| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: System Progressive Protection (Virus/Wurm)Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
11.12.2012, 22:46
| #16 |
 |  System Progressive Protection (Virus/Wurm) Oh je, Hilfe. Ich hab deine Anweisungen befolgt und den PC anschließend neu gestartet. Jetzt seh ich aber nur noch mein Hintergrundbild, ohne icons, also ohne diese Desktopverknüpfungen (Firefox,Photoscape, Papierkorb etc.) Kaspersky ist wieder an gegangen und ein Fenster mit: C:\WINDOWS\system32\cmd.exe hat sich geöffnet. Ich sehe also nur das Kaspersky-, & dieses Windows-system-Fenster. Was soll ich jetzt tun?  "Start Scan"? *ERGÄNZUNG: In diesem Windowssystemfenster stand plötzlich "Zugriff verweigert", dann hat es sich geschlossen und ich habe meine Verknüpfungen wieder! Ich lasse jetzt also Kaspersky erneut laufen und schicke dir dann den Bericht, richtig? *ERGÄNZUNG(2) Abgesehen davon, dass der Pc plötzlich unglaublich lahm ist, hat alles geklappt  Hier der Bericht:Code:
ATTFilter 22:40:53.0171 1192 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
22:40:54.0000 1192 ============================================================
22:40:54.0000 1192 Current date / time: 2012/12/11 22:40:54.0000
22:40:54.0000 1192 SystemInfo:
22:40:54.0000 1192
22:40:54.0000 1192 OS Version: 5.1.2600 ServicePack: 3.0
22:40:54.0000 1192 Product type: Workstation
22:40:54.0000 1192 ComputerName: KUNDE-5971BD14E
22:40:54.0000 1192 UserName: Administrator
22:40:54.0000 1192 Windows directory: C:\WINDOWS
22:40:54.0000 1192 System windows directory: C:\WINDOWS
22:40:54.0000 1192 Processor architecture: Intel x86
22:40:54.0000 1192 Number of processors: 1
22:40:54.0000 1192 Page size: 0x1000
22:40:54.0000 1192 Boot type: Normal boot
22:40:54.0000 1192 ============================================================
22:41:03.0640 1192 BG loaded
22:41:06.0000 1192 Drive \Device\Harddisk0\DR0 - Size: 0x9516AE000 (37.27 Gb), SectorSize: 0x200, Cylinders: 0x1301, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
22:41:06.0265 1192 ============================================================
22:41:06.0265 1192 \Device\Harddisk0\DR0:
22:41:06.0281 1192 MBR partitions:
22:41:06.0281 1192 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x4A89182
22:41:06.0281 1192 ============================================================
22:41:06.0359 1192 C: <-> \Device\Harddisk0\DR0\Partition1
22:41:06.0421 1192 ============================================================
22:41:06.0421 1192 Initialize success
22:41:06.0421 1192 ============================================================
22:54:27.0500 3008 ============================================================
22:54:27.0500 3008 Scan started
22:54:27.0500 3008 Mode: Manual; SigCheck; TDLFS;
22:54:27.0500 3008 ============================================================
22:54:34.0437 3008 ================ Scan system memory ========================
22:55:12.0109 1912 ============================================================
22:55:12.0109 1912 Scan started
22:55:12.0109 1912 Mode: Manual; SigCheck; TDLFS;
22:55:12.0109 1912 ============================================================
22:55:19.0000 1912 ================ Scan system memory ========================
22:55:45.0062 1912 System memory - ok
22:55:45.0062 1912 ================ Scan services =============================
22:57:23.0984 1912 [ AA3A2F0F56C2D217197DC8DD0F1FA355 ] AAMWService C:\Programme\Ashampoo\Ashampoo Anti-Malware\AAMW_Service.exe
22:57:28.0312 1912 AAMWService - ok
22:57:29.0703 1912 [ 120689BEAED899EE5ED1A7B629F85C8B ] AAMW_WSC_Service_XP C:\Programme\Ashampoo\Ashampoo Anti-Malware\AAMW_WSC_Service_XP.exe
22:57:35.0234 1912 AAMW_WSC_Service_XP ( UnsignedFile.Multi.Generic ) - warning
22:57:35.0234 1912 AAMW_WSC_Service_XP - detected UnsignedFile.Multi.Generic (1)
22:57:43.0359 1912 Abiosdsk - ok
22:57:43.0359 1912 abp480n5 - ok
22:57:43.0546 1912 [ AC407F1A62C3A300B4F2B5A9F1D55B2C ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
22:58:10.0187 1912 ACPI - ok
22:58:10.0390 1912 [ 9E1CA3160DAFB159CA14F83B1E317F75 ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
22:58:14.0421 1912 ACPIEC - ok
22:58:14.0750 1912 [ 0CB0AA071C7B86A64F361DCFDF357329 ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
22:58:16.0937 1912 AdobeFlashPlayerUpdateSvc - ok
22:58:17.0000 1912 adpu160m - ok
22:58:17.0250 1912 [ 11C04B17ED2ABBB4833694BCD644AC90 ] aeaudio C:\WINDOWS\system32\drivers\aeaudio.sys
22:58:21.0125 1912 aeaudio - ok
22:58:21.0328 1912 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys
22:58:25.0109 1912 aec - ok
22:58:25.0312 1912 [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD C:\WINDOWS\System32\drivers\afd.sys
22:58:30.0531 1912 AFD - ok
22:58:30.0593 1912 Aha154x - ok
22:58:30.0656 1912 aic78u2 - ok
22:58:30.0656 1912 aic78xx - ok
22:58:30.0734 1912 ALCXWDM - ok
22:58:31.0062 1912 [ 738D80CC01D7BC7584BE917B7F544394 ] Alerter C:\WINDOWS\system32\alrsvc.dll
22:58:33.0671 1912 Alerter - ok
22:58:35.0359 1912 [ 190CD73D4984F94D823F9444980513E5 ] ALG C:\WINDOWS\System32\alg.exe
22:58:37.0906 1912 ALG - ok
22:58:38.0000 1912 AliIde - ok
22:58:38.0093 1912 amsint - ok
22:58:38.0703 1912 [ 116BFF96077A4A724E0AAB800525CEB5 ] AN983 C:\WINDOWS\system32\DRIVERS\AN983.sys
22:58:43.0078 1912 AN983 - ok
22:58:43.0468 1912 [ D45960BE52C3C610D361977057F98C54 ] AppMgmt C:\WINDOWS\System32\appmgmts.dll
22:58:44.0750 1912 AppMgmt - ok
22:58:45.0062 1912 [ 62D318E9A0C8FC9B780008E724283707 ] asc C:\WINDOWS\system32\DRIVERS\asc.sys
22:58:47.0515 1912 asc - ok
22:58:47.0671 1912 asc3350p - ok
22:58:47.0984 1912 asc3550 - ok
22:58:48.0515 1912 [ 0E5E4957549056E2BF2C49F4F6B601AD ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
22:58:48.0859 1912 aspnet_state - ok
22:58:48.0937 1912 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
22:58:50.0375 1912 AsyncMac - ok
22:58:50.0609 1912 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
22:58:51.0875 1912 atapi - ok
22:58:51.0875 1912 Atdisk - ok
22:58:52.0234 1912 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
22:58:54.0578 1912 Atmarpc - ok
22:58:55.0062 1912 [ 58ED0D5452DF7BE732193E7999C6B9A4 ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
22:58:57.0718 1912 AudioSrv - ok
22:58:57.0765 1912 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
22:58:59.0343 1912 audstub - ok
22:59:00.0046 1912 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
22:59:02.0593 1912 Beep - ok
22:59:04.0125 1912 [ C364F02969E9A842321DD91BCFF749D4 ] BHDrvx86 C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.2.0.19\Definitions\BASHDefs\20120928.001\BHDrvx86.sys
22:59:10.0250 1912 BHDrvx86 - ok
22:59:10.0328 1912 [ D6F603772A789BB3228F310D650B8BD1 ] BITS C:\WINDOWS\system32\qmgr.dll
22:59:13.0765 1912 BITS - ok
22:59:14.0765 1912 [ B71549F23736ADF83A571061C47777FD ] Browser C:\WINDOWS\System32\browser.dll
22:59:17.0453 1912 Browser - ok
22:59:17.0468 1912 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
22:59:19.0671 1912 cbidf2k - ok
22:59:20.0062 1912 [ 1277AD8F053CC60C17CAFAB411F3CF40 ] ccSet_NIS C:\WINDOWS\system32\drivers\NIS\1402000.013\ccSetx86.sys
22:59:21.0593 1912 ccSet_NIS - ok
22:59:21.0593 1912 cd20xrnt - ok
22:59:21.0906 1912 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
22:59:25.0109 1912 Cdaudio - ok
22:59:25.0203 1912 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
22:59:27.0250 1912 Cdfs - ok
22:59:27.0296 1912 [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
22:59:29.0281 1912 Cdrom - ok
22:59:29.0281 1912 Changer - ok
22:59:29.0687 1912 [ 28E3040D1F1CA2008CD6B29DFEBC9A5E ] CiSvc C:\WINDOWS\system32\cisvc.exe
22:59:31.0250 1912 CiSvc - ok
22:59:31.0453 1912 [ 778A30ED3C134EB7E406AFC407E9997D ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
22:59:33.0250 1912 ClipSrv - ok
22:59:33.0296 1912 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 c:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
22:59:33.0531 1912 clr_optimization_v2.0.50727_32 - ok
22:59:33.0656 1912 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
22:59:33.0843 1912 clr_optimization_v4.0.30319_32 - ok
22:59:34.0078 1912 CmdIde - ok
22:59:34.0406 1912 COMSysApp - ok
22:59:34.0890 1912 Cpqarray - ok
22:59:36.0734 1912 [ 611F824E5C703A5A899F84C5F1699E4D ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
22:59:38.0625 1912 CryptSvc - ok
22:59:38.0640 1912 dac2w2k - ok
22:59:38.0656 1912 dac960nt - ok
22:59:38.0750 1912 [ 3127AFBF2C1ED0AB14A1BBB7AAECB85B ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
22:59:41.0062 1912 DcomLaunch - ok
22:59:41.0125 1912 [ C29A1C9B75BA38FA37F8C44405DEC360 ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
22:59:42.0468 1912 Dhcp - ok
22:59:42.0515 1912 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
22:59:44.0000 1912 Disk - ok
22:59:44.0015 1912 dmadmin - ok
22:59:44.0250 1912 [ 0DCFC8395A99FECBB1EF771CEC7FE4EA ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
22:59:46.0390 1912 dmboot - ok
22:59:46.0453 1912 [ 53720AB12B48719D00E327DA470A619A ] dmio C:\WINDOWS\system32\DRIVERS\dmio.sys
22:59:48.0015 1912 dmio - ok
22:59:48.0062 1912 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
22:59:49.0515 1912 dmload - ok
22:59:49.0593 1912 [ 25C83FFBBA13B554EB6D59A9B2E2EE78 ] dmserver C:\WINDOWS\System32\dmserver.dll
22:59:51.0343 1912 dmserver - ok
22:59:51.0375 1912 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
22:59:52.0968 1912 DMusic - ok
22:59:53.0015 1912 [ 407F3227AC618FD1CA54B335B083DE07 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
22:59:54.0500 1912 Dnscache - ok
22:59:54.0703 1912 [ 676E36C4FF5BCEA1900F44182B9723E6 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
22:59:56.0046 1912 Dot3svc - ok
22:59:56.0062 1912 dpti2o - ok
22:59:56.0265 1912 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
22:59:57.0828 1912 drmkaud - ok
22:59:57.0875 1912 [ 83403675CAB29E7A4B885B11E7C855D8 ] E100B C:\WINDOWS\system32\DRIVERS\e100b325.sys
22:59:58.0703 1912 E100B - ok
22:59:58.0734 1912 [ 4E4F2FDDAB0A0736D7671134DCCE91FB ] EapHost C:\WINDOWS\System32\eapsvc.dll
23:00:00.0656 1912 EapHost - ok
23:00:00.0953 1912 [ 85B8B4032A895A746D46A288A9B30DED ] eeCtrl C:\Programme\Gemeinsame Dateien\Symantec Shared\EENGINE\eeCtrl.sys
23:00:01.0125 1912 eeCtrl - ok
23:00:01.0203 1912 [ B5A8A04A6E5B4E86B95B1553AA918F5F ] EraserUtilDrv11220 C:\Programme\Gemeinsame Dateien\Symantec Shared\EENGINE\EraserUtilDrv11220.sys
23:00:01.0515 1912 EraserUtilDrv11220 - ok
23:00:01.0578 1912 [ 877C18558D70587AA7823A1A308AC96B ] ERSvc C:\WINDOWS\System32\ersvc.dll
23:00:03.0093 1912 ERSvc - ok
23:00:03.0203 1912 [ A3EDBE9053889FB24AB22492472B39DC ] Eventlog C:\WINDOWS\system32\services.exe
23:00:04.0312 1912 Eventlog - ok
23:00:04.0375 1912 [ AF4F6B5739D18CA7972AB53E091CBC74 ] EventSystem C:\WINDOWS\system32\es.dll
23:00:15.0875 1912 EventSystem - ok
23:00:16.0390 1912 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
23:00:17.0843 1912 Fastfat - ok
23:00:17.0890 1912 [ 2DB7D303C36DDD055215052F118E8E75 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
23:00:19.0578 1912 FastUserSwitchingCompatibility - ok
23:00:19.0781 1912 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\DRIVERS\fdc.sys
23:00:23.0234 1912 Fdc - ok
23:00:23.0296 1912 [ B0678A548587C5F1967B0D70BACAD6C1 ] Fips C:\WINDOWS\system32\drivers\Fips.sys
23:00:24.0875 1912 Fips - ok
23:00:24.0921 1912 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\DRIVERS\flpydisk.sys
23:00:26.0359 1912 Flpydisk - ok
23:00:26.0406 1912 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\DRIVERS\fltMgr.sys
23:00:27.0843 1912 FltMgr - ok
23:00:27.0921 1912 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
23:00:28.0093 1912 FontCache3.0.0.0 - ok
23:00:28.0109 1912 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
23:00:29.0562 1912 Fs_Rec - ok
23:00:29.0593 1912 [ 8F1955CE42E1484714B542F341647778 ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
23:00:31.0312 1912 Ftdisk - ok
23:00:31.0359 1912 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
23:00:32.0843 1912 Gpc - ok
23:00:33.0046 1912 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Programme\Google\Update\GoogleUpdate.exe
23:00:33.0281 1912 gupdate - ok
23:00:33.0328 1912 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Programme\Google\Update\GoogleUpdate.exe
23:00:33.0671 1912 gupdatem - ok
23:00:34.0906 1912 [ CB66BF85BF599BEFD6C6A57C2E20357F ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
23:00:36.0171 1912 helpsvc - ok
23:00:36.0203 1912 [ B35DA85E60C0103F2E4104532DA2F12B ] HidServ C:\WINDOWS\System32\hidserv.dll
23:00:37.0781 1912 HidServ - ok
23:00:37.0812 1912 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] hidusb C:\WINDOWS\system32\DRIVERS\hidusb.sys
23:00:39.0234 1912 hidusb - ok
23:00:39.0281 1912 [ ED29F14101523A6E0E808107405D452C ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
23:00:40.0718 1912 hkmsvc - ok
23:00:40.0718 1912 hpn - ok
23:00:41.0015 1912 [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
23:00:43.0296 1912 HTTP - ok
23:00:43.0328 1912 [ 9E4ADB854CEBCFB81A4B36718FEECD16 ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
23:00:44.0703 1912 HTTPFilter - ok
23:00:44.0765 1912 [ 008ADA74E3028FCED5145F4F74230D4B ] hwdatacard C:\WINDOWS\system32\DRIVERS\ewusbmdm.sys
23:00:45.0796 1912 hwdatacard - ok
23:00:45.0937 1912 i2omgmt - ok
23:00:46.0187 1912 i2omp - ok
23:00:46.0437 1912 [ E283B97CFBEB86C1D86BAED5F7846A92 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
23:00:48.0593 1912 i8042prt - ok
23:00:48.0640 1912 [ B076EB745EC3C669D4AE953225366F1D ] ialm C:\WINDOWS\system32\DRIVERS\ialmnt5.sys
23:00:50.0750 1912 ialm - ok
23:00:50.0968 1912 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
23:00:52.0390 1912 idsvc - ok
23:00:52.0609 1912 [ C19BF2A07BE972A110220DF6B1E89D14 ] IDSxpx86 C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.2.0.19\Definitions\IPSDefs\20120901.001\IDSxpx86.sys
23:00:52.0937 1912 IDSxpx86 - ok
23:00:53.0109 1912 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
23:00:54.0296 1912 Imapi - ok
23:00:54.0343 1912 [ D4B413AA210C21E46AEDD2BA5B68D38E ] ImapiService C:\WINDOWS\system32\imapi.exe
23:00:55.0578 1912 ImapiService - ok
23:00:55.0593 1912 ini910u - ok
23:00:55.0984 1912 [ 69C4E3C9E67A1F103B94E14FDD5F3213 ] IntelIde C:\WINDOWS\system32\DRIVERS\intelide.sys
23:00:57.0296 1912 IntelIde - ok
23:00:57.0578 1912 [ 4C7D2750158ED6E7AD642D97BFFAE351 ] intelppm C:\WINDOWS\system32\DRIVERS\intelppm.sys
23:00:58.0890 1912 intelppm - ok
23:00:59.0109 1912 [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
23:01:00.0312 1912 Ip6Fw - ok
23:01:00.0359 1912 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
23:01:01.0656 1912 IpFilterDriver - ok
23:01:02.0984 1912 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
23:01:04.0578 1912 IpInIp - ok
23:01:04.0609 1912 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
23:01:05.0812 1912 IpNat - ok
23:01:05.0875 1912 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
23:01:07.0406 1912 IPSec - ok
23:01:07.0453 1912 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
23:01:08.0500 1912 IRENUM - ok
23:01:08.0546 1912 [ 6DFB88F64135C525433E87648BDA30DE ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
23:01:10.0171 1912 isapnp - ok
23:01:10.0609 1912 [ 91061352084424820AC6268808CB8EE3 ] JavaQuickStarterService C:\Programme\Java\jre6\bin\jqs.exe
23:01:10.0796 1912 JavaQuickStarterService - ok
23:01:10.0843 1912 [ 1704D8C4C8807B889E43C649B478A452 ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
23:01:12.0187 1912 Kbdclass - ok
23:01:12.0250 1912 [ B6D6C117D771C98130497265F26D1882 ] kbdhid C:\WINDOWS\system32\DRIVERS\kbdhid.sys
23:01:13.0546 1912 kbdhid - ok
23:01:13.0593 1912 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
23:01:14.0765 1912 kmixer - ok
23:01:14.0796 1912 [ B467646C54CC746128904E1654C750C1 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
23:01:15.0625 1912 KSecDD - ok
23:01:15.0687 1912 [ 2BBDCB79900990F0716DFCB714E72DE7 ] LanmanServer C:\WINDOWS\System32\srvsvc.dll
23:01:16.0578 1912 LanmanServer - ok
23:01:16.0640 1912 [ 1869B14B06B44B44AF70548E1EA3303F ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
23:01:17.0359 1912 lanmanworkstation - ok
23:01:17.0359 1912 lbrtfdc - ok
23:01:17.0906 1912 [ 636714B7D43C8D0C80449123FD266920 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
23:01:19.0578 1912 LmHosts - ok
23:01:19.0750 1912 [ B7550A7107281D170CE85524B1488C98 ] Messenger C:\WINDOWS\System32\msgsvc.dll
23:01:20.0937 1912 Messenger - ok
23:01:21.0109 1912 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
23:01:23.0187 1912 mnmdd - ok
23:01:23.0234 1912 [ C2F1D365FD96791B037EE504868065D3 ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
23:01:24.0296 1912 mnmsrvc - ok
23:01:24.0343 1912 [ 6FB74EBD4EC57A6F1781DE3852CC3362 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
23:01:25.0781 1912 Modem - ok
23:01:25.0843 1912 [ B24CE8005DEAB254C0251E15CB71D802 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
23:01:28.0109 1912 Mouclass - ok
23:01:28.0296 1912 [ 66A6F73C74E1791464160A7065CE711A ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys
23:01:30.0171 1912 mouhid - ok
23:01:30.0218 1912 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
23:01:31.0281 1912 MountMgr - ok
23:01:31.0390 1912 [ 8C7336950F1E69CDFD811CBBD9CF00A2 ] MozillaMaintenance C:\Programme\Mozilla Maintenance Service\maintenanceservice.exe
23:01:32.0343 1912 MozillaMaintenance - ok
23:01:32.0343 1912 mraid35x - ok
23:01:32.0515 1912 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
23:01:33.0750 1912 MRxDAV - ok
23:01:33.0937 1912 [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
23:01:35.0500 1912 MRxSmb - ok
23:01:35.0546 1912 [ 35A031AF38C55F92D28AA03EE9F12CC9 ] MSDTC C:\WINDOWS\system32\msdtc.exe
23:01:36.0843 1912 MSDTC - ok
23:01:36.0984 1912 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
23:01:37.0875 1912 Msfs - ok
23:01:37.0984 1912 MSIServer - ok
23:01:38.0031 1912 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
23:01:39.0046 1912 MSKSSRV - ok
23:01:39.0156 1912 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
23:01:40.0125 1912 MSPCLOCK - ok
23:01:40.0500 1912 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
23:01:41.0718 1912 MSPQM - ok
23:01:41.0937 1912 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
23:01:44.0250 1912 mssmbios - ok
23:01:44.0312 1912 [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
23:01:45.0828 1912 Mup - ok
23:01:45.0968 1912 [ 46BB15AE2AC7D025D6D2567B876817BD ] napagent C:\WINDOWS\System32\qagentrt.dll
23:01:47.0109 1912 napagent - ok
23:01:47.0281 1912 [ 8E4C77AD9BB279900C00F870CC0C674B ] NAVENG C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.2.0.19\Definitions\VirusDefs\20121017.020\NAVENG.SYS
23:01:47.0546 1912 NAVENG - ok
23:01:47.0921 1912 [ 826F699B69E88A3920C70F344DD42D88 ] NAVEX15 C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.2.0.19\Definitions\VirusDefs\20121017.020\NAVEX15.SYS
23:01:48.0234 1912 NAVEX15 - ok
23:01:48.0281 1912 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
23:01:50.0812 1912 NDIS - ok
23:01:51.0093 1912 [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
23:01:52.0687 1912 NdisTapi - ok
23:01:53.0078 1912 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
23:01:55.0296 1912 Ndisuio - ok
23:01:55.0875 1912 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
23:01:57.0843 1912 NdisWan - ok
23:01:58.0171 1912 [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
23:02:00.0046 1912 NDProxy - ok
23:02:00.0312 1912 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
23:02:01.0453 1912 NetBIOS - ok
23:02:01.0968 1912 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
23:02:03.0875 1912 NetBT - ok
23:02:03.0937 1912 [ 8ACE4251BFFD09CE75679FE940E996CC ] NetDDE C:\WINDOWS\system32\netdde.exe
23:02:04.0953 1912 NetDDE - ok
23:02:04.0984 1912 [ 8ACE4251BFFD09CE75679FE940E996CC ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
23:02:05.0906 1912 NetDDEdsdm - ok
23:02:05.0968 1912 [ AFB8261B56CBA0D86AEB6DF682AF9785 ] Netlogon C:\WINDOWS\system32\lsass.exe
23:02:07.0343 1912 Netlogon - ok
23:02:07.0437 1912 [ E6D88F1F6745BF00B57E7855A2AB696C ] Netman C:\WINDOWS\System32\netman.dll
23:02:09.0546 1912 Netman - ok
23:02:09.0578 1912 [ D34612C5D02D026535B3095D620626AE ] NetTcpPortSharing c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
23:02:09.0671 1912 NetTcpPortSharing - ok
23:02:09.0812 1912 [ 4A9258B9597A31DB68EC9740F3A8A70B ] NIS C:\Programme\Norton Internet Security\Engine\20.2.0.19\ccSvcHst.exe
23:02:10.0265 1912 NIS - ok
23:02:10.0375 1912 [ F1B67B6B0751AE0E6E964B02821206A3 ] Nla C:\WINDOWS\System32\mswsock.dll
23:02:11.0312 1912 Nla - ok
23:02:11.0375 1912 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
23:02:12.0468 1912 Npfs - ok
23:02:12.0578 1912 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
23:02:14.0359 1912 Ntfs - ok
23:02:14.0390 1912 [ AFB8261B56CBA0D86AEB6DF682AF9785 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
23:02:15.0390 1912 NtLmSsp - ok
23:02:15.0468 1912 [ 56AF4064996FA5BAC9C449B1514B4770 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
23:02:16.0640 1912 NtmsSvc - ok
23:02:16.0671 1912 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
23:02:17.0593 1912 Null - ok
23:02:17.0671 1912 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
23:02:20.0453 1912 NwlnkFlt - ok
23:02:20.0656 1912 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
23:02:22.0468 1912 NwlnkFwd - ok
23:02:22.0500 1912 [ F84785660305B9B903FB3BCA8BA29837 ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
23:02:26.0468 1912 Parport - ok
23:02:26.0515 1912 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
23:02:28.0671 1912 PartMgr - ok
23:02:28.0937 1912 [ C2BF987829099A3EAA2CA6A0A90ECB4F ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
23:02:29.0859 1912 ParVdm - ok
23:02:29.0890 1912 [ 387E8DEDC343AA2D1EFBC30580273ACD ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
23:02:32.0000 1912 PCI - ok
23:02:32.0015 1912 PCIDump - ok
23:02:32.0062 1912 [ 59BA86D9A61CBCF4DF8E598C331F5B82 ] PCIIde C:\WINDOWS\system32\drivers\PCIIde.sys
23:02:33.0718 1912 PCIIde - ok
23:02:34.0218 1912 [ A2A966B77D61847D61A3051DF87C8C97 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
23:02:35.0265 1912 Pcmcia - ok
23:02:35.0296 1912 PDCOMP - ok
23:02:35.0390 1912 PDFRAME - ok
23:02:35.0406 1912 PDRELI - ok
23:02:35.0421 1912 PDRFRAME - ok
23:02:35.0437 1912 perc2 - ok
23:02:35.0546 1912 perc2hib - ok
23:02:35.0609 1912 [ A3EDBE9053889FB24AB22492472B39DC ] PlugPlay C:\WINDOWS\system32\services.exe
23:02:36.0515 1912 PlugPlay - ok
23:02:36.0546 1912 [ AFB8261B56CBA0D86AEB6DF682AF9785 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
23:02:38.0078 1912 PolicyAgent - ok
23:02:38.0109 1912 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
23:02:39.0859 1912 PptpMiniport - ok
23:02:40.0078 1912 [ AFB8261B56CBA0D86AEB6DF682AF9785 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
23:02:42.0250 1912 ProtectedStorage - ok
23:02:42.0562 1912 [ 09298EC810B07E5D582CB3A3F9255424 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
23:02:45.0281 1912 PSched - ok
23:02:45.0500 1912 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
23:02:49.0515 1912 Ptilink - ok
23:02:49.0609 1912 ql1080 - ok
23:02:50.0078 1912 Ql10wnt - ok
23:02:50.0453 1912 ql12160 - ok
23:02:50.0843 1912 ql1240 - ok
23:02:51.0218 1912 ql1280 - ok
23:02:51.0640 1912 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
23:02:57.0328 1912 RasAcd - ok
23:02:57.0906 1912 [ F5BA6CACCDB66C8F048E867563203246 ] RasAuto C:\WINDOWS\System32\rasauto.dll
23:03:03.0906 1912 RasAuto - ok
23:03:04.0125 1912 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
23:03:06.0718 1912 Rasl2tp - ok
23:03:07.0562 1912 [ F9A7B66EA345726EDB5862A46B1ECCD5 ] RasMan C:\WINDOWS\System32\rasmans.dll
23:03:10.0593 1912 RasMan - ok
23:03:10.0796 1912 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
23:03:13.0640 1912 RasPppoe - ok
23:03:14.0203 1912 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
23:03:15.0921 1912 Raspti - ok
23:03:16.0968 1912 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
23:03:19.0296 1912 Rdbss - ok
23:03:20.0031 1912 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
23:03:21.0171 1912 RDPCDD - ok
23:03:21.0390 1912 [ 15CABD0F7C00C47C70124907916AF3F1 ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys
23:03:22.0234 1912 rdpdr - ok
23:03:22.0500 1912 [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
23:03:23.0375 1912 RDPWD - ok
23:03:23.0890 1912 [ 263AF18AF0F3DB99F574C95F284CCEC9 ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
23:03:27.0203 1912 RDSessMgr - ok
23:03:28.0484 1912 [ ED761D453856F795A7FE056E42C36365 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
23:03:37.0375 1912 redbook - ok
23:03:38.0406 1912 [ 0E97EC96D6942CEEC2D188CC2EB69A01 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
23:03:39.0390 1912 RemoteAccess - ok
23:03:41.0859 1912 [ E4CD1F3D84E1C2CA0B8CF7501E201593 ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
23:03:43.0093 1912 RemoteRegistry - ok
23:03:45.0546 1912 [ 2A02E21867497DF20B8FC95631395169 ] RpcLocator C:\WINDOWS\system32\locator.exe
23:03:47.0328 1912 RpcLocator - ok
23:03:47.0953 1912 [ 3127AFBF2C1ED0AB14A1BBB7AAECB85B ] RpcSs C:\WINDOWS\system32\rpcss.dll
23:03:48.0281 1912 RpcSs - ok
23:03:48.0531 1912 [ 4BDD71B4B521521499DFD14735C4F398 ] RSVP C:\WINDOWS\system32\rsvp.exe
23:03:49.0359 1912 RSVP - ok
23:03:49.0671 1912 [ 7FD98E91896CAD23169A84874F145250 ] RTL8192su C:\WINDOWS\system32\DRIVERS\RTL8192su.sys
23:03:51.0203 1912 RTL8192su - ok
23:03:51.0265 1912 [ AFB8261B56CBA0D86AEB6DF682AF9785 ] SamSs C:\WINDOWS\system32\lsass.exe
23:03:51.0531 1912 SamSs - ok
23:03:51.0625 1912 [ DCEC079FAD95D36C8DD5CB6D779DFE32 ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
23:03:52.0390 1912 SCardSvr - ok
23:03:52.0484 1912 [ A050194A44D7FA8D7186ED2F4E8367AE ] Schedule C:\WINDOWS\system32\schedsvc.dll
23:03:53.0156 1912 Schedule - ok
23:03:53.0265 1912 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
23:03:53.0578 1912 Secdrv - ok
23:03:54.0140 1912 [ BEE4CFD1D48C23B44CF4B974B0B79B2B ] seclogon C:\WINDOWS\System32\seclogon.dll
23:03:54.0765 1912 seclogon - ok
23:03:55.0093 1912 [ 2AAC9B6ED9EDDFFB721D6452E34D67E3 ] SENS C:\WINDOWS\system32\sens.dll
23:03:55.0562 1912 SENS - ok
23:03:55.0593 1912 [ 0F29512CCD6BEAD730039FB4BD2C85CE ] serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
23:03:56.0484 1912 serenum - ok
23:03:56.0671 1912 [ CF24EB4F0412C82BCD1F4F35A025E31D ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
23:03:57.0156 1912 Serial - ok
23:03:57.0234 1912 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
23:03:57.0671 1912 Sfloppy - ok
23:03:58.0187 1912 [ 2DB7D303C36DDD055215052F118E8E75 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
23:03:58.0296 1912 ShellHWDetection - ok
23:03:58.0312 1912 Simbad - ok
23:03:59.0171 1912 [ DE19E1DDD5CC69781599781B32E5E887 ] SiS315 C:\WINDOWS\system32\DRIVERS\sisgrp.sys
23:04:00.0031 1912 SiS315 - ok
23:04:01.0015 1912 [ 61CA562DEF09A782D26B3E7EDEC5369A ] SISAGP C:\WINDOWS\system32\DRIVERS\SISAGPX.sys
23:04:01.0984 1912 SISAGP - ok
23:04:02.0796 1912 [ 88270F73C67D0D40E05E4062E8CD78F5 ] SiSkp C:\WINDOWS\system32\DRIVERS\srvkp.sys
23:04:03.0406 1912 SiSkp - ok
23:04:14.0250 1912 [ 5AC51DBA9B3A75D6CA79583EDBF23001 ] smwdm C:\WINDOWS\system32\drivers\smwdm.sys
23:04:15.0750 1912 smwdm - ok
23:04:15.0765 1912 Sparrow - ok
23:04:16.0468 1912 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
23:04:17.0437 1912 splitter - ok
23:04:18.0125 1912 [ 60784F891563FB1B767F70117FC2428F ] Spooler C:\WINDOWS\system32\spoolsv.exe
23:04:19.0265 1912 Spooler - ok
23:04:20.0156 1912 [ 50FA898F8C032796D3B1B9951BB5A90F ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
23:04:20.0593 1912 sr - ok
23:04:20.0796 1912 [ FE77A85495065F3AD59C5C65B6C54182 ] srservice C:\WINDOWS\system32\srsvc.dll
23:04:21.0343 1912 srservice - ok
23:04:21.0703 1912 [ 26C1B59C80FEF94B025DF5C3C1B791A7 ] SRTSP C:\WINDOWS\system32\drivers\NIS\1402000.013\SRTSP.SYS
23:04:23.0203 1912 SRTSP - ok
23:04:23.0515 1912 [ 21AC3AE81E8263061624C4ED3B11509A ] SRTSPX C:\WINDOWS\system32\drivers\NIS\1402000.013\SRTSPX.SYS
23:04:24.0250 1912 SRTSPX - ok
23:04:25.0125 1912 [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
23:04:27.0031 1912 Srv - ok
23:04:27.0250 1912 [ 4DF5B05DFAEC29E13E1ED6F6EE12C500 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
23:04:27.0515 1912 SSDPSRV - ok
23:04:28.0687 1912 [ BC2C5985611C5356B24AEB370953DED9 ] stisvc C:\WINDOWS\system32\wiaservc.dll
23:04:30.0265 1912 stisvc - ok
23:04:30.0484 1912 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
23:04:31.0546 1912 swenum - ok
23:04:32.0140 1912 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
23:04:32.0593 1912 swmidi - ok
23:04:32.0609 1912 SwPrv - ok
23:04:32.0625 1912 symc810 - ok
23:04:32.0640 1912 symc8xx - ok
23:04:37.0296 1912 [ FB69A67FEEE3026C7F99774A1C405326 ] SymDS C:\WINDOWS\system32\drivers\NIS\1402000.013\SYMDS.SYS
23:04:37.0343 1912 SymDS - ok
23:04:37.0609 1912 [ 28C5FAFA7FD1C522B8DCD59694D39412 ] SymEFA C:\WINDOWS\system32\drivers\NIS\1402000.013\SYMEFA.SYS
23:04:39.0671 1912 SymEFA - ok
23:04:40.0062 1912 [ C940F10C31E2C60CC967FFD6A370720C ] SymEvent C:\WINDOWS\system32\Drivers\SYMEVENT.SYS
23:04:40.0296 1912 SymEvent - ok
23:04:40.0578 1912 [ 8C9B9036E301A9965CF15BEC91C58A12 ] SymIRON C:\WINDOWS\system32\drivers\NIS\1402000.013\Ironx86.SYS
23:04:41.0000 1912 SymIRON - ok
23:04:41.0078 1912 [ EC979002EBA25C9D109B2FE0E03457DA ] SYMTDI C:\WINDOWS\system32\drivers\NIS\1402000.013\SYMTDI.SYS
23:04:41.0687 1912 SYMTDI - ok
23:04:41.0703 1912 sym_hi - ok
23:04:41.0718 1912 sym_u3 - ok
23:04:42.0906 1912 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
23:04:43.0578 1912 sysaudio - ok
23:04:44.0312 1912 [ 2903FFFA2523926D6219428040DCE6B9 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
23:04:47.0281 1912 SysmonLog - ok
23:04:48.0015 1912 [ 05903CAC4B98908D55EA5774775B382E ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
23:04:48.0453 1912 TapiSrv - ok
23:04:48.0875 1912 [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
23:04:49.0906 1912 Tcpip - ok
23:04:50.0734 1912 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
23:04:51.0015 1912 TDPIPE - ok
23:04:51.0625 1912 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
23:04:52.0140 1912 TDTCP - ok
23:04:52.0859 1912 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
23:04:53.0250 1912 TermDD - ok
23:04:53.0515 1912 [ B7DE02C863D8F5A005A7BF375375A6A4 ] TermService C:\WINDOWS\System32\termsrv.dll
23:04:53.0687 1912 TermService - ok
23:04:54.0578 1912 [ 2DB7D303C36DDD055215052F118E8E75 ] Themes C:\WINDOWS\System32\shsvcs.dll
23:04:54.0609 1912 Themes - ok
23:04:54.0859 1912 [ 03681A1CE77F51586903869A5AB1DEAB ] TlntSvr C:\WINDOWS\system32\tlntsvr.exe
23:04:56.0093 1912 TlntSvr - ok
23:04:56.0109 1912 TosIde - ok
23:04:56.0531 1912 [ 626504572B175867F30F3215C04B3E2F ] TrkWks C:\WINDOWS\system32\trkwks.dll
23:04:56.0906 1912 TrkWks - ok
23:05:01.0000 1912 [ 5D1CCC2692851213065BD23701AB27F4 ] TuneUp.Defrag C:\Programme\TuneUp Utilities 2010\TuneUpDefragService.exe
23:05:01.0250 1912 TuneUp.Defrag - ok
23:05:01.0500 1912 [ 6358390595647E745D7CBB00BDF44C6D ] TuneUp.UtilitiesSvc C:\Programme\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe
23:05:05.0203 1912 TuneUp.UtilitiesSvc - ok
23:05:07.0265 1912 [ F2107C9D85EC0DF116939CCCE06AE697 ] TuneUpUtilitiesDrv C:\Programme\TuneUp Utilities 2010\TuneUpUtilitiesDriver32.sys
23:05:08.0984 1912 TuneUpUtilitiesDrv - ok
23:05:09.0171 1912 [ D85938F272D1BCF3DB3A31FC0A048928 ] uagp35 C:\WINDOWS\system32\DRIVERS\uagp35.sys
23:05:09.0593 1912 uagp35 - ok
23:05:09.0812 1912 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
23:05:10.0906 1912 Udfs - ok
23:05:10.0937 1912 ultra - ok
23:05:11.0765 1912 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
23:05:13.0031 1912 Update - ok
23:05:13.0656 1912 [ 1DFD8975D8C89214B98D9387C1125B49 ] upnphost C:\WINDOWS\System32\upnphost.dll
23:05:14.0000 1912 upnphost - ok
23:05:14.0218 1912 [ 9B11E6118958E63E1FEF129466E2BDA7 ] UPS C:\WINDOWS\System32\ups.exe
23:05:14.0640 1912 UPS - ok
23:05:15.0125 1912 [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
23:05:15.0625 1912 usbccgp - ok
23:05:15.0921 1912 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
23:05:16.0781 1912 usbehci - ok
23:05:16.0890 1912 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
23:05:17.0171 1912 usbhub - ok
23:05:17.0375 1912 [ 0DAECCE65366EA32B162F85F07C6753B ] usbohci C:\WINDOWS\system32\DRIVERS\usbohci.sys
23:05:17.0968 1912 usbohci - ok
23:05:18.0234 1912 [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
23:05:18.0906 1912 USBSTOR - ok
23:05:19.0125 1912 [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
23:05:19.0500 1912 usbuhci - ok
23:05:20.0312 1912 [ 69D0E8CA1A30335029B3C5609ECDB654 ] UxTuneUp C:\WINDOWS\System32\uxtuneup.dll
23:05:20.0546 1912 UxTuneUp - ok
23:05:21.0203 1912 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
23:05:21.0765 1912 VgaSave - ok
23:05:21.0765 1912 ViaIde - ok
23:05:24.0031 1912 [ A5A712F4E880874A477AF790B5186E1D ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
23:05:25.0031 1912 VolSnap - ok
23:05:27.0953 1912 [ 68F106273BE29E7B7EF8266977268E78 ] VSS C:\WINDOWS\System32\vssvc.exe
23:05:28.0296 1912 VSS - ok
23:05:28.0593 1912 [ 7B353059E665F8B7AD2BBEAEF597CF45 ] W32Time C:\WINDOWS\system32\w32time.dll
23:05:29.0203 1912 W32Time - ok
23:05:29.0281 1912 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
23:05:30.0171 1912 Wanarp - ok
23:05:30.0187 1912 WDICA - ok
23:05:30.0343 1912 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
23:05:30.0890 1912 wdmaud - ok
23:05:31.0562 1912 [ 81727C9873E3905A2FFC1EBD07265002 ] WebClient C:\WINDOWS\System32\webclnt.dll
23:05:31.0921 1912 WebClient - ok
23:05:32.0437 1912 [ 6F3F3973D97714CC5F906A19FE883729 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
23:05:33.0296 1912 winmgmt - ok
23:05:33.0375 1912 [ F10075C2EC96D2EB118012E78ECE2FC2 ] WinRM C:\WINDOWS\system32\WsmSvc.dll
23:05:34.0656 1912 WinRM - ok
23:05:34.0734 1912 [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN C:\WINDOWS\system32\MsPMSNSv.dll
23:05:35.0390 1912 WmdmPmSN - ok
23:05:35.0625 1912 [ FFA4D901D46D07A5BAB2D8307FBB51A6 ] Wmi C:\WINDOWS\System32\advapi32.dll
23:05:38.0046 1912 Wmi - ok
23:05:38.0203 1912 [ 93908111BA57A6E60EC2FA2DE202105C ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
23:05:38.0625 1912 WmiApSrv - ok
23:05:40.0140 1912 [ BF05650BB7DF5E9EBDD25974E22403BB ] WMPNetworkSvc C:\Programme\Windows Media Player\WMPNetwk.exe
23:05:42.0125 1912 WMPNetworkSvc - ok
23:05:42.0546 1912 [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
23:05:44.0468 1912 WPFFontCache_v0400 - ok
23:05:44.0484 1912 WSearch - ok
23:05:44.0609 1912 [ 7B4FE05202AA6BF9F4DFD0E6A0D8A085 ] wuauserv C:\WINDOWS\system32\wuauserv.dll
23:05:44.0984 1912 wuauserv - ok
23:05:45.0125 1912 [ F15FEAFFFBB3644CCC80C5DA584E6311 ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
23:05:45.0406 1912 WudfPf - ok
23:05:45.0484 1912 [ 28B524262BCE6DE1F7EF9F510BA3985B ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
23:05:45.0703 1912 WudfRd - ok
23:05:45.0765 1912 [ 05231C04253C5BC30B26CBAAE680ED89 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
23:05:46.0031 1912 WudfSvc - ok
23:05:46.0265 1912 [ C4F109C005F6725162D2D12CA751E4A7 ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
23:05:47.0093 1912 WZCSVC - ok
23:05:47.0328 1912 [ 0ADA34871A2E1CD2CAAFED1237A47750 ] xmlprov C:\WINDOWS\System32\xmlprov.dll
23:05:47.0640 1912 xmlprov - ok
23:05:47.0781 1912 [ 61002DB7B6EFB5711685B9D79B8E8CE6 ] {6080A529-897E-4629-A488-ABA0C29B635E} C:\WINDOWS\system32\drivers\ialmsbw.sys
23:05:49.0250 1912 {6080A529-897E-4629-A488-ABA0C29B635E} - ok
23:05:50.0281 1912 [ 35CE2BAA708EA038AB72359DE87BAB87 ] {D31A0762-0CEB-444e-ACFF-B049A1F6FE91} C:\WINDOWS\system32\drivers\ialmkchw.sys
23:05:50.0578 1912 {D31A0762-0CEB-444e-ACFF-B049A1F6FE91} - ok
23:05:50.0578 1912 ================ Scan global ===============================
23:05:51.0734 1912 [ 2C60091CA5F67C3032EAB3B30390C27F ] C:\WINDOWS\system32\basesrv.dll
23:05:52.0031 1912 [ A28CE25B59C90E12743001A1F2AE3613 ] C:\WINDOWS\system32\winsrv.dll
23:05:52.0515 1912 [ A28CE25B59C90E12743001A1F2AE3613 ] C:\WINDOWS\system32\winsrv.dll
23:05:52.0546 1912 [ A3EDBE9053889FB24AB22492472B39DC ] C:\WINDOWS\system32\services.exe
23:05:52.0546 1912 [Global] - ok
23:05:52.0562 1912 ================ Scan MBR ==================================
23:05:52.0843 1912 [ 72B8CE41AF0DE751C946802B3ED844B4 ] \Device\Harddisk0\DR0
23:06:28.0984 1912 \Device\Harddisk0\DR0 - ok
23:06:28.0984 1912 ================ Scan VBR ==================================
23:06:29.0015 1912 [ 875F30EED6D0E0E83690E33149538B94 ] \Device\Harddisk0\DR0\Partition1
23:06:29.0015 1912 \Device\Harddisk0\DR0\Partition1 - ok
23:06:29.0046 1912 ============================================================
23:06:29.0046 1912 Scan finished
23:06:29.0046 1912 ============================================================
23:06:34.0109 0364 Detected object count: 1
23:06:34.0109 0364 Actual detected object count: 1
23:06:44.0390 0364 AAMW_WSC_Service_XP ( UnsignedFile.Multi.Generic ) - skipped by user
23:06:44.0390 0364 AAMW_WSC_Service_XP ( UnsignedFile.Multi.Generic ) - User select action: Skip
Geändert von scummy (11.12.2012 um 23:29 Uhr) |
| Themen zu System Progressive Protection (Virus/Wurm) |
| aufrufe, bilder, dateien, desktop, gesucht, hallo zusammen, infizierte, internetseite, kleines, klicke, löschen, manager, neu, nicht mehr, nichts, norton, plötzlich, reagiert, schnell, seite, system, systemwiederherstellung, task manager, tastatur, total, verschwunden |
Baum-Darstellung