| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Immer wieder Abstürze einfach so - WIN XP SP3Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
29.07.2013, 14:48
| #1 |
 |  Immer wieder Abstürze einfach so - WIN XP SP3 Hallo Ihr Klugen Schädlingsbekämpfer, Ich habe immer wieder einfach so Abstürze (PC einfach aus) und teilweise völlig blödsinniges Verhalten von Google Chrome - Monitor 2 24'' 1900*1200 und M2 27'' 2560*1440 (senkrecht ) - wenn ich surfe, kommen einfach so die hinter dem Fenster liegenden Programm teilweise nach vorn, aber nur auf dem 27'' senkrecht - sobald ich den Browser auf M1 verschiebe, dann nicht mehr. Er soll aber auch in einer Länge von 2560 funktionieren.... (Neuester GrafikTreiber ist drauf) Ich möchte nun erst mal abklären, ob es an einem Schädliing liegen kann, bevor ich die Hardware Stück für Stück prüfe(n muß). Wäre nett, wenn ihr kurz über mein Log drüberschaut, ob da was verdächtiges drin ist.... EMSI-Soft Anti-Malware hat nichts gefunden, wie diverse andere OnlineScanner auch nicht. AVIRA DE-Cleaner auch nicht Bitdefender Online Scanner auch nicht. ESET Online Scanner auch nicht. Habe keinen dauerhaften Virenschutz instlalliert, nimmt mir zu viele Ressourcen weg. Hatte so ein paar kleine Sachen wie snap.do und qv.o6, die habe ich aber alle mit JRT entfernen lassen. Hier das .log: Code:
ATTFilter Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 15:15:14, on 29.07.13 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v8.00 (8.00.6001.18702) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\Programme\Gemeinsame Dateien\Acronis\Schedule2\schedul2.exe C:\WINDOWS\system32\ACRAMDiskHandlerService32RD3.exe D:\_faster\CachemanXP\CachemanXP.exe D:\_improve system\Flashfolder\FlashFolder.exe C:\Programme\Soluto\SolutoLauncherService.exe C:\WINDOWS\system32\svchost.exe C:\Programme\Gemeinsame Dateien\Acronis\SyncAgent\syncagentsrv.exe C:\Programme\Microsoft Garage\Mouse without Borders\MouseWithoutBorders.exe C:\Programme\Microsoft Garage\Mouse without Borders\MouseWithoutBorders.exe C:\WINDOWS\Explorer.EXE C:\Programme\Microsoft IntelliType Pro\itype.exe C:\WINDOWS\system32\rundll32.exe C:\Programme\Microsoft Garage\Mouse without Borders\MousewithoutBordersHelper.exe D:\_improve system\MMTaskbar 3.0\MultiMon.exe D:\_improve system\WindowManager\WindowManager.exe Q:\_easywork\ObjectDock\ObjectDock.exe D:\_easywork\PTFB Pro\PTFBPro.exe Q:\_system improve\Anvir TaskManager Pro\anvir.exe D:\_improve system\Free Extended Task Manager\Extensions\TaskManager\ExtensionsTaskManager32.exe C:\WINDOWS\system32\taskmgr.exe D:\_improve system\System Explorer\SystemExplorer.exe D:\_improve system\System Explorer\service\SystemExplorerService.exe C:\Programme\WebTemp\WebTemp.exe C:\Programme\WebTemp\HWMonitor32.exe C:\Programme\TweakRAM\TweakRAM.exe D:\_improve system\Process Lasso\ProcessLasso.exe D:\_backup\Desksave821\DeskSave.exe C:\Programme\Launchy\Launchy.exe D:\_easywork\ComfortKeys\CKeys.exe D:\_easywork\activeaid\AutoHotkey\AutoHotkey.exe D:\_easywork\ComfortKeys\CKeysCm.exe Q:\_easywork\TaskSwitchXP\TaskSwitchXP.exe Q:\_easywork\WinSplit Revolution\WinSplit.exe Q:\_easywork\WinSplit Revolution\WinSplitDrvr32.exe D:\_improve system\RocketDock\RocketDock.exe D:\_filemanagement\xplorer² pro\xplorer2_UC.exe D:\_improve system\Process Lasso\ProcessGovernor.exe R:\_easywork\Everything\Everything.exe Q:\_easywork\allsnap150beta\allsnap.exe D:\_info\TimeLeft3\TimeLeft.exe D:\_improve system\aborange Scheduler\aboScheduler.exe C:\Programme\FreePDF_XP\fpassist.exe C:\Dokumente und Einstellungen\Elmar-Admin\Anwendungsdaten\Dropbox\bin\Dropbox.exe C:\Programme\Gemeinsame Dateien\Acronis\TibMounter\TibMounterMonitor.exe C:\Programme\Gemeinsame Dateien\Acronis\Schedule2\schedhlp.exe C:\WINDOWS\system32\mmc.exe C:\Programme\Gemeinsame Dateien\Acronis\TrueImageHome\TrueImageHomeNotify.exe C:\Programme\Gemeinsame Dateien\Acronis\TrueImageHome\TrueImageHomeService.exe C:\Programme\Emsisoft Anti-Malware\a2service.exe C:\Programme\Emsisoft Anti-Malware\a2guard.exe E:\_ dropbox _\Dropbox\_ install new\__new\HiJackThis204.exe R:\GoogleChromePortable 28 final\GoogleChromePortable.exe R:\GoogleChromePortable 28 final\App\Chrome-bin\chrome.exe R:\GoogleChromePortable 28 final\App\Chrome-bin\chrome.exe R:\GoogleChromePortable 28 final\App\Chrome-bin\chrome.exe R:\GoogleChromePortable 28 final\App\Chrome-bin\chrome.exe R:\GoogleChromePortable 28 final\App\Chrome-bin\chrome.exe R:\GoogleChromePortable 28 final\App\Chrome-bin\chrome.exe R:\GoogleChromePortable 28 final\App\Chrome-bin\chrome.exe R:\Office 2003\OFFICE11\WINWORD.EXE R:\GoogleChromePortable 28 final\App\Chrome-bin\chrome.exe R:\GoogleChromePortable 28 final\App\Chrome-bin\chrome.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.de/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = hxxp://search.qvo6.com/web/?utm_source=b&utm_medium=amt&from=amt&uid=395049983_134962_1A3A1AE6&ts=1373469190 R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = hxxp://search.qvo6.com/web/?utm_source=b&utm_medium=amt&from=amt&uid=395049983_134962_1A3A1AE6&ts=1373469190 F2 - REG:system.ini: UserInit=c:\windows\system32\userinit.exe,c:\programme\soluto\soluto.exe /userinit O1 - Hosts: # Copyright (c) 1993-1999 Microsoft Corp. O2 - BHO: PlusIEEventHelper Class - {551A852F-39A6-44A7-9C13-AFBEC9185A9D} - C:\Programme\Nuance\PDF Viewer Plus\Bin\PlusIEContextMenu.dll O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - D:\z_rest\Java 7.25 - 2\bin\ssv.dll O2 - BHO: CmjBrowserHelperObject Object - {AC41D38F-B56D-40AD-94E0-B493D130C959} - D:\Programme\MindManager 6\Mm6InternetExplorer.dll O2 - BHO: ZeonIEEventHelper Class - {DA986D7D-CCAF-47B2-84FE-BFA1549BEBF9} - D:\Programme\Nuance Paperport 14\PDFCreate\Bin\ZeonIEFavClient.dll O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - D:\z_rest\Java 7.25 - 2\bin\jp2ssv.dll O3 - Toolbar: DocuCom PDF - {E3286BF1-E654-42FF-B4A6-5E111731DF6B} - D:\Programme\Nuance Paperport 14\PDFCreate\Bin\ZeonIEFavClient.dll O4 - HKLM\..\Run: [amd_dc_opt] D:\_hardware\AMD Dual Core optimizer 1.1.4\amd_dc_opt.exe O4 - HKLM\..\Run: [nwiz] "C:\Programme\NVIDIA Corporation\nview\nwiz.exe" /installquiet O4 - HKLM\..\Run: [itype] "C:\Programme\Microsoft IntelliType Pro\itype.exe" O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k O4 - HKUS\S-1-5-19\..\RunOnce: [_nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'LOKALER DIENST') O4 - HKUS\S-1-5-20\..\RunOnce: [_nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'NETZWERKDIENST') O4 - HKUS\S-1-5-18\..\RunOnce: [_nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\RunOnce: [_nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'Default user') O4 - Startup: WindowManager.lnk = D:\_improve system\WindowManager\WindowManager.exe O4 - Global Startup: MultiMon Taskbar.lnk = D:\_improve system\MMTaskbar 3.0\MultiMon.exe O8 - Extra context menu item: An vorhandene PDF-Datei anhängen - res://D:\Programme\Nuance Paperport 14\PDFCreate\Bin\ZeonIEFavClient.dll/ZeonIEAppend.HTML O8 - Extra context menu item: PDF-Datei aus Linkinhalt erstellen - res://D:\Programme\Nuance Paperport 14\PDFCreate\Bin\ZeonIEFavClient.dll/ZeonIECapture.HTML O8 - Extra context menu item: PDF-Datei erstellen - res://D:\Programme\Nuance Paperport 14\PDFCreate\Bin\ZeonIEFavClient.dll/ZeonIECapture.HTML O8 - Extra context menu item: PDF-Dateien aus den ausgewählten Links erstellen - res://D:\Programme\Nuance Paperport 14\PDFCreate\Bin\ZeonIEFavClient.dll/ZeonIECaptureSelLinks.HTML O9 - Extra button: (no name) - AutorunsDisabled - (no file) O9 - Extra button: Send to Mindjet MindManager - {531B9DC0-D8EE-4c76-A6EE-6C1E50569655} - D:\Programme\MindManager 6\Mm6InternetExplorer.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - hxxp://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1373592075671 O18 - Protocol: AnVirDisabled - (no CLSID) - (no file) O20 - Winlogon Notify: AutorunsDisabled - Invalid registry found O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll O23 - Service: Emsisoft Anti-Malware 8.0 - Service (a2AntiMalware) - Emsisoft GmbH - C:\Programme\Emsisoft Anti-Malware\a2service.exe O23 - Service: Acronis Scheduler2 Service (AcrSch2Svc) - Acronis - C:\Programme\Gemeinsame Dateien\Acronis\Schedule2\schedul2.exe O23 - Service: Acronis Nonstop Backup Service (afcdpsrv) - Acronis - C:\Programme\Gemeinsame Dateien\Acronis\CDP\afcdpsrv.exe O23 - Service: ArchiCrypt Ultimate RAM-Disk 3 - Realisiert RAM-Disk (ArchiCrypt Ultimate RAM-Disk 3) - Softwareentwicklung Remus - ArchiCrypt - C:\WINDOWS\system32\ACRAMDiskHandlerService32RD3.exe O23 - Service: BootlogService - Greatis Software (c) - D:\_faster\BootLog XP\BootLogService.exe O23 - Service: BWMeter Connections Service (BWMeterConSvc) - Unknown owner - D:\_faster\BWMeter\BWMeterConSvc.exe O23 - Service: CachemanXP (CachemanXPService) - Outertech - D:\_faster\CachemanXP\CachemanXP.exe O23 - Service: FlashFolder - zett42 - D:\_improve system\Flashfolder\FlashFolder.exe O23 - Service: Soluto Launcher Service (SolutoLauncherService) - Soluto - C:\Programme\Soluto\SolutoLauncherService.exe O23 - Service: Soluto Remote Service (SolutoRemoteService) - GlavSoft LLC. - C:\Programme\Soluto\SolutoRemoteService.exe O23 - Service: Soluto PCGenome Core Service (SolutoService) - Soluto - C:\Programme\Soluto\SolutoService.exe O23 - Service: Acronis Sync Agent Service (syncagentsrv) - Acronis - C:\Programme\Gemeinsame Dateien\Acronis\SyncAgent\syncagentsrv.exe O23 - Service: System Explorer Service (SystemExplorerHelpService) - Mister Group - D:\_improve system\System Explorer\service\SystemExplorerService.exe O23 - Service: User Profile Hive Cleanup (UPHClean) - Windows (R) Codename Longhorn DDK provider - D:\_maintenance\UPHClean\uphclean.exe -- End of file - 9822 bytes Code:
ATTFilter ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 5.2.2 (07.22.2013:2)
OS: Microsoft Windows XP x86
Ran by Elmar-Admin on 29.07.13 at 14:46:09,82
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~ Services
~~~ Registry Values
~~~ Registry Keys
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\appid\ieplugin.dll
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\appid\{c26644c4-2a12-4ca6-8f2e-0ede6cf018f3}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\bi
Failed to delete: [Registry Key] HKEY_CURRENT_USER\Software\datamngr
Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\datamngr
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\gencrawler_gc.gencrawler
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\ieplugin.iewebhook
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\ieplugin.iewebhook.1
~~~ Files
~~~ Folders
Successfully deleted: [Folder] "C:\WINDOWS\system32\ai_recyclebin"
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 29.07.13 at 14:52:12,84
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
================================================================ Hier das Log.file von ADWCleaner [CODE]JRTAdwCleaner Logfile: Code:
ATTFilter # AdwCleaner v2.306 - Datei am 29/07/2013 um 15:50:48 erstellt
# Aktualisiert am 19/07/2013 von Xplode
# Betriebssystem : Microsoft Windows XP Service Pack 3 (32 bits)
# Benutzer : Elmar-Admin - ASUS-A8N
# Bootmodus : Normal
# Ausgeführt unter : E:\_ dropbox _\Dropbox\_ install new\_security\adwcleaner06.exe
# Option [Suche]
**** [Dienste] ****
***** [Dateien / Ordner] *****
Ordner Gefunden : C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\boost_interprocess
Ordner Gefunden : C:\Dokumente und Einstellungen\Elmar-Admin\Anwendungsdaten\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\gencrawler@some.com
Ordner Gefunden : C:\Dokumente und Einstellungen\Elmar-Admin\Lokale Einstellungen\Anwendungsdaten\PackageAware
***** [Registrierungsdatenbank] *****
Daten Gefunden : HKLM\...\StartMenuInternet\IEXPLORE.EXE [(Default)] = C:\Programme\Internet Explorer\iexplore.exe hxxp://www.qvo6.com/?utm_source=b&utm_medium=amt&from=amt&uid=395049983_134962_1A3A1AE6&ts=1373469190
Schlüssel Gefunden : HKCU\Software\DataMngr
Schlüssel Gefunden : HKCU\Software\FoxyDeal
Schlüssel Gefunden : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{2A5A2A90-3B30-4E6E-A955-2F232C6EF517}
Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{31AD400D-1B06-4E33-A59A-90C2C140CBA0}
Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\grusskartencenter.com
Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\EscDomains\grusskartencenter.com
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AppID\{3F39D17D-50C7-4AC4-A63A-CDF6CDBD0C61}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{67BD9EEB-AA06-4329-A940-D250019300C9}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{AD4DF010-E2FD-43CE-864A-6BD1EDC59AC2}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{CA4520F3-AE13-4FB1-A513-58E23991C86D}
Schlüssel Gefunden : HKLM\Software\DataMngr
Schlüssel Gefunden : HKLM\SOFTWARE\Google\Chrome\Extensions\dednnpigldgdbpgcdpfppmlcnnbjciel
Schlüssel Gefunden : HKLM\SOFTWARE\Google\Chrome\Extensions\lpmkgpnbiojfaoklbkpfneikocaobfai
Schlüssel Gefunden : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\649A52D257CA5DB4EAAE8BA9EB23E467
Schlüssel Gefunden : HKU\.DEFAULT\Software\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5}
Schlüssel Gefunden : HKU\S-1-5-18\Software\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5}
Schlüssel Gefunden : HKU\S-1-5-19\Software\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5}
Schlüssel Gefunden : HKU\S-1-5-20\Software\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5}
Schlüssel Gefunden : HKU\S-1-5-21-854245398-1960408961-1801674531-1003\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
***** [Internet Browser] *****
-\\ Internet Explorer v8.0.6001.18702
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Search - SearchAssistant] = hxxp://search.qvo6.com/web/?utm_source=b&utm_medium=amt&from=amt&uid=395049983_134962_1A3A1AE6&ts=1373469190
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Search - CustomizeSearch] = hxxp://search.qvo6.com/web/?utm_source=b&utm_medium=amt&from=amt&uid=395049983_134962_1A3A1AE6&ts=1373469190
-\\ Mozilla Firefox v [Version kann nicht ermittelt werden]
Datei : C:\Dokumente und Einstellungen\Elmar-Admin\Anwendungsdaten\Mozilla\Firefox\Profiles\75mu9wvt.default\prefs.js
[OK] Die Datei ist sauber.
-\\ Google Chrome v28.0.1500.71
Datei : C:\Dokumente und Einstellungen\Elmar-Admin\Lokale Einstellungen\Anwendungsdaten\Google\Chrome\User Data\Default\Preferences
[OK] Die Datei ist sauber.
-\\ Chromium v26.0.1450.0
Datei : C:\Dokumente und Einstellungen\Elmar-Admin\Lokale Einstellungen\Anwendungsdaten\Chromium\User Data\Default\Preferences
[OK] Die Datei ist sauber.
-\\ Opera v [Version kann nicht ermittelt werden]
Datei : C:\Dokumente und Einstellungen\Elmar-Admin\Anwendungsdaten\Opera\Opera\operaprefs.ini
[OK] Die Datei ist sauber.
*************************
AdwCleaner[R1].txt - [4483 octets] - [29/07/2013 15:50:48]
########## EOF - C:\AdwCleaner[R1].txt - [4543 octets] ##########
====================================================================== Systemlook meldet Fehler "Script required" - geht also nicht.... ====================================================================== ==================================== Kasperskay TDSSKiller Code:
ATTFilter 16:13:02.0109 3368 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
16:13:02.0531 3368 ============================================================
16:13:02.0531 3368 Current date / time: 2013/07/29 16:13:02.0531
16:13:02.0531 3368 SystemInfo:
16:13:02.0531 3368
16:13:02.0531 3368 OS Version: 5.1.2600 ServicePack: 3.0
16:13:02.0531 3368 Product type: Workstation
16:13:02.0531 3368 ComputerName: ASUS-A8N
16:13:02.0531 3368 UserName: Elmar-Admin
16:13:02.0531 3368 Windows directory: C:\WINDOWS
16:13:02.0531 3368 System windows directory: C:\WINDOWS
16:13:02.0531 3368 Processor architecture: Intel x86
16:13:02.0531 3368 Number of processors: 2
16:13:02.0531 3368 Page size: 0x1000
16:13:02.0531 3368 Boot type: Normal boot
16:13:02.0531 3368 ============================================================
16:13:04.0734 3368 Drive \Device\Harddisk1\DR1 - Size: 0x1BF4290000 (111.82 Gb), SectorSize: 0x200, Cylinders: 0x3C94, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000050
16:13:04.0734 3368 Drive \Device\Harddisk2\DR2 - Size: 0x14F61AE000 (83.85 Gb), SectorSize: 0x200, Cylinders: 0x2D6D, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000058
16:13:04.0765 3368 Drive \Device\Harddisk3\DR3 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000058
16:13:04.0765 3368 Drive \Device\Harddisk4\DR16 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
16:13:04.0781 3368 Drive \Device\Harddisk5\DR18 - Size: 0x950B055E00 (596.17 Gb), SectorSize: 0x200, Cylinders: 0x13001, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
16:13:04.0828 3368 ============================================================
16:13:04.0828 3368 \Device\Harddisk1\DR1:
16:13:04.0828 3368 MBR partitions:
16:13:04.0828 3368 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x29F9B30, BlocksNum 0xB5A4A10
16:13:04.0828 3368 \Device\Harddisk2\DR2:
16:13:04.0828 3368 MBR partitions:
16:13:04.0828 3368 \Device\Harddisk2\DR2\Partition1: MBR, Type 0x7, StartLBA 0x51360, BlocksNum 0x3376A10
16:13:04.0828 3368 \Device\Harddisk2\DR2\Partition2: MBR, Type 0x7, StartLBA 0x33C7DAF, BlocksNum 0xC069E1
16:13:04.0828 3368 \Device\Harddisk2\DR2\Partition3: MBR, Type 0x7, StartLBA 0x3FCE7CF, BlocksNum 0x2A0FD11
16:13:04.0828 3368 \Device\Harddisk2\DR2\Partition4: MBR, Type 0x7, StartLBA 0x69DE51F, BlocksNum 0x3DD10B1
16:13:04.0828 3368 \Device\Harddisk3\DR3:
16:13:04.0828 3368 MBR partitions:
16:13:04.0828 3368 \Device\Harddisk3\DR3\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x332FC8E
16:13:04.0843 3368 \Device\Harddisk3\DR3\Partition2: MBR, Type 0x7, StartLBA 0xA3CF503, BlocksNum 0x2FFB573E
16:13:04.0843 3368 \Device\Harddisk4\DR16:
16:13:04.0843 3368 MBR partitions:
16:13:04.0843 3368 \Device\Harddisk4\DR16\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x3A384C02
16:13:04.0843 3368 \Device\Harddisk5\DR18:
16:13:04.0843 3368 MBR partitions:
16:13:04.0843 3368 \Device\Harddisk5\DR18\Partition1: MBR, Type 0x7, StartLBA 0x3F07, BlocksNum 0x4A852FBA
16:13:04.0843 3368 ============================================================
16:13:04.0843 3368 F: <-> \Device\Harddisk2\DR2\Partition4
16:13:04.0875 3368 V: <-> \Device\Harddisk5\DR18\Partition1
16:13:04.0921 3368 I: <-> \Device\Harddisk1\DR1\Partition1
16:13:04.0953 3368 T: <-> \Device\Harddisk4\DR16\Partition1
16:13:04.0984 3368 W: <-> \Device\Harddisk3\DR3\Partition1
16:13:05.0000 3368 U: <-> \Device\Harddisk3\DR3\Partition2
16:13:05.0000 3368 E: <-> \Device\Harddisk2\DR2\Partition3
16:13:05.0000 3368 D: <-> \Device\Harddisk2\DR2\Partition2
16:13:05.0000 3368 C: <-> \Device\Harddisk2\DR2\Partition1
16:13:05.0000 3368 ============================================================
16:13:05.0000 3368 Initialize success
16:13:05.0000 3368 ============================================================
16:13:26.0281 5228 ============================================================
16:13:26.0281 5228 Scan started
16:13:26.0281 5228 Mode: Manual; SigCheck; TDLFS;
16:13:26.0281 5228 ============================================================
16:13:26.0359 5228 ================ Scan system memory ========================
16:13:26.0390 5228 System memory - ok
16:13:26.0421 5228 ================ Scan services =============================
16:13:26.0703 5228 [ A8A4E18857CDFD8D9AB81E2C9EAF89B5 ] a2acc C:\PROGRAMME\EMSISOFT ANTI-MALWARE\a2accx86.sys
16:13:27.0109 5228 a2acc - ok
16:13:27.0281 5228 [ 4B9C5EEBEE862574CF794582104F0C91 ] a2AntiMalware C:\Programme\Emsisoft Anti-Malware\a2service.exe
16:13:27.0718 5228 a2AntiMalware - ok
16:13:27.0796 5228 [ B0CC0B50441372157F31C4C023D43A3E ] A2DDA C:\Programme\Emsisoft Anti-Malware\a2ddax86.sys
16:13:27.0953 5228 A2DDA - ok
16:13:27.0984 5228 [ 03BFDFAE9D150D43F4A19B5FBB892591 ] a2injectiondriver C:\Programme\Emsisoft Anti-Malware\a2dix86.sys
16:13:28.0140 5228 a2injectiondriver - ok
16:13:28.0265 5228 [ 8DEA3FE12A6686573F16A06AD95D7AB9 ] a2util C:\Programme\Emsisoft Anti-Malware\a2util32.sys
16:13:28.0359 5228 a2util - ok
16:13:28.0718 5228 Abiosdsk - ok
16:13:28.0781 5228 abp480n5 - ok
16:13:28.0796 5228 [ C975B7FB61CE1674C7308DE4CF698F03 ] ACMoFlex32RD3 C:\WINDOWS\system32\drivers\ACMoFlex32RD3.sys
16:13:28.0890 5228 ACMoFlex32RD3 - ok
16:13:28.0906 5228 [ AC407F1A62C3A300B4F2B5A9F1D55B2C ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
16:13:29.0109 5228 ACPI - ok
16:13:29.0140 5228 [ 9E1CA3160DAFB159CA14F83B1E317F75 ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
16:13:29.0328 5228 ACPIEC - ok
16:13:29.0406 5228 [ 35BCB0F33FABA91F93C062FBE7EA1EAC ] AcrSch2Svc C:\Programme\Gemeinsame Dateien\Acronis\Schedule2\schedul2.exe
16:13:29.0515 5228 AcrSch2Svc - ok
16:13:29.0546 5228 [ 476BB014F3F68C0C15EDDD5B444DA8FF ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
16:13:29.0609 5228 AdobeFlashPlayerUpdateSvc - ok
16:13:29.0640 5228 adpu160m - ok
16:13:29.0656 5228 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys
16:13:29.0875 5228 aec - ok
16:13:29.0906 5228 [ DF139E5866C19E0B3217EF210198D875 ] afcdp C:\WINDOWS\system32\DRIVERS\afcdp.sys
16:13:30.0015 5228 afcdp - ok
16:13:30.0109 5228 [ 1AEA25F70F12ABB494A4E35E1D717414 ] afcdpsrv C:\Programme\Gemeinsame Dateien\Acronis\CDP\afcdpsrv.exe
16:13:30.0578 5228 afcdpsrv - ok
16:13:30.0625 5228 [ F6B7B1ECD7B41736BDB6FF4B092BCB79 ] AFD C:\WINDOWS\System32\drivers\afd.sys
16:13:30.0906 5228 AFD - ok
16:13:30.0953 5228 Aha154x - ok
16:13:31.0046 5228 [ 1CC3E547FE3DEC8272780F24F3059519 ] AHDDC2 D:\_maintenance\Ashampoo HDD Control 2\AHDDC2_Service.exe
16:13:32.0109 5228 AHDDC2 - ok
16:13:32.0328 5228 aic78u2 - ok
16:13:32.0359 5228 aic78xx - ok
16:13:32.0515 5228 [ DD8520280304B6145A6BE31008748C7C ] ALCXWDM C:\WINDOWS\system32\drivers\ALCXWDM.SYS
16:13:34.0062 5228 ALCXWDM - ok
16:13:34.0078 5228 [ 738D80CC01D7BC7584BE917B7F544394 ] Alerter C:\WINDOWS\system32\alrsvc.dll
16:13:34.0453 5228 Alerter - ok
16:13:35.0078 5228 [ 190CD73D4984F94D823F9444980513E5 ] ALG C:\WINDOWS\System32\alg.exe
16:13:35.0218 5228 ALG - ok
16:13:35.0421 5228 AliIde - ok
16:13:35.0437 5228 [ 769844EB65DF6A62AA51B886290FE51D ] AmdK8 C:\WINDOWS\system32\DRIVERS\AmdK8.sys
16:13:35.0578 5228 AmdK8 - ok
16:13:35.0593 5228 [ AD8FA28D8ED0D0A689A0559085CE0F18 ] AmdLLD C:\WINDOWS\system32\DRIVERS\AmdLLD.sys
16:13:35.0703 5228 AmdLLD - ok
16:13:36.0015 5228 [ 033448D435E65C4BD72E70521FD05C76 ] AmdPPM C:\WINDOWS\system32\DRIVERS\AmdPPM.sys
16:13:36.0156 5228 AmdPPM - ok
16:13:36.0234 5228 amsint - ok
16:13:36.0250 5228 AnvirRun - ok
16:13:36.0312 5228 [ BCF37763868AB5ED70B392D3F101D44D ] AnyDVD C:\WINDOWS\system32\Drivers\AnyDVD.sys
16:13:36.0421 5228 AnyDVD - ok
16:13:36.0453 5228 [ D45960BE52C3C610D361977057F98C54 ] AppMgmt C:\WINDOWS\System32\appmgmts.dll
16:13:36.0609 5228 AppMgmt - ok
16:13:36.0812 5228 [ A751D72D0D72FB3CE529F2097EC1E662 ] ArchiCrypt Ultimate RAM-Disk 3 C:\WINDOWS\system32\ACRAMDiskHandlerService32RD3.exe
16:13:37.0000 5228 ArchiCrypt Ultimate RAM-Disk 3 - ok
16:13:37.0015 5228 [ CA3F6CB8472A2E5F0B37FBFB8C7D8A2A ] ArgusMonitor C:\WINDOWS\system32\drivers\ArgusMonitor.sys
16:13:37.0125 5228 ArgusMonitor - ok
16:13:37.0125 5228 asc - ok
16:13:37.0140 5228 asc3350p - ok
16:13:37.0156 5228 asc3550 - ok
16:13:37.0250 5228 [ 2B4E66FAC6503494A2C6F32BB6AB3826 ] AsIO C:\WINDOWS\system32\drivers\AsIO.sys
16:13:37.0375 5228 AsIO - ok
16:13:37.0406 5228 [ B979979AB8027F7F53FB16EC4229B7DB ] Aspi32 C:\WINDOWS\system32\drivers\Aspi32.sys
16:13:37.0437 5228 Aspi32 ( UnsignedFile.Multi.Generic ) - warning
16:13:37.0437 5228 Aspi32 - detected UnsignedFile.Multi.Generic (1)
16:13:37.0468 5228 [ 776ACEFA0CA9DF0FAA51A5FB2F435705 ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
16:13:37.0656 5228 aspnet_state - ok
16:13:38.0125 5228 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
16:13:38.0703 5228 AsyncMac - ok
16:13:38.0750 5228 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
16:13:39.0000 5228 atapi - ok
16:13:39.0078 5228 Atdisk - ok
16:13:39.0109 5228 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
16:13:39.0390 5228 Atmarpc - ok
16:13:39.0578 5228 [ 58ED0D5452DF7BE732193E7999C6B9A4 ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
16:13:39.0843 5228 AudioSrv - ok
16:13:39.0859 5228 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
16:13:40.0031 5228 audstub - ok
16:13:40.0046 5228 [ 5D7BE7B19E827125E016325334E58FF1 ] BANTExt C:\WINDOWS\System32\Drivers\BANTExt.sys
16:13:40.0078 5228 BANTExt ( UnsignedFile.Multi.Generic ) - warning
16:13:40.0078 5228 BANTExt - detected UnsignedFile.Multi.Generic (1)
16:13:40.0093 5228 [ FF1B04E478694FE92E6D1EC025EAB7FD ] BITS C:\WINDOWS\system32\qmgr.dll
16:13:40.0296 5228 BITS - ok
16:13:40.0453 5228 [ 2F64EAE8C8864AAA3AE8CE0E58B8CC68 ] BootlogService D:\_faster\BootLog XP\BootLogService.exe
16:13:40.0875 5228 BootlogService - ok
16:13:41.0062 5228 [ 63D495ED7E4D46B780CB57ACD46B8AC9 ] BootRacerServ C:\Programme\BootRacer\BootRacerServ.exe
16:13:41.0968 5228 BootRacerServ - ok
16:13:41.0984 5228 [ B2CC8D85D27BF10C5FAF5B98C335978E ] Browser C:\WINDOWS\System32\browser.dll
16:13:42.0218 5228 Browser - ok
16:13:42.0234 5228 [ 92A964547B96D697E5E9ED43B4297F5A ] BrScnUsb C:\WINDOWS\system32\Drivers\BrScnUsb.sys
16:13:42.0281 5228 BrScnUsb ( UnsignedFile.Multi.Generic ) - warning
16:13:42.0281 5228 BrScnUsb - detected UnsignedFile.Multi.Generic (1)
16:13:42.0296 5228 [ 29FD9BF519CEE9CFF4F8E0264B136598 ] BWMeterConSvc D:\_faster\BWMeter\BWMeterConSvc.exe
16:13:42.0390 5228 BWMeterConSvc ( UnsignedFile.Multi.Generic ) - warning
16:13:42.0390 5228 BWMeterConSvc - detected UnsignedFile.Multi.Generic (1)
16:13:42.0609 5228 [ 8E6ACE12CADB0B9E6F1B703798EE913E ] CachemanXPService D:\_faster\CachemanXP\CachemanXP.exe
16:13:42.0781 5228 CachemanXPService ( UnsignedFile.Multi.Generic ) - warning
16:13:42.0781 5228 CachemanXPService - detected UnsignedFile.Multi.Generic (1)
16:13:42.0843 5228 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
16:13:43.0593 5228 cbidf2k - ok
16:13:43.0609 5228 cd20xrnt - ok
16:13:43.0687 5228 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
16:13:43.0875 5228 Cdaudio - ok
16:13:43.0906 5228 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
16:13:44.0234 5228 Cdfs - ok
16:13:44.0312 5228 [ 4B0A100EAF5C49EF3CCA8C641431EACC ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
16:13:44.0421 5228 Cdrom - ok
16:13:44.0453 5228 [ 81CCDDF83C67BD4F39DE02DD2045AE4E ] cFosSpeed C:\WINDOWS\system32\DRIVERS\cfosspeed.sys
16:13:44.0937 5228 cFosSpeed - ok
16:13:44.0953 5228 [ 3B746A0F0B5CB78458E5AB4AEC101799 ] cFosSpeedS C:\Programme\cFosSpeed\spd.exe
16:13:45.0062 5228 cFosSpeedS - ok
16:13:45.0078 5228 Changer - ok
16:13:45.0093 5228 [ 333A88E0227007E2E0677A92057A6D90 ] cleanhlp C:\Programme\Emsisoft Anti-Malware\cleanhlp32.sys
16:13:45.0156 5228 cleanhlp - ok
16:13:45.0203 5228 [ 778A30ED3C134EB7E406AFC407E9997D ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
16:13:45.0671 5228 ClipSrv - ok
16:13:45.0718 5228 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
16:13:45.0812 5228 clr_optimization_v2.0.50727_32 - ok
16:13:45.0828 5228 [ 3FB186A7A9728102181334336B364BE5 ] clr_optimization_v4.0.30319_32 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
16:13:45.0906 5228 clr_optimization_v4.0.30319_32 - ok
16:13:45.0921 5228 CmdIde - ok
16:13:45.0937 5228 COMSysApp - ok
16:13:45.0953 5228 Cpqarray - ok
16:13:45.0953 5228 cpuz126 - ok
16:13:45.0968 5228 cpuz133 - ok
16:13:46.0046 5228 cpuz136 - ok
16:13:46.0062 5228 [ 611F824E5C703A5A899F84C5F1699E4D ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
16:13:46.0453 5228 CryptSvc - ok
16:13:46.0468 5228 dac2w2k - ok
16:13:46.0484 5228 dac960nt - ok
16:13:46.0484 5228 [ B7EF38C2C22A7805DE919CFF5E16A372 ] dc3d C:\WINDOWS\system32\DRIVERS\dc3d.sys
16:13:46.0546 5228 dc3d - ok
16:13:46.0578 5228 [ D3D765E8455A961AE567B408F767D4F9 ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
16:13:46.0734 5228 DcomLaunch - ok
16:13:46.0921 5228 [ 92AE26F2CAF4A67E24A0BA6DDF32CC3C ] DfSdkS D:\_maintenance\Ashampoo HDD Control 2\DfSdkS.exe
16:13:46.0984 5228 DfSdkS ( UnsignedFile.Multi.Generic ) - warning
16:13:46.0984 5228 DfSdkS - detected UnsignedFile.Multi.Generic (1)
16:13:47.0031 5228 [ 820110CFFEE9690D64F67D941DDB7879 ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
16:13:47.0125 5228 Dhcp - ok
16:13:47.0140 5228 [ 47B6AAEC570F2C11D8BAD80A064D8ED1 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
16:13:47.0250 5228 Disk - ok
16:13:47.0250 5228 dmadmin - ok
16:13:47.0281 5228 [ 0DCFC8395A99FECBB1EF771CEC7FE4EA ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
16:13:47.0656 5228 dmboot - ok
16:13:47.0796 5228 [ 53720AB12B48719D00E327DA470A619A ] dmio C:\WINDOWS\system32\drivers\dmio.sys
16:13:48.0015 5228 dmio - ok
16:13:48.0046 5228 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
16:13:48.0234 5228 dmload - ok
16:13:48.0250 5228 [ 25C83FFBBA13B554EB6D59A9B2E2EE78 ] dmserver C:\WINDOWS\System32\dmserver.dll
16:13:48.0671 5228 dmserver - ok
16:13:48.0906 5228 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
16:13:49.0234 5228 DMusic - ok
16:13:49.0343 5228 [ 4548494812BA3B416D489E0C6AF8D643 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
16:13:49.0484 5228 Dnscache - ok
16:13:49.0531 5228 [ E568A4BFA2C23B29A0F41E00F1E92249 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
16:13:49.0640 5228 Dot3svc - ok
16:13:49.0656 5228 dpti2o - ok
16:13:49.0671 5228 [ CCA30A1F8398B46431A03CF6BB0F8789 ] DragonSvc C:\Programme\Gemeinsame Dateien\Nuance\dgnsvc.exe
16:13:49.0859 5228 DragonSvc - ok
16:13:49.0953 5228 [ 0071F8825D14B16955CD0A0699AB7A6C ] drhard C:\WINDOWS\system32\drivers\drhard.sys
16:13:50.0015 5228 drhard ( UnsignedFile.Multi.Generic ) - warning
16:13:50.0015 5228 drhard - detected UnsignedFile.Multi.Generic (1)
16:13:50.0062 5228 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
16:13:50.0296 5228 drmkaud - ok
16:13:50.0312 5228 [ 8810CBE07A85CF1998750252A8B1F3C4 ] dsnpfd C:\WINDOWS\system32\DRIVERS\dsnpfd.sys
16:13:50.0375 5228 dsnpfd ( UnsignedFile.Multi.Generic ) - warning
16:13:50.0375 5228 dsnpfd - detected UnsignedFile.Multi.Generic (1)
16:13:50.0453 5228 [ 8810CBE07A85CF1998750252A8B1F3C4 ] dsnpfdMP C:\WINDOWS\system32\DRIVERS\dsnpfd.sys
16:13:50.0484 5228 dsnpfdMP ( UnsignedFile.Multi.Generic ) - warning
16:13:50.0484 5228 dsnpfdMP - detected UnsignedFile.Multi.Generic (1)
16:13:50.0515 5228 [ 4E4F2FDDAB0A0736D7671134DCCE91FB ] EapHost C:\WINDOWS\System32\eapsvc.dll
16:13:50.0828 5228 EapHost - ok
16:13:50.0984 5228 [ B83BDCCBACB65BAA9E20888DD0083A16 ] ElbyCDIO C:\WINDOWS\system32\Drivers\ElbyCDIO.sys
16:13:51.0046 5228 ElbyCDIO - ok
16:13:51.0062 5228 [ D57F1811D8258D8D277CD9F53657EEF9 ] epmntdrv C:\WINDOWS\system32\epmntdrv.sys
16:13:51.0156 5228 epmntdrv - ok
16:13:51.0234 5228 [ 2407B8164E966755BC6A4242FC9DE31E ] esgiguard C:\Programme\Enigma Software Group\SpyHunter\esgiguard.sys
16:13:51.0312 5228 esgiguard - ok
16:13:51.0328 5228 [ 01CE484FF6D70A39479BC6D619DE7ED6 ] EsgScanner C:\WINDOWS\system32\DRIVERS\EsgScanner.sys
16:13:51.0500 5228 EsgScanner - ok
16:13:52.0031 5228 [ F1DE3EEF501DDA7DDF99F2EDF0C5540E ] EuGdiDrv C:\WINDOWS\system32\EuGdiDrv.sys
16:13:52.0578 5228 EuGdiDrv - ok
16:13:52.0796 5228 [ F0A7D59AF279326528715B206669B86C ] Eventlog C:\WINDOWS\system32\services.exe
16:13:53.0062 5228 Eventlog - ok
16:13:53.0093 5228 [ ADA7241C16F3F42C7F210539FAD5F3AA ] EventSystem C:\WINDOWS\system32\es.dll
16:13:53.0640 5228 EventSystem - ok
16:13:53.0671 5228 [ 4D893323DAE445E34A4C9038B0551BC9 ] exFat C:\WINDOWS\system32\drivers\exFat.sys
16:13:53.0796 5228 exFat - ok
16:13:54.0578 5228 [ 402BE3BC2E9612629CC26314502A7309 ] FancyCcD C:\WINDOWS\system32\DRIVERS\rxfcd.sys
16:13:54.0875 5228 FancyCcD - ok
16:13:54.0921 5228 [ CD0D94EC608B33C665B43ED24D114B4D ] FancyRd C:\WINDOWS\system32\DRIVERS\fancyrd.sys
16:13:55.0140 5228 FancyRd - ok
16:13:55.0640 5228 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
16:13:55.0859 5228 Fastfat - ok
16:13:55.0875 5228 [ 2DB7D303C36DDD055215052F118E8E75 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
16:13:56.0015 5228 FastUserSwitchingCompatibility - ok
16:13:56.0078 5228 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\DRIVERS\fdc.sys
16:13:56.0546 5228 Fdc - ok
16:13:56.0593 5228 [ F2B9FEF35C5B151FB4A18C1575E5F7FB ] fexservice D:\_filemanagement\FontExplorer X Pro\FontManagementServices.exe
16:13:56.0687 5228 fexservice - ok
16:13:56.0718 5228 [ B0678A548587C5F1967B0D70BACAD6C1 ] Fips C:\WINDOWS\system32\drivers\Fips.sys
16:13:56.0968 5228 Fips - ok
16:13:57.0093 5228 [ 6EA7BC2CD83A6C170422F8F0D67500DA ] FlashFolder D:\_improve system\Flashfolder\FlashFolder.exe
16:13:57.0203 5228 FlashFolder ( UnsignedFile.Multi.Generic ) - warning
16:13:57.0203 5228 FlashFolder - detected UnsignedFile.Multi.Generic (1)
16:13:57.0234 5228 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\DRIVERS\flpydisk.sys
16:13:57.0453 5228 Flpydisk - ok
16:13:57.0468 5228 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\DRIVERS\fltMgr.sys
16:13:57.0656 5228 FltMgr - ok
16:13:57.0953 5228 [ E20D64EDF74D80874837B16506D58166 ] fltsrv C:\WINDOWS\system32\DRIVERS\fltsrv.sys
16:13:58.0046 5228 fltsrv - ok
16:13:58.0078 5228 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
16:13:58.0156 5228 FontCache3.0.0.0 - ok
16:13:58.0171 5228 [ 30D42943A54704EF13E2562911DBFCEA ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
16:13:58.0640 5228 Fs_Rec - ok
16:13:58.0671 5228 [ 8F1955CE42E1484714B542F341647778 ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
16:13:58.0953 5228 Ftdisk - ok
16:13:59.0109 5228 [ 77EBF3E9386DAA51551AF429052D88D0 ] giveio C:\WINDOWS\system32\giveio.sys
16:13:59.0171 5228 giveio ( UnsignedFile.Multi.Generic ) - warning
16:13:59.0171 5228 giveio - detected UnsignedFile.Multi.Generic (1)
16:13:59.0171 5228 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
16:13:59.0390 5228 Gpc - ok
16:13:59.0406 5228 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem C:\Programme\Google\Update\GoogleUpdate.exe
16:13:59.0437 5228 gupdatem - ok
16:13:59.0453 5228 [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
16:13:59.0625 5228 HDAudBus - ok
16:13:59.0828 5228 [ ED44EC68D7F7FFC6659F5DA3C5EC68B3 ] HDDlife HDD Access service C:\Programme\Gemeinsame Dateien\BinarySense\hldasvc.exe
16:14:00.0578 5228 HDDlife HDD Access service - ok
16:14:00.0734 5228 [ CB66BF85BF599BEFD6C6A57C2E20357F ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
16:14:00.0953 5228 helpsvc - ok
16:14:00.0984 5228 [ B35DA85E60C0103F2E4104532DA2F12B ] HidServ C:\WINDOWS\System32\hidserv.dll
16:14:01.0203 5228 HidServ - ok
16:14:01.0218 5228 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] hidusb C:\WINDOWS\system32\DRIVERS\hidusb.sys
16:14:01.0484 5228 hidusb - ok
16:14:01.0578 5228 [ 05E0D8EE7D6FAB5CB672FEC3AAD93AA0 ] hitmanpro37 C:\WINDOWS\system32\drivers\hitmanpro37.sys
16:14:01.0656 5228 hitmanpro37 - ok
16:14:01.0984 5228 [ 0011AC7B83C557D3273A1E093BD46F8E ] HitmanPro37CrusaderBoot C:\Programme\HitmanPro\HitmanPro.exe
16:14:02.0937 5228 HitmanPro37CrusaderBoot - ok
16:14:03.0093 5228 [ ED29F14101523A6E0E808107405D452C ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
16:14:03.0328 5228 hkmsvc - ok
16:14:03.0343 5228 hpn - ok
16:14:03.0359 5228 [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
16:14:03.0578 5228 HTTP - ok
16:14:03.0625 5228 [ 9E4ADB854CEBCFB81A4B36718FEECD16 ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
16:14:03.0875 5228 HTTPFilter - ok
16:14:03.0890 5228 [ DE3FF0AB0C551D7E00E250E81169996A ] HWiNFO32 C:\WINDOWS\system32\drivers\HWiNFO32.SYS
16:14:03.0984 5228 HWiNFO32 - ok
16:14:04.0000 5228 i2omgmt - ok
16:14:04.0015 5228 i2omp - ok
16:14:04.0031 5228 [ 1CF03C69B49ACB70C722DF92755C0C8C ] IDriverT C:\Programme\Gemeinsame Dateien\InstallShield\Driver\11\Intel 32\IDriverT.exe
16:14:04.0109 5228 IDriverT ( UnsignedFile.Multi.Generic ) - warning
16:14:04.0109 5228 IDriverT - detected UnsignedFile.Multi.Generic (1)
16:14:04.0140 5228 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
16:14:04.0265 5228 idsvc - ok
16:14:04.0281 5228 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
16:14:04.0500 5228 Imapi - ok
16:14:04.0546 5228 ini910u - ok
16:14:04.0640 5228 IntelIde - ok
16:14:04.0671 5228 [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
16:14:04.0843 5228 Ip6Fw - ok
16:14:05.0046 5228 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
16:14:05.0312 5228 IpFilterDriver - ok
16:14:05.0343 5228 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
16:14:05.0578 5228 IpInIp - ok
16:14:05.0578 5228 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
16:14:05.0812 5228 IpNat - ok
16:14:05.0953 5228 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
16:14:06.0187 5228 IPSec - ok
16:14:06.0203 5228 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
16:14:06.0343 5228 IRENUM - ok
16:14:06.0359 5228 [ 6DFB88F64135C525433E87648BDA30DE ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
16:14:06.0781 5228 isapnp - ok
16:14:06.0890 5228 [ 4F4D4AA1E0849FECC0CF5AACD59030B5 ] JavaQuickStarterService D:\z_rest\Java 7.25 - 2\bin\jqs.exe
16:14:07.0015 5228 JavaQuickStarterService - ok
16:14:07.0031 5228 [ 1704D8C4C8807B889E43C649B478A452 ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
16:14:07.0250 5228 Kbdclass - ok
16:14:07.0265 5228 [ B6D6C117D771C98130497265F26D1882 ] kbdhid C:\WINDOWS\system32\DRIVERS\kbdhid.sys
16:14:07.0468 5228 kbdhid - ok
16:14:07.0500 5228 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
16:14:07.0937 5228 kmixer - ok
16:14:07.0953 5228 [ C6EBF1D6AD71DF30DB49B8D3287E1368 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
16:14:08.0015 5228 KSecDD - ok
16:14:08.0031 5228 [ 6EFBC82722D0F7B35283993189ECE9D0 ] KSS C:\Programme\Kaspersky Lab\Kaspersky Security Scan 2.0\kss.exe
16:14:08.0187 5228 KSS - ok
16:14:08.0203 5228 [ 2BBDCB79900990F0716DFCB714E72DE7 ] LanmanServer C:\WINDOWS\System32\srvsvc.dll
16:14:08.0265 5228 LanmanServer - ok
16:14:08.0281 5228 [ C9B816901C1ABF28BA6C5B6CB65EB75B ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
16:14:08.0375 5228 lanmanworkstation - ok
16:14:08.0406 5228 [ CF9F4EFDF34FA5BF96FA2AB8F2255CE8 ] LBeepKE C:\WINDOWS\system32\Drivers\LBeepKE.sys
16:14:08.0484 5228 LBeepKE - ok
16:14:08.0500 5228 lbrtfdc - ok
16:14:08.0531 5228 [ FF9E074CCC950398C7D293E1D4D003B3 ] LBTServ C:\Programme\Gemeinsame Dateien\LogiShrd\Bluetooth\lbtserv.exe
16:14:08.0671 5228 LBTServ - ok
16:14:08.0906 5228 [ 59CED2543392EB10B2E8FEAE87A5D248 ] LEqdUsb C:\WINDOWS\system32\Drivers\LEqdUsb.Sys
16:14:09.0062 5228 LEqdUsb - ok
16:14:09.0093 5228 [ 26163F0F1C2636AE3FFF7C54600204A5 ] LHidEqd C:\WINDOWS\system32\Drivers\LHidEqd.Sys
16:14:09.0171 5228 LHidEqd - ok
16:14:09.0187 5228 [ 74EA099C3D9DAD3A657BD89ED4A81C6D ] LHidFilt C:\WINDOWS\system32\DRIVERS\LHidFilt.Sys
16:14:09.0250 5228 LHidFilt - ok
16:14:09.0296 5228 [ 636714B7D43C8D0C80449123FD266920 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
16:14:09.0468 5228 LmHosts - ok
16:14:09.0562 5228 [ E9D42CDD5BD22BE28247B77953735650 ] LMouFilt C:\WINDOWS\system32\DRIVERS\LMouFilt.Sys
16:14:09.0640 5228 LMouFilt - ok
16:14:09.0718 5228 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
16:14:09.0890 5228 mnmdd - ok
16:14:09.0968 5228 [ C2F1D365FD96791B037EE504868065D3 ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
16:14:10.0125 5228 mnmsrvc - ok
16:14:10.0156 5228 [ 6FB74EBD4EC57A6F1781DE3852CC3362 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
16:14:10.0343 5228 Modem - ok
16:14:10.0359 5228 [ B24CE8005DEAB254C0251E15CB71D802 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
16:14:10.0515 5228 Mouclass - ok
16:14:10.0562 5228 [ 66A6F73C74E1791464160A7065CE711A ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys
16:14:10.0765 5228 mouhid - ok
16:14:10.0859 5228 [ 1A1FAA5102466F418494E94FF9B0B091 ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
16:14:11.0000 5228 MountMgr - ok
16:14:11.0218 5228 [ 55F756E87B2FF0B2E55D909CF6152FF9 ] MouseWithoutBordersSvc C:\Programme\Microsoft Garage\Mouse without Borders\MouseWithoutBordersSvc.exe
16:14:11.0343 5228 MouseWithoutBordersSvc - ok
16:14:11.0359 5228 mraid35x - ok
16:14:11.0375 5228 [ 65E818C473E220B6AB762E1966296FD1 ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
16:14:11.0515 5228 MRxDAV - ok
16:14:12.0500 5228 [ FB2FCCC70F7174C7BF64F48E96D3ADF4 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
16:14:12.0718 5228 MRxSmb - ok
16:14:12.0875 5228 [ 35A031AF38C55F92D28AA03EE9F12CC9 ] MSDTC C:\WINDOWS\system32\msdtc.exe
16:14:13.0140 5228 MSDTC - ok
16:14:13.0171 5228 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
16:14:13.0406 5228 Msfs - ok
16:14:13.0437 5228 MSIServer - ok
16:14:13.0546 5228 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
16:14:13.0718 5228 MSKSSRV - ok
16:14:13.0734 5228 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
16:14:13.0906 5228 MSPCLOCK - ok
16:14:13.0953 5228 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
16:14:14.0125 5228 MSPQM - ok
16:14:14.0250 5228 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
16:14:14.0390 5228 mssmbios - ok
16:14:14.0406 5228 [ CA3E22598F411199ADC2DFEE76CD0AE0 ] ms_mpu401 C:\WINDOWS\system32\drivers\msmpu401.sys
16:14:14.0562 5228 ms_mpu401 - ok
16:14:14.0625 5228 [ D48659BB24C48345D926ECB45C1EBDF5 ] MTsensor C:\WINDOWS\system32\DRIVERS\ASACPI.sys
16:14:14.0687 5228 MTsensor - ok
16:14:14.0859 5228 [ F7B1AD991491F02AF6DA70B00B8BF114 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
16:14:15.0062 5228 Mup - ok
16:14:15.0218 5228 [ 46BB15AE2AC7D025D6D2567B876817BD ] napagent C:\WINDOWS\System32\qagentrt.dll
16:14:15.0515 5228 napagent - ok
16:14:15.0703 5228 [ B5B1080D35974C0E718D64280761BCD5 ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
16:14:15.0796 5228 NDIS - ok
16:14:15.0953 5228 [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
16:14:16.0140 5228 NdisTapi - ok
16:14:16.0156 5228 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
16:14:16.0406 5228 Ndisuio - ok
16:14:16.0609 5228 [ B053A8411045FD0664B389A090CB2BBC ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
16:14:16.0671 5228 NdisWan - ok
16:14:16.0859 5228 [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
16:14:17.0031 5228 NDProxy - ok
16:14:17.0109 5228 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
16:14:17.0359 5228 NetBIOS - ok
16:14:17.0406 5228 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
16:14:17.0656 5228 NetBT - ok
16:14:17.0703 5228 [ 8ACE4251BFFD09CE75679FE940E996CC ] NetDDE C:\WINDOWS\system32\netdde.exe
16:14:17.0890 5228 NetDDE - ok
16:14:17.0921 5228 [ 8ACE4251BFFD09CE75679FE940E996CC ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
16:14:18.0109 5228 NetDDEdsdm - ok
16:14:18.0125 5228 [ AFB8261B56CBA0D86AEB6DF682AF9785 ] Netlogon C:\WINDOWS\system32\lsass.exe
16:14:18.0593 5228 Netlogon - ok
16:14:18.0671 5228 [ E6D88F1F6745BF00B57E7855A2AB696C ] Netman C:\WINDOWS\System32\netman.dll
16:14:18.0890 5228 Netman - ok
16:14:18.0984 5228 [ DFE18F2BFD60DA638F24A0776A60F9E3 ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
16:14:19.0109 5228 NetTcpPortSharing - ok
16:14:19.0125 5228 [ 4AA50627B01C0E9C6B4C6BD3AF648F12 ] Nla C:\WINDOWS\System32\mswsock.dll
16:14:19.0359 5228 Nla - ok
16:14:19.0453 5228 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
16:14:19.0656 5228 Npfs - ok
16:14:20.0203 5228 [ AE8CAD8F28DB13B515A68510A539B0B8 ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
16:14:20.0625 5228 Ntfs - ok
16:14:20.0703 5228 [ AFB8261B56CBA0D86AEB6DF682AF9785 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
16:14:20.0906 5228 NtLmSsp - ok
16:14:20.0921 5228 [ 56AF4064996FA5BAC9C449B1514B4770 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
16:14:21.0109 5228 NtmsSvc - ok
16:14:21.0125 5228 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
16:14:21.0296 5228 Null - ok
16:14:21.0609 5228 [ A613A14FB4D9117F42A3A280F64E9EC4 ] nv C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
16:14:22.0859 5228 nv - ok
16:14:22.0937 5228 [ C03E15101F6D9E82CD9B0E7D715F5DE3 ] nvata C:\WINDOWS\system32\DRIVERS\nvata.sys
16:14:23.0093 5228 nvata ( UnsignedFile.Multi.Generic ) - warning
16:14:23.0093 5228 nvata - detected UnsignedFile.Multi.Generic (1)
16:14:23.0390 5228 [ FB8595EF3CEB81F0DA3F6F211B2DF932 ] nvax C:\WINDOWS\system32\drivers\nvax.sys
16:14:23.0531 5228 nvax - ok
16:14:23.0640 5228 [ 7D275ECDA4628318912F6C945D5CF963 ] NVENETFD C:\WINDOWS\system32\DRIVERS\NVENETFD.sys
16:14:23.0875 5228 NVENETFD - ok
16:14:23.0890 5228 [ 75E2E77C5497F34E60491D27BF03F1CB ] nvgts C:\WINDOWS\system32\DRIVERS\nvgts.sys
16:14:24.0234 5228 nvgts - ok
16:14:24.0312 5228 [ EDDE04805AC865AC8465388DC4A4CCC7 ] NVHDA C:\WINDOWS\system32\drivers\nvhda32.sys
16:14:24.0406 5228 NVHDA - ok
16:14:24.0421 5228 [ B64AACEFAD2BE5BFF5353FE681253C67 ] nvnetbus C:\WINDOWS\system32\DRIVERS\nvnetbus.sys
16:14:24.0765 5228 nvnetbus - ok
16:14:25.0031 5228 [ D2315CD3053FC3B4250DC2DBD0AC49E4 ] nvnforce C:\WINDOWS\system32\drivers\nvapu.sys
16:14:25.0250 5228 nvnforce - ok
16:14:25.0296 5228 [ F1AE0BC50661BE09E7BC5919F4C05505 ] NVSvc C:\WINDOWS\system32\nvsvc32.exe
16:14:25.0359 5228 NVSvc - ok
16:14:25.0796 5228 [ A9AFE5B0648C8D7A411A72D8222F7F6E ] nvUpdatusService C:\Programme\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
16:14:26.0078 5228 nvUpdatusService - ok
16:14:26.0109 5228 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
16:14:26.0593 5228 NwlnkFlt - ok
16:14:27.0421 5228 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
16:14:27.0734 5228 NwlnkFwd - ok
16:14:27.0812 5228 [ 3BBBC02D84AC98AF93F2F4D00EC347F0 ] O&O CleverCache D:\_faster\OO CleverCache\ooccag.exe
16:14:27.0968 5228 O&O CleverCache - ok
16:14:28.0140 5228 [ FD85186C9F1ABE012DDF44C233552129 ] OS Selector D:\_maintenance\Acronis ADD 11\OSS\reinstall_svc.exe
16:14:28.0687 5228 OS Selector - ok
16:14:28.0812 5228 [ 7A56CF3E3F12E8AF599963B16F50FB6A ] ose C:\Programme\Gemeinsame Dateien\Microsoft Shared\Source Engine\OSE.EXE
16:14:29.0156 5228 ose - ok
16:14:29.0984 5228 [ F84785660305B9B903FB3BCA8BA29837 ] Parport C:\WINDOWS\system32\drivers\Parport.sys
16:14:30.0468 5228 Parport - ok
16:14:30.0796 5228 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
16:14:31.0015 5228 PartMgr - ok
16:14:31.0312 5228 [ C2BF987829099A3EAA2CA6A0A90ECB4F ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
16:14:31.0890 5228 ParVdm - ok
16:14:32.0031 5228 pccsmcfd - ok
16:14:32.0062 5228 [ 387E8DEDC343AA2D1EFBC30580273ACD ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
16:14:33.0000 5228 PCI - ok
16:14:33.0250 5228 PCIDump - ok
16:14:33.0281 5228 [ 59BA86D9A61CBCF4DF8E598C331F5B82 ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
16:14:33.0562 5228 PCIIde - ok
16:14:34.0062 5228 [ A2A966B77D61847D61A3051DF87C8C97 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
16:14:34.0453 5228 Pcmcia - ok
16:14:34.0531 5228 PDCOMP - ok
16:14:34.0562 5228 [ 5BC43398DD26836739C4C030767031B7 ] PDFProFiltSrvPP D:\Programme\Nuance Paperport 14\PaperPort\PDFProFiltSrvPP.exe
16:14:34.0625 5228 PDFProFiltSrvPP - ok
16:14:34.0656 5228 PDFRAME - ok
16:14:34.0671 5228 PDRELI - ok
16:14:34.0687 5228 PDRFRAME - ok
16:14:34.0703 5228 perc2 - ok
16:14:34.0718 5228 perc2hib - ok
16:14:35.0468 5228 [ F0A7D59AF279326528715B206669B86C ] PlugPlay C:\WINDOWS\system32\services.exe
16:14:35.0562 5228 PlugPlay - ok
16:14:35.0953 5228 [ AFB8261B56CBA0D86AEB6DF682AF9785 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
16:14:36.0250 5228 PolicyAgent - ok
16:14:36.0281 5228 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
16:14:36.0453 5228 PptpMiniport - ok
16:14:36.0859 5228 [ 2CB55427C58679F49AD600FCCBA76360 ] Processor C:\WINDOWS\system32\DRIVERS\processr.sys
16:14:37.0265 5228 Processor - ok
16:14:37.0359 5228 [ 09298EC810B07E5D582CB3A3F9255424 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
16:14:38.0015 5228 PSched - ok
16:14:38.0390 5228 [ 68B57D7C11277EA89F78255480376B4D ] PSI C:\WINDOWS\system32\DRIVERS\psi_mf_x86.sys
16:14:38.0468 5228 PSI - ok
16:14:38.0656 5228 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
16:14:38.0828 5228 Ptilink - ok
16:14:38.0968 5228 ql1080 - ok
16:14:38.0984 5228 Ql10wnt - ok
16:14:39.0000 5228 ql12160 - ok
16:14:39.0015 5228 ql1240 - ok
16:14:39.0031 5228 ql1280 - ok
16:14:39.0046 5228 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
16:14:39.0296 5228 RasAcd - ok
16:14:39.0734 5228 [ F5BA6CACCDB66C8F048E867563203246 ] RasAuto C:\WINDOWS\System32\rasauto.dll
16:14:39.0968 5228 RasAuto - ok
16:14:40.0109 5228 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
16:14:40.0343 5228 Rasl2tp - ok
16:14:40.0859 5228 [ F9A7B66EA345726EDB5862A46B1ECCD5 ] RasMan C:\WINDOWS\System32\rasmans.dll
16:14:41.0343 5228 RasMan - ok
16:14:41.0640 5228 [ 2C9D4620A0FD35DE1828370B392F6E2D ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
16:14:41.0718 5228 RasPppoe - ok
16:14:41.0796 5228 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
16:14:42.0031 5228 Raspti - ok
16:14:43.0265 5228 [ 77050C6615F6EB5402F832B27FD695E0 ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
16:14:44.0062 5228 Rdbss - ok
16:14:44.0406 5228 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
16:14:44.0562 5228 RDPCDD - ok
16:14:44.0609 5228 [ C694A927EB7C354F7AE97955043A9641 ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys
16:14:44.0765 5228 rdpdr - ok
16:14:45.0281 5228 [ C7D9BC54354B8C706ABF172D48313F1B ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
16:14:45.0375 5228 RDPWD - ok
16:14:46.0890 5228 [ 263AF18AF0F3DB99F574C95F284CCEC9 ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
16:14:47.0593 5228 RDSessMgr - ok
16:14:48.0062 5228 [ ED761D453856F795A7FE056E42C36365 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
16:14:48.0703 5228 redbook - ok
16:14:48.0750 5228 [ 0E97EC96D6942CEEC2D188CC2EB69A01 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
16:14:50.0281 5228 RemoteAccess - ok
16:14:50.0593 5228 [ E4CD1F3D84E1C2CA0B8CF7501E201593 ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
16:14:51.0031 5228 RemoteRegistry - ok
16:14:52.0265 5228 [ D8B0B4ADE32574B2D9C5CC34DC0DBBE7 ] ROOTMODEM C:\WINDOWS\system32\Drivers\RootMdm.sys
16:14:52.0750 5228 ROOTMODEM - ok
16:14:52.0953 5228 [ 2A02E21867497DF20B8FC95631395169 ] RpcLocator C:\WINDOWS\system32\locator.exe
16:14:53.0125 5228 RpcLocator - ok
16:14:53.0343 5228 [ D3D765E8455A961AE567B408F767D4F9 ] RpcSs C:\WINDOWS\system32\rpcss.dll
16:14:53.0500 5228 RpcSs - ok
16:14:53.0593 5228 [ 743D7D59767073A617B1DCC6C546F234 ] rspndr C:\WINDOWS\system32\DRIVERS\rspndr.sys
16:14:53.0781 5228 rspndr - ok
16:14:53.0968 5228 [ 4BDD71B4B521521499DFD14735C4F398 ] RSVP C:\WINDOWS\system32\rsvp.exe
16:14:54.0078 5228 RSVP - ok
16:14:54.0500 5228 [ AFB8261B56CBA0D86AEB6DF682AF9785 ] SamSs C:\WINDOWS\system32\lsass.exe
16:14:54.0734 5228 SamSs - ok
16:14:54.0781 5228 [ 230FD3749904CA045EA5EC0AA14006E9 ] SANDRA D:\_info\SiSoftware Sandra Lite 2013.SP4\WNt500x86\Sandra.sys
16:14:54.0906 5228 SANDRA - ok
16:14:55.0421 5228 [ DCEC079FAD95D36C8DD5CB6D779DFE32 ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
16:14:55.0640 5228 SCardSvr - ok
16:14:55.0765 5228 [ A050194A44D7FA8D7186ED2F4E8367AE ] Schedule C:\WINDOWS\system32\schedsvc.dll
16:14:55.0984 5228 Schedule - ok
16:14:56.0171 5228 [ 95AA9E165C7DE1B64A11E8B18E91E499 ] SDScannerService D:\_security\Spybot - Search & Destroy 2\SDFSSvc.exe
16:14:56.0437 5228 SDScannerService - ok
16:14:56.0890 5228 [ D31398D4BB4907B517B6E784C2100C4A ] SDUpdateService D:\_security\Spybot - Search & Destroy 2\SDUpdSvc.exe
16:14:57.0109 5228 SDUpdateService - ok
16:14:57.0171 5228 [ 6AE8E702D1027A9627DDE2B77BB9992B ] SDWSCService D:\_security\Spybot - Search & Destroy 2\SDWSCSvc.exe
16:14:57.0406 5228 SDWSCService - ok
16:14:57.0453 5228 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
16:14:57.0703 5228 Secdrv - ok
16:14:57.0921 5228 [ BEE4CFD1D48C23B44CF4B974B0B79B2B ] seclogon C:\WINDOWS\System32\seclogon.dll
16:14:58.0171 5228 seclogon - ok
16:14:58.0687 5228 [ 86C9FD4982D0BEAEDF0C8BBF02AA148B ] Secunia PSI Agent D:\_security\PSI 2.x\PSIA.exe
16:14:58.0968 5228 Secunia PSI Agent - ok
16:14:59.0031 5228 [ 2AAC9B6ED9EDDFFB721D6452E34D67E3 ] SENS C:\WINDOWS\system32\sens.dll
16:14:59.0234 5228 SENS - ok
16:14:59.0437 5228 [ CF24EB4F0412C82BCD1F4F35A025E31D ] Serial C:\WINDOWS\system32\drivers\Serial.sys
16:14:59.0671 5228 Serial - ok
16:14:59.0812 5228 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
16:15:00.0015 5228 Sfloppy - ok
16:15:00.0062 5228 [ 65746507B64818A0DBAF7607C0D07C54 ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
16:15:00.0156 5228 SharedAccess - ok
16:15:00.0359 5228 [ 2DB7D303C36DDD055215052F118E8E75 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
16:15:00.0484 5228 ShellHWDetection - ok
16:15:00.0593 5228 Simbad - ok
16:15:00.0625 5228 [ 43DC393F21345B6DE59517BD27E2B10F ] SIVDriver C:\WINDOWS\system32\Drivers\SIVX32.sys
16:15:00.0687 5228 SIVDriver - ok
16:15:00.0750 5228 [ 851310C1B742D2DF2D334603836FFDF5 ] snapman C:\WINDOWS\system32\DRIVERS\snapman.sys
16:15:00.0812 5228 snapman - ok
16:15:00.0937 5228 [ FF35C2D01AC36B446A1B997F305F0FC2 ] Soluto C:\WINDOWS\system32\DRIVERS\Soluto.sys
16:15:01.0015 5228 Soluto - ok
16:15:01.0046 5228 [ 64853507E75D5DCA9F2CD5BEDD672A3D ] SolutoLauncherService C:\Programme\Soluto\SolutoLauncherService.exe
16:15:01.0203 5228 SolutoLauncherService - ok
16:15:01.0281 5228 SolutoRemoteService - ok
16:15:01.0375 5228 [ 350BA5FDCE5D9C6BEE0312955D0DE1C8 ] SolutoService C:\Programme\Soluto\SolutoService.exe
16:15:01.0578 5228 SolutoService - ok
16:15:01.0593 5228 Sparrow - ok
16:15:01.0609 5228 [ DC8D2952FB6FFBAEC67BD1B93A34DF11 ] speedfan C:\WINDOWS\system32\speedfan.sys
16:15:01.0671 5228 speedfan - ok
16:15:01.0687 5228 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
16:15:01.0843 5228 splitter - ok
16:15:01.0953 5228 [ 60784F891563FB1B767F70117FC2428F ] Spooler C:\WINDOWS\system32\spoolsv.exe
16:15:02.0015 5228 Spooler - ok
16:15:02.0125 5228 [ 8494B173DD812F7F6A87F2385E444B18 ] SpyHunter 4 Service C:\PROGRA~1\Enigma Software Group\SpyHunter\SH4Service.exe
16:15:02.0375 5228 SpyHunter 4 Service - ok
16:15:02.0484 5228 [ 7B426B8E809EDF081D771EF429345528 ] sp_rsdrv2 C:\WINDOWS\system32\drivers\sp_rsdrv2.sys
16:15:02.0531 5228 sp_rsdrv2 ( UnsignedFile.Multi.Generic ) - warning
16:15:02.0531 5228 sp_rsdrv2 - detected UnsignedFile.Multi.Generic (1)
16:15:02.0562 5228 [ 50FA898F8C032796D3B1B9951BB5A90F ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
16:15:02.0718 5228 sr - ok
16:15:02.0734 5228 [ FE77A85495065F3AD59C5C65B6C54182 ] srservice C:\WINDOWS\system32\srsvc.dll
16:15:02.0843 5228 srservice - ok
16:15:02.0859 5228 [ 9B390283569EA58D43D2586032B892F5 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
16:15:02.0953 5228 Srv - ok
16:15:03.0046 5228 [ 4DF5B05DFAEC29E13E1ED6F6EE12C500 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
16:15:03.0171 5228 SSDPSRV - ok
16:15:03.0218 5228 [ 9CB7C63FD9D5AE484E318F9296279C52 ] ST2012_Svc C:\Programme\Spyware Terminator\st_rsser.exe
16:15:03.0484 5228 ST2012_Svc - ok
16:15:03.0593 5228 [ E57B778208C783D8DEBAB320C16A1B82 ] StarOpen C:\WINDOWS\system32\drivers\StarOpen.sys
16:15:03.0656 5228 StarOpen ( UnsignedFile.Multi.Generic ) - warning
16:15:03.0656 5228 StarOpen - detected UnsignedFile.Multi.Generic (1)
16:15:03.0703 5228 [ BC2C5985611C5356B24AEB370953DED9 ] stisvc C:\WINDOWS\system32\wiaservc.dll
16:15:03.0953 5228 stisvc - ok
16:15:03.0984 5228 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
16:15:04.0218 5228 swenum - ok
16:15:04.0250 5228 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
16:15:04.0437 5228 swmidi - ok
16:15:04.0500 5228 SwPrv - ok
16:15:04.0515 5228 symc810 - ok
16:15:04.0531 5228 symc8xx - ok
16:15:04.0546 5228 sym_hi - ok
16:15:04.0562 5228 sym_u3 - ok
16:15:04.0796 5228 [ A214C8AA6A6C06C9DBAB1310E38DAB4A ] syncagentsrv C:\Programme\Gemeinsame Dateien\Acronis\SyncAgent\syncagentsrv.exe
16:15:05.0562 5228 syncagentsrv - ok
16:15:05.0625 5228 [ EF13D05B6F4C629D7A6D3E9B94F10E99 ] Synergy D:\_improve system\Synergy\synergyd.exe
16:15:05.0703 5228 Synergy - ok
16:15:05.0734 5228 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
16:15:05.0921 5228 sysaudio - ok
16:15:06.0000 5228 [ 2903FFFA2523926D6219428040DCE6B9 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
16:15:06.0171 5228 SysmonLog - ok
16:15:06.0296 5228 [ 7EAEF49D206899909EB63014FC8DC19A ] SystemExplorerHelpService D:\_improve system\System Explorer\service\SystemExplorerService.exe
16:15:06.0625 5228 SystemExplorerHelpService - ok
16:15:06.0812 5228 [ 5C7C939BBD03784FE58C80578D065CC9 ] tap0901 C:\WINDOWS\system32\DRIVERS\tap0901.sys
16:15:06.0906 5228 tap0901 ( UnsignedFile.Multi.Generic ) - warning
16:15:06.0906 5228 tap0901 - detected UnsignedFile.Multi.Generic (1)
16:15:07.0140 5228 [ 6C02B5D856674ECCCE64CE8BB8DCE8D9 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
16:15:07.0218 5228 TapiSrv - ok
16:15:07.0312 5228 [ AD978A1B783B5719720CFF204B666C8E ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
16:15:07.0468 5228 Tcpip - ok
16:15:07.0546 5228 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
16:15:07.0718 5228 TDPIPE - ok
16:15:07.0859 5228 [ 6345E3829FD130A144454F9F5C2A3B9E ] tdrpman C:\WINDOWS\system32\DRIVERS\tdrpman.sys
16:15:08.0015 5228 tdrpman - ok
16:15:08.0062 5228 [ C0578456F29E5F26285F81B7B71FE57D ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
16:15:08.0156 5228 TDTCP - ok
16:15:08.0390 5228 [ 402794A75A899E296AB3EDEC4ECCB9A8 ] TeamViewer8 C:\Programme\TeamViewer\Version8\TeamViewer_Service.exe
16:15:09.0625 5228 TeamViewer8 - ok
16:15:09.0640 5228 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
16:15:09.0796 5228 TermDD - ok
16:15:09.0937 5228 [ 3AE5A27A6A16640BE3FC015DF4DB68DE ] TermService C:\WINDOWS\System32\termsrv.dll
16:15:10.0031 5228 TermService - ok
16:15:10.0062 5228 [ 2DB7D303C36DDD055215052F118E8E75 ] Themes C:\WINDOWS\System32\shsvcs.dll
16:15:10.0156 5228 Themes - ok
16:15:10.0187 5228 [ A8C31102F448231596168FFC9F568B9A ] tib_mounter C:\WINDOWS\system32\DRIVERS\tib_mounter.sys
16:15:10.0359 5228 tib_mounter - ok
16:15:10.0406 5228 [ 03681A1CE77F51586903869A5AB1DEAB ] TlntSvr C:\WINDOWS\system32\tlntsvr.exe
16:15:10.0531 5228 TlntSvr - ok
16:15:10.0546 5228 [ A31246180E61140AD7FF9DD7EDF1F6A1 ] tmcomm C:\WINDOWS\system32\drivers\tmcomm.sys
16:15:10.0671 5228 tmcomm - ok
16:15:10.0781 5228 TosIde - ok
16:15:10.0828 5228 [ 626504572B175867F30F3215C04B3E2F ] TrkWks C:\WINDOWS\system32\trkwks.dll
16:15:11.0078 5228 TrkWks - ok
16:15:11.0187 5228 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
16:15:11.0375 5228 Udfs - ok
16:15:11.0546 5228 [ 048835A65968E9EA872130AEAA727DED ] uigxrdr C:\WINDOWS\system32\DRIVERS\uigxrdr.sys
16:15:12.0265 5228 uigxrdr ( UnsignedFile.Multi.Generic ) - warning
16:15:12.0265 5228 uigxrdr - detected UnsignedFile.Multi.Generic (1)
16:15:12.0312 5228 ultra - ok
16:15:12.0343 5228 [ BB879DCFD22926EFBEB3298129898CBB ] UnlockerDriver5 D:\_filemanagement\Unlocker\UnlockerDriver5.sys
16:15:12.0781 5228 UnlockerDriver5 ( UnsignedFile.Multi.Generic ) - warning
16:15:12.0781 5228 UnlockerDriver5 - detected UnsignedFile.Multi.Generic (1)
16:15:12.0828 5228 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
16:15:13.0156 5228 Update - ok
16:15:13.0265 5228 [ 325FB38C323C63C7F57885B4DFB1B91E ] UPHClean D:\_maintenance\UPHClean\uphclean.exe
16:15:13.0765 5228 UPHClean ( UnsignedFile.Multi.Generic ) - warning
16:15:13.0765 5228 UPHClean - detected UnsignedFile.Multi.Generic (1)
16:15:13.0812 5228 [ 1DFD8975D8C89214B98D9387C1125B49 ] upnphost C:\WINDOWS\System32\upnphost.dll
16:15:14.0234 5228 upnphost - ok
16:15:14.0296 5228 [ 9B11E6118958E63E1FEF129466E2BDA7 ] UPS C:\WINDOWS\System32\ups.exe
16:15:14.0812 5228 UPS - ok
16:15:14.0828 5228 [ E919708DB44ED8543A7C017953148330 ] usbaudio C:\WINDOWS\system32\drivers\usbaudio.sys
16:15:15.0406 5228 usbaudio - ok
16:15:15.0421 5228 [ C18D6C74953621346DF6B0A11F80C1CC ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
16:15:15.0609 5228 usbccgp - ok
16:15:15.0640 5228 [ 52674B5DBEE499342A599C7771ABECAA ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
16:15:15.0703 5228 usbehci - ok
16:15:15.0781 5228 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
16:15:16.0171 5228 usbhub - ok
16:15:16.0312 5228 [ C5E11CD822ADF0019A5A862D9C4E2222 ] usbohci C:\WINDOWS\system32\DRIVERS\usbohci.sys
16:15:16.0859 5228 usbohci - ok
16:15:18.0031 5228 [ A717C8721046828520C9EDF31288FC00 ] usbprint C:\WINDOWS\system32\DRIVERS\usbprint.sys
16:15:18.0250 5228 usbprint - ok
16:15:18.0468 5228 [ 1D8BA46A4F57234597DAA834FDDBFB84 ] USBSafelyRemoveService D:\_improve system\USB Safely Remove 5.1.2\USBSRService.exe
16:15:19.0421 5228 USBSafelyRemoveService - ok
16:15:19.0687 5228 [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
16:15:20.0187 5228 usbscan - ok
16:15:20.0640 5228 [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
16:15:21.0000 5228 USBSTOR - ok
16:15:21.0171 5228 [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
16:15:21.0390 5228 usbuhci - ok
16:15:21.0546 5228 [ 200847985E963EA9634C1B81A21A4DA6 ] VBoxDrv C:\WINDOWS\system32\DRIVERS\VBoxDrv.sys
16:15:21.0656 5228 VBoxDrv - ok
16:15:21.0890 5228 [ 2A29B5D722D6B7F688507393E5D4166B ] VBoxNetAdp C:\WINDOWS\system32\DRIVERS\VBoxNetAdp.sys
16:15:22.0046 5228 VBoxNetAdp - ok
16:15:22.0140 5228 [ 40458859BA17FC8ACBFEB65A967363E4 ] VBoxNetFlt C:\WINDOWS\system32\DRIVERS\VBoxNetFlt.sys
16:15:22.0781 5228 VBoxNetFlt - ok
16:15:23.0062 5228 [ A714B5E3AF7F9C54D6D4F4C1F3DD574A ] VBoxUSB C:\WINDOWS\system32\Drivers\VBoxUSB.sys
16:15:23.0687 5228 VBoxUSB - ok
16:15:23.0921 5228 [ E973E67E29344A198FB17351C5CD9320 ] VBoxUSBMon C:\WINDOWS\system32\DRIVERS\VBoxUSBMon.sys
16:15:24.0109 5228 VBoxUSBMon - ok
16:15:24.0125 5228 [ B252DD05C8B1D64239EE8A93C4BC5AD4 ] VClone C:\WINDOWS\system32\DRIVERS\VClone.sys
16:15:24.0171 5228 VClone ( UnsignedFile.Multi.Generic ) - warning
16:15:24.0171 5228 VClone - detected UnsignedFile.Multi.Generic (1)
16:15:24.0203 5228 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
16:15:24.0375 5228 VgaSave - ok
16:15:24.0390 5228 ViaIde - ok
16:15:24.0484 5228 [ 26B75DCB58B006867EFD659E845CD65E ] vididr C:\WINDOWS\system32\DRIVERS\vididr.sys
16:15:24.0718 5228 vididr - ok
16:15:24.0765 5228 [ 40AFA68F81F90636D1300099E9CFC8CE ] vidsflt C:\WINDOWS\system32\DRIVERS\vidsflt.sys
16:15:24.0859 5228 vidsflt - ok
16:15:24.0921 5228 [ F714D4F456A6B91212966B3CA19F720C ] vkservice D:\_security\VirusKeeper 2011 Pro Probeversion\vk_service.exe
16:15:25.0234 5228 vkservice - ok
16:15:25.0531 5228 [ A5A712F4E880874A477AF790B5186E1D ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
16:15:25.0875 5228 VolSnap - ok
16:15:26.0343 5228 [ 68F106273BE29E7B7EF8266977268E78 ] VSS C:\WINDOWS\System32\vssvc.exe
16:15:26.0453 5228 VSS - ok
16:15:26.0531 5228 [ C0F55CC0903CFDC819F6D857402B697C ] vulfnths C:\WINDOWS\System32\Drivers\vulfnth.sys
16:15:26.0656 5228 vulfnths ( UnsignedFile.Multi.Generic ) - warning
16:15:26.0656 5228 vulfnths - detected UnsignedFile.Multi.Generic (1)
16:15:27.0046 5228 [ 545D98A7F61AF1C7C4AD38B8F333E0B7 ] vulfntrs C:\WINDOWS\System32\Drivers\vulfntr.sys
16:15:27.0140 5228 vulfntrs ( UnsignedFile.Multi.Generic ) - warning
16:15:27.0140 5228 vulfntrs - detected UnsignedFile.Multi.Generic (1)
16:15:27.0343 5228 [ E2E2D6B1C3BA607E297C26139CB4AA58 ] W32Time C:\WINDOWS\system32\w32time.dll
16:15:27.0437 5228 W32Time - ok
16:15:27.0500 5228 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
16:15:27.0718 5228 Wanarp - ok
16:15:28.0000 5228 [ D918617B46457B9AC28027722E30F647 ] Wdf01000 C:\WINDOWS\system32\Drivers\wdf01000.sys
16:15:28.0296 5228 Wdf01000 - ok
16:15:28.0859 5228 WDICA - ok
16:15:28.0875 5228 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
16:15:29.0234 5228 wdmaud - ok
16:15:29.0593 5228 [ 81727C9873E3905A2FFC1EBD07265002 ] WebClient C:\WINDOWS\System32\webclnt.dll
16:15:29.0812 5228 WebClient - ok
16:15:29.0875 5228 [ 6F3F3973D97714CC5F906A19FE883729 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
16:15:30.0046 5228 winmgmt - ok
16:15:30.0421 5228 [ F10075C2EC96D2EB118012E78ECE2FC2 ] WinRM C:\WINDOWS\system32\WsmSvc.dll
16:15:30.0656 5228 WinRM - ok
16:15:30.0718 5228 [ FD600B032E741EB6AAB509FC630F7C42 ] WinUSB C:\WINDOWS\system32\DRIVERS\WinUSB.sys
16:15:30.0843 5228 WinUSB - ok
16:15:30.0906 5228 [ A7C993F86BE5AF035DE06DF9160D7008 ] WiseBootAssistant D:\_tweak\Wise Care 365\BootTime.exe
16:15:31.0078 5228 WiseBootAssistant - ok
16:15:31.0203 5228 [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN C:\WINDOWS\system32\MsPMSNSv.dll
16:15:31.0312 5228 WmdmPmSN - ok
16:15:31.0390 5228 [ 54F2088EF92BA975E3147C417EE0E0C3 ] Wmi C:\WINDOWS\System32\advapi32.dll
16:15:31.0578 5228 Wmi - ok
16:15:31.0609 5228 [ 93908111BA57A6E60EC2FA2DE202105C ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
16:15:31.0968 5228 WmiApSrv - ok
16:15:32.0015 5228 [ BF05650BB7DF5E9EBDD25974E22403BB ] WMPNetworkSvc C:\Programme\Windows Media Player\WMPNetwk.exe
16:15:32.0125 5228 WMPNetworkSvc - ok
16:15:32.0156 5228 [ 017695393AFFFED8DE58ABD1B085BE6D ] WMZuneComm D:\_hardware\Zune - Nokia 800\WMZuneComm.exe
16:15:32.0296 5228 WMZuneComm - ok
16:15:33.0125 5228 [ 120F3B596F79FC990B7D808857A8B3BC ] WPFFontCache_v0400 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
16:15:33.0265 5228 WPFFontCache_v0400 - ok
16:15:33.0312 5228 [ 300B3E84FAF1A5C1F791C159BA28035D ] wscsvc C:\WINDOWS\system32\wscsvc.dll
16:15:33.0468 5228 wscsvc - ok
16:15:33.0703 5228 [ AAE1A6FFBA2B0436E91795120F48C461 ] wuauserv C:\WINDOWS\system32\wuauserv.dll
16:15:33.0812 5228 wuauserv - ok
16:15:34.0359 5228 [ EAA6324F51214D2F6718977EC9CE0DEF ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
16:15:34.0421 5228 WudfPf - ok
16:15:34.0468 5228 [ F91FF1E51FCA30B3C3981DB7D5924252 ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
16:15:34.0546 5228 WudfRd - ok
16:15:34.0609 5228 [ DDEE3682FE97037C45F4D7AB467CB8B6 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
16:15:34.0687 5228 WudfSvc - ok
16:15:34.0843 5228 [ DEE347DC347C633AA04E2FDA8AF332CC ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
16:15:35.0093 5228 WZCSVC - ok
16:15:35.0109 5228 [ 0ADA34871A2E1CD2CAAFED1237A47750 ] xmlprov C:\WINDOWS\System32\xmlprov.dll
16:15:35.0343 5228 xmlprov - ok
16:15:35.0375 5228 [ 87F126D0F8DC176B282924DF0417075E ] yukonwxp C:\WINDOWS\system32\DRIVERS\yk51x86.sys
16:15:35.0468 5228 yukonwxp - ok
16:15:35.0531 5228 [ AE279CD76B38FC079EEC3CA6D65A5926 ] zumbus C:\WINDOWS\system32\DRIVERS\zumbus.sys
16:15:35.0625 5228 zumbus - ok
16:15:35.0843 5228 [ 37F339B64F19E2775284ED7161B96683 ] ZuneBusEnum D:\_hardware\Zune - Nokia 800\ZuneBusEnum.exe
16:15:35.0921 5228 ZuneBusEnum - ok
16:15:36.0125 5228 [ 1076DF9ADE4E13EA3BF39D2165AEB903 ] ZuneNetworkSvc D:\_hardware\Zune - Nokia 800\ZuneNss.exe
16:15:37.0375 5228 ZuneNetworkSvc - ok
16:15:38.0000 5228 [ DE1CDB333A402B279F04D627122FA08E ] ZuneWlanCfgSvc D:\_hardware\Zune - Nokia 800\ZuneWlanCfgSvc.exe
16:15:38.0218 5228 ZuneWlanCfgSvc - ok
16:15:38.0343 5228 ================ Scan global ===============================
16:15:38.0390 5228 [ 2C60091CA5F67C3032EAB3B30390C27F ] C:\WINDOWS\system32\basesrv.dll
16:15:38.0406 5228 [ 935B583E1E780BDB75718EAFD9667366 ] C:\WINDOWS\system32\winsrv.dll
16:15:38.0421 5228 [ 935B583E1E780BDB75718EAFD9667366 ] C:\WINDOWS\system32\winsrv.dll
16:15:38.0562 5228 [ F0A7D59AF279326528715B206669B86C ] C:\WINDOWS\system32\services.exe
16:15:38.0578 5228 [Global] - ok
16:15:38.0765 5228 ================ Scan MBR ==================================
16:15:38.0812 5228 [ 3E4114A2BACAE892982C85C4DD4DEB37 ] \Device\Harddisk1\DR1
16:15:39.0453 5228 \Device\Harddisk1\DR1 - ok
16:15:39.0453 5228 [ 8726B7B9EF886270DBDDBBDA1C4F3288 ] \Device\Harddisk2\DR2
16:15:39.0562 5228 \Device\Harddisk2\DR2 - ok
16:15:39.0609 5228 [ 72B8CE41AF0DE751C946802B3ED844B4 ] \Device\Harddisk3\DR3
16:15:40.0140 5228 \Device\Harddisk3\DR3 - ok
16:15:40.0171 5228 [ A6E521BDA384C6B28CA63A1F6BC15630 ] \Device\Harddisk4\DR16
16:15:41.0078 5228 \Device\Harddisk4\DR16 - ok
16:15:41.0312 5228 [ 4E800BC56057CADF2FCDFC8F093595DC ] \Device\Harddisk5\DR18
16:15:41.0437 5228 \Device\Harddisk5\DR18 - ok
16:15:41.0437 5228 ================ Scan VBR ==================================
16:15:41.0484 5228 [ 5F37297695F57CB0DCA4AA92421774F1 ] \Device\Harddisk1\DR1\Partition1
16:15:41.0484 5228 \Device\Harddisk1\DR1\Partition1 - ok
16:15:41.0531 5228 [ DECB7FCF2A7FB4EE1AD70905ABEB803F ] \Device\Harddisk2\DR2\Partition1
16:15:41.0531 5228 \Device\Harddisk2\DR2\Partition1 - ok
16:15:41.0578 5228 [ A1E9F76B1DEF1B25A58EB8F8E39E2FF1 ] \Device\Harddisk2\DR2\Partition2
16:15:41.0593 5228 \Device\Harddisk2\DR2\Partition2 - ok
16:15:41.0625 5228 [ ACF26D8E903C6D0E7DE674C7C95CB536 ] \Device\Harddisk2\DR2\Partition3
16:15:41.0625 5228 \Device\Harddisk2\DR2\Partition3 - ok
16:15:41.0625 5228 [ E9D00B83F72052EEBD7085319B2809C9 ] \Device\Harddisk2\DR2\Partition4
16:15:41.0640 5228 \Device\Harddisk2\DR2\Partition4 - ok
16:15:41.0671 5228 [ 69BBF11388EEC996391A7EF5C88F00D4 ] \Device\Harddisk3\DR3\Partition1
16:15:41.0687 5228 \Device\Harddisk3\DR3\Partition1 - ok
16:15:41.0687 5228 [ 1BCE5FAD044C85E69B9A2A0DA894A510 ] \Device\Harddisk3\DR3\Partition2
16:15:41.0687 5228 \Device\Harddisk3\DR3\Partition2 - ok
16:15:41.0718 5228 [ 857215B03D76075F3480FAB465BC1BF6 ] \Device\Harddisk4\DR16\Partition1
16:15:41.0734 5228 \Device\Harddisk4\DR16\Partition1 - ok
16:15:41.0765 5228 [ 01DBB0202DBD4285C00DF65596BBDFFE ] \Device\Harddisk5\DR18\Partition1
16:15:41.0781 5228 \Device\Harddisk5\DR18\Partition1 - ok
16:15:41.0843 5228 ============================================================
16:15:41.0843 5228 Scan finished
16:15:41.0843 5228 ============================================================
16:15:42.0078 6128 Detected object count: 22
16:15:42.0078 6128 Actual detected object count: 22
16:16:04.0890 6128 Aspi32 ( UnsignedFile.Multi.Generic ) - skipped by user
16:16:04.0890 6128 Aspi32 ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:16:04.0890 6128 BANTExt ( UnsignedFile.Multi.Generic ) - skipped by user
16:16:04.0890 6128 BANTExt ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:16:04.0890 6128 BrScnUsb ( UnsignedFile.Multi.Generic ) - skipped by user
16:16:04.0890 6128 BrScnUsb ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:16:04.0906 6128 BWMeterConSvc ( UnsignedFile.Multi.Generic ) - skipped by user
16:16:04.0906 6128 BWMeterConSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:16:04.0937 6128 CachemanXPService ( UnsignedFile.Multi.Generic ) - skipped by user
16:16:04.0937 6128 CachemanXPService ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:16:04.0937 6128 DfSdkS ( UnsignedFile.Multi.Generic ) - skipped by user
16:16:04.0937 6128 DfSdkS ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:16:04.0953 6128 drhard ( UnsignedFile.Multi.Generic ) - skipped by user
16:16:04.0953 6128 drhard ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:16:04.0953 6128 dsnpfd ( UnsignedFile.Multi.Generic ) - skipped by user
16:16:04.0953 6128 dsnpfd ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:16:04.0953 6128 dsnpfdMP ( UnsignedFile.Multi.Generic ) - skipped by user
16:16:04.0953 6128 dsnpfdMP ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:16:04.0968 6128 FlashFolder ( UnsignedFile.Multi.Generic ) - skipped by user
16:16:04.0968 6128 FlashFolder ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:16:04.0968 6128 giveio ( UnsignedFile.Multi.Generic ) - skipped by user
16:16:04.0968 6128 giveio ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:16:04.0984 6128 IDriverT ( UnsignedFile.Multi.Generic ) - skipped by user
16:16:04.0984 6128 IDriverT ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:16:04.0984 6128 nvata ( UnsignedFile.Multi.Generic ) - skipped by user
16:16:04.0984 6128 nvata ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:16:04.0984 6128 sp_rsdrv2 ( UnsignedFile.Multi.Generic ) - skipped by user
16:16:04.0984 6128 sp_rsdrv2 ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:16:05.0000 6128 StarOpen ( UnsignedFile.Multi.Generic ) - skipped by user
16:16:05.0000 6128 StarOpen ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:16:05.0000 6128 tap0901 ( UnsignedFile.Multi.Generic ) - skipped by user
16:16:05.0000 6128 tap0901 ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:16:05.0000 6128 uigxrdr ( UnsignedFile.Multi.Generic ) - skipped by user
16:16:05.0000 6128 uigxrdr ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:16:05.0000 6128 UnlockerDriver5 ( UnsignedFile.Multi.Generic ) - skipped by user
16:16:05.0000 6128 UnlockerDriver5 ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:16:05.0015 6128 UPHClean ( UnsignedFile.Multi.Generic ) - skipped by user
16:16:05.0015 6128 UPHClean ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:16:05.0031 6128 VClone ( UnsignedFile.Multi.Generic ) - skipped by user
16:16:05.0031 6128 VClone ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:16:05.0031 6128 vulfnths ( UnsignedFile.Multi.Generic ) - skipped by user
16:16:05.0031 6128 vulfnths ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:16:05.0031 6128 vulfntrs ( UnsignedFile.Multi.Generic ) - skipped by user
16:16:05.0031 6128 vulfntrs ( UnsignedFile.Multi.Generic ) - User select action: Skip
GMER: braucht auch ewig, kommt noch aswMBR.exe Download dauert noch 50 Minuten, kommt später.... Vielen herzlichen Dank fürs Lesen und Antworten! Elmar Geändert von Eule69 (29.07.2013 um 15:16 Uhr) Grund: weitere Infos |
| Themen zu Immer wieder Abstürze einfach so - WIN XP SP3 |
| askbar, chromium, defender, einstellungen, emsisoft, explorer, extension.mismatch, fontcache, google, hijack.controlpanelstyle, hijack.drives, hijack.folderoptions, hijackthis, hkus\s-1-5-18, hängen, internet browser, internet explorer, monitor, nvidia, plug-in, policyagent, programm, registrierungsdatenbank, registry, required, schutz, secunia psi, sigcheck, software, system, taskmanager, trojan.downloader, windows xp |
Baum-Darstellung