.0703 0x08e0 [ 73C1E1F395918BC2C6DD67AF7591A3AD, B21133A75253EC15E2DFF66D3B480AB1A7E1A2360476C810E7AA55D0F0EB08D4 ] Null C:\WINDOWS\system32\drivers\Null.sys
15:11:08.0828 0x08e0 Null - ok
15:11:08.0859 0x08e0 [ B305F3FAD35083837EF46A0BBCE2FC57, 9D0E0E666D652D0FC9EAB97280A5D67AAF61D6B21929DF7CF8ED72A367720464 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
15:11:09.0000 0x08e0 NwlnkFlt - ok
15:11:09.0031 0x08e0 [ C99B3415198D1AAB7227F2C88FD664B9, DD8DA4B5E804F134AB9233859544C025062902DFC3E8FB8A09A67337A4E73F55 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
15:11:09.0156 0x08e0 NwlnkFwd - ok
15:11:09.0171 0x08e0 [ CA33832DF41AFB202EE7AEB05145922F, 9DD0089C2E13C7F81214C3B5A4A61276292052F9BBFEA7FCD0F6AA27815D5F95 ] ohci1394 C:\WINDOWS\system32\DRIVERS\ohci1394.sys
15:11:09.0296 0x08e0 ohci1394 - ok
15:11:09.0328 0x08e0 [ F84785660305B9B903FB3BCA8BA29837, BDBDE61076800415D98759077E9E039C80B55DBE68E31F8BF44A909C6C3D3276 ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
15:11:09.0468 0x08e0 Parport - ok
15:11:09.0484 0x08e0 [ BEB3BA25197665D82EC7065B724171C6, 7E71C13BA30CD95CEE8A9CC85E6F48A01F30EDEAADEE69D80AE828BF97E5A5CA ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
15:11:09.0609 0x08e0 PartMgr - ok
15:11:09.0656 0x08e0 [ C2BF987829099A3EAA2CA6A0A90ECB4F, 1DF21EA8E43875CFEECD869407429F82FB449707CFB845718499468E699BAAAA ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
15:11:09.0765 0x08e0 ParVdm - ok
15:11:09.0781 0x08e0 [ 387E8DEDC343AA2D1EFBC30580273ACD, 5F3E642BDB759777E570ED5B22AC7E93CDCD362708F281657AD7BAB44EDEC802 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
15:11:09.0921 0x08e0 PCI - ok
15:11:09.0921 0x08e0 PCIDump - ok
15:11:09.0953 0x08e0 [ 59BA86D9A61CBCF4DF8E598C331F5B82, 822D11C5CE77BFD7B2F25350CCBF92B0B9388EEA6D86ED220B768C720976D839 ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
15:11:10.0093 0x08e0 PCIIde - ok
15:11:10.0125 0x08e0 [ A2A966B77D61847D61A3051DF87C8C97, 6CED7CA26DC62B0AAFC83A2E07336DAD25954491201BB8E06103971F3F0B8B51 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
15:11:10.0281 0x08e0 Pcmcia - ok
15:11:10.0296 0x08e0 PDCOMP - ok
15:11:10.0296 0x08e0 PDFRAME - ok
15:11:10.0312 0x08e0 PDRELI - ok
15:11:10.0312 0x08e0 PDRFRAME - ok
15:11:10.0328 0x08e0 perc2 - ok
15:11:10.0343 0x08e0 perc2hib - ok
15:11:10.0390 0x08e0 [ A3EDBE9053889FB24AB22492472B39DC, 6F2ED6E04BDE2FCA2A8BF9BD2D1D6923DE6EAECB46F582B6C0BD1CF364D65C9E ] PlugPlay C:\WINDOWS\system32\services.exe
15:11:10.0421 0x08e0 PlugPlay - ok
15:11:10.0437 0x08e0 [ AFB8261B56CBA0D86AEB6DF682AF9785, 104D96F1F19DD4CE492064ACC9634406A019EAE20B42D03198E400E661897127 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
15:11:10.0562 0x08e0 PolicyAgent - ok
15:11:10.0593 0x08e0 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99, C5F0C8C66A3AF7E7BB04CEDE4AC5306F8387AB384A2107DC5BE413AAE968EFF1 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
15:11:10.0718 0x08e0 PptpMiniport - ok
15:11:10.0781 0x08e0 [ A5D938EE86B8CD0D4879D95EDA1CC430, A45F1C674657845C6121C4882485CBF62D914E69D867CD36FB6DF47C247CA3C3 ] PRISM_A00 C:\WINDOWS\system32\DRIVERS\PRISMA00.sys
15:11:10.0859 0x08e0 PRISM_A00 - ok
15:11:10.0890 0x08e0 [ 2CB55427C58679F49AD600FCCBA76360, 2B5242E9637FCB6A7C16F720C9D8D440AA88B61FB5F108B295A208886C01C4D1 ] Processor C:\WINDOWS\system32\DRIVERS\processr.sys
15:11:11.0015 0x08e0 Processor - ok
15:11:11.0031 0x08e0 [ AFB8261B56CBA0D86AEB6DF682AF9785, 104D96F1F19DD4CE492064ACC9634406A019EAE20B42D03198E400E661897127 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
15:11:11.0156 0x08e0 ProtectedStorage - ok
15:11:11.0187 0x08e0 [ 80D317BD1C3DBC5D4FE7B1678C60CADD, DA76804B55D0CAB3DDD01EFC06673764AE4860693375C658B6063FB14AF7F12C ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
15:11:11.0312 0x08e0 Ptilink - ok
15:11:11.0328 0x08e0 [ DB3B30C3A4CDCF07E164C14584D9D0F2, 6999E7DCB12206BCFA575994F993D7B10192A1E2D8359D041238905B9E44BB9E ] PxHelp20 C:\WINDOWS\system32\Drivers\PxHelp20.sys
15:11:11.0359 0x08e0 PxHelp20 - detected UnsignedFile.Multi.Generic ( 1 )
15:11:11.0359 0x08e0 Detect skipped due to KSN trusted
15:11:11.0359 0x08e0 PxHelp20 - ok
15:11:11.0468 0x08e0 [ 9A155D31B8E52F41B258282092CC93A7, 0BCE0E646F920C8ED2794A0D2D04AAFC4C47D0C3DF56386F98069068676E8785 ] QCMerced C:\WINDOWS\system32\DRIVERS\LVCM.sys
15:11:11.0562 0x08e0 QCMerced - ok
15:11:11.0578 0x08e0 ql1080 - ok
15:11:11.0593 0x08e0 Ql10wnt - ok
15:11:11.0593 0x08e0 ql12160 - ok
15:11:11.0609 0x08e0 ql1240 - ok
15:11:11.0625 0x08e0 ql1280 - ok
15:11:11.0656 0x08e0 [ FE0D99D6F31E4FAD8159F690D68DED9C, 998685622ABE631984B7E4DBF91AB3594B1F574378D75EB9F6265F4650470692 ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
15:11:11.0781 0x08e0 RasAcd - ok
15:11:11.0828 0x08e0 [ F5BA6CACCDB66C8F048E867563203246, AFEAD8FC02313F7EBC8F9F39E7ED2868852B480BE3902FA7BD0AFD81492AB243 ] RasAuto C:\WINDOWS\System32\rasauto.dll
15:11:11.0953 0x08e0 RasAuto - ok
15:11:11.0968 0x08e0 [ 11B4A627BC9614B885C4969BFA5FF8A6, EAE0A412A2B0F68919C32A96B3A08CC1A06585E4998819F5C9051745F63FF5AD ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
15:11:12.0093 0x08e0 Rasl2tp - ok
15:11:12.0140 0x08e0 [ F9A7B66EA345726EDB5862A46B1ECCD5, 5D35429D394D36A1692A7E219BA1A85CD8096FEAE0F90BFE036A63118FEDBF57 ] RasMan C:\WINDOWS\System32\rasmans.dll
15:11:12.0281 0x08e0 RasMan - ok
15:11:12.0296 0x08e0 [ 5BC962F2654137C9909C3D4603587DEE, A5CE5653D0105240F5E86CFAAB89E7917D42D939E2F27A5A7D6979289CA651B8 ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
15:11:12.0453 0x08e0 RasPppoe - ok
15:11:12.0468 0x08e0 [ FDBB1D60066FCFBB7452FD8F9829B242, 10A2DACF944BD000032EBA8C095CB3D879CC55B28C377ADF6E52E508E47444DB ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
15:11:12.0609 0x08e0 Raspti - ok
15:11:12.0625 0x08e0 [ 7AD224AD1A1437FE28D89CF22B17780A, 6645235CA27D671954E3557FA37082881C3D7D47492C71264CD8CB8D108EC801 ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
15:11:12.0765 0x08e0 Rdbss - ok
15:11:12.0781 0x08e0 [ 4912D5B403614CE99C28420F75353332, 975341ECD660209987B5E5171B8315E032439E408CBE8A5986E67AF767F373BB ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
15:11:12.0906 0x08e0 RDPCDD - ok
15:11:12.0953 0x08e0 [ 43AF5212BD8FB5BA6EED9754358BD8F7, AF330F61CECA4AFA359CEABC5EB3227E6B56A9A2DCE50701381D665122D7356D ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
15:11:13.0000 0x08e0 RDPWD - ok
15:11:13.0031 0x08e0 [ 263AF18AF0F3DB99F574C95F284CCEC9, 2BFA9952E97EFEB386FC56EC2C125080CD12DAC078DBE43C395CB4D9F22165D3 ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
15:11:13.0187 0x08e0 RDSessMgr - ok
15:11:13.0203 0x08e0 [ ED761D453856F795A7FE056E42C36365, EF026585B33415D8FCE94A9F27D7A4396C7C35C88E06A4CF0FEA702401E8597A ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
15:11:13.0328 0x08e0 redbook - ok
15:11:13.0375 0x08e0 [ 0E97EC96D6942CEEC2D188CC2EB69A01, D4253B4420BEF19451A55AB91E4834482181A31A31134F6E2AFE05C8E20C81A5 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
15:11:13.0500 0x08e0 RemoteAccess - ok
15:11:13.0531 0x08e0 [ 2A02E21867497DF20B8FC95631395169, D89E2D17ED4E1C727847C0E92D2DF68AEB70BF0B956BD2FE024ED70A961759D2 ] RpcLocator C:\WINDOWS\system32\locator.exe
15:11:13.0750 0x08e0 RpcLocator - ok
15:11:13.0781 0x08e0 [ 3127AFBF2C1ED0AB14A1BBB7AAECB85B, ECFBACE3CBF2384948EA1C445BDA3955EB4F44A9874286E6537C67DC1283E5B0 ] RpcSs C:\WINDOWS\system32\rpcss.dll
15:11:13.0828 0x08e0 RpcSs - ok
15:11:13.0859 0x08e0 [ 4BDD71B4B521521499DFD14735C4F398, 7B1498D3C67E56D05B58B7DA319ECB0117C37963AABB0E59B42831C087469DA1 ] RSVP C:\WINDOWS\system32\rsvp.exe
15:11:14.0000 0x08e0 RSVP - ok
15:11:14.0015 0x08e0 [ AFB8261B56CBA0D86AEB6DF682AF9785, 104D96F1F19DD4CE492064ACC9634406A019EAE20B42D03198E400E661897127 ] SamSs C:\WINDOWS\system32\lsass.exe
15:11:14.0156 0x08e0 SamSs - ok
15:11:14.0203 0x08e0 [ DCEC079FAD95D36C8DD5CB6D779DFE32, F8546552D939A225853A0CE4913701A93738DF02C999D16E141E9A828814BBC6 ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
15:11:14.0328 0x08e0 SCardSvr - ok
15:11:14.0375 0x08e0 [ A050194A44D7FA8D7186ED2F4E8367AE, BCDF56D5A2F9E202DC67E7FE4BCC617BCC0BDFF2D221A621020068B17B2855BB ] Schedule C:\WINDOWS\system32\schedsvc.dll
15:11:14.0515 0x08e0 Schedule - ok
15:11:14.0546 0x08e0 [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
15:11:14.0609 0x08e0 Secdrv - ok
15:11:14.0640 0x08e0 [ BEE4CFD1D48C23B44CF4B974B0B79B2B, DF3B02D713F8A4602BE75F004074D5DF79AFF2D58FF37110B2A6AC29F680758B ] seclogon C:\WINDOWS\System32\seclogon.dll
15:11:14.0781 0x08e0 seclogon - ok
15:11:14.0796 0x08e0 [ 2AAC9B6ED9EDDFFB721D6452E34D67E3, 95D83F054A6610328D56E56CD948A6618C590231853E56FC20E7557DB61384A4 ] SENS C:\WINDOWS\system32\sens.dll
15:11:14.0937 0x08e0 SENS - ok
15:11:14.0984 0x08e0 [ 0F29512CCD6BEAD730039FB4BD2C85CE, 4F98AE390D1B14A755700DD6CEFB9CF921F0404AF2145D2D7E5F52394F87C6A5 ] serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
15:11:15.0109 0x08e0 serenum - ok
15:11:15.0140 0x08e0 [ CF24EB4F0412C82BCD1F4F35A025E31D, B74CB094126F5C23F601C34D53B2DF5BE3E5918230AC9DCFCFFA8E66B3A0FA25 ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
15:11:15.0265 0x08e0 Serial - ok
15:11:15.0359 0x08e0 [ 3EC8DE67B1C78C31E54C0F030E6BD7D5, 3D9C8CE5EEDFC4EB4C1BF7182C86185C40E8ED40946702BFC16EFBDF93B9778D ] ServiceLayer C:\Programme\PC Connectivity Solution\ServiceLayer.exe
15:11:15.0437 0x08e0 ServiceLayer - detected UnsignedFile.Multi.Generic ( 1 )
15:11:15.0437 0x08e0 Detect skipped due to KSN trusted
15:11:15.0437 0x08e0 ServiceLayer - ok
15:11:15.0468 0x08e0 [ 8E6B8C671615D126FDC553D1E2DE5562, CEEC0067514555D5CA489F50E3D7562FCA8DB8E952C3C878604C9277FC77959F ] Sfloppy C:\WINDOWS\system32\DRIVERS\sfloppy.sys
15:11:15.0671 0x08e0 Sfloppy - ok
15:11:15.0734 0x08e0 [ CAD058D5F8B889A87CA3EB3CF624DCEF, A7CDCF44261D1F4D820927253EA8EBB63714B7BAFF8B08DE073507D9A7EEA5BB ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
15:11:15.0921 0x08e0 SharedAccess - ok
15:11:15.0953 0x08e0 [ 2DB7D303C36DDD055215052F118E8E75, BE6E7BBE12A7A4EDF1F1C2935350603970C7426BBCA7A1A6644BB8999123AF17 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
15:11:15.0968 0x08e0 ShellHWDetection - ok
15:11:15.0984 0x08e0 Simbad - ok
15:11:16.0046 0x08e0 [ F07AF60B152221472FBDB2FECEC4896D, A18FDCE8462A48429E249C44F0E49F844F2E3A4B5215349DE104F34D935EF983 ] SkypeUpdate C:\Programme\Skype\Updater\Updater.exe
15:11:16.0062 0x08e0 SkypeUpdate - ok
15:11:16.0093 0x08e0 [ 866D538EBE33709A5C9F5C62B73B7D14, BC94BEB7C17B4FCAC8B5D0D5006A203BC209E0504EECE149651D8691935696CD ] SLIP C:\WINDOWS\system32\DRIVERS\SLIP.sys
15:11:16.0234 0x08e0 SLIP - ok
15:11:16.0250 0x08e0 Sparrow - ok
15:11:16.0265 0x08e0 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F, DD17733CBB370FCA08F0296704D7CBEACA3C8F76D0ABE4761C3B1FFDF7481D9E ] splitter C:\WINDOWS\system32\drivers\splitter.sys
15:11:16.0406 0x08e0 splitter - ok
15:11:16.0453 0x08e0 [ 60784F891563FB1B767F70117FC2428F, E0B07F08E60FFBAD36C2E58180F4B2A16DCA47716044CBE0213DF7B74D742F1F ] Spooler C:\WINDOWS\system32\spoolsv.exe
15:11:16.0500 0x08e0 Spooler - ok
15:11:16.0515 0x08e0 [ 50FA898F8C032796D3B1B9951BB5A90F, 1C86273EC19EB96D6DB9CE6670C00683B77C99C42CC2F7E75BC50872B93446B1 ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
15:11:16.0593 0x08e0 sr - ok
15:11:16.0640 0x08e0 [ FE77A85495065F3AD59C5C65B6C54182, EB4BAF992F961B2FD5D24BFCB6BCB2142BC32933139A818835FEAB190E4283BB ] srservice C:\WINDOWS\system32\srsvc.dll
15:11:16.0734 0x08e0 srservice - ok
15:11:16.0781 0x08e0 [ 47DDFC2F003F7F9F0592C6874962A2E7, 17C643BD4EB09B5666FE41817DC785BE04A6E491CE79E8E5A702CDBD98E1BDD7 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
15:11:16.0921 0x08e0 Srv - ok
15:11:16.0953 0x08e0 [ 4DF5B05DFAEC29E13E1ED6F6EE12C500, 2971D7D45D6942D310D47DBD19B9680D2D29527E79B86133C72217FD29259465 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
15:11:17.0015 0x08e0 SSDPSRV - ok
15:11:17.0062 0x08e0 [ B9E31F2A3640403B0EA3A867BB73B9F4, 7EAE59382FCFFDB139CC59FA1A0A659E1AC27464A33341D6766D75F4E8D18A4D ] SSHDRV86 C:\WINDOWS\system32\drivers\SSHDRV86.sys
15:11:17.0078 0x08e0 SSHDRV86 - detected UnsignedFile.Multi.Generic ( 1 )
15:11:17.0078 0x08e0 Detect skipped due to KSN trusted
15:11:17.0078 0x08e0 SSHDRV86 - ok
15:11:17.0109 0x08e0 [ A36EE93698802CD899F98BFD553D8185, 224CFED921EA230FF8025D259E34968FD2C0FD34BB3A918FB4B9B8BA42BEA5D3 ] ssmdrv C:\WINDOWS\system32\DRIVERS\ssmdrv.sys
15:11:17.0125 0x08e0 ssmdrv - ok
15:11:17.0187 0x08e0 [ 3F0164FBC0BD1ADBD02DF9759181451A, 8BDAA0373BD16B38407F93FE5C697481D4D88C72B1931D6A7B9F80C0276242B9 ] ss_bbus C:\WINDOWS\system32\DRIVERS\ss_bbus.sys
15:11:17.0203 0x08e0 ss_bbus - ok
15:11:17.0234 0x08e0 [ B89D62206034E5FE573C80A24DD55675, 26D12E2A7CB538DDEEA7B764242E9EAE25E0A46293AE3608E6B7DD71AECBA901 ] ss_bmdfl C:\WINDOWS\system32\DRIVERS\ss_bmdfl.sys
15:11:17.0250 0x08e0 ss_bmdfl - ok
15:11:17.0265 0x08e0 [ 1ED0FCEA586FE2A416EE15196E5631DD, AF1EBAD7D580BF85ACD6C6287892DE4E7A679852887B9E866A032B1DDCF26183 ] ss_bmdm C:\WINDOWS\system32\DRIVERS\ss_bmdm.sys
15:11:17.0281 0x08e0 ss_bmdm - ok
15:11:17.0296 0x08e0 [ 994D2E5378CC337EC7DD73C1E04FCAA4, 4320B6EFF5CFA40DCD7EF1ED1BB79AC29D5FC34FCFA97BA97333CB5ABD741E05 ] ss_bserd C:\WINDOWS\system32\DRIVERS\ss_bserd.sys
15:11:17.0312 0x08e0 ss_bserd - ok
15:11:17.0359 0x08e0 [ A2DBCC4C8860449DF1AB758EA28B4DE0, 90D46D4D888DF6D58F61F3F9CFD1627D516507B7A668F40EA873579FB487A8D9 ] StillCam C:\WINDOWS\system32\DRIVERS\serscan.sys
15:11:17.0484 0x08e0 StillCam - ok
15:11:17.0531 0x08e0 [ BC2C5985611C5356B24AEB370953DED9, 15CBAB8166827DC098E2B16AB6F49A1441A4CB52AF3588F0AD964CAB596DFE10 ] stisvc C:\WINDOWS\system32\wiaservc.dll
15:11:17.0718 0x08e0 stisvc - ok
15:11:17.0765 0x08e0 [ 77813007BA6265C4B6098187E6ED79D2, 93939120E803C46FBFD577C8FC2E6C7E71C0460E01D25CB29579490640AB50C7 ] streamip C:\WINDOWS\system32\DRIVERS\StreamIP.sys
15:11:17.0875 0x08e0 streamip - ok
15:11:17.0906 0x08e0 [ 3941D127AEF12E93ADDF6FE6EE027E0F, EA1F0E32E1C5E90FA4AAC421DEBBE086512340758D3217A6334E886BCE638B51 ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
15:11:18.0062 0x08e0 swenum - ok
15:11:18.0078 0x08e0 [ 8CE882BCC6CF8A62F2B2323D95CB3D01, B408550A581F3DA222355964AFA4E976AD8471F0AA37573C42C4948AE5A23A3B ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
15:11:18.0187 0x08e0 swmidi - ok
15:11:18.0203 0x08e0 SwPrv - ok
15:11:18.0218 0x08e0 symc810 - ok
15:11:18.0234 0x08e0 symc8xx - ok
15:11:18.0265 0x08e0 sym_hi - ok
15:11:18.0281 0x08e0 sym_u3 - ok
15:11:18.0312 0x08e0 [ 8B83F3ED0F1688B4958F77CD6D2BF290, 546D3602183702B4F53E84413CFA2C933D64C8540378E54A8DCD148F3F36A2DA ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
15:11:18.0515 0x08e0 sysaudio - ok
15:11:18.0546 0x08e0 [ 2903FFFA2523926D6219428040DCE6B9, 4F13181931B0499F6C3F08138054DBCD1F84CB9806999A9172B80DE79D446F62 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
15:11:18.0703 0x08e0 SysmonLog - ok
15:11:18.0734 0x08e0 [ 05903CAC4B98908D55EA5774775B382E, AC3666CBD894D737874A5998DC7F46A0A51A7B23B1835FC735B9AD503A2191CC ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
15:11:18.0875 0x08e0 TapiSrv - ok
15:11:18.0906 0x08e0 [ F78B2BED3F2EE6C8BEBDAC2EAF970835, 6DF1BF2C601D5465ED5E07D81F60E6FF0A532B4F9DD182D0F503F96A6D06BBD2 ] tbhsd C:\WINDOWS\system32\drivers\tbhsd.sys
15:11:18.0921 0x08e0 tbhsd - ok
15:11:18.0968 0x08e0 [ 9AEFA14BD6B182D61E3119FA5F436D3D, EA29E49434585409272E7901AF89771FE9D6E911A7DC44AB3C7020CFF8A44552 ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
15:11:19.0015 0x08e0 Tcpip - ok
15:11:19.0046 0x08e0 [ 6471A66807F5E104E4885F5B67349397, F35CBFFB8BB235CCE30EF94A5273333900DD49FD506BF9D55D99A320B8A53A5A ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
15:11:19.0187 0x08e0 TDPIPE - ok
15:11:19.0218 0x08e0 [ C56B6D0402371CF3700EB322EF3AAF61, 7743FA4C734BCE38EFB1CA69BC17364D8421E2CD172F856F7E38E7AE1EE93F2F ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
15:11:19.0359 0x08e0 TDTCP - ok
15:11:19.0390 0x08e0 [ 88155247177638048422893737429D9E, B6D4E8691917946332C2208D01F8C8281978C1AD1E9951C5D99DF0D49AC34B3B ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
15:11:19.0515 0x08e0 TermDD - ok
15:11:19.0546 0x08e0 [ B7DE02C863D8F5A005A7BF375375A6A4, 6DE05A7B28CA5A78D58536347FC47F15883EEDBEF487CEA0117CC280FC582DCC ] TermService C:\WINDOWS\System32\termsrv.dll
15:11:19.0703 0x08e0 TermService - ok
15:11:19.0734 0x08e0 [ 2DB7D303C36DDD055215052F118E8E75, BE6E7BBE12A7A4EDF1F1C2935350603970C7426BBCA7A1A6644BB8999123AF17 ] Themes C:\WINDOWS\System32\shsvcs.dll
15:11:19.0750 0x08e0 Themes - ok
15:11:19.0765 0x08e0 TosIde - ok
15:11:19.0781 0x08e0 [ 626504572B175867F30F3215C04B3E2F, 47E87CE9BC666D5CB5953C5D497DC00A7CC28F8EC0A064B3E47700279C5C4B91 ] TrkWks C:\WINDOWS\system32\trkwks.dll
15:11:19.0921 0x08e0 TrkWks - ok
15:11:19.0953 0x08e0 [ 5787B80C2E3C5E2F56C2A233D91FA2C9, 3774905CF77954DFCECDA5BCC7CDE3D0ED72712BFAAD85ADAE5246306447E46C ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
15:11:20.0078 0x08e0 Udfs - ok
15:11:20.0093 0x08e0 ultra - ok
15:11:20.0140 0x08e0 [ 402DDC88356B1BAC0EE3DD1580C76A31, 32A686595710336A6BFD54C03F552AE39439611662F84EF5D24193AE5665C6F3 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
15:11:20.0281 0x08e0 Update - ok
15:11:20.0312 0x08e0 [ 1DFD8975D8C89214B98D9387C1125B49, 0B6B268487C8E45E9B86BF4A0A9DB669E0E45D600DE3C82B63F9986CA9E01082 ] upnphost C:\WINDOWS\System32\upnphost.dll
15:11:20.0421 0x08e0 upnphost - ok
15:11:20.0437 0x08e0 [ 9B11E6118958E63E1FEF129466E2BDA7, 97168BCE3F4A9BB9E6500F05E34851FB957B219C598944FADC28AC0011C0503B ] UPS C:\WINDOWS\System32\ups.exe
15:11:20.0578 0x08e0 UPS - ok
15:11:20.0625 0x08e0 [ 65898A183FBF1D1F7759D5CCB364DCD4, 85E823123FDB4CA5F8255064E22A444627999055EC3419DFD001371893F36AB9 ] usbaudio C:\WINDOWS\system32\drivers\usbaudio.sys
15:11:20.0671 0x08e0 usbaudio - ok
15:11:20.0703 0x08e0 [ 1B611611C28D2DF25BC057D79C6F13FC, B0D86F63E44B40413BBAE6402CC088046CFAE082D41BBC2ED5A916293356B846 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
15:11:20.0750 0x08e0 usbccgp - ok
15:11:20.0781 0x08e0 [ 4BAC8DF07F1D8434FC640E677A62204E, 76C1351AF6752224BF59DEEE0F8665FE699F3DFD679F5BCD01C7D9383E6402A4 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
15:11:20.0812 0x08e0 usbehci - ok
15:11:20.0843 0x08e0 [ 1AB3CDDE553B6E064D2E754EFE20285C, A99C4528C4227B1E96847614745AAFACD3C5F1BDFE435214DBF78740FFB300FE ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
15:11:20.0984 0x08e0 usbhub - ok
15:11:21.0015 0x08e0 [ A717C8721046828520C9EDF31288FC00, 1530BBE832EDBB0974AD89D723A03FF7A0094B368992D73C2C3E62A181DF1E0A ] usbprint C:\WINDOWS\system32\DRIVERS\usbprint.sys
15:11:21.0203 0x08e0 usbprint - ok
15:11:21.0234 0x08e0 [ F8EDE2B6928970DCE3D5614C27D9E7F6, 6E5EBBC8B70C1D593634DAF0C190DEADFDA18C3CBC8F552A76F156F3869EF05B ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
15:11:21.0328 0x08e0 usbscan - ok
15:11:21.0359 0x08e0 [ A32426D9B14A089EAA1D922E0C5801A9, ED1DC52EE45F8EAD3AEC4B1F817BB25634141CF48295494C5947DCE6CF7A9817 ] usbstor C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
15:11:21.0562 0x08e0 usbstor - ok
15:11:21.0562 0x08e0 [ 26496F9DEE2D787FC3E61AD54821FFE6, 8BE7FF647470B9A951CBB478FAF83D657A15CC78037F42348A6B738F21D523DA ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
15:11:21.0687 0x08e0 usbuhci - ok
15:11:21.0718 0x08e0 [ 0D3A8FAFCEACD8B7625CD549757A7DF1, B9CFDEFCD66AA139F3DC2F967B184669532922563AD5A71769BABDC4370D065E ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
15:11:21.0843 0x08e0 VgaSave - ok
15:11:21.0859 0x08e0 [ 3B3EFCDA263B8AC14FDF9CBDD0791B2E, FC7FFD53FCC0F81587EFF26A43C141D25C43DBC68311520CE2BCDD739CA58CA9 ] ViaIde C:\WINDOWS\system32\DRIVERS\viaide.sys
15:11:21.0984 0x08e0 ViaIde - ok
15:11:22.0015 0x08e0 [ 0363E216E4EB5052969C96608934DBDE, 0B6B60909E464294AE4AAA243C522365B88FB8FCDDC57DBA1EB96DD524C90C7E ] viamraid C:\WINDOWS\system32\DRIVERS\viamraid.sys
15:11:22.0062 0x08e0 viamraid - ok
15:11:22.0062 0x08e0 [ A5A712F4E880874A477AF790B5186E1D, FE885ED04C3EAFC379787F836738A2769E43D07CF52DD917D90C38E001957A5E ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
15:11:22.0203 0x08e0 VolSnap - ok
15:11:22.0250 0x08e0 [ 68F106273BE29E7B7EF8266977268E78, 1488AB7A654EBC94C73E1D494067189ACB95BC233980110CAC4C0297CDC4115A ] VSS C:\WINDOWS\System32\vssvc.exe
15:11:22.0359 0x08e0 VSS - ok
15:11:22.0406 0x08e0 [ 7B353059E665F8B7AD2BBEAEF597CF45, 84A4311F18A4B8DCB364741DEA7D18E2363F19564B2EF25214965DC729527068 ] W32Time C:\WINDOWS\system32\w32time.dll
15:11:22.0531 0x08e0 W32Time - ok
15:11:22.0562 0x08e0 [ E20B95BAEDB550F32DD489265C1DA1F6, 5589B2067E6C9FBA290D8C5EADDC198EBAF39C50C3CD7D2BC5CDA7CBFBC445E5 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
15:11:22.0687 0x08e0 Wanarp - ok
15:11:22.0687 0x08e0 wanatw - ok
15:11:22.0703 0x08e0 WDICA - ok
15:11:22.0718 0x08e0 [ 6768ACF64B18196494413695F0C3A00F, 3A8F8586F1D997D19A8478345338D2AECD785AEABDB61531DD3F92003D3230A5 ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
15:11:22.0859 0x08e0 wdmaud - ok
15:11:22.0890 0x08e0 [ 81727C9873E3905A2FFC1EBD07265002, 6AC2383A1DCBB7FA3DB90FBB874C8E1819F5B7492717FF41E303EFC7BF72F93E ] WebClient C:\WINDOWS\System32\webclnt.dll
15:11:23.0015 0x08e0 WebClient - ok
15:11:23.0093 0x08e0 [ 6F3F3973D97714CC5F906A19FE883729, 7817118BE94D0F6FAE0F9CE48AD70FFE0AEF886CCE09C666768FAB61047F992F ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
15:11:23.0218 0x08e0 winmgmt - ok
15:11:23.0265 0x08e0 [ C51B4A5C05A5475708E3C81C7765B71D, F776D2680BD3407307B7072626F78460361FC5BC38623C9E16F394D300AB25DE ] WmdmPmSN C:\WINDOWS\system32\MsPMSNSv.dll
15:11:23.0359 0x08e0 WmdmPmSN - ok
15:11:23.0375 0x08e0 [ 93908111BA57A6E60EC2FA2DE202105C, F395F25F18D15C6B9FEDB45FD31E10295FFE5517E2BC86ACAC11904EA0664BE2 ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
15:11:23.0515 0x08e0 WmiApSrv - ok
15:11:23.0640 0x08e0 [ BF05650BB7DF5E9EBDD25974E22403BB, AF173D89B768CFC7AB03DFADD4F049CAC40AC59A0C9208AF5AB92CB368983077 ] WMPNetworkSvc C:\Programme\Windows Media Player\WMPNetwk.exe
15:11:23.0890 0x08e0 WMPNetworkSvc - ok
15:11:23.0937 0x08e0 [ CF4DEF1BF66F06964DC0D91844239104, CC1D9CECE2056D29A9651D51BB57C3F4F9BF9E90A4808CF7496C683C874FBD51 ] WpdUsb C:\WINDOWS\system32\DRIVERS\wpdusb.sys
15:11:23.0968 0x08e0 WpdUsb - ok
15:11:24.0000 0x08e0 [ 300B3E84FAF1A5C1F791C159BA28035D, 0194856BDF94C1F274AF70AD558290ACDACDDEA331BD66FEB8E167ABD1E36786 ] wscsvc C:\WINDOWS\system32\wscsvc.dll
15:11:24.0140 0x08e0 wscsvc - ok
15:11:24.0171 0x08e0 [ C98B39829C2BBD34E454150633C62C78, 71B60EA3AD0E2637917D528C6A9E7ECF2949E3E5E91036AA5BBADA95BD725511 ] WSTCODEC C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
15:11:24.0296 0x08e0 WSTCODEC - ok
15:11:24.0328 0x08e0 [ 7B4FE05202AA6BF9F4DFD0E6A0D8A085, A1DB8909FA73337DB613D01824945485186654364A4DF129B8CB913CF87D1D2E ] wuauserv C:\WINDOWS\system32\wuauserv.dll
15:11:24.0468 0x08e0 wuauserv - ok
15:11:24.0515 0x08e0 [ 50EB9E21963B4F06FD010D007D54351B, 0918EABC0EBFE39EFFAE15A0286A8193D18474665B572CCD5E857A127EA1055B ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
15:11:24.0562 0x08e0 WudfPf - ok
15:11:24.0593 0x08e0 [ 6E209664BDEA8A15B5E8E480D6C607C2, 3A3C4C34DB39DE9660E68D40A0D4D351F7684A08B5B40C3B281436CEBD0DED62 ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
15:11:24.0609 0x08e0 WudfRd - ok
15:11:24.0640 0x08e0 [ AE93084D2D236887BA56467AE42B4955, EC0B076A2B3EDA17A613219C2888EBB86A337E9C47862F0F35919C3A02942909 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
15:11:24.0656 0x08e0 WudfSvc - ok
15:11:24.0718 0x08e0 [ C4F109C005F6725162D2D12CA751E4A7, AC996B44338328BDD4442FE48406F286A64526F0EC77BE00A19FA7FDB0407CFE ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
15:11:24.0906 0x08e0 WZCSVC - ok
15:11:24.0921 0x08e0 [ 0ADA34871A2E1CD2CAAFED1237A47750, 45BEF8649078BD74C1A347B5F2D3A1958E5A7DCD6C6BA8A2E0CAD277A929C64E ] xmlprov C:\WINDOWS\System32\xmlprov.dll
15:11:25.0062 0x08e0 xmlprov - ok
15:11:25.0078 0x08e0 ================ Scan global ===============================
15:11:25.0109 0x08e0 [ 2C60091CA5F67C3032EAB3B30390C27F, 9E205C8E67F4B61FCFA2A82AA1968D522C3B6410D7075BE813F7F1564D61632E ] C:\WINDOWS\system32\basesrv.dll
15:11:25.0171 0x08e0 [ E62178BC21EAC63A3B9A2DBD46C1B505, CAA5480CC4DAA37758F0CF445F865FD6F4630080B044EF2E606C2F62DAA4061A ] C:\WINDOWS\system32\winsrv.dll
15:11:25.0203 0x08e0 [ E62178BC21EAC63A3B9A2DBD46C1B505, CAA5480CC4DAA37758F0CF445F865FD6F4630080B044EF2E606C2F62DAA4061A ] C:\WINDOWS\system32\winsrv.dll
15:11:25.0250 0x08e0 [ A3EDBE9053889FB24AB22492472B39DC, 6F2ED6E04BDE2FCA2A8BF9BD2D1D6923DE6EAECB46F582B6C0BD1CF364D65C9E ] C:\WINDOWS\system32\services.exe
15:11:25.0250 0x08e0 [ Global ] - ok
15:11:25.0250 0x08e0 ================ Scan MBR ==================================
15:11:25.0265 0x08e0 [ 72B8CE41AF0DE751C946802B3ED844B4 ] \Device\Harddisk0\DR0
15:11:25.0484 0x08e0 \Device\Harddisk0\DR0 - ok
15:11:25.0484 0x08e0 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk2\DR5
15:11:25.0687 0x08e0 \Device\Harddisk2\DR5 - ok
15:11:25.0687 0x08e0 ================ Scan VBR ==================================
15:11:25.0687 0x08e0 [ D87C7BBE57E3D71B79E7C3F8499A69C4 ] \Device\Harddisk0\DR0\Partition1
15:11:25.0687 0x08e0 \Device\Harddisk0\DR0\Partition1 - ok
15:11:25.0703 0x08e0 [ 5CE505E1069C0E5E5DEC0F339ADDAEBE ] \Device\Harddisk0\DR0\Partition2
15:11:25.0718 0x08e0 \Device\Harddisk0\DR0\Partition2 - ok
15:11:25.0734 0x08e0 [ CA2D679725F981DC0E0347A76900D47A ] \Device\Harddisk0\DR0\Partition3
15:11:25.0734 0x08e0 \Device\Harddisk0\DR0\Partition3 - ok
15:11:25.0734 0x08e0 [ 831DE799B0E587F38741E4A8EFBD4027 ] \Device\Harddisk2\DR5\Partition1
15:11:25.0734 0x08e0 \Device\Harddisk2\DR5\Partition1 - ok
15:11:25.0734 0x08e0 ================ Scan generic autorun ======================
15:11:25.0812 0x08e0 [ A4A66195EB0ECD574A32AAA92DC0A7BD, 4E30D565917158316A541BB29D73BF5F3A01DAB1240363276DE0C5D59B2BFFFE ] C:\Programme\ScanSoft\PaperPort\Ereg\Ereg.exe
15:11:25.0843 0x08e0 PPort11reminder - ok
15:11:25.0953 0x08e0 [ A162B967A88BF374A81E01EF6E7A2655, 3616D7DDF72964EB1C7C40E45CCEFD7116252607068AEB9FB093F20064FB5BA2 ] C:\Programme\Avira\AntiVir Desktop\avgnt.exe
15:11:26.0015 0x08e0 avgnt - ok
15:11:26.0078 0x08e0 [ C74C7963EEC07AF49DCE44D64819B2BF, 7CCA35A4A3BC2BD427580C1EBBE4BA6E3FD9125780B056201B2D6E6A312AAC62 ] C:\Programme\QuickTime\qttask.exe
15:11:26.0109 0x08e0 QuickTime Task - detected UnsignedFile.Multi.Generic ( 1 )
15:11:26.0109 0x08e0 Detect skipped due to KSN trusted
15:11:26.0109 0x08e0 QuickTime Task - ok
15:11:26.0171 0x08e0 [ BA18CFAB98426BFA6D6EC7E5B1961ED0, 540BF2CFDB099296F2AA24D192EFC5B013C88C0152763454521355ACBB50337D ] C:\Programme\Avira\My Avira\Avira.OE.Systray.exe
15:11:26.0203 0x08e0 Avira Systray - ok
15:11:26.0218 0x08e0 [ 01B4E6E990B6C5EA8856D96C7FD044B2, 2266296FD3C8E0DFA657F21406EE4E494477870DFAF7C65BEBCB6FBA8CADC7C6 ] C:\WINDOWS\system32\CTFMON.EXE
15:11:26.0375 0x08e0 CTFMON.EXE - ok
15:11:26.0375 0x08e0 [ 01B4E6E990B6C5EA8856D96C7FD044B2, 2266296FD3C8E0DFA657F21406EE4E494477870DFAF7C65BEBCB6FBA8CADC7C6 ] C:\WINDOWS\system32\CTFMON.EXE
15:11:26.0515 0x08e0 CTFMON.EXE - ok
15:11:26.0562 0x08e0 [ E616A6A6E91B0A86F2F6217CDE835FFE, 411671C4B2BB4DB3F02A21C199A5479F31394165704736A549B53245B94577F7 ] C:\Programme\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
15:11:26.0578 0x08e0 swg - ok
15:11:26.0609 0x08e0 AV detected via SS1: Avira AntiVir PersonalEdition Classic, 0.0.0.0, enabled, updated
15:11:26.0609 0x08e0 AV detected via SS1: Avira AntiVir PersonalEdition Classic, 0.0.0.0, enabled, updated
15:11:26.0609 0x08e0 AV detected via SS1: Avira AntiVir PersonalEdition Classic, 0.0.0.0, enabled, updated
15:11:26.0609 0x08e0 AV detected via SS1: Avira Desktop, 13.6.20.2100, enabled, updated
15:11:26.0609 0x08e0 AV detected via SS1: Avira AntiVir PersonalEdition Classic, 7.0.0.165
, enabled, updated
15:11:26.0609 0x08e0 Win FW state via NFM: enabled
15:11:41.0015 0x08e0 ============================================================
15:11:41.0015 0x08e0 Scan finished
15:11:41.0015 0x08e0 ============================================================
15:11:41.0046 0x0944 Detected object count: 0
15:11:41.0046 0x0944 Actual detected object count: 0
hatte 9 Funde in Quarantäne und etliche Non-Malware-dinger Code:
ATTFilter Malwarebytes Anti-Malware www.malwarebytes.org Suchlauf Datum: 23.01.2015 Suchlauf-Zeit: 14:31:35 Logdatei: Malware-txt.txt Administrator: Ja Version: 2.00.4.1028 Malware Datenbank: v2015.01.23.04 Rootkit Datenbank: v2015.01.14.01 Lizenz: Kostenlos Malware Schutz: Deaktiviert Bösartiger Webseiten Schutz: Deaktiviert Selbstschutz: Deaktiviert Betriebssystem: Windows XP Service Pack 3 CPU: x86 Dateisystem: NTFS Benutzer: Beul Suchlauf-Art: Bedrohungs-Suchlauf Ergebnis: Abgeschlossen Durchsuchte Objekte: 405299 Verstrichene Zeit: 23 Min, 27 Sek Speicher: Aktiviert Autostart: Aktiviert Dateisystem: Aktiviert Archive: Aktiviert Rootkits: Aktiviert Heuristik: Aktiviert PUP: Warnen PUM: Aktiviert Prozesse: 0 (Keine schädliche Elemente erkannt) Module: 0 (Keine schädliche Elemente erkannt) Registrierungsschlüssel: 0 (Keine schädliche Elemente erkannt) Registrierungswerte: 0 (Keine schädliche Elemente erkannt) Registrierungsdaten: 0 (Keine schädliche Elemente erkannt) Ordner: 0 (Keine schädliche Elemente erkannt) Dateien: 0 (Keine schädliche Elemente erkannt) Physische Sektoren: 0 (Keine schädliche Elemente erkannt) (end) |
|
23.01.2015, 17:28
| #11 |
| /// the machine /// TB-Ausbilder | Provider meldet Virusbefall hi, Scan mit Combofix
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
23.01.2015, 18:26
| #12 |
| | Provider meldet VirusbefallCode:
ATTFilter ComboFix 15-01-22.02 - Beul 23.01.2015 18:05:11.1.1 - x86
Microsoft Windows XP Home Edition 5.1.2600.3.1252.49.1031.18.1534.889 [GMT 1:00]
ausgeführt von:: c:\dokumente und einstellungen\Beul\Desktop\ComboFix.exe
AV: Avira AntiVir PersonalEdition Classic *Enabled/Updated* {00000000-0000-0000-0000-000000000000}
AV: Avira AntiVir PersonalEdition Classic *Enabled/Updated* {804FD0EC-FFA4-00EB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *Enabled/Updated* {804FD2B8-FFA4-00EB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *Enabled/Updated* {804FD2B8-FFA4-00FC-0D24-347CA8A3377C}
AV: Avira Desktop *Enabled/Updated* {AD166499-45F9-482A-A743-FDD3350758C7}
.
.
(((((((((((((((((((((((((((((((((((( Weitere Löschungen ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\dokume~1\Beul\LOKALE~1\Temp\avgnt.exe\Avira.OE.ExtApi.dll
c:\dokumente und einstellungen\Beul\Anwendungsdaten\Avapd
c:\dokumente und einstellungen\Beul\Anwendungsdaten\Avapd\ekzu.fur
c:\dokumente und einstellungen\Beul\Anwendungsdaten\Bouz
c:\dokumente und einstellungen\Beul\Anwendungsdaten\Bouz\ozyd.oxu
c:\dokumente und einstellungen\Beul\Anwendungsdaten\Cada
c:\dokumente und einstellungen\Beul\Anwendungsdaten\Cada\uwofs.fao
c:\dokumente und einstellungen\Beul\Anwendungsdaten\Efrug
c:\dokumente und einstellungen\Beul\Anwendungsdaten\Efrug\evuxp.iti
c:\dokumente und einstellungen\Beul\Anwendungsdaten\Ertu
c:\dokumente und einstellungen\Beul\Anwendungsdaten\Ertu\vybiu.noi
c:\dokumente und einstellungen\Beul\Anwendungsdaten\Etmu
c:\dokumente und einstellungen\Beul\Anwendungsdaten\Etmu\nyulu.vam
c:\dokumente und einstellungen\Beul\Anwendungsdaten\Fekye
c:\dokumente und einstellungen\Beul\Anwendungsdaten\Fekye\qegae.lif
c:\dokumente und einstellungen\Beul\Anwendungsdaten\Ixha
c:\dokumente und einstellungen\Beul\Anwendungsdaten\Ixha\xolio.liz
c:\dokumente und einstellungen\Beul\Anwendungsdaten\Obdoon
c:\dokumente und einstellungen\Beul\Anwendungsdaten\Obdoon\nysyb.iwe
c:\dokumente und einstellungen\Beul\Anwendungsdaten\Odyck
c:\dokumente und einstellungen\Beul\Anwendungsdaten\Odyck\icoz.tmp
c:\dokumente und einstellungen\Beul\Anwendungsdaten\Odyck\icoz.xoa
c:\dokumente und einstellungen\Beul\Anwendungsdaten\Oslazu
c:\dokumente und einstellungen\Beul\Anwendungsdaten\Oslazu\ypezw.ulb
c:\dokumente und einstellungen\Beul\Anwendungsdaten\Ozfi
c:\dokumente und einstellungen\Beul\Anwendungsdaten\Ozfi\ufiv.mae
c:\dokumente und einstellungen\Beul\Anwendungsdaten\Raurqy
c:\dokumente und einstellungen\Beul\Anwendungsdaten\Raurqy\fytoe.uze
c:\dokumente und einstellungen\Beul\Anwendungsdaten\Siahre
c:\dokumente und einstellungen\Beul\Anwendungsdaten\Siahre\ytgyk.qye
c:\dokumente und einstellungen\Beul\Anwendungsdaten\Tyhiu
c:\dokumente und einstellungen\Beul\Anwendungsdaten\Tyhiu\beevl.niu
c:\dokumente und einstellungen\Beul\Anwendungsdaten\Tyhiu\beevl.tmp
c:\dokumente und einstellungen\Beul\Anwendungsdaten\Xaoto
c:\dokumente und einstellungen\Beul\Anwendungsdaten\Xaoto\yhoty.uld
c:\dokumente und einstellungen\Beul\Anwendungsdaten\Xaozyg
c:\dokumente und einstellungen\Beul\Anwendungsdaten\Xaozyg\yhixe.ags
c:\dokumente und einstellungen\Beul\Anwendungsdaten\Ykruo
c:\dokumente und einstellungen\Beul\Anwendungsdaten\Ykruo\ybpi.umg
c:\dokumente und einstellungen\Beul\Anwendungsdaten\Yrap
c:\dokumente und einstellungen\Beul\Anwendungsdaten\Yrap\yhsia.rey
c:\dokumente und einstellungen\Beul\Anwendungsdaten\Yxfieg
c:\dokumente und einstellungen\Beul\Anwendungsdaten\Yxfieg\waogh.pae
c:\dokumente und einstellungen\Beul\Anwendungsdaten\Zyytw
c:\dokumente und einstellungen\Beul\Anwendungsdaten\Zyytw\uzmu.koq
c:\dokumente und einstellungen\Beul\bikblocks.exe
c:\dokumente und einstellungen\Beul\Lokale Einstellungen\Temp\avgnt.exe\Avira.OE.ExtApi.dll
c:\programme\BrowserCompanion
c:\programme\BrowserCompanion\logo.ico
c:\programme\BrowserCompanion\terms.lnk.url
c:\windows\$msi31uninstall_kb893803v2$
c:\windows\$msi31uninstall_kb893803v2$\msi.dll
c:\windows\$msi31uninstall_kb893803v2$\msiexec.exe
c:\windows\$msi31uninstall_kb893803v2$\msihnd.dll
c:\windows\$msi31uninstall_kb893803v2$\msimsg.dll
c:\windows\$msi31uninstall_kb893803v2$\msisip.dll
c:\windows\$msi31uninstall_kb893803v2$\reg00013
c:\windows\$msi31uninstall_kb893803v2$\reg00014
c:\windows\$msi31uninstall_kb893803v2$\reg00015
c:\windows\$msi31uninstall_kb893803v2$\reg00016
c:\windows\$msi31uninstall_kb893803v2$\reg00017
c:\windows\$msi31uninstall_kb893803v2$\reg00018
c:\windows\$msi31uninstall_kb893803v2$\reg00019
c:\windows\$msi31uninstall_kb893803v2$\reg00020
c:\windows\$msi31uninstall_kb893803v2$\reg00021
c:\windows\$msi31uninstall_kb893803v2$\reg00022
c:\windows\$msi31uninstall_kb893803v2$\reg00023
c:\windows\$msi31uninstall_kb893803v2$\reg00024
c:\windows\$msi31uninstall_kb893803v2$\reg00025
c:\windows\$msi31uninstall_kb893803v2$\reg00026
c:\windows\$msi31uninstall_kb893803v2$\reg00027
c:\windows\$msi31uninstall_kb893803v2$\reg00028
c:\windows\$msi31uninstall_kb893803v2$\reg00029
c:\windows\$msi31uninstall_kb893803v2$\reg00030
c:\windows\$msi31uninstall_kb893803v2$\reg00031
c:\windows\$msi31uninstall_kb893803v2$\reg00032
c:\windows\$msi31uninstall_kb893803v2$\reg00033
c:\windows\$msi31uninstall_kb893803v2$\reg00034
c:\windows\$msi31uninstall_kb893803v2$\reg00035
c:\windows\$msi31uninstall_kb893803v2$\reg00036
c:\windows\$msi31uninstall_kb893803v2$\reg00037
c:\windows\$msi31uninstall_kb893803v2$\reg00038
c:\windows\$msi31uninstall_kb893803v2$\reg00039
c:\windows\$msi31uninstall_kb893803v2$\reg00040
c:\windows\$msi31uninstall_kb893803v2$\reg00041
c:\windows\$msi31uninstall_kb893803v2$\reg00042
c:\windows\$msi31uninstall_kb893803v2$\reg00043
c:\windows\$msi31uninstall_kb893803v2$\reg00044
c:\windows\$msi31uninstall_kb893803v2$\reg00045
c:\windows\$msi31uninstall_kb893803v2$\reg00046
c:\windows\$msi31uninstall_kb893803v2$\reg00047
c:\windows\$msi31uninstall_kb893803v2$\reg00048
c:\windows\$msi31uninstall_kb893803v2$\reg00051
c:\windows\$msi31uninstall_kb893803v2$\reg00052
c:\windows\$msi31uninstall_kb893803v2$\reg00053
c:\windows\$msi31uninstall_kb893803v2$\reg00054
c:\windows\$msi31uninstall_kb893803v2$\reg00055
c:\windows\$msi31uninstall_kb893803v2$\reg00056
c:\windows\$msi31uninstall_kb893803v2$\reg00057
c:\windows\$msi31uninstall_kb893803v2$\reg00058
c:\windows\$msi31uninstall_kb893803v2$\reg00059
c:\windows\$msi31uninstall_kb893803v2$\reg00060
c:\windows\$msi31uninstall_kb893803v2$\reg00061
c:\windows\$msi31uninstall_kb893803v2$\reg00062
c:\windows\$msi31uninstall_kb893803v2$\reg00063
c:\windows\$msi31uninstall_kb893803v2$\reg00064
c:\windows\$msi31uninstall_kb893803v2$\reg00065
c:\windows\$msi31uninstall_kb893803v2$\reg00066
c:\windows\$msi31uninstall_kb893803v2$\reg00067
c:\windows\$msi31uninstall_kb893803v2$\reg00068
c:\windows\$msi31uninstall_kb893803v2$\reg00069
c:\windows\$msi31uninstall_kb893803v2$\reg00070
c:\windows\$msi31uninstall_kb893803v2$\reg00071
c:\windows\$msi31uninstall_kb893803v2$\reg00072
c:\windows\$msi31uninstall_kb893803v2$\reg00073
c:\windows\$msi31uninstall_kb893803v2$\reg00074
c:\windows\$msi31uninstall_kb893803v2$\reg00075
c:\windows\$msi31uninstall_kb893803v2$\reg00076
c:\windows\$msi31uninstall_kb893803v2$\reg00077
c:\windows\$msi31uninstall_kb893803v2$\reg00078
c:\windows\$msi31uninstall_kb893803v2$\reg00079
c:\windows\$msi31uninstall_kb893803v2$\reg00080
c:\windows\$msi31uninstall_kb893803v2$\reg00081
c:\windows\$msi31uninstall_kb893803v2$\reg00082
c:\windows\$msi31uninstall_kb893803v2$\reg00083
c:\windows\$msi31uninstall_kb893803v2$\reg00084
c:\windows\$msi31uninstall_kb893803v2$\reg00085
c:\windows\$msi31uninstall_kb893803v2$\reg00086
c:\windows\$msi31uninstall_kb893803v2$\reg00087
c:\windows\$msi31uninstall_kb893803v2$\reg00088
c:\windows\$msi31uninstall_kb893803v2$\reg00089
c:\windows\$msi31uninstall_kb893803v2$\reg00090
c:\windows\$msi31uninstall_kb893803v2$\reg00091
c:\windows\$msi31uninstall_kb893803v2$\reg00092
c:\windows\$msi31uninstall_kb893803v2$\reg00093
c:\windows\$msi31uninstall_kb893803v2$\reg00094
c:\windows\$msi31uninstall_kb893803v2$\reg00095
c:\windows\$msi31uninstall_kb893803v2$\reg00096
c:\windows\$msi31uninstall_kb893803v2$\reg00097
c:\windows\$msi31uninstall_kb893803v2$\reg00098
c:\windows\$msi31uninstall_kb893803v2$\reg00099
c:\windows\$msi31uninstall_kb893803v2$\reg00100
c:\windows\$msi31uninstall_kb893803v2$\reg00101
c:\windows\$msi31uninstall_kb893803v2$\reg00102
c:\windows\$msi31uninstall_kb893803v2$\reg00103
c:\windows\$msi31uninstall_kb893803v2$\reg00104
c:\windows\$msi31uninstall_kb893803v2$\reg00105
c:\windows\$msi31uninstall_kb893803v2$\reg00106
c:\windows\$msi31uninstall_kb893803v2$\reg00107
c:\windows\$msi31uninstall_kb893803v2$\reg00108
c:\windows\$msi31uninstall_kb893803v2$\reg00109
c:\windows\$msi31uninstall_kb893803v2$\reg00110
c:\windows\$msi31uninstall_kb893803v2$\reg00111
c:\windows\$msi31uninstall_kb893803v2$\reg00112
c:\windows\$msi31uninstall_kb893803v2$\reg00113
c:\windows\$msi31uninstall_kb893803v2$\reg00114
c:\windows\$msi31uninstall_kb893803v2$\reg00115
c:\windows\$msi31uninstall_kb893803v2$\reg00116
c:\windows\$msi31uninstall_kb893803v2$\spuninst\spuninst.exe
c:\windows\$msi31uninstall_kb893803v2$\spuninst\spuninst.inf
c:\windows\$msi31uninstall_kb893803v2$\spuninst\spuninst.txt
c:\windows\$msi31uninstall_kb893803v2$\spuninst\updspapi.dll
c:\windows\IsUn0407.exe
c:\windows\msdownld.tmp
c:\windows\system32\DC120fc7_32.dll
c:\windows\system32\logs
.
.
((((((((((((((((((((((((((((((((((((((( Treiber/Dienste )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_NPF
-------\Service_NPF
.
.
((((((((((((((((((((((( Dateien erstellt von 2014-12-23 bis 2015-01-23 ))))))))))))))))))))))))))))))
.
.
2015-01-23 13:30 . 2015-01-23 13:30 114904 ----a-w- c:\windows\system32\drivers\16C204E1.sys
2015-01-23 11:45 . 2015-01-23 15:06 114904 ----a-w- c:\windows\system32\drivers\MBAMSwissArmy.sys
2015-01-23 11:42 . 2015-01-23 14:28 -------- d-----w- c:\programme\ Malwarebytes Anti-Malware
2015-01-23 11:42 . 2014-11-21 05:14 54360 ----a-w- c:\windows\system32\drivers\mbamchameleon.sys
2015-01-20 12:55 . 2015-01-22 17:43 -------- d-----w- C:\FRST
.
.
.
(((((((((((((((((((((((((((((((((((( Find3M Bericht ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-11-21 05:14 . 2009-08-23 13:48 23256 ----a-w- c:\windows\system32\drivers\mbam.sys
2014-10-26 14:17 . 2012-12-17 17:18 136216 ----a-w- c:\windows\system32\drivers\avipbb.sys
2014-10-26 14:17 . 2012-12-17 17:18 98160 ----a-w- c:\windows\system32\drivers\avgntflt.sys
2008-01-19 19:22 . 2007-11-11 17:08 67696 ----a-w- c:\programme\mozilla firefox\components\jar50.dll
2008-01-19 19:22 . 2007-11-11 17:08 54376 ----a-w- c:\programme\mozilla firefox\components\jsd3250.dll
2008-01-19 19:22 . 2007-11-11 17:08 34952 ----a-w- c:\programme\mozilla firefox\components\myspell.dll
2008-01-19 19:22 . 2007-11-11 17:08 46720 ----a-w- c:\programme\mozilla firefox\components\spellchk.dll
2008-01-19 19:22 . 2007-11-11 17:08 172144 ----a-w- c:\programme\mozilla firefox\components\xpinstal.dll
.
.
(((((((((((((((((((((((((((( Autostartpunkte der Registrierung ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"swg"="c:\programme\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2007-06-18 68856]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"PPort11reminder"="c:\programme\ScanSoft\PaperPort\Ereg\Ereg.exe" [2007-08-31 328992]
"avgnt"="c:\programme\Avira\AntiVir Desktop\avgnt.exe" [2015-01-08 702768]
"QuickTime Task"="c:\programme\QuickTime\qttask.exe" [2006-05-16 155648]
"Avira Systray"="c:\programme\Avira\My Avira\Avira.OE.Systray.exe" [2014-11-20 126200]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
.
c:\dokumente und einstellungen\All Users\Startmenü\Programme\Autostart\
WISO Mein Steuer-Sparbuch heute.lnk - c:\programme\WISO\Steuersoftware 2014\mshaktuell.exe [2014-2-24 1429808]
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AGRSMMSG]
2005-03-08 13:53 88203 ----a-w- c:\windows\AGRSMMSG.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AntivirusRegistration]
2005-01-31 14:09 458752 ----a-w- c:\programme\CA\Etrust Antivirus\Register.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ATICCC]
2006-01-02 15:41 45056 ----a-w- c:\programme\ATI Technologies\ATI.ACE\CLI.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ATIPTA]
2005-06-07 19:05 344064 ----a-w- c:\programme\ATI Technologies\ATI Control Panel\atiptaxx.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\avgnt]
2015-01-08 20:55 702768 ----a-w- c:\programme\Avira\AntiVir Desktop\avgnt.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg]
2007-06-18 15:24 68856 ----a-w- c:\programme\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"c:\\WINDOWS\\system32\\sessmgr.exe"=
"c:\\Programme\\Messenger\\msmsgs.exe"=
"c:\\WINDOWS\\system32\\fxsclnt.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"c:\\Programme\\Windows Live\\Messenger\\wlcsdk.exe"=
"c:\\Programme\\Windows Live\\Messenger\\msnmsgr.exe"=
"c:\\Programme\\Google\\Google Earth\\plugin\\geplugin.exe"=
"c:\\Programme\\Skype\\Phone\\Skype.exe"=
"c:\\WINDOWS\\system32\\IPCamera.exe"=
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"54925:UDP"= 54925:UDP:BrotherNetwork Scanner
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\IcmpSettings]
"AllowInboundEchoRequest"= 1 (0x1)
.
R1 avkmgr;avkmgr;c:\windows\system32\drivers\avkmgr.sys [17.12.2012 18:18 37352]
R1 SSHDRV86;SSHDRV86;c:\windows\system32\drivers\SSHDRV86.sys [08.04.2006 14:31 81408]
R2 AntiVirSchedulerService;Avira Planer;c:\programme\Avira\AntiVir Desktop\sched.exe [17.12.2012 18:18 431920]
R2 Avira.OE.ServiceHost;Avira Service Host;c:\programme\Avira\My Avira\Avira.OE.ServiceHost.exe [20.11.2014 14:13 166192]
R3 PRISM_A00;CREATIX 802.11g Driver;c:\windows\system32\drivers\PRISMA00.sys [28.06.2005 15:54 380736]
S2 SkypeUpdate;Skype Updater;c:\programme\Skype\Updater\Updater.exe [13.07.2012 12:28 160944]
S3 BrYNSvc;BrYNSvc;c:\programme\Browny02\BrYNSvc.exe [03.05.2011 20:00 245760]
S3 CardReaderFilter;Card Reader Filter;c:\windows\system32\drivers\USBCRFT.SYS [28.06.2005 16:28 17408]
S3 dgderdrv;dgderdrv;c:\windows\system32\drivers\dgderdrv.sys --> c:\windows\system32\drivers\dgderdrv.sys [?]
S3 FsUsbExDisk;FsUsbExDisk;c:\windows\system32\FsUsbExDisk.Sys [12.06.2011 19:27 36640]
S3 ss_bbus;SAMSUNG USB Mobile Device (WDM);c:\windows\system32\drivers\ss_bbus.sys [12.06.2011 19:20 98432]
S3 ss_bmdfl;SAMSUNG USB Mobile Modem (Filter);c:\windows\system32\drivers\ss_bmdfl.sys [12.06.2011 19:20 14848]
S3 ss_bmdm;SAMSUNG USB Mobile Modem;c:\windows\system32\drivers\ss_bmdm.sys [12.06.2011 19:20 123648]
S3 ss_bserd;SAMSUNG USB Mobile Logging Driver;c:\windows\system32\drivers\ss_bserd.sys [12.06.2011 19:20 100224]
.
--- Andere Dienste/Treiber im Speicher ---
.
*NewlyCreated* - WS2IFSL
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{621FCD24-4498-4324-A81E-07D331376EDF}]
2007-09-19 09:32 7680 ----a-w- c:\programme\PixiePack Codec Pack\InstallerHelper.exe
.
Inhalt des "geplante Tasks" Ordners
.
2015-01-23 c:\windows\Tasks\GoogleUpdateTaskMachineCore1cece8d8b87f2ee.job
- c:\programme\Google\Update\GoogleUpdate.exe [2010-01-29 20:50]
.
2015-01-23 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\programme\Google\Update\GoogleUpdate.exe [2010-01-29 20:50]
.
.
------- Zusätzlicher Suchlauf -------
.
uStart Page = hxxp://www.freenet.de/
uSearchMigratedDefaultURL = hxxp://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://de.search.yahoo.com/search?fr=mcafee&p=%s
TCP: DhcpNameServer = 192.168.178.1
DPF: {3B36B017-7E49-426B-95B0-B5CECD83C2E2} - hxxp://chkr-web.ifolor.net/ORDERINGGENERAL/LowRes/app_support/ActiveX/IfolorUploader_chkr.cab
DPF: {45A0A292-ECC6-4D8F-9EA9-A4BD411D24C1} - hxxp://sat1.king.de/ctl/kingcomie.cab
DPF: {A4150320-98EC-4DB6-9BFB-EBF4B6FBEB16} - hxxp://192.168.178.40:180/codebase/DVM_IPCam2.ocx
FF - ProfilePath - c:\dokumente und einstellungen\Beul\Anwendungsdaten\Mozilla\Firefox\Profiles\tl2nmkt0.default\
FF - prefs.js: browser.search.defaulturl - hxxp://www.google.com/search?lr=&ie=UTF-8&oe=UTF-8&q=
FF - prefs.js: browser.startup.homepage - hxxp://search.avira.com/?l=dis&o=APN10261&gct=hp&dc=EU&locale=de_DE
FF - prefs.js: browser.search.selectedEngine - Ask.com
FF - prefs.js: keyword.URL - hxxp://www.searchplusnetwork.com/?sp=vit4&q=
FF - user.js: dom.disable_open_during_load - true // Popupblocker control handled by McAfee Privacy Service
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
MSConfigStartUp-AnyDVD - c:\programme\SlySoft\AnyDVD\AnyDVD.exe
MSConfigStartUp-Obqyofalu - c:\dokumente und einstellungen\Beul\Anwendungsdaten\Zyquo\vyoq.exe
MSConfigStartUp-Qoavgiihem - c:\dokumente und einstellungen\Beul\Anwendungsdaten\Biikeq\iveho.exe
AddRemove-Microsoft Interactive Training - c:\windows\IsUn0407.exe
AddRemove-01_Simmental - c:\programme\SAMSUNG\USB Drivers\01_Simmental\Uninstall.exe
AddRemove-02_Siberian - c:\programme\SAMSUNG\USB Drivers\02_Siberian\Uninstall.exe
AddRemove-03_Swallowtail - c:\programme\SAMSUNG\USB Drivers\03_Swallowtail\Uninstall.exe
AddRemove-04_semseyite - c:\programme\SAMSUNG\USB Drivers\04_semseyite\Uninstall.exe
AddRemove-05_Sloan - c:\programme\SAMSUNG\USB Drivers\05_Sloan\Uninstall.exe
AddRemove-06_Spencer - c:\programme\SAMSUNG\USB Drivers\06_Spencer\Uninstall.exe
AddRemove-07_Schorl - c:\programme\SAMSUNG\USB Drivers\07_Schorl\Uninstall.exe
AddRemove-08_EMPChipset - c:\programme\SAMSUNG\USB Drivers\08_EMPChipset\Uninstall.exe
AddRemove-09_Hsp - c:\programme\SAMSUNG\USB Drivers\09_Hsp\Uninstall.exe
AddRemove-11_HSP_Plus_Default - c:\programme\SAMSUNG\USB Drivers\11_HSP_Plus_Default\Uninstall.exe
AddRemove-12_Symbian_USB_Download_Driver - c:\programme\SAMSUNG\USB Drivers\12_Symbian_USB_Download_Driver\Uninstall.exe
AddRemove-15_Symbian_Samsung_PC_DLC_Driver - c:\programme\SAMSUNG\USB Drivers\15_Symbian_Samsung_PC_DLC_Driver\Uninstall.exe
AddRemove-16_Shrewsbury - c:\programme\SAMSUNG\USB Drivers\16_Shrewsbury\Uninstall.exe
AddRemove-17_EMP_Chipset2 - c:\programme\SAMSUNG\USB Drivers\17_EMP_Chipset2\Uninstall.exe
AddRemove-18_Zinia_Serial_Driver - c:\programme\SAMSUNG\USB Drivers\18_Zinia_Serial_Driver\Uninstall.exe
AddRemove-19_VIA_driver - c:\programme\SAMSUNG\USB Drivers\19_VIA_driver\Uninstall.exe
AddRemove-20_NXP_Driver - c:\programme\SAMSUNG\USB Drivers\20_NXP_Driver\Uninstall.exe
AddRemove-{FAF88B432344413595BB2DED98385684} - c:\programme\DivX\DivXUserGuideUninstall
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, hxxp://www.gmer.net
Rootkit scan 2015-01-23 18:17
Windows 5.1.2600 Service Pack 3 NTFS
.
Scanne versteckte Prozesse...
.
Scanne versteckte Autostarteinträge...
.
Scanne versteckte Dateien...
.
Scan erfolgreich abgeschlossen
versteckte Dateien: 0
.
**************************************************************************
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil32_11_8_800_94_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil32_11_8_800_94_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
--------------------- Durch laufende Prozesse gestartete DLLs ---------------------
.
- - - - - - - > 'winlogon.exe'(560)
c:\windows\system32\Ati2evxx.dll
.
- - - - - - - > 'explorer.exe'(3124)
c:\windows\system32\webcheck.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
------------------------ Weitere laufende Prozesse ------------------------
.
c:\windows\system32\Ati2evxx.exe
c:\windows\system32\Ati2evxx.exe
c:\programme\Avira\AntiVir Desktop\avguard.exe
c:\programme\Java\jre7\bin\jqs.exe
c:\programme\Windows Media Player\WMPNetwk.exe
c:\programme\Avira\AntiVir Desktop\avshadow.exe
c:\windows\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
.
**************************************************************************
.
Zeit der Fertigstellung: 2015-01-23 18:24:08 - PC wurde neu gestartet
ComboFix-quarantined-files.txt 2015-01-23 17:24
.
Vor Suchlauf: 11 Verzeichnis(se), 68.649.820.160 Bytes frei
Nach Suchlauf: 13 Verzeichnis(se), 69.166.186.496 Bytes frei
.
WindowsXP-KB310994-SP2-Home-BootDisk-DEU.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
UnsupportedDebug="do not select this" /debug
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Home Edition" /noexecute=optin /fastdetect
.
- - End Of File - - BD1FC2E640631A04CB981C870835780C
72B8CE41AF0DE751C946802B3ED844B4
|
|
23.01.2015, 21:00
| #13 |
| /// the machine /// TB-Ausbilder | Provider meldet Virusbefall Downloade Dir bitte  Malwarebytes Anti-Malware
Downloade Dir bitte  AdwCleaner auf deinen Desktop.
Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
und ein frisches FRST log bitte.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
24.01.2015, 17:02
| #14 |
| | Provider meldet VirusbefallCode:
ATTFilter Malwarebytes Anti-Malware www.malwarebytes.org Suchlauf Datum: 23.01.2015 Suchlauf-Zeit: 21:25:49 Logdatei: mbam.txt Administrator: Ja Version: 2.00.4.1028 Malware Datenbank: v2015.01.23.08 Rootkit Datenbank: v2015.01.14.01 Lizenz: Kostenlos Malware Schutz: Deaktiviert Bösartiger Webseiten Schutz: Deaktiviert Selbstschutz: Deaktiviert Betriebssystem: Windows XP Service Pack 3 CPU: x86 Dateisystem: NTFS Benutzer: Beul Suchlauf-Art: Bedrohungs-Suchlauf Ergebnis: Abgeschlossen Durchsuchte Objekte: 411333 Verstrichene Zeit: 23 Min, 33 Sek Speicher: Aktiviert Autostart: Aktiviert Dateisystem: Aktiviert Archive: Aktiviert Rootkits: Aktiviert Heuristik: Aktiviert PUP: Warnen PUM: Aktiviert Prozesse: 0 (Keine schädliche Elemente erkannt) Module: 0 (Keine schädliche Elemente erkannt) Registrierungsschlüssel: 0 (Keine schädliche Elemente erkannt) Registrierungswerte: 0 (Keine schädliche Elemente erkannt) Registrierungsdaten: 0 (Keine schädliche Elemente erkannt) Ordner: 0 (Keine schädliche Elemente erkannt) Dateien: 0 (Keine schädliche Elemente erkannt) Physische Sektoren: 0 (Keine schädliche Elemente erkannt) (end) Code:
ATTFilter # AdwCleaner v4.109 - Bericht erstellt am 24/01/2015 um 16:47:21
# Aktualisiert 24/01/2015 von Xplode
# Database : 2015-01-24.3 [Local]
# Betriebssystem : Microsoft Windows XP Service Pack 3 (32 bits)
# Benutzername : Beul - COMPUTERNAME
# Gestartet von : C:\Dokumente und Einstellungen\Beul\Desktop\AdwCleaner_4.109.exe
# Option : Löschen
***** [ Dienste ] *****
***** [ Dateien / Ordner ] *****
Ordner Gelöscht : C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Tarma Installer
Ordner Gelöscht : C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Trymedia
Ordner Gelöscht : C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Viewpoint
Ordner Gelöscht : C:\Programme\ConduitEngine
Ordner Gelöscht : C:\Programme\Viewpoint
Ordner Gelöscht : C:\Dokumente und Einstellungen\Beul\Lokale Einstellungen\Anwendungsdaten\Conduit
Ordner Gelöscht : C:\Dokumente und Einstellungen\Beul\Lokale Einstellungen\Anwendungsdaten\ConduitEngine
Ordner Gelöscht : C:\Dokumente und Einstellungen\Beul\Anwendungsdaten\BrowserCompanion
Ordner Gelöscht : C:\Dokumente und Einstellungen\Beul\Anwendungsdaten\Uniblue
Datei Gelöscht : C:\WINDOWS\system32\conduitEngine.tmp
Datei Gelöscht : C:\Dokumente und Einstellungen\Beul\Anwendungsdaten\Mozilla\Firefox\Profiles\tl2nmkt0.default\searchplugins\Askcom.xml
Datei Gelöscht : C:\Dokumente und Einstellungen\Beul\Anwendungsdaten\Mozilla\Firefox\Profiles\tl2nmkt0.default\searchplugins\Plusnetwork.xml
Datei Gelöscht : C:\Dokumente und Einstellungen\Beul\Anwendungsdaten\Mozilla\Firefox\Profiles\tl2nmkt0.default\user.js
***** [ Tasks ] *****
***** [ Verknüpfungen ] *****
***** [ Registrierungsdatenbank ] *****
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtl
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtl.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtlSecondary
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtlSecondary.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Conduit.Engine
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\protector_dll.protectorbho
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\protector_dll.protectorbho.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{03F998B2-0E00-11D3-A498-00104B6EB52E}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{1B00725B-C455-4DE6-BFB6-AD540AD427CD}
Schlüssel Gelöscht : HKLM\SOFTWARE\MozillaPlugins\@viewpoint.com/VMP
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Toolbar.CT2431245
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Toolbar.CT2724386
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{03F998B2-0E00-11D3-A498-00104B6EB52E}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{1B00725B-C455-4DE6-BFB6-AD540AD427CD}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{00000000-6E41-4FD3-8538-502F5495E5FC}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{37E88BCA-81FC-4E42-B03D-B022FA7FE421}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{4327FABE-3C22-4689-8DBF-D226CF777FE9}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{CFF4DB9B-135F-47c0-9269-B4C6572FD61A}
Schlüssel Gelöscht : HKCU\Software\bbrs_002.tb
Schlüssel Gelöscht : HKCU\Software\Blabbers
Schlüssel Gelöscht : HKCU\Software\Blabbers
Schlüssel Gelöscht : HKCU\Software\conduitEngine
Schlüssel Gelöscht : HKCU\Software\ImInstaller
Schlüssel Gelöscht : HKCU\Software\Uniblue
Schlüssel Gelöscht : HKLM\SOFTWARE\conduitEngine
Schlüssel Gelöscht : HKLM\SOFTWARE\ImInstaller
Schlüssel Gelöscht : HKLM\SOFTWARE\MetaStream
Schlüssel Gelöscht : HKLM\SOFTWARE\Trymedia Systems
Schlüssel Gelöscht : HKLM\SOFTWARE\Viewpoint
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{CD95D125-2992-4858-B3EF-5F6FB52FBAD6}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ViewpointMediaPlayer
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{CD95D125-2992-4858-B3EF-5F6FB52FBAD6}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\ViewpointMediaPlayer
***** [ Browser ] *****
-\\ Internet Explorer v8.0.6001.18702
-\\ Mozilla Firefox v2.0.0.11 (de)
[tl2nmkt0.default\prefs.js] - Zeile gelöscht : user_pref("browser.startup.homepage", "hxxp://search.avira.com/?l=dis&o=APN10261&gct=hp&dc=EU&locale=de_DE");
[tl2nmkt0.default\prefs.js] - Zeile gelöscht : user_pref("browser.search.selectedEngine", "Ask.com");
[tl2nmkt0.default\prefs.js] - Zeile gelöscht : user_pref("browser.search.order.1", "Ask.com");
[tl2nmkt0.default\prefs.js] - Zeile gelöscht : user_pref("keyword.URL", "hxxp://www.searchplusnetwork.com/?sp=vit4&q=");
[tl2nmkt0.default\prefs.js] - Zeile gelöscht : user_pref("browser.search.defaultengine", "Ask.com");
[tl2nmkt0.default\prefs.js] - Zeile gelöscht : user_pref("browser.search.defaultenginename", "Ask.com");
*************************
AdwCleaner[R0].txt - [5194 octets] - [24/01/2015 16:15:20]
AdwCleaner[S0].txt - [5169 octets] - [24/01/2015 16:47:21]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [5229 octets] ##########
Code:
ATTFilter ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.4.1 (12.28.2014:1)
OS: Microsoft Windows XP x86
Ran by Beul on 24.01.2015 at 16:53:31,76
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~ Services
~~~ Registry Values
~~~ Registry Keys
Successfully deleted: [Registry Key - Orphan] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}
Successfully deleted: [Registry Key - Orphan] HKEY_CLASSES_ROOT\CLSID\{5C255C8A-E604-49b4-9D64-90988571CECB}
~~~ Files
~~~ Folders
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 24.01.2015 at 16:57:01,15
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
FRST Logfile: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 24-01-2015 01
Ran by Beul (administrator) on COMPUTERNAME on 24-01-2015 16:58:45
Running from C:\Dokumente und Einstellungen\Beul\Desktop
Loaded Profiles: Beul (Available profiles: Beul & Administrator)
Platform: Microsoft Windows XP Home Edition Service Pack 3 (X86) OS Language: Deutsch (Deutschland)
Internet Explorer Version 8 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(ATI Technologies Inc.) C:\WINDOWS\system32\ati2evxx.exe
(ATI Technologies Inc.) C:\WINDOWS\system32\ati2evxx.exe
(Avira Operations GmbH & Co. KG) C:\Programme\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Programme\Avira\AntiVir Desktop\avguard.exe
(Oracle Corporation) C:\Programme\Java\jre7\bin\jqs.exe
(Avira Operations GmbH & Co. KG) C:\Programme\Avira\My Avira\Avira.OE.ServiceHost.exe
(Avira Operations GmbH & Co. KG) C:\Programme\Avira\AntiVir Desktop\avshadow.exe
(Avira Operations GmbH & Co. KG) C:\Programme\Avira\AntiVir Desktop\avgnt.exe
(Apple Computer, Inc.) C:\Programme\QuickTime\qttask.exe
(Avira Operations GmbH & Co. KG) C:\Programme\Avira\My Avira\Avira.OE.Systray.exe
(Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [PPort11reminder] => C:\Programme\ScanSoft\PaperPort\Ereg\Ereg.exe [328992 2007-08-31] (Nuance Communications, Inc.)
HKLM\...\Run: [avgnt] => C:\Programme\Avira\AntiVir Desktop\avgnt.exe [702768 2015-01-08] (Avira Operations GmbH & Co. KG)
HKLM\...\Run: [QuickTime Task] => C:\Programme\QuickTime\qttask.exe [155648 2006-05-16] (Apple Computer, Inc.)
HKLM\...\Run: [Avira Systray] => C:\Programme\Avira\My Avira\Avira.OE.Systray.exe [126200 2014-11-20] (Avira Operations GmbH & Co. KG)
Winlogon\Notify\AtiExtEvent: C:\WINDOWS\system32\Ati2evxx.dll (ATI Technologies Inc.)
HKU\S-1-5-21-3143356383-4098776177-3215239415-1006\...\Run: [swg] => C:\Programme\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [68856 2007-06-18] (Google Inc.)
Startup: C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart\WISO Mein Steuer-Sparbuch heute.lnk
ShortcutTarget: WISO Mein Steuer-Sparbuch heute.lnk -> C:\Programme\WISO\Steuersoftware 2014\mshaktuell.exe ()
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKU\S-1-5-21-3143356383-4098776177-3215239415-1006\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-3143356383-4098776177-3215239415-1006\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.freenet.de/
HKU\S-1-5-21-3143356383-4098776177-3215239415-1006\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-3143356383-4098776177-3215239415-1006\Software\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = hxxp://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3143356383-4098776177-3215239415-1006 -> {105E99FF-8B9A-4492-B155-06194B9056D2} URL = hxxp://www.bing.com/search?FORM=IEFM1&q={searchTerms}&src={referrer:source?}
SearchScopes: HKU\S-1-5-21-3143356383-4098776177-3215239415-1006 -> {DECA3892-BA8F-44b8-A993-A466AD694AE4} URL = hxxp://de.search.yahoo.com/search?fr=mcafee&p={searchTerms}
SearchScopes: HKU\S-1-5-21-3143356383-4098776177-3215239415-1006 -> {E08477E0-DA8D-4FF1-9073-A176A0A55DFB} URL = hxxp://search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=b1ie7
BHO: Adobe PDF Reader Link Helper -> {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -> C:\Programme\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Programme\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live Anmelde-Hilfsprogramm -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Programme\Gemeinsame Dateien\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Programme\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO: Skype Plug-In -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Programme\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
BHO: Google Toolbar Notifier BHO -> {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} -> C:\Programme\Google\GoogleToolbarNotifier\5.7.9012.1008\swg.dll (Google Inc.)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Programme\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Programme\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKU\.DEFAULT -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Programme\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKU\S-1-5-21-3143356383-4098776177-3215239415-1006 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Programme\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
DPF: {15B782AF-55D8-11D1-B477-006097098764} hxxp://fpdownload.macromedia.com/get/shockwave/cabs/authorware/awswaxd.cab
DPF: {166B1BCA-3F9C-11CF-8075-444553540000} hxxp://fpdownload.macromedia.com/get/shockwave/cabs/director/sw.cab
DPF: {3B36B017-7E49-426B-95B0-B5CECD83C2E2} hxxp://chkr-web.ifolor.net/ORDERINGGENERAL/LowRes/app_support/ActiveX/IfolorUploader_chkr.cab
DPF: {3E68E405-C6DE-49FF-83AE-41EE9F4C36CE} hxxp://office.microsoft.com/officeupdate/content/opuc3.cab
DPF: {45A0A292-ECC6-4D8F-9EA9-A4BD411D24C1} hxxp://sat1.king.de/ctl/kingcomie.cab
DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} hxxp://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1120030355312
DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} hxxp://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1122285756359
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.5.0/jinstall-1_5_0_05-windows-i586.cab
DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} hxxp://fpdownload.macromedia.com/get/flashplayer/current/ultrashim.cab
DPF: {A4150320-98EC-4DB6-9BFB-EBF4B6FBEB16} hxxp://192.168.178.40:180/codebase/DVM_IPCam2.ocx
DPF: {CAFEEFAC-0015-0000-0005-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.5.0/jinstall-1_5_0_05-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\msdaipp.dll (Microsoft Corporation)
Handler: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\msdaipp.dll (Microsoft Corporation)
Handler: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\msdaipp.dll (Microsoft Corporation)
Handler: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\msdaipp.dll (Microsoft Corporation)
Handler: ipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\msdaipp.dll (Microsoft Corporation)
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Programme\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll (Microsoft Corporation)
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation)
Handler: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\msdaipp.dll (Microsoft Corporation)
Handler: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\msdaipp.dll (Microsoft Corporation)
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Programme\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll (Microsoft Corporation)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Programme\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Programme\Gemeinsame Dateien\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
FireFox:
========
FF ProfilePath: C:\Dokumente und Einstellungen\Beul\Anwendungsdaten\Mozilla\Firefox\Profiles\tl2nmkt0.default
FF DefaultSearchUrl: hxxp://www.google.com/search?lr=&ie=UTF-8&oe=UTF-8&q=
FF Plugin: @Google.com/GoogleEarthPlugin -> C:\Programme\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin: @java.com/DTPlugin,version=10.7.2 -> C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.7.2 -> C:\Programme\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @real.com/nppl3260;version=6.0.11.2240 -> C:\Programme\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprjplug;version=1.0.2.2298 -> C:\Programme\Real\RealPlayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprpjplug;version=6.0.12.1348 -> C:\Programme\Real\RealPlayer\Netscape6\nprpjplug.dll (RealNetworks, Inc.)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Programme\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Programme\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @zylom.com/ZylomGamesPlayer -> C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Zylom\ZylomGamesPlayer\npzylomgamesplayer.dll (Zylom)
FF Plugin ProgramFiles/Appdata: C:\Programme\mozilla firefox\plugins\npmidas.dll (Midasplayer Ltd)
FF Plugin ProgramFiles/Appdata: C:\Programme\mozilla firefox\plugins\npnul32.dll (mozilla.org)
FF Plugin ProgramFiles/Appdata: C:\Programme\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Programme\mozilla firefox\plugins\npqtplugin.dll (Apple Computer, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Programme\mozilla firefox\plugins\npqtplugin2.dll (Apple Computer, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Programme\mozilla firefox\plugins\npzylomgamesplayer.dll (Zylom)
FF SearchPlugin: C:\Dokumente und Einstellungen\Beul\Anwendungsdaten\Mozilla\Firefox\Profiles\tl2nmkt0.default\searchplugins\siteadvisor.xml
FF Extension: Microsoft Choice Guard - C:\Dokumente und Einstellungen\Beul\Anwendungsdaten\Mozilla\Firefox\Profiles\tl2nmkt0.default\Extensions\ChoiceGuard@Microsoft [2009-08-21]
FF Extension: Google Toolbar for Firefox - C:\Dokumente und Einstellungen\Beul\Anwendungsdaten\Mozilla\Firefox\Profiles\tl2nmkt0.default\Extensions\{3112ca9c-de6d-4884-a869-9855de68056c} [2008-10-31]
FF Extension: Talkback - C:\Programme\Mozilla Firefox\extensions\talkback@mozilla.org [2007-11-11]
FF Extension: Google Toolbar for Firefox - C:\Programme\Mozilla Firefox\extensions\{3112ca9c-de6d-4884-a869-9855de68056c} [2007-11-11]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2011-06-12]
Chrome:
=======
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - No Path
========================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 AntiVirSchedulerService; C:\Programme\Avira\AntiVir Desktop\sched.exe [431920 2015-01-08] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Programme\Avira\AntiVir Desktop\avguard.exe [431920 2015-01-08] (Avira Operations GmbH & Co. KG)
S2 ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [520192 2006-05-03] () [File not signed]
R2 Avira.OE.ServiceHost; C:\Programme\Avira\My Avira\Avira.OE.ServiceHost.exe [166192 2014-11-20] (Avira Operations GmbH & Co. KG)
S3 BrYNSvc; C:\Programme\Browny02\BrYNSvc.exe [245760 2010-01-25] (Brother Industries, Ltd.) [File not signed]
S2 gupdate; C:\Programme\Google\Update\GoogleUpdate.exe [107912 2015-01-08] (Google Inc.)
S3 gupdatem; C:\Programme\Google\Update\GoogleUpdate.exe [107912 2015-01-08] (Google Inc.)
S3 gusvc; C:\Programme\Google\Common\Google Updater\GoogleUpdaterService.exe [194032 2012-08-21] (Google)
S3 IDriverT; C:\Programme\Gemeinsame Dateien\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-03] (Macrovision Corporation) [File not signed]
R2 JavaQuickStarterService; C:\Programme\Java\jre7\bin\jqs.exe [161768 2012-10-07] (Oracle Corporation)
S3 ServiceLayer; C:\Programme\PC Connectivity Solution\ServiceLayer.exe [620544 2008-11-11] (Nokia.) [File not signed]
S2 SkypeUpdate; C:\Programme\Skype\Updater\Updater.exe [160944 2012-07-13] (Skype Technologies)
R2 WMPNetworkSvc; C:\Programme\Windows Media Player\WMPNetwk.exe [920576 2006-11-03] (Microsoft Corporation)
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R3 ALCXWDM; C:\WINDOWS\System32\drivers\ALCXWDM.SYS [2314560 2005-03-25] (Realtek Semiconductor Corp.)
S1 AmdK8; C:\WINDOWS\System32\DRIVERS\AmdK8.sys [43008 2005-06-28] (Advanced Micro Devices) [File not signed]
R2 avgntflt; C:\WINDOWS\System32\DRIVERS\avgntflt.sys [98160 2014-10-26] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\WINDOWS\System32\DRIVERS\avipbb.sys [136216 2014-10-26] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\WINDOWS\System32\DRIVERS\avkmgr.sys [37352 2013-12-08] (Avira Operations GmbH & Co. KG)
S3 CardReaderFilter; C:\WINDOWS\system32\Drivers\USBCRFT.SYS [17408 2012-08-05] (ICSI Technology Ltd.) [File not signed]
S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2008-04-13] (Microsoft Corporation)
S3 EL90XBC; C:\WINDOWS\System32\DRIVERS\el90xbc5.sys [66591 2001-08-17] (3Com Corporation)
R3 FETND5BV; C:\WINDOWS\System32\DRIVERS\fetnd5bv.sys [42496 2005-03-18] (VIA Technologies, Inc. )
S3 FETNDIS; C:\WINDOWS\System32\DRIVERS\fetnd5.sys [27165 2001-08-17] (VIA Technologies, Inc. )
S3 FsUsbExDisk; C:\WINDOWS\system32\FsUsbExDisk.SYS [36640 2009-12-22] () [File not signed]
R2 hwpsgt; C:\WINDOWS\System32\DRIVERS\hwpsgt.sys [137344 2006-04-16] () [File not signed]
R2 lemsgt; C:\WINDOWS\System32\DRIVERS\lemsgt.sys [9472 2006-04-16] () [File not signed]
S3 LVUSBSta; C:\WINDOWS\System32\drivers\lvusbsta.sys [22016 2005-05-27] (Logitech Inc.)
S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2008-04-13] (Microsoft Corporation)
R3 PRISM_A00; C:\WINDOWS\System32\DRIVERS\PRISMA00.sys [380736 2004-01-16] ()
R0 PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [20576 2005-05-09] (Sonic Solutions) [File not signed]
S3 QCMerced; C:\WINDOWS\System32\DRIVERS\LVCM.sys [1317152 2005-05-27] ()
R1 SSHDRV86; C:\WINDOWS\system32\drivers\SSHDRV86.sys [81408 2006-04-08] () [File not signed]
R1 ssmdrv; C:\WINDOWS\System32\DRIVERS\ssmdrv.sys [28520 2012-08-27] (Avira GmbH)
S3 ss_bbus; C:\WINDOWS\System32\DRIVERS\ss_bbus.sys [98432 2009-09-19] (MCCI)
S3 ss_bmdfl; C:\WINDOWS\System32\DRIVERS\ss_bmdfl.sys [14848 2009-09-19] (MCCI Corporation)
S3 ss_bmdm; C:\WINDOWS\System32\DRIVERS\ss_bmdm.sys [123648 2009-09-19] (MCCI Corporation)
S3 ss_bserd; C:\WINDOWS\System32\DRIVERS\ss_bserd.sys [100224 2009-09-19] (MCCI Corporation)
S3 tbhsd; C:\WINDOWS\System32\drivers\tbhsd.sys [26912 2007-11-16] (RapidSolution Software AG)
R0 viamraid; C:\WINDOWS\System32\DRIVERS\viamraid.sys [60928 2005-06-20] (VIA Technologies inc,.ltd)
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S3 dgderdrv; System32\drivers\dgderdrv.sys [X]
S4 IntelIde; No ImagePath
S3 NSNDIS5; \??\C:\WINDOWS\system32\NSNDIS5.SYS [X]
U5 ScsiPort; C:\WINDOWS\system32\drivers\scsiport.sys [96384 2008-04-13] (Microsoft Corporation)
U3 TlntSvr; No ImagePath
S3 wanatw; system32\DRIVERS\wanatw4.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2015-01-24 16:58 - 2015-01-24 16:58 - 00000871 _____ () C:\Dokumente und Einstellungen\Beul\Desktop\JRT1.txt
2015-01-24 16:58 - 2015-01-24 16:58 - 00000000 ____D () C:\Dokumente und Einstellungen\Beul\Desktop\FRST-OlderVersion
2015-01-24 16:57 - 2015-01-24 16:57 - 00000871 _____ () C:\Dokumente und Einstellungen\Beul\Desktop\JRT.txt
2015-01-24 16:53 - 2015-01-24 16:53 - 01707939 _____ (Thisisu) C:\Dokumente und Einstellungen\Beul\Desktop\JRT.exe
2015-01-24 16:53 - 2015-01-24 16:53 - 00000000 ____D () C:\WINDOWS\ERUNT
2015-01-24 16:50 - 2015-01-24 16:50 - 00005309 _____ () C:\Dokumente und Einstellungen\Beul\Desktop\AdwCleaner[S0].txt
2015-01-24 16:15 - 2015-01-24 16:47 - 00000000 ____D () C:\AdwCleaner
2015-01-24 16:13 - 2015-01-24 16:13 - 02194432 _____ () C:\Dokumente und Einstellungen\Beul\Desktop\AdwCleaner_4.109.exe
2015-01-23 21:56 - 2015-01-23 21:56 - 00001198 _____ () C:\Dokumente und Einstellungen\Beul\Desktop\mbam.txt
2015-01-23 21:21 - 2015-01-23 21:22 - 20447072 _____ (Malwarebytes Corporation ) C:\Dokumente und Einstellungen\Beul\Desktop\mbam-setup-2.0.4.1028.exe
2015-01-23 18:24 - 2015-01-23 18:24 - 00022798 _____ () C:\ComboFix.txt
2015-01-23 18:24 - 2015-01-23 18:24 - 00000000 ____D () C:\Dokumente und Einstellungen\NetworkService\Lokale Einstellungen\temp
2015-01-23 18:24 - 2015-01-23 18:24 - 00000000 ____D () C:\Dokumente und Einstellungen\Administrator\Lokale Einstellungen\temp
2015-01-23 18:24 - 2015-01-23 18:24 - 00000000 ____D () C:\Dokumente und Einstellungen\Administrator.COMPUTERNAME\Lokale Einstellungen\temp
2015-01-23 18:11 - 2015-01-24 16:59 - 00000000 ____D () C:\Dokumente und Einstellungen\Beul\Lokale Einstellungen\temp
2015-01-23 18:02 - 2015-01-23 18:02 - 00000000 _RSHD () C:\cmdcons
2015-01-23 18:02 - 2013-12-08 19:48 - 00000211 _____ () C:\Boot.bak
2015-01-23 18:02 - 2004-08-03 23:00 - 00262448 __RSH () C:\cmldr
2015-01-23 17:58 - 2011-06-26 07:45 - 00256000 _____ () C:\WINDOWS\PEV.exe
2015-01-23 17:58 - 2010-11-07 18:20 - 00208896 _____ () C:\WINDOWS\MBR.exe
2015-01-23 17:58 - 2009-04-20 05:56 - 00060416 _____ (NirSoft) C:\WINDOWS\NIRCMD.exe
2015-01-23 17:58 - 2000-08-31 01:00 - 00518144 _____ (SteelWerX) C:\WINDOWS\SWREG.exe
2015-01-23 17:58 - 2000-08-31 01:00 - 00406528 _____ (SteelWerX) C:\WINDOWS\SWSC.exe
2015-01-23 17:58 - 2000-08-31 01:00 - 00212480 _____ (SteelWerX) C:\WINDOWS\SWXCACLS.exe
2015-01-23 17:58 - 2000-08-31 01:00 - 00098816 _____ () C:\WINDOWS\sed.exe
2015-01-23 17:58 - 2000-08-31 01:00 - 00080412 _____ () C:\WINDOWS\grep.exe
2015-01-23 17:58 - 2000-08-31 01:00 - 00068096 _____ () C:\WINDOWS\zip.exe
2015-01-23 17:52 - 2015-01-23 18:24 - 00000000 ____D () C:\Qoobox
2015-01-23 17:52 - 2015-01-23 18:22 - 00000000 ____D () C:\WINDOWS\erdnt
2015-01-23 17:51 - 2015-01-23 17:51 - 05609462 ____R (Swearware) C:\Dokumente und Einstellungen\Beul\Desktop\ComboFix.exe
2015-01-23 15:58 - 2015-01-23 15:58 - 00000000 ____D () C:\Dokumente und Einstellungen\Beul\Desktop\Neuer Ordner
2015-01-23 15:07 - 2015-01-23 15:07 - 04197016 _____ (Kaspersky Lab ZAO) C:\Dokumente und Einstellungen\Beul\Desktop\tdsskiller.exe
2015-01-23 15:01 - 2015-01-23 15:01 - 00001205 _____ () C:\Dokumente und Einstellungen\Beul\Desktop\Malware-txt.txt
2015-01-23 14:30 - 2015-01-23 14:30 - 00114904 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\16C204E1.sys
2015-01-23 12:45 - 2015-01-23 21:55 - 00114904 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2015-01-23 12:42 - 2015-01-23 21:23 - 00000000 ____D () C:\Programme\ Malwarebytes Anti-Malware
2015-01-23 12:42 - 2014-11-21 06:14 - 00054360 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2015-01-23 12:36 - 2015-01-23 12:36 - 13786977 _____ () C:\Dokumente und Einstellungen\Beul\Desktop\mbar-1.01.0.1021.zip
2015-01-22 18:43 - 2015-01-22 18:44 - 00058747 _____ () C:\Dokumente und Einstellungen\Beul\Desktop\Addition.txt
2015-01-22 18:40 - 2015-01-24 16:59 - 00017730 _____ () C:\Dokumente und Einstellungen\Beul\Desktop\FRST.txt
2015-01-20 14:00 - 2015-01-20 14:00 - 00380416 _____ () C:\Dokumente und Einstellungen\Beul\Desktop\Gmer-19357.exe
2015-01-20 13:55 - 2015-01-24 16:58 - 00000000 ____D () C:\FRST
2015-01-20 13:54 - 2015-01-24 16:58 - 01120768 _____ (Farbar) C:\Dokumente und Einstellungen\Beul\Desktop\FRST.exe
2015-01-20 13:47 - 2015-01-20 13:47 - 00000000 _____ () C:\Dokumente und Einstellungen\Beul\defogger_reenable
2015-01-20 13:46 - 2015-01-20 13:46 - 00050477 _____ () C:\Dokumente und Einstellungen\Beul\Desktop\Defogger.exe
2015-01-08 21:56 - 2015-01-08 21:56 - 00000838 _____ () C:\Dokumente und Einstellungen\All Users\Desktop\Avira.lnk
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2015-01-24 16:56 - 2010-01-29 22:26 - 00001090 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-01-24 16:52 - 2013-09-05 20:05 - 01586493 _____ () C:\WINDOWS\WindowsUpdate.log
2015-01-24 16:50 - 2004-08-04 13:00 - 00002206 _____ () C:\WINDOWS\system32\wpa.dbl
2015-01-24 16:49 - 2013-10-21 19:44 - 00001086 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1cece8d8b87f2ee.job
2015-01-24 16:49 - 2013-09-05 20:06 - 00000157 _____ () C:\WINDOWS\wiadebug.log
2015-01-24 16:49 - 2013-09-05 20:06 - 00000050 _____ () C:\WINDOWS\wiaservc.log
2015-01-24 16:48 - 2014-09-09 20:05 - 00136400 _____ () C:\Dokumente und Einstellungen\LocalService\Lokale Einstellungen\Anwendungsdaten\FontCache3.0.0.0.dat
2015-01-24 16:48 - 2013-09-05 20:06 - 00032602 _____ () C:\WINDOWS\SchedLgU.Txt
2015-01-24 16:48 - 2006-04-07 12:54 - 00000300 ___SH () C:\Dokumente und Einstellungen\Beul\ntuser.ini
2015-01-24 16:48 - 2005-06-28 12:29 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2015-01-24 16:47 - 2006-04-07 12:54 - 00000000 ____D () C:\Dokumente und Einstellungen\Beul
2015-01-24 16:47 - 2005-06-28 13:02 - 00000000 ___RD () C:\Programme
2015-01-23 21:23 - 2013-10-22 18:26 - 00000753 _____ () C:\Dokumente und Einstellungen\All Users\Desktop\ Malwarebytes Anti-Malware .lnk
2015-01-23 18:16 - 2004-08-04 13:00 - 00000227 _____ () C:\WINDOWS\system.ini
2015-01-23 18:02 - 2005-06-28 14:00 - 00000327 __RSH () C:\boot.ini
2015-01-23 15:02 - 2011-01-31 20:40 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2443105$
2015-01-23 14:26 - 2008-12-27 23:39 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB954600$
2015-01-23 14:25 - 2013-09-06 22:06 - 00000000 ____D () C:\Dokumente und Einstellungen\Beul\Anwendungsdaten\Onowpi
2015-01-23 14:25 - 2013-09-04 21:05 - 00000000 ____D () C:\Dokumente und Einstellungen\Beul\Anwendungsdaten\Ytub
2015-01-23 14:25 - 2013-09-04 21:03 - 00000000 ____D () C:\Dokumente und Einstellungen\Beul\Anwendungsdaten\Zyquo
2015-01-23 12:58 - 2013-09-04 21:03 - 00000000 ____D () C:\Dokumente und Einstellungen\Beul\Anwendungsdaten\Nirao
2015-01-23 12:42 - 2009-08-23 14:48 - 00000000 ____D () C:\Programme\Malwarebytes' Anti-Malware
2015-01-23 12:42 - 2009-08-23 14:48 - 00000000 ____D () C:\Dokumente und Einstellungen\Beul\Anwendungsdaten\Malwarebytes
2015-01-23 12:42 - 2009-08-23 14:48 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Malwarebytes
2015-01-20 17:14 - 2013-09-07 15:58 - 00000000 ____D () C:\Dokumente und Einstellungen\Beul\Anwendungsdaten\Ryqyko
2015-01-20 16:52 - 2005-07-25 14:39 - 00000000 ____D () C:\WINDOWS\system32\NtmsData
2015-01-20 15:17 - 2005-06-28 12:14 - 00000000 ____D () C:\WINDOWS\Registration
2015-01-20 14:36 - 2014-02-03 22:19 - 00011406 _____ () C:\WINDOWS\setupapi.log
2015-01-20 13:25 - 2014-09-09 19:04 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Package Cache
2015-01-08 21:56 - 2012-12-17 18:20 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Avira
2015-01-08 21:56 - 2012-12-17 18:18 - 00000000 ____D () C:\Programme\Avira
2015-01-08 21:56 - 2006-08-29 17:20 - 00000000 ____D () C:\Dokumente und Einstellungen\Beul\Eigene Dateien\Bewerbung
2015-01-08 21:52 - 2005-06-28 13:02 - 01160370 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
==================== Files in the root of some directories =======
2009-03-14 21:50 - 2009-03-14 21:51 - 4157440 _____ () C:\Programme\fritz.box_fon_wlan_7050.14.04.33.image
2011-06-12 19:19 - 2011-06-12 19:19 - 0002528 _____ () C:\Dokumente und Einstellungen\Beul\Anwendungsdaten\$_hpcst$.hpc
2007-10-29 19:25 - 2012-01-28 16:03 - 0000085 ___SH () C:\Dokumente und Einstellungen\Beul\Anwendungsdaten\.zreglib
2006-08-29 16:42 - 2013-01-20 14:06 - 0000208 _____ () C:\Dokumente und Einstellungen\Beul\Anwendungsdaten\wklnhst.dat
2006-05-11 21:54 - 2014-02-10 11:25 - 0024576 _____ () C:\Dokumente und Einstellungen\Beul\Lokale Einstellungen\Anwendungsdaten\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2006-04-07 12:54 - 2007-07-11 16:56 - 0000137 _____ () C:\Dokumente und Einstellungen\Beul\Lokale Einstellungen\Anwendungsdaten\fusioncache.dat
Some content of TEMP:
====================
C:\Dokumente und Einstellungen\Beul\Lokale Einstellungen\temp\avgnt.exe
C:\Dokumente und Einstellungen\Beul\Lokale Einstellungen\temp\Quarantine.exe
C:\Dokumente und Einstellungen\Beul\Lokale Einstellungen\temp\sqlite3.dll
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
==================== End Of Log ============================
--- --- --- |
|
24.01.2015, 20:37
| #15 |
| /// the machine /// TB-Ausbilder | Provider meldet VirusbefallESET Online Scanner
Downloade Dir bitte  SecurityCheck und:
und ein frisches FRST log bitte. Noch Probleme?
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
| Themen zu Provider meldet Virusbefall |
| alten, melde, meldet, provider, virusbefall |
WARNUNG an die MITLESER: 
Linear-Darstellung
