|
Evtl. Virus oder Trojaner eingefangen Vierenscanner findet nicht aber könnt ihr euch mal das Logfile anschauen? Danke Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 15:10:22, on 21.01.2013 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v8.00 (8.00.6001.18702) Boot mode: Normal Running processes: C:\WINXP\System32\smss.exe C:\WINXP\system32\winlogon.exe C:\WINXP\system32\services.exe C:\WINXP\system32\lsass.exe C:\WINXP\system32\Ati2evxx.exe C:\WINXP\system32\svchost.exe C:\WINXP\System32\svchost.exe C:\WINXP\system32\svchost.exe C:\WINXP\system32\spoolsv.exe C:\Programme\Avira\AntiVir Desktop\sched.exe C:\WINXP\system32\Ati2evxx.exe C:\Programme\Gemeinsame Dateien\ArcSoft\Connection Service\Bin\ACService.exe C:\Programme\Avira\AntiVir Desktop\avguard.exe C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\AppleMobileDeviceService.exe C:\Programme\FRITZ!DSL\IGDCTRL.EXE C:\Programme\Bonjour\mDNSResponder.exe C:\Programme\Dokan\DokanLibrary\mounter.exe C:\Programme\Nero\Nero 7\InCD\InCDsrv.exe C:\Programme\Google\Update\GoogleUpdate.exe C:\Programme\Java\jre6\bin\jqs.exe C:\Programme\Gemeinsame Dateien\LightScribe\LSSrvc.exe C:\Programme\Gemeinsame Dateien\Protexis\License Service\PsiService_2.exe C:\WINXP\system32\svchost.exe D:\VLCC\VNC4\WinVNC4.exe C:\Programme\Vodafone\Vodafone Mobile Connect\Bin\VMCService.exe C:\WINXP\Explorer.EXE C:\WINXP\RTHDCPL.EXE C:\Programme\ATI Technologies\ATI.ACE\Core-Static\MOM.exe C:\Programme\Nero\Nero 7\InCD\NBHGui.exe C:\Programme\Nero\Nero 7\InCD\InCD.exe C:\Programme\Gemeinsame Dateien\Real\Update_OB\realsched.exe C:\WINXP\system32\MSTMON_N.EXE C:\WINXP\system32\rundll32.exe D:\PDF\vspdfprsrv.exe D:\Real Player\RealPlay.exe C:\Programme\Gemeinsame Dateien\Nokia\MPlatform\NokiaMServer.exe C:\Programme\DivX\DivX Update\DivXUpdate.exe C:\Programme\Gemeinsame Dateien\ArcSoft\Connection Service\Bin\ACDaemon.exe C:\Programme\Gemeinsame Dateien\Java\Java Update\jusched.exe D:\PDF\PDF24\pdf24.exe C:\Programme\iTunes\iTunesHelper.exe C:\Programme\Avira\AntiVir Desktop\avgnt.exe C:\WINXP\system32\ctfmon.exe C:\Programme\Gemeinsame Dateien\LightScribe\LightScribeControlPanel.exe D:\Daemon Tools\DAEMON Tools Lite\DTLite.exe D:\Nokia\Nokia PC Suite 7\PCSuite.exe C:\Programme\Realtek\RTL8187B Wireless LAN Utility\RtWLan.exe C:\Programme\FRITZ!DSL\FwebProt.exe C:\Programme\ATI Technologies\ATI.ACE\Core-Static\ccc.exe C:\Programme\FRITZ!DSL\StCenter.EXE C:\Programme\Avira\AntiVir Desktop\avshadow.exe C:\WINXP\system32\wbem\wmiapsrv.exe C:\Programme\PC Connectivity Solution\ServiceLayer.exe C:\Programme\iPod\bin\iPodService.exe C:\Programme\PC Connectivity Solution\Transports\NclUSBSrv.exe C:\Programme\PC Connectivity Solution\Transports\NclRSSrv.exe C:\Programme\PC Connectivity Solution\Transports\NclMSBTSrv.exe c:\programme\avira\antivir desktop\ipmGui.exe C:\Programme\Google\Update\GoogleUpdate.exe C:\Programme\Google\Update\GoogleUpdate.exe D:\Festplatten Test\HiJackThis204.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkId=69157 R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local O2 - BHO: btorbit.com - {000123B4-9B42-4900-B3F7-F4B073EFC214} - D:\Orbit Downloader\Orbitdownloader\orbitcth.dll O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Programme\Gemeinsame Dateien\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Increase performance and video formats for your HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Programme\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programme\Java\jre6\bin\ssv.dll O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Programme\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Programme\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O3 - Toolbar: (no name) - {10EDB994-47F8-43F7-AE96-F2EA63E9F90F} - (no file) O3 - Toolbar: TerraTec Home Cinema - {AD6E6555-FB2C-47D4-8339-3E2965509877} - C:\PROGRA~1\TerraTec\TERRAT~1\THCDES~1.DLL O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE O4 - HKLM\..\Run: [StartCCC] "C:\Programme\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun O4 - HKLM\..\Run: [ATICustomerCare] "C:\Programme\ATI\ATICustomerCare\ATICustomerCare.exe" O4 - HKLM\..\Run: [NeroFilterCheck] C:\Programme\Gemeinsame Dateien\Ahead\Lib\NeroCheck.exe O4 - HKLM\..\Run: [SecurDisc] C:\Programme\Nero\Nero 7\InCD\NBHGui.exe O4 - HKLM\..\Run: [InCD] C:\Programme\Nero\Nero 7\InCD\InCD.exe O4 - HKLM\..\Run: [TkBellExe] "C:\Programme\Gemeinsame Dateien\Real\Update_OB\realsched.exe" -osboot O4 - HKLM\..\Run: [QuickTime Task] "D:\Quik time\QTTask.exe" -atboottime O4 - HKLM\..\Run: [CloneCDTray] "D:\Clone CD\CloneCD\CloneCDTray.exe" /s O4 - HKLM\..\Run: [KONICA MINOLTA PagePro 1300WStatusDisplay] C:\WINXP\system32\MSTMON_N.EXE O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent O4 - HKLM\..\Run: [USB Webmail Notifier] D:\USBWEB~1\USB Webmail Notifier.exe O4 - HKLM\..\Run: [vspdfprsrv.exe] D:\PDF\vspdfprsrv.exe --background O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k O4 - HKLM\..\Run: [Adobe ARM] "C:\Programme\Gemeinsame Dateien\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [NokiaMServer] C:\Programme\Gemeinsame Dateien\Nokia\MPlatform\NokiaMServer /watchfiles startup O4 - HKLM\..\Run: [DivXUpdate] "C:\Programme\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW O4 - HKLM\..\Run: [ArcSoft Connection Service] C:\Programme\Gemeinsame Dateien\ArcSoft\Connection Service\Bin\ACDaemon.exe O4 - HKLM\..\Run: [IR_SERVER] C:\Programme\Realtek\REALTEK DTV USB DEVICE\IR_SERVER.exe O4 - HKLM\..\Run: [MobileConnect] %programfiles%\Vodafone\Vodafone Mobile Connect\Bin\MobileConnect.exe /silent O4 - HKLM\..\Run: [APSDaemon] "C:\Programme\Gemeinsame Dateien\Apple\Apple Application Support\APSDaemon.exe" O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Programme\Gemeinsame Dateien\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [PDFPrint] D:\PDF\PDF24\pdf24.exe O4 - HKLM\..\Run: [iTunesHelper] "C:\Programme\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [avgnt] "C:\Programme\Avira\AntiVir Desktop\avgnt.exe" /min O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINXP\system32\ctfmon.exe O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Programme\Gemeinsame Dateien\LightScribe\LightScribeControlPanel.exe -hidden O4 - HKCU\..\Run: [DAEMON Tools Lite] "D:\Daemon Tools\DAEMON Tools Lite\DTLite.exe" -autorun O4 - HKCU\..\Run: [PC Suite Tray] "D:\Nokia\Nokia PC Suite 7\PCSuite.exe" -onlytray O4 - HKCU\..\Run: [Skype] "C:\Dokumente und Einstellungen\Andy\Anwendungsdaten\Skype\Phone\Skype.exe" /nosplash /minimized O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINXP\system32\CTFMON.EXE (User 'LOKALER DIENST') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINXP\system32\CTFMON.EXE (User 'NETZWERKDIENST') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINXP\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINXP\system32\CTFMON.EXE (User 'Default user') O4 - Startup: FRITZ!DSL Protect.lnk = C:\Programme\FRITZ!DSL\FwebProt.exe O4 - Global Startup: Microsoft Office.lnk = C:\Programme\Microsoft Office\Office10\OSA.EXE O4 - Global Startup: REALTEK RTL8187B Wireless LAN Utility.lnk = C:\Programme\Realtek\RTL8187B Wireless LAN Utility\RtWLan.exe O8 - Extra context menu item: &Download by Orbit - res://D:\Orbit Downloader\Orbitdownloader\orbitmxt.dll/201 O8 - Extra context menu item: &Grab video by Orbit - res://D:\Orbit Downloader\Orbitdownloader\orbitmxt.dll/204 O8 - Extra context menu item: Do&wnload selected by Orbit - res://D:\Orbit Downloader\Orbitdownloader\orbitmxt.dll/203 O8 - Extra context menu item: Down&load all by Orbit - res://D:\Orbit Downloader\Orbitdownloader\orbitmxt.dll/202 O8 - Extra context menu item: Free YouTube to MP3 Converter - C:\Dokumente und Einstellungen\Andy\Anwendungsdaten\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm O8 - Extra context menu item: Nach Microsoft &Excel exportieren - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000 O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINXP\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINXP\Network Diagnostic\xpnetdiag.exe O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINXP\system32\browseui.dll O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINXP\system32\browseui.dll O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Programme\Gemeinsame Dateien\ArcSoft\Connection Service\Bin\ACService.exe O23 - Service: Avira Planer (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Programme\Avira\AntiVir Desktop\sched.exe O23 - Service: Avira Echtzeit-Scanner (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Programme\Avira\AntiVir Desktop\avguard.exe O23 - Service: Apple Mobile Device - Apple Inc. - C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINXP\system32\Ati2evxx.exe O23 - Service: AVM IGD CTRL Service - AVM Berlin - C:\Programme\FRITZ!DSL\IGDCTRL.EXE O23 - Service: Dienst "Bonjour" (Bonjour Service) - Apple Inc. - C:\Programme\Bonjour\mDNSResponder.exe O23 - Service: AVM FRITZ!web Routing Service (de_serv) - AVM Berlin - C:\Programme\Gemeinsame Dateien\AVM\de_serv.exe O23 - Service: DokanMounter - Unknown owner - C:\Programme\Dokan\DokanLibrary\mounter.exe O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Programme\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-Dienst (gupdatem) (gupdatem) - Google Inc. - C:\Programme\Google\Update\GoogleUpdate.exe O23 - Service: InCD Helper (InCDsrv) - Nero AG - C:\Programme\Nero\Nero 7\InCD\InCDsrv.exe O23 - Service: iPod-Dienst (iPod Service) - Apple Inc. - C:\Programme\iPod\bin\iPodService.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Programme\Java\jre6\bin\jqs.exe O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Programme\Gemeinsame Dateien\LightScribe\LSSrvc.exe O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Programme\Mozilla Maintenance Service\maintenanceservice.exe O23 - Service: NBService - Nero AG - C:\Programme\Nero\Nero 7\Nero BackItUp\NBService.exe O23 - Service: NMIndexingService - Nero AG - C:\Programme\Gemeinsame Dateien\Ahead\Lib\NMIndexingService.exe O23 - Service: Protexis Licensing V2 (PSI_SVC_2) - Protexis Inc. - C:\Programme\Gemeinsame Dateien\Protexis\License Service\PsiService_2.exe O23 - Service: ServiceLayer - Nokia - C:\Programme\PC Connectivity Solution\ServiceLayer.exe O23 - Service: SolidWorks Licensing Service - SolidWorks - C:\Programme\Gemeinsame Dateien\SolidWorks Shared\Service\SolidWorksLicensing.exe O23 - Service: Vodafone Mobile Connect Service (VMCService) - Vodafone - C:\Programme\Vodafone\Vodafone Mobile Connect\Bin\VMCService.exe O23 - Service: VNC Server Version 4 (WinVNC4) - RealVNC Ltd. - D:\VLCC\VNC4\WinVNC4.exe -- End of file - 12223 bytes |
hi bitte das nächste mal Anleitungen lesen, hjt logs wollen wir nicht sehen, hjt wird nicht mehr weiterentwickelt. wo genau liegt das Problem? Falls noch nicht vorhanden, lade Dir bitte OTL von Oldtimer herunter und speichere es auf Deinem Desktop
Code: activex
|
Tschulding hab ich nicht gesehen! Meine web.de account wurde gehackt! Jetzt weis ich noch ob was am PC war oder nur mein extrem einfaches Passwort! Hier die logs!OTL Logfile: Code: OTL logfile created on: 21.01.2013 17:34:10 - Run 1OTL Logfile: Code: OTL Extras logfile created on: 21.01.2013 17:34:10 - Run 1 |
bekomm ich noch ne antwort, warum du denkst malware auf dem PC zu haben, mit Problem beschreibung arbeitets sich schon noch besser :-) |
Weil mein Mail Account gehackt wurde! Jetzt weis ich nicht ob es am Rechner lag oder an mein extrem leichten Passwort! |
hi na leichte Passwörter sind nie gut, und dann noch im "idialfalle" das selbe für alle Dienste? download tdss killer: http://www.trojaner-board.de/82358-t...entfernen.html Klicke auf Change parameters • Setze die Haken bei Verify driver digital signatures und Detect TDLFS file system • Klick auf OK und anschließend auf Start scan - bei funden erst mal immer skip wählen, log posten c: öffnen, tdsskiller-datum-version.txt öffnen, Inhalt posten |
So hier die logs! 14:45:14.0265 5960 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35 14:45:16.0265 5960 ============================================================ 14:45:16.0265 5960 Current date / time: 2013/01/22 14:45:16.0265 14:45:16.0265 5960 SystemInfo: 14:45:16.0265 5960 14:45:16.0265 5960 OS Version: 5.1.2600 ServicePack: 3.0 14:45:16.0265 5960 Product type: Workstation 14:45:16.0265 5960 ComputerName: MEDIABOX 14:45:16.0265 5960 UserName: Andy 14:45:16.0265 5960 Windows directory: C:\WINXP 14:45:16.0265 5960 System windows directory: C:\WINXP 14:45:16.0265 5960 Processor architecture: Intel x86 14:45:16.0265 5960 Number of processors: 4 14:45:16.0265 5960 Page size: 0x1000 14:45:16.0265 5960 Boot type: Normal boot 14:45:16.0265 5960 ============================================================ 14:45:19.0015 5960 Drive \Device\Harddisk0\DR0 - Size: 0x950B056000 (596.17 Gb), SectorSize: 0x200, Cylinders: 0x13001, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054 14:45:19.0062 5960 Drive \Device\Harddisk5\DR11 - Size: 0xEF000000 (3.73 Gb), SectorSize: 0x200, Cylinders: 0x1E7, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W' 14:45:19.0062 5960 ============================================================ 14:45:19.0062 5960 \Device\Harddisk0\DR0: 14:45:19.0062 5960 MBR partitions: 14:45:19.0062 5960 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x1869E559 14:45:19.0062 5960 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1869E5D7, BlocksNum 0x321B4A29 14:45:19.0062 5960 \Device\Harddisk5\DR11: 14:45:19.0062 5960 MBR partitions: 14:45:19.0062 5960 \Device\Harddisk5\DR11\Partition1: MBR, Type 0xB, StartLBA 0x20, BlocksNum 0x777FE0 14:45:19.0062 5960 ============================================================ 14:45:19.0109 5960 C: <-> \Device\Harddisk0\DR0\Partition1 14:45:19.0156 5960 D: <-> \Device\Harddisk0\DR0\Partition2 14:45:19.0203 5960 ============================================================ 14:45:19.0203 5960 Initialize success 14:45:19.0203 5960 ============================================================ 14:46:03.0625 0192 ============================================================ 14:46:03.0625 0192 Scan started 14:46:03.0625 0192 Mode: Manual; SigCheck; TDLFS; 14:46:03.0625 0192 ============================================================ 14:46:04.0296 0192 ================ Scan system memory ======================== 14:46:04.0296 0192 System memory - ok 14:46:04.0296 0192 ================ Scan services ============================= 14:46:04.0406 0192 Abiosdsk - ok 14:46:04.0406 0192 abp480n5 - ok 14:46:04.0562 0192 [ ADC420616C501B45D26C0FD3EF1E54E4 ] ACDaemon C:\Programme\Gemeinsame Dateien\ArcSoft\Connection Service\Bin\ACService.exe 14:46:04.0734 0192 ACDaemon - ok 14:46:04.0765 0192 [ AC407F1A62C3A300B4F2B5A9F1D55B2C ] ACPI C:\WINXP\system32\DRIVERS\ACPI.sys 14:46:05.0609 0192 ACPI - ok 14:46:05.0625 0192 [ 9E1CA3160DAFB159CA14F83B1E317F75 ] ACPIEC C:\WINXP\system32\drivers\ACPIEC.sys 14:46:05.0734 0192 ACPIEC - ok 14:46:05.0734 0192 adpu160m - ok 14:46:05.0765 0192 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINXP\system32\drivers\aec.sys 14:46:05.0906 0192 aec - ok 14:46:05.0937 0192 [ 30BB1BDE595CA65FD5549462080D94E5 ] AegisP C:\WINXP\system32\DRIVERS\AegisP.sys 14:46:05.0937 0192 AegisP ( UnsignedFile.Multi.Generic ) - warning 14:46:05.0937 0192 AegisP - detected UnsignedFile.Multi.Generic (1) 14:46:05.0968 0192 [ FE3EA6E9AFC1A78E6EDCA121E006AFB7 ] Afc C:\WINXP\system32\drivers\Afc.sys 14:46:05.0984 0192 Afc - ok 14:46:06.0000 0192 [ 4D43E74F2A1239D53929B82600F1971C ] AFD C:\WINXP\System32\drivers\afd.sys 14:46:06.0031 0192 AFD - ok 14:46:06.0031 0192 Aha154x - ok 14:46:06.0031 0192 aic78u2 - ok 14:46:06.0046 0192 aic78xx - ok 14:46:06.0062 0192 [ 738D80CC01D7BC7584BE917B7F544394 ] Alerter C:\WINXP\system32\alrsvc.dll 14:46:06.0140 0192 Alerter - ok 14:46:06.0156 0192 [ 190CD73D4984F94D823F9444980513E5 ] ALG C:\WINXP\System32\alg.exe 14:46:06.0203 0192 ALG - ok 14:46:06.0203 0192 AliIde - ok 14:46:06.0203 0192 amsint - ok 14:46:06.0234 0192 [ E94E2EA7FAAA05C776A711EDB198B9FD ] androidusb C:\WINXP\system32\Drivers\androidusb.sys 14:46:06.0250 0192 androidusb ( UnsignedFile.Multi.Generic ) - warning 14:46:06.0250 0192 androidusb - detected UnsignedFile.Multi.Generic (1) 14:46:06.0421 0192 [ 0FA2D8304ECA29CA0AB7E3EE50FD585A ] AntiVirSchedulerService C:\Programme\Avira\AntiVir Desktop\sched.exe 14:46:06.0453 0192 AntiVirSchedulerService - ok 14:46:06.0468 0192 [ 5C69AAC8A59207DA9710FF2E42D6F80F ] AntiVirService C:\Programme\Avira\AntiVir Desktop\avguard.exe 14:46:06.0484 0192 AntiVirService - ok 14:46:06.0515 0192 [ 133B7B6D6A3EC9E46FBE742EE1516C37 ] AnyDVD C:\WINXP\system32\Drivers\AnyDVD.sys 14:46:06.0531 0192 AnyDVD - ok 14:46:06.0593 0192 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\AppleMobileDeviceService.exe 14:46:06.0609 0192 Apple Mobile Device - ok 14:46:06.0625 0192 [ D45960BE52C3C610D361977057F98C54 ] AppMgmt C:\WINXP\System32\appmgmts.dll 14:46:06.0703 0192 AppMgmt - ok 14:46:06.0718 0192 [ B5B8A80875C1DEDEDA8B02765642C32F ] Arp1394 C:\WINXP\system32\DRIVERS\arp1394.sys 14:46:06.0812 0192 Arp1394 - ok 14:46:06.0812 0192 asc - ok 14:46:06.0828 0192 asc3350p - ok 14:46:06.0828 0192 asc3550 - ok 14:46:06.0859 0192 [ 5B01AF89D16D562825C4DB4530F20CBB ] Aspi32 C:\WINXP\system32\drivers\aspi32.sys 14:46:06.0890 0192 Aspi32 ( UnsignedFile.Multi.Generic ) - warning 14:46:06.0890 0192 Aspi32 - detected UnsignedFile.Multi.Generic (1) 14:46:06.0953 0192 [ 0E5E4957549056E2BF2C49F4F6B601AD ] aspnet_state C:\WINXP\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe 14:46:06.0984 0192 aspnet_state - ok 14:46:06.0984 0192 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINXP\system32\DRIVERS\asyncmac.sys 14:46:07.0078 0192 AsyncMac - ok 14:46:07.0109 0192 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINXP\system32\DRIVERS\atapi.sys 14:46:07.0203 0192 atapi - ok 14:46:07.0203 0192 Atdisk - ok 14:46:07.0234 0192 [ 4753831A772AF0DD89111B544E1BBDD9 ] Ati HotKey Poller C:\WINXP\system32\Ati2evxx.exe 14:46:07.0312 0192 Ati HotKey Poller - ok 14:46:07.0406 0192 [ E7426973D081B6607056D1DD91BD9B01 ] ati2mtag C:\WINXP\system32\DRIVERS\ati2mtag.sys 14:46:07.0578 0192 ati2mtag - ok 14:46:07.0609 0192 [ 7E13F3F0F4C4C337A6949A18D1D23089 ] AtiHdmiService C:\WINXP\system32\drivers\AtiHdmi.sys 14:46:07.0625 0192 AtiHdmiService - ok 14:46:07.0640 0192 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINXP\system32\DRIVERS\atmarpc.sys 14:46:07.0734 0192 Atmarpc - ok 14:46:07.0750 0192 [ 58ED0D5452DF7BE732193E7999C6B9A4 ] AudioSrv C:\WINXP\System32\audiosrv.dll 14:46:07.0843 0192 AudioSrv - ok 14:46:07.0859 0192 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINXP\system32\DRIVERS\audstub.sys 14:46:07.0937 0192 audstub - ok 14:46:07.0968 0192 [ A5C175039B1D6D85D0E79F5855828E4D ] avgntflt C:\WINXP\system32\DRIVERS\avgntflt.sys 14:46:07.0984 0192 avgntflt - ok 14:46:08.0000 0192 [ 37B854C7D1F477E66C5B49C7700C47CC ] avipbb C:\WINXP\system32\DRIVERS\avipbb.sys 14:46:08.0015 0192 avipbb - ok 14:46:08.0031 0192 [ CC4EBA25D80DE42BBC2BF3E553219388 ] avkmgr C:\WINXP\system32\DRIVERS\avkmgr.sys 14:46:08.0046 0192 avkmgr - ok 14:46:08.0109 0192 [ 8DFA2EC772F97ED02B384DB88641B367 ] AVM IGD CTRL Service C:\Programme\FRITZ!DSL\IGDCTRL.EXE 14:46:08.0125 0192 AVM IGD CTRL Service ( UnsignedFile.Multi.Generic ) - warning 14:46:08.0125 0192 AVM IGD CTRL Service - detected UnsignedFile.Multi.Generic (1) 14:46:08.0156 0192 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINXP\system32\drivers\Beep.sys 14:46:08.0265 0192 Beep - ok 14:46:08.0375 0192 [ D6F603772A789BB3228F310D650B8BD1 ] BITS C:\WINXP\system32\qmgr.dll 14:46:08.0515 0192 BITS - ok 14:46:08.0593 0192 [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] Bonjour Service C:\Programme\Bonjour\mDNSResponder.exe 14:46:08.0625 0192 Bonjour Service - ok 14:46:08.0656 0192 [ B42057F06BBB98B31876C0B3F2B54E33 ] Browser C:\WINXP\System32\browser.dll 14:46:08.0750 0192 Browser - ok 14:46:08.0750 0192 BT - ok 14:46:08.0765 0192 btaudio - ok 14:46:08.0781 0192 Btcsrusb - ok 14:46:08.0781 0192 BTDriver - ok 14:46:08.0828 0192 [ B279426E3C0C344893ED78A613A73BDE ] BthEnum C:\WINXP\system32\DRIVERS\BthEnum.sys 14:46:08.0937 0192 BthEnum - ok 14:46:08.0968 0192 [ CE441CCD98C5ECB10CB12FCAF97322EC ] BtHidBus C:\WINXP\system32\Drivers\BtHidBus.sys 14:46:08.0984 0192 BtHidBus - ok 14:46:09.0000 0192 [ FCA6F069597B62D42495191ACE3FC6C1 ] BTHMODEM C:\WINXP\system32\DRIVERS\bthmodem.sys 14:46:09.0109 0192 BTHMODEM - ok 14:46:09.0125 0192 [ 80602B8746D3738F5886CE3D67EF06B6 ] BthPan C:\WINXP\system32\DRIVERS\bthpan.sys 14:46:09.0218 0192 BthPan - ok 14:46:09.0250 0192 [ F55BFD05892C321FB7470D334D6B44E1 ] BTHPORT C:\WINXP\system32\Drivers\BTHport.sys 14:46:09.0296 0192 BTHPORT - ok 14:46:09.0328 0192 [ 26C601EF7525E31379744ABFC6F35A1B ] BthServ C:\WINXP\System32\bthserv.dll 14:46:09.0421 0192 BthServ - ok 14:46:09.0437 0192 [ 61364CD71EF63B0F038B7E9DF00F1EFA ] BTHUSB C:\WINXP\system32\Drivers\BTHUSB.sys 14:46:09.0515 0192 BTHUSB - ok 14:46:09.0546 0192 [ D3C277A51EF9E2EC972D6221F99C0B6D ] btnetBUs C:\WINXP\system32\Drivers\btnetBus.sys 14:46:09.0562 0192 btnetBUs - ok 14:46:09.0562 0192 BTWDNDIS - ok 14:46:09.0562 0192 btwhid - ok 14:46:09.0593 0192 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINXP\system32\drivers\cbidf2k.sys 14:46:09.0687 0192 cbidf2k - ok 14:46:09.0703 0192 [ 0BE5AEF125BE881C4F854C554F2B025C ] CCDECODE C:\WINXP\system32\DRIVERS\CCDECODE.sys 14:46:09.0796 0192 CCDECODE - ok 14:46:09.0796 0192 cd20xrnt - ok 14:46:09.0812 0192 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINXP\system32\drivers\Cdaudio.sys 14:46:09.0921 0192 Cdaudio - ok 14:46:09.0937 0192 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINXP\system32\drivers\Cdfs.sys 14:46:10.0031 0192 Cdfs - ok 14:46:10.0031 0192 [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom C:\WINXP\system32\DRIVERS\cdrom.sys 14:46:10.0125 0192 Cdrom - ok 14:46:10.0140 0192 Changer - ok 14:46:10.0156 0192 [ 28E3040D1F1CA2008CD6B29DFEBC9A5E ] CiSvc C:\WINXP\system32\cisvc.exe 14:46:10.0250 0192 CiSvc - ok 14:46:10.0265 0192 [ 778A30ED3C134EB7E406AFC407E9997D ] ClipSrv C:\WINXP\system32\clipsrv.exe 14:46:10.0359 0192 ClipSrv - ok 14:46:10.0375 0192 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINXP\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe 14:46:10.0406 0192 clr_optimization_v2.0.50727_32 - ok 14:46:10.0453 0192 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\WINXP\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe 14:46:10.0468 0192 clr_optimization_v4.0.30319_32 - ok 14:46:10.0468 0192 CmdIde - ok 14:46:10.0484 0192 COMSysApp - ok 14:46:10.0484 0192 Cpqarray - ok 14:46:10.0500 0192 [ 611F824E5C703A5A899F84C5F1699E4D ] CryptSvc C:\WINXP\System32\cryptsvc.dll 14:46:10.0593 0192 CryptSvc - ok 14:46:10.0593 0192 dac2w2k - ok 14:46:10.0609 0192 dac960nt - ok 14:46:10.0640 0192 [ D3D765E8455A961AE567B408F767D4F9 ] DcomLaunch C:\WINXP\system32\rpcss.dll 14:46:10.0703 0192 DcomLaunch - ok 14:46:10.0734 0192 [ 1523251B9D8A5D84DE0CD23418847824 ] de_serv C:\Programme\Gemeinsame Dateien\AVM\de_serv.exe 14:46:10.0765 0192 de_serv ( UnsignedFile.Multi.Generic ) - warning 14:46:10.0765 0192 de_serv - detected UnsignedFile.Multi.Generic (1) 14:46:10.0796 0192 [ C29A1C9B75BA38FA37F8C44405DEC360 ] Dhcp C:\WINXP\System32\dhcpcsvc.dll 14:46:10.0890 0192 Dhcp - ok 14:46:10.0890 0192 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINXP\system32\DRIVERS\disk.sys 14:46:10.0984 0192 Disk - ok 14:46:10.0984 0192 dmadmin - ok 14:46:11.0015 0192 [ 0DCFC8395A99FECBB1EF771CEC7FE4EA ] dmboot C:\WINXP\system32\drivers\dmboot.sys 14:46:11.0140 0192 dmboot - ok 14:46:11.0140 0192 [ 53720AB12B48719D00E327DA470A619A ] dmio C:\WINXP\system32\drivers\dmio.sys 14:46:11.0234 0192 dmio - ok 14:46:11.0265 0192 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINXP\system32\drivers\dmload.sys 14:46:11.0343 0192 dmload - ok 14:46:11.0343 0192 [ 25C83FFBBA13B554EB6D59A9B2E2EE78 ] dmserver C:\WINXP\System32\dmserver.dll 14:46:11.0437 0192 dmserver - ok 14:46:11.0453 0192 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINXP\system32\drivers\DMusic.sys 14:46:11.0562 0192 DMusic - ok 14:46:11.0578 0192 [ 8C9ED3B2834AAE63081AB2DA831C6FE9 ] Dnscache C:\WINXP\System32\dnsrslvr.dll 14:46:11.0671 0192 Dnscache - ok 14:46:11.0687 0192 [ 280401196287679B53D5E797C2027062 ] Dokan C:\WINXP\system32\drivers\dokan.sys 14:46:11.0703 0192 Dokan ( UnsignedFile.Multi.Generic ) - warning 14:46:11.0703 0192 Dokan - detected UnsignedFile.Multi.Generic (1) 14:46:11.0718 0192 [ FDBB00E16D0FA193E513F68918AF0F0E ] DokanMounter C:\Programme\Dokan\DokanLibrary\mounter.exe 14:46:11.0734 0192 DokanMounter ( UnsignedFile.Multi.Generic ) - warning 14:46:11.0734 0192 DokanMounter - detected UnsignedFile.Multi.Generic (1) 14:46:11.0765 0192 [ 676E36C4FF5BCEA1900F44182B9723E6 ] Dot3svc C:\WINXP\System32\dot3svc.dll 14:46:11.0859 0192 Dot3svc - ok 14:46:11.0859 0192 dpti2o - ok 14:46:11.0859 0192 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINXP\system32\drivers\drmkaud.sys 14:46:11.0953 0192 drmkaud - ok 14:46:11.0968 0192 [ 4E4F2FDDAB0A0736D7671134DCCE91FB ] EapHost C:\WINXP\System32\eapsvc.dll 14:46:12.0062 0192 EapHost - ok 14:46:12.0109 0192 [ 075D91E4DE09A6F1EDE77C341803D454 ] ElbyCDFL C:\WINXP\system32\Drivers\ElbyCDFL.sys 14:46:12.0109 0192 ElbyCDFL - ok 14:46:12.0140 0192 [ D71233D7CCC2E64F8715A20428D5A33B ] ElbyCDIO C:\WINXP\system32\Drivers\ElbyCDIO.sys 14:46:12.0156 0192 ElbyCDIO - ok 14:46:12.0187 0192 [ DFE6E822E7748C12A27CDF801A6FDC9E ] EMSLink C:\WINXP\system32\Drivers\EMSLink_i386.sys 14:46:12.0203 0192 EMSLink ( UnsignedFile.Multi.Generic ) - warning 14:46:12.0203 0192 EMSLink - detected UnsignedFile.Multi.Generic (1) 14:46:12.0234 0192 [ 877C18558D70587AA7823A1A308AC96B ] ERSvc C:\WINXP\System32\ersvc.dll 14:46:12.0312 0192 ERSvc - ok 14:46:12.0343 0192 [ F0A7D59AF279326528715B206669B86C ] Eventlog C:\WINXP\system32\services.exe 14:46:12.0375 0192 Eventlog - ok 14:46:12.0375 0192 [ ADA7241C16F3F42C7F210539FAD5F3AA ] EventSystem C:\WINXP\system32\es.dll 14:46:12.0437 0192 EventSystem - ok 14:46:12.0453 0192 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINXP\system32\drivers\Fastfat.sys 14:46:12.0531 0192 Fastfat - ok 14:46:12.0546 0192 [ 40602EBFBE06AA075C8E4560743F6883 ] FastUserSwitchingCompatibility C:\WINXP\System32\shsvcs.dll 14:46:12.0640 0192 FastUserSwitchingCompatibility - ok 14:46:12.0656 0192 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINXP\system32\drivers\Fdc.sys 14:46:12.0750 0192 Fdc - ok 14:46:12.0750 0192 [ B0678A548587C5F1967B0D70BACAD6C1 ] Fips C:\WINXP\system32\drivers\Fips.sys 14:46:12.0843 0192 Fips - ok 14:46:12.0843 0192 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINXP\system32\drivers\Flpydisk.sys 14:46:12.0921 0192 Flpydisk - ok 14:46:12.0968 0192 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINXP\system32\DRIVERS\fltMgr.sys 14:46:13.0062 0192 FltMgr - ok 14:46:13.0140 0192 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 C:\WINXP\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe 14:46:13.0156 0192 FontCache3.0.0.0 - ok 14:46:13.0171 0192 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINXP\system32\drivers\Fs_Rec.sys 14:46:13.0265 0192 Fs_Rec - ok 14:46:13.0281 0192 [ 8F1955CE42E1484714B542F341647778 ] Ftdisk C:\WINXP\system32\DRIVERS\ftdisk.sys 14:46:13.0375 0192 Ftdisk - ok 14:46:13.0406 0192 [ 185ADA973B5020655CEE342059A86CBB ] GEARAspiWDM C:\WINXP\system32\DRIVERS\GEARAspiWDM.sys 14:46:13.0421 0192 GEARAspiWDM - ok 14:46:13.0453 0192 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINXP\system32\DRIVERS\msgpc.sys 14:46:13.0562 0192 Gpc - ok 14:46:13.0609 0192 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Programme\Google\Update\GoogleUpdate.exe 14:46:13.0609 0192 gupdate - ok 14:46:13.0625 0192 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Programme\Google\Update\GoogleUpdate.exe 14:46:13.0625 0192 gupdatem - ok 14:46:13.0656 0192 [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus C:\WINXP\system32\DRIVERS\HDAudBus.sys 14:46:13.0750 0192 HDAudBus - ok 14:46:13.0796 0192 [ CB66BF85BF599BEFD6C6A57C2E20357F ] helpsvc C:\WINXP\PCHealth\HelpCtr\Binaries\pchsvc.dll 14:46:13.0890 0192 helpsvc - ok 14:46:13.0921 0192 [ A5AECF10BE62459533A06ED7EBF5770B ] HidBth C:\WINXP\system32\DRIVERS\hidbth.sys 14:46:14.0031 0192 HidBth - ok 14:46:14.0046 0192 [ B35DA85E60C0103F2E4104532DA2F12B ] HidServ C:\WINXP\System32\hidserv.dll 14:46:14.0140 0192 HidServ - ok 14:46:14.0171 0192 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] HidUsb C:\WINXP\system32\DRIVERS\hidusb.sys 14:46:14.0250 0192 HidUsb - ok 14:46:14.0281 0192 [ ED29F14101523A6E0E808107405D452C ] hkmsvc C:\WINXP\System32\kmsvc.dll 14:46:14.0375 0192 hkmsvc - ok 14:46:14.0375 0192 hpn - ok 14:46:14.0406 0192 [ 937031C085718C1C04A9C0864625EC6B ] HTTP C:\WINXP\system32\Drivers\HTTP.sys 14:46:14.0453 0192 HTTP - ok 14:46:14.0484 0192 [ 9E4ADB854CEBCFB81A4B36718FEECD16 ] HTTPFilter C:\WINXP\System32\w3ssl.dll 14:46:14.0562 0192 HTTPFilter - ok 14:46:14.0578 0192 i2omgmt - ok 14:46:14.0578 0192 i2omp - ok 14:46:14.0578 0192 [ E283B97CFBEB86C1D86BAED5F7846A92 ] i8042prt C:\WINXP\system32\DRIVERS\i8042prt.sys 14:46:14.0671 0192 i8042prt - ok 14:46:14.0718 0192 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc C:\WINXP\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe 14:46:14.0796 0192 idsvc - ok 14:46:14.0796 0192 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINXP\system32\DRIVERS\imapi.sys 14:46:14.0890 0192 Imapi - ok 14:46:14.0921 0192 [ D4B413AA210C21E46AEDD2BA5B68D38E ] ImapiService C:\WINXP\system32\imapi.exe 14:46:15.0000 0192 ImapiService - ok 14:46:15.0343 0192 [ 03BFF1DE5B708E92A1926BA4A33595D0 ] iMSPCLOj C:\DOKUME~1\Andy\LOKALE~1\Temp\iMSPCLOj.sys 14:46:16.0125 0192 iMSPCLOj ( UnsignedFile.Multi.Generic ) - warning 14:46:16.0125 0192 iMSPCLOj - detected UnsignedFile.Multi.Generic (1) 14:46:16.0265 0192 [ B02A8A25192EE1C5E653628637AB6AAA ] InCDfs C:\WINXP\system32\drivers\InCDFs.sys 14:46:16.0281 0192 InCDfs - ok 14:46:16.0281 0192 [ B49BD5B663E1AF9BF3233B782B70D865 ] InCDPass C:\WINXP\system32\drivers\InCDPass.sys 14:46:16.0296 0192 InCDPass - ok 14:46:16.0312 0192 [ 8FD364EDBD97983575CEE3E8909E62B4 ] InCDrec C:\WINXP\system32\drivers\InCDrec.sys 14:46:16.0312 0192 InCDrec - ok 14:46:16.0312 0192 [ FC04E827133D54AB79CA254708F76CD0 ] incdrm C:\WINXP\system32\drivers\InCDRm.sys 14:46:16.0328 0192 incdrm - ok 14:46:16.0468 0192 [ 067020BB8ABF1F6B80361051B2806C90 ] InCDsrv C:\Programme\Nero\Nero 7\InCD\InCDsrv.exe 14:46:16.0546 0192 InCDsrv - ok 14:46:16.0546 0192 ini910u - ok 14:46:16.0687 0192 [ A109FE3CA1EE4E92292B349DE1B32F7B ] IntcAzAudAddService C:\WINXP\system32\drivers\RtkHDAud.sys 14:46:16.0890 0192 IntcAzAudAddService - ok 14:46:16.0890 0192 IntelIde - ok 14:46:16.0921 0192 [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw C:\WINXP\system32\DRIVERS\Ip6Fw.sys 14:46:17.0031 0192 Ip6Fw - ok 14:46:17.0062 0192 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINXP\system32\DRIVERS\ipfltdrv.sys 14:46:17.0156 0192 IpFilterDriver - ok 14:46:17.0156 0192 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINXP\system32\DRIVERS\ipinip.sys 14:46:17.0250 0192 IpInIp - ok 14:46:17.0250 0192 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINXP\system32\DRIVERS\ipnat.sys 14:46:17.0343 0192 IpNat - ok 14:46:17.0421 0192 [ E8A39D41474BE42FD8830CED32932D6C ] iPod Service C:\Programme\iPod\bin\iPodService.exe 14:46:17.0437 0192 iPod Service - ok 14:46:17.0437 0192 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINXP\system32\DRIVERS\ipsec.sys 14:46:17.0531 0192 IPSec - ok 14:46:17.0562 0192 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINXP\system32\DRIVERS\irenum.sys 14:46:17.0609 0192 IRENUM - ok 14:46:17.0640 0192 [ 6DFB88F64135C525433E87648BDA30DE ] isapnp C:\WINXP\system32\DRIVERS\isapnp.sys 14:46:17.0750 0192 isapnp - ok 14:46:17.0765 0192 [ 71E1FC547CC488D5CD7BF0860C96F5AF ] IvtBtBUs C:\WINXP\system32\Drivers\IvtBtBus.sys 14:46:17.0781 0192 IvtBtBUs - ok 14:46:17.0828 0192 [ 0A5709543986843D37A92290B7838340 ] JavaQuickStarterService C:\Programme\Java\jre6\bin\jqs.exe 14:46:17.0843 0192 JavaQuickStarterService - ok 14:46:17.0859 0192 [ 1704D8C4C8807B889E43C649B478A452 ] Kbdclass C:\WINXP\system32\DRIVERS\kbdclass.sys 14:46:17.0953 0192 Kbdclass - ok 14:46:17.0953 0192 [ B6D6C117D771C98130497265F26D1882 ] kbdhid C:\WINXP\system32\DRIVERS\kbdhid.sys 14:46:18.0046 0192 kbdhid - ok 14:46:18.0078 0192 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINXP\system32\drivers\kmixer.sys 14:46:18.0171 0192 kmixer - ok 14:46:18.0187 0192 [ C6EBF1D6AD71DF30DB49B8D3287E1368 ] KSecDD C:\WINXP\system32\drivers\KSecDD.sys 14:46:18.0234 0192 KSecDD - ok 14:46:18.0265 0192 [ D6EB4916B203CBE525F8EFF5FD5AB16C ] LanmanServer C:\WINXP\System32\srvsvc.dll 14:46:18.0375 0192 LanmanServer - ok 14:46:18.0406 0192 [ C9B816901C1ABF28BA6C5B6CB65EB75B ] lanmanworkstation C:\WINXP\System32\wkssvc.dll 14:46:18.0437 0192 lanmanworkstation - ok 14:46:18.0437 0192 lbrtfdc - ok 14:46:18.0484 0192 [ 34D6730E198A5B0FCE0790A6B4769EF2 ] libusb0 C:\WINXP\system32\DRIVERS\libusb0.sys 14:46:18.0484 0192 libusb0 ( UnsignedFile.Multi.Generic ) - warning 14:46:18.0484 0192 libusb0 - detected UnsignedFile.Multi.Generic (1) 14:46:18.0531 0192 [ FAAB52B7766409D702B99FE5553DC34F ] LightScribeService C:\Programme\Gemeinsame Dateien\LightScribe\LSSrvc.exe 14:46:18.0531 0192 LightScribeService ( UnsignedFile.Multi.Generic ) - warning 14:46:18.0531 0192 LightScribeService - detected UnsignedFile.Multi.Generic (1) 14:46:18.0546 0192 [ 636714B7D43C8D0C80449123FD266920 ] LmHosts C:\WINXP\System32\lmhsvc.dll 14:46:18.0640 0192 LmHosts - ok 14:46:18.0671 0192 [ F0435FE3C1EC2659D2BBF073CA0752EE ] massfilter C:\WINXP\system32\DRIVERS\massfilter.sys 14:46:18.0703 0192 massfilter - ok 14:46:18.0718 0192 [ B7550A7107281D170CE85524B1488C98 ] Messenger C:\WINXP\System32\msgsvc.dll 14:46:18.0828 0192 Messenger - ok 14:46:18.0843 0192 [ 856E7D0EDEA8C1B11949E69936533CA6 ] MLPTDR_N C:\WINXP\system32\MLPTDR_N.sys 14:46:18.0890 0192 MLPTDR_N - ok 14:46:18.0921 0192 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINXP\system32\drivers\mnmdd.sys 14:46:19.0000 0192 mnmdd - ok 14:46:19.0031 0192 [ C2F1D365FD96791B037EE504868065D3 ] mnmsrvc C:\WINXP\system32\mnmsrvc.exe 14:46:19.0125 0192 mnmsrvc - ok 14:46:19.0140 0192 [ 6FB74EBD4EC57A6F1781DE3852CC3362 ] Modem C:\WINXP\system32\drivers\Modem.sys 14:46:19.0218 0192 Modem - ok 14:46:19.0234 0192 [ B24CE8005DEAB254C0251E15CB71D802 ] Mouclass C:\WINXP\system32\DRIVERS\mouclass.sys 14:46:19.0328 0192 Mouclass - ok 14:46:19.0359 0192 [ 66A6F73C74E1791464160A7065CE711A ] mouhid C:\WINXP\system32\DRIVERS\mouhid.sys 14:46:19.0437 0192 mouhid - ok 14:46:19.0453 0192 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\WINXP\system32\drivers\MountMgr.sys 14:46:19.0531 0192 MountMgr - ok 14:46:19.0578 0192 [ 9C3758018DED02F4AE53CCA1C5F084A2 ] MozillaMaintenance C:\Programme\Mozilla Maintenance Service\maintenanceservice.exe 14:46:19.0609 0192 MozillaMaintenance - ok 14:46:19.0625 0192 [ C0F8E0C2C3C0437CF37C6781896DC3EC ] MPE C:\WINXP\system32\DRIVERS\MPE.sys 14:46:19.0703 0192 MPE - ok 14:46:19.0703 0192 mraid35x - ok 14:46:19.0718 0192 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\WINXP\system32\DRIVERS\mrxdav.sys 14:46:19.0812 0192 MRxDAV - ok 14:46:19.0828 0192 [ D09B9F0B9960DD41E73127B7814C115F ] MRxSmb C:\WINXP\system32\DRIVERS\mrxsmb.sys 14:46:19.0906 0192 MRxSmb - ok 14:46:19.0953 0192 [ 35A031AF38C55F92D28AA03EE9F12CC9 ] MSDTC C:\WINXP\system32\msdtc.exe 14:46:20.0031 0192 MSDTC - ok 14:46:20.0046 0192 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINXP\system32\drivers\Msfs.sys 14:46:20.0125 0192 Msfs - ok 14:46:20.0125 0192 MSIServer - ok 14:46:20.0156 0192 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINXP\system32\drivers\MSKSSRV.sys 14:46:20.0234 0192 MSKSSRV - ok 14:46:20.0234 0192 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINXP\system32\drivers\MSPCLOCK.sys 14:46:20.0312 0192 MSPCLOCK - ok 14:46:20.0328 0192 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINXP\system32\drivers\MSPQM.sys 14:46:20.0421 0192 MSPQM - ok 14:46:20.0437 0192 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINXP\system32\DRIVERS\mssmbios.sys 14:46:20.0515 0192 mssmbios - ok 14:46:20.0531 0192 [ E53736A9E30C45FA9E7B5EAC55056D1D ] MSTEE C:\WINXP\system32\drivers\MSTEE.sys 14:46:20.0625 0192 MSTEE - ok 14:46:20.0625 0192 [ 2F625D11385B1A94360BFC70AAEFDEE1 ] Mup C:\WINXP\system32\drivers\Mup.sys 14:46:20.0718 0192 Mup - ok 14:46:20.0734 0192 [ 5B50F1B2A2ED47D560577B221DA734DB ] NABTSFEC C:\WINXP\system32\DRIVERS\NABTSFEC.sys 14:46:20.0828 0192 NABTSFEC - ok 14:46:20.0859 0192 [ 46BB15AE2AC7D025D6D2567B876817BD ] napagent C:\WINXP\System32\qagentrt.dll 14:46:20.0953 0192 napagent - ok 14:46:21.0015 0192 [ 5836B9E91863A00EC1B8E785EFD86ECB ] NBService C:\Programme\Nero\Nero 7\Nero BackItUp\NBService.exe 14:46:21.0062 0192 NBService - ok 14:46:21.0093 0192 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\WINXP\system32\drivers\NDIS.sys 14:46:21.0187 0192 NDIS - ok 14:46:21.0203 0192 [ 7FF1F1FD8609C149AA432F95A8163D97 ] NdisIP C:\WINXP\system32\DRIVERS\NdisIP.sys 14:46:21.0281 0192 NdisIP - ok 14:46:21.0296 0192 [ 1AB3D00C991AB086E69DB84B6C0ED78F ] NdisTapi C:\WINXP\system32\DRIVERS\ndistapi.sys 14:46:21.0375 0192 NdisTapi - ok 14:46:21.0390 0192 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINXP\system32\DRIVERS\ndisuio.sys 14:46:21.0484 0192 Ndisuio - ok 14:46:21.0484 0192 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\WINXP\system32\DRIVERS\ndiswan.sys 14:46:21.0578 0192 NdisWan - ok 14:46:21.0578 0192 [ 6215023940CFD3702B46ABC304E1D45A ] NDProxy C:\WINXP\system32\drivers\NDProxy.sys 14:46:21.0656 0192 NDProxy - ok 14:46:21.0656 0192 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINXP\system32\DRIVERS\netbios.sys 14:46:21.0734 0192 NetBIOS - ok 14:46:21.0765 0192 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINXP\system32\DRIVERS\netbt.sys 14:46:21.0875 0192 NetBT - ok 14:46:21.0890 0192 [ 8ACE4251BFFD09CE75679FE940E996CC ] NetDDE C:\WINXP\system32\netdde.exe 14:46:21.0984 0192 NetDDE - ok 14:46:21.0984 0192 [ 8ACE4251BFFD09CE75679FE940E996CC ] NetDDEdsdm C:\WINXP\system32\netdde.exe 14:46:22.0062 0192 NetDDEdsdm - ok 14:46:22.0078 0192 [ AFB8261B56CBA0D86AEB6DF682AF9785 ] Netlogon C:\WINXP\system32\lsass.exe 14:46:22.0171 0192 Netlogon - ok 14:46:22.0187 0192 [ E6D88F1F6745BF00B57E7855A2AB696C ] Netman C:\WINXP\System32\netman.dll 14:46:22.0281 0192 Netman - ok 14:46:22.0390 0192 [ D34612C5D02D026535B3095D620626AE ] NetTcpPortSharing C:\WINXP\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe 14:46:22.0406 0192 NetTcpPortSharing - ok 14:46:22.0421 0192 [ E9E47CFB2D461FA0FC75B7A74C6383EA ] NIC1394 C:\WINXP\system32\DRIVERS\nic1394.sys 14:46:22.0500 0192 NIC1394 - ok 14:46:22.0531 0192 [ 4AA50627B01C0E9C6B4C6BD3AF648F12 ] Nla C:\WINXP\System32\mswsock.dll 14:46:22.0562 0192 Nla - ok 14:46:22.0625 0192 [ A328A46D87BB92CE4D8A4528E9D84787 ] NMIndexingService C:\Programme\Gemeinsame Dateien\Ahead\Lib\NMIndexingService.exe 14:46:22.0656 0192 NMIndexingService - ok 14:46:22.0687 0192 [ D21FEE8DB254BA762656878168AC1DB6 ] NPF C:\WINXP\system32\DRIVERS\npf.sys 14:46:22.0703 0192 NPF ( UnsignedFile.Multi.Generic ) - warning 14:46:22.0703 0192 NPF - detected UnsignedFile.Multi.Generic (1) 14:46:22.0718 0192 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINXP\system32\drivers\Npfs.sys 14:46:22.0828 0192 Npfs - ok 14:46:22.0843 0192 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\WINXP\system32\drivers\Ntfs.sys 14:46:22.0937 0192 Ntfs - ok 14:46:22.0953 0192 [ AFB8261B56CBA0D86AEB6DF682AF9785 ] NtLmSsp C:\WINXP\system32\lsass.exe 14:46:23.0031 0192 NtLmSsp - ok 14:46:23.0046 0192 [ 56AF4064996FA5BAC9C449B1514B4770 ] NtmsSvc C:\WINXP\system32\ntmssvc.dll 14:46:23.0140 0192 NtmsSvc - ok 14:46:23.0171 0192 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINXP\system32\drivers\Null.sys 14:46:23.0250 0192 Null - ok 14:46:23.0281 0192 [ A12EC731BB00ADAD2D016D41C1F18FA4 ] NVENETFD C:\WINXP\system32\DRIVERS\NVENETFD.sys 14:46:23.0328 0192 NVENETFD - ok 14:46:23.0343 0192 [ 5DC6A149897820DE315916B6EC984EC9 ] nvnetbus C:\WINXP\system32\DRIVERS\nvnetbus.sys 14:46:23.0375 0192 nvnetbus - ok 14:46:23.0390 0192 [ F13618F0CB1E95232F4C2401592A59E9 ] nvsmu C:\WINXP\system32\DRIVERS\nvsmu.sys 14:46:23.0421 0192 nvsmu - ok 14:46:23.0421 0192 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINXP\system32\DRIVERS\nwlnkflt.sys 14:46:23.0500 0192 NwlnkFlt - ok 14:46:23.0500 0192 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINXP\system32\DRIVERS\nwlnkfwd.sys 14:46:23.0578 0192 NwlnkFwd - ok 14:46:23.0593 0192 [ CA33832DF41AFB202EE7AEB05145922F ] ohci1394 C:\WINXP\system32\DRIVERS\ohci1394.sys 14:46:23.0671 0192 ohci1394 - ok 14:46:23.0687 0192 [ F84785660305B9B903FB3BCA8BA29837 ] Parport C:\WINXP\system32\drivers\Parport.sys 14:46:23.0781 0192 Parport - ok 14:46:23.0796 0192 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINXP\system32\drivers\PartMgr.sys 14:46:23.0875 0192 PartMgr - ok 14:46:23.0890 0192 [ C2BF987829099A3EAA2CA6A0A90ECB4F ] ParVdm C:\WINXP\system32\drivers\ParVdm.sys 14:46:23.0968 0192 ParVdm - ok 14:46:24.0000 0192 [ FD2041E9BA03DB7764B2248F02475079 ] pccsmcfd C:\WINXP\system32\DRIVERS\pccsmcfd.sys 14:46:24.0031 0192 pccsmcfd - ok 14:46:24.0046 0192 [ 387E8DEDC343AA2D1EFBC30580273ACD ] PCI C:\WINXP\system32\DRIVERS\pci.sys 14:46:24.0140 0192 PCI - ok 14:46:24.0140 0192 PCIDump - ok 14:46:24.0140 0192 [ 59BA86D9A61CBCF4DF8E598C331F5B82 ] PCIIde C:\WINXP\system32\DRIVERS\pciide.sys 14:46:24.0218 0192 PCIIde - ok 14:46:24.0234 0192 [ A2A966B77D61847D61A3051DF87C8C97 ] Pcmcia C:\WINXP\system32\drivers\Pcmcia.sys 14:46:24.0328 0192 Pcmcia - ok 14:46:24.0343 0192 [ 5B6C11DE7E839C05248CED8825470FEF ] pcouffin C:\WINXP\system32\Drivers\pcouffin.sys 14:46:24.0359 0192 pcouffin ( UnsignedFile.Multi.Generic ) - warning 14:46:24.0359 0192 pcouffin - detected UnsignedFile.Multi.Generic (1) 14:46:24.0359 0192 PDCOMP - ok 14:46:24.0359 0192 PDFRAME - ok 14:46:24.0359 0192 PDRELI - ok 14:46:24.0375 0192 PDRFRAME - ok 14:46:24.0375 0192 perc2 - ok 14:46:24.0375 0192 perc2hib - ok 14:46:24.0390 0192 [ F0A7D59AF279326528715B206669B86C ] PlugPlay C:\WINXP\system32\services.exe 14:46:24.0406 0192 PlugPlay - ok 14:46:24.0406 0192 [ AFB8261B56CBA0D86AEB6DF682AF9785 ] PolicyAgent C:\WINXP\system32\lsass.exe 14:46:24.0484 0192 PolicyAgent - ok 14:46:24.0484 0192 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINXP\system32\DRIVERS\raspptp.sys 14:46:24.0562 0192 PptpMiniport - ok 14:46:24.0562 0192 [ 2CB55427C58679F49AD600FCCBA76360 ] Processor C:\WINXP\system32\DRIVERS\processr.sys 14:46:24.0640 0192 Processor - ok 14:46:24.0656 0192 [ AFB8261B56CBA0D86AEB6DF682AF9785 ] ProtectedStorage C:\WINXP\system32\lsass.exe 14:46:24.0734 0192 ProtectedStorage - ok 14:46:24.0734 0192 [ 09298EC810B07E5D582CB3A3F9255424 ] PSched C:\WINXP\system32\DRIVERS\psched.sys 14:46:24.0812 0192 PSched - ok 14:46:24.0843 0192 [ A6A7AD767BF5141665F5C675F671B3E1 ] PSI_SVC_2 C:\Programme\Gemeinsame Dateien\Protexis\License Service\PsiService_2.exe 14:46:24.0859 0192 PSI_SVC_2 - ok 14:46:24.0875 0192 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINXP\system32\DRIVERS\ptilink.sys 14:46:24.0953 0192 Ptilink - ok 14:46:24.0968 0192 [ E42E3433DBB4CFFE8FDD91EAB29AEA8E ] PxHelp20 C:\WINXP\system32\Drivers\PxHelp20.sys 14:46:40.0140 0192 PxHelp20 - ok 14:46:40.0140 0192 ql1080 - ok 14:46:40.0156 0192 Ql10wnt - ok 14:46:40.0156 0192 ql12160 - ok 14:46:40.0156 0192 ql1240 - ok 14:46:40.0156 0192 ql1280 - ok 14:46:40.0171 0192 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINXP\system32\DRIVERS\rasacd.sys 14:46:40.0250 0192 RasAcd - ok 14:46:40.0281 0192 [ F5BA6CACCDB66C8F048E867563203246 ] RasAuto C:\WINXP\System32\rasauto.dll 14:46:40.0375 0192 RasAuto - ok 14:46:40.0390 0192 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINXP\system32\DRIVERS\rasl2tp.sys 14:46:40.0484 0192 Rasl2tp - ok 14:46:40.0500 0192 [ F9A7B66EA345726EDB5862A46B1ECCD5 ] RasMan C:\WINXP\System32\rasmans.dll 14:46:40.0578 0192 RasMan - ok 14:46:40.0593 0192 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\WINXP\system32\DRIVERS\raspppoe.sys 14:46:40.0671 0192 RasPppoe - ok 14:46:40.0671 0192 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINXP\system32\DRIVERS\raspti.sys 14:46:40.0750 0192 Raspti - ok 14:46:40.0781 0192 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\WINXP\system32\DRIVERS\rdbss.sys 14:46:40.0859 0192 Rdbss - ok 14:46:40.0875 0192 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINXP\system32\DRIVERS\RDPCDD.sys 14:46:40.0937 0192 RDPCDD - ok 14:46:40.0968 0192 [ 15CABD0F7C00C47C70124907916AF3F1 ] rdpdr C:\WINXP\system32\DRIVERS\rdpdr.sys 14:46:41.0062 0192 rdpdr - ok 14:46:41.0078 0192 [ 6728E45B66F93C08F11DE2E316FC70DD ] RDPWD C:\WINXP\system32\drivers\RDPWD.sys 14:46:41.0156 0192 RDPWD - ok 14:46:41.0171 0192 [ 263AF18AF0F3DB99F574C95F284CCEC9 ] RDSessMgr C:\WINXP\system32\sessmgr.exe 14:46:41.0281 0192 RDSessMgr - ok 14:46:41.0296 0192 [ ED761D453856F795A7FE056E42C36365 ] redbook C:\WINXP\system32\DRIVERS\redbook.sys 14:46:41.0375 0192 redbook - ok 14:46:41.0406 0192 [ 0E97EC96D6942CEEC2D188CC2EB69A01 ] RemoteAccess C:\WINXP\System32\mprdim.dll 14:46:41.0484 0192 RemoteAccess - ok 14:46:41.0500 0192 [ E4CD1F3D84E1C2CA0B8CF7501E201593 ] RemoteRegistry C:\WINXP\system32\regsvc.dll 14:46:41.0593 0192 RemoteRegistry - ok 14:46:41.0625 0192 [ 851C30DF2807FCFA21E4C681A7D6440E ] RFCOMM C:\WINXP\system32\DRIVERS\rfcomm.sys 14:46:41.0703 0192 RFCOMM - ok 14:46:41.0718 0192 [ 2A02E21867497DF20B8FC95631395169 ] RpcLocator C:\WINXP\system32\locator.exe 14:46:41.0796 0192 RpcLocator - ok 14:46:41.0828 0192 [ D3D765E8455A961AE567B408F767D4F9 ] RpcSs C:\WINXP\system32\rpcss.dll 14:46:41.0843 0192 RpcSs - ok 14:46:41.0859 0192 [ 4BDD71B4B521521499DFD14735C4F398 ] RSVP C:\WINXP\system32\rsvp.exe 14:46:41.0937 0192 RSVP - ok 14:46:41.0984 0192 [ 59757FE605EDEEFD8AA9EAD819AA38E2 ] RTL2832UBDA C:\WINXP\system32\drivers\RTL2832UBDA.sys 14:46:42.0015 0192 RTL2832UBDA - ok 14:46:42.0015 0192 [ 5D1E47E9D6204D09FC94223C4E1E15D0 ] RTL2832UUSB C:\WINXP\system32\Drivers\RTL2832UUSB.sys 14:46:42.0031 0192 RTL2832UUSB - ok 14:46:42.0062 0192 [ ADAC790BAA89AC1FEE08DEEF67D18F5C ] RTL2832U_IRHID C:\WINXP\system32\DRIVERS\RTL2832U_IRHID.sys 14:46:42.0062 0192 RTL2832U_IRHID - ok 14:46:42.0125 0192 [ 2E2E3A2D1BA5E540C32558F3F37D33E3 ] RTL8187B C:\WINXP\system32\DRIVERS\RTL8187B.sys 14:46:42.0156 0192 RTL8187B - ok 14:46:42.0187 0192 [ AFB8261B56CBA0D86AEB6DF682AF9785 ] SamSs C:\WINXP\system32\lsass.exe 14:46:42.0250 0192 SamSs - ok 14:46:42.0265 0192 [ DCEC079FAD95D36C8DD5CB6D779DFE32 ] SCardSvr C:\WINXP\System32\SCardSvr.exe 14:46:42.0359 0192 SCardSvr - ok 14:46:42.0375 0192 [ A050194A44D7FA8D7186ED2F4E8367AE ] Schedule C:\WINXP\system32\schedsvc.dll 14:46:42.0500 0192 Schedule - ok 14:46:42.0515 0192 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINXP\system32\DRIVERS\secdrv.sys 14:46:42.0546 0192 Secdrv - ok 14:46:42.0578 0192 [ BEE4CFD1D48C23B44CF4B974B0B79B2B ] seclogon C:\WINXP\System32\seclogon.dll 14:46:42.0640 0192 seclogon - ok 14:46:42.0656 0192 [ 2AAC9B6ED9EDDFFB721D6452E34D67E3 ] SENS C:\WINXP\system32\sens.dll 14:46:42.0718 0192 SENS - ok 14:46:42.0734 0192 [ 0F29512CCD6BEAD730039FB4BD2C85CE ] serenum C:\WINXP\system32\DRIVERS\serenum.sys 14:46:42.0828 0192 serenum - ok 14:46:42.0843 0192 [ CF24EB4F0412C82BCD1F4F35A025E31D ] Serial C:\WINXP\system32\drivers\Serial.sys 14:46:42.0921 0192 Serial - ok 14:46:42.0984 0192 [ 12B41D84A4D058ADC60853C365DBFCCA ] ServiceLayer C:\Programme\PC Connectivity Solution\ServiceLayer.exe 14:46:43.0031 0192 ServiceLayer ( UnsignedFile.Multi.Generic ) - warning 14:46:43.0031 0192 ServiceLayer - detected UnsignedFile.Multi.Generic (1) 14:46:43.0062 0192 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINXP\system32\DRIVERS\sfloppy.sys 14:46:43.0125 0192 Sfloppy - ok 14:46:43.0156 0192 [ CAD058D5F8B889A87CA3EB3CF624DCEF ] SharedAccess C:\WINXP\System32\ipnathlp.dll 14:46:43.0250 0192 SharedAccess - ok 14:46:43.0250 0192 [ 40602EBFBE06AA075C8E4560743F6883 ] ShellHWDetection C:\WINXP\System32\shsvcs.dll 14:46:43.0328 0192 ShellHWDetection - ok 14:46:43.0328 0192 Simbad - ok 14:46:43.0359 0192 [ 866D538EBE33709A5C9F5C62B73B7D14 ] SLIP C:\WINXP\system32\DRIVERS\SLIP.sys 14:46:43.0437 0192 SLIP - ok 14:46:43.0468 0192 [ 4945020BC094C322571184A6E8056B3A ] SolidWorks Licensing Service C:\Programme\Gemeinsame Dateien\SolidWorks Shared\Service\SolidWorksLicensing.exe 14:46:43.0484 0192 SolidWorks Licensing Service ( UnsignedFile.Multi.Generic ) - warning 14:46:43.0484 0192 SolidWorks Licensing Service - detected UnsignedFile.Multi.Generic (1) 14:46:43.0484 0192 Sparrow - ok 14:46:43.0515 0192 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINXP\system32\drivers\splitter.sys 14:46:43.0593 0192 splitter - ok 14:46:43.0593 0192 [ 39356A9CDB6753A6D13A4072A9F5A4BB ] Spooler C:\WINXP\system32\spoolsv.exe 14:46:43.0671 0192 Spooler - ok 14:46:43.0718 0192 [ CDDDEC541BC3C96F91ECB48759673505 ] sptd C:\WINXP\system32\Drivers\sptd.sys 14:46:43.0718 0192 Suspicious file (NoAccess): C:\WINXP\system32\Drivers\sptd.sys. md5: CDDDEC541BC3C96F91ECB48759673505 14:46:43.0718 0192 sptd ( LockedFile.Multi.Generic ) - warning 14:46:43.0718 0192 sptd - detected LockedFile.Multi.Generic (1) 14:46:43.0750 0192 [ 50FA898F8C032796D3B1B9951BB5A90F ] sr C:\WINXP\system32\DRIVERS\sr.sys 14:46:43.0781 0192 sr - ok 14:46:43.0812 0192 [ FE77A85495065F3AD59C5C65B6C54182 ] srservice C:\WINXP\system32\srsvc.dll 14:46:43.0859 0192 srservice - ok 14:46:43.0875 0192 [ 30EFED0C77D59AE0CACB0B5C756767ED ] Srv C:\WINXP\system32\DRIVERS\srv.sys 14:46:43.0921 0192 Srv - ok 14:46:43.0953 0192 [ 4DF5B05DFAEC29E13E1ED6F6EE12C500 ] SSDPSRV C:\WINXP\System32\ssdpsrv.dll 14:46:44.0000 0192 SSDPSRV - ok 14:46:44.0015 0192 [ A36EE93698802CD899F98BFD553D8185 ] ssmdrv C:\WINXP\system32\DRIVERS\ssmdrv.sys 14:46:44.0031 0192 ssmdrv - ok 14:46:44.0062 0192 [ BC2C5985611C5356B24AEB370953DED9 ] stisvc C:\WINXP\system32\wiaservc.dll 14:46:44.0156 0192 stisvc - ok 14:46:44.0171 0192 [ 77813007BA6265C4B6098187E6ED79D2 ] streamip C:\WINXP\system32\DRIVERS\StreamIP.sys 14:46:44.0250 0192 streamip - ok 14:46:44.0265 0192 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINXP\system32\DRIVERS\swenum.sys 14:46:44.0359 0192 swenum - ok 14:46:44.0375 0192 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINXP\system32\drivers\swmidi.sys 14:46:44.0453 0192 swmidi - ok 14:46:44.0453 0192 SwPrv - ok 14:46:44.0453 0192 symc810 - ok 14:46:44.0468 0192 symc8xx - ok 14:46:44.0468 0192 sym_hi - ok 14:46:44.0468 0192 sym_u3 - ok 14:46:44.0484 0192 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINXP\system32\drivers\sysaudio.sys 14:46:44.0578 0192 sysaudio - ok 14:46:44.0593 0192 [ 2903FFFA2523926D6219428040DCE6B9 ] SysmonLog C:\WINXP\system32\smlogsvc.exe 14:46:44.0687 0192 SysmonLog - ok 14:46:44.0703 0192 [ 05903CAC4B98908D55EA5774775B382E ] TapiSrv C:\WINXP\System32\tapisrv.dll 14:46:44.0796 0192 TapiSrv - ok 14:46:44.0828 0192 [ 74D4299CDC4CF748EFEF725C2206E135 ] tbhsd C:\WINXP\system32\drivers\tbhsd.sys 14:46:44.0843 0192 tbhsd - ok 14:46:44.0875 0192 [ AD978A1B783B5719720CFF204B666C8E ] Tcpip C:\WINXP\system32\DRIVERS\tcpip.sys 14:46:44.0921 0192 Tcpip - ok 14:46:44.0937 0192 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINXP\system32\drivers\TDPIPE.sys 14:46:45.0015 0192 TDPIPE - ok 14:46:45.0031 0192 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\WINXP\system32\drivers\TDTCP.sys 14:46:45.0109 0192 TDTCP - ok 14:46:45.0125 0192 [ 88155247177638048422893737429D9E ] TermDD C:\WINXP\system32\DRIVERS\termdd.sys 14:46:45.0203 0192 TermDD - ok 14:46:45.0234 0192 [ B7DE02C863D8F5A005A7BF375375A6A4 ] TermService C:\WINXP\System32\termsrv.dll 14:46:45.0328 0192 TermService - ok 14:46:45.0343 0192 [ 40602EBFBE06AA075C8E4560743F6883 ] Themes C:\WINXP\System32\shsvcs.dll 14:46:45.0421 0192 Themes - ok 14:46:45.0421 0192 [ 03681A1CE77F51586903869A5AB1DEAB ] TlntSvr C:\WINXP\system32\tlntsvr.exe 14:46:45.0468 0192 TlntSvr - ok 14:46:45.0468 0192 TosIde - ok 14:46:45.0484 0192 [ 626504572B175867F30F3215C04B3E2F ] TrkWks C:\WINXP\system32\trkwks.dll 14:46:45.0562 0192 TrkWks - ok 14:46:45.0593 0192 [ 228D8E60BC9C5238587B0BF1654EC580 ] U2SP C:\WINXP\system32\DRIVERS\u2s2kxp.sys 14:46:45.0609 0192 U2SP - ok 14:46:45.0640 0192 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINXP\system32\drivers\Udfs.sys 14:46:45.0734 0192 Udfs - ok 14:46:45.0734 0192 ultra - ok 14:46:45.0781 0192 [ BB879DCFD22926EFBEB3298129898CBB ] UnlockerDriver5 C:\Programme\Unlocker\UnlockerDriver5.sys 14:46:45.0781 0192 UnlockerDriver5 ( UnsignedFile.Multi.Generic ) - warning 14:46:45.0781 0192 UnlockerDriver5 - detected UnsignedFile.Multi.Generic (1) 14:46:45.0796 0192 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINXP\system32\DRIVERS\update.sys 14:46:45.0921 0192 Update - ok 14:46:45.0953 0192 [ 1DFD8975D8C89214B98D9387C1125B49 ] upnphost C:\WINXP\System32\upnphost.dll 14:46:46.0000 0192 upnphost - ok 14:46:46.0031 0192 [ 0CCADC7391021376EDBB8AA649D04E68 ] upperdev C:\WINXP\system32\DRIVERS\usbser_lowerflt.sys 14:46:46.0265 0192 upperdev - ok 14:46:46.0281 0192 [ 9B11E6118958E63E1FEF129466E2BDA7 ] UPS C:\WINXP\System32\ups.exe 14:46:46.0359 0192 UPS - ok 14:46:46.0390 0192 [ 8BF5D980CDCE35FB26F05047144BB57E ] USBAAPL C:\WINXP\system32\Drivers\usbaapl.sys 14:46:46.0421 0192 USBAAPL - ok 14:46:46.0453 0192 [ E919708DB44ED8543A7C017953148330 ] usbaudio C:\WINXP\system32\drivers\usbaudio.sys 14:46:46.0546 0192 usbaudio - ok 14:46:46.0593 0192 [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp C:\WINXP\system32\DRIVERS\usbccgp.sys 14:46:46.0687 0192 usbccgp - ok 14:46:46.0703 0192 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci C:\WINXP\system32\DRIVERS\usbehci.sys 14:46:46.0781 0192 usbehci - ok 14:46:46.0812 0192 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINXP\system32\DRIVERS\usbhub.sys 14:46:46.0906 0192 usbhub - ok 14:46:46.0921 0192 [ 0DAECCE65366EA32B162F85F07C6753B ] usbohci C:\WINXP\system32\DRIVERS\usbohci.sys 14:46:47.0000 0192 usbohci - ok 14:46:47.0015 0192 [ A717C8721046828520C9EDF31288FC00 ] usbprint C:\WINXP\system32\DRIVERS\usbprint.sys 14:46:47.0093 0192 usbprint - ok 14:46:47.0140 0192 [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan C:\WINXP\system32\DRIVERS\usbscan.sys 14:46:47.0218 0192 usbscan - ok 14:46:47.0250 0192 [ 1C888B000C2F9492F4B15B5B6B84873E ] usbser C:\WINXP\system32\drivers\usbser.sys 14:46:47.0328 0192 usbser - ok 14:46:47.0328 0192 [ 68B4F83CCCF70A2FF32EE142C234332A ] UsbserFilt C:\WINXP\system32\DRIVERS\usbser_lowerfltj.sys 14:46:47.0406 0192 UsbserFilt - ok 14:46:47.0421 0192 [ A32426D9B14A089EAA1D922E0C5801A9 ] usbstor C:\WINXP\system32\DRIVERS\USBSTOR.SYS 14:46:47.0515 0192 usbstor - ok 14:46:47.0515 0192 VComm - ok 14:46:47.0531 0192 VcommMgr - ok 14:46:47.0562 0192 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINXP\System32\drivers\vga.sys 14:46:47.0656 0192 VgaSave - ok 14:46:47.0656 0192 ViaIde - ok 14:46:47.0718 0192 [ C6E18C3B43378AE3FCECDFF0F0BB7BE7 ] VMCService C:\Programme\Vodafone\Vodafone Mobile Connect\Bin\VMCService.exe 14:46:47.0718 0192 VMCService ( UnsignedFile.Multi.Generic ) - warning 14:46:47.0718 0192 VMCService - detected UnsignedFile.Multi.Generic (1) 14:46:47.0765 0192 [ 590C7A3A1133E51A7E1CEF67366E75AF ] vmm C:\WINXP\system32\Drivers\vmm.sys 14:46:47.0765 0192 vmm - ok 14:46:47.0781 0192 [ A5A712F4E880874A477AF790B5186E1D ] VolSnap C:\WINXP\system32\drivers\VolSnap.sys 14:46:47.0859 0192 VolSnap - ok 14:46:47.0906 0192 [ F96A678DEBDCCB0B4BB7F38CB2580589 ] VPCNetS2 C:\WINXP\system32\DRIVERS\VMNetSrv.sys 14:46:47.0906 0192 VPCNetS2 - ok 14:46:47.0937 0192 [ 68F106273BE29E7B7EF8266977268E78 ] VSS C:\WINXP\System32\vssvc.exe 14:46:47.0984 0192 VSS - ok 14:46:48.0000 0192 [ 7B353059E665F8B7AD2BBEAEF597CF45 ] W32Time C:\WINXP\system32\w32time.dll 14:46:48.0078 0192 W32Time - ok 14:46:48.0125 0192 [ B57979148638F84E54B6441F085F2584 ] W700bus C:\WINXP\system32\DRIVERS\W700bus.sys 14:46:48.0171 0192 W700bus - ok 14:46:48.0187 0192 [ 82DC8E5CC926FFE07ED5E54B98B4C652 ] W700mdfl C:\WINXP\system32\DRIVERS\W700mdfl.sys 14:46:48.0218 0192 W700mdfl - ok 14:46:48.0234 0192 [ A021DE85658CB97009EFE50EB1849672 ] W700mdm C:\WINXP\system32\DRIVERS\W700mdm.sys 14:46:48.0250 0192 W700mdm - ok 14:46:48.0250 0192 [ 1308F53761623DFE30733073A13B677B ] W700mgmt C:\WINXP\system32\DRIVERS\W700mgmt.sys 14:46:48.0281 0192 W700mgmt - ok 14:46:48.0281 0192 [ 725AED977F8B8155D8F3A424E435BE63 ] W700obex C:\WINXP\system32\DRIVERS\W700obex.sys 14:46:48.0296 0192 W700obex - ok 14:46:48.0312 0192 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINXP\system32\DRIVERS\wanarp.sys 14:46:48.0390 0192 Wanarp - ok 14:46:48.0421 0192 [ D918617B46457B9AC28027722E30F647 ] Wdf01000 C:\WINXP\system32\Drivers\wdf01000.sys 14:46:48.0468 0192 Wdf01000 - ok 14:46:48.0468 0192 WDICA - ok 14:46:48.0484 0192 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINXP\system32\drivers\wdmaud.sys 14:46:48.0562 0192 wdmaud - ok 14:46:48.0578 0192 [ 81727C9873E3905A2FFC1EBD07265002 ] WebClient C:\WINXP\System32\webclnt.dll 14:46:48.0656 0192 WebClient - ok 14:46:48.0687 0192 [ 94E4312D546048BF31604A8B2AD13FC0 ] WinDriver6 C:\WINXP\system32\drivers\windrvr6.sys 14:46:48.0703 0192 WinDriver6 ( UnsignedFile.Multi.Generic ) - warning 14:46:48.0703 0192 WinDriver6 - detected UnsignedFile.Multi.Generic (1) 14:46:48.0781 0192 [ 6F3F3973D97714CC5F906A19FE883729 ] winmgmt C:\WINXP\system32\wbem\WMIsvc.dll 14:46:48.0890 0192 winmgmt - ok 14:46:48.0968 0192 [ F3EDC9909A02E6BCA863EB702D37B505 ] WinVNC4 D:\VLCC\VNC4\WinVNC4.exe 14:46:49.0015 0192 WinVNC4 - ok 14:46:49.0031 0192 [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN C:\WINXP\system32\mspmsnsv.dll 14:46:49.0062 0192 WmdmPmSN - ok 14:46:49.0093 0192 [ 57FA31A965D8FC3172641A93618FBE9E ] Wmi C:\WINXP\System32\advapi32.dll 14:46:49.0140 0192 Wmi - ok 14:46:49.0156 0192 [ C42584FD66CE9E17403AEBCA199F7BDB ] WmiAcpi C:\WINXP\system32\DRIVERS\wmiacpi.sys 14:46:49.0234 0192 WmiAcpi - ok 14:46:49.0250 0192 [ 93908111BA57A6E60EC2FA2DE202105C ] WmiApSrv C:\WINXP\system32\wbem\wmiapsrv.exe 14:46:49.0328 0192 WmiApSrv - ok 14:46:49.0390 0192 [ BF05650BB7DF5E9EBDD25974E22403BB ] WMPNetworkSvc C:\Programme\Windows Media Player\WMPNetwk.exe 14:46:49.0453 0192 WMPNetworkSvc - ok 14:46:49.0484 0192 [ CF4DEF1BF66F06964DC0D91844239104 ] WpdUsb C:\WINXP\system32\DRIVERS\wpdusb.sys 14:46:49.0484 0192 WpdUsb - ok 14:46:49.0593 0192 [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\WINXP\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe 14:46:49.0640 0192 WPFFontCache_v0400 - ok 14:46:49.0671 0192 [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] WS2IFSL C:\WINXP\System32\drivers\ws2ifsl.sys 14:46:49.0750 0192 WS2IFSL - ok 14:46:49.0765 0192 [ 300B3E84FAF1A5C1F791C159BA28035D ] wscsvc C:\WINXP\system32\wscsvc.dll 14:46:49.0859 0192 wscsvc - ok 14:46:49.0875 0192 [ C98B39829C2BBD34E454150633C62C78 ] WSTCODEC C:\WINXP\system32\DRIVERS\WSTCODEC.SYS 14:46:49.0953 0192 WSTCODEC - ok 14:46:49.0984 0192 [ 7B4FE05202AA6BF9F4DFD0E6A0D8A085 ] wuauserv C:\WINXP\system32\wuauserv.dll 14:46:50.0062 0192 wuauserv - ok 14:46:50.0093 0192 [ EAA6324F51214D2F6718977EC9CE0DEF ] WudfPf C:\WINXP\system32\DRIVERS\WudfPf.sys 14:46:50.0140 0192 WudfPf - ok 14:46:50.0156 0192 [ F91FF1E51FCA30B3C3981DB7D5924252 ] WudfRd C:\WINXP\system32\DRIVERS\wudfrd.sys 14:46:50.0171 0192 WudfRd - ok 14:46:50.0203 0192 [ DDEE3682FE97037C45F4D7AB467CB8B6 ] WudfSvc C:\WINXP\System32\WUDFSvc.dll 14:46:50.0234 0192 WudfSvc - ok 14:46:50.0265 0192 [ C4F109C005F6725162D2D12CA751E4A7 ] WZCSVC C:\WINXP\System32\wzcsvc.dll 14:46:50.0406 0192 WZCSVC - ok 14:46:50.0437 0192 [ 0ADA34871A2E1CD2CAAFED1237A47750 ] xmlprov C:\WINXP\System32\xmlprov.dll 14:46:50.0515 0192 xmlprov - ok 14:46:50.0546 0192 [ C2215C6ADA8B1E9FEB507CEE9B446661 ] ZTEusbmdm6k C:\WINXP\system32\DRIVERS\ZTEusbmdm6k.sys 14:46:50.0609 0192 ZTEusbmdm6k - ok 14:46:50.0625 0192 [ 9862F9D2FF50AE748ED42C022E6AAC15 ] ZTEusbnet C:\WINXP\system32\DRIVERS\ZTEusbnet.sys 14:46:50.0656 0192 ZTEusbnet - ok 14:46:50.0656 0192 [ F16CE3C7690AB7426DC96520D54A737E ] ZTEusbnmea C:\WINXP\system32\DRIVERS\ZTEusbnmea.sys 14:46:50.0703 0192 ZTEusbnmea - ok 14:46:50.0718 0192 [ C2215C6ADA8B1E9FEB507CEE9B446661 ] ZTEusbser6k C:\WINXP\system32\DRIVERS\ZTEusbser6k.sys 14:46:50.0734 0192 ZTEusbser6k - ok 14:46:50.0734 0192 [ F16CE3C7690AB7426DC96520D54A737E ] ZTEusbvoice C:\WINXP\system32\DRIVERS\ZTEusbvoice.sys 14:46:50.0750 0192 ZTEusbvoice - ok 14:46:50.0765 0192 ================ Scan global =============================== 14:46:50.0796 0192 [ 2C60091CA5F67C3032EAB3B30390C27F ] C:\WINXP\system32\basesrv.dll 14:46:50.0812 0192 [ 4CD408F799D4A72B0DE1F1116A77A48E ] C:\WINXP\system32\winsrv.dll 14:46:50.0843 0192 [ 4CD408F799D4A72B0DE1F1116A77A48E ] C:\WINXP\system32\winsrv.dll 14:46:50.0859 0192 [ F0A7D59AF279326528715B206669B86C ] C:\WINXP\system32\services.exe 14:46:50.0875 0192 [Global] - ok 14:46:50.0875 0192 ================ Scan MBR ================================== 14:46:50.0890 0192 [ 72B8CE41AF0DE751C946802B3ED844B4 ] \Device\Harddisk0\DR0 14:46:51.0359 0192 \Device\Harddisk0\DR0 - ok 14:46:51.0359 0192 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk5\DR11 14:46:51.0703 0192 \Device\Harddisk5\DR11 - ok 14:46:51.0703 0192 ================ Scan VBR ================================== 14:46:51.0703 0192 [ 322E58D03A9962F8F07BEB3F98C548E7 ] \Device\Harddisk0\DR0\Partition1 14:46:51.0703 0192 \Device\Harddisk0\DR0\Partition1 - ok 14:46:51.0718 0192 [ C3459D99BA4D1C6DB383BBF9C796422D ] \Device\Harddisk0\DR0\Partition2 14:46:51.0734 0192 \Device\Harddisk0\DR0\Partition2 - ok 14:46:51.0734 0192 [ 53F018DC5C8AF3F547C563CA3205B6FF ] \Device\Harddisk5\DR11\Partition1 14:46:51.0734 0192 \Device\Harddisk5\DR11\Partition1 - ok 14:46:51.0734 0192 ============================================================ 14:46:51.0734 0192 Scan finished 14:46:51.0734 0192 ============================================================ 14:46:51.0859 4188 Detected object count: 19 14:46:51.0859 4188 Actual detected object count: 19 14:47:37.0109 4188 AegisP ( UnsignedFile.Multi.Generic ) - skipped by user 14:47:37.0109 4188 AegisP ( UnsignedFile.Multi.Generic ) - User select action: Skip 14:47:37.0109 4188 androidusb ( UnsignedFile.Multi.Generic ) - skipped by user 14:47:37.0109 4188 androidusb ( UnsignedFile.Multi.Generic ) - User select action: Skip 14:47:37.0109 4188 Aspi32 ( UnsignedFile.Multi.Generic ) - skipped by user 14:47:37.0109 4188 Aspi32 ( UnsignedFile.Multi.Generic ) - User select action: Skip 14:47:37.0109 4188 AVM IGD CTRL Service ( UnsignedFile.Multi.Generic ) - skipped by user 14:47:37.0109 4188 AVM IGD CTRL Service ( UnsignedFile.Multi.Generic ) - User select action: Skip 14:47:37.0109 4188 de_serv ( UnsignedFile.Multi.Generic ) - skipped by user 14:47:37.0109 4188 de_serv ( UnsignedFile.Multi.Generic ) - User select action: Skip 14:47:37.0109 4188 Dokan ( UnsignedFile.Multi.Generic ) - skipped by user 14:47:37.0109 4188 Dokan ( UnsignedFile.Multi.Generic ) - User select action: Skip 14:47:37.0109 4188 DokanMounter ( UnsignedFile.Multi.Generic ) - skipped by user 14:47:37.0109 4188 DokanMounter ( UnsignedFile.Multi.Generic ) - User select action: Skip 14:47:37.0109 4188 EMSLink ( UnsignedFile.Multi.Generic ) - skipped by user 14:47:37.0109 4188 EMSLink ( UnsignedFile.Multi.Generic ) - User select action: Skip 14:47:37.0109 4188 iMSPCLOj ( UnsignedFile.Multi.Generic ) - skipped by user 14:47:37.0109 4188 iMSPCLOj ( UnsignedFile.Multi.Generic ) - User select action: Skip 14:47:37.0109 4188 libusb0 ( UnsignedFile.Multi.Generic ) - skipped by user 14:47:37.0109 4188 libusb0 ( UnsignedFile.Multi.Generic ) - User select action: Skip 14:47:37.0109 4188 LightScribeService ( UnsignedFile.Multi.Generic ) - skipped by user 14:47:37.0109 4188 LightScribeService ( UnsignedFile.Multi.Generic ) - User select action: Skip 14:47:37.0109 4188 NPF ( UnsignedFile.Multi.Generic ) - skipped by user 14:47:37.0109 4188 NPF ( UnsignedFile.Multi.Generic ) - User select action: Skip 14:47:37.0125 4188 pcouffin ( UnsignedFile.Multi.Generic ) - skipped by user 14:47:37.0125 4188 pcouffin ( UnsignedFile.Multi.Generic ) - User select action: Skip 14:47:37.0125 4188 ServiceLayer ( UnsignedFile.Multi.Generic ) - skipped by user 14:47:37.0125 4188 ServiceLayer ( UnsignedFile.Multi.Generic ) - User select action: Skip 14:47:37.0125 4188 SolidWorks Licensing Service ( UnsignedFile.Multi.Generic ) - skipped by user 14:47:37.0125 4188 SolidWorks Licensing Service ( UnsignedFile.Multi.Generic ) - User select action: Skip 14:47:37.0125 4188 sptd ( LockedFile.Multi.Generic ) - skipped by user 14:47:37.0125 4188 sptd ( LockedFile.Multi.Generic ) - User select action: Skip 14:47:37.0125 4188 UnlockerDriver5 ( UnsignedFile.Multi.Generic ) - skipped by user 14:47:37.0125 4188 UnlockerDriver5 ( UnsignedFile.Multi.Generic ) - User select action: Skip 14:47:37.0125 4188 VMCService ( UnsignedFile.Multi.Generic ) - skipped by user 14:47:37.0125 4188 VMCService ( UnsignedFile.Multi.Generic ) - User select action: Skip 14:47:37.0125 4188 WinDriver6 ( UnsignedFile.Multi.Generic ) - skipped by user 14:47:37.0125 4188 WinDriver6 ( UnsignedFile.Multi.Generic ) - User select action: Skip 14:47:42.0890 5956 Deinitialize success |
hi combofix: Combofix darf ausschließlich ausgeführt werden, wenn dies von einem Team Mitglied angewiesen wurde!Downloade dir bitte Combofix von einem dieser Downloadspiegel Link 1 Link 2 WICHTIG - Speichere Combofix auf deinem Desktop
Wenn Combofix fertig ist, wird es eine Logfile erstellen. Bitte poste die C:\Combofix.txt in deiner nächsten Antwort. Hinweis: Solltest du nach dem Neustart folgende Fehlermeldung erhalten Zitat:
|
So fertig! Combofix Logfile: Code: ComboFix 13-01-23.01 - Andy 23.01.2013 15:39:49.1.4 - x86 |
hi öffne mal bitte c: qoobox rechtsklick, quarantain, packe es mit winrar, oder zip, lade es dann hoch: Trojaner-Board Upload Channel teile mir bitte mit, wenn fertig. |
Is upgeloadet! Danke noch für die Hilfe! |
hatt leider net geklappt File-Upload.net - Ihr kostenloser File Hoster! da mal bitte hochladen, link als private nachicht an mich |
hi, danke malwarebytes: Downloade Dir bitte Malwarebytes
|
Hab es mal trüber laufen lassen! Das mit der Openbox Software kann ich nicht ganz verstehen die Software war damals beim Sat receiver dabei und ist zum Programm und sendelisten editiren! Hab die Software seit ca.2008 und mitlerweile am 3PC hab aber jetzt trotzdem mal in quarantäne geschoben! Hier der Log Malwarebytes Anti-Malware (Test) 1.70.0.1100 www.malwarebytes.org Datenbank Version: v2013.01.25.07 Windows XP Service Pack 3 x86 NTFS Internet Explorer 8.0.6001.18702 Andy :: MEDIABOX [Administrator] Schutz: Deaktiviert 25.01.2013 20:02:54 mbam-log-2013-01-25 (20-02-54).txt Art des Suchlaufs: Vollständiger Suchlauf (C:\|D:\|) Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM Deaktivierte Suchlaufeinstellungen: P2P Durchsuchte Objekte: 402304 Laufzeit: 1 Stunde(n), 25 Minute(n), 29 Sekunde(n) Infizierte Speicherprozesse: 0 (Keine bösartigen Objekte gefunden) Infizierte Speichermodule: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungsschlüssel: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungswerte: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateiobjekte der Registrierung: 0 (Keine bösartigen Objekte gefunden) Infizierte Verzeichnisse: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateien: 9 D:\System Volume Information\_restore{7EC18A29-9B24-4EC2-B058-65800773F519}\RP525\A0123537.exe (HackTool.GamesCheat.Gen) -> Erfolgreich gelöscht und in Quarantäne gestellt. D:\Daten pyranja PC\Bilder Videos alter PC\gags\NICETOHAVE\STRESSZOLDO.EXE (Joke.Stressreducer) -> Erfolgreich gelöscht und in Quarantäne gestellt. D:\Daten pyranja PC\openb0x\Neuer Ordner\pobedit091_nagra_au\getkeys.dll (Malware.Packer.Gen) -> Erfolgreich gelöscht und in Quarantäne gestellt. D:\Daten pyranja PC\openb0x\Neuer Ordner\pobedit091_nagra_au\pobedit.exe (Backdoor.Small) -> Erfolgreich gelöscht und in Quarantäne gestellt. D:\Daten pyranja PC\Openbox\Pobedit 0.909\Pobedit 0.909\pobedit.exe (Backdoor.Small) -> Erfolgreich gelöscht und in Quarantäne gestellt. D:\Koscom zu Openbox\Koscom zu Openbox 1\PB_0.922\PB 0.922\POBEDIT.EXE (Backdoor.Small) -> Erfolgreich gelöscht und in Quarantäne gestellt. D:\Koscom zu Openbox\Koscom zu Openbox 1\Wechsel koscom zu openbox\PB_0.922\PB 0.922\POBEDIT.EXE (Backdoor.Small) -> Erfolgreich gelöscht und in Quarantäne gestellt. D:\Koscom zu Openbox\PB_0.922\PB 0.922\pobedit.exe (Backdoor.Small) -> Erfolgreich gelöscht und in Quarantäne gestellt. D:\Koscom zu Openbox\Wechsel koscom zu openbox\PB_0.922\PB 0.922\pobedit.exe (Backdoor.Small) -> Erfolgreich gelöscht und in Quarantäne gestellt. (Ende) |
hi lade den CCleaner standard: CCleaner - Download - Filepony falls der CCleaner bereits instaliert, überspringen. öffnen, Tools (extras),uninstall Llist, als txt speichern. öffnen. hinter, jedes von dir benötigte programm, schreibe notwendig. hinter, jedes, von dir nicht benötigte, unnötig. hinter, dir unbekannte, unbekannt. liste posten. |
| Alle Zeitangaben in WEZ +1. Es ist jetzt 00:16 Uhr. |
Copyright ©2000-2025, Trojaner-Board