Avira Echtzeit-Scanner: Zugriff auf Registry wurde blockiert - die Zweite -

Eisbaer27 · 02.05.2015, 12:52

Hallo Zusammen,

ich habe wie auch schon in dem Thema:

http://www.trojaner-board.de/166145-...blockiert.html

selbiges Problem und bekomme von Avira in unregelmäßigen Abständen, aber immer auch kurz nach dem Systemstart, die Meldung vom Avira Echtzeitscanner das ein verdächtiger Zugriff auf die Registry blockiert wurden.
Im Ereignis log steht lediglich: Der Administrator hat per Sicherheitsrichtlinie den Zugriff auf die Registry blockiert.

Sowohl der reguläre Avira Scan und auch der Avira Scan nach Rootkits zeigten keine Auffälligkeiten.

hier ein paar Logs

FRST

Code:

ATTFilter

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 02-05-2015
Ran by Lurchi (administrator) on LAPPI on 02-05-2015 11:15:50
Running from C:\Dokumente und Einstellungen\Lurchi\Eigene Dateien\Downloads
Loaded Profiles: Lurchi &  (Available profiles: Lurchi & Gast)
Platform: Microsoft Windows XP Home Edition Service Pack 3 (X86) OS Language: Deutsch (Deutschland)
Internet Explorer Version 7 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Comodo Security Solutions Inc.) C:\Programme\Gemeinsame Dateien\COMODO\launcher_service.exe
(COMODO) C:\Programme\Comodo\COMODO Internet Security\cmdagent.exe
(Avira Operations GmbH & Co. KG) C:\Programme\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Programme\Avira\AntiVir Desktop\avguard.exe
(Comodo Security Solutions, Inc.) C:\Programme\Comodo\Dragon\dragon_updater.exe
(Comodo Security Solutions, Inc.) C:\Programme\Gemeinsame Dateien\COMODO\GeekBuddyRSP.exe
() C:\Programme\System Control Manager\MSIService.exe
(Realtek Semiconductor Corp.) C:\WINDOWS\RTHDCPL.EXE
(Mirco-Star International  CO., LTD.) C:\Programme\System Control Manager\MGSysCtrl.exe
(Synaptics, Inc.) C:\Programme\Synaptics\SynTP\SynTPEnh.exe
(Avira Operations GmbH & Co. KG) C:\Programme\Avira\AntiVir Desktop\avgnt.exe
(COMODO) C:\Programme\Comodo\COMODO Internet Security\cfp.exe
(Microsoft Corporation) C:\WINDOWS\system32\wbem\unsecapp.exe
(Avira Operations GmbH & Co. KG) C:\Programme\Avira\AntiVir Desktop\avshadow.exe
(Microsoft Corporation) C:\WINDOWS\system32\dllhost.exe
(Malwarebytes Corporation) C:\Programme\ Malwarebytes Anti-Malware \mbam.exe
(Mozilla Corporation) C:\Programme\Mozilla Firefox\firefox.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDCPL] => C:\WINDOWS\RTHDCPL.EXE [16851968 2008-09-09] (Realtek Semiconductor Corp.)
HKLM\...\Run: [MGSysCtrl] => C:\Programme\System Control Manager\MGSysCtrl.exe [688128 2008-09-26] (Mirco-Star International  CO., LTD.)
HKLM\...\Run: [SynTPEnh] => C:\Programme\Synaptics\SynTP\SynTPEnh.exe [1024000 2007-12-06] (Synaptics, Inc.)
HKLM\...\Run: [avgnt] => C:\Programme\Avira\AntiVir Desktop\avgnt.exe [726320 2015-04-08] (Avira Operations GmbH & Co. KG)
HKLM\...\Run: [COMODO Internet Security] => C:\Programme\COMODO\COMODO Internet Security\cfp.exe [6756048 2012-11-07] (COMODO)
HKU\S-1-5-21-1812403978-383865461-3209680303-1005\...\Run: [] => [X]
HKU\S-1-5-21-1812403978-383865461-3209680303-1005\...\Run: [GUDelayStartup] => C:\Programme\Glary Utilities 5\StartupManager.exe [37152 2015-03-30] (Glarysoft Ltd)
HKU\S-1-5-21-1812403978-383865461-3209680303-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [] => [X]
HKU\S-1-5-21-1812403978-383865461-3209680303-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [GUDelayStartup] => C:\Programme\Glary Utilities 5\StartupManager.exe [37152 2015-03-30] (Glarysoft Ltd)
HKU\S-1-5-21-1812403978-383865461-3209680303-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\Run: [] => [X]
HKU\S-1-5-21-1812403978-383865461-3209680303-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\Run: [GUDelayStartup] => C:\Programme\Glary Utilities 5\StartupManager.exe [37152 2015-03-30] (Glarysoft Ltd)
HKU\S-1-5-21-1812403978-383865461-3209680303-501-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [BullGuard] => "C:\Programme\BullGuard Ltd\BullGuard\bullguard.exe"
HKU\S-1-5-21-1812403978-383865461-3209680303-501-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [ISUSPM] => C:\Programme\Gemeinsame Dateien\InstallShield\UpdateService\ISUSPM.exe [218032 2006-09-11] (Macrovision Corporation)
HKU\S-1-5-21-1812403978-383865461-3209680303-501-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\MountPoints2: {45b0cf76-b60b-11dd-b357-002243683e33} - D:\CD_Start.exe
HKU\S-1-5-21-1812403978-383865461-3209680303-501-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\MountPoints2: {4f1dd0b1-af88-11dd-ba7c-806d6172696f} - E:\CD_Start.exe
HKU\S-1-5-21-1812403978-383865461-3209680303-501-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\MountPoints2: {b8c34f9e-b60a-11dd-8f12-002243683e33} - D:\CD_Start.exe
HKU\S-1-5-21-1812403978-383865461-3209680303-501-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\Run: [BullGuard] => "C:\Programme\BullGuard Ltd\BullGuard\bullguard.exe"
HKU\S-1-5-21-1812403978-383865461-3209680303-501-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\Run: [ISUSPM] => C:\Programme\Gemeinsame Dateien\InstallShield\UpdateService\ISUSPM.exe [218032 2006-09-11] (Macrovision Corporation)
HKU\S-1-5-21-1812403978-383865461-3209680303-501-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\MountPoints2: {45b0cf76-b60b-11dd-b357-002243683e33} - D:\CD_Start.exe
HKU\S-1-5-21-1812403978-383865461-3209680303-501-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\MountPoints2: {4f1dd0b1-af88-11dd-ba7c-806d6172696f} - E:\CD_Start.exe
HKU\S-1-5-21-1812403978-383865461-3209680303-501-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\MountPoints2: {b8c34f9e-b60a-11dd-8f12-002243683e33} - D:\CD_Start.exe
AppInit_DLLs: C:\WINDOWS\system32\guard32.dll => C:\WINDOWS\system32\guard32.dll [301264 2012-11-07] (COMODO)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  No File
BootExecute: autocheck autochk *  BootDefrag.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-1812403978-383865461-3209680303-1005\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-1812403978-383865461-3209680303-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-1812403978-383865461-3209680303-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd={SUB_PRD}&clcid={SUB_CLSID}&pver={SUB_PVER}&ar=home
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.targa.de
HKU\S-1-5-19-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.targa.de
HKU\S-1-5-19-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.targa.de
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.targa.de
HKU\S-1-5-20-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.targa.de
HKU\S-1-5-20-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.targa.de
HKU\S-1-5-21-1812403978-383865461-3209680303-1005\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.targa.de
HKU\S-1-5-21-1812403978-383865461-3209680303-1005\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-1812403978-383865461-3209680303-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.targa.de
HKU\S-1-5-21-1812403978-383865461-3209680303-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-1812403978-383865461-3209680303-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.targa.de
HKU\S-1-5-21-1812403978-383865461-3209680303-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-1812403978-383865461-3209680303-501-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.targa.de
HKU\S-1-5-21-1812403978-383865461-3209680303-501-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-1812403978-383865461-3209680303-501-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.targa.de
HKU\S-1-5-21-1812403978-383865461-3209680303-501-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
URLSearchHook: HKU\S-1-5-21-1812403978-383865461-3209680303-1005 - Microsoft Url Sucheingriff - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\WINDOWS\system32\shdocvw.dll (Microsoft Corporation)
URLSearchHook: HKU\S-1-5-21-1812403978-383865461-3209680303-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 - Microsoft Url Sucheingriff - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\WINDOWS\system32\shdocvw.dll (Microsoft Corporation)
URLSearchHook: HKU\S-1-5-21-1812403978-383865461-3209680303-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1 - Microsoft Url Sucheingriff - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\WINDOWS\system32\shdocvw.dll (Microsoft Corporation)
URLSearchHook: HKU\S-1-5-21-1812403978-383865461-3209680303-501-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 - Microsoft Url Sucheingriff - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\WINDOWS\system32\shdocvw.dll (Microsoft Corporation)
URLSearchHook: HKU\S-1-5-21-1812403978-383865461-3209680303-501-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1 - Microsoft Url Sucheingriff - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\WINDOWS\system32\shdocvw.dll (Microsoft Corporation)
SearchScopes: HKLM -> DefaultScope value is missing.
SearchScopes: HKU\S-1-5-21-1812403978-383865461-3209680303-1005 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search
SearchScopes: HKU\S-1-5-21-1812403978-383865461-3209680303-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search
SearchScopes: HKU\S-1-5-21-1812403978-383865461-3209680303-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search
BHO: Windows Live Anmelde-Hilfsprogramm -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Programme\Gemeinsame Dateien\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22] (Microsoft Corporation)
BHO: Free Download Manager -> {CC59E0F9-7E43-44FA-9FAA-8377850BF205} -> C:\Programme\Free Download Manager\iefdm2.dll [2013-01-11] (FreeDownloadManager.ORG)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Programme\Java\jre7\bin\jp2ssv.dll [2014-07-25] (Oracle Corporation)
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_67-windows-i586.cab
DPF: {CAFEEFAC-0017-0000-0067-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_67-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_67-windows-i586.cab
Handler: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL [2006-10-26] (Microsoft Corporation)
Handler: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL [2006-10-26] (Microsoft Corporation)
Handler: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL [2006-10-26] (Microsoft Corporation)
Handler: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL [2006-10-26] (Microsoft Corporation)
Handler: ipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL [2006-10-26] (Microsoft Corporation)
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Programme\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll [2010-04-16] (Microsoft Corporation)
Handler: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL [2006-10-26] (Microsoft Corporation)
Handler: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL [2006-10-26] (Microsoft Corporation)
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Programme\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll [2010-04-16] (Microsoft Corporation)
Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\WINDOWS\system32\urlmon.dll [2009-06-29] (Microsoft Corporation)
Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\WINDOWS\system32\urlmon.dll [2009-06-29] (Microsoft Corporation)
Winsock: Catalog9 01 C:\Programme\Avira\AntiVir Desktop\avsda.dll [507984 2013-02-25] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 02 C:\Programme\Avira\AntiVir Desktop\avsda.dll [507984 2013-02-25] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 31 C:\Programme\Avira\AntiVir Desktop\avsda.dll [507984 2013-02-25] (Avira Operations GmbH & Co. KG)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Dokumente und Einstellungen\Lurchi\Anwendungsdaten\Mozilla\Firefox\Profiles\noi32a9b.default
FF SelectedSearchEngine: DuckDuckGo
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_17_0_0_169.dll [2015-05-01] ()
FF Plugin: @adobe.com/ShockwavePlayer -> C:\WINDOWS\system32\Adobe\Director\np32dsw_1213153.dll [2014-06-24] (Adobe Systems, Inc.)
FF Plugin: @divx.com/DivX Browser Plugin,version=1.0.0 -> C:\Programme\DivX\DivX Plus Web Player\npdivx32.dll [2010-08-25] (DivX,Inc.)
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\PROGRAMME\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2014-04-15] (Foxit Corporation)
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\PROGRAMME\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2014-04-15] (Foxit Corporation)
FF Plugin: @java.com/DTPlugin,version=10.67.2 -> C:\Programme\Java\jre7\bin\dtplugin\npDeployJava1.dll [2014-07-25] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin -> C:\Programme\Java\jre7\bin\new_plugin\npjp2.dll No File
FF Plugin: @java.com/JavaPlugin,version=10.67.2 -> C:\Programme\Java\jre7\bin\plugin2\npjp2.dll [2014-07-25] (Oracle Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin: @nokia.com/EnablerPlugin -> C:\Programme\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll [2013-10-02] ( )
FF Plugin: @videolan.org/vlc,version=2.1.0 -> C:\Programme\VideoLAN\VLC\npvlc.dll [2014-07-23] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.1 -> C:\Programme\VideoLAN\VLC\npvlc.dll [2014-07-23] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.2 -> C:\Programme\VideoLAN\VLC\npvlc.dll [2014-07-23] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.3 -> C:\Programme\VideoLAN\VLC\npvlc.dll [2014-07-23] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Programme\VideoLAN\VLC\npvlc.dll [2014-07-23] (VideoLAN)
FF Plugin ProgramFiles/Appdata: C:\Programme\mozilla firefox\plugins\npFoxitReaderPlugin.dll [2009-03-11] (Foxit Software Company)
FF Plugin ProgramFiles/Appdata: C:\Programme\mozilla firefox\plugins\npqtplugin.dll [2011-04-01] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Programme\mozilla firefox\plugins\npqtplugin2.dll [2011-04-01] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Programme\mozilla firefox\plugins\npqtplugin3.dll [2011-04-01] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Programme\mozilla firefox\plugins\npqtplugin4.dll [2011-04-01] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Programme\mozilla firefox\plugins\npqtplugin5.dll [2011-04-01] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Programme\mozilla firefox\plugins\npqtplugin6.dll [2011-04-01] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Programme\mozilla firefox\plugins\npqtplugin7.dll [2011-04-01] (Apple Inc.)
FF SearchPlugin: C:\Dokumente und Einstellungen\Lurchi\Anwendungsdaten\Mozilla\Firefox\Profiles\noi32a9b.default\searchplugins\duckduckgo.xml [2014-05-22]
FF SearchPlugin: C:\Dokumente und Einstellungen\Lurchi\Anwendungsdaten\Mozilla\Firefox\Profiles\noi32a9b.default\searchplugins\kinoto.xml [2010-10-06]
FF SearchPlugin: C:\Dokumente und Einstellungen\Lurchi\Anwendungsdaten\Mozilla\Firefox\Profiles\noi32a9b.default\searchplugins\metager.xml [2009-10-22]
FF SearchPlugin: C:\Dokumente und Einstellungen\Lurchi\Anwendungsdaten\Mozilla\Firefox\Profiles\noi32a9b.default\searchplugins\youtube-videosuche.xml [2009-06-25]
FF Extension: NoScript - C:\Dokumente und Einstellungen\Lurchi\Anwendungsdaten\Mozilla\Firefox\Profiles\noi32a9b.default\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}(2) [2009-08-10]
FF Extension: NoScript - C:\Dokumente und Einstellungen\Lurchi\Anwendungsdaten\Mozilla\Firefox\Profiles\noi32a9b.default\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2011-04-01]
FF Extension: Video DownloadHelper - C:\Dokumente und Einstellungen\Lurchi\Anwendungsdaten\Mozilla\Firefox\Profiles\noi32a9b.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2015-03-14]
FF Extension: Adblock Plus - C:\Dokumente und Einstellungen\Lurchi\Anwendungsdaten\Mozilla\Firefox\Profiles\noi32a9b.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2011-04-11]
FF Extension: Tab Mix Plus - C:\Dokumente und Einstellungen\Lurchi\Anwendungsdaten\Mozilla\Firefox\Profiles\noi32a9b.default\Extensions\{dc572301-7619-498c-a57d-39143191b318}.xpi [2011-05-10]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2009-08-15]

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S2 AntiVirMailService; C:\Programme\Avira\AntiVir Desktop\avmailc.exe [815352 2015-04-08] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Programme\Avira\AntiVir Desktop\sched.exe [434424 2015-04-08] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Programme\Avira\AntiVir Desktop\avguard.exe [434424 2015-04-08] (Avira Operations GmbH & Co. KG)
R2 CLPSLauncher; C:\Programme\Gemeinsame Dateien\COMODO\launcher_service.exe [70344 2013-04-17] (Comodo Security Solutions Inc.)
R2 cmdAgent; C:\Programme\COMODO\COMODO Internet Security\cmdagent.exe [1990464 2012-11-07] (COMODO)
R2 DragonUpdater; C:\Programme\Comodo\Dragon\dragon_updater.exe [2370240 2014-11-27] (Comodo Security Solutions, Inc.)
S3 FoxitCloudUpdateService; C:\PROGRAMME\FOXIT SOFTWARE\FOXIT READER\Foxit Cloud\FCUpdateService.exe [242216 2014-06-17] (Foxit Corporation)
R2 GeekBuddyRSP; C:\Programme\Gemeinsame Dateien\COMODO\GeekBuddyRSP.exe [1851088 2013-04-17] (Comodo Security Solutions, Inc.)
R2 Micro Star SCM; C:\Programme\System Control Manager\MSIService.exe [159744 2008-08-26] () [File not signed]
S3 MozillaMaintenance; C:\Programme\Mozilla Maintenance Service\maintenanceservice.exe [148080 2015-05-01] (Mozilla Foundation)
S2 RalinkRegistryWriter; C:\Programme\Ralink\Common\RaRegistry.exe [185632 2009-11-26] (Ralink Technology, Corp.)
S3 ServiceLayer; C:\Programme\PC Connectivity Solution\ServiceLayer.exe [737616 2013-04-18] (Nokia)
S2 SkypeUpdate; C:\Programme\Skype\Updater\Updater.exe [315488 2015-02-18] (Skype Technologies)
S3 WMPNetworkSvc; C:\Programme\Windows Media Player\WMPNetwk.exe [920576 2006-11-03] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R1 ACEDRV05; C:\WINDOWS\system32\drivers\ACEDRV05.sys [97792 2009-05-19] (Protect Software GmbH) [File not signed]
R2 AegisP; C:\WINDOWS\System32\DRIVERS\AegisP.sys [21035 2012-06-10] (Meetinghouse Data Communications) [File not signed]
R3 AR5416; C:\WINDOWS\System32\DRIVERS\athw.sys [1343616 2008-11-05] (Atheros Communications, Inc.)
R2 avgntflt; C:\WINDOWS\System32\DRIVERS\avgntflt.sys [105864 2015-04-01] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\WINDOWS\System32\DRIVERS\avipbb.sys [136216 2015-04-01] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\WINDOWS\System32\DRIVERS\avkmgr.sys [37352 2013-11-25] (Avira Operations GmbH & Co. KG)
S3 BMserDiag; C:\WINDOWS\System32\DRIVERS\BMserDiag.sys [87424 2009-11-26] (Global Wireless Incorporated)
S3 BMserNmea; C:\WINDOWS\System32\DRIVERS\BMserNmea.sys [87424 2009-11-26] (Global Wireless Incorporated)
S3 BMusbmdm; C:\WINDOWS\System32\DRIVERS\BMusbmdm.sys [87424 2009-11-26] (Global Wireless Incorporated)
R0 BootDefragDriver; C:\WINDOWS\System32\drivers\BootDefragDriver.sys [14784 2014-09-29] (Glarysoft Ltd)
S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2008-04-14] (Microsoft Corporation)
R1 CFRMD; C:\WINDOWS\System32\DRIVERS\CFRMD.sys [36112 2012-09-03] (Windows (R) Win 7 DDK provider)
R1 cmdGuard; C:\WINDOWS\System32\DRIVERS\cmdguard.sys [497952 2012-11-07] (COMODO)
R1 cmdHlp; C:\WINDOWS\System32\DRIVERS\cmdhlp.sys [32640 2012-11-07] (COMODO)
S3 CVirtA; C:\WINDOWS\System32\DRIVERS\CVirtA.sys [5275 2007-01-18] (Cisco Systems, Inc.)
R3 DNE; C:\WINDOWS\System32\DRIVERS\dne2000.sys [131856 2008-08-28] (Deterministic Networks, Inc.)
S3 epmntdrv; C:\WINDOWS\system32\epmntdrv.sys [13192 2010-01-20] () [File not signed]
S3 EuGdiDrv; C:\WINDOWS\system32\EuGdiDrv.sys [8456 2010-01-20] () [File not signed]
R1 GUBootStartup; C:\WINDOWS\System32\drivers\GUBootStartup.sys [17344 2015-04-04] (Glarysoft Ltd)
R0 Inspect; C:\WINDOWS\System32\DRIVERS\inspect.sys [99080 2012-11-07] (COMODO)
R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [114904 2015-05-02] (Malwarebytes Corporation)
S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2008-04-14] (Microsoft Corporation)
R3 RSUSBSTOR; C:\WINDOWS\System32\Drivers\RTS5121.sys [158720 2008-10-07] (Realtek Semiconductor Corp.)
S3 rt2870; C:\WINDOWS\System32\DRIVERS\rt2870.sys [803328 2009-11-26] (Ralink Technology, Corp.)
R2 Scutum50; C:\WINDOWS\System32\Drivers\Scutum50.sys [19072 2009-11-26] (Printing Communications Assoc., Inc. (PCAUSA)) [File not signed]
R1 ssmdrv; C:\WINDOWS\System32\DRIVERS\ssmdrv.sys [28520 2013-02-25] (Avira GmbH)
R3 WSIMD; C:\WINDOWS\System32\DRIVERS\wsimd.sys [57408 2007-12-13] (Atheros Communications, Inc.) [File not signed]
S3 cmnsusbser; system32\DRIVERS\cmnsusbser.sys [X]
S2 CVPNDRVA; \??\C:\WINDOWS\system32\Drivers\CVPNDRVA.sys [X]
S2 EAPPkt; system32\DRIVERS\EAPPkt.sys [X]
S4 IntelIde; No ImagePath
S3 Rts516xIR; system32\DRIVERS\Rts516xIR.sys [X]
U3 TlntSvr; No ImagePath
S3 USBCCID; system32\DRIVERS\Rts5161ccid.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-05-02 11:15 - 2015-05-02 11:16 - 00000000 ____D () C:\FRST
2015-05-01 20:36 - 2015-05-01 20:37 - 00000000 ____D () C:\Programme\Mozilla Firefox
2015-05-01 16:50 - 2015-05-01 16:55 - 00000000 ____D () C:\b6ab18b2f61e5acf1acac3b95e4c6d
2015-04-04 17:04 - 2015-04-04 17:04 - 00000746 _____ () C:\Dokumente und Einstellungen\All Users\desktop\Glary Utilities 5.lnk

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-05-02 11:16 - 2014-02-01 22:47 - 00000000 ____D () C:\Dokumente und Einstellungen\Lurchi\Lokale Einstellungen\temp
2015-05-02 11:07 - 2012-04-06 23:52 - 00000884 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-05-02 10:56 - 2012-05-03 21:46 - 00000000 ____D () C:\Programme\Mozilla Maintenance Service
2015-05-02 10:56 - 2008-11-11 01:39 - 00000000 ___RD () C:\Programme
2015-05-02 10:55 - 2008-11-11 01:41 - 00000211 _____ () C:\WINDOWS\wiadebug.log
2015-05-02 01:00 - 2008-11-11 01:43 - 01979197 _____ () C:\WINDOWS\WindowsUpdate.log
2015-05-02 00:19 - 2015-01-01 20:41 - 00114904 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2015-05-01 22:02 - 2009-08-28 22:53 - 00000000 ____D () C:\Dokumente und Einstellungen\Lurchi\Anwendungsdaten\Free Download Manager
2015-05-01 19:09 - 2012-04-06 23:52 - 00778416 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2015-05-01 19:09 - 2011-05-19 08:57 - 00142512 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2015-05-01 19:01 - 2009-08-19 23:06 - 00000000 ____D () C:\Dokumente und Einstellungen\Lurchi\Anwendungsdaten\vlc
2015-05-01 17:27 - 2009-08-05 08:32 - 00000000 ____D () C:\WINDOWS\system32\NtmsData
2015-05-01 17:27 - 2008-11-11 01:42 - 00000000 ____D () C:\WINDOWS\Registration
2015-05-01 17:13 - 2014-09-03 15:38 - 00000316 _____ () C:\WINDOWS\Tasks\GlaryInitialize 5.job
2015-05-01 17:12 - 2008-11-11 01:41 - 00000050 _____ () C:\WINDOWS\wiaservc.log
2015-05-01 17:11 - 2008-11-11 01:47 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2015-05-01 16:53 - 2008-11-11 16:55 - 125832184 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-05-01 16:40 - 2014-01-26 17:45 - 00000000 ____D () C:\Dokumente und Einstellungen\Lurchi\Anwendungsdaten\DiskDefrag
2015-05-01 16:40 - 2008-11-11 01:31 - 00001158 _____ () C:\WINDOWS\system32\wpa.dbl
2015-04-13 11:34 - 2009-03-09 23:10 - 00000190 ___SH () C:\Dokumente und Einstellungen\Lurchi\ntuser.ini
2015-04-13 11:34 - 2009-03-09 23:10 - 00000000 ____D () C:\Dokumente und Einstellungen\Lurchi
2015-04-13 11:34 - 2008-11-11 01:47 - 00032478 _____ () C:\WINDOWS\SchedLgU.Txt
2015-04-12 23:46 - 2015-01-27 19:13 - 00000000 ____D () C:\Programme\Mozilla Thunderbird
2015-04-12 22:34 - 2009-04-28 13:15 - 00000000 ____D () C:\Dokumente und Einstellungen\Lurchi\Anwendungsdaten\Skype
2015-04-12 22:12 - 2009-04-28 13:15 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Skype
2015-04-09 21:31 - 2009-03-12 23:29 - 00237056 _____ () C:\Dokumente und Einstellungen\Lurchi\Lokale Einstellungen\Anwendungsdaten\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-04-08 22:53 - 2014-10-28 13:43 - 00000000 ___RD () C:\Programme\Skype
2015-04-08 22:45 - 2013-02-25 19:01 - 00000000 ____D () C:\Dokumente und Einstellungen\Lurchi\Anwendungsdaten\Avira
2015-04-08 22:43 - 2013-02-25 18:55 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Avira
2015-04-04 17:28 - 2014-04-04 21:19 - 00000218 _____ () C:\WINDOWS\Tasks\Ende des Supports für Microsoft Windows XP – Monatliche Benachrichtigung.job
2015-04-04 17:27 - 2014-04-04 21:19 - 00000224 _____ () C:\WINDOWS\Tasks\Ende des Supports für Microsoft Windows XP –  Benachrichtigung – Anmeldung.job
2015-04-04 17:06 - 2009-04-05 01:07 - 00000000 ____D () C:\Dokumente und Einstellungen\Lurchi\dwhelper
2015-04-04 17:04 - 2014-09-03 15:38 - 00000752 _____ () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Glary Utilities 5.lnk
2015-04-04 17:04 - 2014-09-03 15:38 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Glary Utilities 5
2015-04-04 17:04 - 2014-09-03 15:37 - 00000000 ____D () C:\Programme\Glary Utilities 5
2015-04-04 17:03 - 2014-09-03 15:38 - 00017344 _____ (Glarysoft Ltd) C:\WINDOWS\system32\Drivers\GUBootStartup.sys

==================== Files in the root of some directories =======

2009-03-09 23:10 - 2008-11-19 10:06 - 0000019 _____ () C:\Dokumente und Einstellungen\Lurchi\Anwendungsdaten\mdbu.bin
2009-03-12 23:29 - 2015-04-09 21:31 - 0237056 _____ () C:\Dokumente und Einstellungen\Lurchi\Lokale Einstellungen\Anwendungsdaten\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2010-09-08 00:51 - 2010-09-17 14:50 - 0019456 _____ () C:\Dokumente und Einstellungen\Lurchi\Lokale Einstellungen\Anwendungsdaten\WebpageIcons.db

Some content of TEMP:
====================
C:\Dokumente und Einstellungen\Gast\Lokale Einstellungen\temp\avgnt.exe
C:\Dokumente und Einstellungen\Lurchi\Lokale Einstellungen\temp\avgnt.exe
C:\Dokumente und Einstellungen\Lurchi\Lokale Einstellungen\temp\vlc-2.2.1-win32.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

==================== End Of Log ============================

addition

Code:

ATTFilter

Additional scan result of Farbar Recovery Scan Tool (x86) Version: 02-05-2015
Ran by Lurchi at 2015-05-02 11:17:59
Running from C:\Dokumente und Einstellungen\Lurchi\Eigene Dateien\Downloads
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-1812403978-383865461-3209680303-500 - Administrator - Enabled)
ASPNET (S-1-5-21-1812403978-383865461-3209680303-1006 - Limited - Enabled)
Gast (S-1-5-21-1812403978-383865461-3209680303-501 - Limited - Enabled) => %SystemDrive%\Dokumente und Einstellungen\Gast
Hilfeassistent (S-1-5-21-1812403978-383865461-3209680303-1004 - Limited - Disabled)
Lurchi (S-1-5-21-1812403978-383865461-3209680303-1005 - Administrator - Enabled) => %SystemDrive%\Dokumente und Einstellungen\Lurchi
SUPPORT_388945a0 (S-1-5-21-1812403978-383865461-3209680303-1002 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avira Antivirus (Enabled - Up to date) {AD166499-45F9-482A-A743-FDD3350758C7}
FW: COMODO Firewall (Disabled) {043803A3-4F86-4ef6-AFC5-F6E02A79969B}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-1812403978-383865461-3209680303-1005\...\uTorrent) (Version: 3.4.2.35702 - BitTorrent Inc.)
µTorrent (HKU\S-1-5-21-1812403978-383865461-3209680303-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\uTorrent) (Version: 3.4.2.35702 - BitTorrent Inc.)
µTorrent (HKU\S-1-5-21-1812403978-383865461-3209680303-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\uTorrent) (Version: 3.4.2.35702 - BitTorrent Inc.)
3G HSDPA Modem (HKLM\...\3G HSDPA Modem) (Version: 1.0.0 - 3G HSDPA Modem)
7-Zip 9.20 (HKLM\...\7-Zip) (Version:  - )
Adobe Flash Player 17 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 17.0.0.169 - Adobe Systems Incorporated)
Adobe Flash Player 17 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 17.0.0.169 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.1 (HKLM\...\Adobe Shockwave Player) (Version: 12.1.3.153 - Adobe Systems, Inc.)
Atheros Driver Installation Program (HKLM\...\{C3A32068-8AB1-4327-BB16-BED9C6219DC7}) (Version: 5.0 - Atheros)
Atheros for Acer Driver v7.6.1.184_Foxconn Installation Program (HKLM\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 7.6.1.184 - Atheros)
AusLogics Disk Defrag (HKLM\...\{DF6A13C0-77DF-41FE-BD05-6D5201EB0CE7}_is1) (Version: version 2.0 - Auslogics Software Pty Ltd)
Avira Antivirus (HKLM\...\Avira Antivirus) (Version: 15.0.9.504 - Avira Operations GmbH & Co. KG)
Avira Free Antivirus (HKLM\...\Avira AntiVir Desktop) (Version: 15.0.8.656 - Avira)
Biet-O-Matic v2.14.12 (HKLM\...\Biet-O-Matic v2.14.12) (Version: 2.14.12 - BOM Development Team)
Bullzip PDF Printer 7.1.0.1007 (HKLM\...\Bullzip PDF Printer_is1) (Version:  - Bullzip)
Canon IJ Network Scan Utility (HKLM\...\Canon_IJ_Network_Scan_UTILITY) (Version:  - )
Canon IJ Network Tool (HKLM\...\Canon_IJ_Network_UTILITY) (Version:  - )
Canon MG5200 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG5200_series) (Version:  - )
Cisco Systems VPN Client 5.0.05.0290 (HKLM\...\{F3C1DE9E-5E16-4BA9-B854-7B53A45E3579}) (Version: 5.0.5 - Cisco Systems, Inc.)
Comodo Dragon (HKLM\...\Comodo Dragon) (Version: 36.1.1.21 - Comodo)
COMODO Internet Security (HKLM\...\{E62381A7-B1C1-4121-8262-84D38C77786C}) (Version: 5.12.59641.2599 - COMODO Security Solutions Inc.)
DivX-Setup (HKLM\...\DivX Setup.divx.com) (Version: 2.0.4.2 - DivX, Inc. )
Dropbox (HKU\S-1-5-21-1812403978-383865461-3209680303-1005\...\Dropbox) (Version: 2.10.30 - Dropbox, Inc.)
Dropbox (HKU\S-1-5-21-1812403978-383865461-3209680303-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Dropbox) (Version: 2.10.30 - Dropbox, Inc.)
Dropbox (HKU\S-1-5-21-1812403978-383865461-3209680303-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\Dropbox) (Version: 2.10.30 - Dropbox, Inc.)
EASEUS Partition Master 5.0.1 Home Edition (HKLM\...\EASEUS Partition Master Home Edition_is1) (Version:  - EASEUS)
Eraser 6.0.6.1376 (HKLM\...\{BC14E9A8-E41F-4345-BAB3-2EC6CC315085}) (Version: 6.0.1376 - The Eraser Project)
FastStone Image Viewer 4.9 (HKLM\...\FastStone Image Viewer) (Version: 4.9 - FastStone Soft)
ffdshow v1.3.4500 [2013-01-06] (HKLM\...\ffdshow_is1) (Version: 1.3.4500.0 - )
FileHippo.com Update Checker (HKLM\...\FileHippo.com) (Version:  - )
foobar2000 v1.3.1 (HKLM\...\foobar2000) (Version: 1.3.1 - Peter Pawlowski)
Foxit Cloud (HKLM\...\{41914D8B-9D6E-4764-A1F9-BC43FB6782C1}_is1) (Version: 1.5.129.617 - Foxit Corporation)
Foxit Reader (HKLM\...\Foxit Reader_is1) (Version: 6.2.1.618 - Foxit Corporation)
Free Download Manager 3.9.2 (HKLM\...\Free Download Manager_is1) (Version:  - FreeDownloadManager.ORG)
GeekBuddy (HKLM\...\{BFE3A28A-CCC8-49AB-A9C0-131B9DADA745}) (Version: 4.7.55 - Comodo Security Solutions Inc)
GetDataBack for NTFS (HKLM\...\{56582EEA-3AEF-4D84-8B9D-C87A3CD9250F}) (Version: 4.00.003 - Runtime Software)
Glary Utilities 5.22 (HKLM\...\Glary Utilities 5) (Version: 5.22.0.41 - Glarysoft Ltd)
GPL Ghostscript Lite 8.70 (HKLM\...\GPL Ghostscript Lite_is1) (Version:  - )
Griffith 0.11.0 (HKLM\...\Griffith_is1) (Version: 0.11.0 - Vasco Nunes, Piotr Ozarowski)
HD Tune 2.55 (HKLM\...\HD Tune_is1) (Version:  - EFD Software)
HDD Health v3.2 Beta (HKLM\...\HDD Health_is1) (Version:  - )
Hotfix für Windows Media Player 11 (KB939683) (HKLM\...\KB939683) (Version:  - Microsoft Corporation)
Hotfix für Windows XP (KB2158563) (HKLM\...\KB2158563) (Version: 1 - Microsoft Corporation)
Hotfix für Windows XP (KB2443685) (HKLM\...\KB2443685) (Version: 1 - Microsoft Corporation)
Hotfix für Windows XP (KB2570791) (HKLM\...\KB2570791) (Version: 1 - Microsoft Corporation)
Hotfix für Windows XP (KB2633952) (HKLM\...\KB2633952) (Version: 1 - Microsoft Corporation)
Hotfix für Windows XP (KB2756822) (HKLM\...\KB2756822) (Version: 1 - Microsoft Corporation)
Hotfix für Windows XP (KB2779562) (HKLM\...\KB2779562) (Version: 1 - Microsoft Corporation)
Hotfix für Windows XP (KB952287) (HKLM\...\KB952287) (Version: 1 - Microsoft Corporation)
Hotfix für Windows XP (KB961118) (HKLM\...\KB961118) (Version: 1 - Microsoft Corporation)
Hotfix für Windows XP (KB970653-v3) (HKLM\...\KB970653-v3) (Version: 3 - Microsoft Corporation)
Hotfix für Windows XP (KB976098-v2) (HKLM\...\KB976098-v2) (Version: 2 - Microsoft Corporation)
Hotfix für Windows XP (KB979306) (HKLM\...\KB979306) (Version: 1 - Microsoft Corporation)
Hotfix für Windows XP (KB981793) (HKLM\...\KB981793) (Version: 1 - Microsoft Corporation)
inSSIDer (HKLM\...\{6734459C-512F-4DAD-93ED-BC07A88F0A5B}) (Version: 1.2.7 - MetaGeek, LLC)
Intel(R) Graphics Media Accelerator Driver (HKLM\...\HDMI) (Version:  - )
iPod zurücksetzen (HKLM\...\{20ED157B-1A84-4DF7-945E-4951A38A9CBA}) (Version: 1.0.4.71 - Apple Inc.)
JAP (HKLM\...\JAP) (Version: 00.11.001 - JAP-Team)
Java 7 Update 67 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83217040FF}) (Version: 7.0.670 - Oracle)
JDownloader (HKLM\...\JDownloader) (Version:  - AppWork UG (haftungsbeschränkt))
Malwarebytes Anti-Malware Version 2.0.4.1028 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.4.1028 - Malwarebytes Corporation)
Microsoft .NET Framework 2.0 Language Pack - DEU (HKLM\...\Microsoft .NET Framework 2.0 Language Pack - DEU) (Version:  - Microsoft Corporation)
Microsoft .NET Framework 2.0 Service Pack 2 (HKLM\...\{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}) (Version: 2.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.0 Service Pack 2 (HKLM\...\{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}) (Version: 3.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version:  - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile DEU Language Pack (HKLM\...\Microsoft .NET Framework 4 Client Profile DEU Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Extended (HKLM\...\Microsoft .NET Framework 4 Extended) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Extended DEU Language Pack (HKLM\...\Microsoft .NET Framework 4 Extended DEU Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft Bootvis (HKLM\...\{0F9196C6-58B4-445B-B56E-B1200FECC151}) (Version: 1.3.37 - Microsoft)
Microsoft Compression Client Pack 1.0 for Windows XP (HKLM\...\MSCompPackV1) (Version: 1 - Microsoft Corporation)
Microsoft User-Mode Driver Framework Feature Pack 1.9 (HKLM\...\Wudf01009) (Version:  - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (HKLM\...\{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (HKLM\...\{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}) (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Miranda IM 0.8.5 (HKLM\...\Miranda IM) (Version:  - )
Mixxx 1.10.0 (HKLM\...\Mixxx (1.10.0)) (Version: 1.10.0 - The Mixxx Team)
Mozilla Firefox 38.0 (x86 en-US) (HKLM\...\Mozilla Firefox 38.0 (x86 en-US)) (Version: 38.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 24.5.0 - Mozilla)
Mozilla Thunderbird 31.4.0 (x86 de) (HKLM\...\Mozilla Thunderbird 31.4.0 (x86 de)) (Version: 31.4.0 - Mozilla)
MSVC80_x86 (Version: 1.0.1.0 - Nokia) Hidden
MSVC80_x86_v2 (Version: 1.0.3.0 - Nokia) Hidden
MSVC90_x86 (Version: 1.0.1.2 - Nokia) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Navigator 11 - Setup Utility 11.0.23-3 (HKLM\...\MAPFACTOR_SETUP_UTILITY_HYBRID_11_is1) (Version: 11.0.23-3 - MapFactor s.r.o)
Nokia Connectivity Cable Driver (HKLM\...\{D4BF151C-70A8-4CE2-906F-4173A575BAD9}) (Version: 7.1.182.0 - Nokia)
Nokia Suite (HKLM\...\Nokia Suite) (Version: 3.8.48.0 - Nokia)
Nokia Suite (Version: 3.8.48.0 - Nokia) Hidden
NTFS Undelete v0.94 (HKLM\...\NTFS Undelete_is1) (Version: 0.94 - Atola Technology)
OpenOffice 4.0.1 (HKLM\...\{0AEC308E-7EB3-47F7-BB59-F2C9C6166B27}) (Version: 4.01.9714 - Apache Software Foundation)
PC Connectivity Solution (HKLM\...\{6D01D1B1-17BD-4F10-BB11-F08F0C47D42B}) (Version: 12.0.109.0 - Nokia)
PrimoPoi Version 1.8.0 (HKLM\...\{9200B68F-51D5-46E4-8C7E-9F5A8A60DB2C}_is1) (Version: 1.8.0 - Hansiwenna)
QuickTime (HKLM\...\{57752979-A1C9-4C02-856B-FBB27AC4E02C}) (Version: 7.69.80.9 - Apple Inc.)
Ralink RT2870 Wireless LAN Card (HKLM\...\{28DA7D8B-F9A4-4F18-8AA0-551B1E084D0D}) (Version: 1.5.6.0 - Ralink)
Ravensburger tiptoi (HKLM\...\Ravensburger tiptoi) (Version:  - )
REALTEK GbE & FE Ethernet PCI-E NIC Driver (HKLM\...\{C9BED750-1211-4480-B1A5-718A3BE15525}) (Version: 1.16.0001 - Realtek)
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 5.10.0.5700 - Realtek Semiconductor Corp.)
R-Studio 5.0 (HKLM\...\R-Studio 5.0NSIS) (Version: 5.0.129021 - R-Tools Technology Inc.)
Segoe UI (Version: 14.0.4327.805 - Microsoft Corp) Hidden
Sicherheitsupdate für Microsoft Windows (KB2564958) (HKLM\...\KB2564958) (Version:  - Microsoft Corporation)
Sicherheitsupdate für Windows Internet Explorer 7 (KB938127-v2) (HKLM\...\KB938127-v2-IE7) (Version: 2 - Microsoft Corporation)
Sicherheitsupdate für Windows Internet Explorer 7 (KB953838) (HKLM\...\KB953838-IE7) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows Internet Explorer 7 (KB956390) (HKLM\...\KB956390-IE7) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows Internet Explorer 7 (KB961260) (HKLM\...\KB961260-IE7) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows Internet Explorer 7 (KB972260) (HKLM\...\KB972260-IE7) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows Internet Explorer 8 (KB981332) (HKLM\...\KB981332-IE8) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows Media Player (KB2378111) (HKLM\...\KB2378111_WM9) (Version:  - Microsoft Corporation)
Sicherheitsupdate für Windows Media Player (KB2834904) (HKLM\...\KB2834904_WM11) (Version:  - Microsoft Corporation)
Sicherheitsupdate für Windows Media Player (KB2834904-v2) (HKLM\...\KB2834904-v2_WM11) (Version:  - Microsoft Corporation)
Sicherheitsupdate für Windows Media Player (KB952069) (HKLM\...\KB952069_WM9) (Version:  - Microsoft Corporation)
Sicherheitsupdate für Windows Media Player (KB954155) (HKLM\...\KB954155_WM9) (Version:  - Microsoft Corporation)
Sicherheitsupdate für Windows Media Player (KB968816) (HKLM\...\KB968816_WM9) (Version:  - Microsoft Corporation)
Sicherheitsupdate für Windows Media Player (KB973540) (HKLM\...\KB973540_WM9) (Version:  - Microsoft Corporation)
Sicherheitsupdate für Windows Media Player (KB975558) (HKLM\...\KB975558_WM8) (Version:  - Microsoft Corporation)
Sicherheitsupdate für Windows Media Player (KB978695) (HKLM\...\KB978695_WM9) (Version:  - Microsoft Corporation)
Sicherheitsupdate für Windows Media Player 11 (KB936782) (HKLM\...\KB936782_WMP11) (Version:  - Microsoft Corporation)
Sicherheitsupdate für Windows Media Player 11 (KB954154) (HKLM\...\KB954154_WM11) (Version:  - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2079403) (HKLM\...\KB2079403) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2115168) (HKLM\...\KB2115168) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2121546) (HKLM\...\KB2121546) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2160329) (HKLM\...\KB2160329) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2229593) (HKLM\...\KB2229593) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2259922) (HKLM\...\KB2259922) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2279986) (HKLM\...\KB2279986) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2286198) (HKLM\...\KB2286198) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2296011) (HKLM\...\KB2296011) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2296199) (HKLM\...\KB2296199) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2347290) (HKLM\...\KB2347290) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2360937) (HKLM\...\KB2360937) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2387149) (HKLM\...\KB2387149) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2393802) (HKLM\...\KB2393802) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2412687) (HKLM\...\KB2412687) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2419632) (HKLM\...\KB2419632) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2423089) (HKLM\...\KB2423089) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2436673) (HKLM\...\KB2436673) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2440591) (HKLM\...\KB2440591) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2443105) (HKLM\...\KB2443105) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2476490) (HKLM\...\KB2476490) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2476687) (HKLM\...\KB2476687) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2478960) (HKLM\...\KB2478960) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2478971) (HKLM\...\KB2478971) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2479628) (HKLM\...\KB2479628) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2479943) (HKLM\...\KB2479943) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2481109) (HKLM\...\KB2481109) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2483185) (HKLM\...\KB2483185) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2485376) (HKLM\...\KB2485376) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2485663) (HKLM\...\KB2485663) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2503658) (HKLM\...\KB2503658) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2503665) (HKLM\...\KB2503665) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2506212) (HKLM\...\KB2506212) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2506223) (HKLM\...\KB2506223) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2507618) (HKLM\...\KB2507618) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2507938) (HKLM\...\KB2507938) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2508272) (HKLM\...\KB2508272) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2508429) (HKLM\...\KB2508429) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2509553) (HKLM\...\KB2509553) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2511455) (HKLM\...\KB2511455) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2524375) (HKLM\...\KB2524375) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2535512) (HKLM\...\KB2535512) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2536276) (HKLM\...\KB2536276) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2536276-v2) (HKLM\...\KB2536276-v2) (Version: 2 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2544893) (HKLM\...\KB2544893) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2544893-v2) (HKLM\...\KB2544893-v2) (Version: 2 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2555917) (HKLM\...\KB2555917) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2562937) (HKLM\...\KB2562937) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2566454) (HKLM\...\KB2566454) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2567053) (HKLM\...\KB2567053) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2567680) (HKLM\...\KB2567680) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2570222) (HKLM\...\KB2570222) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2570947) (HKLM\...\KB2570947) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2584146) (HKLM\...\KB2584146) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2585542) (HKLM\...\KB2585542) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2592799) (HKLM\...\KB2592799) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2598479) (HKLM\...\KB2598479) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2603381) (HKLM\...\KB2603381) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2618451) (HKLM\...\KB2618451) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2619339) (HKLM\...\KB2619339) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2620712) (HKLM\...\KB2620712) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2621440) (HKLM\...\KB2621440) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2624667) (HKLM\...\KB2624667) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2631813) (HKLM\...\KB2631813) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2633171) (HKLM\...\KB2633171) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2639417) (HKLM\...\KB2639417) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2641653) (HKLM\...\KB2641653) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2646524) (HKLM\...\KB2646524) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2647518) (HKLM\...\KB2647518) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2653956) (HKLM\...\KB2653956) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2655992) (HKLM\...\KB2655992) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2659262) (HKLM\...\KB2659262) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2660465) (HKLM\...\KB2660465) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2661637) (HKLM\...\KB2661637) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2676562) (HKLM\...\KB2676562) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2685939) (HKLM\...\KB2685939) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2686509) (HKLM\...\KB2686509) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2691442) (HKLM\...\KB2691442) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2695962) (HKLM\...\KB2695962) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2698365) (HKLM\...\KB2698365) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2705219) (HKLM\...\KB2705219) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2707511) (HKLM\...\KB2707511) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2709162) (HKLM\...\KB2709162) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2712808) (HKLM\...\KB2712808) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2718523) (HKLM\...\KB2718523) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2719985) (HKLM\...\KB2719985) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2723135) (HKLM\...\KB2723135) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2724197) (HKLM\...\KB2724197) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2727528) (HKLM\...\KB2727528) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2731847) (HKLM\...\KB2731847) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2753842) (HKLM\...\KB2753842) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2753842-v2) (HKLM\...\KB2753842-v2) (Version: 2 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2757638) (HKLM\...\KB2757638) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2758857) (HKLM\...\KB2758857) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2761226) (HKLM\...\KB2761226) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2770660) (HKLM\...\KB2770660) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2778344) (HKLM\...\KB2778344) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2779030) (HKLM\...\KB2779030) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2780091) (HKLM\...\KB2780091) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2799494) (HKLM\...\KB2799494) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2802968) (HKLM\...\KB2802968) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2807986) (HKLM\...\KB2807986) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2808735) (HKLM\...\KB2808735) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2813170) (HKLM\...\KB2813170) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2813345) (HKLM\...\KB2813345) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2820197) (HKLM\...\KB2820197) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2820917) (HKLM\...\KB2820917) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2829361) (HKLM\...\KB2829361) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2834886) (HKLM\...\KB2834886) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2839229) (HKLM\...\KB2839229) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2845187) (HKLM\...\KB2845187) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2847311) (HKLM\...\KB2847311) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2849470) (HKLM\...\KB2849470) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2850851) (HKLM\...\KB2850851) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2850869) (HKLM\...\KB2850869) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2859537) (HKLM\...\KB2859537) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2862152) (HKLM\...\KB2862152) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2862330) (HKLM\...\KB2862330) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2862335) (HKLM\...\KB2862335) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2864063) (HKLM\...\KB2864063) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2868038) (HKLM\...\KB2868038) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2868626) (HKLM\...\KB2868626) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2876217) (HKLM\...\KB2876217) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2876315) (HKLM\...\KB2876315) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2876331) (HKLM\...\KB2876331) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2883150) (HKLM\...\KB2883150) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2884256) (HKLM\...\KB2884256) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2892075) (HKLM\...\KB2892075) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2893294) (HKLM\...\KB2893294) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2893984) (HKLM\...\KB2893984) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2898715) (HKLM\...\KB2898715) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2900986) (HKLM\...\KB2900986) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2914368) (HKLM\...\KB2914368) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2916036) (HKLM\...\KB2916036) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2922229) (HKLM\...\KB2922229) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2929961) (HKLM\...\KB2929961) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2930275) (HKLM\...\KB2930275) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB923561) (HKLM\...\KB923561) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB923789) (HKLM\...\KB923789) (Version:  - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB938464) (HKLM\...\KB938464) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB941569) (HKLM\...\KB941569) (Version:  - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB946648) (HKLM\...\KB946648) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB950762) (HKLM\...\KB950762) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB950974) (HKLM\...\KB950974) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB951066) (HKLM\...\KB951066) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB951376-v2) (HKLM\...\KB951376-v2) (Version: 2 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB951698) (HKLM\...\KB951698) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB951748) (HKLM\...\KB951748) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB952004) (HKLM\...\KB952004) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB952954) (HKLM\...\KB952954) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB954211) (HKLM\...\KB954211) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB954459) (HKLM\...\KB954459) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB954600) (HKLM\...\KB954600) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB955069) (HKLM\...\KB955069) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB956391) (HKLM\...\KB956391) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB956572) (HKLM\...\KB956572) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB956744) (HKLM\...\KB956744) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB956802) (HKLM\...\KB956802) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB956803) (HKLM\...\KB956803) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB956841) (HKLM\...\KB956841) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB956844) (HKLM\...\KB956844) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB957095) (HKLM\...\KB957095) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB957097) (HKLM\...\KB957097) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB958644) (HKLM\...\KB958644) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB958687) (HKLM\...\KB958687) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB958690) (HKLM\...\KB958690) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB958869) (HKLM\...\KB958869) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB959426) (HKLM\...\KB959426) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB960225) (HKLM\...\KB960225) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB960715) (HKLM\...\KB960715) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB960803) (HKLM\...\KB960803) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB960859) (HKLM\...\KB960859) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB961371) (HKLM\...\KB961371) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB961373) (HKLM\...\KB961373) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB961501) (HKLM\...\KB961501) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB968537) (HKLM\...\KB968537) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB969059) (HKLM\...\KB969059) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB969898) (HKLM\...\KB969898) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB969947) (HKLM\...\KB969947) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB970238) (HKLM\...\KB970238) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB970430) (HKLM\...\KB970430) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB971468) (HKLM\...\KB971468) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB971486) (HKLM\...\KB971486) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB971557) (HKLM\...\KB971557) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB971633) (HKLM\...\KB971633) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB971657) (HKLM\...\KB971657) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB971961) (HKLM\...\KB971961) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB972270) (HKLM\...\KB972270) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB973346) (HKLM\...\KB973346) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB973354) (HKLM\...\KB973354) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB973507) (HKLM\...\KB973507) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB973525) (HKLM\...\KB973525) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB973869) (HKLM\...\KB973869) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB973904) (HKLM\...\KB973904) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB974112) (HKLM\...\KB974112) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB974318) (HKLM\...\KB974318) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB974392) (HKLM\...\KB974392) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB974571) (HKLM\...\KB974571) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB975025) (HKLM\...\KB975025) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB975467) (HKLM\...\KB975467) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB975560) (HKLM\...\KB975560) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB975561) (HKLM\...\KB975561) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB975562) (HKLM\...\KB975562) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB975713) (HKLM\...\KB975713) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB977165) (HKLM\...\KB977165) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB977816) (HKLM\...\KB977816) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB977914) (HKLM\...\KB977914) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB978037) (HKLM\...\KB978037) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB978251) (HKLM\...\KB978251) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB978262) (HKLM\...\KB978262) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB978338) (HKLM\...\KB978338) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB978542) (HKLM\...\KB978542) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB978601) (HKLM\...\KB978601) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB978706) (HKLM\...\KB978706) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB979309) (HKLM\...\KB979309) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB979482) (HKLM\...\KB979482) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB979559) (HKLM\...\KB979559) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB979683) (HKLM\...\KB979683) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB979687) (HKLM\...\KB979687) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB980195) (HKLM\...\KB980195) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB980218) (HKLM\...\KB980218) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB980232) (HKLM\...\KB980232) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB980436) (HKLM\...\KB980436) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB981322) (HKLM\...\KB981322) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB981852) (HKLM\...\KB981852) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB981957) (HKLM\...\KB981957) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB981997) (HKLM\...\KB981997) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB982132) (HKLM\...\KB982132) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB982214) (HKLM\...\KB982214) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB982665) (HKLM\...\KB982665) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB982802) (HKLM\...\KB982802) (Version: 1 - Microsoft Corporation)
Skype™ 7.3 (HKLM\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.3.101 - Skype Technologies S.A.)
StreamTransport version: 1.0.2.2171 (HKLM\...\{FA0BBB87-91A1-4BFD-9005-EB058BBA0E14}_is1) (Version:  - )
swMSM (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 10.1.8.0 - Synaptics)
System Control Manager (HKLM\...\{ED9C5D25-55DF-48D8-9328-2AC0D75DE5D8}) (Version: 2.0208.0926.OE001.11 - )
tabbyFile v2.1.2 (HKLM\...\tabbyFile v2.1.2) (Version:  - )
The KMPlayer (remove only) (HKLM\...\The KMPlayer) (Version: 3.6.0.87 - KMP Media co., Ltd)
TrueCrypt (HKLM\...\TrueCrypt) (Version: 6.2a - TrueCrypt Foundation)
Tux Paint 0.9.17 (HKLM\...\Tux Paint_is1) (Version:  - New Breed Software)
UltraExplorer 2.0.3.0 (HKLM\...\UltraExplorer_is1) (Version:  - Mustangpeak Software)
Unlocker 1.8.7 (HKLM\...\Unlocker) (Version: 1.8.7 - Cedrick Collomb)
Update für Windows XP (KB2141007) (HKLM\...\KB2141007) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB2345886) (HKLM\...\KB2345886) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB2467659) (HKLM\...\KB2467659) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB2541763) (HKLM\...\KB2541763) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB2607712) (HKLM\...\KB2607712) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB2616676) (HKLM\...\KB2616676) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB2641690) (HKLM\...\KB2641690) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB2661254-v2) (HKLM\...\KB2661254-v2) (Version: 2 - Microsoft Corporation)
Update für Windows XP (KB2736233) (HKLM\...\KB2736233) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB2749655) (HKLM\...\KB2749655) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB2863058) (HKLM\...\KB2863058) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB2904266) (HKLM\...\KB2904266) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB2934207) (HKLM\...\KB2934207) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB898461) (HKLM\...\KB898461) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB951072-v2) (HKLM\...\KB951072-v2) (Version: 2 - Microsoft Corporation)
Update für Windows XP (KB951978) (HKLM\...\KB951978) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB955759) (HKLM\...\KB955759) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB955839) (HKLM\...\KB955839) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB961503) (HKLM\...\KB961503) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB967715) (HKLM\...\KB967715) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB968389) (HKLM\...\KB968389) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB971029) (HKLM\...\KB971029) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB971737) (HKLM\...\KB971737) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB973687) (HKLM\...\KB973687) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB973815) (HKLM\...\KB973815) (Version: 1 - Microsoft Corporation)
Update Manager (Version: 4.60 - Corel Corporation) Hidden
USB2.0 Card Reader Software (HKLM\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.0.6000.74 - Realtek)
VC80CRTRedist - 8.0.50727.4053 (Version: 1.1.0 - DivX, Inc) Hidden
VLC media player (HKLM\...\VLC media player) (Version: 2.1.5 - VideoLAN)
VoipStunt (HKLM\...\VoipStunt_is1) (Version: 4.08 build 645 - Finarea S.A. Switzerland)
WebFldrs XP (Version: 9.50.7523 - Microsoft Corporation) Hidden
Wichtiges Update für Windows Media Player 11 (KB959772) (HKLM\...\KB959772_WM11) (Version:  - Microsoft Corporation)
Windows Internet Explorer 7 (HKLM\...\ie7) (Version: 20070813.185237 - Microsoft Corporation)
Windows Live Anmelde-Assistent (HKLM\...\{52B97218-98CB-4B8B-9283-D213C85E1AA4}) (Version: 5.000.818.5 - Microsoft Corporation)
Windows Live Essentials (HKLM\...\WinLiveSuite_Wave3) (Version: 14.0.8117.0416 - Microsoft Corporation)
Windows Live-Uploadtool (HKLM\...\{205C6BDD-7B73-42DE-8505-9A093F35A238}) (Version: 14.0.8014.1029 - Microsoft Corporation)
Windows Media Format 11 runtime (HKLM\...\Windows Media Format Runtime) (Version:  - )
Windows Media Player 11 (HKLM\...\Windows Media Player) (Version:  - )
Windows-Treiberpaket - Nokia pccsmcfd “LegacyDriver”  (05/31/2012 7.1.2.0) (HKLM\...\17D063A0A9F5D5A225B76B1D9BCB5ADBE85C8382) (Version: 05/31/2012 7.1.2.0 - Nokia)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-1812403978-383865461-3209680303-1005_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Dokumente und Einstellungen\Lurchi\Anwendungsdaten\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1812403978-383865461-3209680303-1005_Classes\CLSID\{E69341A3-E6D2-4175-B60C-C9D3D6FA40F6}\localserver32 -> C:\Dokumente und Einstellungen\Lurchi\Anwendungsdaten\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1812403978-383865461-3209680303-1005_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Dokumente und Einstellungen\Lurchi\Anwendungsdaten\Dropbox\bin\DropboxExt.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1812403978-383865461-3209680303-1005_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Dokumente und Einstellungen\Lurchi\Anwendungsdaten\Dropbox\bin\DropboxExt.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1812403978-383865461-3209680303-1005_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Dokumente und Einstellungen\Lurchi\Anwendungsdaten\Dropbox\bin\DropboxExt.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1812403978-383865461-3209680303-1005_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Dokumente und Einstellungen\Lurchi\Anwendungsdaten\Dropbox\bin\DropboxExt.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1812403978-383865461-3209680303-1005_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Dokumente und Einstellungen\Lurchi\Anwendungsdaten\Dropbox\bin\DropboxExt.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1812403978-383865461-3209680303-1005_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Dokumente und Einstellungen\Lurchi\Anwendungsdaten\Dropbox\bin\DropboxExt.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1812403978-383865461-3209680303-1005_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Dokumente und Einstellungen\Lurchi\Anwendungsdaten\Dropbox\bin\DropboxExt.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1812403978-383865461-3209680303-1005_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Dokumente und Einstellungen\Lurchi\Anwendungsdaten\Dropbox\bin\DropboxExt.24.dll (Dropbox, Inc.)

==================== Restore Points  =========================

17-02-2015 15:46:59 Software Distribution Service 3.0
14-03-2015 20:42:26 Software Distribution Service 3.0
01-05-2015 16:50:02 Software Distribution Service 3.0

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2008-11-11 01:31 - 2014-01-28 12:55 - 00000027 ____A C:\WINDOWS\system32\Drivers\etc\hosts
127.0.0.1       localhost

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\Ende des Supports für Microsoft Windows XP –  Benachrichtigung – Anmeldung.job => C:\WINDOWS\system32\xp_eos.exe
Task: C:\WINDOWS\Tasks\Ende des Supports für Microsoft Windows XP – Monatliche Benachrichtigung.job => C:\WINDOWS\system32\xp_eos.exe
Task: C:\WINDOWS\Tasks\GlaryInitialize 5.job => C:\Programme\Glary Utilities 5\Initialize.exe

==================== Loaded Modules (whitelisted) ==============

2008-11-11 02:01 - 2008-08-26 17:52 - 00159744 _____ () C:\Programme\System Control Manager\MSIService.exe
2008-11-11 02:01 - 2008-08-25 12:47 - 00192512 _____ () C:\Programme\System Control Manager\MSIWmiAcpi.dll
2008-05-02 06:15 - 2008-05-02 06:15 - 00010240 _____ () C:\Programme\Unlocker\UnlockerCOM.dll
2008-11-11 02:01 - 2008-07-18 14:39 - 00053248 _____ () C:\Programme\System Control Manager\MGKBHook.dll
2008-11-11 01:31 - 2008-04-14 15:00 - 00014336 _____ () C:\WINDOWS\system32\msdmo.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)


==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver"

==================== EXE Association (whitelisted) ===============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, the associated entry will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-1812403978-383865461-3209680303-1005\...\localhost -> hxxp://localhost
IE trusted site: HKU\S-1-5-21-1812403978-383865461-3209680303-1005\...\secunia.com -> hxxps://secunia.com


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-19-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Control Panel\Desktop\\Wallpaper -> (Kein)
HKU\S-1-5-19-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\Control Panel\Desktop\\Wallpaper -> (Kein)
HKU\S-1-5-20-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Control Panel\Desktop\\Wallpaper -> (Kein)
HKU\S-1-5-20-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\Control Panel\Desktop\\Wallpaper -> (Kein)
HKU\S-1-5-21-1812403978-383865461-3209680303-1005\Control Panel\Desktop\\Wallpaper -> C:\Dokumente und Einstellungen\Lurchi\Anwendungsdaten\Mozilla\Firefox\Desktop-Hintergrund.bmp
HKU\S-1-5-21-1812403978-383865461-3209680303-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Control Panel\Desktop\\Wallpaper -> C:\Dokumente und Einstellungen\Lurchi\Anwendungsdaten\Mozilla\Firefox\Desktop-Hintergrund.bmp
HKU\S-1-5-21-1812403978-383865461-3209680303-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\Control Panel\Desktop\\Wallpaper -> C:\Dokumente und Einstellungen\Lurchi\Anwendungsdaten\Mozilla\Firefox\Desktop-Hintergrund.bmp
HKU\S-1-5-21-1812403978-383865461-3209680303-501-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Grüne Idylle.bmp
HKU\S-1-5-21-1812403978-383865461-3209680303-501-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Grüne Idylle.bmp
DNS Servers: 192.168.1.1

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)


==================== FirewallRules (whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

DomainProfile\AuthorizedApplications: [C:\Programme\Windows Live\Messenger\msnmsgr.exe] => Enabled:Windows Live Messenger
StandardProfile\AuthorizedApplications: [C:\Programme\Miranda IM\miranda32.exe] => Enabled:Miranda IM
StandardProfile\AuthorizedApplications: [C:\Programme\Messenger\msmsgs.exe] => Enabled:Windows Messenger
StandardProfile\AuthorizedApplications: [C:\Programme\Free Download Manager\fdm.exe] => Enabled:Free Download Manager
StandardProfile\AuthorizedApplications: [C:\Programme\VideoLAN\VLC\vlc.exe] => Enabled:VLC media player
StandardProfile\AuthorizedApplications: [C:\Programme\Java\jre6\bin\javaw.exe] => Enabled:Java(TM) Platform SE binary
StandardProfile\AuthorizedApplications: [C:\Programme\Windows Live\Messenger\msnmsgr.exe] => Enabled:Windows Live Messenger
StandardProfile\AuthorizedApplications: [C:\Programme\VoipStunt.com\VoipStunt\VoipStunt.exe] => Enabled:VoipStunt
StandardProfile\AuthorizedApplications: [C:\Dokumente und Einstellungen\Lurchi\Anwendungsdaten\Dropbox\bin\Dropbox.exe] => Enabled:Dropbox
StandardProfile\AuthorizedApplications: [C:\Dokumente und Einstellungen\Lurchi\Anwendungsdaten\uTorrent\uTorrent.exe] => Enabled:μTorrent
StandardProfile\AuthorizedApplications: [C:\Programme\Skype\Phone\Skype.exe] => Enabled:Skype
StandardProfile\AuthorizedApplications: [C:\Programme\Mozilla Firefox\firefox.exe] => Enabled:Firefox (C:\Programme\Mozilla Firefox)
DomainProfile\GloballyOpenPorts: [139:TCP] => Enabled:@xpsp2res.dll,-22004
DomainProfile\GloballyOpenPorts: [445:TCP] => Enabled:@xpsp2res.dll,-22005
DomainProfile\GloballyOpenPorts: [137:UDP] => Enabled:@xpsp2res.dll,-22001
DomainProfile\GloballyOpenPorts: [138:UDP] => Enabled:@xpsp2res.dll,-22002
StandardProfile\GloballyOpenPorts: [1900:UDP] => :LocalSubNet:Disabled:@xpsp2res.dll,-22007
StandardProfile\GloballyOpenPorts: [2869:TCP] => :LocalSubNet:Disabled:@xpsp2res.dll,-22008
StandardProfile\GloballyOpenPorts: [139:TCP] => :LocalSubNet:Enabled:@xpsp2res.dll,-22004
StandardProfile\GloballyOpenPorts: [445:TCP] => :LocalSubNet:Enabled:@xpsp2res.dll,-22005
StandardProfile\GloballyOpenPorts: [137:UDP] => :LocalSubNet:Enabled:@xpsp2res.dll,-22001
StandardProfile\GloballyOpenPorts: [138:UDP] => :LocalSubNet:Enabled:@xpsp2res.dll,-22002
StandardProfile\GloballyOpenPorts: [1542:TCP] => Enabled:Realtek WPS TCP Prot
StandardProfile\GloballyOpenPorts: [1542:UDP] => Enabled:Realtek WPS UDP Prot
StandardProfile\GloballyOpenPorts: [53:UDP] => Enabled:Realtek AP UDP Prot

==================== Faulty Device Manager Devices =============

Name: Cisco Systems VPN Adapter
Description: Cisco Systems VPN Adapter
Class Guid: {4D36E972-E325-11CE-BFC1-08002BE10318}
Manufacturer: Cisco Systems
Service: CVirtA
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: 5230
Description: 5230
Class Guid: {EEC5AD98-8080-425F-922A-DABF3DE3F69A}
Manufacturer: Nokia
Service: WUDFRd
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Event log errors: =========================

Application errors:
==================
Error: (05/01/2015 05:27:04 PM) (Source: COM+) (EventID: 4691) (User: )
Description: Transaktionen, die zur Unterstützung von Transaktionskomponenten erforderlich sind, konnten von der Laufzeitumgebung nicht initialisiert werden. Stellen Sie sicher, dass MS DTC ausgeführt wird.(DtcGetTransactionManagerEx(): hr = 0x8004d01b)

Error: (05/01/2015 05:12:03 PM) (Source: RalinkRegistryWriter) (EventID: 0) (User: )
Description: RalinkRegistryWriter error: 231Unable to create named pipe

Error: (05/01/2015 04:43:58 PM) (Source: COM+) (EventID: 4691) (User: )
Description: Transaktionen, die zur Unterstützung von Transaktionskomponenten erforderlich sind, konnten von der Laufzeitumgebung nicht initialisiert werden. Stellen Sie sicher, dass MS DTC ausgeführt wird.(DtcGetTransactionManagerEx(): hr = 0x8004d01b)

Error: (05/01/2015 04:40:36 PM) (Source: RalinkRegistryWriter) (EventID: 0) (User: )
Description: RalinkRegistryWriter error: 231Unable to create named pipe

Error: (04/08/2015 10:54:59 PM) (Source: COM+) (EventID: 4691) (User: )
Description: Transaktionen, die zur Unterstützung von Transaktionskomponenten erforderlich sind, konnten von der Laufzeitumgebung nicht initialisiert werden. Stellen Sie sicher, dass MS DTC ausgeführt wird.(DtcGetTransactionManagerEx(): hr = 0x8004d01b)

Error: (04/08/2015 10:52:45 PM) (Source: MsiInstaller) (EventID: 11704) (User: LAPPI)
Description: Produkt: Skype™ 7.3 -- Fehler 1704. Eine Installation von Update Manager wurde unterbrochen. Sie müssen die von dieser Installation vorgenommenen Änderungen rückgängig machen, bevor Sie den Vorgang fortsetzen können. Möchten Sie diese Änderungen rückgängig machen?

Error: (04/08/2015 10:48:48 PM) (Source: RalinkRegistryWriter) (EventID: 0) (User: )
Description: RalinkRegistryWriter error: 231Unable to create named pipe

Error: (04/08/2015 10:45:30 PM) (Source: crypt32) (EventID: 11) (User: )
Description: Die Extrahierung der Drittanbieterstammlisten aus der automatischen Aktualisierungs-CAB-Datei bei <hxxp://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> ist fehlgeschlagen mit dem Fehler: Ein erforderliches Zertifikat befindet sich nicht im Gültigkeitszeitraum gemessen an der aktuellen Systemzeit oder dem Zeitstempel in der signierten Datei.
.

Error: (04/08/2015 10:45:30 PM) (Source: crypt32) (EventID: 11) (User: )
Description: Die Extrahierung der Drittanbieterstammlisten aus der automatischen Aktualisierungs-CAB-Datei bei <hxxp://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> ist fehlgeschlagen mit dem Fehler: Ein erforderliches Zertifikat befindet sich nicht im Gültigkeitszeitraum gemessen an der aktuellen Systemzeit oder dem Zeitstempel in der signierten Datei.
.

Error: (04/08/2015 10:22:42 PM) (Source: COM+) (EventID: 4691) (User: )
Description: Transaktionen, die zur Unterstützung von Transaktionskomponenten erforderlich sind, konnten von der Laufzeitumgebung nicht initialisiert werden. Stellen Sie sicher, dass MS DTC ausgeführt wird.(DtcGetTransactionManagerEx(): hr = 0x8004d01b)


System errors:
=============
Error: (05/01/2015 05:12:08 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "Ralink Registry Writer" wurde mit folgendem Fehler beendet: 
%%231

Error: (05/01/2015 05:12:08 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Cisco Systems Inc. IPSec Driver" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%2

Error: (05/01/2015 05:12:08 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Realtek EAPPkt Protocol" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%2

Error: (05/01/2015 04:44:01 PM) (Source: Wechselmediendienst) (EventID: 111) (User: )
Description: Der Wechselmediendienst konnte die Medien in Laufwerk Laufwerk 0 der Bibliothek Generic- Multi-Card USB Device nicht laden.

Error: (05/01/2015 04:44:00 PM) (Source: Wechselmediendienst) (EventID: 111) (User: )
Description: Der Wechselmediendienst konnte die Medien in Laufwerk Laufwerk 0 der Bibliothek Generic- Multi-Card USB Device nicht laden.

Error: (05/01/2015 04:40:40 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "Ralink Registry Writer" wurde mit folgendem Fehler beendet: 
%%231

Error: (05/01/2015 04:40:40 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Cisco Systems Inc. IPSec Driver" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%2

Error: (05/01/2015 04:40:40 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Realtek EAPPkt Protocol" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%2

Error: (04/13/2015 00:36:57 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Zeitüberschreitung (30000 ms) beim Warten auf eine Transaktionsrückmeldung von Dienst Netman.

Error: (04/12/2015 10:03:38 PM) (Source: Dhcp) (EventID: 1002) (User: )
Description: Die IP-Adresslease 192.168.1.10 für die Netzwerkkarte mit der Netzwerkadresse 002243682BEB wurde durch
den DHCP-Server 192.168.1.1 abgelehnt (der DHCP-Server hat eine DHCPNACK-Meldung gesendet).


Microsoft Office Sessions:
=========================

==================== Memory info =========================== 

Processor:  Intel(R) Atom(TM) CPU N270 @ 1.60GHz
Percentage of memory in use: 91%
Total physical RAM: 1013.23 MB
Available physical RAM: 85.64 MB
Total Pagefile: 2439.66 MB
Available Pagefile: 1203.8 MB
Total Virtual: 2047.88 MB
Available Virtual: 1931.95 MB

==================== Drives ================================

Drive c: (Lokaler Datenträger) (Fixed) (Total:141.6 GB) (Free:5.59 GB) NTFS ==>[Drive with boot components (Windows XP)]

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 149.1 GB) (Disk ID: 88FAC4AC)
Partition 1: (Active) - (Size=141.6 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=7.4 GB) - (Type=27)

==================== End Of Log ============================

und MBAR Antiy Rootkit

Code:

ATTFilter

---------------------------------------
Malwarebytes Anti-Rootkit BETA 1.09.1.1004

(c) Malwarebytes Corporation 2011-2012

OS version: 5.1.2600 Windows XP Service Pack 3 x86

Account is Administrative

Internet Explorer version: 7.0.5730.13

File system is: NTFS
Disk drives: C:\ DRIVE_FIXED
CPU speed: 1.600000 GHz
Memory total: 1062453248, free: 67989504

Downloaded database version: v2015.05.01.07
Canceled update
Initializing...
=======================================
This version of Malwarebytes Anti-Rootkit requires you to completely exit the Malwarebytes Anti-Malware application to continue.
=======================================


---------------------------------------
Malwarebytes Anti-Rootkit BETA 1.09.1.1004

(c) Malwarebytes Corporation 2011-2012

OS version: 5.1.2600 Windows XP Service Pack 3 x86

Account is Administrative

Internet Explorer version: 7.0.5730.13

File system is: NTFS
Disk drives: C:\ DRIVE_FIXED
CPU speed: 1.600000 GHz
Memory total: 1062453248, free: 80953344

---------------------------------------
Malwarebytes Anti-Rootkit BETA 1.09.1.1004

(c) Malwarebytes Corporation 2011-2012

OS version: 5.1.2600 Windows XP Service Pack 3 x86

Account is Administrative

Internet Explorer version: 7.0.5730.13

File system is: NTFS
Disk drives: C:\ DRIVE_FIXED
CPU speed: 1.600000 GHz
Memory total: 1062453248, free: 80797696

=======================================


---------------------------------------
Malwarebytes Anti-Rootkit BETA 1.09.1.1004

(c) Malwarebytes Corporation 2011-2012

OS version: 5.1.2600 Windows XP Service Pack 3 x86

Account is Administrative

Internet Explorer version: 7.0.5730.13

File system is: NTFS
Disk drives: C:\ DRIVE_FIXED
CPU speed: 1.600000 GHz
Memory total: 1062453248, free: 85676032

---------------------------------------
Malwarebytes Anti-Rootkit BETA 1.09.1.1004

(c) Malwarebytes Corporation 2011-2012

OS version: 5.1.2600 Windows XP Service Pack 3 x86

Account is Administrative

Internet Explorer version: 7.0.5730.13

File system is: NTFS
Disk drives: C:\ DRIVE_FIXED
CPU speed: 1.600000 GHz
Memory total: 1062453248, free: 71720960

=======================================


=======================================


---------------------------------------
Malwarebytes Anti-Rootkit BETA 1.09.1.1004

(c) Malwarebytes Corporation 2011-2012

OS version: 5.1.2600 Windows XP Service Pack 3 x86

Account is Administrative

Internet Explorer version: 7.0.5730.13

File system is: NTFS
Disk drives: C:\ DRIVE_FIXED
CPU speed: 1.600000 GHz
Memory total: 1062453248, free: 439013376

Downloaded database version: v2015.05.01.07
Downloaded database version: v2015.04.21.01
Downloaded database version: v2015.04.22.01
=======================================
Initializing...
------------ Kernel report ------------
     05/02/2015 11:46:08
------------ Loaded modules -----------
\WINDOWS\system32\ntkrnlpa.exe
\WINDOWS\system32\hal.dll
\WINDOWS\system32\KDCOM.DLL
\WINDOWS\system32\BOOTVID.dll
ACPI.sys
\WINDOWS\system32\DRIVERS\WMILIB.SYS
pci.sys
isapnp.sys
compbatt.sys
\WINDOWS\system32\DRIVERS\BATTC.SYS
MountMgr.sys
ftdisk.sys
PartMgr.sys
ACPIEC.sys
\WINDOWS\system32\DRIVERS\OPRGHDLR.SYS
VolSnap.sys
iaStor.sys
disk.sys
\WINDOWS\system32\DRIVERS\CLASSPNP.SYS
fltMgr.sys
sr.sys
PxHelp20.sys
KSecDD.sys
WudfPf.sys
Ntfs.sys
inspect.sys
\WINDOWS\System32\DRIVERS\NDIS.SYS
\WINDOWS\System32\DRIVERS\TDI.SYS
Mup.sys
BootDefragDriver.sys
\SystemRoot\system32\DRIVERS\igxpmp32.sys
\SystemRoot\system32\DRIVERS\VIDEOPRT.SYS
\SystemRoot\system32\DRIVERS\HDAudBus.sys
\SystemRoot\system32\DRIVERS\Rtenicxp.sys
\SystemRoot\system32\DRIVERS\athw.sys
\SystemRoot\system32\DRIVERS\usbuhci.sys
\SystemRoot\system32\DRIVERS\USBPORT.SYS
\SystemRoot\system32\DRIVERS\usbehci.sys
\SystemRoot\system32\DRIVERS\i8042prt.sys
\SystemRoot\system32\DRIVERS\kbdclass.sys
\SystemRoot\system32\DRIVERS\SynTP.sys
\SystemRoot\system32\DRIVERS\USBD.SYS
\SystemRoot\system32\DRIVERS\mouclass.sys
\SystemRoot\system32\DRIVERS\CmBatt.sys
\SystemRoot\system32\DRIVERS\wmiacpi.sys
\SystemRoot\system32\DRIVERS\intelppm.sys
\SystemRoot\system32\DRIVERS\dne2000.sys
\SystemRoot\system32\DRIVERS\audstub.sys
\SystemRoot\system32\DRIVERS\rasl2tp.sys
\SystemRoot\system32\DRIVERS\ndistapi.sys
\SystemRoot\system32\DRIVERS\ndiswan.sys
\SystemRoot\system32\DRIVERS\raspppoe.sys
\SystemRoot\system32\DRIVERS\raspptp.sys
\SystemRoot\system32\DRIVERS\psched.sys
\SystemRoot\system32\DRIVERS\msgpc.sys
\SystemRoot\system32\DRIVERS\ptilink.sys
\SystemRoot\system32\DRIVERS\raspti.sys
\SystemRoot\system32\DRIVERS\termdd.sys
\SystemRoot\system32\DRIVERS\swenum.sys
\SystemRoot\system32\DRIVERS\ks.sys
\SystemRoot\system32\DRIVERS\update.sys
\SystemRoot\system32\DRIVERS\mssmbios.sys
\SystemRoot\system32\DRIVERS\wsimd.sys
\SystemRoot\System32\Drivers\NDProxy.SYS
\SystemRoot\system32\drivers\RtkHDAud.sys
\SystemRoot\system32\drivers\portcls.sys
\SystemRoot\system32\drivers\drmk.sys
\SystemRoot\system32\DRIVERS\usbhub.sys
\SystemRoot\System32\DRIVERS\cmdguard.sys
\SystemRoot\system32\DRIVERS\usbccgp.sys
\SystemRoot\System32\Drivers\RTS5121.sys
\SystemRoot\system32\DRIVERS\CFRMD.sys
\SystemRoot\System32\Drivers\usbvideo.sys
\??\C:\WINDOWS\system32\drivers\ACEDRV05.sys
\SystemRoot\System32\Drivers\Fs_Rec.SYS
\SystemRoot\System32\Drivers\Null.SYS
\SystemRoot\System32\Drivers\Beep.SYS
\SystemRoot\System32\drivers\vga.sys
\SystemRoot\System32\Drivers\mnmdd.SYS
\SystemRoot\System32\DRIVERS\RDPCDD.sys
\SystemRoot\System32\Drivers\Msfs.SYS
\SystemRoot\System32\Drivers\Npfs.SYS
\SystemRoot\system32\DRIVERS\rasacd.sys
\SystemRoot\system32\DRIVERS\ipsec.sys
\SystemRoot\system32\DRIVERS\tcpip.sys
\SystemRoot\System32\DRIVERS\cmdhlp.sys
\SystemRoot\system32\DRIVERS\ipnat.sys
\SystemRoot\system32\DRIVERS\netbt.sys
\SystemRoot\system32\DRIVERS\wanarp.sys
\SystemRoot\System32\drivers\ws2ifsl.sys
\SystemRoot\System32\drivers\afd.sys
\SystemRoot\system32\DRIVERS\netbios.sys
\SystemRoot\System32\drivers\truecrypt.sys
\SystemRoot\system32\DRIVERS\ssmdrv.sys
\SystemRoot\system32\DRIVERS\rdbss.sys
\SystemRoot\system32\DRIVERS\mrxsmb.sys
\??\C:\WINDOWS\System32\drivers\GUBootStartup.sys
\SystemRoot\System32\Drivers\Fips.SYS
\SystemRoot\system32\DRIVERS\avkmgr.sys
\SystemRoot\system32\DRIVERS\avipbb.sys
\SystemRoot\System32\Drivers\dump_iaStor.sys
\SystemRoot\System32\win32k.sys
\SystemRoot\System32\drivers\Dxapi.sys
\SystemRoot\System32\watchdog.sys
\SystemRoot\System32\drivers\dxg.sys
\SystemRoot\System32\drivers\dxgthk.sys
\SystemRoot\System32\igxpgd32.dll
\SystemRoot\System32\igxprd32.dll
\SystemRoot\System32\igxpdv32.DLL
\SystemRoot\System32\igxpdx32.DLL
\SystemRoot\System32\ATMFD.DLL
\SystemRoot\system32\DRIVERS\avgntflt.sys
\SystemRoot\system32\DRIVERS\AegisP.sys
\SystemRoot\System32\Drivers\Scutum50.sys
\SystemRoot\system32\DRIVERS\ndisuio.sys
\SystemRoot\system32\DRIVERS\mrxdav.sys
\SystemRoot\system32\DRIVERS\srv.sys
\SystemRoot\system32\drivers\wdmaud.sys
\SystemRoot\system32\drivers\sysaudio.sys
\??\C:\WINDOWS\system32\drivers\mbamchameleon.sys
\??\C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys
\WINDOWS\system32\ntdll.dll
----------- End -----------
Done!

Scan started
Database versions:
  main:    v2015.05.01.07
  rootkit: v2015.04.21.01

<<<2>>>
Physical Sector Size: 512
Drive: 0, DevicePointer: 0xffffffff86fc6478, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\
--------- Disk Stack ------
DevicePointer: 0xffffffff86fc5020, DeviceName: Unknown, DriverName: \Driver\PartMgr\
DevicePointer: 0xffffffff86fc6478, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\
DevicePointer: 0xffffffff86f6e028, DeviceName: \Device\Ide\IAAStorageDevice-0\, DriverName: \Driver\iaStor\
------------ End ----------
Alternate DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\
Upper DeviceData: 0x0, 0x0, 0x0
Lower DeviceData: 0x0, 0x0, 0x0
<<<3>>>
Volume: C:
File system type: NTFS
SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes
<<<2>>>
<<<3>>>
Volume: C:
File system type: NTFS
SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes
Scanning drivers directory: C:\WINDOWS\SYSTEM32\drivers...
Done!
Drive 0
This is a System drive
Scanning MBR on drive 0...
Inspecting partition table:
MBR Signature: 55AA
Disk Signature: 88FAC4AC

Partition information:

    Partition 0 type is Primary (0x7)
    Partition is ACTIVE.
    Partition starts at LBA: 63  Numsec = 296961462
    Partition file system is NTFS
    Partition is bootable

    Partition 1 type is Other (0x27)
    Partition is NOT ACTIVE.
    Partition starts at LBA: 296961525  Numsec = 15615180

    Partition 2 type is Empty (0x0)
    Partition is NOT ACTIVE.
    Partition starts at LBA: 0  Numsec = 0

    Partition 3 type is Empty (0x0)
    Partition is NOT ACTIVE.
    Partition starts at LBA: 0  Numsec = 0

Disk Size: 160041885696 bytes
Sector size: 512 bytes

Done!
Scan finished
=======================================


Removal queue found; removal started
Removing C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Malwarebytes' Anti-Malware (portable)\MBR-0-i.mbam...
Removing C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Malwarebytes' Anti-Malware (portable)\VBR-0-0-63-i.mbam...
Removing C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Malwarebytes' Anti-Malware (portable)\MBR-0-r.mbam...
Removal finished
---------------------------------------
Malwarebytes Anti-Rootkit BETA 1.09.1.1004

(c) Malwarebytes Corporation 2011-2012

OS version: 5.1.2600 Windows XP Service Pack 3 x86

Account is Administrative

Internet Explorer version: 7.0.5730.13

File system is: NTFS
Disk drives: C:\ DRIVE_FIXED
CPU speed: 1.600000 GHz
Memory total: 1062453248, free: 593502208

=======================================

hijackthis

Code:

ATTFilter

Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 13:45:48, on 02.05.2015
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)

FIREFOX: 38.0 (x86 en-US)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\Programme\Gemeinsame Dateien\COMODO\launcher_service.exe
C:\WINDOWS\system32\svchost.exe
C:\Programme\COMODO\COMODO Internet Security\cmdagent.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Programme\Avira\AntiVir Desktop\sched.exe
C:\Programme\Avira\AntiVir Desktop\avguard.exe
C:\Programme\Comodo\Dragon\dragon_updater.exe
C:\Programme\Gemeinsame Dateien\COMODO\GeekBuddyRSP.exe
C:\Programme\System Control Manager\MSIService.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\RTHDCPL.EXE
C:\Programme\System Control Manager\MGSysCtrl.exe
C:\Programme\Synaptics\SynTP\SynTPEnh.exe
C:\Programme\Avira\AntiVir Desktop\avgnt.exe
C:\Programme\COMODO\COMODO Internet Security\cfp.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\wbem\unsecapp.exe
C:\Programme\Avira\AntiVir Desktop\avshadow.exe
C:\WINDOWS\system32\dllhost.exe
C:\Programme\Mozilla Firefox\firefox.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\Dokumente und Einstellungen\Lurchi\Desktop\Virentools\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.targa.de
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = hxxp://go.divx.com/divx/webplayerdemo/de
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride =  localhost localhost localhost localhost localhost localhost localhost localhost localhost localhost localhost localhost localhost localhost localhost localhost localhost localhost localhost
O2 - BHO: Windows Live Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Free Download Manager - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Programme\Free Download Manager\iefdm2.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Programme\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [MGSysCtrl] C:\Programme\System Control Manager\MGSysCtrl.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Programme\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [avgnt] "C:\Programme\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKLM\..\Run: [COMODO Internet Security] "C:\Programme\COMODO\COMODO Internet Security\cfp.exe" -h
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [GUDelayStartup] "C:\Programme\Glary Utilities 5\StartupManager.exe" -delayrun
O4 - HKUS\S-1-5-21-1812403978-383865461-3209680303-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe (User '?')
O4 - HKUS\S-1-5-21-1812403978-383865461-3209680303-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\..\Run: []  (User '?')
O4 - HKUS\S-1-5-21-1812403978-383865461-3209680303-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\..\Run: [GUDelayStartup] "C:\Programme\Glary Utilities 5\StartupManager.exe" -delayrun (User '?')
O4 - HKUS\S-1-5-21-1812403978-383865461-3209680303-501-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe (User '?')
O8 - Extra context menu item: Alles mit FDM herunterladen - file://C:\Programme\Free Download Manager\dlall.htm
O8 - Extra context menu item: Auswahl mit FDM herunterladen - file://C:\Programme\Free Download Manager\dlselected.htm
O8 - Extra context menu item: Datei mit FDM herunterladen - file://C:\Programme\Free Download Manager\dllink.htm
O8 - Extra context menu item: Videos mit FDM herunterladen - file://C:\Programme\Free Download Manager\dlfvideo.htm
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O14 - IERESET.INF: START_PAGE_URL=hxxp://www.targa.de
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - hxxp://www.update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1226361926000
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: SearchList = vpn.uni-freiburg.de
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: SearchList = vpn.uni-freiburg.de
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Avira Email-Schutz (AntiVirMailService) - Avira Operations GmbH & Co. KG - C:\Programme\Avira\AntiVir Desktop\avmailc.exe
O23 - Service: Avira Planer (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Programme\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira Echtzeit-Scanner (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Programme\Avira\AntiVir Desktop\avguard.exe
O23 - Service: COMODO LPS Launcher (CLPSLauncher) - Comodo Security Solutions Inc. - C:\Programme\Gemeinsame Dateien\COMODO\launcher_service.exe
O23 - Service: COMODO Internet Security Helper Service (cmdAgent) - COMODO - C:\Programme\COMODO\COMODO Internet Security\cmdagent.exe
O23 - Service: COMODO Dragon Update Service (DragonUpdater) - Comodo Security Solutions, Inc. - C:\Programme\Comodo\Dragon\dragon_updater.exe
O23 - Service: Foxit Cloud Safe Update Service (FoxitCloudUpdateService) - Foxit Corporation - C:\PROGRAMME\FOXIT SOFTWARE\FOXIT READER\Foxit Cloud\FCUpdateService.exe
O23 - Service: GeekBuddyRSP Service (GeekBuddyRSP) - Comodo Security Solutions, Inc. - C:\Programme\Gemeinsame Dateien\COMODO\GeekBuddyRSP.exe
O23 - Service: Micro Star SCM - Unknown owner - C:\Programme\System Control Manager\MSIService.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Programme\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: Ralink Registry Writer (RalinkRegistryWriter) - Ralink Technology, Corp. - C:\Programme\Ralink\Common\RaRegistry.exe
O23 - Service: ServiceLayer - Nokia - C:\Programme\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Programme\Skype\Updater\Updater.exe

--
End of file - 7184 bytes

adwarecleaner

Code:

ATTFilter

# AdwCleaner v4.203 - Logfile created 02/05/2015 at 13:47:18
# Updated 30/04/2015 by Xplode
# Database : 2015-04-30.2 [Server]
# Operating system : Microsoft Windows XP Service Pack 3 (x86)
# Username : Lurchi - LAPPI
# Running from : C:\Dokumente und Einstellungen\Lurchi\desktop\Virentools\adwcleaner_4.203.exe
# Option : Scan

***** [ Services ] *****


***** [ Files / Folders ] *****

File Found : C:\WINDOWS\system32\drivers\sp_rsdrv2.sys
Folder Found : C:\DOKUME~1\Lurchi\LOKALE~1\Temp\OCS
Folder Found : C:\Dokumente und Einstellungen\Lurchi\Anwendungsdaten\Mozilla\Firefox\Profiles\JonDoFox\Extensions\elemhidehelper@adblockplus.org

***** [ Scheduled tasks ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****

Data Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings [ProxyOverride] -  localhost localhost localhost localhost localhost localhost localhost localhost localhost localhost localhost localhost localhost localhost localhost localhost localhost localhost localhost
Key Found : HKCU\Software\Conduit
Key Found : HKCU\Software\Local AppWizard-Generated Applications
Key Found : HKCU\Software\OCS
Key Found : HKLM\SOFTWARE\Classes\Interface\{813A22E0-3E2B-4188-9BDA-ECA9878B8D48}
Key Found : HKLM\SOFTWARE\Classes\Interface\{BCFF5F55-6F44-11D2-86F8-00104B265ED5}
Key Found : HKLM\SOFTWARE\GeekBuddyRSP
Key Found : HKU\.DEFAULT\Software\Local AppWizard-Generated Applications

***** [ Web browsers ] *****

-\\ Internet Explorer v8.0.6001.18702


-\\ Mozilla Firefox v38.0 (x86 en-US)

[noi32a9b.default] - Line Found : user_pref("extensions.toolbar@ask.com.install-event-fired", true);

-\\ Comodo Dragon v36.1.1.21


*************************

AdwCleaner[R0].txt - [1881 bytes] - [02/05/2015 13:12:10]
AdwCleaner[R1].txt - [1802 bytes] - [02/05/2015 13:47:18]

########## EOF - C:\AdwCleaner\AdwCleaner[R1].txt - [1861 bytes] ##########

bisher habe ich bei adwarecleaner noch nicht den clean durchgeführt!

Viele Grüße und vielen Dank schon mal!

schrauber · 02.05.2015, 13:12

hi,

Downloade dir bitte

TDSSKiller.exe und speichere diese Datei auf dem Desktop

Starte die TDSSKiller.exe - Einstellen wie in der Anleitung zu TDSSKiller beschrieben.
Drücke Start Scan
Sollten infizierte Objekte gefunden werden, wähle keinesfalls Cure. Wähle Skip und klicke auf Continue.
TDSSKiller wird eine Logfile auf deinem Systemlaufwerk speichern (Meistens C:\)
Als Beispiel: C:\TDSSKiller.<Version_Datum_Uhrzeit>log.txt

Poste den Inhalt bitte in jedem Fall hier in deinen Thread.

Eisbaer27 · 02.05.2015, 14:01

adaware Funde kann ich bedenkenlos löschen oder?

hier TDSS log:

Code:

ATTFilter

14:54:43.0218 0x0680  TDSS rootkit removing tool 3.0.0.44 Jan 22 2015 08:27:04
14:54:49.0703 0x0680  ============================================================
14:54:49.0703 0x0680  Current date / time: 2015/05/02 14:54:49.0703
14:54:49.0703 0x0680  SystemInfo:
14:54:49.0703 0x0680  
14:54:49.0703 0x0680  OS Version: 5.1.2600 ServicePack: 3.0
14:54:49.0703 0x0680  Product type: Workstation
14:54:49.0703 0x0680  ComputerName: LAPPI
14:54:49.0703 0x0680  UserName: Lurchi
14:54:49.0703 0x0680  Windows directory: C:\WINDOWS
14:54:49.0703 0x0680  System windows directory: C:\WINDOWS
14:54:49.0703 0x0680  Processor architecture: Intel x86
14:54:49.0703 0x0680  Number of processors: 2
14:54:49.0703 0x0680  Page size: 0x1000
14:54:49.0703 0x0680  Boot type: Normal boot
14:54:49.0703 0x0680  ============================================================
14:54:50.0406 0x0680  KLMD registered as C:\WINDOWS\system32\drivers\46542958.sys
14:54:51.0359 0x0680  System UUID: {56179B87-2EED-E327-0996-09B5BAE3F333}
14:54:54.0218 0x0680  Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 ( 149.05 Gb ), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
14:54:54.0218 0x0680  ============================================================
14:54:54.0218 0x0680  \Device\Harddisk0\DR0:
14:54:54.0218 0x0680  MBR partitions:
14:54:54.0218 0x0680  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x11B345B6
14:54:54.0218 0x0680  ============================================================
14:54:54.0265 0x0680  C: <-> \Device\Harddisk0\DR0\Partition1
14:54:54.0265 0x0680  ============================================================
14:54:54.0265 0x0680  Initialize success
14:54:54.0265 0x0680  ============================================================
14:59:01.0671 0x0ce8  ============================================================
14:59:01.0671 0x0ce8  Scan started
14:59:01.0671 0x0ce8  Mode: Manual; SigCheck; TDLFS; 
14:59:01.0671 0x0ce8  ============================================================
14:59:01.0671 0x0ce8  KSN ping started
14:59:02.0250 0x0ce8  KSN ping finished: true
14:59:02.0687 0x0ce8  ================ Scan system memory ========================
14:59:02.0703 0x0ce8  System memory - ok
14:59:02.0703 0x0ce8  ================ Scan services =============================
14:59:02.0953 0x0ce8  Abiosdsk - ok
14:59:02.0968 0x0ce8  abp480n5 - ok
14:59:03.0062 0x0ce8  [ 0A1E97197609F92D2425B67DA0BB0A7F, 818FD957C6EA1869ED13EA8C0681D2850141E22A68A2D982E4AEEA2736F50555 ] ACEDRV05        C:\WINDOWS\system32\drivers\ACEDRV05.sys
14:59:03.0656 0x0ce8  ACEDRV05 - detected UnsignedFile.Multi.Generic ( 1 )
14:59:04.0125 0x0ce8  Detect skipped due to KSN trusted
14:59:04.0125 0x0ce8  ACEDRV05 - ok
14:59:04.0187 0x0ce8  [ AC407F1A62C3A300B4F2B5A9F1D55B2C, 31F5FC61B37E22100B3A52A590295A7E827FFC581FA9960C64B9032452AAECED ] ACPI            C:\WINDOWS\system32\DRIVERS\ACPI.sys
14:59:05.0562 0x0ce8  ACPI - ok
14:59:05.0609 0x0ce8  [ 9E1CA3160DAFB159CA14F83B1E317F75, 13B3E897B0E819BF734449416D9EC6EBCAC89538EC69BF48C068593B82D57004 ] ACPIEC          C:\WINDOWS\system32\DRIVERS\ACPIEC.sys
14:59:05.0859 0x0ce8  ACPIEC - ok
14:59:05.0968 0x0ce8  [ B04A4810C6CC205F9DC72DC22E4AB236, 547321F5C28C80D4818372D65E2A33D4BAC593015DD6613B24586FE4B4A95D5D ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
14:59:06.0046 0x0ce8  AdobeFlashPlayerUpdateSvc - ok
14:59:06.0062 0x0ce8  adpu160m - ok
14:59:06.0187 0x0ce8  [ 8BED39E3C35D6A489438B8141717A557, 1B5796E56B0927360CE0759641B1151828BC0A9E45620D2B2D880491F5CE33D0 ] aec             C:\WINDOWS\system32\drivers\aec.sys
14:59:06.0484 0x0ce8  aec - ok
14:59:06.0562 0x0ce8  [ 30BB1BDE595CA65FD5549462080D94E5, 04BAFCC9445F82A2CAA9852F1B35ECBD18CDD6333E73F6861704E96D740A7C79 ] AegisP          C:\WINDOWS\system32\DRIVERS\AegisP.sys
14:59:06.0593 0x0ce8  AegisP - detected UnsignedFile.Multi.Generic ( 1 )
14:59:07.0078 0x0ce8  Detect skipped due to KSN trusted
14:59:07.0078 0x0ce8  AegisP - ok
14:59:07.0187 0x0ce8  [ 1E44BC1E83D8FD2305F8D452DB109CF9, CF5EC07E0B589FA2A4701C6CFD69E893FC3ABF274AD57AE3C13FFE49063B02C8 ] AFD             C:\WINDOWS\System32\drivers\afd.sys
14:59:07.0390 0x0ce8  AFD - ok
14:59:07.0421 0x0ce8  Aha154x - ok
14:59:07.0437 0x0ce8  aic78u2 - ok
14:59:07.0468 0x0ce8  aic78xx - ok
14:59:07.0593 0x0ce8  [ 738D80CC01D7BC7584BE917B7F544394, DCC17AAEF5CDDF52FAAC3CC6904EF421CD595F66318A2370BEE261D5C3A8E340 ] Alerter         C:\WINDOWS\system32\alrsvc.dll
14:59:07.0859 0x0ce8  Alerter - ok
14:59:07.0906 0x0ce8  [ 190CD73D4984F94D823F9444980513E5, 93A32C2495CCA094F768BA707C74DA5C00B8A88A9236DD1A297439A7C2E6C6FA ] ALG             C:\WINDOWS\System32\alg.exe
14:59:08.0078 0x0ce8  ALG - ok
14:59:08.0093 0x0ce8  AliIde - ok
14:59:08.0109 0x0ce8  amsint - ok
14:59:08.0343 0x0ce8  [ 6A7BE5D0E66B8121E60EFAD57EB04963, 96EC128BC06E7ED7485D52DD52F8A71FEBD9633415DD8486BDBCC499ED32A0F8 ] AntiVirMailService C:\Programme\Avira\AntiVir Desktop\avmailc.exe
14:59:08.0500 0x0ce8  AntiVirMailService - ok
14:59:08.0609 0x0ce8  [ F36D18EF1E66F92094AD89D17BEF007C, A5C793B340311CB7A301B77316E1976E3CD7CA9470CE5F1062CB003BCD4C155C ] AntiVirSchedulerService C:\Programme\Avira\AntiVir Desktop\sched.exe
14:59:08.0703 0x0ce8  AntiVirSchedulerService - ok
14:59:08.0781 0x0ce8  [ F36D18EF1E66F92094AD89D17BEF007C, A5C793B340311CB7A301B77316E1976E3CD7CA9470CE5F1062CB003BCD4C155C ] AntiVirService  C:\Programme\Avira\AntiVir Desktop\avguard.exe
14:59:08.0859 0x0ce8  AntiVirService - ok
14:59:08.0890 0x0ce8  AppMgmt - ok
14:59:09.0062 0x0ce8  [ 6C21F270AFEC1E423C00E96D3BD234DC, 8DA4ABDD83AECCFD87535AF3C9E3613CBFC4EE14967A551196E7B77F80858E65 ] AR5416          C:\WINDOWS\system32\DRIVERS\athw.sys
14:59:09.0328 0x0ce8  AR5416 - ok
14:59:09.0343 0x0ce8  asc - ok
14:59:09.0359 0x0ce8  asc3350p - ok
14:59:09.0359 0x0ce8  asc3550 - ok
14:59:09.0531 0x0ce8  [ 776ACEFA0CA9DF0FAA51A5FB2F435705, 72DF7ED6B085BC468994F5B3189506FD726A9A17A9C42ACA1E420D787691361D ] aspnet_state    C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
14:59:09.0625 0x0ce8  aspnet_state - ok
14:59:09.0687 0x0ce8  [ B153AFFAC761E7F5FCFA822B9C4E97BC, 7E60F572A6B3C6219E3C86225AA37243AFFD74337DB7F108B04778042E5CC959 ] AsyncMac        C:\WINDOWS\system32\DRIVERS\asyncmac.sys
14:59:09.0937 0x0ce8  AsyncMac - ok
14:59:10.0000 0x0ce8  [ 9F3A2F5AA6875C72BF062C712CFA2674, B4DF1D2C56A593C6B54DE57395E3B51D288F547842893B32B0F59228A0CF70B9 ] atapi           C:\WINDOWS\system32\drivers\atapi.sys
14:59:10.0265 0x0ce8  atapi - ok
14:59:10.0281 0x0ce8  Atdisk - ok
14:59:10.0328 0x0ce8  [ 9916C1225104BA14794209CFA8012159, 5D6F05F715C52A16D05CAE15C3DFE77A139A7F27F7AE710EC9A10F9EE05115A1 ] Atmarpc         C:\WINDOWS\system32\DRIVERS\atmarpc.sys
14:59:10.0609 0x0ce8  Atmarpc - ok
14:59:10.0687 0x0ce8  [ 58ED0D5452DF7BE732193E7999C6B9A4, 254E2ECF592DDA2E3E6CA9F6F3E77926E2265586A7937BA95199ED47BCDE69A3 ] AudioSrv        C:\WINDOWS\System32\audiosrv.dll
14:59:11.0000 0x0ce8  AudioSrv - ok
14:59:11.0140 0x0ce8  [ D9F724AA26C010A217C97606B160ED68, 329B5118F2409731D06FDAE85B6ADD64A048292801BCB3546651CEB303111695 ] audstub         C:\WINDOWS\system32\DRIVERS\audstub.sys
14:59:11.0421 0x0ce8  audstub - ok
14:59:11.0515 0x0ce8  [ AF5DA81B19AFA730F1E5246AD81D140A, 532951071F56896A3B5D47874C14D996C8620EA02F87D4BA21B083EC804FB166 ] avgntflt        C:\WINDOWS\system32\DRIVERS\avgntflt.sys
14:59:11.0750 0x0ce8  avgntflt - ok
14:59:11.0812 0x0ce8  [ A5674637BCA212D9FE136ADFA04C9857, 95F3632EBB041C539816D285EBE1F379D46A4187379C69D4683D9F4DECBDB80C ] avipbb          C:\WINDOWS\system32\DRIVERS\avipbb.sys
14:59:11.0875 0x0ce8  avipbb - ok
14:59:11.0937 0x0ce8  [ D8C712305F73CD34D1B344810E522728, 49A474FF6CA44E8427D7A8290B47395125B0148AF384CF2B3B1FA495A4718CBA ] avkmgr          C:\WINDOWS\system32\DRIVERS\avkmgr.sys
14:59:12.0062 0x0ce8  avkmgr - ok
14:59:12.0218 0x0ce8  [ DA1F27D85E0D1525F6621372E7B685E9, 5A81A46A3BDD19DAFC6C87D277267A5D44F3A1B5302F2CC1111D84B7BAD5610D ] Beep            C:\WINDOWS\system32\drivers\Beep.sys
14:59:12.0609 0x0ce8  Beep - ok
14:59:12.0718 0x0ce8  [ D6F603772A789BB3228F310D650B8BD1, A539025C70FD998A9B8703DE05CAE5E99BC721D8852EA561EBC2DD20CB371D2E ] BITS            C:\WINDOWS\system32\qmgr.dll
14:59:13.0171 0x0ce8  BITS - ok
14:59:13.0234 0x0ce8  [ B900D52BD62B19F086EBA674911A9AEC, CFD61EBE60303B0E04973A14B4819819148F486BCC952E465BB830E46350D92C ] BMserDiag       C:\WINDOWS\system32\DRIVERS\BMserDiag.sys
14:59:13.0359 0x0ce8  BMserDiag - ok
14:59:13.0421 0x0ce8  [ B900D52BD62B19F086EBA674911A9AEC, CFD61EBE60303B0E04973A14B4819819148F486BCC952E465BB830E46350D92C ] BMserNmea       C:\WINDOWS\system32\DRIVERS\BMserNmea.sys
14:59:13.0484 0x0ce8  BMserNmea - ok
14:59:13.0515 0x0ce8  [ B900D52BD62B19F086EBA674911A9AEC, CFD61EBE60303B0E04973A14B4819819148F486BCC952E465BB830E46350D92C ] BMusbmdm        C:\WINDOWS\system32\DRIVERS\BMusbmdm.sys
14:59:13.0593 0x0ce8  BMusbmdm - ok
14:59:13.0640 0x0ce8  [ 3B77514728BA0BFE4143FC3A2780B289, 07D8131F5A90798F44566CD21E33314E41F94FEF7303913EB0B54E0AB7EFC0D9 ] BootDefragDriver C:\WINDOWS\system32\drivers\BootDefragDriver.sys
14:59:13.0687 0x0ce8  BootDefragDriver - ok
14:59:13.0750 0x0ce8  [ B71549F23736ADF83A571061C47777FD, A1D0320736EE777030A543DCA086367EB5A5B6F95088B9C22D8E09326C3A39A9 ] Browser         C:\WINDOWS\System32\browser.dll
14:59:13.0843 0x0ce8  Browser - ok
14:59:13.0875 0x0ce8  [ B279426E3C0C344893ED78A613A73BDE, 30B29ED5DCFF0C180B806A5FBC705E1CAF6B0F525298CDA79A77FC2AF6E5AAA7 ] BthEnum         C:\WINDOWS\system32\DRIVERS\BthEnum.sys
14:59:14.0203 0x0ce8  BthEnum - ok
14:59:14.0281 0x0ce8  [ FCA6F069597B62D42495191ACE3FC6C1, 23A4EAA542547AC48BCB19DEC9C8E1C1D7D83F199F045DA4682C33292F011CE9 ] BTHMODEM        C:\WINDOWS\system32\DRIVERS\bthmodem.sys
14:59:14.0640 0x0ce8  BTHMODEM - ok
14:59:14.0703 0x0ce8  [ 80602B8746D3738F5886CE3D67EF06B6, 15ABAA8106C42A4453763EEB92B291844580168C934088DB1E22B2065DC238E9 ] BthPan          C:\WINDOWS\system32\DRIVERS\bthpan.sys
14:59:14.0984 0x0ce8  BthPan - ok
14:59:15.0171 0x0ce8  [ 592E1CEDBE314D0EF184DC6F46141E76, D69106F90C56C1E67BA4B96D6766C6676B66D0E0DF8358DA4B75FEFF211AA23E ] BTHPORT         C:\WINDOWS\system32\Drivers\BTHport.sys
14:59:15.0296 0x0ce8  BTHPORT - ok
14:59:15.0328 0x0ce8  [ 26C601EF7525E31379744ABFC6F35A1B, 842626D3A00DDA959A4AB730C0D551244DCDA15AC291FD70CC7324571A6088EC ] BthServ         C:\WINDOWS\System32\bthserv.dll
14:59:15.0687 0x0ce8  BthServ - ok
14:59:15.0734 0x0ce8  [ 61364CD71EF63B0F038B7E9DF00F1EFA, FB44D02B4379A8AF7DD8B0B22B53888B758903700142BFE45A412709294CE88A ] BTHUSB          C:\WINDOWS\system32\Drivers\BTHUSB.sys
14:59:16.0031 0x0ce8  BTHUSB - ok
14:59:16.0109 0x0ce8  [ 90A673FC8E12A79AFBED2576F6A7AAF9, BDE7858A3457DB979FEDD8577FA6321BF72848E4A7BF9F173C78A6A10CBB3EBE ] cbidf2k         C:\WINDOWS\system32\drivers\cbidf2k.sys
14:59:16.0406 0x0ce8  cbidf2k - ok
14:59:16.0484 0x0ce8  [ 0BE5AEF125BE881C4F854C554F2B025C, 1770DD70B3F115A0EF460907DEDC1E4B7241C08615A98F194D61A49C3E2BAA54 ] CCDECODE        C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
14:59:16.0765 0x0ce8  CCDECODE - ok
14:59:16.0781 0x0ce8  cd20xrnt - ok
14:59:16.0828 0x0ce8  [ C1B486A7658353D33A10CC15211A873B, AA4DD9E7AAE5AAB1146B360B17001F975D2F29A1281CF7B13E7136480410F347 ] Cdaudio         C:\WINDOWS\system32\drivers\Cdaudio.sys
14:59:17.0109 0x0ce8  Cdaudio - ok
14:59:17.0187 0x0ce8  [ C885B02847F5D2FD45A24E219ED93B32, B26B2F8E3A831E2B65EB0C5195B0645CD50E22615CE79C9B0B391CD563B121DB ] Cdfs            C:\WINDOWS\system32\drivers\Cdfs.sys
14:59:17.0500 0x0ce8  Cdfs - ok
14:59:17.0546 0x0ce8  [ 1F4260CC5B42272D71F79E570A27A4FE, B51C2A3ED3C309953D0EA45869C8E464C10F2533DADE9E0286AF674979098D1D ] Cdrom           C:\WINDOWS\system32\DRIVERS\cdrom.sys
14:59:17.0843 0x0ce8  Cdrom - ok
14:59:17.0890 0x0ce8  [ 61305C679E5766A03A09C0E966939206, E85EC9D23C81A2F8C08B439FA34F43C475A26C38DF4B4B40758CFC0D64C50C17 ] CFRMD           C:\WINDOWS\system32\DRIVERS\CFRMD.sys
14:59:17.0937 0x0ce8  CFRMD - ok
14:59:17.0953 0x0ce8  Changer - ok
14:59:18.0000 0x0ce8  [ 28E3040D1F1CA2008CD6B29DFEBC9A5E, ACB458E8A11AA2143734A5A0281973D95158E6402A6453F98F9832D1E19B01F9 ] CiSvc           C:\WINDOWS\system32\cisvc.exe
14:59:18.0281 0x0ce8  CiSvc - ok
14:59:18.0406 0x0ce8  [ 778A30ED3C134EB7E406AFC407E9997D, 3E6AD115AB2596EB001BC21AEADDBC75F27C42DB90C986B7AD17743CE631234E ] ClipSrv         C:\WINDOWS\system32\clipsrv.exe
14:59:18.0703 0x0ce8  ClipSrv - ok
14:59:18.0843 0x0ce8  [ 8410C7DE4748AEE7F9D7CB70ADFFDC01, 1F77AC232CAD72204EE37ACB1A4E03BDCEFD51A8DA2CE68304AD80AA7F75B0BD ] CLPSLauncher    C:\Programme\Gemeinsame Dateien\COMODO\launcher_service.exe
14:59:18.0906 0x0ce8  CLPSLauncher - ok
14:59:19.0015 0x0ce8  [ D87ACAED61E417BBA546CED5E7E36D9C, 14AC6034A5BC0FB2A1AFDAD42BEF4DE641556E54AD30D0C46765660A4BE55462 ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
14:59:19.0140 0x0ce8  clr_optimization_v2.0.50727_32 - ok
14:59:19.0218 0x0ce8  [ C5A75EB48E2344ABDC162BDA79E16841, 6070A8AAFD38FBC6A68A2B10C20117612354DF21B4492D90CA522BFB6870D726 ] clr_optimization_v4.0.30319_32 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
14:59:19.0375 0x0ce8  clr_optimization_v4.0.30319_32 - ok
14:59:19.0421 0x0ce8  [ 0F6C187D38D98F8DF904589A5F94D411, DB987093446216CEE913AC27503BF7E23E5A62DF169B355730285DAB64F6ED28 ] CmBatt          C:\WINDOWS\system32\DRIVERS\CmBatt.sys
14:59:19.0828 0x0ce8  CmBatt - ok
14:59:20.0078 0x0ce8  [ 2A2D72271844C52F004901A60312B96A, A7782E78EE6797A100410C997B77C95B1D991E57C0E5025FC17324EF54C54F0F ] cmdAgent        C:\Programme\COMODO\COMODO Internet Security\cmdagent.exe
14:59:20.0328 0x0ce8  cmdAgent - ok
14:59:20.0406 0x0ce8  [ 9181CC4D007ADBE21DB9A11BFECAFEF5, 06B5FDD33D5EE99659DF772CAB38A187166A7F9662B43B1DFC786E0DEFF013B8 ] cmdGuard        C:\WINDOWS\system32\DRIVERS\cmdguard.sys
14:59:20.0500 0x0ce8  cmdGuard - ok
14:59:20.0562 0x0ce8  [ C5A9FB50E8CA7FD99F256255FEE71580, 98A826550D7960A3605F67EBA84B721881B7F7D5B7F8445AA6F8790FE2DA05F2 ] cmdHlp          C:\WINDOWS\system32\DRIVERS\cmdhlp.sys
14:59:20.0609 0x0ce8  cmdHlp - ok
14:59:20.0625 0x0ce8  CmdIde - ok
14:59:20.0640 0x0ce8  cmnsusbser - ok
14:59:20.0656 0x0ce8  [ 6E4C9F21F0FAE8940661144F41B13203, 731202A0DD021FCF9287FEA631212603AAAC23F9E7F76B2882F913B18A971F1C ] Compbatt        C:\WINDOWS\system32\DRIVERS\compbatt.sys
14:59:20.0953 0x0ce8  Compbatt - ok
14:59:20.0968 0x0ce8  COMSysApp - ok
14:59:21.0015 0x0ce8  Cpqarray - ok
14:59:21.0171 0x0ce8  [ 611F824E5C703A5A899F84C5F1699E4D, 9EFA5612FE58E9974E4CC13D39D91D7B5DEA3ED66BEFBED3AAE6D2800FD8162A ] CryptSvc        C:\WINDOWS\System32\cryptsvc.dll
14:59:21.0453 0x0ce8  CryptSvc - ok
14:59:21.0531 0x0ce8  [ B5ECADF7708960F1818C7FA015F4C239, A58BA71B08A9D46EB79EB3DF0858F553A11DE3461E13B6D926E25D21D4CBB2D8 ] CVirtA          C:\WINDOWS\system32\DRIVERS\CVirtA.sys
14:59:21.0703 0x0ce8  CVirtA - ok
14:59:21.0718 0x0ce8  CVPNDRVA - ok
14:59:21.0734 0x0ce8  dac2w2k - ok
14:59:21.0750 0x0ce8  dac960nt - ok
14:59:21.0843 0x0ce8  [ 3127AFBF2C1ED0AB14A1BBB7AAECB85B, ECFBACE3CBF2384948EA1C445BDA3955EB4F44A9874286E6537C67DC1283E5B0 ] DcomLaunch      C:\WINDOWS\system32\rpcss.dll
14:59:22.0000 0x0ce8  DcomLaunch - ok
14:59:22.0062 0x0ce8  [ C29A1C9B75BA38FA37F8C44405DEC360, 7476D8BC4380CDE56764B2034AF3741DA4ED00F315E41C9A02B5EAD04374F241 ] Dhcp            C:\WINDOWS\System32\dhcpcsvc.dll
14:59:22.0390 0x0ce8  Dhcp - ok
14:59:22.0468 0x0ce8  [ 044452051F3E02E7963599FC8F4F3E25, 584BDDB074618BE76454CF90E74829CFF588B5B5FAEB793E2F7AAD26352DD689 ] Disk            C:\WINDOWS\system32\DRIVERS\disk.sys
14:59:22.0734 0x0ce8  Disk - ok
14:59:22.0750 0x0ce8  dmadmin - ok
14:59:22.0843 0x0ce8  [ 0DCFC8395A99FECBB1EF771CEC7FE4EA, 89B0AEE5BE01B9FE4FF2989FF16DB6121721ACDFCE6D9655C0ACD321D8C308BE ] dmboot          C:\WINDOWS\system32\drivers\dmboot.sys
14:59:23.0203 0x0ce8  dmboot - ok
14:59:23.0265 0x0ce8  [ 53720AB12B48719D00E327DA470A619A, 800264866A6267C9000A85D00095D57908D059D737E5F28C9C4049B884C46228 ] dmio            C:\WINDOWS\system32\drivers\dmio.sys
14:59:23.0562 0x0ce8  dmio - ok
14:59:23.0593 0x0ce8  [ E9317282A63CA4D188C0DF5E09C6AC5F, D41E002F555FE9015EF620975255F58BB79198CA1FF0E09EC950CB450FF77CF7 ] dmload          C:\WINDOWS\system32\drivers\dmload.sys
14:59:23.0890 0x0ce8  dmload - ok
14:59:23.0953 0x0ce8  [ 25C83FFBBA13B554EB6D59A9B2E2EE78, 9FBD655ED3E9163AE11EC207F283E387EFBA5A23108EC790BAE4846B35E66F16 ] dmserver        C:\WINDOWS\System32\dmserver.dll
14:59:24.0250 0x0ce8  dmserver - ok
14:59:24.0312 0x0ce8  [ 8A208DFCF89792A484E76C40E5F50B45, 4E40E2EB38C6254E7CAA488200E89EE7DEBBBA773890BC6A84313CC68178D54F ] DMusic          C:\WINDOWS\system32\drivers\DMusic.sys
14:59:24.0593 0x0ce8  DMusic - ok
14:59:24.0671 0x0ce8  [ 694616F813FB627A32C9E32DEC133078, 27D503E442ED60ED0F7B6BC743856B08B98CD1A396203B2D1426899407E870C5 ] DNE             C:\WINDOWS\system32\DRIVERS\dne2000.sys
14:59:24.0718 0x0ce8  DNE - ok
14:59:24.0781 0x0ce8  [ 407F3227AC618FD1CA54B335B083DE07, 96B8E734648FE9A4EBA59C096C8779BD1A11A93A6303AFD438A406C8122D36C6 ] Dnscache        C:\WINDOWS\System32\dnsrslvr.dll
14:59:24.0859 0x0ce8  Dnscache - ok
14:59:24.0906 0x0ce8  [ 676E36C4FF5BCEA1900F44182B9723E6, 740CF18BD40E00FEA26CF0E6340C5D18F7D0B4390055FAEEC258B3AA790C4AE9 ] Dot3svc         C:\WINDOWS\System32\dot3svc.dll
14:59:25.0234 0x0ce8  Dot3svc - ok
14:59:25.0250 0x0ce8  dpti2o - ok
14:59:25.0625 0x0ce8  [ E4A0D0C8F17073BE392F062DD1F6B50E, 26CF71517C09B24B6F6AB5AC902FF0D1426351BCCD6AB571510C83D0F6E32FE6 ] DragonUpdater   C:\Programme\Comodo\Dragon\dragon_updater.exe
14:59:25.0968 0x0ce8  DragonUpdater - ok
14:59:26.0046 0x0ce8  [ 8F5FCFF8E8848AFAC920905FBD9D33C8, C8C6FB97AB0871C8C88A2201525A5CF10D5131CB6980D32692ED7A8F58399AD5 ] drmkaud         C:\WINDOWS\system32\drivers\drmkaud.sys
14:59:26.0343 0x0ce8  drmkaud - ok
14:59:26.0390 0x0ce8  [ 4E4F2FDDAB0A0736D7671134DCCE91FB, 8E2C57D1A006856C47CBDD5765A9DD317DB205B26DA8BFC70555A506257A1CD9 ] EapHost         C:\WINDOWS\System32\eapsvc.dll
14:59:26.0687 0x0ce8  EapHost - ok
14:59:26.0703 0x0ce8  EAPPkt - ok
14:59:26.0765 0x0ce8  [ F07BA56B0235F15EFF8F10DC6389C42E, A7202CCB418D03606A97679BCF166ACA12F8341E8AB97DF044AE00401B8496B4 ] epmntdrv        C:\WINDOWS\system32\epmntdrv.sys
14:59:26.0796 0x0ce8  epmntdrv - detected UnsignedFile.Multi.Generic ( 1 )
14:59:27.0187 0x0ce8  Detect skipped due to KSN trusted
14:59:27.0187 0x0ce8  epmntdrv - ok
14:59:27.0265 0x0ce8  [ 877C18558D70587AA7823A1A308AC96B, 6B336A62112988D855513F45153F73F8470C41A448E9B7438B4A8EC1813AABF1 ] ERSvc           C:\WINDOWS\System32\ersvc.dll
14:59:27.0625 0x0ce8  ERSvc - ok
14:59:27.0671 0x0ce8  [ 1F2F4AB15CE03ECC257FEB2F6DC5A013, FB06406AD9CCD946155C4E8CA769E0430589A4E4BBBDA2C90A67C84E0D2F8EE0 ] EuGdiDrv        C:\WINDOWS\system32\EuGdiDrv.sys
14:59:27.0687 0x0ce8  EuGdiDrv - detected UnsignedFile.Multi.Generic ( 1 )
14:59:28.0203 0x0ce8  Detect skipped due to KSN trusted
14:59:28.0203 0x0ce8  EuGdiDrv - ok
14:59:28.0281 0x0ce8  [ A3EDBE9053889FB24AB22492472B39DC, 6F2ED6E04BDE2FCA2A8BF9BD2D1D6923DE6EAECB46F582B6C0BD1CF364D65C9E ] Eventlog        C:\WINDOWS\system32\services.exe
14:59:28.0421 0x0ce8  Eventlog - ok
14:59:28.0500 0x0ce8  [ AF4F6B5739D18CA7972AB53E091CBC74, A399E2CC026730D3A429727AAB48093B9F1E5DD8EB6336519C7F16182FDB3905 ] EventSystem     C:\WINDOWS\system32\es.dll
14:59:28.0625 0x0ce8  EventSystem - ok
14:59:28.0703 0x0ce8  [ 38D332A6D56AF32635675F132548343E, E6909DB836AF679B4F4D62C7396D6C82769CC7ABB8C919C2AABFE934FCE268F6 ] Fastfat         C:\WINDOWS\system32\drivers\Fastfat.sys
14:59:28.0984 0x0ce8  Fastfat - ok
14:59:29.0156 0x0ce8  [ 2DB7D303C36DDD055215052F118E8E75, BE6E7BBE12A7A4EDF1F1C2935350603970C7426BBCA7A1A6644BB8999123AF17 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
14:59:29.0265 0x0ce8  FastUserSwitchingCompatibility - ok
14:59:29.0296 0x0ce8  [ 92CDD60B6730B9F50F6A1A0C1F8CDC81, 8307A532AB4D05CBBCE206DC2759497708BF5AAA880BD00F0E4F281D8578A1F5 ] Fdc             C:\WINDOWS\system32\drivers\Fdc.sys
14:59:29.0562 0x0ce8  Fdc - ok
14:59:29.0625 0x0ce8  [ B0678A548587C5F1967B0D70BACAD6C1, 7E49910212ED87313F926E4800EA8D34809C287A686CA69B82B79C1A6451F88C ] Fips            C:\WINDOWS\system32\drivers\Fips.sys
14:59:29.0921 0x0ce8  Fips - ok
14:59:29.0953 0x0ce8  [ 9D27E7B80BFCDF1CDD9B555862D5E7F0, 69C271AD5BCEBFD8AE5A769BDD7EC51256DA3A8ADAD5D12E5C0D13F4E82D8805 ] Flpydisk        C:\WINDOWS\system32\drivers\Flpydisk.sys
14:59:30.0218 0x0ce8  Flpydisk - ok
14:59:30.0265 0x0ce8  [ B2CF4B0786F8212CB92ED2B50C6DB6B0, 280F5CF8A90F7BEDE73ADD0DD0F8952088133A7CA9A3D3B7041957E33B36845D ] FltMgr          C:\WINDOWS\system32\DRIVERS\fltMgr.sys
14:59:30.0546 0x0ce8  FltMgr - ok
14:59:30.0656 0x0ce8  [ 8BA7C024070F2B7FDD98ED8A4BA41789, 47585006F86B2C6016EC54250A416794792D1E4024FF229C120BC25B684AF66A ] FontCache3.0.0.0 c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
14:59:30.0703 0x0ce8  FontCache3.0.0.0 - ok
14:59:30.0843 0x0ce8  [ 26EABEEA7F30DCF21DA0577C4EE26FAA, 20C3CD2579ED6853249B1EAEF23DF2904779BA2E806D00C30F81EA9A1612AE0F ] FoxitCloudUpdateService C:\PROGRAMME\FOXIT SOFTWARE\FOXIT READER\Foxit Cloud\FCUpdateService.exe
14:59:30.0906 0x0ce8  FoxitCloudUpdateService - ok
14:59:30.0968 0x0ce8  [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A, EC635E071201A766845D48973772CBE0958942B4162F3F5F70660D114CC877E0 ] Fs_Rec          C:\WINDOWS\system32\drivers\Fs_Rec.sys
14:59:31.0234 0x0ce8  Fs_Rec - ok
14:59:31.0312 0x0ce8  [ 8F1955CE42E1484714B542F341647778, 8EB3F99625F409D3032561E8AB44BEFBFBFBA4EC873C2151C92A5CAAF7F2AA55 ] Ftdisk          C:\WINDOWS\system32\DRIVERS\ftdisk.sys
14:59:31.0671 0x0ce8  Ftdisk - ok
14:59:31.0890 0x0ce8  [ AE63D0DB96C07CAE5DC4CDB2B2A719A0, 1E38E4E350484E0942BE2AF61CDBBACC132C955FE3FA0C1485BDCA0C6283BA51 ] GeekBuddyRSP    C:\Programme\Gemeinsame Dateien\COMODO\GeekBuddyRSP.exe
14:59:32.0140 0x0ce8  GeekBuddyRSP - ok
14:59:32.0203 0x0ce8  [ 0A02C63C8B144BD8C86B103DEE7C86A2, 7A3235DD3E1995DD72B212FAEB3ECA2A974434DE9BF6D269EA11BA65A80E7E50 ] Gpc             C:\WINDOWS\system32\DRIVERS\msgpc.sys
14:59:32.0453 0x0ce8  Gpc - ok
14:59:32.0531 0x0ce8  [ E9CDEB631E63E83A7540CF6E81B5486B, 7CB2129168E27DE46B166B1C26975722E63D8AF772933664FCA5A8A335004117 ] GUBootStartup   C:\WINDOWS\System32\drivers\GUBootStartup.sys
14:59:32.0562 0x0ce8  GUBootStartup - ok
14:59:32.0593 0x0ce8  [ 573C7D0A32852B48F3058CFD8026F511, BC384BBA394AFDCDA1A9ABC858C692AA84A1F0A31AF3DDF7F38D120C027927FB ] HDAudBus        C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
14:59:32.0859 0x0ce8  HDAudBus - ok
14:59:32.0921 0x0ce8  [ CB66BF85BF599BEFD6C6A57C2E20357F, 55D3A0F9279FF316766F42548FCB61C452942B08A37590C4892DF110BE4E53C6 ] helpsvc         C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
14:59:33.0203 0x0ce8  helpsvc - ok
14:59:33.0203 0x0ce8  HidServ - ok
14:59:33.0250 0x0ce8  [ CCF82C5EC8A7326C3066DE870C06DAF1, 93395FA4C26B2E82DC8B7025ED3BCF583885E5D8C5F60CD6EEAA6335D6A126EC ] HidUsb          C:\WINDOWS\system32\DRIVERS\hidusb.sys
14:59:33.0515 0x0ce8  HidUsb - ok
14:59:33.0593 0x0ce8  [ ED29F14101523A6E0E808107405D452C, B8FA987637787BEECC2EB06D36293DAC355523392B49A8C5A9491EEE961917E9 ] hkmsvc          C:\WINDOWS\System32\kmsvc.dll
14:59:33.0843 0x0ce8  hkmsvc - ok
14:59:33.0843 0x0ce8  hpn - ok
14:59:33.0968 0x0ce8  [ F80A415EF82CD06FFAF0D971528EAD38, 524D9E9201572929522F6805011783711B7C0F76308B924C89CF75F4B7A1FDF3 ] HTTP            C:\WINDOWS\system32\Drivers\HTTP.sys
14:59:34.0093 0x0ce8  HTTP - ok
14:59:34.0140 0x0ce8  [ 9E4ADB854CEBCFB81A4B36718FEECD16, 677AB64460775686F8366D6BF35D420A2486C3F07338A00A7C2788A5142B9F08 ] HTTPFilter      C:\WINDOWS\System32\w3ssl.dll
14:59:34.0406 0x0ce8  HTTPFilter - ok
14:59:34.0406 0x0ce8  i2omgmt - ok
14:59:34.0421 0x0ce8  i2omp - ok
14:59:34.0515 0x0ce8  [ E283B97CFBEB86C1D86BAED5F7846A92, 7664F791D08C80DF1E52B34BE69F073AA645610C4BD975F498254807602374AB ] i8042prt        C:\WINDOWS\system32\DRIVERS\i8042prt.sys
14:59:34.0765 0x0ce8  i8042prt - ok
14:59:35.0296 0x0ce8  [ 0F68E2EC713F132FFB19E45415B09679, B1439A5D157F9FF54E803581D2B86411DB079242D837617021A4A0BC195E67BB ] ialm            C:\WINDOWS\system32\DRIVERS\igxpmp32.sys
14:59:36.0359 0x0ce8  ialm - ok
14:59:36.0468 0x0ce8  [ 707C1692214B1C290271067197F075F6, 7D0DB754604AABC4AA09AB8BA94326B1A1C2A76F3C2C2C7D6FA14F964BE68A51 ] iaStor          C:\WINDOWS\system32\drivers\iaStor.sys
14:59:36.0546 0x0ce8  iaStor - ok
14:59:36.0687 0x0ce8  [ C01AC32DC5C03076CFB852CB5DA5229C, A4D7749220B5BC965D96A267F1E02FE8284A230BA249109207BD4B9EA8DFAC96 ] idsvc           c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
14:59:36.0828 0x0ce8  idsvc - ok
14:59:36.0875 0x0ce8  [ 083A052659F5310DD8B6A6CB05EDCF8E, 48D39B03FFB6FAA1529B774443BA12618AE3982D9F65A7B9D18F2269F78B31F4 ] Imapi           C:\WINDOWS\system32\DRIVERS\imapi.sys
14:59:37.0156 0x0ce8  Imapi - ok
14:59:37.0250 0x0ce8  [ D4B413AA210C21E46AEDD2BA5B68D38E, 2309622867AA8FC832A729FA78F48742D4BD6CA0DAFBFB9DDB0772D671E1ED75 ] ImapiService    C:\WINDOWS\system32\imapi.exe
14:59:37.0515 0x0ce8  ImapiService - ok
14:59:37.0531 0x0ce8  ini910u - ok
14:59:37.0578 0x0ce8  [ E1DF634BEC066B3D4FFE437BCB78C282, 974278CA606DF7C0332997E4339EA2AFE017E04C596CE69F47FED798E57D52FB ] Inspect         C:\WINDOWS\system32\DRIVERS\inspect.sys
14:59:37.0625 0x0ce8  Inspect - ok
14:59:38.0093 0x0ce8  [ 053517D1BCADF00BEDB21FB7218C8F33, 633F19692C56C40F786C87A95E1D9B692420F6BD976753268FED378236FB0159 ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RtkHDAud.sys
14:59:39.0078 0x0ce8  IntcAzAudAddService - ok
14:59:39.0125 0x0ce8  IntelIde - ok
14:59:39.0156 0x0ce8  [ 4C7D2750158ED6E7AD642D97BFFAE351, C05E4799752F090DCB632F07F62ADE38D31534621064D269AD535CA0BDFED448 ] intelppm        C:\WINDOWS\system32\DRIVERS\intelppm.sys
14:59:39.0390 0x0ce8  intelppm - ok
14:59:39.0437 0x0ce8  [ 3BB22519A194418D5FEC05D800A19AD0, F6662F440950596DC1382DD1DB5D7891CCEA30A6062BEA942C18445B5F0D8B16 ] Ip6Fw           C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
14:59:39.0687 0x0ce8  Ip6Fw - ok
14:59:39.0718 0x0ce8  [ 731F22BA402EE4B62748ADAF6363C182, 5C3BEBD008A5BE4DC2F92076FF41A10DDC01E10EC7E6552213CFA11970811848 ] IpFilterDriver  C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
14:59:39.0968 0x0ce8  IpFilterDriver - ok
14:59:40.0109 0x0ce8  [ B87AB476DCF76E72010632B5550955F5, E6E74D3A86A7917A8BAED44F8E97CCD2EB171E4E4B27E9907F60D1523FAF319A ] IpInIp          C:\WINDOWS\system32\DRIVERS\ipinip.sys
14:59:40.0359 0x0ce8  IpInIp - ok
14:59:40.0406 0x0ce8  [ CC748EA12C6EFFDE940EE98098BF96BB, AF523E21C25D9A1715EFEA573E4F52AF5D4FC9F28A2D613F5DB629C186C439E0 ] IpNat           C:\WINDOWS\system32\DRIVERS\ipnat.sys
14:59:40.0671 0x0ce8  IpNat - ok
14:59:40.0718 0x0ce8  [ 23C74D75E36E7158768DD63D92789A91, 394D296F38E7D8EFD91A6EEC301D9CE6AF910E35EB9819F1A9E3363863AEDFDC ] IPSec           C:\WINDOWS\system32\DRIVERS\ipsec.sys
14:59:40.0953 0x0ce8  IPSec - ok
14:59:40.0984 0x0ce8  [ C93C9FF7B04D772627A3646D89F7BF89, 805FA48E7A46D4F10240BF880A2468F53DEA36E83004399228AB70DB7D20544A ] IRENUM          C:\WINDOWS\system32\DRIVERS\irenum.sys
14:59:41.0125 0x0ce8  IRENUM - ok
14:59:41.0140 0x0ce8  [ 6DFB88F64135C525433E87648BDA30DE, 8233EEFBEF36AAA152F2C55D23D7118F0DE40C9C22EB5D9793405A4770889540 ] isapnp          C:\WINDOWS\system32\DRIVERS\isapnp.sys
14:59:41.0390 0x0ce8  isapnp - ok
14:59:41.0437 0x0ce8  [ 1704D8C4C8807B889E43C649B478A452, E854C90CD301F42BE2520CEDAD35E49DF2D43606CF4EEED861B74882118D04D1 ] Kbdclass        C:\WINDOWS\system32\DRIVERS\kbdclass.sys
14:59:41.0703 0x0ce8  Kbdclass - ok
14:59:41.0765 0x0ce8  [ 692BCF44383D056AED41B045A323D378, 1A99DEE83FFAF64E73067FC049C0A4CE07D94E4AE31EFA17B38CEFA9E41D67DC ] kmixer          C:\WINDOWS\system32\drivers\kmixer.sys
14:59:42.0062 0x0ce8  kmixer - ok
14:59:42.0156 0x0ce8  [ B467646C54CC746128904E1654C750C1, 3BD71BE3663EA23463D236D8A2A2E42DFA10C502BDB4B6E131FAF0FBA748219E ] KSecDD          C:\WINDOWS\system32\drivers\KSecDD.sys
14:59:42.0281 0x0ce8  KSecDD - ok
14:59:42.0359 0x0ce8  [ 2BBDCB79900990F0716DFCB714E72DE7, 6283789201164A9254632D9A3C8A54FE697717D5F8D5A37804D924DC2B70C8E3 ] LanmanServer    C:\WINDOWS\System32\srvsvc.dll
14:59:42.0468 0x0ce8  LanmanServer - ok
14:59:42.0546 0x0ce8  [ 1869B14B06B44B44AF70548E1EA3303F, 4D63B4DAF580C86F86837C7D1753E2105B4C52E26D4CA0CAAFE83755EFF7AFBE ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
14:59:42.0687 0x0ce8  lanmanworkstation - ok
14:59:42.0703 0x0ce8  lbrtfdc - ok
14:59:42.0765 0x0ce8  [ 636714B7D43C8D0C80449123FD266920, F06F6C7DC49B26EFCAC3570C67BA9BD934F62C6F382DA4DD2AB302C7B970F414 ] LmHosts         C:\WINDOWS\System32\lmhsvc.dll
14:59:43.0078 0x0ce8  LmHosts - ok
14:59:43.0156 0x0ce8  [ 2C137B8C4F4076FDFFBB81E23EC99248, 55952CD3723C3E957E809C1DAD5C5A52F368AE32FBE0A1B12699E5251E74B806 ] mbamchameleon   C:\WINDOWS\system32\drivers\mbamchameleon.sys
14:59:43.0218 0x0ce8  mbamchameleon - ok
14:59:43.0265 0x0ce8  [ B7550A7107281D170CE85524B1488C98, A3854B16A65436BEF6BEDE918B43B3BE8F00D303660DB5831DD376271DC43239 ] Messenger       C:\WINDOWS\System32\msgsvc.dll
14:59:43.0515 0x0ce8  Messenger - ok
14:59:43.0609 0x0ce8  [ 7E0506BF8148D74D2823E0A418E4AD31, 598BB22590D2ADE0FD6DCE3F1ADBF6FF5BEFA209368EF495E1E3A6A4F01EFA18 ] Micro Star SCM  C:\Programme\System Control Manager\MSIService.exe
14:59:43.0640 0x0ce8  Micro Star SCM - detected UnsignedFile.Multi.Generic ( 1 )
14:59:44.0031 0x0ce8  Detect skipped due to KSN trusted
14:59:44.0031 0x0ce8  Micro Star SCM - ok
14:59:44.0078 0x0ce8  [ 4AE068242760A1FB6E1A44BF4E16AFA6, 1FB771162B96AAF787AC24867B818DF8511F0780BB094FA9A38C11D8DBFE68BC ] mnmdd           C:\WINDOWS\system32\drivers\mnmdd.sys
14:59:44.0390 0x0ce8  mnmdd - ok
14:59:44.0437 0x0ce8  [ C2F1D365FD96791B037EE504868065D3, 87BD87E08FD00D115524B049F1A3A719AB86557D68968E7090CD0F271F985CAF ] mnmsrvc         C:\WINDOWS\system32\mnmsrvc.exe
14:59:44.0671 0x0ce8  mnmsrvc - ok
14:59:44.0718 0x0ce8  [ 6FB74EBD4EC57A6F1781DE3852CC3362, 0454509D9A31E0202C08AE17294E2682F227D177A3C73B303E4C8332757AFCA1 ] Modem           C:\WINDOWS\system32\drivers\Modem.sys
14:59:44.0984 0x0ce8  Modem - ok
14:59:45.0031 0x0ce8  [ B24CE8005DEAB254C0251E15CB71D802, 6804A8ABDAD5EC846E7F8077D1EE9BA45D6226ACFF42C70BE3DE7C8980EF9EC4 ] Mouclass        C:\WINDOWS\system32\DRIVERS\mouclass.sys
14:59:45.0265 0x0ce8  Mouclass - ok
14:59:45.0312 0x0ce8  [ 66A6F73C74E1791464160A7065CE711A, 3C570FA1E8EF976B83759220FE95BAC9D7D48D607F91B113EDE4790D34ACBD46 ] mouhid          C:\WINDOWS\system32\DRIVERS\mouhid.sys
14:59:45.0562 0x0ce8  mouhid - ok
14:59:45.0656 0x0ce8  [ A80B9A0BAD1B73637DBCBBA7DF72D3FD, 2A5E15ED2C24C6C65EF2F7E1FD93374774076C9D8D451E4422561F4D269C012F ] MountMgr        C:\WINDOWS\system32\drivers\MountMgr.sys
14:59:45.0906 0x0ce8  MountMgr - ok
14:59:45.0984 0x0ce8  [ CF4A82F6176A06F7B2F7FE98C8490566, 3E882902B269BA80366262C519B1A02E5C5FED67CDB73F5698B25FA540F4B50F ] MozillaMaintenance C:\Programme\Mozilla Maintenance Service\maintenanceservice.exe
14:59:46.0046 0x0ce8  MozillaMaintenance - ok
14:59:46.0062 0x0ce8  mraid35x - ok
14:59:46.0109 0x0ce8  [ 11D42BB6206F33FBB3BA0288D3EF81BD, 76ABCFB62C5AC549F58C231F72A99882CDEB74928104B77FE52554765C2B1A22 ] MRxDAV          C:\WINDOWS\system32\DRIVERS\mrxdav.sys
14:59:46.0359 0x0ce8  MRxDAV - ok
14:59:46.0484 0x0ce8  [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0, DB9B186F7076D7B94F45041AF7B77C1AD2CAB504D683B459C6CB1C22840ED170 ] MRxSmb          C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
14:59:46.0671 0x0ce8  MRxSmb - ok
14:59:46.0718 0x0ce8  [ 35A031AF38C55F92D28AA03EE9F12CC9, 97245D204C886EE8DCCC2DEAC80A0E358A7E0C1982F77389DA50DCF091FC9DDC ] MSDTC           C:\WINDOWS\system32\msdtc.exe
14:59:46.0953 0x0ce8  MSDTC - ok
14:59:47.0031 0x0ce8  [ C941EA2454BA8350021D774DAF0F1027, C940E978C7B66A713A0FDAB54B5F995DF59D089AFCD96221DD3222948CD49BBD ] Msfs            C:\WINDOWS\system32\drivers\Msfs.sys
14:59:47.0312 0x0ce8  Msfs - ok
14:59:47.0328 0x0ce8  MSIServer - ok
14:59:47.0390 0x0ce8  [ D1575E71568F4D9E14CA56B7B0453BF1, 4ABE0E24786C0D39FA2B885447E56204CA6942FB175E534DCE675D7BCF0B176A ] MSKSSRV         C:\WINDOWS\system32\drivers\MSKSSRV.sys
14:59:47.0687 0x0ce8  MSKSSRV - ok
14:59:47.0734 0x0ce8  [ 325BB26842FC7CCC1FCCE2C457317F3E, C07BE560513B1FB91D756494F0BA4AEEB2E1998DE0E1C21EE83DB1183B0CEE91 ] MSPCLOCK        C:\WINDOWS\system32\drivers\MSPCLOCK.sys
14:59:48.0000 0x0ce8  MSPCLOCK - ok
14:59:48.0093 0x0ce8  [ BAD59648BA099DA4A17680B39730CB3D, 9AD4C7C94C186C8815D0BC75DCAFB962158DA6935A244BA243EDDDEB33F9816C ] MSPQM           C:\WINDOWS\system32\drivers\MSPQM.sys
14:59:48.0343 0x0ce8  MSPQM - ok
14:59:48.0375 0x0ce8  [ AF5F4F3F14A8EA2C26DE30F7A1E17136, AC93A1E4ABB0D038B772E429015567E44CC2EDB66C54DBE23A5F98176FAC1520 ] mssmbios        C:\WINDOWS\system32\DRIVERS\mssmbios.sys
14:59:48.0640 0x0ce8  mssmbios - ok
14:59:48.0718 0x0ce8  [ E53736A9E30C45FA9E7B5EAC55056D1D, 38602F280BF69EBA3706AD175AFC1AEB561A8302B4B61E3FECB3C27D7A9BDB41 ] MSTEE           C:\WINDOWS\system32\drivers\MSTEE.sys
14:59:48.0968 0x0ce8  MSTEE - ok
14:59:49.0046 0x0ce8  [ DE6A75F5C270E756C5508D94B6CF68F5, FCC972DDC36C2C44D836913F10004C2C33B11C54DEFFF0C63E0FDF901D2F9261 ] Mup             C:\WINDOWS\system32\drivers\Mup.sys
14:59:49.0093 0x0ce8  Mup - ok
14:59:49.0125 0x0ce8  [ 5B50F1B2A2ED47D560577B221DA734DB, C16A554B6E1A7F5F98C94DFA88163E0F7426506BF2F51FD351B1A05FC0DB3BC5 ] NABTSFEC        C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
14:59:49.0375 0x0ce8  NABTSFEC - ok
14:59:49.0484 0x0ce8  [ 46BB15AE2AC7D025D6D2567B876817BD, 102A101B96D1078C98FA0F871C801A9A8538E20E5686AB0C7680B2F6C92B3165 ] napagent        C:\WINDOWS\System32\qagentrt.dll
14:59:49.0750 0x0ce8  napagent - ok
14:59:49.0812 0x0ce8  [ 1DF7F42665C94B825322FAE71721130D, FE0DCB728471465B39A42A7511F4133021FBA5DF88F88BCB5FE2FF34CFD713F9 ] NDIS            C:\WINDOWS\system32\drivers\NDIS.sys
14:59:50.0078 0x0ce8  NDIS - ok
14:59:50.0125 0x0ce8  [ 7FF1F1FD8609C149AA432F95A8163D97, 18CD1FF5AC1EF8A38D1EC53014F2BADD28D9CDF4ECE2EBC2313D08903776F323 ] NdisIP          C:\WINDOWS\system32\DRIVERS\NdisIP.sys
14:59:50.0359 0x0ce8  NdisIP - ok
14:59:50.0437 0x0ce8  [ 0109C4F3850DFBAB279542515386AE22, 4F6DB1E499AC853FD36FD603FBB6D3AC9BDCEB298C7FE1FB59A9236CB46729B2 ] NdisTapi        C:\WINDOWS\system32\DRIVERS\ndistapi.sys
14:59:50.0500 0x0ce8  NdisTapi - ok
14:59:50.0562 0x0ce8  [ F927A4434C5028758A842943EF1A3849, B1AA3AF150C05307461774925901789456B0CCCD03A5E71ADA4AB58455962BEE ] Ndisuio         C:\WINDOWS\system32\DRIVERS\ndisuio.sys
14:59:50.0796 0x0ce8  Ndisuio - ok
14:59:50.0890 0x0ce8  [ EDC1531A49C80614B2CFDA43CA8659AB, 494042F790F33721328B4451E79842E21919681CC421A4F9633EC4D383E06097 ] NdisWan         C:\WINDOWS\system32\DRIVERS\ndiswan.sys
14:59:51.0203 0x0ce8  NdisWan - ok
14:59:51.0281 0x0ce8  [ 2F597BB467E05B1FE3830EABD821B8E0, 141497F5A49D47CCE3C9289644F4BD838DCB238F6D8E847FC006652E21FE02AC ] NDProxy         C:\WINDOWS\system32\drivers\NDProxy.sys
14:59:51.0390 0x0ce8  NDProxy - ok
14:59:51.0437 0x0ce8  [ 5D81CF9A2F1A3A756B66CF684911CDF0, 7989C36607CAEA17AFA2C1C9904145CA0714A54B9F712D9D4C1AB140D0B2CC0C ] NetBIOS         C:\WINDOWS\system32\DRIVERS\netbios.sys
14:59:51.0718 0x0ce8  NetBIOS - ok
14:59:51.0828 0x0ce8  [ 74B2B2F5BEA5E9A3DC021D685551BD3D, 7932B71F98B4122BE88F576BF6D745A757AE378A48924B7F4358837B75640A82 ] NetBT           C:\WINDOWS\system32\DRIVERS\netbt.sys
14:59:52.0125 0x0ce8  NetBT - ok
14:59:52.0203 0x0ce8  [ 8ACE4251BFFD09CE75679FE940E996CC, 81969521B5EAEA09ECA63058BE9697BB69AF2596339CA9DF0CFEDC031DCFDC7E ] NetDDE          C:\WINDOWS\system32\netdde.exe
14:59:52.0468 0x0ce8  NetDDE - ok
14:59:52.0484 0x0ce8  [ 8ACE4251BFFD09CE75679FE940E996CC, 81969521B5EAEA09ECA63058BE9697BB69AF2596339CA9DF0CFEDC031DCFDC7E ] NetDDEdsdm      C:\WINDOWS\system32\netdde.exe
14:59:52.0734 0x0ce8  NetDDEdsdm - ok
14:59:52.0812 0x0ce8  [ AFB8261B56CBA0D86AEB6DF682AF9785, 104D96F1F19DD4CE492064ACC9634406A019EAE20B42D03198E400E661897127 ] Netlogon        C:\WINDOWS\system32\lsass.exe
14:59:53.0109 0x0ce8  Netlogon - ok
14:59:53.0171 0x0ce8  [ E6D88F1F6745BF00B57E7855A2AB696C, 12A5EDD853600FF5EBF91E127077745AE1E61E66DBC1D4D4306570F171AF4A39 ] Netman          C:\WINDOWS\System32\netman.dll
14:59:53.0500 0x0ce8  Netman - ok
14:59:53.0593 0x0ce8  [ D22CD77D4F0D63D1169BB35911BFF12D, 85B1FDFA02E1B8EA4FCB9B7EEB687C5C448697FC7EC9D178C5A2F64D2C9CFEE8 ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
14:59:53.0703 0x0ce8  NetTcpPortSharing - ok
14:59:53.0765 0x0ce8  [ F1B67B6B0751AE0E6E964B02821206A3, 3D5A7593ABDEE2047C5738671C85DC8B95A4ECF58D5D7B04EEE13A689839A540 ] Nla             C:\WINDOWS\System32\mswsock.dll
14:59:53.0859 0x0ce8  Nla - ok
14:59:53.0890 0x0ce8  [ A00877C05933FBA8AFB3390DD72D4679, 684D9642173C4BF4B752F259D5E89F16BC8B4B1608F1E6E176AA692A9775CE38 ] nmwcd           C:\WINDOWS\system32\drivers\ccdcmb.sys
14:59:54.0281 0x0ce8  nmwcd - ok
14:59:54.0343 0x0ce8  [ 9FF15F18E4E8758AC57BDB910D0238B3, F27C40BDD3818C54E1099AD525C7C19B424E0C4676DB366DE0E905CA3F82A310 ] nmwcdc          C:\WINDOWS\system32\drivers\ccdcmbo.sys
14:59:54.0593 0x0ce8  nmwcdc - ok
14:59:54.0671 0x0ce8  [ 3182D64AE053D6FB034F44B6DEF8034A, 4ADFC76965BA2A5F488E71789A4E4EA702A74AF42725F72130D1CA919406CF19 ] Npfs            C:\WINDOWS\system32\drivers\Npfs.sys
14:59:54.0921 0x0ce8  Npfs - ok
14:59:55.0000 0x0ce8  [ 78A08DD6A8D65E697C18E1DB01C5CDCA, E0E6F3ED05068E32F1D5C2D2B38CDEF4536B8656DB6756C66CF6B40B60C8F3DA ] Ntfs            C:\WINDOWS\system32\drivers\Ntfs.sys
14:59:55.0328 0x0ce8  Ntfs - ok
14:59:55.0390 0x0ce8  [ AFB8261B56CBA0D86AEB6DF682AF9785, 104D96F1F19DD4CE492064ACC9634406A019EAE20B42D03198E400E661897127 ] NtLmSsp         C:\WINDOWS\system32\lsass.exe
14:59:55.0625 0x0ce8  NtLmSsp - ok
14:59:55.0734 0x0ce8  [ 56AF4064996FA5BAC9C449B1514B4770, 154602EFEC22728503D4ABA025DF711B0F2CFC983F5E3BF25F2A4BCD1AE250EC ] NtmsSvc         C:\WINDOWS\system32\ntmssvc.dll
14:59:56.0062 0x0ce8  NtmsSvc - ok
14:59:56.0109 0x0ce8  [ 73C1E1F395918BC2C6DD67AF7591A3AD, B21133A75253EC15E2DFF66D3B480AB1A7E1A2360476C810E7AA55D0F0EB08D4 ] Null            C:\WINDOWS\system32\drivers\Null.sys
14:59:56.0359 0x0ce8  Null - ok
14:59:56.0406 0x0ce8  [ B305F3FAD35083837EF46A0BBCE2FC57, 9D0E0E666D652D0FC9EAB97280A5D67AAF61D6B21929DF7CF8ED72A367720464 ] NwlnkFlt        C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
14:59:56.0703 0x0ce8  NwlnkFlt - ok
14:59:56.0781 0x0ce8  [ C99B3415198D1AAB7227F2C88FD664B9, DD8DA4B5E804F134AB9233859544C025062902DFC3E8FB8A09A67337A4E73F55 ] NwlnkFwd        C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
14:59:57.0062 0x0ce8  NwlnkFwd - ok
14:59:57.0109 0x0ce8  [ F84785660305B9B903FB3BCA8BA29837, BDBDE61076800415D98759077E9E039C80B55DBE68E31F8BF44A909C6C3D3276 ] Parport         C:\WINDOWS\system32\drivers\Parport.sys
14:59:57.0406 0x0ce8  Parport - ok
14:59:57.0453 0x0ce8  [ BEB3BA25197665D82EC7065B724171C6, 7E71C13BA30CD95CEE8A9CC85E6F48A01F30EDEAADEE69D80AE828BF97E5A5CA ] PartMgr         C:\WINDOWS\system32\drivers\PartMgr.sys
14:59:57.0750 0x0ce8  PartMgr - ok
14:59:57.0796 0x0ce8  [ C2BF987829099A3EAA2CA6A0A90ECB4F, 1DF21EA8E43875CFEECD869407429F82FB449707CFB845718499468E699BAAAA ] ParVdm          C:\WINDOWS\system32\drivers\ParVdm.sys
14:59:58.0078 0x0ce8  ParVdm - ok
14:59:58.0171 0x0ce8  [ F451DCACBAA67F3307305EBD4A39EA07, C4435BF4C2D16F3DC0B35732BE3602FFA28DB0A5BC5576F45E0D32E5F4CD2DEA ] pccsmcfd        C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys
14:59:58.0265 0x0ce8  pccsmcfd - ok
14:59:58.0296 0x0ce8  [ 387E8DEDC343AA2D1EFBC30580273ACD, 5F3E642BDB759777E570ED5B22AC7E93CDCD362708F281657AD7BAB44EDEC802 ] PCI             C:\WINDOWS\system32\DRIVERS\pci.sys
14:59:58.0593 0x0ce8  PCI - ok
14:59:58.0593 0x0ce8  PCIDump - ok
14:59:58.0609 0x0ce8  PCIIde - ok
14:59:58.0671 0x0ce8  [ A2A966B77D61847D61A3051DF87C8C97, 6CED7CA26DC62B0AAFC83A2E07336DAD25954491201BB8E06103971F3F0B8B51 ] Pcmcia          C:\WINDOWS\system32\drivers\Pcmcia.sys
14:59:58.0921 0x0ce8  Pcmcia - ok
14:59:58.0937 0x0ce8  PDCOMP - ok
14:59:58.0953 0x0ce8  PDFRAME - ok
14:59:58.0984 0x0ce8  PDRELI - ok
14:59:59.0000 0x0ce8  PDRFRAME - ok
14:59:59.0046 0x0ce8  perc2 - ok
14:59:59.0062 0x0ce8  perc2hib - ok
14:59:59.0125 0x0ce8  [ A3EDBE9053889FB24AB22492472B39DC, 6F2ED6E04BDE2FCA2A8BF9BD2D1D6923DE6EAECB46F582B6C0BD1CF364D65C9E ] PlugPlay        C:\WINDOWS\system32\services.exe
14:59:59.0265 0x0ce8  PlugPlay - ok
14:59:59.0296 0x0ce8  [ AFB8261B56CBA0D86AEB6DF682AF9785, 104D96F1F19DD4CE492064ACC9634406A019EAE20B42D03198E400E661897127 ] PolicyAgent     C:\WINDOWS\system32\lsass.exe
14:59:59.0546 0x0ce8  PolicyAgent - ok
14:59:59.0640 0x0ce8  [ EFEEC01B1D3CF84F16DDD24D9D9D8F99, C5F0C8C66A3AF7E7BB04CEDE4AC5306F8387AB384A2107DC5BE413AAE968EFF1 ] PptpMiniport    C:\WINDOWS\system32\DRIVERS\raspptp.sys
14:59:59.0890 0x0ce8  PptpMiniport - ok
14:59:59.0890 0x0ce8  [ AFB8261B56CBA0D86AEB6DF682AF9785, 104D96F1F19DD4CE492064ACC9634406A019EAE20B42D03198E400E661897127 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
15:00:00.0171 0x0ce8  ProtectedStorage - ok
15:00:00.0265 0x0ce8  [ 09298EC810B07E5D582CB3A3F9255424, 35473A1BE25AC289474090EB0806AC6B3035DC33D1F3DF97A14BF1E361AC6AC3 ] PSched          C:\WINDOWS\system32\DRIVERS\psched.sys
15:00:00.0515 0x0ce8  PSched - ok
15:00:00.0562 0x0ce8  [ 80D317BD1C3DBC5D4FE7B1678C60CADD, DA76804B55D0CAB3DDD01EFC06673764AE4860693375C658B6063FB14AF7F12C ] Ptilink         C:\WINDOWS\system32\DRIVERS\ptilink.sys
15:00:00.0796 0x0ce8  Ptilink - ok
15:00:00.0906 0x0ce8  [ D86B4A68565E444D76457F14172C875A, 06B1CF81A62B3DAA8D0C5A8B88C56A504DE8E9278C520F754AF363A6676C58B0 ] PxHelp20        C:\WINDOWS\system32\Drivers\PxHelp20.sys
15:00:00.0953 0x0ce8  PxHelp20 - ok
15:00:00.0968 0x0ce8  ql1080 - ok
15:00:00.0984 0x0ce8  Ql10wnt - ok
15:00:01.0000 0x0ce8  ql12160 - ok
15:00:01.0015 0x0ce8  ql1240 - ok
15:00:01.0031 0x0ce8  ql1280 - ok
15:00:01.0109 0x0ce8  [ 583608EE65AABF971117A61AEE4BCAAE, 1FDE8D46BCD58CB476B3E86C025438995111003DAFB985CFE64138AEDC4B78CE ] RalinkRegistryWriter C:\Programme\Ralink\Common\RaRegistry.exe
15:00:01.0171 0x0ce8  RalinkRegistryWriter - ok
15:00:01.0187 0x0ce8  [ FE0D99D6F31E4FAD8159F690D68DED9C, 998685622ABE631984B7E4DBF91AB3594B1F574378D75EB9F6265F4650470692 ] RasAcd          C:\WINDOWS\system32\DRIVERS\rasacd.sys
15:00:01.0453 0x0ce8  RasAcd - ok
15:00:01.0546 0x0ce8  [ F5BA6CACCDB66C8F048E867563203246, AFEAD8FC02313F7EBC8F9F39E7ED2868852B480BE3902FA7BD0AFD81492AB243 ] RasAuto         C:\WINDOWS\System32\rasauto.dll
15:00:01.0781 0x0ce8  RasAuto - ok
15:00:01.0843 0x0ce8  [ 11B4A627BC9614B885C4969BFA5FF8A6, EAE0A412A2B0F68919C32A96B3A08CC1A06585E4998819F5C9051745F63FF5AD ] Rasl2tp         C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
15:00:02.0125 0x0ce8  Rasl2tp - ok
15:00:02.0203 0x0ce8  [ F9A7B66EA345726EDB5862A46B1ECCD5, 5D35429D394D36A1692A7E219BA1A85CD8096FEAE0F90BFE036A63118FEDBF57 ] RasMan          C:\WINDOWS\System32\rasmans.dll
15:00:02.0484 0x0ce8  RasMan - ok
15:00:02.0515 0x0ce8  [ 5BC962F2654137C9909C3D4603587DEE, A5CE5653D0105240F5E86CFAAB89E7917D42D939E2F27A5A7D6979289CA651B8 ] RasPppoe        C:\WINDOWS\system32\DRIVERS\raspppoe.sys
15:00:02.0765 0x0ce8  RasPppoe - ok
15:00:02.0859 0x0ce8  [ FDBB1D60066FCFBB7452FD8F9829B242, 10A2DACF944BD000032EBA8C095CB3D879CC55B28C377ADF6E52E508E47444DB ] Raspti          C:\WINDOWS\system32\DRIVERS\raspti.sys
15:00:03.0109 0x0ce8  Raspti - ok
15:00:03.0171 0x0ce8  [ 7AD224AD1A1437FE28D89CF22B17780A, 6645235CA27D671954E3557FA37082881C3D7D47492C71264CD8CB8D108EC801 ] Rdbss           C:\WINDOWS\system32\DRIVERS\rdbss.sys
15:00:03.0453 0x0ce8  Rdbss - ok
15:00:03.0500 0x0ce8  [ 4912D5B403614CE99C28420F75353332, 975341ECD660209987B5E5171B8315E032439E408CBE8A5986E67AF767F373BB ] RDPCDD          C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
15:00:03.0750 0x0ce8  RDPCDD - ok
15:00:03.0843 0x0ce8  [ 43AF5212BD8FB5BA6EED9754358BD8F7, AF330F61CECA4AFA359CEABC5EB3227E6B56A9A2DCE50701381D665122D7356D ] RDPWD           C:\WINDOWS\system32\drivers\RDPWD.sys
15:00:03.0984 0x0ce8  RDPWD - ok
15:00:04.0062 0x0ce8  [ 263AF18AF0F3DB99F574C95F284CCEC9, 2BFA9952E97EFEB386FC56EC2C125080CD12DAC078DBE43C395CB4D9F22165D3 ] RDSessMgr       C:\WINDOWS\system32\sessmgr.exe
15:00:04.0359 0x0ce8  RDSessMgr - ok
15:00:04.0437 0x0ce8  [ ED761D453856F795A7FE056E42C36365, EF026585B33415D8FCE94A9F27D7A4396C7C35C88E06A4CF0FEA702401E8597A ] redbook         C:\WINDOWS\system32\DRIVERS\redbook.sys
15:00:04.0765 0x0ce8  redbook - ok
15:00:04.0859 0x0ce8  [ 0E97EC96D6942CEEC2D188CC2EB69A01, D4253B4420BEF19451A55AB91E4834482181A31A31134F6E2AFE05C8E20C81A5 ] RemoteAccess    C:\WINDOWS\System32\mprdim.dll
15:00:05.0125 0x0ce8  RemoteAccess - ok
15:00:05.0171 0x0ce8  [ 851C30DF2807FCFA21E4C681A7D6440E, C2269B8ED4E831664B83F8F3BE33E5A340206A9E07F89CDF6707EAD8F280FBE9 ] RFCOMM          C:\WINDOWS\system32\DRIVERS\rfcomm.sys
15:00:05.0437 0x0ce8  RFCOMM - ok
15:00:05.0515 0x0ce8  [ 2A02E21867497DF20B8FC95631395169, D89E2D17ED4E1C727847C0E92D2DF68AEB70BF0B956BD2FE024ED70A961759D2 ] RpcLocator      C:\WINDOWS\system32\locator.exe
15:00:05.0781 0x0ce8  RpcLocator - ok
15:00:05.0859 0x0ce8  [ 3127AFBF2C1ED0AB14A1BBB7AAECB85B, ECFBACE3CBF2384948EA1C445BDA3955EB4F44A9874286E6537C67DC1283E5B0 ] RpcSs           C:\WINDOWS\System32\rpcss.dll
15:00:06.0000 0x0ce8  RpcSs - ok
15:00:06.0031 0x0ce8  [ A7557CAA7253DE02B40996EF9A478FAB, F47DC16A344AE4525ED41B69DE2D86AAEBE1068F2CFAB8DCEC8341EA590512FB ] RSUSBSTOR       C:\WINDOWS\system32\Drivers\RTS5121.sys
15:00:06.0109 0x0ce8  RSUSBSTOR - ok
15:00:06.0171 0x0ce8  [ 4BDD71B4B521521499DFD14735C4F398, 7B1498D3C67E56D05B58B7DA319ECB0117C37963AABB0E59B42831C087469DA1 ] RSVP            C:\WINDOWS\system32\rsvp.exe
15:00:06.0421 0x0ce8  RSVP - ok
15:00:06.0562 0x0ce8  [ 1AD20F7B8B608D36983305B283A8C31C, 8597FB4510BA9E62B27378C719C97F4B69E2482FB83B0888A0F3C176D3A9E1C7 ] rt2870          C:\WINDOWS\system32\DRIVERS\rt2870.sys
15:00:06.0781 0x0ce8  rt2870 - ok
15:00:06.0812 0x0ce8  [ 7174F20AD9B7B7878A51ECCA03C499C2, 5024E4424B8135D2BA13760CE7D56A25840FFFFC8FC32FF635D6A4BC38DCB28A ] RTLE8023xp      C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys
15:00:06.0953 0x0ce8  RTLE8023xp - ok
15:00:06.0953 0x0ce8  Rts516xIR - ok
15:00:07.0015 0x0ce8  [ AFB8261B56CBA0D86AEB6DF682AF9785, 104D96F1F19DD4CE492064ACC9634406A019EAE20B42D03198E400E661897127 ] SamSs           C:\WINDOWS\system32\lsass.exe
15:00:07.0265 0x0ce8  SamSs - ok
15:00:07.0359 0x0ce8  [ DCEC079FAD95D36C8DD5CB6D779DFE32, F8546552D939A225853A0CE4913701A93738DF02C999D16E141E9A828814BBC6 ] SCardSvr        C:\WINDOWS\System32\SCardSvr.exe
15:00:07.0625 0x0ce8  SCardSvr - ok
15:00:07.0687 0x0ce8  [ A050194A44D7FA8D7186ED2F4E8367AE, BCDF56D5A2F9E202DC67E7FE4BCC617BCC0BDFF2D221A621020068B17B2855BB ] Schedule        C:\WINDOWS\system32\schedsvc.dll
15:00:07.0968 0x0ce8  Schedule - ok
15:00:08.0046 0x0ce8  [ F34C06D1C706A6D9433570B087A18B02, 5A1B059458CD71FA9883C8E92F9300B86B79A6E6FBBC87431630DA43D1508319 ] Scutum50        C:\WINDOWS\system32\Drivers\Scutum50.sys
15:00:08.0078 0x0ce8  Scutum50 - detected UnsignedFile.Multi.Generic ( 1 )
15:00:08.0843 0x0ce8  Detect skipped due to KSN trusted
15:00:08.0843 0x0ce8  Scutum50 - ok
15:00:08.0875 0x0ce8  [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] Secdrv          C:\WINDOWS\system32\DRIVERS\secdrv.sys
15:00:09.0187 0x0ce8  Secdrv - ok
15:00:09.0296 0x0ce8  [ BEE4CFD1D48C23B44CF4B974B0B79B2B, DF3B02D713F8A4602BE75F004074D5DF79AFF2D58FF37110B2A6AC29F680758B ] seclogon        C:\WINDOWS\System32\seclogon.dll
15:00:09.0609 0x0ce8  seclogon - ok
15:00:09.0671 0x0ce8  [ 2AAC9B6ED9EDDFFB721D6452E34D67E3, 95D83F054A6610328D56E56CD948A6618C590231853E56FC20E7557DB61384A4 ] SENS            C:\WINDOWS\system32\sens.dll
15:00:09.0906 0x0ce8  SENS - ok
15:00:09.0953 0x0ce8  [ CF24EB4F0412C82BCD1F4F35A025E31D, B74CB094126F5C23F601C34D53B2DF5BE3E5918230AC9DCFCFFA8E66B3A0FA25 ] Serial          C:\WINDOWS\system32\drivers\Serial.sys
15:00:10.0218 0x0ce8  Serial - ok
15:00:10.0421 0x0ce8  [ 78F7BB9F4924BE164294C59B8C3FC096, 75051A6A8B0DBB16CD70855A408134270EEAF0C127BAAE5B592DB53BB87C085B ] ServiceLayer    C:\Programme\PC Connectivity Solution\ServiceLayer.exe
15:00:10.0531 0x0ce8  ServiceLayer - ok
15:00:10.0625 0x0ce8  [ 8E6B8C671615D126FDC553D1E2DE5562, CEEC0067514555D5CA489F50E3D7562FCA8DB8E952C3C878604C9277FC77959F ] Sfloppy         C:\WINDOWS\system32\drivers\Sfloppy.sys
15:00:10.0875 0x0ce8  Sfloppy - ok
15:00:10.0953 0x0ce8  [ CAD058D5F8B889A87CA3EB3CF624DCEF, A7CDCF44261D1F4D820927253EA8EBB63714B7BAFF8B08DE073507D9A7EEA5BB ] SharedAccess    C:\WINDOWS\System32\ipnathlp.dll
15:00:11.0281 0x0ce8  SharedAccess - ok
15:00:11.0343 0x0ce8  [ 2DB7D303C36DDD055215052F118E8E75, BE6E7BBE12A7A4EDF1F1C2935350603970C7426BBCA7A1A6644BB8999123AF17 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
15:00:11.0406 0x0ce8  ShellHWDetection - ok
15:00:11.0406 0x0ce8  Simbad - ok
15:00:11.0515 0x0ce8  [ 704B4F81729F676BBF034529FC334D82, 1E50DAF97836807A500284385D99272780A8B69CA88761250451060B207824F8 ] SkypeUpdate     C:\Programme\Skype\Updater\Updater.exe
15:00:11.0593 0x0ce8  SkypeUpdate - ok
15:00:11.0640 0x0ce8  [ 866D538EBE33709A5C9F5C62B73B7D14, BC94BEB7C17B4FCAC8B5D0D5006A203BC209E0504EECE149651D8691935696CD ] SLIP            C:\WINDOWS\system32\DRIVERS\SLIP.sys
15:00:11.0890 0x0ce8  SLIP - ok
15:00:11.0921 0x0ce8  Sparrow - ok
15:00:11.0953 0x0ce8  [ AB8B92451ECB048A4D1DE7C3FFCB4A9F, DD17733CBB370FCA08F0296704D7CBEACA3C8F76D0ABE4761C3B1FFDF7481D9E ] splitter        C:\WINDOWS\system32\drivers\splitter.sys
15:00:12.0203 0x0ce8  splitter - ok
15:00:12.0281 0x0ce8  [ 60784F891563FB1B767F70117FC2428F, E0B07F08E60FFBAD36C2E58180F4B2A16DCA47716044CBE0213DF7B74D742F1F ] Spooler         C:\WINDOWS\system32\spoolsv.exe
15:00:12.0343 0x0ce8  Spooler - ok
15:00:12.0406 0x0ce8  [ 50FA898F8C032796D3B1B9951BB5A90F, 1C86273EC19EB96D6DB9CE6670C00683B77C99C42CC2F7E75BC50872B93446B1 ] sr              C:\WINDOWS\system32\DRIVERS\sr.sys
15:00:12.0546 0x0ce8  sr - ok
15:00:12.0625 0x0ce8  [ FE77A85495065F3AD59C5C65B6C54182, EB4BAF992F961B2FD5D24BFCB6BCB2142BC32933139A818835FEAB190E4283BB ] srservice       C:\WINDOWS\system32\srsvc.dll
15:00:12.0796 0x0ce8  srservice - ok
15:00:12.0890 0x0ce8  [ 47DDFC2F003F7F9F0592C6874962A2E7, 17C643BD4EB09B5666FE41817DC785BE04A6E491CE79E8E5A702CDBD98E1BDD7 ] Srv             C:\WINDOWS\system32\DRIVERS\srv.sys
15:00:13.0062 0x0ce8  Srv - ok
15:00:13.0109 0x0ce8  [ 4DF5B05DFAEC29E13E1ED6F6EE12C500, 2971D7D45D6942D310D47DBD19B9680D2D29527E79B86133C72217FD29259465 ] SSDPSRV         C:\WINDOWS\System32\ssdpsrv.dll
15:00:13.0312 0x0ce8  SSDPSRV - ok
15:00:13.0375 0x0ce8  [ A36EE93698802CD899F98BFD553D8185, 224CFED921EA230FF8025D259E34968FD2C0FD34BB3A918FB4B9B8BA42BEA5D3 ] ssmdrv          C:\WINDOWS\system32\DRIVERS\ssmdrv.sys
15:00:13.0437 0x0ce8  ssmdrv - ok
15:00:13.0546 0x0ce8  [ BC2C5985611C5356B24AEB370953DED9, 15CBAB8166827DC098E2B16AB6F49A1441A4CB52AF3588F0AD964CAB596DFE10 ] stisvc          C:\WINDOWS\system32\wiaservc.dll
15:00:13.0875 0x0ce8  stisvc - ok
15:00:13.0921 0x0ce8  [ 77813007BA6265C4B6098187E6ED79D2, 93939120E803C46FBFD577C8FC2E6C7E71C0460E01D25CB29579490640AB50C7 ] streamip        C:\WINDOWS\system32\DRIVERS\StreamIP.sys
15:00:14.0218 0x0ce8  streamip - ok
15:00:14.0265 0x0ce8  [ 3941D127AEF12E93ADDF6FE6EE027E0F, EA1F0E32E1C5E90FA4AAC421DEBBE086512340758D3217A6334E886BCE638B51 ] swenum          C:\WINDOWS\system32\DRIVERS\swenum.sys
15:00:14.0578 0x0ce8  swenum - ok
15:00:14.0671 0x0ce8  [ 8CE882BCC6CF8A62F2B2323D95CB3D01, B408550A581F3DA222355964AFA4E976AD8471F0AA37573C42C4948AE5A23A3B ] swmidi          C:\WINDOWS\system32\drivers\swmidi.sys
15:00:14.0921 0x0ce8  swmidi - ok
15:00:14.0937 0x0ce8  SwPrv - ok
15:00:14.0953 0x0ce8  symc810 - ok
15:00:15.0000 0x0ce8  symc8xx - ok
15:00:15.0015 0x0ce8  sym_hi - ok
15:00:15.0046 0x0ce8  sym_u3 - ok
15:00:15.0187 0x0ce8  [ D7B9AD3ABD0F7F9F694D71F38B5C7B72, F712D36AF77EE2E0E8C1A20F825C06F8A23BD9D616563E9814EB4273E7787E6D ] SynTP           C:\WINDOWS\system32\DRIVERS\SynTP.sys
15:00:15.0312 0x0ce8  SynTP - ok
15:00:15.0343 0x0ce8  [ 8B83F3ED0F1688B4958F77CD6D2BF290, 546D3602183702B4F53E84413CFA2C933D64C8540378E54A8DCD148F3F36A2DA ] sysaudio        C:\WINDOWS\system32\drivers\sysaudio.sys
15:00:15.0609 0x0ce8  sysaudio - ok
15:00:15.0703 0x0ce8  [ 2903FFFA2523926D6219428040DCE6B9, 4F13181931B0499F6C3F08138054DBCD1F84CB9806999A9172B80DE79D446F62 ] SysmonLog       C:\WINDOWS\system32\smlogsvc.exe
15:00:15.0953 0x0ce8  SysmonLog - ok
15:00:16.0031 0x0ce8  [ 05903CAC4B98908D55EA5774775B382E, AC3666CBD894D737874A5998DC7F46A0A51A7B23B1835FC735B9AD503A2191CC ] TapiSrv         C:\WINDOWS\System32\tapisrv.dll
15:00:16.0296 0x0ce8  TapiSrv - ok
15:00:16.0390 0x0ce8  [ 9AEFA14BD6B182D61E3119FA5F436D3D, EA29E49434585409272E7901AF89771FE9D6E911A7DC44AB3C7020CFF8A44552 ] Tcpip           C:\WINDOWS\system32\DRIVERS\tcpip.sys
15:00:16.0531 0x0ce8  Tcpip - ok
15:00:16.0562 0x0ce8  [ 6471A66807F5E104E4885F5B67349397, F35CBFFB8BB235CCE30EF94A5273333900DD49FD506BF9D55D99A320B8A53A5A ] TDPIPE          C:\WINDOWS\system32\drivers\TDPIPE.sys
15:00:16.0796 0x0ce8  TDPIPE - ok
15:00:16.0875 0x0ce8  [ C56B6D0402371CF3700EB322EF3AAF61, 7743FA4C734BCE38EFB1CA69BC17364D8421E2CD172F856F7E38E7AE1EE93F2F ] TDTCP           C:\WINDOWS\system32\drivers\TDTCP.sys
15:00:17.0109 0x0ce8  TDTCP - ok
15:00:17.0156 0x0ce8  [ 88155247177638048422893737429D9E, B6D4E8691917946332C2208D01F8C8281978C1AD1E9951C5D99DF0D49AC34B3B ] TermDD          C:\WINDOWS\system32\DRIVERS\termdd.sys
15:00:17.0406 0x0ce8  TermDD - ok
15:00:17.0515 0x0ce8  [ B7DE02C863D8F5A005A7BF375375A6A4, 6DE05A7B28CA5A78D58536347FC47F15883EEDBEF487CEA0117CC280FC582DCC ] TermService     C:\WINDOWS\System32\termsrv.dll
15:00:17.0796 0x0ce8  TermService - ok
15:00:17.0875 0x0ce8  [ 2DB7D303C36DDD055215052F118E8E75, BE6E7BBE12A7A4EDF1F1C2935350603970C7426BBCA7A1A6644BB8999123AF17 ] Themes          C:\WINDOWS\System32\shsvcs.dll
15:00:17.0937 0x0ce8  Themes - ok
15:00:17.0953 0x0ce8  TosIde - ok
15:00:18.0000 0x0ce8  [ 626504572B175867F30F3215C04B3E2F, 47E87CE9BC666D5CB5953C5D497DC00A7CC28F8EC0A064B3E47700279C5C4B91 ] TrkWks          C:\WINDOWS\system32\trkwks.dll
15:00:18.0265 0x0ce8  TrkWks - ok
15:00:18.0328 0x0ce8  [ FAC6431BA75C6B68553D168D29F470F2, D8523004B01FC0407FAA09C31493D428320A577E754652EAAED90B5F55B57F22 ] truecrypt       C:\WINDOWS\system32\drivers\truecrypt.sys
15:00:18.0390 0x0ce8  truecrypt - ok
15:00:18.0468 0x0ce8  [ 5787B80C2E3C5E2F56C2A233D91FA2C9, 3774905CF77954DFCECDA5BCC7CDE3D0ED72712BFAAD85ADAE5246306447E46C ] Udfs            C:\WINDOWS\system32\drivers\Udfs.sys
15:00:18.0718 0x0ce8  Udfs - ok
15:00:18.0750 0x0ce8  ultra - ok
15:00:18.0828 0x0ce8  [ 402DDC88356B1BAC0EE3DD1580C76A31, 32A686595710336A6BFD54C03F552AE39439611662F84EF5D24193AE5665C6F3 ] Update          C:\WINDOWS\system32\DRIVERS\update.sys
15:00:19.0109 0x0ce8  Update - ok
15:00:19.0203 0x0ce8  [ 1DFD8975D8C89214B98D9387C1125B49, 0B6B268487C8E45E9B86BF4A0A9DB669E0E45D600DE3C82B63F9986CA9E01082 ] upnphost        C:\WINDOWS\System32\upnphost.dll
15:00:19.0359 0x0ce8  upnphost - ok
15:00:19.0406 0x0ce8  [ 8721F55D8BC9F89E3A63CEBDF5EF4FA3, C0C82480014B646709869A6A6FA2B71B993F9FCD8E2DB9E8F7D341C21EE169CF ] upperdev        C:\WINDOWS\system32\DRIVERS\usbser_lowerflt.sys
15:00:19.0640 0x0ce8  upperdev - ok
15:00:19.0703 0x0ce8  [ 9B11E6118958E63E1FEF129466E2BDA7, 97168BCE3F4A9BB9E6500F05E34851FB957B219C598944FADC28AC0011C0503B ] UPS             C:\WINDOWS\System32\ups.exe
15:00:19.0937 0x0ce8  UPS - ok
15:00:20.0000 0x0ce8  [ 1B611611C28D2DF25BC057D79C6F13FC, B0D86F63E44B40413BBAE6402CC088046CFAE082D41BBC2ED5A916293356B846 ] usbccgp         C:\WINDOWS\system32\DRIVERS\usbccgp.sys
15:00:20.0078 0x0ce8  usbccgp - ok
15:00:20.0093 0x0ce8  USBCCID - ok
15:00:20.0140 0x0ce8  [ 4BAC8DF07F1D8434FC640E677A62204E, 76C1351AF6752224BF59DEEE0F8665FE699F3DFD679F5BCD01C7D9383E6402A4 ] usbehci         C:\WINDOWS\system32\DRIVERS\usbehci.sys
15:00:20.0203 0x0ce8  usbehci - ok
15:00:20.0265 0x0ce8  [ 1AB3CDDE553B6E064D2E754EFE20285C, A99C4528C4227B1E96847614745AAFACD3C5F1BDFE435214DBF78740FFB300FE ] usbhub          C:\WINDOWS\system32\DRIVERS\usbhub.sys
15:00:20.0500 0x0ce8  usbhub - ok
15:00:20.0578 0x0ce8  [ A717C8721046828520C9EDF31288FC00, 1530BBE832EDBB0974AD89D723A03FF7A0094B368992D73C2C3E62A181DF1E0A ] usbprint        C:\WINDOWS\system32\DRIVERS\usbprint.sys
15:00:20.0828 0x0ce8  usbprint - ok
15:00:20.0906 0x0ce8  [ 84C44D720655A8AA475E57A9E764D675, 2D450199338A217FBD951317812A74223E8B477974C7634667E8896316C3FEA0 ] usbser          C:\WINDOWS\system32\drivers\usbser.sys
15:00:21.0015 0x0ce8  usbser - ok
15:00:21.0046 0x0ce8  [ 4E66C71D8D010BFB0DF1042D25E9CB0F, E581ED3557A06FEE7F35DF1C18C7D74FEFD1FC5E6CDAD6692F66F4A033830F1C ] UsbserFilt      C:\WINDOWS\system32\DRIVERS\usbser_lowerfltj.sys
15:00:21.0281 0x0ce8  UsbserFilt - ok
15:00:21.0375 0x0ce8  [ A32426D9B14A089EAA1D922E0C5801A9, ED1DC52EE45F8EAD3AEC4B1F817BB25634141CF48295494C5947DCE6CF7A9817 ] usbstor         C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
15:00:21.0718 0x0ce8  usbstor - ok
15:00:21.0765 0x0ce8  [ 26496F9DEE2D787FC3E61AD54821FFE6, 8BE7FF647470B9A951CBB478FAF83D657A15CC78037F42348A6B738F21D523DA ] usbuhci         C:\WINDOWS\system32\DRIVERS\usbuhci.sys
15:00:22.0015 0x0ce8  usbuhci - ok
15:00:22.0093 0x0ce8  [ 813236B1183CFCF289E367BD5DE6E29E, 167FE18A96F330AEEC1A4C419770C15EFEB536D43838285E51E7A62E95DF4674 ] usbvideo        C:\WINDOWS\system32\Drivers\usbvideo.sys
15:00:22.0187 0x0ce8  usbvideo - ok
15:00:22.0218 0x0ce8  [ 0D3A8FAFCEACD8B7625CD549757A7DF1, B9CFDEFCD66AA139F3DC2F967B184669532922563AD5A71769BABDC4370D065E ] VgaSave         C:\WINDOWS\System32\drivers\vga.sys
15:00:22.0468 0x0ce8  VgaSave - ok
15:00:22.0484 0x0ce8  ViaIde - ok
15:00:22.0546 0x0ce8  [ A5A712F4E880874A477AF790B5186E1D, FE885ED04C3EAFC379787F836738A2769E43D07CF52DD917D90C38E001957A5E ] VolSnap         C:\WINDOWS\system32\drivers\VolSnap.sys
15:00:22.0781 0x0ce8  VolSnap - ok
15:00:22.0875 0x0ce8  [ 68F106273BE29E7B7EF8266977268E78, 1488AB7A654EBC94C73E1D494067189ACB95BC233980110CAC4C0297CDC4115A ] VSS             C:\WINDOWS\System32\vssvc.exe
15:00:23.0046 0x0ce8  VSS - ok
15:00:23.0156 0x0ce8  [ 7B353059E665F8B7AD2BBEAEF597CF45, 84A4311F18A4B8DCB364741DEA7D18E2363F19564B2EF25214965DC729527068 ] W32Time         C:\WINDOWS\system32\w32time.dll
15:00:23.0484 0x0ce8  W32Time - ok
15:00:23.0546 0x0ce8  [ E20B95BAEDB550F32DD489265C1DA1F6, 5589B2067E6C9FBA290D8C5EADDC198EBAF39C50C3CD7D2BC5CDA7CBFBC445E5 ] Wanarp          C:\WINDOWS\system32\DRIVERS\wanarp.sys
15:00:23.0781 0x0ce8  Wanarp - ok
15:00:23.0859 0x0ce8  [ D6EFAF429FD30C5DF613D220E344CCE7, 807D4563E8AD4073688691078EB13AF240E14BA5E0C8506A48B3060A20B90082 ] WDC_SAM         C:\WINDOWS\system32\DRIVERS\wdcsam.sys
15:00:23.0968 0x0ce8  WDC_SAM - ok
15:00:24.0062 0x0ce8  [ D918617B46457B9AC28027722E30F647, 407284D3055DC11944D4EE7E4357E7CF9CAF8CA40CA50633AB6FD4A82CB7EEA6 ] Wdf01000        C:\WINDOWS\system32\Drivers\wdf01000.sys
15:00:24.0140 0x0ce8  Wdf01000 - ok
15:00:24.0156 0x0ce8  WDICA - ok
15:00:24.0218 0x0ce8  [ 6768ACF64B18196494413695F0C3A00F, 3A8F8586F1D997D19A8478345338D2AECD785AEABDB61531DD3F92003D3230A5 ] wdmaud          C:\WINDOWS\system32\drivers\wdmaud.sys
15:00:24.0468 0x0ce8  wdmaud - ok
15:00:24.0578 0x0ce8  [ 81727C9873E3905A2FFC1EBD07265002, 6AC2383A1DCBB7FA3DB90FBB874C8E1819F5B7492717FF41E303EFC7BF72F93E ] WebClient       C:\WINDOWS\System32\webclnt.dll
15:00:24.0828 0x0ce8  WebClient - ok
15:00:24.0921 0x0ce8  [ 6F3F3973D97714CC5F906A19FE883729, 7817118BE94D0F6FAE0F9CE48AD70FFE0AEF886CCE09C666768FAB61047F992F ] winmgmt         C:\WINDOWS\system32\wbem\WMIsvc.dll
15:00:25.0203 0x0ce8  winmgmt - ok
15:00:25.0312 0x0ce8  [ C51B4A5C05A5475708E3C81C7765B71D, F776D2680BD3407307B7072626F78460361FC5BC38623C9E16F394D300AB25DE ] WmdmPmSN        C:\WINDOWS\system32\MsPMSNSv.dll
15:00:25.0390 0x0ce8  WmdmPmSN - ok
15:00:25.0421 0x0ce8  [ C42584FD66CE9E17403AEBCA199F7BDB, E3F2E1066F36AE5D33D4482239B2E556BE0C137923C9A120DFB36EC82F2E77B0 ] WmiAcpi         C:\WINDOWS\system32\DRIVERS\wmiacpi.sys
15:00:25.0671 0x0ce8  WmiAcpi - ok
15:00:25.0765 0x0ce8  [ 93908111BA57A6E60EC2FA2DE202105C, F395F25F18D15C6B9FEDB45FD31E10295FFE5517E2BC86ACAC11904EA0664BE2 ] WmiApSrv        C:\WINDOWS\system32\wbem\wmiapsrv.exe
15:00:26.0015 0x0ce8  WmiApSrv - ok
15:00:26.0218 0x0ce8  [ BF05650BB7DF5E9EBDD25974E22403BB, AF173D89B768CFC7AB03DFADD4F049CAC40AC59A0C9208AF5AB92CB368983077 ] WMPNetworkSvc   C:\Programme\Windows Media Player\WMPNetwk.exe
15:00:26.0390 0x0ce8  WMPNetworkSvc - ok
15:00:26.0421 0x0ce8  [ CF4DEF1BF66F06964DC0D91844239104, CC1D9CECE2056D29A9651D51BB57C3F4F9BF9E90A4808CF7496C683C874FBD51 ] WpdUsb          C:\WINDOWS\system32\DRIVERS\wpdusb.sys
15:00:26.0484 0x0ce8  WpdUsb - ok
15:00:26.0656 0x0ce8  [ 15673BD0B86150CB8E27766059C72A9B, 56C23289A8BFF4945EE532CF6D62D3EC81B827CA15A359F30A327789F9FE9CAF ] WPFFontCache_v0400 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
15:00:26.0828 0x0ce8  WPFFontCache_v0400 - ok
15:00:26.0890 0x0ce8  [ 6ABE6E225ADB5A751622A9CC3BC19CE8, 4061C5D0F051DFF1730E2A3BFC1CCA97B29602FC50F10F6B44D93B0D28F42024 ] WS2IFSL         C:\WINDOWS\System32\drivers\ws2ifsl.sys
15:00:27.0218 0x0ce8  WS2IFSL - ok
15:00:27.0312 0x0ce8  [ 300B3E84FAF1A5C1F791C159BA28035D, 0194856BDF94C1F274AF70AD558290ACDACDDEA331BD66FEB8E167ABD1E36786 ] wscsvc          C:\WINDOWS\system32\wscsvc.dll
15:00:27.0640 0x0ce8  wscsvc - ok
15:00:27.0734 0x0ce8  [ 43F767D59BFC25D8F4FC2EB42043EC1E, 9DC502AE199A93FD8492F7AEC41F0578AD8C75E91AE7A083BC37224243A4DCDE ] WSIMD           C:\WINDOWS\system32\DRIVERS\wsimd.sys
15:00:27.0765 0x0ce8  WSIMD - detected UnsignedFile.Multi.Generic ( 1 )
15:00:28.0078 0x0ce8  Detect skipped due to KSN trusted
15:00:28.0078 0x0ce8  WSIMD - ok
15:00:28.0140 0x0ce8  [ C98B39829C2BBD34E454150633C62C78, 71B60EA3AD0E2637917D528C6A9E7ECF2949E3E5E91036AA5BBADA95BD725511 ] WSTCODEC        C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
15:00:28.0500 0x0ce8  WSTCODEC - ok
15:00:28.0593 0x0ce8  [ 7B4FE05202AA6BF9F4DFD0E6A0D8A085, A1DB8909FA73337DB613D01824945485186654364A4DF129B8CB913CF87D1D2E ] wuauserv        C:\WINDOWS\system32\wuauserv.dll
15:00:28.0828 0x0ce8  wuauserv - ok
15:00:28.0906 0x0ce8  [ EAA6324F51214D2F6718977EC9CE0DEF, B9DE1521395E09233FE519873702979C3EAF65FEC4B94B12A46CECB16C488543 ] WudfPf          C:\WINDOWS\system32\DRIVERS\WudfPf.sys
15:00:29.0015 0x0ce8  WudfPf - ok
15:00:29.0078 0x0ce8  [ F91FF1E51FCA30B3C3981DB7D5924252, D7052B58F22638CA8B59C6FD7408D6D6DD1C33910912CACC05C133472CE0DDCE ] WudfRd          C:\WINDOWS\system32\DRIVERS\wudfrd.sys
15:00:29.0140 0x0ce8  WudfRd - ok
15:00:29.0171 0x0ce8  [ DDEE3682FE97037C45F4D7AB467CB8B6, D5A8F07AF4EDD9D7E17FEC6222D187E2981C177A479511E407756E0E5CB8D387 ] WudfSvc         C:\WINDOWS\System32\WUDFSvc.dll
15:00:29.0250 0x0ce8  WudfSvc - ok
15:00:29.0343 0x0ce8  [ C4F109C005F6725162D2D12CA751E4A7, AC996B44338328BDD4442FE48406F286A64526F0EC77BE00A19FA7FDB0407CFE ] WZCSVC          C:\WINDOWS\System32\wzcsvc.dll
15:00:29.0734 0x0ce8  WZCSVC - ok
15:00:29.0796 0x0ce8  [ 0ADA34871A2E1CD2CAAFED1237A47750, 45BEF8649078BD74C1A347B5F2D3A1958E5A7DCD6C6BA8A2E0CAD277A929C64E ] xmlprov         C:\WINDOWS\System32\xmlprov.dll
15:00:30.0093 0x0ce8  xmlprov - ok
15:00:30.0171 0x0ce8  ================ Scan global ===============================
15:00:30.0250 0x0ce8  [ 2C60091CA5F67C3032EAB3B30390C27F, 9E205C8E67F4B61FCFA2A82AA1968D522C3B6410D7075BE813F7F1564D61632E ] C:\WINDOWS\system32\basesrv.dll
15:00:30.0343 0x0ce8  [ E62178BC21EAC63A3B9A2DBD46C1B505, CAA5480CC4DAA37758F0CF445F865FD6F4630080B044EF2E606C2F62DAA4061A ] C:\WINDOWS\system32\winsrv.dll
15:00:30.0390 0x0ce8  [ E62178BC21EAC63A3B9A2DBD46C1B505, CAA5480CC4DAA37758F0CF445F865FD6F4630080B044EF2E606C2F62DAA4061A ] C:\WINDOWS\system32\winsrv.dll
15:00:30.0437 0x0ce8  [ A3EDBE9053889FB24AB22492472B39DC, 6F2ED6E04BDE2FCA2A8BF9BD2D1D6923DE6EAECB46F582B6C0BD1CF364D65C9E ] C:\WINDOWS\system32\services.exe
15:00:30.0437 0x0ce8  [ Global ] - ok
15:00:30.0437 0x0ce8  ================ Scan MBR ==================================
15:00:30.0468 0x0ce8  [ 69035F21489D7C5312386870E4AEF5AE ] \Device\Harddisk0\DR0
15:00:30.0796 0x0ce8  \Device\Harddisk0\DR0 - detected TDSS File System ( 1 )
15:00:30.0796 0x0ce8  \Device\Harddisk0\DR0 ( TDSS File System ) - warning
15:00:31.0093 0x0ce8  ================ Scan VBR ==================================
15:00:31.0218 0x0ce8  [ 605BC8AB08DB6AEBD9A626F06F3ACDD3 ] \Device\Harddisk0\DR0\Partition1
15:00:31.0218 0x0ce8  \Device\Harddisk0\DR0\Partition1 - ok
15:00:31.0218 0x0ce8  ================ Scan generic autorun ======================
15:00:32.0921 0x0ce8  [ 88A5D104AB29EC5BF3C74F608A6C2335, B3A641B1A6F9E7E2E333FDC586549C4E7096556996D86A69CFFA825BD8EB52E9 ] C:\WINDOWS\RTHDCPL.EXE
15:00:35.0765 0x0ce8  RTHDCPL - ok
15:00:35.0906 0x0ce8  [ 95B37A78DB9086680FB585D9112BBB0F, A53FFE68FE58150C6E109AEEBBE6E85C96422C7B0CD84077C4D801EEFE658ADB ] C:\Programme\System Control Manager\MGSysCtrl.exe
15:00:36.0031 0x0ce8  MGSysCtrl - detected UnsignedFile.Multi.Generic ( 1 )
15:00:36.0687 0x0ce8  MGSysCtrl ( UnsignedFile.Multi.Generic ) - warning
15:00:37.0265 0x0ce8  [ 61C23465F195FDF5AE5FE342E1692AC7, BD3628DCBB6AED97031D70BCA9BA8F7C8F0BCBD19EF93C2F126B14226C20BB6B ] C:\Programme\Synaptics\SynTP\SynTPEnh.exe
15:00:37.0531 0x0ce8  SynTPEnh - ok
15:00:37.0703 0x0ce8  [ 3E23D1F7E91627DBD44AC82077E2BA7C, 09235370B85EF5FEA24F1291B9ADAD805C8D7357A78EF8CE3BA0E913F59145EC ] C:\Programme\Avira\AntiVir Desktop\avgnt.exe
15:00:37.0796 0x0ce8  avgnt - ok
15:00:38.0453 0x0ce8  [ 30A0B072E647757CEDDA9E306D410410, 9B16173C973F6B494F35DBA3AD339C3964CD8B066F9D59E5BC9DCF27B526A1F1 ] C:\Programme\COMODO\COMODO Internet Security\cfp.exe
15:00:39.0328 0x0ce8  COMODO Internet Security - ok
15:00:39.0406 0x0ce8  [ 01B4E6E990B6C5EA8856D96C7FD044B2, 2266296FD3C8E0DFA657F21406EE4E494477870DFAF7C65BEBCB6FBA8CADC7C6 ] C:\WINDOWS\system32\ctfmon.exe
15:00:39.0703 0x0ce8  ctfmon.exe - ok
15:00:39.0718 0x0ce8  [ 01B4E6E990B6C5EA8856D96C7FD044B2, 2266296FD3C8E0DFA657F21406EE4E494477870DFAF7C65BEBCB6FBA8CADC7C6 ] C:\WINDOWS\system32\ctfmon.exe
15:00:39.0953 0x0ce8  CTFMON.EXE - ok
15:00:39.0953 0x0ce8  BullGuard - ok
15:00:40.0031 0x0ce8  [ 43D083268A0919F3527A2837390BAF63, 58B62697B01B8C9396271A64424178691FA85D4625DAF2AC8DE7F06A64F64C2A ] C:\Programme\Gemeinsame Dateien\InstallShield\UpdateService\ISUSPM.exe
15:00:40.0171 0x0ce8  ISUSPM - ok
15:00:40.0171 0x0ce8  Waiting for KSN requests completion. In queue: 7
15:00:41.0453 0x0ce8  AV detected via SS1: Avira Antivirus, 15.0.9.460, enabled, updated
15:00:41.0500 0x0ce8  FW detected via SS1: COMODO Firewall, 3.9, enabled
15:00:41.0843 0x0ce8  ============================================================
15:00:41.0843 0x0ce8  Scan finished
15:00:41.0843 0x0ce8  ============================================================
15:00:41.0875 0x0ba0  Detected object count: 2
15:00:41.0875 0x0ba0  Actual detected object count: 2
15:01:19.0625 0x0ba0  \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
15:01:19.0625 0x0ba0  \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip 
15:01:19.0625 0x0ba0  MGSysCtrl ( UnsignedFile.Multi.Generic ) - skipped by user
15:01:19.0625 0x0ba0  MGSysCtrl ( UnsignedFile.Multi.Generic ) - User select action: Skip

schrauber · 03.05.2015, 06:21

Ja kannste machen.

Zitat:

15:01:19.0625 0x0ba0 \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
15:01:19.0625 0x0ba0 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip

Starte TDSSkiller.exe mit Doppelklick.
Vista und Win7 User mit Rechtsklick "als Administrator starten"

Drücke auf Start Scan.
Mache während dem Scan nichts am Rechner
Gehe sicher das Cure ( default ) angehackt ist !
Drücke Continue --> Reboot.

TDSSKiller wird eine Logfile auf deinem Systemlaufwerk speichern ( Meistens C:\ )
Als Beispiel: C:\TDSSKiller.<version_date_time>log.txt

Poste den Inhalt bitte hier in deinen Thread.

Eisbaer27 · 03.05.2015, 09:47

also ich kann entweder copy to quarantine oder delete auswählen

schrauber · 03.05.2015, 13:56

Copy to Quarantine, dann nochmal einen frischen Scan mit TDSSKiller machen.

Eisbaer27 · 03.05.2015, 18:09

Code:

ATTFilter

19:01:14.0437 0x0b18  TDSS rootkit removing tool 3.0.0.44 Jan 22 2015 08:27:04
19:01:17.0640 0x0b18  ============================================================
19:01:17.0640 0x0b18  Current date / time: 2015/05/03 19:01:17.0640
19:01:17.0640 0x0b18  SystemInfo:
19:01:17.0640 0x0b18  
19:01:17.0640 0x0b18  OS Version: 5.1.2600 ServicePack: 3.0
19:01:17.0640 0x0b18  Product type: Workstation
19:01:17.0640 0x0b18  ComputerName: LAPPI
19:01:17.0640 0x0b18  UserName: Lurchi
19:01:17.0640 0x0b18  Windows directory: C:\WINDOWS
19:01:17.0640 0x0b18  System windows directory: C:\WINDOWS
19:01:17.0640 0x0b18  Processor architecture: Intel x86
19:01:17.0640 0x0b18  Number of processors: 2
19:01:17.0640 0x0b18  Page size: 0x1000
19:01:17.0640 0x0b18  Boot type: Normal boot
19:01:17.0656 0x0b18  ============================================================
19:01:25.0531 0x0b18  KLMD registered as C:\WINDOWS\system32\drivers\66214325.sys
19:01:26.0718 0x0b18  System UUID: {56179B87-2EED-E327-0996-09B5BAE3F333}
19:01:30.0093 0x0b18  Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 ( 149.05 Gb ), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
19:01:30.0093 0x0b18  ============================================================
19:01:30.0093 0x0b18  \Device\Harddisk0\DR0:
19:01:30.0093 0x0b18  MBR partitions:
19:01:30.0093 0x0b18  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x11B345B6
19:01:30.0093 0x0b18  ============================================================
19:01:30.0156 0x0b18  C: <-> \Device\Harddisk0\DR0\Partition1
19:01:30.0171 0x0b18  ============================================================
19:01:30.0171 0x0b18  Initialize success
19:01:30.0171 0x0b18  ============================================================
19:01:40.0531 0x089c  ============================================================
19:01:40.0531 0x089c  Scan started
19:01:40.0531 0x089c  Mode: Manual; SigCheck; TDLFS; 
19:01:40.0531 0x089c  ============================================================
19:01:40.0531 0x089c  KSN ping started
19:01:43.0109 0x089c  KSN ping finished: true
19:01:45.0234 0x089c  ================ Scan system memory ========================
19:01:45.0234 0x089c  System memory - ok
19:01:45.0250 0x089c  ================ Scan services =============================
19:01:45.0703 0x089c  Abiosdsk - ok
19:01:45.0734 0x089c  abp480n5 - ok
19:01:45.0796 0x089c  [ 0A1E97197609F92D2425B67DA0BB0A7F, 818FD957C6EA1869ED13EA8C0681D2850141E22A68A2D982E4AEEA2736F50555 ] ACEDRV05        C:\WINDOWS\system32\drivers\ACEDRV05.sys
19:01:49.0859 0x089c  ACEDRV05 - detected UnsignedFile.Multi.Generic ( 1 )
19:01:50.0359 0x089c  Detect skipped due to KSN trusted
19:01:50.0359 0x089c  ACEDRV05 - ok
19:01:50.0468 0x089c  [ AC407F1A62C3A300B4F2B5A9F1D55B2C, 31F5FC61B37E22100B3A52A590295A7E827FFC581FA9960C64B9032452AAECED ] ACPI            C:\WINDOWS\system32\DRIVERS\ACPI.sys
19:01:52.0671 0x089c  ACPI - ok
19:01:52.0843 0x089c  [ 9E1CA3160DAFB159CA14F83B1E317F75, 13B3E897B0E819BF734449416D9EC6EBCAC89538EC69BF48C068593B82D57004 ] ACPIEC          C:\WINDOWS\system32\DRIVERS\ACPIEC.sys
19:01:53.0218 0x089c  ACPIEC - ok
19:01:53.0343 0x089c  [ B04A4810C6CC205F9DC72DC22E4AB236, 547321F5C28C80D4818372D65E2A33D4BAC593015DD6613B24586FE4B4A95D5D ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
19:01:53.0484 0x089c  AdobeFlashPlayerUpdateSvc - ok
19:01:53.0500 0x089c  adpu160m - ok
19:01:53.0656 0x089c  [ 8BED39E3C35D6A489438B8141717A557, 1B5796E56B0927360CE0759641B1151828BC0A9E45620D2B2D880491F5CE33D0 ] aec             C:\WINDOWS\system32\drivers\aec.sys
19:01:54.0140 0x089c  aec - ok
19:01:54.0218 0x089c  [ 30BB1BDE595CA65FD5549462080D94E5, 04BAFCC9445F82A2CAA9852F1B35ECBD18CDD6333E73F6861704E96D740A7C79 ] AegisP          C:\WINDOWS\system32\DRIVERS\AegisP.sys
19:01:54.0390 0x089c  AegisP - detected UnsignedFile.Multi.Generic ( 1 )
19:01:57.0875 0x089c  Detect skipped due to KSN trusted
19:01:57.0890 0x089c  AegisP - ok
19:01:57.0984 0x089c  [ 1E44BC1E83D8FD2305F8D452DB109CF9, CF5EC07E0B589FA2A4701C6CFD69E893FC3ABF274AD57AE3C13FFE49063B02C8 ] AFD             C:\WINDOWS\System32\drivers\afd.sys
19:01:58.0375 0x089c  AFD - ok
19:01:58.0390 0x089c  Aha154x - ok
19:01:58.0421 0x089c  aic78u2 - ok
19:01:58.0468 0x089c  aic78xx - ok
19:01:58.0546 0x089c  [ 738D80CC01D7BC7584BE917B7F544394, DCC17AAEF5CDDF52FAAC3CC6904EF421CD595F66318A2370BEE261D5C3A8E340 ] Alerter         C:\WINDOWS\system32\alrsvc.dll
19:01:59.0015 0x089c  Alerter - ok
19:01:59.0078 0x089c  [ 190CD73D4984F94D823F9444980513E5, 93A32C2495CCA094F768BA707C74DA5C00B8A88A9236DD1A297439A7C2E6C6FA ] ALG             C:\WINDOWS\System32\alg.exe
19:01:59.0343 0x089c  ALG - ok
19:01:59.0343 0x089c  AliIde - ok
19:01:59.0359 0x089c  amsint - ok
19:01:59.0859 0x089c  [ 6A7BE5D0E66B8121E60EFAD57EB04963, 96EC128BC06E7ED7485D52DD52F8A71FEBD9633415DD8486BDBCC499ED32A0F8 ] AntiVirMailService C:\Programme\Avira\AntiVir Desktop\avmailc.exe
19:02:00.0765 0x089c  AntiVirMailService - ok
19:02:00.0953 0x089c  [ F36D18EF1E66F92094AD89D17BEF007C, A5C793B340311CB7A301B77316E1976E3CD7CA9470CE5F1062CB003BCD4C155C ] AntiVirSchedulerService C:\Programme\Avira\AntiVir Desktop\sched.exe
19:02:01.0250 0x089c  AntiVirSchedulerService - ok
19:02:01.0421 0x089c  [ F36D18EF1E66F92094AD89D17BEF007C, A5C793B340311CB7A301B77316E1976E3CD7CA9470CE5F1062CB003BCD4C155C ] AntiVirService  C:\Programme\Avira\AntiVir Desktop\avguard.exe
19:02:01.0578 0x089c  AntiVirService - ok
19:02:01.0593 0x089c  AppMgmt - ok
19:02:01.0937 0x089c  [ 6C21F270AFEC1E423C00E96D3BD234DC, 8DA4ABDD83AECCFD87535AF3C9E3613CBFC4EE14967A551196E7B77F80858E65 ] AR5416          C:\WINDOWS\system32\DRIVERS\athw.sys
19:02:02.0593 0x089c  AR5416 - ok
19:02:02.0609 0x089c  asc - ok
19:02:02.0625 0x089c  asc3350p - ok
19:02:02.0640 0x089c  asc3550 - ok
19:02:02.0953 0x089c  [ 776ACEFA0CA9DF0FAA51A5FB2F435705, 72DF7ED6B085BC468994F5B3189506FD726A9A17A9C42ACA1E420D787691361D ] aspnet_state    C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
19:02:03.0390 0x089c  aspnet_state - ok
19:02:03.0515 0x089c  [ B153AFFAC761E7F5FCFA822B9C4E97BC, 7E60F572A6B3C6219E3C86225AA37243AFFD74337DB7F108B04778042E5CC959 ] AsyncMac        C:\WINDOWS\system32\DRIVERS\asyncmac.sys
19:02:03.0890 0x089c  AsyncMac - ok
19:02:03.0937 0x089c  [ 9F3A2F5AA6875C72BF062C712CFA2674, B4DF1D2C56A593C6B54DE57395E3B51D288F547842893B32B0F59228A0CF70B9 ] atapi           C:\WINDOWS\system32\drivers\atapi.sys
19:02:04.0578 0x089c  atapi - ok
19:02:04.0593 0x089c  Atdisk - ok
19:02:04.0656 0x089c  [ 9916C1225104BA14794209CFA8012159, 5D6F05F715C52A16D05CAE15C3DFE77A139A7F27F7AE710EC9A10F9EE05115A1 ] Atmarpc         C:\WINDOWS\system32\DRIVERS\atmarpc.sys
19:02:05.0046 0x089c  Atmarpc - ok
19:02:05.0203 0x089c  [ 58ED0D5452DF7BE732193E7999C6B9A4, 254E2ECF592DDA2E3E6CA9F6F3E77926E2265586A7937BA95199ED47BCDE69A3 ] AudioSrv        C:\WINDOWS\System32\audiosrv.dll
19:02:05.0687 0x089c  AudioSrv - ok
19:02:05.0781 0x089c  [ D9F724AA26C010A217C97606B160ED68, 329B5118F2409731D06FDAE85B6ADD64A048292801BCB3546651CEB303111695 ] audstub         C:\WINDOWS\system32\DRIVERS\audstub.sys
19:02:06.0390 0x089c  audstub - ok
19:02:06.0515 0x089c  [ AF5DA81B19AFA730F1E5246AD81D140A, 532951071F56896A3B5D47874C14D996C8620EA02F87D4BA21B083EC804FB166 ] avgntflt        C:\WINDOWS\system32\DRIVERS\avgntflt.sys
19:02:06.0859 0x089c  avgntflt - ok
19:02:06.0953 0x089c  [ A5674637BCA212D9FE136ADFA04C9857, 95F3632EBB041C539816D285EBE1F379D46A4187379C69D4683D9F4DECBDB80C ] avipbb          C:\WINDOWS\system32\DRIVERS\avipbb.sys
19:02:07.0218 0x089c  avipbb - ok
19:02:07.0312 0x089c  [ D8C712305F73CD34D1B344810E522728, 49A474FF6CA44E8427D7A8290B47395125B0148AF384CF2B3B1FA495A4718CBA ] avkmgr          C:\WINDOWS\system32\DRIVERS\avkmgr.sys
19:02:07.0593 0x089c  avkmgr - ok
19:02:07.0687 0x089c  [ DA1F27D85E0D1525F6621372E7B685E9, 5A81A46A3BDD19DAFC6C87D277267A5D44F3A1B5302F2CC1111D84B7BAD5610D ] Beep            C:\WINDOWS\system32\drivers\Beep.sys
19:02:08.0453 0x089c  Beep - ok
19:02:08.0578 0x089c  [ D6F603772A789BB3228F310D650B8BD1, A539025C70FD998A9B8703DE05CAE5E99BC721D8852EA561EBC2DD20CB371D2E ] BITS            C:\WINDOWS\system32\qmgr.dll
19:02:09.0250 0x089c  BITS - ok
19:02:09.0421 0x089c  [ B900D52BD62B19F086EBA674911A9AEC, CFD61EBE60303B0E04973A14B4819819148F486BCC952E465BB830E46350D92C ] BMserDiag       C:\WINDOWS\system32\DRIVERS\BMserDiag.sys
19:02:09.0640 0x089c  BMserDiag - ok
19:02:09.0750 0x089c  [ B900D52BD62B19F086EBA674911A9AEC, CFD61EBE60303B0E04973A14B4819819148F486BCC952E465BB830E46350D92C ] BMserNmea       C:\WINDOWS\system32\DRIVERS\BMserNmea.sys
19:02:09.0859 0x089c  BMserNmea - ok
19:02:09.0906 0x089c  [ B900D52BD62B19F086EBA674911A9AEC, CFD61EBE60303B0E04973A14B4819819148F486BCC952E465BB830E46350D92C ] BMusbmdm        C:\WINDOWS\system32\DRIVERS\BMusbmdm.sys
19:02:10.0125 0x089c  BMusbmdm - ok
19:02:10.0234 0x089c  [ 3B77514728BA0BFE4143FC3A2780B289, 07D8131F5A90798F44566CD21E33314E41F94FEF7303913EB0B54E0AB7EFC0D9 ] BootDefragDriver C:\WINDOWS\system32\drivers\BootDefragDriver.sys
19:02:10.0453 0x089c  BootDefragDriver - ok
19:02:10.0546 0x089c  [ B71549F23736ADF83A571061C47777FD, A1D0320736EE777030A543DCA086367EB5A5B6F95088B9C22D8E09326C3A39A9 ] Browser         C:\WINDOWS\System32\browser.dll
19:02:10.0859 0x089c  Browser - ok
19:02:10.0937 0x089c  [ B279426E3C0C344893ED78A613A73BDE, 30B29ED5DCFF0C180B806A5FBC705E1CAF6B0F525298CDA79A77FC2AF6E5AAA7 ] BthEnum         C:\WINDOWS\system32\DRIVERS\BthEnum.sys
19:02:11.0656 0x089c  BthEnum - ok
19:02:11.0734 0x089c  [ FCA6F069597B62D42495191ACE3FC6C1, 23A4EAA542547AC48BCB19DEC9C8E1C1D7D83F199F045DA4682C33292F011CE9 ] BTHMODEM        C:\WINDOWS\system32\DRIVERS\bthmodem.sys
19:02:12.0281 0x089c  BTHMODEM - ok
19:02:12.0343 0x089c  [ 80602B8746D3738F5886CE3D67EF06B6, 15ABAA8106C42A4453763EEB92B291844580168C934088DB1E22B2065DC238E9 ] BthPan          C:\WINDOWS\system32\DRIVERS\bthpan.sys
19:02:12.0671 0x089c  BthPan - ok
19:02:12.0796 0x089c  [ 592E1CEDBE314D0EF184DC6F46141E76, D69106F90C56C1E67BA4B96D6766C6676B66D0E0DF8358DA4B75FEFF211AA23E ] BTHPORT         C:\WINDOWS\system32\Drivers\BTHport.sys
19:02:13.0156 0x089c  BTHPORT - ok
19:02:13.0218 0x089c  [ 26C601EF7525E31379744ABFC6F35A1B, 842626D3A00DDA959A4AB730C0D551244DCDA15AC291FD70CC7324571A6088EC ] BthServ         C:\WINDOWS\System32\bthserv.dll
19:02:13.0718 0x089c  BthServ - ok
19:02:13.0765 0x089c  [ 61364CD71EF63B0F038B7E9DF00F1EFA, FB44D02B4379A8AF7DD8B0B22B53888B758903700142BFE45A412709294CE88A ] BTHUSB          C:\WINDOWS\system32\Drivers\BTHUSB.sys
19:02:14.0187 0x089c  BTHUSB - ok
19:02:14.0218 0x089c  [ 90A673FC8E12A79AFBED2576F6A7AAF9, BDE7858A3457DB979FEDD8577FA6321BF72848E4A7BF9F173C78A6A10CBB3EBE ] cbidf2k         C:\WINDOWS\system32\drivers\cbidf2k.sys
19:02:14.0671 0x089c  cbidf2k - ok
19:02:14.0796 0x089c  [ 0BE5AEF125BE881C4F854C554F2B025C, 1770DD70B3F115A0EF460907DEDC1E4B7241C08615A98F194D61A49C3E2BAA54 ] CCDECODE        C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
19:02:15.0281 0x089c  CCDECODE - ok
19:02:15.0296 0x089c  cd20xrnt - ok
19:02:15.0328 0x089c  [ C1B486A7658353D33A10CC15211A873B, AA4DD9E7AAE5AAB1146B360B17001F975D2F29A1281CF7B13E7136480410F347 ] Cdaudio         C:\WINDOWS\system32\drivers\Cdaudio.sys
19:02:15.0796 0x089c  Cdaudio - ok
19:02:15.0906 0x089c  [ C885B02847F5D2FD45A24E219ED93B32, B26B2F8E3A831E2B65EB0C5195B0645CD50E22615CE79C9B0B391CD563B121DB ] Cdfs            C:\WINDOWS\system32\drivers\Cdfs.sys
19:02:16.0296 0x089c  Cdfs - ok
19:02:16.0328 0x089c  [ 1F4260CC5B42272D71F79E570A27A4FE, B51C2A3ED3C309953D0EA45869C8E464C10F2533DADE9E0286AF674979098D1D ] Cdrom           C:\WINDOWS\system32\DRIVERS\cdrom.sys
19:02:16.0781 0x089c  Cdrom - ok
19:02:16.0890 0x089c  [ 61305C679E5766A03A09C0E966939206, E85EC9D23C81A2F8C08B439FA34F43C475A26C38DF4B4B40758CFC0D64C50C17 ] CFRMD           C:\WINDOWS\system32\DRIVERS\CFRMD.sys
19:02:17.0015 0x089c  CFRMD - ok
19:02:17.0031 0x089c  Changer - ok
19:02:17.0078 0x089c  [ 28E3040D1F1CA2008CD6B29DFEBC9A5E, ACB458E8A11AA2143734A5A0281973D95158E6402A6453F98F9832D1E19B01F9 ] CiSvc           C:\WINDOWS\system32\cisvc.exe
19:02:17.0671 0x089c  CiSvc - ok
19:02:17.0796 0x089c  [ 778A30ED3C134EB7E406AFC407E9997D, 3E6AD115AB2596EB001BC21AEADDBC75F27C42DB90C986B7AD17743CE631234E ] ClipSrv         C:\WINDOWS\system32\clipsrv.exe
19:02:18.0265 0x089c  ClipSrv - ok
19:02:18.0390 0x089c  [ 8410C7DE4748AEE7F9D7CB70ADFFDC01, 1F77AC232CAD72204EE37ACB1A4E03BDCEFD51A8DA2CE68304AD80AA7F75B0BD ] CLPSLauncher    C:\Programme\Gemeinsame Dateien\COMODO\launcher_service.exe
19:02:18.0453 0x089c  CLPSLauncher - ok
19:02:18.0609 0x089c  [ D87ACAED61E417BBA546CED5E7E36D9C, 14AC6034A5BC0FB2A1AFDAD42BEF4DE641556E54AD30D0C46765660A4BE55462 ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
19:02:19.0250 0x089c  clr_optimization_v2.0.50727_32 - ok
19:02:19.0343 0x089c  [ C5A75EB48E2344ABDC162BDA79E16841, 6070A8AAFD38FBC6A68A2B10C20117612354DF21B4492D90CA522BFB6870D726 ] clr_optimization_v4.0.30319_32 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
19:02:19.0578 0x089c  clr_optimization_v4.0.30319_32 - ok
19:02:19.0656 0x089c  [ 0F6C187D38D98F8DF904589A5F94D411, DB987093446216CEE913AC27503BF7E23E5A62DF169B355730285DAB64F6ED28 ] CmBatt          C:\WINDOWS\system32\DRIVERS\CmBatt.sys
19:02:20.0125 0x089c  CmBatt - ok
19:02:20.0734 0x089c  [ 2A2D72271844C52F004901A60312B96A, A7782E78EE6797A100410C997B77C95B1D991E57C0E5025FC17324EF54C54F0F ] cmdAgent        C:\Programme\COMODO\COMODO Internet Security\cmdagent.exe
19:02:21.0312 0x089c  cmdAgent - ok
19:02:21.0546 0x089c  [ 9181CC4D007ADBE21DB9A11BFECAFEF5, 06B5FDD33D5EE99659DF772CAB38A187166A7F9662B43B1DFC786E0DEFF013B8 ] cmdGuard        C:\WINDOWS\system32\DRIVERS\cmdguard.sys
19:02:21.0734 0x089c  cmdGuard - ok
19:02:21.0828 0x089c  [ C5A9FB50E8CA7FD99F256255FEE71580, 98A826550D7960A3605F67EBA84B721881B7F7D5B7F8445AA6F8790FE2DA05F2 ] cmdHlp          C:\WINDOWS\system32\DRIVERS\cmdhlp.sys
19:02:21.0968 0x089c  cmdHlp - ok
19:02:21.0984 0x089c  CmdIde - ok
19:02:22.0015 0x089c  cmnsusbser - ok
19:02:22.0109 0x089c  [ 6E4C9F21F0FAE8940661144F41B13203, 731202A0DD021FCF9287FEA631212603AAAC23F9E7F76B2882F913B18A971F1C ] Compbatt        C:\WINDOWS\system32\DRIVERS\compbatt.sys
19:02:22.0406 0x089c  Compbatt - ok
19:02:22.0421 0x089c  COMSysApp - ok
19:02:22.0453 0x089c  Cpqarray - ok
19:02:22.0531 0x089c  [ 611F824E5C703A5A899F84C5F1699E4D, 9EFA5612FE58E9974E4CC13D39D91D7B5DEA3ED66BEFBED3AAE6D2800FD8162A ] CryptSvc        C:\WINDOWS\System32\cryptsvc.dll
19:02:23.0125 0x089c  CryptSvc - ok
19:02:23.0187 0x089c  [ B5ECADF7708960F1818C7FA015F4C239, A58BA71B08A9D46EB79EB3DF0858F553A11DE3461E13B6D926E25D21D4CBB2D8 ] CVirtA          C:\WINDOWS\system32\DRIVERS\CVirtA.sys
19:02:23.0453 0x089c  CVirtA - ok
19:02:23.0468 0x089c  CVPNDRVA - ok
19:02:23.0500 0x089c  dac2w2k - ok
19:02:23.0515 0x089c  dac960nt - ok
19:02:23.0609 0x089c  [ 3127AFBF2C1ED0AB14A1BBB7AAECB85B, ECFBACE3CBF2384948EA1C445BDA3955EB4F44A9874286E6537C67DC1283E5B0 ] DcomLaunch      C:\WINDOWS\system32\rpcss.dll
19:02:23.0921 0x089c  DcomLaunch - ok
19:02:24.0046 0x089c  [ C29A1C9B75BA38FA37F8C44405DEC360, 7476D8BC4380CDE56764B2034AF3741DA4ED00F315E41C9A02B5EAD04374F241 ] Dhcp            C:\WINDOWS\System32\dhcpcsvc.dll
19:02:24.0390 0x089c  Dhcp - ok
19:02:24.0437 0x089c  [ 044452051F3E02E7963599FC8F4F3E25, 584BDDB074618BE76454CF90E74829CFF588B5B5FAEB793E2F7AAD26352DD689 ] Disk            C:\WINDOWS\system32\DRIVERS\disk.sys
19:02:24.0843 0x089c  Disk - ok
19:02:24.0859 0x089c  dmadmin - ok
19:02:25.0046 0x089c  [ 0DCFC8395A99FECBB1EF771CEC7FE4EA, 89B0AEE5BE01B9FE4FF2989FF16DB6121721ACDFCE6D9655C0ACD321D8C308BE ] dmboot          C:\WINDOWS\system32\drivers\dmboot.sys
19:02:25.0812 0x089c  dmboot - ok
19:02:25.0906 0x089c  [ 53720AB12B48719D00E327DA470A619A, 800264866A6267C9000A85D00095D57908D059D737E5F28C9C4049B884C46228 ] dmio            C:\WINDOWS\system32\drivers\dmio.sys
19:02:26.0265 0x089c  dmio - ok
19:02:26.0312 0x089c  [ E9317282A63CA4D188C0DF5E09C6AC5F, D41E002F555FE9015EF620975255F58BB79198CA1FF0E09EC950CB450FF77CF7 ] dmload          C:\WINDOWS\system32\drivers\dmload.sys
19:02:26.0812 0x089c  dmload - ok
19:02:26.0875 0x089c  [ 25C83FFBBA13B554EB6D59A9B2E2EE78, 9FBD655ED3E9163AE11EC207F283E387EFBA5A23108EC790BAE4846B35E66F16 ] dmserver        C:\WINDOWS\System32\dmserver.dll
19:02:27.0296 0x089c  dmserver - ok
19:02:27.0359 0x089c  [ 8A208DFCF89792A484E76C40E5F50B45, 4E40E2EB38C6254E7CAA488200E89EE7DEBBBA773890BC6A84313CC68178D54F ] DMusic          C:\WINDOWS\system32\drivers\DMusic.sys
19:02:27.0796 0x089c  DMusic - ok
19:02:27.0859 0x089c  [ 694616F813FB627A32C9E32DEC133078, 27D503E442ED60ED0F7B6BC743856B08B98CD1A396203B2D1426899407E870C5 ] DNE             C:\WINDOWS\system32\DRIVERS\dne2000.sys
19:02:27.0921 0x089c  DNE - ok
19:02:27.0984 0x089c  [ 407F3227AC618FD1CA54B335B083DE07, 96B8E734648FE9A4EBA59C096C8779BD1A11A93A6303AFD438A406C8122D36C6 ] Dnscache        C:\WINDOWS\System32\dnsrslvr.dll
19:02:28.0328 0x089c  Dnscache - ok
19:02:28.0437 0x089c  [ 676E36C4FF5BCEA1900F44182B9723E6, 740CF18BD40E00FEA26CF0E6340C5D18F7D0B4390055FAEEC258B3AA790C4AE9 ] Dot3svc         C:\WINDOWS\System32\dot3svc.dll
19:02:28.0906 0x089c  Dot3svc - ok
19:02:28.0921 0x089c  dpti2o - ok
19:02:29.0484 0x089c  [ E4A0D0C8F17073BE392F062DD1F6B50E, 26CF71517C09B24B6F6AB5AC902FF0D1426351BCCD6AB571510C83D0F6E32FE6 ] DragonUpdater   C:\Programme\Comodo\Dragon\dragon_updater.exe
19:02:30.0609 0x089c  DragonUpdater - ok
19:02:30.0859 0x089c  [ 8F5FCFF8E8848AFAC920905FBD9D33C8, C8C6FB97AB0871C8C88A2201525A5CF10D5131CB6980D32692ED7A8F58399AD5 ] drmkaud         C:\WINDOWS\system32\drivers\drmkaud.sys
19:02:32.0000 0x089c  drmkaud - ok
19:02:32.0078 0x089c  [ 4E4F2FDDAB0A0736D7671134DCCE91FB, 8E2C57D1A006856C47CBDD5765A9DD317DB205B26DA8BFC70555A506257A1CD9 ] EapHost         C:\WINDOWS\System32\eapsvc.dll
19:02:32.0921 0x089c  EapHost - ok
19:02:32.0953 0x089c  EAPPkt - ok
19:02:33.0015 0x089c  [ F07BA56B0235F15EFF8F10DC6389C42E, A7202CCB418D03606A97679BCF166ACA12F8341E8AB97DF044AE00401B8496B4 ] epmntdrv        C:\WINDOWS\system32\epmntdrv.sys
19:02:33.0250 0x089c  epmntdrv - detected UnsignedFile.Multi.Generic ( 1 )
19:02:33.0656 0x089c  Detect skipped due to KSN trusted
19:02:33.0656 0x089c  epmntdrv - ok
19:02:33.0734 0x089c  [ 877C18558D70587AA7823A1A308AC96B, 6B336A62112988D855513F45153F73F8470C41A448E9B7438B4A8EC1813AABF1 ] ERSvc           C:\WINDOWS\System32\ersvc.dll
19:02:34.0171 0x089c  ERSvc - ok
19:02:34.0265 0x089c  [ 1F2F4AB15CE03ECC257FEB2F6DC5A013, FB06406AD9CCD946155C4E8CA769E0430589A4E4BBBDA2C90A67C84E0D2F8EE0 ] EuGdiDrv        C:\WINDOWS\system32\EuGdiDrv.sys
19:02:34.0484 0x089c  EuGdiDrv - detected UnsignedFile.Multi.Generic ( 1 )
19:02:35.0046 0x089c  Detect skipped due to KSN trusted
19:02:35.0046 0x089c  EuGdiDrv - ok
19:02:35.0156 0x089c  [ A3EDBE9053889FB24AB22492472B39DC, 6F2ED6E04BDE2FCA2A8BF9BD2D1D6923DE6EAECB46F582B6C0BD1CF364D65C9E ] Eventlog        C:\WINDOWS\system32\services.exe
19:02:35.0343 0x089c  Eventlog - ok
19:02:35.0593 0x089c  [ AF4F6B5739D18CA7972AB53E091CBC74, A399E2CC026730D3A429727AAB48093B9F1E5DD8EB6336519C7F16182FDB3905 ] EventSystem     C:\WINDOWS\system32\es.dll
19:02:36.0187 0x089c  EventSystem - ok
19:02:36.0265 0x089c  [ 38D332A6D56AF32635675F132548343E, E6909DB836AF679B4F4D62C7396D6C82769CC7ABB8C919C2AABFE934FCE268F6 ] Fastfat         C:\WINDOWS\system32\drivers\Fastfat.sys
19:02:36.0953 0x089c  Fastfat - ok
19:02:37.0078 0x089c  [ 2DB7D303C36DDD055215052F118E8E75, BE6E7BBE12A7A4EDF1F1C2935350603970C7426BBCA7A1A6644BB8999123AF17 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
19:02:37.0390 0x089c  FastUserSwitchingCompatibility - ok
19:02:37.0421 0x089c  [ 92CDD60B6730B9F50F6A1A0C1F8CDC81, 8307A532AB4D05CBBCE206DC2759497708BF5AAA880BD00F0E4F281D8578A1F5 ] Fdc             C:\WINDOWS\system32\drivers\Fdc.sys
19:02:37.0828 0x089c  Fdc - ok
19:02:37.0937 0x089c  [ B0678A548587C5F1967B0D70BACAD6C1, 7E49910212ED87313F926E4800EA8D34809C287A686CA69B82B79C1A6451F88C ] Fips            C:\WINDOWS\system32\drivers\Fips.sys
19:02:38.0296 0x089c  Fips - ok
19:02:38.0359 0x089c  [ 9D27E7B80BFCDF1CDD9B555862D5E7F0, 69C271AD5BCEBFD8AE5A769BDD7EC51256DA3A8ADAD5D12E5C0D13F4E82D8805 ] Flpydisk        C:\WINDOWS\system32\drivers\Flpydisk.sys
19:02:38.0781 0x089c  Flpydisk - ok
19:02:38.0812 0x089c  [ B2CF4B0786F8212CB92ED2B50C6DB6B0, 280F5CF8A90F7BEDE73ADD0DD0F8952088133A7CA9A3D3B7041957E33B36845D ] FltMgr          C:\WINDOWS\system32\DRIVERS\fltMgr.sys
19:02:39.0156 0x089c  FltMgr - ok
19:02:39.0328 0x089c  [ 8BA7C024070F2B7FDD98ED8A4BA41789, 47585006F86B2C6016EC54250A416794792D1E4024FF229C120BC25B684AF66A ] FontCache3.0.0.0 c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
19:02:39.0562 0x089c  FontCache3.0.0.0 - ok
19:02:39.0937 0x089c  [ 26EABEEA7F30DCF21DA0577C4EE26FAA, 20C3CD2579ED6853249B1EAEF23DF2904779BA2E806D00C30F81EA9A1612AE0F ] FoxitCloudUpdateService C:\PROGRAMME\FOXIT SOFTWARE\FOXIT READER\Foxit Cloud\FCUpdateService.exe
19:02:40.0312 0x089c  FoxitCloudUpdateService - ok
19:02:40.0375 0x089c  [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A, EC635E071201A766845D48973772CBE0958942B4162F3F5F70660D114CC877E0 ] Fs_Rec          C:\WINDOWS\system32\drivers\Fs_Rec.sys
19:02:40.0750 0x089c  Fs_Rec - ok
19:02:40.0796 0x089c  [ 8F1955CE42E1484714B542F341647778, 8EB3F99625F409D3032561E8AB44BEFBFBFBA4EC873C2151C92A5CAAF7F2AA55 ] Ftdisk          C:\WINDOWS\system32\DRIVERS\ftdisk.sys
19:02:41.0265 0x089c  Ftdisk - ok
19:02:41.0609 0x089c  [ AE63D0DB96C07CAE5DC4CDB2B2A719A0, 1E38E4E350484E0942BE2AF61CDBBACC132C955FE3FA0C1485BDCA0C6283BA51 ] GeekBuddyRSP    C:\Programme\Gemeinsame Dateien\COMODO\GeekBuddyRSP.exe
19:02:42.0031 0x089c  GeekBuddyRSP - ok
19:02:42.0093 0x089c  [ 0A02C63C8B144BD8C86B103DEE7C86A2, 7A3235DD3E1995DD72B212FAEB3ECA2A974434DE9BF6D269EA11BA65A80E7E50 ] Gpc             C:\WINDOWS\system32\DRIVERS\msgpc.sys
19:02:42.0734 0x089c  Gpc - ok
19:02:42.0828 0x089c  [ E9CDEB631E63E83A7540CF6E81B5486B, 7CB2129168E27DE46B166B1C26975722E63D8AF772933664FCA5A8A335004117 ] GUBootStartup   C:\WINDOWS\System32\drivers\GUBootStartup.sys
19:02:42.0953 0x089c  GUBootStartup - ok
19:02:43.0031 0x089c  [ 573C7D0A32852B48F3058CFD8026F511, BC384BBA394AFDCDA1A9ABC858C692AA84A1F0A31AF3DDF7F38D120C027927FB ] HDAudBus        C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
19:02:43.0343 0x089c  HDAudBus - ok
19:02:43.0437 0x089c  [ CB66BF85BF599BEFD6C6A57C2E20357F, 55D3A0F9279FF316766F42548FCB61C452942B08A37590C4892DF110BE4E53C6 ] helpsvc         C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
19:02:44.0125 0x089c  helpsvc - ok
19:02:44.0140 0x089c  HidServ - ok
19:02:44.0187 0x089c  [ CCF82C5EC8A7326C3066DE870C06DAF1, 93395FA4C26B2E82DC8B7025ED3BCF583885E5D8C5F60CD6EEAA6335D6A126EC ] HidUsb          C:\WINDOWS\system32\DRIVERS\hidusb.sys
19:02:44.0609 0x089c  HidUsb - ok
19:02:44.0796 0x089c  [ ED29F14101523A6E0E808107405D452C, B8FA987637787BEECC2EB06D36293DAC355523392B49A8C5A9491EEE961917E9 ] hkmsvc          C:\WINDOWS\System32\kmsvc.dll
19:02:45.0406 0x089c  hkmsvc - ok
19:02:45.0421 0x089c  hpn - ok
19:02:45.0546 0x089c  [ F80A415EF82CD06FFAF0D971528EAD38, 524D9E9201572929522F6805011783711B7C0F76308B924C89CF75F4B7A1FDF3 ] HTTP            C:\WINDOWS\system32\Drivers\HTTP.sys
19:02:45.0750 0x089c  HTTP - ok
19:02:45.0796 0x089c  [ 9E4ADB854CEBCFB81A4B36718FEECD16, 677AB64460775686F8366D6BF35D420A2486C3F07338A00A7C2788A5142B9F08 ] HTTPFilter      C:\WINDOWS\System32\w3ssl.dll
19:02:46.0375 0x089c  HTTPFilter - ok
19:02:46.0375 0x089c  i2omgmt - ok
19:02:46.0390 0x089c  i2omp - ok
19:02:46.0500 0x089c  [ E283B97CFBEB86C1D86BAED5F7846A92, 7664F791D08C80DF1E52B34BE69F073AA645610C4BD975F498254807602374AB ] i8042prt        C:\WINDOWS\system32\DRIVERS\i8042prt.sys
19:02:46.0875 0x089c  i8042prt - ok
19:02:47.0765 0x089c  [ 0F68E2EC713F132FFB19E45415B09679, B1439A5D157F9FF54E803581D2B86411DB079242D837617021A4A0BC195E67BB ] ialm            C:\WINDOWS\system32\DRIVERS\igxpmp32.sys
19:02:49.0546 0x089c  ialm - ok
19:02:49.0671 0x089c  [ 707C1692214B1C290271067197F075F6, 7D0DB754604AABC4AA09AB8BA94326B1A1C2A76F3C2C2C7D6FA14F964BE68A51 ] iaStor          C:\WINDOWS\system32\drivers\iaStor.sys
19:02:49.0765 0x089c  iaStor - ok
19:02:50.0078 0x089c  [ C01AC32DC5C03076CFB852CB5DA5229C, A4D7749220B5BC965D96A267F1E02FE8284A230BA249109207BD4B9EA8DFAC96 ] idsvc           c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
19:02:50.0812 0x089c  idsvc - ok
19:02:51.0015 0x089c  [ 083A052659F5310DD8B6A6CB05EDCF8E, 48D39B03FFB6FAA1529B774443BA12618AE3982D9F65A7B9D18F2269F78B31F4 ] Imapi           C:\WINDOWS\system32\DRIVERS\imapi.sys
19:02:53.0109 0x089c  Imapi - ok
19:02:53.0312 0x089c  [ D4B413AA210C21E46AEDD2BA5B68D38E, 2309622867AA8FC832A729FA78F48742D4BD6CA0DAFBFB9DDB0772D671E1ED75 ] ImapiService    C:\WINDOWS\system32\imapi.exe
19:02:53.0890 0x089c  ImapiService - ok
19:02:53.0906 0x089c  ini910u - ok
19:02:53.0984 0x089c  [ E1DF634BEC066B3D4FFE437BCB78C282, 974278CA606DF7C0332997E4339EA2AFE017E04C596CE69F47FED798E57D52FB ] Inspect         C:\WINDOWS\system32\DRIVERS\inspect.sys
19:02:54.0140 0x089c  Inspect - ok
19:02:55.0562 0x089c  [ 053517D1BCADF00BEDB21FB7218C8F33, 633F19692C56C40F786C87A95E1D9B692420F6BD976753268FED378236FB0159 ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RtkHDAud.sys
19:02:57.0343 0x089c  IntcAzAudAddService - ok
19:02:57.0390 0x089c  IntelIde - ok
19:02:57.0468 0x089c  [ 4C7D2750158ED6E7AD642D97BFFAE351, C05E4799752F090DCB632F07F62ADE38D31534621064D269AD535CA0BDFED448 ] intelppm        C:\WINDOWS\system32\DRIVERS\intelppm.sys
19:02:57.0828 0x089c  intelppm - ok
19:02:57.0859 0x089c  [ 3BB22519A194418D5FEC05D800A19AD0, F6662F440950596DC1382DD1DB5D7891CCEA30A6062BEA942C18445B5F0D8B16 ] Ip6Fw           C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
19:02:58.0250 0x089c  Ip6Fw - ok
19:02:58.0281 0x089c  [ 731F22BA402EE4B62748ADAF6363C182, 5C3BEBD008A5BE4DC2F92076FF41A10DDC01E10EC7E6552213CFA11970811848 ] IpFilterDriver  C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
19:02:58.0718 0x089c  IpFilterDriver - ok
19:02:58.0828 0x089c  [ B87AB476DCF76E72010632B5550955F5, E6E74D3A86A7917A8BAED44F8E97CCD2EB171E4E4B27E9907F60D1523FAF319A ] IpInIp          C:\WINDOWS\system32\DRIVERS\ipinip.sys
19:02:59.0156 0x089c  IpInIp - ok
19:02:59.0218 0x089c  [ CC748EA12C6EFFDE940EE98098BF96BB, AF523E21C25D9A1715EFEA573E4F52AF5D4FC9F28A2D613F5DB629C186C439E0 ] IpNat           C:\WINDOWS\system32\DRIVERS\ipnat.sys
19:02:59.0625 0x089c  IpNat - ok
19:02:59.0687 0x089c  [ 23C74D75E36E7158768DD63D92789A91, 394D296F38E7D8EFD91A6EEC301D9CE6AF910E35EB9819F1A9E3363863AEDFDC ] IPSec           C:\WINDOWS\system32\DRIVERS\ipsec.sys
19:03:00.0296 0x089c  IPSec - ok
19:03:00.0390 0x089c  [ C93C9FF7B04D772627A3646D89F7BF89, 805FA48E7A46D4F10240BF880A2468F53DEA36E83004399228AB70DB7D20544A ] IRENUM          C:\WINDOWS\system32\DRIVERS\irenum.sys
19:03:00.0640 0x089c  IRENUM - ok
19:03:00.0765 0x089c  [ 6DFB88F64135C525433E87648BDA30DE, 8233EEFBEF36AAA152F2C55D23D7118F0DE40C9C22EB5D9793405A4770889540 ] isapnp          C:\WINDOWS\system32\DRIVERS\isapnp.sys
19:03:01.0328 0x089c  isapnp - ok
19:03:01.0390 0x089c  [ 1704D8C4C8807B889E43C649B478A452, E854C90CD301F42BE2520CEDAD35E49DF2D43606CF4EEED861B74882118D04D1 ] Kbdclass        C:\WINDOWS\system32\DRIVERS\kbdclass.sys
19:03:01.0890 0x089c  Kbdclass - ok
19:03:01.0953 0x089c  [ 692BCF44383D056AED41B045A323D378, 1A99DEE83FFAF64E73067FC049C0A4CE07D94E4AE31EFA17B38CEFA9E41D67DC ] kmixer          C:\WINDOWS\system32\drivers\kmixer.sys
19:03:02.0531 0x089c  kmixer - ok
19:03:02.0640 0x089c  [ B467646C54CC746128904E1654C750C1, 3BD71BE3663EA23463D236D8A2A2E42DFA10C502BDB4B6E131FAF0FBA748219E ] KSecDD          C:\WINDOWS\system32\drivers\KSecDD.sys
19:03:03.0500 0x089c  KSecDD - ok
19:03:03.0640 0x089c  [ 2BBDCB79900990F0716DFCB714E72DE7, 6283789201164A9254632D9A3C8A54FE697717D5F8D5A37804D924DC2B70C8E3 ] LanmanServer    C:\WINDOWS\System32\srvsvc.dll
19:03:04.0078 0x089c  LanmanServer - ok
19:03:04.0203 0x089c  [ 1869B14B06B44B44AF70548E1EA3303F, 4D63B4DAF580C86F86837C7D1753E2105B4C52E26D4CA0CAAFE83755EFF7AFBE ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
19:03:04.0531 0x089c  lanmanworkstation - ok
19:03:04.0546 0x089c  lbrtfdc - ok
19:03:04.0703 0x089c  [ 636714B7D43C8D0C80449123FD266920, F06F6C7DC49B26EFCAC3570C67BA9BD934F62C6F382DA4DD2AB302C7B970F414 ] LmHosts         C:\WINDOWS\System32\lmhsvc.dll
19:03:05.0250 0x089c  LmHosts - ok
19:03:05.0406 0x089c  [ B7550A7107281D170CE85524B1488C98, A3854B16A65436BEF6BEDE918B43B3BE8F00D303660DB5831DD376271DC43239 ] Messenger       C:\WINDOWS\System32\msgsvc.dll
19:03:05.0859 0x089c  Messenger - ok
19:03:05.0953 0x089c  [ 7E0506BF8148D74D2823E0A418E4AD31, 598BB22590D2ADE0FD6DCE3F1ADBF6FF5BEFA209368EF495E1E3A6A4F01EFA18 ] Micro Star SCM  C:\Programme\System Control Manager\MSIService.exe
19:03:06.0046 0x089c  Micro Star SCM - detected UnsignedFile.Multi.Generic ( 1 )
19:03:07.0640 0x089c  Detect skipped due to KSN trusted
19:03:07.0640 0x089c  Micro Star SCM - ok
19:03:07.0859 0x089c  [ 4AE068242760A1FB6E1A44BF4E16AFA6, 1FB771162B96AAF787AC24867B818DF8511F0780BB094FA9A38C11D8DBFE68BC ] mnmdd           C:\WINDOWS\system32\drivers\mnmdd.sys
19:03:08.0265 0x089c  mnmdd - ok
19:03:08.0312 0x089c  [ C2F1D365FD96791B037EE504868065D3, 87BD87E08FD00D115524B049F1A3A719AB86557D68968E7090CD0F271F985CAF ] mnmsrvc         C:\WINDOWS\system32\mnmsrvc.exe
19:03:08.0656 0x089c  mnmsrvc - ok
19:03:08.0765 0x089c  [ 6FB74EBD4EC57A6F1781DE3852CC3362, 0454509D9A31E0202C08AE17294E2682F227D177A3C73B303E4C8332757AFCA1 ] Modem           C:\WINDOWS\system32\drivers\Modem.sys
19:03:09.0187 0x089c  Modem - ok
19:03:09.0250 0x089c  [ B24CE8005DEAB254C0251E15CB71D802, 6804A8ABDAD5EC846E7F8077D1EE9BA45D6226ACFF42C70BE3DE7C8980EF9EC4 ] Mouclass        C:\WINDOWS\system32\DRIVERS\mouclass.sys
19:03:09.0843 0x089c  Mouclass - ok
19:03:09.0890 0x089c  [ 66A6F73C74E1791464160A7065CE711A, 3C570FA1E8EF976B83759220FE95BAC9D7D48D607F91B113EDE4790D34ACBD46 ] mouhid          C:\WINDOWS\system32\DRIVERS\mouhid.sys
19:03:11.0000 0x089c  mouhid - ok
19:03:11.0125 0x089c  [ A80B9A0BAD1B73637DBCBBA7DF72D3FD, 2A5E15ED2C24C6C65EF2F7E1FD93374774076C9D8D451E4422561F4D269C012F ] MountMgr        C:\WINDOWS\system32\drivers\MountMgr.sys
19:03:11.0593 0x089c  MountMgr - ok
19:03:11.0687 0x089c  [ CF4A82F6176A06F7B2F7FE98C8490566, 3E882902B269BA80366262C519B1A02E5C5FED67CDB73F5698B25FA540F4B50F ] MozillaMaintenance C:\Programme\Mozilla Maintenance Service\maintenanceservice.exe
19:03:12.0250 0x089c  MozillaMaintenance - ok
19:03:12.0265 0x089c  mraid35x - ok
19:03:12.0343 0x089c  [ 11D42BB6206F33FBB3BA0288D3EF81BD, 76ABCFB62C5AC549F58C231F72A99882CDEB74928104B77FE52554765C2B1A22 ] MRxDAV          C:\WINDOWS\system32\DRIVERS\mrxdav.sys
19:03:12.0781 0x089c  MRxDAV - ok
19:03:13.0140 0x089c  [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0, DB9B186F7076D7B94F45041AF7B77C1AD2CAB504D683B459C6CB1C22840ED170 ] MRxSmb          C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
19:03:14.0140 0x089c  MRxSmb - ok
19:03:14.0218 0x089c  [ 35A031AF38C55F92D28AA03EE9F12CC9, 97245D204C886EE8DCCC2DEAC80A0E358A7E0C1982F77389DA50DCF091FC9DDC ] MSDTC           C:\WINDOWS\system32\msdtc.exe
19:03:14.0796 0x089c  MSDTC - ok
19:03:15.0078 0x089c  [ C941EA2454BA8350021D774DAF0F1027, C940E978C7B66A713A0FDAB54B5F995DF59D089AFCD96221DD3222948CD49BBD ] Msfs            C:\WINDOWS\system32\drivers\Msfs.sys
19:03:15.0609 0x089c  Msfs - ok
19:03:15.0609 0x089c  MSIServer - ok
19:03:15.0656 0x089c  [ D1575E71568F4D9E14CA56B7B0453BF1, 4ABE0E24786C0D39FA2B885447E56204CA6942FB175E534DCE675D7BCF0B176A ] MSKSSRV         C:\WINDOWS\system32\drivers\MSKSSRV.sys
19:03:15.0921 0x089c  MSKSSRV - ok
19:03:15.0984 0x089c  [ 325BB26842FC7CCC1FCCE2C457317F3E, C07BE560513B1FB91D756494F0BA4AEEB2E1998DE0E1C21EE83DB1183B0CEE91 ] MSPCLOCK        C:\WINDOWS\system32\drivers\MSPCLOCK.sys
19:03:16.0500 0x089c  MSPCLOCK - ok
19:03:16.0562 0x089c  [ BAD59648BA099DA4A17680B39730CB3D, 9AD4C7C94C186C8815D0BC75DCAFB962158DA6935A244BA243EDDDEB33F9816C ] MSPQM           C:\WINDOWS\system32\drivers\MSPQM.sys
19:03:17.0031 0x089c  MSPQM - ok
19:03:17.0281 0x089c  [ AF5F4F3F14A8EA2C26DE30F7A1E17136, AC93A1E4ABB0D038B772E429015567E44CC2EDB66C54DBE23A5F98176FAC1520 ] mssmbios        C:\WINDOWS\system32\DRIVERS\mssmbios.sys
19:03:17.0796 0x089c  mssmbios - ok
19:03:17.0843 0x089c  [ E53736A9E30C45FA9E7B5EAC55056D1D, 38602F280BF69EBA3706AD175AFC1AEB561A8302B4B61E3FECB3C27D7A9BDB41 ] MSTEE           C:\WINDOWS\system32\drivers\MSTEE.sys
19:03:18.0265 0x089c  MSTEE - ok
19:03:18.0328 0x089c  [ DE6A75F5C270E756C5508D94B6CF68F5, FCC972DDC36C2C44D836913F10004C2C33B11C54DEFFF0C63E0FDF901D2F9261 ] Mup             C:\WINDOWS\system32\drivers\Mup.sys
19:03:18.0609 0x089c  Mup - ok
19:03:18.0671 0x089c  [ 5B50F1B2A2ED47D560577B221DA734DB, C16A554B6E1A7F5F98C94DFA88163E0F7426506BF2F51FD351B1A05FC0DB3BC5 ] NABTSFEC        C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
19:03:19.0093 0x089c  NABTSFEC - ok
19:03:19.0187 0x089c  [ 46BB15AE2AC7D025D6D2567B876817BD, 102A101B96D1078C98FA0F871C801A9A8538E20E5686AB0C7680B2F6C92B3165 ] napagent        C:\WINDOWS\System32\qagentrt.dll
19:03:19.0640 0x089c  napagent - ok
19:03:19.0734 0x089c  [ 1DF7F42665C94B825322FAE71721130D, FE0DCB728471465B39A42A7511F4133021FBA5DF88F88BCB5FE2FF34CFD713F9 ] NDIS            C:\WINDOWS\system32\drivers\NDIS.sys
19:03:20.0515 0x089c  NDIS - ok
19:03:20.0562 0x089c  [ 7FF1F1FD8609C149AA432F95A8163D97, 18CD1FF5AC1EF8A38D1EC53014F2BADD28D9CDF4ECE2EBC2313D08903776F323 ] NdisIP          C:\WINDOWS\system32\DRIVERS\NdisIP.sys
19:03:20.0968 0x089c  NdisIP - ok
19:03:21.0093 0x089c  [ 0109C4F3850DFBAB279542515386AE22, 4F6DB1E499AC853FD36FD603FBB6D3AC9BDCEB298C7FE1FB59A9236CB46729B2 ] NdisTapi        C:\WINDOWS\system32\DRIVERS\ndistapi.sys
19:03:21.0500 0x089c  NdisTapi - ok
19:03:21.0531 0x089c  [ F927A4434C5028758A842943EF1A3849, B1AA3AF150C05307461774925901789456B0CCCD03A5E71ADA4AB58455962BEE ] Ndisuio         C:\WINDOWS\system32\DRIVERS\ndisuio.sys
19:03:22.0015 0x089c  Ndisuio - ok
19:03:22.0062 0x089c  [ EDC1531A49C80614B2CFDA43CA8659AB, 494042F790F33721328B4451E79842E21919681CC421A4F9633EC4D383E06097 ] NdisWan         C:\WINDOWS\system32\DRIVERS\ndiswan.sys
19:03:22.0484 0x089c  NdisWan - ok
19:03:22.0562 0x089c  [ 2F597BB467E05B1FE3830EABD821B8E0, 141497F5A49D47CCE3C9289644F4BD838DCB238F6D8E847FC006652E21FE02AC ] NDProxy         C:\WINDOWS\system32\drivers\NDProxy.sys
19:03:22.0828 0x089c  NDProxy - ok
19:03:22.0890 0x089c  [ 5D81CF9A2F1A3A756B66CF684911CDF0, 7989C36607CAEA17AFA2C1C9904145CA0714A54B9F712D9D4C1AB140D0B2CC0C ] NetBIOS         C:\WINDOWS\system32\DRIVERS\netbios.sys
19:03:23.0453 0x089c  NetBIOS - ok
19:03:23.0546 0x089c  [ 74B2B2F5BEA5E9A3DC021D685551BD3D, 7932B71F98B4122BE88F576BF6D745A757AE378A48924B7F4358837B75640A82 ] NetBT           C:\WINDOWS\system32\DRIVERS\netbt.sys
19:03:23.0921 0x089c  NetBT - ok
19:03:24.0140 0x089c  [ 8ACE4251BFFD09CE75679FE940E996CC, 81969521B5EAEA09ECA63058BE9697BB69AF2596339CA9DF0CFEDC031DCFDC7E ] NetDDE          C:\WINDOWS\system32\netdde.exe
19:03:24.0656 0x089c  NetDDE - ok
19:03:24.0718 0x089c  [ 8ACE4251BFFD09CE75679FE940E996CC, 81969521B5EAEA09ECA63058BE9697BB69AF2596339CA9DF0CFEDC031DCFDC7E ] NetDDEdsdm      C:\WINDOWS\system32\netdde.exe
19:03:25.0000 0x089c  NetDDEdsdm - ok
19:03:25.0093 0x089c  [ AFB8261B56CBA0D86AEB6DF682AF9785, 104D96F1F19DD4CE492064ACC9634406A019EAE20B42D03198E400E661897127 ] Netlogon        C:\WINDOWS\system32\lsass.exe
19:03:25.0593 0x089c  Netlogon - ok
19:03:25.0718 0x089c  [ E6D88F1F6745BF00B57E7855A2AB696C, 12A5EDD853600FF5EBF91E127077745AE1E61E66DBC1D4D4306570F171AF4A39 ] Netman          C:\WINDOWS\System32\netman.dll
19:03:26.0328 0x089c  Netman - ok
19:03:26.0390 0x089c  [ D22CD77D4F0D63D1169BB35911BFF12D, 85B1FDFA02E1B8EA4FCB9B7EEB687C5C448697FC7EC9D178C5A2F64D2C9CFEE8 ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
19:03:26.0671 0x089c  NetTcpPortSharing - ok
19:03:26.0781 0x089c  [ F1B67B6B0751AE0E6E964B02821206A3, 3D5A7593ABDEE2047C5738671C85DC8B95A4ECF58D5D7B04EEE13A689839A540 ] Nla             C:\WINDOWS\System32\mswsock.dll
19:03:27.0171 0x089c  Nla - ok
19:03:27.0218 0x089c  [ A00877C05933FBA8AFB3390DD72D4679, 684D9642173C4BF4B752F259D5E89F16BC8B4B1608F1E6E176AA692A9775CE38 ] nmwcd           C:\WINDOWS\system32\drivers\ccdcmb.sys
19:03:28.0343 0x089c  nmwcd - ok
19:03:28.0437 0x089c  [ 9FF15F18E4E8758AC57BDB910D0238B3, F27C40BDD3818C54E1099AD525C7C19B424E0C4676DB366DE0E905CA3F82A310 ] nmwcdc          C:\WINDOWS\system32\drivers\ccdcmbo.sys
19:03:28.0718 0x089c  nmwcdc - ok
19:03:28.0984 0x089c  [ 3182D64AE053D6FB034F44B6DEF8034A, 4ADFC76965BA2A5F488E71789A4E4EA702A74AF42725F72130D1CA919406CF19 ] Npfs            C:\WINDOWS\system32\drivers\Npfs.sys
19:03:29.0453 0x089c  Npfs - ok
19:03:29.0750 0x089c  [ 78A08DD6A8D65E697C18E1DB01C5CDCA, E0E6F3ED05068E32F1D5C2D2B38CDEF4536B8656DB6756C66CF6B40B60C8F3DA ] Ntfs            C:\WINDOWS\system32\drivers\Ntfs.sys
19:03:30.0359 0x089c  Ntfs - ok
19:03:30.0515 0x089c  [ AFB8261B56CBA0D86AEB6DF682AF9785, 104D96F1F19DD4CE492064ACC9634406A019EAE20B42D03198E400E661897127 ] NtLmSsp         C:\WINDOWS\system32\lsass.exe
19:03:32.0984 0x089c  NtLmSsp - ok
19:03:33.0218 0x089c  [ 56AF4064996FA5BAC9C449B1514B4770, 154602EFEC22728503D4ABA025DF711B0F2CFC983F5E3BF25F2A4BCD1AE250EC ] NtmsSvc         C:\WINDOWS\system32\ntmssvc.dll
19:03:35.0312 0x089c  NtmsSvc - ok
19:03:35.0390 0x089c  [ 73C1E1F395918BC2C6DD67AF7591A3AD, B21133A75253EC15E2DFF66D3B480AB1A7E1A2360476C810E7AA55D0F0EB08D4 ] Null            C:\WINDOWS\system32\drivers\Null.sys
19:03:38.0281 0x089c  Null - ok
19:03:38.0343 0x089c  [ B305F3FAD35083837EF46A0BBCE2FC57, 9D0E0E666D652D0FC9EAB97280A5D67AAF61D6B21929DF7CF8ED72A367720464 ] NwlnkFlt        C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
19:03:42.0203 0x089c  NwlnkFlt - ok
19:03:42.0421 0x089c  [ C99B3415198D1AAB7227F2C88FD664B9, DD8DA4B5E804F134AB9233859544C025062902DFC3E8FB8A09A67337A4E73F55 ] NwlnkFwd        C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
19:03:44.0515 0x089c  NwlnkFwd - ok
19:03:44.0812 0x089c  [ F84785660305B9B903FB3BCA8BA29837, BDBDE61076800415D98759077E9E039C80B55DBE68E31F8BF44A909C6C3D3276 ] Parport         C:\WINDOWS\system32\drivers\Parport.sys
19:03:46.0718 0x089c  Parport - ok
19:03:46.0734 0x089c  [ BEB3BA25197665D82EC7065B724171C6, 7E71C13BA30CD95CEE8A9CC85E6F48A01F30EDEAADEE69D80AE828BF97E5A5CA ] PartMgr         C:\WINDOWS\system32\drivers\PartMgr.sys
19:03:49.0093 0x089c  PartMgr - ok
19:03:49.0500 0x089c  [ C2BF987829099A3EAA2CA6A0A90ECB4F, 1DF21EA8E43875CFEECD869407429F82FB449707CFB845718499468E699BAAAA ] ParVdm          C:\WINDOWS\system32\drivers\ParVdm.sys
19:03:50.0250 0x089c  ParVdm - ok
19:03:50.0500 0x089c  [ F451DCACBAA67F3307305EBD4A39EA07, C4435BF4C2D16F3DC0B35732BE3602FFA28DB0A5BC5576F45E0D32E5F4CD2DEA ] pccsmcfd        C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys
19:03:51.0250 0x089c  pccsmcfd - ok
19:03:51.0359 0x089c  [ 387E8DEDC343AA2D1EFBC30580273ACD, 5F3E642BDB759777E570ED5B22AC7E93CDCD362708F281657AD7BAB44EDEC802 ] PCI             C:\WINDOWS\system32\DRIVERS\pci.sys
19:03:52.0031 0x089c  PCI - ok
19:03:52.0031 0x089c  PCIDump - ok
19:03:52.0046 0x089c  PCIIde - ok
19:03:52.0078 0x089c  [ A2A966B77D61847D61A3051DF87C8C97, 6CED7CA26DC62B0AAFC83A2E07336DAD25954491201BB8E06103971F3F0B8B51 ] Pcmcia          C:\WINDOWS\system32\drivers\Pcmcia.sys
19:03:53.0828 0x089c  Pcmcia - ok
19:03:53.0859 0x089c  PDCOMP - ok
19:03:53.0875 0x089c  PDFRAME - ok
19:03:53.0890 0x089c  PDRELI - ok
19:03:53.0890 0x089c  PDRFRAME - ok
19:03:53.0906 0x089c  perc2 - ok
19:03:53.0921 0x089c  perc2hib - ok
19:03:54.0046 0x089c  [ A3EDBE9053889FB24AB22492472B39DC, 6F2ED6E04BDE2FCA2A8BF9BD2D1D6923DE6EAECB46F582B6C0BD1CF364D65C9E ] PlugPlay        C:\WINDOWS\system32\services.exe
19:03:55.0968 0x089c  PlugPlay - ok
19:03:56.0062 0x089c  [ AFB8261B56CBA0D86AEB6DF682AF9785, 104D96F1F19DD4CE492064ACC9634406A019EAE20B42D03198E400E661897127 ] PolicyAgent     C:\WINDOWS\system32\lsass.exe
19:03:57.0890 0x089c  PolicyAgent - ok
19:03:58.0015 0x089c  [ EFEEC01B1D3CF84F16DDD24D9D9D8F99, C5F0C8C66A3AF7E7BB04CEDE4AC5306F8387AB384A2107DC5BE413AAE968EFF1 ] PptpMiniport    C:\WINDOWS\system32\DRIVERS\raspptp.sys
19:03:58.0375 0x089c  PptpMiniport - ok
19:03:58.0390 0x089c  [ AFB8261B56CBA0D86AEB6DF682AF9785, 104D96F1F19DD4CE492064ACC9634406A019EAE20B42D03198E400E661897127 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
19:03:58.0671 0x089c  ProtectedStorage - ok
19:03:58.0875 0x089c  [ 09298EC810B07E5D582CB3A3F9255424, 35473A1BE25AC289474090EB0806AC6B3035DC33D1F3DF97A14BF1E361AC6AC3 ] PSched          C:\WINDOWS\system32\DRIVERS\psched.sys
19:03:59.0953 0x089c  PSched - ok
19:04:00.0000 0x089c  [ 80D317BD1C3DBC5D4FE7B1678C60CADD, DA76804B55D0CAB3DDD01EFC06673764AE4860693375C658B6063FB14AF7F12C ] Ptilink         C:\WINDOWS\system32\DRIVERS\ptilink.sys
19:04:00.0484 0x089c  Ptilink - ok
19:04:00.0703 0x089c  [ D86B4A68565E444D76457F14172C875A, 06B1CF81A62B3DAA8D0C5A8B88C56A504DE8E9278C520F754AF363A6676C58B0 ] PxHelp20        C:\WINDOWS\system32\Drivers\PxHelp20.sys
19:04:00.0968 0x089c  PxHelp20 - ok
19:04:00.0984 0x089c  ql1080 - ok
19:04:01.0000 0x089c  Ql10wnt - ok
19:04:01.0015 0x089c  ql12160 - ok
19:04:01.0015 0x089c  ql1240 - ok
19:04:01.0031 0x089c  ql1280 - ok
19:04:01.0484 0x089c  [ 583608EE65AABF971117A61AEE4BCAAE, 1FDE8D46BCD58CB476B3E86C025438995111003DAFB985CFE64138AEDC4B78CE ] RalinkRegistryWriter C:\Programme\Ralink\Common\RaRegistry.exe
19:04:01.0843 0x089c  RalinkRegistryWriter - ok
19:04:02.0125 0x089c  [ FE0D99D6F31E4FAD8159F690D68DED9C, 998685622ABE631984B7E4DBF91AB3594B1F574378D75EB9F6265F4650470692 ] RasAcd          C:\WINDOWS\system32\DRIVERS\rasacd.sys
19:04:03.0296 0x089c  RasAcd - ok
19:04:03.0390 0x089c  [ F5BA6CACCDB66C8F048E867563203246, AFEAD8FC02313F7EBC8F9F39E7ED2868852B480BE3902FA7BD0AFD81492AB243 ] RasAuto         C:\WINDOWS\System32\rasauto.dll
19:04:06.0281 0x089c  RasAuto - ok
19:04:06.0328 0x089c  [ 11B4A627BC9614B885C4969BFA5FF8A6, EAE0A412A2B0F68919C32A96B3A08CC1A06585E4998819F5C9051745F63FF5AD ] Rasl2tp         C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
19:04:07.0296 0x089c  Rasl2tp - ok
19:04:07.0421 0x089c  [ F9A7B66EA345726EDB5862A46B1ECCD5, 5D35429D394D36A1692A7E219BA1A85CD8096FEAE0F90BFE036A63118FEDBF57 ] RasMan          C:\WINDOWS\System32\rasmans.dll
19:04:08.0312 0x089c  RasMan - ok
19:04:08.0343 0x089c  [ 5BC962F2654137C9909C3D4603587DEE, A5CE5653D0105240F5E86CFAAB89E7917D42D939E2F27A5A7D6979289CA651B8 ] RasPppoe        C:\WINDOWS\system32\DRIVERS\raspppoe.sys
19:04:09.0265 0x089c  RasPppoe - ok
19:04:09.0390 0x089c  [ FDBB1D60066FCFBB7452FD8F9829B242, 10A2DACF944BD000032EBA8C095CB3D879CC55B28C377ADF6E52E508E47444DB ] Raspti          C:\WINDOWS\system32\DRIVERS\raspti.sys
19:04:10.0109 0x089c  Raspti - ok
19:04:10.0171 0x089c  [ 7AD224AD1A1437FE28D89CF22B17780A, 6645235CA27D671954E3557FA37082881C3D7D47492C71264CD8CB8D108EC801 ] Rdbss           C:\WINDOWS\system32\DRIVERS\rdbss.sys
19:04:10.0703 0x089c  Rdbss - ok
19:04:10.0781 0x089c  [ 4912D5B403614CE99C28420F75353332, 975341ECD660209987B5E5171B8315E032439E408CBE8A5986E67AF767F373BB ] RDPCDD          C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
19:04:11.0859 0x089c  RDPCDD - ok
19:04:11.0968 0x089c  [ 43AF5212BD8FB5BA6EED9754358BD8F7, AF330F61CECA4AFA359CEABC5EB3227E6B56A9A2DCE50701381D665122D7356D ] RDPWD           C:\WINDOWS\system32\drivers\RDPWD.sys
19:04:12.0968 0x089c  RDPWD - ok
19:04:13.0093 0x089c  [ 263AF18AF0F3DB99F574C95F284CCEC9, 2BFA9952E97EFEB386FC56EC2C125080CD12DAC078DBE43C395CB4D9F22165D3 ] RDSessMgr       C:\WINDOWS\system32\sessmgr.exe
19:04:13.0734 0x089c  RDSessMgr - ok
19:04:13.0968 0x089c  [ ED761D453856F795A7FE056E42C36365, EF026585B33415D8FCE94A9F27D7A4396C7C35C88E06A4CF0FEA702401E8597A ] redbook         C:\WINDOWS\system32\DRIVERS\redbook.sys
19:04:14.0843 0x089c  redbook - ok
19:04:15.0109 0x089c  [ 0E97EC96D6942CEEC2D188CC2EB69A01, D4253B4420BEF19451A55AB91E4834482181A31A31134F6E2AFE05C8E20C81A5 ] RemoteAccess    C:\WINDOWS\System32\mprdim.dll
19:04:16.0078 0x089c  RemoteAccess - ok
19:04:16.0109 0x089c  [ 851C30DF2807FCFA21E4C681A7D6440E, C2269B8ED4E831664B83F8F3BE33E5A340206A9E07F89CDF6707EAD8F280FBE9 ] RFCOMM          C:\WINDOWS\system32\DRIVERS\rfcomm.sys
19:04:16.0656 0x089c  RFCOMM - ok
19:04:17.0109 0x089c  [ 2A02E21867497DF20B8FC95631395169, D89E2D17ED4E1C727847C0E92D2DF68AEB70BF0B956BD2FE024ED70A961759D2 ] RpcLocator      C:\WINDOWS\system32\locator.exe
19:04:18.0171 0x089c  RpcLocator - ok
19:04:18.0281 0x089c  [ 3127AFBF2C1ED0AB14A1BBB7AAECB85B, ECFBACE3CBF2384948EA1C445BDA3955EB4F44A9874286E6537C67DC1283E5B0 ] RpcSs           C:\WINDOWS\System32\rpcss.dll
19:04:18.0656 0x089c  RpcSs - ok
19:04:18.0765 0x089c  [ A7557CAA7253DE02B40996EF9A478FAB, F47DC16A344AE4525ED41B69DE2D86AAEBE1068F2CFAB8DCEC8341EA590512FB ] RSUSBSTOR       C:\WINDOWS\system32\Drivers\RTS5121.sys
19:04:19.0515 0x089c  RSUSBSTOR - ok
19:04:19.0609 0x089c  [ 4BDD71B4B521521499DFD14735C4F398, 7B1498D3C67E56D05B58B7DA319ECB0117C37963AABB0E59B42831C087469DA1 ] RSVP            C:\WINDOWS\system32\rsvp.exe
19:04:20.0640 0x089c  RSVP - ok
19:04:20.0921 0x089c  [ 1AD20F7B8B608D36983305B283A8C31C, 8597FB4510BA9E62B27378C719C97F4B69E2482FB83B0888A0F3C176D3A9E1C7 ] rt2870          C:\WINDOWS\system32\DRIVERS\rt2870.sys
19:04:21.0968 0x089c  rt2870 - ok
19:04:22.0015 0x089c  [ 7174F20AD9B7B7878A51ECCA03C499C2, 5024E4424B8135D2BA13760CE7D56A25840FFFFC8FC32FF635D6A4BC38DCB28A ] RTLE8023xp      C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys
19:04:22.0593 0x089c  RTLE8023xp - ok
19:04:22.0609 0x089c  Rts516xIR - ok
19:04:22.0703 0x089c  [ AFB8261B56CBA0D86AEB6DF682AF9785, 104D96F1F19DD4CE492064ACC9634406A019EAE20B42D03198E400E661897127 ] SamSs           C:\WINDOWS\system32\lsass.exe
19:04:23.0109 0x089c  SamSs - ok
19:04:23.0234 0x089c  [ DCEC079FAD95D36C8DD5CB6D779DFE32, F8546552D939A225853A0CE4913701A93738DF02C999D16E141E9A828814BBC6 ] SCardSvr        C:\WINDOWS\System32\SCardSvr.exe
19:04:24.0312 0x089c  SCardSvr - ok
19:04:24.0484 0x089c  [ A050194A44D7FA8D7186ED2F4E8367AE, BCDF56D5A2F9E202DC67E7FE4BCC617BCC0BDFF2D221A621020068B17B2855BB ] Schedule        C:\WINDOWS\system32\schedsvc.dll
19:04:25.0281 0x089c  Schedule - ok
19:04:25.0421 0x089c  [ F34C06D1C706A6D9433570B087A18B02, 5A1B059458CD71FA9883C8E92F9300B86B79A6E6FBBC87431630DA43D1508319 ] Scutum50        C:\WINDOWS\system32\Drivers\Scutum50.sys
19:04:25.0546 0x089c  Scutum50 - detected UnsignedFile.Multi.Generic ( 1 )
19:04:26.0000 0x089c  Detect skipped due to KSN trusted
19:04:26.0000 0x089c  Scutum50 - ok
19:04:26.0218 0x089c  [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] Secdrv          C:\WINDOWS\system32\DRIVERS\secdrv.sys
19:04:27.0093 0x089c  Secdrv - ok
19:04:27.0437 0x089c  [ BEE4CFD1D48C23B44CF4B974B0B79B2B, DF3B02D713F8A4602BE75F004074D5DF79AFF2D58FF37110B2A6AC29F680758B ] seclogon        C:\WINDOWS\System32\seclogon.dll
19:04:34.0687 0x089c  seclogon - ok
19:04:35.0031 0x089c  [ 2AAC9B6ED9EDDFFB721D6452E34D67E3, 95D83F054A6610328D56E56CD948A6618C590231853E56FC20E7557DB61384A4 ] SENS            C:\WINDOWS\system32\sens.dll
19:04:35.0390 0x089c  SENS - ok
19:04:35.0578 0x089c  [ CF24EB4F0412C82BCD1F4F35A025E31D, B74CB094126F5C23F601C34D53B2DF5BE3E5918230AC9DCFCFFA8E66B3A0FA25 ] Serial          C:\WINDOWS\system32\drivers\Serial.sys
19:04:36.0921 0x089c  Serial - ok
19:04:37.0390 0x089c  [ 78F7BB9F4924BE164294C59B8C3FC096, 75051A6A8B0DBB16CD70855A408134270EEAF0C127BAAE5B592DB53BB87C085B ] ServiceLayer    C:\Programme\PC Connectivity Solution\ServiceLayer.exe
19:04:39.0125 0x089c  ServiceLayer - ok
19:04:39.0828 0x089c  [ 8E6B8C671615D126FDC553D1E2DE5562, CEEC0067514555D5CA489F50E3D7562FCA8DB8E952C3C878604C9277FC77959F ] Sfloppy         C:\WINDOWS\system32\drivers\Sfloppy.sys
19:04:49.0609 0x089c  Sfloppy - ok
19:04:50.0171 0x089c  [ CAD058D5F8B889A87CA3EB3CF624DCEF, A7CDCF44261D1F4D820927253EA8EBB63714B7BAFF8B08DE073507D9A7EEA5BB ] SharedAccess    C:\WINDOWS\System32\ipnathlp.dll
19:04:51.0359 0x089c  SharedAccess - ok
19:04:51.0640 0x089c  [ 2DB7D303C36DDD055215052F118E8E75, BE6E7BBE12A7A4EDF1F1C2935350603970C7426BBCA7A1A6644BB8999123AF17 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
19:04:54.0156 0x089c  ShellHWDetection - ok
19:04:54.0500 0x089c  Simbad - ok
19:04:55.0218 0x089c  [ 704B4F81729F676BBF034529FC334D82, 1E50DAF97836807A500284385D99272780A8B69CA88761250451060B207824F8 ] SkypeUpdate     C:\Programme\Skype\Updater\Updater.exe
19:04:56.0765 0x089c  SkypeUpdate - ok
19:04:57.0125 0x089c  [ 866D538EBE33709A5C9F5C62B73B7D14, BC94BEB7C17B4FCAC8B5D0D5006A203BC209E0504EECE149651D8691935696CD ] SLIP            C:\WINDOWS\system32\DRIVERS\SLIP.sys
19:05:02.0546 0x089c  SLIP - ok
19:05:02.0625 0x089c  Sparrow - ok
19:05:02.0718 0x089c  [ AB8B92451ECB048A4D1DE7C3FFCB4A9F, DD17733CBB370FCA08F0296704D7CBEACA3C8F76D0ABE4761C3B1FFDF7481D9E ] splitter        C:\WINDOWS\system32\drivers\splitter.sys
19:05:03.0187 0x089c  splitter - ok
19:05:03.0515 0x089c  [ 60784F891563FB1B767F70117FC2428F, E0B07F08E60FFBAD36C2E58180F4B2A16DCA47716044CBE0213DF7B74D742F1F ] Spooler         C:\WINDOWS\system32\spoolsv.exe
19:05:05.0812 0x089c  Spooler - ok
19:05:06.0031 0x089c  [ 50FA898F8C032796D3B1B9951BB5A90F, 1C86273EC19EB96D6DB9CE6670C00683B77C99C42CC2F7E75BC50872B93446B1 ] sr              C:\WINDOWS\system32\DRIVERS\sr.sys
19:05:07.0546 0x089c  sr - ok
19:05:07.0984 0x089c  [ FE77A85495065F3AD59C5C65B6C54182, EB4BAF992F961B2FD5D24BFCB6BCB2142BC32933139A818835FEAB190E4283BB ] srservice       C:\WINDOWS\system32\srsvc.dll
19:05:09.0125 0x089c  srservice - ok
19:05:09.0500 0x089c  [ 47DDFC2F003F7F9F0592C6874962A2E7, 17C643BD4EB09B5666FE41817DC785BE04A6E491CE79E8E5A702CDBD98E1BDD7 ] Srv             C:\WINDOWS\system32\DRIVERS\srv.sys
19:05:11.0156 0x089c  Srv - ok
19:05:11.0468 0x089c  [ 4DF5B05DFAEC29E13E1ED6F6EE12C500, 2971D7D45D6942D310D47DBD19B9680D2D29527E79B86133C72217FD29259465 ] SSDPSRV         C:\WINDOWS\System32\ssdpsrv.dll
19:05:12.0546 0x089c  SSDPSRV - ok
19:05:12.0640 0x089c  [ A36EE93698802CD899F98BFD553D8185, 224CFED921EA230FF8025D259E34968FD2C0FD34BB3A918FB4B9B8BA42BEA5D3 ] ssmdrv          C:\WINDOWS\system32\DRIVERS\ssmdrv.sys
19:05:12.0750 0x089c  ssmdrv - ok
19:05:13.0093 0x089c  [ BC2C5985611C5356B24AEB370953DED9, 15CBAB8166827DC098E2B16AB6F49A1441A4CB52AF3588F0AD964CAB596DFE10 ] stisvc          C:\WINDOWS\system32\wiaservc.dll
19:05:14.0265 0x089c  stisvc - ok
19:05:14.0343 0x089c  [ 77813007BA6265C4B6098187E6ED79D2, 93939120E803C46FBFD577C8FC2E6C7E71C0460E01D25CB29579490640AB50C7 ] streamip        C:\WINDOWS\system32\DRIVERS\StreamIP.sys
19:05:15.0687 0x089c  streamip - ok
19:05:15.0750 0x089c  [ 3941D127AEF12E93ADDF6FE6EE027E0F, EA1F0E32E1C5E90FA4AAC421DEBBE086512340758D3217A6334E886BCE638B51 ] swenum          C:\WINDOWS\system32\DRIVERS\swenum.sys
19:05:17.0265 0x089c  swenum - ok
19:05:17.0625 0x089c  [ 8CE882BCC6CF8A62F2B2323D95CB3D01, B408550A581F3DA222355964AFA4E976AD8471F0AA37573C42C4948AE5A23A3B ] swmidi          C:\WINDOWS\system32\drivers\swmidi.sys
19:05:18.0359 0x089c  swmidi - ok
19:05:18.0375 0x089c  SwPrv - ok
19:05:18.0390 0x089c  symc810 - ok
19:05:18.0406 0x089c  symc8xx - ok
19:05:18.0421 0x089c  sym_hi - ok
19:05:18.0437 0x089c  sym_u3 - ok
19:05:18.0609 0x089c  [ D7B9AD3ABD0F7F9F694D71F38B5C7B72, F712D36AF77EE2E0E8C1A20F825C06F8A23BD9D616563E9814EB4273E7787E6D ] SynTP           C:\WINDOWS\system32\DRIVERS\SynTP.sys
19:05:19.0203 0x089c  SynTP - ok
19:05:19.0312 0x089c  [ 8B83F3ED0F1688B4958F77CD6D2BF290, 546D3602183702B4F53E84413CFA2C933D64C8540378E54A8DCD148F3F36A2DA ] sysaudio        C:\WINDOWS\system32\drivers\sysaudio.sys
19:05:19.0875 0x089c  sysaudio - ok
19:05:20.0125 0x089c  [ 2903FFFA2523926D6219428040DCE6B9, 4F13181931B0499F6C3F08138054DBCD1F84CB9806999A9172B80DE79D446F62 ] SysmonLog       C:\WINDOWS\system32\smlogsvc.exe
19:05:20.0921 0x089c  SysmonLog - ok
19:05:21.0078 0x089c  [ 05903CAC4B98908D55EA5774775B382E, AC3666CBD894D737874A5998DC7F46A0A51A7B23B1835FC735B9AD503A2191CC ] TapiSrv         C:\WINDOWS\System32\tapisrv.dll
19:05:21.0859 0x089c  TapiSrv - ok
19:05:22.0671 0x089c  [ 9AEFA14BD6B182D61E3119FA5F436D3D, EA29E49434585409272E7901AF89771FE9D6E911A7DC44AB3C7020CFF8A44552 ] Tcpip           C:\WINDOWS\system32\DRIVERS\tcpip.sys
19:05:23.0953 0x089c  Tcpip - ok
19:05:24.0125 0x089c  [ 6471A66807F5E104E4885F5B67349397, F35CBFFB8BB235CCE30EF94A5273333900DD49FD506BF9D55D99A320B8A53A5A ] TDPIPE          C:\WINDOWS\system32\drivers\TDPIPE.sys
19:05:25.0046 0x089c  TDPIPE - ok
19:05:25.0156 0x089c  [ C56B6D0402371CF3700EB322EF3AAF61, 7743FA4C734BCE38EFB1CA69BC17364D8421E2CD172F856F7E38E7AE1EE93F2F ] TDTCP           C:\WINDOWS\system32\drivers\TDTCP.sys
19:05:26.0109 0x089c  TDTCP - ok
19:05:26.0296 0x089c  [ 88155247177638048422893737429D9E, B6D4E8691917946332C2208D01F8C8281978C1AD1E9951C5D99DF0D49AC34B3B ] TermDD          C:\WINDOWS\system32\DRIVERS\termdd.sys
19:05:27.0109 0x089c  TermDD - ok
19:05:27.0546 0x089c  [ B7DE02C863D8F5A005A7BF375375A6A4, 6DE05A7B28CA5A78D58536347FC47F15883EEDBEF487CEA0117CC280FC582DCC ] TermService     C:\WINDOWS\System32\termsrv.dll
19:05:28.0296 0x089c  TermService - ok
19:05:28.0421 0x089c  [ 2DB7D303C36DDD055215052F118E8E75, BE6E7BBE12A7A4EDF1F1C2935350603970C7426BBCA7A1A6644BB8999123AF17 ] Themes          C:\WINDOWS\System32\shsvcs.dll
19:05:28.0812 0x089c  Themes - ok
19:05:28.0843 0x089c  TosIde - ok
19:05:29.0000 0x089c  [ 626504572B175867F30F3215C04B3E2F, 47E87CE9BC666D5CB5953C5D497DC00A7CC28F8EC0A064B3E47700279C5C4B91 ] TrkWks          C:\WINDOWS\system32\trkwks.dll
19:05:29.0906 0x089c  TrkWks - ok
19:05:30.0062 0x089c  [ FAC6431BA75C6B68553D168D29F470F2, D8523004B01FC0407FAA09C31493D428320A577E754652EAAED90B5F55B57F22 ] truecrypt       C:\WINDOWS\system32\drivers\truecrypt.sys
19:05:32.0750 0x089c  truecrypt - ok
19:05:33.0593 0x089c  [ 5787B80C2E3C5E2F56C2A233D91FA2C9, 3774905CF77954DFCECDA5BCC7CDE3D0ED72712BFAAD85ADAE5246306447E46C ] Udfs            C:\WINDOWS\system32\drivers\Udfs.sys
19:05:35.0156 0x089c  Udfs - ok
19:05:35.0171 0x089c  ultra - ok
19:05:35.0593 0x089c  [ 402DDC88356B1BAC0EE3DD1580C76A31, 32A686595710336A6BFD54C03F552AE39439611662F84EF5D24193AE5665C6F3 ] Update          C:\WINDOWS\system32\DRIVERS\update.sys
19:05:36.0359 0x089c  Update - ok
19:05:36.0500 0x089c  [ 1DFD8975D8C89214B98D9387C1125B49, 0B6B268487C8E45E9B86BF4A0A9DB669E0E45D600DE3C82B63F9986CA9E01082 ] upnphost        C:\WINDOWS\System32\upnphost.dll
19:05:37.0125 0x089c  upnphost - ok
19:05:37.0187 0x089c  [ 8721F55D8BC9F89E3A63CEBDF5EF4FA3, C0C82480014B646709869A6A6FA2B71B993F9FCD8E2DB9E8F7D341C21EE169CF ] upperdev        C:\WINDOWS\system32\DRIVERS\usbser_lowerflt.sys
19:05:39.0671 0x089c  upperdev - ok
19:05:39.0734 0x089c  [ 9B11E6118958E63E1FEF129466E2BDA7, 97168BCE3F4A9BB9E6500F05E34851FB957B219C598944FADC28AC0011C0503B ] UPS             C:\WINDOWS\System32\ups.exe
19:05:41.0203 0x089c  UPS - ok
19:05:41.0234 0x089c  [ 1B611611C28D2DF25BC057D79C6F13FC, B0D86F63E44B40413BBAE6402CC088046CFAE082D41BBC2ED5A916293356B846 ] usbccgp         C:\WINDOWS\system32\DRIVERS\usbccgp.sys
19:05:42.0203 0x089c  usbccgp - ok
19:05:42.0234 0x089c  USBCCID - ok
19:05:42.0390 0x089c  [ 4BAC8DF07F1D8434FC640E677A62204E, 76C1351AF6752224BF59DEEE0F8665FE699F3DFD679F5BCD01C7D9383E6402A4 ] usbehci         C:\WINDOWS\system32\DRIVERS\usbehci.sys
19:05:43.0968 0x089c  usbehci - ok
19:05:44.0281 0x089c  [ 1AB3CDDE553B6E064D2E754EFE20285C, A99C4528C4227B1E96847614745AAFACD3C5F1BDFE435214DBF78740FFB300FE ] usbhub          C:\WINDOWS\system32\DRIVERS\usbhub.sys
19:05:45.0578 0x089c  usbhub - ok
19:05:45.0921 0x089c  [ A717C8721046828520C9EDF31288FC00, 1530BBE832EDBB0974AD89D723A03FF7A0094B368992D73C2C3E62A181DF1E0A ] usbprint        C:\WINDOWS\system32\DRIVERS\usbprint.sys
19:05:46.0906 0x089c  usbprint - ok
19:05:47.0250 0x089c  [ 84C44D720655A8AA475E57A9E764D675, 2D450199338A217FBD951317812A74223E8B477974C7634667E8896316C3FEA0 ] usbser          C:\WINDOWS\system32\drivers\usbser.sys
19:05:48.0031 0x089c  usbser - ok
19:05:48.0140 0x089c  [ 4E66C71D8D010BFB0DF1042D25E9CB0F, E581ED3557A06FEE7F35DF1C18C7D74FEFD1FC5E6CDAD6692F66F4A033830F1C ] UsbserFilt      C:\WINDOWS\system32\DRIVERS\usbser_lowerfltj.sys
19:05:49.0265 0x089c  UsbserFilt - ok
19:05:49.0484 0x089c  [ A32426D9B14A089EAA1D922E0C5801A9, ED1DC52EE45F8EAD3AEC4B1F817BB25634141CF48295494C5947DCE6CF7A9817 ] usbstor         C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
19:05:54.0062 0x089c  usbstor - ok
19:05:54.0171 0x089c  [ 26496F9DEE2D787FC3E61AD54821FFE6, 8BE7FF647470B9A951CBB478FAF83D657A15CC78037F42348A6B738F21D523DA ] usbuhci         C:\WINDOWS\system32\DRIVERS\usbuhci.sys
19:05:55.0906 0x089c  usbuhci - ok
19:05:55.0968 0x089c  [ 813236B1183CFCF289E367BD5DE6E29E, 167FE18A96F330AEEC1A4C419770C15EFEB536D43838285E51E7A62E95DF4674 ] usbvideo        C:\WINDOWS\system32\Drivers\usbvideo.sys
19:05:56.0984 0x089c  usbvideo - ok
19:05:57.0937 0x089c  [ 0D3A8FAFCEACD8B7625CD549757A7DF1, B9CFDEFCD66AA139F3DC2F967B184669532922563AD5A71769BABDC4370D065E ] VgaSave         C:\WINDOWS\System32\drivers\vga.sys
19:06:01.0062 0x089c  VgaSave - ok
19:06:01.0140 0x089c  ViaIde - ok
19:06:01.0328 0x089c  [ A5A712F4E880874A477AF790B5186E1D, FE885ED04C3EAFC379787F836738A2769E43D07CF52DD917D90C38E001957A5E ] VolSnap         C:\WINDOWS\system32\drivers\VolSnap.sys
19:06:02.0109 0x089c  VolSnap - ok
19:06:02.0250 0x089c  [ 68F106273BE29E7B7EF8266977268E78, 1488AB7A654EBC94C73E1D494067189ACB95BC233980110CAC4C0297CDC4115A ] VSS             C:\WINDOWS\System32\vssvc.exe
19:06:09.0437 0x089c  VSS - ok
19:06:09.0593 0x089c  [ 7B353059E665F8B7AD2BBEAEF597CF45, 84A4311F18A4B8DCB364741DEA7D18E2363F19564B2EF25214965DC729527068 ] W32Time         C:\WINDOWS\system32\w32time.dll
19:06:11.0500 0x089c  W32Time - ok
19:06:11.0640 0x089c  [ E20B95BAEDB550F32DD489265C1DA1F6, 5589B2067E6C9FBA290D8C5EADDC198EBAF39C50C3CD7D2BC5CDA7CBFBC445E5 ] Wanarp          C:\WINDOWS\system32\DRIVERS\wanarp.sys
19:06:13.0187 0x089c  Wanarp - ok
19:06:13.0484 0x089c  [ D6EFAF429FD30C5DF613D220E344CCE7, 807D4563E8AD4073688691078EB13AF240E14BA5E0C8506A48B3060A20B90082 ] WDC_SAM         C:\WINDOWS\system32\DRIVERS\wdcsam.sys
19:06:15.0812 0x089c  WDC_SAM - ok
19:06:16.0328 0x089c  [ D918617B46457B9AC28027722E30F647, 407284D3055DC11944D4EE7E4357E7CF9CAF8CA40CA50633AB6FD4A82CB7EEA6 ] Wdf01000        C:\WINDOWS\system32\Drivers\wdf01000.sys
19:06:18.0031 0x089c  Wdf01000 - ok
19:06:18.0062 0x089c  WDICA - ok
19:06:18.0140 0x089c  [ 6768ACF64B18196494413695F0C3A00F, 3A8F8586F1D997D19A8478345338D2AECD785AEABDB61531DD3F92003D3230A5 ] wdmaud          C:\WINDOWS\system32\drivers\wdmaud.sys
19:06:19.0750 0x089c  wdmaud - ok
19:06:20.0531 0x089c  [ 81727C9873E3905A2FFC1EBD07265002, 6AC2383A1DCBB7FA3DB90FBB874C8E1819F5B7492717FF41E303EFC7BF72F93E ] WebClient       C:\WINDOWS\System32\webclnt.dll
19:06:21.0531 0x089c  WebClient - ok
19:06:21.0843 0x089c  [ 6F3F3973D97714CC5F906A19FE883729, 7817118BE94D0F6FAE0F9CE48AD70FFE0AEF886CCE09C666768FAB61047F992F ] winmgmt         C:\WINDOWS\system32\wbem\WMIsvc.dll
19:06:22.0734 0x089c  winmgmt - ok
19:06:22.0875 0x089c  [ C51B4A5C05A5475708E3C81C7765B71D, F776D2680BD3407307B7072626F78460361FC5BC38623C9E16F394D300AB25DE ] WmdmPmSN        C:\WINDOWS\system32\MsPMSNSv.dll
19:06:23.0718 0x089c  WmdmPmSN - ok
19:06:24.0093 0x089c  [ C42584FD66CE9E17403AEBCA199F7BDB, E3F2E1066F36AE5D33D4482239B2E556BE0C137923C9A120DFB36EC82F2E77B0 ] WmiAcpi         C:\WINDOWS\system32\DRIVERS\wmiacpi.sys
19:06:25.0203 0x089c  WmiAcpi - ok
19:06:25.0296 0x089c  [ 93908111BA57A6E60EC2FA2DE202105C, F395F25F18D15C6B9FEDB45FD31E10295FFE5517E2BC86ACAC11904EA0664BE2 ] WmiApSrv        C:\WINDOWS\system32\wbem\wmiapsrv.exe
19:06:26.0500 0x089c  WmiApSrv - ok
19:06:26.0921 0x089c  [ BF05650BB7DF5E9EBDD25974E22403BB, AF173D89B768CFC7AB03DFADD4F049CAC40AC59A0C9208AF5AB92CB368983077 ] WMPNetworkSvc   C:\Programme\Windows Media Player\WMPNetwk.exe
19:06:28.0546 0x089c  WMPNetworkSvc - ok
19:06:28.0656 0x089c  [ CF4DEF1BF66F06964DC0D91844239104, CC1D9CECE2056D29A9651D51BB57C3F4F9BF9E90A4808CF7496C683C874FBD51 ] WpdUsb          C:\WINDOWS\system32\DRIVERS\wpdusb.sys
19:06:29.0046 0x089c  WpdUsb - ok
19:06:29.0359 0x089c  [ 15673BD0B86150CB8E27766059C72A9B, 56C23289A8BFF4945EE532CF6D62D3EC81B827CA15A359F30A327789F9FE9CAF ] WPFFontCache_v0400 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
19:06:31.0578 0x089c  WPFFontCache_v0400 - ok
19:06:31.0734 0x089c  [ 6ABE6E225ADB5A751622A9CC3BC19CE8, 4061C5D0F051DFF1730E2A3BFC1CCA97B29602FC50F10F6B44D93B0D28F42024 ] WS2IFSL         C:\WINDOWS\System32\drivers\ws2ifsl.sys
19:06:33.0015 0x089c  WS2IFSL - ok
19:06:33.0125 0x089c  [ 300B3E84FAF1A5C1F791C159BA28035D, 0194856BDF94C1F274AF70AD558290ACDACDDEA331BD66FEB8E167ABD1E36786 ] wscsvc          C:\WINDOWS\system32\wscsvc.dll
19:06:34.0656 0x089c  wscsvc - ok
19:06:34.0843 0x089c  [ 43F767D59BFC25D8F4FC2EB42043EC1E, 9DC502AE199A93FD8492F7AEC41F0578AD8C75E91AE7A083BC37224243A4DCDE ] WSIMD           C:\WINDOWS\system32\DRIVERS\wsimd.sys
19:06:35.0390 0x089c  WSIMD - detected UnsignedFile.Multi.Generic ( 1 )
19:06:35.0984 0x089c  Detect skipped due to KSN trusted
19:06:35.0984 0x089c  WSIMD - ok
19:06:36.0140 0x089c  [ C98B39829C2BBD34E454150633C62C78, 71B60EA3AD0E2637917D528C6A9E7ECF2949E3E5E91036AA5BBADA95BD725511 ] WSTCODEC        C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
19:06:36.0968 0x089c  WSTCODEC - ok
19:06:37.0265 0x089c  [ 7B4FE05202AA6BF9F4DFD0E6A0D8A085, A1DB8909FA73337DB613D01824945485186654364A4DF129B8CB913CF87D1D2E ] wuauserv        C:\WINDOWS\system32\wuauserv.dll
19:06:38.0578 0x089c  wuauserv - ok
19:06:38.0718 0x089c  [ EAA6324F51214D2F6718977EC9CE0DEF, B9DE1521395E09233FE519873702979C3EAF65FEC4B94B12A46CECB16C488543 ] WudfPf          C:\WINDOWS\system32\DRIVERS\WudfPf.sys
19:06:38.0968 0x089c  WudfPf - ok
19:06:39.0046 0x089c  [ F91FF1E51FCA30B3C3981DB7D5924252, D7052B58F22638CA8B59C6FD7408D6D6DD1C33910912CACC05C133472CE0DDCE ] WudfRd          C:\WINDOWS\system32\DRIVERS\wudfrd.sys
19:06:39.0515 0x089c  WudfRd - ok
19:06:39.0625 0x089c  [ DDEE3682FE97037C45F4D7AB467CB8B6, D5A8F07AF4EDD9D7E17FEC6222D187E2981C177A479511E407756E0E5CB8D387 ] WudfSvc         C:\WINDOWS\System32\WUDFSvc.dll
19:06:39.0906 0x089c  WudfSvc - ok
19:06:40.0062 0x089c  [ C4F109C005F6725162D2D12CA751E4A7, AC996B44338328BDD4442FE48406F286A64526F0EC77BE00A19FA7FDB0407CFE ] WZCSVC          C:\WINDOWS\System32\wzcsvc.dll
19:06:40.0703 0x089c  WZCSVC - ok
19:06:40.0781 0x089c  [ 0ADA34871A2E1CD2CAAFED1237A47750, 45BEF8649078BD74C1A347B5F2D3A1958E5A7DCD6C6BA8A2E0CAD277A929C64E ] xmlprov         C:\WINDOWS\System32\xmlprov.dll
19:06:41.0390 0x089c  xmlprov - ok
19:06:41.0484 0x089c  ================ Scan global ===============================
19:06:41.0734 0x089c  [ 2C60091CA5F67C3032EAB3B30390C27F, 9E205C8E67F4B61FCFA2A82AA1968D522C3B6410D7075BE813F7F1564D61632E ] C:\WINDOWS\system32\basesrv.dll
19:06:41.0953 0x089c  [ E62178BC21EAC63A3B9A2DBD46C1B505, CAA5480CC4DAA37758F0CF445F865FD6F4630080B044EF2E606C2F62DAA4061A ] C:\WINDOWS\system32\winsrv.dll
19:06:42.0234 0x089c  [ E62178BC21EAC63A3B9A2DBD46C1B505, CAA5480CC4DAA37758F0CF445F865FD6F4630080B044EF2E606C2F62DAA4061A ] C:\WINDOWS\system32\winsrv.dll
19:06:42.0312 0x089c  [ A3EDBE9053889FB24AB22492472B39DC, 6F2ED6E04BDE2FCA2A8BF9BD2D1D6923DE6EAECB46F582B6C0BD1CF364D65C9E ] C:\WINDOWS\system32\services.exe
19:06:42.0328 0x089c  [ Global ] - ok
19:06:42.0328 0x089c  ================ Scan MBR ==================================
19:06:42.0359 0x089c  [ 69035F21489D7C5312386870E4AEF5AE ] \Device\Harddisk0\DR0
19:06:42.0796 0x089c  \Device\Harddisk0\DR0 - detected TDSS File System ( 1 )
19:06:42.0796 0x089c  \Device\Harddisk0\DR0 ( TDSS File System ) - warning
19:06:43.0109 0x089c  ================ Scan VBR ==================================
19:06:43.0125 0x089c  [ 605BC8AB08DB6AEBD9A626F06F3ACDD3 ] \Device\Harddisk0\DR0\Partition1
19:06:43.0125 0x089c  \Device\Harddisk0\DR0\Partition1 - ok
19:06:43.0125 0x089c  ================ Scan generic autorun ======================
19:06:46.0718 0x089c  [ 88A5D104AB29EC5BF3C74F608A6C2335, B3A641B1A6F9E7E2E333FDC586549C4E7096556996D86A69CFFA825BD8EB52E9 ] C:\WINDOWS\RTHDCPL.EXE
19:07:09.0812 0x089c  RTHDCPL - ok
19:07:17.0500 0x089c  [ 95B37A78DB9086680FB585D9112BBB0F, A53FFE68FE58150C6E109AEEBBE6E85C96422C7B0CD84077C4D801EEFE658ADB ] C:\Programme\System Control Manager\MGSysCtrl.exe
19:07:21.0453 0x089c  MGSysCtrl - detected UnsignedFile.Multi.Generic ( 1 )
19:07:24.0078 0x089c  MGSysCtrl ( UnsignedFile.Multi.Generic ) - warning
19:07:24.0125 0x089c  Force sending object to P2P due to detect: C:\Programme\System Control Manager\MGSysCtrl.exe
19:07:28.0656 0x089c  Object send P2P result: true
19:07:30.0546 0x089c  [ 61C23465F195FDF5AE5FE342E1692AC7, BD3628DCBB6AED97031D70BCA9BA8F7C8F0BCBD19EF93C2F126B14226C20BB6B ] C:\Programme\Synaptics\SynTP\SynTPEnh.exe
19:07:34.0421 0x089c  SynTPEnh - ok
19:07:35.0234 0x089c  [ 3E23D1F7E91627DBD44AC82077E2BA7C, 09235370B85EF5FEA24F1291B9ADAD805C8D7357A78EF8CE3BA0E913F59145EC ] C:\Programme\Avira\AntiVir Desktop\avgnt.exe
19:07:37.0968 0x089c  avgnt - ok
19:07:41.0546 0x089c  [ 30A0B072E647757CEDDA9E306D410410, 9B16173C973F6B494F35DBA3AD339C3964CD8B066F9D59E5BC9DCF27B526A1F1 ] C:\Programme\COMODO\COMODO Internet Security\cfp.exe
19:07:55.0296 0x089c  COMODO Internet Security - ok
19:07:57.0125 0x089c  [ 01B4E6E990B6C5EA8856D96C7FD044B2, 2266296FD3C8E0DFA657F21406EE4E494477870DFAF7C65BEBCB6FBA8CADC7C6 ] C:\WINDOWS\system32\ctfmon.exe
19:08:14.0687 0x089c  ctfmon.exe - ok
19:08:14.0843 0x089c  [ 01B4E6E990B6C5EA8856D96C7FD044B2, 2266296FD3C8E0DFA657F21406EE4E494477870DFAF7C65BEBCB6FBA8CADC7C6 ] C:\WINDOWS\system32\ctfmon.exe
19:08:28.0109 0x089c  CTFMON.EXE - ok
19:08:28.0250 0x089c  BullGuard - ok
19:08:28.0515 0x089c  [ 43D083268A0919F3527A2837390BAF63, 58B62697B01B8C9396271A64424178691FA85D4625DAF2AC8DE7F06A64F64C2A ] C:\Programme\Gemeinsame Dateien\InstallShield\UpdateService\ISUSPM.exe
19:08:51.0390 0x089c  ISUSPM - ok
19:08:51.0437 0x089c  Waiting for KSN requests completion. In queue: 1
19:08:52.0437 0x089c  Waiting for KSN requests completion. In queue: 1
19:08:53.0531 0x089c  Waiting for KSN requests completion. In queue: 1
19:08:54.0531 0x089c  Waiting for KSN requests completion. In queue: 1
19:09:01.0796 0x089c  AV detected via SS1: Avira Antivirus, 15.0.9.460, enabled, updated
19:09:01.0843 0x089c  FW detected via SS1: COMODO Firewall, 3.9, enabled
19:09:02.0359 0x089c  ============================================================
19:09:02.0359 0x089c  Scan finished
19:09:02.0359 0x089c  ============================================================
19:09:02.0796 0x090c  Detected object count: 2
19:09:02.0796 0x090c  Actual detected object count: 2
19:09:11.0531 0x090c  \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
19:09:11.0531 0x090c  \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip 
19:09:11.0531 0x090c  MGSysCtrl ( UnsignedFile.Multi.Generic ) - skipped by user
19:09:11.0531 0x090c  MGSysCtrl ( UnsignedFile.Multi.Generic ) - User select action: Skip

tja scheinbar trotz neustart noch immer da

schrauber · 04.05.2015, 11:43

Dann bitte Delete wählen.

Eisbaer27 · 05.05.2015, 16:23

Code:

ATTFilter

19:01:14.0437 0x0b18  TDSS rootkit removing tool 3.0.0.44 Jan 22 2015 08:27:04
19:01:17.0640 0x0b18  ============================================================
19:01:17.0640 0x0b18  Current date / time: 2015/05/03 19:01:17.0640
19:01:17.0640 0x0b18  SystemInfo:
19:01:17.0640 0x0b18  
19:01:17.0640 0x0b18  OS Version: 5.1.2600 ServicePack: 3.0
19:01:17.0640 0x0b18  Product type: Workstation
19:01:17.0640 0x0b18  ComputerName: LAPPI
19:01:17.0640 0x0b18  UserName: Lurchi
19:01:17.0640 0x0b18  Windows directory: C:\WINDOWS
19:01:17.0640 0x0b18  System windows directory: C:\WINDOWS
19:01:17.0640 0x0b18  Processor architecture: Intel x86
19:01:17.0640 0x0b18  Number of processors: 2
19:01:17.0640 0x0b18  Page size: 0x1000
19:01:17.0640 0x0b18  Boot type: Normal boot
19:01:17.0656 0x0b18  ============================================================
19:01:25.0531 0x0b18  KLMD registered as C:\WINDOWS\system32\drivers\66214325.sys
19:01:26.0718 0x0b18  System UUID: {56179B87-2EED-E327-0996-09B5BAE3F333}
19:01:30.0093 0x0b18  Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 ( 149.05 Gb ), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
19:01:30.0093 0x0b18  ============================================================
19:01:30.0093 0x0b18  \Device\Harddisk0\DR0:
19:01:30.0093 0x0b18  MBR partitions:
19:01:30.0093 0x0b18  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x11B345B6
19:01:30.0093 0x0b18  ============================================================
19:01:30.0156 0x0b18  C: <-> \Device\Harddisk0\DR0\Partition1
19:01:30.0171 0x0b18  ============================================================
19:01:30.0171 0x0b18  Initialize success
19:01:30.0171 0x0b18  ============================================================
19:01:40.0531 0x089c  ============================================================
19:01:40.0531 0x089c  Scan started
19:01:40.0531 0x089c  Mode: Manual; SigCheck; TDLFS; 
19:01:40.0531 0x089c  ============================================================
19:01:40.0531 0x089c  KSN ping started
19:01:43.0109 0x089c  KSN ping finished: true
19:01:45.0234 0x089c  ================ Scan system memory ========================
19:01:45.0234 0x089c  System memory - ok
19:01:45.0250 0x089c  ================ Scan services =============================
19:01:45.0703 0x089c  Abiosdsk - ok
19:01:45.0734 0x089c  abp480n5 - ok
19:01:45.0796 0x089c  [ 0A1E97197609F92D2425B67DA0BB0A7F, 818FD957C6EA1869ED13EA8C0681D2850141E22A68A2D982E4AEEA2736F50555 ] ACEDRV05        C:\WINDOWS\system32\drivers\ACEDRV05.sys
19:01:49.0859 0x089c  ACEDRV05 - detected UnsignedFile.Multi.Generic ( 1 )
19:01:50.0359 0x089c  Detect skipped due to KSN trusted
19:01:50.0359 0x089c  ACEDRV05 - ok
19:01:50.0468 0x089c  [ AC407F1A62C3A300B4F2B5A9F1D55B2C, 31F5FC61B37E22100B3A52A590295A7E827FFC581FA9960C64B9032452AAECED ] ACPI            C:\WINDOWS\system32\DRIVERS\ACPI.sys
19:01:52.0671 0x089c  ACPI - ok
19:01:52.0843 0x089c  [ 9E1CA3160DAFB159CA14F83B1E317F75, 13B3E897B0E819BF734449416D9EC6EBCAC89538EC69BF48C068593B82D57004 ] ACPIEC          C:\WINDOWS\system32\DRIVERS\ACPIEC.sys
19:01:53.0218 0x089c  ACPIEC - ok
19:01:53.0343 0x089c  [ B04A4810C6CC205F9DC72DC22E4AB236, 547321F5C28C80D4818372D65E2A33D4BAC593015DD6613B24586FE4B4A95D5D ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
19:01:53.0484 0x089c  AdobeFlashPlayerUpdateSvc - ok
19:01:53.0500 0x089c  adpu160m - ok
19:01:53.0656 0x089c  [ 8BED39E3C35D6A489438B8141717A557, 1B5796E56B0927360CE0759641B1151828BC0A9E45620D2B2D880491F5CE33D0 ] aec             C:\WINDOWS\system32\drivers\aec.sys
19:01:54.0140 0x089c  aec - ok
19:01:54.0218 0x089c  [ 30BB1BDE595CA65FD5549462080D94E5, 04BAFCC9445F82A2CAA9852F1B35ECBD18CDD6333E73F6861704E96D740A7C79 ] AegisP          C:\WINDOWS\system32\DRIVERS\AegisP.sys
19:01:54.0390 0x089c  AegisP - detected UnsignedFile.Multi.Generic ( 1 )
19:01:57.0875 0x089c  Detect skipped due to KSN trusted
19:01:57.0890 0x089c  AegisP - ok
19:01:57.0984 0x089c  [ 1E44BC1E83D8FD2305F8D452DB109CF9, CF5EC07E0B589FA2A4701C6CFD69E893FC3ABF274AD57AE3C13FFE49063B02C8 ] AFD             C:\WINDOWS\System32\drivers\afd.sys
19:01:58.0375 0x089c  AFD - ok
19:01:58.0390 0x089c  Aha154x - ok
19:01:58.0421 0x089c  aic78u2 - ok
19:01:58.0468 0x089c  aic78xx - ok
19:01:58.0546 0x089c  [ 738D80CC01D7BC7584BE917B7F544394, DCC17AAEF5CDDF52FAAC3CC6904EF421CD595F66318A2370BEE261D5C3A8E340 ] Alerter         C:\WINDOWS\system32\alrsvc.dll
19:01:59.0015 0x089c  Alerter - ok
19:01:59.0078 0x089c  [ 190CD73D4984F94D823F9444980513E5, 93A32C2495CCA094F768BA707C74DA5C00B8A88A9236DD1A297439A7C2E6C6FA ] ALG             C:\WINDOWS\System32\alg.exe
19:01:59.0343 0x089c  ALG - ok
19:01:59.0343 0x089c  AliIde - ok
19:01:59.0359 0x089c  amsint - ok
19:01:59.0859 0x089c  [ 6A7BE5D0E66B8121E60EFAD57EB04963, 96EC128BC06E7ED7485D52DD52F8A71FEBD9633415DD8486BDBCC499ED32A0F8 ] AntiVirMailService C:\Programme\Avira\AntiVir Desktop\avmailc.exe
19:02:00.0765 0x089c  AntiVirMailService - ok
19:02:00.0953 0x089c  [ F36D18EF1E66F92094AD89D17BEF007C, A5C793B340311CB7A301B77316E1976E3CD7CA9470CE5F1062CB003BCD4C155C ] AntiVirSchedulerService C:\Programme\Avira\AntiVir Desktop\sched.exe
19:02:01.0250 0x089c  AntiVirSchedulerService - ok
19:02:01.0421 0x089c  [ F36D18EF1E66F92094AD89D17BEF007C, A5C793B340311CB7A301B77316E1976E3CD7CA9470CE5F1062CB003BCD4C155C ] AntiVirService  C:\Programme\Avira\AntiVir Desktop\avguard.exe
19:02:01.0578 0x089c  AntiVirService - ok
19:02:01.0593 0x089c  AppMgmt - ok
19:02:01.0937 0x089c  [ 6C21F270AFEC1E423C00E96D3BD234DC, 8DA4ABDD83AECCFD87535AF3C9E3613CBFC4EE14967A551196E7B77F80858E65 ] AR5416          C:\WINDOWS\system32\DRIVERS\athw.sys
19:02:02.0593 0x089c  AR5416 - ok
19:02:02.0609 0x089c  asc - ok
19:02:02.0625 0x089c  asc3350p - ok
19:02:02.0640 0x089c  asc3550 - ok
19:02:02.0953 0x089c  [ 776ACEFA0CA9DF0FAA51A5FB2F435705, 72DF7ED6B085BC468994F5B3189506FD726A9A17A9C42ACA1E420D787691361D ] aspnet_state    C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
19:02:03.0390 0x089c  aspnet_state - ok
19:02:03.0515 0x089c  [ B153AFFAC761E7F5FCFA822B9C4E97BC, 7E60F572A6B3C6219E3C86225AA37243AFFD74337DB7F108B04778042E5CC959 ] AsyncMac        C:\WINDOWS\system32\DRIVERS\asyncmac.sys
19:02:03.0890 0x089c  AsyncMac - ok
19:02:03.0937 0x089c  [ 9F3A2F5AA6875C72BF062C712CFA2674, B4DF1D2C56A593C6B54DE57395E3B51D288F547842893B32B0F59228A0CF70B9 ] atapi           C:\WINDOWS\system32\drivers\atapi.sys
19:02:04.0578 0x089c  atapi - ok
19:02:04.0593 0x089c  Atdisk - ok
19:02:04.0656 0x089c  [ 9916C1225104BA14794209CFA8012159, 5D6F05F715C52A16D05CAE15C3DFE77A139A7F27F7AE710EC9A10F9EE05115A1 ] Atmarpc         C:\WINDOWS\system32\DRIVERS\atmarpc.sys
19:02:05.0046 0x089c  Atmarpc - ok
19:02:05.0203 0x089c  [ 58ED0D5452DF7BE732193E7999C6B9A4, 254E2ECF592DDA2E3E6CA9F6F3E77926E2265586A7937BA95199ED47BCDE69A3 ] AudioSrv        C:\WINDOWS\System32\audiosrv.dll
19:02:05.0687 0x089c  AudioSrv - ok
19:02:05.0781 0x089c  [ D9F724AA26C010A217C97606B160ED68, 329B5118F2409731D06FDAE85B6ADD64A048292801BCB3546651CEB303111695 ] audstub         C:\WINDOWS\system32\DRIVERS\audstub.sys
19:02:06.0390 0x089c  audstub - ok
19:02:06.0515 0x089c  [ AF5DA81B19AFA730F1E5246AD81D140A, 532951071F56896A3B5D47874C14D996C8620EA02F87D4BA21B083EC804FB166 ] avgntflt        C:\WINDOWS\system32\DRIVERS\avgntflt.sys
19:02:06.0859 0x089c  avgntflt - ok
19:02:06.0953 0x089c  [ A5674637BCA212D9FE136ADFA04C9857, 95F3632EBB041C539816D285EBE1F379D46A4187379C69D4683D9F4DECBDB80C ] avipbb          C:\WINDOWS\system32\DRIVERS\avipbb.sys
19:02:07.0218 0x089c  avipbb - ok
19:02:07.0312 0x089c  [ D8C712305F73CD34D1B344810E522728, 49A474FF6CA44E8427D7A8290B47395125B0148AF384CF2B3B1FA495A4718CBA ] avkmgr          C:\WINDOWS\system32\DRIVERS\avkmgr.sys
19:02:07.0593 0x089c  avkmgr - ok
19:02:07.0687 0x089c  [ DA1F27D85E0D1525F6621372E7B685E9, 5A81A46A3BDD19DAFC6C87D277267A5D44F3A1B5302F2CC1111D84B7BAD5610D ] Beep            C:\WINDOWS\system32\drivers\Beep.sys
19:02:08.0453 0x089c  Beep - ok
19:02:08.0578 0x089c  [ D6F603772A789BB3228F310D650B8BD1, A539025C70FD998A9B8703DE05CAE5E99BC721D8852EA561EBC2DD20CB371D2E ] BITS            C:\WINDOWS\system32\qmgr.dll
19:02:09.0250 0x089c  BITS - ok
19:02:09.0421 0x089c  [ B900D52BD62B19F086EBA674911A9AEC, CFD61EBE60303B0E04973A14B4819819148F486BCC952E465BB830E46350D92C ] BMserDiag       C:\WINDOWS\system32\DRIVERS\BMserDiag.sys
19:02:09.0640 0x089c  BMserDiag - ok
19:02:09.0750 0x089c  [ B900D52BD62B19F086EBA674911A9AEC, CFD61EBE60303B0E04973A14B4819819148F486BCC952E465BB830E46350D92C ] BMserNmea       C:\WINDOWS\system32\DRIVERS\BMserNmea.sys
19:02:09.0859 0x089c  BMserNmea - ok
19:02:09.0906 0x089c  [ B900D52BD62B19F086EBA674911A9AEC, CFD61EBE60303B0E04973A14B4819819148F486BCC952E465BB830E46350D92C ] BMusbmdm        C:\WINDOWS\system32\DRIVERS\BMusbmdm.sys
19:02:10.0125 0x089c  BMusbmdm - ok
19:02:10.0234 0x089c  [ 3B77514728BA0BFE4143FC3A2780B289, 07D8131F5A90798F44566CD21E33314E41F94FEF7303913EB0B54E0AB7EFC0D9 ] BootDefragDriver C:\WINDOWS\system32\drivers\BootDefragDriver.sys
19:02:10.0453 0x089c  BootDefragDriver - ok
19:02:10.0546 0x089c  [ B71549F23736ADF83A571061C47777FD, A1D0320736EE777030A543DCA086367EB5A5B6F95088B9C22D8E09326C3A39A9 ] Browser         C:\WINDOWS\System32\browser.dll
19:02:10.0859 0x089c  Browser - ok
19:02:10.0937 0x089c  [ B279426E3C0C344893ED78A613A73BDE, 30B29ED5DCFF0C180B806A5FBC705E1CAF6B0F525298CDA79A77FC2AF6E5AAA7 ] BthEnum         C:\WINDOWS\system32\DRIVERS\BthEnum.sys
19:02:11.0656 0x089c  BthEnum - ok
19:02:11.0734 0x089c  [ FCA6F069597B62D42495191ACE3FC6C1, 23A4EAA542547AC48BCB19DEC9C8E1C1D7D83F199F045DA4682C33292F011CE9 ] BTHMODEM        C:\WINDOWS\system32\DRIVERS\bthmodem.sys
19:02:12.0281 0x089c  BTHMODEM - ok
19:02:12.0343 0x089c  [ 80602B8746D3738F5886CE3D67EF06B6, 15ABAA8106C42A4453763EEB92B291844580168C934088DB1E22B2065DC238E9 ] BthPan          C:\WINDOWS\system32\DRIVERS\bthpan.sys
19:02:12.0671 0x089c  BthPan - ok
19:02:12.0796 0x089c  [ 592E1CEDBE314D0EF184DC6F46141E76, D69106F90C56C1E67BA4B96D6766C6676B66D0E0DF8358DA4B75FEFF211AA23E ] BTHPORT         C:\WINDOWS\system32\Drivers\BTHport.sys
19:02:13.0156 0x089c  BTHPORT - ok
19:02:13.0218 0x089c  [ 26C601EF7525E31379744ABFC6F35A1B, 842626D3A00DDA959A4AB730C0D551244DCDA15AC291FD70CC7324571A6088EC ] BthServ         C:\WINDOWS\System32\bthserv.dll
19:02:13.0718 0x089c  BthServ - ok
19:02:13.0765 0x089c  [ 61364CD71EF63B0F038B7E9DF00F1EFA, FB44D02B4379A8AF7DD8B0B22B53888B758903700142BFE45A412709294CE88A ] BTHUSB          C:\WINDOWS\system32\Drivers\BTHUSB.sys
19:02:14.0187 0x089c  BTHUSB - ok
19:02:14.0218 0x089c  [ 90A673FC8E12A79AFBED2576F6A7AAF9, BDE7858A3457DB979FEDD8577FA6321BF72848E4A7BF9F173C78A6A10CBB3EBE ] cbidf2k         C:\WINDOWS\system32\drivers\cbidf2k.sys
19:02:14.0671 0x089c  cbidf2k - ok
19:02:14.0796 0x089c  [ 0BE5AEF125BE881C4F854C554F2B025C, 1770DD70B3F115A0EF460907DEDC1E4B7241C08615A98F194D61A49C3E2BAA54 ] CCDECODE        C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
19:02:15.0281 0x089c  CCDECODE - ok
19:02:15.0296 0x089c  cd20xrnt - ok
19:02:15.0328 0x089c  [ C1B486A7658353D33A10CC15211A873B, AA4DD9E7AAE5AAB1146B360B17001F975D2F29A1281CF7B13E7136480410F347 ] Cdaudio         C:\WINDOWS\system32\drivers\Cdaudio.sys
19:02:15.0796 0x089c  Cdaudio - ok
19:02:15.0906 0x089c  [ C885B02847F5D2FD45A24E219ED93B32, B26B2F8E3A831E2B65EB0C5195B0645CD50E22615CE79C9B0B391CD563B121DB ] Cdfs            C:\WINDOWS\system32\drivers\Cdfs.sys
19:02:16.0296 0x089c  Cdfs - ok
19:02:16.0328 0x089c  [ 1F4260CC5B42272D71F79E570A27A4FE, B51C2A3ED3C309953D0EA45869C8E464C10F2533DADE9E0286AF674979098D1D ] Cdrom           C:\WINDOWS\system32\DRIVERS\cdrom.sys
19:02:16.0781 0x089c  Cdrom - ok
19:02:16.0890 0x089c  [ 61305C679E5766A03A09C0E966939206, E85EC9D23C81A2F8C08B439FA34F43C475A26C38DF4B4B40758CFC0D64C50C17 ] CFRMD           C:\WINDOWS\system32\DRIVERS\CFRMD.sys
19:02:17.0015 0x089c  CFRMD - ok
19:02:17.0031 0x089c  Changer - ok
19:02:17.0078 0x089c  [ 28E3040D1F1CA2008CD6B29DFEBC9A5E, ACB458E8A11AA2143734A5A0281973D95158E6402A6453F98F9832D1E19B01F9 ] CiSvc           C:\WINDOWS\system32\cisvc.exe
19:02:17.0671 0x089c  CiSvc - ok
19:02:17.0796 0x089c  [ 778A30ED3C134EB7E406AFC407E9997D, 3E6AD115AB2596EB001BC21AEADDBC75F27C42DB90C986B7AD17743CE631234E ] ClipSrv         C:\WINDOWS\system32\clipsrv.exe
19:02:18.0265 0x089c  ClipSrv - ok
19:02:18.0390 0x089c  [ 8410C7DE4748AEE7F9D7CB70ADFFDC01, 1F77AC232CAD72204EE37ACB1A4E03BDCEFD51A8DA2CE68304AD80AA7F75B0BD ] CLPSLauncher    C:\Programme\Gemeinsame Dateien\COMODO\launcher_service.exe
19:02:18.0453 0x089c  CLPSLauncher - ok
19:02:18.0609 0x089c  [ D87ACAED61E417BBA546CED5E7E36D9C, 14AC6034A5BC0FB2A1AFDAD42BEF4DE641556E54AD30D0C46765660A4BE55462 ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
19:02:19.0250 0x089c  clr_optimization_v2.0.50727_32 - ok
19:02:19.0343 0x089c  [ C5A75EB48E2344ABDC162BDA79E16841, 6070A8AAFD38FBC6A68A2B10C20117612354DF21B4492D90CA522BFB6870D726 ] clr_optimization_v4.0.30319_32 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
19:02:19.0578 0x089c  clr_optimization_v4.0.30319_32 - ok
19:02:19.0656 0x089c  [ 0F6C187D38D98F8DF904589A5F94D411, DB987093446216CEE913AC27503BF7E23E5A62DF169B355730285DAB64F6ED28 ] CmBatt          C:\WINDOWS\system32\DRIVERS\CmBatt.sys
19:02:20.0125 0x089c  CmBatt - ok
19:02:20.0734 0x089c  [ 2A2D72271844C52F004901A60312B96A, A7782E78EE6797A100410C997B77C95B1D991E57C0E5025FC17324EF54C54F0F ] cmdAgent        C:\Programme\COMODO\COMODO Internet Security\cmdagent.exe
19:02:21.0312 0x089c  cmdAgent - ok
19:02:21.0546 0x089c  [ 9181CC4D007ADBE21DB9A11BFECAFEF5, 06B5FDD33D5EE99659DF772CAB38A187166A7F9662B43B1DFC786E0DEFF013B8 ] cmdGuard        C:\WINDOWS\system32\DRIVERS\cmdguard.sys
19:02:21.0734 0x089c  cmdGuard - ok
19:02:21.0828 0x089c  [ C5A9FB50E8CA7FD99F256255FEE71580, 98A826550D7960A3605F67EBA84B721881B7F7D5B7F8445AA6F8790FE2DA05F2 ] cmdHlp          C:\WINDOWS\system32\DRIVERS\cmdhlp.sys
19:02:21.0968 0x089c  cmdHlp - ok
19:02:21.0984 0x089c  CmdIde - ok
19:02:22.0015 0x089c  cmnsusbser - ok
19:02:22.0109 0x089c  [ 6E4C9F21F0FAE8940661144F41B13203, 731202A0DD021FCF9287FEA631212603AAAC23F9E7F76B2882F913B18A971F1C ] Compbatt        C:\WINDOWS\system32\DRIVERS\compbatt.sys
19:02:22.0406 0x089c  Compbatt - ok
19:02:22.0421 0x089c  COMSysApp - ok
19:02:22.0453 0x089c  Cpqarray - ok
19:02:22.0531 0x089c  [ 611F824E5C703A5A899F84C5F1699E4D, 9EFA5612FE58E9974E4CC13D39D91D7B5DEA3ED66BEFBED3AAE6D2800FD8162A ] CryptSvc        C:\WINDOWS\System32\cryptsvc.dll
19:02:23.0125 0x089c  CryptSvc - ok
19:02:23.0187 0x089c  [ B5ECADF7708960F1818C7FA015F4C239, A58BA71B08A9D46EB79EB3DF0858F553A11DE3461E13B6D926E25D21D4CBB2D8 ] CVirtA          C:\WINDOWS\system32\DRIVERS\CVirtA.sys
19:02:23.0453 0x089c  CVirtA - ok
19:02:23.0468 0x089c  CVPNDRVA - ok
19:02:23.0500 0x089c  dac2w2k - ok
19:02:23.0515 0x089c  dac960nt - ok
19:02:23.0609 0x089c  [ 3127AFBF2C1ED0AB14A1BBB7AAECB85B, ECFBACE3CBF2384948EA1C445BDA3955EB4F44A9874286E6537C67DC1283E5B0 ] DcomLaunch      C:\WINDOWS\system32\rpcss.dll
19:02:23.0921 0x089c  DcomLaunch - ok
19:02:24.0046 0x089c  [ C29A1C9B75BA38FA37F8C44405DEC360, 7476D8BC4380CDE56764B2034AF3741DA4ED00F315E41C9A02B5EAD04374F241 ] Dhcp            C:\WINDOWS\System32\dhcpcsvc.dll
19:02:24.0390 0x089c  Dhcp - ok
19:02:24.0437 0x089c  [ 044452051F3E02E7963599FC8F4F3E25, 584BDDB074618BE76454CF90E74829CFF588B5B5FAEB793E2F7AAD26352DD689 ] Disk            C:\WINDOWS\system32\DRIVERS\disk.sys
19:02:24.0843 0x089c  Disk - ok
19:02:24.0859 0x089c  dmadmin - ok
19:02:25.0046 0x089c  [ 0DCFC8395A99FECBB1EF771CEC7FE4EA, 89B0AEE5BE01B9FE4FF2989FF16DB6121721ACDFCE6D9655C0ACD321D8C308BE ] dmboot          C:\WINDOWS\system32\drivers\dmboot.sys
19:02:25.0812 0x089c  dmboot - ok
19:02:25.0906 0x089c  [ 53720AB12B48719D00E327DA470A619A, 800264866A6267C9000A85D00095D57908D059D737E5F28C9C4049B884C46228 ] dmio            C:\WINDOWS\system32\drivers\dmio.sys
19:02:26.0265 0x089c  dmio - ok
19:02:26.0312 0x089c  [ E9317282A63CA4D188C0DF5E09C6AC5F, D41E002F555FE9015EF620975255F58BB79198CA1FF0E09EC950CB450FF77CF7 ] dmload          C:\WINDOWS\system32\drivers\dmload.sys
19:02:26.0812 0x089c  dmload - ok
19:02:26.0875 0x089c  [ 25C83FFBBA13B554EB6D59A9B2E2EE78, 9FBD655ED3E9163AE11EC207F283E387EFBA5A23108EC790BAE4846B35E66F16 ] dmserver        C:\WINDOWS\System32\dmserver.dll
19:02:27.0296 0x089c  dmserver - ok
19:02:27.0359 0x089c  [ 8A208DFCF89792A484E76C40E5F50B45, 4E40E2EB38C6254E7CAA488200E89EE7DEBBBA773890BC6A84313CC68178D54F ] DMusic          C:\WINDOWS\system32\drivers\DMusic.sys
19:02:27.0796 0x089c  DMusic - ok
19:02:27.0859 0x089c  [ 694616F813FB627A32C9E32DEC133078, 27D503E442ED60ED0F7B6BC743856B08B98CD1A396203B2D1426899407E870C5 ] DNE             C:\WINDOWS\system32\DRIVERS\dne2000.sys
19:02:27.0921 0x089c  DNE - ok
19:02:27.0984 0x089c  [ 407F3227AC618FD1CA54B335B083DE07, 96B8E734648FE9A4EBA59C096C8779BD1A11A93A6303AFD438A406C8122D36C6 ] Dnscache        C:\WINDOWS\System32\dnsrslvr.dll
19:02:28.0328 0x089c  Dnscache - ok
19:02:28.0437 0x089c  [ 676E36C4FF5BCEA1900F44182B9723E6, 740CF18BD40E00FEA26CF0E6340C5D18F7D0B4390055FAEEC258B3AA790C4AE9 ] Dot3svc         C:\WINDOWS\System32\dot3svc.dll
19:02:28.0906 0x089c  Dot3svc - ok
19:02:28.0921 0x089c  dpti2o - ok
19:02:29.0484 0x089c  [ E4A0D0C8F17073BE392F062DD1F6B50E, 26CF71517C09B24B6F6AB5AC902FF0D1426351BCCD6AB571510C83D0F6E32FE6 ] DragonUpdater   C:\Programme\Comodo\Dragon\dragon_updater.exe
19:02:30.0609 0x089c  DragonUpdater - ok
19:02:30.0859 0x089c  [ 8F5FCFF8E8848AFAC920905FBD9D33C8, C8C6FB97AB0871C8C88A2201525A5CF10D5131CB6980D32692ED7A8F58399AD5 ] drmkaud         C:\WINDOWS\system32\drivers\drmkaud.sys
19:02:32.0000 0x089c  drmkaud - ok
19:02:32.0078 0x089c  [ 4E4F2FDDAB0A0736D7671134DCCE91FB, 8E2C57D1A006856C47CBDD5765A9DD317DB205B26DA8BFC70555A506257A1CD9 ] EapHost         C:\WINDOWS\System32\eapsvc.dll
19:02:32.0921 0x089c  EapHost - ok
19:02:32.0953 0x089c  EAPPkt - ok
19:02:33.0015 0x089c  [ F07BA56B0235F15EFF8F10DC6389C42E, A7202CCB418D03606A97679BCF166ACA12F8341E8AB97DF044AE00401B8496B4 ] epmntdrv        C:\WINDOWS\system32\epmntdrv.sys
19:02:33.0250 0x089c  epmntdrv - detected UnsignedFile.Multi.Generic ( 1 )
19:02:33.0656 0x089c  Detect skipped due to KSN trusted
19:02:33.0656 0x089c  epmntdrv - ok
19:02:33.0734 0x089c  [ 877C18558D70587AA7823A1A308AC96B, 6B336A62112988D855513F45153F73F8470C41A448E9B7438B4A8EC1813AABF1 ] ERSvc           C:\WINDOWS\System32\ersvc.dll
19:02:34.0171 0x089c  ERSvc - ok
19:02:34.0265 0x089c  [ 1F2F4AB15CE03ECC257FEB2F6DC5A013, FB06406AD9CCD946155C4E8CA769E0430589A4E4BBBDA2C90A67C84E0D2F8EE0 ] EuGdiDrv        C:\WINDOWS\system32\EuGdiDrv.sys
19:02:34.0484 0x089c  EuGdiDrv - detected UnsignedFile.Multi.Generic ( 1 )
19:02:35.0046 0x089c  Detect skipped due to KSN trusted
19:02:35.0046 0x089c  EuGdiDrv - ok
19:02:35.0156 0x089c  [ A3EDBE9053889FB24AB22492472B39DC, 6F2ED6E04BDE2FCA2A8BF9BD2D1D6923DE6EAECB46F582B6C0BD1CF364D65C9E ] Eventlog        C:\WINDOWS\system32\services.exe
19:02:35.0343 0x089c  Eventlog - ok
19:02:35.0593 0x089c  [ AF4F6B5739D18CA7972AB53E091CBC74, A399E2CC026730D3A429727AAB48093B9F1E5DD8EB6336519C7F16182FDB3905 ] EventSystem     C:\WINDOWS\system32\es.dll
19:02:36.0187 0x089c  EventSystem - ok
19:02:36.0265 0x089c  [ 38D332A6D56AF32635675F132548343E, E6909DB836AF679B4F4D62C7396D6C82769CC7ABB8C919C2AABFE934FCE268F6 ] Fastfat         C:\WINDOWS\system32\drivers\Fastfat.sys
19:02:36.0953 0x089c  Fastfat - ok
19:02:37.0078 0x089c  [ 2DB7D303C36DDD055215052F118E8E75, BE6E7BBE12A7A4EDF1F1C2935350603970C7426BBCA7A1A6644BB8999123AF17 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
19:02:37.0390 0x089c  FastUserSwitchingCompatibility - ok
19:02:37.0421 0x089c  [ 92CDD60B6730B9F50F6A1A0C1F8CDC81, 8307A532AB4D05CBBCE206DC2759497708BF5AAA880BD00F0E4F281D8578A1F5 ] Fdc             C:\WINDOWS\system32\drivers\Fdc.sys
19:02:37.0828 0x089c  Fdc - ok
19:02:37.0937 0x089c  [ B0678A548587C5F1967B0D70BACAD6C1, 7E49910212ED87313F926E4800EA8D34809C287A686CA69B82B79C1A6451F88C ] Fips            C:\WINDOWS\system32\drivers\Fips.sys
19:02:38.0296 0x089c  Fips - ok
19:02:38.0359 0x089c  [ 9D27E7B80BFCDF1CDD9B555862D5E7F0, 69C271AD5BCEBFD8AE5A769BDD7EC51256DA3A8ADAD5D12E5C0D13F4E82D8805 ] Flpydisk        C:\WINDOWS\system32\drivers\Flpydisk.sys
19:02:38.0781 0x089c  Flpydisk - ok
19:02:38.0812 0x089c  [ B2CF4B0786F8212CB92ED2B50C6DB6B0, 280F5CF8A90F7BEDE73ADD0DD0F8952088133A7CA9A3D3B7041957E33B36845D ] FltMgr          C:\WINDOWS\system32\DRIVERS\fltMgr.sys
19:02:39.0156 0x089c  FltMgr - ok
19:02:39.0328 0x089c  [ 8BA7C024070F2B7FDD98ED8A4BA41789, 47585006F86B2C6016EC54250A416794792D1E4024FF229C120BC25B684AF66A ] FontCache3.0.0.0 c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
19:02:39.0562 0x089c  FontCache3.0.0.0 - ok
19:02:39.0937 0x089c  [ 26EABEEA7F30DCF21DA0577C4EE26FAA, 20C3CD2579ED6853249B1EAEF23DF2904779BA2E806D00C30F81EA9A1612AE0F ] FoxitCloudUpdateService C:\PROGRAMME\FOXIT SOFTWARE\FOXIT READER\Foxit Cloud\FCUpdateService.exe
19:02:40.0312 0x089c  FoxitCloudUpdateService - ok
19:02:40.0375 0x089c  [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A, EC635E071201A766845D48973772CBE0958942B4162F3F5F70660D114CC877E0 ] Fs_Rec          C:\WINDOWS\system32\drivers\Fs_Rec.sys
19:02:40.0750 0x089c  Fs_Rec - ok
19:02:40.0796 0x089c  [ 8F1955CE42E1484714B542F341647778, 8EB3F99625F409D3032561E8AB44BEFBFBFBA4EC873C2151C92A5CAAF7F2AA55 ] Ftdisk          C:\WINDOWS\system32\DRIVERS\ftdisk.sys
19:02:41.0265 0x089c  Ftdisk - ok
19:02:41.0609 0x089c  [ AE63D0DB96C07CAE5DC4CDB2B2A719A0, 1E38E4E350484E0942BE2AF61CDBBACC132C955FE3FA0C1485BDCA0C6283BA51 ] GeekBuddyRSP    C:\Programme\Gemeinsame Dateien\COMODO\GeekBuddyRSP.exe
19:02:42.0031 0x089c  GeekBuddyRSP - ok
19:02:42.0093 0x089c  [ 0A02C63C8B144BD8C86B103DEE7C86A2, 7A3235DD3E1995DD72B212FAEB3ECA2A974434DE9BF6D269EA11BA65A80E7E50 ] Gpc             C:\WINDOWS\system32\DRIVERS\msgpc.sys
19:02:42.0734 0x089c  Gpc - ok
19:02:42.0828 0x089c  [ E9CDEB631E63E83A7540CF6E81B5486B, 7CB2129168E27DE46B166B1C26975722E63D8AF772933664FCA5A8A335004117 ] GUBootStartup   C:\WINDOWS\System32\drivers\GUBootStartup.sys
19:02:42.0953 0x089c  GUBootStartup - ok
19:02:43.0031 0x089c  [ 573C7D0A32852B48F3058CFD8026F511, BC384BBA394AFDCDA1A9ABC858C692AA84A1F0A31AF3DDF7F38D120C027927FB ] HDAudBus        C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
19:02:43.0343 0x089c  HDAudBus - ok
19:02:43.0437 0x089c  [ CB66BF85BF599BEFD6C6A57C2E20357F, 55D3A0F9279FF316766F42548FCB61C452942B08A37590C4892DF110BE4E53C6 ] helpsvc         C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
19:02:44.0125 0x089c  helpsvc - ok
19:02:44.0140 0x089c  HidServ - ok
19:02:44.0187 0x089c  [ CCF82C5EC8A7326C3066DE870C06DAF1, 93395FA4C26B2E82DC8B7025ED3BCF583885E5D8C5F60CD6EEAA6335D6A126EC ] HidUsb          C:\WINDOWS\system32\DRIVERS\hidusb.sys
19:02:44.0609 0x089c  HidUsb - ok
19:02:44.0796 0x089c  [ ED29F14101523A6E0E808107405D452C, B8FA987637787BEECC2EB06D36293DAC355523392B49A8C5A9491EEE961917E9 ] hkmsvc          C:\WINDOWS\System32\kmsvc.dll
19:02:45.0406 0x089c  hkmsvc - ok
19:02:45.0421 0x089c  hpn - ok
19:02:45.0546 0x089c  [ F80A415EF82CD06FFAF0D971528EAD38, 524D9E9201572929522F6805011783711B7C0F76308B924C89CF75F4B7A1FDF3 ] HTTP            C:\WINDOWS\system32\Drivers\HTTP.sys
19:02:45.0750 0x089c  HTTP - ok
19:02:45.0796 0x089c  [ 9E4ADB854CEBCFB81A4B36718FEECD16, 677AB64460775686F8366D6BF35D420A2486C3F07338A00A7C2788A5142B9F08 ] HTTPFilter      C:\WINDOWS\System32\w3ssl.dll
19:02:46.0375 0x089c  HTTPFilter - ok
19:02:46.0375 0x089c  i2omgmt - ok
19:02:46.0390 0x089c  i2omp - ok
19:02:46.0500 0x089c  [ E283B97CFBEB86C1D86BAED5F7846A92, 7664F791D08C80DF1E52B34BE69F073AA645610C4BD975F498254807602374AB ] i8042prt        C:\WINDOWS\system32\DRIVERS\i8042prt.sys
19:02:46.0875 0x089c  i8042prt - ok
19:02:47.0765 0x089c  [ 0F68E2EC713F132FFB19E45415B09679, B1439A5D157F9FF54E803581D2B86411DB079242D837617021A4A0BC195E67BB ] ialm            C:\WINDOWS\system32\DRIVERS\igxpmp32.sys
19:02:49.0546 0x089c  ialm - ok
19:02:49.0671 0x089c  [ 707C1692214B1C290271067197F075F6, 7D0DB754604AABC4AA09AB8BA94326B1A1C2A76F3C2C2C7D6FA14F964BE68A51 ] iaStor          C:\WINDOWS\system32\drivers\iaStor.sys
19:02:49.0765 0x089c  iaStor - ok
19:02:50.0078 0x089c  [ C01AC32DC5C03076CFB852CB5DA5229C, A4D7749220B5BC965D96A267F1E02FE8284A230BA249109207BD4B9EA8DFAC96 ] idsvc           c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
19:02:50.0812 0x089c  idsvc - ok
19:02:51.0015 0x089c  [ 083A052659F5310DD8B6A6CB05EDCF8E, 48D39B03FFB6FAA1529B774443BA12618AE3982D9F65A7B9D18F2269F78B31F4 ] Imapi           C:\WINDOWS\system32\DRIVERS\imapi.sys
19:02:53.0109 0x089c  Imapi - ok
19:02:53.0312 0x089c  [ D4B413AA210C21E46AEDD2BA5B68D38E, 2309622867AA8FC832A729FA78F48742D4BD6CA0DAFBFB9DDB0772D671E1ED75 ] ImapiService    C:\WINDOWS\system32\imapi.exe
19:02:53.0890 0x089c  ImapiService - ok
19:02:53.0906 0x089c  ini910u - ok
19:02:53.0984 0x089c  [ E1DF634BEC066B3D4FFE437BCB78C282, 974278CA606DF7C0332997E4339EA2AFE017E04C596CE69F47FED798E57D52FB ] Inspect         C:\WINDOWS\system32\DRIVERS\inspect.sys
19:02:54.0140 0x089c  Inspect - ok
19:02:55.0562 0x089c  [ 053517D1BCADF00BEDB21FB7218C8F33, 633F19692C56C40F786C87A95E1D9B692420F6BD976753268FED378236FB0159 ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RtkHDAud.sys
19:02:57.0343 0x089c  IntcAzAudAddService - ok
19:02:57.0390 0x089c  IntelIde - ok
19:02:57.0468 0x089c  [ 4C7D2750158ED6E7AD642D97BFFAE351, C05E4799752F090DCB632F07F62ADE38D31534621064D269AD535CA0BDFED448 ] intelppm        C:\WINDOWS\system32\DRIVERS\intelppm.sys
19:02:57.0828 0x089c  intelppm - ok
19:02:57.0859 0x089c  [ 3BB22519A194418D5FEC05D800A19AD0, F6662F440950596DC1382DD1DB5D7891CCEA30A6062BEA942C18445B5F0D8B16 ] Ip6Fw           C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
19:02:58.0250 0x089c  Ip6Fw - ok
19:02:58.0281 0x089c  [ 731F22BA402EE4B62748ADAF6363C182, 5C3BEBD008A5BE4DC2F92076FF41A10DDC01E10EC7E6552213CFA11970811848 ] IpFilterDriver  C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
19:02:58.0718 0x089c  IpFilterDriver - ok
19:02:58.0828 0x089c  [ B87AB476DCF76E72010632B5550955F5, E6E74D3A86A7917A8BAED44F8E97CCD2EB171E4E4B27E9907F60D1523FAF319A ] IpInIp          C:\WINDOWS\system32\DRIVERS\ipinip.sys
19:02:59.0156 0x089c  IpInIp - ok
19:02:59.0218 0x089c  [ CC748EA12C6EFFDE940EE98098BF96BB, AF523E21C25D9A1715EFEA573E4F52AF5D4FC9F28A2D613F5DB629C186C439E0 ] IpNat           C:\WINDOWS\system32\DRIVERS\ipnat.sys
19:02:59.0625 0x089c  IpNat - ok
19:02:59.0687 0x089c  [ 23C74D75E36E7158768DD63D92789A91, 394D296F38E7D8EFD91A6EEC301D9CE6AF910E35EB9819F1A9E3363863AEDFDC ] IPSec           C:\WINDOWS\system32\DRIVERS\ipsec.sys
19:03:00.0296 0x089c  IPSec - ok
19:03:00.0390 0x089c  [ C93C9FF7B04D772627A3646D89F7BF89, 805FA48E7A46D4F10240BF880A2468F53DEA36E83004399228AB70DB7D20544A ] IRENUM          C:\WINDOWS\system32\DRIVERS\irenum.sys
19:03:00.0640 0x089c  IRENUM - ok
19:03:00.0765 0x089c  [ 6DFB88F64135C525433E87648BDA30DE, 8233EEFBEF36AAA152F2C55D23D7118F0DE40C9C22EB5D9793405A4770889540 ] isapnp          C:\WINDOWS\system32\DRIVERS\isapnp.sys
19:03:01.0328 0x089c  isapnp - ok
19:03:01.0390 0x089c  [ 1704D8C4C8807B889E43C649B478A452, E854C90CD301F42BE2520CEDAD35E49DF2D43606CF4EEED861B74882118D04D1 ] Kbdclass        C:\WINDOWS\system32\DRIVERS\kbdclass.sys
19:03:01.0890 0x089c  Kbdclass - ok
19:03:01.0953 0x089c  [ 692BCF44383D056AED41B045A323D378, 1A99DEE83FFAF64E73067FC049C0A4CE07D94E4AE31EFA17B38CEFA9E41D67DC ] kmixer          C:\WINDOWS\system32\drivers\kmixer.sys
19:03:02.0531 0x089c  kmixer - ok
19:03:02.0640 0x089c  [ B467646C54CC746128904E1654C750C1, 3BD71BE3663EA23463D236D8A2A2E42DFA10C502BDB4B6E131FAF0FBA748219E ] KSecDD          C:\WINDOWS\system32\drivers\KSecDD.sys
19:03:03.0500 0x089c  KSecDD - ok
19:03:03.0640 0x089c  [ 2BBDCB79900990F0716DFCB714E72DE7, 6283789201164A9254632D9A3C8A54FE697717D5F8D5A37804D924DC2B70C8E3 ] LanmanServer    C:\WINDOWS\System32\srvsvc.dll
19:03:04.0078 0x089c  LanmanServer - ok
19:03:04.0203 0x089c  [ 1869B14B06B44B44AF70548E1EA3303F, 4D63B4DAF580C86F86837C7D1753E2105B4C52E26D4CA0CAAFE83755EFF7AFBE ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
19:03:04.0531 0x089c  lanmanworkstation - ok
19:03:04.0546 0x089c  lbrtfdc - ok
19:03:04.0703 0x089c  [ 636714B7D43C8D0C80449123FD266920, F06F6C7DC49B26EFCAC3570C67BA9BD934F62C6F382DA4DD2AB302C7B970F414 ] LmHosts         C:\WINDOWS\System32\lmhsvc.dll
19:03:05.0250 0x089c  LmHosts - ok
19:03:05.0406 0x089c  [ B7550A7107281D170CE85524B1488C98, A3854B16A65436BEF6BEDE918B43B3BE8F00D303660DB5831DD376271DC43239 ] Messenger       C:\WINDOWS\System32\msgsvc.dll
19:03:05.0859 0x089c  Messenger - ok
19:03:05.0953 0x089c  [ 7E0506BF8148D74D2823E0A418E4AD31, 598BB22590D2ADE0FD6DCE3F1ADBF6FF5BEFA209368EF495E1E3A6A4F01EFA18 ] Micro Star SCM  C:\Programme\System Control Manager\MSIService.exe
19:03:06.0046 0x089c  Micro Star SCM - detected UnsignedFile.Multi.Generic ( 1 )
19:03:07.0640 0x089c  Detect skipped due to KSN trusted
19:03:07.0640 0x089c  Micro Star SCM - ok
19:03:07.0859 0x089c  [ 4AE068242760A1FB6E1A44BF4E16AFA6, 1FB771162B96AAF787AC24867B818DF8511F0780BB094FA9A38C11D8DBFE68BC ] mnmdd           C:\WINDOWS\system32\drivers\mnmdd.sys
19:03:08.0265 0x089c  mnmdd - ok
19:03:08.0312 0x089c  [ C2F1D365FD96791B037EE504868065D3, 87BD87E08FD00D115524B049F1A3A719AB86557D68968E7090CD0F271F985CAF ] mnmsrvc         C:\WINDOWS\system32\mnmsrvc.exe
19:03:08.0656 0x089c  mnmsrvc - ok
19:03:08.0765 0x089c  [ 6FB74EBD4EC57A6F1781DE3852CC3362, 0454509D9A31E0202C08AE17294E2682F227D177A3C73B303E4C8332757AFCA1 ] Modem           C:\WINDOWS\system32\drivers\Modem.sys
19:03:09.0187 0x089c  Modem - ok
19:03:09.0250 0x089c  [ B24CE8005DEAB254C0251E15CB71D802, 6804A8ABDAD5EC846E7F8077D1EE9BA45D6226ACFF42C70BE3DE7C8980EF9EC4 ] Mouclass        C:\WINDOWS\system32\DRIVERS\mouclass.sys
19:03:09.0843 0x089c  Mouclass - ok
19:03:09.0890 0x089c  [ 66A6F73C74E1791464160A7065CE711A, 3C570FA1E8EF976B83759220FE95BAC9D7D48D607F91B113EDE4790D34ACBD46 ] mouhid          C:\WINDOWS\system32\DRIVERS\mouhid.sys
19:03:11.0000 0x089c  mouhid - ok
19:03:11.0125 0x089c  [ A80B9A0BAD1B73637DBCBBA7DF72D3FD, 2A5E15ED2C24C6C65EF2F7E1FD93374774076C9D8D451E4422561F4D269C012F ] MountMgr        C:\WINDOWS\system32\drivers\MountMgr.sys
19:03:11.0593 0x089c  MountMgr - ok
19:03:11.0687 0x089c  [ CF4A82F6176A06F7B2F7FE98C8490566, 3E882902B269BA80366262C519B1A02E5C5FED67CDB73F5698B25FA540F4B50F ] MozillaMaintenance C:\Programme\Mozilla Maintenance Service\maintenanceservice.exe
19:03:12.0250 0x089c  MozillaMaintenance - ok
19:03:12.0265 0x089c  mraid35x - ok
19:03:12.0343 0x089c  [ 11D42BB6206F33FBB3BA0288D3EF81BD, 76ABCFB62C5AC549F58C231F72A99882CDEB74928104B77FE52554765C2B1A22 ] MRxDAV          C:\WINDOWS\system32\DRIVERS\mrxdav.sys
19:03:12.0781 0x089c  MRxDAV - ok
19:03:13.0140 0x089c  [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0, DB9B186F7076D7B94F45041AF7B77C1AD2CAB504D683B459C6CB1C22840ED170 ] MRxSmb          C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
19:03:14.0140 0x089c  MRxSmb - ok
19:03:14.0218 0x089c  [ 35A031AF38C55F92D28AA03EE9F12CC9, 97245D204C886EE8DCCC2DEAC80A0E358A7E0C1982F77389DA50DCF091FC9DDC ] MSDTC           C:\WINDOWS\system32\msdtc.exe
19:03:14.0796 0x089c  MSDTC - ok
19:03:15.0078 0x089c  [ C941EA2454BA8350021D774DAF0F1027, C940E978C7B66A713A0FDAB54B5F995DF59D089AFCD96221DD3222948CD49BBD ] Msfs            C:\WINDOWS\system32\drivers\Msfs.sys
19:03:15.0609 0x089c  Msfs - ok
19:03:15.0609 0x089c  MSIServer - ok
19:03:15.0656 0x089c  [ D1575E71568F4D9E14CA56B7B0453BF1, 4ABE0E24786C0D39FA2B885447E56204CA6942FB175E534DCE675D7BCF0B176A ] MSKSSRV         C:\WINDOWS\system32\drivers\MSKSSRV.sys
19:03:15.0921 0x089c  MSKSSRV - ok
19:03:15.0984 0x089c  [ 325BB26842FC7CCC1FCCE2C457317F3E, C07BE560513B1FB91D756494F0BA4AEEB2E1998DE0E1C21EE83DB1183B0CEE91 ] MSPCLOCK        C:\WINDOWS\system32\drivers\MSPCLOCK.sys
19:03:16.0500 0x089c  MSPCLOCK - ok
19:03:16.0562 0x089c  [ BAD59648BA099DA4A17680B39730CB3D, 9AD4C7C94C186C8815D0BC75DCAFB962158DA6935A244BA243EDDDEB33F9816C ] MSPQM           C:\WINDOWS\system32\drivers\MSPQM.sys
19:03:17.0031 0x089c  MSPQM - ok
19:03:17.0281 0x089c  [ AF5F4F3F14A8EA2C26DE30F7A1E17136, AC93A1E4ABB0D038B772E429015567E44CC2EDB66C54DBE23A5F98176FAC1520 ] mssmbios        C:\WINDOWS\system32\DRIVERS\mssmbios.sys
19:03:17.0796 0x089c  mssmbios - ok
19:03:17.0843 0x089c  [ E53736A9E30C45FA9E7B5EAC55056D1D, 38602F280BF69EBA3706AD175AFC1AEB561A8302B4B61E3FECB3C27D7A9BDB41 ] MSTEE           C:\WINDOWS\system32\drivers\MSTEE.sys
19:03:18.0265 0x089c  MSTEE - ok
19:03:18.0328 0x089c  [ DE6A75F5C270E756C5508D94B6CF68F5, FCC972DDC36C2C44D836913F10004C2C33B11C54DEFFF0C63E0FDF901D2F9261 ] Mup             C:\WINDOWS\system32\drivers\Mup.sys
19:03:18.0609 0x089c  Mup - ok
19:03:18.0671 0x089c  [ 5B50F1B2A2ED47D560577B221DA734DB, C16A554B6E1A7F5F98C94DFA88163E0F7426506BF2F51FD351B1A05FC0DB3BC5 ] NABTSFEC        C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
19:03:19.0093 0x089c  NABTSFEC - ok
19:03:19.0187 0x089c  [ 46BB15AE2AC7D025D6D2567B876817BD, 102A101B96D1078C98FA0F871C801A9A8538E20E5686AB0C7680B2F6C92B3165 ] napagent        C:\WINDOWS\System32\qagentrt.dll
19:03:19.0640 0x089c  napagent - ok
19:03:19.0734 0x089c  [ 1DF7F42665C94B825322FAE71721130D, FE0DCB728471465B39A42A7511F4133021FBA5DF88F88BCB5FE2FF34CFD713F9 ] NDIS            C:\WINDOWS\system32\drivers\NDIS.sys
19:03:20.0515 0x089c  NDIS - ok
19:03:20.0562 0x089c  [ 7FF1F1FD8609C149AA432F95A8163D97, 18CD1FF5AC1EF8A38D1EC53014F2BADD28D9CDF4ECE2EBC2313D08903776F323 ] NdisIP          C:\WINDOWS\system32\DRIVERS\NdisIP.sys
19:03:20.0968 0x089c  NdisIP - ok
19:03:21.0093 0x089c  [ 0109C4F3850DFBAB279542515386AE22, 4F6DB1E499AC853FD36FD603FBB6D3AC9BDCEB298C7FE1FB59A9236CB46729B2 ] NdisTapi        C:\WINDOWS\system32\DRIVERS\ndistapi.sys
19:03:21.0500 0x089c  NdisTapi - ok
19:03:21.0531 0x089c  [ F927A4434C5028758A842943EF1A3849, B1AA3AF150C05307461774925901789456B0CCCD03A5E71ADA4AB58455962BEE ] Ndisuio         C:\WINDOWS\system32\DRIVERS\ndisuio.sys
19:03:22.0015 0x089c  Ndisuio - ok
19:03:22.0062 0x089c  [ EDC1531A49C80614B2CFDA43CA8659AB, 494042F790F33721328B4451E79842E21919681CC421A4F9633EC4D383E06097 ] NdisWan         C:\WINDOWS\system32\DRIVERS\ndiswan.sys
19:03:22.0484 0x089c  NdisWan - ok
19:03:22.0562 0x089c  [ 2F597BB467E05B1FE3830EABD821B8E0, 141497F5A49D47CCE3C9289644F4BD838DCB238F6D8E847FC006652E21FE02AC ] NDProxy         C:\WINDOWS\system32\drivers\NDProxy.sys
19:03:22.0828 0x089c  NDProxy - ok
19:03:22.0890 0x089c  [ 5D81CF9A2F1A3A756B66CF684911CDF0, 7989C36607CAEA17AFA2C1C9904145CA0714A54B9F712D9D4C1AB140D0B2CC0C ] NetBIOS         C:\WINDOWS\system32\DRIVERS\netbios.sys
19:03:23.0453 0x089c  NetBIOS - ok
19:03:23.0546 0x089c  [ 74B2B2F5BEA5E9A3DC021D685551BD3D, 7932B71F98B4122BE88F576BF6D745A757AE378A48924B7F4358837B75640A82 ] NetBT           C:\WINDOWS\system32\DRIVERS\netbt.sys
19:03:23.0921 0x089c  NetBT - ok
19:03:24.0140 0x089c  [ 8ACE4251BFFD09CE75679FE940E996CC, 81969521B5EAEA09ECA63058BE9697BB69AF2596339CA9DF0CFEDC031DCFDC7E ] NetDDE          C:\WINDOWS\system32\netdde.exe
19:03:24.0656 0x089c  NetDDE - ok
19:03:24.0718 0x089c  [ 8ACE4251BFFD09CE75679FE940E996CC, 81969521B5EAEA09ECA63058BE9697BB69AF2596339CA9DF0CFEDC031DCFDC7E ] NetDDEdsdm      C:\WINDOWS\system32\netdde.exe
19:03:25.0000 0x089c  NetDDEdsdm - ok
19:03:25.0093 0x089c  [ AFB8261B56CBA0D86AEB6DF682AF9785, 104D96F1F19DD4CE492064ACC9634406A019EAE20B42D03198E400E661897127 ] Netlogon        C:\WINDOWS\system32\lsass.exe
19:03:25.0593 0x089c  Netlogon - ok
19:03:25.0718 0x089c  [ E6D88F1F6745BF00B57E7855A2AB696C, 12A5EDD853600FF5EBF91E127077745AE1E61E66DBC1D4D4306570F171AF4A39 ] Netman          C:\WINDOWS\System32\netman.dll
19:03:26.0328 0x089c  Netman - ok
19:03:26.0390 0x089c  [ D22CD77D4F0D63D1169BB35911BFF12D, 85B1FDFA02E1B8EA4FCB9B7EEB687C5C448697FC7EC9D178C5A2F64D2C9CFEE8 ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
19:03:26.0671 0x089c  NetTcpPortSharing - ok
19:03:26.0781 0x089c  [ F1B67B6B0751AE0E6E964B02821206A3, 3D5A7593ABDEE2047C5738671C85DC8B95A4ECF58D5D7B04EEE13A689839A540 ] Nla             C:\WINDOWS\System32\mswsock.dll
19:03:27.0171 0x089c  Nla - ok
19:03:27.0218 0x089c  [ A00877C05933FBA8AFB3390DD72D4679, 684D9642173C4BF4B752F259D5E89F16BC8B4B1608F1E6E176AA692A9775CE38 ] nmwcd           C:\WINDOWS\system32\drivers\ccdcmb.sys
19:03:28.0343 0x089c  nmwcd - ok
19:03:28.0437 0x089c  [ 9FF15F18E4E8758AC57BDB910D0238B3, F27C40BDD3818C54E1099AD525C7C19B424E0C4676DB366DE0E905CA3F82A310 ] nmwcdc          C:\WINDOWS\system32\drivers\ccdcmbo.sys
19:03:28.0718 0x089c  nmwcdc - ok
19:03:28.0984 0x089c  [ 3182D64AE053D6FB034F44B6DEF8034A, 4ADFC76965BA2A5F488E71789A4E4EA702A74AF42725F72130D1CA919406CF19 ] Npfs            C:\WINDOWS\system32\drivers\Npfs.sys
19:03:29.0453 0x089c  Npfs - ok
19:03:29.0750 0x089c  [ 78A08DD6A8D65E697C18E1DB01C5CDCA, E0E6F3ED05068E32F1D5C2D2B38CDEF4536B8656DB6756C66CF6B40B60C8F3DA ] Ntfs            C:\WINDOWS\system32\drivers\Ntfs.sys
19:03:30.0359 0x089c  Ntfs - ok
19:03:30.0515 0x089c  [ AFB8261B56CBA0D86AEB6DF682AF9785, 104D96F1F19DD4CE492064ACC9634406A019EAE20B42D03198E400E661897127 ] NtLmSsp         C:\WINDOWS\system32\lsass.exe
19:03:32.0984 0x089c  NtLmSsp - ok
19:03:33.0218 0x089c  [ 56AF4064996FA5BAC9C449B1514B4770, 154602EFEC22728503D4ABA025DF711B0F2CFC983F5E3BF25F2A4BCD1AE250EC ] NtmsSvc         C:\WINDOWS\system32\ntmssvc.dll
19:03:35.0312 0x089c  NtmsSvc - ok
19:03:35.0390 0x089c  [ 73C1E1F395918BC2C6DD67AF7591A3AD, B21133A75253EC15E2DFF66D3B480AB1A7E1A2360476C810E7AA55D0F0EB08D4 ] Null            C:\WINDOWS\system32\drivers\Null.sys
19:03:38.0281 0x089c  Null - ok
19:03:38.0343 0x089c  [ B305F3FAD35083837EF46A0BBCE2FC57, 9D0E0E666D652D0FC9EAB97280A5D67AAF61D6B21929DF7CF8ED72A367720464 ] NwlnkFlt        C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
19:03:42.0203 0x089c  NwlnkFlt - ok
19:03:42.0421 0x089c  [ C99B3415198D1AAB7227F2C88FD664B9, DD8DA4B5E804F134AB9233859544C025062902DFC3E8FB8A09A67337A4E73F55 ] NwlnkFwd        C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
19:03:44.0515 0x089c  NwlnkFwd - ok
19:03:44.0812 0x089c  [ F84785660305B9B903FB3BCA8BA29837, BDBDE61076800415D98759077E9E039C80B55DBE68E31F8BF44A909C6C3D3276 ] Parport         C:\WINDOWS\system32\drivers\Parport.sys
19:03:46.0718 0x089c  Parport - ok
19:03:46.0734 0x089c  [ BEB3BA25197665D82EC7065B724171C6, 7E71C13BA30CD95CEE8A9CC85E6F48A01F30EDEAADEE69D80AE828BF97E5A5CA ] PartMgr         C:\WINDOWS\system32\drivers\PartMgr.sys
19:03:49.0093 0x089c  PartMgr - ok
19:03:49.0500 0x089c  [ C2BF987829099A3EAA2CA6A0A90ECB4F, 1DF21EA8E43875CFEECD869407429F82FB449707CFB845718499468E699BAAAA ] ParVdm          C:\WINDOWS\system32\drivers\ParVdm.sys
19:03:50.0250 0x089c  ParVdm - ok
19:03:50.0500 0x089c  [ F451DCACBAA67F3307305EBD4A39EA07, C4435BF4C2D16F3DC0B35732BE3602FFA28DB0A5BC5576F45E0D32E5F4CD2DEA ] pccsmcfd        C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys
19:03:51.0250 0x089c  pccsmcfd - ok
19:03:51.0359 0x089c  [ 387E8DEDC343AA2D1EFBC30580273ACD, 5F3E642BDB759777E570ED5B22AC7E93CDCD362708F281657AD7BAB44EDEC802 ] PCI             C:\WINDOWS\system32\DRIVERS\pci.sys
19:03:52.0031 0x089c  PCI - ok
19:03:52.0031 0x089c  PCIDump - ok
19:03:52.0046 0x089c  PCIIde - ok
19:03:52.0078 0x089c  [ A2A966B77D61847D61A3051DF87C8C97, 6CED7CA26DC62B0AAFC83A2E07336DAD25954491201BB8E06103971F3F0B8B51 ] Pcmcia          C:\WINDOWS\system32\drivers\Pcmcia.sys
19:03:53.0828 0x089c  Pcmcia - ok
19:03:53.0859 0x089c  PDCOMP - ok
19:03:53.0875 0x089c  PDFRAME - ok
19:03:53.0890 0x089c  PDRELI - ok
19:03:53.0890 0x089c  PDRFRAME - ok
19:03:53.0906 0x089c  perc2 - ok
19:03:53.0921 0x089c  perc2hib - ok
19:03:54.0046 0x089c  [ A3EDBE9053889FB24AB22492472B39DC, 6F2ED6E04BDE2FCA2A8BF9BD2D1D6923DE6EAECB46F582B6C0BD1CF364D65C9E ] PlugPlay        C:\WINDOWS\system32\services.exe
19:03:55.0968 0x089c  PlugPlay - ok
19:03:56.0062 0x089c  [ AFB8261B56CBA0D86AEB6DF682AF9785, 104D96F1F19DD4CE492064ACC9634406A019EAE20B42D03198E400E661897127 ] PolicyAgent     C:\WINDOWS\system32\lsass.exe
19:03:57.0890 0x089c  PolicyAgent - ok
19:03:58.0015 0x089c  [ EFEEC01B1D3CF84F16DDD24D9D9D8F99, C5F0C8C66A3AF7E7BB04CEDE4AC5306F8387AB384A2107DC5BE413AAE968EFF1 ] PptpMiniport    C:\WINDOWS\system32\DRIVERS\raspptp.sys
19:03:58.0375 0x089c  PptpMiniport - ok
19:03:58.0390 0x089c  [ AFB8261B56CBA0D86AEB6DF682AF9785, 104D96F1F19DD4CE492064ACC9634406A019EAE20B42D03198E400E661897127 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
19:03:58.0671 0x089c  ProtectedStorage - ok
19:03:58.0875 0x089c  [ 09298EC810B07E5D582CB3A3F9255424, 35473A1BE25AC289474090EB0806AC6B3035DC33D1F3DF97A14BF1E361AC6AC3 ] PSched          C:\WINDOWS\system32\DRIVERS\psched.sys
19:03:59.0953 0x089c  PSched - ok
19:04:00.0000 0x089c  [ 80D317BD1C3DBC5D4FE7B1678C60CADD, DA76804B55D0CAB3DDD01EFC06673764AE4860693375C658B6063FB14AF7F12C ] Ptilink         C:\WINDOWS\system32\DRIVERS\ptilink.sys
19:04:00.0484 0x089c  Ptilink - ok
19:04:00.0703 0x089c  [ D86B4A68565E444D76457F14172C875A, 06B1CF81A62B3DAA8D0C5A8B88C56A504DE8E9278C520F754AF363A6676C58B0 ] PxHelp20        C:\WINDOWS\system32\Drivers\PxHelp20.sys
19:04:00.0968 0x089c  PxHelp20 - ok
19:04:00.0984 0x089c  ql1080 - ok
19:04:01.0000 0x089c  Ql10wnt - ok
19:04:01.0015 0x089c  ql12160 - ok
19:04:01.0015 0x089c  ql1240 - ok
19:04:01.0031 0x089c  ql1280 - ok
19:04:01.0484 0x089c  [ 583608EE65AABF971117A61AEE4BCAAE, 1FDE8D46BCD58CB476B3E86C025438995111003DAFB985CFE64138AEDC4B78CE ] RalinkRegistryWriter C:\Programme\Ralink\Common\RaRegistry.exe
19:04:01.0843 0x089c  RalinkRegistryWriter - ok
19:04:02.0125 0x089c  [ FE0D99D6F31E4FAD8159F690D68DED9C, 998685622ABE631984B7E4DBF91AB3594B1F574378D75EB9F6265F4650470692 ] RasAcd          C:\WINDOWS\system32\DRIVERS\rasacd.sys
19:04:03.0296 0x089c  RasAcd - ok
19:04:03.0390 0x089c  [ F5BA6CACCDB66C8F048E867563203246, AFEAD8FC02313F7EBC8F9F39E7ED2868852B480BE3902FA7BD0AFD81492AB243 ] RasAuto         C:\WINDOWS\System32\rasauto.dll
19:04:06.0281 0x089c  RasAuto - ok
19:04:06.0328 0x089c  [ 11B4A627BC9614B885C4969BFA5FF8A6, EAE0A412A2B0F68919C32A96B3A08CC1A06585E4998819F5C9051745F63FF5AD ] Rasl2tp         C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
19:04:07.0296 0x089c  Rasl2tp - ok
19:04:07.0421 0x089c  [ F9A7B66EA345726EDB5862A46B1ECCD5, 5D35429D394D36A1692A7E219BA1A85CD8096FEAE0F90BFE036A63118FEDBF57 ] RasMan          C:\WINDOWS\System32\rasmans.dll
19:04:08.0312 0x089c  RasMan - ok
19:04:08.0343 0x089c  [ 5BC962F2654137C9909C3D4603587DEE, A5CE5653D0105240F5E86CFAAB89E7917D42D939E2F27A5A7D6979289CA651B8 ] RasPppoe        C:\WINDOWS\system32\DRIVERS\raspppoe.sys
19:04:09.0265 0x089c  RasPppoe - ok
19:04:09.0390 0x089c  [ FDBB1D60066FCFBB7452FD8F9829B242, 10A2DACF944BD000032EBA8C095CB3D879CC55B28C377ADF6E52E508E47444DB ] Raspti          C:\WINDOWS\system32\DRIVERS\raspti.sys
19:04:10.0109 0x089c  Raspti - ok
19:04:10.0171 0x089c  [ 7AD224AD1A1437FE28D89CF22B17780A, 6645235CA27D671954E3557FA37082881C3D7D47492C71264CD8CB8D108EC801 ] Rdbss           C:\WINDOWS\system32\DRIVERS\rdbss.sys
19:04:10.0703 0x089c  Rdbss - ok
19:04:10.0781 0x089c  [ 4912D5B403614CE99C28420F75353332, 975341ECD660209987B5E5171B8315E032439E408CBE8A5986E67AF767F373BB ] RDPCDD          C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
19:04:11.0859 0x089c  RDPCDD - ok
19:04:11.0968 0x089c  [ 43AF5212BD8FB5BA6EED9754358BD8F7, AF330F61CECA4AFA359CEABC5EB3227E6B56A9A2DCE50701381D665122D7356D ] RDPWD           C:\WINDOWS\system32\drivers\RDPWD.sys
19:04:12.0968 0x089c  RDPWD - ok
19:04:13.0093 0x089c  [ 263AF18AF0F3DB99F574C95F284CCEC9, 2BFA9952E97EFEB386FC56EC2C125080CD12DAC078DBE43C395CB4D9F22165D3 ] RDSessMgr       C:\WINDOWS\system32\sessmgr.exe
19:04:13.0734 0x089c  RDSessMgr - ok
19:04:13.0968 0x089c  [ ED761D453856F795A7FE056E42C36365, EF026585B33415D8FCE94A9F27D7A4396C7C35C88E06A4CF0FEA702401E8597A ] redbook         C:\WINDOWS\system32\DRIVERS\redbook.sys
19:04:14.0843 0x089c  redbook - ok
19:04:15.0109 0x089c  [ 0E97EC96D6942CEEC2D188CC2EB69A01, D4253B4420BEF19451A55AB91E4834482181A31A31134F6E2AFE05C8E20C81A5 ] RemoteAccess    C:\WINDOWS\System32\mprdim.dll
19:04:16.0078 0x089c  RemoteAccess - ok
19:04:16.0109 0x089c  [ 851C30DF2807FCFA21E4C681A7D6440E, C2269B8ED4E831664B83F8F3BE33E5A340206A9E07F89CDF6707EAD8F280FBE9 ] RFCOMM          C:\WINDOWS\system32\DRIVERS\rfcomm.sys
19:04:16.0656 0x089c  RFCOMM - ok
19:04:17.0109 0x089c  [ 2A02E21867497DF20B8FC95631395169, D89E2D17ED4E1C727847C0E92D2DF68AEB70BF0B956BD2FE024ED70A961759D2 ] RpcLocator      C:\WINDOWS\system32\locator.exe
19:04:18.0171 0x089c  RpcLocator - ok
19:04:18.0281 0x089c  [ 3127AFBF2C1ED0AB14A1BBB7AAECB85B, ECFBACE3CBF2384948EA1C445BDA3955EB4F44A9874286E6537C67DC1283E5B0 ] RpcSs           C:\WINDOWS\System32\rpcss.dll
19:04:18.0656 0x089c  RpcSs - ok
19:04:18.0765 0x089c  [ A7557CAA7253DE02B40996EF9A478FAB, F47DC16A344AE4525ED41B69DE2D86AAEBE1068F2CFAB8DCEC8341EA590512FB ] RSUSBSTOR       C:\WINDOWS\system32\Drivers\RTS5121.sys
19:04:19.0515 0x089c  RSUSBSTOR - ok
19:04:19.0609 0x089c  [ 4BDD71B4B521521499DFD14735C4F398, 7B1498D3C67E56D05B58B7DA319ECB0117C37963AABB0E59B42831C087469DA1 ] RSVP            C:\WINDOWS\system32\rsvp.exe
19:04:20.0640 0x089c  RSVP - ok
19:04:20.0921 0x089c  [ 1AD20F7B8B608D36983305B283A8C31C, 8597FB4510BA9E62B27378C719C97F4B69E2482FB83B0888A0F3C176D3A9E1C7 ] rt2870          C:\WINDOWS\system32\DRIVERS\rt2870.sys
19:04:21.0968 0x089c  rt2870 - ok
19:04:22.0015 0x089c  [ 7174F20AD9B7B7878A51ECCA03C499C2, 5024E4424B8135D2BA13760CE7D56A25840FFFFC8FC32FF635D6A4BC38DCB28A ] RTLE8023xp      C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys
19:04:22.0593 0x089c  RTLE8023xp - ok
19:04:22.0609 0x089c  Rts516xIR - ok
19:04:22.0703 0x089c  [ AFB8261B56CBA0D86AEB6DF682AF9785, 104D96F1F19DD4CE492064ACC9634406A019EAE20B42D03198E400E661897127 ] SamSs           C:\WINDOWS\system32\lsass.exe
19:04:23.0109 0x089c  SamSs - ok
19:04:23.0234 0x089c  [ DCEC079FAD95D36C8DD5CB6D779DFE32, F8546552D939A225853A0CE4913701A93738DF02C999D16E141E9A828814BBC6 ] SCardSvr        C:\WINDOWS\System32\SCardSvr.exe
19:04:24.0312 0x089c  SCardSvr - ok
19:04:24.0484 0x089c  [ A050194A44D7FA8D7186ED2F4E8367AE, BCDF56D5A2F9E202DC67E7FE4BCC617BCC0BDFF2D221A621020068B17B2855BB ] Schedule        C:\WINDOWS\system32\schedsvc.dll
19:04:25.0281 0x089c  Schedule - ok
19:04:25.0421 0x089c  [ F34C06D1C706A6D9433570B087A18B02, 5A1B059458CD71FA9883C8E92F9300B86B79A6E6FBBC87431630DA43D1508319 ] Scutum50        C:\WINDOWS\system32\Drivers\Scutum50.sys
19:04:25.0546 0x089c  Scutum50 - detected UnsignedFile.Multi.Generic ( 1 )
19:04:26.0000 0x089c  Detect skipped due to KSN trusted
19:04:26.0000 0x089c  Scutum50 - ok
19:04:26.0218 0x089c  [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] Secdrv          C:\WINDOWS\system32\DRIVERS\secdrv.sys
19:04:27.0093 0x089c  Secdrv - ok
19:04:27.0437 0x089c  [ BEE4CFD1D48C23B44CF4B974B0B79B2B, DF3B02D713F8A4602BE75F004074D5DF79AFF2D58FF37110B2A6AC29F680758B ] seclogon        C:\WINDOWS\System32\seclogon.dll
19:04:34.0687 0x089c  seclogon - ok
19:04:35.0031 0x089c  [ 2AAC9B6ED9EDDFFB721D6452E34D67E3, 95D83F054A6610328D56E56CD948A6618C590231853E56FC20E7557DB61384A4 ] SENS            C:\WINDOWS\system32\sens.dll
19:04:35.0390 0x089c  SENS - ok
19:04:35.0578 0x089c  [ CF24EB4F0412C82BCD1F4F35A025E31D, B74CB094126F5C23F601C34D53B2DF5BE3E5918230AC9DCFCFFA8E66B3A0FA25 ] Serial          C:\WINDOWS\system32\drivers\Serial.sys
19:04:36.0921 0x089c  Serial - ok
19:04:37.0390 0x089c  [ 78F7BB9F4924BE164294C59B8C3FC096, 75051A6A8B0DBB16CD70855A408134270EEAF0C127BAAE5B592DB53BB87C085B ] ServiceLayer    C:\Programme\PC Connectivity Solution\ServiceLayer.exe
19:04:39.0125 0x089c  ServiceLayer - ok
19:04:39.0828 0x089c  [ 8E6B8C671615D126FDC553D1E2DE5562, CEEC0067514555D5CA489F50E3D7562FCA8DB8E952C3C878604C9277FC77959F ] Sfloppy         C:\WINDOWS\system32\drivers\Sfloppy.sys
19:04:49.0609 0x089c  Sfloppy - ok
19:04:50.0171 0x089c  [ CAD058D5F8B889A87CA3EB3CF624DCEF, A7CDCF44261D1F4D820927253EA8EBB63714B7BAFF8B08DE073507D9A7EEA5BB ] SharedAccess    C:\WINDOWS\System32\ipnathlp.dll
19:04:51.0359 0x089c  SharedAccess - ok
19:04:51.0640 0x089c  [ 2DB7D303C36DDD055215052F118E8E75, BE6E7BBE12A7A4EDF1F1C2935350603970C7426BBCA7A1A6644BB8999123AF17 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
19:04:54.0156 0x089c  ShellHWDetection - ok
19:04:54.0500 0x089c  Simbad - ok
19:04:55.0218 0x089c  [ 704B4F81729F676BBF034529FC334D82, 1E50DAF97836807A500284385D99272780A8B69CA88761250451060B207824F8 ] SkypeUpdate     C:\Programme\Skype\Updater\Updater.exe
19:04:56.0765 0x089c  SkypeUpdate - ok
19:04:57.0125 0x089c  [ 866D538EBE33709A5C9F5C62B73B7D14, BC94BEB7C17B4FCAC8B5D0D5006A203BC209E0504EECE149651D8691935696CD ] SLIP            C:\WINDOWS\system32\DRIVERS\SLIP.sys
19:05:02.0546 0x089c  SLIP - ok
19:05:02.0625 0x089c  Sparrow - ok
19:05:02.0718 0x089c  [ AB8B92451ECB048A4D1DE7C3FFCB4A9F, DD17733CBB370FCA08F0296704D7CBEACA3C8F76D0ABE4761C3B1FFDF7481D9E ] splitter        C:\WINDOWS\system32\drivers\splitter.sys
19:05:03.0187 0x089c  splitter - ok
19:05:03.0515 0x089c  [ 60784F891563FB1B767F70117FC2428F, E0B07F08E60FFBAD36C2E58180F4B2A16DCA47716044CBE0213DF7B74D742F1F ] Spooler         C:\WINDOWS\system32\spoolsv.exe
19:05:05.0812 0x089c  Spooler - ok
19:05:06.0031 0x089c  [ 50FA898F8C032796D3B1B9951BB5A90F, 1C86273EC19EB96D6DB9CE6670C00683B77C99C42CC2F7E75BC50872B93446B1 ] sr              C:\WINDOWS\system32\DRIVERS\sr.sys
19:05:07.0546 0x089c  sr - ok
19:05:07.0984 0x089c  [ FE77A85495065F3AD59C5C65B6C54182, EB4BAF992F961B2FD5D24BFCB6BCB2142BC32933139A818835FEAB190E4283BB ] srservice       C:\WINDOWS\system32\srsvc.dll
19:05:09.0125 0x089c  srservice - ok
19:05:09.0500 0x089c  [ 47DDFC2F003F7F9F0592C6874962A2E7, 17C643BD4EB09B5666FE41817DC785BE04A6E491CE79E8E5A702CDBD98E1BDD7 ] Srv             C:\WINDOWS\system32\DRIVERS\srv.sys
19:05:11.0156 0x089c  Srv - ok
19:05:11.0468 0x089c  [ 4DF5B05DFAEC29E13E1ED6F6EE12C500, 2971D7D45D6942D310D47DBD19B9680D2D29527E79B86133C72217FD29259465 ] SSDPSRV         C:\WINDOWS\System32\ssdpsrv.dll
19:05:12.0546 0x089c  SSDPSRV - ok
19:05:12.0640 0x089c  [ A36EE93698802CD899F98BFD553D8185, 224CFED921EA230FF8025D259E34968FD2C0FD34BB3A918FB4B9B8BA42BEA5D3 ] ssmdrv          C:\WINDOWS\system32\DRIVERS\ssmdrv.sys
19:05:12.0750 0x089c  ssmdrv - ok
19:05:13.0093 0x089c  [ BC2C5985611C5356B24AEB370953DED9, 15CBAB8166827DC098E2B16AB6F49A1441A4CB52AF3588F0AD964CAB596DFE10 ] stisvc          C:\WINDOWS\system32\wiaservc.dll
19:05:14.0265 0x089c  stisvc - ok
19:05:14.0343 0x089c  [ 77813007BA6265C4B6098187E6ED79D2, 93939120E803C46FBFD577C8FC2E6C7E71C0460E01D25CB29579490640AB50C7 ] streamip        C:\WINDOWS\system32\DRIVERS\StreamIP.sys
19:05:15.0687 0x089c  streamip - ok
19:05:15.0750 0x089c  [ 3941D127AEF12E93ADDF6FE6EE027E0F, EA1F0E32E1C5E90FA4AAC421DEBBE086512340758D3217A6334E886BCE638B51 ] swenum          C:\WINDOWS\system32\DRIVERS\swenum.sys
19:05:17.0265 0x089c  swenum - ok
19:05:17.0625 0x089c  [ 8CE882BCC6CF8A62F2B2323D95CB3D01, B408550A581F3DA222355964AFA4E976AD8471F0AA37573C42C4948AE5A23A3B ] swmidi          C:\WINDOWS\system32\drivers\swmidi.sys
19:05:18.0359 0x089c  swmidi - ok
19:05:18.0375 0x089c  SwPrv - ok
19:05:18.0390 0x089c  symc810 - ok
19:05:18.0406 0x089c  symc8xx - ok
19:05:18.0421 0x089c  sym_hi - ok
19:05:18.0437 0x089c  sym_u3 - ok
19:05:18.0609 0x089c  [ D7B9AD3ABD0F7F9F694D71F38B5C7B72, F712D36AF77EE2E0E8C1A20F825C06F8A23BD9D616563E9814EB4273E7787E6D ] SynTP           C:\WINDOWS\system32\DRIVERS\SynTP.sys
19:05:19.0203 0x089c  SynTP - ok
19:05:19.0312 0x089c  [ 8B83F3ED0F1688B4958F77CD6D2BF290, 546D3602183702B4F53E84413CFA2C933D64C8540378E54A8DCD148F3F36A2DA ] sysaudio        C:\WINDOWS\system32\drivers\sysaudio.sys
19:05:19.0875 0x089c  sysaudio - ok
19:05:20.0125 0x089c  [ 2903FFFA2523926D6219428040DCE6B9, 4F13181931B0499F6C3F08138054DBCD1F84CB9806999A9172B80DE79D446F62 ] SysmonLog       C:\WINDOWS\system32\smlogsvc.exe
19:05:20.0921 0x089c  SysmonLog - ok
19:05:21.0078 0x089c  [ 05903CAC4B98908D55EA5774775B382E, AC3666CBD894D737874A5998DC7F46A0A51A7B23B1835FC735B9AD503A2191CC ] TapiSrv         C:\WINDOWS\System32\tapisrv.dll
19:05:21.0859 0x089c  TapiSrv - ok
19:05:22.0671 0x089c  [ 9AEFA14BD6B182D61E3119FA5F436D3D, EA29E49434585409272E7901AF89771FE9D6E911A7DC44AB3C7020CFF8A44552 ] Tcpip           C:\WINDOWS\system32\DRIVERS\tcpip.sys
19:05:23.0953 0x089c  Tcpip - ok
19:05:24.0125 0x089c  [ 6471A66807F5E104E4885F5B67349397, F35CBFFB8BB235CCE30EF94A5273333900DD49FD506BF9D55D99A320B8A53A5A ] TDPIPE          C:\WINDOWS\system32\drivers\TDPIPE.sys
19:05:25.0046 0x089c  TDPIPE - ok
19:05:25.0156 0x089c  [ C56B6D0402371CF3700EB322EF3AAF61, 7743FA4C734BCE38EFB1CA69BC17364D8421E2CD172F856F7E38E7AE1EE93F2F ] TDTCP           C:\WINDOWS\system32\drivers\TDTCP.sys
19:05:26.0109 0x089c  TDTCP - ok
19:05:26.0296 0x089c  [ 88155247177638048422893737429D9E, B6D4E8691917946332C2208D01F8C8281978C1AD1E9951C5D99DF0D49AC34B3B ] TermDD          C:\WINDOWS\system32\DRIVERS\termdd.sys
19:05:27.0109 0x089c  TermDD - ok
19:05:27.0546 0x089c  [ B7DE02C863D8F5A005A7BF375375A6A4, 6DE05A7B28CA5A78D58536347FC47F15883EEDBEF487CEA0117CC280FC582DCC ] TermService     C:\WINDOWS\System32\termsrv.dll
19:05:28.0296 0x089c  TermService - ok
19:05:28.0421 0x089c  [ 2DB7D303C36DDD055215052F118E8E75, BE6E7BBE12A7A4EDF1F1C2935350603970C7426BBCA7A1A6644BB8999123AF17 ] Themes          C:\WINDOWS\System32\shsvcs.dll
19:05:28.0812 0x089c  Themes - ok
19:05:28.0843 0x089c  TosIde - ok
19:05:29.0000 0x089c  [ 626504572B175867F30F3215C04B3E2F, 47E87CE9BC666D5CB5953C5D497DC00A7CC28F8EC0A064B3E47700279C5C4B91 ] TrkWks          C:\WINDOWS\system32\trkwks.dll
19:05:29.0906 0x089c  TrkWks - ok
19:05:30.0062 0x089c  [ FAC6431BA75C6B68553D168D29F470F2, D8523004B01FC0407FAA09C31493D428320A577E754652EAAED90B5F55B57F22 ] truecrypt       C:\WINDOWS\system32\drivers\truecrypt.sys
19:05:32.0750 0x089c  truecrypt - ok
19:05:33.0593 0x089c  [ 5787B80C2E3C5E2F56C2A233D91FA2C9, 3774905CF77954DFCECDA5BCC7CDE3D0ED72712BFAAD85ADAE5246306447E46C ] Udfs            C:\WINDOWS\system32\drivers\Udfs.sys
19:05:35.0156 0x089c  Udfs - ok
19:05:35.0171 0x089c  ultra - ok
19:05:35.0593 0x089c  [ 402DDC88356B1BAC0EE3DD1580C76A31, 32A686595710336A6BFD54C03F552AE39439611662F84EF5D24193AE5665C6F3 ] Update          C:\WINDOWS\system32\DRIVERS\update.sys
19:05:36.0359 0x089c  Update - ok
19:05:36.0500 0x089c  [ 1DFD8975D8C89214B98D9387C1125B49, 0B6B268487C8E45E9B86BF4A0A9DB669E0E45D600DE3C82B63F9986CA9E01082 ] upnphost        C:\WINDOWS\System32\upnphost.dll
19:05:37.0125 0x089c  upnphost - ok
19:05:37.0187 0x089c  [ 8721F55D8BC9F89E3A63CEBDF5EF4FA3, C0C82480014B646709869A6A6FA2B71B993F9FCD8E2DB9E8F7D341C21EE169CF ] upperdev        C:\WINDOWS\system32\DRIVERS\usbser_lowerflt.sys
19:05:39.0671 0x089c  upperdev - ok
19:05:39.0734 0x089c  [ 9B11E6118958E63E1FEF129466E2BDA7, 97168BCE3F4A9BB9E6500F05E34851FB957B219C598944FADC28AC0011C0503B ] UPS             C:\WINDOWS\System32\ups.exe
19:05:41.0203 0x089c  UPS - ok
19:05:41.0234 0x089c  [ 1B611611C28D2DF25BC057D79C6F13FC, B0D86F63E44B40413BBAE6402CC088046CFAE082D41BBC2ED5A916293356B846 ] usbccgp         C:\WINDOWS\system32\DRIVERS\usbccgp.sys
19:05:42.0203 0x089c  usbccgp - ok
19:05:42.0234 0x089c  USBCCID - ok
19:05:42.0390 0x089c  [ 4BAC8DF07F1D8434FC640E677A62204E, 76C1351AF6752224BF59DEEE0F8665FE699F3DFD679F5BCD01C7D9383E6402A4 ] usbehci         C:\WINDOWS\system32\DRIVERS\usbehci.sys
19:05:43.0968 0x089c  usbehci - ok
19:05:44.0281 0x089c  [ 1AB3CDDE553B6E064D2E754EFE20285C, A99C4528C4227B1E96847614745AAFACD3C5F1BDFE435214DBF78740FFB300FE ] usbhub          C:\WINDOWS\system32\DRIVERS\usbhub.sys
19:05:45.0578 0x089c  usbhub - ok
19:05:45.0921 0x089c  [ A717C8721046828520C9EDF31288FC00, 1530BBE832EDBB0974AD89D723A03FF7A0094B368992D73C2C3E62A181DF1E0A ] usbprint        C:\WINDOWS\system32\DRIVERS\usbprint.sys
19:05:46.0906 0x089c  usbprint - ok
19:05:47.0250 0x089c  [ 84C44D720655A8AA475E57A9E764D675, 2D450199338A217FBD951317812A74223E8B477974C7634667E8896316C3FEA0 ] usbser          C:\WINDOWS\system32\drivers\usbser.sys
19:05:48.0031 0x089c  usbser - ok
19:05:48.0140 0x089c  [ 4E66C71D8D010BFB0DF1042D25E9CB0F, E581ED3557A06FEE7F35DF1C18C7D74FEFD1FC5E6CDAD6692F66F4A033830F1C ] UsbserFilt      C:\WINDOWS\system32\DRIVERS\usbser_lowerfltj.sys
19:05:49.0265 0x089c  UsbserFilt - ok
19:05:49.0484 0x089c  [ A32426D9B14A089EAA1D922E0C5801A9, ED1DC52EE45F8EAD3AEC4B1F817BB25634141CF48295494C5947DCE6CF7A9817 ] usbstor         C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
19:05:54.0062 0x089c  usbstor - ok
19:05:54.0171 0x089c  [ 26496F9DEE2D787FC3E61AD54821FFE6, 8BE7FF647470B9A951CBB478FAF83D657A15CC78037F42348A6B738F21D523DA ] usbuhci         C:\WINDOWS\system32\DRIVERS\usbuhci.sys
19:05:55.0906 0x089c  usbuhci - ok
19:05:55.0968 0x089c  [ 813236B1183CFCF289E367BD5DE6E29E, 167FE18A96F330AEEC1A4C419770C15EFEB536D43838285E51E7A62E95DF4674 ] usbvideo        C:\WINDOWS\system32\Drivers\usbvideo.sys
19:05:56.0984 0x089c  usbvideo - ok
19:05:57.0937 0x089c  [ 0D3A8FAFCEACD8B7625CD549757A7DF1, B9CFDEFCD66AA139F3DC2F967B184669532922563AD5A71769BABDC4370D065E ] VgaSave         C:\WINDOWS\System32\drivers\vga.sys
19:06:01.0062 0x089c  VgaSave - ok
19:06:01.0140 0x089c  ViaIde - ok
19:06:01.0328 0x089c  [ A5A712F4E880874A477AF790B5186E1D, FE885ED04C3EAFC379787F836738A2769E43D07CF52DD917D90C38E001957A5E ] VolSnap         C:\WINDOWS\system32\drivers\VolSnap.sys
19:06:02.0109 0x089c  VolSnap - ok
19:06:02.0250 0x089c  [ 68F106273BE29E7B7EF8266977268E78, 1488AB7A654EBC94C73E1D494067189ACB95BC233980110CAC4C0297CDC4115A ] VSS             C:\WINDOWS\System32\vssvc.exe
19:06:09.0437 0x089c  VSS - ok
19:06:09.0593 0x089c  [ 7B353059E665F8B7AD2BBEAEF597CF45, 84A4311F18A4B8DCB364741DEA7D18E2363F19564B2EF25214965DC729527068 ] W32Time         C:\WINDOWS\system32\w32time.dll
19:06:11.0500 0x089c  W32Time - ok
19:06:11.0640 0x089c  [ E20B95BAEDB550F32DD489265C1DA1F6, 5589B2067E6C9FBA290D8C5EADDC198EBAF39C50C3CD7D2BC5CDA7CBFBC445E5 ] Wanarp          C:\WINDOWS\system32\DRIVERS\wanarp.sys
19:06:13.0187 0x089c  Wanarp - ok
19:06:13.0484 0x089c  [ D6EFAF429FD30C5DF613D220E344CCE7, 807D4563E8AD4073688691078EB13AF240E14BA5E0C8506A48B3060A20B90082 ] WDC_SAM         C:\WINDOWS\system32\DRIVERS\wdcsam.sys
19:06:15.0812 0x089c  WDC_SAM - ok
19:06:16.0328 0x089c  [ D918617B46457B9AC28027722E30F647, 407284D3055DC11944D4EE7E4357E7CF9CAF8CA40CA50633AB6FD4A82CB7EEA6 ] Wdf01000        C:\WINDOWS\system32\Drivers\wdf01000.sys
19:06:18.0031 0x089c  Wdf01000 - ok
19:06:18.0062 0x089c  WDICA - ok
19:06:18.0140 0x089c  [ 6768ACF64B18196494413695F0C3A00F, 3A8F8586F1D997D19A8478345338D2AECD785AEABDB61531DD3F92003D3230A5 ] wdmaud          C:\WINDOWS\system32\drivers\wdmaud.sys
19:06:19.0750 0x089c  wdmaud - ok
19:06:20.0531 0x089c  [ 81727C9873E3905A2FFC1EBD07265002, 6AC2383A1DCBB7FA3DB90FBB874C8E1819F5B7492717FF41E303EFC7BF72F93E ] WebClient       C:\WINDOWS\System32\webclnt.dll
19:06:21.0531 0x089c  WebClient - ok
19:06:21.0843 0x089c  [ 6F3F3973D97714CC5F906A19FE883729, 7817118BE94D0F6FAE0F9CE48AD70FFE0AEF886CCE09C666768FAB61047F992F ] winmgmt         C:\WINDOWS\system32\wbem\WMIsvc.dll
19:06:22.0734 0x089c  winmgmt - ok
19:06:22.0875 0x089c  [ C51B4A5C05A5475708E3C81C7765B71D, F776D2680BD3407307B7072626F78460361FC5BC38623C9E16F394D300AB25DE ] WmdmPmSN        C:\WINDOWS\system32\MsPMSNSv.dll
19:06:23.0718 0x089c  WmdmPmSN - ok
19:06:24.0093 0x089c  [ C42584FD66CE9E17403AEBCA199F7BDB, E3F2E1066F36AE5D33D4482239B2E556BE0C137923C9A120DFB36EC82F2E77B0 ] WmiAcpi         C:\WINDOWS\system32\DRIVERS\wmiacpi.sys
19:06:25.0203 0x089c  WmiAcpi - ok
19:06:25.0296 0x089c  [ 93908111BA57A6E60EC2FA2DE202105C, F395F25F18D15C6B9FEDB45FD31E10295FFE5517E2BC86ACAC11904EA0664BE2 ] WmiApSrv        C:\WINDOWS\system32\wbem\wmiapsrv.exe
19:06:26.0500 0x089c  WmiApSrv - ok
19:06:26.0921 0x089c  [ BF05650BB7DF5E9EBDD25974E22403BB, AF173D89B768CFC7AB03DFADD4F049CAC40AC59A0C9208AF5AB92CB368983077 ] WMPNetworkSvc   C:\Programme\Windows Media Player\WMPNetwk.exe
19:06:28.0546 0x089c  WMPNetworkSvc - ok
19:06:28.0656 0x089c  [ CF4DEF1BF66F06964DC0D91844239104, CC1D9CECE2056D29A9651D51BB57C3F4F9BF9E90A4808CF7496C683C874FBD51 ] WpdUsb          C:\WINDOWS\system32\DRIVERS\wpdusb.sys
19:06:29.0046 0x089c  WpdUsb - ok
19:06:29.0359 0x089c  [ 15673BD0B86150CB8E27766059C72A9B, 56C23289A8BFF4945EE532CF6D62D3EC81B827CA15A359F30A327789F9FE9CAF ] WPFFontCache_v0400 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
19:06:31.0578 0x089c  WPFFontCache_v0400 - ok
19:06:31.0734 0x089c  [ 6ABE6E225ADB5A751622A9CC3BC19CE8, 4061C5D0F051DFF1730E2A3BFC1CCA97B29602FC50F10F6B44D93B0D28F42024 ] WS2IFSL         C:\WINDOWS\System32\drivers\ws2ifsl.sys
19:06:33.0015 0x089c  WS2IFSL - ok
19:06:33.0125 0x089c  [ 300B3E84FAF1A5C1F791C159BA28035D, 0194856BDF94C1F274AF70AD558290ACDACDDEA331BD66FEB8E167ABD1E36786 ] wscsvc          C:\WINDOWS\system32\wscsvc.dll
19:06:34.0656 0x089c  wscsvc - ok
19:06:34.0843 0x089c  [ 43F767D59BFC25D8F4FC2EB42043EC1E, 9DC502AE199A93FD8492F7AEC41F0578AD8C75E91AE7A083BC37224243A4DCDE ] WSIMD           C:\WINDOWS\system32\DRIVERS\wsimd.sys
19:06:35.0390 0x089c  WSIMD - detected UnsignedFile.Multi.Generic ( 1 )
19:06:35.0984 0x089c  Detect skipped due to KSN trusted
19:06:35.0984 0x089c  WSIMD - ok
19:06:36.0140 0x089c  [ C98B39829C2BBD34E454150633C62C78, 71B60EA3AD0E2637917D528C6A9E7ECF2949E3E5E91036AA5BBADA95BD725511 ] WSTCODEC        C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
19:06:36.0968 0x089c  WSTCODEC - ok
19:06:37.0265 0x089c  [ 7B4FE05202AA6BF9F4DFD0E6A0D8A085, A1DB8909FA73337DB613D01824945485186654364A4DF129B8CB913CF87D1D2E ] wuauserv        C:\WINDOWS\system32\wuauserv.dll
19:06:38.0578 0x089c  wuauserv - ok
19:06:38.0718 0x089c  [ EAA6324F51214D2F6718977EC9CE0DEF, B9DE1521395E09233FE519873702979C3EAF65FEC4B94B12A46CECB16C488543 ] WudfPf          C:\WINDOWS\system32\DRIVERS\WudfPf.sys
19:06:38.0968 0x089c  WudfPf - ok
19:06:39.0046 0x089c  [ F91FF1E51FCA30B3C3981DB7D5924252, D7052B58F22638CA8B59C6FD7408D6D6DD1C33910912CACC05C133472CE0DDCE ] WudfRd          C:\WINDOWS\system32\DRIVERS\wudfrd.sys
19:06:39.0515 0x089c  WudfRd - ok
19:06:39.0625 0x089c  [ DDEE3682FE97037C45F4D7AB467CB8B6, D5A8F07AF4EDD9D7E17FEC6222D187E2981C177A479511E407756E0E5CB8D387 ] WudfSvc         C:\WINDOWS\System32\WUDFSvc.dll
19:06:39.0906 0x089c  WudfSvc - ok
19:06:40.0062 0x089c  [ C4F109C005F6725162D2D12CA751E4A7, AC996B44338328BDD4442FE48406F286A64526F0EC77BE00A19FA7FDB0407CFE ] WZCSVC          C:\WINDOWS\System32\wzcsvc.dll
19:06:40.0703 0x089c  WZCSVC - ok
19:06:40.0781 0x089c  [ 0ADA34871A2E1CD2CAAFED1237A47750, 45BEF8649078BD74C1A347B5F2D3A1958E5A7DCD6C6BA8A2E0CAD277A929C64E ] xmlprov         C:\WINDOWS\System32\xmlprov.dll
19:06:41.0390 0x089c  xmlprov - ok
19:06:41.0484 0x089c  ================ Scan global ===============================
19:06:41.0734 0x089c  [ 2C60091CA5F67C3032EAB3B30390C27F, 9E205C8E67F4B61FCFA2A82AA1968D522C3B6410D7075BE813F7F1564D61632E ] C:\WINDOWS\system32\basesrv.dll
19:06:41.0953 0x089c  [ E62178BC21EAC63A3B9A2DBD46C1B505, CAA5480CC4DAA37758F0CF445F865FD6F4630080B044EF2E606C2F62DAA4061A ] C:\WINDOWS\system32\winsrv.dll
19:06:42.0234 0x089c  [ E62178BC21EAC63A3B9A2DBD46C1B505, CAA5480CC4DAA37758F0CF445F865FD6F4630080B044EF2E606C2F62DAA4061A ] C:\WINDOWS\system32\winsrv.dll
19:06:42.0312 0x089c  [ A3EDBE9053889FB24AB22492472B39DC, 6F2ED6E04BDE2FCA2A8BF9BD2D1D6923DE6EAECB46F582B6C0BD1CF364D65C9E ] C:\WINDOWS\system32\services.exe
19:06:42.0328 0x089c  [ Global ] - ok
19:06:42.0328 0x089c  ================ Scan MBR ==================================
19:06:42.0359 0x089c  [ 69035F21489D7C5312386870E4AEF5AE ] \Device\Harddisk0\DR0
19:06:42.0796 0x089c  \Device\Harddisk0\DR0 - detected TDSS File System ( 1 )
19:06:42.0796 0x089c  \Device\Harddisk0\DR0 ( TDSS File System ) - warning
19:06:43.0109 0x089c  ================ Scan VBR ==================================
19:06:43.0125 0x089c  [ 605BC8AB08DB6AEBD9A626F06F3ACDD3 ] \Device\Harddisk0\DR0\Partition1
19:06:43.0125 0x089c  \Device\Harddisk0\DR0\Partition1 - ok
19:06:43.0125 0x089c  ================ Scan generic autorun ======================
19:06:46.0718 0x089c  [ 88A5D104AB29EC5BF3C74F608A6C2335, B3A641B1A6F9E7E2E333FDC586549C4E7096556996D86A69CFFA825BD8EB52E9 ] C:\WINDOWS\RTHDCPL.EXE
19:07:09.0812 0x089c  RTHDCPL - ok
19:07:17.0500 0x089c  [ 95B37A78DB9086680FB585D9112BBB0F, A53FFE68FE58150C6E109AEEBBE6E85C96422C7B0CD84077C4D801EEFE658ADB ] C:\Programme\System Control Manager\MGSysCtrl.exe
19:07:21.0453 0x089c  MGSysCtrl - detected UnsignedFile.Multi.Generic ( 1 )
19:07:24.0078 0x089c  MGSysCtrl ( UnsignedFile.Multi.Generic ) - warning
19:07:24.0125 0x089c  Force sending object to P2P due to detect: C:\Programme\System Control Manager\MGSysCtrl.exe
19:07:28.0656 0x089c  Object send P2P result: true
19:07:30.0546 0x089c  [ 61C23465F195FDF5AE5FE342E1692AC7, BD3628DCBB6AED97031D70BCA9BA8F7C8F0BCBD19EF93C2F126B14226C20BB6B ] C:\Programme\Synaptics\SynTP\SynTPEnh.exe
19:07:34.0421 0x089c  SynTPEnh - ok
19:07:35.0234 0x089c  [ 3E23D1F7E91627DBD44AC82077E2BA7C, 09235370B85EF5FEA24F1291B9ADAD805C8D7357A78EF8CE3BA0E913F59145EC ] C:\Programme\Avira\AntiVir Desktop\avgnt.exe
19:07:37.0968 0x089c  avgnt - ok
19:07:41.0546 0x089c  [ 30A0B072E647757CEDDA9E306D410410, 9B16173C973F6B494F35DBA3AD339C3964CD8B066F9D59E5BC9DCF27B526A1F1 ] C:\Programme\COMODO\COMODO Internet Security\cfp.exe
19:07:55.0296 0x089c  COMODO Internet Security - ok
19:07:57.0125 0x089c  [ 01B4E6E990B6C5EA8856D96C7FD044B2, 2266296FD3C8E0DFA657F21406EE4E494477870DFAF7C65BEBCB6FBA8CADC7C6 ] C:\WINDOWS\system32\ctfmon.exe
19:08:14.0687 0x089c  ctfmon.exe - ok
19:08:14.0843 0x089c  [ 01B4E6E990B6C5EA8856D96C7FD044B2, 2266296FD3C8E0DFA657F21406EE4E494477870DFAF7C65BEBCB6FBA8CADC7C6 ] C:\WINDOWS\system32\ctfmon.exe
19:08:28.0109 0x089c  CTFMON.EXE - ok
19:08:28.0250 0x089c  BullGuard - ok
19:08:28.0515 0x089c  [ 43D083268A0919F3527A2837390BAF63, 58B62697B01B8C9396271A64424178691FA85D4625DAF2AC8DE7F06A64F64C2A ] C:\Programme\Gemeinsame Dateien\InstallShield\UpdateService\ISUSPM.exe
19:08:51.0390 0x089c  ISUSPM - ok
19:08:51.0437 0x089c  Waiting for KSN requests completion. In queue: 1
19:08:52.0437 0x089c  Waiting for KSN requests completion. In queue: 1
19:08:53.0531 0x089c  Waiting for KSN requests completion. In queue: 1
19:08:54.0531 0x089c  Waiting for KSN requests completion. In queue: 1
19:09:01.0796 0x089c  AV detected via SS1: Avira Antivirus, 15.0.9.460, enabled, updated
19:09:01.0843 0x089c  FW detected via SS1: COMODO Firewall, 3.9, enabled
19:09:02.0359 0x089c  ============================================================
19:09:02.0359 0x089c  Scan finished
19:09:02.0359 0x089c  ============================================================
19:09:02.0796 0x090c  Detected object count: 2
19:09:02.0796 0x090c  Actual detected object count: 2
19:09:11.0531 0x090c  \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
19:09:11.0531 0x090c  \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip 
19:09:11.0531 0x090c  MGSysCtrl ( UnsignedFile.Multi.Generic ) - skipped by user
19:09:11.0531 0x090c  MGSysCtrl ( UnsignedFile.Multi.Generic ) - User select action: Skip

tja scheinbar trotz neustart noch immer da

schrauber · 06.05.2015, 07:50

Kannst Du auch mal bitte das Log vom Delete posten? Damit ich sehe was da schief läuft.

Eisbaer27 · 13.05.2015, 08:10

Hi, also mittlerweile hat scheinbar der delete geklappt, allerdings war es seltsam:
nach dem reboot habe ich ausversehen den Autostart vom tsskiller abgelehnt und beim nächsten scan trotzdem nichts gefunden. dann mal im abgesicherten Modus gescannt und dort wieder fündig geworden.

hier also das halbe log nr 1

Code:

ATTFilter

19:08:01.0968 0x0460  TDSS rootkit removing tool 3.0.0.44 Jan 22 2015 08:27:04
19:08:07.0984 0x0460  ============================================================
19:08:07.0984 0x0460  Current date / time: 2015/05/05 19:08:07.0984
19:08:07.0984 0x0460  SystemInfo:
19:08:07.0984 0x0460  
19:08:07.0984 0x0460  OS Version: 5.1.2600 ServicePack: 3.0
19:08:07.0984 0x0460  Product type: Workstation
19:08:07.0984 0x0460  ComputerName: LAPPI
19:08:07.0984 0x0460  UserName: Lurchi
19:08:07.0984 0x0460  Windows directory: C:\WINDOWS
19:08:08.0000 0x0460  System windows directory: C:\WINDOWS
19:08:08.0000 0x0460  Processor architecture: Intel x86
19:08:08.0000 0x0460  Number of processors: 2
19:08:08.0000 0x0460  Page size: 0x1000
19:08:08.0000 0x0460  Boot type: Safe boot
19:08:08.0000 0x0460  ============================================================
19:08:14.0265 0x0460  KLMD registered as C:\WINDOWS\system32\drivers\90642521.sys
19:08:15.0015 0x0460  System UUID: {56179B87-2EED-E327-0996-09B5BAE3F333}
19:08:16.0218 0x0460  Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 ( 149.05 Gb ), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
19:08:16.0234 0x0460  ============================================================
19:08:16.0234 0x0460  \Device\Harddisk0\DR0:
19:08:16.0234 0x0460  MBR partitions:
19:08:16.0234 0x0460  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x11B345B6
19:08:16.0234 0x0460  ============================================================
19:08:16.0312 0x0460  C: <-> \Device\Harddisk0\DR0\Partition1
19:08:16.0328 0x0460  ============================================================
19:08:16.0328 0x0460  Initialize success
19:08:16.0328 0x0460  ============================================================
19:08:27.0046 0x0480  ============================================================
19:08:27.0046 0x0480  Scan started
19:08:27.0046 0x0480  Mode: Manual; SigCheck; TDLFS; 
19:08:27.0046 0x0480  ============================================================
19:08:27.0046 0x0480  KSN ping started
19:08:27.0343 0x0480  KSN ping finished: false
19:08:27.0593 0x0480  ================ Scan system memory ========================
19:08:27.0593 0x0480  System memory - ok
19:08:27.0593 0x0480  ================ Scan services =============================
19:08:27.0875 0x0480  Abiosdsk - ok
19:08:27.0890 0x0480  abp480n5 - ok
19:08:27.0953 0x0480  [ AC407F1A62C3A300B4F2B5A9F1D55B2C, 31F5FC61B37E22100B3A52A590295A7E827FFC581FA9960C64B9032452AAECED ] ACPI            C:\WINDOWS\system32\DRIVERS\ACPI.sys
19:08:29.0953 0x0480  ACPI - ok
19:08:30.0062 0x0480  [ 9E1CA3160DAFB159CA14F83B1E317F75, 13B3E897B0E819BF734449416D9EC6EBCAC89538EC69BF48C068593B82D57004 ] ACPIEC          C:\WINDOWS\system32\DRIVERS\ACPIEC.sys
19:08:30.0343 0x0480  ACPIEC - ok
19:08:30.0500 0x0480  [ B04A4810C6CC205F9DC72DC22E4AB236, 547321F5C28C80D4818372D65E2A33D4BAC593015DD6613B24586FE4B4A95D5D ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
19:08:30.0578 0x0480  AdobeFlashPlayerUpdateSvc - ok
19:08:30.0593 0x0480  adpu160m - ok
19:08:30.0671 0x0480  [ 8BED39E3C35D6A489438B8141717A557, 1B5796E56B0927360CE0759641B1151828BC0A9E45620D2B2D880491F5CE33D0 ] aec             C:\WINDOWS\system32\drivers\aec.sys
19:08:30.0937 0x0480  aec - ok
19:08:31.0046 0x0480  [ 1E44BC1E83D8FD2305F8D452DB109CF9, CF5EC07E0B589FA2A4701C6CFD69E893FC3ABF274AD57AE3C13FFE49063B02C8 ] AFD             C:\WINDOWS\System32\drivers\afd.sys
19:08:31.0187 0x0480  AFD - ok
19:08:31.0203 0x0480  Aha154x - ok
19:08:31.0234 0x0480  aic78u2 - ok
19:08:31.0265 0x0480  aic78xx - ok
19:08:31.0390 0x0480  [ 738D80CC01D7BC7584BE917B7F544394, DCC17AAEF5CDDF52FAAC3CC6904EF421CD595F66318A2370BEE261D5C3A8E340 ] Alerter         C:\WINDOWS\system32\alrsvc.dll
19:08:31.0671 0x0480  Alerter - ok
19:08:31.0734 0x0480  [ 190CD73D4984F94D823F9444980513E5, 93A32C2495CCA094F768BA707C74DA5C00B8A88A9236DD1A297439A7C2E6C6FA ] ALG             C:\WINDOWS\System32\alg.exe
19:08:31.0859 0x0480  ALG - ok
19:08:31.0875 0x0480  AliIde - ok
19:08:31.0906 0x0480  amsint - ok
19:08:32.0250 0x0480  [ 6A7BE5D0E66B8121E60EFAD57EB04963, 96EC128BC06E7ED7485D52DD52F8A71FEBD9633415DD8486BDBCC499ED32A0F8 ] AntiVirMailService C:\Programme\Avira\AntiVir Desktop\avmailc.exe
19:08:32.0406 0x0480  AntiVirMailService - ok
19:08:32.0515 0x0480  [ F36D18EF1E66F92094AD89D17BEF007C, A5C793B340311CB7A301B77316E1976E3CD7CA9470CE5F1062CB003BCD4C155C ] AntiVirSchedulerService C:\Programme\Avira\AntiVir Desktop\sched.exe
19:08:32.0625 0x0480  AntiVirSchedulerService - ok
19:08:32.0718 0x0480  [ F36D18EF1E66F92094AD89D17BEF007C, A5C793B340311CB7A301B77316E1976E3CD7CA9470CE5F1062CB003BCD4C155C ] AntiVirService  C:\Programme\Avira\AntiVir Desktop\avguard.exe
19:08:32.0796 0x0480  AntiVirService - ok
19:08:32.0812 0x0480  AppMgmt - ok
19:08:33.0000 0x0480  [ 6C21F270AFEC1E423C00E96D3BD234DC, 8DA4ABDD83AECCFD87535AF3C9E3613CBFC4EE14967A551196E7B77F80858E65 ] AR5416          C:\WINDOWS\system32\DRIVERS\athw.sys
19:08:33.0250 0x0480  AR5416 - ok
19:08:33.0265 0x0480  asc - ok
19:08:33.0296 0x0480  asc3350p - ok
19:08:33.0328 0x0480  asc3550 - ok
19:08:33.0593 0x0480  [ 776ACEFA0CA9DF0FAA51A5FB2F435705, 72DF7ED6B085BC468994F5B3189506FD726A9A17A9C42ACA1E420D787691361D ] aspnet_state    C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
19:08:33.0718 0x0480  aspnet_state - ok
19:08:33.0765 0x0480  [ B153AFFAC761E7F5FCFA822B9C4E97BC, 7E60F572A6B3C6219E3C86225AA37243AFFD74337DB7F108B04778042E5CC959 ] AsyncMac        C:\WINDOWS\system32\DRIVERS\asyncmac.sys
19:08:34.0015 0x0480  AsyncMac - ok
19:08:34.0093 0x0480  [ 9F3A2F5AA6875C72BF062C712CFA2674, B4DF1D2C56A593C6B54DE57395E3B51D288F547842893B32B0F59228A0CF70B9 ] atapi           C:\WINDOWS\system32\drivers\atapi.sys
19:08:34.0359 0x0480  atapi - ok
19:08:34.0390 0x0480  Atdisk - ok
19:08:34.0453 0x0480  [ 9916C1225104BA14794209CFA8012159, 5D6F05F715C52A16D05CAE15C3DFE77A139A7F27F7AE710EC9A10F9EE05115A1 ] Atmarpc         C:\WINDOWS\system32\DRIVERS\atmarpc.sys
19:08:34.0718 0x0480  Atmarpc - ok
19:08:34.0812 0x0480  [ 58ED0D5452DF7BE732193E7999C6B9A4, 254E2ECF592DDA2E3E6CA9F6F3E77926E2265586A7937BA95199ED47BCDE69A3 ] AudioSrv        C:\WINDOWS\System32\audiosrv.dll
19:08:35.0078 0x0480  AudioSrv - ok
19:08:35.0109 0x0480  [ D9F724AA26C010A217C97606B160ED68, 329B5118F2409731D06FDAE85B6ADD64A048292801BCB3546651CEB303111695 ] audstub         C:\WINDOWS\system32\DRIVERS\audstub.sys
19:08:35.0390 0x0480  audstub - ok
19:08:35.0484 0x0480  [ AF5DA81B19AFA730F1E5246AD81D140A, 532951071F56896A3B5D47874C14D996C8620EA02F87D4BA21B083EC804FB166 ] avgntflt        C:\WINDOWS\system32\DRIVERS\avgntflt.sys
19:08:35.0609 0x0480  avgntflt - ok
19:08:35.0671 0x0480  [ A5674637BCA212D9FE136ADFA04C9857, 95F3632EBB041C539816D285EBE1F379D46A4187379C69D4683D9F4DECBDB80C ] avipbb          C:\WINDOWS\system32\DRIVERS\avipbb.sys
19:08:35.0718 0x0480  avipbb - ok
19:08:35.0781 0x0480  [ D8C712305F73CD34D1B344810E522728, 49A474FF6CA44E8427D7A8290B47395125B0148AF384CF2B3B1FA495A4718CBA ] avkmgr          C:\WINDOWS\system32\DRIVERS\avkmgr.sys
19:08:35.0828 0x0480  avkmgr - ok
19:08:35.0859 0x0480  [ DA1F27D85E0D1525F6621372E7B685E9, 5A81A46A3BDD19DAFC6C87D277267A5D44F3A1B5302F2CC1111D84B7BAD5610D ] Beep            C:\WINDOWS\system32\drivers\Beep.sys
19:08:36.0109 0x0480  Beep - ok
19:08:36.0218 0x0480  [ D6F603772A789BB3228F310D650B8BD1, A539025C70FD998A9B8703DE05CAE5E99BC721D8852EA561EBC2DD20CB371D2E ] BITS            C:\WINDOWS\system32\qmgr.dll
19:08:36.0625 0x0480  BITS - ok
19:08:36.0718 0x0480  [ B900D52BD62B19F086EBA674911A9AEC, CFD61EBE60303B0E04973A14B4819819148F486BCC952E465BB830E46350D92C ] BMserDiag       C:\WINDOWS\system32\DRIVERS\BMserDiag.sys
19:08:36.0843 0x0480  BMserDiag - ok
19:08:36.0906 0x0480  [ B900D52BD62B19F086EBA674911A9AEC, CFD61EBE60303B0E04973A14B4819819148F486BCC952E465BB830E46350D92C ] BMserNmea       C:\WINDOWS\system32\DRIVERS\BMserNmea.sys
19:08:36.0953 0x0480  BMserNmea - ok
19:08:36.0984 0x0480  [ B900D52BD62B19F086EBA674911A9AEC, CFD61EBE60303B0E04973A14B4819819148F486BCC952E465BB830E46350D92C ] BMusbmdm        C:\WINDOWS\system32\DRIVERS\BMusbmdm.sys
19:08:37.0015 0x0480  BMusbmdm - ok
19:08:37.0093 0x0480  [ 3B77514728BA0BFE4143FC3A2780B289, 07D8131F5A90798F44566CD21E33314E41F94FEF7303913EB0B54E0AB7EFC0D9 ] BootDefragDriver C:\WINDOWS\system32\drivers\BootDefragDriver.sys
19:08:37.0125 0x0480  BootDefragDriver - ok
19:08:37.0203 0x0480  [ B71549F23736ADF83A571061C47777FD, A1D0320736EE777030A543DCA086367EB5A5B6F95088B9C22D8E09326C3A39A9 ] Browser         C:\WINDOWS\System32\browser.dll
19:08:37.0281 0x0480  Browser - ok
19:08:37.0312 0x0480  [ B279426E3C0C344893ED78A613A73BDE, 30B29ED5DCFF0C180B806A5FBC705E1CAF6B0F525298CDA79A77FC2AF6E5AAA7 ] BthEnum         C:\WINDOWS\system32\DRIVERS\BthEnum.sys
19:08:37.0578 0x0480  BthEnum - ok
19:08:37.0671 0x0480  [ FCA6F069597B62D42495191ACE3FC6C1, 23A4EAA542547AC48BCB19DEC9C8E1C1D7D83F199F045DA4682C33292F011CE9 ] BTHMODEM        C:\WINDOWS\system32\DRIVERS\bthmodem.sys
19:08:37.0953 0x0480  BTHMODEM - ok
19:08:38.0015 0x0480  [ 80602B8746D3738F5886CE3D67EF06B6, 15ABAA8106C42A4453763EEB92B291844580168C934088DB1E22B2065DC238E9 ] BthPan          C:\WINDOWS\system32\DRIVERS\bthpan.sys
19:08:38.0281 0x0480  BthPan - ok
19:08:38.0390 0x0480  [ 592E1CEDBE314D0EF184DC6F46141E76, D69106F90C56C1E67BA4B96D6766C6676B66D0E0DF8358DA4B75FEFF211AA23E ] BTHPORT         C:\WINDOWS\system32\Drivers\BTHport.sys
19:08:38.0515 0x0480  BTHPORT - ok
19:08:38.0546 0x0480  [ 26C601EF7525E31379744ABFC6F35A1B, 842626D3A00DDA959A4AB730C0D551244DCDA15AC291FD70CC7324571A6088EC ] BthServ         C:\WINDOWS\System32\bthserv.dll
19:08:38.0796 0x0480  BthServ - ok
19:08:38.0859 0x0480  [ 61364CD71EF63B0F038B7E9DF00F1EFA, FB44D02B4379A8AF7DD8B0B22B53888B758903700142BFE45A412709294CE88A ] BTHUSB          C:\WINDOWS\system32\Drivers\BTHUSB.sys
19:08:39.0109 0x0480  BTHUSB - ok
19:08:39.0140 0x0480  [ 90A673FC8E12A79AFBED2576F6A7AAF9, BDE7858A3457DB979FEDD8577FA6321BF72848E4A7BF9F173C78A6A10CBB3EBE ] cbidf2k         C:\WINDOWS\system32\drivers\cbidf2k.sys
19:08:39.0390 0x0480  cbidf2k - ok
19:08:39.0484 0x0480  [ 0BE5AEF125BE881C4F854C554F2B025C, 1770DD70B3F115A0EF460907DEDC1E4B7241C08615A98F194D61A49C3E2BAA54 ] CCDECODE        C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
19:08:39.0734 0x0480  CCDECODE - ok
19:08:39.0750 0x0480  cd20xrnt - ok
19:08:39.0828 0x0480  [ C1B486A7658353D33A10CC15211A873B, AA4DD9E7AAE5AAB1146B360B17001F975D2F29A1281CF7B13E7136480410F347 ] Cdaudio         C:\WINDOWS\system32\drivers\Cdaudio.sys
19:08:40.0062 0x0480  Cdaudio - ok
19:08:40.0125 0x0480  [ C885B02847F5D2FD45A24E219ED93B32, B26B2F8E3A831E2B65EB0C5195B0645CD50E22615CE79C9B0B391CD563B121DB ] Cdfs            C:\WINDOWS\system32\drivers\Cdfs.sys
19:08:40.0390 0x0480  Cdfs - ok
19:08:40.0437 0x0480  [ 1F4260CC5B42272D71F79E570A27A4FE, B51C2A3ED3C309953D0EA45869C8E464C10F2533DADE9E0286AF674979098D1D ] Cdrom           C:\WINDOWS\system32\DRIVERS\cdrom.sys
19:08:40.0703 0x0480  Cdrom - ok
19:08:40.0796 0x0480  [ 61305C679E5766A03A09C0E966939206, E85EC9D23C81A2F8C08B439FA34F43C475A26C38DF4B4B40758CFC0D64C50C17 ] CFRMD           C:\WINDOWS\system32\DRIVERS\CFRMD.sys
19:08:40.0828 0x0480  CFRMD - ok
19:08:40.0859 0x0480  Changer - ok
19:08:40.0921 0x0480  [ 28E3040D1F1CA2008CD6B29DFEBC9A5E, ACB458E8A11AA2143734A5A0281973D95158E6402A6453F98F9832D1E19B01F9 ] CiSvc           C:\WINDOWS\system32\cisvc.exe
19:08:41.0171 0x0480  CiSvc - ok
19:08:41.0218 0x0480  [ 778A30ED3C134EB7E406AFC407E9997D, 3E6AD115AB2596EB001BC21AEADDBC75F27C42DB90C986B7AD17743CE631234E ] ClipSrv         C:\WINDOWS\system32\clipsrv.exe
19:08:41.0484 0x0480  ClipSrv - ok
19:08:41.0625 0x0480  [ 8410C7DE4748AEE7F9D7CB70ADFFDC01, 1F77AC232CAD72204EE37ACB1A4E03BDCEFD51A8DA2CE68304AD80AA7F75B0BD ] CLPSLauncher    C:\Programme\Gemeinsame Dateien\COMODO\launcher_service.exe
19:08:41.0671 0x0480  CLPSLauncher - ok
19:08:41.0796 0x0480  [ D87ACAED61E417BBA546CED5E7E36D9C, 14AC6034A5BC0FB2A1AFDAD42BEF4DE641556E54AD30D0C46765660A4BE55462 ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
19:08:41.0906 0x0480  clr_optimization_v2.0.50727_32 - ok
19:08:41.0968 0x0480  [ C5A75EB48E2344ABDC162BDA79E16841, 6070A8AAFD38FBC6A68A2B10C20117612354DF21B4492D90CA522BFB6870D726 ] clr_optimization_v4.0.30319_32 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
19:08:42.0109 0x0480  clr_optimization_v4.0.30319_32 - ok
19:08:42.0171 0x0480  [ 0F6C187D38D98F8DF904589A5F94D411, DB987093446216CEE913AC27503BF7E23E5A62DF169B355730285DAB64F6ED28 ] CmBatt          C:\WINDOWS\system32\DRIVERS\CmBatt.sys
19:08:42.0421 0x0480  CmBatt - ok
19:08:42.0718 0x0480  [ 2A2D72271844C52F004901A60312B96A, A7782E78EE6797A100410C997B77C95B1D991E57C0E5025FC17324EF54C54F0F ] cmdAgent        C:\Programme\COMODO\COMODO Internet Security\cmdagent.exe
19:08:43.0031 0x0480  cmdAgent - ok
19:08:43.0140 0x0480  [ 9181CC4D007ADBE21DB9A11BFECAFEF5, 06B5FDD33D5EE99659DF772CAB38A187166A7F9662B43B1DFC786E0DEFF013B8 ] cmdGuard        C:\WINDOWS\system32\DRIVERS\cmdguard.sys
19:08:43.0250 0x0480  cmdGuard - ok
19:08:43.0296 0x0480  [ C5A9FB50E8CA7FD99F256255FEE71580, 98A826550D7960A3605F67EBA84B721881B7F7D5B7F8445AA6F8790FE2DA05F2 ] cmdHlp          C:\WINDOWS\system32\DRIVERS\cmdhlp.sys
19:08:43.0328 0x0480  cmdHlp - ok
19:08:43.0343 0x0480  CmdIde - ok
19:08:43.0375 0x0480  cmnsusbser - ok
19:08:43.0421 0x0480  [ 6E4C9F21F0FAE8940661144F41B13203, 731202A0DD021FCF9287FEA631212603AAAC23F9E7F76B2882F913B18A971F1C ] Compbatt        C:\WINDOWS\system32\DRIVERS\compbatt.sys
19:08:43.0671 0x0480  Compbatt - ok
19:08:43.0703 0x0480  COMSysApp - ok
19:08:43.0750 0x0480  Cpqarray - ok
19:08:43.0859 0x0480  [ 611F824E5C703A5A899F84C5F1699E4D, 9EFA5612FE58E9974E4CC13D39D91D7B5DEA3ED66BEFBED3AAE6D2800FD8162A ] CryptSvc        C:\WINDOWS\System32\cryptsvc.dll
19:08:44.0140 0x0480  CryptSvc - ok
19:08:44.0187 0x0480  [ B5ECADF7708960F1818C7FA015F4C239, A58BA71B08A9D46EB79EB3DF0858F553A11DE3461E13B6D926E25D21D4CBB2D8 ] CVirtA          C:\WINDOWS\system32\DRIVERS\CVirtA.sys
19:08:44.0265 0x0480  CVirtA - ok
19:08:44.0281 0x0480  CVPNDRVA - ok
19:08:44.0312 0x0480  dac2w2k - ok
19:08:44.0343 0x0480  dac960nt - ok
19:08:44.0437 0x0480  [ 3127AFBF2C1ED0AB14A1BBB7AAECB85B, ECFBACE3CBF2384948EA1C445BDA3955EB4F44A9874286E6537C67DC1283E5B0 ] DcomLaunch      C:\WINDOWS\system32\rpcss.dll
19:08:44.0562 0x0480  DcomLaunch - ok
19:08:44.0640 0x0480  [ C29A1C9B75BA38FA37F8C44405DEC360, 7476D8BC4380CDE56764B2034AF3741DA4ED00F315E41C9A02B5EAD04374F241 ] Dhcp            C:\WINDOWS\System32\dhcpcsvc.dll
19:08:44.0906 0x0480  Dhcp - ok
19:08:44.0968 0x0480  [ 044452051F3E02E7963599FC8F4F3E25, 584BDDB074618BE76454CF90E74829CFF588B5B5FAEB793E2F7AAD26352DD689 ] Disk            C:\WINDOWS\system32\DRIVERS\disk.sys
19:08:45.0281 0x0480  Disk - ok
19:08:45.0312 0x0480  dmadmin - ok
19:08:45.0453 0x0480  [ 0DCFC8395A99FECBB1EF771CEC7FE4EA, 89B0AEE5BE01B9FE4FF2989FF16DB6121721ACDFCE6D9655C0ACD321D8C308BE ] dmboot          C:\WINDOWS\system32\drivers\dmboot.sys
19:08:45.0828 0x0480  dmboot - ok
19:08:45.0906 0x0480  [ 53720AB12B48719D00E327DA470A619A, 800264866A6267C9000A85D00095D57908D059D737E5F28C9C4049B884C46228 ] dmio            C:\WINDOWS\system32\drivers\dmio.sys
19:08:46.0187 0x0480  dmio - ok
19:08:46.0234 0x0480  [ E9317282A63CA4D188C0DF5E09C6AC5F, D41E002F555FE9015EF620975255F58BB79198CA1FF0E09EC950CB450FF77CF7 ] dmload          C:\WINDOWS\system32\drivers\dmload.sys
19:08:46.0484 0x0480  dmload - ok
19:08:46.0546 0x0480  [ 25C83FFBBA13B554EB6D59A9B2E2EE78, 9FBD655ED3E9163AE11EC207F283E387EFBA5A23108EC790BAE4846B35E66F16 ] dmserver        C:\WINDOWS\System32\dmserver.dll
19:08:46.0812 0x0480  dmserver - ok
19:08:46.0859 0x0480  [ 8A208DFCF89792A484E76C40E5F50B45, 4E40E2EB38C6254E7CAA488200E89EE7DEBBBA773890BC6A84313CC68178D54F ] DMusic          C:\WINDOWS\system32\drivers\DMusic.sys
19:08:47.0109 0x0480  DMusic - ok
19:08:47.0156 0x0480  [ 694616F813FB627A32C9E32DEC133078, 27D503E442ED60ED0F7B6BC743856B08B98CD1A396203B2D1426899407E870C5 ] DNE             C:\WINDOWS\system32\DRIVERS\dne2000.sys
19:08:47.0203 0x0480  DNE - ok
19:08:47.0250 0x0480  [ 407F3227AC618FD1CA54B335B083DE07, 96B8E734648FE9A4EBA59C096C8779BD1A11A93A6303AFD438A406C8122D36C6 ] Dnscache        C:\WINDOWS\System32\dnsrslvr.dll
19:08:47.0343 0x0480  Dnscache - ok
19:08:47.0437 0x0480  [ 676E36C4FF5BCEA1900F44182B9723E6, 740CF18BD40E00FEA26CF0E6340C5D18F7D0B4390055FAEEC258B3AA790C4AE9 ] Dot3svc         C:\WINDOWS\System32\dot3svc.dll
19:08:47.0687 0x0480  Dot3svc - ok
19:08:47.0718 0x0480  dpti2o - ok
19:08:48.0078 0x0480  [ E4A0D0C8F17073BE392F062DD1F6B50E, 26CF71517C09B24B6F6AB5AC902FF0D1426351BCCD6AB571510C83D0F6E32FE6 ] DragonUpdater   C:\Programme\Comodo\Dragon\dragon_updater.exe
19:08:48.0406 0x0480  DragonUpdater - ok
19:08:48.0468 0x0480  [ 8F5FCFF8E8848AFAC920905FBD9D33C8, C8C6FB97AB0871C8C88A2201525A5CF10D5131CB6980D32692ED7A8F58399AD5 ] drmkaud         C:\WINDOWS\system32\drivers\drmkaud.sys
19:08:48.0718 0x0480  drmkaud - ok
19:08:48.0765 0x0480  [ 4E4F2FDDAB0A0736D7671134DCCE91FB, 8E2C57D1A006856C47CBDD5765A9DD317DB205B26DA8BFC70555A506257A1CD9 ] EapHost         C:\WINDOWS\System32\eapsvc.dll
19:08:49.0015 0x0480  EapHost - ok
19:08:49.0046 0x0480  EAPPkt - ok
19:08:49.0109 0x0480  [ F07BA56B0235F15EFF8F10DC6389C42E, A7202CCB418D03606A97679BCF166ACA12F8341E8AB97DF044AE00401B8496B4 ] epmntdrv        C:\WINDOWS\system32\epmntdrv.sys
19:08:49.0140 0x0480  epmntdrv - detected UnsignedFile.Multi.Generic ( 1 )
19:08:49.0375 0x0480  epmntdrv ( UnsignedFile.Multi.Generic ) - warning
19:08:49.0437 0x0480  [ 877C18558D70587AA7823A1A308AC96B, 6B336A62112988D855513F45153F73F8470C41A448E9B7438B4A8EC1813AABF1 ] ERSvc           C:\WINDOWS\System32\ersvc.dll
19:08:49.0687 0x0480  ERSvc - ok
19:08:49.0750 0x0480  [ 1F2F4AB15CE03ECC257FEB2F6DC5A013, FB06406AD9CCD946155C4E8CA769E0430589A4E4BBBDA2C90A67C84E0D2F8EE0 ] EuGdiDrv        C:\WINDOWS\system32\EuGdiDrv.sys
19:08:49.0765 0x0480  EuGdiDrv - detected UnsignedFile.Multi.Generic ( 1 )
19:08:49.0765 0x0480  EuGdiDrv ( UnsignedFile.Multi.Generic ) - warning
19:08:49.0828 0x0480  [ A3EDBE9053889FB24AB22492472B39DC, 6F2ED6E04BDE2FCA2A8BF9BD2D1D6923DE6EAECB46F582B6C0BD1CF364D65C9E ] Eventlog        C:\WINDOWS\system32\services.exe
19:08:49.0890 0x0480  Eventlog - ok
19:08:49.0968 0x0480  [ AF4F6B5739D18CA7972AB53E091CBC74, A399E2CC026730D3A429727AAB48093B9F1E5DD8EB6336519C7F16182FDB3905 ] EventSystem     C:\WINDOWS\system32\es.dll
19:08:50.0046 0x0480  EventSystem - ok
19:08:50.0125 0x0480  [ 38D332A6D56AF32635675F132548343E, E6909DB836AF679B4F4D62C7396D6C82769CC7ABB8C919C2AABFE934FCE268F6 ] Fastfat         C:\WINDOWS\system32\drivers\Fastfat.sys
19:08:50.0390 0x0480  Fastfat - ok
19:08:50.0484 0x0480  [ 2DB7D303C36DDD055215052F118E8E75, BE6E7BBE12A7A4EDF1F1C2935350603970C7426BBCA7A1A6644BB8999123AF17 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
19:08:50.0562 0x0480  FastUserSwitchingCompatibility - ok
19:08:50.0609 0x0480  [ 92CDD60B6730B9F50F6A1A0C1F8CDC81, 8307A532AB4D05CBBCE206DC2759497708BF5AAA880BD00F0E4F281D8578A1F5 ] Fdc             C:\WINDOWS\system32\drivers\Fdc.sys
19:08:50.0843 0x0480  Fdc - ok
19:08:50.0906 0x0480  [ B0678A548587C5F1967B0D70BACAD6C1, 7E49910212ED87313F926E4800EA8D34809C287A686CA69B82B79C1A6451F88C ] Fips            C:\WINDOWS\system32\drivers\Fips.sys
19:08:51.0171 0x0480  Fips - ok
19:08:51.0281 0x0480  [ 9D27E7B80BFCDF1CDD9B555862D5E7F0, 69C271AD5BCEBFD8AE5A769BDD7EC51256DA3A8ADAD5D12E5C0D13F4E82D8805 ] Flpydisk        C:\WINDOWS\system32\drivers\Flpydisk.sys
19:08:51.0531 0x0480  Flpydisk - ok
19:08:51.0609 0x0480  [ B2CF4B0786F8212CB92ED2B50C6DB6B0, 280F5CF8A90F7BEDE73ADD0DD0F8952088133A7CA9A3D3B7041957E33B36845D ] FltMgr          C:\WINDOWS\system32\DRIVERS\fltMgr.sys
19:08:51.0859 0x0480  FltMgr - ok
19:08:52.0000 0x0480  [ 8BA7C024070F2B7FDD98ED8A4BA41789, 47585006F86B2C6016EC54250A416794792D1E4024FF229C120BC25B684AF66A ] FontCache3.0.0.0 c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
19:08:52.0046 0x0480  FontCache3.0.0.0 - ok
19:08:52.0218 0x0480  [ 26EABEEA7F30DCF21DA0577C4EE26FAA, 20C3CD2579ED6853249B1EAEF23DF2904779BA2E806D00C30F81EA9A1612AE0F ] FoxitCloudUpdateService C:\PROGRAMME\FOXIT SOFTWARE\FOXIT READER\Foxit Cloud\FCUpdateService.exe
19:08:52.0265 0x0480  FoxitCloudUpdateService - ok
19:08:52.0312 0x0480  [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A, EC635E071201A766845D48973772CBE0958942B4162F3F5F70660D114CC877E0 ] Fs_Rec          C:\WINDOWS\system32\drivers\Fs_Rec.sys
19:08:52.0578 0x0480  Fs_Rec - ok
19:08:52.0640 0x0480  [ 8F1955CE42E1484714B542F341647778, 8EB3F99625F409D3032561E8AB44BEFBFBFBA4EC873C2151C92A5CAAF7F2AA55 ] Ftdisk          C:\WINDOWS\system32\DRIVERS\ftdisk.sys
19:08:52.0906 0x0480  Ftdisk - ok
19:08:53.0187 0x0480  [ AE63D0DB96C07CAE5DC4CDB2B2A719A0, 1E38E4E350484E0942BE2AF61CDBBACC132C955FE3FA0C1485BDCA0C6283BA51 ] GeekBuddyRSP    C:\Programme\Gemeinsame Dateien\COMODO\GeekBuddyRSP.exe
19:08:53.0500 0x0480  GeekBuddyRSP - ok
19:08:53.0562 0x0480  [ 0A02C63C8B144BD8C86B103DEE7C86A2, 7A3235DD3E1995DD72B212FAEB3ECA2A974434DE9BF6D269EA11BA65A80E7E50 ] Gpc             C:\WINDOWS\system32\DRIVERS\msgpc.sys
19:08:53.0828 0x0480  Gpc - ok
19:08:53.0921 0x0480  [ E9CDEB631E63E83A7540CF6E81B5486B, 7CB2129168E27DE46B166B1C26975722E63D8AF772933664FCA5A8A335004117 ] GUBootStartup   C:\WINDOWS\System32\drivers\GUBootStartup.sys
19:08:53.0953 0x0480  GUBootStartup - ok
19:08:54.0000 0x0480  [ 573C7D0A32852B48F3058CFD8026F511, BC384BBA394AFDCDA1A9ABC858C692AA84A1F0A31AF3DDF7F38D120C027927FB ] HDAudBus        C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
19:08:54.0250 0x0480  HDAudBus - ok
19:08:54.0375 0x0480  [ CB66BF85BF599BEFD6C6A57C2E20357F, 55D3A0F9279FF316766F42548FCB61C452942B08A37590C4892DF110BE4E53C6 ] helpsvc         C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
19:08:54.0625 0x0480  helpsvc - ok
19:08:54.0640 0x0480  HidServ - ok
19:08:54.0718 0x0480  [ CCF82C5EC8A7326C3066DE870C06DAF1, 93395FA4C26B2E82DC8B7025ED3BCF583885E5D8C5F60CD6EEAA6335D6A126EC ] HidUsb          C:\WINDOWS\system32\DRIVERS\hidusb.sys
19:08:54.0953 0x0480  HidUsb - ok
19:08:55.0031 0x0480  [ ED29F14101523A6E0E808107405D452C, B8FA987637787BEECC2EB06D36293DAC355523392B49A8C5A9491EEE961917E9 ] hkmsvc          C:\WINDOWS\System32\kmsvc.dll
19:08:55.0281 0x0480  hkmsvc - ok
19:08:55.0312 0x0480  hpn - ok
19:08:55.0421 0x0480  [ F80A415EF82CD06FFAF0D971528EAD38, 524D9E9201572929522F6805011783711B7C0F76308B924C89CF75F4B7A1FDF3 ] HTTP            C:\WINDOWS\system32\Drivers\HTTP.sys
19:08:55.0515 0x0480  HTTP - ok
19:08:55.0562 0x0480  [ 9E4ADB854CEBCFB81A4B36718FEECD16, 677AB64460775686F8366D6BF35D420A2486C3F07338A00A7C2788A5142B9F08 ] HTTPFilter      C:\WINDOWS\System32\w3ssl.dll
19:08:55.0843 0x0480  HTTPFilter - ok
19:08:55.0859 0x0480  i2omgmt - ok
19:08:55.0890 0x0480  i2omp - ok
19:08:55.0984 0x0480  [ E283B97CFBEB86C1D86BAED5F7846A92, 7664F791D08C80DF1E52B34BE69F073AA645610C4BD975F498254807602374AB ] i8042prt        C:\WINDOWS\system32\DRIVERS\i8042prt.sys
19:08:56.0250 0x0480  i8042prt - ok
19:08:56.0859 0x0480  [ 0F68E2EC713F132FFB19E45415B09679, B1439A5D157F9FF54E803581D2B86411DB079242D837617021A4A0BC195E67BB ] ialm            C:\WINDOWS\system32\DRIVERS\igxpmp32.sys
19:08:57.0906 0x0480  ialm - ok
19:08:58.0000 0x0480  [ 707C1692214B1C290271067197F075F6, 7D0DB754604AABC4AA09AB8BA94326B1A1C2A76F3C2C2C7D6FA14F964BE68A51 ] iaStor          C:\WINDOWS\system32\drivers\iaStor.sys
19:08:58.0062 0x0480  iaStor - ok
19:08:58.0281 0x0480  [ C01AC32DC5C03076CFB852CB5DA5229C, A4D7749220B5BC965D96A267F1E02FE8284A230BA249109207BD4B9EA8DFAC96 ] idsvc           c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
19:08:58.0406 0x0480  idsvc - ok
19:08:58.0484 0x0480  [ 083A052659F5310DD8B6A6CB05EDCF8E, 48D39B03FFB6FAA1529B774443BA12618AE3982D9F65A7B9D18F2269F78B31F4 ] Imapi           C:\WINDOWS\system32\DRIVERS\imapi.sys
19:08:58.0734 0x0480  Imapi - ok
19:08:58.0843 0x0480  [ D4B413AA210C21E46AEDD2BA5B68D38E, 2309622867AA8FC832A729FA78F48742D4BD6CA0DAFBFB9DDB0772D671E1ED75 ] ImapiService    C:\WINDOWS\system32\imapi.exe
19:08:59.0109 0x0480  ImapiService - ok
19:08:59.0140 0x0480  ini910u - ok
19:08:59.0203 0x0480  [ E1DF634BEC066B3D4FFE437BCB78C282, 974278CA606DF7C0332997E4339EA2AFE017E04C596CE69F47FED798E57D52FB ] Inspect         C:\WINDOWS\system32\DRIVERS\inspect.sys
19:08:59.0250 0x0480  Inspect - ok
19:08:59.0781 0x0480  [ 053517D1BCADF00BEDB21FB7218C8F33, 633F19692C56C40F786C87A95E1D9B692420F6BD976753268FED378236FB0159 ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RtkHDAud.sys
19:09:00.0656 0x0480  IntcAzAudAddService - ok
19:09:00.0687 0x0480  IntelIde - ok
19:09:00.0750 0x0480  [ 4C7D2750158ED6E7AD642D97BFFAE351, C05E4799752F090DCB632F07F62ADE38D31534621064D269AD535CA0BDFED448 ] intelppm        C:\WINDOWS\system32\DRIVERS\intelppm.sys
19:09:00.0984 0x0480  intelppm - ok
19:09:01.0046 0x0480  [ 3BB22519A194418D5FEC05D800A19AD0, F6662F440950596DC1382DD1DB5D7891CCEA30A6062BEA942C18445B5F0D8B16 ] Ip6Fw           C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
19:09:01.0312 0x0480  Ip6Fw - ok
19:09:01.0375 0x0480  [ 731F22BA402EE4B62748ADAF6363C182, 5C3BEBD008A5BE4DC2F92076FF41A10DDC01E10EC7E6552213CFA11970811848 ] IpFilterDriver  C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
19:09:01.0625 0x0480  IpFilterDriver - ok
19:09:01.0703 0x0480  [ B87AB476DCF76E72010632B5550955F5, E6E74D3A86A7917A8BAED44F8E97CCD2EB171E4E4B27E9907F60D1523FAF319A ] IpInIp          C:\WINDOWS\system32\DRIVERS\ipinip.sys
19:09:01.0953 0x0480  IpInIp - ok
19:09:02.0015 0x0480  [ CC748EA12C6EFFDE940EE98098BF96BB, AF523E21C25D9A1715EFEA573E4F52AF5D4FC9F28A2D613F5DB629C186C439E0 ] IpNat           C:\WINDOWS\system32\DRIVERS\ipnat.sys
19:09:02.0312 0x0480  IpNat - ok
19:09:02.0375 0x0480  [ 23C74D75E36E7158768DD63D92789A91, 394D296F38E7D8EFD91A6EEC301D9CE6AF910E35EB9819F1A9E3363863AEDFDC ] IPSec           C:\WINDOWS\system32\DRIVERS\ipsec.sys
19:09:02.0625 0x0480  IPSec - ok
19:09:02.0687 0x0480  [ C93C9FF7B04D772627A3646D89F7BF89, 805FA48E7A46D4F10240BF880A2468F53DEA36E83004399228AB70DB7D20544A ] IRENUM          C:\WINDOWS\system32\DRIVERS\irenum.sys
19:09:02.0796 0x0480  IRENUM - ok
19:09:02.0890 0x0480  [ 6DFB88F64135C525433E87648BDA30DE, 8233EEFBEF36AAA152F2C55D23D7118F0DE40C9C22EB5D9793405A4770889540 ] isapnp          C:\WINDOWS\system32\DRIVERS\isapnp.sys
19:09:03.0140 0x0480  isapnp - ok
19:09:03.0187 0x0480  [ 1704D8C4C8807B889E43C649B478A452, E854C90CD301F42BE2520CEDAD35E49DF2D43606CF4EEED861B74882118D04D1 ] Kbdclass        C:\WINDOWS\system32\DRIVERS\kbdclass.sys
19:09:03.0437 0x0480  Kbdclass - ok
19:09:03.0500 0x0480  [ 692BCF44383D056AED41B045A323D378, 1A99DEE83FFAF64E73067FC049C0A4CE07D94E4AE31EFA17B38CEFA9E41D67DC ] kmixer          C:\WINDOWS\system32\drivers\kmixer.sys
19:09:03.0781 0x0480  kmixer - ok
19:09:03.0875 0x0480  [ B467646C54CC746128904E1654C750C1, 3BD71BE3663EA23463D236D8A2A2E42DFA10C502BDB4B6E131FAF0FBA748219E ] KSecDD          C:\WINDOWS\system32\drivers\KSecDD.sys
19:09:04.0000 0x0480  KSecDD - ok
19:09:04.0078 0x0480  [ 2BBDCB79900990F0716DFCB714E72DE7, 6283789201164A9254632D9A3C8A54FE697717D5F8D5A37804D924DC2B70C8E3 ] LanmanServer    C:\WINDOWS\System32\srvsvc.dll
19:09:04.0171 0x0480  LanmanServer - ok
19:09:04.0250 0x0480  [ 1869B14B06B44B44AF70548E1EA3303F, 4D63B4DAF580C86F86837C7D1753E2105B4C52E26D4CA0CAAFE83755EFF7AFBE ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
19:09:04.0390 0x0480  lanmanworkstation - ok
19:09:04.0421 0x0480  lbrtfdc - ok
19:09:04.0515 0x0480  [ 636714B7D43C8D0C80449123FD266920, F06F6C7DC49B26EFCAC3570C67BA9BD934F62C6F382DA4DD2AB302C7B970F414 ] LmHosts         C:\WINDOWS\System32\lmhsvc.dll
19:09:04.0765 0x0480  LmHosts - ok
19:09:04.0828 0x0480  [ B7550A7107281D170CE85524B1488C98, A3854B16A65436BEF6BEDE918B43B3BE8F00D303660DB5831DD376271DC43239 ] Messenger       C:\WINDOWS\System32\msgsvc.dll
19:09:05.0078 0x0480  Messenger - ok
19:09:05.0140 0x0480  [ 7E0506BF8148D74D2823E0A418E4AD31, 598BB22590D2ADE0FD6DCE3F1ADBF6FF5BEFA209368EF495E1E3A6A4F01EFA18 ] Micro Star SCM  C:\Programme\System Control Manager\MSIService.exe
19:09:05.0171 0x0480  Micro Star SCM - detected UnsignedFile.Multi.Generic ( 1 )
19:09:05.0171 0x0480  Micro Star SCM ( UnsignedFile.Multi.Generic ) - warning
19:09:05.0218 0x0480  [ 4AE068242760A1FB6E1A44BF4E16AFA6, 1FB771162B96AAF787AC24867B818DF8511F0780BB094FA9A38C11D8DBFE68BC ] mnmdd           C:\WINDOWS\system32\drivers\mnmdd.sys
19:09:05.0468 0x0480  mnmdd - ok
19:09:05.0531 0x0480  [ C2F1D365FD96791B037EE504868065D3, 87BD87E08FD00D115524B049F1A3A719AB86557D68968E7090CD0F271F985CAF ] mnmsrvc         C:\WINDOWS\system32\mnmsrvc.exe
19:09:05.0765 0x0480  mnmsrvc - ok
19:09:05.0828 0x0480  [ 6FB74EBD4EC57A6F1781DE3852CC3362, 0454509D9A31E0202C08AE17294E2682F227D177A3C73B303E4C8332757AFCA1 ] Modem           C:\WINDOWS\system32\drivers\Modem.sys
19:09:06.0062 0x0480  Modem - ok
19:09:06.0125 0x0480  [ B24CE8005DEAB254C0251E15CB71D802, 6804A8ABDAD5EC846E7F8077D1EE9BA45D6226ACFF42C70BE3DE7C8980EF9EC4 ] Mouclass        C:\WINDOWS\system32\DRIVERS\mouclass.sys
19:09:06.0390 0x0480  Mouclass - ok
19:09:06.0453 0x0480  [ 66A6F73C74E1791464160A7065CE711A, 3C570FA1E8EF976B83759220FE95BAC9D7D48D607F91B113EDE4790D34ACBD46 ] mouhid          C:\WINDOWS\system32\DRIVERS\mouhid.sys
19:09:06.0718 0x0480  mouhid - ok
19:09:06.0812 0x0480  [ A80B9A0BAD1B73637DBCBBA7DF72D3FD, 2A5E15ED2C24C6C65EF2F7E1FD93374774076C9D8D451E4422561F4D269C012F ] MountMgr        C:\WINDOWS\system32\drivers\MountMgr.sys
19:09:07.0062 0x0480  MountMgr - ok
19:09:07.0171 0x0480  [ D815553666D383116DCF736BCCBC087D, 08023D43B4FCA606A37B4FB722127408EDEB6E3D20FB6889DA19C1A4EC5A3D8F ] MozillaMaintenance C:\Programme\Mozilla Maintenance Service\maintenanceservice.exe
19:09:07.0234 0x0480  MozillaMaintenance - ok
19:09:07.0250 0x0480  mraid35x - ok
19:09:07.0312 0x0480  [ 11D42BB6206F33FBB3BA0288D3EF81BD, 76ABCFB62C5AC549F58C231F72A99882CDEB74928104B77FE52554765C2B1A22 ] MRxDAV          C:\WINDOWS\system32\DRIVERS\mrxdav.sys
19:09:07.0593 0x0480  MRxDAV - ok
19:09:07.0718 0x0480  [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0, DB9B186F7076D7B94F45041AF7B77C1AD2CAB504D683B459C6CB1C22840ED170 ] MRxSmb          C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
19:09:07.0875 0x0480  MRxSmb - ok
19:09:07.0921 0x0480  [ 35A031AF38C55F92D28AA03EE9F12CC9, 97245D204C886EE8DCCC2DEAC80A0E358A7E0C1982F77389DA50DCF091FC9DDC ] MSDTC           C:\WINDOWS\system32\msdtc.exe
19:09:08.0156 0x0480  MSDTC - ok
19:09:08.0312 0x0480  [ C941EA2454BA8350021D774DAF0F1027, C940E978C7B66A713A0FDAB54B5F995DF59D089AFCD96221DD3222948CD49BBD ] Msfs            C:\WINDOWS\system32\drivers\Msfs.sys
19:09:08.0562 0x0480  Msfs - ok
19:09:08.0578 0x0480  MSIServer - ok
19:09:08.0656 0x0480  [ D1575E71568F4D9E14CA56B7B0453BF1, 4ABE0E24786C0D39FA2B885447E56204CA6942FB175E534DCE675D7BCF0B176A ] MSKSSRV         C:\WINDOWS\system32\drivers\MSKSSRV.sys
19:09:08.0921 0x0480  MSKSSRV - ok
19:09:08.0968 0x0480  [ 325BB26842FC7CCC1FCCE2C457317F3E, C07BE560513B1FB91D756494F0BA4AEEB2E1998DE0E1C21EE83DB1183B0CEE91 ] MSPCLOCK        C:\WINDOWS\system32\drivers\MSPCLOCK.sys
19:09:09.0203 0x0480  MSPCLOCK - ok
19:09:09.0312 0x0480  [ BAD59648BA099DA4A17680B39730CB3D, 9AD4C7C94C186C8815D0BC75DCAFB962158DA6935A244BA243EDDDEB33F9816C ] MSPQM           C:\WINDOWS\system32\drivers\MSPQM.sys
19:09:09.0562 0x0480  MSPQM - ok
19:09:09.0656 0x0480  [ AF5F4F3F14A8EA2C26DE30F7A1E17136, AC93A1E4ABB0D038B772E429015567E44CC2EDB66C54DBE23A5F98176FAC1520 ] mssmbios        C:\WINDOWS\system32\DRIVERS\mssmbios.sys
19:09:09.0890 0x0480  mssmbios - ok
19:09:09.0984 0x0480  [ E53736A9E30C45FA9E7B5EAC55056D1D, 38602F280BF69EBA3706AD175AFC1AEB561A8302B4B61E3FECB3C27D7A9BDB41 ] MSTEE           C:\WINDOWS\system32\drivers\MSTEE.sys
19:09:10.0250 0x0480  MSTEE - ok
19:09:10.0390 0x0480  [ DE6A75F5C270E756C5508D94B6CF68F5, FCC972DDC36C2C44D836913F10004C2C33B11C54DEFFF0C63E0FDF901D2F9261 ] Mup             C:\WINDOWS\system32\drivers\Mup.sys
19:09:10.0453 0x0480  Mup - ok
19:09:10.0484 0x0480  [ 5B50F1B2A2ED47D560577B221DA734DB, C16A554B6E1A7F5F98C94DFA88163E0F7426506BF2F51FD351B1A05FC0DB3BC5 ] NABTSFEC        C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
19:09:10.0750 0x0480  NABTSFEC - ok
19:09:10.0875 0x0480  [ 46BB15AE2AC7D025D6D2567B876817BD, 102A101B96D1078C98FA0F871C801A9A8538E20E5686AB0C7680B2F6C92B3165 ] napagent        C:\WINDOWS\System32\qagentrt.dll
19:09:11.0156 0x0480  napagent - ok
19:09:11.0218 0x0480  [ 1DF7F42665C94B825322FAE71721130D, FE0DCB728471465B39A42A7511F4133021FBA5DF88F88BCB5FE2FF34CFD713F9 ] NDIS            C:\WINDOWS\system32\drivers\NDIS.sys
19:09:11.0484 0x0480  NDIS - ok
19:09:11.0546 0x0480  [ 7FF1F1FD8609C149AA432F95A8163D97, 18CD1FF5AC1EF8A38D1EC53014F2BADD28D9CDF4ECE2EBC2313D08903776F323 ] NdisIP          C:\WINDOWS\system32\DRIVERS\NdisIP.sys
19:09:11.0781 0x0480  NdisIP - ok
19:09:11.0875 0x0480  [ 0109C4F3850DFBAB279542515386AE22, 4F6DB1E499AC853FD36FD603FBB6D3AC9BDCEB298C7FE1FB59A9236CB46729B2 ] NdisTapi        C:\WINDOWS\system32\DRIVERS\ndistapi.sys
19:09:11.0953 0x0480  NdisTapi - ok
19:09:12.0015 0x0480  [ F927A4434C5028758A842943EF1A3849, B1AA3AF150C05307461774925901789456B0CCCD03A5E71ADA4AB58455962BEE ] Ndisuio         C:\WINDOWS\system32\DRIVERS\ndisuio.sys
19:09:12.0265 0x0480  Ndisuio - ok
19:09:12.0328 0x0480  [ EDC1531A49C80614B2CFDA43CA8659AB, 494042F790F33721328B4451E79842E21919681CC421A4F9633EC4D383E06097 ] NdisWan         C:\WINDOWS\system32\DRIVERS\ndiswan.sys
19:09:12.0593 0x0480  NdisWan - ok
19:09:12.0671 0x0480  [ 2F597BB467E05B1FE3830EABD821B8E0, 141497F5A49D47CCE3C9289644F4BD838DCB238F6D8E847FC006652E21FE02AC ] NDProxy         C:\WINDOWS\system32\drivers\NDProxy.sys
19:09:12.0765 0x0480  NDProxy - ok
19:09:12.0812 0x0480  [ 5D81CF9A2F1A3A756B66CF684911CDF0, 7989C36607CAEA17AFA2C1C9904145CA0714A54B9F712D9D4C1AB140D0B2CC0C ] NetBIOS         C:\WINDOWS\system32\DRIVERS\netbios.sys
19:09:13.0062 0x0480  NetBIOS - ok
19:09:13.0156 0x0480  [ 74B2B2F5BEA5E9A3DC021D685551BD3D, 7932B71F98B4122BE88F576BF6D745A757AE378A48924B7F4358837B75640A82 ] NetBT           C:\WINDOWS\system32\DRIVERS\netbt.sys
19:09:13.0437 0x0480  NetBT - ok
19:09:13.0531 0x0480  [ 8ACE4251BFFD09CE75679FE940E996CC, 81969521B5EAEA09ECA63058BE9697BB69AF2596339CA9DF0CFEDC031DCFDC7E ] NetDDE          C:\WINDOWS\system32\netdde.exe
19:09:13.0781 0x0480  NetDDE - ok
19:09:13.0812 0x0480  [ 8ACE4251BFFD09CE75679FE940E996CC, 81969521B5EAEA09ECA63058BE9697BB69AF2596339CA9DF0CFEDC031DCFDC7E ] NetDDEdsdm      C:\WINDOWS\system32\netdde.exe
19:09:14.0062 0x0480  NetDDEdsdm - ok
19:09:14.0109 0x0480  [ AFB8261B56CBA0D86AEB6DF682AF9785, 104D96F1F19DD4CE492064ACC9634406A019EAE20B42D03198E400E661897127 ] Netlogon        C:\WINDOWS\system32\lsass.exe
19:09:14.0375 0x0480  Netlogon - ok
19:09:14.0453 0x0480  [ E6D88F1F6745BF00B57E7855A2AB696C, 12A5EDD853600FF5EBF91E127077745AE1E61E66DBC1D4D4306570F171AF4A39 ] Netman          C:\WINDOWS\System32\netman.dll
19:09:14.0718 0x0480  Netman - ok
19:09:14.0828 0x0480  [ D22CD77D4F0D63D1169BB35911BFF12D, 85B1FDFA02E1B8EA4FCB9B7EEB687C5C448697FC7EC9D178C5A2F64D2C9CFEE8 ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
19:09:14.0937 0x0480  NetTcpPortSharing - ok
19:09:15.0031 0x0480  [ F1B67B6B0751AE0E6E964B02821206A3, 3D5A7593ABDEE2047C5738671C85DC8B95A4ECF58D5D7B04EEE13A689839A540 ] Nla             C:\WINDOWS\System32\mswsock.dll
19:09:15.0109 0x0480  Nla - ok
19:09:15.0171 0x0480  [ A00877C05933FBA8AFB3390DD72D4679, 684D9642173C4BF4B752F259D5E89F16BC8B4B1608F1E6E176AA692A9775CE38 ] nmwcd           C:\WINDOWS\system32\drivers\ccdcmb.sys
19:09:15.0531 0x0480  nmwcd - ok
19:09:15.0593 0x0480  [ 9FF15F18E4E8758AC57BDB910D0238B3, F27C40BDD3818C54E1099AD525C7C19B424E0C4676DB366DE0E905CA3F82A310 ] nmwcdc          C:\WINDOWS\system32\drivers\ccdcmbo.sys
19:09:15.0796 0x0480  nmwcdc - ok
19:09:15.0906 0x0480  [ 3182D64AE053D6FB034F44B6DEF8034A, 4ADFC76965BA2A5F488E71789A4E4EA702A74AF42725F72130D1CA919406CF19 ] Npfs            C:\WINDOWS\system32\drivers\Npfs.sys
19:09:16.0156 0x0480  Npfs - ok
19:09:16.0250 0x0480  [ 78A08DD6A8D65E697C18E1DB01C5CDCA, E0E6F3ED05068E32F1D5C2D2B38CDEF4536B8656DB6756C66CF6B40B60C8F3DA ] Ntfs            C:\WINDOWS\system32\drivers\Ntfs.sys
19:09:16.0593 0x0480  Ntfs - ok
19:09:16.0625 0x0480  [ AFB8261B56CBA0D86AEB6DF682AF9785, 104D96F1F19DD4CE492064ACC9634406A019EAE20B42D03198E400E661897127 ] NtLmSsp         C:\WINDOWS\system32\lsass.exe
19:09:16.0859 0x0480  NtLmSsp - ok
19:09:16.0984 0x0480  [ 56AF4064996FA5BAC9C449B1514B4770, 154602EFEC22728503D4ABA025DF711B0F2CFC983F5E3BF25F2A4BCD1AE250EC ] NtmsSvc         C:\WINDOWS\system32\ntmssvc.dll
19:09:17.0296 0x0480  NtmsSvc - ok
19:09:17.0359 0x0480  [ 73C1E1F395918BC2C6DD67AF7591A3AD, B21133A75253EC15E2DFF66D3B480AB1A7E1A2360476C810E7AA55D0F0EB08D4 ] Null            C:\WINDOWS\system32\drivers\Null.sys
19:09:17.0593 0x0480  Null - ok
19:09:17.0640 0x0480  [ B305F3FAD35083837EF46A0BBCE2FC57, 9D0E0E666D652D0FC9EAB97280A5D67AAF61D6B21929DF7CF8ED72A367720464 ] NwlnkFlt        C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
19:09:17.0890 0x0480  NwlnkFlt - ok
19:09:17.0984 0x0480  [ C99B3415198D1AAB7227F2C88FD664B9, DD8DA4B5E804F134AB9233859544C025062902DFC3E8FB8A09A67337A4E73F55 ] NwlnkFwd        C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
19:09:18.0218 0x0480  NwlnkFwd - ok
19:09:18.0375 0x0480  [ F84785660305B9B903FB3BCA8BA29837, BDBDE61076800415D98759077E9E039C80B55DBE68E31F8BF44A909C6C3D3276 ] Parport         C:\WINDOWS\system32\drivers\Parport.sys
19:09:18.0640 0x0480  Parport - ok
19:09:18.0687 0x0480  [ BEB3BA25197665D82EC7065B724171C6, 7E71C13BA30CD95CEE8A9CC85E6F48A01F30EDEAADEE69D80AE828BF97E5A5CA ] PartMgr         C:\WINDOWS\system32\drivers\PartMgr.sys
19:09:18.0937 0x0480  PartMgr - ok
19:09:18.0984 0x0480  [ C2BF987829099A3EAA2CA6A0A90ECB4F, 1DF21EA8E43875CFEECD869407429F82FB449707CFB845718499468E699BAAAA ] ParVdm          C:\WINDOWS\system32\drivers\ParVdm.sys
19:09:19.0218 0x0480  ParVdm - ok
19:09:19.0359 0x0480  [ F451DCACBAA67F3307305EBD4A39EA07, C4435BF4C2D16F3DC0B35732BE3602FFA28DB0A5BC5576F45E0D32E5F4CD2DEA ] pccsmcfd        C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys
19:09:19.0437 0x0480  pccsmcfd - ok
19:09:19.0484 0x0480  [ 387E8DEDC343AA2D1EFBC30580273ACD, 5F3E642BDB759777E570ED5B22AC7E93CDCD362708F281657AD7BAB44EDEC802 ] PCI             C:\WINDOWS\system32\DRIVERS\pci.sys
19:09:19.0718 0x0480  PCI - ok
19:09:19.0734 0x0480  PCIDump - ok
19:09:19.0765 0x0480  PCIIde - ok
19:09:19.0843 0x0480  [ A2A966B77D61847D61A3051DF87C8C97, 6CED7CA26DC62B0AAFC83A2E07336DAD25954491201BB8E06103971F3F0B8B51 ] Pcmcia          C:\WINDOWS\system32\drivers\Pcmcia.sys
19:09:20.0109 0x0480  Pcmcia - ok
19:09:20.0125 0x0480  PDCOMP - ok
19:09:20.0156 0x0480  PDFRAME - ok
19:09:20.0187 0x0480  PDRELI - ok
19:09:20.0203 0x0480  PDRFRAME - ok
19:09:20.0234 0x0480  perc2 - ok
19:09:20.0265 0x0480  perc2hib - ok
19:09:20.0406 0x0480  [ A3EDBE9053889FB24AB22492472B39DC, 6F2ED6E04BDE2FCA2A8BF9BD2D1D6923DE6EAECB46F582B6C0BD1CF364D65C9E ] PlugPlay        C:\WINDOWS\system32\services.exe
19:09:20.0453 0x0480  PlugPlay - ok
19:09:20.0468 0x0480  [ AFB8261B56CBA0D86AEB6DF682AF9785, 104D96F1F19DD4CE492064ACC9634406A019EAE20B42D03198E400E661897127 ] PolicyAgent     C:\WINDOWS\system32\lsass.exe
19:09:20.0718 0x0480  PolicyAgent - ok
19:09:20.0812 0x0480  [ EFEEC01B1D3CF84F16DDD24D9D9D8F99, C5F0C8C66A3AF7E7BB04CEDE4AC5306F8387AB384A2107DC5BE413AAE968EFF1 ] PptpMiniport    C:\WINDOWS\system32\DRIVERS\raspptp.sys
19:09:21.0062 0x0480  PptpMiniport - ok
19:09:21.0078 0x0480  [ AFB8261B56CBA0D86AEB6DF682AF9785, 104D96F1F19DD4CE492064ACC9634406A019EAE20B42D03198E400E661897127 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
19:09:21.0312 0x0480  ProtectedStorage - ok
19:09:21.0421 0x0480  [ 09298EC810B07E5D582CB3A3F9255424, 35473A1BE25AC289474090EB0806AC6B3035DC33D1F3DF97A14BF1E361AC6AC3 ] PSched          C:\WINDOWS\system32\DRIVERS\psched.sys
19:09:21.0656 0x0480  PSched - ok
19:09:21.0718 0x0480  [ 80D317BD1C3DBC5D4FE7B1678C60CADD, DA76804B55D0CAB3DDD01EFC06673764AE4860693375C658B6063FB14AF7F12C ] Ptilink         C:\WINDOWS\system32\DRIVERS\ptilink.sys
19:09:21.0953 0x0480  Ptilink - ok
19:09:22.0046 0x0480  [ D86B4A68565E444D76457F14172C875A, 06B1CF81A62B3DAA8D0C5A8B88C56A504DE8E9278C520F754AF363A6676C58B0 ] PxHelp20        C:\WINDOWS\system32\Drivers\PxHelp20.sys
19:09:22.0078 0x0480  PxHelp20 - ok
19:09:22.0109 0x0480  ql1080 - ok
19:09:22.0125 0x0480  Ql10wnt - ok
19:09:22.0156 0x0480  ql12160 - ok
19:09:22.0187 0x0480  ql1240 - ok
19:09:22.0218 0x0480  ql1280 - ok
19:09:22.0390 0x0480  [ 583608EE65AABF971117A61AEE4BCAAE, 1FDE8D46BCD58CB476B3E86C025438995111003DAFB985CFE64138AEDC4B78CE ] RalinkRegistryWriter C:\Programme\Ralink\Common\RaRegistry.exe
19:09:22.0437 0x0480  RalinkRegistryWriter - ok
19:09:22.0468 0x0480  [ FE0D99D6F31E4FAD8159F690D68DED9C, 998685622ABE631984B7E4DBF91AB3594B1F574378D75EB9F6265F4650470692 ] RasAcd          C:\WINDOWS\system32\DRIVERS\rasacd.sys
19:09:22.0703 0x0480  RasAcd - ok
19:09:22.0796 0x0480  [ F5BA6CACCDB66C8F048E867563203246, AFEAD8FC02313F7EBC8F9F39E7ED2868852B480BE3902FA7BD0AFD81492AB243 ] RasAuto         C:\WINDOWS\System32\rasauto.dll
19:09:23.0046 0x0480  RasAuto - ok
19:09:23.0109 0x0480  [ 11B4A627BC9614B885C4969BFA5FF8A6, EAE0A412A2B0F68919C32A96B3A08CC1A06585E4998819F5C9051745F63FF5AD ] Rasl2tp         C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
19:09:23.0375 0x0480  Rasl2tp - ok
19:09:23.0484 0x0480  [ F9A7B66EA345726EDB5862A46B1ECCD5, 5D35429D394D36A1692A7E219BA1A85CD8096FEAE0F90BFE036A63118FEDBF57 ] RasMan          C:\WINDOWS\System32\rasmans.dll
19:09:23.0750 0x0480  RasMan - ok
19:09:23.0812 0x0480  [ 5BC962F2654137C9909C3D4603587DEE, A5CE5653D0105240F5E86CFAAB89E7917D42D939E2F27A5A7D6979289CA651B8 ] RasPppoe        C:\WINDOWS\system32\DRIVERS\raspppoe.sys
19:09:24.0046 0x0480  RasPppoe - ok
19:09:24.0109 0x0480  [ FDBB1D60066FCFBB7452FD8F9829B242, 10A2DACF944BD000032EBA8C095CB3D879CC55B28C377ADF6E52E508E47444DB ] Raspti          C:\WINDOWS\system32\DRIVERS\raspti.sys
19:09:24.0343 0x0480  Raspti - ok
19:09:24.0421 0x0480  [ 7AD224AD1A1437FE28D89CF22B17780A, 6645235CA27D671954E3557FA37082881C3D7D47492C71264CD8CB8D108EC801 ] Rdbss           C:\WINDOWS\system32\DRIVERS\rdbss.sys
19:09:24.0687 0x0480  Rdbss - ok
19:09:24.0734 0x0480  [ 4912D5B403614CE99C28420F75353332, 975341ECD660209987B5E5171B8315E032439E408CBE8A5986E67AF767F373BB ] RDPCDD          C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
19:09:24.0984 0x0480  RDPCDD - ok
19:09:25.0078 0x0480  [ 43AF5212BD8FB5BA6EED9754358BD8F7, AF330F61CECA4AFA359CEABC5EB3227E6B56A9A2DCE50701381D665122D7356D ] RDPWD           C:\WINDOWS\system32\drivers\RDPWD.sys
19:09:25.0171 0x0480  RDPWD - ok
19:09:25.0250 0x0480  [ 263AF18AF0F3DB99F574C95F284CCEC9, 2BFA9952E97EFEB386FC56EC2C125080CD12DAC078DBE43C395CB4D9F22165D3 ] RDSessMgr       C:\WINDOWS\system32\sessmgr.exe
19:09:25.0515 0x0480  RDSessMgr - ok
19:09:25.0593 0x0480  [ ED761D453856F795A7FE056E42C36365, EF026585B33415D8FCE94A9F27D7A4396C7C35C88E06A4CF0FEA702401E8597A ] redbook         C:\WINDOWS\system32\DRIVERS\redbook.sys
19:09:25.0843 0x0480  redbook - ok
19:09:25.0921 0x0480  [ 0E97EC96D6942CEEC2D188CC2EB69A01, D4253B4420BEF19451A55AB91E4834482181A31A31134F6E2AFE05C8E20C81A5 ] RemoteAccess    C:\WINDOWS\System32\mprdim.dll
19:09:26.0171 0x0480  RemoteAccess - ok
19:09:26.0218 0x0480  [ 851C30DF2807FCFA21E4C681A7D6440E, C2269B8ED4E831664B83F8F3BE33E5A340206A9E07F89CDF6707EAD8F280FBE9 ] RFCOMM          C:\WINDOWS\system32\DRIVERS\rfcomm.sys
19:09:26.0468 0x0480  RFCOMM - ok
19:09:26.0562 0x0480  [ 2A02E21867497DF20B8FC95631395169, D89E2D17ED4E1C727847C0E92D2DF68AEB70BF0B956BD2FE024ED70A961759D2 ] RpcLocator      C:\WINDOWS\system32\locator.exe
19:09:26.0812 0x0480  RpcLocator - ok
19:09:26.0906 0x0480  [ 3127AFBF2C1ED0AB14A1BBB7AAECB85B, ECFBACE3CBF2384948EA1C445BDA3955EB4F44A9874286E6537C67DC1283E5B0 ] RpcSs           C:\WINDOWS\System32\rpcss.dll
19:09:27.0015 0x0480  RpcSs - ok
19:09:27.0078 0x0480  [ A7557CAA7253DE02B40996EF9A478FAB, F47DC16A344AE4525ED41B69DE2D86AAEBE1068F2CFAB8DCEC8341EA590512FB ] RSUSBSTOR       C:\WINDOWS\system32\Drivers\RTS5121.sys
19:09:27.0156 0x0480  RSUSBSTOR - ok
19:09:27.0234 0x0480  [ 4BDD71B4B521521499DFD14735C4F398, 7B1498D3C67E56D05B58B7DA319ECB0117C37963AABB0E59B42831C087469DA1 ] RSVP            C:\WINDOWS\system32\rsvp.exe
19:09:27.0484 0x0480  RSVP - ok
19:09:27.0640 0x0480  [ 1AD20F7B8B608D36983305B283A8C31C, 8597FB4510BA9E62B27378C719C97F4B69E2482FB83B0888A0F3C176D3A9E1C7 ] rt2870          C:\WINDOWS\system32\DRIVERS\rt2870.sys
19:09:27.0859 0x0480  rt2870 - ok
19:09:27.0906 0x0480  [ 7174F20AD9B7B7878A51ECCA03C499C2, 5024E4424B8135D2BA13760CE7D56A25840FFFFC8FC32FF635D6A4BC38DCB28A ] RTLE8023xp      C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys
19:09:28.0000 0x0480  RTLE8023xp - ok
19:09:28.0015 0x0480  Rts516xIR - ok
19:09:28.0078 0x0480  [ AFB8261B56CBA0D86AEB6DF682AF9785, 104D96F1F19DD4CE492064ACC9634406A019EAE20B42D03198E400E661897127 ] SamSs           C:\WINDOWS\system32\lsass.exe
19:09:28.0312 0x0480  SamSs - ok
19:09:28.0421 0x0480  [ DCEC079FAD95D36C8DD5CB6D779DFE32, F8546552D939A225853A0CE4913701A93738DF02C999D16E141E9A828814BBC6 ] SCardSvr        C:\WINDOWS\System32\SCardSvr.exe
19:09:28.0671 0x0480  SCardSvr - ok
19:09:28.0734 0x0480  [ A050194A44D7FA8D7186ED2F4E8367AE, BCDF56D5A2F9E202DC67E7FE4BCC617BCC0BDFF2D221A621020068B17B2855BB ] Schedule        C:\WINDOWS\system32\schedsvc.dll
19:09:29.0000 0x0480  Schedule - ok
19:09:29.0078 0x0480  [ F34C06D1C706A6D9433570B087A18B02, 5A1B059458CD71FA9883C8E92F9300B86B79A6E6FBBC87431630DA43D1508319 ] Scutum50        C:\WINDOWS\system32\Drivers\Scutum50.sys
19:09:29.0140 0x0480  Scutum50 - detected UnsignedFile.Multi.Generic ( 1 )
19:09:29.0140 0x0480  Scutum50 ( UnsignedFile.Multi.Generic ) - warning
19:09:29.0187 0x0480  [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] Secdrv          C:\WINDOWS\system32\DRIVERS\secdrv.sys
19:09:29.0296 0x0480  Secdrv - ok
19:09:29.0343 0x0480  [ BEE4CFD1D48C23B44CF4B974B0B79B2B, DF3B02D713F8A4602BE75F004074D5DF79AFF2D58FF37110B2A6AC29F680758B ] seclogon        C:\WINDOWS\System32\seclogon.dll
19:09:29.0593 0x0480  seclogon - ok
19:09:29.0656 0x0480  [ 2AAC9B6ED9EDDFFB721D6452E34D67E3, 95D83F054A6610328D56E56CD948A6618C590231853E56FC20E7557DB61384A4 ] SENS            C:\WINDOWS\system32\sens.dll
19:09:29.0906 0x0480  SENS - ok
19:09:29.0968 0x0480  [ CF24EB4F0412C82BCD1F4F35A025E31D, B74CB094126F5C23F601C34D53B2DF5BE3E5918230AC9DCFCFFA8E66B3A0FA25 ] Serial          C:\WINDOWS\system32\drivers\Serial.sys
19:09:30.0234 0x0480  Serial - ok
19:09:30.0484 0x0480  [ 78F7BB9F4924BE164294C59B8C3FC096, 75051A6A8B0DBB16CD70855A408134270EEAF0C127BAAE5B592DB53BB87C085B ] ServiceLayer    C:\Programme\PC Connectivity Solution\ServiceLayer.exe
19:09:30.0593 0x0480  ServiceLayer - ok
19:09:30.0734 0x0480  [ 8E6B8C671615D126FDC553D1E2DE5562, CEEC0067514555D5CA489F50E3D7562FCA8DB8E952C3C878604C9277FC77959F ] Sfloppy         C:\WINDOWS\system32\drivers\Sfloppy.sys
19:09:30.0984 0x0480  Sfloppy - ok
19:09:31.0156 0x0480  [ CAD058D5F8B889A87CA3EB3CF624DCEF, A7CDCF44261D1F4D820927253EA8EBB63714B7BAFF8B08DE073507D9A7EEA5BB ] SharedAccess    C:\WINDOWS\System32\ipnathlp.dll
19:09:31.0453 0x0480  SharedAccess - ok
19:09:31.0531 0x0480  [ 2DB7D303C36DDD055215052F118E8E75, BE6E7BBE12A7A4EDF1F1C2935350603970C7426BBCA7A1A6644BB8999123AF17 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
19:09:31.0578 0x0480  ShellHWDetection - ok
19:09:31.0593 0x0480  Simbad - ok
19:09:31.0687 0x0480  [ 704B4F81729F676BBF034529FC334D82, 1E50DAF97836807A500284385D99272780A8B69CA88761250451060B207824F8 ] SkypeUpdate     C:\Programme\Skype\Updater\Updater.exe
19:09:31.0765 0x0480  SkypeUpdate - ok
19:09:31.0828 0x0480  [ 866D538EBE33709A5C9F5C62B73B7D14, BC94BEB7C17B4FCAC8B5D0D5006A203BC209E0504EECE149651D8691935696CD ] SLIP            C:\WINDOWS\system32\DRIVERS\SLIP.sys
19:09:32.0078 0x0480  SLIP - ok
19:09:32.0125 0x0480  Sparrow - ok
19:09:32.0171 0x0480  [ AB8B92451ECB048A4D1DE7C3FFCB4A9F, DD17733CBB370FCA08F0296704D7CBEACA3C8F76D0ABE4761C3B1FFDF7481D9E ] splitter        C:\WINDOWS\system32\drivers\splitter.sys
19:09:32.0421 0x0480  splitter - ok
19:09:32.0515 0x0480  [ 60784F891563FB1B767F70117FC2428F, E0B07F08E60FFBAD36C2E58180F4B2A16DCA47716044CBE0213DF7B74D742F1F ] Spooler         C:\WINDOWS\system32\spoolsv.exe
19:09:32.0578 0x0480  Spooler - ok
19:09:32.0640 0x0480  [ 50FA898F8C032796D3B1B9951BB5A90F, 1C86273EC19EB96D6DB9CE6670C00683B77C99C42CC2F7E75BC50872B93446B1 ] sr              C:\WINDOWS\system32\DRIVERS\sr.sys
19:09:32.0765 0x0480  sr - ok
19:09:32.0859 0x0480  [ FE77A85495065F3AD59C5C65B6C54182, EB4BAF992F961B2FD5D24BFCB6BCB2142BC32933139A818835FEAB190E4283BB ] srservice       C:\WINDOWS\system32\srsvc.dll
19:09:32.0984 0x0480  srservice - ok
19:09:33.0187 0x0480  [ 47DDFC2F003F7F9F0592C6874962A2E7, 17C643BD4EB09B5666FE41817DC785BE04A6E491CE79E8E5A702CDBD98E1BDD7 ] Srv             C:\WINDOWS\system32\DRIVERS\srv.sys
19:09:33.0328 0x0480  Srv - ok
19:09:33.0359 0x0480  [ 4DF5B05DFAEC29E13E1ED6F6EE12C500, 2971D7D45D6942D310D47DBD19B9680D2D29527E79B86133C72217FD29259465 ] SSDPSRV         C:\WINDOWS\System32\ssdpsrv.dll
19:09:33.0500 0x0480  SSDPSRV - ok
19:09:33.0562 0x0480  [ A36EE93698802CD899F98BFD553D8185, 224CFED921EA230FF8025D259E34968FD2C0FD34BB3A918FB4B9B8BA42BEA5D3 ] ssmdrv          C:\WINDOWS\system32\DRIVERS\ssmdrv.sys
19:09:33.0593 0x0480  ssmdrv - ok
19:09:33.0687 0x0480  [ BC2C5985611C5356B24AEB370953DED9, 15CBAB8166827DC098E2B16AB6F49A1441A4CB52AF3588F0AD964CAB596DFE10 ] stisvc          C:\WINDOWS\system32\wiaservc.dll
19:09:33.0984 0x0480  stisvc - ok
19:09:34.0062 0x0480  [ 77813007BA6265C4B6098187E6ED79D2, 93939120E803C46FBFD577C8FC2E6C7E71C0460E01D25CB29579490640AB50C7 ] streamip        C:\WINDOWS\system32\DRIVERS\StreamIP.sys
19:09:34.0328 0x0480  streamip - ok
19:09:34.0375 0x0480  [ 3941D127AEF12E93ADDF6FE6EE027E0F, EA1F0E32E1C5E90FA4AAC421DEBBE086512340758D3217A6334E886BCE638B51 ] swenum          C:\WINDOWS\system32\DRIVERS\swenum.sys
19:09:34.0625 0x0480  swenum - ok
19:09:34.0703 0x0480  [ 8CE882BCC6CF8A62F2B2323D95CB3D01, B408550A581F3DA222355964AFA4E976AD8471F0AA37573C42C4948AE5A23A3B ] swmidi          C:\WINDOWS\system32\drivers\swmidi.sys
19:09:34.0968 0x0480  swmidi - ok
19:09:34.0984 0x0480  SwPrv - ok
19:09:35.0015 0x0480  symc810 - ok
19:09:35.0046 0x0480  symc8xx - ok
19:09:35.0078 0x0480  sym_hi - ok
19:09:35.0093 0x0480  sym_u3 - ok
19:09:35.0187 0x0480  [ D7B9AD3ABD0F7F9F694D71F38B5C7B72, F712D36AF77EE2E0E8C1A20F825C06F8A23BD9D616563E9814EB4273E7787E6D ] SynTP           C:\WINDOWS\system32\DRIVERS\SynTP.sys
19:09:35.0312 0x0480  SynTP - ok
19:09:35.0359 0x0480  [ 8B83F3ED0F1688B4958F77CD6D2BF290, 546D3602183702B4F53E84413CFA2C933D64C8540378E54A8DCD148F3F36A2DA ] sysaudio        C:\WINDOWS\system32\drivers\sysaudio.sys
19:09:35.0609 0x0480  sysaudio - ok
19:09:35.0687 0x0480  [ 2903FFFA2523926D6219428040DCE6B9, 4F13181931B0499F6C3F08138054DBCD1F84CB9806999A9172B80DE79D446F62 ] SysmonLog       C:\WINDOWS\system32\smlogsvc.exe
19:09:35.0953 0x0480  SysmonLog - ok
19:09:36.0046 0x0480  [ 05903CAC4B98908D55EA5774775B382E, AC3666CBD894D737874A5998DC7F46A0A51A7B23B1835FC735B9AD503A2191CC ] TapiSrv         C:\WINDOWS\System32\tapisrv.dll
19:09:36.0343 0x0480  TapiSrv - ok
19:09:36.0453 0x0480  [ 9AEFA14BD6B182D61E3119FA5F436D3D, EA29E49434585409272E7901AF89771FE9D6E911A7DC44AB3C7020CFF8A44552 ] Tcpip           C:\WINDOWS\system32\DRIVERS\tcpip.sys
19:09:36.0562 0x0480  Tcpip - ok
19:09:36.0640 0x0480  [ 6471A66807F5E104E4885F5B67349397, F35CBFFB8BB235CCE30EF94A5273333900DD49FD506BF9D55D99A320B8A53A5A ] TDPIPE          C:\WINDOWS\system32\drivers\TDPIPE.sys
19:09:36.0890 0x0480  TDPIPE - ok
19:09:36.0953 0x0480  [ C56B6D0402371CF3700EB322EF3AAF61, 7743FA4C734BCE38EFB1CA69BC17364D8421E2CD172F856F7E38E7AE1EE93F2F ] TDTCP           C:\WINDOWS\system32\drivers\TDTCP.sys
19:09:37.0187 0x0480  TDTCP - ok
19:09:37.0359 0x0480  [ 88155247177638048422893737429D9E, B6D4E8691917946332C2208D01F8C8281978C1AD1E9951C5D99DF0D49AC34B3B ] TermDD          C:\WINDOWS\system32\DRIVERS\termdd.sys
19:09:37.0593 0x0480  TermDD - ok
19:09:37.0703 0x0480  [ B7DE02C863D8F5A005A7BF375375A6A4, 6DE05A7B28CA5A78D58536347FC47F15883EEDBEF487CEA0117CC280FC582DCC ] TermService     C:\WINDOWS\System32\termsrv.dll
19:09:37.0968 0x0480  TermService - ok
19:09:38.0046 0x0480  [ 2DB7D303C36DDD055215052F118E8E75, BE6E7BBE12A7A4EDF1F1C2935350603970C7426BBCA7A1A6644BB8999123AF17 ] Themes          C:\WINDOWS\System32\shsvcs.dll
19:09:38.0093 0x0480  Themes - ok
19:09:38.0125 0x0480  TosIde - ok
19:09:38.0171 0x0480  [ 626504572B175867F30F3215C04B3E2F, 47E87CE9BC666D5CB5953C5D497DC00A7CC28F8EC0A064B3E47700279C5C4B91 ] TrkWks          C:\WINDOWS\system32\trkwks.dll
19:09:38.0437 0x0480  TrkWks - ok
19:09:38.0546 0x0480  [ FAC6431BA75C6B68553D168D29F470F2, D8523004B01FC0407FAA09C31493D428320A577E754652EAAED90B5F55B57F22 ] truecrypt       C:\WINDOWS\system32\drivers\truecrypt.sys
19:09:38.0609 0x0480  truecrypt - ok
19:09:38.0703 0x0480  [ 5787B80C2E3C5E2F56C2A233D91FA2C9, 3774905CF77954DFCECDA5BCC7CDE3D0ED72712BFAAD85ADAE5246306447E46C ] Udfs            C:\WINDOWS\system32\drivers\Udfs.sys
19:09:38.0937 0x0480  Udfs - ok
19:09:38.0968 0x0480  ultra - ok
19:09:39.0062 0x0480  [ 402DDC88356B1BAC0EE3DD1580C76A31, 32A686595710336A6BFD54C03F552AE39439611662F84EF5D24193AE5665C6F3 ] Update          C:\WINDOWS\system32\DRIVERS\update.sys
19:09:39.0343 0x0480  Update - ok
19:09:39.0437 0x0480  [ 1DFD8975D8C89214B98D9387C1125B49, 0B6B268487C8E45E9B86BF4A0A9DB669E0E45D600DE3C82B63F9986CA9E01082 ] upnphost        C:\WINDOWS\System32\upnphost.dll
19:09:39.0578 0x0480  upnphost - ok
19:09:39.0640 0x0480  [ 8721F55D8BC9F89E3A63CEBDF5EF4FA3, C0C82480014B646709869A6A6FA2B71B993F9FCD8E2DB9E8F7D341C21EE169CF ] upperdev        C:\WINDOWS\system32\DRIVERS\usbser_lowerflt.sys
19:09:39.0859 0x0480  upperdev - ok
19:09:39.0937 0x0480  [ 9B11E6118958E63E1FEF129466E2BDA7, 97168BCE3F4A9BB9E6500F05E34851FB957B219C598944FADC28AC0011C0503B ] UPS             C:\WINDOWS\System32\ups.exe
19:09:40.0187 0x0480  UPS - ok
19:09:40.0328 0x0480  [ 1B611611C28D2DF25BC057D79C6F13FC, B0D86F63E44B40413BBAE6402CC088046CFAE082D41BBC2ED5A916293356B846 ] usbccgp         C:\WINDOWS\system32\DRIVERS\usbccgp.sys
19:09:40.0390 0x0480  usbccgp - ok
19:09:40.0406 0x0480  USBCCID - ok
19:09:40.0468 0x0480  [ 4BAC8DF07F1D8434FC640E677A62204E, 76C1351AF6752224BF59DEEE0F8665FE699F3DFD679F5BCD01C7D9383E6402A4 ] usbehci         C:\WINDOWS\system32\DRIVERS\usbehci.sys
19:09:40.0515 0x0480  usbehci - ok
19:09:40.0578 0x0480  [ 1AB3CDDE553B6E064D2E754EFE20285C, A99C4528C4227B1E96847614745AAFACD3C5F1BDFE435214DBF78740FFB300FE ] usbhub          C:\WINDOWS\system32\DRIVERS\usbhub.sys
19:09:40.0828 0x0480  usbhub - ok
19:09:40.0906 0x0480  [ A717C8721046828520C9EDF31288FC00, 1530BBE832EDBB0974AD89D723A03FF7A0094B368992D73C2C3E62A181DF1E0A ] usbprint        C:\WINDOWS\system32\DRIVERS\usbprint.sys
19:09:41.0156 0x0480  usbprint - ok
19:09:41.0218 0x0480  [ 84C44D720655A8AA475E57A9E764D675, 2D450199338A217FBD951317812A74223E8B477974C7634667E8896316C3FEA0 ] usbser          C:\WINDOWS\system32\drivers\usbser.sys
19:09:41.0296 0x0480  usbser - ok
19:09:41.0343 0x0480  [ 4E66C71D8D010BFB0DF1042D25E9CB0F, E581ED3557A06FEE7F35DF1C18C7D74FEFD1FC5E6CDAD6692F66F4A033830F1C ] UsbserFilt      C:\WINDOWS\system32\DRIVERS\usbser_lowerfltj.sys
19:09:41.0578 0x0480  UsbserFilt - ok
19:09:41.0671 0x0480  [ A32426D9B14A089EAA1D922E0C5801A9, ED1DC52EE45F8EAD3AEC4B1F817BB25634141CF48295494C5947DCE6CF7A9817 ] usbstor         C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
19:09:41.0906 0x0480  usbstor - ok
19:09:41.0953 0x0480  [ 26496F9DEE2D787FC3E61AD54821FFE6, 8BE7FF647470B9A951CBB478FAF83D657A15CC78037F42348A6B738F21D523DA ] usbuhci         C:\WINDOWS\system32\DRIVERS\usbuhci.sys
19:09:42.0187 0x0480  usbuhci - ok
19:09:42.0359 0x0480  [ 813236B1183CFCF289E367BD5DE6E29E, 167FE18A96F330AEEC1A4C419770C15EFEB536D43838285E51E7A62E95DF4674 ] usbvideo        C:\WINDOWS\system32\Drivers\usbvideo.sys
19:09:42.0437 0x0480  usbvideo - ok
19:09:42.0484 0x0480  [ 0D3A8FAFCEACD8B7625CD549757A7DF1, B9CFDEFCD66AA139F3DC2F967B184669532922563AD5A71769BABDC4370D065E ] VgaSave         C:\WINDOWS\System32\drivers\vga.sys
19:09:42.0734 0x0480  VgaSave - ok
19:09:42.0750 0x0480  ViaIde - ok
19:09:42.0812 0x0480  [ A5A712F4E880874A477AF790B5186E1D, FE885ED04C3EAFC379787F836738A2769E43D07CF52DD917D90C38E001957A5E ] VolSnap         C:\WINDOWS\system32\drivers\VolSnap.sys
19:09:43.0062 0x0480  VolSnap - ok
19:09:43.0140 0x0480  [ 68F106273BE29E7B7EF8266977268E78, 1488AB7A654EBC94C73E1D494067189ACB95BC233980110CAC4C0297CDC4115A ] VSS             C:\WINDOWS\System32\vssvc.exe
19:09:43.0281 0x0480  VSS - ok
19:09:43.0437 0x0480  [ 7B353059E665F8B7AD2BBEAEF597CF45, 84A4311F18A4B8DCB364741DEA7D18E2363F19564B2EF25214965DC729527068 ] W32Time         C:\WINDOWS\system32\w32time.dll
19:09:43.0703 0x0480  W32Time - ok
19:09:43.0765 0x0480  [ E20B95BAEDB550F32DD489265C1DA1F6, 5589B2067E6C9FBA290D8C5EADDC198EBAF39C50C3CD7D2BC5CDA7CBFBC445E5 ] Wanarp          C:\WINDOWS\system32\DRIVERS\wanarp.sys
19:09:44.0000 0x0480  Wanarp - ok
19:09:44.0093 0x0480  [ D6EFAF429FD30C5DF613D220E344CCE7, 807D4563E8AD4073688691078EB13AF240E14BA5E0C8506A48B3060A20B90082 ] WDC_SAM         C:\WINDOWS\system32\DRIVERS\wdcsam.sys
19:09:44.0203 0x0480  WDC_SAM - ok
19:09:44.0296 0x0480  [ D918617B46457B9AC28027722E30F647, 407284D3055DC11944D4EE7E4357E7CF9CAF8CA40CA50633AB6FD4A82CB7EEA6 ] Wdf01000        C:\WINDOWS\system32\Drivers\wdf01000.sys
19:09:44.0375 0x0480  Wdf01000 - ok
19:09:44.0390 0x0480  WDICA - ok
19:09:44.0453 0x0480  [ 6768ACF64B18196494413695F0C3A00F, 3A8F8586F1D997D19A8478345338D2AECD785AEABDB61531DD3F92003D3230A5 ] wdmaud          C:\WINDOWS\system32\drivers\wdmaud.sys
19:09:44.0718 0x0480  wdmaud - ok
19:09:44.0812 0x0480  [ 81727C9873E3905A2FFC1EBD07265002, 6AC2383A1DCBB7FA3DB90FBB874C8E1819F5B7492717FF41E303EFC7BF72F93E ] WebClient       C:\WINDOWS\System32\webclnt.dll
19:09:45.0062 0x0480  WebClient - ok
19:09:45.0171 0x0480  [ 6F3F3973D97714CC5F906A19FE883729, 7817118BE94D0F6FAE0F9CE48AD70FFE0AEF886CCE09C666768FAB61047F992F ] winmgmt         C:\WINDOWS\system32\wbem\WMIsvc.dll
19:09:45.0421 0x0480  winmgmt - ok
19:09:45.0546 0x0480  [ C51B4A5C05A5475708E3C81C7765B71D, F776D2680BD3407307B7072626F78460361FC5BC38623C9E16F394D300AB25DE ] WmdmPmSN        C:\WINDOWS\system32\MsPMSNSv.dll
19:09:45.0625 0x0480  WmdmPmSN - ok
19:09:45.0656 0x0480  [ C42584FD66CE9E17403AEBCA199F7BDB, E3F2E1066F36AE5D33D4482239B2E556BE0C137923C9A120DFB36EC82F2E77B0 ] WmiAcpi         C:\WINDOWS\system32\DRIVERS\wmiacpi.sys
19:09:45.0875 0x0480  WmiAcpi - ok
19:09:45.0968 0x0480  [ 93908111BA57A6E60EC2FA2DE202105C, F395F25F18D15C6B9FEDB45FD31E10295FFE5517E2BC86ACAC11904EA0664BE2 ] WmiApSrv        C:\WINDOWS\system32\wbem\wmiapsrv.exe
19:09:46.0218 0x0480  WmiApSrv - ok
19:09:46.0437 0x0480  [ BF05650BB7DF5E9EBDD25974E22403BB, AF173D89B768CFC7AB03DFADD4F049CAC40AC59A0C9208AF5AB92CB368983077 ] WMPNetworkSvc   C:\Programme\Windows Media Player\WMPNetwk.exe
19:09:46.0609 0x0480  WMPNetworkSvc - ok
19:09:46.0640 0x0480  [ CF4DEF1BF66F06964DC0D91844239104, CC1D9CECE2056D29A9651D51BB57C3F4F9BF9E90A4808CF7496C683C874FBD51 ] WpdUsb          C:\WINDOWS\system32\DRIVERS\wpdusb.sys
19:09:46.0687 0x0480  WpdUsb - ok
19:09:46.0859 0x0480  [ 15673BD0B86150CB8E27766059C72A9B, 56C23289A8BFF4945EE532CF6D62D3EC81B827CA15A359F30A327789F9FE9CAF ] WPFFontCache_v0400 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
19:09:47.0000 0x0480  WPFFontCache_v0400 - ok
19:09:47.0062 0x0480  [ 6ABE6E225ADB5A751622A9CC3BC19CE8, 4061C5D0F051DFF1730E2A3BFC1CCA97B29602FC50F10F6B44D93B0D28F42024 ] WS2IFSL         C:\WINDOWS\System32\drivers\ws2ifsl.sys
19:09:47.0328 0x0480  WS2IFSL - ok
19:09:47.0421 0x0480  [ 300B3E84FAF1A5C1F791C159BA28035D, 0194856BDF94C1F274AF70AD558290ACDACDDEA331BD66FEB8E167ABD1E36786 ] wscsvc          C:\WINDOWS\system32\wscsvc.dll
19:09:47.0671 0x0480  wscsvc - ok
19:09:47.0765 0x0480  [ 43F767D59BFC25D8F4FC2EB42043EC1E, 9DC502AE199A93FD8492F7AEC41F0578AD8C75E91AE7A083BC37224243A4DCDE ] WSIMD           C:\WINDOWS\system32\DRIVERS\wsimd.sys
19:09:47.0796 0x0480  WSIMD - detected UnsignedFile.Multi.Generic ( 1 )
19:09:47.0796 0x0480  WSIMD ( UnsignedFile.Multi.Generic ) - warning
19:09:47.0843 0x0480  [ C98B39829C2BBD34E454150633C62C78, 71B60EA3AD0E2637917D528C6A9E7ECF2949E3E5E91036AA5BBADA95BD725511 ] WSTCODEC        C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
19:09:48.0078 0x0480  WSTCODEC - ok
19:09:48.0140 0x0480  [ 7B4FE05202AA6BF9F4DFD0E6A0D8A085, A1DB8909FA73337DB613D01824945485186654364A4DF129B8CB913CF87D1D2E ] wuauserv        C:\WINDOWS\system32\wuauserv.dll
19:09:48.0421 0x0480  wuauserv - ok
19:09:48.0515 0x0480  [ EAA6324F51214D2F6718977EC9CE0DEF, B9DE1521395E09233FE519873702979C3EAF65FEC4B94B12A46CECB16C488543 ] WudfPf          C:\WINDOWS\system32\DRIVERS\WudfPf.sys
19:09:48.0593 0x0480  WudfPf - ok
19:09:48.0640 0x0480  [ F91FF1E51FCA30B3C3981DB7D5924252, D7052B58F22638CA8B59C6FD7408D6D6DD1C33910912CACC05C133472CE0DDCE ] WudfRd          C:\WINDOWS\system32\DRIVERS\wudfrd.sys
19:09:48.0687 0x0480  WudfRd - ok
19:09:48.0703 0x0480  [ DDEE3682FE97037C45F4D7AB467CB8B6, D5A8F07AF4EDD9D7E17FEC6222D187E2981C177A479511E407756E0E5CB8D387 ] WudfSvc         C:\WINDOWS\System32\WUDFSvc.dll
19:09:48.0750 0x0480  WudfSvc - ok
19:09:48.0859 0x0480  [ C4F109C005F6725162D2D12CA751E4A7, AC996B44338328BDD4442FE48406F286A64526F0EC77BE00A19FA7FDB0407CFE ] WZCSVC          C:\WINDOWS\System32\wzcsvc.dll
19:09:49.0234 0x0480  WZCSVC - ok
19:09:49.0375 0x0480  [ 0ADA34871A2E1CD2CAAFED1237A47750, 45BEF8649078BD74C1A347B5F2D3A1958E5A7DCD6C6BA8A2E0CAD277A929C64E ] xmlprov         C:\WINDOWS\System32\xmlprov.dll
19:09:49.0703 0x0480  xmlprov - ok
19:09:49.0796 0x0480  ================ Scan global ===============================
19:09:49.0875 0x0480  [ 2C60091CA5F67C3032EAB3B30390C27F, 9E205C8E67F4B61FCFA2A82AA1968D522C3B6410D7075BE813F7F1564D61632E ] C:\WINDOWS\system32\basesrv.dll
19:09:49.0968 0x0480  [ E62178BC21EAC63A3B9A2DBD46C1B505, CAA5480CC4DAA37758F0CF445F865FD6F4630080B044EF2E606C2F62DAA4061A ] C:\WINDOWS\system32\winsrv.dll
19:09:50.0015 0x0480  [ E62178BC21EAC63A3B9A2DBD46C1B505, CAA5480CC4DAA37758F0CF445F865FD6F4630080B044EF2E606C2F62DAA4061A ] C:\WINDOWS\system32\winsrv.dll
19:09:50.0093 0x0480  [ A3EDBE9053889FB24AB22492472B39DC, 6F2ED6E04BDE2FCA2A8BF9BD2D1D6923DE6EAECB46F582B6C0BD1CF364D65C9E ] C:\WINDOWS\system32\services.exe
19:09:50.0109 0x0480  [ Global ] - ok
19:09:50.0109 0x0480  ================ Scan MBR ==================================
19:09:50.0140 0x0480  [ 69035F21489D7C5312386870E4AEF5AE ] \Device\Harddisk0\DR0
19:09:51.0250 0x0480  \Device\Harddisk0\DR0 - ok
19:09:51.0250 0x0480  ================ Scan VBR ==================================
19:09:51.0265 0x0480  [ 605BC8AB08DB6AEBD9A626F06F3ACDD3 ] \Device\Harddisk0\DR0\Partition1
19:09:51.0265 0x0480  \Device\Harddisk0\DR0\Partition1 - ok
19:09:51.0281 0x0480  ================ Scan generic autorun ======================
19:09:52.0968 0x0480  [ 88A5D104AB29EC5BF3C74F608A6C2335, B3A641B1A6F9E7E2E333FDC586549C4E7096556996D86A69CFFA825BD8EB52E9 ] C:\WINDOWS\RTHDCPL.EXE
19:09:57.0296 0x0480  RTHDCPL - ok
19:09:57.0546 0x0480  [ 61C23465F195FDF5AE5FE342E1692AC7, BD3628DCBB6AED97031D70BCA9BA8F7C8F0BCBD19EF93C2F126B14226C20BB6B ] C:\Programme\Synaptics\SynTP\SynTPEnh.exe
19:09:57.0703 0x0480  SynTPEnh - ok
19:09:57.0890 0x0480  [ 3E23D1F7E91627DBD44AC82077E2BA7C, 09235370B85EF5FEA24F1291B9ADAD805C8D7357A78EF8CE3BA0E913F59145EC ] C:\Programme\Avira\AntiVir Desktop\avgnt.exe
19:09:57.0984 0x0480  avgnt - ok
19:09:58.0718 0x0480  [ 30A0B072E647757CEDDA9E306D410410, 9B16173C973F6B494F35DBA3AD339C3964CD8B066F9D59E5BC9DCF27B526A1F1 ] C:\Programme\COMODO\COMODO Internet Security\cfp.exe
19:09:59.0609 0x0480  COMODO Internet Security - ok
19:09:59.0687 0x0480  [ 01B4E6E990B6C5EA8856D96C7FD044B2, 2266296FD3C8E0DFA657F21406EE4E494477870DFAF7C65BEBCB6FBA8CADC7C6 ] C:\WINDOWS\system32\ctfmon.exe
19:09:59.0921 0x0480  ctfmon.exe - ok
19:09:59.0937 0x0480  [ 01B4E6E990B6C5EA8856D96C7FD044B2, 2266296FD3C8E0DFA657F21406EE4E494477870DFAF7C65BEBCB6FBA8CADC7C6 ] C:\WINDOWS\system32\ctfmon.exe
19:10:00.0171 0x0480  CTFMON.EXE - ok
19:10:00.0171 0x0480  BullGuard - ok
19:10:00.0265 0x0480  [ 43D083268A0919F3527A2837390BAF63, 58B62697B01B8C9396271A64424178691FA85D4625DAF2AC8DE7F06A64F64C2A ] C:\Programme\Gemeinsame Dateien\InstallShield\UpdateService\ISUSPM.exe
19:10:00.0312 0x0480  ISUSPM - ok
19:10:00.0531 0x0480  AV detected via SS1: Avira Antivirus, 15.0.9.460, enabled, updated
19:10:00.0546 0x0480  FW detected via SS1: COMODO Firewall, 3.9, enabled
19:10:00.0546 0x0480  ============================================================
19:10:00.0546 0x0480  Scan finished
19:10:00.0546 0x0480  ============================================================
19:10:00.0593 0x0478  Detected object count: 5
19:10:00.0593 0x0478  Actual detected object count: 5
19:10:35.0796 0x0478  C:\WINDOWS\system32\epmntdrv.sys - copied to quarantine
19:10:35.0796 0x0478  epmntdrv ( UnsignedFile.Multi.Generic ) - User select action: Quarantine 
19:10:35.0843 0x0478  C:\WINDOWS\system32\EuGdiDrv.sys - copied to quarantine
19:10:35.0843 0x0478  EuGdiDrv ( UnsignedFile.Multi.Generic ) - User select action: Quarantine 
19:10:35.0921 0x0478  C:\Programme\System Control Manager\MSIService.exe - copied to quarantine
19:10:35.0921 0x0478  Micro Star SCM ( UnsignedFile.Multi.Generic ) - User select action: Quarantine 
19:10:35.0968 0x0478  C:\WINDOWS\system32\Drivers\Scutum50.sys - copied to quarantine
19:10:35.0968 0x0478  Scutum50 ( UnsignedFile.Multi.Generic ) - User select action: Quarantine 
19:10:36.0015 0x0478  C:\WINDOWS\system32\DRIVERS\wsimd.sys - copied to quarantine
19:10:36.0015 0x0478  WSIMD ( UnsignedFile.Multi.Generic ) - User select action: Quarantine 
1

allerdings kommt die Fehlermeldung von avira auch immer wieder

Eisbaer27 · 13.05.2015, 08:10

zweite hälfte log 1

Code:

ATTFilter

19:10:41.0031 0x0500  ============================================================
19:10:41.0031 0x0500  Scan started
19:10:41.0031 0x0500  Mode: Manual; SigCheck; TDLFS; 
19:10:41.0031 0x0500  ============================================================
19:10:41.0031 0x0500  KSN ping started
19:10:41.0046 0x0500  KSN ping finished: false
19:10:41.0546 0x0500  ================ Scan system memory ========================
19:10:41.0546 0x0500  System memory - ok
19:10:41.0546 0x0500  ================ Scan services =============================
19:10:41.0921 0x0500  Abiosdsk - ok
19:10:41.0937 0x0500  abp480n5 - ok
19:10:42.0000 0x0500  [ AC407F1A62C3A300B4F2B5A9F1D55B2C, 31F5FC61B37E22100B3A52A590295A7E827FFC581FA9960C64B9032452AAECED ] ACPI            C:\WINDOWS\system32\DRIVERS\ACPI.sys
19:10:42.0312 0x0500  ACPI - ok
19:10:42.0359 0x0500  [ 9E1CA3160DAFB159CA14F83B1E317F75, 13B3E897B0E819BF734449416D9EC6EBCAC89538EC69BF48C068593B82D57004 ] ACPIEC          C:\WINDOWS\system32\DRIVERS\ACPIEC.sys
19:10:42.0593 0x0500  ACPIEC - ok
19:10:42.0750 0x0500  [ B04A4810C6CC205F9DC72DC22E4AB236, 547321F5C28C80D4818372D65E2A33D4BAC593015DD6613B24586FE4B4A95D5D ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
19:10:42.0812 0x0500  AdobeFlashPlayerUpdateSvc - ok
19:10:42.0828 0x0500  adpu160m - ok
19:10:42.0921 0x0500  [ 8BED39E3C35D6A489438B8141717A557, 1B5796E56B0927360CE0759641B1151828BC0A9E45620D2B2D880491F5CE33D0 ] aec             C:\WINDOWS\system32\drivers\aec.sys
19:10:43.0171 0x0500  aec - ok
19:10:43.0328 0x0500  [ 1E44BC1E83D8FD2305F8D452DB109CF9, CF5EC07E0B589FA2A4701C6CFD69E893FC3ABF274AD57AE3C13FFE49063B02C8 ] AFD             C:\WINDOWS\System32\drivers\afd.sys
19:10:43.0375 0x0500  AFD - ok
19:10:43.0406 0x0500  Aha154x - ok
19:10:43.0437 0x0500  aic78u2 - ok
19:10:43.0453 0x0500  aic78xx - ok
19:10:43.0578 0x0500  [ 738D80CC01D7BC7584BE917B7F544394, DCC17AAEF5CDDF52FAAC3CC6904EF421CD595F66318A2370BEE261D5C3A8E340 ] Alerter         C:\WINDOWS\system32\alrsvc.dll
19:10:43.0812 0x0500  Alerter - ok
19:10:43.0875 0x0500  [ 190CD73D4984F94D823F9444980513E5, 93A32C2495CCA094F768BA707C74DA5C00B8A88A9236DD1A297439A7C2E6C6FA ] ALG             C:\WINDOWS\System32\alg.exe
19:10:44.0000 0x0500  ALG - ok
19:10:44.0015 0x0500  AliIde - ok
19:10:44.0046 0x0500  amsint - ok
19:10:44.0312 0x0500  [ 6A7BE5D0E66B8121E60EFAD57EB04963, 96EC128BC06E7ED7485D52DD52F8A71FEBD9633415DD8486BDBCC499ED32A0F8 ] AntiVirMailService C:\Programme\Avira\AntiVir Desktop\avmailc.exe
19:10:44.0437 0x0500  AntiVirMailService - ok
19:10:44.0531 0x0500  [ F36D18EF1E66F92094AD89D17BEF007C, A5C793B340311CB7A301B77316E1976E3CD7CA9470CE5F1062CB003BCD4C155C ] AntiVirSchedulerService C:\Programme\Avira\AntiVir Desktop\sched.exe
19:10:44.0593 0x0500  AntiVirSchedulerService - ok
19:10:44.0687 0x0500  [ F36D18EF1E66F92094AD89D17BEF007C, A5C793B340311CB7A301B77316E1976E3CD7CA9470CE5F1062CB003BCD4C155C ] AntiVirService  C:\Programme\Avira\AntiVir Desktop\avguard.exe
19:10:44.0750 0x0500  AntiVirService - ok
19:10:44.0781 0x0500  AppMgmt - ok
19:10:45.0078 0x0500  [ 6C21F270AFEC1E423C00E96D3BD234DC, 8DA4ABDD83AECCFD87535AF3C9E3613CBFC4EE14967A551196E7B77F80858E65 ] AR5416          C:\WINDOWS\system32\DRIVERS\athw.sys
19:10:45.0296 0x0500  AR5416 - ok
19:10:45.0312 0x0500  asc - ok
19:10:45.0343 0x0500  asc3350p - ok
19:10:45.0375 0x0500  asc3550 - ok
19:10:45.0593 0x0500  [ 776ACEFA0CA9DF0FAA51A5FB2F435705, 72DF7ED6B085BC468994F5B3189506FD726A9A17A9C42ACA1E420D787691361D ] aspnet_state    C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
19:10:45.0640 0x0500  aspnet_state - ok
19:10:45.0703 0x0500  [ B153AFFAC761E7F5FCFA822B9C4E97BC, 7E60F572A6B3C6219E3C86225AA37243AFFD74337DB7F108B04778042E5CC959 ] AsyncMac        C:\WINDOWS\system32\DRIVERS\asyncmac.sys
19:10:45.0937 0x0500  AsyncMac - ok
19:10:46.0000 0x0500  [ 9F3A2F5AA6875C72BF062C712CFA2674, B4DF1D2C56A593C6B54DE57395E3B51D288F547842893B32B0F59228A0CF70B9 ] atapi           C:\WINDOWS\system32\drivers\atapi.sys
19:10:46.0265 0x0500  atapi - ok
19:10:46.0296 0x0500  Atdisk - ok
19:10:46.0390 0x0500  [ 9916C1225104BA14794209CFA8012159, 5D6F05F715C52A16D05CAE15C3DFE77A139A7F27F7AE710EC9A10F9EE05115A1 ] Atmarpc         C:\WINDOWS\system32\DRIVERS\atmarpc.sys
19:10:46.0640 0x0500  Atmarpc - ok
19:10:46.0734 0x0500  [ 58ED0D5452DF7BE732193E7999C6B9A4, 254E2ECF592DDA2E3E6CA9F6F3E77926E2265586A7937BA95199ED47BCDE69A3 ] AudioSrv        C:\WINDOWS\System32\audiosrv.dll
19:10:46.0968 0x0500  AudioSrv - ok
19:10:47.0015 0x0500  [ D9F724AA26C010A217C97606B160ED68, 329B5118F2409731D06FDAE85B6ADD64A048292801BCB3546651CEB303111695 ] audstub         C:\WINDOWS\system32\DRIVERS\audstub.sys
19:10:47.0250 0x0500  audstub - ok
19:10:47.0359 0x0500  [ AF5DA81B19AFA730F1E5246AD81D140A, 532951071F56896A3B5D47874C14D996C8620EA02F87D4BA21B083EC804FB166 ] avgntflt        C:\WINDOWS\system32\DRIVERS\avgntflt.sys
19:10:47.0406 0x0500  avgntflt - ok
19:10:47.0468 0x0500  [ A5674637BCA212D9FE136ADFA04C9857, 95F3632EBB041C539816D285EBE1F379D46A4187379C69D4683D9F4DECBDB80C ] avipbb          C:\WINDOWS\system32\DRIVERS\avipbb.sys
19:10:47.0515 0x0500  avipbb - ok
19:10:47.0656 0x0500  [ D8C712305F73CD34D1B344810E522728, 49A474FF6CA44E8427D7A8290B47395125B0148AF384CF2B3B1FA495A4718CBA ] avkmgr          C:\WINDOWS\system32\DRIVERS\avkmgr.sys
19:10:47.0703 0x0500  avkmgr - ok
19:10:47.0781 0x0500  [ DA1F27D85E0D1525F6621372E7B685E9, 5A81A46A3BDD19DAFC6C87D277267A5D44F3A1B5302F2CC1111D84B7BAD5610D ] Beep            C:\WINDOWS\system32\drivers\Beep.sys
19:10:48.0000 0x0500  Beep - ok
19:10:48.0140 0x0500  [ D6F603772A789BB3228F310D650B8BD1, A539025C70FD998A9B8703DE05CAE5E99BC721D8852EA561EBC2DD20CB371D2E ] BITS            C:\WINDOWS\system32\qmgr.dll
19:10:48.0421 0x0500  BITS - ok
19:10:48.0500 0x0500  [ B900D52BD62B19F086EBA674911A9AEC, CFD61EBE60303B0E04973A14B4819819148F486BCC952E465BB830E46350D92C ] BMserDiag       C:\WINDOWS\system32\DRIVERS\BMserDiag.sys
19:10:48.0546 0x0500  BMserDiag - ok
19:10:48.0625 0x0500  [ B900D52BD62B19F086EBA674911A9AEC, CFD61EBE60303B0E04973A14B4819819148F486BCC952E465BB830E46350D92C ] BMserNmea       C:\WINDOWS\system32\DRIVERS\BMserNmea.sys
19:10:48.0656 0x0500  BMserNmea - ok
19:10:48.0687 0x0500  [ B900D52BD62B19F086EBA674911A9AEC, CFD61EBE60303B0E04973A14B4819819148F486BCC952E465BB830E46350D92C ] BMusbmdm        C:\WINDOWS\system32\DRIVERS\BMusbmdm.sys
19:10:48.0734 0x0500  BMusbmdm - ok
19:10:48.0875 0x0500  [ 3B77514728BA0BFE4143FC3A2780B289, 07D8131F5A90798F44566CD21E33314E41F94FEF7303913EB0B54E0AB7EFC0D9 ] BootDefragDriver C:\WINDOWS\system32\drivers\BootDefragDriver.sys
19:10:48.0906 0x0500  BootDefragDriver - ok
19:10:48.0984 0x0500  [ B71549F23736ADF83A571061C47777FD, A1D0320736EE777030A543DCA086367EB5A5B6F95088B9C22D8E09326C3A39A9 ] Browser         C:\WINDOWS\System32\browser.dll
19:10:49.0046 0x0500  Browser - ok
19:10:49.0093 0x0500  [ B279426E3C0C344893ED78A613A73BDE, 30B29ED5DCFF0C180B806A5FBC705E1CAF6B0F525298CDA79A77FC2AF6E5AAA7 ] BthEnum         C:\WINDOWS\system32\DRIVERS\BthEnum.sys
19:10:49.0312 0x0500  BthEnum - ok
19:10:49.0390 0x0500  [ FCA6F069597B62D42495191ACE3FC6C1, 23A4EAA542547AC48BCB19DEC9C8E1C1D7D83F199F045DA4682C33292F011CE9 ] BTHMODEM        C:\WINDOWS\system32\DRIVERS\bthmodem.sys
19:10:49.0640 0x0500  BTHMODEM - ok
19:10:49.0703 0x0500  [ 80602B8746D3738F5886CE3D67EF06B6, 15ABAA8106C42A4453763EEB92B291844580168C934088DB1E22B2065DC238E9 ] BthPan          C:\WINDOWS\system32\DRIVERS\bthpan.sys
19:10:49.0937 0x0500  BthPan - ok
19:10:50.0062 0x0500  [ 592E1CEDBE314D0EF184DC6F46141E76, D69106F90C56C1E67BA4B96D6766C6676B66D0E0DF8358DA4B75FEFF211AA23E ] BTHPORT         C:\WINDOWS\system32\Drivers\BTHport.sys
19:10:50.0109 0x0500  BTHPORT - ok
19:10:50.0265 0x0500  [ 26C601EF7525E31379744ABFC6F35A1B, 842626D3A00DDA959A4AB730C0D551244DCDA15AC291FD70CC7324571A6088EC ] BthServ         C:\WINDOWS\System32\bthserv.dll
19:10:50.0484 0x0500  BthServ - ok
19:10:50.0546 0x0500  [ 61364CD71EF63B0F038B7E9DF00F1EFA, FB44D02B4379A8AF7DD8B0B22B53888B758903700142BFE45A412709294CE88A ] BTHUSB          C:\WINDOWS\system32\Drivers\BTHUSB.sys
19:10:50.0781 0x0500  BTHUSB - ok
19:10:50.0828 0x0500  [ 90A673FC8E12A79AFBED2576F6A7AAF9, BDE7858A3457DB979FEDD8577FA6321BF72848E4A7BF9F173C78A6A10CBB3EBE ] cbidf2k         C:\WINDOWS\system32\drivers\cbidf2k.sys
19:10:51.0062 0x0500  cbidf2k - ok
19:10:51.0140 0x0500  [ 0BE5AEF125BE881C4F854C554F2B025C, 1770DD70B3F115A0EF460907DEDC1E4B7241C08615A98F194D61A49C3E2BAA54 ] CCDECODE        C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
19:10:51.0406 0x0500  CCDECODE - ok
19:10:51.0421 0x0500  cd20xrnt - ok
19:10:51.0484 0x0500  [ C1B486A7658353D33A10CC15211A873B, AA4DD9E7AAE5AAB1146B360B17001F975D2F29A1281CF7B13E7136480410F347 ] Cdaudio         C:\WINDOWS\system32\drivers\Cdaudio.sys
19:10:51.0718 0x0500  Cdaudio - ok
19:10:51.0812 0x0500  [ C885B02847F5D2FD45A24E219ED93B32, B26B2F8E3A831E2B65EB0C5195B0645CD50E22615CE79C9B0B391CD563B121DB ] Cdfs            C:\WINDOWS\system32\drivers\Cdfs.sys
19:10:52.0062 0x0500  Cdfs - ok
19:10:52.0125 0x0500  [ 1F4260CC5B42272D71F79E570A27A4FE, B51C2A3ED3C309953D0EA45869C8E464C10F2533DADE9E0286AF674979098D1D ] Cdrom           C:\WINDOWS\system32\DRIVERS\cdrom.sys
19:10:52.0375 0x0500  Cdrom - ok
19:10:52.0468 0x0500  [ 61305C679E5766A03A09C0E966939206, E85EC9D23C81A2F8C08B439FA34F43C475A26C38DF4B4B40758CFC0D64C50C17 ] CFRMD           C:\WINDOWS\system32\DRIVERS\CFRMD.sys
19:10:52.0515 0x0500  CFRMD - ok
19:10:52.0531 0x0500  Changer - ok
19:10:52.0671 0x0500  [ 28E3040D1F1CA2008CD6B29DFEBC9A5E, ACB458E8A11AA2143734A5A0281973D95158E6402A6453F98F9832D1E19B01F9 ] CiSvc           C:\WINDOWS\system32\cisvc.exe
19:10:52.0937 0x0500  CiSvc - ok
19:10:52.0984 0x0500  [ 778A30ED3C134EB7E406AFC407E9997D, 3E6AD115AB2596EB001BC21AEADDBC75F27C42DB90C986B7AD17743CE631234E ] ClipSrv         C:\WINDOWS\system32\clipsrv.exe
19:10:53.0234 0x0500  ClipSrv - ok
19:10:53.0390 0x0500  [ 8410C7DE4748AEE7F9D7CB70ADFFDC01, 1F77AC232CAD72204EE37ACB1A4E03BDCEFD51A8DA2CE68304AD80AA7F75B0BD ] CLPSLauncher    C:\Programme\Gemeinsame Dateien\COMODO\launcher_service.exe
19:10:53.0437 0x0500  CLPSLauncher - ok
19:10:53.0562 0x0500  [ D87ACAED61E417BBA546CED5E7E36D9C, 14AC6034A5BC0FB2A1AFDAD42BEF4DE641556E54AD30D0C46765660A4BE55462 ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
19:10:53.0593 0x0500  clr_optimization_v2.0.50727_32 - ok
19:10:53.0671 0x0500  [ C5A75EB48E2344ABDC162BDA79E16841, 6070A8AAFD38FBC6A68A2B10C20117612354DF21B4492D90CA522BFB6870D726 ] clr_optimization_v4.0.30319_32 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
19:10:53.0718 0x0500  clr_optimization_v4.0.30319_32 - ok
19:10:53.0781 0x0500  [ 0F6C187D38D98F8DF904589A5F94D411, DB987093446216CEE913AC27503BF7E23E5A62DF169B355730285DAB64F6ED28 ] CmBatt          C:\WINDOWS\system32\DRIVERS\CmBatt.sys
19:10:54.0031 0x0500  CmBatt - ok
19:10:54.0343 0x0500  [ 2A2D72271844C52F004901A60312B96A, A7782E78EE6797A100410C997B77C95B1D991E57C0E5025FC17324EF54C54F0F ] cmdAgent        C:\Programme\COMODO\COMODO Internet Security\cmdagent.exe
19:10:54.0578 0x0500  cmdAgent - ok
19:10:54.0687 0x0500  [ 9181CC4D007ADBE21DB9A11BFECAFEF5, 06B5FDD33D5EE99659DF772CAB38A187166A7F9662B43B1DFC786E0DEFF013B8 ] cmdGuard        C:\WINDOWS\system32\DRIVERS\cmdguard.sys
19:10:54.0765 0x0500  cmdGuard - ok
19:10:54.0812 0x0500  [ C5A9FB50E8CA7FD99F256255FEE71580, 98A826550D7960A3605F67EBA84B721881B7F7D5B7F8445AA6F8790FE2DA05F2 ] cmdHlp          C:\WINDOWS\system32\DRIVERS\cmdhlp.sys
19:10:54.0859 0x0500  cmdHlp - ok
19:10:54.0875 0x0500  CmdIde - ok
19:10:54.0906 0x0500  cmnsusbser - ok
19:10:55.0000 0x0500  [ 6E4C9F21F0FAE8940661144F41B13203, 731202A0DD021FCF9287FEA631212603AAAC23F9E7F76B2882F913B18A971F1C ] Compbatt        C:\WINDOWS\system32\DRIVERS\compbatt.sys
19:10:55.0234 0x0500  Compbatt - ok
19:10:55.0250 0x0500  COMSysApp - ok
19:10:55.0312 0x0500  Cpqarray - ok
19:10:55.0421 0x0500  [ 611F824E5C703A5A899F84C5F1699E4D, 9EFA5612FE58E9974E4CC13D39D91D7B5DEA3ED66BEFBED3AAE6D2800FD8162A ] CryptSvc        C:\WINDOWS\System32\cryptsvc.dll
19:10:55.0656 0x0500  CryptSvc - ok
19:10:55.0734 0x0500  [ B5ECADF7708960F1818C7FA015F4C239, A58BA71B08A9D46EB79EB3DF0858F553A11DE3461E13B6D926E25D21D4CBB2D8 ] CVirtA          C:\WINDOWS\system32\DRIVERS\CVirtA.sys
19:10:55.0765 0x0500  CVirtA - ok
19:10:55.0796 0x0500  CVPNDRVA - ok
19:10:55.0812 0x0500  dac2w2k - ok
19:10:55.0843 0x0500  dac960nt - ok
19:10:56.0015 0x0500  [ 3127AFBF2C1ED0AB14A1BBB7AAECB85B, ECFBACE3CBF2384948EA1C445BDA3955EB4F44A9874286E6537C67DC1283E5B0 ] DcomLaunch      C:\WINDOWS\system32\rpcss.dll
19:10:56.0093 0x0500  DcomLaunch - ok
19:10:56.0171 0x0500  [ C29A1C9B75BA38FA37F8C44405DEC360, 7476D8BC4380CDE56764B2034AF3741DA4ED00F315E41C9A02B5EAD04374F241 ] Dhcp            C:\WINDOWS\System32\dhcpcsvc.dll
19:10:56.0421 0x0500  Dhcp - ok
19:10:56.0515 0x0500  [ 044452051F3E02E7963599FC8F4F3E25, 584BDDB074618BE76454CF90E74829CFF588B5B5FAEB793E2F7AAD26352DD689 ] Disk            C:\WINDOWS\system32\DRIVERS\disk.sys
19:10:56.0750 0x0500  Disk - ok
19:10:56.0765 0x0500  dmadmin - ok
19:10:56.0906 0x0500  [ 0DCFC8395A99FECBB1EF771CEC7FE4EA, 89B0AEE5BE01B9FE4FF2989FF16DB6121721ACDFCE6D9655C0ACD321D8C308BE ] dmboot          C:\WINDOWS\system32\drivers\dmboot.sys
19:10:57.0265 0x0500  dmboot - ok
19:10:57.0359 0x0500  [ 53720AB12B48719D00E327DA470A619A, 800264866A6267C9000A85D00095D57908D059D737E5F28C9C4049B884C46228 ] dmio            C:\WINDOWS\system32\drivers\dmio.sys
19:10:57.0609 0x0500  dmio - ok
19:10:57.0671 0x0500  [ E9317282A63CA4D188C0DF5E09C6AC5F, D41E002F555FE9015EF620975255F58BB79198CA1FF0E09EC950CB450FF77CF7 ] dmload          C:\WINDOWS\system32\drivers\dmload.sys
19:10:57.0906 0x0500  dmload - ok
19:10:57.0953 0x0500  [ 25C83FFBBA13B554EB6D59A9B2E2EE78, 9FBD655ED3E9163AE11EC207F283E387EFBA5A23108EC790BAE4846B35E66F16 ] dmserver        C:\WINDOWS\System32\dmserver.dll
19:10:58.0187 0x0500  dmserver - ok
19:10:58.0250 0x0500  [ 8A208DFCF89792A484E76C40E5F50B45, 4E40E2EB38C6254E7CAA488200E89EE7DEBBBA773890BC6A84313CC68178D54F ] DMusic          C:\WINDOWS\system32\drivers\DMusic.sys
19:10:58.0500 0x0500  DMusic - ok
19:10:58.0593 0x0500  [ 694616F813FB627A32C9E32DEC133078, 27D503E442ED60ED0F7B6BC743856B08B98CD1A396203B2D1426899407E870C5 ] DNE             C:\WINDOWS\system32\DRIVERS\dne2000.sys
19:10:58.0640 0x0500  DNE - ok
19:10:58.0703 0x0500  [ 407F3227AC618FD1CA54B335B083DE07, 96B8E734648FE9A4EBA59C096C8779BD1A11A93A6303AFD438A406C8122D36C6 ] Dnscache        C:\WINDOWS\System32\dnsrslvr.dll
19:10:58.0750 0x0500  Dnscache - ok
19:10:58.0828 0x0500  [ 676E36C4FF5BCEA1900F44182B9723E6, 740CF18BD40E00FEA26CF0E6340C5D18F7D0B4390055FAEEC258B3AA790C4AE9 ] Dot3svc         C:\WINDOWS\System32\dot3svc.dll
19:10:59.0062 0x0500  Dot3svc - ok
19:10:59.0093 0x0500  dpti2o - ok
19:10:59.0421 0x0500  [ E4A0D0C8F17073BE392F062DD1F6B50E, 26CF71517C09B24B6F6AB5AC902FF0D1426351BCCD6AB571510C83D0F6E32FE6 ] DragonUpdater   C:\Programme\Comodo\Dragon\dragon_updater.exe
19:10:59.0703 0x0500  DragonUpdater - ok
19:10:59.0781 0x0500  [ 8F5FCFF8E8848AFAC920905FBD9D33C8, C8C6FB97AB0871C8C88A2201525A5CF10D5131CB6980D32692ED7A8F58399AD5 ] drmkaud         C:\WINDOWS\system32\drivers\drmkaud.sys
19:11:00.0000 0x0500  drmkaud - ok
19:11:00.0062 0x0500  [ 4E4F2FDDAB0A0736D7671134DCCE91FB, 8E2C57D1A006856C47CBDD5765A9DD317DB205B26DA8BFC70555A506257A1CD9 ] EapHost         C:\WINDOWS\System32\eapsvc.dll
19:11:00.0296 0x0500  EapHost - ok
19:11:00.0312 0x0500  EAPPkt - ok
19:11:00.0421 0x0500  [ F07BA56B0235F15EFF8F10DC6389C42E, A7202CCB418D03606A97679BCF166ACA12F8341E8AB97DF044AE00401B8496B4 ] epmntdrv        C:\WINDOWS\system32\epmntdrv.sys
19:11:00.0437 0x0500  epmntdrv - detected UnsignedFile.Multi.Generic ( 1 )
19:11:00.0437 0x0500  epmntdrv ( UnsignedFile.Multi.Generic ) - warning
19:11:00.0437 0x0500  Force sending object to P2P due to detect: epmntdrv
19:11:00.0453 0x0500  Object send P2P result: false
19:11:00.0515 0x0500  [ 877C18558D70587AA7823A1A308AC96B, 6B336A62112988D855513F45153F73F8470C41A448E9B7438B4A8EC1813AABF1 ] ERSvc           C:\WINDOWS\System32\ersvc.dll
19:11:00.0765 0x0500  ERSvc - ok
19:11:00.0796 0x0500  [ 1F2F4AB15CE03ECC257FEB2F6DC5A013, FB06406AD9CCD946155C4E8CA769E0430589A4E4BBBDA2C90A67C84E0D2F8EE0 ] EuGdiDrv        C:\WINDOWS\system32\EuGdiDrv.sys
19:11:00.0812 0x0500  EuGdiDrv - detected UnsignedFile.Multi.Generic ( 1 )
19:11:00.0812 0x0500  EuGdiDrv ( UnsignedFile.Multi.Generic ) - warning
19:11:00.0812 0x0500  Force sending object to P2P due to detect: EuGdiDrv
19:11:00.0812 0x0500  Object send P2P result: false
19:11:00.0890 0x0500  [ A3EDBE9053889FB24AB22492472B39DC, 6F2ED6E04BDE2FCA2A8BF9BD2D1D6923DE6EAECB46F582B6C0BD1CF364D65C9E ] Eventlog        C:\WINDOWS\system32\services.exe
19:11:00.0937 0x0500  Eventlog - ok
19:11:00.0984 0x0500  [ AF4F6B5739D18CA7972AB53E091CBC74, A399E2CC026730D3A429727AAB48093B9F1E5DD8EB6336519C7F16182FDB3905 ] EventSystem     C:\WINDOWS\system32\es.dll
19:11:01.0046 0x0500  EventSystem - ok
19:11:01.0125 0x0500  [ 38D332A6D56AF32635675F132548343E, E6909DB836AF679B4F4D62C7396D6C82769CC7ABB8C919C2AABFE934FCE268F6 ] Fastfat         C:\WINDOWS\system32\drivers\Fastfat.sys
19:11:01.0375 0x0500  Fastfat - ok
19:11:01.0468 0x0500  [ 2DB7D303C36DDD055215052F118E8E75, BE6E7BBE12A7A4EDF1F1C2935350603970C7426BBCA7A1A6644BB8999123AF17 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
19:11:01.0515 0x0500  FastUserSwitchingCompatibility - ok
19:11:01.0640 0x0500  [ 92CDD60B6730B9F50F6A1A0C1F8CDC81, 8307A532AB4D05CBBCE206DC2759497708BF5AAA880BD00F0E4F281D8578A1F5 ] Fdc             C:\WINDOWS\system32\drivers\Fdc.sys
19:11:01.0875 0x0500  Fdc - ok
19:11:01.0953 0x0500  [ B0678A548587C5F1967B0D70BACAD6C1, 7E49910212ED87313F926E4800EA8D34809C287A686CA69B82B79C1A6451F88C ] Fips            C:\WINDOWS\system32\drivers\Fips.sys
19:11:02.0203 0x0500  Fips - ok
19:11:02.0250 0x0500  [ 9D27E7B80BFCDF1CDD9B555862D5E7F0, 69C271AD5BCEBFD8AE5A769BDD7EC51256DA3A8ADAD5D12E5C0D13F4E82D8805 ] Flpydisk        C:\WINDOWS\system32\drivers\Flpydisk.sys
19:11:02.0484 0x0500  Flpydisk - ok
19:11:02.0546 0x0500  [ B2CF4B0786F8212CB92ED2B50C6DB6B0, 280F5CF8A90F7BEDE73ADD0DD0F8952088133A7CA9A3D3B7041957E33B36845D ] FltMgr          C:\WINDOWS\system32\DRIVERS\fltMgr.sys
19:11:02.0796 0x0500  FltMgr - ok
19:11:02.0937 0x0500  [ 8BA7C024070F2B7FDD98ED8A4BA41789, 47585006F86B2C6016EC54250A416794792D1E4024FF229C120BC25B684AF66A ] FontCache3.0.0.0 c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
19:11:02.0968 0x0500  FontCache3.0.0.0 - ok
19:11:03.0140 0x0500  [ 26EABEEA7F30DCF21DA0577C4EE26FAA, 20C3CD2579ED6853249B1EAEF23DF2904779BA2E806D00C30F81EA9A1612AE0F ] FoxitCloudUpdateService C:\PROGRAMME\FOXIT SOFTWARE\FOXIT READER\Foxit Cloud\FCUpdateService.exe
19:11:03.0203 0x0500  FoxitCloudUpdateService - ok
19:11:03.0343 0x0500  [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A, EC635E071201A766845D48973772CBE0958942B4162F3F5F70660D114CC877E0 ] Fs_Rec          C:\WINDOWS\system32\drivers\Fs_Rec.sys
19:11:03.0593 0x0500  Fs_Rec - ok
19:11:03.0656 0x0500  [ 8F1955CE42E1484714B542F341647778, 8EB3F99625F409D3032561E8AB44BEFBFBFBA4EC873C2151C92A5CAAF7F2AA55 ] Ftdisk          C:\WINDOWS\system32\DRIVERS\ftdisk.sys
19:11:03.0890 0x0500  Ftdisk - ok
19:11:04.0171 0x0500  [ AE63D0DB96C07CAE5DC4CDB2B2A719A0, 1E38E4E350484E0942BE2AF61CDBBACC132C955FE3FA0C1485BDCA0C6283BA51 ] GeekBuddyRSP    C:\Programme\Gemeinsame Dateien\COMODO\GeekBuddyRSP.exe
19:11:04.0390 0x0500  GeekBuddyRSP - ok
19:11:04.0468 0x0500  [ 0A02C63C8B144BD8C86B103DEE7C86A2, 7A3235DD3E1995DD72B212FAEB3ECA2A974434DE9BF6D269EA11BA65A80E7E50 ] Gpc             C:\WINDOWS\system32\DRIVERS\msgpc.sys
19:11:04.0687 0x0500  Gpc - ok
19:11:04.0781 0x0500  [ E9CDEB631E63E83A7540CF6E81B5486B, 7CB2129168E27DE46B166B1C26975722E63D8AF772933664FCA5A8A335004117 ] GUBootStartup   C:\WINDOWS\System32\drivers\GUBootStartup.sys
19:11:04.0812 0x0500  GUBootStartup - ok
19:11:04.0843 0x0500  [ 573C7D0A32852B48F3058CFD8026F511, BC384BBA394AFDCDA1A9ABC858C692AA84A1F0A31AF3DDF7F38D120C027927FB ] HDAudBus        C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
19:11:05.0109 0x0500  HDAudBus - ok
19:11:05.0171 0x0500  [ CB66BF85BF599BEFD6C6A57C2E20357F, 55D3A0F9279FF316766F42548FCB61C452942B08A37590C4892DF110BE4E53C6 ] helpsvc         C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
19:11:05.0406 0x0500  helpsvc - ok
19:11:05.0421 0x0500  HidServ - ok
19:11:05.0484 0x0500  [ CCF82C5EC8A7326C3066DE870C06DAF1, 93395FA4C26B2E82DC8B7025ED3BCF583885E5D8C5F60CD6EEAA6335D6A126EC ] HidUsb          C:\WINDOWS\system32\DRIVERS\hidusb.sys
19:11:05.0718 0x0500  HidUsb - ok
19:11:05.0796 0x0500  [ ED29F14101523A6E0E808107405D452C, B8FA987637787BEECC2EB06D36293DAC355523392B49A8C5A9491EEE961917E9 ] hkmsvc          C:\WINDOWS\System32\kmsvc.dll
19:11:06.0031 0x0500  hkmsvc - ok
19:11:06.0046 0x0500  hpn - ok
19:11:06.0140 0x0500  [ F80A415EF82CD06FFAF0D971528EAD38, 524D9E9201572929522F6805011783711B7C0F76308B924C89CF75F4B7A1FDF3 ] HTTP            C:\WINDOWS\system32\Drivers\HTTP.sys
19:11:06.0203 0x0500  HTTP - ok
19:11:06.0250 0x0500  [ 9E4ADB854CEBCFB81A4B36718FEECD16, 677AB64460775686F8366D6BF35D420A2486C3F07338A00A7C2788A5142B9F08 ] HTTPFilter      C:\WINDOWS\System32\w3ssl.dll
19:11:06.0515 0x0500  HTTPFilter - ok
19:11:06.0531 0x0500  i2omgmt - ok
19:11:06.0562 0x0500  i2omp - ok
19:11:06.0671 0x0500  [ E283B97CFBEB86C1D86BAED5F7846A92, 7664F791D08C80DF1E52B34BE69F073AA645610C4BD975F498254807602374AB ] i8042prt        C:\WINDOWS\system32\DRIVERS\i8042prt.sys
19:11:06.0921 0x0500  i8042prt - ok
19:11:07.0546 0x0500  [ 0F68E2EC713F132FFB19E45415B09679, B1439A5D157F9FF54E803581D2B86411DB079242D837617021A4A0BC195E67BB ] ialm            C:\WINDOWS\system32\DRIVERS\igxpmp32.sys
19:11:08.0406 0x0500  ialm - ok
19:11:08.0484 0x0500  [ 707C1692214B1C290271067197F075F6, 7D0DB754604AABC4AA09AB8BA94326B1A1C2A76F3C2C2C7D6FA14F964BE68A51 ] iaStor          C:\WINDOWS\system32\drivers\iaStor.sys
19:11:08.0546 0x0500  iaStor - ok
19:11:08.0781 0x0500  [ C01AC32DC5C03076CFB852CB5DA5229C, A4D7749220B5BC965D96A267F1E02FE8284A230BA249109207BD4B9EA8DFAC96 ] idsvc           c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
19:11:08.0906 0x0500  idsvc - ok
19:11:08.0984 0x0500  [ 083A052659F5310DD8B6A6CB05EDCF8E, 48D39B03FFB6FAA1529B774443BA12618AE3982D9F65A7B9D18F2269F78B31F4 ] Imapi           C:\WINDOWS\system32\DRIVERS\imapi.sys
19:11:09.0218 0x0500  Imapi - ok
19:11:09.0328 0x0500  [ D4B413AA210C21E46AEDD2BA5B68D38E, 2309622867AA8FC832A729FA78F48742D4BD6CA0DAFBFB9DDB0772D671E1ED75 ] ImapiService    C:\WINDOWS\system32\imapi.exe
19:11:09.0578 0x0500  ImapiService - ok
19:11:09.0609 0x0500  ini910u - ok
19:11:09.0703 0x0500  [ E1DF634BEC066B3D4FFE437BCB78C282, 974278CA606DF7C0332997E4339EA2AFE017E04C596CE69F47FED798E57D52FB ] Inspect         C:\WINDOWS\system32\DRIVERS\inspect.sys
19:11:09.0734 0x0500  Inspect - ok
19:11:10.0265 0x0500  [ 053517D1BCADF00BEDB21FB7218C8F33, 633F19692C56C40F786C87A95E1D9B692420F6BD976753268FED378236FB0159 ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RtkHDAud.sys
19:11:11.0015 0x0500  IntcAzAudAddService - ok
19:11:11.0062 0x0500  IntelIde - ok
19:11:11.0109 0x0500  [ 4C7D2750158ED6E7AD642D97BFFAE351, C05E4799752F090DCB632F07F62ADE38D31534621064D269AD535CA0BDFED448 ] intelppm        C:\WINDOWS\system32\DRIVERS\intelppm.sys
19:11:11.0343 0x0500  intelppm - ok
19:11:11.0406 0x0500  [ 3BB22519A194418D5FEC05D800A19AD0, F6662F440950596DC1382DD1DB5D7891CCEA30A6062BEA942C18445B5F0D8B16 ] Ip6Fw           C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
19:11:11.0640 0x0500  Ip6Fw - ok
19:11:11.0687 0x0500  [ 731F22BA402EE4B62748ADAF6363C182, 5C3BEBD008A5BE4DC2F92076FF41A10DDC01E10EC7E6552213CFA11970811848 ] IpFilterDriver  C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
19:11:11.0921 0x0500  IpFilterDriver - ok
19:11:12.0000 0x0500  [ B87AB476DCF76E72010632B5550955F5, E6E74D3A86A7917A8BAED44F8E97CCD2EB171E4E4B27E9907F60D1523FAF319A ] IpInIp          C:\WINDOWS\system32\DRIVERS\ipinip.sys
19:11:12.0234 0x0500  IpInIp - ok
19:11:12.0296 0x0500  [ CC748EA12C6EFFDE940EE98098BF96BB, AF523E21C25D9A1715EFEA573E4F52AF5D4FC9F28A2D613F5DB629C186C439E0 ] IpNat           C:\WINDOWS\system32\DRIVERS\ipnat.sys
19:11:12.0562 0x0500  IpNat - ok
19:11:12.0625 0x0500  [ 23C74D75E36E7158768DD63D92789A91, 394D296F38E7D8EFD91A6EEC301D9CE6AF910E35EB9819F1A9E3363863AEDFDC ] IPSec           C:\WINDOWS\system32\DRIVERS\ipsec.sys
19:11:12.0859 0x0500  IPSec - ok
19:11:12.0921 0x0500  [ C93C9FF7B04D772627A3646D89F7BF89, 805FA48E7A46D4F10240BF880A2468F53DEA36E83004399228AB70DB7D20544A ] IRENUM          C:\WINDOWS\system32\DRIVERS\irenum.sys
19:11:13.0062 0x0500  IRENUM - ok
19:11:13.0156 0x0500  [ 6DFB88F64135C525433E87648BDA30DE, 8233EEFBEF36AAA152F2C55D23D7118F0DE40C9C22EB5D9793405A4770889540 ] isapnp          C:\WINDOWS\system32\DRIVERS\isapnp.sys
19:11:13.0437 0x0500  isapnp - ok
19:11:13.0484 0x0500  [ 1704D8C4C8807B889E43C649B478A452, E854C90CD301F42BE2520CEDAD35E49DF2D43606CF4EEED861B74882118D04D1 ] Kbdclass        C:\WINDOWS\system32\DRIVERS\kbdclass.sys
19:11:13.0734 0x0500  Kbdclass - ok
19:11:13.0796 0x0500  [ 692BCF44383D056AED41B045A323D378, 1A99DEE83FFAF64E73067FC049C0A4CE07D94E4AE31EFA17B38CEFA9E41D67DC ] kmixer          C:\WINDOWS\system32\drivers\kmixer.sys
19:11:14.0062 0x0500  kmixer - ok
19:11:14.0125 0x0500  [ B467646C54CC746128904E1654C750C1, 3BD71BE3663EA23463D236D8A2A2E42DFA10C502BDB4B6E131FAF0FBA748219E ] KSecDD          C:\WINDOWS\system32\drivers\KSecDD.sys
19:11:14.0203 0x0500  KSecDD - ok
19:11:14.0281 0x0500  [ 2BBDCB79900990F0716DFCB714E72DE7, 6283789201164A9254632D9A3C8A54FE697717D5F8D5A37804D924DC2B70C8E3 ] LanmanServer    C:\WINDOWS\System32\srvsvc.dll
19:11:14.0328 0x0500  LanmanServer - ok
19:11:14.0406 0x0500  [ 1869B14B06B44B44AF70548E1EA3303F, 4D63B4DAF580C86F86837C7D1753E2105B4C52E26D4CA0CAAFE83755EFF7AFBE ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
19:11:14.0468 0x0500  lanmanworkstation - ok
19:11:14.0484 0x0500  lbrtfdc - ok
19:11:14.0656 0x0500  [ 636714B7D43C8D0C80449123FD266920, F06F6C7DC49B26EFCAC3570C67BA9BD934F62C6F382DA4DD2AB302C7B970F414 ] LmHosts         C:\WINDOWS\System32\lmhsvc.dll
19:11:14.0906 0x0500  LmHosts - ok
19:11:14.0953 0x0500  [ B7550A7107281D170CE85524B1488C98, A3854B16A65436BEF6BEDE918B43B3BE8F00D303660DB5831DD376271DC43239 ] Messenger       C:\WINDOWS\System32\msgsvc.dll
19:11:15.0187 0x0500  Messenger - ok
19:11:15.0281 0x0500  [ 7E0506BF8148D74D2823E0A418E4AD31, 598BB22590D2ADE0FD6DCE3F1ADBF6FF5BEFA209368EF495E1E3A6A4F01EFA18 ] Micro Star SCM  C:\Programme\System Control Manager\MSIService.exe
19:11:15.0312 0x0500  Micro Star SCM - detected UnsignedFile.Multi.Generic ( 1 )
19:11:15.0312 0x0500  Micro Star SCM ( UnsignedFile.Multi.Generic ) - warning
19:11:15.0312 0x0500  Force sending object to P2P due to detect: Micro Star SCM
19:11:15.0312 0x0500  Object send P2P result: false
19:11:15.0375 0x0500  [ 4AE068242760A1FB6E1A44BF4E16AFA6, 1FB771162B96AAF787AC24867B818DF8511F0780BB094FA9A38C11D8DBFE68BC ] mnmdd           C:\WINDOWS\system32\drivers\mnmdd.sys
19:11:15.0609 0x0500  mnmdd - ok
19:11:15.0703 0x0500  [ C2F1D365FD96791B037EE504868065D3, 87BD87E08FD00D115524B049F1A3A719AB86557D68968E7090CD0F271F985CAF ] mnmsrvc         C:\WINDOWS\system32\mnmsrvc.exe
19:11:15.0937 0x0500  mnmsrvc - ok
19:11:16.0031 0x0500  [ 6FB74EBD4EC57A6F1781DE3852CC3362, 0454509D9A31E0202C08AE17294E2682F227D177A3C73B303E4C8332757AFCA1 ] Modem           C:\WINDOWS\system32\drivers\Modem.sys
19:11:16.0281 0x0500  Modem - ok
19:11:16.0343 0x0500  [ B24CE8005DEAB254C0251E15CB71D802, 6804A8ABDAD5EC846E7F8077D1EE9BA45D6226ACFF42C70BE3DE7C8980EF9EC4 ] Mouclass        C:\WINDOWS\system32\DRIVERS\mouclass.sys
19:11:16.0593 0x0500  Mouclass - ok
19:11:16.0656 0x0500  [ 66A6F73C74E1791464160A7065CE711A, 3C570FA1E8EF976B83759220FE95BAC9D7D48D607F91B113EDE4790D34ACBD46 ] mouhid          C:\WINDOWS\system32\DRIVERS\mouhid.sys
19:11:16.0875 0x0500  mouhid - ok
19:11:16.0968 0x0500  [ A80B9A0BAD1B73637DBCBBA7DF72D3FD, 2A5E15ED2C24C6C65EF2F7E1FD93374774076C9D8D451E4422561F4D269C012F ] MountMgr        C:\WINDOWS\system32\drivers\MountMgr.sys
19:11:17.0218 0x0500  MountMgr - ok
19:11:17.0328 0x0500  [ D815553666D383116DCF736BCCBC087D, 08023D43B4FCA606A37B4FB722127408EDEB6E3D20FB6889DA19C1A4EC5A3D8F ] MozillaMaintenance C:\Programme\Mozilla Maintenance Service\maintenanceservice.exe
19:11:17.0375 0x0500  MozillaMaintenance - ok
19:11:17.0406 0x0500  mraid35x - ok
19:11:17.0531 0x0500  [ 11D42BB6206F33FBB3BA0288D3EF81BD, 76ABCFB62C5AC549F58C231F72A99882CDEB74928104B77FE52554765C2B1A22 ] MRxDAV          C:\WINDOWS\system32\DRIVERS\mrxdav.sys
19:11:17.0781 0x0500  MRxDAV - ok
19:11:17.0921 0x0500  [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0, DB9B186F7076D7B94F45041AF7B77C1AD2CAB504D683B459C6CB1C22840ED170 ] MRxSmb          C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
19:11:18.0031 0x0500  MRxSmb - ok
19:11:18.0078 0x0500  [ 35A031AF38C55F92D28AA03EE9F12CC9, 97245D204C886EE8DCCC2DEAC80A0E358A7E0C1982F77389DA50DCF091FC9DDC ] MSDTC           C:\WINDOWS\system32\msdtc.exe
19:11:18.0312 0x0500  MSDTC - ok
19:11:18.0390 0x0500  [ C941EA2454BA8350021D774DAF0F1027, C940E978C7B66A713A0FDAB54B5F995DF59D089AFCD96221DD3222948CD49BBD ] Msfs            C:\WINDOWS\system32\drivers\Msfs.sys
19:11:18.0640 0x0500  Msfs - ok
19:11:18.0656 0x0500  MSIServer - ok
19:11:18.0718 0x0500  [ D1575E71568F4D9E14CA56B7B0453BF1, 4ABE0E24786C0D39FA2B885447E56204CA6942FB175E534DCE675D7BCF0B176A ] MSKSSRV         C:\WINDOWS\system32\drivers\MSKSSRV.sys
19:11:18.0968 0x0500  MSKSSRV - ok
19:11:19.0031 0x0500  [ 325BB26842FC7CCC1FCCE2C457317F3E, C07BE560513B1FB91D756494F0BA4AEEB2E1998DE0E1C21EE83DB1183B0CEE91 ] MSPCLOCK        C:\WINDOWS\system32\drivers\MSPCLOCK.sys
19:11:19.0265 0x0500  MSPCLOCK - ok
19:11:19.0312 0x0500  [ BAD59648BA099DA4A17680B39730CB3D, 9AD4C7C94C186C8815D0BC75DCAFB962158DA6935A244BA243EDDDEB33F9816C ] MSPQM           C:\WINDOWS\system32\drivers\MSPQM.sys
19:11:19.0546 0x0500  MSPQM - ok
19:11:19.0640 0x0500  [ AF5F4F3F14A8EA2C26DE30F7A1E17136, AC93A1E4ABB0D038B772E429015567E44CC2EDB66C54DBE23A5F98176FAC1520 ] mssmbios        C:\WINDOWS\system32\DRIVERS\mssmbios.sys
19:11:19.0859 0x0500  mssmbios - ok
19:11:19.0937 0x0500  [ E53736A9E30C45FA9E7B5EAC55056D1D, 38602F280BF69EBA3706AD175AFC1AEB561A8302B4B61E3FECB3C27D7A9BDB41 ] MSTEE           C:\WINDOWS\system32\drivers\MSTEE.sys
19:11:20.0203 0x0500  MSTEE - ok
19:11:20.0296 0x0500  [ DE6A75F5C270E756C5508D94B6CF68F5, FCC972DDC36C2C44D836913F10004C2C33B11C54DEFFF0C63E0FDF901D2F9261 ] Mup             C:\WINDOWS\system32\drivers\Mup.sys
19:11:20.0343 0x0500  Mup - ok
19:11:20.0375 0x0500  [ 5B50F1B2A2ED47D560577B221DA734DB, C16A554B6E1A7F5F98C94DFA88163E0F7426506BF2F51FD351B1A05FC0DB3BC5 ] NABTSFEC        C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
19:11:20.0625 0x0500  NABTSFEC - ok
19:11:20.0734 0x0500  [ 46BB15AE2AC7D025D6D2567B876817BD, 102A101B96D1078C98FA0F871C801A9A8538E20E5686AB0C7680B2F6C92B3165 ] napagent        C:\WINDOWS\System32\qagentrt.dll
19:11:21.0015 0x0500  napagent - ok
19:11:21.0109 0x0500  [ 1DF7F42665C94B825322FAE71721130D, FE0DCB728471465B39A42A7511F4133021FBA5DF88F88BCB5FE2FF34CFD713F9 ] NDIS            C:\WINDOWS\system32\drivers\NDIS.sys
19:11:21.0359 0x0500  NDIS - ok
19:11:21.0421 0x0500  [ 7FF1F1FD8609C149AA432F95A8163D97, 18CD1FF5AC1EF8A38D1EC53014F2BADD28D9CDF4ECE2EBC2313D08903776F323 ] NdisIP          C:\WINDOWS\system32\DRIVERS\NdisIP.sys
19:11:21.0656 0x0500  NdisIP - ok
19:11:21.0734 0x0500  [ 0109C4F3850DFBAB279542515386AE22, 4F6DB1E499AC853FD36FD603FBB6D3AC9BDCEB298C7FE1FB59A9236CB46729B2 ] NdisTapi        C:\WINDOWS\system32\DRIVERS\ndistapi.sys
19:11:21.0781 0x0500  NdisTapi - ok
19:11:21.0843 0x0500  [ F927A4434C5028758A842943EF1A3849, B1AA3AF150C05307461774925901789456B0CCCD03A5E71ADA4AB58455962BEE ] Ndisuio         C:\WINDOWS\system32\DRIVERS\ndisuio.sys
19:11:22.0078 0x0500  Ndisuio - ok
19:11:22.0140 0x0500  [ EDC1531A49C80614B2CFDA43CA8659AB, 494042F790F33721328B4451E79842E21919681CC421A4F9633EC4D383E06097 ] NdisWan         C:\WINDOWS\system32\DRIVERS\ndiswan.sys
19:11:22.0375 0x0500  NdisWan - ok
19:11:22.0468 0x0500  [ 2F597BB467E05B1FE3830EABD821B8E0, 141497F5A49D47CCE3C9289644F4BD838DCB238F6D8E847FC006652E21FE02AC ] NDProxy         C:\WINDOWS\system32\drivers\NDProxy.sys
19:11:22.0515 0x0500  NDProxy - ok
19:11:22.0546 0x0500  [ 5D81CF9A2F1A3A756B66CF684911CDF0, 7989C36607CAEA17AFA2C1C9904145CA0714A54B9F712D9D4C1AB140D0B2CC0C ] NetBIOS         C:\WINDOWS\system32\DRIVERS\netbios.sys
19:11:22.0781 0x0500  NetBIOS - ok
19:11:22.0859 0x0500  [ 74B2B2F5BEA5E9A3DC021D685551BD3D, 7932B71F98B4122BE88F576BF6D745A757AE378A48924B7F4358837B75640A82 ] NetBT           C:\WINDOWS\system32\DRIVERS\netbt.sys
19:11:23.0093 0x0500  NetBT - ok
19:11:23.0156 0x0500  [ 8ACE4251BFFD09CE75679FE940E996CC, 81969521B5EAEA09ECA63058BE9697BB69AF2596339CA9DF0CFEDC031DCFDC7E ] NetDDE          C:\WINDOWS\system32\netdde.exe
19:11:23.0406 0x0500  NetDDE - ok
19:11:23.0421 0x0500  [ 8ACE4251BFFD09CE75679FE940E996CC, 81969521B5EAEA09ECA63058BE9697BB69AF2596339CA9DF0CFEDC031DCFDC7E ] NetDDEdsdm      C:\WINDOWS\system32\netdde.exe
19:11:23.0671 0x0500  NetDDEdsdm - ok
19:11:23.0750 0x0500  [ AFB8261B56CBA0D86AEB6DF682AF9785, 104D96F1F19DD4CE492064ACC9634406A019EAE20B42D03198E400E661897127 ] Netlogon        C:\WINDOWS\system32\lsass.exe
19:11:23.0984 0x0500  Netlogon - ok
19:11:24.0062 0x0500  [ E6D88F1F6745BF00B57E7855A2AB696C, 12A5EDD853600FF5EBF91E127077745AE1E61E66DBC1D4D4306570F171AF4A39 ] Netman          C:\WINDOWS\System32\netman.dll
19:11:24.0328 0x0500  Netman - ok
19:11:24.0421 0x0500  [ D22CD77D4F0D63D1169BB35911BFF12D, 85B1FDFA02E1B8EA4FCB9B7EEB687C5C448697FC7EC9D178C5A2F64D2C9CFEE8 ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
19:11:24.0468 0x0500  NetTcpPortSharing - ok
19:11:24.0562 0x0500  [ F1B67B6B0751AE0E6E964B02821206A3, 3D5A7593ABDEE2047C5738671C85DC8B95A4ECF58D5D7B04EEE13A689839A540 ] Nla             C:\WINDOWS\System32\mswsock.dll
19:11:24.0625 0x0500  Nla - ok
19:11:24.0687 0x0500  [ A00877C05933FBA8AFB3390DD72D4679, 684D9642173C4BF4B752F259D5E89F16BC8B4B1608F1E6E176AA692A9775CE38 ] nmwcd           C:\WINDOWS\system32\drivers\ccdcmb.sys
19:11:24.0906 0x0500  nmwcd - ok
19:11:25.0000 0x0500  [ 9FF15F18E4E8758AC57BDB910D0238B3, F27C40BDD3818C54E1099AD525C7C19B424E0C4676DB366DE0E905CA3F82A310 ] nmwcdc          C:\WINDOWS\system32\drivers\ccdcmbo.sys
19:11:25.0203 0x0500  nmwcdc - ok
19:11:25.0281 0x0500  [ 3182D64AE053D6FB034F44B6DEF8034A, 4ADFC76965BA2A5F488E71789A4E4EA702A74AF42725F72130D1CA919406CF19 ] Npfs            C:\WINDOWS\system32\drivers\Npfs.sys
19:11:25.0515 0x0500  Npfs - ok
19:11:25.0625 0x0500  [ 78A08DD6A8D65E697C18E1DB01C5CDCA, E0E6F3ED05068E32F1D5C2D2B38CDEF4536B8656DB6756C66CF6B40B60C8F3DA ] Ntfs            C:\WINDOWS\system32\drivers\Ntfs.sys
19:11:26.0015 0x0500  Ntfs - ok
19:11:26.0093 0x0500  [ AFB8261B56CBA0D86AEB6DF682AF9785, 104D96F1F19DD4CE492064ACC9634406A019EAE20B42D03198E400E661897127 ] NtLmSsp         C:\WINDOWS\system32\lsass.exe
19:11:26.0312 0x0500  NtLmSsp - ok
19:11:26.0453 0x0500  [ 56AF4064996FA5BAC9C449B1514B4770, 154602EFEC22728503D4ABA025DF711B0F2CFC983F5E3BF25F2A4BCD1AE250EC ] NtmsSvc         C:\WINDOWS\system32\ntmssvc.dll
19:11:26.0765 0x0500  NtmsSvc - ok
19:11:26.0812 0x0500  [ 73C1E1F395918BC2C6DD67AF7591A3AD, B21133A75253EC15E2DFF66D3B480AB1A7E1A2360476C810E7AA55D0F0EB08D4 ] Null            C:\WINDOWS\system32\drivers\Null.sys
19:11:27.0031 0x0500  Null - ok
19:11:27.0078 0x0500  [ B305F3FAD35083837EF46A0BBCE2FC57, 9D0E0E666D652D0FC9EAB97280A5D67AAF61D6B21929DF7CF8ED72A367720464 ] NwlnkFlt        C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
19:11:27.0343 0x0500  NwlnkFlt - ok
19:11:27.0437 0x0500  [ C99B3415198D1AAB7227F2C88FD664B9, DD8DA4B5E804F134AB9233859544C025062902DFC3E8FB8A09A67337A4E73F55 ] NwlnkFwd        C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
19:11:27.0671 0x0500  NwlnkFwd - ok
19:11:27.0750 0x0500  [ F84785660305B9B903FB3BCA8BA29837, BDBDE61076800415D98759077E9E039C80B55DBE68E31F8BF44A909C6C3D3276 ] Parport         C:\WINDOWS\system32\drivers\Parport.sys
19:11:28.0000 0x0500  Parport - ok
19:11:28.0046 0x0500  [ BEB3BA25197665D82EC7065B724171C6, 7E71C13BA30CD95CEE8A9CC85E6F48A01F30EDEAADEE69D80AE828BF97E5A5CA ] PartMgr         C:\WINDOWS\system32\drivers\PartMgr.sys
19:11:28.0281 0x0500  PartMgr - ok
19:11:28.0359 0x0500  [ C2BF987829099A3EAA2CA6A0A90ECB4F, 1DF21EA8E43875CFEECD869407429F82FB449707CFB845718499468E699BAAAA ] ParVdm          C:\WINDOWS\system32\drivers\ParVdm.sys
19:11:28.0593 0x0500  ParVdm - ok
19:11:28.0671 0x0500  [ F451DCACBAA67F3307305EBD4A39EA07, C4435BF4C2D16F3DC0B35732BE3602FFA28DB0A5BC5576F45E0D32E5F4CD2DEA ] pccsmcfd        C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys
19:11:28.0718 0x0500  pccsmcfd - ok
19:11:28.0750 0x0500  [ 387E8DEDC343AA2D1EFBC30580273ACD, 5F3E642BDB759777E570ED5B22AC7E93CDCD362708F281657AD7BAB44EDEC802 ] PCI             C:\WINDOWS\system32\DRIVERS\pci.sys
19:11:28.0984 0x0500  PCI - ok
19:11:29.0015 0x0500  PCIDump - ok
19:11:29.0031 0x0500  PCIIde - ok
19:11:29.0109 0x0500  [ A2A966B77D61847D61A3051DF87C8C97, 6CED7CA26DC62B0AAFC83A2E07336DAD25954491201BB8E06103971F3F0B8B51 ] Pcmcia          C:\WINDOWS\system32\drivers\Pcmcia.sys
19:11:29.0359 0x0500  Pcmcia - ok
19:11:29.0390 0x0500  PDCOMP - ok
19:11:29.0406 0x0500  PDFRAME - ok
19:11:29.0437 0x0500  PDRELI - ok
19:11:29.0468 0x0500  PDRFRAME - ok
19:11:29.0500 0x0500  perc2 - ok
19:11:29.0531 0x0500  perc2hib - ok
19:11:29.0671 0x0500  [ A3EDBE9053889FB24AB22492472B39DC, 6F2ED6E04BDE2FCA2A8BF9BD2D1D6923DE6EAECB46F582B6C0BD1CF364D65C9E ] PlugPlay        C:\WINDOWS\system32\services.exe
19:11:29.0718 0x0500  PlugPlay - ok
19:11:29.0734 0x0500  [ AFB8261B56CBA0D86AEB6DF682AF9785, 104D96F1F19DD4CE492064ACC9634406A019EAE20B42D03198E400E661897127 ] PolicyAgent     C:\WINDOWS\system32\lsass.exe
19:11:29.0968 0x0500  PolicyAgent - ok
19:11:30.0062 0x0500  [ EFEEC01B1D3CF84F16DDD24D9D9D8F99, C5F0C8C66A3AF7E7BB04CEDE4AC5306F8387AB384A2107DC5BE413AAE968EFF1 ] PptpMiniport    C:\WINDOWS\system32\DRIVERS\raspptp.sys
19:11:30.0312 0x0500  PptpMiniport - ok
19:11:30.0343 0x0500  [ AFB8261B56CBA0D86AEB6DF682AF9785, 104D96F1F19DD4CE492064ACC9634406A019EAE20B42D03198E400E661897127 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
19:11:30.0562 0x0500  ProtectedStorage - ok
19:11:30.0625 0x0500  [ 09298EC810B07E5D582CB3A3F9255424, 35473A1BE25AC289474090EB0806AC6B3035DC33D1F3DF97A14BF1E361AC6AC3 ] PSched          C:\WINDOWS\system32\DRIVERS\psched.sys
19:11:30.0859 0x0500  PSched - ok
19:11:31.0000 0x0500  [ 80D317BD1C3DBC5D4FE7B1678C60CADD, DA76804B55D0CAB3DDD01EFC06673764AE4860693375C658B6063FB14AF7F12C ] Ptilink         C:\WINDOWS\system32\DRIVERS\ptilink.sys
19:11:31.0234 0x0500  Ptilink - ok
19:11:31.0328 0x0500  [ D86B4A68565E444D76457F14172C875A, 06B1CF81A62B3DAA8D0C5A8B88C56A504DE8E9278C520F754AF363A6676C58B0 ] PxHelp20        C:\WINDOWS\system32\Drivers\PxHelp20.sys
19:11:31.0359 0x0500  PxHelp20 - ok
19:11:31.0375 0x0500  ql1080 - ok
19:11:31.0406 0x0500  Ql10wnt - ok
19:11:31.0437 0x0500  ql12160 - ok
19:11:31.0468 0x0500  ql1240 - ok
19:11:31.0500 0x0500  ql1280 - ok
19:11:31.0625 0x0500  [ 583608EE65AABF971117A61AEE4BCAAE, 1FDE8D46BCD58CB476B3E86C025438995111003DAFB985CFE64138AEDC4B78CE ] RalinkRegistryWriter C:\Programme\Ralink\Common\RaRegistry.exe
19:11:31.0671 0x0500  RalinkRegistryWriter - ok
19:11:31.0703 0x0500  [ FE0D99D6F31E4FAD8159F690D68DED9C, 998685622ABE631984B7E4DBF91AB3594B1F574378D75EB9F6265F4650470692 ] RasAcd          C:\WINDOWS\system32\DRIVERS\rasacd.sys
19:11:31.0921 0x0500  RasAcd - ok
19:11:32.0015 0x0500  [ F5BA6CACCDB66C8F048E867563203246, AFEAD8FC02313F7EBC8F9F39E7ED2868852B480BE3902FA7BD0AFD81492AB243 ] RasAuto         C:\WINDOWS\System32\rasauto.dll
19:11:32.0265 0x0500  RasAuto - ok
19:11:32.0312 0x0500  [ 11B4A627BC9614B885C4969BFA5FF8A6, EAE0A412A2B0F68919C32A96B3A08CC1A06585E4998819F5C9051745F63FF5AD ] Rasl2tp         C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
19:11:32.0562 0x0500  Rasl2tp - ok
19:11:32.0656 0x0500  [ F9A7B66EA345726EDB5862A46B1ECCD5, 5D35429D394D36A1692A7E219BA1A85CD8096FEAE0F90BFE036A63118FEDBF57 ] RasMan          C:\WINDOWS\System32\rasmans.dll
19:11:32.0921 0x0500  RasMan - ok
19:11:32.0984 0x0500  [ 5BC962F2654137C9909C3D4603587DEE, A5CE5653D0105240F5E86CFAAB89E7917D42D939E2F27A5A7D6979289CA651B8 ] RasPppoe        C:\WINDOWS\system32\DRIVERS\raspppoe.sys
19:11:33.0203 0x0500  RasPppoe - ok
19:11:33.0296 0x0500  [ FDBB1D60066FCFBB7452FD8F9829B242, 10A2DACF944BD000032EBA8C095CB3D879CC55B28C377ADF6E52E508E47444DB ] Raspti          C:\WINDOWS\system32\DRIVERS\raspti.sys
19:11:33.0531 0x0500  Raspti - ok
19:11:33.0609 0x0500  [ 7AD224AD1A1437FE28D89CF22B17780A, 6645235CA27D671954E3557FA37082881C3D7D47492C71264CD8CB8D108EC801 ] Rdbss           C:\WINDOWS\system32\DRIVERS\rdbss.sys
19:11:33.0859 0x0500  Rdbss - ok
19:11:33.0921 0x0500  [ 4912D5B403614CE99C28420F75353332, 975341ECD660209987B5E5171B8315E032439E408CBE8A5986E67AF767F373BB ] RDPCDD          C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
19:11:34.0140 0x0500  RDPCDD - ok
19:11:34.0359 0x0500  [ 43AF5212BD8FB5BA6EED9754358BD8F7, AF330F61CECA4AFA359CEABC5EB3227E6B56A9A2DCE50701381D665122D7356D ] RDPWD           C:\WINDOWS\system32\drivers\RDPWD.sys
19:11:34.0421 0x0500  RDPWD - ok
19:11:34.0500 0x0500  [ 263AF18AF0F3DB99F574C95F284CCEC9, 2BFA9952E97EFEB386FC56EC2C125080CD12DAC078DBE43C395CB4D9F22165D3 ] RDSessMgr       C:\WINDOWS\system32\sessmgr.exe
19:11:34.0750 0x0500  RDSessMgr - ok
19:11:34.0828 0x0500  [ ED761D453856F795A7FE056E42C36365, EF026585B33415D8FCE94A9F27D7A4396C7C35C88E06A4CF0FEA702401E8597A ] redbook         C:\WINDOWS\system32\DRIVERS\redbook.sys
19:11:35.0062 0x0500  redbook - ok
19:11:35.0125 0x0500  [ 0E97EC96D6942CEEC2D188CC2EB69A01, D4253B4420BEF19451A55AB91E4834482181A31A31134F6E2AFE05C8E20C81A5 ] RemoteAccess    C:\WINDOWS\System32\mprdim.dll
19:11:35.0375 0x0500  RemoteAccess - ok
19:11:35.0437 0x0500  [ 851C30DF2807FCFA21E4C681A7D6440E, C2269B8ED4E831664B83F8F3BE33E5A340206A9E07F89CDF6707EAD8F280FBE9 ] RFCOMM          C:\WINDOWS\system32\DRIVERS\rfcomm.sys
19:11:35.0687 0x0500  RFCOMM - ok
19:11:35.0781 0x0500  [ 2A02E21867497DF20B8FC95631395169, D89E2D17ED4E1C727847C0E92D2DF68AEB70BF0B956BD2FE024ED70A961759D2 ] RpcLocator      C:\WINDOWS\system32\locator.exe
19:11:36.0015 0x0500  RpcLocator - ok
19:11:36.0125 0x0500  [ 3127AFBF2C1ED0AB14A1BBB7AAECB85B, ECFBACE3CBF2384948EA1C445BDA3955EB4F44A9874286E6537C67DC1283E5B0 ] RpcSs           C:\WINDOWS\System32\rpcss.dll
19:11:36.0203 0x0500  RpcSs - ok
19:11:36.0265 0x0500  [ A7557CAA7253DE02B40996EF9A478FAB, F47DC16A344AE4525ED41B69DE2D86AAEBE1068F2CFAB8DCEC8341EA590512FB ] RSUSBSTOR       C:\WINDOWS\system32\Drivers\RTS5121.sys
19:11:36.0312 0x0500  RSUSBSTOR - ok
19:11:36.0390 0x0500  [ 4BDD71B4B521521499DFD14735C4F398, 7B1498D3C67E56D05B58B7DA319ECB0117C37963AABB0E59B42831C087469DA1 ] RSVP            C:\WINDOWS\system32\rsvp.exe
19:11:36.0640 0x0500  RSVP - ok
19:11:36.0796 0x0500  [ 1AD20F7B8B608D36983305B283A8C31C, 8597FB4510BA9E62B27378C719C97F4B69E2482FB83B0888A0F3C176D3A9E1C7 ] rt2870          C:\WINDOWS\system32\DRIVERS\rt2870.sys
19:11:36.0984 0x0500  rt2870 - ok
19:11:37.0031 0x0500  [ 7174F20AD9B7B7878A51ECCA03C499C2, 5024E4424B8135D2BA13760CE7D56A25840FFFFC8FC32FF635D6A4BC38DCB28A ] RTLE8023xp      C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys
19:11:37.0125 0x0500  RTLE8023xp - ok
19:11:37.0156 0x0500  Rts516xIR - ok
19:11:37.0203 0x0500  [ AFB8261B56CBA0D86AEB6DF682AF9785, 104D96F1F19DD4CE492064ACC9634406A019EAE20B42D03198E400E661897127 ] SamSs           C:\WINDOWS\system32\lsass.exe
19:11:37.0421 0x0500  SamSs - ok
19:11:37.0531 0x0500  [ DCEC079FAD95D36C8DD5CB6D779DFE32, F8546552D939A225853A0CE4913701A93738DF02C999D16E141E9A828814BBC6 ] SCardSvr        C:\WINDOWS\System32\SCardSvr.exe
19:11:37.0781 0x0500  SCardSvr - ok
19:11:37.0843 0x0500  [ A050194A44D7FA8D7186ED2F4E8367AE, BCDF56D5A2F9E202DC67E7FE4BCC617BCC0BDFF2D221A621020068B17B2855BB ] Schedule        C:\WINDOWS\system32\schedsvc.dll
19:11:38.0093 0x0500  Schedule - ok
19:11:38.0171 0x0500  [ F34C06D1C706A6D9433570B087A18B02, 5A1B059458CD71FA9883C8E92F9300B86B79A6E6FBBC87431630DA43D1508319 ] Scutum50        C:\WINDOWS\system32\Drivers\Scutum50.sys
19:11:38.0218 0x0500  Scutum50 - detected UnsignedFile.Multi.Generic ( 1 )
19:11:38.0218 0x0500  Scutum50 ( UnsignedFile.Multi.Generic ) - warning
19:11:38.0265 0x0500  [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] Secdrv          C:\WINDOWS\system32\DRIVERS\secdrv.sys
19:11:38.0375 0x0500  Secdrv - ok
19:11:38.0453 0x0500  [ BEE4CFD1D48C23B44CF4B974B0B79B2B, DF3B02D713F8A4602BE75F004074D5DF79AFF2D58FF37110B2A6AC29F680758B ] seclogon        C:\WINDOWS\System32\seclogon.dll
19:11:38.0687 0x0500  seclogon - ok
19:11:38.0765 0x0500  [ 2AAC9B6ED9EDDFFB721D6452E34D67E3, 95D83F054A6610328D56E56CD948A6618C590231853E56FC20E7557DB61384A4 ] SENS            C:\WINDOWS\system32\sens.dll
19:11:39.0000 0x0500  SENS - ok
19:11:39.0062 0x0500  [ CF24EB4F0412C82BCD1F4F35A025E31D, B74CB094126F5C23F601C34D53B2DF5BE3E5918230AC9DCFCFFA8E66B3A0FA25 ] Serial          C:\WINDOWS\system32\drivers\Serial.sys
19:11:39.0343 0x0500  Serial - ok
19:11:39.0546 0x0500  [ 78F7BB9F4924BE164294C59B8C3FC096, 75051A6A8B0DBB16CD70855A408134270EEAF0C127BAAE5B592DB53BB87C085B ] ServiceLayer    C:\Programme\PC Connectivity Solution\ServiceLayer.exe
19:11:39.0671 0x0500  ServiceLayer - ok
19:11:39.0859 0x0500  [ 8E6B8C671615D126FDC553D1E2DE5562, CEEC0067514555D5CA489F50E3D7562FCA8DB8E952C3C878604C9277FC77959F ] Sfloppy         C:\WINDOWS\system32\drivers\Sfloppy.sys
19:11:40.0093 0x0500  Sfloppy - ok
19:11:40.0187 0x0500  [ CAD058D5F8B889A87CA3EB3CF624DCEF, A7CDCF44261D1F4D820927253EA8EBB63714B7BAFF8B08DE073507D9A7EEA5BB ] SharedAccess    C:\WINDOWS\System32\ipnathlp.dll
19:11:40.0484 0x0500  SharedAccess - ok
19:11:40.0546 0x0500  [ 2DB7D303C36DDD055215052F118E8E75, BE6E7BBE12A7A4EDF1F1C2935350603970C7426BBCA7A1A6644BB8999123AF17 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
19:11:40.0593 0x0500  ShellHWDetection - ok
19:11:40.0609 0x0500  Simbad - ok
19:11:40.0781 0x0500  [ 704B4F81729F676BBF034529FC334D82, 1E50DAF97836807A500284385D99272780A8B69CA88761250451060B207824F8 ] SkypeUpdate     C:\Programme\Skype\Updater\Updater.exe
19:11:40.0859 0x0500  SkypeUpdate - ok
19:11:40.0984 0x0500  [ 866D538EBE33709A5C9F5C62B73B7D14, BC94BEB7C17B4FCAC8B5D0D5006A203BC209E0504EECE149651D8691935696CD ] SLIP            C:\WINDOWS\system32\DRIVERS\SLIP.sys
19:11:41.0234 0x0500  SLIP - ok
19:11:41.0281 0x0500  Sparrow - ok
19:11:41.0328 0x0500  [ AB8B92451ECB048A4D1DE7C3FFCB4A9F, DD17733CBB370FCA08F0296704D7CBEACA3C8F76D0ABE4761C3B1FFDF7481D9E ] splitter        C:\WINDOWS\system32\drivers\splitter.sys
19:11:41.0578 0x0500  splitter - ok
19:11:41.0671 0x0500  [ 60784F891563FB1B767F70117FC2428F, E0B07F08E60FFBAD36C2E58180F4B2A16DCA47716044CBE0213DF7B74D742F1F ] Spooler         C:\WINDOWS\system32\spoolsv.exe
19:11:41.0703 0x0500  Spooler - ok
19:11:41.0765 0x0500  [ 50FA898F8C032796D3B1B9951BB5A90F, 1C86273EC19EB96D6DB9CE6670C00683B77C99C42CC2F7E75BC50872B93446B1 ] sr              C:\WINDOWS\system32\DRIVERS\sr.sys
19:11:41.0890 0x0500  sr - ok
19:11:41.0984 0x0500  [ FE77A85495065F3AD59C5C65B6C54182, EB4BAF992F961B2FD5D24BFCB6BCB2142BC32933139A818835FEAB190E4283BB ] srservice       C:\WINDOWS\system32\srsvc.dll
19:11:42.0125 0x0500  srservice - ok
19:11:42.0312 0x0500  [ 47DDFC2F003F7F9F0592C6874962A2E7, 17C643BD4EB09B5666FE41817DC785BE04A6E491CE79E8E5A702CDBD98E1BDD7 ] Srv             C:\WINDOWS\system32\DRIVERS\srv.sys
19:11:42.0390 0x0500  Srv - ok
19:11:42.0453 0x0500  [ 4DF5B05DFAEC29E13E1ED6F6EE12C500, 2971D7D45D6942D310D47DBD19B9680D2D29527E79B86133C72217FD29259465 ] SSDPSRV         C:\WINDOWS\System32\ssdpsrv.dll
19:11:42.0578 0x0500  SSDPSRV - ok
19:11:42.0671 0x0500  [ A36EE93698802CD899F98BFD553D8185, 224CFED921EA230FF8025D259E34968FD2C0FD34BB3A918FB4B9B8BA42BEA5D3 ] ssmdrv          C:\WINDOWS\system32\DRIVERS\ssmdrv.sys
19:11:42.0703 0x0500  ssmdrv - ok
19:11:42.0796 0x0500  [ BC2C5985611C5356B24AEB370953DED9, 15CBAB8166827DC098E2B16AB6F49A1441A4CB52AF3588F0AD964CAB596DFE10 ] stisvc          C:\WINDOWS\system32\wiaservc.dll
19:11:43.0078 0x0500  stisvc - ok
19:11:43.0109 0x0500  [ 77813007BA6265C4B6098187E6ED79D2, 93939120E803C46FBFD577C8FC2E6C7E71C0460E01D25CB29579490640AB50C7 ] streamip        C:\WINDOWS\system32\DRIVERS\StreamIP.sys
19:11:43.0375 0x0500  streamip - ok
19:11:43.0437 0x0500  [ 3941D127AEF12E93ADDF6FE6EE027E0F, EA1F0E32E1C5E90FA4AAC421DEBBE086512340758D3217A6334E886BCE638B51 ] swenum          C:\WINDOWS\system32\DRIVERS\swenum.sys
19:11:43.0671 0x0500  swenum - ok
19:11:43.0765 0x0500  [ 8CE882BCC6CF8A62F2B2323D95CB3D01, B408550A581F3DA222355964AFA4E976AD8471F0AA37573C42C4948AE5A23A3B ] swmidi          C:\WINDOWS\system32\drivers\swmidi.sys
19:11:44.0015 0x0500  swmidi - ok
19:11:44.0031 0x0500  SwPrv - ok
19:11:44.0062 0x0500  symc810 - ok
19:11:44.0093 0x0500  symc8xx - ok
19:11:44.0125 0x0500  sym_hi - ok
19:11:44.0156 0x0500  sym_u3 - ok
19:11:44.0296 0x0500  [ D7B9AD3ABD0F7F9F694D71F38B5C7B72, F712D36AF77EE2E0E8C1A20F825C06F8A23BD9D616563E9814EB4273E7787E6D ] SynTP           C:\WINDOWS\system32\DRIVERS\SynTP.sys
19:11:44.0343 0x0500  SynTP - ok
19:11:44.0453 0x0500  [ 8B83F3ED0F1688B4958F77CD6D2BF290, 546D3602183702B4F53E84413CFA2C933D64C8540378E54A8DCD148F3F36A2DA ] sysaudio        C:\WINDOWS\system32\drivers\sysaudio.sys
19:11:44.0703 0x0500  sysaudio - ok
19:11:44.0781 0x0500  [ 2903FFFA2523926D6219428040DCE6B9, 4F13181931B0499F6C3F08138054DBCD1F84CB9806999A9172B80DE79D446F62 ] SysmonLog       C:\WINDOWS\system32\smlogsvc.exe
19:11:45.0031 0x0500  SysmonLog - ok
19:11:45.0140 0x0500  [ 05903CAC4B98908D55EA5774775B382E, AC3666CBD894D737874A5998DC7F46A0A51A7B23B1835FC735B9AD503A2191CC ] TapiSrv         C:\WINDOWS\System32\tapisrv.dll
19:11:45.0421 0x0500  TapiSrv - ok
19:11:45.0531 0x0500  [ 9AEFA14BD6B182D61E3119FA5F436D3D, EA29E49434585409272E7901AF89771FE9D6E911A7DC44AB3C7020CFF8A44552 ] Tcpip           C:\WINDOWS\system32\DRIVERS\tcpip.sys
19:11:45.0609 0x0500  Tcpip - ok
19:11:45.0671 0x0500  [ 6471A66807F5E104E4885F5B67349397, F35CBFFB8BB235CCE30EF94A5273333900DD49FD506BF9D55D99A320B8A53A5A ] TDPIPE          C:\WINDOWS\system32\drivers\TDPIPE.sys
19:11:45.0921 0x0500  TDPIPE - ok
19:11:45.0968 0x0500  [ C56B6D0402371CF3700EB322EF3AAF61, 7743FA4C734BCE38EFB1CA69BC17364D8421E2CD172F856F7E38E7AE1EE93F2F ] TDTCP           C:\WINDOWS\system32\drivers\TDTCP.sys
19:11:46.0203 0x0500  TDTCP - ok
19:11:46.0281 0x0500  [ 88155247177638048422893737429D9E, B6D4E8691917946332C2208D01F8C8281978C1AD1E9951C5D99DF0D49AC34B3B ] TermDD          C:\WINDOWS\system32\DRIVERS\termdd.sys
19:11:46.0531 0x0500  TermDD - ok
19:11:46.0640 0x0500  [ B7DE02C863D8F5A005A7BF375375A6A4, 6DE05A7B28CA5A78D58536347FC47F15883EEDBEF487CEA0117CC280FC582DCC ] TermService     C:\WINDOWS\System32\termsrv.dll
19:11:46.0906 0x0500  TermService - ok
19:11:46.0968 0x0500  [ 2DB7D303C36DDD055215052F118E8E75, BE6E7BBE12A7A4EDF1F1C2935350603970C7426BBCA7A1A6644BB8999123AF17 ] Themes          C:\WINDOWS\System32\shsvcs.dll
19:11:47.0015 0x0500  Themes - ok
19:11:47.0046 0x0500  TosIde - ok
19:11:47.0109 0x0500  [ 626504572B175867F30F3215C04B3E2F, 47E87CE9BC666D5CB5953C5D497DC00A7CC28F8EC0A064B3E47700279C5C4B91 ] TrkWks          C:\WINDOWS\system32\trkwks.dll
19:11:47.0359 0x0500  TrkWks - ok
19:11:47.0468 0x0500  [ FAC6431BA75C6B68553D168D29F470F2, D8523004B01FC0407FAA09C31493D428320A577E754652EAAED90B5F55B57F22 ] truecrypt       C:\WINDOWS\system32\drivers\truecrypt.sys
19:11:47.0531 0x0500  truecrypt - ok
19:11:47.0671 0x0500  [ 5787B80C2E3C5E2F56C2A233D91FA2C9, 3774905CF77954DFCECDA5BCC7CDE3D0ED72712BFAAD85ADAE5246306447E46C ] Udfs            C:\WINDOWS\system32\drivers\Udfs.sys
19:11:47.0921 0x0500  Udfs - ok
19:11:47.0937 0x0500  ultra - ok
19:11:48.0031 0x0500  [ 402DDC88356B1BAC0EE3DD1580C76A31, 32A686595710336A6BFD54C03F552AE39439611662F84EF5D24193AE5665C6F3 ] Update          C:\WINDOWS\system32\DRIVERS\update.sys
19:11:48.0312 0x0500  Update - ok
19:11:48.0421 0x0500  [ 1DFD8975D8C89214B98D9387C1125B49, 0B6B268487C8E45E9B86BF4A0A9DB669E0E45D600DE3C82B63F9986CA9E01082 ] upnphost        C:\WINDOWS\System32\upnphost.dll
19:11:48.0562 0x0500  upnphost - ok
19:11:48.0656 0x0500  [ 8721F55D8BC9F89E3A63CEBDF5EF4FA3, C0C82480014B646709869A6A6FA2B71B993F9FCD8E2DB9E8F7D341C21EE169CF ] upperdev        C:\WINDOWS\system32\DRIVERS\usbser_lowerflt.sys
19:11:48.0875 0x0500  upperdev - ok
19:11:48.0937 0x0500  [ 9B11E6118958E63E1FEF129466E2BDA7, 97168BCE3F4A9BB9E6500F05E34851FB957B219C598944FADC28AC0011C0503B ] UPS             C:\WINDOWS\System32\ups.exe
19:11:49.0171 0x0500  UPS - ok
19:11:49.0234 0x0500  [ 1B611611C28D2DF25BC057D79C6F13FC, B0D86F63E44B40413BBAE6402CC088046CFAE082D41BBC2ED5A916293356B846 ] usbccgp         C:\WINDOWS\system32\DRIVERS\usbccgp.sys
19:11:49.0265 0x0500  usbccgp - ok
19:11:49.0281 0x0500  USBCCID - ok
19:11:49.0406 0x0500  [ 4BAC8DF07F1D8434FC640E677A62204E, 76C1351AF6752224BF59DEEE0F8665FE699F3DFD679F5BCD01C7D9383E6402A4 ] usbehci         C:\WINDOWS\system32\DRIVERS\usbehci.sys
19:11:49.0437 0x0500  usbehci - ok
19:11:49.0500 0x0500  [ 1AB3CDDE553B6E064D2E754EFE20285C, A99C4528C4227B1E96847614745AAFACD3C5F1BDFE435214DBF78740FFB300FE ] usbhub          C:\WINDOWS\system32\DRIVERS\usbhub.sys
19:11:49.0750 0x0500  usbhub - ok
19:11:49.0828 0x0500  [ A717C8721046828520C9EDF31288FC00, 1530BBE832EDBB0974AD89D723A03FF7A0094B368992D73C2C3E62A181DF1E0A ] usbprint        C:\WINDOWS\system32\DRIVERS\usbprint.sys
19:11:50.0078 0x0500  usbprint - ok
19:11:50.0140 0x0500  [ 84C44D720655A8AA475E57A9E764D675, 2D450199338A217FBD951317812A74223E8B477974C7634667E8896316C3FEA0 ] usbser          C:\WINDOWS\system32\drivers\usbser.sys
19:11:50.0171 0x0500  usbser - ok
19:11:50.0234 0x0500  [ 4E66C71D8D010BFB0DF1042D25E9CB0F, E581ED3557A06FEE7F35DF1C18C7D74FEFD1FC5E6CDAD6692F66F4A033830F1C ] UsbserFilt      C:\WINDOWS\system32\DRIVERS\usbser_lowerfltj.sys
19:11:50.0453 0x0500  UsbserFilt - ok
19:11:50.0500 0x0500  [ A32426D9B14A089EAA1D922E0C5801A9, ED1DC52EE45F8EAD3AEC4B1F817BB25634141CF48295494C5947DCE6CF7A9817 ] usbstor         C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
19:11:50.0734 0x0500  usbstor - ok
19:11:50.0796 0x0500  [ 26496F9DEE2D787FC3E61AD54821FFE6, 8BE7FF647470B9A951CBB478FAF83D657A15CC78037F42348A6B738F21D523DA ] usbuhci         C:\WINDOWS\system32\DRIVERS\usbuhci.sys
19:11:51.0015 0x0500  usbuhci - ok
19:11:51.0125 0x0500  [ 813236B1183CFCF289E367BD5DE6E29E, 167FE18A96F330AEEC1A4C419770C15EFEB536D43838285E51E7A62E95DF4674 ] usbvideo        C:\WINDOWS\system32\Drivers\usbvideo.sys
19:11:51.0187 0x0500  usbvideo - ok
19:11:51.0250 0x0500  [ 0D3A8FAFCEACD8B7625CD549757A7DF1, B9CFDEFCD66AA139F3DC2F967B184669532922563AD5A71769BABDC4370D065E ] VgaSave         C:\WINDOWS\System32\drivers\vga.sys
19:11:51.0468 0x0500  VgaSave - ok
19:11:51.0500 0x0500  ViaIde - ok
19:11:51.0562 0x0500  [ A5A712F4E880874A477AF790B5186E1D, FE885ED04C3EAFC379787F836738A2769E43D07CF52DD917D90C38E001957A5E ] VolSnap         C:\WINDOWS\system32\drivers\VolSnap.sys
19:11:51.0796 0x0500  VolSnap - ok
19:11:51.0921 0x0500  [ 68F106273BE29E7B7EF8266977268E78, 1488AB7A654EBC94C73E1D494067189ACB95BC233980110CAC4C0297CDC4115A ] VSS             C:\WINDOWS\System32\vssvc.exe
19:11:52.0062 0x0500  VSS - ok
19:11:52.0125 0x0500  [ 7B353059E665F8B7AD2BBEAEF597CF45, 84A4311F18A4B8DCB364741DEA7D18E2363F19564B2EF25214965DC729527068 ] W32Time         C:\WINDOWS\system32\w32time.dll
19:11:52.0375 0x0500  W32Time - ok
19:11:52.0453 0x0500  [ E20B95BAEDB550F32DD489265C1DA1F6, 5589B2067E6C9FBA290D8C5EADDC198EBAF39C50C3CD7D2BC5CDA7CBFBC445E5 ] Wanarp          C:\WINDOWS\system32\DRIVERS\wanarp.sys
19:11:52.0687 0x0500  Wanarp - ok
19:11:52.0765 0x0500  [ D6EFAF429FD30C5DF613D220E344CCE7, 807D4563E8AD4073688691078EB13AF240E14BA5E0C8506A48B3060A20B90082 ] WDC_SAM         C:\WINDOWS\system32\DRIVERS\wdcsam.sys
19:11:52.0828 0x0500  WDC_SAM - ok
19:11:52.0921 0x0500  [ D918617B46457B9AC28027722E30F647, 407284D3055DC11944D4EE7E4357E7CF9CAF8CA40CA50633AB6FD4A82CB7EEA6 ] Wdf01000        C:\WINDOWS\system32\Drivers\wdf01000.sys
19:11:53.0000 0x0500  Wdf01000 - ok
19:11:53.0015 0x0500  WDICA - ok
19:11:53.0093 0x0500  [ 6768ACF64B18196494413695F0C3A00F, 3A8F8586F1D997D19A8478345338D2AECD785AEABDB61531DD3F92003D3230A5 ] wdmaud          C:\WINDOWS\system32\drivers\wdmaud.sys
19:11:53.0328 0x0500  wdmaud - ok
19:11:53.0421 0x0500  [ 81727C9873E3905A2FFC1EBD07265002, 6AC2383A1DCBB7FA3DB90FBB874C8E1819F5B7492717FF41E303EFC7BF72F93E ] WebClient       C:\WINDOWS\System32\webclnt.dll
19:11:53.0656 0x0500  WebClient - ok
19:11:53.0781 0x0500  [ 6F3F3973D97714CC5F906A19FE883729, 7817118BE94D0F6FAE0F9CE48AD70FFE0AEF886CCE09C666768FAB61047F992F ] winmgmt         C:\WINDOWS\system32\wbem\WMIsvc.dll
19:11:54.0031 0x0500  winmgmt - ok
19:11:54.0125 0x0500  [ C51B4A5C05A5475708E3C81C7765B71D, F776D2680BD3407307B7072626F78460361FC5BC38623C9E16F394D300AB25DE ] WmdmPmSN        C:\WINDOWS\system32\MsPMSNSv.dll
19:11:54.0171 0x0500  WmdmPmSN - ok
19:11:54.0203 0x0500  [ C42584FD66CE9E17403AEBCA199F7BDB, E3F2E1066F36AE5D33D4482239B2E556BE0C137923C9A120DFB36EC82F2E77B0 ] WmiAcpi         C:\WINDOWS\system32\DRIVERS\wmiacpi.sys
19:11:54.0421 0x0500  WmiAcpi - ok
19:11:54.0500 0x0500  [ 93908111BA57A6E60EC2FA2DE202105C, F395F25F18D15C6B9FEDB45FD31E10295FFE5517E2BC86ACAC11904EA0664BE2 ] WmiApSrv        C:\WINDOWS\system32\wbem\wmiapsrv.exe
19:11:54.0750 0x0500  WmiApSrv - ok
19:11:54.0921 0x0500  [ BF05650BB7DF5E9EBDD25974E22403BB, AF173D89B768CFC7AB03DFADD4F049CAC40AC59A0C9208AF5AB92CB368983077 ] WMPNetworkSvc   C:\Programme\Windows Media Player\WMPNetwk.exe
19:11:55.0078 0x0500  WMPNetworkSvc - ok
19:11:55.0140 0x0500  [ CF4DEF1BF66F06964DC0D91844239104, CC1D9CECE2056D29A9651D51BB57C3F4F9BF9E90A4808CF7496C683C874FBD51 ] WpdUsb          C:\WINDOWS\system32\DRIVERS\wpdusb.sys
19:11:55.0171 0x0500  WpdUsb - ok
19:11:55.0328 0x0500  [ 15673BD0B86150CB8E27766059C72A9B, 56C23289A8BFF4945EE532CF6D62D3EC81B827CA15A359F30A327789F9FE9CAF ] WPFFontCache_v0400 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
19:11:55.0484 0x0500  WPFFontCache_v0400 - ok
19:11:55.0531 0x0500  [ 6ABE6E225ADB5A751622A9CC3BC19CE8, 4061C5D0F051DFF1730E2A3BFC1CCA97B29602FC50F10F6B44D93B0D28F42024 ] WS2IFSL         C:\WINDOWS\System32\drivers\ws2ifsl.sys
19:11:55.0765 0x0500  WS2IFSL - ok
19:11:55.0843 0x0500  [ 300B3E84FAF1A5C1F791C159BA28035D, 0194856BDF94C1F274AF70AD558290ACDACDDEA331BD66FEB8E167ABD1E36786 ] wscsvc          C:\WINDOWS\system32\wscsvc.dll
19:11:56.0078 0x0500  wscsvc - ok
19:11:56.0140 0x0500  [ 43F767D59BFC25D8F4FC2EB42043EC1E, 9DC502AE199A93FD8492F7AEC41F0578AD8C75E91AE7A083BC37224243A4DCDE ] WSIMD           C:\WINDOWS\system32\DRIVERS\wsimd.sys
19:11:56.0156 0x0500  WSIMD - detected UnsignedFile.Multi.Generic ( 1 )
19:11:56.0156 0x0500  WSIMD ( UnsignedFile.Multi.Generic ) - warning
19:11:56.0203 0x0500  [ C98B39829C2BBD34E454150633C62C78, 71B60EA3AD0E2637917D528C6A9E7ECF2949E3E5E91036AA5BBADA95BD725511 ] WSTCODEC        C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
19:11:56.0421 0x0500  WSTCODEC - ok
19:11:56.0515 0x0500  [ 7B4FE05202AA6BF9F4DFD0E6A0D8A085, A1DB8909FA73337DB613D01824945485186654364A4DF129B8CB913CF87D1D2E ] wuauserv        C:\WINDOWS\system32\wuauserv.dll
19:11:56.0765 0x0500  wuauserv - ok
19:11:56.0859 0x0500  [ EAA6324F51214D2F6718977EC9CE0DEF, B9DE1521395E09233FE519873702979C3EAF65FEC4B94B12A46CECB16C488543 ] WudfPf          C:\WINDOWS\system32\DRIVERS\WudfPf.sys
19:11:56.0906 0x0500  WudfPf - ok
19:11:56.0953 0x0500  [ F91FF1E51FCA30B3C3981DB7D5924252, D7052B58F22638CA8B59C6FD7408D6D6DD1C33910912CACC05C133472CE0DDCE ] WudfRd          C:\WINDOWS\system32\DRIVERS\wudfrd.sys
19:11:56.0984 0x0500  WudfRd - ok
19:11:57.0015 0x0500  [ DDEE3682FE97037C45F4D7AB467CB8B6, D5A8F07AF4EDD9D7E17FEC6222D187E2981C177A479511E407756E0E5CB8D387 ] WudfSvc         C:\WINDOWS\System32\WUDFSvc.dll
19:11:57.0062 0x0500  WudfSvc - ok
19:11:57.0156 0x0500  [ C4F109C005F6725162D2D12CA751E4A7, AC996B44338328BDD4442FE48406F286A64526F0EC77BE00A19FA7FDB0407CFE ] WZCSVC          C:\WINDOWS\System32\wzcsvc.dll
19:11:57.0468 0x0500  WZCSVC - ok
19:11:57.0562 0x0500  [ 0ADA34871A2E1CD2CAAFED1237A47750, 45BEF8649078BD74C1A347B5F2D3A1958E5A7DCD6C6BA8A2E0CAD277A929C64E ] xmlprov         C:\WINDOWS\System32\xmlprov.dll
19:11:57.0796 0x0500  xmlprov - ok
19:11:57.0906 0x0500  ================ Scan global ===============================
19:11:57.0984 0x0500  [ 2C60091CA5F67C3032EAB3B30390C27F, 9E205C8E67F4B61FCFA2A82AA1968D522C3B6410D7075BE813F7F1564D61632E ] C:\WINDOWS\system32\basesrv.dll
19:11:58.0078 0x0500  [ E62178BC21EAC63A3B9A2DBD46C1B505, CAA5480CC4DAA37758F0CF445F865FD6F4630080B044EF2E606C2F62DAA4061A ] C:\WINDOWS\system32\winsrv.dll
19:11:58.0125 0x0500  [ E62178BC21EAC63A3B9A2DBD46C1B505, CAA5480CC4DAA37758F0CF445F865FD6F4630080B044EF2E606C2F62DAA4061A ] C:\WINDOWS\system32\winsrv.dll
19:11:58.0187 0x0500  [ A3EDBE9053889FB24AB22492472B39DC, 6F2ED6E04BDE2FCA2A8BF9BD2D1D6923DE6EAECB46F582B6C0BD1CF364D65C9E ] C:\WINDOWS\system32\services.exe
19:11:58.0203 0x0500  [ Global ] - ok
19:11:58.0203 0x0500  ================ Scan MBR ==================================
19:11:58.0250 0x0500  [ 69035F21489D7C5312386870E4AEF5AE ] \Device\Harddisk0\DR0
19:11:58.0984 0x0500  \Device\Harddisk0\DR0 - ok
19:11:58.0984 0x0500  ================ Scan VBR ==================================
19:11:59.0000 0x0500  [ 605BC8AB08DB6AEBD9A626F06F3ACDD3 ] \Device\Harddisk0\DR0\Partition1
19:11:59.0000 0x0500  \Device\Harddisk0\DR0\Partition1 - ok
19:11:59.0015 0x0500  ================ Scan generic autorun ======================
19:12:00.0703 0x0500  [ 88A5D104AB29EC5BF3C74F608A6C2335, B3A641B1A6F9E7E2E333FDC586549C4E7096556996D86A69CFFA825BD8EB52E9 ] C:\WINDOWS\RTHDCPL.EXE
19:12:02.0906 0x0500  RTHDCPL - ok
19:12:03.0156 0x0500  [ 61C23465F195FDF5AE5FE342E1692AC7, BD3628DCBB6AED97031D70BCA9BA8F7C8F0BCBD19EF93C2F126B14226C20BB6B ] C:\Programme\Synaptics\SynTP\SynTPEnh.exe
19:12:03.0312 0x0500  SynTPEnh - ok
19:12:03.0500 0x0500  [ 3E23D1F7E91627DBD44AC82077E2BA7C, 09235370B85EF5FEA24F1291B9ADAD805C8D7357A78EF8CE3BA0E913F59145EC ] C:\Programme\Avira\AntiVir Desktop\avgnt.exe
19:12:03.0578 0x0500  avgnt - ok
19:12:04.0281 0x0500  [ 30A0B072E647757CEDDA9E306D410410, 9B16173C973F6B494F35DBA3AD339C3964CD8B066F9D59E5BC9DCF27B526A1F1 ] C:\Programme\COMODO\COMODO Internet Security\cfp.exe
19:12:05.0015 0x0500  COMODO Internet Security - ok
19:12:05.0078 0x0500  [ 01B4E6E990B6C5EA8856D96C7FD044B2, 2266296FD3C8E0DFA657F21406EE4E494477870DFAF7C65BEBCB6FBA8CADC7C6 ] C:\WINDOWS\system32\ctfmon.exe
19:12:05.0312 0x0500  ctfmon.exe - ok
19:12:05.0328 0x0500  [ 01B4E6E990B6C5EA8856D96C7FD044B2, 2266296FD3C8E0DFA657F21406EE4E494477870DFAF7C65BEBCB6FBA8CADC7C6 ] C:\WINDOWS\system32\ctfmon.exe
19:12:05.0546 0x0500  CTFMON.EXE - ok
19:12:05.0546 0x0500  BullGuard - ok
19:12:05.0656 0x0500  [ 43D083268A0919F3527A2837390BAF63, 58B62697B01B8C9396271A64424178691FA85D4625DAF2AC8DE7F06A64F64C2A ] C:\Programme\Gemeinsame Dateien\InstallShield\UpdateService\ISUSPM.exe
19:12:05.0718 0x0500  ISUSPM - ok
19:12:05.0750 0x0500  AV detected via SS1: Avira Antivirus, 15.0.9.460, enabled, updated
19:12:05.0750 0x0500  FW detected via SS1: COMODO Firewall, 3.9, enabled
19:12:05.0750 0x0500  ============================================================
19:12:05.0750 0x0500  Scan finished
19:12:05.0750 0x0500  ============================================================
19:12:05.0796 0x04f8  Detected object count: 5
19:12:05.0796 0x04f8  Actual detected object count: 5
19:12:39.0796 0x04f8  C:\WINDOWS\system32\epmntdrv.sys - copied to quarantine
19:12:39.0796 0x04f8  HKLM\SYSTEM\ControlSet001\services\epmntdrv - will be deleted on reboot
19:12:39.0812 0x04f8  HKLM\SYSTEM\ControlSet003\services\epmntdrv - will be deleted on reboot
19:12:39.0812 0x04f8  C:\WINDOWS\system32\epmntdrv.sys - will be deleted on reboot
19:12:39.0812 0x04f8  epmntdrv ( UnsignedFile.Multi.Generic ) - User select action: Delete 
19:12:39.0843 0x04f8  C:\WINDOWS\system32\EuGdiDrv.sys - copied to quarantine
19:12:39.0843 0x04f8  HKLM\SYSTEM\ControlSet001\services\EuGdiDrv - will be deleted on reboot
19:12:39.0843 0x04f8  HKLM\SYSTEM\ControlSet003\services\EuGdiDrv - will be deleted on reboot
19:12:39.0859 0x04f8  C:\WINDOWS\system32\EuGdiDrv.sys - will be deleted on reboot
19:12:39.0859 0x04f8  EuGdiDrv ( UnsignedFile.Multi.Generic ) - User select action: Delete 
19:12:39.0921 0x04f8  C:\Programme\System Control Manager\MSIService.exe - copied to quarantine
19:12:39.0921 0x04f8  HKLM\SYSTEM\ControlSet001\services\Micro Star SCM - will be deleted on reboot
19:12:39.0921 0x04f8  HKLM\SYSTEM\ControlSet003\services\Micro Star SCM - will be deleted on reboot
19:12:39.0921 0x04f8  C:\Programme\System Control Manager\MSIService.exe - will be deleted on reboot
19:12:39.0921 0x04f8  Micro Star SCM ( UnsignedFile.Multi.Generic ) - User select action: Delete 
19:12:39.0984 0x04f8  C:\WINDOWS\system32\Drivers\Scutum50.sys - copied to quarantine
19:12:39.0984 0x04f8  HKLM\SYSTEM\ControlSet001\services\Scutum50 - will be deleted on reboot
19:12:39.0984 0x04f8  HKLM\SYSTEM\ControlSet003\services\Scutum50 - will be deleted on reboot
19:12:39.0984 0x04f8  C:\WINDOWS\system32\Drivers\Scutum50.sys - will be deleted on reboot
19:12:39.0984 0x04f8  Scutum50 ( UnsignedFile.Multi.Generic ) - User select action: Delete 
19:12:40.0031 0x04f8  C:\WINDOWS\system32\DRIVERS\wsimd.sys - copied to quarantine
19:12:40.0031 0x04f8  HKLM\SYSTEM\ControlSet001\services\WSIMD - will be deleted on reboot
19:12:40.0031 0x04f8  HKLM\SYSTEM\ControlSet003\services\WSIMD - will be deleted on reboot
19:12:40.0031 0x04f8  C:\WINDOWS\system32\DRIVERS\wsimd.sys - will be deleted on reboot
19:12:40.0031 0x04f8  WSIMD ( UnsignedFile.Multi.Generic ) - User select action: Delete 
19:12:40.0109 0x04f8  KLMD registered as C:\WINDOWS\system32\drivers\34551711.sys

Eisbaer27 · 13.05.2015, 08:11

und log 2

Code:

ATTFilter

19:34:09.0765 0x0b0c  TDSS rootkit removing tool 3.0.0.44 Jan 22 2015 08:27:04
19:34:09.0890 0x0b0c  ============================================================
19:34:09.0890 0x0b0c  Current date / time: 2015/05/05 19:34:09.0890
19:34:09.0890 0x0b0c  SystemInfo:
19:34:09.0890 0x0b0c  
19:34:09.0890 0x0b0c  OS Version: 5.1.2600 ServicePack: 3.0
19:34:09.0890 0x0b0c  Product type: Workstation
19:34:09.0890 0x0b0c  ComputerName: LAPPI
19:34:09.0890 0x0b0c  UserName: Lurchi
19:34:09.0890 0x0b0c  Windows directory: C:\WINDOWS
19:34:09.0890 0x0b0c  System windows directory: C:\WINDOWS
19:34:09.0890 0x0b0c  Processor architecture: Intel x86
19:34:09.0890 0x0b0c  Number of processors: 2
19:34:09.0890 0x0b0c  Page size: 0x1000
19:34:09.0890 0x0b0c  Boot type: Normal boot
19:34:09.0890 0x0b0c  ============================================================
19:34:10.0234 0x0b0c  KLMD registered as C:\WINDOWS\system32\drivers\27133271.sys
19:34:10.0625 0x0b0c  System UUID: {56179B87-2EED-E327-0996-09B5BAE3F333}
19:34:12.0343 0x0b0c  Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 ( 149.05 Gb ), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
19:34:12.0343 0x0b0c  ============================================================
19:34:12.0343 0x0b0c  \Device\Harddisk0\DR0:
19:34:12.0343 0x0b0c  MBR partitions:
19:34:12.0343 0x0b0c  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x11B345B6
19:34:12.0343 0x0b0c  ============================================================
19:34:12.0531 0x0b0c  C: <-> \Device\Harddisk0\DR0\Partition1
19:34:12.0546 0x0b0c  ============================================================
19:34:12.0546 0x0b0c  Initialize success
19:34:12.0546 0x0b0c  ============================================================
19:34:22.0093 0x0ba8  ============================================================
19:34:22.0093 0x0ba8  Scan started
19:34:22.0093 0x0ba8  Mode: Manual; SigCheck; TDLFS; 
19:34:22.0093 0x0ba8  ============================================================
19:34:22.0093 0x0ba8  KSN ping started
19:34:23.0437 0x0ba8  KSN ping finished: false
19:34:26.0578 0x0ba8  ================ Scan system memory ========================
19:34:26.0578 0x0ba8  System memory - ok
19:34:26.0578 0x0ba8  ================ Scan services =============================
19:34:27.0609 0x0ba8  Abiosdsk - ok
19:34:27.0609 0x0ba8  abp480n5 - ok
19:34:27.0703 0x0ba8  [ AC407F1A62C3A300B4F2B5A9F1D55B2C, 31F5FC61B37E22100B3A52A590295A7E827FFC581FA9960C64B9032452AAECED ] ACPI            C:\WINDOWS\system32\DRIVERS\ACPI.sys
19:34:38.0890 0x0ba8  ACPI - ok
19:34:38.0953 0x0ba8  [ 9E1CA3160DAFB159CA14F83B1E317F75, 13B3E897B0E819BF734449416D9EC6EBCAC89538EC69BF48C068593B82D57004 ] ACPIEC          C:\WINDOWS\system32\DRIVERS\ACPIEC.sys
19:34:39.0484 0x0ba8  ACPIEC - ok
19:34:39.0890 0x0ba8  [ B04A4810C6CC205F9DC72DC22E4AB236, 547321F5C28C80D4818372D65E2A33D4BAC593015DD6613B24586FE4B4A95D5D ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
19:34:40.0203 0x0ba8  AdobeFlashPlayerUpdateSvc - ok
19:34:40.0218 0x0ba8  adpu160m - ok
19:34:40.0265 0x0ba8  [ 8BED39E3C35D6A489438B8141717A557, 1B5796E56B0927360CE0759641B1151828BC0A9E45620D2B2D880491F5CE33D0 ] aec             C:\WINDOWS\system32\drivers\aec.sys
19:34:40.0718 0x0ba8  aec - ok
19:34:40.0812 0x0ba8  [ 1E44BC1E83D8FD2305F8D452DB109CF9, CF5EC07E0B589FA2A4701C6CFD69E893FC3ABF274AD57AE3C13FFE49063B02C8 ] AFD             C:\WINDOWS\System32\drivers\afd.sys
19:34:41.0031 0x0ba8  AFD - ok
19:34:41.0046 0x0ba8  Aha154x - ok
19:34:41.0062 0x0ba8  aic78u2 - ok
19:34:41.0078 0x0ba8  aic78xx - ok
19:34:41.0156 0x0ba8  [ 738D80CC01D7BC7584BE917B7F544394, DCC17AAEF5CDDF52FAAC3CC6904EF421CD595F66318A2370BEE261D5C3A8E340 ] Alerter         C:\WINDOWS\system32\alrsvc.dll
19:34:41.0562 0x0ba8  Alerter - ok
19:34:41.0625 0x0ba8  [ 190CD73D4984F94D823F9444980513E5, 93A32C2495CCA094F768BA707C74DA5C00B8A88A9236DD1A297439A7C2E6C6FA ] ALG             C:\WINDOWS\System32\alg.exe
19:34:41.0796 0x0ba8  ALG - ok
19:34:41.0828 0x0ba8  AliIde - ok
19:34:41.0843 0x0ba8  amsint - ok
19:34:42.0265 0x0ba8  [ 6A7BE5D0E66B8121E60EFAD57EB04963, 96EC128BC06E7ED7485D52DD52F8A71FEBD9633415DD8486BDBCC499ED32A0F8 ] AntiVirMailService C:\Programme\Avira\AntiVir Desktop\avmailc.exe
19:34:42.0906 0x0ba8  AntiVirMailService - ok
19:34:43.0203 0x0ba8  [ F36D18EF1E66F92094AD89D17BEF007C, A5C793B340311CB7A301B77316E1976E3CD7CA9470CE5F1062CB003BCD4C155C ] AntiVirSchedulerService C:\Programme\Avira\AntiVir Desktop\sched.exe
19:34:43.0484 0x0ba8  AntiVirSchedulerService - ok
19:34:43.0640 0x0ba8  [ F36D18EF1E66F92094AD89D17BEF007C, A5C793B340311CB7A301B77316E1976E3CD7CA9470CE5F1062CB003BCD4C155C ] AntiVirService  C:\Programme\Avira\AntiVir Desktop\avguard.exe
19:34:43.0921 0x0ba8  AntiVirService - ok
19:34:43.0937 0x0ba8  AppMgmt - ok
19:34:44.0406 0x0ba8  [ 6C21F270AFEC1E423C00E96D3BD234DC, 8DA4ABDD83AECCFD87535AF3C9E3613CBFC4EE14967A551196E7B77F80858E65 ] AR5416          C:\WINDOWS\system32\DRIVERS\athw.sys
19:34:44.0828 0x0ba8  AR5416 - ok
19:34:44.0859 0x0ba8  asc - ok
19:34:44.0875 0x0ba8  asc3350p - ok
19:34:44.0890 0x0ba8  asc3550 - ok
19:34:45.0187 0x0ba8  [ 776ACEFA0CA9DF0FAA51A5FB2F435705, 72DF7ED6B085BC468994F5B3189506FD726A9A17A9C42ACA1E420D787691361D ] aspnet_state    C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
19:34:45.0578 0x0ba8  aspnet_state - ok
19:34:45.0687 0x0ba8  [ B153AFFAC761E7F5FCFA822B9C4E97BC, 7E60F572A6B3C6219E3C86225AA37243AFFD74337DB7F108B04778042E5CC959 ] AsyncMac        C:\WINDOWS\system32\DRIVERS\asyncmac.sys
19:34:46.0140 0x0ba8  AsyncMac - ok
19:34:46.0218 0x0ba8  [ 9F3A2F5AA6875C72BF062C712CFA2674, B4DF1D2C56A593C6B54DE57395E3B51D288F547842893B32B0F59228A0CF70B9 ] atapi           C:\WINDOWS\system32\drivers\atapi.sys
19:34:46.0609 0x0ba8  atapi - ok
19:34:46.0609 0x0ba8  Atdisk - ok
19:34:46.0812 0x0ba8  [ 9916C1225104BA14794209CFA8012159, 5D6F05F715C52A16D05CAE15C3DFE77A139A7F27F7AE710EC9A10F9EE05115A1 ] Atmarpc         C:\WINDOWS\system32\DRIVERS\atmarpc.sys
19:34:47.0171 0x0ba8  Atmarpc - ok
19:34:47.0234 0x0ba8  [ 58ED0D5452DF7BE732193E7999C6B9A4, 254E2ECF592DDA2E3E6CA9F6F3E77926E2265586A7937BA95199ED47BCDE69A3 ] AudioSrv        C:\WINDOWS\System32\audiosrv.dll
19:34:47.0609 0x0ba8  AudioSrv - ok
19:34:47.0718 0x0ba8  [ D9F724AA26C010A217C97606B160ED68, 329B5118F2409731D06FDAE85B6ADD64A048292801BCB3546651CEB303111695 ] audstub         C:\WINDOWS\system32\DRIVERS\audstub.sys
19:34:48.0109 0x0ba8  audstub - ok
19:34:48.0187 0x0ba8  [ AF5DA81B19AFA730F1E5246AD81D140A, 532951071F56896A3B5D47874C14D996C8620EA02F87D4BA21B083EC804FB166 ] avgntflt        C:\WINDOWS\system32\DRIVERS\avgntflt.sys
19:34:48.0328 0x0ba8  avgntflt - ok
19:34:48.0390 0x0ba8  [ A5674637BCA212D9FE136ADFA04C9857, 95F3632EBB041C539816D285EBE1F379D46A4187379C69D4683D9F4DECBDB80C ] avipbb          C:\WINDOWS\system32\DRIVERS\avipbb.sys
19:34:48.0515 0x0ba8  avipbb - ok
19:34:48.0593 0x0ba8  [ D8C712305F73CD34D1B344810E522728, 49A474FF6CA44E8427D7A8290B47395125B0148AF384CF2B3B1FA495A4718CBA ] avkmgr          C:\WINDOWS\system32\DRIVERS\avkmgr.sys
19:34:48.0656 0x0ba8  avkmgr - ok
19:34:48.0765 0x0ba8  [ DA1F27D85E0D1525F6621372E7B685E9, 5A81A46A3BDD19DAFC6C87D277267A5D44F3A1B5302F2CC1111D84B7BAD5610D ] Beep            C:\WINDOWS\system32\drivers\Beep.sys
19:34:50.0046 0x0ba8  Beep - ok
19:34:50.0250 0x0ba8  [ D6F603772A789BB3228F310D650B8BD1, A539025C70FD998A9B8703DE05CAE5E99BC721D8852EA561EBC2DD20CB371D2E ] BITS            C:\WINDOWS\system32\qmgr.dll
19:34:50.0703 0x0ba8  BITS - ok
19:34:50.0781 0x0ba8  [ B900D52BD62B19F086EBA674911A9AEC, CFD61EBE60303B0E04973A14B4819819148F486BCC952E465BB830E46350D92C ] BMserDiag       C:\WINDOWS\system32\DRIVERS\BMserDiag.sys
19:34:51.0078 0x0ba8  BMserDiag - ok
19:34:51.0156 0x0ba8  [ B900D52BD62B19F086EBA674911A9AEC, CFD61EBE60303B0E04973A14B4819819148F486BCC952E465BB830E46350D92C ] BMserNmea       C:\WINDOWS\system32\DRIVERS\BMserNmea.sys
19:34:51.0421 0x0ba8  BMserNmea - ok
19:34:51.0531 0x0ba8  [ B900D52BD62B19F086EBA674911A9AEC, CFD61EBE60303B0E04973A14B4819819148F486BCC952E465BB830E46350D92C ] BMusbmdm        C:\WINDOWS\system32\DRIVERS\BMusbmdm.sys
19:34:51.0625 0x0ba8  BMusbmdm - ok
19:34:51.0687 0x0ba8  [ 3B77514728BA0BFE4143FC3A2780B289, 07D8131F5A90798F44566CD21E33314E41F94FEF7303913EB0B54E0AB7EFC0D9 ] BootDefragDriver C:\WINDOWS\system32\drivers\BootDefragDriver.sys
19:34:51.0750 0x0ba8  BootDefragDriver - ok
19:34:51.0843 0x0ba8  [ B71549F23736ADF83A571061C47777FD, A1D0320736EE777030A543DCA086367EB5A5B6F95088B9C22D8E09326C3A39A9 ] Browser         C:\WINDOWS\System32\browser.dll
19:34:52.0218 0x0ba8  Browser - ok
19:34:52.0250 0x0ba8  [ B279426E3C0C344893ED78A613A73BDE, 30B29ED5DCFF0C180B806A5FBC705E1CAF6B0F525298CDA79A77FC2AF6E5AAA7 ] BthEnum         C:\WINDOWS\system32\DRIVERS\BthEnum.sys
19:34:52.0671 0x0ba8  BthEnum - ok
19:34:52.0750 0x0ba8  [ FCA6F069597B62D42495191ACE3FC6C1, 23A4EAA542547AC48BCB19DEC9C8E1C1D7D83F199F045DA4682C33292F011CE9 ] BTHMODEM        C:\WINDOWS\system32\DRIVERS\bthmodem.sys
19:34:53.0109 0x0ba8  BTHMODEM - ok
19:34:53.0171 0x0ba8  [ 80602B8746D3738F5886CE3D67EF06B6, 15ABAA8106C42A4453763EEB92B291844580168C934088DB1E22B2065DC238E9 ] BthPan          C:\WINDOWS\system32\DRIVERS\bthpan.sys
19:34:53.0500 0x0ba8  BthPan - ok
19:34:53.0625 0x0ba8  [ 592E1CEDBE314D0EF184DC6F46141E76, D69106F90C56C1E67BA4B96D6766C6676B66D0E0DF8358DA4B75FEFF211AA23E ] BTHPORT         C:\WINDOWS\system32\Drivers\BTHport.sys
19:34:54.0203 0x0ba8  BTHPORT - ok
19:34:54.0250 0x0ba8  [ 26C601EF7525E31379744ABFC6F35A1B, 842626D3A00DDA959A4AB730C0D551244DCDA15AC291FD70CC7324571A6088EC ] BthServ         C:\WINDOWS\System32\bthserv.dll
19:34:54.0625 0x0ba8  BthServ - ok
19:34:54.0640 0x0ba8  [ 61364CD71EF63B0F038B7E9DF00F1EFA, FB44D02B4379A8AF7DD8B0B22B53888B758903700142BFE45A412709294CE88A ] BTHUSB          C:\WINDOWS\system32\Drivers\BTHUSB.sys
19:34:54.0968 0x0ba8  BTHUSB - ok
19:34:55.0000 0x0ba8  [ 90A673FC8E12A79AFBED2576F6A7AAF9, BDE7858A3457DB979FEDD8577FA6321BF72848E4A7BF9F173C78A6A10CBB3EBE ] cbidf2k         C:\WINDOWS\system32\drivers\cbidf2k.sys
19:34:55.0265 0x0ba8  cbidf2k - ok
19:34:55.0437 0x0ba8  [ 0BE5AEF125BE881C4F854C554F2B025C, 1770DD70B3F115A0EF460907DEDC1E4B7241C08615A98F194D61A49C3E2BAA54 ] CCDECODE        C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
19:34:55.0718 0x0ba8  CCDECODE - ok
19:34:55.0734 0x0ba8  cd20xrnt - ok
19:34:55.0781 0x0ba8  [ C1B486A7658353D33A10CC15211A873B, AA4DD9E7AAE5AAB1146B360B17001F975D2F29A1281CF7B13E7136480410F347 ] Cdaudio         C:\WINDOWS\system32\drivers\Cdaudio.sys
19:34:56.0171 0x0ba8  Cdaudio - ok
19:34:56.0250 0x0ba8  [ C885B02847F5D2FD45A24E219ED93B32, B26B2F8E3A831E2B65EB0C5195B0645CD50E22615CE79C9B0B391CD563B121DB ] Cdfs            C:\WINDOWS\system32\drivers\Cdfs.sys
19:34:56.0656 0x0ba8  Cdfs - ok
19:34:56.0750 0x0ba8  [ 1F4260CC5B42272D71F79E570A27A4FE, B51C2A3ED3C309953D0EA45869C8E464C10F2533DADE9E0286AF674979098D1D ] Cdrom           C:\WINDOWS\system32\DRIVERS\cdrom.sys
19:34:57.0125 0x0ba8  Cdrom - ok
19:34:57.0203 0x0ba8  [ 61305C679E5766A03A09C0E966939206, E85EC9D23C81A2F8C08B439FA34F43C475A26C38DF4B4B40758CFC0D64C50C17 ] CFRMD           C:\WINDOWS\system32\DRIVERS\CFRMD.sys
19:34:57.0265 0x0ba8  CFRMD - ok
19:34:57.0281 0x0ba8  Changer - ok
19:34:57.0453 0x0ba8  [ 28E3040D1F1CA2008CD6B29DFEBC9A5E, ACB458E8A11AA2143734A5A0281973D95158E6402A6453F98F9832D1E19B01F9 ] CiSvc           C:\WINDOWS\system32\cisvc.exe
19:34:57.0796 0x0ba8  CiSvc - ok
19:34:57.0859 0x0ba8  [ 778A30ED3C134EB7E406AFC407E9997D, 3E6AD115AB2596EB001BC21AEADDBC75F27C42DB90C986B7AD17743CE631234E ] ClipSrv         C:\WINDOWS\system32\clipsrv.exe
19:34:58.0156 0x0ba8  ClipSrv - ok
19:34:58.0328 0x0ba8  [ 8410C7DE4748AEE7F9D7CB70ADFFDC01, 1F77AC232CAD72204EE37ACB1A4E03BDCEFD51A8DA2CE68304AD80AA7F75B0BD ] CLPSLauncher    C:\Programme\Gemeinsame Dateien\COMODO\launcher_service.exe
19:34:58.0375 0x0ba8  CLPSLauncher - ok
19:34:58.0531 0x0ba8  [ D87ACAED61E417BBA546CED5E7E36D9C, 14AC6034A5BC0FB2A1AFDAD42BEF4DE641556E54AD30D0C46765660A4BE55462 ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
19:34:58.0687 0x0ba8  clr_optimization_v2.0.50727_32 - ok
19:34:58.0750 0x0ba8  [ C5A75EB48E2344ABDC162BDA79E16841, 6070A8AAFD38FBC6A68A2B10C20117612354DF21B4492D90CA522BFB6870D726 ] clr_optimization_v4.0.30319_32 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
19:34:58.0984 0x0ba8  clr_optimization_v4.0.30319_32 - ok
19:34:59.0046 0x0ba8  [ 0F6C187D38D98F8DF904589A5F94D411, DB987093446216CEE913AC27503BF7E23E5A62DF169B355730285DAB64F6ED28 ] CmBatt          C:\WINDOWS\system32\DRIVERS\CmBatt.sys
19:34:59.0468 0x0ba8  CmBatt - ok
19:34:59.0750 0x0ba8  [ 2A2D72271844C52F004901A60312B96A, A7782E78EE6797A100410C997B77C95B1D991E57C0E5025FC17324EF54C54F0F ] cmdAgent        C:\Programme\COMODO\COMODO Internet Security\cmdagent.exe
19:35:00.0000 0x0ba8  cmdAgent - ok
19:35:00.0109 0x0ba8  [ 9181CC4D007ADBE21DB9A11BFECAFEF5, 06B5FDD33D5EE99659DF772CAB38A187166A7F9662B43B1DFC786E0DEFF013B8 ] cmdGuard        C:\WINDOWS\system32\DRIVERS\cmdguard.sys
19:35:00.0218 0x0ba8  cmdGuard - ok
19:35:00.0328 0x0ba8  [ C5A9FB50E8CA7FD99F256255FEE71580, 98A826550D7960A3605F67EBA84B721881B7F7D5B7F8445AA6F8790FE2DA05F2 ] cmdHlp          C:\WINDOWS\system32\DRIVERS\cmdhlp.sys
19:35:00.0390 0x0ba8  cmdHlp - ok
19:35:00.0406 0x0ba8  CmdIde - ok
19:35:00.0421 0x0ba8  cmnsusbser - ok
19:35:00.0484 0x0ba8  [ 6E4C9F21F0FAE8940661144F41B13203, 731202A0DD021FCF9287FEA631212603AAAC23F9E7F76B2882F913B18A971F1C ] Compbatt        C:\WINDOWS\system32\DRIVERS\compbatt.sys
19:35:00.0750 0x0ba8  Compbatt - ok
19:35:00.0765 0x0ba8  COMSysApp - ok
19:35:00.0812 0x0ba8  Cpqarray - ok
19:35:00.0890 0x0ba8  [ 611F824E5C703A5A899F84C5F1699E4D, 9EFA5612FE58E9974E4CC13D39D91D7B5DEA3ED66BEFBED3AAE6D2800FD8162A ] CryptSvc        C:\WINDOWS\System32\cryptsvc.dll
19:35:01.0218 0x0ba8  CryptSvc - ok
19:35:01.0265 0x0ba8  [ B5ECADF7708960F1818C7FA015F4C239, A58BA71B08A9D46EB79EB3DF0858F553A11DE3461E13B6D926E25D21D4CBB2D8 ] CVirtA          C:\WINDOWS\system32\DRIVERS\CVirtA.sys
19:35:01.0406 0x0ba8  CVirtA - ok
19:35:01.0421 0x0ba8  CVPNDRVA - ok
19:35:01.0437 0x0ba8  dac2w2k - ok
19:35:01.0453 0x0ba8  dac960nt - ok
19:35:01.0546 0x0ba8  [ 3127AFBF2C1ED0AB14A1BBB7AAECB85B, ECFBACE3CBF2384948EA1C445BDA3955EB4F44A9874286E6537C67DC1283E5B0 ] DcomLaunch      C:\WINDOWS\system32\rpcss.dll
19:35:01.0687 0x0ba8  DcomLaunch - ok
19:35:01.0765 0x0ba8  [ C29A1C9B75BA38FA37F8C44405DEC360, 7476D8BC4380CDE56764B2034AF3741DA4ED00F315E41C9A02B5EAD04374F241 ] Dhcp            C:\WINDOWS\System32\dhcpcsvc.dll
19:35:02.0203 0x0ba8  Dhcp - ok
19:35:02.0265 0x0ba8  [ 044452051F3E02E7963599FC8F4F3E25, 584BDDB074618BE76454CF90E74829CFF588B5B5FAEB793E2F7AAD26352DD689 ] Disk            C:\WINDOWS\system32\DRIVERS\disk.sys
19:35:02.0609 0x0ba8  Disk - ok
19:35:02.0640 0x0ba8  dmadmin - ok
19:35:02.0750 0x0ba8  [ 0DCFC8395A99FECBB1EF771CEC7FE4EA, 89B0AEE5BE01B9FE4FF2989FF16DB6121721ACDFCE6D9655C0ACD321D8C308BE ] dmboot          C:\WINDOWS\system32\drivers\dmboot.sys
19:35:03.0250 0x0ba8  dmboot - ok
19:35:03.0343 0x0ba8  [ 53720AB12B48719D00E327DA470A619A, 800264866A6267C9000A85D00095D57908D059D737E5F28C9C4049B884C46228 ] dmio            C:\WINDOWS\system32\drivers\dmio.sys
19:35:03.0718 0x0ba8  dmio - ok
19:35:03.0812 0x0ba8  [ E9317282A63CA4D188C0DF5E09C6AC5F, D41E002F555FE9015EF620975255F58BB79198CA1FF0E09EC950CB450FF77CF7 ] dmload          C:\WINDOWS\system32\drivers\dmload.sys
19:35:04.0125 0x0ba8  dmload - ok
19:35:04.0187 0x0ba8  [ 25C83FFBBA13B554EB6D59A9B2E2EE78, 9FBD655ED3E9163AE11EC207F283E387EFBA5A23108EC790BAE4846B35E66F16 ] dmserver        C:\WINDOWS\System32\dmserver.dll
19:35:04.0453 0x0ba8  dmserver - ok
19:35:04.0515 0x0ba8  [ 8A208DFCF89792A484E76C40E5F50B45, 4E40E2EB38C6254E7CAA488200E89EE7DEBBBA773890BC6A84313CC68178D54F ] DMusic          C:\WINDOWS\system32\drivers\DMusic.sys
19:35:04.0750 0x0ba8  DMusic - ok
19:35:04.0843 0x0ba8  [ 694616F813FB627A32C9E32DEC133078, 27D503E442ED60ED0F7B6BC743856B08B98CD1A396203B2D1426899407E870C5 ] DNE             C:\WINDOWS\system32\DRIVERS\dne2000.sys
19:35:04.0906 0x0ba8  DNE - ok
19:35:04.0968 0x0ba8  [ 407F3227AC618FD1CA54B335B083DE07, 96B8E734648FE9A4EBA59C096C8779BD1A11A93A6303AFD438A406C8122D36C6 ] Dnscache        C:\WINDOWS\System32\dnsrslvr.dll
19:35:05.0093 0x0ba8  Dnscache - ok
19:35:05.0171 0x0ba8  [ 676E36C4FF5BCEA1900F44182B9723E6, 740CF18BD40E00FEA26CF0E6340C5D18F7D0B4390055FAEEC258B3AA790C4AE9 ] Dot3svc         C:\WINDOWS\System32\dot3svc.dll
19:35:05.0500 0x0ba8  Dot3svc - ok
19:35:05.0515 0x0ba8  dpti2o - ok
19:35:05.0843 0x0ba8  [ E4A0D0C8F17073BE392F062DD1F6B50E, 26CF71517C09B24B6F6AB5AC902FF0D1426351BCCD6AB571510C83D0F6E32FE6 ] DragonUpdater   C:\Programme\Comodo\Dragon\dragon_updater.exe
19:35:06.0109 0x0ba8  DragonUpdater - ok
19:35:06.0187 0x0ba8  [ 8F5FCFF8E8848AFAC920905FBD9D33C8, C8C6FB97AB0871C8C88A2201525A5CF10D5131CB6980D32692ED7A8F58399AD5 ] drmkaud         C:\WINDOWS\system32\drivers\drmkaud.sys
19:35:06.0453 0x0ba8  drmkaud - ok
19:35:06.0531 0x0ba8  [ 4E4F2FDDAB0A0736D7671134DCCE91FB, 8E2C57D1A006856C47CBDD5765A9DD317DB205B26DA8BFC70555A506257A1CD9 ] EapHost         C:\WINDOWS\System32\eapsvc.dll
19:35:06.0796 0x0ba8  EapHost - ok
19:35:06.0812 0x0ba8  EAPPkt - ok
19:35:06.0906 0x0ba8  [ 877C18558D70587AA7823A1A308AC96B, 6B336A62112988D855513F45153F73F8470C41A448E9B7438B4A8EC1813AABF1 ] ERSvc           C:\WINDOWS\System32\ersvc.dll
19:35:07.0171 0x0ba8  ERSvc - ok
19:35:07.0250 0x0ba8  [ A3EDBE9053889FB24AB22492472B39DC, 6F2ED6E04BDE2FCA2A8BF9BD2D1D6923DE6EAECB46F582B6C0BD1CF364D65C9E ] Eventlog        C:\WINDOWS\system32\services.exe
19:35:07.0312 0x0ba8  Eventlog - ok
19:35:07.0375 0x0ba8  [ AF4F6B5739D18CA7972AB53E091CBC74, A399E2CC026730D3A429727AAB48093B9F1E5DD8EB6336519C7F16182FDB3905 ] EventSystem     C:\WINDOWS\system32\es.dll
19:35:07.0500 0x0ba8  EventSystem - ok
19:35:07.0578 0x0ba8  [ 38D332A6D56AF32635675F132548343E, E6909DB836AF679B4F4D62C7396D6C82769CC7ABB8C919C2AABFE934FCE268F6 ] Fastfat         C:\WINDOWS\system32\drivers\Fastfat.sys
19:35:07.0875 0x0ba8  Fastfat - ok
19:35:07.0953 0x0ba8  [ 2DB7D303C36DDD055215052F118E8E75, BE6E7BBE12A7A4EDF1F1C2935350603970C7426BBCA7A1A6644BB8999123AF17 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
19:35:08.0093 0x0ba8  FastUserSwitchingCompatibility - ok
19:35:08.0156 0x0ba8  [ 92CDD60B6730B9F50F6A1A0C1F8CDC81, 8307A532AB4D05CBBCE206DC2759497708BF5AAA880BD00F0E4F281D8578A1F5 ] Fdc             C:\WINDOWS\system32\drivers\Fdc.sys
19:35:08.0390 0x0ba8  Fdc - ok
19:35:08.0531 0x0ba8  [ B0678A548587C5F1967B0D70BACAD6C1, 7E49910212ED87313F926E4800EA8D34809C287A686CA69B82B79C1A6451F88C ] Fips            C:\WINDOWS\system32\drivers\Fips.sys
19:35:08.0828 0x0ba8  Fips - ok
19:35:08.0875 0x0ba8  [ 9D27E7B80BFCDF1CDD9B555862D5E7F0, 69C271AD5BCEBFD8AE5A769BDD7EC51256DA3A8ADAD5D12E5C0D13F4E82D8805 ] Flpydisk        C:\WINDOWS\system32\drivers\Flpydisk.sys
19:35:09.0156 0x0ba8  Flpydisk - ok
19:35:09.0203 0x0ba8  [ B2CF4B0786F8212CB92ED2B50C6DB6B0, 280F5CF8A90F7BEDE73ADD0DD0F8952088133A7CA9A3D3B7041957E33B36845D ] FltMgr          C:\WINDOWS\system32\DRIVERS\fltMgr.sys
19:35:09.0468 0x0ba8  FltMgr - ok
19:35:09.0593 0x0ba8  [ 8BA7C024070F2B7FDD98ED8A4BA41789, 47585006F86B2C6016EC54250A416794792D1E4024FF229C120BC25B684AF66A ] FontCache3.0.0.0 c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
19:35:09.0656 0x0ba8  FontCache3.0.0.0 - ok
19:35:09.0812 0x0ba8  [ 26EABEEA7F30DCF21DA0577C4EE26FAA, 20C3CD2579ED6853249B1EAEF23DF2904779BA2E806D00C30F81EA9A1612AE0F ] FoxitCloudUpdateService C:\PROGRAMME\FOXIT SOFTWARE\FOXIT READER\Foxit Cloud\FCUpdateService.exe
19:35:09.0906 0x0ba8  FoxitCloudUpdateService - ok
19:35:09.0953 0x0ba8  [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A, EC635E071201A766845D48973772CBE0958942B4162F3F5F70660D114CC877E0 ] Fs_Rec          C:\WINDOWS\system32\drivers\Fs_Rec.sys
19:35:10.0281 0x0ba8  Fs_Rec - ok
19:35:10.0328 0x0ba8  [ 8F1955CE42E1484714B542F341647778, 8EB3F99625F409D3032561E8AB44BEFBFBFBA4EC873C2151C92A5CAAF7F2AA55 ] Ftdisk          C:\WINDOWS\system32\DRIVERS\ftdisk.sys
19:35:10.0609 0x0ba8  Ftdisk - ok
19:35:10.0859 0x0ba8  [ AE63D0DB96C07CAE5DC4CDB2B2A719A0, 1E38E4E350484E0942BE2AF61CDBBACC132C955FE3FA0C1485BDCA0C6283BA51 ] GeekBuddyRSP    C:\Programme\Gemeinsame Dateien\COMODO\GeekBuddyRSP.exe
19:35:11.0093 0x0ba8  GeekBuddyRSP - ok
19:35:11.0171 0x0ba8  [ 0A02C63C8B144BD8C86B103DEE7C86A2, 7A3235DD3E1995DD72B212FAEB3ECA2A974434DE9BF6D269EA11BA65A80E7E50 ] Gpc             C:\WINDOWS\system32\DRIVERS\msgpc.sys
19:35:11.0468 0x0ba8  Gpc - ok
19:35:11.0546 0x0ba8  [ E9CDEB631E63E83A7540CF6E81B5486B, 7CB2129168E27DE46B166B1C26975722E63D8AF772933664FCA5A8A335004117 ] GUBootStartup   C:\WINDOWS\System32\drivers\GUBootStartup.sys
19:35:11.0656 0x0ba8  GUBootStartup - ok
19:35:11.0718 0x0ba8  [ 573C7D0A32852B48F3058CFD8026F511, BC384BBA394AFDCDA1A9ABC858C692AA84A1F0A31AF3DDF7F38D120C027927FB ] HDAudBus        C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
19:35:11.0984 0x0ba8  HDAudBus - ok
19:35:12.0093 0x0ba8  [ CB66BF85BF599BEFD6C6A57C2E20357F, 55D3A0F9279FF316766F42548FCB61C452942B08A37590C4892DF110BE4E53C6 ] helpsvc         C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
19:35:12.0375 0x0ba8  helpsvc - ok
19:35:12.0390 0x0ba8  HidServ - ok
19:35:12.0453 0x0ba8  [ CCF82C5EC8A7326C3066DE870C06DAF1, 93395FA4C26B2E82DC8B7025ED3BCF583885E5D8C5F60CD6EEAA6335D6A126EC ] HidUsb          C:\WINDOWS\system32\DRIVERS\hidusb.sys
19:35:12.0687 0x0ba8  HidUsb - ok
19:35:12.0750 0x0ba8  [ ED29F14101523A6E0E808107405D452C, B8FA987637787BEECC2EB06D36293DAC355523392B49A8C5A9491EEE961917E9 ] hkmsvc          C:\WINDOWS\System32\kmsvc.dll
19:35:12.0984 0x0ba8  hkmsvc - ok
19:35:13.0000 0x0ba8  hpn - ok
19:35:13.0109 0x0ba8  [ F80A415EF82CD06FFAF0D971528EAD38, 524D9E9201572929522F6805011783711B7C0F76308B924C89CF75F4B7A1FDF3 ] HTTP            C:\WINDOWS\system32\Drivers\HTTP.sys
19:35:13.0234 0x0ba8  HTTP - ok
19:35:13.0281 0x0ba8  [ 9E4ADB854CEBCFB81A4B36718FEECD16, 677AB64460775686F8366D6BF35D420A2486C3F07338A00A7C2788A5142B9F08 ] HTTPFilter      C:\WINDOWS\System32\w3ssl.dll
19:35:13.0531 0x0ba8  HTTPFilter - ok
19:35:13.0531 0x0ba8  i2omgmt - ok
19:35:13.0546 0x0ba8  i2omp - ok
19:35:13.0640 0x0ba8  [ E283B97CFBEB86C1D86BAED5F7846A92, 7664F791D08C80DF1E52B34BE69F073AA645610C4BD975F498254807602374AB ] i8042prt        C:\WINDOWS\system32\DRIVERS\i8042prt.sys
19:35:13.0906 0x0ba8  i8042prt - ok
19:35:14.0421 0x0ba8  [ 0F68E2EC713F132FFB19E45415B09679, B1439A5D157F9FF54E803581D2B86411DB079242D837617021A4A0BC195E67BB ] ialm            C:\WINDOWS\system32\DRIVERS\igxpmp32.sys
19:35:15.0453 0x0ba8  ialm - ok
19:35:15.0562 0x0ba8  [ 707C1692214B1C290271067197F075F6, 7D0DB754604AABC4AA09AB8BA94326B1A1C2A76F3C2C2C7D6FA14F964BE68A51 ] iaStor          C:\WINDOWS\system32\drivers\iaStor.sys
19:35:15.0656 0x0ba8  iaStor - ok
19:35:15.0828 0x0ba8  [ C01AC32DC5C03076CFB852CB5DA5229C, A4D7749220B5BC965D96A267F1E02FE8284A230BA249109207BD4B9EA8DFAC96 ] idsvc           c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
19:35:16.0062 0x0ba8  idsvc - ok
19:35:16.0125 0x0ba8  [ 083A052659F5310DD8B6A6CB05EDCF8E, 48D39B03FFB6FAA1529B774443BA12618AE3982D9F65A7B9D18F2269F78B31F4 ] Imapi           C:\WINDOWS\system32\DRIVERS\imapi.sys
19:35:16.0500 0x0ba8  Imapi - ok
19:35:16.0562 0x0ba8  [ D4B413AA210C21E46AEDD2BA5B68D38E, 2309622867AA8FC832A729FA78F48742D4BD6CA0DAFBFB9DDB0772D671E1ED75 ] ImapiService    C:\WINDOWS\system32\imapi.exe
19:35:16.0828 0x0ba8  ImapiService - ok
19:35:16.0843 0x0ba8  ini910u - ok
19:35:16.0906 0x0ba8  [ E1DF634BEC066B3D4FFE437BCB78C282, 974278CA606DF7C0332997E4339EA2AFE017E04C596CE69F47FED798E57D52FB ] Inspect         C:\WINDOWS\system32\DRIVERS\inspect.sys
19:35:16.0968 0x0ba8  Inspect - ok
19:35:17.0359 0x0ba8  [ 053517D1BCADF00BEDB21FB7218C8F33, 633F19692C56C40F786C87A95E1D9B692420F6BD976753268FED378236FB0159 ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RtkHDAud.sys
19:35:18.0125 0x0ba8  IntcAzAudAddService - ok
19:35:18.0156 0x0ba8  IntelIde - ok
19:35:18.0187 0x0ba8  [ 4C7D2750158ED6E7AD642D97BFFAE351, C05E4799752F090DCB632F07F62ADE38D31534621064D269AD535CA0BDFED448 ] intelppm        C:\WINDOWS\system32\DRIVERS\intelppm.sys
19:35:18.0421 0x0ba8  intelppm - ok
19:35:18.0453 0x0ba8  [ 3BB22519A194418D5FEC05D800A19AD0, F6662F440950596DC1382DD1DB5D7891CCEA30A6062BEA942C18445B5F0D8B16 ] Ip6Fw           C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
19:35:18.0687 0x0ba8  Ip6Fw - ok
19:35:18.0812 0x0ba8  [ 731F22BA402EE4B62748ADAF6363C182, 5C3BEBD008A5BE4DC2F92076FF41A10DDC01E10EC7E6552213CFA11970811848 ] IpFilterDriver  C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
19:35:19.0031 0x0ba8  IpFilterDriver - ok
19:35:19.0125 0x0ba8  [ B87AB476DCF76E72010632B5550955F5, E6E74D3A86A7917A8BAED44F8E97CCD2EB171E4E4B27E9907F60D1523FAF319A ] IpInIp          C:\WINDOWS\system32\DRIVERS\ipinip.sys
19:35:19.0406 0x0ba8  IpInIp - ok
19:35:19.0468 0x0ba8  [ CC748EA12C6EFFDE940EE98098BF96BB, AF523E21C25D9A1715EFEA573E4F52AF5D4FC9F28A2D613F5DB629C186C439E0 ] IpNat           C:\WINDOWS\system32\DRIVERS\ipnat.sys
19:35:19.0734 0x0ba8  IpNat - ok
19:35:19.0812 0x0ba8  [ 23C74D75E36E7158768DD63D92789A91, 394D296F38E7D8EFD91A6EEC301D9CE6AF910E35EB9819F1A9E3363863AEDFDC ] IPSec           C:\WINDOWS\system32\DRIVERS\ipsec.sys
19:35:20.0062 0x0ba8  IPSec - ok
19:35:20.0109 0x0ba8  [ C93C9FF7B04D772627A3646D89F7BF89, 805FA48E7A46D4F10240BF880A2468F53DEA36E83004399228AB70DB7D20544A ] IRENUM          C:\WINDOWS\system32\DRIVERS\irenum.sys
19:35:20.0234 0x0ba8  IRENUM - ok
19:35:20.0281 0x0ba8  [ 6DFB88F64135C525433E87648BDA30DE, 8233EEFBEF36AAA152F2C55D23D7118F0DE40C9C22EB5D9793405A4770889540 ] isapnp          C:\WINDOWS\system32\DRIVERS\isapnp.sys
19:35:20.0500 0x0ba8  isapnp - ok
19:35:20.0562 0x0ba8  [ 1704D8C4C8807B889E43C649B478A452, E854C90CD301F42BE2520CEDAD35E49DF2D43606CF4EEED861B74882118D04D1 ] Kbdclass        C:\WINDOWS\system32\DRIVERS\kbdclass.sys
19:35:20.0796 0x0ba8  Kbdclass - ok
19:35:20.0859 0x0ba8  [ 692BCF44383D056AED41B045A323D378, 1A99DEE83FFAF64E73067FC049C0A4CE07D94E4AE31EFA17B38CEFA9E41D67DC ] kmixer          C:\WINDOWS\system32\drivers\kmixer.sys
19:35:21.0093 0x0ba8  kmixer - ok
19:35:21.0203 0x0ba8  [ B467646C54CC746128904E1654C750C1, 3BD71BE3663EA23463D236D8A2A2E42DFA10C502BDB4B6E131FAF0FBA748219E ] KSecDD          C:\WINDOWS\system32\drivers\KSecDD.sys
19:35:21.0343 0x0ba8  KSecDD - ok
19:35:21.0421 0x0ba8  [ 2BBDCB79900990F0716DFCB714E72DE7, 6283789201164A9254632D9A3C8A54FE697717D5F8D5A37804D924DC2B70C8E3 ] LanmanServer    C:\WINDOWS\System32\srvsvc.dll
19:35:21.0515 0x0ba8  LanmanServer - ok
19:35:21.0578 0x0ba8  [ 1869B14B06B44B44AF70548E1EA3303F, 4D63B4DAF580C86F86837C7D1753E2105B4C52E26D4CA0CAAFE83755EFF7AFBE ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
19:35:21.0781 0x0ba8  lanmanworkstation - ok
19:35:21.0812 0x0ba8  lbrtfdc - ok
19:35:21.0921 0x0ba8  [ 636714B7D43C8D0C80449123FD266920, F06F6C7DC49B26EFCAC3570C67BA9BD934F62C6F382DA4DD2AB302C7B970F414 ] LmHosts         C:\WINDOWS\System32\lmhsvc.dll
19:35:22.0171 0x0ba8  LmHosts - ok
19:35:22.0234 0x0ba8  [ B7550A7107281D170CE85524B1488C98, A3854B16A65436BEF6BEDE918B43B3BE8F00D303660DB5831DD376271DC43239 ] Messenger       C:\WINDOWS\System32\msgsvc.dll
19:35:22.0468 0x0ba8  Messenger - ok
19:35:22.0546 0x0ba8  [ 4AE068242760A1FB6E1A44BF4E16AFA6, 1FB771162B96AAF787AC24867B818DF8511F0780BB094FA9A38C11D8DBFE68BC ] mnmdd           C:\WINDOWS\system32\drivers\mnmdd.sys
19:35:22.0812 0x0ba8  mnmdd - ok
19:35:22.0906 0x0ba8  [ C2F1D365FD96791B037EE504868065D3, 87BD87E08FD00D115524B049F1A3A719AB86557D68968E7090CD0F271F985CAF ] mnmsrvc         C:\WINDOWS\system32\mnmsrvc.exe
19:35:23.0156 0x0ba8  mnmsrvc - ok
19:35:23.0218 0x0ba8  [ 6FB74EBD4EC57A6F1781DE3852CC3362, 0454509D9A31E0202C08AE17294E2682F227D177A3C73B303E4C8332757AFCA1 ] Modem           C:\WINDOWS\system32\drivers\Modem.sys
19:35:23.0468 0x0ba8  Modem - ok
19:35:23.0531 0x0ba8  [ B24CE8005DEAB254C0251E15CB71D802, 6804A8ABDAD5EC846E7F8077D1EE9BA45D6226ACFF42C70BE3DE7C8980EF9EC4 ] Mouclass        C:\WINDOWS\system32\DRIVERS\mouclass.sys
19:35:23.0765 0x0ba8  Mouclass - ok
19:35:23.0828 0x0ba8  [ 66A6F73C74E1791464160A7065CE711A, 3C570FA1E8EF976B83759220FE95BAC9D7D48D607F91B113EDE4790D34ACBD46 ] mouhid          C:\WINDOWS\system32\DRIVERS\mouhid.sys
19:35:24.0062 0x0ba8  mouhid - ok
19:35:24.0156 0x0ba8  [ A80B9A0BAD1B73637DBCBBA7DF72D3FD, 2A5E15ED2C24C6C65EF2F7E1FD93374774076C9D8D451E4422561F4D269C012F ] MountMgr        C:\WINDOWS\system32\drivers\MountMgr.sys
19:35:24.0437 0x0ba8  MountMgr - ok
19:35:24.0562 0x0ba8  [ D815553666D383116DCF736BCCBC087D, 08023D43B4FCA606A37B4FB722127408EDEB6E3D20FB6889DA19C1A4EC5A3D8F ] MozillaMaintenance C:\Programme\Mozilla Maintenance Service\maintenanceservice.exe
19:35:24.0656 0x0ba8  MozillaMaintenance - ok
19:35:24.0671 0x0ba8  mraid35x - ok
19:35:24.0718 0x0ba8  [ 11D42BB6206F33FBB3BA0288D3EF81BD, 76ABCFB62C5AC549F58C231F72A99882CDEB74928104B77FE52554765C2B1A22 ] MRxDAV          C:\WINDOWS\system32\DRIVERS\mrxdav.sys
19:35:24.0984 0x0ba8  MRxDAV - ok
19:35:25.0109 0x0ba8  [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0, DB9B186F7076D7B94F45041AF7B77C1AD2CAB504D683B459C6CB1C22840ED170 ] MRxSmb          C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
19:35:25.0343 0x0ba8  MRxSmb - ok
19:35:25.0406 0x0ba8  [ 35A031AF38C55F92D28AA03EE9F12CC9, 97245D204C886EE8DCCC2DEAC80A0E358A7E0C1982F77389DA50DCF091FC9DDC ] MSDTC           C:\WINDOWS\system32\msdtc.exe
19:35:25.0703 0x0ba8  MSDTC - ok
19:35:25.0812 0x0ba8  [ C941EA2454BA8350021D774DAF0F1027, C940E978C7B66A713A0FDAB54B5F995DF59D089AFCD96221DD3222948CD49BBD ] Msfs            C:\WINDOWS\system32\drivers\Msfs.sys
19:35:26.0031 0x0ba8  Msfs - ok
19:35:26.0046 0x0ba8  MSIServer - ok
19:35:26.0093 0x0ba8  [ D1575E71568F4D9E14CA56B7B0453BF1, 4ABE0E24786C0D39FA2B885447E56204CA6942FB175E534DCE675D7BCF0B176A ] MSKSSRV         C:\WINDOWS\system32\drivers\MSKSSRV.sys
19:35:26.0328 0x0ba8  MSKSSRV - ok
19:35:26.0390 0x0ba8  [ 325BB26842FC7CCC1FCCE2C457317F3E, C07BE560513B1FB91D756494F0BA4AEEB2E1998DE0E1C21EE83DB1183B0CEE91 ] MSPCLOCK        C:\WINDOWS\system32\drivers\MSPCLOCK.sys
19:35:26.0625 0x0ba8  MSPCLOCK - ok
19:35:26.0640 0x0ba8  [ BAD59648BA099DA4A17680B39730CB3D, 9AD4C7C94C186C8815D0BC75DCAFB962158DA6935A244BA243EDDDEB33F9816C ] MSPQM           C:\WINDOWS\system32\drivers\MSPQM.sys
19:35:26.0890 0x0ba8  MSPQM - ok
19:35:26.0968 0x0ba8  [ AF5F4F3F14A8EA2C26DE30F7A1E17136, AC93A1E4ABB0D038B772E429015567E44CC2EDB66C54DBE23A5F98176FAC1520 ] mssmbios        C:\WINDOWS\system32\DRIVERS\mssmbios.sys
19:35:27.0203 0x0ba8  mssmbios - ok
19:35:27.0234 0x0ba8  [ E53736A9E30C45FA9E7B5EAC55056D1D, 38602F280BF69EBA3706AD175AFC1AEB561A8302B4B61E3FECB3C27D7A9BDB41 ] MSTEE           C:\WINDOWS\system32\drivers\MSTEE.sys
19:35:27.0484 0x0ba8  MSTEE - ok
19:35:27.0578 0x0ba8  [ DE6A75F5C270E756C5508D94B6CF68F5, FCC972DDC36C2C44D836913F10004C2C33B11C54DEFFF0C63E0FDF901D2F9261 ] Mup             C:\WINDOWS\system32\drivers\Mup.sys
19:35:27.0687 0x0ba8  Mup - ok
19:35:27.0718 0x0ba8  [ 5B50F1B2A2ED47D560577B221DA734DB, C16A554B6E1A7F5F98C94DFA88163E0F7426506BF2F51FD351B1A05FC0DB3BC5 ] NABTSFEC        C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
19:35:27.0953 0x0ba8  NABTSFEC - ok
19:35:28.0062 0x0ba8  [ 46BB15AE2AC7D025D6D2567B876817BD, 102A101B96D1078C98FA0F871C801A9A8538E20E5686AB0C7680B2F6C92B3165 ] napagent        C:\WINDOWS\System32\qagentrt.dll
19:35:28.0343 0x0ba8  napagent - ok
19:35:28.0421 0x0ba8  [ 1DF7F42665C94B825322FAE71721130D, FE0DCB728471465B39A42A7511F4133021FBA5DF88F88BCB5FE2FF34CFD713F9 ] NDIS            C:\WINDOWS\system32\drivers\NDIS.sys
19:35:28.0671 0x0ba8  NDIS - ok
19:35:28.0703 0x0ba8  [ 7FF1F1FD8609C149AA432F95A8163D97, 18CD1FF5AC1EF8A38D1EC53014F2BADD28D9CDF4ECE2EBC2313D08903776F323 ] NdisIP          C:\WINDOWS\system32\DRIVERS\NdisIP.sys
19:35:28.0921 0x0ba8  NdisIP - ok
19:35:29.0000 0x0ba8  [ 0109C4F3850DFBAB279542515386AE22, 4F6DB1E499AC853FD36FD603FBB6D3AC9BDCEB298C7FE1FB59A9236CB46729B2 ] NdisTapi        C:\WINDOWS\system32\DRIVERS\ndistapi.sys
19:35:29.0093 0x0ba8  NdisTapi - ok
19:35:29.0156 0x0ba8  [ F927A4434C5028758A842943EF1A3849, B1AA3AF150C05307461774925901789456B0CCCD03A5E71ADA4AB58455962BEE ] Ndisuio         C:\WINDOWS\system32\DRIVERS\ndisuio.sys
19:35:29.0406 0x0ba8  Ndisuio - ok
19:35:29.0500 0x0ba8  [ EDC1531A49C80614B2CFDA43CA8659AB, 494042F790F33721328B4451E79842E21919681CC421A4F9633EC4D383E06097 ] NdisWan         C:\WINDOWS\system32\DRIVERS\ndiswan.sys
19:35:29.0765 0x0ba8  NdisWan - ok
19:35:29.0843 0x0ba8  [ 2F597BB467E05B1FE3830EABD821B8E0, 141497F5A49D47CCE3C9289644F4BD838DCB238F6D8E847FC006652E21FE02AC ] NDProxy         C:\WINDOWS\system32\drivers\NDProxy.sys
19:35:29.0937 0x0ba8  NDProxy - ok
19:35:29.0984 0x0ba8  [ 5D81CF9A2F1A3A756B66CF684911CDF0, 7989C36607CAEA17AFA2C1C9904145CA0714A54B9F712D9D4C1AB140D0B2CC0C ] NetBIOS         C:\WINDOWS\system32\DRIVERS\netbios.sys
19:35:30.0203 0x0ba8  NetBIOS - ok
19:35:30.0281 0x0ba8  [ 74B2B2F5BEA5E9A3DC021D685551BD3D, 7932B71F98B4122BE88F576BF6D745A757AE378A48924B7F4358837B75640A82 ] NetBT           C:\WINDOWS\system32\DRIVERS\netbt.sys
19:35:30.0546 0x0ba8  NetBT - ok
19:35:30.0671 0x0ba8  [ 8ACE4251BFFD09CE75679FE940E996CC, 81969521B5EAEA09ECA63058BE9697BB69AF2596339CA9DF0CFEDC031DCFDC7E ] NetDDE          C:\WINDOWS\system32\netdde.exe
19:35:30.0921 0x0ba8  NetDDE - ok
19:35:30.0937 0x0ba8  [ 8ACE4251BFFD09CE75679FE940E996CC, 81969521B5EAEA09ECA63058BE9697BB69AF2596339CA9DF0CFEDC031DCFDC7E ] NetDDEdsdm      C:\WINDOWS\system32\netdde.exe
19:35:31.0156 0x0ba8  NetDDEdsdm - ok
19:35:31.0203 0x0ba8  [ AFB8261B56CBA0D86AEB6DF682AF9785, 104D96F1F19DD4CE492064ACC9634406A019EAE20B42D03198E400E661897127 ] Netlogon        C:\WINDOWS\system32\lsass.exe
19:35:31.0437 0x0ba8  Netlogon - ok
19:35:31.0515 0x0ba8  [ E6D88F1F6745BF00B57E7855A2AB696C, 12A5EDD853600FF5EBF91E127077745AE1E61E66DBC1D4D4306570F171AF4A39 ] Netman          C:\WINDOWS\System32\netman.dll
19:35:31.0812 0x0ba8  Netman - ok
19:35:31.0906 0x0ba8  [ D22CD77D4F0D63D1169BB35911BFF12D, 85B1FDFA02E1B8EA4FCB9B7EEB687C5C448697FC7EC9D178C5A2F64D2C9CFEE8 ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
19:35:32.0109 0x0ba8  NetTcpPortSharing - ok
19:35:32.0187 0x0ba8  [ F1B67B6B0751AE0E6E964B02821206A3, 3D5A7593ABDEE2047C5738671C85DC8B95A4ECF58D5D7B04EEE13A689839A540 ] Nla             C:\WINDOWS\System32\mswsock.dll
19:35:32.0296 0x0ba8  Nla - ok
19:35:32.0359 0x0ba8  [ A00877C05933FBA8AFB3390DD72D4679, 684D9642173C4BF4B752F259D5E89F16BC8B4B1608F1E6E176AA692A9775CE38 ] nmwcd           C:\WINDOWS\system32\drivers\ccdcmb.sys
19:35:32.0828 0x0ba8  nmwcd - ok
19:35:33.0000 0x0ba8  [ 9FF15F18E4E8758AC57BDB910D0238B3, F27C40BDD3818C54E1099AD525C7C19B424E0C4676DB366DE0E905CA3F82A310 ] nmwcdc          C:\WINDOWS\system32\drivers\ccdcmbo.sys
19:35:33.0187 0x0ba8  nmwcdc - ok
19:35:33.0234 0x0ba8  [ 3182D64AE053D6FB034F44B6DEF8034A, 4ADFC76965BA2A5F488E71789A4E4EA702A74AF42725F72130D1CA919406CF19 ] Npfs            C:\WINDOWS\system32\drivers\Npfs.sys
19:35:33.0453 0x0ba8  Npfs - ok
19:35:33.0546 0x0ba8  [ 78A08DD6A8D65E697C18E1DB01C5CDCA, E0E6F3ED05068E32F1D5C2D2B38CDEF4536B8656DB6756C66CF6B40B60C8F3DA ] Ntfs            C:\WINDOWS\system32\drivers\Ntfs.sys
19:35:33.0859 0x0ba8  Ntfs - ok
19:35:33.0875 0x0ba8  [ AFB8261B56CBA0D86AEB6DF682AF9785, 104D96F1F19DD4CE492064ACC9634406A019EAE20B42D03198E400E661897127 ] NtLmSsp         C:\WINDOWS\system32\lsass.exe
19:35:34.0093 0x0ba8  NtLmSsp - ok
19:35:34.0281 0x0ba8  [ 56AF4064996FA5BAC9C449B1514B4770, 154602EFEC22728503D4ABA025DF711B0F2CFC983F5E3BF25F2A4BCD1AE250EC ] NtmsSvc         C:\WINDOWS\system32\ntmssvc.dll
19:35:34.0593 0x0ba8  NtmsSvc - ok
19:35:34.0656 0x0ba8  [ 73C1E1F395918BC2C6DD67AF7591A3AD, B21133A75253EC15E2DFF66D3B480AB1A7E1A2360476C810E7AA55D0F0EB08D4 ] Null            C:\WINDOWS\system32\drivers\Null.sys
19:35:34.0890 0x0ba8  Null - ok
19:35:34.0937 0x0ba8  [ B305F3FAD35083837EF46A0BBCE2FC57, 9D0E0E666D652D0FC9EAB97280A5D67AAF61D6B21929DF7CF8ED72A367720464 ] NwlnkFlt        C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
19:35:35.0171 0x0ba8  NwlnkFlt - ok
19:35:35.0218 0x0ba8  [ C99B3415198D1AAB7227F2C88FD664B9, DD8DA4B5E804F134AB9233859544C025062902DFC3E8FB8A09A67337A4E73F55 ] NwlnkFwd        C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
19:35:35.0515 0x0ba8  NwlnkFwd - ok
19:35:35.0593 0x0ba8  [ F84785660305B9B903FB3BCA8BA29837, BDBDE61076800415D98759077E9E039C80B55DBE68E31F8BF44A909C6C3D3276 ] Parport         C:\WINDOWS\system32\drivers\Parport.sys
19:35:35.0875 0x0ba8  Parport - ok
19:35:35.0921 0x0ba8  [ BEB3BA25197665D82EC7065B724171C6, 7E71C13BA30CD95CEE8A9CC85E6F48A01F30EDEAADEE69D80AE828BF97E5A5CA ] PartMgr         C:\WINDOWS\system32\drivers\PartMgr.sys
19:35:36.0156 0x0ba8  PartMgr - ok
19:35:36.0218 0x0ba8  [ C2BF987829099A3EAA2CA6A0A90ECB4F, 1DF21EA8E43875CFEECD869407429F82FB449707CFB845718499468E699BAAAA ] ParVdm          C:\WINDOWS\system32\drivers\ParVdm.sys
19:35:36.0421 0x0ba8  ParVdm - ok
19:35:36.0515 0x0ba8  [ F451DCACBAA67F3307305EBD4A39EA07, C4435BF4C2D16F3DC0B35732BE3602FFA28DB0A5BC5576F45E0D32E5F4CD2DEA ] pccsmcfd        C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys
19:35:36.0640 0x0ba8  pccsmcfd - ok
19:35:36.0687 0x0ba8  [ 387E8DEDC343AA2D1EFBC30580273ACD, 5F3E642BDB759777E570ED5B22AC7E93CDCD362708F281657AD7BAB44EDEC802 ] PCI             C:\WINDOWS\system32\DRIVERS\pci.sys
19:35:37.0031 0x0ba8  PCI - ok
19:35:37.0046 0x0ba8  PCIDump - ok
19:35:37.0062 0x0ba8  PCIIde - ok
19:35:37.0093 0x0ba8  [ A2A966B77D61847D61A3051DF87C8C97, 6CED7CA26DC62B0AAFC83A2E07336DAD25954491201BB8E06103971F3F0B8B51 ] Pcmcia          C:\WINDOWS\system32\drivers\Pcmcia.sys
19:35:37.0390 0x0ba8  Pcmcia - ok
19:35:37.0406 0x0ba8  PDCOMP - ok
19:35:37.0437 0x0ba8  PDFRAME - ok
19:35:37.0453 0x0ba8  PDRELI - ok
19:35:37.0468 0x0ba8  PDRFRAME - ok
19:35:37.0500 0x0ba8  perc2 - ok
19:35:37.0515 0x0ba8  perc2hib - ok
19:35:37.0609 0x0ba8  [ A3EDBE9053889FB24AB22492472B39DC, 6F2ED6E04BDE2FCA2A8BF9BD2D1D6923DE6EAECB46F582B6C0BD1CF364D65C9E ] PlugPlay        C:\WINDOWS\system32\services.exe
19:35:37.0703 0x0ba8  PlugPlay - ok
19:35:37.0750 0x0ba8  [ AFB8261B56CBA0D86AEB6DF682AF9785, 104D96F1F19DD4CE492064ACC9634406A019EAE20B42D03198E400E661897127 ] PolicyAgent     C:\WINDOWS\system32\lsass.exe
19:35:37.0984 0x0ba8  PolicyAgent - ok
19:35:38.0046 0x0ba8  [ EFEEC01B1D3CF84F16DDD24D9D9D8F99, C5F0C8C66A3AF7E7BB04CEDE4AC5306F8387AB384A2107DC5BE413AAE968EFF1 ] PptpMiniport    C:\WINDOWS\system32\DRIVERS\raspptp.sys
19:35:38.0343 0x0ba8  PptpMiniport - ok
19:35:38.0375 0x0ba8  [ AFB8261B56CBA0D86AEB6DF682AF9785, 104D96F1F19DD4CE492064ACC9634406A019EAE20B42D03198E400E661897127 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
19:35:38.0656 0x0ba8  ProtectedStorage - ok
19:35:38.0734 0x0ba8  [ 09298EC810B07E5D582CB3A3F9255424, 35473A1BE25AC289474090EB0806AC6B3035DC33D1F3DF97A14BF1E361AC6AC3 ] PSched          C:\WINDOWS\system32\DRIVERS\psched.sys
19:35:39.0000 0x0ba8  PSched - ok
19:35:39.0015 0x0ba8  [ 80D317BD1C3DBC5D4FE7B1678C60CADD, DA76804B55D0CAB3DDD01EFC06673764AE4860693375C658B6063FB14AF7F12C ] Ptilink         C:\WINDOWS\system32\DRIVERS\ptilink.sys
19:35:39.0312 0x0ba8  Ptilink - ok
19:35:39.0390 0x0ba8  [ D86B4A68565E444D76457F14172C875A, 06B1CF81A62B3DAA8D0C5A8B88C56A504DE8E9278C520F754AF363A6676C58B0 ] PxHelp20        C:\WINDOWS\system32\Drivers\PxHelp20.sys
19:35:39.0468 0x0ba8  PxHelp20 - ok
19:35:39.0468 0x0ba8  ql1080 - ok
19:35:39.0484 0x0ba8  Ql10wnt - ok
19:35:39.0500 0x0ba8  ql12160 - ok
19:35:39.0515 0x0ba8  ql1240 - ok
19:35:39.0531 0x0ba8  ql1280 - ok
19:35:39.0593 0x0ba8  [ 583608EE65AABF971117A61AEE4BCAAE, 1FDE8D46BCD58CB476B3E86C025438995111003DAFB985CFE64138AEDC4B78CE ] RalinkRegistryWriter C:\Programme\Ralink\Common\RaRegistry.exe
19:35:39.0640 0x0ba8  RalinkRegistryWriter - ok
19:35:39.0671 0x0ba8  [ FE0D99D6F31E4FAD8159F690D68DED9C, 998685622ABE631984B7E4DBF91AB3594B1F574378D75EB9F6265F4650470692 ] RasAcd          C:\WINDOWS\system32\DRIVERS\rasacd.sys
19:35:39.0906 0x0ba8  RasAcd - ok
19:35:39.0953 0x0ba8  [ F5BA6CACCDB66C8F048E867563203246, AFEAD8FC02313F7EBC8F9F39E7ED2868852B480BE3902FA7BD0AFD81492AB243 ] RasAuto         C:\WINDOWS\System32\rasauto.dll
19:35:40.0187 0x0ba8  RasAuto - ok
19:35:40.0234 0x0ba8  [ 11B4A627BC9614B885C4969BFA5FF8A6, EAE0A412A2B0F68919C32A96B3A08CC1A06585E4998819F5C9051745F63FF5AD ] Rasl2tp         C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
19:35:40.0484 0x0ba8  Rasl2tp - ok
19:35:40.0546 0x0ba8  [ F9A7B66EA345726EDB5862A46B1ECCD5, 5D35429D394D36A1692A7E219BA1A85CD8096FEAE0F90BFE036A63118FEDBF57 ] RasMan          C:\WINDOWS\System32\rasmans.dll
19:35:40.0796 0x0ba8  RasMan - ok
19:35:40.0890 0x0ba8  [ 5BC962F2654137C9909C3D4603587DEE, A5CE5653D0105240F5E86CFAAB89E7917D42D939E2F27A5A7D6979289CA651B8 ] RasPppoe        C:\WINDOWS\system32\DRIVERS\raspppoe.sys
19:35:41.0109 0x0ba8  RasPppoe - ok
19:35:41.0187 0x0ba8  [ FDBB1D60066FCFBB7452FD8F9829B242, 10A2DACF944BD000032EBA8C095CB3D879CC55B28C377ADF6E52E508E47444DB ] Raspti          C:\WINDOWS\system32\DRIVERS\raspti.sys
19:35:41.0421 0x0ba8  Raspti - ok
19:35:41.0468 0x0ba8  [ 7AD224AD1A1437FE28D89CF22B17780A, 6645235CA27D671954E3557FA37082881C3D7D47492C71264CD8CB8D108EC801 ] Rdbss           C:\WINDOWS\system32\DRIVERS\rdbss.sys
19:35:41.0781 0x0ba8  Rdbss - ok
19:35:41.0812 0x0ba8  [ 4912D5B403614CE99C28420F75353332, 975341ECD660209987B5E5171B8315E032439E408CBE8A5986E67AF767F373BB ] RDPCDD          C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
19:35:42.0062 0x0ba8  RDPCDD - ok
19:35:42.0171 0x0ba8  [ 43AF5212BD8FB5BA6EED9754358BD8F7, AF330F61CECA4AFA359CEABC5EB3227E6B56A9A2DCE50701381D665122D7356D ] RDPWD           C:\WINDOWS\system32\drivers\RDPWD.sys
19:35:42.0281 0x0ba8  RDPWD - ok
19:35:42.0359 0x0ba8  [ 263AF18AF0F3DB99F574C95F284CCEC9, 2BFA9952E97EFEB386FC56EC2C125080CD12DAC078DBE43C395CB4D9F22165D3 ] RDSessMgr       C:\WINDOWS\system32\sessmgr.exe
19:35:42.0609 0x0ba8  RDSessMgr - ok
19:35:42.0671 0x0ba8  [ ED761D453856F795A7FE056E42C36365, EF026585B33415D8FCE94A9F27D7A4396C7C35C88E06A4CF0FEA702401E8597A ] redbook         C:\WINDOWS\system32\DRIVERS\redbook.sys
19:35:42.0921 0x0ba8  redbook - ok
19:35:42.0953 0x0ba8  [ 0E97EC96D6942CEEC2D188CC2EB69A01, D4253B4420BEF19451A55AB91E4834482181A31A31134F6E2AFE05C8E20C81A5 ] RemoteAccess    C:\WINDOWS\System32\mprdim.dll
19:35:43.0203 0x0ba8  RemoteAccess - ok
19:35:43.0265 0x0ba8  [ 851C30DF2807FCFA21E4C681A7D6440E, C2269B8ED4E831664B83F8F3BE33E5A340206A9E07F89CDF6707EAD8F280FBE9 ] RFCOMM          C:\WINDOWS\system32\DRIVERS\rfcomm.sys
19:35:43.0500 0x0ba8  RFCOMM - ok
19:35:43.0593 0x0ba8  [ 2A02E21867497DF20B8FC95631395169, D89E2D17ED4E1C727847C0E92D2DF68AEB70BF0B956BD2FE024ED70A961759D2 ] RpcLocator      C:\WINDOWS\system32\locator.exe
19:35:43.0828 0x0ba8  RpcLocator - ok
19:35:43.0921 0x0ba8  [ 3127AFBF2C1ED0AB14A1BBB7AAECB85B, ECFBACE3CBF2384948EA1C445BDA3955EB4F44A9874286E6537C67DC1283E5B0 ] RpcSs           C:\WINDOWS\System32\rpcss.dll
19:35:44.0062 0x0ba8  RpcSs - ok
19:35:44.0093 0x0ba8  [ A7557CAA7253DE02B40996EF9A478FAB, F47DC16A344AE4525ED41B69DE2D86AAEBE1068F2CFAB8DCEC8341EA590512FB ] RSUSBSTOR       C:\WINDOWS\system32\Drivers\RTS5121.sys
19:35:44.0187 0x0ba8  RSUSBSTOR - ok
19:35:44.0234 0x0ba8  [ 4BDD71B4B521521499DFD14735C4F398, 7B1498D3C67E56D05B58B7DA319ECB0117C37963AABB0E59B42831C087469DA1 ] RSVP            C:\WINDOWS\system32\rsvp.exe
19:35:44.0500 0x0ba8  RSVP - ok
19:35:44.0718 0x0ba8  [ 1AD20F7B8B608D36983305B283A8C31C, 8597FB4510BA9E62B27378C719C97F4B69E2482FB83B0888A0F3C176D3A9E1C7 ] rt2870          C:\WINDOWS\system32\DRIVERS\rt2870.sys
19:35:45.0000 0x0ba8  rt2870 - ok
19:35:45.0046 0x0ba8  [ 7174F20AD9B7B7878A51ECCA03C499C2, 5024E4424B8135D2BA13760CE7D56A25840FFFFC8FC32FF635D6A4BC38DCB28A ] RTLE8023xp      C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys
19:35:45.0218 0x0ba8  RTLE8023xp - ok
19:35:45.0234 0x0ba8  Rts516xIR - ok
19:35:45.0281 0x0ba8  [ AFB8261B56CBA0D86AEB6DF682AF9785, 104D96F1F19DD4CE492064ACC9634406A019EAE20B42D03198E400E661897127 ] SamSs           C:\WINDOWS\system32\lsass.exe
19:35:45.0562 0x0ba8  SamSs - ok
19:35:45.0640 0x0ba8  [ DCEC079FAD95D36C8DD5CB6D779DFE32, F8546552D939A225853A0CE4913701A93738DF02C999D16E141E9A828814BBC6 ] SCardSvr        C:\WINDOWS\System32\SCardSvr.exe
19:35:45.0875 0x0ba8  SCardSvr - ok
19:35:45.0921 0x0ba8  [ A050194A44D7FA8D7186ED2F4E8367AE, BCDF56D5A2F9E202DC67E7FE4BCC617BCC0BDFF2D221A621020068B17B2855BB ] Schedule        C:\WINDOWS\system32\schedsvc.dll
19:35:46.0171 0x0ba8  Schedule - ok
19:35:46.0218 0x0ba8  [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] Secdrv          C:\WINDOWS\system32\DRIVERS\secdrv.sys
19:35:46.0328 0x0ba8  Secdrv - ok
19:35:46.0375 0x0ba8  [ BEE4CFD1D48C23B44CF4B974B0B79B2B, DF3B02D713F8A4602BE75F004074D5DF79AFF2D58FF37110B2A6AC29F680758B ] seclogon        C:\WINDOWS\System32\seclogon.dll
19:35:46.0578 0x0ba8  seclogon - ok
19:35:46.0609 0x0ba8  [ 2AAC9B6ED9EDDFFB721D6452E34D67E3, 95D83F054A6610328D56E56CD948A6618C590231853E56FC20E7557DB61384A4 ] SENS            C:\WINDOWS\system32\sens.dll
19:35:46.0843 0x0ba8  SENS - ok
19:35:46.0906 0x0ba8  [ CF24EB4F0412C82BCD1F4F35A025E31D, B74CB094126F5C23F601C34D53B2DF5BE3E5918230AC9DCFCFFA8E66B3A0FA25 ] Serial          C:\WINDOWS\system32\drivers\Serial.sys
19:35:47.0156 0x0ba8  Serial - ok
19:35:47.0328 0x0ba8  [ 78F7BB9F4924BE164294C59B8C3FC096, 75051A6A8B0DBB16CD70855A408134270EEAF0C127BAAE5B592DB53BB87C085B ] ServiceLayer    C:\Programme\PC Connectivity Solution\ServiceLayer.exe
19:35:47.0484 0x0ba8  ServiceLayer - ok
19:35:47.0593 0x0ba8  [ 8E6B8C671615D126FDC553D1E2DE5562, CEEC0067514555D5CA489F50E3D7562FCA8DB8E952C3C878604C9277FC77959F ] Sfloppy         C:\WINDOWS\system32\drivers\Sfloppy.sys
19:35:47.0843 0x0ba8  Sfloppy - ok
19:35:47.0984 0x0ba8  [ CAD058D5F8B889A87CA3EB3CF624DCEF, A7CDCF44261D1F4D820927253EA8EBB63714B7BAFF8B08DE073507D9A7EEA5BB ] SharedAccess    C:\WINDOWS\System32\ipnathlp.dll
19:35:48.0265 0x0ba8  SharedAccess - ok
19:35:48.0359 0x0ba8  [ 2DB7D303C36DDD055215052F118E8E75, BE6E7BBE12A7A4EDF1F1C2935350603970C7426BBCA7A1A6644BB8999123AF17 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
19:35:48.0468 0x0ba8  ShellHWDetection - ok
19:35:48.0484 0x0ba8  Simbad - ok
19:35:48.0671 0x0ba8  [ 704B4F81729F676BBF034529FC334D82, 1E50DAF97836807A500284385D99272780A8B69CA88761250451060B207824F8 ] SkypeUpdate     C:\Programme\Skype\Updater\Updater.exe
19:35:48.0796 0x0ba8  SkypeUpdate - ok
19:35:48.0906 0x0ba8  [ 866D538EBE33709A5C9F5C62B73B7D14, BC94BEB7C17B4FCAC8B5D0D5006A203BC209E0504EECE149651D8691935696CD ] SLIP            C:\WINDOWS\system32\DRIVERS\SLIP.sys
19:35:49.0156 0x0ba8  SLIP - ok
19:35:49.0187 0x0ba8  Sparrow - ok
19:35:49.0234 0x0ba8  [ AB8B92451ECB048A4D1DE7C3FFCB4A9F, DD17733CBB370FCA08F0296704D7CBEACA3C8F76D0ABE4761C3B1FFDF7481D9E ] splitter        C:\WINDOWS\system32\drivers\splitter.sys
19:35:49.0484 0x0ba8  splitter - ok
19:35:49.0562 0x0ba8  [ 60784F891563FB1B767F70117FC2428F, E0B07F08E60FFBAD36C2E58180F4B2A16DCA47716044CBE0213DF7B74D742F1F ] Spooler         C:\WINDOWS\system32\spoolsv.exe
19:35:49.0640 0x0ba8  Spooler - ok
19:35:49.0703 0x0ba8  [ 50FA898F8C032796D3B1B9951BB5A90F, 1C86273EC19EB96D6DB9CE6670C00683B77C99C42CC2F7E75BC50872B93446B1 ] sr              C:\WINDOWS\system32\DRIVERS\sr.sys
19:35:49.0859 0x0ba8  sr - ok
19:35:49.0921 0x0ba8  [ FE77A85495065F3AD59C5C65B6C54182, EB4BAF992F961B2FD5D24BFCB6BCB2142BC32933139A818835FEAB190E4283BB ] srservice       C:\WINDOWS\system32\srsvc.dll
19:35:50.0078 0x0ba8  srservice - ok
19:35:50.0250 0x0ba8  [ 47DDFC2F003F7F9F0592C6874962A2E7, 17C643BD4EB09B5666FE41817DC785BE04A6E491CE79E8E5A702CDBD98E1BDD7 ] Srv             C:\WINDOWS\system32\DRIVERS\srv.sys
19:35:50.0406 0x0ba8  Srv - ok
19:35:50.0437 0x0ba8  [ 4DF5B05DFAEC29E13E1ED6F6EE12C500, 2971D7D45D6942D310D47DBD19B9680D2D29527E79B86133C72217FD29259465 ] SSDPSRV         C:\WINDOWS\System32\ssdpsrv.dll
19:35:50.0609 0x0ba8  SSDPSRV - ok
19:35:50.0656 0x0ba8  [ A36EE93698802CD899F98BFD553D8185, 224CFED921EA230FF8025D259E34968FD2C0FD34BB3A918FB4B9B8BA42BEA5D3 ] ssmdrv          C:\WINDOWS\system32\DRIVERS\ssmdrv.sys
19:35:50.0718 0x0ba8  ssmdrv - ok
19:35:50.0812 0x0ba8  [ BC2C5985611C5356B24AEB370953DED9, 15CBAB8166827DC098E2B16AB6F49A1441A4CB52AF3588F0AD964CAB596DFE10 ] stisvc          C:\WINDOWS\system32\wiaservc.dll
19:35:51.0218 0x0ba8  stisvc - ok
19:35:51.0281 0x0ba8  [ 77813007BA6265C4B6098187E6ED79D2, 93939120E803C46FBFD577C8FC2E6C7E71C0460E01D25CB29579490640AB50C7 ] streamip        C:\WINDOWS\system32\DRIVERS\StreamIP.sys
19:35:51.0515 0x0ba8  streamip - ok
19:35:51.0578 0x0ba8  [ 3941D127AEF12E93ADDF6FE6EE027E0F, EA1F0E32E1C5E90FA4AAC421DEBBE086512340758D3217A6334E886BCE638B51 ] swenum          C:\WINDOWS\system32\DRIVERS\swenum.sys
19:35:51.0875 0x0ba8  swenum - ok
19:35:51.0953 0x0ba8  [ 8CE882BCC6CF8A62F2B2323D95CB3D01, B408550A581F3DA222355964AFA4E976AD8471F0AA37573C42C4948AE5A23A3B ] swmidi          C:\WINDOWS\system32\drivers\swmidi.sys
19:35:52.0203 0x0ba8  swmidi - ok
19:35:52.0218 0x0ba8  SwPrv - ok
19:35:52.0234 0x0ba8  symc810 - ok
19:35:52.0250 0x0ba8  symc8xx - ok
19:35:52.0265 0x0ba8  sym_hi - ok
19:35:52.0281 0x0ba8  sym_u3 - ok
19:35:52.0375 0x0ba8  [ D7B9AD3ABD0F7F9F694D71F38B5C7B72, F712D36AF77EE2E0E8C1A20F825C06F8A23BD9D616563E9814EB4273E7787E6D ] SynTP           C:\WINDOWS\system32\DRIVERS\SynTP.sys
19:35:52.0531 0x0ba8  SynTP - ok
19:35:52.0562 0x0ba8  [ 8B83F3ED0F1688B4958F77CD6D2BF290, 546D3602183702B4F53E84413CFA2C933D64C8540378E54A8DCD148F3F36A2DA ] sysaudio        C:\WINDOWS\system32\drivers\sysaudio.sys
19:35:52.0796 0x0ba8  sysaudio - ok
19:35:52.0921 0x0ba8  [ 2903FFFA2523926D6219428040DCE6B9, 4F13181931B0499F6C3F08138054DBCD1F84CB9806999A9172B80DE79D446F62 ] SysmonLog       C:\WINDOWS\system32\smlogsvc.exe
19:35:53.0218 0x0ba8  SysmonLog - ok
19:35:53.0312 0x0ba8  [ 05903CAC4B98908D55EA5774775B382E, AC3666CBD894D737874A5998DC7F46A0A51A7B23B1835FC735B9AD503A2191CC ] TapiSrv         C:\WINDOWS\System32\tapisrv.dll
19:35:53.0593 0x0ba8  TapiSrv - ok
19:35:53.0671 0x0ba8  [ 9AEFA14BD6B182D61E3119FA5F436D3D, EA29E49434585409272E7901AF89771FE9D6E911A7DC44AB3C7020CFF8A44552 ] Tcpip           C:\WINDOWS\system32\DRIVERS\tcpip.sys
19:35:53.0828 0x0ba8  Tcpip - ok
19:35:53.0875 0x0ba8  [ 6471A66807F5E104E4885F5B67349397, F35CBFFB8BB235CCE30EF94A5273333900DD49FD506BF9D55D99A320B8A53A5A ] TDPIPE          C:\WINDOWS\system32\drivers\TDPIPE.sys
19:35:54.0109 0x0ba8  TDPIPE - ok
19:35:54.0187 0x0ba8  [ C56B6D0402371CF3700EB322EF3AAF61, 7743FA4C734BCE38EFB1CA69BC17364D8421E2CD172F856F7E38E7AE1EE93F2F ] TDTCP           C:\WINDOWS\system32\drivers\TDTCP.sys
19:35:54.0437 0x0ba8  TDTCP - ok
19:35:54.0484 0x0ba8  [ 88155247177638048422893737429D9E, B6D4E8691917946332C2208D01F8C8281978C1AD1E9951C5D99DF0D49AC34B3B ] TermDD          C:\WINDOWS\system32\DRIVERS\termdd.sys
19:35:54.0734 0x0ba8  TermDD - ok
19:35:54.0875 0x0ba8  [ B7DE02C863D8F5A005A7BF375375A6A4, 6DE05A7B28CA5A78D58536347FC47F15883EEDBEF487CEA0117CC280FC582DCC ] TermService     C:\WINDOWS\System32\termsrv.dll
19:35:55.0187 0x0ba8  TermService - ok
19:35:55.0265 0x0ba8  [ 2DB7D303C36DDD055215052F118E8E75, BE6E7BBE12A7A4EDF1F1C2935350603970C7426BBCA7A1A6644BB8999123AF17 ] Themes          C:\WINDOWS\System32\shsvcs.dll
19:35:55.0359 0x0ba8  Themes - ok
19:35:55.0390 0x0ba8  TosIde - ok
19:35:55.0437 0x0ba8  [ 626504572B175867F30F3215C04B3E2F, 47E87CE9BC666D5CB5953C5D497DC00A7CC28F8EC0A064B3E47700279C5C4B91 ] TrkWks          C:\WINDOWS\system32\trkwks.dll
19:35:55.0671 0x0ba8  TrkWks - ok
19:35:55.0750 0x0ba8  [ FAC6431BA75C6B68553D168D29F470F2, D8523004B01FC0407FAA09C31493D428320A577E754652EAAED90B5F55B57F22 ] truecrypt       C:\WINDOWS\system32\drivers\truecrypt.sys
19:35:55.0843 0x0ba8  truecrypt - ok
19:35:55.0937 0x0ba8  [ 5787B80C2E3C5E2F56C2A233D91FA2C9, 3774905CF77954DFCECDA5BCC7CDE3D0ED72712BFAAD85ADAE5246306447E46C ] Udfs            C:\WINDOWS\system32\drivers\Udfs.sys
19:35:56.0156 0x0ba8  Udfs - ok
19:35:56.0156 0x0ba8  ultra - ok
19:35:56.0250 0x0ba8  [ 402DDC88356B1BAC0EE3DD1580C76A31, 32A686595710336A6BFD54C03F552AE39439611662F84EF5D24193AE5665C6F3 ] Update          C:\WINDOWS\system32\DRIVERS\update.sys
19:35:56.0562 0x0ba8  Update - ok
19:35:56.0640 0x0ba8  [ 1DFD8975D8C89214B98D9387C1125B49, 0B6B268487C8E45E9B86BF4A0A9DB669E0E45D600DE3C82B63F9986CA9E01082 ] upnphost        C:\WINDOWS\System32\upnphost.dll
19:35:56.0828 0x0ba8  upnphost - ok
19:35:56.0859 0x0ba8  [ 8721F55D8BC9F89E3A63CEBDF5EF4FA3, C0C82480014B646709869A6A6FA2B71B993F9FCD8E2DB9E8F7D341C21EE169CF ] upperdev        C:\WINDOWS\system32\DRIVERS\usbser_lowerflt.sys
19:35:57.0062 0x0ba8  upperdev - ok
19:35:57.0187 0x0ba8  [ 9B11E6118958E63E1FEF129466E2BDA7, 97168BCE3F4A9BB9E6500F05E34851FB957B219C598944FADC28AC0011C0503B ] UPS             C:\WINDOWS\System32\ups.exe
19:35:57.0406 0x0ba8  UPS - ok
19:35:57.0484 0x0ba8  [ 1B611611C28D2DF25BC057D79C6F13FC, B0D86F63E44B40413BBAE6402CC088046CFAE082D41BBC2ED5A916293356B846 ] usbccgp         C:\WINDOWS\system32\DRIVERS\usbccgp.sys
19:35:57.0578 0x0ba8  usbccgp - ok
19:35:57.0593 0x0ba8  USBCCID - ok
19:35:57.0609 0x0ba8  [ 4BAC8DF07F1D8434FC640E677A62204E, 76C1351AF6752224BF59DEEE0F8665FE699F3DFD679F5BCD01C7D9383E6402A4 ] usbehci         C:\WINDOWS\system32\DRIVERS\usbehci.sys
19:35:57.0671 0x0ba8  usbehci - ok
19:35:57.0750 0x0ba8  [ 1AB3CDDE553B6E064D2E754EFE20285C, A99C4528C4227B1E96847614745AAFACD3C5F1BDFE435214DBF78740FFB300FE ] usbhub          C:\WINDOWS\system32\DRIVERS\usbhub.sys
19:35:58.0031 0x0ba8  usbhub - ok
19:35:58.0140 0x0ba8  [ A717C8721046828520C9EDF31288FC00, 1530BBE832EDBB0974AD89D723A03FF7A0094B368992D73C2C3E62A181DF1E0A ] usbprint        C:\WINDOWS\system32\DRIVERS\usbprint.sys
19:35:58.0421 0x0ba8  usbprint - ok
19:35:58.0500 0x0ba8  [ 84C44D720655A8AA475E57A9E764D675, 2D450199338A217FBD951317812A74223E8B477974C7634667E8896316C3FEA0 ] usbser          C:\WINDOWS\system32\drivers\usbser.sys
19:35:58.0609 0x0ba8  usbser - ok
19:35:58.0656 0x0ba8  [ 4E66C71D8D010BFB0DF1042D25E9CB0F, E581ED3557A06FEE7F35DF1C18C7D74FEFD1FC5E6CDAD6692F66F4A033830F1C ] UsbserFilt      C:\WINDOWS\system32\DRIVERS\usbser_lowerfltj.sys
19:35:58.0890 0x0ba8  UsbserFilt - ok
19:35:58.0937 0x0ba8  [ A32426D9B14A089EAA1D922E0C5801A9, ED1DC52EE45F8EAD3AEC4B1F817BB25634141CF48295494C5947DCE6CF7A9817 ] usbstor         C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
19:35:59.0281 0x0ba8  usbstor - ok
19:35:59.0343 0x0ba8  [ 26496F9DEE2D787FC3E61AD54821FFE6, 8BE7FF647470B9A951CBB478FAF83D657A15CC78037F42348A6B738F21D523DA ] usbuhci         C:\WINDOWS\system32\DRIVERS\usbuhci.sys
19:35:59.0578 0x0ba8  usbuhci - ok
19:35:59.0687 0x0ba8  [ 813236B1183CFCF289E367BD5DE6E29E, 167FE18A96F330AEEC1A4C419770C15EFEB536D43838285E51E7A62E95DF4674 ] usbvideo        C:\WINDOWS\system32\Drivers\usbvideo.sys
19:35:59.0796 0x0ba8  usbvideo - ok
19:35:59.0875 0x0ba8  [ 0D3A8FAFCEACD8B7625CD549757A7DF1, B9CFDEFCD66AA139F3DC2F967B184669532922563AD5A71769BABDC4370D065E ] VgaSave         C:\WINDOWS\System32\drivers\vga.sys
19:36:00.0171 0x0ba8  VgaSave - ok
19:36:00.0187 0x0ba8  ViaIde - ok
19:36:00.0250 0x0ba8  [ A5A712F4E880874A477AF790B5186E1D, FE885ED04C3EAFC379787F836738A2769E43D07CF52DD917D90C38E001957A5E ] VolSnap         C:\WINDOWS\system32\drivers\VolSnap.sys
19:36:00.0562 0x0ba8  VolSnap - ok
19:36:00.0640 0x0ba8  [ 68F106273BE29E7B7EF8266977268E78, 1488AB7A654EBC94C73E1D494067189ACB95BC233980110CAC4C0297CDC4115A ] VSS             C:\WINDOWS\System32\vssvc.exe
19:36:00.0796 0x0ba8  VSS - ok
19:36:00.0859 0x0ba8  [ 7B353059E665F8B7AD2BBEAEF597CF45, 84A4311F18A4B8DCB364741DEA7D18E2363F19564B2EF25214965DC729527068 ] W32Time         C:\WINDOWS\system32\w32time.dll
19:36:01.0125 0x0ba8  W32Time - ok
19:36:01.0187 0x0ba8  [ E20B95BAEDB550F32DD489265C1DA1F6, 5589B2067E6C9FBA290D8C5EADDC198EBAF39C50C3CD7D2BC5CDA7CBFBC445E5 ] Wanarp          C:\WINDOWS\system32\DRIVERS\wanarp.sys
19:36:01.0406 0x0ba8  Wanarp - ok
19:36:01.0500 0x0ba8  [ D6EFAF429FD30C5DF613D220E344CCE7, 807D4563E8AD4073688691078EB13AF240E14BA5E0C8506A48B3060A20B90082 ] WDC_SAM         C:\WINDOWS\system32\DRIVERS\wdcsam.sys
19:36:01.0593 0x0ba8  WDC_SAM - ok
19:36:01.0687 0x0ba8  [ D918617B46457B9AC28027722E30F647, 407284D3055DC11944D4EE7E4357E7CF9CAF8CA40CA50633AB6FD4A82CB7EEA6 ] Wdf01000        C:\WINDOWS\system32\Drivers\wdf01000.sys
19:36:01.0796 0x0ba8  Wdf01000 - ok
19:36:01.0812 0x0ba8  WDICA - ok
19:36:01.0875 0x0ba8  [ 6768ACF64B18196494413695F0C3A00F, 3A8F8586F1D997D19A8478345338D2AECD785AEABDB61531DD3F92003D3230A5 ] wdmaud          C:\WINDOWS\system32\drivers\wdmaud.sys
19:36:02.0156 0x0ba8  wdmaud - ok
19:36:02.0234 0x0ba8  [ 81727C9873E3905A2FFC1EBD07265002, 6AC2383A1DCBB7FA3DB90FBB874C8E1819F5B7492717FF41E303EFC7BF72F93E ] WebClient       C:\WINDOWS\System32\webclnt.dll
19:36:02.0484 0x0ba8  WebClient - ok
19:36:02.0609 0x0ba8  [ 6F3F3973D97714CC5F906A19FE883729, 7817118BE94D0F6FAE0F9CE48AD70FFE0AEF886CCE09C666768FAB61047F992F ] winmgmt         C:\WINDOWS\system32\wbem\WMIsvc.dll
19:36:02.0843 0x0ba8  winmgmt - ok
19:36:02.0937 0x0ba8  [ C51B4A5C05A5475708E3C81C7765B71D, F776D2680BD3407307B7072626F78460361FC5BC38623C9E16F394D300AB25DE ] WmdmPmSN        C:\WINDOWS\system32\MsPMSNSv.dll
19:36:03.0031 0x0ba8  WmdmPmSN - ok
19:36:03.0062 0x0ba8  [ C42584FD66CE9E17403AEBCA199F7BDB, E3F2E1066F36AE5D33D4482239B2E556BE0C137923C9A120DFB36EC82F2E77B0 ] WmiAcpi         C:\WINDOWS\system32\DRIVERS\wmiacpi.sys
19:36:03.0312 0x0ba8  WmiAcpi - ok
19:36:03.0421 0x0ba8  [ 93908111BA57A6E60EC2FA2DE202105C, F395F25F18D15C6B9FEDB45FD31E10295FFE5517E2BC86ACAC11904EA0664BE2 ] WmiApSrv        C:\WINDOWS\system32\wbem\wmiapsrv.exe
19:36:03.0671 0x0ba8  WmiApSrv - ok
19:36:03.0812 0x0ba8  [ BF05650BB7DF5E9EBDD25974E22403BB, AF173D89B768CFC7AB03DFADD4F049CAC40AC59A0C9208AF5AB92CB368983077 ] WMPNetworkSvc   C:\Programme\Windows Media Player\WMPNetwk.exe
19:36:04.0015 0x0ba8  WMPNetworkSvc - ok
19:36:04.0031 0x0ba8  [ CF4DEF1BF66F06964DC0D91844239104, CC1D9CECE2056D29A9651D51BB57C3F4F9BF9E90A4808CF7496C683C874FBD51 ] WpdUsb          C:\WINDOWS\system32\DRIVERS\wpdusb.sys
19:36:04.0093 0x0ba8  WpdUsb - ok
19:36:04.0281 0x0ba8  [ 15673BD0B86150CB8E27766059C72A9B, 56C23289A8BFF4945EE532CF6D62D3EC81B827CA15A359F30A327789F9FE9CAF ] WPFFontCache_v0400 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
19:36:04.0468 0x0ba8  WPFFontCache_v0400 - ok
19:36:04.0531 0x0ba8  [ 6ABE6E225ADB5A751622A9CC3BC19CE8, 4061C5D0F051DFF1730E2A3BFC1CCA97B29602FC50F10F6B44D93B0D28F42024 ] WS2IFSL         C:\WINDOWS\System32\drivers\ws2ifsl.sys
19:36:04.0921 0x0ba8  WS2IFSL - ok
19:36:04.0968 0x0ba8  [ 300B3E84FAF1A5C1F791C159BA28035D, 0194856BDF94C1F274AF70AD558290ACDACDDEA331BD66FEB8E167ABD1E36786 ] wscsvc          C:\WINDOWS\system32\wscsvc.dll
19:36:05.0218 0x0ba8  wscsvc - ok
19:36:05.0265 0x0ba8  [ C98B39829C2BBD34E454150633C62C78, 71B60EA3AD0E2637917D528C6A9E7ECF2949E3E5E91036AA5BBADA95BD725511 ] WSTCODEC        C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
19:36:05.0500 0x0ba8  WSTCODEC - ok
19:36:05.0546 0x0ba8  [ 7B4FE05202AA6BF9F4DFD0E6A0D8A085, A1DB8909FA73337DB613D01824945485186654364A4DF129B8CB913CF87D1D2E ] wuauserv        C:\WINDOWS\system32\wuauserv.dll
19:36:05.0765 0x0ba8  wuauserv - ok
19:36:05.0875 0x0ba8  [ EAA6324F51214D2F6718977EC9CE0DEF, B9DE1521395E09233FE519873702979C3EAF65FEC4B94B12A46CECB16C488543 ] WudfPf          C:\WINDOWS\system32\DRIVERS\WudfPf.sys
19:36:06.0000 0x0ba8  WudfPf - ok
19:36:06.0031 0x0ba8  [ F91FF1E51FCA30B3C3981DB7D5924252, D7052B58F22638CA8B59C6FD7408D6D6DD1C33910912CACC05C133472CE0DDCE ] WudfRd          C:\WINDOWS\system32\DRIVERS\wudfrd.sys
19:36:06.0109 0x0ba8  WudfRd - ok
19:36:06.0140 0x0ba8  [ DDEE3682FE97037C45F4D7AB467CB8B6, D5A8F07AF4EDD9D7E17FEC6222D187E2981C177A479511E407756E0E5CB8D387 ] WudfSvc         C:\WINDOWS\System32\WUDFSvc.dll
19:36:06.0203 0x0ba8  WudfSvc - ok
19:36:06.0296 0x0ba8  [ C4F109C005F6725162D2D12CA751E4A7, AC996B44338328BDD4442FE48406F286A64526F0EC77BE00A19FA7FDB0407CFE ] WZCSVC          C:\WINDOWS\System32\wzcsvc.dll
19:36:06.0718 0x0ba8  WZCSVC - ok
19:36:06.0765 0x0ba8  [ 0ADA34871A2E1CD2CAAFED1237A47750, 45BEF8649078BD74C1A347B5F2D3A1958E5A7DCD6C6BA8A2E0CAD277A929C64E ] xmlprov         C:\WINDOWS\System32\xmlprov.dll
19:36:07.0000 0x0ba8  xmlprov - ok
19:36:07.0046 0x0ba8  ================ Scan global ===============================
19:36:07.0140 0x0ba8  [ 2C60091CA5F67C3032EAB3B30390C27F, 9E205C8E67F4B61FCFA2A82AA1968D522C3B6410D7075BE813F7F1564D61632E ] C:\WINDOWS\system32\basesrv.dll
19:36:07.0234 0x0ba8  [ E62178BC21EAC63A3B9A2DBD46C1B505, CAA5480CC4DAA37758F0CF445F865FD6F4630080B044EF2E606C2F62DAA4061A ] C:\WINDOWS\system32\winsrv.dll
19:36:07.0328 0x0ba8  [ E62178BC21EAC63A3B9A2DBD46C1B505, CAA5480CC4DAA37758F0CF445F865FD6F4630080B044EF2E606C2F62DAA4061A ] C:\WINDOWS\system32\winsrv.dll
19:36:07.0375 0x0ba8  [ A3EDBE9053889FB24AB22492472B39DC, 6F2ED6E04BDE2FCA2A8BF9BD2D1D6923DE6EAECB46F582B6C0BD1CF364D65C9E ] C:\WINDOWS\system32\services.exe
19:36:07.0375 0x0ba8  [ Global ] - ok
19:36:07.0390 0x0ba8  ================ Scan MBR ==================================
19:36:07.0421 0x0ba8  [ 69035F21489D7C5312386870E4AEF5AE ] \Device\Harddisk0\DR0
19:36:08.0343 0x0ba8  \Device\Harddisk0\DR0 - ok
19:36:08.0343 0x0ba8  ================ Scan VBR ==================================
19:36:08.0359 0x0ba8  [ 605BC8AB08DB6AEBD9A626F06F3ACDD3 ] \Device\Harddisk0\DR0\Partition1
19:36:08.0375 0x0ba8  \Device\Harddisk0\DR0\Partition1 - ok
19:36:08.0375 0x0ba8  ================ Scan generic autorun ======================
19:36:09.0828 0x0ba8  [ 88A5D104AB29EC5BF3C74F608A6C2335, B3A641B1A6F9E7E2E333FDC586549C4E7096556996D86A69CFFA825BD8EB52E9 ] C:\WINDOWS\RTHDCPL.EXE
19:36:12.0937 0x0ba8  RTHDCPL - ok
19:36:13.0156 0x0ba8  [ 61C23465F195FDF5AE5FE342E1692AC7, BD3628DCBB6AED97031D70BCA9BA8F7C8F0BCBD19EF93C2F126B14226C20BB6B ] C:\Programme\Synaptics\SynTP\SynTPEnh.exe
19:36:13.0312 0x0ba8  SynTPEnh - ok
19:36:13.0500 0x0ba8  [ 3E23D1F7E91627DBD44AC82077E2BA7C, 09235370B85EF5FEA24F1291B9ADAD805C8D7357A78EF8CE3BA0E913F59145EC ] C:\Programme\Avira\AntiVir Desktop\avgnt.exe
19:36:13.0593 0x0ba8  avgnt - ok
19:36:14.0234 0x0ba8  [ 30A0B072E647757CEDDA9E306D410410, 9B16173C973F6B494F35DBA3AD339C3964CD8B066F9D59E5BC9DCF27B526A1F1 ] C:\Programme\COMODO\COMODO Internet Security\cfp.exe
19:36:14.0843 0x0ba8  COMODO Internet Security - ok
19:36:14.0921 0x0ba8  [ 01B4E6E990B6C5EA8856D96C7FD044B2, 2266296FD3C8E0DFA657F21406EE4E494477870DFAF7C65BEBCB6FBA8CADC7C6 ] C:\WINDOWS\system32\ctfmon.exe
19:36:15.0125 0x0ba8  ctfmon.exe - ok
19:36:15.0140 0x0ba8  [ 01B4E6E990B6C5EA8856D96C7FD044B2, 2266296FD3C8E0DFA657F21406EE4E494477870DFAF7C65BEBCB6FBA8CADC7C6 ] C:\WINDOWS\system32\ctfmon.exe
19:36:15.0359 0x0ba8  CTFMON.EXE - ok
19:36:15.0359 0x0ba8  BullGuard - ok
19:36:15.0468 0x0ba8  [ 43D083268A0919F3527A2837390BAF63, 58B62697B01B8C9396271A64424178691FA85D4625DAF2AC8DE7F06A64F64C2A ] C:\Programme\Gemeinsame Dateien\InstallShield\UpdateService\ISUSPM.exe
19:36:15.0562 0x0ba8  ISUSPM - ok
19:36:15.0718 0x0ba8  AV detected via SS1: Avira Antivirus, 15.0.9.460, enabled, updated
19:36:15.0718 0x0ba8  FW detected via SS1: COMODO Firewall, 3.9, enabled
19:36:15.0718 0x0ba8  ============================================================
19:36:15.0718 0x0ba8  Scan finished
19:36:15.0718 0x0ba8  ============================================================
19:36:15.0750 0x0b9c  Detected object count: 0
19:36:15.0750 0x0b9c  Actual detected object count: 0

sorry übrigens für die lange antwortlatenz aber hatte die Fehlermeldung beim posten bzgl zu viele Zeichen übersehen

schrauber · 13.05.2015, 19:12

Also wenn Du jetzt aktuell nochmal scannst kommt der Fund wieder?

Scan mit Farbar's Recovery Scan Tool (Recovery Mode - Windows Vista, 7, 8)

Hinweise für Windows 8-Nutzer: Anleitung 1 (FRST-Variante) und Anleitung 2 (zweiter Teil)

Downloade dir bitte die passende Version des Tools (im Zweifel beide) und speichere diese auf einen USB Stick: FRST 32-Bit | FRST 64-Bit

Schließe den USB Stick an das infizierte System an und boote das System in die System Reparatur Option.

Scanne jetzt nach der bebilderten Anleitung oder verwende die folgende Kurzanleitung:

Über den Boot Manager:

Starte den Rechner neu.

Während dem Hochfahren drücke mehrmals die F8 Taste

Wähle nun Computer reparieren.

Wähle dein Betriebssystem und Benutzerkonto und klicke jeweils "Weiter".

Mit Windows CD/DVD (auch bei Windows 8 möglich):

Lege die Windows CD in dein Laufwerk.

Starte den Rechner neu und starte von der CD.

Wähle die Spracheinstellungen und klicke "Weiter".

Klicke auf Computerreparaturoptionen !

Wähle dein Betriebssystem und Benutzerkonto und klicke jeweils "Weiter".

Wähle in den Reparaturoptionen: Eingabeaufforderung

Gib nun bitte notepad ein und drücke Enter.

Im öffnenden Textdokument: Datei > Speichern unter... und wähle Computer.
Hier wird dir der Laufwerksbuchstabe deines USB Sticks angezeigt, merke ihn dir.

Schließe Notepad wieder

Gib nun bitte folgenden Befehl ein.
e:\frst.exe bzw. e:\frst64.exe
Hinweis: e steht für den Laufwerksbuchstaben deines USB Sticks, den du dir gemerkt hast. Gegebenfalls anpassen.

Akzeptiere den Disclaimer mit Ja und klicke Untersuchen

Das Tool erstellt eine FRST.txt auf deinem USB Stick. Poste den Inhalt bitte hier nach Möglichkeit in Code-Tags (Anleitung).

Eisbaer27 · 19.05.2015, 17:24

wie geh ich denn vor wenn ich noch xp habe?

nach dem letzten Scan mit tdss kommt kein Fehler mehr.

lg

03.05.2015, 13:56	#6
schrauber /// the machine /// TB-Ausbilder	Avira Echtzeit-Scanner: Zugriff auf Registry wurde blockiert - die Zweite - Copy to Quarantine, dann nochmal einen frischen Scan mit TDSSKiller machen. __________________ --> Avira Echtzeit-Scanner: Zugriff auf Registry wurde blockiert - die Zweite -

04.05.2015, 11:43	#8
schrauber /// the machine /// TB-Ausbilder	Avira Echtzeit-Scanner: Zugriff auf Registry wurde blockiert - die Zweite - Dann bitte Delete wählen. __________________ gruß, schrauber *Proud Member of UNITE and ASAP since 2009* Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM!

06.05.2015, 07:50	#10
schrauber /// the machine /// TB-Ausbilder	Avira Echtzeit-Scanner: Zugriff auf Registry wurde blockiert - die Zweite - Kannst Du auch mal bitte das Log vom Delete posten? Damit ich sehe was da schief läuft. __________________ gruß, schrauber *Proud Member of UNITE and ASAP since 2009* Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM!

Avira Echtzeit-Scanner: Zugriff auf Registry wurde blockiert - die Zweite -

Plagegeister aller Art und deren Bekämpfung: Avira Echtzeit-Scanner: Zugriff auf Registry wurde blockiert - die Zweite -