Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung

Plagegeister aller Art und deren Bekämpfung: Kostenpflichtiges update!

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

Antwort
Alt 11.02.2012, 00:42   #1
achmo123
 
Kostenpflichtiges update! - Standard

Kostenpflichtiges update!



Hallo!

Habe wie schon einige hier dieses Kostenpflichtige update Fenster, nachdem ich Firefox gestartet habe und es eine Zeitlang läuft. Hab den MBAM-scanner drübergejat und die Fehlerhaften einträge repariert.

Danach noch mit TDSS-Killer gescant hier das Log-File:

01:20:51.0375 1748 TDSS rootkit removing tool 2.7.11.0 Feb 9 2012 10:12:57
01:20:51.0718 1748 ============================================================
01:20:51.0718 1748 Current date / time: 2012/02/11 01:20:51.0718
01:20:51.0718 1748 SystemInfo:
01:20:51.0718 1748
01:20:51.0718 1748 OS Version: 5.1.2600 ServicePack: 3.0
01:20:51.0718 1748 Product type: Workstation
01:20:51.0718 1748 ComputerName: ACHMO
01:20:51.0718 1748 UserName: AH
01:20:51.0718 1748 Windows directory: C:\WINXP
01:20:51.0718 1748 System windows directory: C:\WINXP
01:20:51.0718 1748 Processor architecture: Intel x86
01:20:51.0718 1748 Number of processors: 2
01:20:51.0718 1748 Page size: 0x1000
01:20:51.0718 1748 Boot type: Safe boot with network
01:20:51.0718 1748 ============================================================
01:20:55.0203 1748 Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
01:20:55.0218 1748 \Device\Harddisk0\DR0:
01:20:55.0218 1748 MBR used
01:20:55.0218 1748 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x12A14BC1
01:20:55.0343 1748 Initialize success
01:20:55.0343 1748 ============================================================
01:21:28.0968 1752 ============================================================
01:21:28.0968 1752 Scan started
01:21:28.0968 1752 Mode: Manual; SigCheck; TDLFS;
01:21:28.0968 1752 ============================================================
01:21:31.0484 1752 a347bus (1f61cacacb521215f39061789147968c) C:\WINXP\system32\DRIVERS\a347bus.sys
01:21:32.0718 1752 a347bus ( UnsignedFile.Multi.Generic ) - warning
01:21:32.0718 1752 a347bus - detected UnsignedFile.Multi.Generic (1)
01:21:32.0828 1752 a347scsi (113e4b318bbaa7483ca4e582a4d63f49) C:\WINXP\system32\Drivers\a347scsi.sys
01:21:32.0859 1752 a347scsi ( UnsignedFile.Multi.Generic ) - warning
01:21:32.0859 1752 a347scsi - detected UnsignedFile.Multi.Generic (1)
01:21:32.0890 1752 Abiosdsk - ok
01:21:32.0906 1752 ABKT - ok
01:21:32.0984 1752 ABKTCX (f25a62362ae736a5ac670f17ba28642c) C:\WINXP\System32\Drivers\ABKTCX.sys
01:21:33.0015 1752 ABKTCX ( UnsignedFile.Multi.Generic ) - warning
01:21:33.0015 1752 ABKTCX - detected UnsignedFile.Multi.Generic (1)
01:21:33.0093 1752 abp480n5 - ok
01:21:33.0140 1752 ABPCIC (f19b0ac161e7f8298ce9f4f312aff8dd) C:\WINXP\System32\Drivers\ABPCIC.sys
01:21:33.0156 1752 ABPCIC ( UnsignedFile.Multi.Generic ) - warning
01:21:33.0156 1752 ABPCIC - detected UnsignedFile.Multi.Generic (1)
01:21:33.0171 1752 ABPIC - ok
01:21:33.0203 1752 ABRNA - ok
01:21:33.0265 1752 ACPI (ac407f1a62c3a300b4f2b5a9f1d55b2c) C:\WINXP\system32\DRIVERS\ACPI.sys
01:21:34.0250 1752 ACPI - ok
01:21:34.0359 1752 ACPIEC (9e1ca3160dafb159ca14f83b1e317f75) C:\WINXP\system32\DRIVERS\ACPIEC.sys
01:21:34.0500 1752 ACPIEC - ok
01:21:34.0562 1752 adfs (6d7f09cd92a9fef3a8efce66231fdd79) C:\WINXP\system32\drivers\adfs.sys
01:21:34.0578 1752 adfs - ok
01:21:34.0656 1752 adpu160m - ok
01:21:34.0718 1752 aec (8bed39e3c35d6a489438b8141717a557) C:\WINXP\system32\drivers\aec.sys
01:21:34.0843 1752 aec - ok
01:21:34.0890 1752 AegisP (a1ad1a4a9f18d900ca9c93fa3efdcb56) C:\WINXP\system32\DRIVERS\AegisP.sys
01:21:34.0937 1752 AegisP - ok
01:21:35.0078 1752 AFD (322d0e36693d6e24a2398bee62a268cd) C:\WINXP\System32\drivers\afd.sys
01:21:35.0203 1752 AFD - ok
01:21:35.0218 1752 Aha154x - ok
01:21:35.0234 1752 aic78u2 - ok
01:21:35.0265 1752 aic78xx - ok
01:21:35.0328 1752 akshasp (d5987b854a62867d399a3d3d744547e5) C:\WINXP\system32\DRIVERS\akshasp.sys
01:21:35.0437 1752 akshasp - ok
01:21:35.0546 1752 aksusb (25c07de96a774622001935e36693c9c2) C:\WINXP\system32\DRIVERS\aksusb.sys
01:21:35.0609 1752 aksusb - ok
01:21:35.0656 1752 AliIde - ok
01:21:35.0687 1752 amsint - ok
01:21:35.0890 1752 Arp1394 (b5b8a80875c1dededa8b02765642c32f) C:\WINXP\system32\DRIVERS\arp1394.sys
01:21:36.0015 1752 Arp1394 - ok
01:21:36.0031 1752 asc - ok
01:21:36.0046 1752 asc3350p - ok
01:21:36.0078 1752 asc3550 - ok
01:21:36.0171 1752 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINXP\system32\DRIVERS\asyncmac.sys
01:21:36.0281 1752 AsyncMac - ok
01:21:36.0390 1752 atapi (cdfe4411a69c224bd1d11b2da92dac51) C:\WINXP\system32\DRIVERS\atapi.sys
01:21:36.0390 1752 Suspicious file (NoAccess): C:\WINXP\system32\DRIVERS\atapi.sys. md5: cdfe4411a69c224bd1d11b2da92dac51
01:21:36.0390 1752 atapi ( LockedFile.Multi.Generic ) - warning
01:21:36.0390 1752 atapi - detected LockedFile.Multi.Generic (1)
01:21:36.0468 1752 Atdisk - ok
01:21:36.0531 1752 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINXP\system32\DRIVERS\atmarpc.sys
01:21:36.0671 1752 Atmarpc - ok
01:21:36.0718 1752 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINXP\system32\DRIVERS\audstub.sys
01:21:36.0843 1752 audstub - ok
01:21:36.0890 1752 avgntflt (7713e4eb0276702faa08e52a6e23f2a6) C:\WINXP\system32\DRIVERS\avgntflt.sys
01:21:36.0921 1752 avgntflt - ok
01:21:37.0031 1752 avipbb (475fbb85956534720858ae72010c0a43) C:\WINXP\system32\DRIVERS\avipbb.sys
01:21:37.0046 1752 avipbb - ok
01:21:37.0093 1752 avkmgr (271cfd1a989209b1964e24d969552bf7) C:\WINXP\system32\DRIVERS\avkmgr.sys
01:21:37.0093 1752 avkmgr - ok
01:21:37.0140 1752 b57w2k (f96038aa1ec4013a93d2420fc689d1e9) C:\WINXP\system32\DRIVERS\b57xp32.sys
01:21:37.0203 1752 b57w2k - ok
01:21:37.0265 1752 BASFND (5c68ac6f3e5b3e6d6a78e97d05e42c3a) C:\Programme\Broadcom\ASFIPMon\BASFND.sys
01:21:37.0296 1752 BASFND ( UnsignedFile.Multi.Generic ) - warning
01:21:37.0296 1752 BASFND - detected UnsignedFile.Multi.Generic (1)
01:21:37.0406 1752 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINXP\system32\drivers\Beep.sys
01:21:37.0531 1752 Beep - ok
01:21:37.0609 1752 btaudio (ecdc40cc54603c711e1a7a1c9255184a) C:\WINXP\system32\drivers\btaudio.sys
01:21:37.0640 1752 btaudio - ok
01:21:37.0734 1752 BTDriver (58a49bd10e08d3d4333a60dedcb1ced8) C:\WINXP\system32\DRIVERS\btport.sys
01:21:37.0750 1752 BTDriver - ok
01:21:37.0812 1752 BTKRNL (885b6d0f826a216eee4c3ad883809012) C:\WINXP\system32\DRIVERS\btkrnl.sys
01:21:37.0859 1752 BTKRNL - ok
01:21:38.0015 1752 BTWDNDIS (b1d350f3f13cf340fce93912d2ba1ebf) C:\WINXP\system32\DRIVERS\btwdndis.sys
01:21:38.0046 1752 BTWDNDIS - ok
01:21:38.0078 1752 btwhid (e48668b4a6a5cf68b33aecad18ee8e1e) C:\WINXP\system32\DRIVERS\btwhid.sys
01:21:38.0093 1752 btwhid - ok
01:21:38.0171 1752 btwmodem (8bcd7bfe9c70a8ff7444263435b18aa1) C:\WINXP\system32\DRIVERS\btwmodem.sys
01:21:38.0187 1752 btwmodem - ok
01:21:38.0281 1752 BTWUSB (57e91e9925976bbc98984eebaaf1d84c) C:\WINXP\system32\Drivers\btwusb.sys
01:21:38.0343 1752 BTWUSB - ok
01:21:38.0421 1752 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINXP\system32\drivers\cbidf2k.sys
01:21:38.0562 1752 cbidf2k - ok
01:21:38.0687 1752 CCDECODE (0be5aef125be881c4f854c554f2b025c) C:\WINXP\system32\DRIVERS\CCDECODE.sys
01:21:38.0796 1752 CCDECODE - ok
01:21:38.0843 1752 cd20xrnt - ok
01:21:38.0906 1752 CdaC15BA (f76cb7259aa575cc53f3996bc6b68c18) C:\WINXP\system32\drivers\CDAC15BA.SYS
01:21:38.0906 1752 CdaC15BA ( UnsignedFile.Multi.Generic ) - warning
01:21:38.0906 1752 CdaC15BA - detected UnsignedFile.Multi.Generic (1)
01:21:39.0000 1752 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINXP\system32\drivers\Cdaudio.sys
01:21:39.0125 1752 Cdaudio - ok
01:21:39.0187 1752 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINXP\system32\drivers\Cdfs.sys
01:21:39.0296 1752 Cdfs - ok
01:21:39.0343 1752 CDProtDrv (5a9437872e9ca54ef454109bf8d4e591) C:\WINXP\system32\DRIVERS\cdprotdrv.sys
01:21:39.0343 1752 CDProtDrv - ok
01:21:39.0375 1752 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINXP\system32\DRIVERS\cdrom.sys
01:21:39.0500 1752 Cdrom - ok
01:21:39.0578 1752 Changer - ok
01:21:39.0687 1752 CmBatt (0f6c187d38d98f8df904589a5f94d411) C:\WINXP\system32\DRIVERS\CmBatt.sys
01:21:39.0796 1752 CmBatt - ok
01:21:39.0812 1752 CmdIde - ok
01:21:39.0859 1752 Compbatt (6e4c9f21f0fae8940661144f41b13203) C:\WINXP\system32\DRIVERS\compbatt.sys
01:21:39.0984 1752 Compbatt - ok
01:21:40.0031 1752 Cpqarray - ok
01:21:40.0093 1752 ctndrvd (1209bbae5f999602ae202ac6e73d1812) C:\WINXP\SYSTEM32\DRIVERS\ctndrv2.sys
01:21:40.0109 1752 ctndrvd ( UnsignedFile.Multi.Generic ) - warning
01:21:40.0109 1752 ctndrvd - detected UnsignedFile.Multi.Generic (1)
01:21:40.0281 1752 d347bus (5776322f93cdb91086111f5ffbfda2a0) C:\WINXP\system32\DRIVERS\d347bus.sys
01:21:40.0296 1752 d347bus ( UnsignedFile.Multi.Generic ) - warning
01:21:40.0296 1752 d347bus - detected UnsignedFile.Multi.Generic (1)
01:21:40.0296 1752 d347prt (b49f79ace459763f4e0380071be9cb45) C:\WINXP\system32\Drivers\d347prt.sys
01:21:40.0312 1752 d347prt ( UnsignedFile.Multi.Generic ) - warning
01:21:40.0312 1752 d347prt - detected UnsignedFile.Multi.Generic (1)
01:21:40.0328 1752 dac2w2k - ok
01:21:40.0359 1752 dac960nt - ok
01:21:40.0421 1752 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINXP\system32\DRIVERS\disk.sys
01:21:40.0546 1752 Disk - ok
01:21:40.0562 1752 DK12DRV - ok
01:21:40.0656 1752 dmboot (0dcfc8395a99fecbb1ef771cec7fe4ea) C:\WINXP\system32\drivers\dmboot.sys
01:21:40.0812 1752 dmboot - ok
01:21:40.0937 1752 dmio (53720ab12b48719d00e327da470a619a) C:\WINXP\system32\drivers\dmio.sys
01:21:41.0062 1752 dmio - ok
01:21:41.0093 1752 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINXP\system32\drivers\dmload.sys
01:21:41.0218 1752 dmload - ok
01:21:41.0265 1752 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINXP\system32\drivers\DMusic.sys
01:21:41.0375 1752 DMusic - ok
01:21:41.0578 1752 dpmcslv (0bd72e62c3974c4f5e4372dba971901b) C:\WINXP\system32\drivers\dpmcslv.sys
01:21:41.0593 1752 dpmcslv ( UnsignedFile.Multi.Generic ) - warning
01:21:41.0609 1752 dpmcslv - detected UnsignedFile.Multi.Generic (1)
01:21:41.0656 1752 Dpmtrcdd (cddebaba436c8564ab4224ccea58a620) C:\WINXP\system32\DRIVERS\dpmtrcdd.sys
01:21:41.0671 1752 Dpmtrcdd ( UnsignedFile.Multi.Generic ) - warning
01:21:41.0671 1752 Dpmtrcdd - detected UnsignedFile.Multi.Generic (1)
01:21:41.0671 1752 dpti2o - ok
01:21:41.0750 1752 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINXP\system32\drivers\drmkaud.sys
01:21:41.0859 1752 drmkaud - ok
01:21:41.0968 1752 DrvSnSht (d61c44038a58fc8a9396432545b3ca2d) C:\Programme\R-Drive Image\DrvSnSht.sys
01:21:41.0968 1752 DrvSnSht ( UnsignedFile.Multi.Generic ) - warning
01:21:41.0968 1752 DrvSnSht - detected UnsignedFile.Multi.Generic (1)
01:21:42.0171 1752 Fastfat (38d332a6d56af32635675f132548343e) C:\WINXP\system32\drivers\Fastfat.sys
01:21:42.0296 1752 Fastfat - ok
01:21:42.0328 1752 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINXP\system32\drivers\Fdc.sys
01:21:42.0437 1752 Fdc - ok
01:21:42.0468 1752 Fips (b0678a548587c5f1967b0d70bacad6c1) C:\WINXP\system32\drivers\Fips.sys
01:21:42.0593 1752 Fips - ok
01:21:42.0625 1752 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINXP\system32\drivers\Flpydisk.sys
01:21:42.0750 1752 Flpydisk - ok
01:21:42.0890 1752 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINXP\system32\drivers\fltmgr.sys
01:21:43.0015 1752 FltMgr - ok
01:21:43.0125 1752 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINXP\system32\drivers\Fs_Rec.sys
01:21:43.0250 1752 Fs_Rec - ok
01:21:43.0312 1752 FTDIBUS (a36e8beedb3aaca09bf55a1d17904bc8) C:\WINXP\system32\drivers\ftdibus.sys
01:21:43.0312 1752 FTDIBUS - ok
01:21:43.0343 1752 Ftdisk (8f1955ce42e1484714b542f341647778) C:\WINXP\system32\DRIVERS\ftdisk.sys
01:21:43.0468 1752 Ftdisk - ok
01:21:43.0546 1752 FTSER2K (a14a1f4bb391df9c233cb5dbd05feb70) C:\WINXP\system32\drivers\ftser2k.sys
01:21:43.0562 1752 FTSER2K - ok
01:21:43.0640 1752 fwkbd (0ea13d9a42596da2ca4e2ba07583ce32) C:\WINXP\system32\drivers\fwkbd.sys
01:21:43.0671 1752 fwkbd ( UnsignedFile.Multi.Generic ) - warning
01:21:43.0671 1752 fwkbd - detected UnsignedFile.Multi.Generic (1)
01:21:43.0734 1752 fwkbdrtm (7e4d38e22513b0af200fa6f94c77a2a6) C:\WINXP\system32\drivers\fwkbdrtm.sys
01:21:43.0734 1752 fwkbdrtm - ok
01:21:43.0843 1752 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINXP\system32\DRIVERS\msgpc.sys
01:21:43.0953 1752 Gpc - ok
01:21:44.0140 1752 Hardlock (c1cc0c9742b881c42f1cc628e6f9ebd1) C:\WINXP\system32\drivers\hardlock.sys
01:21:44.0187 1752 Hardlock - ok
01:21:44.0312 1752 Haspnt (2dd25f060dc9f79b5cdf33d90ed93669) C:\WINXP\system32\drivers\Haspnt.sys
01:21:44.0328 1752 Haspnt ( UnsignedFile.Multi.Generic ) - warning
01:21:44.0328 1752 Haspnt - detected UnsignedFile.Multi.Generic (1)
01:21:44.0390 1752 hcw47000 (80adee65c67afda73974d16e41824d08) C:\WINXP\system32\DRIVERS\hcw47xxx.sys
01:21:44.0453 1752 hcw47000 - ok
01:21:44.0546 1752 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINXP\system32\DRIVERS\HDAudBus.sys
01:21:44.0687 1752 HDAudBus - ok
01:21:44.0781 1752 HidUsb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINXP\system32\DRIVERS\hidusb.sys
01:21:44.0906 1752 HidUsb - ok
01:21:44.0921 1752 hpn - ok
01:21:44.0984 1752 HSFHWAZL (6a5c4732d6803f84e2987edd8e4359ce) C:\WINXP\system32\DRIVERS\HSFHWAZL.sys
01:21:45.0031 1752 HSFHWAZL - ok
01:21:45.0140 1752 HSF_DPV (21c31273c6cc4826e74be8ae3b09d4a8) C:\WINXP\system32\DRIVERS\HSF_DPV.sys
01:21:45.0203 1752 HSF_DPV - ok
01:21:45.0328 1752 HTTP (f6aacf5bce2893e0c1754afeb672e5c9) C:\WINXP\system32\Drivers\HTTP.sys
01:21:45.0453 1752 HTTP - ok
01:21:45.0515 1752 i2omgmt - ok
01:21:45.0531 1752 i2omp - ok
01:21:45.0609 1752 i8042prt (e283b97cfbeb86c1d86baed5f7846a92) C:\WINXP\system32\DRIVERS\i8042prt.sys
01:21:45.0718 1752 i8042prt - ok
01:21:45.0921 1752 ialm (12c7f8d581c4a9f126f5f8f5683a1c29) C:\WINXP\system32\DRIVERS\igxpmp32.sys
01:21:46.0390 1752 ialm - ok
01:21:46.0546 1752 imagedrv (0a7c49b48c772591a2d362daa00246c8) C:\WINXP\system32\Drivers\imagedrv.sys
01:21:46.0562 1752 imagedrv ( UnsignedFile.Multi.Generic ) - warning
01:21:46.0562 1752 imagedrv - detected UnsignedFile.Multi.Generic (1)
01:21:46.0578 1752 imagesrv (549ba4f539e7b8d8129500b96dd7b27a) C:\WINXP\system32\DRIVERS\imagesrv.sys
01:21:46.0609 1752 imagesrv ( UnsignedFile.Multi.Generic ) - warning
01:21:46.0609 1752 imagesrv - detected UnsignedFile.Multi.Generic (1)
01:21:46.0671 1752 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINXP\system32\DRIVERS\imapi.sys
01:21:46.0796 1752 Imapi - ok
01:21:46.0875 1752 ini910u - ok
01:21:47.0078 1752 IntcAzAudAddService (b45a576ad280dd4f605f58b24cdaafe1) C:\WINXP\system32\drivers\RtkHDAud.sys
01:21:47.0406 1752 IntcAzAudAddService - ok
01:21:47.0484 1752 IntelIde - ok
01:21:47.0546 1752 intelppm (4c7d2750158ed6e7ad642d97bffae351) C:\WINXP\system32\DRIVERS\intelppm.sys
01:21:47.0671 1752 intelppm - ok
01:21:47.0703 1752 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINXP\system32\drivers\ip6fw.sys
01:21:47.0812 1752 Ip6Fw - ok
01:21:47.0859 1752 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINXP\system32\DRIVERS\ipfltdrv.sys
01:21:47.0984 1752 IpFilterDriver - ok
01:21:48.0171 1752 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINXP\system32\DRIVERS\ipinip.sys
01:21:48.0281 1752 IpInIp - ok
01:21:48.0312 1752 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINXP\system32\DRIVERS\ipnat.sys
01:21:48.0437 1752 IpNat - ok
01:21:48.0468 1752 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINXP\system32\DRIVERS\ipsec.sys
01:21:48.0578 1752 IPSec - ok
01:21:48.0640 1752 irda (aca5e7b54409f9cb5eed97ed0c81120e) C:\WINXP\system32\DRIVERS\irda.sys
01:21:48.0765 1752 irda - ok
01:21:48.0890 1752 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINXP\system32\DRIVERS\irenum.sys
01:21:49.0015 1752 IRENUM - ok
01:21:49.0062 1752 isapnp (6dfb88f64135c525433e87648bda30de) C:\WINXP\system32\DRIVERS\isapnp.sys
01:21:49.0187 1752 isapnp - ok
01:21:49.0218 1752 Kbdclass (1671daac6043bab83285abca92409cc7) C:\WINXP\system32\DRIVERS\kbdcls.sys
01:21:49.0218 1752 Kbdclass ( UnsignedFile.Multi.Generic ) - warning
01:21:49.0218 1752 Kbdclass - detected UnsignedFile.Multi.Generic (1)
01:21:49.0265 1752 kmixer (692bcf44383d056aed41b045a323d378) C:\WINXP\system32\drivers\kmixer.sys
01:21:49.0390 1752 kmixer - ok
01:21:49.0500 1752 KSecDD (1705745d900dabf2d89f90ebaddc7517) C:\WINXP\system32\drivers\KSecDD.sys
01:21:49.0625 1752 KSecDD - ok
01:21:49.0656 1752 lbrtfdc - ok
01:21:49.0750 1752 massfilter (d5673785903639d186dc345ff86f423f) C:\WINXP\system32\drivers\massfilter.sys
01:21:49.0781 1752 massfilter - ok
01:21:49.0828 1752 MBAMProtector (b7ca8cc3f978201856b6ab82f40953c3) C:\WINXP\system32\drivers\mbam.sys
01:21:49.0843 1752 MBAMProtector - ok
01:21:49.0968 1752 mdmxsdk (0cea2d0d3fa284b85ed5b68365114f76) C:\WINXP\system32\DRIVERS\mdmxsdk.sys
01:21:50.0000 1752 mdmxsdk - ok
01:21:50.0062 1752 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINXP\system32\drivers\mnmdd.sys
01:21:50.0171 1752 mnmdd - ok
01:21:50.0250 1752 Modem (6fb74ebd4ec57a6f1781de3852cc3362) C:\WINXP\system32\drivers\Modem.sys
01:21:50.0359 1752 Modem - ok
01:21:50.0406 1752 Mouclass (b24ce8005deab254c0251e15cb71d802) C:\WINXP\system32\DRIVERS\mouclass.sys
01:21:50.0531 1752 Mouclass - ok
01:21:50.0609 1752 mouhid (66a6f73c74e1791464160a7065ce711a) C:\WINXP\system32\DRIVERS\mouhid.sys
01:21:50.0734 1752 mouhid - ok
01:21:50.0781 1752 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINXP\system32\drivers\MountMgr.sys
01:21:50.0890 1752 MountMgr - ok
01:21:50.0921 1752 MPE (c0f8e0c2c3c0437cf37c6781896dc3ec) C:\WINXP\system32\DRIVERS\MPE.sys
01:21:51.0031 1752 MPE - ok
01:21:51.0046 1752 mraid35x - ok
01:21:51.0078 1752 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINXP\system32\DRIVERS\mrxdav.sys
01:21:51.0187 1752 MRxDAV - ok
01:21:51.0328 1752 MRxSmb (68755f0ff16070178b54674fe5b847b0) C:\WINXP\system32\DRIVERS\mrxsmb.sys
01:21:51.0468 1752 MRxSmb - ok
01:21:51.0671 1752 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINXP\system32\drivers\Msfs.sys
01:21:51.0796 1752 Msfs - ok
01:21:51.0843 1752 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINXP\system32\drivers\MSKSSRV.sys
01:21:51.0968 1752 MSKSSRV - ok
01:21:51.0984 1752 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINXP\system32\drivers\MSPCLOCK.sys
01:21:52.0093 1752 MSPCLOCK - ok
01:21:52.0125 1752 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINXP\system32\drivers\MSPQM.sys
01:21:52.0234 1752 MSPQM - ok
01:21:52.0375 1752 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINXP\system32\DRIVERS\mssmbios.sys
01:21:52.0484 1752 mssmbios - ok
01:21:52.0562 1752 MSTEE (e53736a9e30c45fa9e7b5eac55056d1d) C:\WINXP\system32\drivers\MSTEE.sys
01:21:52.0687 1752 MSTEE - ok
01:21:52.0718 1752 Mup (2f625d11385b1a94360bfc70aaefdee1) C:\WINXP\system32\drivers\Mup.sys
01:21:52.0828 1752 Mup - ok
01:21:52.0890 1752 NABTSFEC (5b50f1b2a2ed47d560577b221da734db) C:\WINXP\system32\DRIVERS\NABTSFEC.sys
01:21:53.0015 1752 NABTSFEC - ok
01:21:53.0156 1752 NDIS (1df7f42665c94b825322fae71721130d) C:\WINXP\system32\drivers\NDIS.sys
01:21:53.0281 1752 NDIS - ok
01:21:53.0312 1752 NdisIP (7ff1f1fd8609c149aa432f95a8163d97) C:\WINXP\system32\DRIVERS\NdisIP.sys
01:21:53.0437 1752 NdisIP - ok
01:21:53.0468 1752 NdisTapi (1ab3d00c991ab086e69db84b6c0ed78f) C:\WINXP\system32\DRIVERS\ndistapi.sys
01:21:53.0578 1752 NdisTapi - ok
01:21:53.0703 1752 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINXP\system32\DRIVERS\ndisuio.sys
01:21:53.0828 1752 Ndisuio - ok
01:21:53.0843 1752 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINXP\system32\DRIVERS\ndiswan.sys
01:21:53.0968 1752 NdisWan - ok
01:21:53.0984 1752 NDProxy (6215023940cfd3702b46abc304e1d45a) C:\WINXP\system32\drivers\NDProxy.sys
01:21:54.0109 1752 NDProxy - ok
01:21:54.0125 1752 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINXP\system32\DRIVERS\netbios.sys
01:21:54.0250 1752 NetBIOS - ok
01:21:54.0359 1752 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINXP\system32\DRIVERS\netbt.sys
01:21:54.0484 1752 NetBT - ok
01:21:54.0640 1752 NETw4x32 (18b2d3e11ed7a3c898ade6a6692b6929) C:\WINXP\system32\DRIVERS\NETw4x32.sys
01:21:54.0921 1752 NETw4x32 - ok
01:21:55.0031 1752 NIC1394 (e9e47cfb2d461fa0fc75b7a74c6383ea) C:\WINXP\system32\DRIVERS\nic1394.sys
01:21:55.0156 1752 NIC1394 - ok
01:21:55.0187 1752 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINXP\system32\drivers\Npfs.sys
01:21:55.0296 1752 Npfs - ok
01:21:55.0312 1752 NSCIRDA (2adc0ca9945c65284b3d19bc18765974) C:\WINXP\system32\DRIVERS\nscirda.sys
01:21:55.0437 1752 NSCIRDA - ok
01:21:55.0468 1752 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINXP\system32\drivers\Ntfs.sys
01:21:55.0656 1752 Ntfs - ok
01:21:55.0781 1752 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINXP\system32\drivers\Null.sys
01:21:55.0906 1752 Null - ok
01:21:55.0937 1752 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINXP\system32\DRIVERS\nwlnkflt.sys
01:21:56.0062 1752 NwlnkFlt - ok
01:21:56.0093 1752 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINXP\system32\DRIVERS\nwlnkfwd.sys
01:21:56.0203 1752 NwlnkFwd - ok
01:21:56.0265 1752 ohci1394 (ca33832df41afb202ee7aeb05145922f) C:\WINXP\system32\DRIVERS\ohci1394.sys
01:21:56.0390 1752 ohci1394 - ok
01:21:56.0531 1752 Parport (f84785660305b9b903fb3bca8ba29837) C:\WINXP\system32\drivers\Parport.sys
01:21:56.0656 1752 Parport - ok
01:21:56.0687 1752 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINXP\system32\drivers\PartMgr.sys
01:21:56.0812 1752 PartMgr - ok
01:21:56.0843 1752 ParVdm (c2bf987829099a3eaa2ca6a0a90ecb4f) C:\WINXP\system32\drivers\ParVdm.sys
01:21:56.0953 1752 ParVdm - ok
01:21:57.0078 1752 Pcan_usb (d553e88d06a74126e6fc0439086ccc08) C:\WINXP\system32\DRIVERS\Pcan_usb.sys
01:21:57.0109 1752 Pcan_usb ( UnsignedFile.Multi.Generic ) - warning
01:21:57.0109 1752 Pcan_usb - detected UnsignedFile.Multi.Generic (1)
01:21:57.0187 1752 PCI (387e8dedc343aa2d1efbc30580273acd) C:\WINXP\system32\DRIVERS\pci.sys
01:21:57.0312 1752 PCI - ok
01:21:57.0421 1752 pcidnt - ok
01:21:57.0437 1752 PCIDump - ok
01:21:57.0484 1752 PCIIde (59ba86d9a61cbcf4df8e598c331f5b82) C:\WINXP\system32\DRIVERS\pciide.sys
01:21:57.0609 1752 PCIIde - ok
01:21:57.0640 1752 Pcmcia (a2a966b77d61847d61a3051df87c8c97) C:\WINXP\system32\DRIVERS\pcmcia.sys
01:21:57.0765 1752 Pcmcia - ok
01:21:57.0843 1752 PDCOMP - ok
01:21:57.0875 1752 PDFRAME - ok
01:21:57.0906 1752 PDRELI - ok
01:21:57.0921 1752 PDRFRAME - ok
01:21:57.0984 1752 Peakcan (fa7a52633531826b0d6065a5159e8c57) C:\WINXP\system32\Drivers\Peakcan.sys
01:21:58.0000 1752 Peakcan ( UnsignedFile.Multi.Generic ) - warning
01:21:58.0000 1752 Peakcan - detected UnsignedFile.Multi.Generic (1)
01:21:58.0078 1752 perc2 - ok
01:21:58.0093 1752 perc2hib - ok
01:21:58.0250 1752 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINXP\system32\DRIVERS\raspptp.sys
01:21:58.0375 1752 PptpMiniport - ok
01:21:58.0406 1752 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINXP\system32\DRIVERS\psched.sys
01:21:58.0515 1752 PSched - ok
01:21:58.0562 1752 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINXP\system32\DRIVERS\ptilink.sys
01:21:58.0687 1752 Ptilink - ok
01:21:58.0781 1752 PxHelp20 (e42e3433dbb4cffe8fdd91eab29aea8e) C:\WINXP\system32\Drivers\PxHelp20.sys
01:21:58.0796 1752 PxHelp20 - ok
01:21:58.0812 1752 ql1080 - ok
01:21:58.0828 1752 Ql10wnt - ok
01:21:58.0859 1752 ql12160 - ok
01:21:58.0875 1752 ql1240 - ok
01:21:58.0906 1752 ql1280 - ok
01:21:59.0015 1752 R-ImageDisk (1733bf9a42dd56372bff8ba04c14005c) C:\Programme\R-Drive Image\R-ImageDisk.sys
01:21:59.0031 1752 R-ImageDisk ( UnsignedFile.Multi.Generic ) - warning
01:21:59.0031 1752 R-ImageDisk - detected UnsignedFile.Multi.Generic (1)
01:21:59.0109 1752 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINXP\system32\DRIVERS\rasacd.sys
01:21:59.0234 1752 RasAcd - ok
01:21:59.0312 1752 Rasirda (0207d26ddf796a193ccd9f83047bb5fc) C:\WINXP\system32\DRIVERS\rasirda.sys
01:21:59.0359 1752 Rasirda - ok
01:21:59.0421 1752 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINXP\system32\DRIVERS\rasl2tp.sys
01:21:59.0546 1752 Rasl2tp - ok
01:21:59.0640 1752 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINXP\system32\DRIVERS\raspppoe.sys
01:21:59.0781 1752 RasPppoe - ok
01:21:59.0828 1752 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINXP\system32\DRIVERS\raspti.sys
01:21:59.0953 1752 Raspti - ok
01:22:00.0000 1752 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINXP\system32\DRIVERS\rdbss.sys
01:22:00.0125 1752 Rdbss - ok
01:22:00.0203 1752 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINXP\system32\DRIVERS\RDPCDD.sys
01:22:00.0328 1752 RDPCDD - ok
01:22:00.0406 1752 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINXP\system32\DRIVERS\rdpdr.sys
01:22:00.0546 1752 rdpdr - ok
01:22:00.0578 1752 RDPWD (6728e45b66f93c08f11de2e316fc70dd) C:\WINXP\system32\drivers\RDPWD.sys
01:22:00.0703 1752 RDPWD - ok
01:22:00.0812 1752 redbook (ed761d453856f795a7fe056e42c36365) C:\WINXP\system32\DRIVERS\redbook.sys
01:22:00.0937 1752 redbook - ok
01:22:01.0171 1752 ROOTMODEM (d8b0b4ade32574b2d9c5cc34dc0dbbe7) C:\WINXP\system32\Drivers\RootMdm.sys
01:22:01.0296 1752 ROOTMODEM - ok
01:22:01.0359 1752 RSI-PKTX-A (9d1aff516d727612363c03abdc203380) C:\WINXP\System32\drivers\RSI-PKTX-A.SYS
01:22:01.0359 1752 RSI-PKTX-A ( UnsignedFile.Multi.Generic ) - warning
01:22:01.0359 1752 RSI-PKTX-A - detected UnsignedFile.Multi.Generic (1)
01:22:01.0468 1752 RsiKtControl (c4c9900e86a5a2cf5bcd393f19986a05) C:\WINXP\system32\RSIKT.SYS
01:22:01.0593 1752 RsiKtControl ( UnsignedFile.Multi.Generic ) - warning
01:22:01.0593 1752 RsiKtControl - detected UnsignedFile.Multi.Generic (1)
01:22:01.0718 1752 RSLINXNGKtControl (9e866a7c540c6a4b21bd5255a2a2bd0d) C:\WINXP\System32\drivers\RSIKTNG.SYS
01:22:01.0734 1752 RSLINXNGKtControl ( UnsignedFile.Multi.Generic ) - warning
01:22:01.0734 1752 RSLINXNGKtControl - detected UnsignedFile.Multi.Generic (1)
01:22:01.0765 1752 RSSERIAL (b089419975668e2a701178032d652a24) C:\WINXP\SYSTEM32\RSSERIAL.SYS
01:22:01.0796 1752 RSSERIAL ( UnsignedFile.Multi.Generic ) - warning
01:22:01.0796 1752 RSSERIAL - detected UnsignedFile.Multi.Generic (1)
01:22:01.0875 1752 RS_SS_NT (e4fab1cdfaed6ef7542606aa055b104a) C:\WINXP\SYSTEM32\RS_SS_NT.SYS
01:22:01.0906 1752 RS_SS_NT ( UnsignedFile.Multi.Generic ) - warning
01:22:01.0906 1752 RS_SS_NT - detected UnsignedFile.Multi.Generic (1)
01:22:02.0031 1752 rtHAL (4809b74b1e76197408bf8f47102854f3) C:\PROGRAMME\COPA-DATA\ZENON 6.21 SP1\CDrtHAL_wxp_ia32.sys
01:22:02.0078 1752 rtHAL ( UnsignedFile.Multi.Generic ) - warning
01:22:02.0078 1752 rtHAL - detected UnsignedFile.Multi.Generic (1)
01:22:02.0203 1752 s24trans (2220783b32a9f91df87f3e8315f091e7) C:\WINXP\system32\DRIVERS\s24trans.sys
01:22:02.0218 1752 s24trans ( UnsignedFile.Multi.Generic ) - warning
01:22:02.0218 1752 s24trans - detected UnsignedFile.Multi.Generic (1)
01:22:02.0296 1752 s7odpx2x (fea94d6320c1c813ab79b74db83f468f) C:\WINXP\System32\Drivers\S7odpx2x.sys
01:22:02.0296 1752 s7odpx2x ( UnsignedFile.Multi.Generic ) - warning
01:22:02.0296 1752 s7odpx2x - detected UnsignedFile.Multi.Generic (1)
01:22:02.0343 1752 s7oefs_x (f4e4348f0ecc78a61a190e447eb2467d) C:\WINXP\System32\drivers\s7oefs_x.sys
01:22:02.0359 1752 s7oefs_x ( UnsignedFile.Multi.Generic ) - warning
01:22:02.0359 1752 s7oefs_x - detected UnsignedFile.Multi.Generic (1)
01:22:02.0484 1752 S7opcsrtx (a8114fc3bb7de5feeae32e854574ef57) C:\WINXP\system32\DRIVERS\s7opcsrtx.sys
01:22:02.0500 1752 S7opcsrtx ( UnsignedFile.Multi.Generic ) - warning
01:22:02.0500 1752 S7opcsrtx - detected UnsignedFile.Multi.Generic (1)
01:22:02.0531 1752 s7osmcax (588feeaafbda18c00a8f697f19c2bde7) C:\WINXP\System32\Drivers\s7osmcax.sys
01:22:02.0546 1752 s7osmcax ( UnsignedFile.Multi.Generic ) - warning
01:22:02.0546 1752 s7osmcax - detected UnsignedFile.Multi.Generic (1)
01:22:02.0640 1752 s7otranx (d60b08e3251cd16c60dc03e36764a081) C:\WINXP\System32\Drivers\s7otranx.sys
01:22:02.0656 1752 s7otranx ( UnsignedFile.Multi.Generic ) - warning
01:22:02.0656 1752 s7otranx - detected UnsignedFile.Multi.Generic (1)
01:22:02.0781 1752 s7otsadx (8e3c275dcc2398ff9dec17d2efc20fff) C:\WINXP\System32\Drivers\s7otsadx.sys
01:22:02.0812 1752 s7otsadx ( UnsignedFile.Multi.Generic ) - warning
01:22:02.0812 1752 s7otsadx - detected UnsignedFile.Multi.Generic (1)
01:22:02.0875 1752 S7OUPC2X (32fe2b4e726e823133b18f6bd9c02523) C:\WINXP\system32\DRIVERS\s7oupc2x.sys
01:22:02.0890 1752 S7OUPC2X ( UnsignedFile.Multi.Generic ) - warning
01:22:02.0890 1752 S7OUPC2X - detected UnsignedFile.Multi.Generic (1)
01:22:02.0937 1752 s7snsrtx (1b2666464be6719e1122c53eba487dd6) C:\WINXP\system32\DRIVERS\s7snsrtx.sys
01:22:02.0968 1752 s7snsrtx ( UnsignedFile.Multi.Generic ) - warning
01:22:02.0968 1752 s7snsrtx - detected UnsignedFile.Multi.Generic (1)
01:22:03.0156 1752 sdbus (8d04819a3ce51b9eb47e5689b44d43c4) C:\WINXP\system32\DRIVERS\sdbus.sys
01:22:03.0281 1752 sdbus - ok
01:22:03.0328 1752 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINXP\system32\DRIVERS\secdrv.sys
01:22:03.0453 1752 Secdrv - ok
01:22:03.0531 1752 Sentinel (4b926f60ccce0c410591c66446675496) C:\WINXP\System32\Drivers\SENTINEL.SYS
01:22:03.0531 1752 Sentinel - ok
01:22:03.0640 1752 Ser2pl (de0a165d9f8ea295e62ea702ef2f8125) C:\WINXP\system32\DRIVERS\ser2pl.sys
01:22:03.0656 1752 Ser2pl ( UnsignedFile.Multi.Generic ) - warning
01:22:03.0656 1752 Ser2pl - detected UnsignedFile.Multi.Generic (1)
01:22:03.0718 1752 Serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINXP\system32\DRIVERS\serenum.sys
01:22:03.0843 1752 Serenum - ok
01:22:03.0875 1752 Serial (cf24eb4f0412c82bcd1f4f35a025e31d) C:\WINXP\system32\drivers\Serial.sys
01:22:03.0984 1752 Serial - ok
01:22:04.0093 1752 sermouse (e8f3e51da8098201f50678cec5fce179) C:\WINXP\system32\DRIVERS\sermouse.sys
01:22:04.0218 1752 sermouse - ok
01:22:04.0312 1752 sffdisk (0fa803c64df0914b41f807ea276bf2a6) C:\WINXP\system32\DRIVERS\sffdisk.sys
01:22:04.0421 1752 sffdisk - ok
01:22:04.0453 1752 sffp_mmc (d66d22d76878bf3483a6be30183fb648) C:\WINXP\system32\DRIVERS\sffp_mmc.sys
01:22:04.0578 1752 sffp_mmc - ok
01:22:04.0703 1752 sffp_sd (c17c331e435ed8737525c86a7557b3ac) C:\WINXP\system32\DRIVERS\sffp_sd.sys
01:22:04.0828 1752 sffp_sd - ok
01:22:04.0890 1752 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINXP\system32\DRIVERS\sfloppy.sys
01:22:05.0015 1752 Sfloppy - ok
01:22:05.0109 1752 SIGMA16 (e081bd92a37bfeb2f84d33b3f57f3f06) C:\WINXP\system32\Drivers\Sigma16.sys
01:22:05.0125 1752 SIGMA16 ( UnsignedFile.Multi.Generic ) - warning
01:22:05.0125 1752 SIGMA16 - detected UnsignedFile.Multi.Generic (1)
01:22:05.0234 1752 Sigma32 (9fbf689427f8874ded6417b18cd668ee) C:\WINXP\System32\Drivers\Sigma32.sys
01:22:05.0250 1752 Sigma32 ( UnsignedFile.Multi.Generic ) - warning
01:22:05.0250 1752 Sigma32 - detected UnsignedFile.Multi.Generic (1)
01:22:05.0281 1752 Simbad - ok
01:22:05.0328 1752 SLIP (866d538ebe33709a5c9f5c62b73b7d14) C:\WINXP\system32\DRIVERS\SLIP.sys
01:22:05.0453 1752 SLIP - ok
01:22:05.0625 1752 SNTIE (d953a20a0ad1052e44e5dfce6d352bba) C:\WINXP\system32\DRIVERS\sntie.sys
01:22:05.0640 1752 SNTIE ( UnsignedFile.Multi.Generic ) - warning
01:22:05.0640 1752 SNTIE - detected UnsignedFile.Multi.Generic (1)
01:22:05.0750 1752 SONYPVU1 (a1eceeaa5c5e74b2499eb51d38185b84) C:\WINXP\system32\DRIVERS\SONYPVU1.SYS
01:22:05.0875 1752 SONYPVU1 - ok
01:22:05.0937 1752 Sparrow - ok
01:22:06.0015 1752 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINXP\system32\drivers\splitter.sys
01:22:06.0140 1752 splitter - ok
01:22:06.0203 1752 sr (50fa898f8c032796d3b1b9951bb5a90f) C:\WINXP\system32\DRIVERS\sr.sys
01:22:06.0312 1752 sr - ok
01:22:06.0343 1752 Srv (5252605079810904e31c332e241cd59b) C:\WINXP\system32\DRIVERS\srv.sys
01:22:06.0468 1752 Srv - ok
01:22:06.0609 1752 ssmdrv (a36ee93698802cd899f98bfd553d8185) C:\WINXP\system32\DRIVERS\ssmdrv.sys
01:22:06.0609 1752 ssmdrv - ok
01:22:06.0703 1752 streamip (77813007ba6265c4b6098187e6ed79d2) C:\WINXP\system32\DRIVERS\StreamIP.sys
01:22:06.0828 1752 streamip - ok
01:22:06.0875 1752 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINXP\system32\DRIVERS\swenum.sys
01:22:07.0000 1752 swenum - ok
01:22:07.0109 1752 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINXP\system32\drivers\swmidi.sys
01:22:07.0218 1752 swmidi - ok
01:22:07.0250 1752 symc810 - ok
01:22:07.0281 1752 symc8xx - ok
01:22:07.0296 1752 sym_hi - ok
01:22:07.0328 1752 sym_u3 - ok
01:22:07.0359 1752 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINXP\system32\drivers\sysaudio.sys
01:22:07.0484 1752 sysaudio - ok
01:22:07.0531 1752 Tcpip (93ea8d04ec73a85db02eb8805988f733) C:\WINXP\system32\DRIVERS\tcpip.sys
01:22:07.0671 1752 Tcpip - ok
01:22:07.0796 1752 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINXP\system32\drivers\TDPIPE.sys
01:22:07.0906 1752 TDPIPE - ok
01:22:07.0937 1752 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINXP\system32\drivers\TDTCP.sys
01:22:08.0062 1752 TDTCP - ok
01:22:08.0078 1752 TermDD (88155247177638048422893737429d9e) C:\WINXP\system32\DRIVERS\termdd.sys
01:22:08.0203 1752 TermDD - ok
01:22:08.0281 1752 tifm21 (78213f01ce781f93180bef5eb5b3ad81) C:\WINXP\system32\drivers\tifm21.sys
01:22:08.0312 1752 tifm21 - ok
01:22:08.0390 1752 TosIde - ok
01:22:08.0484 1752 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINXP\system32\drivers\Udfs.sys
01:22:08.0609 1752 Udfs - ok
01:22:08.0656 1752 UIUSys (7020c64a20709b39cbe4a1cf371a9cd5) C:\WINXP\system32\DRIVERS\UIUSYS.SYS
01:22:08.0671 1752 UIUSys ( UnsignedFile.Multi.Generic ) - warning
01:22:08.0671 1752 UIUSys - detected UnsignedFile.Multi.Generic (1)
01:22:08.0687 1752 ultra - ok
01:22:08.0750 1752 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINXP\system32\DRIVERS\update.sys
01:22:08.0890 1752 Update - ok
01:22:09.0046 1752 USBAAPL (1df89c499bf45d878b87ebd4421d462d) C:\WINXP\system32\Drivers\usbaapl.sys
01:22:09.0093 1752 USBAAPL - ok
01:22:09.0125 1752 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINXP\system32\DRIVERS\usbccgp.sys
01:22:09.0250 1752 usbccgp - ok
01:22:09.0312 1752 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINXP\system32\DRIVERS\usbehci.sys
01:22:09.0421 1752 usbehci - ok
01:22:09.0546 1752 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINXP\system32\DRIVERS\usbhub.sys
01:22:09.0656 1752 usbhub - ok
01:22:09.0687 1752 usbprint (a717c8721046828520c9edf31288fc00) C:\WINXP\system32\DRIVERS\usbprint.sys
01:22:09.0812 1752 usbprint - ok
01:22:09.0859 1752 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINXP\system32\DRIVERS\usbscan.sys
01:22:09.0968 1752 usbscan - ok
01:22:10.0000 1752 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINXP\system32\DRIVERS\USBSTOR.SYS
01:22:10.0109 1752 USBSTOR - ok
01:22:10.0234 1752 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINXP\system32\DRIVERS\usbuhci.sys
01:22:10.0343 1752 usbuhci - ok
01:22:10.0375 1752 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINXP\System32\drivers\vga.sys
01:22:10.0500 1752 VgaSave - ok
01:22:10.0515 1752 ViaIde - ok
01:22:10.0625 1752 VirtualBackplane - ok
01:22:10.0687 1752 VolSnap (a5a712f4e880874a477af790b5186e1d) C:\WINXP\system32\drivers\VolSnap.sys
01:22:10.0812 1752 VolSnap - ok
01:22:10.0890 1752 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINXP\system32\DRIVERS\wanarp.sys
01:22:11.0000 1752 Wanarp - ok
01:22:11.0015 1752 WDICA - ok
01:22:11.0062 1752 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINXP\system32\drivers\wdmaud.sys
01:22:11.0171 1752 wdmaud - ok
01:22:11.0312 1752 WIBUKEY (afcea7939925378f867dde6af76f3924) C:\WINXP\system32\DRIVERS\WibuKey.sys
01:22:11.0343 1752 WIBUKEY ( UnsignedFile.Multi.Generic ) - warning
01:22:11.0343 1752 WIBUKEY - detected UnsignedFile.Multi.Generic (1)
01:22:11.0406 1752 winachsf (307d248f97835b6879bdd361086924fe) C:\WINXP\system32\DRIVERS\HSF_CNXT.sys
01:22:11.0453 1752 winachsf - ok
01:22:11.0640 1752 WinDriver6 (a38cb48bd7c3aa7c556912f720273133) C:\WINXP\system32\drivers\windrvr6.sys
01:22:11.0656 1752 WinDriver6 ( UnsignedFile.Multi.Generic ) - warning
01:22:11.0656 1752 WinDriver6 - detected UnsignedFile.Multi.Generic (1)
01:22:11.0843 1752 WmiAcpi (c42584fd66ce9e17403aebca199f7bdb) C:\WINXP\system32\DRIVERS\wmiacpi.sys
01:22:11.0953 1752 WmiAcpi - ok
01:22:12.0046 1752 WSTCODEC (c98b39829c2bbd34e454150633c62c78) C:\WINXP\system32\DRIVERS\WSTCODEC.SYS
01:22:12.0156 1752 WSTCODEC - ok
01:22:12.0234 1752 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINXP\system32\DRIVERS\WudfPf.sys
01:22:12.0312 1752 WudfPf - ok
01:22:12.0437 1752 WudfRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINXP\system32\DRIVERS\wudfrd.sys
01:22:12.0453 1752 WudfRd - ok
01:22:12.0562 1752 ZTEusbmdm6k (513c31379b7f107e69a908d6e69d3928) C:\WINXP\system32\DRIVERS\ZTEusbmdm6k.sys
01:22:12.0625 1752 ZTEusbmdm6k - ok
01:22:12.0734 1752 ZTEusbnmea (513c31379b7f107e69a908d6e69d3928) C:\WINXP\system32\DRIVERS\ZTEusbnmea.sys
01:22:12.0750 1752 ZTEusbnmea - ok
01:22:12.0796 1752 ZTEusbser6k (513c31379b7f107e69a908d6e69d3928) C:\WINXP\system32\DRIVERS\ZTEusbser6k.sys
01:22:12.0812 1752 ZTEusbser6k - ok
01:22:12.0890 1752 MBR (0x1B8) (72b8ce41af0de751c946802b3ed844b4) \Device\Harddisk0\DR0
01:22:13.0125 1752 \Device\Harddisk0\DR0 - ok
01:22:13.0125 1752 Boot (0x1200) (897f83d9ab08c758dff1a993b3ae6c94) \Device\Harddisk0\DR0\Partition0
01:22:13.0125 1752 \Device\Harddisk0\DR0\Partition0 - ok
01:22:13.0140 1752 ============================================================
01:22:13.0140 1752 Scan finished
01:22:13.0140 1752 ============================================================
01:22:13.0296 1724 Detected object count: 43
01:22:13.0296 1724 Actual detected object count: 43
01:23:33.0921 1724 a347bus ( UnsignedFile.Multi.Generic ) - skipped by user
01:23:33.0921 1724 a347bus ( UnsignedFile.Multi.Generic ) - User select action: Skip
01:23:33.0921 1724 a347scsi ( UnsignedFile.Multi.Generic ) - skipped by user
01:23:33.0921 1724 a347scsi ( UnsignedFile.Multi.Generic ) - User select action: Skip
01:23:33.0937 1724 ABKTCX ( UnsignedFile.Multi.Generic ) - skipped by user
01:23:33.0937 1724 ABKTCX ( UnsignedFile.Multi.Generic ) - User select action: Skip
01:23:33.0953 1724 ABPCIC ( UnsignedFile.Multi.Generic ) - skipped by user
01:23:33.0953 1724 ABPCIC ( UnsignedFile.Multi.Generic ) - User select action: Skip
01:23:33.0953 1724 atapi ( LockedFile.Multi.Generic ) - skipped by user
01:23:33.0953 1724 atapi ( LockedFile.Multi.Generic ) - User select action: Skip
01:23:33.0968 1724 BASFND ( UnsignedFile.Multi.Generic ) - skipped by user
01:23:33.0968 1724 BASFND ( UnsignedFile.Multi.Generic ) - User select action: Skip
01:23:33.0984 1724 CdaC15BA ( UnsignedFile.Multi.Generic ) - skipped by user
01:23:33.0984 1724 CdaC15BA ( UnsignedFile.Multi.Generic ) - User select action: Skip
01:23:34.0000 1724 ctndrvd ( UnsignedFile.Multi.Generic ) - skipped by user
01:23:34.0000 1724 ctndrvd ( UnsignedFile.Multi.Generic ) - User select action: Skip
01:23:34.0000 1724 d347bus ( UnsignedFile.Multi.Generic ) - skipped by user
01:23:34.0000 1724 d347bus ( UnsignedFile.Multi.Generic ) - User select action: Skip
01:23:34.0015 1724 d347prt ( UnsignedFile.Multi.Generic ) - skipped by user
01:23:34.0015 1724 d347prt ( UnsignedFile.Multi.Generic ) - User select action: Skip
01:23:34.0031 1724 dpmcslv ( UnsignedFile.Multi.Generic ) - skipped by user
01:23:34.0031 1724 dpmcslv ( UnsignedFile.Multi.Generic ) - User select action: Skip
01:23:34.0046 1724 Dpmtrcdd ( UnsignedFile.Multi.Generic ) - skipped by user
01:23:34.0046 1724 Dpmtrcdd ( UnsignedFile.Multi.Generic ) - User select action: Skip
01:23:34.0046 1724 DrvSnSht ( UnsignedFile.Multi.Generic ) - skipped by user
01:23:34.0046 1724 DrvSnSht ( UnsignedFile.Multi.Generic ) - User select action: Skip
01:23:34.0062 1724 fwkbd ( UnsignedFile.Multi.Generic ) - skipped by user
01:23:34.0062 1724 fwkbd ( UnsignedFile.Multi.Generic ) - User select action: Skip
01:23:34.0078 1724 Haspnt ( UnsignedFile.Multi.Generic ) - skipped by user
01:23:34.0078 1724 Haspnt ( UnsignedFile.Multi.Generic ) - User select action: Skip
01:23:34.0093 1724 imagedrv ( UnsignedFile.Multi.Generic ) - skipped by user
01:23:34.0093 1724 imagedrv ( UnsignedFile.Multi.Generic ) - User select action: Skip
01:23:34.0093 1724 imagesrv ( UnsignedFile.Multi.Generic ) - skipped by user
01:23:34.0093 1724 imagesrv ( UnsignedFile.Multi.Generic ) - User select action: Skip
01:23:34.0109 1724 Kbdclass ( UnsignedFile.Multi.Generic ) - skipped by user
01:23:34.0109 1724 Kbdclass ( UnsignedFile.Multi.Generic ) - User select action: Skip
01:23:34.0125 1724 Pcan_usb ( UnsignedFile.Multi.Generic ) - skipped by user
01:23:34.0125 1724 Pcan_usb ( UnsignedFile.Multi.Generic ) - User select action: Skip
01:23:34.0140 1724 Peakcan ( UnsignedFile.Multi.Generic ) - skipped by user
01:23:34.0140 1724 Peakcan ( UnsignedFile.Multi.Generic ) - User select action: Skip
01:23:34.0140 1724 R-ImageDisk ( UnsignedFile.Multi.Generic ) - skipped by user
01:23:34.0140 1724 R-ImageDisk ( UnsignedFile.Multi.Generic ) - User select action: Skip
01:23:34.0156 1724 RSI-PKTX-A ( UnsignedFile.Multi.Generic ) - skipped by user
01:23:34.0156 1724 RSI-PKTX-A ( UnsignedFile.Multi.Generic ) - User select action: Skip
01:23:34.0171 1724 RsiKtControl ( UnsignedFile.Multi.Generic ) - skipped by user
01:23:34.0171 1724 RsiKtControl ( UnsignedFile.Multi.Generic ) - User select action: Skip
01:23:34.0171 1724 RSLINXNGKtControl ( UnsignedFile.Multi.Generic ) - skipped by user
01:23:34.0171 1724 RSLINXNGKtControl ( UnsignedFile.Multi.Generic ) - User select action: Skip
01:23:34.0187 1724 RSSERIAL ( UnsignedFile.Multi.Generic ) - skipped by user
01:23:34.0187 1724 RSSERIAL ( UnsignedFile.Multi.Generic ) - User select action: Skip
01:23:34.0187 1724 RS_SS_NT ( UnsignedFile.Multi.Generic ) - skipped by user
01:23:34.0187 1724 RS_SS_NT ( UnsignedFile.Multi.Generic ) - User select action: Skip
01:23:34.0203 1724 rtHAL ( UnsignedFile.Multi.Generic ) - skipped by user
01:23:34.0203 1724 rtHAL ( UnsignedFile.Multi.Generic ) - User select action: Skip
01:23:34.0218 1724 s24trans ( UnsignedFile.Multi.Generic ) - skipped by user
01:23:34.0218 1724 s24trans ( UnsignedFile.Multi.Generic ) - User select action: Skip
01:23:34.0234 1724 s7odpx2x ( UnsignedFile.Multi.Generic ) - skipped by user
01:23:34.0234 1724 s7odpx2x ( UnsignedFile.Multi.Generic ) - User select action: Skip
01:23:34.0234 1724 s7oefs_x ( UnsignedFile.Multi.Generic ) - skipped by user
01:23:34.0234 1724 s7oefs_x ( UnsignedFile.Multi.Generic ) - User select action: Skip
01:23:34.0250 1724 S7opcsrtx ( UnsignedFile.Multi.Generic ) - skipped by user
01:23:34.0250 1724 S7opcsrtx ( UnsignedFile.Multi.Generic ) - User select action: Skip
01:23:34.0265 1724 s7osmcax ( UnsignedFile.Multi.Generic ) - skipped by user
01:23:34.0265 1724 s7osmcax ( UnsignedFile.Multi.Generic ) - User select action: Skip
01:23:34.0281 1724 s7otranx ( UnsignedFile.Multi.Generic ) - skipped by user
01:23:34.0281 1724 s7otranx ( UnsignedFile.Multi.Generic ) - User select action: Skip
01:23:34.0281 1724 s7otsadx ( UnsignedFile.Multi.Generic ) - skipped by user
01:23:34.0281 1724 s7otsadx ( UnsignedFile.Multi.Generic ) - User select action: Skip
01:23:34.0296 1724 S7OUPC2X ( UnsignedFile.Multi.Generic ) - skipped by user
01:23:34.0296 1724 S7OUPC2X ( UnsignedFile.Multi.Generic ) - User select action: Skip
01:23:34.0296 1724 s7snsrtx ( UnsignedFile.Multi.Generic ) - skipped by user
01:23:34.0296 1724 s7snsrtx ( UnsignedFile.Multi.Generic ) - User select action: Skip
01:23:34.0296 1724 Ser2pl ( UnsignedFile.Multi.Generic ) - skipped by user
01:23:34.0296 1724 Ser2pl ( UnsignedFile.Multi.Generic ) - User select action: Skip
01:23:34.0296 1724 SIGMA16 ( UnsignedFile.Multi.Generic ) - skipped by user
01:23:34.0296 1724 SIGMA16 ( UnsignedFile.Multi.Generic ) - User select action: Skip
01:23:34.0312 1724 Sigma32 ( UnsignedFile.Multi.Generic ) - skipped by user
01:23:34.0312 1724 Sigma32 ( UnsignedFile.Multi.Generic ) - User select action: Skip
01:23:34.0312 1724 SNTIE ( UnsignedFile.Multi.Generic ) - skipped by user
01:23:34.0312 1724 SNTIE ( UnsignedFile.Multi.Generic ) - User select action: Skip
01:23:34.0343 1724 UIUSys ( UnsignedFile.Multi.Generic ) - skipped by user
01:23:34.0343 1724 UIUSys ( UnsignedFile.Multi.Generic ) - User select action: Skip
01:23:34.0343 1724 WIBUKEY ( UnsignedFile.Multi.Generic ) - skipped by user
01:23:34.0343 1724 WIBUKEY ( UnsignedFile.Multi.Generic ) - User select action: Skip
01:23:34.0343 1724 WinDriver6 ( UnsignedFile.Multi.Generic ) - skipped by user
01:23:34.0343 1724 WinDriver6 ( UnsignedFile.Multi.Generic ) - User select action: Skip

So jetzt weiß ich nicht wie ich weiter vorgehen soll.

Das Problem besteht noch immer.

Bitte um rasche Hilfe

mfg
Achmo

Alt 11.02.2012, 01:18   #2
achmo123
 
Kostenpflichtiges update! - Standard

Kostenpflichtiges update!



OTL.txtOTL Logfile:
Code:
ATTFilter
OTL logfile created on: 11.02.2012 02:14:15 - Run 1
OTL by OldTimer - Version 3.2.17.3     Folder = C:\Dokumente und Einstellungen\AH\Eigene Dateien\Downloads
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000C07 | Country: Österreich | Language: DEA | Date Format: dd.MM.yyyy
 
2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 66,00% Memory free
4,00 Gb Paging File | 3,00 Gb Available in Paging File | 89,00% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\WINXP | %ProgramFiles% = C:\Programme
Drive C: | 149,04 Gb Total Space | 3,05 Gb Free Space | 2,04% Space Free | Partition Type: NTFS
Drive E: | 343,20 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS
 
Computer Name: ACHMO | User Name: AH | Logged in as Administrator.
Boot Mode: SafeMode with Networking | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
========== Processes (SafeList) ==========
 
PRC - [2012.02.11 02:00:28 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Dokumente und Einstellungen\AH\Eigene Dateien\Downloads\OTL.exe
PRC - [2012.02.08 21:31:09 | 000,924,632 | ---- | M] (Mozilla Corporation) -- C:\Programme\Mozilla Firefox\firefox.exe
PRC - [2012.02.08 21:31:09 | 000,016,856 | ---- | M] (Mozilla Corporation) -- C:\Programme\Mozilla Firefox\plugin-container.exe
PRC - [2008.04.14 06:52:46 | 001,036,800 | ---- | M] (Microsoft Corporation) -- C:\WINXP\explorer.exe
 
 
========== Modules (SafeList) ==========
 
MOD - [2012.02.11 02:00:28 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Dokumente und Einstellungen\AH\Eigene Dateien\Downloads\OTL.exe
MOD - [2009.07.12 01:12:06 | 000,632,656 | ---- | M] (Microsoft Corporation) -- C:\WINXP\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.4053_x-ww_e6967989\msvcr80.dll
MOD - [2009.07.11 18:41:02 | 000,097,280 | ---- | M] (Microsoft Corporation) -- C:\WINXP\WinSxS\x86_Microsoft.VC80.ATL_1fc8b3b9a1e18e3b_8.0.50727.4053_x-ww_473666fd\ATL80.dll
MOD - [2008.04.13 22:07:58 | 000,208,384 | ---- | M] (Microsoft Corporation) -- C:\WINXP\system32\rsaenh.dll
 
 
========== Win32 Services (SafeList) ==========
 
SRV - [2012.01.17 13:05:41 | 000,054,784 | ---- | M] (Macrovision) [Auto | Stopped] -- C:\WINXP\system32\drivers\CDAC11BA.EXE -- (C-DillaCdaC11BA)
SRV - [2012.01.13 14:53:18 | 000,652,360 | ---- | M] (Malwarebytes Corporation) [Auto | Stopped] -- C:\Programme\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2011.12.15 14:59:48 | 000,086,224 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Stopped] -- C:\Programme\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService)
SRV - [2011.12.15 14:59:38 | 000,110,032 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Stopped] -- C:\Programme\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService)
SRV - [2011.12.14 19:49:50 | 000,110,592 | ---- | M] (Lenze Drive Systems GmbH) [On_Demand | Stopped] -- C:\Programme\Lenze\Systembus\Canphsrv.exe -- (CanPhoneService)
SRV - [2011.12.14 19:49:34 | 000,139,488 | ---- | M] (OPC Foundation) [On_Demand | Stopped] -- C:\WINXP\system32\OpcEnum.exe -- (OpcEnum)
SRV - [2011.12.14 19:49:32 | 000,086,016 | ---- | M] (Lenze Automation GmbH) [On_Demand | Stopped] -- C:\Programme\Lenze\Systembus\McCan2Service.exe -- (McCan2 Wrapper Service)
SRV - [2010.07.08 13:18:29 | 000,333,264 | ---- | M] () [Auto | Stopped] -- C:\Programme\3DataManager\WTGService.exe -- (WTGService)
SRV - [2010.06.30 08:00:49 | 000,655,624 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Programme\Gemeinsame Dateien\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2010.03.29 08:13:56 | 001,594,368 | ---- | M] (SIEMENS AG) [Auto | Stopped] -- C:\Programme\Gemeinsame Dateien\Siemens\sws\almsrv\almsrvx.exe -- (almservice)
SRV - [2010.03.02 07:47:30 | 001,576,072 | ---- | M] (SIEMENS AG) [Auto | Stopped] -- C:\Programme\Gemeinsame Dateien\Siemens\S7IEPG\s7oiehsx.exe -- (s7oiehsx)
SRV - [2010.03.02 07:47:30 | 000,240,776 | ---- | M] (SIEMENS AG) [Auto | Stopped] -- C:\Programme\Gemeinsame Dateien\Siemens\Automation\TraceEngine\bin\S7TraceServiceX.exe -- (S7TraceServiceX)
SRV - [2010.02.22 16:53:34 | 000,116,008 | ---- | M] (CyberLink) [Auto | Stopped] -- C:\Programme\CyberLink\CyberLink Live\CLPushUpdateService.exe -- (CyberLink Live Push Update Service)
SRV - [2010.02.22 16:53:16 | 000,353,576 | ---- | M] (CyberLink) [Auto | Stopped] -- C:\Programme\CyberLink\CyberLink Live\CLLiveMonitorService.exe -- (CyberLink Live Monitor Service)
SRV - [2010.02.22 16:53:12 | 000,357,672 | ---- | M] (CyberLink Corp.) [Auto | Stopped] -- C:\Programme\CyberLink\CyberLink Live\CLLiveService.exe -- (CyberLink Live Service)
SRV - [2009.08.28 19:42:54 | 000,144,672 | ---- | M] (Apple Inc.) [Auto | Stopped] -- C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe -- (Apple Mobile Device)
SRV - [2008.07.14 18:02:20 | 000,069,685 | ---- | M] (SIEMENS AG) [Auto | Stopped] -- C:\Programme\Siemens\Step7\S7BIN\s7asysvx.exe -- (s7asysvx)
SRV - [2007.09.17 07:02:46 | 000,812,360 | ---- | M] (COPA-DATA GmbH) [Auto | Stopped] -- C:\Programme\Gemeinsame Dateien\COPA-DATA\zenAdminSrv\zenAdminSrv.exe -- (zenAdminSrv)
SRV - [2007.07.18 03:42:58 | 000,080,688 | ---- | M] (Invensys Systems, Inc.) [On_Demand | Stopped] -- C:\Programme\Gemeinsame Dateien\ArchestrA\wwnetdde.exe -- (WWNetDDE)
SRV - [2007.07.18 01:58:22 | 000,229,446 | ---- | M] (Invensys Systems, Inc.) [Disabled | Stopped] -- C:\Programme\Gemeinsame Dateien\ArchestrA\aaLogger.exe -- (aaLogger)
SRV - [2007.06.28 19:01:26 | 000,331,853 | ---- | M] (SIEMENS AG) [Auto | Stopped] -- C:\Programme\Gemeinsame Dateien\Siemens\ace\bin\RedundancyControl.exe -- (RedundancyControl)
SRV - [2007.06.28 19:00:16 | 000,192,581 | ---- | M] (SIEMENS AG) [Auto | Stopped] -- C:\Programme\Gemeinsame Dateien\Siemens\ace\bin\CCEServer.exe -- (CCEServer)
SRV - [2007.06.28 17:58:40 | 000,122,945 | ---- | M] (SIEMENS AG) [Auto | Stopped] -- C:\Programme\Gemeinsame Dateien\Siemens\ace\bin\SCSMX.exe -- (SCSMonitor)
SRV - [2007.06.28 17:58:12 | 000,110,667 | ---- | M] (SIEMENS AG) [Auto | Stopped] -- C:\Programme\Gemeinsame Dateien\Siemens\ace\bin\RedundancyState.exe -- (RedundancyState)
SRV - [2007.06.28 17:54:42 | 000,225,349 | ---- | M] (SIEMENS AG) [On_Demand | Stopped] -- C:\Programme\Gemeinsame Dateien\Siemens\ace\bin\CCEClient.exe -- (CCEClient)
SRV - [2007.06.28 17:52:52 | 000,266,307 | ---- | M] (SIEMENS AG) [Auto | Stopped] -- C:\Programme\Gemeinsame Dateien\Siemens\ace\bin\CCAgent.exe -- (CCAgent)
SRV - [2007.04.16 10:33:18 | 000,647,168 | ---- | M] (Intel Corporation) [Auto | Stopped] -- C:\Programme\Intel\Wireless\Bin\EvtEng.exe -- (EvtEng) Intel(R)
SRV - [2007.04.16 10:21:20 | 000,983,040 | ---- | M] (Intel Corporation ) [Auto | Stopped] -- C:\Programme\Intel\Wireless\Bin\S24EvMon.exe -- (S24EventMonitor) Intel(R)
SRV - [2007.04.16 10:14:24 | 000,327,680 | ---- | M] (Intel Corporation) [Auto | Stopped] -- C:\Programme\Intel\Wireless\Bin\RegSrvc.exe -- (RegSrvc) Intel(R)
SRV - [2006.12.19 13:16:20 | 000,079,432 | ---- | M] (Broadcom Corporation) [Auto | Stopped] -- C:\Programme\Broadcom\ASFIPMon\AsfIpMon.exe -- (ASFIPmon)
SRV - [2006.10.26 19:49:34 | 000,441,136 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Programme\Gemeinsame Dateien\Microsoft Shared\OFFICE12\ODSERV.EXE -- (odserv)
SRV - [2006.10.26 14:03:08 | 000,145,184 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Programme\Gemeinsame Dateien\Microsoft Shared\Source Engine\OSE.EXE -- (ose)
SRV - [2005.08.28 21:31:44 | 000,073,728 | ---- | M] (Rockwell Software, Inc.) [On_Demand | Stopped] -- C:\Programme\Rockwell Software\RSView Enterprise\RsActivityLogServ.exe -- (Rockwell HMI Activity Logger)
SRV - [2005.08.28 20:31:54 | 000,135,168 | ---- | M] (Rockwell Software, Inc.) [On_Demand | Stopped] -- C:\Programme\Rockwell Software\RSView Enterprise\TagSrv.exe -- (Rockwell Tag Server)
SRV - [2005.08.28 20:24:04 | 000,077,824 | ---- | M] (Rockwell Software, Inc.) [Auto | Stopped] -- C:\Programme\Rockwell Software\RSView Enterprise\HMIDIAGNOSTICSLSTADAPT.exe -- (Rockwell HMI Diagnostics)
SRV - [2005.07.29 15:45:46 | 001,896,720 | ---- | M] (Rockwell Software, Inc.) [Auto | Stopped] -- C:\Programme\Rockwell Software\RSLinx\RSLINX.EXE -- (RSLinx)
SRV - [2005.06.23 19:10:04 | 000,192,512 | ---- | M] (Rockwell Software Inc.) [On_Demand | Stopped] -- C:\Programme\Rockwell Software\RSCommon\RSOBSERV.EXE -- (Harmony)
SRV - [2005.06.23 17:42:12 | 000,131,072 | ---- | M] (Rockwell Software Inc.) [Auto | Stopped] -- C:\Programme\Gemeinsame Dateien\Rockwell\RsvcHost.exe -- (RsvcHost)
SRV - [2005.06.23 16:56:24 | 000,065,536 | ---- | M] () [On_Demand | Stopped] -- C:\Programme\Gemeinsame Dateien\Rockwell\RNADiagReceiver.exe -- (RNADiagReceiver)
SRV - [2005.06.23 16:56:12 | 000,028,672 | ---- | M] (Rockwell Automation) [Auto | Stopped] -- C:\Programme\Gemeinsame Dateien\Rockwell\RNADiagnosticsSrv.exe -- (RNADiagnosticsService)
SRV - [2005.06.23 16:38:50 | 000,471,040 | ---- | M] (Rockwell Software Inc.) [On_Demand | Stopped] -- C:\Programme\Gemeinsame Dateien\Rockwell\RNADirMultiplexor.exe -- (RNADirMultiplexor)
SRV - [2005.06.23 16:38:26 | 000,520,192 | ---- | M] (Rockwell Software Inc.) [Auto | Stopped] -- C:\Programme\Gemeinsame Dateien\Rockwell\RnaDirServer.exe -- (RNADirectory)
SRV - [2005.06.23 16:30:22 | 000,221,184 | ---- | M] (Rockwell Software Inc.) [On_Demand | Stopped] -- C:\Programme\Gemeinsame Dateien\Rockwell\EventClientMultiplexer.exe -- (EventClientMultiplexer)
SRV - [2005.06.23 16:29:56 | 000,172,032 | ---- | M] (Rockwell Software Inc.) [On_Demand | Stopped] -- C:\Programme\Gemeinsame Dateien\Rockwell\EventServer.exe -- (EventServer)
SRV - [2005.06.14 10:56:16 | 000,135,168 | ---- | M] (Rockwell Automation) [Auto | Stopped] -- C:\Programme\Rockwell Software\RSLinx Enterprise\RSLinxNG.exe -- (RSLinxNG)
SRV - [2005.05.05 00:43:04 | 000,040,960 | ---- | M] (Invensys Systems, Inc.) [Auto | Stopped] -- C:\Programme\Gemeinsame Dateien\ArchestrA\slssvc.exe -- (slssvc)
SRV - [2005.04.03 23:41:10 | 000,069,632 | ---- | M] (Macrovision Corporation) [On_Demand | Stopped] -- C:\Programme\Gemeinsame Dateien\InstallShield\Driver\11\Intel 32\IDriverT.exe -- (IDriverT)
SRV - [2005.01.12 19:37:28 | 000,032,845 | ---- | M] (Wonderware Corporation) [Auto | Stopped] -- C:\Programme\Gemeinsame Dateien\ArchestrA\NTServApp.exe -- (FS Service Control)
SRV - [2003.06.19 22:25:00 | 000,322,120 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7DEBUG\MDM.EXE -- (MDM)
SRV - [2002.04.29 07:51:00 | 000,073,728 | ---- | M] () [On_Demand | Stopped] -- C:\Programme\Rockwell Software\RSLinx\dnwhodisp.exe -- (dnWhoDisp)
SRV - [1998.06.06 00:00:00 | 000,034,036 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Programme\Microsoft Visual Studio\COMMON\Tools\VS-Ent98\Vanalyzr\VARPC.EXE -- (Visual Studio Analyzer RPC bridge)
 
 
========== Driver Services (SafeList) ==========
 
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINXP\System32\Drivers\VirtualBackplane.sys -- (VirtualBackplane)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINXP\System32\Drivers\pcidnt.sys -- (pcidnt)
DRV - File not found [Kernel | System | Stopped] -- C:\WINXP\System32\DRIVERS\DK12DRV.SYS -- (DK12DRV)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINXP\System32\ABRNA.SYS -- (ABRNA)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINXP\System32\ABPIC.SYS -- (ABPIC)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINXP\System32\ABKT.SYS -- (ABKT)
DRV - [2012.01.17 14:51:10 | 000,047,616 | ---- | M] (Aladdin Knowledge Systems) [Kernel | Auto | Stopped] -- C:\WINXP\system32\drivers\Haspnt.sys -- (Haspnt)
DRV - [2012.01.17 13:05:42 | 000,012,464 | ---- | M] (Macrovision Europe Ltd) [Kernel | Auto | Stopped] -- C:\WINXP\system32\drivers\CDAC15BA.SYS -- (CdaC15BA)
DRV - [2011.12.15 15:00:00 | 000,134,856 | ---- | M] (Avira GmbH) [Kernel | System | Stopped] -- C:\WINXP\system32\drivers\avipbb.sys -- (avipbb)
DRV - [2011.12.15 15:00:00 | 000,074,640 | ---- | M] (Avira GmbH) [File_System | Auto | Stopped] -- C:\WINXP\system32\drivers\avgntflt.sys -- (avgntflt)
DRV - [2011.12.15 15:00:00 | 000,036,000 | ---- | M] (Avira GmbH) [Kernel | System | Stopped] -- C:\WINXP\system32\drivers\avkmgr.sys -- (avkmgr)
DRV - [2011.12.10 15:24:06 | 000,020,464 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Stopped] -- C:\WINXP\system32\drivers\mbam.sys -- (MBAMProtector)
DRV - [2011.10.31 17:14:20 | 000,105,856 | ---- | M] (ZTE Incorporated) [Kernel | On_Demand | Stopped] -- C:\WINXP\system32\drivers\ZTEusbser6k.sys -- (ZTEusbser6k)
DRV - [2011.10.31 17:14:20 | 000,105,856 | ---- | M] (ZTE Incorporated) [Kernel | On_Demand | Stopped] -- C:\WINXP\system32\drivers\ZTEusbnmea.sys -- (ZTEusbnmea)
DRV - [2011.10.31 17:14:20 | 000,105,856 | ---- | M] (ZTE Incorporated) [Kernel | On_Demand | Stopped] -- C:\WINXP\system32\drivers\ZTEusbmdm6k.sys -- (ZTEusbmdm6k)
DRV - [2011.10.31 17:14:20 | 000,010,240 | ---- | M] (ZTE Incorporated) [Kernel | On_Demand | Stopped] -- C:\WINXP\system32\drivers\massfilter.sys -- (massfilter)
DRV - [2010.06.17 14:14:27 | 000,028,520 | ---- | M] (Avira GmbH) [Kernel | System | Stopped] -- C:\WINXP\system32\drivers\ssmdrv.sys -- (ssmdrv)
DRV - [2010.05.05 09:22:27 | 000,072,704 | ---- | M] (WIBU-SYSTEMS AG) [Kernel | Auto | Stopped] -- C:\WINXP\system32\drivers\WibuKey.sys -- (WIBUKEY)
DRV - [2010.04.08 10:15:56 | 000,012,112 | ---- | M] (Siemens AG) [Kernel | On_Demand | Running] -- C:\WINXP\System32\drivers\fwkbdrtm.sys -- (fwkbdrtm)
DRV - [2010.03.02 07:42:08 | 000,171,008 | ---- | M] (SIEMENS AG) [Kernel | Auto | Stopped] -- C:\WINXP\System32\Drivers\s7otsadx.sys -- (s7otsadx)
DRV - [2010.03.02 07:41:54 | 000,508,416 | ---- | M] (SIEMENS AG) [Kernel | Auto | Stopped] -- C:\WINXP\System32\Drivers\s7otranx.sys -- (s7otranx)
DRV - [2010.03.02 07:40:40 | 000,173,568 | ---- | M] (SIEMENS AG) [Kernel | Auto | Stopped] -- C:\WINXP\System32\Drivers\s7osmcax.sys -- (s7osmcax)
DRV - [2010.03.02 07:37:40 | 000,077,312 | ---- | M] (SIEMENS AG) [Kernel | Auto | Stopped] -- C:\WINXP\System32\Drivers\S7odpx2x.sys -- (s7odpx2x)
DRV - [2010.03.01 15:51:54 | 000,031,232 | ---- | M] (SIEMENS AG) [Kernel | Auto | Stopped] -- C:\WINXP\system32\drivers\s7opcsrtx.sys -- (S7opcsrtx) PROFINET IO RT-Protocol (LLDP)
DRV - [2010.01.20 16:33:02 | 000,244,064 | ---- | M] (PEAK-System Technik GmbH, Darmstadt, Germany) [Kernel | Auto | Stopped] -- C:\WINXP\system32\drivers\PEAKCAN.SYS -- (Peakcan)
DRV - [2009.11.26 10:35:30 | 000,274,496 | ---- | M] (PEAK-System Technik GmbH, Darmstadt, Germany) [Kernel | On_Demand | Stopped] -- C:\WINXP\system32\drivers\Pcan_usb.sys -- (Pcan_usb)
DRV - [2009.06.05 11:56:22 | 000,311,424 | ---- | M] (SIEMENS AG) [Kernel | Auto | Stopped] -- C:\WINXP\system32\drivers\SNTIE.SYS -- (SNTIE) SIMATIC Industrial Ethernet (ISO)
DRV - [2009.02.24 16:39:58 | 000,073,088 | ---- | M] (SIEMENS AG) [Kernel | Auto | Stopped] -- C:\WINXP\system32\drivers\s7snsrtx.sys -- (s7snsrtx)
DRV - [2009.02.18 14:35:27 | 000,071,488 | R--- | M] (FTDI Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINXP\system32\drivers\ftser2k.sys -- (FTSER2K)
DRV - [2009.02.18 14:35:27 | 000,053,184 | R--- | M] (FTDI Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINXP\system32\drivers\ftdibus.sys -- (FTDIBUS)
DRV - [2008.10.18 14:12:07 | 004,424,192 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\WINXP\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2008.08.14 06:57:42 | 000,074,720 | ---- | M] (Adobe Systems, Inc.) [Kernel | Auto | Stopped] -- C:\WINXP\System32\drivers\adfs.sys -- (adfs)
DRV - [2008.04.24 17:46:48 | 000,192,768 | R--- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINXP\system32\drivers\hcw47xxx.sys -- (hcw47000)
DRV - [2008.04.13 23:24:38 | 000,028,672 | ---- | M] (National Semiconductor Corporation) [Kernel | On_Demand | Stopped] -- C:\WINXP\system32\drivers\nscirda.sys -- (NSCIRDA)
DRV - [2008.04.13 23:16:24 | 000,015,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINXP\system32\drivers\mpe.sys -- (MPE)
DRV - [2008.04.13 21:06:06 | 000,144,384 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Running] -- C:\WINXP\system32\drivers\hdaudbus.sys -- (HDAudBus)
DRV - [2007.12.21 13:39:10 | 000,094,608 | ---- | M] (R-TT Inc.) [Kernel | On_Demand | Stopped] -- C:\Programme\R-Drive Image\DrvSnSht.sys -- (DrvSnSht)
DRV - [2007.12.21 13:39:10 | 000,085,431 | ---- | M] (R-TT Inc.) [Kernel | On_Demand | Stopped] -- C:\Programme\R-Drive Image\R-ImageDisk.sys -- (R-ImageDisk)
DRV - [2007.11.20 17:35:48 | 000,049,792 | ---- | M] (Prolific Technology Inc.) [Kernel | On_Demand | Stopped] -- C:\WINXP\system32\drivers\ser2pl.sys -- (Ser2pl)
DRV - [2007.09.17 07:05:28 | 000,029,768 | ---- | M] () [Kernel | Auto | Stopped] -- C:\WINXP\system32\drivers\cdprotdrv.sys -- (CDProtDrv)
DRV - [2007.06.27 11:56:02 | 000,028,041 | ---- | M] (SIGMATEK GmbH & Co KG) [Kernel | Auto | Stopped] -- C:\WINXP\System32\Drivers\Sigma32.sys -- (Sigma32)
DRV - [2007.06.25 14:47:16 | 000,028,363 | ---- | M] (SIEMENS AG) [Kernel | Auto | Stopped] -- C:\WINXP\system32\drivers\dpmtrcdd.sys -- (Dpmtrcdd)
DRV - [2007.06.05 14:48:58 | 005,761,728 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\WINXP\system32\drivers\igxpmp32.sys -- (ialm)
DRV - [2007.05.02 02:52:00 | 000,290,816 | ---- | M] (Texas Instruments) [Kernel | On_Demand | Stopped] -- C:\WINXP\system32\drivers\tifm21.sys -- (tifm21)
DRV - [2007.04.30 20:37:20 | 002,206,976 | R--- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\WINXP\system32\drivers\NETw4x32.sys -- (NETw4x32) Intel(R)
DRV - [2007.04.23 05:36:46 | 000,118,272 | ---- | M] () [Kernel | Auto | Stopped] -- C:\Programme\COPA-DATA\zenOn 6.21 SP1\CDrtHAL_WXP_IA32.sys -- (rtHAL)
DRV - [2007.04.01 03:02:42 | 000,876,384 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\WINXP\system32\drivers\btkrnl.sys -- (BTKRNL)
DRV - [2007.04.01 03:02:40 | 000,055,352 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\WINXP\system32\drivers\btwhid.sys -- (btwhid)
DRV - [2007.03.29 14:19:36 | 000,012,416 | ---- | M] (Intel Corporation) [Kernel | Auto | Stopped] -- C:\WINXP\system32\drivers\s24trans.sys -- (s24trans)
DRV - [2007.03.24 00:50:42 | 000,067,960 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\WINXP\system32\drivers\btwusb.sys -- (BTWUSB)
DRV - [2007.03.24 00:50:36 | 000,037,280 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\WINXP\system32\drivers\btwmodem.sys -- (btwmodem)
DRV - [2007.03.24 00:50:24 | 000,149,123 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\WINXP\system32\drivers\btwdndis.sys -- (BTWDNDIS)
DRV - [2007.03.24 00:50:08 | 000,037,424 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\WINXP\system32\drivers\btport.sys -- (BTDriver)
DRV - [2007.03.24 00:49:54 | 000,539,072 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\WINXP\system32\drivers\btaudio.sys -- (btaudio)
DRV - [2007.02.16 14:46:00 | 000,160,256 | R--- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\WINXP\system32\drivers\b57xp32.sys -- (b57w2k)
DRV - [2006.12.23 01:56:44 | 000,988,800 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINXP\system32\drivers\HSF_DPV.sys -- (HSF_DPV)
DRV - [2006.12.23 01:56:00 | 000,209,664 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINXP\system32\drivers\HSFHWAZL.sys -- (HSFHWAZL)
DRV - [2006.12.23 01:55:56 | 000,730,112 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINXP\system32\drivers\HSF_CNXT.sys -- (winachsf)
DRV - [2006.12.21 07:30:02 | 000,090,688 | ---- | M] (SafeNet, Inc.) [Kernel | Auto | Stopped] -- C:\WINXP\System32\Drivers\SENTINEL.SYS -- (Sentinel)
DRV - [2006.12.19 13:16:24 | 000,010,480 | ---- | M] (Broadcom Corporation) [Kernel | Auto | Stopped] -- C:\Programme\Broadcom\ASFIPMon\BASFND.sys -- (BASFND)
DRV - [2006.09.07 09:08:42 | 000,006,488 | ---- | M] (Control Techniques Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINXP\system32\drivers\ctndrv2.sys -- (ctndrvd)
DRV - [2006.06.09 23:38:24 | 000,006,909 | R--- | M] (Conexant Systems, Inc) [Kernel | On_Demand | Stopped] -- C:\WINXP\system32\drivers\UIUSYS.SYS -- (UIUSys)
DRV - [2005.07.28 08:18:40 | 000,685,056 | ---- | M] (Aladdin Knowledge Systems Ltd.) [Kernel | System | Stopped] -- C:\WINXP\system32\drivers\hardlock.sys -- (Hardlock)
DRV - [2005.07.20 18:08:28 | 000,100,096 | ---- | M] (Aladdin Knowledge Systems Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINXP\system32\drivers\aksusb.sys -- (aksusb)
DRV - [2005.07.20 18:08:26 | 000,327,808 | ---- | M] (Aladdin Knowledge Systems Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINXP\system32\drivers\akshasp.sys -- (akshasp)
DRV - [2005.07.04 15:04:30 | 000,068,280 | ---- | M] (Siemens AG) [Kernel | On_Demand | Stopped] -- C:\WINXP\System32\drivers\dpmcslv.sys -- (dpmcslv)
DRV - [2005.02.18 10:07:24 | 000,023,034 | ---- | M] (GTI-process mbH) [Kernel | System | Running] -- C:\WINXP\system32\drivers\kbdcls.sys -- (Kbdclass)
DRV - [2005.01.14 11:01:04 | 000,021,536 | ---- | M] (SIEMENS AG) [Kernel | On_Demand | Stopped] -- C:\WINXP\system32\drivers\s7oupc2x.sys -- (S7OUPC2X)
DRV - [2004.11.09 12:17:28 | 000,318,332 | ---- | M] (Jungo) [Kernel | On_Demand | Running] -- C:\WINXP\system32\drivers\windrvr6.sys -- (WinDriver6)
DRV - [2004.08.22 15:31:48 | 000,005,248 | ---- | M] ( ) [Kernel | Boot | Running] -- C:\WINXP\System32\Drivers\d347prt.sys -- (d347prt)
DRV - [2004.08.22 15:31:10 | 000,155,136 | ---- | M] ( ) [Kernel | Boot | Running] -- C:\WINXP\system32\DRIVERS\d347bus.sys -- (d347bus)
DRV - [2004.08.03 21:59:44 | 000,095,360 | ---- | M] () [Kernel | Boot | Running] -- C:\WINXP\system32\DRIVERS\atapi.sys -- (atapi)
DRV - [2004.06.03 04:08:38 | 000,142,592 | ---- | M] (Rockwell Software, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINXP\SYSTEM32\RS_SS_NT.SYS -- (RS_SS_NT)
DRV - [2004.06.03 04:08:36 | 000,155,440 | ---- | M] (Rockwell Software Inc.) [Kernel | On_Demand | Stopped] -- C:\WINXP\SYSTEM32\RSSERIAL.SYS -- (RSSERIAL)
DRV - [2004.06.03 04:08:34 | 000,030,166 | ---- | M] (Rockwell Software, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINXP\system32\RSIKT.SYS -- (RsiKtControl)
DRV - [2004.06.03 04:08:04 | 000,097,740 | ---- | M] (Allen-Bradley) [Kernel | On_Demand | Stopped] -- C:\WINXP\System32\Drivers\ABPCIC.sys -- (ABPCIC)
DRV - [2004.06.03 04:08:02 | 000,071,448 | ---- | M] (Rockwell Software Inc.) [Kernel | On_Demand | Stopped] -- C:\WINXP\System32\Drivers\ABKTCX.sys -- (ABKTCX) Rockwell Software 1784-KTC(X)
DRV - [2004.04.30 09:37:02 | 000,160,640 | ---- | M] ( ) [Kernel | Boot | Running] -- C:\WINXP\system32\DRIVERS\a347bus.sys -- (a347bus)
DRV - [2004.04.30 09:33:00 | 000,005,248 | ---- | M] ( ) [Kernel | Boot | Running] -- C:\WINXP\System32\Drivers\a347scsi.sys -- (a347scsi)
DRV - [2004.03.03 21:30:54 | 000,125,184 | ---- | M] (Ahead Software AG) [Kernel | Boot | Running] -- C:\WINXP\system32\DRIVERS\imagesrv.sys -- (imagesrv)
DRV - [2004.03.03 21:30:54 | 000,005,504 | ---- | M] (Ahead Software AG) [Kernel | Boot | Running] -- C:\WINXP\System32\Drivers\imagedrv.sys -- (imagedrv)
DRV - [2002.11.13 14:38:40 | 000,016,447 | ---- | M] (Rockwell Automation) [Kernel | On_Demand | Stopped] -- C:\WINXP\System32\drivers\RSI-PKTX-A.SYS -- (RSI-PKTX-A)
DRV - [2002.11.13 08:40:28 | 000,002,976 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINXP\System32\drivers\FwKbd.sys -- (fwkbd)
DRV - [2002.10.18 01:34:14 | 000,030,512 | ---- | M] (SIEMENS AG) [Kernel | On_Demand | Stopped] -- C:\WINXP\System32\drivers\s7oefs_x.sys -- (s7oefs_x)
DRV - [2002.04.23 19:02:26 | 000,038,999 | ---- | M] (Rockwell Software Inc.) [Kernel | On_Demand | Stopped] -- C:\WINXP\System32\drivers\RSIKTNG.SYS -- (RSLINXNGKtControl)
DRV - [2001.08.30 09:13:06 | 000,003,444 | ---- | M] (SIGMATEK GmbH & Co KG hxxp://www.sigmatek.at) [Kernel | Auto | Stopped] -- C:\WINXP\system32\drivers\Sigma16.sys -- (SIGMA16)
 
 
========== Standard Registry (SafeList) ==========
 
 
========== Internet Explorer ==========
 
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINXP\system32\blank.htm
 
 
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
 
 
IE - HKU\S-1-5-21-436374069-688789844-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINXP\system32\blank.htm
IE - HKU\S-1-5-21-436374069-688789844-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.at/
IE - HKU\S-1-5-21-436374069-688789844-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
========== FireFox ==========
 
FF - prefs.js..browser.startup.homepage: "hxxp://www.google.at/"
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: {ACAA314B-EEBA-48e4-AD47-84E31C44796C}:1.0.1
FF - prefs.js..extensions.enabledItems: {23fcfd51-4958-4f00-80a3-ae97e717ed8b}:2.1.1.94
FF - prefs.js..extensions.enabledItems: {6904342A-8307-11DF-A508-4AE2DFD72085}:2.1.1.94
FF - prefs.js..extensions.enabledItems: {82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}:5.5.0.8013
 
FF - HKLM\software\mozilla\Firefox\extensions\\{23fcfd51-4958-4f00-80a3-ae97e717ed8b}: C:\Programme\DivX\DivX Plus Web Player\firefox\html5video [2011.04.10 20:56:25 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\extensions\\{6904342A-8307-11DF-A508-4AE2DFD72085}: C:\Programme\DivX\DivX Plus Web Player\firefox\wpa [2011.04.10 20:56:25 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 10.0.1\extensions\\Components: C:\Programme\Mozilla Firefox\components [2012.02.11 00:06:04 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 10.0.1\extensions\\Plugins: C:\Programme\Mozilla Firefox\plugins
 
[2010.02.04 20:57:37 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\AH\Anwendungsdaten\Mozilla\Extensions
[2011.05.09 08:26:32 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\AH\Anwendungsdaten\Mozilla\Firefox\Profiles\87seznqz.default\extensions
[2010.05.31 09:03:01 | 000,000,000 | ---D | M] (No name found) -- C:\Dokumente und Einstellungen\AH\Anwendungsdaten\Mozilla\Firefox\Profiles\87seznqz.default\extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}
[2012.02.11 00:06:04 | 000,000,000 | ---D | M] -- C:\Programme\Mozilla Firefox\extensions
[2011.08.18 01:36:19 | 000,000,000 | ---D | M] (Click to call with Skype) -- C:\Programme\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2012.02.08 21:31:10 | 000,134,104 | ---- | M] (Mozilla Foundation) -- C:\Programme\Mozilla Firefox\components\browsercomps.dll
[2012.02.08 18:36:16 | 000,001,392 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\amazondotcom-de.xml
[2012.02.08 18:21:19 | 000,002,252 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\bing.xml
[2012.02.08 18:36:16 | 000,001,153 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\eBay-de.xml
[2012.02.08 18:36:16 | 000,006,805 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\leo_ende_de.xml
[2012.02.08 18:36:16 | 000,001,178 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\wikipedia-de.xml
[2012.02.08 18:36:16 | 000,001,105 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\yahoo-de.xml
 
O1 HOSTS File: ([2010.06.30 08:27:46 | 000,000,820 | ---- | M]) - C:\WINXP\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1       localhost
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Programme\Gemeinsame Dateien\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: (DivX Plus Web Player HTML5 <video>) - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Programme\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
O2 - BHO: (DivX HiQ) - {593DDEC6-7468-4cdd-90E1-42DADAA222E9} - C:\Programme\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programme\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Programme\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Programme\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Programme\Google\GoogleToolbarNotifier\5.7.7227.1100\swg.dll (Google Inc.)
O2 - BHO: (FDMIECookiesBHO Class) - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Programme\Free Download Manager\iefdm2.dll ()
O2 - BHO: (Search Assistant) - {F0626A63-410B-45E2-99A1-3F2475B2D695} - C:\Programme\SGPSA\BHO.dll (MTWB)
O2 - BHO: (Fast Browser Search Toolbar Helper) - {FCBCCB87-9224-4B8D-B117-F56D924BEB18} - C:\Programme\Fast Browser Search\IE\FBStoolbar.dll ()
O3 - HKLM\..\Toolbar: (Fast Browser Search Toolbar) - {1BB22D38-A411-4B13-A746-C2A4F4EC7344} - C:\Programme\Fast Browser Search\IE\FBStoolbar.dll ()
O3 - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Programme\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O3 - HKU\S-1-5-21-436374069-688789844-725345543-1003\..\Toolbar\WebBrowser: (Fast Browser Search Toolbar) - {1BB22D38-A411-4B13-A746-C2A4F4EC7344} - C:\Programme\Fast Browser Search\IE\FBStoolbar.dll ()
O3 - HKU\S-1-5-21-436374069-688789844-725345543-1003\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Programme\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O4 - HKLM..\Run: [AdobeCS4ServiceManager] C:\Programme\Gemeinsame Dateien\Adobe\CS4ServiceManager\CS4ServiceManager.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [Alcmtr] C:\WINXP\Alcmtr.exe (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [avgnt] C:\Programme\Avira\AntiVir Desktop\avgnt.exe (Avira Operations GmbH & Co. KG)
O4 - HKLM..\Run: [AzMixerSel] C:\Programme\Realtek\InstallShield\AzMixerSel.exe (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [CLPushUpdate] C:\Programme\CyberLink\CyberLink Live\CLPushUpdate.exe (CyberLink)
O4 - HKLM..\Run: [COPA-DATA Database Connection] C:\Programme\COPA-DATA\zenOn 6.21 SP1\zenDbSrv.exe (COPA - DATA GmbH)
O4 - HKLM..\Run: [DAEMON Tools-1033] C:\Programme\D-Tools\daemon.exe (DAEMON'S HOME)
O4 - HKLM..\Run: [DivXUpdate] C:\Programme\DivX\DivX Update\DivXUpdate.exe ()
O4 - HKLM..\Run: [HPDJ Taskbar Utility] C:\WINXP\system32\spool\drivers\w32x86\3\hpztsb05.exe (HP)
O4 - HKLM..\Run: [IntelWireless] C:\Programme\Intel\Wireless\Bin\ifrmewrk.exe (Intel Corporation)
O4 - HKLM..\Run: [IntelZeroConfig] C:\Programme\Intel\Wireless\bin\ZCfgSvc.exe (Intel Corporation)
O4 - HKLM..\Run: [Lenze McCan2 Wrapper Service Launcher] C:\Programme\Lenze\Systembus\mccan2servicelauncher.exe (Lenze Automation GmbH)
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] C:\Programme\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [S7UB Start] C:\Programme\Gemeinsame Dateien\Siemens\S7ubtoox\s7ubtstx.exe (SIEMENS AG)
O4 - HKLM..\Run: [WinCC flexible Smart Start] C:\Programme\Siemens\SIMATIC WinCC flexible\WinCC flexible 2008\HmiSmartStart.exe (SIEMENS AG)
O4 - HKU\S-1-5-21-436374069-688789844-725345543-1003..\Run: [DeskCalc] c:\programme\deskcalc pro\deskcalc.exe (DeskCalc GbR)
O4 - HKU\S-1-5-21-436374069-688789844-725345543-1003..\Run: [swg] C:\Programme\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)
O4 - HKU\.DEFAULT..\RunOnce: [nltide_2]  File not found
O4 - HKU\S-1-5-18..\RunOnce: [nltide_2]  File not found
O4 - HKU\S-1-5-19..\RunOnce: [nltide_2]  File not found
O4 - HKU\S-1-5-20..\RunOnce: [nltide_2]  File not found
O4 - Startup: C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart\Launcher.lnk = C:\Programme\3DataManager\3DataManager_Launcher.exe ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 255
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-436374069-688789844-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-436374069-688789844-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoClose = 0
O7 - HKU\S-1-5-21-436374069-688789844-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLogoff = 0
O7 - HKU\S-1-5-21-436374069-688789844-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableLockWorkstation = 0
O7 - HKU\S-1-5-21-436374069-688789844-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableChangePassword = 0
O8 - Extra context menu item: Alles mit FDM herunterladen - C:\Programme\Free Download Manager\dlall.htm ()
O8 - Extra context menu item: Auswahl mit FDM herunterladen - C:\Programme\Free Download Manager\dlselected.htm ()
O8 - Extra context menu item: Datei mit FDM herunterladen - C:\Programme\Free Download Manager\dllink.htm ()
O8 - Extra context menu item: Free YouTube to Mp3 Converter - C:\Dokumente und Einstellungen\AH\Anwendungsdaten\DVDVideoSoftIEHelpers\youtubetomp3.htm ()
O8 - Extra context menu item: Senden an &Bluetooth-Gerät... - C:\Programme\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm ()
O8 - Extra context menu item: Videos mit FDM herunterladen - C:\Programme\Free Download Manager\dlfvideo.htm ()
O9 - Extra Button: Click to call with Skype - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Programme\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Click to call with Skype - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Programme\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_10-windows-i586.cab (Java Plug-in 1.6.0_10)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} hxxp://fpdownload.macromedia.com/get/flashplayer/current/ultrashim.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0010-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_10-windows-i586.cab (Java Plug-in 1.6.0_10)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_10-windows-i586.cab (Java Plug-in 1.6.0_10)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.116.201
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Programme\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINXP\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\igfxcui: DllName - igfxdev.dll - C:\WINXP\System32\igfxdev.dll (Intel Corporation)
O24 - Desktop Components:0 (Die derzeitige Homepage) - About:Home
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2008.10.16 22:54:09 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2003.03.20 20:25:08 | 000,000,043 | R--- | M] () - E:\autorun.inf -- [ CDFS ]
O33 - MountPoints2\{3c23849a-a079-11e0-9758-001f3c6aa237}\Shell - "" = AutoRun
O33 - MountPoints2\{3c23849a-a079-11e0-9758-001f3c6aa237}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{3c23849a-a079-11e0-9758-001f3c6aa237}\Shell\AutoRun\command - "" = F:\LaunchU3.exe -- File not found
O33 - MountPoints2\{4225d5a3-62d1-11de-9471-001f3c6aa237}\Shell\AutoRun\command - "" = F:\sm.exe -- File not found
O33 - MountPoints2\{4225d5a3-62d1-11de-9471-001f3c6aa237}\Shell\open\Command - "" = F:\sm.exe -- File not found
O33 - MountPoints2\{54cb052e-8f37-11df-95fa-001f3c6aa237}\Shell\AutoRun\command - "" = F:\i8gcgmg.exe -- File not found
O33 - MountPoints2\{54cb052e-8f37-11df-95fa-001f3c6aa237}\Shell\open\Command - "" = F:\i8gcgmg.exe -- File not found
O33 - MountPoints2\{58780772-1aa9-11de-941d-001f3c6aa237}\Shell - "" = AutoRun
O33 - MountPoints2\{58780772-1aa9-11de-941d-001f3c6aa237}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{58780772-1aa9-11de-941d-001f3c6aa237}\Shell\AutoRun\command - "" = F:\LaunchU3.exe -- File not found
O33 - MountPoints2\{5b09d3da-f10a-11de-954e-001f3c6aa237}\Shell\AutoRun\command - "" = F:\RECYCLER\S-1-6-21-2434076501-1644491937-600003330-1213\autorunz.exe -- File not found
O33 - MountPoints2\{5b09d3da-f10a-11de-954e-001f3c6aa237}\Shell\open\command - "" = F:\RECYCLER\S-1-6-21-2434076501-1644491937-600003330-1213\autorunz.exe -- File not found
O33 - MountPoints2\{607e94ee-20b3-11e1-97d5-001d72c0aa01}\Shell\AutoRun\command - "" = F:\setup.exe -- File not found
O33 - MountPoints2\{777d6eb4-c7b8-11de-9516-001f3c6aa237}\Shell\AutoRun\command - "" = F:\9b9w3.exe -- File not found
O33 - MountPoints2\{777d6eb4-c7b8-11de-9516-001f3c6aa237}\Shell\open\Command - "" = F:\9b9w3.exe -- File not found
O33 - MountPoints2\{7849f1eb-7564-11e0-9730-001d72c0aa01}\Shell\AutoRun\command - "" = F:\HPIbsS.exe -- File not found
O33 - MountPoints2\{7849f1eb-7564-11e0-9730-001d72c0aa01}\Shell\oPeN\COMMANd - "" = F:\HPiBSS.eXe -- File not found
O33 - MountPoints2\{826b4edb-aed5-11de-94e2-001f3c6aa237}\Shell\AutoRun\command - "" = F:\t2hjo0.exe -- File not found
O33 - MountPoints2\{826b4edb-aed5-11de-94e2-001f3c6aa237}\Shell\open\Command - "" = F:\t2hjo0.exe -- File not found
O33 - MountPoints2\{874087c4-9140-11de-94b7-001f3c6aa237}\Shell - "" = AutoRun
O33 - MountPoints2\{874087c4-9140-11de-94b7-001f3c6aa237}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{874087c4-9140-11de-94b7-001f3c6aa237}\Shell\AutoRun\command - "" = F:\LaunchU3.exe -- File not found
O33 - MountPoints2\{874087c5-9140-11de-94b7-001f3c6aa237}\Shell\AutoRun\command - "" = G:\t2hjo0.exe -- File not found
O33 - MountPoints2\{874087c5-9140-11de-94b7-001f3c6aa237}\Shell\open\Command - "" = G:\t2hjo0.exe -- File not found
O33 - MountPoints2\{a4e821a0-734c-11e0-972e-001f3c6aa237}\Shell\AutoRun\command - "" = F:\lHewds.EXE -- File not found
O33 - MountPoints2\{a4e821a0-734c-11e0-972e-001f3c6aa237}\Shell\opeN\cOmMAnD - "" = F:\lHeWds.Exe -- File not found
O33 - MountPoints2\{b6ac1b6b-0bf4-11df-956a-001f3c6aa237}\Shell - "" = AutoRun
O33 - MountPoints2\{b6ac1b6b-0bf4-11df-956a-001f3c6aa237}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{b6ac1b6b-0bf4-11df-956a-001f3c6aa237}\Shell\AutoRun\command - "" = F:\LaunchU3.exe -- File not found
O33 - MountPoints2\{de12535a-0131-11e1-97b0-001f3c6aa237}\Shell - "" = AutoRun
O33 - MountPoints2\{de12535a-0131-11e1-97b0-001f3c6aa237}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{de12535a-0131-11e1-97b0-001f3c6aa237}\Shell\AutoRun\command - "" = F:\.\Autorun.exe -- File not found
O33 - MountPoints2\{e23a686c-ddaf-11de-9532-001f3c6aa237}\Shell\AutoRun\command - "" = mantec/mantec32.exe
O33 - MountPoints2\{e23a686c-ddaf-11de-9532-001f3c6aa237}\Shell\explore\command - "" = mantec/mantec32.exe
O33 - MountPoints2\{e23a686c-ddaf-11de-9532-001f3c6aa237}\Shell\open\command - "" = .\mantec/mantec32.exe
O34 - HKLM BootExecute: (autocheck autochk *) -  File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
 
========== Files/Folders - Created Within 30 Days ==========
 
[2012.02.11 01:19:47 | 002,059,824 | ---- | C] (Kaspersky Lab ZAO) -- C:\Dokumente und Einstellungen\AH\Desktop\tdsskiller.exe
[2012.02.11 01:00:04 | 000,000,000 | ---D | C] -- C:\Programme\ESET
[2012.02.11 00:12:34 | 000,000,000 | RH-D | C] -- C:\Dokumente und Einstellungen\AH\Recent
[2012.02.10 08:21:17 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\AH\Anwendungsdaten\Avira
[2012.02.10 07:02:37 | 000,028,520 | ---- | C] (Avira GmbH) -- C:\WINXP\System32\drivers\ssmdrv.sys
[2012.02.10 07:02:33 | 000,134,856 | ---- | C] (Avira GmbH) -- C:\WINXP\System32\drivers\avipbb.sys
[2012.02.10 07:02:33 | 000,074,640 | ---- | C] (Avira GmbH) -- C:\WINXP\System32\drivers\avgntflt.sys
[2012.02.10 07:02:33 | 000,036,000 | ---- | C] (Avira GmbH) -- C:\WINXP\System32\drivers\avkmgr.sys
[2012.02.10 07:02:32 | 000,000,000 | ---D | C] -- C:\Programme\Avira
[2012.02.10 07:02:32 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Avira
[2012.02.09 20:14:29 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\AH\Anwendungsdaten\Malwarebytes
[2012.02.09 19:55:26 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Malwarebytes
[2012.02.09 19:55:25 | 000,020,464 | ---- | C] (Malwarebytes Corporation) -- C:\WINXP\System32\drivers\mbam.sys
[2012.02.09 19:55:25 | 000,000,000 | ---D | C] -- C:\Programme\Malwarebytes' Anti-Malware
[2012.02.09 19:39:33 | 010,847,608 | ---- | C] (Malwarebytes Corporation                                    ) -- C:\Dokumente und Einstellungen\AH\Desktop\mbam-setup-1.60.0.1800.exe
[2012.02.09 19:39:33 | 003,470,152 | ---- | C] (Systweak Inc                                                ) -- C:\Dokumente und Einstellungen\AH\Desktop\rcpsetup_softonic_sd.exe
[2012.02.06 08:51:45 | 000,135,258 | ---- | C] (3S-Smart Software Solutions GmbH) -- C:\WINXP\System32\GHandleStdcall.dll
[2012.02.06 08:51:45 | 000,081,408 | ---- | C] (PEAK-System Technik GmbH) -- C:\WINXP\System32\PCAN_USB.dll
[2012.02.06 08:51:45 | 000,069,120 | ---- | C] (PEAK-System Technik GmbH) -- C:\WINXP\System32\PCAN_DNG.dll
[2012.02.06 08:51:45 | 000,032,768 | ---- | C] (3S-Smart Software Solutions GmbH) -- C:\WINXP\System32\PEAK_USB.dll
[2012.02.06 08:51:45 | 000,032,768 | ---- | C] (3S-Smart Software Solutions GmbH) -- C:\WINXP\System32\PEAK_DNG.dll
[2012.02.06 08:51:43 | 000,040,960 | ---- | C] (3S-Smart Software Solutions GmbH) -- C:\WINXP\System32\CAN_VCI.dll
[2012.02.06 08:49:00 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\AH\Desktop\DDS_V24SP1
[2012.02.06 08:48:54 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\AH\Desktop\DDS_Professional_V24
[2012.01.17 14:51:10 | 000,047,616 | ---- | C] (Aladdin Knowledge Systems) -- C:\WINXP\System32\drivers\Haspnt.sys
[2012.01.17 14:51:10 | 000,006,656 | ---- | C] (Aladdin Knowledge Systems.) -- C:\WINXP\System32\haspvdd.dll
[2012.01.17 14:50:55 | 000,000,000 | ---D | C] -- C:\CADFILES
[2012.01.17 14:50:50 | 000,000,000 | ---D | C] -- C:\LICOMCFG
[2012.01.17 13:05:42 | 000,012,464 | ---- | C] (Macrovision Europe Ltd) -- C:\WINXP\System32\drivers\CDAC15BA.SYS
[2012.01.17 13:05:41 | 000,054,784 | ---- | C] (Macrovision) -- C:\WINXP\System32\drivers\CDAC11BA.EXE
[2012.01.17 13:04:58 | 000,000,000 | ---D | C] -- C:\Programme\AnswerWorks 4.0
[2012.01.17 13:04:57 | 000,000,000 | ---D | C] -- C:\WINXP\System32\Common Files
[2009.05.25 09:22:39 | 000,570,128 | ---- | C] (Microsoft Corporation) -- C:\Programme\Gemeinsame Dateien\dao350.dll
[2009.03.12 11:44:44 | 000,160,640 | ---- | C] ( ) -- C:\WINXP\System32\drivers\a347bus.sys
[2009.03.12 11:44:44 | 000,005,248 | ---- | C] ( ) -- C:\WINXP\System32\drivers\a347scsi.sys
[2008.10.18 14:31:11 | 000,155,136 | ---- | C] ( ) -- C:\WINXP\System32\drivers\d347bus.sys
[2008.10.18 14:31:11 | 000,005,248 | ---- | C] ( ) -- C:\WINXP\System32\drivers\d347prt.sys
[2008.10.17 00:10:34 | 000,172,032 | ---- | C] ( ) -- C:\WINXP\System32\rsnp2uvc.dll
[2008.10.17 00:10:34 | 000,053,248 | ---- | C] ( ) -- C:\WINXP\System32\csnp2uvc.dll
[2008.10.17 00:10:34 | 000,045,056 | ---- | C] ( ) -- C:\WINXP\PLFSet.dll
[4 C:\WINXP\*.tmp files -> C:\WINXP\*.tmp -> ]
[4 C:\*.tmp files -> C:\*.tmp -> ]
[2 C:\WINXP\System32\*.tmp files -> C:\WINXP\System32\*.tmp -> ]
 
========== Files - Modified Within 30 Days ==========
 
[2012.02.11 01:18:15 | 002,059,824 | ---- | M] (Kaspersky Lab ZAO) -- C:\Dokumente und Einstellungen\AH\Desktop\tdsskiller.exe
[2012.02.11 00:13:46 | 000,002,048 | --S- | M] () -- C:\WINXP\bootstat.dat
[2012.02.11 00:06:14 | 000,000,745 | ---- | M] () -- C:\Dokumente und Einstellungen\All Users\Desktop\Mozilla Firefox.lnk
[2012.02.10 23:38:22 | 000,001,090 | ---- | M] () -- C:\WINXP\tasks\GoogleUpdateTaskMachineUA.job
[2012.02.10 23:38:02 | 000,001,086 | ---- | M] () -- C:\WINXP\tasks\GoogleUpdateTaskMachineCore.job
[2012.02.10 23:20:56 | 000,002,237 | ---- | M] () -- C:\Dokumente und Einstellungen\All Users\Desktop\Skype.lnk
[2012.02.10 07:02:59 | 000,001,720 | ---- | M] () -- C:\Dokumente und Einstellungen\All Users\Desktop\Avira Control Center.lnk
[2012.02.09 20:00:57 | 000,000,185 | ---- | M] () -- C:\Delme.bat
[2012.02.09 19:40:24 | 003,470,152 | ---- | M] (Systweak Inc                                                ) -- C:\Dokumente und Einstellungen\AH\Desktop\rcpsetup_softonic_sd.exe
[2012.02.09 19:40:10 | 010,847,608 | ---- | M] (Malwarebytes Corporation                                    ) -- C:\Dokumente und Einstellungen\AH\Desktop\mbam-setup-1.60.0.1800.exe
[2012.02.08 10:50:01 | 000,000,276 | ---- | M] () -- C:\WINXP\tasks\AppleSoftwareUpdate.job
[2012.02.06 09:22:57 | 000,000,040 | ---- | M] () -- C:\WINXP\CoDeSysOPC.ini
[2012.02.06 08:53:00 | 000,033,858 | ---- | M] () -- C:\WINXP\System32\systembusconfig.xml
[2012.02.06 08:52:25 | 000,001,661 | ---- | M] () -- C:\Dokumente und Einstellungen\All Users\Desktop\Global Drive PLC Developer Studio Professional 2.4.lnk
[2012.02.05 21:07:23 | 013,353,222 | ---- | M] () -- C:\Dokumente und Einstellungen\AH\Desktop\MVI_0145.avi
[2012.02.05 10:48:38 | 000,002,206 | ---- | M] () -- C:\WINXP\System32\wpa.dbl
[2012.02.03 18:17:32 | 067,334,566 | ---- | M] () -- C:\Dokumente und Einstellungen\AH\Desktop\DDS_V24SP1.zip
[2012.02.03 18:17:14 | 076,896,610 | ---- | M] () -- C:\Dokumente und Einstellungen\AH\Desktop\DDS_Professional_V24.zip
[2012.02.01 18:17:20 | 000,158,208 | ---- | M] () -- C:\Dokumente und Einstellungen\AH\Eigene Dateien\Zeitkarte_Jahr2012.xls
[2012.01.31 16:43:48 | 365,129,220 | ---- | M] () -- C:\Dokumente und Einstellungen\AH\Desktop\MVI_0145.MOV
[2012.01.30 22:54:12 | 000,044,124 | ---- | M] () -- C:\Dokumente und Einstellungen\AH\Desktop\post2.jpg
[2012.01.30 20:26:46 | 000,049,382 | ---- | M] () -- C:\Dokumente und Einstellungen\AH\Desktop\54823.jpg
[2012.01.30 20:26:31 | 000,231,008 | ---- | M] () -- C:\Dokumente und Einstellungen\AH\Desktop\front.jpg
[2012.01.30 20:26:20 | 000,071,660 | ---- | M] () -- C:\Dokumente und Einstellungen\AH\Desktop\showphoto.php.jpeg
[2012.01.30 19:45:08 | 000,018,427 | ---- | M] () -- C:\Dokumente und Einstellungen\AH\Desktop\59664218.jpg
[2012.01.28 12:23:55 | 000,000,116 | ---- | M] () -- C:\WINXP\NeroDigital.ini
[2012.01.23 21:46:56 | 000,019,661 | ---- | M] () -- C:\Dokumente und Einstellungen\AH\Desktop\395552_3124302991565_1384347755_3168866_387673385_n.jpg
[2012.01.23 18:38:42 | 000,101,022 | ---- | M] () -- C:\Dokumente und Einstellungen\AH\Desktop\IMG_0126.JPG
[2012.01.23 18:38:17 | 000,105,131 | ---- | M] () -- C:\Dokumente und Einstellungen\AH\Desktop\IMG_0125.JPG
[2012.01.21 23:35:38 | 002,550,183 | ---- | M] () -- C:\Dokumente und Einstellungen\AH\Desktop\IMG_0110.JPG
[2012.01.19 11:09:23 | 002,977,280 | ---- | M] () -- C:\Dokumente und Einstellungen\AH\Desktop\Der_Musiker-Ch.pps
[2012.01.19 10:23:55 | 000,004,991 | ---- | M] () -- C:\Dokumente und Einstellungen\AH\Desktop\avatar.JPG
[2012.01.19 00:34:46 | 000,055,281 | ---- | M] () -- C:\Dokumente und Einstellungen\AH\Desktop\IMG_0082.JPG
[2012.01.18 15:34:48 | 000,003,751 | ---- | M] () -- C:\WINXP\WLSEDIT.INI
[2012.01.18 07:12:22 | 002,297,456 | ---- | M] () -- C:\WINXP\System32\FNTCACHE.DAT
[2012.01.17 14:51:10 | 000,047,616 | ---- | M] (Aladdin Knowledge Systems) -- C:\WINXP\System32\drivers\Haspnt.sys
[2012.01.17 14:51:10 | 000,006,656 | ---- | M] (Aladdin Knowledge Systems.) -- C:\WINXP\System32\haspvdd.dll
[2012.01.17 14:51:10 | 000,002,994 | ---- | M] () -- C:\WINXP\System32\CONFIG.NT
[2012.01.17 14:51:10 | 000,000,383 | ---- | M] () -- C:\WINXP\System32\haspdos.sys
[2012.01.17 13:05:42 | 000,012,464 | ---- | M] (Macrovision Europe Ltd) -- C:\WINXP\System32\drivers\CDAC15BA.SYS
[2012.01.17 13:05:41 | 000,054,784 | ---- | M] (Macrovision) -- C:\WINXP\System32\drivers\CDAC11BA.EXE
[2012.01.17 13:05:10 | 000,001,703 | ---- | M] () -- C:\Dokumente und Einstellungen\All Users\Desktop\AutoCAD 2004 Deu.lnk
[4 C:\WINXP\*.tmp files -> C:\WINXP\*.tmp -> ]
[4 C:\*.tmp files -> C:\*.tmp -> ]
[2 C:\WINXP\System32\*.tmp files -> C:\WINXP\System32\*.tmp -> ]
 
========== Files Created - No Company Name ==========
 
[2012.02.10 07:02:59 | 000,001,720 | ---- | C] () -- C:\Dokumente und Einstellungen\All Users\Desktop\Avira Control Center.lnk
[2012.02.09 20:00:57 | 000,000,185 | ---- | C] () -- C:\Delme.bat
[2012.02.06 08:52:25 | 000,001,661 | ---- | C] () -- C:\Dokumente und Einstellungen\All Users\Desktop\Global Drive PLC Developer Studio Professional 2.4.lnk
[2012.02.05 21:00:22 | 013,353,222 | ---- | C] () -- C:\Dokumente und Einstellungen\AH\Desktop\MVI_0145.avi
[2012.02.05 20:58:35 | 365,129,220 | ---- | C] () -- C:\Dokumente und Einstellungen\AH\Desktop\MVI_0145.MOV
[2012.02.03 18:09:44 | 067,334,566 | ---- | C] () -- C:\Dokumente und Einstellungen\AH\Desktop\DDS_V24SP1.zip
[2012.02.03 18:09:34 | 076,896,610 | ---- | C] () -- C:\Dokumente und Einstellungen\AH\Desktop\DDS_Professional_V24.zip
[2012.01.31 17:13:22 | 000,158,208 | ---- | C] () -- C:\Dokumente und Einstellungen\AH\Eigene Dateien\Zeitkarte_Jahr2012.xls
[2012.01.30 22:54:12 | 000,044,124 | ---- | C] () -- C:\Dokumente und Einstellungen\AH\Desktop\post2.jpg
[2012.01.30 20:26:46 | 000,049,382 | ---- | C] () -- C:\Dokumente und Einstellungen\AH\Desktop\54823.jpg
[2012.01.30 20:26:31 | 000,231,008 | ---- | C] () -- C:\Dokumente und Einstellungen\AH\Desktop\front.jpg
[2012.01.30 20:26:20 | 000,071,660 | ---- | C] () -- C:\Dokumente und Einstellungen\AH\Desktop\showphoto.php.jpeg
[2012.01.30 19:45:08 | 000,018,427 | ---- | C] () -- C:\Dokumente und Einstellungen\AH\Desktop\59664218.jpg
[2012.01.23 21:46:56 | 000,019,661 | ---- | C] () -- C:\Dokumente und Einstellungen\AH\Desktop\395552_3124302991565_1384347755_3168866_387673385_n.jpg
[2012.01.23 18:36:12 | 000,101,022 | ---- | C] () -- C:\Dokumente und Einstellungen\AH\Desktop\IMG_0126.JPG
[2012.01.23 18:36:11 | 000,105,131 | ---- | C] () -- C:\Dokumente und Einstellungen\AH\Desktop\IMG_0125.JPG
[2012.01.23 18:33:56 | 002,550,183 | ---- | C] () -- C:\Dokumente und Einstellungen\AH\Desktop\IMG_0110.JPG
[2012.01.19 11:09:11 | 002,977,280 | ---- | C] () -- C:\Dokumente und Einstellungen\AH\Desktop\Der_Musiker-Ch.pps
[2012.01.19 10:23:55 | 000,004,991 | ---- | C] () -- C:\Dokumente und Einstellungen\AH\Desktop\avatar.JPG
[2012.01.19 10:19:40 | 001,156,442 | ---- | C] () -- C:\Dokumente und Einstellungen\AH\Desktop\Scan70001.JPG
[2012.01.19 00:27:27 | 000,055,281 | ---- | C] () -- C:\Dokumente und Einstellungen\AH\Desktop\IMG_0082.JPG
[2012.01.18 15:34:48 | 000,003,751 | ---- | C] () -- C:\WINXP\WLSEDIT.INI
[2012.01.17 14:52:18 | 000,018,728 | ---- | C] () -- C:\WINXP\System32\ISHF_Ex.tlb
[2012.01.17 14:51:10 | 000,002,951 | ---- | C] () -- C:\WINXP\System32\config.hsp
[2012.01.17 14:51:10 | 000,000,383 | ---- | C] () -- C:\WINXP\System32\haspdos.sys
[2012.01.17 14:50:32 | 000,110,080 | ---- | C] () -- C:\WINXP\System32\xapi.dll
[2012.01.17 13:05:10 | 000,001,703 | ---- | C] () -- C:\Dokumente und Einstellungen\All Users\Desktop\AutoCAD 2004 Deu.lnk
[2011.11.24 10:45:41 | 000,000,034 | ---- | C] () -- C:\WINXP\deskcalc.INI
[2011.10.22 10:24:50 | 000,000,026 | ---- | C] () -- C:\WINXP\WD.INI
[2011.08.05 07:51:20 | 000,010,240 | ---- | C] () -- C:\WINXP\System32\candev.dll
[2011.02.20 01:09:30 | 000,056,832 | ---- | C] () -- C:\WINXP\System32\iyvu9_32.dll
[2011.02.20 00:51:38 | 000,000,000 | ---- | C] () -- C:\WINXP\SETUP32.INI
[2010.08.30 08:01:38 | 000,002,272 | ---- | C] () -- C:\Dokumente und Einstellungen\LocalService\Lokale Einstellungen\Anwendungsdaten\FontCache3.0.0.0.dat
[2010.05.05 09:33:11 | 000,029,768 | ---- | C] () -- C:\WINXP\System32\drivers\cdprotdrv.sys
[2010.05.05 09:29:22 | 000,001,626 | ---- | C] () -- C:\WINXP\{2D470C0F-8EED-4B5E-A5C6-70A3A7859842}_WiseFW.ini
[2010.04.08 10:21:00 | 000,036,688 | ---- | C] () -- C:\WINXP\System32\s7200L2.dll
[2010.03.29 07:50:07 | 000,290,816 | ---- | C] () -- C:\WINXP\System32\decdll.dll
[2010.03.22 07:22:43 | 000,000,040 | ---- | C] () -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\CLSDefine.ini
[2010.01.28 21:32:26 | 000,000,123 | ---- | C] () -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\{6C12CEE3-AAA7-4CC0-AB83-BA829210B277}.log
[2010.01.28 18:14:32 | 000,417,792 | ---- | C] () -- C:\WINXP\System32\sn_regbase.dll
[2010.01.18 11:34:17 | 000,000,000 | ---- | C] () -- C:\WINXP\ECMonitoringLogger.INI
[2009.12.21 08:40:27 | 000,065,536 | ---- | C] () -- C:\WINXP\System32\canusbdrv.dll
[2009.10.26 18:05:38 | 000,000,105 | ---- | C] () -- C:\WINXP\S7JUTILX.INI
[2009.09.16 09:37:56 | 000,000,094 | ---- | C] () -- C:\WINXP\LNZMOT~1.INI
[2009.09.07 00:16:49 | 000,000,111 | ---- | C] () -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\{131B84C2-5435-4993-9888-6C62D9AC755E}.log
[2009.07.04 05:33:28 | 000,000,040 | ---- | C] () -- C:\WINXP\CoDeSysOPC.ini
[2009.06.02 10:40:32 | 000,000,146 | ---- | C] () -- C:\WINXP\HmiSRT.ini
[2009.05.30 21:12:32 | 000,032,297 | ---- | C] () -- C:\WINXP\Irremote.ini
[2009.05.30 21:12:22 | 000,065,536 | ---- | C] () -- C:\WINXP\System32\dmcrypto.dll
[2009.05.30 21:11:59 | 000,163,840 | ---- | C] () -- C:\WINXP\System32\hcwChDB.dll
[2009.05.30 21:11:20 | 000,003,125 | ---- | C] () -- C:\WINXP\HCWPNP.INI
[2009.05.30 21:10:07 | 000,363,520 | ---- | C] () -- C:\WINXP\System32\psisdecd.dll
[2009.05.25 09:34:54 | 000,000,000 | ---- | C] () -- C:\WINXP\FwSim.INI
[2009.05.25 09:32:25 | 000,104,633 | ---- | C] () -- C:\WINXP\System32\drivers\fwDH485.sys
[2009.05.25 09:32:25 | 000,002,976 | ---- | C] () -- C:\WINXP\System32\drivers\FwKbd.sys
[2009.05.14 11:40:32 | 000,000,000 | ---- | C] () -- C:\WINXP\p7vrvisx.INI
[2009.03.12 11:43:35 | 000,000,277 | ---- | C] () -- C:\WINXP\AxType.ini
[2009.03.12 11:41:48 | 000,000,273 | ---- | C] () -- C:\WINXP\Clony2.ini
[2009.02.17 08:36:42 | 000,000,267 | ---- | C] () -- C:\WINXP\CTCommsServer.INI
[2009.02.17 08:08:19 | 000,033,936 | ---- | C] () -- C:\WINXP\ctnetapi.dll
[2009.02.17 08:08:19 | 000,000,306 | ---- | C] () -- C:\WINXP\CTNETAPI.INI
[2009.02.17 08:04:44 | 000,000,110 | R--- | C] () -- C:\WINXP\System32\ftdiun2k.ini
[2009.02.11 00:20:04 | 000,000,160 | ---- | C] () -- C:\WINXP\RMstCfgu.INI
[2009.02.06 20:55:19 | 000,000,000 | ---- | C] () -- C:\WINXP\MERuntime.INI
[2009.01.27 20:50:40 | 000,000,035 | ---- | C] () -- C:\WINXP\A5W.INI
[2008.12.15 11:13:00 | 000,343,040 | ---- | C] () -- C:\WINXP\System32\lffpx7.dll
[2008.12.15 11:13:00 | 000,116,736 | ---- | C] () -- C:\WINXP\System32\lfkodak.dll
[2008.12.15 11:13:00 | 000,068,608 | ---- | C] () -- C:\WINXP\System32\lfplt11n.dll
[2008.12.15 11:12:57 | 000,118,784 | ---- | C] () -- C:\WINXP\System32\GVTWinFontUnicode.dll
[2008.12.15 11:12:57 | 000,118,784 | ---- | C] () -- C:\WINXP\GVTWinFontUnicode.dll
[2008.12.15 11:12:57 | 000,057,344 | ---- | C] () -- C:\WINXP\VTWinFont1_1.dll
[2008.12.15 11:12:57 | 000,057,344 | ---- | C] () -- C:\WINXP\System32\VTWinFont1_1.dll
[2008.12.15 11:12:57 | 000,049,152 | ---- | C] () -- C:\WINXP\System32\rpn.dll
[2008.12.15 11:12:57 | 000,049,152 | ---- | C] () -- C:\WINXP\rpn.dll
[2008.12.15 11:12:57 | 000,040,960 | ---- | C] () -- C:\WINXP\VTWinFont.dll
[2008.12.15 11:12:57 | 000,040,960 | ---- | C] () -- C:\WINXP\System32\VTWinFont.dll
[2008.12.15 11:12:57 | 000,032,768 | ---- | C] () -- C:\WINXP\Zipfile.dll
[2008.12.15 11:12:57 | 000,032,768 | ---- | C] () -- C:\WINXP\System32\Zipfile.dll
[2008.11.26 17:41:59 | 000,000,116 | ---- | C] () -- C:\WINXP\NeroDigital.ini
[2008.11.13 10:48:17 | 000,000,185 | ---- | C] () -- C:\WINXP\mdm.ini
[2008.11.07 10:24:57 | 000,000,038 | ---- | C] () -- C:\WINXP\pwedit.ini
[2008.11.02 23:53:33 | 000,010,240 | ---- | C] () -- C:\WINXP\System32\vidx16.dll
[2008.11.01 20:04:14 | 000,000,000 | ---- | C] () -- C:\WINXP\spcpro.INI
[2008.10.31 19:19:00 | 000,000,059 | ---- | C] () -- C:\WINXP\OCX2GD~2.INI
[2008.10.26 21:39:00 | 000,062,976 | ---- | C] () -- C:\Dokumente und Einstellungen\AH\Lokale Einstellungen\Anwendungsdaten\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2008.10.24 11:04:53 | 000,036,352 | ---- | C] () -- C:\WINXP\System32\SX32W.DLL
[2008.10.24 11:04:53 | 000,001,716 | ---- | C] () -- C:\WINXP\Drive PLC Developer Studio.ini
[2008.10.21 06:54:58 | 000,000,028 | ---- | C] () -- C:\WINXP\Pcan.ini
[2008.10.21 06:47:54 | 000,016,451 | ---- | C] () -- C:\WINXP\System32\OPCmessages.dll
[2008.10.21 06:47:51 | 000,000,027 | ---- | C] () -- C:\WINXP\System32\pcan.ini
[2008.10.21 06:47:47 | 000,075,264 | ---- | C] () -- C:\WINXP\System32\callrproxy.dll
[2008.10.21 06:20:02 | 000,000,031 | ---- | C] () -- C:\WINXP\ResetW.INI
[2008.10.21 06:18:55 | 000,000,032 | ---- | C] () -- C:\WINXP\EVMOVE.INI
[2008.10.20 11:23:42 | 000,001,359 | ---- | C] () -- C:\WINXP\ODBC.INI
[2008.10.20 09:05:47 | 000,000,032 | ---- | C] () -- C:\WINXP\EvMoveW.INI
[2008.10.20 08:38:05 | 000,001,896 | ---- | C] () -- C:\WINXP\EDS.INI
[2008.10.20 08:38:05 | 000,000,235 | ---- | C] () -- C:\WINXP\RLEIcons.ini
[2008.10.20 08:20:27 | 000,000,121 | ---- | C] () -- C:\WINXP\rocksoft.ini
[2008.10.20 07:44:27 | 000,000,069 | ---- | C] () -- C:\WINXP\UtahS7Integrate.ini
[2008.10.20 07:14:25 | 000,000,000 | ---- | C] () -- C:\WINXP\HmiRTmSim.INI
[2008.10.20 06:56:12 | 000,000,135 | ---- | C] () -- C:\Dokumente und Einstellungen\AH\Lokale Einstellungen\Anwendungsdaten\fusioncache.dat
[2008.10.20 06:40:43 | 000,000,000 | ---- | C] () -- C:\WINXP\S7ALIBXX.INI
[2008.10.18 15:38:38 | 000,204,800 | ---- | C] () -- C:\WINXP\System32\igfxCoIn_v4837.dll
[2008.10.18 15:22:38 | 000,022,328 | ---- | C] () -- C:\WINXP\System32\drivers\PnkBstrK.sys
[2008.10.18 15:22:19 | 000,000,311 | ---- | C] () -- C:\WINXP\game.ini
[2008.10.18 15:00:55 | 000,022,328 | ---- | C] () -- C:\Dokumente und Einstellungen\AH\Anwendungsdaten\PnkBstrK.sys
[2008.10.17 00:10:34 | 001,729,152 | ---- | C] () -- C:\WINXP\System32\drivers\snp2uvc.sys
[2008.10.16 23:57:32 | 000,910,464 | ---- | C] () -- C:\WINXP\System32\igmedkrn.dll
[2008.10.16 23:57:32 | 000,204,800 | ---- | C] () -- C:\WINXP\System32\igfxCoIn_v4847.dll
[2008.10.16 23:03:51 | 000,004,221 | ---- | C] () -- C:\WINXP\ODBCINST.INI
[2007.04.01 08:00:28 | 002,842,624 | ---- | C] () -- C:\WINXP\System32\btwicons.dll
[2007.04.01 07:41:52 | 000,090,112 | ---- | C] () -- C:\WINXP\System32\btprn2k.dll
[2005.06.10 07:46:52 | 000,049,152 | R--- | C] () -- C:\WINXP\System32\FDT100.dll
[2004.08.22 16:04:56 | 000,069,120 | ---- | C] () -- C:\WINXP\daemon.dll
[2004.08.03 19:59:44 | 000,095,360 | ---- | C] () -- C:\WINXP\System32\drivers\atapi.sys
[2004.06.03 04:08:42 | 000,030,992 | ---- | C] () -- C:\WINXP\System32\LINXVDD.DLL
[2001.11.14 12:56:00 | 001,802,240 | ---- | C] () -- C:\WINXP\System32\lcppn21.dll
[2001.10.28 16:42:30 | 000,116,224 | ---- | C] () -- C:\WINXP\System32\redmonnt.dll
[2000.09.18 16:50:28 | 000,202,752 | ---- | C] () -- C:\WINXP\System32\zlib.dll
[1999.11.08 14:55:46 | 000,057,344 | ---- | C] () -- C:\WINXP\System32\S7oformx.dll
[1999.07.16 13:37:56 | 000,136,704 | ---- | C] () -- C:\WINXP\System32\TDCTRL.dll
[1998.12.07 20:11:22 | 000,227,840 | ---- | C] () -- C:\WINXP\System32\lmgr325a.dll
[1998.06.10 00:00:00 | 000,015,120 | ---- | C] () -- C:\WINXP\System32\REPUTIL.DLL
[1998.05.18 00:00:00 | 000,014,017 | ---- | C] () -- C:\WINXP\JAUTOEXP.INI
[1998.04.24 00:00:00 | 000,000,218 | ---- | C] () -- C:\WINXP\FRONTPG.INI
[1997.02.26 14:04:24 | 000,198,680 | ---- | C] () -- C:\WINXP\System32\WL40ENT.DLL
[1997.02.26 14:04:10 | 000,023,064 | ---- | C] () -- C:\WINXP\System32\WTR40T.DLL
[1996.12.19 14:37:38 | 000,103,360 | ---- | C] () -- C:\WINXP\System32\S7OSC16X.DLL
[1996.12.19 14:36:48 | 000,014,848 | ---- | C] () -- C:\WINXP\System32\S7OSC32X.DLL
 
========== LOP Check ==========
 
[2011.05.27 17:38:19 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Administrator\Anwendungsdaten\SPORE
[2012.01.04 14:25:39 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\AH\Anwendungsdaten\3DataManager
[2011.04.08 20:03:06 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\AH\Anwendungsdaten\ArchestrA
[2008.11.20 10:47:22 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\AH\Anwendungsdaten\Autodesk
[2011.08.29 14:36:19 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\AH\Anwendungsdaten\Azureus
[2011.04.11 08:08:26 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\AH\Anwendungsdaten\DDMSettings
[2010.05.31 09:03:00 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\AH\Anwendungsdaten\DVDVideoSoftIEHelpers
[2010.02.04 23:09:52 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\AH\Anwendungsdaten\Free Download Manager
[2010.03.29 07:50:14 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\AH\Anwendungsdaten\FreeVideoConverter
[2009.05.26 12:23:33 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\AH\Anwendungsdaten\PKWARE
[2009.09.28 10:25:29 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\AH\Anwendungsdaten\SIEMENS AG
[2011.05.10 20:44:02 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\AH\Anwendungsdaten\SPORE
[2008.11.07 09:40:44 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\ArchestrA
[2012.01.17 13:03:34 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Autodesk
[2008.11.03 04:48:36 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Azureus
[2010.06.14 15:21:28 | 000,000,000 | -H-D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\CanonBJ
[2009.05.18 09:17:49 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Control Techniques
[2010.05.05 09:30:12 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\COPA-DATA
[2009.07.06 19:14:29 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\FreeDownloadManager.ORG
[2009.05.26 12:23:33 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\PKWARE
[2008.10.20 08:38:00 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Rockwell
[2009.09.28 09:29:58 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Siemens
[2009.09.28 09:28:44 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Siemens AG
[2010.01.28 21:32:26 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Temp
[2009.01.27 22:50:37 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\WFCU
[2008.11.07 09:41:43 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Wonderware
[2009.12.08 14:55:55 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\{755AC846-7372-4AC8-8550-C52491DAA8BD}
[2011.10.28 07:57:31 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\LocalService\Anwendungsdaten\3DataManager
[2011.11.04 10:28:35 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\NetworkService\Anwendungsdaten\3DataManager
 
========== Purity Check ==========
 
 

< End of report >
         
--- --- ---
__________________


Alt 11.02.2012, 11:34   #3
markusg
/// Malware-holic
 
Kostenpflichtiges update! - Standard

Kostenpflichtiges update!



öffne bitte malwarebytes, logdateien, poste alle scan logs.
__________________
__________________

Alt 11.02.2012, 13:43   #4
achmo123
 
Kostenpflichtiges update! - Standard

Kostenpflichtiges update!



Hi!

Danke das du dich meines Problems annimst.

Hier die Log's:

Malwarebytes Anti-Malware (Trial) 1.60.1.1000
Malwarebytes : Free anti-malware, anti-virus and spyware removal download

Database version: v2012.02.09.06

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
AH :: ACHMO [administrator]

Protection: Enabled

09.02.2012 20:15:00
mbam-log-2012-02-09 (20-15-00).txt

Scan type: Full scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 745531
Time elapsed: 4 hour(s), 36 minute(s), 29 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 5
HKCU\SOFTWARE\GHWAUC6NNZ (Trojan.FakeAlert.SA) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\ICS5R7Y0OS (Trojan.FakeAlert.SA) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\NtWqIVLZEWZU (Trojan.FakeAlert) -> Quarantined and deleted successfully.
HKCU\Software\Microsoft\idgbn5xehg (Malware.Trace) -> Quarantined and deleted successfully.
HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\ (Hijack.Zones) -> Quarantined and deleted successfully.

Registry Values Detected: 2
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|cdoosoft (Spyware.OnlineGames) -> Data: C:\DOKUME~1\AH\LOKALE~1\Temp\herss.exe -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|GHWAUC6NNZ (Trojan.FakeAlert.SA) -> Data: C:\DOKUME~1\AH\LOKALE~1\Temp\Mcl.exe -> Quarantined and deleted successfully.

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 4
C:\Dokumente und Einstellungen\AH\Eigene Dateien\Azureus Downloads\LifetimeCS4MasterCollectionLicenseWorkaround\adobe-master-cs4pre-keygen.exe (Trojan.Agent.CK) -> Quarantined and deleted successfully.
C:\Dokumente und Einstellungen\AH\Eigene Dateien\Downloads\ADBE_CS5_MasterKeygen\keygen.exe (Trojan.Agent.CK) -> Quarantined and deleted successfully.
C:\Programme\Fast Browser Search\IE\SearchGuardPlus.exe (PUP.Fbsearch) -> Quarantined and deleted successfully.
C:\Programme\Fast Browser Search\IE\update.exe (PUP.Fbsearch) -> Quarantined and deleted successfully.

(end)

Log2:

Malwarebytes Anti-Malware (Trial) 1.60.1.1000
Malwarebytes : Free anti-malware, anti-virus and spyware removal download

Database version: v2012.02.09.06

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
AH :: ACHMO [administrator]

Protection: Enabled

10.02.2012 17:01:06
mbam-log-2012-02-10 (17-01-06).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 259661
Time elapsed: 21 minute(s), 54 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

Log 3:

Malwarebytes Anti-Malware (Trial) 1.60.1.1000
Malwarebytes : Free anti-malware, anti-virus and spyware removal download

Database version: v2012.02.09.06

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
AH :: ACHMO [administrator]

Protection: Enabled

10.02.2012 23:37:14
mbam-log-2012-02-10 (23-37-14).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 89915
Time elapsed: 26 minute(s), 11 second(s) [aborted]

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

Protection Log1:

2012/02/09 20:13:07 +0100 ACHMO AH MESSAGE Executing scheduled update: Daily
2012/02/09 20:13:13 +0100 ACHMO AH ERROR Scheduled update failed: No address found failed with error code 11004
2012/02/09 20:14:05 +0100 ACHMO AH MESSAGE Starting protection
2012/02/09 20:14:16 +0100 ACHMO AH MESSAGE Protection started successfully
2012/02/09 20:14:19 +0100 ACHMO AH MESSAGE Starting IP protection
2012/02/09 20:14:23 +0100 ACHMO AH MESSAGE IP Protection started successfully

Protection Log 2:

2012/02/10 06:33:40 +0100 ACHMO AH MESSAGE Starting protection
2012/02/10 06:33:57 +0100 ACHMO AH MESSAGE Protection started successfully
2012/02/10 06:34:01 +0100 ACHMO AH MESSAGE Starting IP protection
2012/02/10 06:34:55 +0100 ACHMO AH MESSAGE IP Protection started successfully
2012/02/10 06:50:42 +0100 ACHMO AH MESSAGE Starting protection
2012/02/10 06:50:59 +0100 ACHMO AH MESSAGE Protection started successfully
2012/02/10 06:51:03 +0100 ACHMO AH MESSAGE Starting IP protection
2012/02/10 06:51:40 +0100 ACHMO AH MESSAGE IP Protection started successfully
2012/02/10 06:55:19 +0100 ACHMO AH MESSAGE Starting protection
2012/02/10 06:55:39 +0100 ACHMO AH MESSAGE Protection started successfully
2012/02/10 06:55:42 +0100 ACHMO AH MESSAGE Starting IP protection
2012/02/10 06:56:07 +0100 ACHMO AH MESSAGE IP Protection started successfully
2012/02/10 15:54:37 +0100 ACHMO AH MESSAGE Starting protection
2012/02/10 15:54:48 +0100 ACHMO AH MESSAGE Executing scheduled update: Daily
2012/02/10 15:54:48 +0100 ACHMO AH ERROR Scheduled update failed: No address found failed with error code 11004
2012/02/10 15:54:50 +0100 ACHMO AH MESSAGE Protection started successfully
2012/02/10 15:54:54 +0100 ACHMO AH MESSAGE Starting IP protection
2012/02/10 15:59:25 +0100 ACHMO AH ERROR IP protection failed: PfBindInterfaceToIPAddress failed with error code 87
2012/02/10 16:09:59 +0100 ACHMO AH MESSAGE Starting protection
2012/02/10 16:10:17 +0100 ACHMO AH MESSAGE Protection started successfully
2012/02/10 16:10:20 +0100 ACHMO AH MESSAGE Starting IP protection
2012/02/10 16:11:12 +0100 ACHMO AH ERROR IP protection failed: PfBindInterfaceToIPAddress failed with error code 87
2012/02/10 22:54:09 +0100 ACHMO AH MESSAGE Starting protection
2012/02/10 22:54:27 +0100 ACHMO AH MESSAGE Protection started successfully
2012/02/10 22:54:30 +0100 ACHMO AH MESSAGE Starting IP protection
2012/02/10 22:55:17 +0100 ACHMO AH ERROR IP protection failed: PfBindInterfaceToIPAddress failed with error code 87
2012/02/10 23:10:41 +0100 ACHMO AH MESSAGE Starting protection
2012/02/10 23:11:01 +0100 ACHMO AH MESSAGE Protection started successfully
2012/02/10 23:11:05 +0100 ACHMO AH MESSAGE Starting IP protection
2012/02/10 23:11:47 +0100 ACHMO AH MESSAGE IP Protection started successfully
2012/02/10 23:28:42 +0100 ACHMO AH MESSAGE Starting protection
2012/02/10 23:28:58 +0100 ACHMO AH MESSAGE Protection started successfully
2012/02/10 23:29:01 +0100 ACHMO AH MESSAGE Starting IP protection
2012/02/10 23:29:47 +0100 ACHMO AH ERROR IP protection failed: PfBindInterfaceToIPAddress failed with error code 87

Protection LOG 3:

2012/02/11 00:03:58 +0100 ACHMO AH MESSAGE Starting database refresh
2012/02/11 00:04:06 +0100 ACHMO AH MESSAGE Database refreshed successfully


Danke im Voraus

Achmo

Alt 11.02.2012, 15:44   #5
markusg
/// Malware-holic
 
Kostenpflichtiges update! - Standard

Kostenpflichtiges update!



C:\Dokumente und Einstellungen\AH\Eigene Dateien\Azureus Downloads\LifetimeCS4MasterCollectionLicenseWorkaround\adobe-master-cs4pre-keygen.exe (Trojan.Agent.CK)
-> Quarantined and deleted successfully.
C:\Dokumente und Einstellungen\AH\Eigene Dateien\Downloads\ADBE_CS5_MasterKeygen\keygen.exe (Trojan.Agent.CK) -> Quarantined and deleted successfully.
keygens unterstützen wir hier nicht, da sie illegaler weise erlauben software freizuschalten, da gibts nur hilfe beim daten sichern, formatieren, neu aufsetzen und absichern des pcs

__________________
-Verdächtige mails bitte an uns zur Analyse weiterleiten:
markusg.trojaner-board@web.de
Weiterleiten
Anleitung:
http://markusg.trojaner-board.de
Mails bitte vorerst nach obiger Anleitung an
markusg.trojaner-board@web.de
Weiterleiten
Wenn Ihr uns unterstützen möchtet

Alt 11.02.2012, 15:54   #6
achmo123
 
Kostenpflichtiges update! - Standard

Kostenpflichtiges update!




Antwort

Themen zu Kostenpflichtiges update!
audio, ccc, control, detected, device, einträge, fehlerhafte, fenster, firefox, gestartet, harddisk, image, intel, lockedfile.multi.generic, log-file, object, partition, problem, programme, rootkit, servicepack, system32, tool, unsignedfile.multi.generic, update, version, works



Ähnliche Themen: Kostenpflichtiges update!


  1. win7 Update.exe Fehler seit letztem Update
    Alles rund um Windows - 22.08.2015 (2)
  2. Firewall-Update: IPFire 2.15 auf Core Update 86 aktualisiert
    Nachrichten - 26.01.2015 (0)
  3. Firefox befallen von Java Update, Box mit Ads, Videoplayer update
    Plagegeister aller Art und deren Bekämpfung - 22.05.2014 (13)
  4. Win 7 64bit Avira-Sicherheitshinweis WPM\Update\update.exe + sonstige Funde (siehe Log-Files)
    Log-Analyse und Auswertung - 28.03.2014 (15)
  5. Popup meldung zu MS13-052 Windows Update Security Update zu .net 4
    Log-Analyse und Auswertung - 26.03.2014 (9)
  6. Obskure grafische Meldung zu MS13-052 Windows Update Security Update zu .net 4
    Plagegeister aller Art und deren Bekämpfung - 22.11.2013 (3)
  7. Windows Update funktioniert nicht / Firefox Update mischt auch mit
    Alles rund um Windows - 18.01.2013 (2)
  8. Windows-Update-Update mit Anlaufschwierigkeiten
    Nachrichten - 22.06.2012 (0)
  9. kostenpflichtiges (50 Euro) windows-upgrade per pay-safe
    Log-Analyse und Auswertung - 16.04.2012 (18)
  10. Trojaner,Virus,kostenpflichtiges Upload
    Log-Analyse und Auswertung - 27.02.2012 (13)
  11. Achtung! Windows wurde zu ihrer Sicherheit gesperrt! Kostenpflichtiges Update nötig...
    Plagegeister aller Art und deren Bekämpfung - 26.02.2012 (8)
  12. "kostenpflichtiges Upgrade für infizierte Windowssysteme"
    Plagegeister aller Art und deren Bekämpfung - 16.02.2012 (28)
  13. Aus Sicherheitsgründen wurde ihr System blockiert..kostenpflichtiges Update.
    Log-Analyse und Auswertung - 18.12.2011 (1)
  14. Adobe denkt über kürzere Update-Zyklen und die Nutzung von Microsoft Update nach
    Nachrichten - 27.05.2010 (0)
  15. Signatur-Update von McAfee macht Windows-PCs unbenutzbar [Update]
    Nachrichten - 22.04.2010 (0)
  16. Bitdefender-Update legt Windows-Rechner lahm [Update]
    Nachrichten - 22.03.2010 (0)
  17. Escan Update - Pfad? Kann ich das Update speichern und exportieren?
    Plagegeister aller Art und deren Bekämpfung - 02.03.2006 (10)

Zum Thema Kostenpflichtiges update! - Hallo! Habe wie schon einige hier dieses Kostenpflichtige update Fenster, nachdem ich Firefox gestartet habe und es eine Zeitlang läuft. Hab den MBAM-scanner drübergejat und die Fehlerhaften einträge repariert. Danach - Kostenpflichtiges update!...
Archiv
Du betrachtest: Kostenpflichtiges update! auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.