| |
| |||||||
Log-Analyse und Auswertung: Ransom-D gefunden und weißer BildschirmWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
 |
| |
28.09.2012, 21:24
| #1 |
| /// Winkelfunktion /// TB-Süch-Tiger™   |  Ransom-D gefunden und weißer Bildschirm Bitte nun (im normalen Windows-Modus) dieses Tool von Kaspersky (TDSS-Killer) ausführen und das Log posten Anleitung und Downloadlink hier => http://www.trojaner-board.de/82358-t...entfernen.html Hinweis: Bitte den Virenscanner abstellen bevor du den TDSS-Killer ausführst, denn v.a. Avira meldet im TDSS-Tool oft einen Fehalalrm! Das Tool so einstellen wie unten im Bild angegeben - klick auf change parameters und setze die Haken wie im folgenden Screenshot abgebildet, Dann auf Start Scan klicken und wenn es durch ist auf den Button Report klicken um das Log anzuzeigen. Dieses bitte komplett posten. Wenn du das Log nicht findest oder den Inhalt kopieren und in dein Posting übertragen kannst, dann schau bitte direkt auf deiner Windows-Systempartition ( meistens Laufwerk C: ) nach, da speichert der TDSS-Killer seine Logs. Hinweis: Bitte nichts voreilig mit dem TDSS-Killer löschen! Falls Objekte vom TDSS-Killer bemängelt werden, alle mit der Aktion "skip" behandeln und hier nur das Log posten! 
__________________ Logfiles bitte immer in CODE-Tags posten  |
|
29.09.2012, 13:51
| #2 |
 | Ransom-D gefunden und weißer Bildschirm Log vom TDSS-Killer
__________________Code:
ATTFilter 14:41:45.0237 2912 TDSS rootkit removing tool 2.8.10.0 Sep 17 2012 19:23:24
14:41:45.0409 2912 ============================================================
14:41:45.0409 2912 Current date / time: 2012/09/29 14:41:45.0409
14:41:45.0409 2912 SystemInfo:
14:41:45.0409 2912
14:41:45.0409 2912 OS Version: 5.1.2600 ServicePack: 3.0
14:41:45.0409 2912 Product type: Workstation
14:41:45.0409 2912 ComputerName: SCHMIDT
14:41:45.0409 2912 UserName: ***
14:41:45.0409 2912 Windows directory: C:\WINDOWS
14:41:45.0409 2912 System windows directory: C:\WINDOWS
14:41:45.0409 2912 Processor architecture: Intel x86
14:41:45.0409 2912 Number of processors: 2
14:41:45.0409 2912 Page size: 0x1000
14:41:45.0409 2912 Boot type: Normal boot
14:41:45.0409 2912 ============================================================
14:41:45.0831 2912 Drive \Device\Harddisk1\DR1 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000058
14:41:45.0862 2912 ============================================================
14:41:45.0862 2912 \Device\Harddisk1\DR1:
14:41:45.0862 2912 MBR partitions:
14:41:45.0862 2912 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x1869E559
14:41:45.0862 2912 \Device\Harddisk1\DR1\Partition2: MBR, Type 0x7, StartLBA 0x1869E5D7, BlocksNum 0x124F6BF3
14:41:45.0878 2912 \Device\Harddisk1\DR1\Partition3: MBR, Type 0x7, StartLBA 0x2AB95209, BlocksNum 0x124F6BF3
14:41:45.0893 2912 \Device\Harddisk1\DR1\Partition4: MBR, Type 0x7, StartLBA 0x3D08BE3B, BlocksNum 0x2AB9904C
14:41:45.0909 2912 \Device\Harddisk1\DR1\Partition5: MBR, Type 0x7, StartLBA 0x67C24EC6, BlocksNum 0x4E1EDEC
14:41:45.0909 2912 \Device\Harddisk1\DR1\Partition6: MBR, Type 0x7, StartLBA 0x6CA43CF1, BlocksNum 0x61A7927
14:41:45.0925 2912 \Device\Harddisk1\DR1\Partition7: MBR, Type 0x7, StartLBA 0x72BEB657, BlocksNum 0x1B1A36A
14:41:45.0925 2912 ============================================================
14:41:45.0987 2912 C: <-> \Device\Harddisk1\DR1\Partition1
14:41:46.0018 2912 D: <-> \Device\Harddisk1\DR1\Partition2
14:41:46.0050 2912 E: <-> \Device\Harddisk1\DR1\Partition3
14:41:46.0081 2912 F: <-> \Device\Harddisk1\DR1\Partition4
14:41:46.0112 2912 G: <-> \Device\Harddisk1\DR1\Partition5
14:41:46.0143 2912 H: <-> \Device\Harddisk1\DR1\Partition6
14:41:46.0175 2912 X: <-> \Device\Harddisk1\DR1\Partition7
14:41:46.0190 2912 ============================================================
14:41:46.0190 2912 Initialize success
14:41:46.0190 2912 ============================================================
14:42:10.0737 5408 ============================================================
14:42:10.0737 5408 Scan started
14:42:10.0737 5408 Mode: Manual; SigCheck; TDLFS;
14:42:10.0737 5408 ============================================================
14:42:10.0862 5408 ================ Scan system memory ========================
14:42:12.0768 5408 System memory - ok
14:42:12.0768 5408 ================ Scan services =============================
14:42:12.0878 5408 [ 914A9709FC3BF419AD2F85547F2A4832 ] 61883 C:\WINDOWS\system32\DRIVERS\61883.sys
14:42:13.0643 5408 61883 - ok
14:42:13.0675 5408 [ D5A6658CBFBBF9A0F8827E83C9FDE806 ] 6to4 C:\WINDOWS\System32\6to4svc.dll
14:42:13.0706 5408 6to4 - ok
14:42:13.0706 5408 Abiosdsk - ok
14:42:13.0706 5408 abp480n5 - ok
14:42:13.0737 5408 [ 553BA53445795CBC0D4F9FA37EB855A6 ] acedrv10 C:\WINDOWS\system32\drivers\acedrv10.sys
14:42:13.0800 5408 acedrv10 - ok
14:42:13.0815 5408 [ 8CE00B6A46962A1808B19CD1DAE5170C ] acehlp10 C:\WINDOWS\system32\drivers\acehlp10.sys
14:42:13.0831 5408 acehlp10 - ok
14:42:13.0847 5408 [ AC407F1A62C3A300B4F2B5A9F1D55B2C ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
14:42:13.0925 5408 ACPI - ok
14:42:13.0956 5408 [ 9E1CA3160DAFB159CA14F83B1E317F75 ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
14:42:14.0034 5408 ACPIEC - ok
14:42:14.0097 5408 [ 46A5CBB09B8F0C46F8CBE9210E5E3BE2 ] AcrSch2Svc C:\Programme\Gemeinsame Dateien\Acronis\Schedule2\schedul2.exe
14:42:14.0128 5408 AcrSch2Svc - ok
14:42:14.0175 5408 [ E12CFCF1DDBFC50948A75E6E38793225 ] AdobeFlashPlayerUpdateSvc C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
14:42:14.0190 5408 AdobeFlashPlayerUpdateSvc - ok
14:42:14.0190 5408 adpu160m - ok
14:42:14.0222 5408 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys
14:42:14.0284 5408 aec - ok
14:42:14.0300 5408 [ FE3EA6E9AFC1A78E6EDCA121E006AFB7 ] Afc C:\WINDOWS\system32\drivers\Afc.sys
14:42:14.0315 5408 Afc - ok
14:42:14.0347 5408 [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD C:\WINDOWS\System32\drivers\afd.sys
14:42:14.0362 5408 AFD - ok
14:42:14.0378 5408 Aha154x - ok
14:42:14.0378 5408 aic78u2 - ok
14:42:14.0378 5408 aic78xx - ok
14:42:14.0393 5408 [ 738D80CC01D7BC7584BE917B7F544394 ] Alerter C:\WINDOWS\system32\alrsvc.dll
14:42:14.0487 5408 Alerter - ok
14:42:14.0503 5408 [ 190CD73D4984F94D823F9444980513E5 ] ALG C:\WINDOWS\System32\alg.exe
14:42:14.0565 5408 ALG - ok
14:42:14.0565 5408 AliIde - ok
14:42:14.0565 5408 amsint - ok
14:42:14.0597 5408 [ D45960BE52C3C610D361977057F98C54 ] AppMgmt C:\WINDOWS\System32\appmgmts.dll
14:42:14.0675 5408 AppMgmt - ok
14:42:14.0690 5408 [ B5B8A80875C1DEDEDA8B02765642C32F ] Arp1394 C:\WINDOWS\system32\DRIVERS\arp1394.sys
14:42:14.0753 5408 Arp1394 - ok
14:42:14.0768 5408 [ 875F9079CABEE679D34B49E466B61701 ] ASAPIW2K C:\WINDOWS\system32\drivers\ASAPIW2k.sys
14:42:14.0784 5408 ASAPIW2K ( UnsignedFile.Multi.Generic ) - warning
14:42:14.0784 5408 ASAPIW2K - detected UnsignedFile.Multi.Generic (1)
14:42:14.0800 5408 asc - ok
14:42:14.0800 5408 asc3350p - ok
14:42:14.0800 5408 asc3550 - ok
14:42:14.0831 5408 [ B979979AB8027F7F53FB16EC4229B7DB ] Aspi32 C:\WINDOWS\system32\drivers\Aspi32.sys
14:42:14.0831 5408 Aspi32 ( UnsignedFile.Multi.Generic ) - warning
14:42:14.0831 5408 Aspi32 - detected UnsignedFile.Multi.Generic (1)
14:42:14.0893 5408 [ 0E5E4957549056E2BF2C49F4F6B601AD ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
14:42:14.0925 5408 aspnet_state - ok
14:42:14.0956 5408 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
14:42:15.0018 5408 AsyncMac - ok
14:42:15.0034 5408 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
14:42:15.0112 5408 atapi - ok
14:42:15.0112 5408 Atdisk - ok
14:42:15.0128 5408 [ 3C4B9850A2631C2263507400D029057B ] atksgt C:\WINDOWS\system32\DRIVERS\atksgt.sys
14:42:15.0159 5408 atksgt - ok
14:42:15.0159 5408 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
14:42:15.0237 5408 Atmarpc - ok
14:42:15.0237 5408 [ 58ED0D5452DF7BE732193E7999C6B9A4 ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
14:42:15.0331 5408 AudioSrv - ok
14:42:15.0347 5408 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
14:42:15.0425 5408 audstub - ok
14:42:15.0440 5408 [ F8E6956A614F15A0860474C5E2A7DE6B ] Avc C:\WINDOWS\system32\DRIVERS\avc.sys
14:42:15.0503 5408 Avc - ok
14:42:15.0581 5408 [ 4ED37A7F41891769AEB88C2408B3016F ] AVKProxy C:\Programme\Gemeinsame Dateien\G DATA\AVKProxy\AVKProxy.exe
14:42:15.0612 5408 AVKProxy - ok
14:42:15.0675 5408 [ 909270C00354439BCC649A92C25D8B3F ] AVKService C:\Programme\G DATA\InternetSecurity\AVK\AVKService.exe
14:42:15.0737 5408 AVKService - ok
14:42:15.0784 5408 [ 690468933B8D00B66EF5DB73150F96EA ] AVKWCtl C:\Programme\G DATA\InternetSecurity\AVK\AVKWCtl.exe
14:42:15.0847 5408 AVKWCtl - ok
14:42:15.0862 5408 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
14:42:15.0940 5408 Beep - ok
14:42:15.0956 5408 [ D6F603772A789BB3228F310D650B8BD1 ] BITS C:\WINDOWS\system32\qmgr.dll
14:42:16.0128 5408 BITS - ok
14:42:16.0143 5408 [ B71549F23736ADF83A571061C47777FD ] Browser C:\WINDOWS\System32\browser.dll
14:42:16.0190 5408 Browser - ok
14:42:16.0206 5408 [ B279426E3C0C344893ED78A613A73BDE ] BthEnum C:\WINDOWS\system32\DRIVERS\BthEnum.sys
14:42:16.0284 5408 BthEnum - ok
14:42:16.0300 5408 [ FCA6F069597B62D42495191ACE3FC6C1 ] BTHMODEM C:\WINDOWS\system32\DRIVERS\bthmodem.sys
14:42:16.0378 5408 BTHMODEM - ok
14:42:16.0393 5408 [ 80602B8746D3738F5886CE3D67EF06B6 ] BthPan C:\WINDOWS\system32\DRIVERS\bthpan.sys
14:42:16.0472 5408 BthPan - ok
14:42:16.0503 5408 [ 592E1CEDBE314D0EF184DC6F46141E76 ] BTHPORT C:\WINDOWS\system32\Drivers\BTHport.sys
14:42:16.0534 5408 BTHPORT - ok
14:42:16.0550 5408 [ 26C601EF7525E31379744ABFC6F35A1B ] BthServ C:\WINDOWS\System32\bthserv.dll
14:42:16.0612 5408 BthServ - ok
14:42:16.0628 5408 [ 61364CD71EF63B0F038B7E9DF00F1EFA ] BTHUSB C:\WINDOWS\system32\Drivers\BTHUSB.sys
14:42:16.0706 5408 BTHUSB - ok
14:42:16.0737 5408 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
14:42:16.0800 5408 cbidf2k - ok
14:42:16.0815 5408 [ 0BE5AEF125BE881C4F854C554F2B025C ] CCDECODE C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
14:42:16.0878 5408 CCDECODE - ok
14:42:16.0878 5408 cd20xrnt - ok
14:42:16.0893 5408 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
14:42:16.0956 5408 Cdaudio - ok
14:42:16.0972 5408 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
14:42:17.0034 5408 Cdfs - ok
14:42:17.0050 5408 [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
14:42:17.0128 5408 Cdrom - ok
14:42:17.0128 5408 Changer - ok
14:42:17.0159 5408 [ 28E3040D1F1CA2008CD6B29DFEBC9A5E ] CiSvc C:\WINDOWS\system32\cisvc.exe
14:42:17.0222 5408 CiSvc - ok
14:42:17.0237 5408 [ 778A30ED3C134EB7E406AFC407E9997D ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
14:42:17.0300 5408 ClipSrv - ok
14:42:17.0331 5408 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
14:42:17.0425 5408 clr_optimization_v2.0.50727_32 - ok
14:42:17.0456 5408 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
14:42:17.0472 5408 clr_optimization_v4.0.30319_32 - ok
14:42:17.0472 5408 CmdIde - ok
14:42:17.0472 5408 COMSysApp - ok
14:42:17.0487 5408 Cpqarray - ok
14:42:17.0487 5408 [ 611F824E5C703A5A899F84C5F1699E4D ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
14:42:17.0550 5408 CryptSvc - ok
14:42:17.0565 5408 dac2w2k - ok
14:42:17.0565 5408 dac960nt - ok
14:42:17.0581 5408 [ 3127AFBF2C1ED0AB14A1BBB7AAECB85B ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
14:42:17.0628 5408 DcomLaunch - ok
14:42:17.0643 5408 [ C29A1C9B75BA38FA37F8C44405DEC360 ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
14:42:17.0706 5408 Dhcp - ok
14:42:17.0722 5408 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
14:42:17.0784 5408 Disk - ok
14:42:17.0784 5408 dmadmin - ok
14:42:17.0815 5408 [ 0DCFC8395A99FECBB1EF771CEC7FE4EA ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
14:42:17.0909 5408 dmboot - ok
14:42:17.0909 5408 [ 53720AB12B48719D00E327DA470A619A ] dmio C:\WINDOWS\system32\drivers\dmio.sys
14:42:17.0987 5408 dmio - ok
14:42:18.0018 5408 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
14:42:18.0081 5408 dmload - ok
14:42:18.0097 5408 [ 25C83FFBBA13B554EB6D59A9B2E2EE78 ] dmserver C:\WINDOWS\System32\dmserver.dll
14:42:18.0159 5408 dmserver - ok
14:42:18.0175 5408 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
14:42:18.0237 5408 DMusic - ok
14:42:18.0268 5408 [ 407F3227AC618FD1CA54B335B083DE07 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
14:42:18.0362 5408 Dnscache - ok
14:42:18.0378 5408 [ 676E36C4FF5BCEA1900F44182B9723E6 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
14:42:18.0456 5408 Dot3svc - ok
14:42:18.0456 5408 dpti2o - ok
14:42:18.0472 5408 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
14:42:18.0534 5408 drmkaud - ok
14:42:18.0550 5408 [ 4E4F2FDDAB0A0736D7671134DCCE91FB ] EapHost C:\WINDOWS\System32\eapsvc.dll
14:42:18.0612 5408 EapHost - ok
14:42:18.0628 5408 [ 877C18558D70587AA7823A1A308AC96B ] ERSvc C:\WINDOWS\System32\ersvc.dll
14:42:18.0690 5408 ERSvc - ok
14:42:18.0706 5408 [ A3EDBE9053889FB24AB22492472B39DC ] Eventlog C:\WINDOWS\system32\services.exe
14:42:18.0722 5408 Eventlog - ok
14:42:18.0737 5408 [ AF4F6B5739D18CA7972AB53E091CBC74 ] EventSystem C:\WINDOWS\system32\es.dll
14:42:18.0768 5408 EventSystem - ok
14:42:18.0784 5408 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
14:42:18.0847 5408 Fastfat - ok
14:42:18.0878 5408 [ 2DB7D303C36DDD055215052F118E8E75 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
14:42:18.0909 5408 FastUserSwitchingCompatibility - ok
14:42:18.0925 5408 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\DRIVERS\fdc.sys
14:42:18.0987 5408 Fdc - ok
14:42:19.0003 5408 [ B0678A548587C5F1967B0D70BACAD6C1 ] Fips C:\WINDOWS\system32\drivers\Fips.sys
14:42:19.0065 5408 Fips - ok
14:42:19.0081 5408 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\DRIVERS\flpydisk.sys
14:42:19.0143 5408 Flpydisk - ok
14:42:19.0159 5408 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
14:42:19.0222 5408 FltMgr - ok
14:42:19.0268 5408 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
14:42:19.0284 5408 FontCache3.0.0.0 - ok
14:42:19.0300 5408 [ 790A4CA68F44BE35967B3DF61F3E4675 ] FsUsbExDisk C:\WINDOWS\system32\FsUsbExDisk.SYS
14:42:19.0315 5408 FsUsbExDisk ( UnsignedFile.Multi.Generic ) - warning
14:42:19.0315 5408 FsUsbExDisk - detected UnsignedFile.Multi.Generic (1)
14:42:19.0331 5408 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
14:42:19.0393 5408 Fs_Rec - ok
14:42:19.0409 5408 [ 8F1955CE42E1484714B542F341647778 ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
14:42:19.0487 5408 Ftdisk - ok
14:42:19.0534 5408 [ A681EA5027B9638F8CBFBD25CC5F6420 ] GDFwSvc C:\Programme\G DATA\InternetSecurity\Firewall\GDFwSvc.exe
14:42:19.0597 5408 GDFwSvc - ok
14:42:19.0628 5408 [ 9A58148406E1BB4A2265B84320DEDC2B ] GDMnIcpt C:\WINDOWS\system32\drivers\MiniIcpt.sys
14:42:19.0643 5408 GDMnIcpt - ok
14:42:19.0659 5408 [ D23F9D144D1D76AFD18BC58BF2BDD736 ] GDNdisIm C:\WINDOWS\system32\DRIVERS\GDNdisIm.sys
14:42:19.0675 5408 GDNdisIm ( UnsignedFile.Multi.Generic ) - warning
14:42:19.0675 5408 GDNdisIm - detected UnsignedFile.Multi.Generic (1)
14:42:19.0690 5408 [ E6D8269EE03119FA4C54B7B59D9699BF ] GDTdiInterceptor C:\WINDOWS\system32\drivers\GDTdiIcpt.sys
14:42:19.0706 5408 GDTdiInterceptor - ok
14:42:19.0722 5408 [ 5DC17164F66380CBFEFD895C18467773 ] GEARAspiWDM C:\WINDOWS\system32\drivers\GEARAspiWDM.sys
14:42:19.0737 5408 GEARAspiWDM - ok
14:42:19.0737 5408 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
14:42:19.0800 5408 Gpc - ok
14:42:19.0831 5408 [ AAEA50A15F0E0B0E92848DBFDC072ECE ] GRD C:\WINDOWS\system32\drivers\GRD.sys
14:42:19.0847 5408 GRD - ok
14:42:19.0893 5408 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Programme\Google\Update\GoogleUpdate.exe
14:42:19.0893 5408 gupdate - ok
14:42:19.0909 5408 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Programme\Google\Update\GoogleUpdate.exe
14:42:19.0925 5408 gupdatem - ok
14:42:19.0940 5408 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Programme\Google\Common\Google Updater\GoogleUpdaterService.exe
14:42:19.0972 5408 gusvc - ok
14:42:19.0987 5408 [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
14:42:20.0065 5408 HDAudBus - ok
14:42:20.0112 5408 [ CB66BF85BF599BEFD6C6A57C2E20357F ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
14:42:20.0175 5408 helpsvc - ok
14:42:20.0190 5408 [ B35DA85E60C0103F2E4104532DA2F12B ] HidServ C:\WINDOWS\System32\hidserv.dll
14:42:20.0253 5408 HidServ - ok
14:42:20.0268 5408 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] hidusb C:\WINDOWS\system32\DRIVERS\hidusb.sys
14:42:20.0331 5408 hidusb - ok
14:42:20.0362 5408 [ ED29F14101523A6E0E808107405D452C ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
14:42:20.0425 5408 hkmsvc - ok
14:42:20.0440 5408 [ 33EF584AA0B583D2F106D62FD3A5A053 ] HookCentre C:\WINDOWS\system32\drivers\HookCentre.sys
14:42:20.0456 5408 HookCentre - ok
14:42:20.0456 5408 hpn - ok
14:42:20.0472 5408 [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
14:42:20.0503 5408 HTTP - ok
14:42:20.0534 5408 [ 9E4ADB854CEBCFB81A4B36718FEECD16 ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
14:42:20.0597 5408 HTTPFilter - ok
14:42:20.0597 5408 i2omgmt - ok
14:42:20.0597 5408 i2omp - ok
14:42:20.0628 5408 [ E283B97CFBEB86C1D86BAED5F7846A92 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
14:42:20.0690 5408 i8042prt - ok
14:42:20.0722 5408 [ 6F95324909B502E2651442C1548AB12F ] IDriverT C:\Programme\Gemeinsame Dateien\InstallShield\Driver\1050\Intel 32\IDriverT.exe
14:42:20.0722 5408 IDriverT ( UnsignedFile.Multi.Generic ) - warning
14:42:20.0722 5408 IDriverT - detected UnsignedFile.Multi.Generic (1)
14:42:20.0768 5408 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
14:42:20.0800 5408 idsvc - ok
14:42:20.0815 5408 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
14:42:20.0878 5408 Imapi - ok
14:42:20.0909 5408 [ D4B413AA210C21E46AEDD2BA5B68D38E ] ImapiService C:\WINDOWS\system32\imapi.exe
14:42:20.0972 5408 ImapiService - ok
14:42:20.0987 5408 ini910u - ok
14:42:21.0081 5408 [ 5731A30009BAAC8A38103866F6046D8A ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RtkHDAud.sys
14:42:21.0206 5408 IntcAzAudAddService - ok
14:42:21.0222 5408 IntelIde - ok
14:42:21.0237 5408 [ 4C7D2750158ED6E7AD642D97BFFAE351 ] intelppm C:\WINDOWS\system32\DRIVERS\intelppm.sys
14:42:21.0300 5408 intelppm - ok
14:42:21.0315 5408 [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw C:\WINDOWS\system32\drivers\ip6fw.sys
14:42:21.0393 5408 Ip6Fw - ok
14:42:21.0425 5408 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
14:42:21.0503 5408 IpFilterDriver - ok
14:42:21.0518 5408 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
14:42:21.0565 5408 IpInIp - ok
14:42:21.0597 5408 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
14:42:21.0659 5408 IpNat - ok
14:42:21.0675 5408 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
14:42:21.0737 5408 IPSec - ok
14:42:21.0753 5408 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
14:42:21.0815 5408 IRENUM - ok
14:42:21.0831 5408 [ 6DFB88F64135C525433E87648BDA30DE ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
14:42:21.0893 5408 isapnp - ok
14:42:21.0987 5408 [ 0A5709543986843D37A92290B7838340 ] JavaQuickStarterService C:\Programme\Java\jre6\bin\jqs.exe
14:42:22.0003 5408 JavaQuickStarterService - ok
14:42:22.0018 5408 [ 1704D8C4C8807B889E43C649B478A452 ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
14:42:22.0081 5408 Kbdclass - ok
14:42:22.0097 5408 [ B6D6C117D771C98130497265F26D1882 ] kbdhid C:\WINDOWS\system32\DRIVERS\kbdhid.sys
14:42:22.0175 5408 kbdhid - ok
14:42:22.0190 5408 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
14:42:22.0253 5408 kmixer - ok
14:42:22.0268 5408 [ B467646C54CC746128904E1654C750C1 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
14:42:22.0315 5408 KSecDD - ok
14:42:22.0347 5408 [ 2BBDCB79900990F0716DFCB714E72DE7 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
14:42:22.0362 5408 lanmanserver - ok
14:42:22.0393 5408 [ 1869B14B06B44B44AF70548E1EA3303F ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
14:42:22.0409 5408 lanmanworkstation - ok
14:42:22.0425 5408 lbrtfdc - ok
14:42:22.0456 5408 [ C34411A244029F1C08687F7C752C4563 ] LightScribeService C:\Programme\Gemeinsame Dateien\LightScribe\LSSrvc.exe
14:42:22.0456 5408 LightScribeService ( UnsignedFile.Multi.Generic ) - warning
14:42:22.0456 5408 LightScribeService - detected UnsignedFile.Multi.Generic (1)
14:42:22.0487 5408 [ 4127E8B6DDB4090E815C1F8852C277D3 ] lirsgt C:\WINDOWS\system32\DRIVERS\lirsgt.sys
14:42:22.0503 5408 lirsgt - ok
14:42:22.0503 5408 [ 636714B7D43C8D0C80449123FD266920 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
14:42:22.0581 5408 LmHosts - ok
14:42:22.0597 5408 [ A3E700D78EEC390F1208098CDCA5C6B6 ] MarvinBus C:\WINDOWS\system32\DRIVERS\MarvinBus.sys
14:42:22.0612 5408 MarvinBus ( UnsignedFile.Multi.Generic ) - warning
14:42:22.0612 5408 MarvinBus - detected UnsignedFile.Multi.Generic (1)
14:42:22.0628 5408 [ 65E794E86468B61F2BC79ABC48BC4433 ] MBAMProtector C:\WINDOWS\system32\drivers\mbam.sys
14:42:22.0643 5408 MBAMProtector - ok
14:42:22.0675 5408 [ 0DCF16B1449811EFA47AB52CAC84093C ] MBAMScheduler C:\Programme\Malwarebytes' Anti-Malware\mbamscheduler.exe
14:42:22.0706 5408 MBAMScheduler - ok
14:42:22.0722 5408 [ 9EAABA4D601004BEA4DAA6E146E19A96 ] MBAMService C:\Programme\Malwarebytes' Anti-Malware\mbamservice.exe
14:42:22.0753 5408 MBAMService - ok
14:42:22.0768 5408 [ B7550A7107281D170CE85524B1488C98 ] Messenger C:\WINDOWS\System32\msgsvc.dll
14:42:22.0847 5408 Messenger - ok
14:42:22.0862 5408 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
14:42:22.0940 5408 mnmdd - ok
14:42:22.0956 5408 [ C2F1D365FD96791B037EE504868065D3 ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
14:42:23.0034 5408 mnmsrvc - ok
14:42:23.0050 5408 [ 6FB74EBD4EC57A6F1781DE3852CC3362 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
14:42:23.0112 5408 Modem - ok
14:42:23.0128 5408 [ B24CE8005DEAB254C0251E15CB71D802 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
14:42:23.0206 5408 Mouclass - ok
14:42:23.0237 5408 [ 66A6F73C74E1791464160A7065CE711A ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys
14:42:23.0300 5408 mouhid - ok
14:42:23.0300 5408 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
14:42:23.0362 5408 MountMgr - ok
14:42:23.0362 5408 mraid35x - ok
14:42:23.0378 5408 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
14:42:23.0440 5408 MRxDAV - ok
14:42:23.0456 5408 [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
14:42:23.0487 5408 MRxSmb - ok
14:42:23.0503 5408 [ 35A031AF38C55F92D28AA03EE9F12CC9 ] MSDTC C:\WINDOWS\system32\msdtc.exe
14:42:23.0565 5408 MSDTC - ok
14:42:23.0597 5408 [ 1477849772712BAC69C144DCF2C9CE81 ] MSDV C:\WINDOWS\system32\DRIVERS\msdv.sys
14:42:23.0659 5408 MSDV - ok
14:42:23.0659 5408 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
14:42:23.0722 5408 Msfs - ok
14:42:23.0722 5408 MSIServer - ok
14:42:23.0737 5408 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
14:42:23.0800 5408 MSKSSRV - ok
14:42:23.0800 5408 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
14:42:23.0862 5408 MSPCLOCK - ok
14:42:23.0878 5408 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
14:42:23.0940 5408 MSPQM - ok
14:42:23.0956 5408 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
14:42:24.0018 5408 mssmbios - ok
14:42:24.0237 5408 [ 1B959A0614D575D0AB3B09095F0A8B83 ] MSSQL$PINNACLESYS C:\Programme\Pinnacle\MediaServer\Microsoft SQL Server\MSSQL$PINNACLESYS\Binn\sqlservr.exe
14:42:24.0440 5408 MSSQL$PINNACLESYS - ok
14:42:24.0472 5408 [ 1D1B22613EAB9287AF902398867BC93C ] MSSQLServerADHelper C:\Programme\Microsoft SQL Server\80\Tools\Binn\sqladhlp.exe
14:42:24.0487 5408 MSSQLServerADHelper ( UnsignedFile.Multi.Generic ) - warning
14:42:24.0487 5408 MSSQLServerADHelper - detected UnsignedFile.Multi.Generic (1)
14:42:24.0503 5408 [ E53736A9E30C45FA9E7B5EAC55056D1D ] MSTEE C:\WINDOWS\system32\drivers\MSTEE.sys
14:42:24.0581 5408 MSTEE - ok
14:42:24.0612 5408 [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
14:42:24.0643 5408 Mup - ok
14:42:24.0675 5408 [ 5B50F1B2A2ED47D560577B221DA734DB ] NABTSFEC C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
14:42:24.0753 5408 NABTSFEC - ok
14:42:24.0784 5408 [ 46BB15AE2AC7D025D6D2567B876817BD ] napagent C:\WINDOWS\System32\qagentrt.dll
14:42:24.0847 5408 napagent - ok
14:42:24.0893 5408 [ 1BBBF640BC0E0B750537BAECE8D66C18 ] NAUpdate C:\Programme\Nero\Update\NASvc.exe
14:42:24.0940 5408 NAUpdate - ok
14:42:24.0956 5408 [ E240F3204E86B7B6CCF266B2A2AD32B4 ] NBVol C:\WINDOWS\system32\DRIVERS\NBVol.sys
14:42:24.0972 5408 NBVol - ok
14:42:24.0972 5408 [ C0CF3CCCCE3C75F7280C89029AB47866 ] NBVolUp C:\WINDOWS\system32\DRIVERS\NBVolUp.sys
14:42:24.0987 5408 NBVolUp - ok
14:42:25.0003 5408 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
14:42:25.0065 5408 NDIS - ok
14:42:25.0081 5408 [ 7FF1F1FD8609C149AA432F95A8163D97 ] NdisIP C:\WINDOWS\system32\DRIVERS\NdisIP.sys
14:42:25.0143 5408 NdisIP - ok
14:42:25.0159 5408 [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
14:42:25.0175 5408 NdisTapi - ok
14:42:25.0206 5408 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
14:42:25.0253 5408 Ndisuio - ok
14:42:25.0268 5408 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
14:42:25.0331 5408 NdisWan - ok
14:42:25.0362 5408 [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
14:42:25.0378 5408 NDProxy - ok
14:42:25.0425 5408 [ 78073F606AE3B24F6C1F555759AA8511 ] Nero BackItUp Scheduler 3 C:\Programme\Nero\Nero8\Nero BackItUp\NBService.exe
14:42:25.0472 5408 Nero BackItUp Scheduler 3 - ok
14:42:25.0472 5408 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
14:42:25.0534 5408 NetBIOS - ok
14:42:25.0550 5408 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
14:42:25.0628 5408 NetBT - ok
14:42:25.0643 5408 [ 8ACE4251BFFD09CE75679FE940E996CC ] NetDDE C:\WINDOWS\system32\netdde.exe
14:42:25.0706 5408 NetDDE - ok
14:42:25.0722 5408 [ 8ACE4251BFFD09CE75679FE940E996CC ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
14:42:25.0784 5408 NetDDEdsdm - ok
14:42:25.0800 5408 [ FBB9CAC7D63D065EDD0269E05C0D8AF5 ] NETHDD C:\WINDOWS\system32\NETHDD.exe
14:42:25.0815 5408 NETHDD - ok
14:42:25.0847 5408 [ 725097CF0A3116BDADDB5CE2FDF208A6 ] NETHDDIM C:\WINDOWS\system32\DRIVERS\nethddim.sys
14:42:25.0862 5408 NETHDDIM - ok
14:42:25.0878 5408 [ AFB8261B56CBA0D86AEB6DF682AF9785 ] Netlogon C:\WINDOWS\system32\lsass.exe
14:42:25.0940 5408 Netlogon - ok
14:42:25.0956 5408 [ E6D88F1F6745BF00B57E7855A2AB696C ] Netman C:\WINDOWS\System32\netman.dll
14:42:26.0034 5408 Netman - ok
14:42:26.0050 5408 [ D34612C5D02D026535B3095D620626AE ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
14:42:26.0065 5408 NetTcpPortSharing - ok
14:42:26.0081 5408 [ E9E47CFB2D461FA0FC75B7A74C6383EA ] NIC1394 C:\WINDOWS\system32\DRIVERS\nic1394.sys
14:42:26.0143 5408 NIC1394 - ok
14:42:26.0175 5408 [ F1B67B6B0751AE0E6E964B02821206A3 ] Nla C:\WINDOWS\System32\mswsock.dll
14:42:26.0190 5408 Nla - ok
14:42:26.0253 5408 [ 37A39E3271842BAE754540FE004D9CB5 ] NMIndexingService C:\Programme\Gemeinsame Dateien\Nero\Lib\NMIndexingService.exe
14:42:26.0284 5408 NMIndexingService - ok
14:42:26.0300 5408 [ F6C40E0A565EE3CE5AEEB325E10054F2 ] nmwcd C:\WINDOWS\system32\drivers\ccdcmb.sys
14:42:26.0456 5408 nmwcd - ok
14:42:26.0487 5408 [ 2A394E9E1FA3565E4B2FEA470FFE4D6B ] nmwcdc C:\WINDOWS\system32\drivers\ccdcmbo.sys
14:42:26.0518 5408 nmwcdc - ok
14:42:26.0550 5408 [ 99B224F8026CB534724AA3C408561E45 ] nmwcdnsu C:\WINDOWS\system32\drivers\nmwcdnsu.sys
14:42:26.0597 5408 nmwcdnsu - ok
14:42:26.0597 5408 [ D23257682D349A5E2E4507ED33DECC16 ] nmwcdnsuc C:\WINDOWS\system32\drivers\nmwcdnsuc.sys
14:42:26.0643 5408 nmwcdnsuc - ok
14:42:26.0659 5408 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
14:42:26.0722 5408 Npfs - ok
14:42:26.0737 5408 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
14:42:26.0815 5408 Ntfs - ok
14:42:26.0831 5408 [ AFB8261B56CBA0D86AEB6DF682AF9785 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
14:42:26.0893 5408 NtLmSsp - ok
14:42:26.0909 5408 [ 56AF4064996FA5BAC9C449B1514B4770 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
14:42:26.0987 5408 NtmsSvc - ok
14:42:27.0003 5408 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
14:42:27.0081 5408 Null - ok
14:42:27.0206 5408 [ CE34061A298BFB4EBD1A0BB8592DC977 ] nv C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
14:42:27.0409 5408 nv - ok
14:42:27.0425 5408 [ CCD0C2A9A9C4C59441072564B011B546 ] NVENETFD C:\WINDOWS\system32\DRIVERS\NVENETFD.sys
14:42:27.0472 5408 NVENETFD - ok
14:42:27.0472 5408 [ FA740E97A0FE36E368C2299D9F3C01C1 ] nvgts C:\WINDOWS\system32\DRIVERS\nvgts.sys
14:42:27.0487 5408 nvgts - ok
14:42:27.0503 5408 [ A4931D96F111B5A8F3129507AE7BDF12 ] nvnetbus C:\WINDOWS\system32\DRIVERS\nvnetbus.sys
14:42:27.0534 5408 nvnetbus - ok
14:42:27.0534 5408 [ 77ECDF9E3D43D4E86E85B73886992625 ] NVSvc C:\WINDOWS\system32\nvsvc32.exe
14:42:27.0565 5408 NVSvc - ok
14:42:27.0597 5408 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
14:42:27.0659 5408 NwlnkFlt - ok
14:42:27.0675 5408 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
14:42:27.0737 5408 NwlnkFwd - ok
14:42:27.0737 5408 [ CA33832DF41AFB202EE7AEB05145922F ] ohci1394 C:\WINDOWS\system32\DRIVERS\ohci1394.sys
14:42:27.0800 5408 ohci1394 - ok
14:42:27.0847 5408 [ 7A56CF3E3F12E8AF599963B16F50FB6A ] ose C:\Programme\Gemeinsame Dateien\Microsoft Shared\Source Engine\OSE.EXE
14:42:27.0862 5408 ose - ok
14:42:27.0878 5408 [ 4CDADEC3DC1300EE1D313EA5494E6472 ] ovt519 C:\WINDOWS\system32\Drivers\ov519vid.sys
14:42:27.0893 5408 ovt519 ( UnsignedFile.Multi.Generic ) - warning
14:42:27.0893 5408 ovt519 - detected UnsignedFile.Multi.Generic (1)
14:42:27.0909 5408 [ F84785660305B9B903FB3BCA8BA29837 ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
14:42:27.0972 5408 Parport - ok
14:42:27.0972 5408 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
14:42:28.0034 5408 PartMgr - ok
14:42:28.0065 5408 [ C2BF987829099A3EAA2CA6A0A90ECB4F ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
14:42:28.0128 5408 ParVdm - ok
14:42:28.0143 5408 [ F451DCACBAA67F3307305EBD4A39EA07 ] pccsmcfd C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys
14:42:28.0175 5408 pccsmcfd - ok
14:42:28.0175 5408 [ 387E8DEDC343AA2D1EFBC30580273ACD ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
14:42:28.0253 5408 PCI - ok
14:42:28.0268 5408 PCIDump - ok
14:42:28.0268 5408 [ 59BA86D9A61CBCF4DF8E598C331F5B82 ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
14:42:28.0331 5408 PCIIde - ok
14:42:28.0362 5408 [ 1BEBE7DE8508A02650CDCE45C664C2A2 ] PCLEPCI C:\WINDOWS\system32\drivers\pclepci.sys
14:42:28.0378 5408 PCLEPCI ( UnsignedFile.Multi.Generic ) - warning
14:42:28.0378 5408 PCLEPCI - detected UnsignedFile.Multi.Generic (1)
14:42:28.0393 5408 [ A2A966B77D61847D61A3051DF87C8C97 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
14:42:28.0472 5408 Pcmcia - ok
14:42:28.0472 5408 PDCOMP - ok
14:42:28.0487 5408 PDFRAME - ok
14:42:28.0487 5408 PDRELI - ok
14:42:28.0487 5408 PDRFRAME - ok
14:42:28.0487 5408 perc2 - ok
14:42:28.0487 5408 perc2hib - ok
14:42:28.0534 5408 [ 478D9A1E760F9089DE19925616689F0D ] PinnacleSys.MediaServer c:\programme\pinnacle\shared files\programs\mediaserver\pmshost.exe
14:42:28.0534 5408 PinnacleSys.MediaServer ( UnsignedFile.Multi.Generic ) - warning
14:42:28.0534 5408 PinnacleSys.MediaServer - detected UnsignedFile.Multi.Generic (1)
14:42:28.0565 5408 [ 875E4E0661F3A5994DF9E5E3A0A4F96B ] PLFlash DeviceIoControl Service C:\WINDOWS\system32\IoctlSvc.exe
14:42:28.0565 5408 PLFlash DeviceIoControl Service ( UnsignedFile.Multi.Generic ) - warning
14:42:28.0565 5408 PLFlash DeviceIoControl Service - detected UnsignedFile.Multi.Generic (1)
14:42:28.0581 5408 [ A3EDBE9053889FB24AB22492472B39DC ] PlugPlay C:\WINDOWS\system32\services.exe
14:42:28.0597 5408 PlugPlay - ok
14:42:28.0597 5408 [ AFB8261B56CBA0D86AEB6DF682AF9785 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
14:42:28.0659 5408 PolicyAgent - ok
14:42:28.0675 5408 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
14:42:28.0737 5408 PptpMiniport - ok
14:42:28.0753 5408 [ 7E8BE4D11F5AC1E5CAE42719A7230508 ] PQNTDrv C:\WINDOWS\system32\drivers\PQNTDrv.sys
14:42:28.0753 5408 PQNTDrv ( UnsignedFile.Multi.Generic ) - warning
14:42:28.0753 5408 PQNTDrv - detected UnsignedFile.Multi.Generic (1)
14:42:28.0753 5408 [ AFB8261B56CBA0D86AEB6DF682AF9785 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
14:42:28.0815 5408 ProtectedStorage - ok
14:42:28.0831 5408 [ 09298EC810B07E5D582CB3A3F9255424 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
14:42:28.0893 5408 PSched - ok
14:42:28.0925 5408 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
14:42:29.0003 5408 Ptilink - ok
14:42:29.0018 5408 [ E42E3433DBB4CFFE8FDD91EAB29AEA8E ] PxHelp20 C:\WINDOWS\system32\Drivers\PxHelp20.sys
14:42:29.0034 5408 PxHelp20 - ok
14:42:29.0034 5408 ql1080 - ok
14:42:29.0034 5408 Ql10wnt - ok
14:42:29.0050 5408 ql12160 - ok
14:42:29.0050 5408 ql1240 - ok
14:42:29.0050 5408 ql1280 - ok
14:42:29.0050 5408 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
14:42:29.0128 5408 RasAcd - ok
14:42:29.0143 5408 [ F5BA6CACCDB66C8F048E867563203246 ] RasAuto C:\WINDOWS\System32\rasauto.dll
14:42:29.0206 5408 RasAuto - ok
14:42:29.0222 5408 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
14:42:29.0268 5408 Rasl2tp - ok
14:42:29.0300 5408 [ F9A7B66EA345726EDB5862A46B1ECCD5 ] RasMan C:\WINDOWS\System32\rasmans.dll
14:42:29.0362 5408 RasMan - ok
14:42:29.0378 5408 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
14:42:29.0440 5408 RasPppoe - ok
14:42:29.0440 5408 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
14:42:29.0518 5408 Raspti - ok
14:42:29.0534 5408 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
14:42:29.0597 5408 Rdbss - ok
14:42:29.0612 5408 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
14:42:29.0675 5408 RDPCDD - ok
14:42:29.0706 5408 [ 15CABD0F7C00C47C70124907916AF3F1 ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys
14:42:29.0768 5408 rdpdr - ok
14:42:29.0784 5408 [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
14:42:29.0831 5408 RDPWD - ok
14:42:29.0831 5408 [ 263AF18AF0F3DB99F574C95F284CCEC9 ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
14:42:29.0909 5408 RDSessMgr - ok
14:42:29.0925 5408 [ ED761D453856F795A7FE056E42C36365 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
14:42:30.0003 5408 redbook - ok
14:42:30.0034 5408 [ 0E97EC96D6942CEEC2D188CC2EB69A01 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
14:42:30.0112 5408 RemoteAccess - ok
14:42:30.0128 5408 [ E4CD1F3D84E1C2CA0B8CF7501E201593 ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
14:42:30.0190 5408 RemoteRegistry - ok
14:42:30.0206 5408 [ 851C30DF2807FCFA21E4C681A7D6440E ] RFCOMM C:\WINDOWS\system32\DRIVERS\rfcomm.sys
14:42:30.0268 5408 RFCOMM - ok
14:42:30.0284 5408 [ 2A02E21867497DF20B8FC95631395169 ] RpcLocator C:\WINDOWS\system32\locator.exe
14:42:30.0347 5408 RpcLocator - ok
14:42:30.0362 5408 [ 3127AFBF2C1ED0AB14A1BBB7AAECB85B ] RpcSs C:\WINDOWS\system32\rpcss.dll
14:42:30.0393 5408 RpcSs - ok
14:42:30.0425 5408 [ 4BDD71B4B521521499DFD14735C4F398 ] RSVP C:\WINDOWS\system32\rsvp.exe
14:42:30.0487 5408 RSVP - ok
14:42:30.0503 5408 [ AFB8261B56CBA0D86AEB6DF682AF9785 ] SamSs C:\WINDOWS\system32\lsass.exe
14:42:30.0565 5408 SamSs - ok
14:42:30.0581 5408 [ DCEC079FAD95D36C8DD5CB6D779DFE32 ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
14:42:30.0643 5408 SCardSvr - ok
14:42:30.0675 5408 [ A050194A44D7FA8D7186ED2F4E8367AE ] Schedule C:\WINDOWS\system32\schedsvc.dll
14:42:30.0737 5408 Schedule - ok
14:42:30.0753 5408 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
14:42:30.0815 5408 Secdrv - ok
14:42:30.0815 5408 [ BEE4CFD1D48C23B44CF4B974B0B79B2B ] seclogon C:\WINDOWS\System32\seclogon.dll
14:42:30.0878 5408 seclogon - ok
14:42:30.0909 5408 [ 2AAC9B6ED9EDDFFB721D6452E34D67E3 ] SENS C:\WINDOWS\system32\sens.dll
14:42:30.0972 5408 SENS - ok
14:42:30.0987 5408 [ 05F03D7F2999431C53CE254DA1301B31 ] Sentinel C:\WINDOWS\System32\Drivers\SENTINEL.SYS
14:42:31.0003 5408 Sentinel ( UnsignedFile.Multi.Generic ) - warning
14:42:31.0003 5408 Sentinel - detected UnsignedFile.Multi.Generic (1)
14:42:31.0003 5408 [ 0F29512CCD6BEAD730039FB4BD2C85CE ] serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
14:42:31.0065 5408 serenum - ok
14:42:31.0081 5408 [ CF24EB4F0412C82BCD1F4F35A025E31D ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
14:42:31.0143 5408 Serial - ok
14:42:31.0206 5408 [ E90CE237E99C5D26CB3872318A7799D0 ] ServiceLayer C:\Programme\PC Connectivity Solution\ServiceLayer.exe
14:42:31.0237 5408 ServiceLayer - ok
14:42:31.0268 5408 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\DRIVERS\sfloppy.sys
14:42:31.0331 5408 Sfloppy - ok
14:42:31.0362 5408 [ 73A4BB091A1374203C8DD1598EE91223 ] SFSZ C:\WINDOWS\system32\drivers\sfsz.sys
14:42:31.0378 5408 SFSZ ( UnsignedFile.Multi.Generic ) - warning
14:42:31.0378 5408 SFSZ - detected UnsignedFile.Multi.Generic (1)
14:42:31.0409 5408 [ CAD058D5F8B889A87CA3EB3CF624DCEF ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
14:42:31.0487 5408 SharedAccess - ok
14:42:31.0503 5408 [ 2DB7D303C36DDD055215052F118E8E75 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
14:42:31.0518 5408 ShellHWDetection - ok
14:42:31.0518 5408 Simbad - ok
14:42:31.0643 5408 [ 753D254205E0A62100A050BD8B458D06 ] Skype C2C Service C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Skype\Toolbars\Skype C2C Service\c2c_service.exe
14:42:31.0753 5408 Skype C2C Service - ok
14:42:31.0784 5408 [ EA396139541706B4B433641D62EA53CE ] SkypeUpdate C:\Programme\Skype\Updater\Updater.exe
14:42:31.0800 5408 SkypeUpdate - ok
14:42:31.0815 5408 [ 866D538EBE33709A5C9F5C62B73B7D14 ] SLIP C:\WINDOWS\system32\DRIVERS\SLIP.sys
14:42:31.0878 5408 SLIP - ok
14:42:31.0878 5408 [ E78C98378A071CE4D48A7C514FA98FA1 ] snapman C:\WINDOWS\system32\DRIVERS\snapman.sys
14:42:31.0893 5408 snapman - ok
14:42:31.0909 5408 Sparrow - ok
14:42:31.0940 5408 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
14:42:32.0003 5408 splitter - ok
14:42:32.0018 5408 [ 60784F891563FB1B767F70117FC2428F ] Spooler C:\WINDOWS\system32\spoolsv.exe
14:42:32.0065 5408 Spooler - ok
14:42:32.0081 5408 [ 352E375AB298C23B0F9BC307652C7F50 ] SQLAgent$PINNACLESYS C:\Programme\Pinnacle\MediaServer\Microsoft SQL Server\MSSQL$PINNACLESYS\Binn\sqlagent.EXE
14:42:32.0097 5408 SQLAgent$PINNACLESYS ( UnsignedFile.Multi.Generic ) - warning
14:42:32.0097 5408 SQLAgent$PINNACLESYS - detected UnsignedFile.Multi.Generic (1)
14:42:32.0112 5408 [ 6F6A0307C30B33E65AAF52C46CEA2ECD ] SQTECH905C C:\WINDOWS\system32\Drivers\Capt905c.sys
14:42:32.0143 5408 SQTECH905C ( UnsignedFile.Multi.Generic ) - warning
14:42:32.0143 5408 SQTECH905C - detected UnsignedFile.Multi.Generic (1)
14:42:32.0143 5408 [ 50FA898F8C032796D3B1B9951BB5A90F ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
14:42:32.0206 5408 sr - ok
14:42:32.0222 5408 [ FE77A85495065F3AD59C5C65B6C54182 ] srservice C:\WINDOWS\system32\srsvc.dll
14:42:32.0300 5408 srservice - ok
14:42:32.0315 5408 [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
14:42:32.0347 5408 Srv - ok
14:42:32.0378 5408 [ 4DF5B05DFAEC29E13E1ED6F6EE12C500 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
14:42:32.0440 5408 SSDPSRV - ok
14:42:32.0440 5408 SSPORT - ok
14:42:32.0472 5408 [ BC2C5985611C5356B24AEB370953DED9 ] stisvc C:\WINDOWS\system32\wiaservc.dll
14:42:32.0534 5408 stisvc - ok
14:42:32.0550 5408 [ 77813007BA6265C4B6098187E6ED79D2 ] streamip C:\WINDOWS\system32\DRIVERS\StreamIP.sys
14:42:32.0612 5408 streamip - ok
14:42:32.0643 5408 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
14:42:32.0706 5408 swenum - ok
14:42:32.0722 5408 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
14:42:32.0784 5408 swmidi - ok
14:42:32.0800 5408 SwPrv - ok
14:42:32.0800 5408 symc810 - ok
14:42:32.0800 5408 symc8xx - ok
14:42:32.0800 5408 sym_hi - ok
14:42:32.0800 5408 sym_u3 - ok
14:42:32.0815 5408 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
14:42:32.0862 5408 sysaudio - ok
14:42:32.0893 5408 [ 2903FFFA2523926D6219428040DCE6B9 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
14:42:32.0956 5408 SysmonLog - ok
14:42:32.0972 5408 [ 05903CAC4B98908D55EA5774775B382E ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
14:42:33.0050 5408 TapiSrv - ok
14:42:33.0065 5408 [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
14:42:33.0112 5408 Tcpip - ok
14:42:33.0143 5408 [ 4E53BBCC4BE37D7A4BD6EF1098C89FF7 ] Tcpip6 C:\WINDOWS\system32\DRIVERS\tcpip6.sys
14:42:33.0159 5408 Tcpip6 - ok
14:42:33.0175 5408 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
14:42:33.0237 5408 TDPIPE - ok
14:42:33.0237 5408 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
14:42:33.0315 5408 TDTCP - ok
14:42:33.0331 5408 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
14:42:33.0393 5408 TermDD - ok
14:42:33.0409 5408 [ B7DE02C863D8F5A005A7BF375375A6A4 ] TermService C:\WINDOWS\System32\termsrv.dll
14:42:33.0472 5408 TermService - ok
14:42:33.0487 5408 [ 2DB7D303C36DDD055215052F118E8E75 ] Themes C:\WINDOWS\System32\shsvcs.dll
14:42:33.0503 5408 Themes - ok
14:42:33.0518 5408 [ B84B82C0CBEB1B0D7EB7A946BADE5830 ] tifsfilter C:\WINDOWS\system32\DRIVERS\tifsfilt.sys
14:42:33.0518 5408 tifsfilter ( UnsignedFile.Multi.Generic ) - warning
14:42:33.0518 5408 tifsfilter - detected UnsignedFile.Multi.Generic (1)
14:42:33.0534 5408 [ 74711884439BDF9CCF446C79CB05FAC0 ] timounter C:\WINDOWS\system32\DRIVERS\timntr.sys
14:42:33.0550 5408 timounter ( UnsignedFile.Multi.Generic ) - warning
14:42:33.0550 5408 timounter - detected UnsignedFile.Multi.Generic (1)
14:42:33.0581 5408 [ 03681A1CE77F51586903869A5AB1DEAB ] TlntSvr C:\WINDOWS\system32\tlntsvr.exe
14:42:33.0659 5408 TlntSvr - ok
14:42:33.0659 5408 TosIde - ok
14:42:33.0675 5408 [ 626504572B175867F30F3215C04B3E2F ] TrkWks C:\WINDOWS\system32\trkwks.dll
14:42:33.0737 5408 TrkWks - ok
14:42:33.0753 5408 [ 8F861EDA21C05857EB8197300A92501C ] tunmp C:\WINDOWS\system32\DRIVERS\tunmp.sys
14:42:33.0815 5408 tunmp - ok
14:42:33.0831 5408 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
14:42:33.0893 5408 Udfs - ok
14:42:33.0909 5408 ultra - ok
14:42:33.0925 5408 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
14:42:34.0018 5408 Update - ok
14:42:34.0018 5408 [ 1DFD8975D8C89214B98D9387C1125B49 ] upnphost C:\WINDOWS\System32\upnphost.dll
14:42:34.0081 5408 upnphost - ok
14:42:34.0112 5408 [ 47F5F9D837D80FFD5882A14DB9DA0A67 ] upperdev C:\WINDOWS\system32\DRIVERS\usbser_lowerflt.sys
14:42:34.0143 5408 upperdev - ok
14:42:34.0159 5408 [ 9B11E6118958E63E1FEF129466E2BDA7 ] UPS C:\WINDOWS\System32\ups.exe
14:42:34.0222 5408 UPS - ok
14:42:34.0237 5408 [ E919708DB44ED8543A7C017953148330 ] usbaudio C:\WINDOWS\system32\drivers\usbaudio.sys
14:42:34.0300 5408 usbaudio - ok
14:42:34.0315 5408 [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
14:42:34.0378 5408 usbccgp - ok
14:42:34.0393 5408 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
14:42:34.0456 5408 usbehci - ok
14:42:34.0456 5408 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
14:42:34.0534 5408 usbhub - ok
14:42:34.0550 5408 [ 0DAECCE65366EA32B162F85F07C6753B ] usbohci C:\WINDOWS\system32\DRIVERS\usbohci.sys
14:42:34.0612 5408 usbohci - ok
14:42:34.0628 5408 [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
14:42:34.0690 5408 usbscan - ok
14:42:34.0706 5408 [ 1C888B000C2F9492F4B15B5B6B84873E ] usbser C:\WINDOWS\system32\drivers\usbser.sys
14:42:34.0768 5408 usbser - ok
14:42:34.0784 5408 [ E44F0D17BE0908B58DCC99CCB99C6C32 ] UsbserFilt C:\WINDOWS\system32\DRIVERS\usbser_lowerfltj.sys
14:42:34.0815 5408 UsbserFilt - ok
14:42:34.0831 5408 [ A32426D9B14A089EAA1D922E0C5801A9 ] usbstor C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
14:42:34.0893 5408 usbstor - ok
14:42:34.0909 5408 [ 63BBFCA7F390F4C49ED4B96BFB1633E0 ] usbvideo C:\WINDOWS\system32\Drivers\usbvideo.sys
14:42:34.0972 5408 usbvideo - ok
14:42:34.0987 5408 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
14:42:35.0050 5408 VgaSave - ok
14:42:35.0050 5408 ViaIde - ok
14:42:35.0050 5408 [ A5A712F4E880874A477AF790B5186E1D ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
14:42:35.0112 5408 VolSnap - ok
14:42:35.0128 5408 [ 68F106273BE29E7B7EF8266977268E78 ] VSS C:\WINDOWS\System32\vssvc.exe
14:42:35.0190 5408 VSS - ok
14:42:35.0222 5408 [ 7B353059E665F8B7AD2BBEAEF597CF45 ] W32Time C:\WINDOWS\system32\w32time.dll
14:42:35.0284 5408 W32Time - ok
14:42:35.0284 5408 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
14:42:35.0347 5408 Wanarp - ok
14:42:35.0378 5408 [ 46A247F6617526AFE38B6F12F5512120 ] wceusbsh C:\WINDOWS\system32\DRIVERS\wceusbsh.sys
14:42:35.0409 5408 wceusbsh - ok
14:42:35.0440 5408 [ D918617B46457B9AC28027722E30F647 ] Wdf01000 C:\WINDOWS\system32\Drivers\wdf01000.sys
14:42:35.0456 5408 Wdf01000 - ok
14:42:35.0456 5408 WDICA - ok
14:42:35.0472 5408 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
14:42:35.0534 5408 wdmaud - ok
14:42:35.0550 5408 [ 81727C9873E3905A2FFC1EBD07265002 ] WebClient C:\WINDOWS\System32\webclnt.dll
14:42:35.0612 5408 WebClient - ok
14:42:35.0659 5408 [ 6F3F3973D97714CC5F906A19FE883729 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
14:42:35.0722 5408 winmgmt - ok
14:42:35.0768 5408 [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN C:\WINDOWS\system32\MsPMSNSv.dll
14:42:35.0815 5408 WmdmPmSN - ok
14:42:35.0831 5408 [ FFA4D901D46D07A5BAB2D8307FBB51A6 ] Wmi C:\WINDOWS\System32\advapi32.dll
14:42:35.0862 5408 Wmi - ok
14:42:35.0893 5408 [ 93908111BA57A6E60EC2FA2DE202105C ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
14:42:35.0956 5408 WmiApSrv - ok
14:42:36.0003 5408 [ BF05650BB7DF5E9EBDD25974E22403BB ] WMPNetworkSvc C:\Programme\Windows Media Player\WMPNetwk.exe
14:42:36.0034 5408 WMPNetworkSvc - ok
14:42:36.0050 5408 [ CF4DEF1BF66F06964DC0D91844239104 ] WpdUsb C:\WINDOWS\system32\Drivers\wpdusb.sys
14:42:36.0050 5408 WpdUsb - ok
14:42:36.0128 5408 [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
14:42:36.0175 5408 WPFFontCache_v0400 - ok
14:42:36.0190 5408 [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] WS2IFSL C:\WINDOWS\System32\drivers\ws2ifsl.sys
14:42:36.0268 5408 WS2IFSL - ok
14:42:36.0284 5408 [ 300B3E84FAF1A5C1F791C159BA28035D ] wscsvc C:\WINDOWS\system32\wscsvc.dll
14:42:36.0362 5408 wscsvc - ok
14:42:36.0393 5408 [ C98B39829C2BBD34E454150633C62C78 ] WSTCODEC C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
14:42:36.0456 5408 WSTCODEC - ok
14:42:36.0472 5408 [ 7B4FE05202AA6BF9F4DFD0E6A0D8A085 ] wuauserv C:\windows\system32\wuauserv.dll
14:42:36.0534 5408 wuauserv - ok
14:42:36.0565 5408 [ 6FF66513D372D479EF1810223C8D20CE ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
14:42:36.0597 5408 WudfPf - ok
14:42:36.0612 5408 [ AC13CB789D93412106B0FB6C7EB2BCB6 ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
14:42:36.0628 5408 WudfRd - ok
14:42:36.0643 5408 [ 575A4190D989F64732119E4114045A4F ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
14:42:36.0706 5408 WudfSvc - ok
14:42:36.0737 5408 [ C4F109C005F6725162D2D12CA751E4A7 ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
14:42:36.0815 5408 WZCSVC - ok
14:42:36.0831 5408 [ 0ADA34871A2E1CD2CAAFED1237A47750 ] xmlprov C:\WINDOWS\System32\xmlprov.dll
14:42:36.0925 5408 xmlprov - ok
14:42:36.0987 5408 [ 9AE1ABB50F5F7E73C0527878F9560C78 ] Z-SANService C:\Programme\NETGEAR\NETGEAR Storage Central Manager Utility\Z-SANService.exe
14:42:37.0018 5408 Z-SANService ( UnsignedFile.Multi.Generic ) - warning
14:42:37.0018 5408 Z-SANService - detected UnsignedFile.Multi.Generic (1)
14:42:37.0034 5408 [ D2B32E42CFC9E6762F114AA07D302698 ] ZetBus C:\WINDOWS\system32\DRIVERS\ZetBus.sys
14:42:37.0050 5408 ZetBus ( UnsignedFile.Multi.Generic ) - warning
14:42:37.0050 5408 ZetBus - detected UnsignedFile.Multi.Generic (1)
14:42:37.0065 5408 [ 482F4E0517163118C4F1A58DC9F01C5C ] ZetMPD C:\WINDOWS\system32\DRIVERS\ZetMPD.sys
14:42:37.0065 5408 ZetMPD ( UnsignedFile.Multi.Generic ) - warning
14:42:37.0065 5408 ZetMPD - detected UnsignedFile.Multi.Generic (1)
14:42:37.0065 5408 [ 023742125E77ED9BF306EC027F0BF942 ] ZetSFD C:\WINDOWS\system32\DRIVERS\ZetSFD.sys
14:42:37.0081 5408 ZetSFD ( UnsignedFile.Multi.Generic ) - warning
14:42:37.0081 5408 ZetSFD - detected UnsignedFile.Multi.Generic (1)
14:42:37.0081 5408 ================ Scan global ===============================
14:42:37.0097 5408 [ 2C60091CA5F67C3032EAB3B30390C27F ] C:\WINDOWS\system32\basesrv.dll
14:42:37.0112 5408 [ A28CE25B59C90E12743001A1F2AE3613 ] C:\WINDOWS\system32\winsrv.dll
14:42:37.0128 5408 [ A28CE25B59C90E12743001A1F2AE3613 ] C:\WINDOWS\system32\winsrv.dll
14:42:37.0143 5408 [ A3EDBE9053889FB24AB22492472B39DC ] C:\WINDOWS\system32\services.exe
14:42:37.0143 5408 [Global] - ok
14:42:37.0143 5408 ================ Scan MBR ==================================
14:42:37.0159 5408 [ 72B8CE41AF0DE751C946802B3ED844B4 ] \Device\Harddisk1\DR1
14:42:37.0362 5408 \Device\Harddisk1\DR1 - ok
14:42:37.0362 5408 ================ Scan VBR ==================================
14:42:37.0362 5408 [ 848EAD6DD7B91B2E362C0F064D9BB51B ] \Device\Harddisk1\DR1\Partition1
14:42:37.0362 5408 \Device\Harddisk1\DR1\Partition1 - ok
14:42:37.0362 5408 [ 26CACE534F73BB62C3A1D3604481E715 ] \Device\Harddisk1\DR1\Partition2
14:42:37.0362 5408 \Device\Harddisk1\DR1\Partition2 - ok
14:42:37.0393 5408 [ 6712A1D514F425D9A7DA5DD91B6EB8D6 ] \Device\Harddisk1\DR1\Partition3
14:42:37.0393 5408 \Device\Harddisk1\DR1\Partition3 - ok
14:42:37.0409 5408 [ B2D02C6035F2DB5CD88D09F10C3B713C ] \Device\Harddisk1\DR1\Partition4
14:42:37.0409 5408 \Device\Harddisk1\DR1\Partition4 - ok
14:42:37.0425 5408 [ 766AB6A8873C8121F26DA05408CC688C ] \Device\Harddisk1\DR1\Partition5
14:42:37.0425 5408 \Device\Harddisk1\DR1\Partition5 - ok
14:42:37.0440 5408 [ E3EE3823D08518EBDE3A809D7F93194A ] \Device\Harddisk1\DR1\Partition6
14:42:37.0440 5408 \Device\Harddisk1\DR1\Partition6 - ok
14:42:37.0440 5408 [ 830409DCD7499D9C25D89C14DF5E2F5A ] \Device\Harddisk1\DR1\Partition7
14:42:37.0440 5408 \Device\Harddisk1\DR1\Partition7 - ok
14:42:37.0440 5408 ============================================================
14:42:37.0440 5408 Scan finished
14:42:37.0440 5408 ============================================================
14:42:37.0550 5824 Detected object count: 23
14:42:37.0550 5824 Actual detected object count: 23
14:43:25.0222 5824 ASAPIW2K ( UnsignedFile.Multi.Generic ) - skipped by user
14:43:25.0222 5824 ASAPIW2K ( UnsignedFile.Multi.Generic ) - User select action: Skip
14:43:25.0222 5824 Aspi32 ( UnsignedFile.Multi.Generic ) - skipped by user
14:43:25.0222 5824 Aspi32 ( UnsignedFile.Multi.Generic ) - User select action: Skip
14:43:25.0222 5824 FsUsbExDisk ( UnsignedFile.Multi.Generic ) - skipped by user
14:43:25.0222 5824 FsUsbExDisk ( UnsignedFile.Multi.Generic ) - User select action: Skip
14:43:25.0222 5824 GDNdisIm ( UnsignedFile.Multi.Generic ) - skipped by user
14:43:25.0222 5824 GDNdisIm ( UnsignedFile.Multi.Generic ) - User select action: Skip
14:43:25.0222 5824 IDriverT ( UnsignedFile.Multi.Generic ) - skipped by user
14:43:25.0222 5824 IDriverT ( UnsignedFile.Multi.Generic ) - User select action: Skip
14:43:25.0222 5824 LightScribeService ( UnsignedFile.Multi.Generic ) - skipped by user
14:43:25.0222 5824 LightScribeService ( UnsignedFile.Multi.Generic ) - User select action: Skip
14:43:25.0222 5824 MarvinBus ( UnsignedFile.Multi.Generic ) - skipped by user
14:43:25.0222 5824 MarvinBus ( UnsignedFile.Multi.Generic ) - User select action: Skip
14:43:25.0222 5824 MSSQLServerADHelper ( UnsignedFile.Multi.Generic ) - skipped by user
14:43:25.0222 5824 MSSQLServerADHelper ( UnsignedFile.Multi.Generic ) - User select action: Skip
14:43:25.0222 5824 ovt519 ( UnsignedFile.Multi.Generic ) - skipped by user
14:43:25.0222 5824 ovt519 ( UnsignedFile.Multi.Generic ) - User select action: Skip
14:43:25.0222 5824 PCLEPCI ( UnsignedFile.Multi.Generic ) - skipped by user
14:43:25.0222 5824 PCLEPCI ( UnsignedFile.Multi.Generic ) - User select action: Skip
14:43:25.0222 5824 PinnacleSys.MediaServer ( UnsignedFile.Multi.Generic ) - skipped by user
14:43:25.0222 5824 PinnacleSys.MediaServer ( UnsignedFile.Multi.Generic ) - User select action: Skip
14:43:25.0222 5824 PLFlash DeviceIoControl Service ( UnsignedFile.Multi.Generic ) - skipped by user
14:43:25.0222 5824 PLFlash DeviceIoControl Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
14:43:25.0222 5824 PQNTDrv ( UnsignedFile.Multi.Generic ) - skipped by user
14:43:25.0222 5824 PQNTDrv ( UnsignedFile.Multi.Generic ) - User select action: Skip
14:43:25.0222 5824 Sentinel ( UnsignedFile.Multi.Generic ) - skipped by user
14:43:25.0222 5824 Sentinel ( UnsignedFile.Multi.Generic ) - User select action: Skip
14:43:25.0222 5824 SFSZ ( UnsignedFile.Multi.Generic ) - skipped by user
14:43:25.0222 5824 SFSZ ( UnsignedFile.Multi.Generic ) - User select action: Skip
14:43:25.0222 5824 SQLAgent$PINNACLESYS ( UnsignedFile.Multi.Generic ) - skipped by user
14:43:25.0222 5824 SQLAgent$PINNACLESYS ( UnsignedFile.Multi.Generic ) - User select action: Skip
14:43:25.0237 5824 SQTECH905C ( UnsignedFile.Multi.Generic ) - skipped by user
14:43:25.0237 5824 SQTECH905C ( UnsignedFile.Multi.Generic ) - User select action: Skip
14:43:25.0237 5824 tifsfilter ( UnsignedFile.Multi.Generic ) - skipped by user
14:43:25.0237 5824 tifsfilter ( UnsignedFile.Multi.Generic ) - User select action: Skip
14:43:25.0237 5824 timounter ( UnsignedFile.Multi.Generic ) - skipped by user
14:43:25.0237 5824 timounter ( UnsignedFile.Multi.Generic ) - User select action: Skip
14:43:25.0237 5824 Z-SANService ( UnsignedFile.Multi.Generic ) - skipped by user
14:43:25.0237 5824 Z-SANService ( UnsignedFile.Multi.Generic ) - User select action: Skip
14:43:25.0237 5824 ZetBus ( UnsignedFile.Multi.Generic ) - skipped by user
14:43:25.0237 5824 ZetBus ( UnsignedFile.Multi.Generic ) - User select action: Skip
14:43:25.0237 5824 ZetMPD ( UnsignedFile.Multi.Generic ) - skipped by user
14:43:25.0237 5824 ZetMPD ( UnsignedFile.Multi.Generic ) - User select action: Skip
14:43:25.0237 5824 ZetSFD ( UnsignedFile.Multi.Generic ) - skipped by user
14:43:25.0237 5824 ZetSFD ( UnsignedFile.Multi.Generic ) - User select action: Skip
|
|
| Themen zu Ransom-D gefunden und weißer Bildschirm |
| adobe, antivirus, becker, bho, bildschirm, booten, error, firefox, flash player, format, gdata, homepage, internet browser, intranet, keine eingaben möglich, log's, logfile, netgear, plug-in, problem, realtek, registry, rundll, scan, security, software, trojan.renos, trojaner, trojaner ransom, trojaner ransom-d, udp, videospin, weißer bildschirm, windows, windows internet, windows xp, wiso |
Hybrid-Darstellung
