|
DHL Anhang geöffnet Hallo Leutz, ich bin vor einigen Tagen leider wohl in die Phishingfalle getappt. ich habe eine Mail von DHL mit einer Sendungsverfolgung angetippt. Da ich gerade ein Paket erwarte, hat das natürlich super gepasst. Nebenher telefoniert und die zip geöffnet. Mein WinRaR hat gemeckert und die Datei wurde nicht entpackt ??? Ich habe sofort Mailware, CCleaner und Antivir durchgejagt und keine Fehlermeldungen bekommen. Allerdings stimmt etwas mit meinem Rechner nicht. Meine Netzwerkfestplatte (Netgear STORA) ist vorgestern abgeschmiert. Jetzt funzt Outlook nicht mehr. Da können natürlich Alles Zufälle sein, aber ich weiß auch nicht. Kann mir bitte mal wieder jemand helfen? Danke im Voraus und Grüße |
hi, Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:  FRST 32-Bit | FRST 64-Bit(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
|
FRST.txt FRST Logfile: FRST Logfile: Code: Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 10-03-2015--- --- --- Addition.txtFRST Additions Logfile: Code: Additional scan result of Farbar Recovery Scan Tool (x86) Version: 10-03-2015 |
Windows XP?? :wtf: Downloade dir bitte  Malwarebytes Anti-Rootkit und speichere es auf deinem Desktop.
Starte keine andere Datei in diesem Ordner ohne Anweisung eines Helfers Downloade dir bitte  TDSSKiller.exe und speichere diese Datei auf dem Desktop
|
Zitat:
www.malwarebytes.org Database version: main: v2014.11.18.05 rootkit: v2014.11.12.01 Windows XP Service Pack 3 x86 NTFS Internet Explorer 6.0.2900.5512 Administrator :: ESF-PROJEKTENTW [administrator] 12.03.2015 08:19:26 mbar-log-2015-03-12 (08-19-26).txt Scan type: Quick scan Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken Scan options disabled: Objects scanned: 305274 Time elapsed: 29 minute(s), 28 second(s) Memory Processes Detected: 0 (No malicious items detected) Memory Modules Detected: 0 (No malicious items detected) Registry Keys Detected: 0 (No malicious items detected) Registry Values Detected: 0 (No malicious items detected) Registry Data Items Detected: 0 (No malicious items detected) Folders Detected: 0 (No malicious items detected) Files Detected: 0 (No malicious items detected) Physical Sectors Detected: 0 (No malicious items detected) (end) 08:53:57.0437 0x0834 TDSS rootkit removing tool 3.0.0.44 Jan 22 2015 08:27:04 08:54:00.0734 0x0834 ============================================================ 08:54:00.0734 0x0834 Current date / time: 2015/03/12 08:54:00.0734 08:54:00.0734 0x0834 SystemInfo: 08:54:00.0734 0x0834 08:54:00.0734 0x0834 OS Version: 5.1.2600 ServicePack: 3.0 08:54:00.0734 0x0834 Product type: Workstation 08:54:00.0734 0x0834 ComputerName: ESF-PROJEKTENTW 08:54:00.0734 0x0834 UserName: Administrator 08:54:00.0734 0x0834 Windows directory: C:\WINDOWS 08:54:00.0734 0x0834 System windows directory: C:\WINDOWS 08:54:00.0734 0x0834 Processor architecture: Intel x86 08:54:00.0734 0x0834 Number of processors: 4 08:54:00.0734 0x0834 Page size: 0x1000 08:54:00.0734 0x0834 Boot type: Normal boot 08:54:00.0734 0x0834 ============================================================ 08:54:01.0125 0x0834 KLMD registered as C:\WINDOWS\system32\drivers\39164082.sys 08:54:01.0796 0x0834 System UUID: {A17FDAF9-ED3B-5C77-2AA7-7482C6287665} 08:54:03.0015 0x0834 Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 ( 232.89 Gb ), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050 08:54:03.0015 0x0834 Drive \Device\Harddisk1\DR1 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050 08:54:03.0031 0x0834 Drive \Device\Harddisk6\DR12 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W' 08:54:05.0203 0x0834 Drive \Device\Harddisk7\DR14 - Size: 0x73A00000 ( 1.81 Gb ), SectorSize: 0x200, Cylinders: 0xEB, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W' 08:54:05.0312 0x0834 ============================================================ 08:54:05.0312 0x0834 \Device\Harddisk0\DR0: 08:54:05.0312 0x0834 MBR partitions: 08:54:05.0312 0x0834 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x1D1C4800 08:54:05.0312 0x0834 \Device\Harddisk1\DR1: 08:54:05.0312 0x0834 MBR partitions: 08:54:05.0312 0x0834 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x74705982 08:54:05.0312 0x0834 \Device\Harddisk6\DR12: 08:54:05.0312 0x0834 MBR partitions: 08:54:05.0312 0x0834 \Device\Harddisk6\DR12\Partition1: MBR, Type 0x7, StartLBA 0x40, BlocksNum 0x74705980 08:54:05.0312 0x0834 \Device\Harddisk7\DR14: 08:54:05.0328 0x0834 MBR partitions: 08:54:05.0328 0x0834 \Device\Harddisk7\DR14\Partition1: MBR, Type 0x6, StartLBA 0x5E8, BlocksNum 0x39CA18 08:54:05.0328 0x0834 ============================================================ 08:54:05.0375 0x0834 C: <-> \Device\Harddisk0\DR0\Partition1 08:54:05.0406 0x0834 D: <-> \Device\Harddisk1\DR1\Partition1 08:54:05.0437 0x0834 J: <-> \Device\Harddisk6\DR12\Partition1 08:54:05.0437 0x0834 ============================================================ 08:54:05.0437 0x0834 Initialize success 08:54:05.0437 0x0834 ============================================================ 08:55:07.0046 0x08dc ============================================================ 08:55:07.0046 0x08dc Scan started 08:55:07.0046 0x08dc Mode: Manual; 08:55:07.0046 0x08dc ============================================================ 08:55:07.0046 0x08dc KSN ping started 08:55:07.0328 0x08dc KSN ping finished: true 08:55:09.0296 0x08dc ================ Scan system memory ======================== 08:55:09.0296 0x08dc System memory - ok 08:55:09.0296 0x08dc ================ Scan services ============================= 08:55:09.0375 0x08dc Abiosdsk - ok 08:55:09.0375 0x08dc abp480n5 - ok 08:55:09.0421 0x08dc [ 0F2D66D5F08EBE2F77BB904288DCF6F0, 5969A64B6995DCAF16F9A76BD1235472F76D71DFE629B956221D2C3D73EDF98A ] ac97intc C:\WINDOWS\system32\drivers\ac97intc.sys 08:55:09.0437 0x08dc ac97intc - ok 08:55:09.0593 0x08dc [ 2E20D1A28D6B7759B0431AE6BFAE788F, 41669416086430780EA6FD6461266F0E48B68D6628613B8D512B7AD8E21EB6FE ] accoca C:\Programme\ActivIdentity\ActivClient\accoca.exe 08:55:09.0593 0x08dc accoca - ok 08:55:09.0609 0x08dc [ AC407F1A62C3A300B4F2B5A9F1D55B2C, 31F5FC61B37E22100B3A52A590295A7E827FFC581FA9960C64B9032452AAECED ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys 08:55:09.0609 0x08dc ACPI - ok 08:55:09.0640 0x08dc [ 9E1CA3160DAFB159CA14F83B1E317F75, 13B3E897B0E819BF734449416D9EC6EBCAC89538EC69BF48C068593B82D57004 ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys 08:55:09.0640 0x08dc ACPIEC - ok 08:55:09.0734 0x08dc [ F84C9DEE4698DF3C1D76801B7B1B55D7, 071A3938ED7B9E20E30E873011C8039382C7EFE90D39EC8C0F3E457B2873406E ] Adobe LM Service C:\Programme\Gemeinsame Dateien\Adobe Systems Shared\Service\Adobelmsvc.exe 08:55:09.0734 0x08dc Adobe LM Service - ok 08:55:09.0859 0x08dc [ 080255CDCB878813B481B8C348D47D8E, 75808821FBC732D0504795B8F85852E4C01D3B412989A1E597E1295CFF7B7A45 ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe 08:55:09.0859 0x08dc AdobeFlashPlayerUpdateSvc - ok 08:55:09.0875 0x08dc [ 9A11864873DA202C996558B2106B0BBC, 4C68F1DBD1541291DD0FAB78DB42B25FA051CD9F55ED869173E3219CD31500C4 ] adpu160m C:\WINDOWS\system32\DRIVERS\adpu160m.sys 08:55:09.0890 0x08dc adpu160m - ok 08:55:09.0890 0x08dc [ 0EA9B1F0C6C90A509C8603775366ADB7, 9B8AE3D9757319B1AD88A3FFF64AF7B6253D484977C8478EC8024778FE2EF74D ] adpu320 C:\WINDOWS\system32\DRIVERS\adpu320.sys 08:55:09.0890 0x08dc adpu320 - ok 08:55:09.0921 0x08dc [ 8BED39E3C35D6A489438B8141717A557, 1B5796E56B0927360CE0759641B1151828BC0A9E45620D2B2D880491F5CE33D0 ] aec C:\WINDOWS\system32\drivers\aec.sys 08:55:09.0921 0x08dc aec - ok 08:55:09.0968 0x08dc [ 2C5C22990156A1063E19AD162191DC1D, 6BB96C223E46F25669511A1EE647B0039ACCBDF7078462544E724029E4860804 ] AegisP C:\WINDOWS\system32\DRIVERS\AegisP.sys 08:55:09.0968 0x08dc AegisP - ok 08:55:10.0031 0x08dc [ 1E44BC1E83D8FD2305F8D452DB109CF9, CF5EC07E0B589FA2A4701C6CFD69E893FC3ABF274AD57AE3C13FFE49063B02C8 ] AFD C:\WINDOWS\System32\drivers\afd.sys 08:55:10.0031 0x08dc AFD - ok 08:55:10.0031 0x08dc Aha154x - ok 08:55:10.0046 0x08dc [ 19DD0FB48B0C18892F70E2E7D61A1529, 95BA1568E8E08314508CA0E1F95555891E70399AEC312C793B46A841F56FFDCF ] aic78u2 C:\WINDOWS\system32\DRIVERS\aic78u2.sys 08:55:10.0046 0x08dc aic78u2 - ok 08:55:10.0046 0x08dc [ B7FE594A7468AA0132DEB03FB8E34326, BF0DC2B8C474DB151589BA9968264413521DDD9E7316B752B2FA40C24200FBE0 ] aic78xx C:\WINDOWS\system32\DRIVERS\aic78xx.sys 08:55:10.0046 0x08dc aic78xx - ok 08:55:10.0109 0x08dc [ 738D80CC01D7BC7584BE917B7F544394, DCC17AAEF5CDDF52FAAC3CC6904EF421CD595F66318A2370BEE261D5C3A8E340 ] Alerter C:\WINDOWS\system32\alrsvc.dll 08:55:10.0109 0x08dc Alerter - ok 08:55:10.0171 0x08dc [ 190CD73D4984F94D823F9444980513E5, 93A32C2495CCA094F768BA707C74DA5C00B8A88A9236DD1A297439A7C2E6C6FA ] ALG C:\WINDOWS\System32\alg.exe 08:55:10.0171 0x08dc ALG - ok 08:55:10.0171 0x08dc AliIde - ok 08:55:10.0171 0x08dc amsint - ok 08:55:10.0281 0x08dc [ 963F57EDF1A5C72AC66173F3B7CB329B, 0934361B0A55F4C082D70F264FAB5D36BAC482C135275AE552D442E64B3D5C1D ] AntiVirSchedulerService C:\Programme\Avira\AntiVir Desktop\sched.exe 08:55:10.0312 0x08dc AntiVirSchedulerService - ok 08:55:10.0328 0x08dc [ 963F57EDF1A5C72AC66173F3B7CB329B, 0934361B0A55F4C082D70F264FAB5D36BAC482C135275AE552D442E64B3D5C1D ] AntiVirService C:\Programme\Avira\AntiVir Desktop\avguard.exe 08:55:10.0343 0x08dc AntiVirService - ok 08:55:10.0406 0x08dc [ 42C4D3A50A7CCAF716002DD594EEA8B1, 7F61EAE058E89F3039F47EB1B171F0C5D694927BEDCB54093C463A4D6665EDC5 ] AntiVirWebService C:\Programme\Avira\AntiVir Desktop\AVWEBGRD.EXE 08:55:10.0437 0x08dc AntiVirWebService - ok 08:55:10.0500 0x08dc [ D45960BE52C3C610D361977057F98C54, 9186589B502F46B47672CFB8EBD558D51B0F3CBFE4E0DDBA625A4265236518CE ] AppMgmt C:\WINDOWS\System32\appmgmts.dll 08:55:10.0500 0x08dc AppMgmt - ok 08:55:10.0593 0x08dc [ 094F4DFC4D48CCD2BB2607DEFD257C9C, 21916D4CE15288DA958B02D68F1CD54B30F6FEBA103B450854042416E9569179 ] ASBroker C:\Programme\Hewlett-Packard\IAM\Bin\ASWLNPkg.dll 08:55:10.0609 0x08dc ASBroker - ok 08:55:10.0609 0x08dc asc - ok 08:55:10.0609 0x08dc asc3350p - ok 08:55:10.0625 0x08dc asc3550 - ok 08:55:10.0640 0x08dc [ 5B99FE3C339D7B7C61C627939BBF466A, F003846DDBF8B108DD62AC39AACA07915F2F4E086C94061CDB5D6F492EE0CF10 ] ASChannel C:\Programme\Hewlett-Packard\IAM\Bin\AsChnl.dll 08:55:10.0640 0x08dc ASChannel - ok 08:55:10.0656 0x08dc ASPI32 - ok 08:55:10.0796 0x08dc [ 0E5E4957549056E2BF2C49F4F6B601AD, F7F19FDC906B719A3516D30A9B4A2262C8CC5B36B94E3D4195C345EC4610FF2B ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe 08:55:10.0812 0x08dc aspnet_state - ok 08:55:10.0843 0x08dc [ B153AFFAC761E7F5FCFA822B9C4E97BC, 7E60F572A6B3C6219E3C86225AA37243AFFD74337DB7F108B04778042E5CC959 ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys 08:55:10.0843 0x08dc AsyncMac - ok 08:55:10.0875 0x08dc [ 9F3A2F5AA6875C72BF062C712CFA2674, B4DF1D2C56A593C6B54DE57395E3B51D288F547842893B32B0F59228A0CF70B9 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys 08:55:10.0875 0x08dc atapi - ok 08:55:10.0875 0x08dc Atdisk - ok 08:55:10.0968 0x08dc [ 38C7D3DA2AFC6FEA137BA5708D1B6FC1, 1B69D25CAD8FCDBCE27D79AF50C2FD6A984F3C58680C4140C2D37979DBB7FF06 ] Ati HotKey Poller C:\WINDOWS\system32\Ati2evxx.exe 08:55:10.0984 0x08dc Ati HotKey Poller - ok 08:55:11.0015 0x08dc [ 474623F2E0BDA43BE1E8C80BF373F65A, D51A294492962D7F40F16575A3107859076AFE72C2946C9DE400FE2AB4C1DD88 ] ATI Smart C:\WINDOWS\system32\ati2sgag.exe 08:55:11.0046 0x08dc ATI Smart - ok 08:55:11.0187 0x08dc [ 02B985FC4D5BA17E528F7C9F889F7D22, CC38521EEDE85DE3C7078D1A5F267415DE3B18C959B69118D3FA7F84A9ACB912 ] ati2mtag C:\WINDOWS\system32\DRIVERS\ati2mtag.sys 08:55:11.0328 0x08dc ati2mtag - ok 08:55:11.0343 0x08dc [ F661F01E990B84C58519C1FF43C2108F, 8E35CDD3664D80C606E494B01CBED21C47BB4F1E192AF1F9D8D1C3A518554748 ] AtiHdmiService C:\WINDOWS\system32\drivers\AtiHdmi.sys 08:55:11.0343 0x08dc AtiHdmiService - ok 08:55:11.0359 0x08dc [ 9916C1225104BA14794209CFA8012159, 5D6F05F715C52A16D05CAE15C3DFE77A139A7F27F7AE710EC9A10F9EE05115A1 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys 08:55:11.0359 0x08dc Atmarpc - ok 08:55:11.0453 0x08dc [ 96B2E3CB4F0E2D54E4D00FE43725F66F, 830112B0BABF992E4AE22C3E5C7631F385BCB485597C1CD565318FE848E8F9B7 ] ATService C:\Programme\Fingerprint Sensor\AtService.exe 08:55:11.0484 0x08dc ATService - ok 08:55:11.0531 0x08dc [ 58ED0D5452DF7BE732193E7999C6B9A4, 254E2ECF592DDA2E3E6CA9F6F3E77926E2265586A7937BA95199ED47BCDE69A3 ] AudioSrv C:\WINDOWS\System32\audiosrv.dll 08:55:11.0531 0x08dc AudioSrv - ok 08:55:11.0578 0x08dc [ D9F724AA26C010A217C97606B160ED68, 329B5118F2409731D06FDAE85B6ADD64A048292801BCB3546651CEB303111695 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys 08:55:11.0578 0x08dc audstub - ok 08:55:11.0640 0x08dc [ 32A5DEFDDC3562BF89D73586F5915B34, 69C501A39EEBB7FD3BAB0F21184288E585750643A0B7D15CB4CC1FCAA0B6ADC5 ] Autodesk Licensing Service C:\Programme\Gemeinsame Dateien\Autodesk Shared\Service\AdskScSrv.exe 08:55:11.0640 0x08dc Autodesk Licensing Service - ok 08:55:11.0671 0x08dc [ AF5DA81B19AFA730F1E5246AD81D140A, 532951071F56896A3B5D47874C14D996C8620EA02F87D4BA21B083EC804FB166 ] avgntflt C:\WINDOWS\system32\DRIVERS\avgntflt.sys 08:55:11.0687 0x08dc avgntflt - ok 08:55:11.0703 0x08dc [ A5674637BCA212D9FE136ADFA04C9857, 95F3632EBB041C539816D285EBE1F379D46A4187379C69D4683D9F4DECBDB80C ] avipbb C:\WINDOWS\system32\DRIVERS\avipbb.sys 08:55:11.0703 0x08dc avipbb - ok 08:55:11.0796 0x08dc [ ABDAEBEB09E98D13D765A0C57F3FAF88, F9E5F9A13E983BEAF32FA53736FB188280AAA44740696DFB95B8C10E8FEA466D ] Avira.OE.ServiceHost C:\Programme\Avira\My Avira\Avira.OE.ServiceHost.exe 08:55:11.0796 0x08dc Avira.OE.ServiceHost - ok 08:55:11.0812 0x08dc [ D8C712305F73CD34D1B344810E522728, 49A474FF6CA44E8427D7A8290B47395125B0148AF384CF2B3B1FA495A4718CBA ] avkmgr C:\WINDOWS\system32\DRIVERS\avkmgr.sys 08:55:11.0812 0x08dc avkmgr - ok 08:55:11.0859 0x08dc [ F62B70D3209E38A6C19A03109A25B903, AAE1F82810A43FFADC74BC0A61F0BD721374D0DC4B3B34C218C015F7FB7EEDB7 ] AWINDIS5 C:\WINDOWS\system32\AWINDIS5.SYS 08:55:11.0875 0x08dc AWINDIS5 - ok 08:55:11.0906 0x08dc [ 85FB2A9069A3CDEF3A591606844D0036, 856E5DEAB287968F4AAF8D87FBF24E6F7B631D51ECB9CD108E4FFAD445125521 ] BCM43XX C:\WINDOWS\system32\DRIVERS\wn311b.sys 08:55:11.0953 0x08dc BCM43XX - ok 08:55:12.0000 0x08dc [ DA1F27D85E0D1525F6621372E7B685E9, 5A81A46A3BDD19DAFC6C87D277267A5D44F3A1B5302F2CC1111D84B7BAD5610D ] Beep C:\WINDOWS\system32\drivers\Beep.sys 08:55:12.0000 0x08dc Beep - ok 08:55:12.0062 0x08dc [ D6F603772A789BB3228F310D650B8BD1, A539025C70FD998A9B8703DE05CAE5E99BC721D8852EA561EBC2DD20CB371D2E ] BITS C:\WINDOWS\system32\qmgr.dll 08:55:12.0093 0x08dc BITS - ok 08:55:12.0125 0x08dc [ B71549F23736ADF83A571061C47777FD, A1D0320736EE777030A543DCA086367EB5A5B6F95088B9C22D8E09326C3A39A9 ] Browser C:\WINDOWS\System32\browser.dll 08:55:12.0125 0x08dc Browser - ok 08:55:12.0203 0x08dc [ DB109DA005B6FE2A350C5DD7CA768DFD, 241A0BFAEFB1B165C00EE75E8CA382B5935F5DF447DAD5AE9022B2B78317668E ] BrYNSvc C:\Programme\Browny02\BrYNSvc.exe 08:55:12.0203 0x08dc BrYNSvc - ok 08:55:12.0234 0x08dc catchme - ok 08:55:12.0250 0x08dc [ 90A673FC8E12A79AFBED2576F6A7AAF9, BDE7858A3457DB979FEDD8577FA6321BF72848E4A7BF9F173C78A6A10CBB3EBE ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys 08:55:12.0250 0x08dc cbidf2k - ok 08:55:12.0250 0x08dc cd20xrnt - ok 08:55:12.0250 0x08dc Cdaprvcxrc - ok 08:55:12.0281 0x08dc [ C1B486A7658353D33A10CC15211A873B, AA4DD9E7AAE5AAB1146B360B17001F975D2F29A1281CF7B13E7136480410F347 ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys 08:55:12.0281 0x08dc Cdaudio - ok 08:55:12.0328 0x08dc [ C885B02847F5D2FD45A24E219ED93B32, B26B2F8E3A831E2B65EB0C5195B0645CD50E22615CE79C9B0B391CD563B121DB ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys 08:55:12.0343 0x08dc Cdfs - ok 08:55:12.0343 0x08dc [ 1F4260CC5B42272D71F79E570A27A4FE, B51C2A3ED3C309953D0EA45869C8E464C10F2533DADE9E0286AF674979098D1D ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys 08:55:12.0343 0x08dc Cdrom - ok 08:55:12.0343 0x08dc Changer - ok 08:55:12.0359 0x08dc [ 28E3040D1F1CA2008CD6B29DFEBC9A5E, ACB458E8A11AA2143734A5A0281973D95158E6402A6453F98F9832D1E19B01F9 ] CiSvc C:\WINDOWS\system32\cisvc.exe 08:55:12.0359 0x08dc CiSvc - ok 08:55:12.0359 0x08dc [ 778A30ED3C134EB7E406AFC407E9997D, 3E6AD115AB2596EB001BC21AEADDBC75F27C42DB90C986B7AD17743CE631234E ] ClipSrv C:\WINDOWS\system32\clipsrv.exe 08:55:12.0359 0x08dc ClipSrv - ok 08:55:12.0406 0x08dc [ D87ACAED61E417BBA546CED5E7E36D9C, 14AC6034A5BC0FB2A1AFDAD42BEF4DE641556E54AD30D0C46765660A4BE55462 ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe 08:55:12.0406 0x08dc clr_optimization_v2.0.50727_32 - ok 08:55:12.0421 0x08dc CmdIde - ok 08:55:12.0421 0x08dc COMSysApp - ok 08:55:12.0421 0x08dc Cpqarray - ok 08:55:12.0437 0x08dc [ 611F824E5C703A5A899F84C5F1699E4D, 9EFA5612FE58E9974E4CC13D39D91D7B5DEA3ED66BEFBED3AAE6D2800FD8162A ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll 08:55:12.0437 0x08dc CryptSvc - ok 08:55:12.0437 0x08dc dac2w2k - ok 08:55:12.0453 0x08dc dac960nt - ok 08:55:12.0515 0x08dc [ 3127AFBF2C1ED0AB14A1BBB7AAECB85B, ECFBACE3CBF2384948EA1C445BDA3955EB4F44A9874286E6537C67DC1283E5B0 ] DcomLaunch C:\WINDOWS\system32\rpcss.dll 08:55:12.0531 0x08dc DcomLaunch - ok 08:55:12.0593 0x08dc [ C29A1C9B75BA38FA37F8C44405DEC360, 7476D8BC4380CDE56764B2034AF3741DA4ED00F315E41C9A02B5EAD04374F241 ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll 08:55:12.0593 0x08dc Dhcp - ok 08:55:12.0609 0x08dc [ 044452051F3E02E7963599FC8F4F3E25, 584BDDB074618BE76454CF90E74829CFF588B5B5FAEB793E2F7AAD26352DD689 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys 08:55:12.0609 0x08dc Disk - ok 08:55:12.0609 0x08dc dmadmin - ok 08:55:12.0671 0x08dc [ 0DCFC8395A99FECBB1EF771CEC7FE4EA, 89B0AEE5BE01B9FE4FF2989FF16DB6121721ACDFCE6D9655C0ACD321D8C308BE ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys 08:55:12.0687 0x08dc dmboot - ok 08:55:12.0734 0x08dc [ 53720AB12B48719D00E327DA470A619A, 800264866A6267C9000A85D00095D57908D059D737E5F28C9C4049B884C46228 ] dmio C:\WINDOWS\system32\drivers\dmio.sys 08:55:12.0734 0x08dc dmio - ok 08:55:12.0734 0x08dc [ E9317282A63CA4D188C0DF5E09C6AC5F, D41E002F555FE9015EF620975255F58BB79198CA1FF0E09EC950CB450FF77CF7 ] dmload C:\WINDOWS\system32\drivers\dmload.sys 08:55:12.0750 0x08dc dmload - ok 08:55:12.0750 0x08dc [ 25C83FFBBA13B554EB6D59A9B2E2EE78, 9FBD655ED3E9163AE11EC207F283E387EFBA5A23108EC790BAE4846B35E66F16 ] dmserver C:\WINDOWS\System32\dmserver.dll 08:55:12.0750 0x08dc dmserver - ok 08:55:12.0765 0x08dc [ 8A208DFCF89792A484E76C40E5F50B45, 4E40E2EB38C6254E7CAA488200E89EE7DEBBBA773890BC6A84313CC68178D54F ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys 08:55:12.0765 0x08dc DMusic - ok 08:55:12.0812 0x08dc [ 407F3227AC618FD1CA54B335B083DE07, 96B8E734648FE9A4EBA59C096C8779BD1A11A93A6303AFD438A406C8122D36C6 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll 08:55:12.0828 0x08dc Dnscache - ok 08:55:12.0859 0x08dc [ 676E36C4FF5BCEA1900F44182B9723E6, 740CF18BD40E00FEA26CF0E6340C5D18F7D0B4390055FAEEC258B3AA790C4AE9 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll 08:55:12.0859 0x08dc Dot3svc - ok 08:55:12.0875 0x08dc [ 40F3B93B4E5B0126F2F5C0A7A5E22660, 8AFFF28903037F5E36BB5352F2B236A217558FCC0146B23C787606C3F21243DB ] dpti2o C:\WINDOWS\system32\DRIVERS\dpti2o.sys 08:55:12.0875 0x08dc dpti2o - ok 08:55:12.0906 0x08dc [ 8F5FCFF8E8848AFAC920905FBD9D33C8, C8C6FB97AB0871C8C88A2201525A5CF10D5131CB6980D32692ED7A8F58399AD5 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys 08:55:12.0906 0x08dc drmkaud - ok 08:55:12.0921 0x08dc [ A6DE5342417FEC3C0AA8EFEBB899C431, ED67E3816BB8C2F676DDBED40A7D764D78086EDD411E5AD58B40A0154B48EC35 ] E100B C:\WINDOWS\system32\DRIVERS\e100b325.sys 08:55:12.0921 0x08dc E100B - ok 08:55:12.0984 0x08dc [ 90700EB149C8EE9FD8F61821E7D4B8FE, 81B4A766D56DDD4BD1FFAC1C36CC5B4A2EE2DBFBED6552433E7905AE692A331C ] e1kexpress C:\WINDOWS\system32\DRIVERS\e1k5132.sys 08:55:12.0984 0x08dc e1kexpress - ok 08:55:13.0000 0x08dc [ 4E4F2FDDAB0A0736D7671134DCCE91FB, 8E2C57D1A006856C47CBDD5765A9DD317DB205B26DA8BFC70555A506257A1CD9 ] EapHost C:\WINDOWS\System32\eapsvc.dll 08:55:13.0015 0x08dc EapHost - ok 08:55:13.0062 0x08dc [ 877C18558D70587AA7823A1A308AC96B, 6B336A62112988D855513F45153F73F8470C41A448E9B7438B4A8EC1813AABF1 ] ERSvc C:\WINDOWS\System32\ersvc.dll 08:55:13.0062 0x08dc ERSvc - ok 08:55:13.0109 0x08dc [ A3EDBE9053889FB24AB22492472B39DC, 6F2ED6E04BDE2FCA2A8BF9BD2D1D6923DE6EAECB46F582B6C0BD1CF364D65C9E ] Eventlog C:\WINDOWS\system32\services.exe 08:55:13.0109 0x08dc Eventlog - ok 08:55:13.0171 0x08dc [ AF4F6B5739D18CA7972AB53E091CBC74, A399E2CC026730D3A429727AAB48093B9F1E5DD8EB6336519C7F16182FDB3905 ] EventSystem C:\WINDOWS\system32\es.dll 08:55:13.0187 0x08dc EventSystem - ok 08:55:13.0250 0x08dc [ 38D332A6D56AF32635675F132548343E, E6909DB836AF679B4F4D62C7396D6C82769CC7ABB8C919C2AABFE934FCE268F6 ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys 08:55:13.0250 0x08dc Fastfat - ok 08:55:13.0312 0x08dc [ 2DB7D303C36DDD055215052F118E8E75, BE6E7BBE12A7A4EDF1F1C2935350603970C7426BBCA7A1A6644BB8999123AF17 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll 08:55:13.0312 0x08dc FastUserSwitchingCompatibility - ok 08:55:13.0375 0x08dc [ 08B8B302AF0D1B3B8543429BBAC8F21F, F3370FE5C4BECB16F0668E6605792EF8096FE06A79D8234E3D6E1B584F2D4E5A ] Fax C:\WINDOWS\system32\fxssvc.exe 08:55:13.0390 0x08dc Fax - ok 08:55:13.0390 0x08dc [ 92CDD60B6730B9F50F6A1A0C1F8CDC81, 8307A532AB4D05CBBCE206DC2759497708BF5AAA880BD00F0E4F281D8578A1F5 ] Fdc C:\WINDOWS\system32\DRIVERS\fdc.sys 08:55:13.0406 0x08dc Fdc - ok 08:55:13.0406 0x08dc [ B0678A548587C5F1967B0D70BACAD6C1, 7E49910212ED87313F926E4800EA8D34809C287A686CA69B82B79C1A6451F88C ] Fips C:\WINDOWS\system32\drivers\Fips.sys 08:55:13.0406 0x08dc Fips - ok 08:55:13.0468 0x08dc [ 9D27E7B80BFCDF1CDD9B555862D5E7F0, 69C271AD5BCEBFD8AE5A769BDD7EC51256DA3A8ADAD5D12E5C0D13F4E82D8805 ] Flpydisk C:\WINDOWS\system32\drivers\Flpydisk.sys 08:55:13.0468 0x08dc Flpydisk - ok 08:55:13.0531 0x08dc [ B2CF4B0786F8212CB92ED2B50C6DB6B0, 280F5CF8A90F7BEDE73ADD0DD0F8952088133A7CA9A3D3B7041957E33B36845D ] FltMgr C:\WINDOWS\system32\DRIVERS\fltMgr.sys 08:55:13.0531 0x08dc FltMgr - ok 08:55:13.0625 0x08dc [ 8BA7C024070F2B7FDD98ED8A4BA41789, 47585006F86B2C6016EC54250A416794792D1E4024FF229C120BC25B684AF66A ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe 08:55:13.0640 0x08dc FontCache3.0.0.0 - ok 08:55:13.0640 0x08dc [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A, EC635E071201A766845D48973772CBE0958942B4162F3F5F70660D114CC877E0 ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys 08:55:13.0640 0x08dc Fs_Rec - ok 08:55:13.0656 0x08dc [ 8F1955CE42E1484714B542F341647778, 8EB3F99625F409D3032561E8AB44BEFBFBFBA4EC873C2151C92A5CAAF7F2AA55 ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys 08:55:13.0656 0x08dc Ftdisk - ok 08:55:13.0718 0x08dc [ FD7E9ABA274DF75E08320420B8E9A1D5, 363F7227B4DD1C7ECEF43DD38FA66E0F843953FECAF9EAEB577F38534D1B95F6 ] getPlusHelper C:\Programme\NOS\bin\getPlus_Helper.dll 08:55:13.0718 0x08dc getPlusHelper - ok 08:55:13.0734 0x08dc [ 0A02C63C8B144BD8C86B103DEE7C86A2, 7A3235DD3E1995DD72B212FAEB3ECA2A974434DE9BF6D269EA11BA65A80E7E50 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys 08:55:13.0734 0x08dc Gpc - ok 08:55:13.0843 0x08dc [ 51508F0C2476177E50C31B0BBFBF1BDB, 3F62A05181D54711180C8727AC66D624AFA7FC816A4ACC4DC0CFCF2D2DBE7F87 ] gupdate C:\Programme\Google\Update\GoogleUpdate.exe 08:55:13.0843 0x08dc gupdate - ok 08:55:13.0859 0x08dc [ 51508F0C2476177E50C31B0BBFBF1BDB, 3F62A05181D54711180C8727AC66D624AFA7FC816A4ACC4DC0CFCF2D2DBE7F87 ] gupdatem C:\Programme\Google\Update\GoogleUpdate.exe 08:55:13.0859 0x08dc gupdatem - ok 08:55:13.0859 0x08dc [ 573C7D0A32852B48F3058CFD8026F511, BC384BBA394AFDCDA1A9ABC858C692AA84A1F0A31AF3DDF7F38D120C027927FB ] HDAudBus C:\WINDOWS\system32\DRIVERS\HDAudBus.sys 08:55:13.0875 0x08dc HDAudBus - ok 08:55:13.0906 0x08dc [ E4A123AD734A3731D29EBD3A01B3E535, 39B2B3EA68974C75007BEAA73AD95C937673A8896A1510DC5ED1F4878EF9F65E ] HECI C:\WINDOWS\system32\DRIVERS\HECI.sys 08:55:13.0906 0x08dc HECI - ok 08:55:13.0984 0x08dc [ CB66BF85BF599BEFD6C6A57C2E20357F, 55D3A0F9279FF316766F42548FCB61C452942B08A37590C4892DF110BE4E53C6 ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll 08:55:13.0984 0x08dc helpsvc - ok 08:55:14.0015 0x08dc [ B35DA85E60C0103F2E4104532DA2F12B, E13C9F73DF7713554CB614B36123D75014F5121AA1FC9069733E61758751CBE4 ] HidServ C:\WINDOWS\System32\hidserv.dll 08:55:14.0015 0x08dc HidServ - ok 08:55:14.0031 0x08dc [ CCF82C5EC8A7326C3066DE870C06DAF1, 93395FA4C26B2E82DC8B7025ED3BCF583885E5D8C5F60CD6EEAA6335D6A126EC ] HidUsb C:\WINDOWS\system32\DRIVERS\hidusb.sys 08:55:14.0031 0x08dc HidUsb - ok 08:55:14.0078 0x08dc [ ED29F14101523A6E0E808107405D452C, B8FA987637787BEECC2EB06D36293DAC355523392B49A8C5A9491EEE961917E9 ] hkmsvc C:\WINDOWS\System32\kmsvc.dll 08:55:14.0078 0x08dc hkmsvc - ok 08:55:14.0140 0x08dc [ 96A9EBF8AB73B610EF0CFA345AB6CFFE, E32B0DBF3758D783BB1BE04AC5338CF0330DA625160AEF6B69548FAC1A5980B1 ] HP ProtectTools Service C:\Programme\Hewlett-Packard\HP ProtectTools Security Manager\PTChangeFilterService.exe 08:55:14.0156 0x08dc HP ProtectTools Service - ok 08:55:14.0171 0x08dc [ 0A799AFFFCFD5F73FEFFD96AABDAD4AD, 57175A15C2219EB90871E5AF3C39D0E1FDBF940545BE447CC5248D7F6C44A33B ] HpFkCryptService C:\Programme\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe 08:55:14.0187 0x08dc HpFkCryptService - ok 08:55:14.0187 0x08dc hpn - ok 08:55:14.0203 0x08dc [ 1665C7121A026DF10C903DB9BC5E9D43, D96189406774842923BC420C4AF33FA81C83B815E14CE7C444F9CCF545971B7E ] hpqwmiex C:\Programme\Hewlett-Packard\Shared\hpqwmiex.exe 08:55:14.0218 0x08dc hpqwmiex - ok 08:55:14.0250 0x08dc [ CBD09ED9CF6822177EE85AEA4D8816A2, 369897B4609B3FE55F9A82F19E38116E2E6527E349D48A956607EDED71F664D2 ] HTCAND32 C:\WINDOWS\system32\Drivers\ANDROIDUSB.sys 08:55:14.0250 0x08dc HTCAND32 - ok 08:55:14.0312 0x08dc [ F80A415EF82CD06FFAF0D971528EAD38, 524D9E9201572929522F6805011783711B7C0F76308B924C89CF75F4B7A1FDF3 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys 08:55:14.0328 0x08dc HTTP - ok 08:55:14.0375 0x08dc [ 9E4ADB854CEBCFB81A4B36718FEECD16, 677AB64460775686F8366D6BF35D420A2486C3F07338A00A7C2788A5142B9F08 ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll 08:55:14.0375 0x08dc HTTPFilter - ok 08:55:14.0375 0x08dc i2omgmt - ok 08:55:14.0375 0x08dc i2omp - ok 08:55:14.0421 0x08dc [ E283B97CFBEB86C1D86BAED5F7846A92, 7664F791D08C80DF1E52B34BE69F073AA645610C4BD975F498254807602374AB ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys 08:55:14.0421 0x08dc i8042prt - ok 08:55:14.0453 0x08dc [ 06B7EF73BA5F302EECC294CDF7E19702, 5EF396D70D69F8E86A0FC7311E634A8360A99DDEC39054DC3018624A1497836E ] i81x C:\WINDOWS\system32\DRIVERS\i81xnt5.sys 08:55:14.0453 0x08dc i81x - ok 08:55:14.0468 0x08dc [ 7B5B44EFE5EB9DADFB8EE29700885D23, AC01EF344206A1303E03D11420CC31228C6480CF8F2A1733BE18F2E6D44D1807 ] iAimFP0 C:\WINDOWS\system32\DRIVERS\wADV01nt.sys 08:55:14.0484 0x08dc iAimFP0 - ok 08:55:14.0484 0x08dc [ EB1F6BAB6C22EDE0BA551B527475F7E9, 5680C2B124B2222371F8F1FF934723CE06EE37072C42066547173CB3050969C4 ] iAimFP1 C:\WINDOWS\system32\DRIVERS\wADV02NT.sys 08:55:14.0484 0x08dc iAimFP1 - ok 08:55:14.0484 0x08dc [ 03CE989D846C1AA81145CB22FCB86D06, 7A63EF1016B1F70BDD5EBCEB415D59CA8D40DE256DAD2511CFBD88C82C37F0D6 ] iAimFP2 C:\WINDOWS\system32\DRIVERS\wADV05NT.sys 08:55:14.0484 0x08dc iAimFP2 - ok 08:55:14.0500 0x08dc [ 525849B4469DE021D5D61B4DB9BE3A9D, 38F57D4F6A19F909764641384054216B136BEEC4A8F703A95A32583B1BA7D862 ] iAimFP3 C:\WINDOWS\system32\DRIVERS\wSiINTxx.sys 08:55:14.0500 0x08dc iAimFP3 - ok 08:55:14.0515 0x08dc [ 589C2BCDB5BD602BF7B63D210407EF8C, 97AAC0F6AA4DACA904CAE02341105AC4BCB5B9D7274EF54F5C1E19BD7EC0C066 ] iAimFP4 C:\WINDOWS\system32\DRIVERS\wVchNTxx.sys 08:55:14.0515 0x08dc iAimFP4 - ok 08:55:14.0515 0x08dc [ 0308AEF61941E4AF478FA1A0F83812F5, 56B30CAC8C2B35704BE4CF13C1C1070D47D98F9AFBFDA5CB43C474B0324BB4E3 ] iAimFP5 C:\WINDOWS\system32\DRIVERS\wADV07nt.sys 08:55:14.0515 0x08dc iAimFP5 - ok 08:55:14.0531 0x08dc [ 714038A8AA5DE08E12062202CD7EAEB5, 51F732AB16D8BD05672F829D5B1F3832013280A734A71C205559C24D178C8690 ] iAimFP6 C:\WINDOWS\system32\DRIVERS\wADV08nt.sys 08:55:14.0531 0x08dc iAimFP6 - ok 08:55:14.0531 0x08dc [ 7BB3AA595E4507A788DE1CDC63F4C8C4, 299289E81BD318D764E6941E87E2FBF715F0B8B9C5F6FE64176ADE41F3853E6E ] iAimFP7 C:\WINDOWS\system32\DRIVERS\wADV09nt.sys 08:55:14.0531 0x08dc iAimFP7 - ok 08:55:14.0531 0x08dc [ D83BDD5C059667A2F647A6BE5703A4D2, 6640B923BDF345294B4D4AAE24787CA2FA5A8F31603934747292805323E46BDD ] iAimTV0 C:\WINDOWS\system32\DRIVERS\wATV01nt.sys 08:55:14.0531 0x08dc iAimTV0 - ok 08:55:14.0546 0x08dc [ ED968D23354DAA0D7C621580C012A1F6, CE6A58D1D6DD1460625C88A491CB43136416633C4F51EC3CF5209E5FAAA03098 ] iAimTV1 C:\WINDOWS\system32\DRIVERS\wATV02NT.sys 08:55:14.0546 0x08dc iAimTV1 - ok 08:55:14.0546 0x08dc [ D738273F218A224C1DDAC04203F27A84, 94F1D11949A848E7699A2FDFEB8F9D9ABCE02DC86629C3A914DEF350EDDE426B ] iAimTV3 C:\WINDOWS\system32\DRIVERS\wATV04nt.sys 08:55:14.0546 0x08dc iAimTV3 - ok 08:55:14.0546 0x08dc [ 0052D118995CBAB152DAABE6106D1442, DF656EDFE5A59550FE2C41567CCB79484EE59DCE6703156DFDC0466F52A9B398 ] iAimTV4 C:\WINDOWS\system32\DRIVERS\wCh7xxNT.sys 08:55:14.0546 0x08dc iAimTV4 - ok 08:55:14.0562 0x08dc [ 791CC45DE6E50445BE72E8AD6401FF45, D1466D6E944C508B1AB817DFC2C81584F635A0EBF9D3E582930536BA99358E6E ] iAimTV5 C:\WINDOWS\system32\DRIVERS\wATV10nt.sys 08:55:14.0562 0x08dc iAimTV5 - ok 08:55:14.0562 0x08dc [ 352FA0E98BC461CE1CE5D41F64DB558D, B08EAED6C93AB6B872153933447051425DA77A355CCB19434CAEDF3920AD8C23 ] iAimTV6 C:\WINDOWS\system32\DRIVERS\wATV06nt.sys 08:55:14.0562 0x08dc iAimTV6 - ok 08:55:14.0609 0x08dc [ D483687EACE0C065EE772481A96E05F5, A22200E90C78DFE73FE0FBEED5331AB43CD7133651FD125595C4DB604AD71B29 ] iaStor C:\WINDOWS\system32\DRIVERS\iaStor.sys 08:55:14.0625 0x08dc iaStor - ok 08:55:14.0734 0x08dc [ C01AC32DC5C03076CFB852CB5DA5229C, A4D7749220B5BC965D96A267F1E02FE8284A230BA249109207BD4B9EA8DFAC96 ] idsvc C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe 08:55:14.0765 0x08dc idsvc - ok 08:55:14.0812 0x08dc [ 91C5E9F49F32110CED27E2F902FAD607, 9B5F1B0996FA7E92DF02214470C77046BF35F13E21CA4AEFC2019B1191248A5E ] IFXTPM C:\WINDOWS\system32\DRIVERS\IFXTPM.SYS 08:55:14.0812 0x08dc IFXTPM - ok 08:55:14.0828 0x08dc [ 083A052659F5310DD8B6A6CB05EDCF8E, 48D39B03FFB6FAA1529B774443BA12618AE3982D9F65A7B9D18F2269F78B31F4 ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys 08:55:14.0828 0x08dc Imapi - ok 08:55:14.0875 0x08dc [ D4B413AA210C21E46AEDD2BA5B68D38E, 2309622867AA8FC832A729FA78F48742D4BD6CA0DAFBFB9DDB0772D671E1ED75 ] ImapiService C:\WINDOWS\system32\imapi.exe 08:55:14.0890 0x08dc ImapiService - ok 08:55:14.0890 0x08dc ini910u - ok 08:55:14.0921 0x08dc [ 69C4E3C9E67A1F103B94E14FDD5F3213, 894ABDDBF95E3FFE59A4621AF94AFA7E6F6D780420845078622C76624C0326D2 ] IntelIde C:\WINDOWS\system32\DRIVERS\intelide.sys 08:55:14.0921 0x08dc IntelIde - ok 08:55:14.0921 0x08dc [ 4C7D2750158ED6E7AD642D97BFFAE351, C05E4799752F090DCB632F07F62ADE38D31534621064D269AD535CA0BDFED448 ] intelppm C:\WINDOWS\system32\DRIVERS\intelppm.sys 08:55:14.0921 0x08dc intelppm - ok 08:55:14.0953 0x08dc [ 3BB22519A194418D5FEC05D800A19AD0, F6662F440950596DC1382DD1DB5D7891CCEA30A6062BEA942C18445B5F0D8B16 ] Ip6Fw C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys 08:55:14.0953 0x08dc Ip6Fw - ok 08:55:14.0968 0x08dc [ 731F22BA402EE4B62748ADAF6363C182, 5C3BEBD008A5BE4DC2F92076FF41A10DDC01E10EC7E6552213CFA11970811848 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys 08:55:14.0968 0x08dc IpFilterDriver - ok 08:55:14.0968 0x08dc [ B87AB476DCF76E72010632B5550955F5, E6E74D3A86A7917A8BAED44F8E97CCD2EB171E4E4B27E9907F60D1523FAF319A ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys 08:55:14.0968 0x08dc IpInIp - ok 08:55:15.0000 0x08dc [ CC748EA12C6EFFDE940EE98098BF96BB, AF523E21C25D9A1715EFEA573E4F52AF5D4FC9F28A2D613F5DB629C186C439E0 ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys 08:55:15.0000 0x08dc IpNat - ok 08:55:15.0015 0x08dc [ 23C74D75E36E7158768DD63D92789A91, 394D296F38E7D8EFD91A6EEC301D9CE6AF910E35EB9819F1A9E3363863AEDFDC ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys 08:55:15.0015 0x08dc IPSec - ok 08:55:15.0046 0x08dc [ C93C9FF7B04D772627A3646D89F7BF89, 805FA48E7A46D4F10240BF880A2468F53DEA36E83004399228AB70DB7D20544A ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys 08:55:15.0046 0x08dc IRENUM - ok 08:55:15.0078 0x08dc [ 6DFB88F64135C525433E87648BDA30DE, 8233EEFBEF36AAA152F2C55D23D7118F0DE40C9C22EB5D9793405A4770889540 ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys 08:55:15.0078 0x08dc isapnp - ok 08:55:15.0187 0x08dc [ B9436A665A8621073A12338B16D7BFD4, 1F1CB4758768BF7B7DDB27BF9DA944D869B561ABF7EC39CEC059044E10C1EA88 ] JavaQuickStarterService C:\Programme\Java\jre7\bin\jqs.exe 08:55:15.0203 0x08dc JavaQuickStarterService - ok 08:55:15.0218 0x08dc [ 1704D8C4C8807B889E43C649B478A452, E854C90CD301F42BE2520CEDAD35E49DF2D43606CF4EEED861B74882118D04D1 ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys 08:55:15.0218 0x08dc Kbdclass - ok 08:55:15.0218 0x08dc [ B6D6C117D771C98130497265F26D1882, E79CC4EA5C088F988BA61F80764F9CAD9B78BC56A7E17DD54622C75483BC5DF4 ] kbdhid C:\WINDOWS\system32\DRIVERS\kbdhid.sys 08:55:15.0218 0x08dc kbdhid - ok 08:55:15.0281 0x08dc [ 692BCF44383D056AED41B045A323D378, 1A99DEE83FFAF64E73067FC049C0A4CE07D94E4AE31EFA17B38CEFA9E41D67DC ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys 08:55:15.0281 0x08dc kmixer - ok 08:55:15.0328 0x08dc [ B467646C54CC746128904E1654C750C1, 3BD71BE3663EA23463D236D8A2A2E42DFA10C502BDB4B6E131FAF0FBA748219E ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys 08:55:15.0343 0x08dc KSecDD - ok 08:55:15.0390 0x08dc [ 2BBDCB79900990F0716DFCB714E72DE7, 6283789201164A9254632D9A3C8A54FE697717D5F8D5A37804D924DC2B70C8E3 ] LanmanServer C:\WINDOWS\System32\srvsvc.dll 08:55:15.0390 0x08dc LanmanServer - ok 08:55:15.0437 0x08dc [ 1869B14B06B44B44AF70548E1EA3303F, 4D63B4DAF580C86F86837C7D1753E2105B4C52E26D4CA0CAAFE83755EFF7AFBE ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll 08:55:15.0453 0x08dc lanmanworkstation - ok 08:55:15.0453 0x08dc lbrtfdc - ok 08:55:15.0500 0x08dc [ 636714B7D43C8D0C80449123FD266920, F06F6C7DC49B26EFCAC3570C67BA9BD934F62C6F382DA4DD2AB302C7B970F414 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll 08:55:15.0500 0x08dc LmHosts - ok 08:55:15.0546 0x08dc [ 2C137B8C4F4076FDFFBB81E23EC99248, 55952CD3723C3E957E809C1DAD5C5A52F368AE32FBE0A1B12699E5251E74B806 ] mbamchameleon C:\WINDOWS\system32\drivers\mbamchameleon.sys 08:55:15.0546 0x08dc mbamchameleon - ok 08:55:15.0578 0x08dc [ B7550A7107281D170CE85524B1488C98, A3854B16A65436BEF6BEDE918B43B3BE8F00D303660DB5831DD376271DC43239 ] Messenger C:\WINDOWS\System32\msgsvc.dll 08:55:15.0578 0x08dc Messenger - ok 08:55:15.0671 0x08dc [ 123271BD5237AB991DC5C21FDF8835EB, 004F8F9228EE291A0E36CE33078D572D61733516F9AA5CFC832AF204C6869E89 ] Microsoft Office Groove Audit Service C:\Programme\Microsoft Office\Office12\GrooveAuditService.exe 08:55:15.0671 0x08dc Microsoft Office Groove Audit Service - ok 08:55:15.0718 0x08dc [ 4AE068242760A1FB6E1A44BF4E16AFA6, 1FB771162B96AAF787AC24867B818DF8511F0780BB094FA9A38C11D8DBFE68BC ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys 08:55:15.0718 0x08dc mnmdd - ok 08:55:15.0734 0x08dc [ C2F1D365FD96791B037EE504868065D3, 87BD87E08FD00D115524B049F1A3A719AB86557D68968E7090CD0F271F985CAF ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe 08:55:15.0734 0x08dc mnmsrvc - ok 08:55:15.0750 0x08dc [ 6FB74EBD4EC57A6F1781DE3852CC3362, 0454509D9A31E0202C08AE17294E2682F227D177A3C73B303E4C8332757AFCA1 ] Modem C:\WINDOWS\system32\drivers\Modem.sys 08:55:15.0750 0x08dc Modem - ok 08:55:15.0765 0x08dc [ B24CE8005DEAB254C0251E15CB71D802, 6804A8ABDAD5EC846E7F8077D1EE9BA45D6226ACFF42C70BE3DE7C8980EF9EC4 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys 08:55:15.0765 0x08dc Mouclass - ok 08:55:15.0781 0x08dc [ 66A6F73C74E1791464160A7065CE711A, 3C570FA1E8EF976B83759220FE95BAC9D7D48D607F91B113EDE4790D34ACBD46 ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys 08:55:15.0781 0x08dc mouhid - ok 08:55:15.0796 0x08dc [ A80B9A0BAD1B73637DBCBBA7DF72D3FD, 2A5E15ED2C24C6C65EF2F7E1FD93374774076C9D8D451E4422561F4D269C012F ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys 08:55:15.0796 0x08dc MountMgr - ok 08:55:15.0859 0x08dc [ 81E8AF6407EC3F41908FE37F054353EA, 756C7656ED68AEAE4225E952ED1CED0717264D3378DB8DF0B2D70B6EBC67C62F ] MozillaMaintenance C:\Programme\Mozilla Maintenance Service\maintenanceservice.exe 08:55:15.0859 0x08dc MozillaMaintenance - ok 08:55:15.0875 0x08dc mraid35x - ok 08:55:15.0906 0x08dc [ 11D42BB6206F33FBB3BA0288D3EF81BD, 76ABCFB62C5AC549F58C231F72A99882CDEB74928104B77FE52554765C2B1A22 ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys 08:55:15.0906 0x08dc MRxDAV - ok 08:55:15.0968 0x08dc [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0, DB9B186F7076D7B94F45041AF7B77C1AD2CAB504D683B459C6CB1C22840ED170 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys 08:55:15.0984 0x08dc MRxSmb - ok 08:55:16.0031 0x08dc [ 35A031AF38C55F92D28AA03EE9F12CC9, 97245D204C886EE8DCCC2DEAC80A0E358A7E0C1982F77389DA50DCF091FC9DDC ] MSDTC C:\WINDOWS\system32\msdtc.exe 08:55:16.0031 0x08dc MSDTC - ok 08:55:16.0093 0x08dc [ C941EA2454BA8350021D774DAF0F1027, C940E978C7B66A713A0FDAB54B5F995DF59D089AFCD96221DD3222948CD49BBD ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys 08:55:16.0093 0x08dc Msfs - ok 08:55:16.0109 0x08dc MSIServer - ok 08:55:16.0125 0x08dc [ D1575E71568F4D9E14CA56B7B0453BF1, 4ABE0E24786C0D39FA2B885447E56204CA6942FB175E534DCE675D7BCF0B176A ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys 08:55:16.0140 0x08dc MSKSSRV - ok 08:55:16.0140 0x08dc [ 325BB26842FC7CCC1FCCE2C457317F3E, C07BE560513B1FB91D756494F0BA4AEEB2E1998DE0E1C21EE83DB1183B0CEE91 ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys 08:55:16.0140 0x08dc MSPCLOCK - ok 08:55:16.0171 0x08dc [ BAD59648BA099DA4A17680B39730CB3D, 9AD4C7C94C186C8815D0BC75DCAFB962158DA6935A244BA243EDDDEB33F9816C ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys 08:55:16.0171 0x08dc MSPQM - ok 08:55:16.0203 0x08dc [ AF5F4F3F14A8EA2C26DE30F7A1E17136, AC93A1E4ABB0D038B772E429015567E44CC2EDB66C54DBE23A5F98176FAC1520 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys 08:55:16.0203 0x08dc mssmbios - ok 08:55:16.0250 0x08dc [ DE6A75F5C270E756C5508D94B6CF68F5, FCC972DDC36C2C44D836913F10004C2C33B11C54DEFFF0C63E0FDF901D2F9261 ] Mup C:\WINDOWS\system32\drivers\Mup.sys 08:55:16.0250 0x08dc Mup - ok 08:55:16.0312 0x08dc [ 46BB15AE2AC7D025D6D2567B876817BD, 102A101B96D1078C98FA0F871C801A9A8538E20E5686AB0C7680B2F6C92B3165 ] napagent C:\WINDOWS\System32\qagentrt.dll 08:55:16.0312 0x08dc napagent - ok 08:55:16.0343 0x08dc [ B5B1080D35974C0E718D64280761BCD5, C12C8FF5AE344381FAA413FC05E273B856D5D9151C2C69898C54D32B393EE1A4 ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys 08:55:16.0343 0x08dc NDIS - ok 08:55:16.0390 0x08dc [ 0109C4F3850DFBAB279542515386AE22, 4F6DB1E499AC853FD36FD603FBB6D3AC9BDCEB298C7FE1FB59A9236CB46729B2 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys 08:55:16.0390 0x08dc NdisTapi - ok 08:55:16.0406 0x08dc [ F927A4434C5028758A842943EF1A3849, B1AA3AF150C05307461774925901789456B0CCCD03A5E71ADA4AB58455962BEE ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys 08:55:16.0406 0x08dc Ndisuio - ok 08:55:16.0468 0x08dc [ B053A8411045FD0664B389A090CB2BBC, 6EC2E4C9EACB71AFF2CDA0C6DF8B635268328B8BC31D2F9754140A18BF4D5B7F ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys 08:55:16.0468 0x08dc NdisWan - ok 08:55:16.0515 0x08dc [ 2F597BB467E05B1FE3830EABD821B8E0, 141497F5A49D47CCE3C9289644F4BD838DCB238F6D8E847FC006652E21FE02AC ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys 08:55:16.0515 0x08dc NDProxy - ok 08:55:16.0593 0x08dc [ 5D81CF9A2F1A3A756B66CF684911CDF0, 7989C36607CAEA17AFA2C1C9904145CA0714A54B9F712D9D4C1AB140D0B2CC0C ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys 08:55:16.0593 0x08dc NetBIOS - ok 08:55:16.0609 0x08dc [ 74B2B2F5BEA5E9A3DC021D685551BD3D, 7932B71F98B4122BE88F576BF6D745A757AE378A48924B7F4358837B75640A82 ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys 08:55:16.0609 0x08dc NetBT - ok 08:55:16.0656 0x08dc [ 8ACE4251BFFD09CE75679FE940E996CC, 81969521B5EAEA09ECA63058BE9697BB69AF2596339CA9DF0CFEDC031DCFDC7E ] NetDDE C:\WINDOWS\system32\netdde.exe 08:55:16.0671 0x08dc NetDDE - ok 08:55:16.0671 0x08dc [ 8ACE4251BFFD09CE75679FE940E996CC, 81969521B5EAEA09ECA63058BE9697BB69AF2596339CA9DF0CFEDC031DCFDC7E ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe 08:55:16.0671 0x08dc NetDDEdsdm - ok 08:55:16.0687 0x08dc [ AFB8261B56CBA0D86AEB6DF682AF9785, 104D96F1F19DD4CE492064ACC9634406A019EAE20B42D03198E400E661897127 ] Netlogon C:\WINDOWS\system32\lsass.exe 08:55:16.0687 0x08dc Netlogon - ok 08:55:16.0703 0x08dc [ E6D88F1F6745BF00B57E7855A2AB696C, 12A5EDD853600FF5EBF91E127077745AE1E61E66DBC1D4D4306570F171AF4A39 ] Netman C:\WINDOWS\System32\netman.dll 08:55:16.0718 0x08dc Netman - ok 08:55:16.0781 0x08dc [ D34612C5D02D026535B3095D620626AE, 1BBCCCBF49EB8807240A77DCB43C25C21682073CC5356594E2C4F53EF36BF657 ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe 08:55:16.0781 0x08dc NetTcpPortSharing - ok 08:55:16.0796 0x08dc [ F1B67B6B0751AE0E6E964B02821206A3, 3D5A7593ABDEE2047C5738671C85DC8B95A4ECF58D5D7B04EEE13A689839A540 ] Nla C:\WINDOWS\System32\mswsock.dll 08:55:16.0812 0x08dc Nla - ok 08:55:16.0843 0x08dc [ F6C40E0A565EE3CE5AEEB325E10054F2, 30C8BA41B1C235ECB2C7F29CD76C8F41B8D705BE7DD44F66666C28275EA56BAC ] nmwcd C:\WINDOWS\system32\drivers\ccdcmb.sys 08:55:16.0843 0x08dc nmwcd - ok 08:55:16.0875 0x08dc [ 2A394E9E1FA3565E4B2FEA470FFE4D6B, 879BE61C4256C9B855AA269C241A0D24E9ECE3CA0F3AFFB2E11D9340C0428D31 ] nmwcdc C:\WINDOWS\system32\drivers\ccdcmbo.sys 08:55:16.0875 0x08dc nmwcdc - ok 08:55:16.0906 0x08dc [ 99B224F8026CB534724AA3C408561E45, BBBA3F6BF90674014432BA034563E0EA0E16BE150A75D410B4532C4F79B9180A ] nmwcdnsu C:\WINDOWS\system32\drivers\nmwcdnsu.sys 08:55:16.0906 0x08dc nmwcdnsu - ok 08:55:16.0921 0x08dc [ D23257682D349A5E2E4507ED33DECC16, 9884BD3191DEDE2B53F3AFBC9DC214990C04BEB4ABADA87D0EE526416A8A90DC ] nmwcdnsuc C:\WINDOWS\system32\drivers\nmwcdnsuc.sys 08:55:16.0921 0x08dc nmwcdnsuc - ok 08:55:16.0953 0x08dc [ 3182D64AE053D6FB034F44B6DEF8034A, 4ADFC76965BA2A5F488E71789A4E4EA702A74AF42725F72130D1CA919406CF19 ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys 08:55:16.0953 0x08dc Npfs - ok 08:55:16.0984 0x08dc [ 78A08DD6A8D65E697C18E1DB01C5CDCA, E0E6F3ED05068E32F1D5C2D2B38CDEF4536B8656DB6756C66CF6B40B60C8F3DA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys 08:55:17.0000 0x08dc Ntfs - ok 08:55:17.0015 0x08dc [ AFB8261B56CBA0D86AEB6DF682AF9785, 104D96F1F19DD4CE492064ACC9634406A019EAE20B42D03198E400E661897127 ] NtLmSsp C:\WINDOWS\system32\lsass.exe 08:55:17.0015 0x08dc NtLmSsp - ok 08:55:17.0062 0x08dc [ 56AF4064996FA5BAC9C449B1514B4770, 154602EFEC22728503D4ABA025DF711B0F2CFC983F5E3BF25F2A4BCD1AE250EC ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll 08:55:17.0078 0x08dc NtmsSvc - ok 08:55:17.0093 0x08dc [ 73C1E1F395918BC2C6DD67AF7591A3AD, B21133A75253EC15E2DFF66D3B480AB1A7E1A2360476C810E7AA55D0F0EB08D4 ] Null C:\WINDOWS\system32\drivers\Null.sys 08:55:17.0109 0x08dc Null - ok 08:55:17.0125 0x08dc [ B305F3FAD35083837EF46A0BBCE2FC57, 9D0E0E666D652D0FC9EAB97280A5D67AAF61D6B21929DF7CF8ED72A367720464 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys 08:55:17.0125 0x08dc NwlnkFlt - ok 08:55:17.0156 0x08dc [ C99B3415198D1AAB7227F2C88FD664B9, DD8DA4B5E804F134AB9233859544C025062902DFC3E8FB8A09A67337A4E73F55 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys 08:55:17.0156 0x08dc NwlnkFwd - ok 08:55:17.0281 0x08dc [ 785F487A64950F3CB8E9F16253BA3B7B, 02445344BD214370A6D48B1CA04921D8EFCB13E676B5648266DD0E076C0822B6 ] odserv C:\Programme\Gemeinsame Dateien\Microsoft Shared\OFFICE12\ODSERV.EXE 08:55:17.0296 0x08dc odserv - ok 08:55:17.0359 0x08dc [ 5A432A042DAE460ABE7199B758E8606C, 6E5D1F477D290905BE27CEBF9572BAC6B05FFEF2FAD901D3C8E11F665F8B9A71 ] ose C:\Programme\Gemeinsame Dateien\Microsoft Shared\Source Engine\OSE.EXE 08:55:17.0359 0x08dc ose - ok 08:55:17.0406 0x08dc [ A7AF0C0860F1C43FC6581BA8A99EABEF, 607EDC9C81C4819C5C4DCF9EE15880469A3207A8B7FCE2DDF974AA4F768A8F36 ] P3 C:\WINDOWS\system32\DRIVERS\p3.sys 08:55:17.0406 0x08dc P3 - ok 08:55:17.0406 0x08dc [ F84785660305B9B903FB3BCA8BA29837, BDBDE61076800415D98759077E9E039C80B55DBE68E31F8BF44A909C6C3D3276 ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys 08:55:17.0421 0x08dc Parport - ok 08:55:17.0421 0x08dc [ BEB3BA25197665D82EC7065B724171C6, 7E71C13BA30CD95CEE8A9CC85E6F48A01F30EDEAADEE69D80AE828BF97E5A5CA ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys 08:55:17.0421 0x08dc PartMgr - ok 08:55:17.0453 0x08dc [ C2BF987829099A3EAA2CA6A0A90ECB4F, 1DF21EA8E43875CFEECD869407429F82FB449707CFB845718499468E699BAAAA ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys 08:55:17.0453 0x08dc ParVdm - ok 08:55:17.0468 0x08dc [ FD2041E9BA03DB7764B2248F02475079, DECEED110524BF83B4097188BF24BF0DDE1CE838DF7748B0DC807ABE351EB20A ] pccsmcfd C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys 08:55:17.0468 0x08dc pccsmcfd - ok 08:55:17.0468 0x08dc [ 387E8DEDC343AA2D1EFBC30580273ACD, 5F3E642BDB759777E570ED5B22AC7E93CDCD362708F281657AD7BAB44EDEC802 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys 08:55:17.0484 0x08dc PCI - ok 08:55:17.0484 0x08dc PCIDump - ok 08:55:17.0515 0x08dc [ 59BA86D9A61CBCF4DF8E598C331F5B82, 822D11C5CE77BFD7B2F25350CCBF92B0B9388EEA6D86ED220B768C720976D839 ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys 08:55:17.0515 0x08dc PCIIde - ok 08:55:17.0562 0x08dc [ A2A966B77D61847D61A3051DF87C8C97, 6CED7CA26DC62B0AAFC83A2E07336DAD25954491201BB8E06103971F3F0B8B51 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys 08:55:17.0562 0x08dc Pcmcia - ok 08:55:17.0578 0x08dc PDCOMP - ok 08:55:17.0578 0x08dc PDFRAME - ok 08:55:17.0578 0x08dc PDRELI - ok 08:55:17.0593 0x08dc PDRFRAME - ok 08:55:17.0593 0x08dc perc2 - ok 08:55:17.0593 0x08dc perc2hib - ok 08:55:17.0640 0x08dc [ A3EDBE9053889FB24AB22492472B39DC, 6F2ED6E04BDE2FCA2A8BF9BD2D1D6923DE6EAECB46F582B6C0BD1CF364D65C9E ] PlugPlay C:\WINDOWS\system32\services.exe 08:55:17.0640 0x08dc PlugPlay - ok 08:55:17.0640 0x08dc [ AFB8261B56CBA0D86AEB6DF682AF9785, 104D96F1F19DD4CE492064ACC9634406A019EAE20B42D03198E400E661897127 ] PolicyAgent C:\WINDOWS\system32\lsass.exe 08:55:17.0656 0x08dc PolicyAgent - ok 08:55:17.0671 0x08dc [ EFEEC01B1D3CF84F16DDD24D9D9D8F99, C5F0C8C66A3AF7E7BB04CEDE4AC5306F8387AB384A2107DC5BE413AAE968EFF1 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys 08:55:17.0671 0x08dc PptpMiniport - ok 08:55:17.0671 0x08dc [ AFB8261B56CBA0D86AEB6DF682AF9785, 104D96F1F19DD4CE492064ACC9634406A019EAE20B42D03198E400E661897127 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe 08:55:17.0671 0x08dc ProtectedStorage - ok 08:55:17.0671 0x08dc [ 09298EC810B07E5D582CB3A3F9255424, 35473A1BE25AC289474090EB0806AC6B3035DC33D1F3DF97A14BF1E361AC6AC3 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys 08:55:17.0671 0x08dc PSched - ok 08:55:17.0687 0x08dc [ 80D317BD1C3DBC5D4FE7B1678C60CADD, DA76804B55D0CAB3DDD01EFC06673764AE4860693375C658B6063FB14AF7F12C ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys 08:55:17.0687 0x08dc Ptilink - ok 08:55:17.0687 0x08dc ql1080 - ok 08:55:17.0687 0x08dc Ql10wnt - ok 08:55:17.0703 0x08dc ql12160 - ok 08:55:17.0703 0x08dc ql1240 - ok 08:55:17.0703 0x08dc ql1280 - ok 08:55:17.0703 0x08dc [ FE0D99D6F31E4FAD8159F690D68DED9C, 998685622ABE631984B7E4DBF91AB3594B1F574378D75EB9F6265F4650470692 ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys 08:55:17.0703 0x08dc RasAcd - ok 08:55:17.0750 0x08dc [ F5BA6CACCDB66C8F048E867563203246, AFEAD8FC02313F7EBC8F9F39E7ED2868852B480BE3902FA7BD0AFD81492AB243 ] RasAuto C:\WINDOWS\System32\rasauto.dll 08:55:17.0765 0x08dc RasAuto - ok 08:55:17.0765 0x08dc [ 11B4A627BC9614B885C4969BFA5FF8A6, EAE0A412A2B0F68919C32A96B3A08CC1A06585E4998819F5C9051745F63FF5AD ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys 08:55:17.0765 0x08dc Rasl2tp - ok 08:55:17.0796 0x08dc [ F9A7B66EA345726EDB5862A46B1ECCD5, 5D35429D394D36A1692A7E219BA1A85CD8096FEAE0F90BFE036A63118FEDBF57 ] RasMan C:\WINDOWS\System32\rasmans.dll 08:55:17.0796 0x08dc RasMan - ok 08:55:17.0796 0x08dc [ 5BC962F2654137C9909C3D4603587DEE, A5CE5653D0105240F5E86CFAAB89E7917D42D939E2F27A5A7D6979289CA651B8 ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys 08:55:17.0796 0x08dc RasPppoe - ok 08:55:17.0812 0x08dc [ FDBB1D60066FCFBB7452FD8F9829B242, 10A2DACF944BD000032EBA8C095CB3D879CC55B28C377ADF6E52E508E47444DB ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys 08:55:17.0812 0x08dc Raspti - ok 08:55:17.0843 0x08dc [ 7AD224AD1A1437FE28D89CF22B17780A, 6645235CA27D671954E3557FA37082881C3D7D47492C71264CD8CB8D108EC801 ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys 08:55:17.0843 0x08dc Rdbss - ok 08:55:17.0843 0x08dc [ 4912D5B403614CE99C28420F75353332, 975341ECD660209987B5E5171B8315E032439E408CBE8A5986E67AF767F373BB ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys 08:55:17.0843 0x08dc RDPCDD - ok 08:55:17.0859 0x08dc [ 15CABD0F7C00C47C70124907916AF3F1, 66B5C978B7FB6359AD8BAC9F568FE9D469E358FEAB07B1F129BA9E85F1DF723E ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys 08:55:17.0875 0x08dc rdpdr - ok 08:55:17.0921 0x08dc [ 43AF5212BD8FB5BA6EED9754358BD8F7, AF330F61CECA4AFA359CEABC5EB3227E6B56A9A2DCE50701381D665122D7356D ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys 08:55:17.0921 0x08dc RDPWD - ok 08:55:17.0968 0x08dc [ 263AF18AF0F3DB99F574C95F284CCEC9, 2BFA9952E97EFEB386FC56EC2C125080CD12DAC078DBE43C395CB4D9F22165D3 ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe 08:55:17.0984 0x08dc RDSessMgr - ok 08:55:18.0031 0x08dc [ ED761D453856F795A7FE056E42C36365, EF026585B33415D8FCE94A9F27D7A4396C7C35C88E06A4CF0FEA702401E8597A ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys 08:55:18.0031 0x08dc redbook - ok 08:55:18.0078 0x08dc [ 0E97EC96D6942CEEC2D188CC2EB69A01, D4253B4420BEF19451A55AB91E4834482181A31A31134F6E2AFE05C8E20C81A5 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll 08:55:18.0078 0x08dc RemoteAccess - ok 08:55:18.0093 0x08dc [ E4CD1F3D84E1C2CA0B8CF7501E201593, 649CC0B04F94D407EB6B4C7FDE2C6E4D2B1531307BC67C5775E44D66EF2E4F8A ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll 08:55:18.0109 0x08dc RemoteRegistry - ok 08:55:18.0125 0x08dc [ 2A02E21867497DF20B8FC95631395169, D89E2D17ED4E1C727847C0E92D2DF68AEB70BF0B956BD2FE024ED70A961759D2 ] RpcLocator C:\WINDOWS\system32\locator.exe 08:55:18.0125 0x08dc RpcLocator - ok 08:55:18.0156 0x08dc [ 3127AFBF2C1ED0AB14A1BBB7AAECB85B, ECFBACE3CBF2384948EA1C445BDA3955EB4F44A9874286E6537C67DC1283E5B0 ] RpcSs C:\WINDOWS\System32\rpcss.dll 08:55:18.0156 0x08dc RpcSs - ok 08:55:18.0203 0x08dc [ 085CED4621302B27D86358AD6239DABE, F6A663752E5E024EEA52ABCAEF08462F80C051C723F1C220C79E2C3F60DB996C ] RsvLock C:\WINDOWS\system32\drivers\RsvLock.sys 08:55:18.0203 0x08dc RsvLock - ok 08:55:18.0218 0x08dc [ 4BDD71B4B521521499DFD14735C4F398, 7B1498D3C67E56D05B58B7DA319ECB0117C37963AABB0E59B42831C087469DA1 ] RSVP C:\WINDOWS\system32\rsvp.exe 08:55:18.0218 0x08dc RSVP - ok 08:55:18.0265 0x08dc [ 26AF84A03E2C2C5AD7ABFECEFC43BC4D, 7B46B400D2A61C41D8B6CBAC085E30E2430F179AAA2DF636D0A92D45D9BE1AFE ] SafeBoot C:\WINDOWS\system32\drivers\SafeBoot.sys 08:55:18.0265 0x08dc Suspicious file ( NoAccess ): C:\WINDOWS\system32\drivers\SafeBoot.sys. md5: 26AF84A03E2C2C5AD7ABFECEFC43BC4D, sha256: 7B46B400D2A61C41D8B6CBAC085E30E2430F179AAA2DF636D0A92D45D9BE1AFE 08:55:18.0265 0x08dc SafeBoot - detected LockedFile.Multi.Generic ( 1 ) 08:55:18.0390 0x08dc Detect skipped due to KSN trusted 08:55:18.0390 0x08dc SafeBoot - ok 08:55:18.0406 0x08dc [ AFB8261B56CBA0D86AEB6DF682AF9785, 104D96F1F19DD4CE492064ACC9634406A019EAE20B42D03198E400E661897127 ] SamSs C:\WINDOWS\system32\lsass.exe 08:55:18.0406 0x08dc SamSs - ok 08:55:18.0406 0x08dc [ 587674B8CBB440691692335F7ED28E02, 83E969BFF1064C180A6D5E18099D385F287778F1A2040692B0CA601385D99C04 ] SbAlg C:\WINDOWS\system32\drivers\SbAlg.sys 08:55:18.0406 0x08dc SbAlg - ok 08:55:18.0421 0x08dc [ 41C08F2DA137340855BB2E4FDE8FD765, DA84987BB6D459F934CB2A957243EFB87217DD16D8DEF68E420BEA4A67CF345B ] SbFsLock C:\WINDOWS\system32\drivers\SbFsLock.sys 08:55:18.0421 0x08dc SbFsLock - ok 08:55:18.0437 0x08dc [ DCEC079FAD95D36C8DD5CB6D779DFE32, F8546552D939A225853A0CE4913701A93738DF02C999D16E141E9A828814BBC6 ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe 08:55:18.0437 0x08dc SCardSvr - ok 08:55:18.0453 0x08dc [ A050194A44D7FA8D7186ED2F4E8367AE, BCDF56D5A2F9E202DC67E7FE4BCC617BCC0BDFF2D221A621020068B17B2855BB ] Schedule C:\WINDOWS\system32\schedsvc.dll 08:55:18.0468 0x08dc Schedule - ok 08:55:18.0515 0x08dc [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys 08:55:18.0515 0x08dc Secdrv - ok 08:55:18.0531 0x08dc [ BEE4CFD1D48C23B44CF4B974B0B79B2B, DF3B02D713F8A4602BE75F004074D5DF79AFF2D58FF37110B2A6AC29F680758B ] seclogon C:\WINDOWS\System32\seclogon.dll 08:55:18.0531 0x08dc seclogon - ok 08:55:18.0546 0x08dc [ 2AAC9B6ED9EDDFFB721D6452E34D67E3, 95D83F054A6610328D56E56CD948A6618C590231853E56FC20E7557DB61384A4 ] SENS C:\WINDOWS\system32\sens.dll 08:55:18.0546 0x08dc SENS - ok 08:55:18.0546 0x08dc [ 0F29512CCD6BEAD730039FB4BD2C85CE, 4F98AE390D1B14A755700DD6CEFB9CF921F0404AF2145D2D7E5F52394F87C6A5 ] serenum C:\WINDOWS\system32\DRIVERS\serenum.sys 08:55:18.0562 0x08dc serenum - ok 08:55:18.0562 0x08dc [ CF24EB4F0412C82BCD1F4F35A025E31D, B74CB094126F5C23F601C34D53B2DF5BE3E5918230AC9DCFCFFA8E66B3A0FA25 ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys 08:55:18.0562 0x08dc Serial - ok 08:55:18.0656 0x08dc [ F31E9531AF225CA25350D5E87E999B31, 69BA311E15C9E819AFD8150344498B549B0C47B332EF26346A24B89B6E7C3A44 ] ServiceLayer C:\Programme\PC Connectivity Solution\ServiceLayer.exe 08:55:18.0671 0x08dc ServiceLayer - ok 08:55:18.0750 0x08dc [ 8E6B8C671615D126FDC553D1E2DE5562, CEEC0067514555D5CA489F50E3D7562FCA8DB8E952C3C878604C9277FC77959F ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys 08:55:18.0750 0x08dc Sfloppy - ok 08:55:18.0812 0x08dc [ CAD058D5F8B889A87CA3EB3CF624DCEF, A7CDCF44261D1F4D820927253EA8EBB63714B7BAFF8B08DE073507D9A7EEA5BB ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll 08:55:18.0828 0x08dc SharedAccess - ok 08:55:18.0843 0x08dc [ 2DB7D303C36DDD055215052F118E8E75, BE6E7BBE12A7A4EDF1F1C2935350603970C7426BBCA7A1A6644BB8999123AF17 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll 08:55:18.0843 0x08dc ShellHWDetection - ok 08:55:18.0843 0x08dc Simbad - ok 08:55:18.0859 0x08dc Sparrow - ok 08:55:18.0859 0x08dc [ AB8B92451ECB048A4D1DE7C3FFCB4A9F, DD17733CBB370FCA08F0296704D7CBEACA3C8F76D0ABE4761C3B1FFDF7481D9E ] splitter C:\WINDOWS\system32\drivers\splitter.sys 08:55:18.0859 0x08dc splitter - ok 08:55:18.0906 0x08dc [ 60784F891563FB1B767F70117FC2428F, E0B07F08E60FFBAD36C2E58180F4B2A16DCA47716044CBE0213DF7B74D742F1F ] Spooler C:\WINDOWS\system32\spoolsv.exe 08:55:18.0921 0x08dc Spooler - ok 08:55:18.0968 0x08dc [ 50FA898F8C032796D3B1B9951BB5A90F, 1C86273EC19EB96D6DB9CE6670C00683B77C99C42CC2F7E75BC50872B93446B1 ] sr C:\WINDOWS\system32\DRIVERS\sr.sys 08:55:18.0968 0x08dc sr - ok 08:55:19.0015 0x08dc [ FE77A85495065F3AD59C5C65B6C54182, EB4BAF992F961B2FD5D24BFCB6BCB2142BC32933139A818835FEAB190E4283BB ] srservice C:\WINDOWS\system32\srsvc.dll 08:55:19.0031 0x08dc srservice - ok 08:55:19.0062 0x08dc [ 47DDFC2F003F7F9F0592C6874962A2E7, 17C643BD4EB09B5666FE41817DC785BE04A6E491CE79E8E5A702CDBD98E1BDD7 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys 08:55:19.0078 0x08dc Srv - ok 08:55:19.0109 0x08dc [ 4DF5B05DFAEC29E13E1ED6F6EE12C500, 2971D7D45D6942D310D47DBD19B9680D2D29527E79B86133C72217FD29259465 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll 08:55:19.0109 0x08dc SSDPSRV - ok 08:55:19.0156 0x08dc [ A36EE93698802CD899F98BFD553D8185, 224CFED921EA230FF8025D259E34968FD2C0FD34BB3A918FB4B9B8BA42BEA5D3 ] ssmdrv C:\WINDOWS\system32\DRIVERS\ssmdrv.sys 08:55:19.0156 0x08dc ssmdrv - ok 08:55:19.0218 0x08dc [ A2DBCC4C8860449DF1AB758EA28B4DE0, 90D46D4D888DF6D58F61F3F9CFD1627D516507B7A668F40EA873579FB487A8D9 ] StillCam C:\WINDOWS\system32\DRIVERS\serscan.sys 08:55:19.0218 0x08dc StillCam - ok 08:55:19.0234 0x08dc [ BC2C5985611C5356B24AEB370953DED9, 15CBAB8166827DC098E2B16AB6F49A1441A4CB52AF3588F0AD964CAB596DFE10 ] stisvc C:\WINDOWS\system32\wiaservc.dll 08:55:19.0250 0x08dc stisvc - ok 08:55:19.0312 0x08dc [ 3941D127AEF12E93ADDF6FE6EE027E0F, EA1F0E32E1C5E90FA4AAC421DEBBE086512340758D3217A6334E886BCE638B51 ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys 08:55:19.0312 0x08dc swenum - ok 08:55:19.0312 0x08dc [ 8CE882BCC6CF8A62F2B2323D95CB3D01, B408550A581F3DA222355964AFA4E976AD8471F0AA37573C42C4948AE5A23A3B ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys 08:55:19.0312 0x08dc swmidi - ok 08:55:19.0328 0x08dc SwPrv - ok 08:55:19.0343 0x08dc [ 1FF3217614018630D0A6758630FC698C, 78A3075BBFF5D7ADEAC1527E65ACA8527BFC509DF124D44410BB46C4D96C96BB ] symc810 C:\WINDOWS\system32\DRIVERS\symc810.sys 08:55:19.0343 0x08dc symc810 - ok 08:55:19.0375 0x08dc [ 070E001D95CF725186EF8B20335F933C, B98B29FB01741AF3B4BB02C76A4D117EA04FE4CC4F8CDB491F9216931704A6D8 ] symc8xx C:\WINDOWS\system32\DRIVERS\symc8xx.sys 08:55:19.0375 0x08dc symc8xx - ok 08:55:19.0375 0x08dc [ F2B7E8416F508368AC6730E2AE1C614F, 0A3FC9A2F30C56C0861EE96D0D270F221CCAE5A267DB768F68D2C56E1F3761BA ] Symmpi C:\WINDOWS\system32\DRIVERS\symmpi.sys 08:55:19.0375 0x08dc Symmpi - ok 08:55:19.0390 0x08dc [ 80AC1C4ABBE2DF3B738BF15517A51F2C, CCF82D09C63F4FA98BCBEF3A1DC8C02D4269B78256D0B6213E815D9BBE174432 ] sym_hi C:\WINDOWS\system32\DRIVERS\sym_hi.sys 08:55:19.0390 0x08dc sym_hi - ok 08:55:19.0406 0x08dc [ BF4FAB949A382A8E105F46EBB4937058, FE7C114A19D50E37463CDD3605C26105A779EEA79CB92BF98267C7BE809D853B ] sym_u3 C:\WINDOWS\system32\DRIVERS\sym_u3.sys 08:55:19.0406 0x08dc sym_u3 - ok 08:55:19.0421 0x08dc [ 8B83F3ED0F1688B4958F77CD6D2BF290, 546D3602183702B4F53E84413CFA2C933D64C8540378E54A8DCD148F3F36A2DA ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys 08:55:19.0421 0x08dc sysaudio - ok 08:55:19.0468 0x08dc [ 2903FFFA2523926D6219428040DCE6B9, 4F13181931B0499F6C3F08138054DBCD1F84CB9806999A9172B80DE79D446F62 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe 08:55:19.0484 0x08dc SysmonLog - ok 08:55:19.0515 0x08dc [ 05903CAC4B98908D55EA5774775B382E, AC3666CBD894D737874A5998DC7F46A0A51A7B23B1835FC735B9AD503A2191CC ] TapiSrv C:\WINDOWS\System32\tapisrv.dll 08:55:19.0515 0x08dc TapiSrv - ok 08:55:19.0578 0x08dc [ 9AEFA14BD6B182D61E3119FA5F436D3D, EA29E49434585409272E7901AF89771FE9D6E911A7DC44AB3C7020CFF8A44552 ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys 08:55:19.0593 0x08dc Tcpip - ok 08:55:19.0625 0x08dc [ 6471A66807F5E104E4885F5B67349397, F35CBFFB8BB235CCE30EF94A5273333900DD49FD506BF9D55D99A320B8A53A5A ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys 08:55:19.0625 0x08dc TDPIPE - ok 08:55:19.0625 0x08dc [ C56B6D0402371CF3700EB322EF3AAF61, 7743FA4C734BCE38EFB1CA69BC17364D8421E2CD172F856F7E38E7AE1EE93F2F ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys 08:55:19.0625 0x08dc TDTCP - ok 08:55:19.0656 0x08dc [ 88155247177638048422893737429D9E, B6D4E8691917946332C2208D01F8C8281978C1AD1E9951C5D99DF0D49AC34B3B ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys 08:55:19.0656 0x08dc TermDD - ok 08:55:19.0718 0x08dc [ B7DE02C863D8F5A005A7BF375375A6A4, 6DE05A7B28CA5A78D58536347FC47F15883EEDBEF487CEA0117CC280FC582DCC ] TermService C:\WINDOWS\System32\termsrv.dll 08:55:19.0734 0x08dc TermService - ok 08:55:19.0734 0x08dc [ 2DB7D303C36DDD055215052F118E8E75, BE6E7BBE12A7A4EDF1F1C2935350603970C7426BBCA7A1A6644BB8999123AF17 ] Themes C:\WINDOWS\System32\shsvcs.dll 08:55:19.0750 0x08dc Themes - ok 08:55:19.0765 0x08dc [ 03681A1CE77F51586903869A5AB1DEAB, E2EC0A481412166B654682C2F3D953E96E757466135CBD2D813B967EDB13C721 ] TlntSvr C:\WINDOWS\system32\tlntsvr.exe 08:55:19.0765 0x08dc TlntSvr - ok 08:55:19.0765 0x08dc TosIde - ok 08:55:19.0781 0x08dc [ 626504572B175867F30F3215C04B3E2F, 47E87CE9BC666D5CB5953C5D497DC00A7CC28F8EC0A064B3E47700279C5C4B91 ] TrkWks C:\WINDOWS\system32\trkwks.dll 08:55:19.0781 0x08dc TrkWks - ok 08:55:19.0812 0x08dc [ 5787B80C2E3C5E2F56C2A233D91FA2C9, 3774905CF77954DFCECDA5BCC7CDE3D0ED72712BFAAD85ADAE5246306447E46C ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys 08:55:19.0828 0x08dc Udfs - ok 08:55:19.0828 0x08dc ultra - ok 08:55:19.0843 0x08dc [ 1DFD8975D8C89214B98D9387C1125B49, 0B6B268487C8E45E9B86BF4A0A9DB669E0E45D600DE3C82B63F9986CA9E01082 ] upnphost C:\WINDOWS\System32\upnphost.dll 08:55:19.0843 0x08dc upnphost - ok 08:55:19.0875 0x08dc [ 47F5F9D837D80FFD5882A14DB9DA0A67, 3B32E69B77E21CF98ED6E97B231B9633BE39D74328152EDFA7656FB16E3FF93A ] upperdev C:\WINDOWS\system32\DRIVERS\usbser_lowerflt.sys 08:55:19.0875 0x08dc upperdev - ok 08:55:19.0890 0x08dc [ 9B11E6118958E63E1FEF129466E2BDA7, 97168BCE3F4A9BB9E6500F05E34851FB957B219C598944FADC28AC0011C0503B ] UPS C:\WINDOWS\System32\ups.exe 08:55:19.0906 0x08dc UPS - ok 08:55:19.0953 0x08dc [ 1B611611C28D2DF25BC057D79C6F13FC, B0D86F63E44B40413BBAE6402CC088046CFAE082D41BBC2ED5A916293356B846 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys 08:55:19.0953 0x08dc usbccgp - ok 08:55:20.0015 0x08dc [ 4BAC8DF07F1D8434FC640E677A62204E, 76C1351AF6752224BF59DEEE0F8665FE699F3DFD679F5BCD01C7D9383E6402A4 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys 08:55:20.0015 0x08dc usbehci - ok 08:55:20.0078 0x08dc [ 1AB3CDDE553B6E064D2E754EFE20285C, A99C4528C4227B1E96847614745AAFACD3C5F1BDFE435214DBF78740FFB300FE ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys 08:55:20.0078 0x08dc usbhub - ok 08:55:20.0140 0x08dc [ A717C8721046828520C9EDF31288FC00, 1530BBE832EDBB0974AD89D723A03FF7A0094B368992D73C2C3E62A181DF1E0A ] usbprint C:\WINDOWS\system32\DRIVERS\usbprint.sys 08:55:20.0140 0x08dc usbprint - ok 08:55:20.0187 0x08dc [ F8EDE2B6928970DCE3D5614C27D9E7F6, 6E5EBBC8B70C1D593634DAF0C190DEADFDA18C3CBC8F552A76F156F3869EF05B ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys 08:55:20.0187 0x08dc usbscan - ok 08:55:20.0234 0x08dc [ 84C44D720655A8AA475E57A9E764D675, 2D450199338A217FBD951317812A74223E8B477974C7634667E8896316C3FEA0 ] usbser C:\WINDOWS\system32\drivers\usbser.sys 08:55:20.0234 0x08dc usbser - ok 08:55:20.0281 0x08dc [ E44F0D17BE0908B58DCC99CCB99C6C32, 6C5E62A688CD3A299FBE2C8CD87F2A860340CDE4616348D83C6FB3DDB561E6C9 ] UsbserFilt C:\WINDOWS\system32\DRIVERS\usbser_lowerfltj.sys 08:55:20.0281 0x08dc UsbserFilt - ok 08:55:20.0281 0x08dc [ A32426D9B14A089EAA1D922E0C5801A9, ED1DC52EE45F8EAD3AEC4B1F817BB25634141CF48295494C5947DCE6CF7A9817 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS 08:55:20.0296 0x08dc USBSTOR - ok 08:55:20.0328 0x08dc [ 26496F9DEE2D787FC3E61AD54821FFE6, 8BE7FF647470B9A951CBB478FAF83D657A15CC78037F42348A6B738F21D523DA ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys 08:55:20.0328 0x08dc usbuhci - ok 08:55:20.0375 0x08dc [ 0D3A8FAFCEACD8B7625CD549757A7DF1, B9CFDEFCD66AA139F3DC2F967B184669532922563AD5A71769BABDC4370D065E ] VgaSave C:\WINDOWS\System32\drivers\vga.sys 08:55:20.0390 0x08dc VgaSave - ok 08:55:20.0406 0x08dc [ 3B3EFCDA263B8AC14FDF9CBDD0791B2E, FC7FFD53FCC0F81587EFF26A43C141D25C43DBC68311520CE2BCDD739CA58CA9 ] ViaIde C:\WINDOWS\system32\DRIVERS\viaide.sys 08:55:20.0406 0x08dc ViaIde - ok 08:55:20.0437 0x08dc [ A5A712F4E880874A477AF790B5186E1D, FE885ED04C3EAFC379787F836738A2769E43D07CF52DD917D90C38E001957A5E ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys 08:55:20.0437 0x08dc VolSnap - ok 08:55:20.0500 0x08dc [ 68F106273BE29E7B7EF8266977268E78, 1488AB7A654EBC94C73E1D494067189ACB95BC233980110CAC4C0297CDC4115A ] VSS C:\WINDOWS\System32\vssvc.exe 08:55:20.0515 0x08dc VSS - ok 08:55:20.0531 0x08dc [ 7B353059E665F8B7AD2BBEAEF597CF45, 84A4311F18A4B8DCB364741DEA7D18E2363F19564B2EF25214965DC729527068 ] W32Time C:\WINDOWS\system32\w32time.dll 08:55:20.0531 0x08dc W32Time - ok 08:55:20.0546 0x08dc [ E20B95BAEDB550F32DD489265C1DA1F6, 5589B2067E6C9FBA290D8C5EADDC198EBAF39C50C3CD7D2BC5CDA7CBFBC445E5 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys 08:55:20.0546 0x08dc Wanarp - ok 08:55:20.0609 0x08dc [ D918617B46457B9AC28027722E30F647, 407284D3055DC11944D4EE7E4357E7CF9CAF8CA40CA50633AB6FD4A82CB7EEA6 ] Wdf01000 C:\WINDOWS\system32\Drivers\wdf01000.sys 08:55:20.0625 0x08dc Wdf01000 - ok 08:55:20.0625 0x08dc WDICA - ok 08:55:20.0687 0x08dc [ 6768ACF64B18196494413695F0C3A00F, 3A8F8586F1D997D19A8478345338D2AECD785AEABDB61531DD3F92003D3230A5 ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys 08:55:20.0687 0x08dc wdmaud - ok 08:55:20.0750 0x08dc [ 81727C9873E3905A2FFC1EBD07265002, 6AC2383A1DCBB7FA3DB90FBB874C8E1819F5B7492717FF41E303EFC7BF72F93E ] WebClient C:\WINDOWS\System32\webclnt.dll 08:55:20.0750 0x08dc WebClient - ok 08:55:20.0812 0x08dc [ 6F3F3973D97714CC5F906A19FE883729, 7817118BE94D0F6FAE0F9CE48AD70FFE0AEF886CCE09C666768FAB61047F992F ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll 08:55:20.0812 0x08dc winmgmt - ok 08:55:20.0843 0x08dc [ C51B4A5C05A5475708E3C81C7765B71D, F776D2680BD3407307B7072626F78460361FC5BC38623C9E16F394D300AB25DE ] WmdmPmSN C:\WINDOWS\system32\MsPMSNSv.dll 08:55:20.0859 0x08dc WmdmPmSN - ok 08:55:20.0906 0x08dc [ FFA4D901D46D07A5BAB2D8307FBB51A6, 53C6D04D111EDF774C7F7EEB8D032B372E6244774D56B1B34CF1236027EC9450 ] Wmi C:\WINDOWS\System32\advapi32.dll 08:55:20.0921 0x08dc Wmi - ok 08:55:20.0968 0x08dc [ C42584FD66CE9E17403AEBCA199F7BDB, E3F2E1066F36AE5D33D4482239B2E556BE0C137923C9A120DFB36EC82F2E77B0 ] WmiAcpi C:\WINDOWS\system32\DRIVERS\wmiacpi.sys 08:55:20.0968 0x08dc WmiAcpi - ok 08:55:21.0031 0x08dc [ 93908111BA57A6E60EC2FA2DE202105C, F395F25F18D15C6B9FEDB45FD31E10295FFE5517E2BC86ACAC11904EA0664BE2 ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe 08:55:21.0031 0x08dc WmiApSrv - ok 08:55:21.0140 0x08dc [ BF05650BB7DF5E9EBDD25974E22403BB, AF173D89B768CFC7AB03DFADD4F049CAC40AC59A0C9208AF5AB92CB368983077 ] WMPNetworkSvc C:\Programme\Windows Media Player\WMPNetwk.exe 08:55:21.0171 0x08dc WMPNetworkSvc - ok 08:55:21.0234 0x08dc [ CF4DEF1BF66F06964DC0D91844239104, CC1D9CECE2056D29A9651D51BB57C3F4F9BF9E90A4808CF7496C683C874FBD51 ] WpdUsb C:\WINDOWS\system32\DRIVERS\wpdusb.sys 08:55:21.0234 0x08dc WpdUsb - ok 08:55:21.0250 0x08dc [ 300B3E84FAF1A5C1F791C159BA28035D, 0194856BDF94C1F274AF70AD558290ACDACDDEA331BD66FEB8E167ABD1E36786 ] wscsvc C:\WINDOWS\system32\wscsvc.dll 08:55:21.0250 0x08dc wscsvc - ok 08:55:21.0250 0x08dc WSearch - ok 08:55:21.0265 0x08dc [ 7B4FE05202AA6BF9F4DFD0E6A0D8A085, A1DB8909FA73337DB613D01824945485186654364A4DF129B8CB913CF87D1D2E ] wuauserv C:\WINDOWS\system32\wuauserv.dll 08:55:21.0265 0x08dc wuauserv - ok 08:55:21.0328 0x08dc [ EAA6324F51214D2F6718977EC9CE0DEF, B9DE1521395E09233FE519873702979C3EAF65FEC4B94B12A46CECB16C488543 ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys 08:55:21.0328 0x08dc WudfPf - ok 08:55:21.0343 0x08dc [ F91FF1E51FCA30B3C3981DB7D5924252, D7052B58F22638CA8B59C6FD7408D6D6DD1C33910912CACC05C133472CE0DDCE ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys 08:55:21.0359 0x08dc WudfRd - ok 08:55:21.0375 0x08dc [ DDEE3682FE97037C45F4D7AB467CB8B6, D5A8F07AF4EDD9D7E17FEC6222D187E2981C177A479511E407756E0E5CB8D387 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll 08:55:21.0375 0x08dc WudfSvc - ok 08:55:21.0390 0x08dc [ C4F109C005F6725162D2D12CA751E4A7, AC996B44338328BDD4442FE48406F286A64526F0EC77BE00A19FA7FDB0407CFE ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll 08:55:21.0406 0x08dc WZCSVC - ok 08:55:21.0437 0x08dc [ 0ADA34871A2E1CD2CAAFED1237A47750, 45BEF8649078BD74C1A347B5F2D3A1958E5A7DCD6C6BA8A2E0CAD277A929C64E ] xmlprov C:\WINDOWS\System32\xmlprov.dll 08:55:21.0453 0x08dc xmlprov - ok 08:55:21.0453 0x08dc ================ Scan global =============================== 08:55:21.0484 0x08dc [ 2C60091CA5F67C3032EAB3B30390C27F, 9E205C8E67F4B61FCFA2A82AA1968D522C3B6410D7075BE813F7F1564D61632E ] C:\WINDOWS\system32\basesrv.dll 08:55:21.0562 0x08dc [ E62178BC21EAC63A3B9A2DBD46C1B505, CAA5480CC4DAA37758F0CF445F865FD6F4630080B044EF2E606C2F62DAA4061A ] C:\WINDOWS\system32\winsrv.dll 08:55:21.0578 0x08dc [ E62178BC21EAC63A3B9A2DBD46C1B505, CAA5480CC4DAA37758F0CF445F865FD6F4630080B044EF2E606C2F62DAA4061A ] C:\WINDOWS\system32\winsrv.dll 08:55:21.0640 0x08dc [ A3EDBE9053889FB24AB22492472B39DC, 6F2ED6E04BDE2FCA2A8BF9BD2D1D6923DE6EAECB46F582B6C0BD1CF364D65C9E ] C:\WINDOWS\system32\services.exe 08:55:21.0640 0x08dc [ Global ] - ok 08:55:21.0640 0x08dc ================ Scan MBR ================================== 08:55:21.0671 0x08dc [ 4975BDBEDA8A3AFB2AEADEFC06CE9E12 ] \Device\Harddisk0\DR0 08:55:21.0843 0x08dc \Device\Harddisk0\DR0 - ok 08:55:21.0843 0x08dc [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk1\DR1 08:55:21.0859 0x08dc \Device\Harddisk1\DR1 - ok 08:55:22.0218 0x08dc [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk6\DR12 08:55:24.0203 0x08dc \Device\Harddisk6\DR12 - ok 08:55:24.0250 0x08dc [ DDAE9D649DB12F6AFF24483F2C298989 ] \Device\Harddisk7\DR14 08:55:24.0296 0x08dc \Device\Harddisk7\DR14 - ok 08:55:24.0296 0x08dc ================ Scan VBR ================================== 08:55:24.0312 0x08dc [ FC4B43827E1B356D9C06A717ABB949F4 ] \Device\Harddisk0\DR0\Partition1 08:55:24.0343 0x08dc \Device\Harddisk0\DR0\Partition1 - ok 08:55:24.0343 0x08dc [ F10E91E6D8023E560D42F1491CA2741F ] \Device\Harddisk1\DR1\Partition1 08:55:24.0343 0x08dc \Device\Harddisk1\DR1\Partition1 - ok 08:55:24.0343 0x08dc [ C581272F16BB2CBB86B29A85A5526AE1 ] \Device\Harddisk6\DR12\Partition1 08:55:24.0484 0x08dc \Device\Harddisk6\DR12\Partition1 - ok 08:55:24.0500 0x08dc [ EB7337D2E992D559F679EBA9F3C94A61 ] \Device\Harddisk7\DR14\Partition1 08:55:24.0500 0x08dc \Device\Harddisk7\DR14\Partition1 - ok 08:55:24.0500 0x08dc ================ Scan generic autorun ====================== 08:55:24.0625 0x08dc [ 085F30DB0B38903940A4141E675BDC08, 3ABFB79C850D2B1976DB4DEF69AA031C4E18B5E240316908DDD16DEA4050365A ] C:\Programme\Avira\AntiVir Desktop\avgnt.exe 08:55:24.0640 0x08dc avgnt - ok 08:55:24.0687 0x08dc [ 0E34B7BB1FCF22BCC1E394D16F9E992B, 382CA8E6BAC301E2F277F8EDA03D263FF71272796A8EED582C36294EEE9191F9 ] C:\Programme\Microsoft Office\Office12\GrooveMonitor.exe 08:55:24.0687 0x08dc GrooveMonitor - ok 08:55:24.0796 0x08dc [ 5B6E8E09BE6401A7E022F52FDFCB2FF8, 471C556CF9405BBB380A8CEFE945C126B954B7C94F79CC72441B51F80141FC5E ] C:\Programme\Gemeinsame Dateien\Java\Java Update\jusched.exe 08:55:24.0812 0x08dc SunJavaUpdateSched - ok 08:55:24.0843 0x08dc [ 5D666FC778E7754CC7103402D814809B, 7E9B205B74440D455155014EE8D6FD0D1C647B016D72A28F16709F50BC005D3F ] C:\Programme\ControlCenter4\BrCcBoot.exe 08:55:24.0843 0x08dc ControlCenter4 - ok 08:55:24.0968 0x08dc [ 63E9C23A386FFFA84B5E03BFF9B628F0, A370962791EFC4B10548AAD31F89A2B288FBD5BDBF5749323C2D98C14DFB8B49 ] C:\Programme\Browny02\Brother\BrStMonW.exe 08:55:25.0078 0x08dc BrStsMon00 - ok 08:55:25.0203 0x08dc [ 048EA4B978851788E9F5E8E4F081DF7A, EB62719AC0DCC18FF056F2CD84438BF14B61E38F0619617C81961C6257BDFCEC ] C:\Programme\Gemeinsame Dateien\Adobe\ARM\1.0\AdobeARM.exe 08:55:25.0250 0x08dc Adobe ARM - ok 08:55:25.0343 0x08dc [ 8CB85437667AEDBD8497D2CA85F4A17A, 196F1F3208674944C554624E5DA6A614F8070467E32F0C1BAB9AC409783E5804 ] C:\Programme\Avira\My Avira\Avira.OE.Systray.exe 08:55:25.0343 0x08dc Avira Systray - ok 08:55:25.0390 0x08dc [ 01B4E6E990B6C5EA8856D96C7FD044B2, 2266296FD3C8E0DFA657F21406EE4E494477870DFAF7C65BEBCB6FBA8CADC7C6 ] C:\WINDOWS\system32\ctfmon.exe 08:55:25.0406 0x08dc ctfmon.exe - ok 08:55:25.0656 0x08dc [ BDB84DB87A6E2A631F9A48AC9717BCD1, 2A61988815E5B67631D86A5A8E1C2050B69D7B88DC2CFC767A4B68F97F2018C5 ] C:\Programme\Wisdom-soft ScreenHunter 5 Free\ScreenHunter.exe 08:55:25.0859 0x08dc Wisdom-soft ScreenHunter 5.1 Free - ok 08:55:25.0968 0x08dc [ 6E0364F33F7BE9779767963A2A27CC7B, 25A5AD72BECC5BCFCF87BDB548E72FC133F47660F66012187B271B59479AB47E ] C:\Programme\ATI Technologies\HydraVision\HydraDM.exe 08:55:25.0984 0x08dc HydraVisionDesktopManager - ok 08:55:26.0015 0x08dc [ 857ADF52A331C38140C0210328969D4A, 335DBFC80B606FB2BC142F2C3614B94F059202858162683CB143A3503D52CC0E ] C:\Programme\ATI Technologies\HydraVision\HydraMD.exe 08:55:26.0031 0x08dc HydraVisionMDEngine - ok 08:55:26.0031 0x08dc Waiting for KSN requests completion. In queue: 11 08:55:27.0046 0x08dc AV detected via SS1: Avira Desktop, 15.0.8.650, enabled, updated 08:55:27.0078 0x08dc Win FW state via NFM: enabled 08:55:27.0218 0x08dc ============================================================ 08:55:27.0218 0x08dc Scan finished 08:55:27.0218 0x08dc ============================================================ 08:55:27.0218 0x0a40 Detected object count: 0 08:55:27.0218 0x0a40 Actual detected object count: 0 |
 So funktioniert es:Posten in CODE-Tags Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert mir massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu gross für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
Meinen Kommentar zu Windows XP gesehen? Scan mit Combofix
|
Code: ComboFix 15-03-09.01 - Administrator 13.03.2015 10:16:00.2.4 - x86vielen Dank für Deine Hilfe. Ich habe natürlich den Hinweis zu XP gesehen. Ich habe leider noch nicht die Zeit gehabt, mich mit diesem Thema auseinanderzusetzen. Kommte noch. Beste Grüße |
Solange Du dazu nicht die ZEit hast sind auch Geldgeschäfte und Paswörter an dem Rechner tabu ;) Downloade Dir bitte  Malwarebytes Anti-Malware
Downloade Dir bitte  AdwCleaner auf deinen Desktop.
Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
und ein frisches FRST log bitte. |
Code: Malwarebytes Anti-MalwareCode: # AdwCleaner v4.112 - Bericht erstellt 17/03/2015 um 09:49:40Code: ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~FRST Logfile: FRST Logfile: Code: Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 11-03-2015--- --- --- |
AdwCleaner auch löschen lassen. ESET Online Scanner
Downloade Dir bitte  SecurityCheck und:
und ein frisches FRST log bitte. Noch Probleme? :) |
| Alle Zeitangaben in WEZ +1. Es ist jetzt 21:20 Uhr. |
Copyright ©2000-2025, Trojaner-Board
